Mobile Payment Application Provisioning And Personalization on a Mobile Device
First Claim
1. A method comprising:
- receiving, by a server computer, a provisioning request for provisioning an account on a mobile device, the provisioning request including encrypted payment account information, the encrypted payment account information encrypted using a first secure element key associated with a security domain of a secure element provided on the mobile device, the first secure element key being one of a secure element key pair, and the secure element key pair being unique to the secure element;
decrypting, by the server computer, the encrypted payment account information using a second secure element key of the secure element key pair;
validating, by the server computer, the mobile device using the second secure element key of the secure element key pair; and
provisioning, by the server computer, the account on the mobile device using the decrypted payment account information.
1 Assignment
0 Petitions
Accused Products
Abstract
Embodiments of the present invention are directed to systems and methods for providing a central entity that can provision mobile payment applications on mobile communication devices and personalize the mobile payment applications with consumer and account information. The personalization of the mobile payment application on the mobile communication device may include provisioning a payment account on the mobile payment application. The central entity may provision the account on the mobile payment application without interacting with the issuer during the provisioning of the account. The central entity may provision the account on the mobile communication device by decrypting, using a secure element key, encrypted payment account information received from the mobile communication device. The payment account information may be encrypted by a secure element of the mobile communication device using the same secure element key.
46 Citations
20 Claims
-
1. A method comprising:
-
receiving, by a server computer, a provisioning request for provisioning an account on a mobile device, the provisioning request including encrypted payment account information, the encrypted payment account information encrypted using a first secure element key associated with a security domain of a secure element provided on the mobile device, the first secure element key being one of a secure element key pair, and the secure element key pair being unique to the secure element; decrypting, by the server computer, the encrypted payment account information using a second secure element key of the secure element key pair; validating, by the server computer, the mobile device using the second secure element key of the secure element key pair; and provisioning, by the server computer, the account on the mobile device using the decrypted payment account information. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A server computer comprising:
-
a processor; and a non-transitory computer readable medium coupled to the processor, the computer readable medium comprising code, that when executed by the processor, causes the processor to; receive a provisioning request for provisioning an account on a mobile device, the provisioning request including encrypted payment account information, the encrypted payment account information encrypted using a first secure element key associated with a security domain of a secure element provided on the mobile device, the first secure element key being one of a secure element key pair, and the secure element key pair being unique to the secure element; decrypt the encrypted payment account information using a second secure element key of the secure element key pair; validate the mobile device using the second secure element key of the secure element key pair; and provision the account on the mobile device using the decrypted payment account information. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
-
17. A method comprising:
-
encrypting, by a mobile device, payment account information using a first secure element key associated with a security domain of a secure element provided on the mobile device, the first secure element key being one of a secure element key pair, and the secure element key pair being unique to the secure element; generating, by the mobile device, a provisioning request for provisioning an account on the mobile device, the provisioning request including the encrypted payment account information; sending, by the mobile device, the provisioning request to a server computer; and receiving, by the mobile device, a script provisioning the account on the mobile device, wherein the script is generated by the server computer upon the server computer decrypting the encrypted payment account information using a second secure element key of the secure element key pair and validating the mobile device using the second secure element key of the secure element key pair. - View Dependent Claims (18, 19, 20)
-
Specification