Tamper-proofing and identity validation in a secure electronic transaction processing system

US 10,692,090 B2
Filed: 01/26/2017
Issued: 06/23/2020
Est. Priority Date: 01/26/2016
Status: Active Grant

First Claim

Patent Images

1. An electronic payment system, comprising:

a payment instrument that is configured to approve only negative value payment requests and/or zero value payment requests;

a data processing device that is communicatively coupleable via a first communication link to the payment instrument that is configured to approve only negative value payment requests and/or zero value payment requests, the data processing device communicatively coupleable to a server via a second communication link; and

a service dispensing device that is communicatively coupleable to the server via a third communication link;

wherein the data processing device is configured to;

receive a first input including at least a payment amount;

transmit a payment request to the payment instrument, the payment request including at least the payment amount;

receive a first data package generated by the payment instrument, the first data package based on the payment request;

generate a transaction request data package based on the first data package; and

transmit the transaction request data package to the server;

wherein the data processing device and/or the server is configured to determine whether to approve or decline a transaction, and in the event the transaction is approved, the server is configured to generate a trusted data package based on the transaction request data package and transmit the trusted data package to the service dispensing device; and

wherein the service dispensing device is configured to;

receive the trusted data package from the server;

determine the authenticity of the trusted data package; and

in the event the trusted data package is determined to be authentic, provide one or more services.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Tamper-proofing and secure identity validation techniques in a transaction processing system and secure electronic payment techniques are disclosed. A tamper-proof transaction processing device is provided and comprises at least two different strength adhesives to secure parts of the device together and a housing comprising at least a first and second protective layer. An electronic component comprising a secure element chip storing unique information relating to the chip is located between the first and second protective layer in the housing. In another aspect, a transaction processing system includes a payment instrument that is configured to approve only negative value and/or zero value transaction requests. Another aspect provides an identity card checking system and method where the identity card is brought into proximity of a data processing device and identity information is displayed on the screen of the data processing device for the period of time while the card is in proximity.

Citations

32 Claims

1. An electronic payment system, comprising:
- a payment instrument that is configured to approve only negative value payment requests and/or zero value payment requests;
  
  a data processing device that is communicatively coupleable via a first communication link to the payment instrument that is configured to approve only negative value payment requests and/or zero value payment requests, the data processing device communicatively coupleable to a server via a second communication link; and
  
  a service dispensing device that is communicatively coupleable to the server via a third communication link;
  
  wherein the data processing device is configured to;
  
  receive a first input including at least a payment amount;
  
  transmit a payment request to the payment instrument, the payment request including at least the payment amount;
  
  receive a first data package generated by the payment instrument, the first data package based on the payment request;
  
  generate a transaction request data package based on the first data package; and
  
  transmit the transaction request data package to the server;
  
  wherein the data processing device and/or the server is configured to determine whether to approve or decline a transaction, and in the event the transaction is approved, the server is configured to generate a trusted data package based on the transaction request data package and transmit the trusted data package to the service dispensing device; and
  
  wherein the service dispensing device is configured to;
  
  receive the trusted data package from the server;
  
  determine the authenticity of the trusted data package; and
  
  in the event the trusted data package is determined to be authentic, provide one or more services.
- View Dependent Claims (2, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29)
- - 2. The system of claim 1, wherein the first data package is generated based on a negative or zero value payment request.
  - 4. The system of claim 1, wherein the payment instrument is secured to a surface of the service dispensing device.
  - 5. The system of claim 4, wherein the payment instrument comprises:
    - a housing comprising at least a first and second protective layer;
      
      an electronic component that is housed by the housing, the component comprising a secure element chip storing unique information relating to the chip;
      
