Remote Server Encrypted Data Provisioning System and Methods

US 20160092696A1
Filed: 09/28/2015
Published: 03/31/2016
Est. Priority Date: 09/26/2014
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

receiving, by a mobile device from a remote mobile application server, encrypted user data associated with a user of the mobile device, wherein the encrypted user data is generated with an encryption key associated with a token server computer;

generating, by the mobile device, a token request message, the token request message including the encrypted user data;

sending, by the mobile device, the token request message to the token server computer, wherein the token server computer decrypts the encrypted user data using the encryption key, identifies an account associated with the decrypted user data, generates a token associated with the account, stores the token, and sends the token to the mobile device;

receiving, by the mobile device, the token associated with the encrypted user data from the token server computer; and

storing, by the mobile device, the token in a token memory.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Embodiments of the invention are directed to methods, systems and devices for providing sensitive user data to a mobile device using an encryption key. For example, a mobile application on a mobile device may receive encrypted sensitive user data from a mobile application server, where the user sensitive data is encrypted with a key from a token server computer. The mobile application may then request that the encrypted payment information be sent to the token server. The mobile device may then receive a payment token associated with the payment information from the token server.

468 Citations

20 Claims

1. A method comprising:
- receiving, by a mobile device from a remote mobile application server, encrypted user data associated with a user of the mobile device, wherein the encrypted user data is generated with an encryption key associated with a token server computer;
  
  generating, by the mobile device, a token request message, the token request message including the encrypted user data;
  
  sending, by the mobile device, the token request message to the token server computer, wherein the token server computer decrypts the encrypted user data using the encryption key, identifies an account associated with the decrypted user data, generates a token associated with the account, stores the token, and sends the token to the mobile device;
  
  receiving, by the mobile device, the token associated with the encrypted user data from the token server computer; and
  
  storing, by the mobile device, the token in a token memory.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The method of claim 1, wherein storing the token in a token memory includes storing a token in a secure memory of the mobile device, determining a token key associated with the stored token, and providing the token key to a mobile application on the mobile device for use as a token reference identifier for the token.
  - 3. The method of claim 1, further comprising:
    - requesting, by the mobile device, a status of the token;
      
      receiving, by the mobile device, a token status response from the token server computer; and
      
      storing, by the mobile device, the status associated with the token in the token memory.
  - 4. The method of claim 1, wherein the encryption key and the user data associated with the user of the mobile device are stored by the remote mobile application server.
  - 5. The method of claim 1, wherein the token memory is managed by a token module provided on the mobile device, the token module being associated with the token server computer such that the mobile device interfaces with the token server computer via the token module.
  - 6. The method of claim 5, wherein the token module interfaces with an Application Programming Interface (API) of the token server computer.
  - 7. The method of claim 1, wherein the token request message is sent to the token server computer via a token module provided on the mobile device, and the token associated with the encrypted user data is received from the token server computer by the token module.
  - 8. The method of claim 1, further comprising:
    - interacting with an access device to initiate a transaction using a mobile application provided on the mobile device; and
      
      providing the token to the access device, wherein the token is provided to the access device by a token module bypassing the mobile application, wherein the token module is stored on the mobile device.
  - 9. The method of claim 1, wherein the token request message is sent to the token server computer via the remote mobile application server, and the token associated with the encrypted user data is received from the token server computer via the remote mobile application server.

10. A method comprising:
- receiving, by a mobile application provided on a mobile device, encrypted user data from a remote mobile application server, the encrypted user data being associated with an account of a user of the mobile device, wherein the encrypted user data is generated with an encryption key associated with a token server computer;
  
  interacting with a token module to request a token from the token server computer, wherein the token represents the encrypted user data;
  
  receiving, by the mobile application, a message indicating that the token associated with the encrypted user data is received from the token server computer;
  
