Integration of verification tokens with mobile communication devices

US 10,009,177 B2
Filed: 03/15/2016
Issued: 06/26/2018
Est. Priority Date: 05/15/2009
Status: Active Grant

First Claim

Patent Images

1. A mobile communication device comprising:

a housing;

a first processor disposed within the housing;

a first memory unit disposed within the housing;

an input-output controller coupled to the first processor; and

a verification token disposed within the housing and communicatively coupled to the input-output controller, the verification token comprising a second processor separate from the first processor, and a second memory unit that is separate from the first memory unit and stores an encryption key that is used by the second processor for encrypting or signing data sent from the verification token to a validation entity that validates the encrypted or signed data and then provides a dynamic account number to the verification token, and wherein the verification token stores the dynamic account number from the validation entity.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Apparatuses, methods, and systems pertaining to the verification of portable consumer devices are disclosed. In one implementation, a verification token is communicatively coupled to a computer by a USB connection so as to use the computer'"'"'s networking facilities. The verification token reads identification information from a user'"'"'s portable consumer device (e.g., credit card) and sends the information to a validation entry over a communications network using the computer'"'"'s networking facilities. The validation entity applies one or more validation tests to the information that it receives from the verification token. If a selected number of tests are passed, the validation entity sends a device verification value to the verification token, and optionally to a payment processing network. The verification token may enter the device verification value into a CVV field of a web page appearing on the computer'"'"'s display, or may display the value to the user using the computer'"'"'s display.

769 Citations

15 Claims

1. A mobile communication device comprising:
- a housing;
  
  a first processor disposed within the housing;
  
  a first memory unit disposed within the housing;
  
  an input-output controller coupled to the first processor; and
  
  a verification token disposed within the housing and communicatively coupled to the input-output controller, the verification token comprising a second processor separate from the first processor, and a second memory unit that is separate from the first memory unit and stores an encryption key that is used by the second processor for encrypting or signing data sent from the verification token to a validation entity that validates the encrypted or signed data and then provides a dynamic account number to the verification token, and wherein the verification token stores the dynamic account number from the validation entity.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The mobile communication device of claim 1, wherein the encryption key is a symmetric encryption key.
  - 3. The mobile communication device of claim 1 wherein the mobile communication device is a mobile phone.
  - 4. The mobile communication device of claim 1 wherein the verification token is protected from attacks from hackers.
  - 5. The mobile communication device of claim 1 wherein the second memory unit is a security module.
  - 6. The mobile communication device of claim 1 wherein the verification token stores a uniform resource identifier for the validation entity.
  - 7. The mobile communication device of claim 1 wherein the validation entity provides a device verification value to the verification token.
  - 8. The mobile communication device of claim 7 wherein the verification token stores the device verification value.

9. A method comprising:
- receiving identification information at a verification token in a mobile communication device, the mobile communication device comprising (a) a housing, (b) a first processor disposed within the housing, (c) a first memory unit disposed within the housing, (d) an input-output controller coupled to the first processor, and (e) the verification token communicatively coupled to the input-output controller, the verification token comprising a second processor separate from the first processor, a second memory unit separate from the first memory unit and storing an encryption key;
  
  encrypting or signing, the identification information using the second processor and the encryption key;
  
  transmitting, the encrypted identification information to a validation entity, wherein the validation entity validating the encrypted or signed identification information, and then transmits a dynamic account number to the verification token in response to the validating; and
  
  receiving, the dynamic account number at the verification token.
- View Dependent Claims (10, 11, 12, 13, 14, 15)
- - 10. The method of claim 9, wherein the encryption key is a symmetric key.
  - 11. The method of claim 9 wherein the encryption key is a first encryption key, and the validation entity holds a second encryption key, the first encryption key and the second encryption key being a symmetric key pair.
  - 12. The method of claim 9 wherein the second memory unit is a security module.
  - 13. The method of claim 9 wherein the verification token stores a uniform resource identifier for the validation entity.
  - 14. The method of claim 9 further comprising:
    - receiving, by the mobile communication device, a device verification value from the validation entity.
  - 15. The method of claim 14 further comprising:
    - storing, by the mobile communication device, the device verification value received from the validation entity.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Visa International Service Association (Visa, Inc.)
Original Assignee
Visa International Service Association (Visa, Inc.)
Inventors
Hammad, Ayman
Primary Examiner(s)
Lee, Michael G
Assistant Examiner(s)
Tardif, David

Application Number

US15/070,446
Publication Number

US 20160197725A1
Time in Patent Office

833 Days
Field of Search

235375
US Class Current
CPC Class Codes

G06F 21/34   involving the use of extern...

G06F 2221/2129   Authenticate client device ...

G06Q 20/12   specially adapted for elect...

G06Q 20/341   Active cards, i.e. cards in...

G06Q 20/352   Contactless payments by cards

G06Q 20/385   using an alias or single-us...

G06Q 20/40   Authorisation, e.g. identif...

G06Q 20/4018   using the card verification...

G06Q 20/42   Confirmation, e.g. check or...

G06Q 20/425   using two different network...

H04L 2209/12   Details relating to cryptog...

H04L 2209/24   Key scheduling, i.e. genera...

H04L 2209/805   Lightweight hardware, e.g. ...

H04L 63/0853   using an additional device,...

H04L 63/126   the source of the received ...

H04L 9/10   with particular housing, ph...

H04L 9/14   using a plurality of keys o...

H04L 9/3231   Biological data, e.g. finge...

H04L 9/3234   involving additional secure...

Integration of verification tokens with mobile communication devices

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

769 Citations

15 Claims

Specification

Solutions

Use Cases

Quick Links

Integration of verification tokens with mobile communication devices

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

769 Citations

15 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links