Cloud card application platform
First Claim
Patent Images
1. A cloud card application platform hosted at a network server, comprising:
- a processor; and
computer memory comprising instructions that are configured for execution by the processor, wherein the instructions comprise;
a credential authentication set of instructions that, when executed, enable the processor to authenticate a hardware credential read by a user device and authenticate that a unique interaction has occurred between the hardware credential and the user device, wherein the authentication is based on information provided from the hardware credential to the user device, and wherein the user device is one of a plurality of user devices that use the network server;
an application/service selection set of instructions that, when executed, enable the processor to provide a user of the user device with an option of selecting one or more applications for use with the hardware credential read by the user device, wherein the option of selecting one or more applications is provided to the user in response to authenticating the hardware credential and in response to authenticating that the unique interaction has occurred between the hardware credential and the user device; and
a federation set of instructions that, when executed, enable the processor to receive an identification of a selected application from the application/service selection module and, in response thereto, federate at least one of a browser and application running on the user device to a Service Provider that is associated with the selected application,wherein the information provided from the hardware credential to the user device comprises a Universal Resource Locator (URL) and a Tag Authentication Cryptogram (TAC) appended to the URL that indicates a unique read transaction occurred between the hardware credential and the user device.
1 Assignment
0 Petitions
Accused Products
Abstract
A cloud card application platform is provided. The cloud card application platform enables one or more card applications to be virtualized on at least one server that is available to mobile devices via a communication network, such as the Internet. The one or more card applications virtualized on the cloud card application platform are capable of being managed remotely by service providers that have deployed and developed the one or more applications.
66 Citations
18 Claims
-
1. A cloud card application platform hosted at a network server, comprising:
-
a processor; and computer memory comprising instructions that are configured for execution by the processor, wherein the instructions comprise; a credential authentication set of instructions that, when executed, enable the processor to authenticate a hardware credential read by a user device and authenticate that a unique interaction has occurred between the hardware credential and the user device, wherein the authentication is based on information provided from the hardware credential to the user device, and wherein the user device is one of a plurality of user devices that use the network server; an application/service selection set of instructions that, when executed, enable the processor to provide a user of the user device with an option of selecting one or more applications for use with the hardware credential read by the user device, wherein the option of selecting one or more applications is provided to the user in response to authenticating the hardware credential and in response to authenticating that the unique interaction has occurred between the hardware credential and the user device; and a federation set of instructions that, when executed, enable the processor to receive an identification of a selected application from the application/service selection module and, in response thereto, federate at least one of a browser and application running on the user device to a Service Provider that is associated with the selected application, wherein the information provided from the hardware credential to the user device comprises a Universal Resource Locator (URL) and a Tag Authentication Cryptogram (TAC) appended to the URL that indicates a unique read transaction occurred between the hardware credential and the user device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A server, comprising:
-
at least one processor; and memory comprising instructions that are configured for execution by the at least one processor, wherein the instructions comprise; a plurality of virtualized card applications each comprising one or more related files; and a card application selector set of instructions that cause the at least one processor to deliver one or more files associated with a card application to a mobile device in response to a selection of the card application from among the plurality of virtualized card applications, wherein the selection of the card application is either; (i) automatically selected by the at least one processor from among the plurality of virtualized card applications in the event that the card application is dedicated to the mobile device;
or(ii) selected based on a user selection from a list of applications available to the mobile device, wherein the mobile device is to authenticate a hardware credential based on information provided from the hardware credential to the mobile device, wherein the information provided from the hardware credential to the mobile device comprises a Universal Resource Locator (URL) and a Tag Authentication Cryptogram (TAC) appended to the URL that indicates a unique read transaction occurred between the hardware credential and the mobile device. - View Dependent Claims (12, 13, 14, 15)
-
-
16. A method, comprising:
-
receiving, at a server implementing a cloud card application platform, at least one message from a browser of a mobile device, the at least one message comprising a Universal Resource Locator (URL) provided to the mobile device by a card read by the mobile device, wherein the at least one message further comprises a Tag Authentication Cryptogram (TAC) that indicates a unique read transaction occurred between the card and the mobile device; authenticating, at the server implementing the cloud card application platform, a card number included in the URL and/or the TAC; authenticating the mobile device that read the card; authenticating the TAC to ensure that the received URL corresponds to the unique read transaction; in response to authenticating the card number, authenticating the mobile device, and authenticating the TAC, determining a number of applications available to the mobile device, wherein the number of applications are stored on the cloud card application platform as virtualized card applications; performing one of the following; (i) in the event that the number of applications comprise a single application, automatically selecting the single application as a selected application; and (ii) in the event that the number of applications comprise multiple applications, providing a user of the mobile device with an option to select one of the multiple applications as the selected application; identifying a service provider associated with the selected application; federating the service provider by creating a federation token that includes an assertion to the service provider that proves authentication of the card by the cloud card application; and directing the mobile device to a URL hosted by the service provider. - View Dependent Claims (17, 18)
-
Specification