TOKENIZATION IN MOBILE ENVIRONMENTS

US 20130212666A1
Filed: 02/06/2013
Published: 08/15/2013
Est. Priority Date: 02/10/2012
Status: Active Grant

First Claim

Patent Images

1. A method for tokenizing data, comprising:

identifying data for communication by a mobile device;

retrieving, by the mobile device, device information and session information, the device information comprising information associated with the mobile device and the session information comprising information associated with a communication session by the mobile device;

identifying one or more tokenization parameters based on the retrieved device information and the retrieved session information, the tokenization parameters identifying properties of a tokenization operation;

tokenizing the identified data based on the identified tokenization parameters; and

transmitting the tokenized data to a communication system.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Data can be protected in mobile and payment environments through various tokenization operations. A mobile device can tokenize communication data based on device information and session information associated with the mobile device. A payment terminal can tokenize payment information received at the payment terminal during a transaction based on transaction information associated with the transaction. Payment data tokenized first a first set of token tables and according to a first set of tokenization parameters by a first payment entity can be detokenized or re-tokenized with a second set of token tables and according to a second set of tokenization parameters. Payment information can be tokenized and sent to a mobile device as a token card based on one or more selected use rules, and a user can request a transaction based on the token card. The transaction can be authorized if the transaction satisfies the selected use rules.

Citations

20 Claims

1. A method for tokenizing data, comprising:
- identifying data for communication by a mobile device;
  
  retrieving, by the mobile device, device information and session information, the device information comprising information associated with the mobile device and the session information comprising information associated with a communication session by the mobile device;
  
  identifying one or more tokenization parameters based on the retrieved device information and the retrieved session information, the tokenization parameters identifying properties of a tokenization operation;
  
  tokenizing the identified data based on the identified tokenization parameters; and
  
  transmitting the tokenized data to a communication system.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17)
- - 2. The method of claim 1, wherein the identified data comprises communication data entered at the mobile device by a user of the mobile device.
  - 3. The method of claim 1, wherein the identified data comprises authenticating data identifying the mobile device or a user of the mobile device.
  - 4. The method of claim 1, wherein the retrieved device information comprises a phone number of the mobile device.
  - 5. The method of claim 1, wherein the retrieved device information comprises a SIM card number of the mobile device.
  - 6. The method of claim 1, wherein the retrieved device information comprises a serial number of the mobile device.
  - 7. The method of claim 1, wherein the retrieved device information comprises an identity of a user of the mobile device.
  - 8. The method of claim 1, wherein the retrieved session information comprises a count of communication sessions between the mobile device and the communication system.
  - 9. The method of claim 1, wherein the retrieved session information comprises a date and time of a previous communication session between the mobile device and the communication system.
  - 10. The method of claim 1, wherein an identified tokenization parameter comprises an identity of one or more token tables stored at the mobile device.
  - 11. The method of claim 10, further comprising:
    - retrieving the identified one or more token tables; and
      
      tokenizing the identified data using the retrieved one or more token tables.
  - 12. The method of claim 1, wherein an identified tokenization parameter comprises a seed value for use in generating one or more token tables.
  - 13. The method of claim 12, further comprising:
    - generating one or more token tables using the seed value; and
      
      tokenizing the identified data using the generated one or more token tables.
  - 14. The method of claim 1, wherein an identified tokenization parameter comprises a number of tokenization iterations.
  - 15. The method of claim 1, wherein an identified tokenization parameter comprises an IV.
  - 16. The method of claim 1, wherein an identified tokenization parameter comprises an encryption key, and further comprising:
    - encrypting the tokenized data prior to transmitting the tokenized data to the communication system.
  - 17. The method of claim 1, wherein the communication system specifies at least one communication parameter.

18. A mobile device for tokenizing data, configured to:
- identify data for communication;
  
  retrieve device information and session information, the device information comprising information associated with the mobile device and the session information comprising information associated with a communication session by the mobile device;
  
  identify one or more tokenization parameters based on the retrieved device information and the retrieved session information, the tokenization parameters identifying properties of a tokenization operation;
  
  tokenize the identified data based on the identified tokenization parameters; and
  
  transmit the tokenized data to a communication system.

19. A method for tokenizing data, comprising:
- identifying data for communication by a mobile device;
  
  retrieving, by the mobile device, device information comprising information associated with the mobile device;
  
  accessing one or more token tables based on the retrieved device information;
  
  tokenizing the identified data using the accessed token tables; and
  
  transmitting the tokenized data to a communication system.

20. A mobile device for tokenizing data, configured to:
- identify data for communication;
  
  retrieve device information comprising information associated with the mobile device;
  
  access one or more token tables based on the retrieved device information;
  
  tokenize the identified data using the accessed token tables; and
  
  transmit the tokenized data to a communication system.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Protegrity US Holding LLC
Original Assignee
Protegrity USA, Inc. (Xcelera Inc.)
Inventors
Mattsson, Ulf, Rozenberg, Yigal

Granted Patent

US 8,893,250 B2
Time in Patent Office

Days
Field of Search
US Class Current

726/9
CPC Class Codes

G06F 21/606   by securing the transmissio...

G06F 21/6245   Protecting personal data, e...

G06Q 20/20   Point-of-sale [POS] network...

G06Q 20/322   Aspects of commerce using m...

G06Q 20/3223   Realising banking transacti...

G06Q 20/326   Payment applications instal...

G06Q 20/34   using cards, e.g. integrate...

G06Q 20/367   involving electronic purses...

G06Q 20/382   insuring higher security of...

G06Q 20/3821   Electronic credentials

G06Q 20/3823   combining multiple encrypti...

G06Q 20/3829   involving key management

G06Q 20/385   using an alias or single-us...

G06Q 20/4014   Identity check for transact...

G06Q 20/405   Establishing or using trans...

G06Q 2220/00   Business processing using c...

H04L 2209/56   Financial cryptography, e.g...

H04L 63/0428   wherein the data content is...

H04W 12/02   Protecting privacy or anony...

H04W 12/03   Protecting confidentiality,...

TOKENIZATION IN MOBILE ENVIRONMENTS

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

TOKENIZATION IN MOBILE ENVIRONMENTS

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links