      wherein the electronic component is located between the first and second protective layer, the device further comprising at least two different strength adhesives to secure different parts of the device together, and the first protective layer is secured to the surface of the service dispensing device using a relatively strong adhesive.
  - 6. The system of claim 5, wherein the chip is provided in a first region of the component, and a relatively strong adhesive is used to secure at least part of the chip to at least part of the first protective layer and a relatively weak or no adhesive is used to secure at least part of the first region of the chip to at least part of the second protective layer, such that detachment of the electronic component from the device through the application of a force in a direction away from the first protective layer causes the chip to remain attached to the first protective layer.
  - 7. The system of claim 6, wherein a relatively weak adhesive is used to secure at least part of a region outside the first region of the electronic component to the first protective layer.
  - 8. The system of claim 7, wherein a relatively strong adhesive is used to secure at least part of the region outside the first region of the electronic component to the second protective layer.
  - 9. The system of claim 6, wherein the relatively strong adhesive is Epoxy, Methacrylate or contact bond adhesive, and/or the relatively weak adhesive is removable PermaTack.
  - 10. The system of claim 5, wherein a top surface of the first protective layer includes indicia that tampering of the device has occurred.
  - 11. The system of claim 5, wherein the component is a contactless EMV smart card.
  - 12. The system of claim 1, wherein the server is configured to determine whether to approve or decline a transaction based on the transaction request data package.
  - 13. The system of claim, 1 wherein the trusted data package includes at least a set of instructions that specify at least one parameter relating to the one or more services and/or identification information that includes an image of the registered payment instrument user.
  - 14. The system of claim 1, wherein the first data package includes at least a unique identifier associated with the payment instrument, and wherein the transaction request data package also includes the unique identifier.
  - 15. The system of claim 14, wherein the unique identifier is one of a PAN associated with the payment instrument and a tokenised PAN associated with the payment instrument.
  - 16. The system of claim 14, further comprising a database communicatively coupled to the server, and wherein the server is further configured to:
    - generate a lookup request based on the unique identifier;
      
      query the database using the lookup request; and
      
      receive a response from the database, the response indicating whether the unique identifier was found in the database;
      
      wherein the server generates the trusted data package only in the event that the response indicates that the unique identifier was found in the database.
  - 17. The system of claim 1, wherein the server is further configured to encrypt and sign the trusted data package and to transmit the encrypted signed trusted data package to the service dispensing device and the service dispensing device is configured to:
    - attempt decryption and digital signature checking of the encrypted trusted data package; and
      
      determine the encrypted trusted data package including digital signature to be authentic upon successful decryption of the encrypted trusted data package.
  - 18. The system of claim 1, wherein the data processing device is further configured to:
    - transmit a read request to the payment instrument, the read request indicating that the data processing device requires information relating to a service associated with the payment instrument or the identity of a user of the payment instrument;
      
      receive an identification data package from the payment instrument;
      
      transmit a service information and/or identification information request to the server, the information request based on the identification package;
      
      receive service information and/or identification information from the server, the service information including a cost of the service and the identification information including an image of a registered user of the payment instrument; and
      
      update a user interface of the data processing device with at least the cost of the service or an image of a registered user of the payment instrument.
  - 19. The system of claim 1, wherein the first communication link is a short-range communication link and is one of a WiFi, Bluetooth and Near Field Communication link.
  - 20. The system of claim 1, wherein the second and third communication links are each packet switched and/or circuit switched networks.
  - 21. The system of claim 1, wherein the data processing device is further configured to:
    - initiate identity checking when the payment instrument is brought into close proximity of the data processing device to communicatively couple with the payment instrument via the first communication link;
      
      display identity information of the payment instrument registered owner on a display of the data processing device only while the payment instrument and data processing device are in close proximity, and to remove the identity information of the payment card owner from the display when the payment instrument and data processing device are not in close proximity.
  - 22. The system of claim 21, wherein the identity information includes an image of the payment instrument registered owner.
  - 23. The system of claim 21 wherein the data processing device is operable to:
    - receive a first data package generated by the payment instrument;
      
      generate an identity request data package based on the first data package; and
      
      transmit the identity request data package to a server;
      
      wherein the first data package includes at least a unique identifier associated with the payment instrument, and wherein the identity request data package also includes the unique identifier.
  - 24. The system of claim 23, wherein the unique identifier is one of a PAN associated with the payment instrument and a tokenised PAN associated with the payment instrument.
  - 25. The system of claim 23 wherein the data processing device is further configured to:
    - transmit a read request to the payment instrument, the read request indicating that the data processing device requires information relating to the identity of a user of the payment instrument;
      
      receive the identification information from the server, the identification information including an image of a registered user of the payment instrument; and
      
      update the display of the data processing device with at least an image of a registered user of the payment instrument if the payment instrument and data processing device are communicatively coupled.
  - 26. The system of claim 23, wherein the identity request data package includes an encrypted first data package encrypted using the server'"'"'s public key prior, and includes the data processing device'"'"'s public key.
  - 27. The system of claim 26, wherein the server is configured to:
    - decrypt the identity request data package using its private key paired with the public key used to encrypt the first data package;
      
