Apparatuses and Methods for Using a Random Authorization Number to Provide Enhanced Security for a Secure Element
First Claim
1. A method of operating an electronic device that includes a secure element and a corresponding trusted processor, comprising:
- with the trusted processor, generating a random authorization number; and
with the trusted processor, injecting the random authorization number into the secure element.
1 Assignment
0 Petitions
Accused Products
Abstract
A system for provisioning credentials onto an electronic device is provided. The system may include a payment network subsystem, a service provider subsystem, and one or more user devices that can be used to perform mobile transactions at a merchant terminal. The user device may communicate with the service provider subsystem in order to obtained commerce credentials from the payment network subsystem. The user device may include a secure element and a corresponding trusted processor. The trusted processor may generate a random authorization number and inject that number into the secure element. Mobile payments should only be completed if the random authorization number on the secure element matches the random authorization number at the trusted processor. The trusted processor may be configured to efface the previous random authorization number and generate a new random authorization number when detecting a potential change in ownership at the user device.
-
Citations
24 Claims
-
1. A method of operating an electronic device that includes a secure element and a corresponding trusted processor, comprising:
-
with the trusted processor, generating a random authorization number; and with the trusted processor, injecting the random authorization number into the secure element. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A method of operating a portable electronic device that includes a secure element and an associated trust processor, comprising:
-
receiving commerce credentials at the electronic device; and in response to detecting a potential ownership change at the electronic device, disabling use of the commerce credentials so that the electronic device can no longer be used to conduct mobile payment transactions and using the trusted processor to generate a new authorization value and to inject the newly generated authorization value into the secure element. - View Dependent Claims (13, 14, 15, 16, 17, 18)
-
-
19. A portable electronic device, comprising:
-
a secure element on which payment card information is stored; and a trusted processor that is configured to overwrite a currently existing random authorization value by generating a new random authorization value that is injected into the secure element in response to detecting a potential ownership change at the electronic device. - View Dependent Claims (20, 21, 22, 23, 24)
-
Specification