Two-Way, Token-Based Validation for NFC-Enabled Transactions
First Claim
1. A system for facilitating the two-way, token-based validation of a near field communications (NFC)-enabled transaction, the system comprising:
- at least one web server capable of providing a graphical user interface, via a communications network, to a plurality of NFC-enabled mobile devices, and communicatively coupled, via said communications network, to a plurality of validator devices; and
at least one application server, coupled to said at least one web server, said at least one application server comprising;
a time slot database comprising a plurality of time slots for a plurality of days;
a time slot key generator service capable of generating a plurality of time slot keys, each corresponding to one of said plurality of time slots;
a time slot keys database comprising said plurality of time slot keys generated by said time slot key generator service;
a registration service capable of generating a plurality of unique identification numbers, each corresponding to one of said plurality of NFC-enabled mobile devices;
an identification database comprising said plurality of unique identification numbers generated by said registration service; and
a token generation module capable of generating a plurality of time-based tokens, each is generated using one of said plurality of time slot keys and one of said plurality of unique identification numbers;
wherein said at least one application server facilitates a transaction when one of said plurality of NFC-enabled mobile devices is presented to one of said plurality of validator devices, wherein said transaction is secured by a two-way authentication based upon one of said plurality of time-based tokens.
1 Assignment
0 Petitions
Accused Products
Abstract
Systems, methods and computer program products that facilitate the token-based validation of contactless payment and other transactions involving NFC-enabled mobile devices are disclosed. In an aspect, the system includes a server and field-located validator devices to which consumers can present their NFC-enabled mobile devices in order to validate their purchases/payments. In one aspect, a consumer can purchase an admission ticket to a public transport system using their mobile device which communicates directly with the server to receive a token. The user can later present their mobile device to the validator device to actuate a turnstile. Advantageously, the validator devices do not have to be in real-time communication with the server, and limit the duration between the mobile device'"'"'s request for a token and the time by which the token expires. Increased security is provided through two-way, token-based validation between the mobile and validator devices.
-
Citations
24 Claims
-
1. A system for facilitating the two-way, token-based validation of a near field communications (NFC)-enabled transaction, the system comprising:
-
at least one web server capable of providing a graphical user interface, via a communications network, to a plurality of NFC-enabled mobile devices, and communicatively coupled, via said communications network, to a plurality of validator devices; and at least one application server, coupled to said at least one web server, said at least one application server comprising; a time slot database comprising a plurality of time slots for a plurality of days; a time slot key generator service capable of generating a plurality of time slot keys, each corresponding to one of said plurality of time slots; a time slot keys database comprising said plurality of time slot keys generated by said time slot key generator service; a registration service capable of generating a plurality of unique identification numbers, each corresponding to one of said plurality of NFC-enabled mobile devices; an identification database comprising said plurality of unique identification numbers generated by said registration service; and a token generation module capable of generating a plurality of time-based tokens, each is generated using one of said plurality of time slot keys and one of said plurality of unique identification numbers; wherein said at least one application server facilitates a transaction when one of said plurality of NFC-enabled mobile devices is presented to one of said plurality of validator devices, wherein said transaction is secured by a two-way authentication based upon one of said plurality of time-based tokens. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method for facilitating the two-way validation of electronic tickets in order to provide a person access to a system, good, service or location, the method comprising the steps of:
-
generating, by a server, at least one cryptographic key; sending, by said server and via a communications network, said cryptographic key to a plurality of validator devices; generating, by said server and in response to receiving a request for a ticket from a mobile device, an electronic ticket based on said cryptographic key; sending, by said server, said electronic ticket to said mobile device; receiving, at one of said plurality of validator devices, authentication data from said mobile device as a result of said mobile device being brought within close proximity of said one of said plurality of validator devices by the person, wherein said authentication data is based on said cryptographic key; validating, by said one of said plurality of validator devices, said authentication data received from said mobile device based on said cryptographic key; sending, by said one of said plurality of validator devices in response to validating said authentication data, a request for said electronic ticket; receiving, by said one of said plurality of validator devices, an electronic transmission based upon said electronic ticket from said mobile device when said mobile device authenticates said request based on said cryptographic key; validating, by said one of said plurality of validator devices in response to said electronic transmission, said electronic ticket based on said cryptographic key; and providing the person access to the system, good, service or location in response to validating said electronic ticket. - View Dependent Claims (10, 11, 12)
-
-
13. A method for generating and validating electronic tokens, the method comprising the steps of:
-
associating, by a server, each one of a plurality of cryptographic keys with one of a plurality of time periods; transmitting, by said server, said plurality of cryptographic keys to each of a plurality of disparately-located validator devices; generating, by said server in response to receiving a request from a mobile device during one of said plurality of time periods, a first electronic token, wherein said first electronic token is based upon one of said plurality of cryptographic keys associated with one of said plurality of time periods relevant to when said request was received; sending, by said server, said first electronic token to said mobile device; receiving, at one of said plurality of validator devices, a transmission of said first electronic token from said mobile device, wherein said transmission results from bringing said mobile device within close proximity to said one of said plurality of validator devices; and validating, by said one of said plurality of validator devices, said first electronic token based on said one of said plurality of cryptographic keys associated with said one of said plurality of time periods. - View Dependent Claims (14, 15, 16, 17)
-
-
18. One or more computer storage media having stored thereon multiple instructions that implement a two-way, token-based validation of contactless transaction component by, when executed by one or more processors of a computing device, causing the one or more processors to:
-
provide a graphical user interface, via a communications network, to a plurality of NFC-enabled mobile devices; store a plurality of time slots for a plurality of days in a time slot database; generate a plurality of time slot keys, each corresponding to one of said plurality of time slots; store said plurality of time slot keys in a time slot keys database; generate a plurality of unique identification numbers, each corresponding to one of said plurality of NFC-enabled mobile devices; store said plurality of unique identification numbers in an identification database; generate a plurality of time-based tokens, each is generated using one of said plurality of time slot keys and one of said plurality of unique identification numbers; and facilitate a transaction when one of said plurality of NFC-enabled mobile devices is presented to one of said plurality of validator devices, wherein said transaction is secured by a two-way authentication based upon one of said plurality of time-based tokens. - View Dependent Claims (19, 20, 21, 22, 23, 24)
-
Specification