INTEGRATION OF VERIFICATION TOKENS WITH MOBILE COMMUNICATION DEVICES

US 20120031969A1
Filed: 09/30/2011
Published: 02/09/2012
Est. Priority Date: 05/15/2009
Status: Active Grant

First Claim

Patent Images

1. A verification token comprising:

a peripheral interface adapted to communicatively couple to a peripheral interface of a mobile communications device;

a reader adapted to read identification information from portable consumer devices;

a computer-readable medium;

a data processor electrically coupled to the peripheral interface of the verification token, the reader, and the computer-readable medium;

code embodied on the computer-readable medium that directs the data processor to receive identification information read from a portable consumer device by the reader;

code embodied on the computer-readable medium that directs the data processor to communicate with the mobile communications device by way of the peripheral interface of the verification token and to gain access to a networking facility of the mobile communications device;

code embodied on the computer-readable medium that directs the data processor to transmit by way of the networking facility of the mobile communications device at least a portion of the received identification information to an entity that can provide a device verification value; and

code embodied on the computer-readable medium that directs the data processor to receive, after transmitting said identification information, a device verification value from the entity by way of the networking facility of the mobile communications device; and

wherein the verification token is located within a housing of the mobile communications device.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Apparatuses, methods, and systems pertaining to the verification of portable consumer devices are disclosed. In one implementation, a verification token is communicatively coupled to a computer by a USB connection so as to use the computer'"'"'s networking facilities. The verification token reads identification information from a user'"'"'s portable consumer device (e.g., credit card) and sends the information to a validation entry over a communications network using the computer'"'"'s networking facilities. The validation entity applies one or more validation tests to the information that it receives from the verification token. If a selected number of tests are passed, the validation entity sends a device verification value to the verification token, and optionally to a payment processing network. The verification token may enter the device verification value into a CVV field of a web page appearing on the computer'"'"'s display, or may display the value to the user using the computer'"'"'s display.

Citations

41 Claims

1. A verification token comprising:
- a peripheral interface adapted to communicatively couple to a peripheral interface of a mobile communications device;
  
  a reader adapted to read identification information from portable consumer devices;
  
  a computer-readable medium;
  
  a data processor electrically coupled to the peripheral interface of the verification token, the reader, and the computer-readable medium;
  
  code embodied on the computer-readable medium that directs the data processor to receive identification information read from a portable consumer device by the reader;
  
  code embodied on the computer-readable medium that directs the data processor to communicate with the mobile communications device by way of the peripheral interface of the verification token and to gain access to a networking facility of the mobile communications device;
  
  code embodied on the computer-readable medium that directs the data processor to transmit by way of the networking facility of the mobile communications device at least a portion of the received identification information to an entity that can provide a device verification value; and
  
  code embodied on the computer-readable medium that directs the data processor to receive, after transmitting said identification information, a device verification value from the entity by way of the networking facility of the mobile communications device; and
  
