公开(公告)号：US20180089640A1

公开(公告)日：2018-03-29

申请号：US15702320

申请日：2017-09-12

Applicant: TOSHIBA TEC KABUSHIKI KAISHA

Inventor： Takafumi Fukushima

IPC: G06Q20/04 ,  G06Q20/20 ,  G06Q20/32 ,  G06Q20/34

CPC classification number: G06Q20/04 ,  G06F8/65 ,  G06F8/654 ,  G06F21/554 ,  G06F21/572 ,  G06Q20/206 ,  G06Q20/32 ,  G06Q20/347 ,  G06Q20/403 ,  G07F7/1075

Abstract: A settlement terminal includes a card reader, a settlement processing unit including a processor programmed to carry out a settlement process using information acquired through the card reader and a tampering detection process, a storage device in which a first set of programs is stored after encryption by a first key and a second set of programs is stored after encryption by a second key, each set of programs including a first program for operating the card reader, and a second program for carrying out the settlement process. Upon detection of tampering, the processor of the settlement processing unit notifies an external terminal of the tampering and upon receiving an update instruction from the external terminal, updates a current set of programs used for operating the card reader and carrying out the settlement process from the first set to the second set.

公开(公告)号：US08934865B2

公开(公告)日：2015-01-13

申请号：US11345695

申请日：2006-02-02

Applicant: Thyagarajan Nandagopal

Inventor： Thyagarajan Nandagopal

IPC: H04M1/66 ,  H04M1/68 ,  H04M3/16 ,  G06Q20/42 ,  G06Q20/32 ,  G06Q20/34 ,  G07F7/10

CPC classification number: G06Q20/385 ,  G06Q20/10 ,  G06Q20/32 ,  G06Q20/322 ,  G06Q20/3227 ,  G06Q20/3229 ,  G06Q20/325 ,  G06Q20/347 ,  G06Q20/4014 ,  G06Q20/42 ,  G06Q20/425 ,  G07F7/10 ,  G07F7/1075 ,  H04W12/06

Abstract: A method to provide authentication services to third party vendors by a service provider hosting an authentication, authorization and accounting (AAA) server or a similar device that can authenticate users for some other service. This method enables easy and substantially error-free end-user authentication, which forms the basis for enabling electronic transactions (e.g., web-based) that are less vulnerable to fraud.

Abstract translation: 由承载认证，授权和计费（AAA）服务器的服务提供商或可以向用户认证某些其他服务的类似设备向第三方供应商提供认证服务的方法。 这种方法能够实现简单且基本上无错误的最终用户认证，其构成了使得不太易于欺诈的电子交易（例如基于网络）的基础。

公开(公告)号：US20140351145A1

公开(公告)日：2014-11-27

申请号：US14455130

申请日：2014-08-08

Applicant: EBAY INC.

Inventor： Attaullah Baig

IPC: G06Q20/40 ,  G06Q20/32 ,  G06Q20/38 ,  G06Q20/20

CPC classification number: G06Q20/4012 ,  G06Q20/20 ,  G06Q20/206 ,  G06Q20/322 ,  G06Q20/3829 ,  G07F7/1075 ,  H04L9/0825 ,  H04L9/3226 ,  H04L63/083 ,  H04L2209/56

Abstract: A key is securely injected into a POS PIN pad processor in its usual operating environment. In response to entry of a personal identification number (PIN) into a PIN pad, the processor puts the PIN into a PIN block; puts additional random data into the PIN block; and encrypts the entire PIN block using asymmetric cryptography with a public key derived from the injected key residing in the PIN pad processor. The corresponding private key may be held securely and secretly by an acquirer processor for decrypting the PIN block to retrieve the PIN. The encrypted random data defends the PIN against dictionary attacks. Time stamp data and constant data encrypted with the PIN block enables a defense of the PIN against replay attacks and tampering. The method may also include accepting the PIN from a mobile phone in communication with the processor.

