WO2011031988A3 - Communication sécurisée d'informations de paiement à des marchands à l'aide d'un jeton de vérification - Google Patents

Communication sécurisée d'informations de paiement à des marchands à l'aide d'un jeton de vérification Download PDF

Info

Publication number
WO2011031988A3
WO2011031988A3 PCT/US2010/048455 US2010048455W WO2011031988A3 WO 2011031988 A3 WO2011031988 A3 WO 2011031988A3 US 2010048455 W US2010048455 W US 2010048455W WO 2011031988 A3 WO2011031988 A3 WO 2011031988A3
Authority
WO
WIPO (PCT)
Prior art keywords
payment information
secure communication
merchants
verification token
verification
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
PCT/US2010/048455
Other languages
English (en)
Other versions
WO2011031988A2 (fr
Inventor
Ayman Hammad
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Visa International Service Association
Original Assignee
Visa International Service Association
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from US12/712,148 external-priority patent/US7891560B2/en
Priority claimed from US12/780,657 external-priority patent/US9038886B2/en
Application filed by Visa International Service Association filed Critical Visa International Service Association
Priority to AU2010292125A priority Critical patent/AU2010292125B2/en
Priority to CA2773543A priority patent/CA2773543A1/fr
Priority to EP10816167.0A priority patent/EP2476088A4/fr
Priority to BR112012005419A priority patent/BR112012005419A2/pt
Publication of WO2011031988A2 publication Critical patent/WO2011031988A2/fr
Publication of WO2011031988A3 publication Critical patent/WO2011031988A3/fr
Anticipated expiration legal-status Critical
Ceased legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/34User authentication involving the use of external additional devices, e.g. dongles or smart cards
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/12Payment architectures specially adapted for electronic shopping systems
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/385Payment protocols; Details thereof using an alias or single-use codes
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/42Confirmation, e.g. check or permission by the legal debtor of payment
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/42Confirmation, e.g. check or permission by the legal debtor of payment
    • G06Q20/425Confirmation, e.g. check or permission by the legal debtor of payment using two different networks, one for transaction and one for security confirmation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0853Network architectures or network communication protocols for network security for authentication of entities using an additional device, e.g. smartcard, SIM or a different communication terminal
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3234Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving additional secure or trusted devices, e.g. TPM, smartcard, USB or software token
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3271Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using challenge-response
    • H04L9/3273Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using challenge-response for mutual authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/56Financial cryptography, e.g. electronic payment or e-cash
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/12Applying verification of the received information
    • H04L63/126Applying verification of the received information the source of the received data

Landscapes

  • Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Finance (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • Signal Processing (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Computer Hardware Design (AREA)
  • General Engineering & Computer Science (AREA)
  • Computing Systems (AREA)
  • Software Systems (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Control Of Vending Devices And Auxiliary Devices For Vending Devices (AREA)

Abstract

L'invention concerne des appareils, des systèmes, et des procédés se rapportant à la communication sécurisée d'informations de paiement à partir de dispositifs clients portables, tels que des cartes de crédit, à des marchands en ligne en utilisant des jetons de vérification.
PCT/US2010/048455 2009-09-10 2010-09-10 Communication sécurisée d'informations de paiement à des marchands à l'aide d'un jeton de vérification Ceased WO2011031988A2 (fr)

Priority Applications (4)

Application Number Priority Date Filing Date Title
AU2010292125A AU2010292125B2 (en) 2009-09-10 2010-09-10 Secure communication of payment information to merchants using a verification token
CA2773543A CA2773543A1 (fr) 2009-09-10 2010-09-10 Communication securisee d'informations de paiement a des marchands a l'aide d'un jeton de verification
EP10816167.0A EP2476088A4 (fr) 2009-09-10 2010-09-10 Communication sécurisée d'informations de paiement à des marchands à l'aide d'un jeton de vérification
BR112012005419A BR112012005419A2 (pt) 2009-09-10 2010-09-10 ficha de verificação, método, produto de programa de computador, entidade de validação, método para comunicar informação de pagamento para um estabelecimento comercial, computador de estabelecimento comercial, sistema de processamento de estabelecimento comercial, e, método para receber informação de pagamento

Applications Claiming Priority (6)

Application Number Priority Date Filing Date Title
US24136709P 2009-09-10 2009-09-10
US61/241,367 2009-09-10
US12/712,148 2010-02-24
US12/712,148 US7891560B2 (en) 2009-05-15 2010-02-24 Verification of portable consumer devices
US12/780,657 2010-05-14
US12/780,657 US9038886B2 (en) 2009-05-15 2010-05-14 Verification of portable consumer devices