  wherein the verification token is located within a housing of the mobile communications device.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20)
- - 2. The verification token of claim 1, wherein the peripheral interface of the verification token comprises a universal serial bus connection.
  - 3. The verification token of claim 1, wherein the identification information is encrypted and includes an account number of a portable consumer device and at least one of the following:
    - a digital fingerprint of a magnetic stripe of the portable consumer device, or a variable datum that varies each time the portable consumer device is read for its identification information.
  - 4. The verification token of claim 1, wherein the code that directs the data processor to communicate with a mobile communications device comprises code that directs the data processor to send a device driver to the mobile communications device and an instruction to install the device driver in the operating system of the mobile communications device, wherein the device driver enables the mobile communications device to recognize the verification token and communicate with the verification token;
    - wherein the code that directs the data processor to gain access to a networking facility of the mobile communications device comprises a function call to a network services module of the operating system of the mobile communications device.
  - 5. The verification token of claim 1 further comprising a serial number and an encryption key, and wherein the verification token transmits the serial number and a message encrypted by the encryption key to the entity, the serial number and the encryption key being uniquely assigned to the verification token.
  - 6. The verification token of claim 1, further comprising:
    - code embodied on the computer-readable medium that directs the data processor to locate a browser web page on the mobile communications device that has a form field for a device verification value, and to enter the device verification value received from the entity in the form field.
  - 7. The verification token of claim 1, further comprising:
    - code embodied on the computer-readable medium that directs the data processor to locate a browser web page on the mobile communications device that has a hidden field for a device verification value, and to enter the device verification value received from the entity in the hidden field.
  - 8. The verification token of claim 1, further comprising:
    - code embodied on the computer-readable medium that directs the data processor to display the device verification value received from the entity to the user on a display of the mobile communications device.
  - 9. The verification token of claim 1, wherein the code that directs the data processor to receive the device verification value from the entity further directs the data processor to receive a dynamic account number from the entity.
  - 10. The verification token of claim 9, further comprising:
    - code embodied on the computer-readable medium that directs the data processor to locate a browser web page on the mobile communications device that has a first form field for an account number and a second form field for a device verification value, and to fill the first field with the dynamic account number and the second field with the device verification value received from the entity.
  - 11. The verification token of claim 9, further comprising:
    - code embodied on the computer-readable medium that directs the data processor to display the dynamic account number and the device verification value received from the entity to the user on a display device of the mobile communications device.
  - 12. The verification token of claim 1, wherein the code that directs the data processor to receive the device verification value from the entity further directs the data processor to receive address information from the entity;
    - andwherein the verification token further comprises code embodied on the computer-readable medium that directs the data processor to locate a browser web page on the mobile communications device that has a plurality of form fields for address information, and to fill said fields with respective portions of the address information received from the entity.
  - 13. The verification token of claim 1, further comprising the code that directs the data processor to obtain address information from the computer-readable medium;
    - andcode embodied on the computer-readable medium that directs the data processor to locate a browser web page on the mobile communications device that has a plurality of form fields for address information, and to fill said fields with respective portions of the obtained address information.
  - 14. The verification token of claim 1, further comprising:
    - code embodied on the computer-readable medium that directs the data processor to prompt a user to enter a password on a keyboard of the mobile communications device, to read a password entered by the user, and to compare the entered password against a stored password embodied on the computer-readable medium; and
      
      code embodied on the computer-readable medium that directs the data processor to prevent identification information from at least being read or sent when the read password is not the same as the stored password.
  - 15. The verification token of claim 1, further comprising:
    - code embodied on the computer-readable medium that directs the data processor to establish, using the networking facility of the mobile communications device, a communications session with the entity that can provide a device verification value; and
      
      code embodied on the computer-readable medium that directs the data processor to transmit the at least a portion of the received identification information using the established communications session.
  - 16. The verification token of claim 15, wherein the code that directs the data processor to establish a communications session with the entity using the networking facility of the mobile communications device comprises one or more function calls to an application program interface of a network services module of the mobile communications device, the one or more function calls providing a universal resource identifier of an entity and an instruction to establish a communications session with the entity, the universal resource identifier being stored in the computer-readable medium or read from the portable consumer device.
  - 17. The verification token of claim 16, wherein the communications session is established before the data processor reads device data from the reader.
  - 18. The verification token of claim 16, further comprising code that directs the data processor to select one of a number of universal resource identifiers stored in the token based on a bank number provided in the read identification information or embedded in the account number of the read identification information.
  - 19. The verification token of claim 1, further comprising code that directs the processor to encrypt the at least a portion of the identification information prior to transmitting it to the entity that can provide a device verification value.
  - 20. The verification token of claim 1:
    - wherein the received identification information read by the card reader includes an account number and a first device verification value provided by the portable consumer device;
      
      wherein the at least a portion of the received identification information transmitted from the verification token to the entity comprises the account number and the first device verification value;
      
      wherein the device verification token received by the verification token from the entity is a second device verification value that is different from the first device verification value; and
      
      wherein the second device verification value is configured to be enterable in a card-verification value field of a merchant web page.

