MODULE ID BASED ENCRYPTION FOR FINANCIAL TRANSACTIONS
First Claim
1. A smart payment card module, comprising:
- a communication module coupled to at least one communication network;
a processing module coupled to the communication module;
memory coupled to the processing module; and
wherein the processing module, in cooperation with the communication module, is operable to;
receive and store a first encryption key;
store payment account information for a user payment account encrypted with the first encryption key;
detect that the smart payment card module has been communicatively coupled to a media device;
identify an ID of the media device;
communicate with a remote server using the first encryption key to create a secure tunnel to initiate a key rotation to establish a second encryption key that is based on the ID of the media device;
encrypt the payment account information with the second encryption key; and
store the payment account information encrypted with the second encryption key.
1 Assignment
0 Petitions
Accused Products
Abstract
A server is operable to receive a media device identifying number (ID) and establish an association between a media device and a payment account and, in one embodiment, supports at least one of payment authorization and payment clearing based at least in part on the media device ID and the payment account. A network and system includes a payment card processor server that is operable to receive a payment authorization request and to determine if an authorized media device generated a purchase selection message and to determine to approve a received payment authorization request based, in part, if the media device was authorized for the purchase selection based upon a received media device ID. The system is further operable to perform a key rotation to protect payment account information.
135 Citations
24 Claims
-
1. A smart payment card module, comprising:
-
a communication module coupled to at least one communication network; a processing module coupled to the communication module; memory coupled to the processing module; and wherein the processing module, in cooperation with the communication module, is operable to; receive and store a first encryption key; store payment account information for a user payment account encrypted with the first encryption key; detect that the smart payment card module has been communicatively coupled to a media device; identify an ID of the media device; communicate with a remote server using the first encryption key to create a secure tunnel to initiate a key rotation to establish a second encryption key that is based on the ID of the media device; encrypt the payment account information with the second encryption key; and store the payment account information encrypted with the second encryption key. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method for key rotation, comprising:
-
receiving and storing a first encryption key; storing payment account information for a user payment account; detecting that the smart payment card module has been communicatively coupled to a media device for a first time; identifying an ID of the media device; creating a secure tunnel with a payment card company using the first encryption key to initiate a key rotation to establish a second encryption key that is based on the ID of the media device; encrypting the payment account information with the second encryption key; and storing the encrypted payment account information. - View Dependent Claims (9, 10, 11, 12, 13, 14, 15, 16, 17)
-
-
18. A method in a media device, comprising:
-
determining that a smart card has been communicatively coupled to the media device; communicating with the smart card through a smart card interface; receiving a first encryption key from the smart card; establishing a first secure communication tunnel with a first remote server using the first encryption key; receiving a second encryption key through the first secure communication tunnel with the first remote server and providing the second encryption key to the smart card; encrypting the payment account information with the second encryption key; receiving a purchase selection indication from a remote control device; retrieving payment account information from the smart card wherein the payment account information is encrypted with the second encryption key; establishing a second secure communication tunnel with a second remote server using at least one of the second encryption key and a third encryption key; and transmitting the encrypted payment account information. - View Dependent Claims (19, 20, 21, 22, 23, 24)
-
Specification