      obtain payment instrument owner information based on the information in the first data package;
      
      encrypt the payment instrument owner identification information using the data processing device'"'"'s public key; and
      
      transmit the encrypted card owner information as a package to the data processing device; and
      
      wherein the data processing device is configured to;
      
      decrypt the encrypted card owner information package using its private key paired with the public key used to encrypt the card owner information.
  - 28. The system of claim 27, wherein the data processing device is arranged to decrypt the encrypted card owner information in a secure environment.
  - 29. The system of claim 21, wherein the data processing device is a mobile device that includes a native operating system that controls the hardware of the data processing device and the display is a trusted display that is controlled only by a separate system when identity checking is being performed.

3. An electronic payment system, comprising:
- a data processing device that is communicatively coupleable via a first communication link to a payment instrument that is configured to approve only negative value payment requests and/or zero value payment requests, the data processing device communicatively coupleable to a server via a second communication link; and
  
  a service dispensing device that is communicatively coupleable to the server via a third communication link;
  
  wherein the data processing device configured to;
  
  receive a first input including at least a payment amount;
  
  transmit a payment request to the payment instrument, the payment request including at least the payment amount;
  
  receive a first data package generated by the payment instrument, the first data package based on the payment request;
  
  generate a transaction request data package based on the first data package; and
  
  transmit the transaction request data package to the server;
  
  wherein the data processing device and/or the server is configured to determine whether to approve or decline a transaction, and in the event the transaction is approved, the server is configured to generate a trusted data package based on the transaction request data package and transmit the trusted data package to the service dispensing device; and
  
  wherein the service dispensing device is configured to;
  
  receive the trusted data package from the server;
  
  determine the authenticity of the trusted data package; and
  
  in the event the trusted data package is determined to be authentic, provide one or more services, wherein the payment instrument is located proximate the service dispensing device.

30. A method for processing an electronic payment, comprising:
- receiving, at a data processing device, a first input including at least a payment amount;
  
  transmitting a payment request from a data processing device to a payment instrument, the payment request including at least the payment amount, wherein the payment instrument is configured to approve only negative or zero value payment requests;
  
  receiving a first data package generated by the payment instrument, the first data package based on the payment request;
  
  generating a transaction request data package based on the first data package;
  
  transmitting the transaction request data package to a server;
  
  determining, whether to approve or decline the transaction; and
  
  , in the event the transaction is approved;
  
  generating, at the server, a trusted data package based on the transaction request data package;
  
  transmitting the trusted data package to a service dispensing device;
  
  determining, at the service dispensing device, the authenticity of the trusted data package; and
  
  in the event that the trusted data package is determined to be authentic, providing one or more services at the service dispensing device.
- View Dependent Claims (31, 32)
- - 31. The method of claim 30, wherein the first data package is generated based on a negative or zero value payment request.
  - 32. The method of claim 30, further comprising:
    - transmitting a read request to the payment instrument, the read request indicating that the data processing device requires information relating to a service associated with the payment instrument or the identity of a user of the payment instrument;
      
      receiving an identification data package from the payment instrument;
      
      transmitting a service information and/or identification information request to the server, the information request based on the identification package;
      
      receiving service information and/or identification information from the server, the service information including a cost of the service and the identification information including an image of a registered user of the payment instrument; and
      
      updating a user interface of the data processing device with at least the cost of the service or an image of a registered user of the payment instrument.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
WorldPay Limited (Fidelity National Information Services Incorporated)
Original Assignee
WorldPay Limited (Fidelity National Information Services Incorporated)
Inventors
Pickering, Daren Lee, Vokes, Jonathan Stewart, Telford-Reed, Nicholas
Primary Examiner(s)
Le, Thien M

Application Number

US15/417,067
Publication Number

US 20170213218A1
Time in Patent Office

1,244 Days
Field of Search
US Class Current
CPC Class Codes

G06K 19/145   at least one of the further...

G06K 19/18   Constructional details

G06Q 20/3278   RFID or NFC payments by mea...

G06Q 20/341   Active cards, i.e. cards in...

G06Q 20/382   insuring higher security of...

G06Q 20/405   Establishing or using trans...

Tamper-proofing and identity validation in a secure electronic transaction processing system

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

32 Claims

Specification

Solutions

Use Cases

Quick Links

Tamper-proofing and identity validation in a secure electronic transaction processing system

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

32 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links