21. A mobile communication device comprising:
- a housing;
  
  a first processor disposed within the housing;
  
  a first memory unit disposed within the housing;
  
  an input-output controller coupled to the first processor;
  
  a verification token disposed within the housing and communicatively coupled to the input-output controller, the verification token comprising a second processor separate from the first processor, a second memory unit separate from the first memory unit, and a card reader coupled to the second processor, the card reader configured to obtain information from a portable consumer device, the verification token receiving identification information from a portable consumer device by way of the card reader, transmitting at least a portion of the received identification information to an entity that can provide a device verification value by way of the first processor, and receiving a device verification value from the entity by way of the first processor; and
  
  a battery that supplies power to the verification token.
- View Dependent Claims (22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36)
- - 22. The device of claim 21, wherein the battery also supplies power to at least one of the first processor, the first memory, and the input-output controller.
  - 23. The device of claim 21, wherein the card reader has a first operating state to detect the presence of a portable consumer device within a selected distance of the card reader, and a second operating state to obtain information from a portable consumer device, wherein the card reader moves from its first operating state to its second operating state when the presence of a portable consumer device is detected, and wherein the second operating state of the card reader consumes more power from the battery than the first operating state of the card reader.
  - 24. The device of claim 23, wherein the second processor has a first operating state where information from a portable consumer device is not processed, and a second operating state where information from a portable consumer device is processed, wherein the second processor moves from its first operating state to its second operating state in response to information being obtained from a portable consumer device by the card reader, and wherein the second operating state of the second processor consumes more power from the battery than the first operating state of the second processor.
  - 25. The device of claim 24, wherein the second processor is coupled to the battery during the first and second operating states, wherein the device further comprises clocking circuitry that drives the second processor with a first clock signal during the first operating state and with a second clock signal during the second operating state, and wherein the second clock signal has a higher clocking frequency than the first clock signal.
  - 26. The device of claim 24, wherein the second processor is coupled to the battery during the first and second operating states, wherein the device further comprises clocking circuitry that drives the second processor with a clock signal during the second operating state and withholds the clock signal to the second processor during the first operating state.
  - 27. The device of claim 23, wherein the second processor has a first operating state where information from a portable consumer device is not processed, and a second operating state where information from a portable consumer device is processed, wherein the second processor moves from its first operating state to its second operating state when the presence of a portable consumer device is detected, and wherein the second operating state of the second processor consumes more power from the battery than the first operating state of the second processor.
  - 28. The device of claim 27, wherein the second processor is coupled to the battery during the first and second operating states, wherein the device further comprises clocking circuitry that drives the second processor with a first clock signal during the first operating state and with a second clock signal during the second operating state, and wherein the second clock signal has a higher clocking frequency than the first clock signal.
  - 29. The device of claim 27, wherein the second processor is coupled to the battery during the first and second operating states, wherein the device further comprises clocking circuitry that drives the second processor with a clock signal during the second operating state and withholds the clock signal to the second processor during the first operating state.
  - 30. The device of claim 21, further comprising:
    - a display screen;
      
      code embodied on the first memory that directs the first data processor to present a web browser on the display screen, the web browser handling one or more browser sessions;
      
      code embodied on the first memory that directs the first data processor to detect a browser session having a selected indication and to send a activation signal to the verification token when the selected indication is detected;
      
      wherein the verification token has a first operating state where information from a portable consumer device is not obtained, and a second operating state where information from a portable consumer device is obtained and processed, and wherein the verification token enters its second operating state in response to receiving the activation signal, wherein the second operating state of the verification token consumes more power from the battery than the first operating state of the verification token.
  - 31. The device of claim 30, wherein the selected indication comprises an indication that information from a portable consumer device is being requested.
  - 32. The device of claim 30, wherein the selected indication comprises a web page having a field to accept a personal account number of a portable consumer device.
  - 33. The device of claim 30, wherein the selected indication comprises a browser session being conducted with a cryptographic protocol.
  - 34. The device of claim 33, wherein the cryptographic protocol comprises at least one of the Transport Layer Security protocol or the Secure Sockets Layer protocol.
  - 35. The device of claim 30, wherein the selected indication comprises a selected tag of a web page programming language.
  - 36. The device of claim 21, further comprising:
    - a display screen;
      
