METHODS, DEVICES, AND SYSTEMS FOR SECURE PROVISIONING, TRANSMISSION, AND AUTHENTICATION OF PAYMENT DATA
First Claim
1. A method for creating dynamic card data, comprising:
- receiving, by a device, card track data;
encrypting, by the device, the card track data using a first key;
sending, by the device, the encrypted card track data to a server;
receiving, by the device, a working key;
generating, by the device, modified card track data including a time-dependent CVV using the working key; and
sending, by the device, the modified card track data to a point of sale terminal or causing the modified card track data to be displayed to a user for use in an e-commerce transaction.
3 Assignments
0 Petitions
Accused Products
Abstract
Devices, systems, and methods for securely converting a user'"'"'s existing static payment card data into dynamic card data that can be authenticated by card issuers or by a stand-in service provider, such as a payment network or processor without requiring the card issuers to make infrastructure changes. The dynamic data can be provisioned onto a magnetic secure transmission device (MST) either directly from a card issuer or using a swiper type device. Devices, systems, and methods are also disclosed for securely provisioning a dynamic card onto the MST by the card issuer. These dynamic cards may be used to transmit modified one-time-use card track data from the MST to a point of sale using a dynamic-CVV methodology to provide higher levels of security during a transaction.
240 Citations
21 Claims
-
1. A method for creating dynamic card data, comprising:
-
receiving, by a device, card track data; encrypting, by the device, the card track data using a first key; sending, by the device, the encrypted card track data to a server; receiving, by the device, a working key; generating, by the device, modified card track data including a time-dependent CVV using the working key; and sending, by the device, the modified card track data to a point of sale terminal or causing the modified card track data to be displayed to a user for use in an e-commerce transaction. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A method for provisioning dynamic financial card data by issuer, comprising:
-
receiving, by a server, a request for provisioning card track data; requesting, by the server, an authentication of a user corresponding to the card track data from a card issuer server, wherein the card issuer server corresponds to a card issuer of the card track data; receiving, by the server, an authentication result from the card issuer server; and generating, by the server, a working key for the generation of dynamic card track data. - View Dependent Claims (8, 9, 10, 11, 12, 13)
-
-
14. A method for performing dynamic-CVV (dCVV), comprising:
-
generating, by a server, a working key for card track data; receiving, by a magnetic stripe storage and transmission device (MST), the working key; generating, by the MST, modified card track data including a dCVV component based on original card track data, a time-stamp or counter and the working key; sending the modified card track data to a point of sale terminal or e-commerce website for payment processing; receiving, by the server, a request for verification of the dCVV from a card issuer server or a third party service provider in response to initiation of the payment processing, wherein the request includes the modified card track data; performing, by the server, a verification of the dCVV component; and sending, by the server, a verification failure or final verification based on the verification of the dCVV component. - View Dependent Claims (15, 16, 17, 18, 19, 20, 21)
-
Specification