×

Hybrid integration of software development kit with secure execution environment

  • US 10,187,363 B2
  • Filed: 12/31/2015
  • Issued: 01/22/2019
  • Est. Priority Date: 12/31/2014
  • Status: Active Grant
First Claim
Patent Images

1. A portable communication device comprising:

  • one or more processor circuits; and

    one or more memory units coupled to the one or more processor circuits and storing computer readable code implementing a secure application in a trusted execution environment, which when executed by the one or more processor circuits, performs operations including;

    receiving, by the secure application from a mobile application executing in an application execution environment of the portable communication device, a first storage request, the first storage request including a first encrypted data type identifier and an encrypted cryptogram generation key;

    decrypting, by the secure application, the first encrypted data type identifier and the encrypted cryptogram generation key using a transport key;

    determining, by the secure application, that the first decrypted data type identifier indicates the first storage request is for a cryptogram generation key;

    re-encrypting, by the secure application, the decrypted cryptogram generation key using a key-storage key to generate a re-encrypted cryptogram generation key;

    storing the re-encrypted cryptogram generation key outside the trusted execution environment;

    receiving, by the secure application from the mobile application, a cryptogram generation request, the cryptogram generation request including the re-encrypted cryptogram generation key and transaction data for a transaction, wherein the transaction data is received by the mobile application from an access device;

    decrypting, by the secure application, the re-encrypted cryptogram generation key using the key-storage key;

    encrypting, by the secure application, the transaction data using the decrypted cryptogram generation key to generate the transaction cryptogram; and

    sending, by the secure application to the mobile application, the generated transaction cryptogram, wherein the mobile application transmits the generated transaction cryptogram to the access device to conduct the transaction.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×