ARTICLE AND METHOD FOR TRANSACTION IRREGULARITY DETECTION

US 20150100497A1
Filed: 10/03/2013
Published: 04/09/2015
Est. Priority Date: 10/03/2013
Status: Active Grant

First Claim

Patent Images

1. A method for irregularity detection within a previous security-device transaction between a security-device and a previous device, comprising:

receiving a last-reported transaction counter value associated with a last-reported security-device transaction with the security-device;

receiving a previous device identifier associated with the previous security-device transaction with the security-device;

receiving a currently-reported transaction counter value associated with a current security-device transaction with the security-device; and

associating an irregularity with the previous device if the current transaction counter value differs from the last-reported transaction counter value by other than an increment.

View all claims

10 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Articles and methods for transaction irregularity detection are disclosed. In one example, the article discloses: a memory including a record of a last-reported security-device transaction with the security-device, and including a last-reported transaction counter value associated with the last-reported security-device transaction; a previous device identifier; a record of the previous security-device transaction with the security-device, and including the previous device identifier associated with the previous security-device transaction; a record of a current security-device transaction with the security-device, and including a currently-reported transaction counter value associated with the current security-device transaction; and a back-end device tagging the previous device with fraud if the current transaction counter value differs from the last-reported transaction counter value by other than an increment. In one example, the method discloses: a transaction irregularity detection process based on the article.

Citations

20 Claims

1. A method for irregularity detection within a previous security-device transaction between a security-device and a previous device, comprising:
- receiving a last-reported transaction counter value associated with a last-reported security-device transaction with the security-device;
  
  receiving a previous device identifier associated with the previous security-device transaction with the security-device;
  
  receiving a currently-reported transaction counter value associated with a current security-device transaction with the security-device; and
  
  associating an irregularity with the previous device if the current transaction counter value differs from the last-reported transaction counter value by other than an increment.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The method of claim 1, further comprising:
    - decrypting the previous device identifier received from the security-device with a key that is stored on the security-device or derived from another key stored on the security-device.
  - 3. The method of claim 2:
    - wherein the key is used as a message authentication code key.
  - 4. The method of claim 2:
    - wherein the key is not discernible to the previous device.
  - 5. The method of claim 1, further comprising:
    - transmitting a claim confirmation if the current transaction counter value differs from the last-reported transaction counter value by the increment, whereby the previous security-device transaction is the last-reported security-device transaction.
  - 6. The method of claim 5:
    - wherein the previous device is a merchant security-device terminal associated with a merchant; and
      
      further comprising, transferring units of value to the merchant.
  - 7. The method of claim 1:
    - wherein the previous security-device transaction is one from a group including;
      
      a value transaction, a record transaction, a data transaction, and an information transaction.
  - 8. The method of claim 1, further comprising:
    - checking a validity of at least one of the security-device transactions by checking at least one from a group including;
      
      a transaction MAC value and a signature.
  - 9. The method of claim 8:
    - wherein the transaction MAC value is a function of a corresponding transaction counter value, corresponding transaction data and at least one from a group including;
      
      a symmetric transaction MAC key and an asymmetric transaction MAC key.

10. An article for fraud detection, within a previous security-device transaction between a security-device and a previous device comprising:
- a memory including a record of a last-reported security-device transaction with the security-device, and including a last-reported transaction counter value associated with the last-reported security-device transaction;
  
  wherein the previous device includes a previous device identifier;
  
  the memory including a record of the previous security-device transaction with the security-device, and including the previous device identifier associated with the previous security-device transaction;
  
  the memory including a record of a current security-device transaction with the security-device, and including a currently-reported transaction counter value associated with the current security-device transaction; and
  
  a back-end device tagging the previous device with fraud if the current transaction counter value differs from the last-reported transaction counter value by other than an increment.
- View Dependent Claims (11)
- - 11. The article of claim 10:
    - wherein the backend device is at least one from a group including;
      
      a transactional credit authorization device, a security-device issuer device, a bank device, and a credit providing device; and
      
      wherein the previous device is at least one from a group including;
      
      a merchant terminal, a transportation access device, and an information access device.

12. An article for facilitating fraud detection by a backend, comprising:
- a memory for storing a previous-transactional-device identifier associated with a previous transaction between the article and a previous device;
  
  a transaction counter having a transaction counter value that is set to change by an increment in response to the previous transaction;
  
  the memory for storing a current-transactional-device identifier associated with a current transaction between the article and a current device;
  
  wherein the transaction counter is set to change by the increment in response to the current transaction; and
  
  a transaction value module configured to transmit the transaction counter value, the previous-transactional-device identifier, and the current-transactional-device identifier to the backend in response to a commit message.
- View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20)
- - 13. The system of claim 12:
    - wherein the back-end device tags the previous device with fraud if the transaction counter value differs from a last-reported transaction counter value by other than the increment.
  - 14. The system of claim 12:
    - wherein the article is at least one from a group including;
      
      a smart-card, a contactless smart-card, a smartcard emulation, a secure element, a mobile phone, an embedded mobile component, a mobile device, and a secure implementation.
  - 15. The system of claim 12:
    - further comprising a transaction key;
      
      wherein the transaction key is stored in the article and the backend; and
      
      wherein the article encrypts and transmits the previous-transactional-device identifier to the backend which decrypts the previous-transactional-device identifier.
  - 16. The system of claim 15:
    - wherein the transaction key is a message authentication key which is not known to the previous and current devices, and the transaction key is either a symmetric transaction key or an asymmetric transaction key.
  - 17. The system of claim 12:
    - wherein the previous and current devices are merchant terminals.
  - 18. The system of claim 12:
    - wherein the previous and current transactions are at least one from a group including a credit transaction and a debit transaction.
  - 19. The system of claim 12:
    - wherein the previous-transactional-device identifier and the current-transactional-device identifier stored in the article link the article'"'"'s transactions with the previous and current devices.
  - 20. The article of claim 12:
    - wherein at least one of the devices includes a Secure Access Module configured to prevent the device from setting or modifying its identifier and to prohibit exporting of authentication and related session keys.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
NXP B.V. (NXP Semiconductors NV)
Original Assignee
NXP B.V. (NXP Semiconductors NV)
Inventors
de Jong, Hans, Janssens, Pieter

Granted Patent

US 11,004,069 B2
Time in Patent Office

Days
Field of Search
US Class Current

705/71
CPC Class Codes

G06Q 20/3829   involving key management

G06Q 20/389   Keeping log of transactions...

G06Q 20/401   Transaction verification

G06Q 20/4016   involving fraud or risk lev...

ARTICLE AND METHOD FOR TRANSACTION IRREGULARITY DETECTION

First Claim

10 Assignments

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

ARTICLE AND METHOD FOR TRANSACTION IRREGULARITY DETECTION

First Claim

10 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links