Abstract translation: 在其通常的操作环境中，密钥可靠地注入POS PIN垫处理器。 响应于将个人识别号码（PIN）输入到PIN垫中，处理器将PIN放入PIN块中; 将额外的随机数据放入PIN块; 并且使用具有从驻留在PIN贴片处理器中的注入键导出的公开密钥的非对称加密来加密整个PIN块。 相应的私钥可以被获取者处理器安全地和秘密地保存，用于解密PIN块以检索PIN。 加密的随机数据保护PIN免受字典攻击。 使用PIN块加密的时间戳数据和常量数据可以防止PIN对重放攻击和篡改。 该方法还可以包括从与处理器通信的移动电话接受PIN。

公开(公告)号：US08862509B2

公开(公告)日：2014-10-14

申请号：US12118643

申请日：2008-05-09

Applicant: Rajesh G. Shakkarwar

Inventor： Rajesh G. Shakkarwar

IPC: G06Q40/00

CPC classification number: G06Q20/4012 ,  G06Q20/102 ,  G06Q20/26 ,  G06Q20/351 ,  G06Q20/35785 ,  G06Q20/40 ,  G07F7/1075

Abstract: A method for generating a personal identification number (PIN) debit child product for use in performing a debit payment transaction with a merchant entity. A payment processing platform receives a user selection of a financial institution made via a merchant payment page and directs the user to authenticate a user identity with the financial institution. The payment processing platform receives a user selection of a core account held with the financial institution, such that the core account provides financial backing for the PIN debit child product. The PIN debit child product is generated that includes a child card number and a virtual PIN associated with the core account. Advantageously, the method provides the ability to make PIN debit transaction on the Internet.

Abstract translation: 一种用于生成用于与商家实体进行借记支付交易的个人识别号码（PIN）借项子产品的方法。 支付处理平台通过商业支付页面接收对金融机构的用户选择，并指导用户向金融机构认证用户身份。 支付处理平台接收与金融机构持有的核心账户的用户选择，使得核心账户为PIN借记子产品提供财务支持。 生成PIN借记子产品，其包括与核心帐户相关联的子卡号和虚拟PIN。 有利地，该方法提供在因特网上进行PIN借记交易的能力。

公开(公告)号：US08812357B2

公开(公告)日：2014-08-19

申请号：US12432445

申请日：2009-04-29

Applicant: Tracy Hughes

Inventor： Tracy Hughes

IPC: G06Q10/00 ,  G06Q30/00 ,  G06Q20/00 ,  G06K5/00

CPC classification number: G06Q20/18 ,  G06Q10/06311 ,  G06Q20/127 ,  G06Q20/206 ,  G06Q30/0226 ,  G06Q30/0268 ,  G06Q30/06 ,  G07F7/1025 ,  G07F7/1075 ,  G07F17/0014

Abstract: A self-service tanning system and method allows salon owners to offer tanning customization in order to meet the personal needs of various customers and to meet the various FDA regulations associated with each state. The present invention allows salon owners to customize each tanning customer session to prevent over exposure for new patrons, while allowing patrons who are already tanning to tan at a more progressive rate. In addition to tanning customization, the present invention offers built-in safety features, payment options, and networkability.

Abstract translation: 自助鞣制系统和方法允许沙龙业主提供晒黑定制，以满足各种客户的个人需求，并满足与每个州相关的各种FDA规定。 本发明允许沙龙所有者定制每个鞣制客户会话，以防止新客户的过度曝光，同时允许正在晒黑的顾客以更渐进的速度晒黑。 除了晒黑定制之外，本发明还提供了内置的安全特征，支付选项和可网络性。

公开(公告)号：US08639938B2

公开(公告)日：2014-01-28

申请号：US13099509

申请日：2011-05-03

Applicant: Todd W. Arnold ,  Elizabeth A. Dames ,  Carsten D. Frehr ,  Clifford L. Hansen ,  Shelia M. Sittinger

Inventor： Todd W. Arnold ,  Elizabeth A. Dames ,  Carsten D. Frehr ,  Clifford L. Hansen ,  Shelia M. Sittinger