      code embodied on the first memory that directs the first data processor to display a first icon on the display screen;
      
      code embodied on the first memory that directs the first data processor to detect a user'"'"'s selection of the first icon and in response there to send an activation signal to the verification token; and
      
      wherein the verification token has a first operating state where information from a portable consumer device is not obtained, and a second operating state where information from a portable consumer device is obtained and processed, wherein the verification token enters its second operating state in response to receiving the activation signal, and wherein the second operating state of the verification token consumes more power from the battery than the first operating state of the verification token.

37. A mobile communication device comprising:
- a housing;
  
  a first processor disposed within the housing;
  
  a first memory unit disposed within the housing;
  
  an input-output controller coupled to the first processor;
  
  a card reader configured to obtain information from a portable consumer device;
  
  a second processor disposed within the housing and communicatively coupled to the input-output controller and the card reader, the second processor being separate from the first processor and configured to process information from portable consumer devices;
  
  a battery that supplies power to the first and second processors, the first memory unit, and the card reader.
- View Dependent Claims (38, 39, 40)
- - 38. The device of claim 37, wherein the second processor has a first operating state where information from a portable consumer device is not processed, and a second operating state where information from a portable consumer device is processed, wherein the second processor moves from its first operating state to its second operating state when the presence of a portable consumer device is detected, and wherein the second operating state of the second processor consumes more power from the battery than the first operating state of the second processor.
  - 39. The device of claim 38, wherein the second processor is coupled to the battery during the first and second operating states, wherein the device further comprises clocking circuitry that drives the second processor with a first clock signal during the first operating state and with a second clock signal during the second operating state, and wherein the second clock signal has a higher clocking frequency than the first clock signal.
  - 40. The device of claim 38, wherein the second processor is coupled to the battery during the first and second operating states, wherein the device further comprises clocking circuitry that drives the second processor with a clock signal during the second operating state and withholds the clock signal to the second processor during the first operating state.

41-49. -49. (canceled)

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Visa International Service Association (Visa, Inc.)
Original Assignee
Visa International Service Association (Visa, Inc.)
Inventors
Hammad, Ayman

Granted Patent

US 8,534,564 B2
Time in Patent Office

Days
Field of Search
US Class Current

235/380
CPC Class Codes

G06F 21/34   involving the use of extern...

G06F 2221/2129   Authenticate client device ...

G06Q 20/12   specially adapted for elect...

G06Q 20/341   Active cards, i.e. cards in...

G06Q 20/352   Contactless payments by cards

G06Q 20/385   using an alias or single-us...

G06Q 20/40   Authorisation, e.g. identif...

G06Q 20/4018   using the card verification...

G06Q 20/42   Confirmation, e.g. check or...

G06Q 20/425   using two different network...

H04L 2209/12   Details relating to cryptog...

H04L 2209/24   Key scheduling, i.e. genera...

H04L 2209/805   Lightweight hardware, e.g. ...

H04L 63/0853   using an additional device,...

H04L 63/126   the source of the received ...

H04L 9/10   with particular housing, ph...

H04L 9/14   using a plurality of keys o...

H04L 9/3231   Biological data, e.g. finge...

H04L 9/3234   involving additional secure...

INTEGRATION OF VERIFICATION TOKENS WITH MOBILE COMMUNICATION DEVICES

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

41 Claims

Specification

Solutions

Use Cases

Quick Links

INTEGRATION OF VERIFICATION TOKENS WITH MOBILE COMMUNICATION DEVICES

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

41 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links