Publications (2)

Publication Number Publication Date
WO2011031988A2 WO2011031988A2 (fr) 2011-03-17
WO2011031988A3 true WO2011031988A3 (fr) 2011-07-21

Family

ID=43733107

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2010/048455 Ceased WO2011031988A2 (fr) 2009-09-10 2010-09-10 Communication sécurisée d'informations de paiement à des marchands à l'aide d'un jeton de vérification

Country Status (5)

Country Link
EP (1) EP2476088A4 (fr)
AU (1) AU2010292125B2 (fr)
BR (1) BR112012005419A2 (fr)
CA (1) CA2773543A1 (fr)
WO (1) WO2011031988A2 (fr)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US12450590B2 (en) 2009-05-15 2025-10-21 Visa International Service Association Integration of verification tokens with mobile communication devices

Families Citing this family (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9715681B2 (en) 2009-04-28 2017-07-25 Visa International Service Association Verification of portable consumer devices
US9105027B2 (en) 2009-05-15 2015-08-11 Visa International Service Association Verification of portable consumer device for secure services
US8534564B2 (en) 2009-05-15 2013-09-17 Ayman Hammad Integration of verification tokens with mobile communication devices
US8893967B2 (en) 2009-05-15 2014-11-25 Visa International Service Association Secure Communication of payment information to merchants using a verification token
US9038886B2 (en) 2009-05-15 2015-05-26 Visa International Service Association Verification of portable consumer devices
WO2012122049A2 (fr) 2011-03-04 2012-09-13 Visa International Service Association Intégration d'une fonctionnalité de paiement dans des éléments sécurisés d'ordinateurs
US10282724B2 (en) 2012-03-06 2019-05-07 Visa International Service Association Security system incorporating mobile device
TWI566564B (zh) * 2012-04-25 2017-01-11 Samton International Development Technology Co Ltd Virtual reality authentication circuit, system and electronic consumption method
US9807612B2 (en) * 2014-04-25 2017-10-31 Tendyron Corporation Secure data interaction method and system
CN109191116B (zh) * 2018-07-27 2023-05-12 创新先进技术有限公司 资源管理方法和系统以及支付管理方法和系统
US11451396B2 (en) * 2019-11-05 2022-09-20 Microsoft Technology Licensing, Llc False positive reduction in electronic token forgery detection
CN114692572B (zh) * 2022-03-30 2025-01-10 中国农业银行股份有限公司 数据转化方法及相关装置

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20050043997A1 (en) * 2003-08-18 2005-02-24 Sahota Jagdeep Singh Method and system for generating a dynamic verification value
KR20050019674A (ko) * 2003-08-20 2005-03-03 엘지전자 주식회사 이동 통신 단말기를 이용한 모바일 신용카드 결재 방법
US6983882B2 (en) * 2003-03-31 2006-01-10 Kepler, Ltd. Personal biometric authentication and authorization device
US20070136211A1 (en) * 2004-03-15 2007-06-14 Brown Kerry D Financial transactions with dynamic card verification values
US20070178883A1 (en) * 2006-02-02 2007-08-02 Lucent Technologies Inc. Authentication and verification services for third party vendors using mobile devices
KR20080051198A (ko) * 2006-12-05 2008-06-11 백승한 결재 인증 시스템 및 방법

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5365586A (en) * 1993-04-09 1994-11-15 Washington University Method and apparatus for fingerprinting magnetic media
AU2001256591A1 (en) * 2000-06-26 2002-01-08 Covadis Sa Computer keyboard unit for carrying out secure transactions in a communications network
US7740168B2 (en) 2003-08-18 2010-06-22 Visa U.S.A. Inc. Method and system for generating a dynamic verification value
US20060016879A1 (en) * 2004-07-26 2006-01-26 First Data Corporation Presentation instrument security arrangement and methods
EP2098985A3 (fr) * 2008-03-03 2012-11-07 Broadcom Corporation Architecture sûre pour lecteurs financiers

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6983882B2 (en) * 2003-03-31 2006-01-10 Kepler, Ltd. Personal biometric authentication and authorization device
US20050043997A1 (en) * 2003-08-18 2005-02-24 Sahota Jagdeep Singh Method and system for generating a dynamic verification value
KR20050019674A (ko) * 2003-08-20 2005-03-03 엘지전자 주식회사 이동 통신 단말기를 이용한 모바일 신용카드 결재 방법
US20070136211A1 (en) * 2004-03-15 2007-06-14 Brown Kerry D Financial transactions with dynamic card verification values
US20070178883A1 (en) * 2006-02-02 2007-08-02 Lucent Technologies Inc. Authentication and verification services for third party vendors using mobile devices
KR20080051198A (ko) * 2006-12-05 2008-06-11 백승한 결재 인증 시스템 및 방법