IPC: H04L29/06

CPC classification number: G06F21/46 ,  G06F21/31 ,  G06Q20/382 ,  G06Q20/4012 ,  G07F7/1016 ,  G07F7/1075 ,  G07F7/1091 ,  G07F19/211

Abstract: A system for enhancing security of a personal identification number is configned for performing a method that includes receiving, from a first entity having an input permission, a first data structure into a HSM, wherein the first data structure maps a first many-to-one mapping between a first and a second PIN numeral system. The method also includes determining whether the content of the first data structure is valid, storing the first data structure in the HSM if the first data structure is valid and marking the stored first data structure as inactive. The method further includes activating the first data structure if a second data structure is input into the HSM by a second entity having an activation permission, wherein the first entity is different from the second entity, the first data structure is identical to the second data structure. The method additionally includes converting from the first to the second PIN numeral system responsive to the activated first data structure.

Abstract translation: 用于增强个人识别号码的安全性的系统用于执行包括从具有输入许可的第一实体接收第一数据结构到HSM的方法，其中所述第一数据结构映射第一多对一 第一和第二PIN数字系统之间的映射。 该方法还包括确定第一数据结构的内容是否有效，如果第一数据结构有效并将所存储的第一数据结构标记为不活动，则将第一数据结构存储在HSM中。 该方法还包括：如果第二数据结构由具有激活许可的第二实体输入到HSM中，则激活第一数据结构，其中第一实体与第二实体不同，第一数据结构与第二数据结构相同 。 该方法还包括响应于激活的第一数据结构从第一PIN数字系统转换为第二PIN数字系统。

公开(公告)号：US20130198084A1

公开(公告)日：2013-08-01

申请号：US13828841

申请日：2013-03-14

Applicant: Amazon Technologies, Inc.

Inventor： Amit D. Agarwal ,  Michael M. George ,  Ian W. Freed ,  Jeffrey P. Bezos ,  Peter S. Vosshall

IPC: G06Q20/38

CPC classification number: G06Q20/3821 ,  G06F17/227 ,  G06F17/277 ,  G06Q20/10 ,  G06Q20/38 ,  G06Q20/40 ,  G06Q20/40145 ,  G06Q30/00 ,  G06Q30/0603 ,  G07F7/1075

Abstract: A system and method for facilitating transactions utilizing phrase tokens are provided. Individual entities can be associated with unambiguous transaction phrase tokens, such as multiple word phrases. The transaction phrase tokens are associated with transaction accounts by a service provider such that the entities can complete a transaction without having to exchange transaction account information. In a transaction, a transaction phrase token is offered to an accepting party, which tenders the offered transaction phrase token to the service provider. The service provider processes the offered transaction phrase token according to configuration information specified for the transaction phrase token. The service provider can automatically process the transaction request or request additional information.

公开(公告)号：US20130144792A1

公开(公告)日：2013-06-06

申请号：US13808997

申请日：2011-07-08

Applicant: Magnus Nilsson ,  Stefan Lund

Inventor： Magnus Nilsson ,  Stefan Lund

IPC: G06Q20/40

CPC classification number: G06Q20/3226 ,  G06Q20/20 ,  G06Q20/32 ,  G06Q20/3229 ,  G06Q20/341 ,  G06Q20/3823 ,  G06Q20/3825 ,  G06Q20/3829 ,  G06Q20/4012 ,  G06Q20/409 ,  G07F7/0886 ,  G07F7/1008 ,  G07F7/1033 ,  G07F7/1075 ,  G07F7/1091

Abstract: A method of conducting secure electronic payments to a payment acquirer using a credit card payment unit, comprising of a smart card, a portable card reader device, a mobile phone, a stand-alone PIN entry device and a payment server. The method is based on eliminating the unsecure keyboard in a mobile phone used for entering personal identification information, and instead use a separate secure PIN entry device which fulfils the EMV Level specification. Since all sensitive payment information, communicated to the payment server from the card reader and the PIN entry device, is encrypted using unique encryption keys an unsecure mobile phone may be used for relaying the communication between the card reader device and the PIN entry device to and from the payment server.