  interacting with an access device to initiate a transaction; and
  
  requesting the token module to provide the token to the access device such that the token is provided to the access device by the token module bypassing the mobile application.
- View Dependent Claims (11, 12)
- - 11. The method of claim 10, further comprising:
    - receiving, by the mobile application, a token request message from the token module, wherein the token request message includes the encrypted user data and is generated by the token module;
      
      sending, by the mobile application, the token request message to the remote mobile application server, wherein the remote mobile application server obtains the token from the token server computer using the token request message;
      
      receiving, by the mobile application, a token response message from the remote mobile application server; and
      
      sending, by the mobile application, the token request message to the token module, wherein the token module stores the token.
  - 12. The method of claim 10, wherein the token module generates a token request message including the encrypted user data, sends the token request message to the token server computer, receives a token from the token server computer and stores the token.

13. A mobile device comprising:
- a processor; and
  
  a memory element comprising code, executable by the processor, for implementing a method comprisingreceiving, by a mobile device from a remote mobile application server, encrypted user data associated with a user of the mobile device, wherein the encrypted user data is generated with an encryption key associated with a token server computer;
  
  generating, by the mobile device, a token request message, the token request message including the encrypted user data;
  
  sending, by the mobile device, the token request message to the token server computer, wherein the token server computer decrypts the encrypted user data using the encryption key, identifies an account associated with the decrypted user data, generates a token associated with the account, stores the token, and sends the token to the mobile device;
  
  receiving, by the mobile device, the token associated with the encrypted user data from the token server computer; and
  
  storing, by the mobile device, the token in a token memory.
- View Dependent Claims (14, 15, 16, 17, 18, 19, 20)
- - 14. The mobile device of claim 13, wherein storing the token in a token memory includes storing a token in a secure memory of the mobile device, determining a token key associated with the stored token, and providing the token key to a mobile application on the mobile device for use as a token reference identifier for the token.
  - 15. The mobile device of claim 13, wherein the token request message is sent to the token server computer via a token module provided on the mobile device, and the token associated with the encrypted user data is received from the token server computer by the token module.
  - 16. The mobile device of claim 13, wherein the method further comprises:
    - interacting with an access device to initiate a transaction using a mobile application provided on the mobile device; and
      
      providing the token to the access device, wherein the token is provided to the access device by a token module bypassing the mobile application, wherein the token module is stored on the mobile device.
  - 17. The mobile device of claim 13, wherein the token request message is sent to the token server computer via the remote mobile application server, and the token associated with the encrypted user data is received from the token server computer via the remote mobile application server.
  - 18. The mobile device of claim 13, wherein the method further comprises:
    - requesting, by the mobile device, a status of the token;
      
      receiving, by the mobile device, a token status response from the token server computer; and
      
      storing, by the mobile device, the status associated with the token in the token memory.
  - 19. The mobile device of claim 13, wherein the token memory is managed by a token module provided on the mobile device, the token module being associated with the token server computer such that the mobile device interfaces with the token server computer via the token module.
  - 20. The mobile device of claim 19, wherein the token module interfaces with an Application Programming Interface (API) of the token server computer.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Visa International Service Association (Visa, Inc.)
Original Assignee
Jalpesh Chitalia
Inventors
Guglani, Abhishek, Sharma, Sanjeev, Mardikar, Upendra, Chitalia, Jalpesh, Destremps, Gerald, Xu, Minghua, Trevino, Jose Luis Rios, Singh, Brijendra

Granted Patent

US 10,255,456 B2
Time in Patent Office

Days
Field of Search
US Class Current

1/1
CPC Class Codes

G06F 21/335   for accessing specific reso...

G06F 21/602   Providing cryptographic fac...

G06F 21/606   by securing the transmissio...

G06F 21/6245   Protecting personal data, e...

G06F 2221/2107   File encryption

H04L 2463/102   applying security measure f...

H04L 63/0428   wherein the data content is...

H04W 12/08   Access security

H04W 12/126   Anti-theft arrangements, e....

Remote Server Encrypted Data Provisioning System and Methods

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

468 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Remote Server Encrypted Data Provisioning System and Methods

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

468 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links