Systems and methods for convenient and secure mobile transactions
First Claim
1. A method for processing payment, comprising:
- a payment terminal including a wireless communication interface that detects presence of a mobile device within an effective wireless communication range of the wireless communication interface;
after detecting the presence, the payment terminal initiating a mutual authentication process to authenticate the mobile device and the payment terminal with each other for secure communication therebetween;
triggering production of a session key in response to completion of the mutual authentication process in which the mobile device and the payment terminal are successfully mutually authenticated with each other for secure communication therebetween; and
after the production of the session key, the payment terminal receiving from the mobile device a request for a transaction and receiving from the mobile device payment data for the transaction, the payment data being encrypted using the session key.
0 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods for conducting convenient and secure mobile transactions between a payment terminal and a mobile device, e.g., in a fueling environment, are disclosed herein. In some embodiments, the payment terminal and the mobile device conduct a mutual authentication process that, if successful, produces a session key which can be used to encrypt sensitive data to be exchanged between the payment terminal and the mobile device. Payment and loyalty information can be securely communicated from the mobile device to the payment terminal using the session key. This can be done automatically, without waiting for the user to initiate a transaction, to shorten the overall transaction time. The transaction can also be completed without any user interaction with the mobile device, increasing the user'"'"'s convenience since the mobile device can be left in the user'"'"'s pocket, purse, vehicle, etc.
-
Citations
20 Claims
-
1. A method for processing payment, comprising:
-
a payment terminal including a wireless communication interface that detects presence of a mobile device within an effective wireless communication range of the wireless communication interface; after detecting the presence, the payment terminal initiating a mutual authentication process to authenticate the mobile device and the payment terminal with each other for secure communication therebetween; triggering production of a session key in response to completion of the mutual authentication process in which the mobile device and the payment terminal are successfully mutually authenticated with each other for secure communication therebetween; and after the production of the session key, the payment terminal receiving from the mobile device a request for a transaction and receiving from the mobile device payment data for the transaction, the payment data being encrypted using the session key. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method for processing payment, comprising:
-
a mobile device including a wireless communication interface that detects presence of a payment terminal within an effective wireless communication range of the wireless communication interface; after detecting the presence, the mobile device initiating a mutual authentication process to authenticate the mobile device and the payment terminal with each other for secure communication therebetween; triggering production of a session key in response to completion of the mutual authentication process in which the mobile device and the payment terminal are successfully mutually authenticated with each other for secure communication therebetween; and after the production of the session key, the mobile device transmitting to the payment terminal a request for a transaction and transmitting to the payment terminal payment data for the transaction, the payment data being encrypted using the session key. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
-
17. An apparatus for dispensing fuel, comprising:
a fuel dispenser configured to dispense fuel therefrom, and including a housing having disposed therein; a memory configured to store therein payment information, a transaction request receiving module configured to receive a request to initiate a transaction for a user to purchase fuel, an authentication module configured to, prior to the transaction request receiving module receiving the request, execute a mutual authentication process with a mobile device associated with the user, wherein successful completion of the mutual authentication process results in production of a session key, an authorization module configured to encrypt authorization information using the session key and to transmit the encrypted authorization information to the mobile device, a validation module configured to receive from the mobile device a validation result in response to the transmitted encrypted authorization information, and a transaction processing module configured to, in response to the received validation result being positive, execute the requested transaction using the payment information stored in the memory and to allow fuel to be dispensed and, in response to the received validation result being negative, to deny the requested transaction and to not allow fuel to be dispensed using the payment information stored in the memory. - View Dependent Claims (18, 19, 20)
Specification