Abstract translation: 一种使用信用卡支付单元向付款获取方执行安全电子支付的方法，包括智能卡，便携式读卡器装置，移动电话，独立PIN输入装置和支付服务器。 该方法基于消除用于输入个人识别信息的移动电话中的不安全键盘，而是使用满足EMV级别规范的单独的安全PIN输入设备。 由于从读卡器和PIN输入装置传送给支付服务器的所有敏感支付信息都使用唯一的加密密钥加密，所以可以使用不安全的移动电话将读卡器设备和PIN输入设备之间的通信中继到 从付款服务器。

公开(公告)号：US08245914B1

公开(公告)日：2012-08-21

申请号：US13066404

申请日：2011-04-14

Applicant: Natarajan Ramachandran ,  Mark A. Douglass

Inventor： Natarajan Ramachandran ,  Mark A. Douglass

IPC: G06Q40/00 ,  G07D11/00 ,  G07F19/00

CPC classification number: G06K7/0004 ,  G06Q20/32 ,  G06Q20/3274 ,  G06Q20/352 ,  G06Q20/385 ,  G07F7/10 ,  G07F7/1075 ,  G07F19/20 ,  G07F19/205 ,  G07F19/207

Abstract: An automated banking machine operates responsive to data read from data bearing records. The data corresponds to user card data received from a cell phone. The machine generates and displays a random number correlated with a time period. The machine user inputs the displayed random number into their phone. A software application in the phone encrypts the selected card data along with the inputted random number. The phone then displays a bar code image containing the encrypted data. The machine includes a bar code reader to read the displayed image. The machine can decrypt the random number and the card data from the read image. The random number is used to verify the current banking transaction session. The process replaces physical insertion of a card yet allows secure input of card data.

Abstract translation: 自动银行业务机构响应于从数据记录中读取的数据。 数据对应于从手机接收的用户卡数据。 机器生成并显示与时间段相关的随机数。 机器用户将显示的随机数输入他们的手机。 电话中的软件应用程序与输入的随机数一起加密所选择的卡片数据。 然后，手机显示包含加密数据的条形码图像。 该机器包括读取显示图像的条形码阅读器。 机器可以从读取的图像中解密随机数和卡数据。 随机数用于验证当前银行交易会话。 该过程取代了卡的物理插入，但允许卡数据的安全输入。

公开(公告)号：US08191767B1

公开(公告)日：2012-06-05

申请号：US12928014

申请日：2010-12-01

Applicant: Natarajan Ramachandran ,  Mark A. Douglass

Inventor： Natarajan Ramachandran ,  Mark A. Douglass

IPC: G06Q40/00 ,  G07D11/00 ,  G07F19/00

CPC classification number: G06K7/0004 ,  G06Q20/102 ,  G06Q20/105 ,  G06Q20/1085 ,  G06Q20/32 ,  G06Q20/3227 ,  G06Q20/3274 ,  G06Q20/352 ,  G06Q20/385 ,  G06Q30/0237 ,  G06Q30/04 ,  G07F7/10 ,  G07F7/1075 ,  G07F19/20 ,  G07F19/205

Abstract: An automated banking machine operates responsive to data read from data bearing records. The data corresponds to card data which corresponds to at least one financial account. The record data is read by a reader and compared to stored data to authorize use of the machine. A financial transfer corresponding to the account may be carried out once use is authorized based on correspondence of the record data. A printed record of transactions is printed by the machine. Record data may alternatively be received by a reading device of the machine from a mobile device of a user, such as a cell phone.

Abstract translation: 自动银行业务机构响应于从数据记录中读取的数据。 数据对应于对应于至少一个金融账户的卡数据。 记录数据由读取器读取，并与存储的数据进行比较以授权使用机器。 一旦根据记录数据的通信被授权就可以执行对应于该帐户的财务转账。 交易的打印记录由机器打印。 记录数据可以替代地由机器的读取装置从诸如手机的用户的移动装置接收。