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
See also references of EP2476088A4 *

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US12450590B2 (en) 2009-05-15 2025-10-21 Visa International Service Association Integration of verification tokens with mobile communication devices
US12518263B2 (en) 2009-05-15 2026-01-06 Visa International Service Association Integration of verification tokens with mobile communication devices

Also Published As

Publication number Publication date
WO2011031988A2 (fr) 2011-03-17
BR112012005419A2 (pt) 2016-04-12
AU2010292125A1 (en) 2012-04-26
CA2773543A1 (fr) 2011-03-17
EP2476088A2 (fr) 2012-07-18
EP2476088A4 (fr) 2014-01-15
AU2010292125B2 (en) 2014-11-06

Similar Documents

Publication Publication Date Title
WO2011031988A3 (fr) Communication sécurisée d'informations de paiement à des marchands à l'aide d'un jeton de vérification
WO2012151590A3 (fr) Systèmes et procédés permettant d'effectuer des paiements mobiles
WO2012054763A3 (fr) Intégration de jetons de vérification dans dispositifs informatiques portables
WO2014085478A3 (fr) Systèmes et procédés pour traiter des transactions électroniques sur la base de caractéristiques de client
WO2012058309A3 (fr) Intégration de jetons de vérification à des dispositifs de communication mobile
WO2010132808A3 (fr) Vérification de dispositifs portatifs clients
EP2545508A4 (fr) Système et procédé de paiement à une pompe de distribution de carburant
WO2013012200A3 (fr) Système de paiement complexe à l'aide d'un terminal portable, et procédé de paiement complexe
WO2011005766A3 (fr) Système et procédé d'accès en transport comprenant une authentification de dispositif
WO2010129357A3 (fr) Vérification de dispositifs clients portables
WO2011057007A3 (fr) Vérification de dispositifs de consommation portables pour services " 3-d secure "
EP2556474A4 (fr) Procédé et système pour le traitement de transactions de débit en ligne (pin)
WO2012021864A3 (fr) Portefeuille utilisant des canaux de commerce multiples pour effectuer des transactions authentifiées
WO2014124395A3 (fr) Gestion de jeton de paiement de dispositif de client
WO2008106560A3 (fr) Authentification d'une carte de données au moyen d'une valeur de vérification de transaction
WO2011028840A3 (fr) Dispositif portatif pour consommateur avec traitement de transfert de fonds
GB201309968D0 (en) Purchase transaction system with encrypted payment card data
WO2011091053A3 (fr) Authentification de transaction sur la base d'un jeton
WO2011133494A3 (fr) Dispositifs, systèmes et procédés permettant de marquer des informations sensibles
WO2010129300A3 (fr) Protection contre fraude et de réputation à l'aide d'autorisation préalable et de moteur de règles
WO2010143823A3 (fr) Système et procédé de paiement en argent électronique
WO2011068624A3 (fr) Système et procédé d'autorisation de transactions
WO2011094280A3 (fr) Système et procédé de génération d'une valeur de carte dynamique
WO2014141103A3 (fr) Validation à base de jeton bidirectionnelle pour des transactions compatibles nfc
WO2012112005A3 (fr) Système de paiement par carte de crédit comportant un répéteur et un terminal de communication mobile, appareil compris dans le système et procédé exécuté pour un paiement par carte de crédit dans l'appareil

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 10816167

Country of ref document: EP

Kind code of ref document: A1

WWE Wipo information: entry into national phase

Ref document number: 2773543

Country of ref document: CA

NENP Non-entry into the national phase

Ref country code: DE

WWE Wipo information: entry into national phase

Ref document number: 2010816167

Country of ref document: EP

WWE Wipo information: entry into national phase

Ref document number: 2010292125

Country of ref document: AU

ENP Entry into the national phase

Ref document number: 2010292125

Country of ref document: AU

Date of ref document: 20100910

Kind code of ref document: A

REG Reference to national code

Ref country code: BR

Ref legal event code: B01A

Ref document number: 112012005419

Country of ref document: BR

ENP Entry into the national phase

Ref document number: 112012005419

Country of ref document: BR

Kind code of ref document: A2

Effective date: 20120309