MULTI-PATH COMMUNICATION OF ELECTRONIC DEVICE SECURE ELEMENT DATA FOR ONLINE PAYMENTS

US 20170103388A1
Filed: 09/23/2016
Published: 04/13/2017
Est. Priority Date: 09/30/2013
Status: Active Grant

First Claim

Patent Images

1-39. -39. (canceled)

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Systems, methods, and computer-readable media for communicating electronic device secure element data over multiple paths for online payments are provided. In one example embodiment, a method includes, inter alia, at a commercial entity subsystem, receiving, from an electronic device, device transaction data that includes credential data indicative of a payment credential on the electronic device for funding a transaction with a merchant subsystem, accessing a transaction identifier, deriving a transaction key based on transaction key data that includes the accessed transaction identifier, transmitting, to one of the merchant subsystem and the electronic device, merchant payment data that includes a first portion of the credential data and the accessed transaction identifier, and sharing, with a financial institution subsystem using the transaction key, commercial payment data that includes a second portion of the credential data that is different than the first portion of the credential data. Additional embodiments are also provided.

Citations

62 Claims

1-39. -39. (canceled)

40. A method for comprising:
- at an electronic device;
  
  generating, on a secure element of the electronic device, credential data operative to identify a funding account of a financial institution subsystem for funding a transaction between the electronic device and a merchant subsystem;
  
  accessing transaction key data;
  
  deriving a transaction key based on the transaction key data;
  
  transmitting merchant payment data to the merchant subsystem, wherein the merchant payment data comprises;
  
  at least a portion of the credential data; and
  
  the accessed transaction key data; and
  
  sharing commercial payment data with the financial institution subsystem using the transaction key, wherein the commercial payment data comprises at least one of;
  
  another portion of the credential data; and
  
  enhancer data operative to be used by the financial institution subsystem to enhance a risk assessment of the transaction.
- View Dependent Claims (41, 42, 43, 44, 45, 46)
- - 41. The method of claim 40, wherein the credential data comprises token data of the secure element and crypto data generated using at least a portion of the token data and a shared secret between the electronic device and the financial institution subsystem.
  - 42. The method of claim 41, wherein:
    - the at least a portion of the credential data comprises one of the token data and the crypto data;
      
      the commercial payment data comprises another portion of the credential data; and
      
      the other portion of the credential data comprises the other one of the token data and the crypto data.
  - 43. The method of claim 40, wherein the commercial payment data comprises enhancer data operative to be used by the financial institution subsystem to enhance a risk assessment of the transaction.
  - 44. The method of claim 43, wherein the at least a portion of the credential data comprises the token data and the crypto data.
  - 45. The method of claim 43, wherein the enhancer data comprises data indicative of at least one of the following:
    - a location of the electronic device;
      
      movement of the electronic device; and
      
      authentication required by the electronic device to enable the generation of at least a portion of the credential data.
  - 46. The method of claim 43, wherein the enhancer data comprises data indicative of at least one of the following:
    - an e-mail address associated with the electronic device; and
      
      a telephone number associated with the electronic device.

47. A method comprising:
- at a financial institution subsystem;
  
  receiving, via a first communication path,merchant payment data that comprises credential data of an electronic device and transaction key data;
  
  deriving a transaction key using the transaction key data of the merchant payment data;
  
  accessing, via a second communication path that is different than the first communication path, commercial payment data using the derived transaction key;
  
  processing the credential data and the commercial payment data; and
  
  validating a transaction request based on the processing.
- View Dependent Claims (48, 49, 50, 51, 52, 53, 54, 55, 56, 57, 58, 59, 60, 61, 62)
- - 48. The method of claim 47, wherein the first communication path is between the financial institution subsystem and one of a merchant subsystem and an acquiring bank subsystem.
  - 49. The method of claim 48, wherein the second communication path is between the financial institution subsystem and a commercial entity subsystem.
  - 50. The method of claim 48, wherein the second communication path is between the financial institution subsystem and the electronic device.
  - 51. The method of claim 47, wherein the credential data comprises at least one of:
    - token data of a secure element of the electronic device; and
      
