Integration of Payment Capability into Secure Elements of Computers
First Claim
1. A method comprising:
- receiving, at a secure element of a computer, a real account number and at least one of an expiration date, a card verification value, or a billing ZIP code of user-specific payment information;
obtaining an identifier for the secure element;
sending the received real account number, the received at least one of an expiration date, a card verification value, or a billing ZIP code, and the obtained identifier for the secure element to a validation entity;
receiving, in response, a pseudo account number from the validation entity, the received pseudo account number being different from the real account number of the user-specific payment information; and
storing, in a memory of the secure element, the received pseudo account number.
1 Assignment
0 Petitions
Accused Products
Abstract
Methods, secure elements, validation entities, and computer program products for effecting secure communication of payment information to merchants for Internet-based purchases. Payment information for a user'"'"'s real payment information is installed in a secure element of a computer, the payment information may comprise a pseudo PAN number for the portable consumer device provided by a validation entity. The secure element is shielded from the computer'"'"'s operating system to thwart hacker attacks. The user accesses the secure element to make a purchase. In response, the secure element contacts the validation entity with the pseudo account number, and in response obtains dynamic payment information that the secure element can used to effect the payment. The dynamic payment information comprises an account number that is different from the pseudo PAN, and which has at least one difference which respect to the user'"'"'s real payment information.
329 Citations
19 Claims
-
1. A method comprising:
-
receiving, at a secure element of a computer, a real account number and at least one of an expiration date, a card verification value, or a billing ZIP code of user-specific payment information; obtaining an identifier for the secure element; sending the received real account number, the received at least one of an expiration date, a card verification value, or a billing ZIP code, and the obtained identifier for the secure element to a validation entity; receiving, in response, a pseudo account number from the validation entity, the received pseudo account number being different from the real account number of the user-specific payment information; and storing, in a memory of the secure element, the received pseudo account number. - View Dependent Claims (2, 3, 4)
-
-
5. A computer program product embodied on a tangible non-transitory computer-readable medium to be executed by a secure element of a computer, the product comprising:
-
code that directs a data processor to receive a real account number and at least one of an expiration date, a card verification value, or a billing ZIP code of user-specific payment information; code that directs a data processor to obtain an identifier for the secure element; code that directs a data processor to send the received real account number, the received at least one of an expiration date, a card verification value, or a billing ZIP code, and the obtained identifier for the secure element to a validation entity; code that directs a data processor to receive, in response, a pseudo account number from the validation entity, the received pseudo account number being different from the real account number of the user-specific payment information; and code that directs a data processor to store, in a memory of the secure element, the received pseudo account number. - View Dependent Claims (6, 7, 8)
-
-
9. A method comprising:
-
receiving, at a validation entity server, a request from a secure element of a computer to provide a pseudo account number, the request including an identifier of the secure element, and a real account number and at least one of an expiration date, a card verification value, or a billing ZIP code of an instance of user-specific payment information; applying at least one validation test pertaining to the received request; sending, if the at least one validation test is passed, a pseudo account number to the secure element; and storing the pseudo account number with an indication of at least the received real account number. - View Dependent Claims (10, 11, 12, 13)
-
-
14. A validation entity comprising:
-
a data processor; a networking facility coupled to the processor; a computer-readable medium coupled to the processor; and a computer program product embodied on the computer-readable medium, the computer program product comprising; code that directs the data processor to receive a request from a secure element of a computer to provide a pseudo account number, the request including an identifier of the secure element, and a real account number and at least one of an expiration date, a card verification value, or a billing ZIP code of an instance of user-specific payment information; code that directs the data processor to apply at least one validation test pertaining to the received request for a pseudo account number; code that directs the data processor to send, if the at least one validation test is passed, a pseudo account number to the secure element; and code that directs the data processor to store the pseudo account number with an indication of at least the received real account number. - View Dependent Claims (15, 16, 17, 18, 19)
-
Specification