      crypto data generated using at least a portion of the token data and a shared secret between the electronic device and the financial institution subsystem.
  - 52. The method of claim 51, wherein:
    - the credential data comprises one of the token data and the crypto data;
      
      the commercial payment data comprises the other one of the token data and the crypto data.
  - 53. The method of claim 47, wherein the commercial payment data comprises enhancer data operative to be used by the financial institution subsystem to enhance a risk assessment of a transaction between the electronic device and a merchant subsystem.
  - 54. The method of claim 53, wherein the credential data comprises at least one of:
    - token data of a secure element of the electronic device; and
      
      crypto data generated using at least a portion of the token data and a shared secret between the electronic device and the financial institution subsystem.
  - 55. The method of claim 53, wherein the enhancer data comprises data indicative of at least one of the following:
    - a location of the electronic device;
      
      movement of the electronic device; and
      
      authentication required by the electronic device to enable the generation of at least a portion of the credential data.
  - 56. The method of claim 53, wherein the enhancer data comprises data indicative of at least one of the following:
    - an e-mail address associated with the electronic device; and
      
      a telephone number associated with the electronic device.
  - 57. The method of claim 47, further comprising, after validating the transaction, at the financial institution subsystem, transmitting, via a third communication path, user data to the electronic device, wherein the user data comprises information indicative of the validated transaction request.
  - 58. The method of claim 57, wherein:
    - the first communication path is between the financial institution subsystem and a merchant subsystem; and
      
      the third communication path comprises the first communication path and a fourth communication path between the merchant subsystem and the electronic device.
  - 59. The method of claim 57, wherein:
    - the second communication path is between the financial institution subsystem and a commercial entity subsystem; and
      
      the third communication path comprises the second communication path and a fourth communication path between the commercial entity subsystem and the electronic device.
  - 60. The method of claim 57, wherein:
    - the second communication path is between the financial institution subsystem and the electronic device; and
      
      the third communication path comprises the second communication path.
  - 61. The method of claim 60, wherein the user data comprises information indicative of a confirmation of the validated transaction request.
  - 62. The method of claim 57, wherein the user data comprises information indicative of at least one of the following:
    - an installment payment plan for funding the validated transaction request;
      
      a reward earned by the validated transaction request; and
      
      a purchase protection plan for the validated transaction request.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Apple Inc.
Original Assignee
Apple Inc.
Inventors
Pillai, Manoj K. Thulaseedharan, Khan, Ahmer A., Elliott, Thomas, Hurley, Timothy S., Bailey, Jennifer J., Brudnicki, David E.

Granted Patent

US 10,878,414 B2
Time in Patent Office

Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/45   Structures or tools for the...

G06Q 20/102   Bill distribution or payments

G06Q 20/12   specially adapted for elect...

G06Q 20/3226   Use of secure elements sepa...

G06Q 20/3227   using secure elements embed...

G06Q 20/325   using wireless networks

G06Q 20/3278   RFID or NFC payments by mea...

G06Q 20/382   insuring higher security of...

G06Q 20/3823   combining multiple encrypti...

G06Q 20/3829   involving key management

G06Q 20/40   Authorisation, e.g. identif...

G06Q 20/4016   involving fraud or risk lev...

G06Q 2220/00   Business processing using c...

H04W 12/069   using certificates or pre-s...

H04W 4/02   Services making use of loca...

MULTI-PATH COMMUNICATION OF ELECTRONIC DEVICE SECURE ELEMENT DATA FOR ONLINE PAYMENTS

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

62 Claims

Specification

Solutions

Use Cases

Quick Links

MULTI-PATH COMMUNICATION OF ELECTRONIC DEVICE SECURE ELEMENT DATA FOR ONLINE PAYMENTS

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

62 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links