Systems, methods, and computer readable media for providing for secure offline data transfer between wireless smart devices

US 8,307,410 B2
Filed: 08/12/2008
Issued: 11/06/2012
Est. Priority Date: 08/12/2008
Status: Active Grant

First Claim

Patent Images

1. A method for registering wireless smart devices for secure offline data transfer, the method comprising:

for an application configured to execute on a wireless smart device and that requires access to information regarding an account that does not reside on the wireless smart device;

sending a registering message, to a server having access to the information regarding the account, a first wireless smart device as an account owner device (AOD) for operating in an online mode for obtaining the information regarding the account from the server and for operating in an offline mode for transferring the information regarding the account to at least one additional device via a secure offline data transfer using near field communications (NFC), wherein the registering message includes a designation by the owner of the account identification of the first wireless smart device as AOD, identification of the application and identification of the at least one additional device as account sharer devices (ASDs) associated with the first wireless smart device;

in response to registering the first wireless smart device as the account owner device, granting, at the server, only the first wireless smart device access to the account information from the server;

sending another registering message, to the server, using the at least one second wireless smart device as an account sharer device (ASD) for operating in the offline mode for receiving the information regarding the account from the first wireless smart device only via the secure offline data transfer using NFC from the first wireless device;

in response to registering using the first wireless smart device and the at least second wireless smart device, the server transmitting a master key to the first wireless smart device and a diversified key that is different from the master key to the second wireless smart device to enable secure offline communication using NFC; and

in response to registering the at least one second wireless smart device as the account sharer device, preventing, at the server, the at least one second wireless smart device from accessing the information regarding the account via the online mode, wherein preventing the at least one second wireless smart device from accessing the information regarding the account via the online mode does not prevent the at least one second wireless smart device from receiving the information regarding the account from the first wireless smart device via the secure offline data transfer using NFC.

View all claims

6 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

According to one aspect of the subject matter described herein, a method for registering wireless smart devices for secure offline data transfer is provided. The method includes, for an application configured to execute on a wireless smart device and that requires access to information regarding an account that does not reside on the wireless smart device, register, at a server having access to the information regarding the account, a first wireless smart device has an account owner device (AOD) for operating in an online mode for obtaining the information regarding the account from the server and for operating in an offline mode for transferring the information regarding the account to at least one additional device via a secure offline data transfer using near field communications (NFC). The method further includes registering, at the server, at least one second wireless smart device as an account sharer device (ASD) for operating in an offline mode for receiving the information regarding the account from the first wireless smart device via the secure offline data transfer using NFC.

33 Citations

View as Search Results

14 Claims

1. A method for registering wireless smart devices for secure offline data transfer, the method comprising:
- for an application configured to execute on a wireless smart device and that requires access to information regarding an account that does not reside on the wireless smart device;
  
  sending a registering message, to a server having access to the information regarding the account, a first wireless smart device as an account owner device (AOD) for operating in an online mode for obtaining the information regarding the account from the server and for operating in an offline mode for transferring the information regarding the account to at least one additional device via a secure offline data transfer using near field communications (NFC), wherein the registering message includes a designation by the owner of the account identification of the first wireless smart device as AOD, identification of the application and identification of the at least one additional device as account sharer devices (ASDs) associated with the first wireless smart device;
  
  in response to registering the first wireless smart device as the account owner device, granting, at the server, only the first wireless smart device access to the account information from the server;
  
  sending another registering message, to the server, using the at least one second wireless smart device as an account sharer device (ASD) for operating in the offline mode for receiving the information regarding the account from the first wireless smart device only via the secure offline data transfer using NFC from the first wireless device;
  
  in response to registering using the first wireless smart device and the at least second wireless smart device, the server transmitting a master key to the first wireless smart device and a diversified key that is different from the master key to the second wireless smart device to enable secure offline communication using NFC; and
  
  in response to registering the at least one second wireless smart device as the account sharer device, preventing, at the server, the at least one second wireless smart device from accessing the information regarding the account via the online mode, wherein preventing the at least one second wireless smart device from accessing the information regarding the account via the online mode does not prevent the at least one second wireless smart device from receiving the information regarding the account from the first wireless smart device via the secure offline data transfer using NFC.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method of claim 1 wherein the server comprises an over the air provisioning server for provisioning the first and the at least one second wireless smart device via an air interface.
  - 3. The method of claim 2 wherein registering the first and the at least one second wireless smart devices with the server includes transmitting messages from the wireless smart devices to the server via the air interface.
  - 4. The method of claim 1 comprising, at the server, in response to receiving an unregister message from the first wireless smart device, unregistering the at least one second wireless smart device as account sharer device for the particular application.
  - 5. The method of claim 1 comprising, transmitting, from the server, parameters for providing for the secure offline data transfer between the first and the at least one second wireless smart device.
  - 6. The method of claim 5 wherein transmitting parameters from the server includes transmitting cryptographic parameters to the first and the at least one second wireless smart device.

7. A system for secure offline data transfer between wireless smart devices, the system comprising:
- a first application configured to execute on a plurality of wireless smart devices;
  
  a server configured to;
  
  register a first wireless smart device as an account owner device (AOD) for operating in an online mode for obtaining the information regarding the account from the server and for operating in an offline mode for transferring the information regarding the account to at least one additional device via a secure offline data transfer using near field communications (NFC), wherein the first wireless device transmits a registration message including a designation by the owner of the account identification of the first wireless smart device as AOD, identification of the application and identification of the at least one additional device as account sharer devices (ASDs) associated with the first wireless smart device;
  
  register a second wireless smart device as an account sharer device (ASD) for operating in the offline mode for receiving the information regarding the account from the first wireless smart device only via the secure offline data transfer using NFC from the first wireless device; and
  
  in response to registering the first wireless smart device and the second wireless smart device, transmit a master key to the first wireless smart device and a diversified key that is different from the master key to the second wireless smart device to enable secure offline communication using NFC;
  
  the first wireless smart device for operating as an account owner device in the context of the first application executing on the first wireless smart device, wherein operating as the account owner device includes operating in an online mode to obtain account information and providing the account information to the at least one additional device via the offline mode of operation using near field communications (NFC), wherein only the first wireless smart device is allowed access to the information regarding the account via the online mode from the server; and
  
  the second wireless smart device for operating as an account sharer device in the context of the first application, a copy of which executes on the second wireless smart device, wherein operating as an account sharer device includes requesting and receiving the account information from the first wireless smart device only via a secure offline data transfer from the first wireless smart device using near field communications, wherein the second wireless smart device is prevented from accessing the information regarding the account via the online mode, and wherein preventing the second wireless smart device from accessing the information regarding the account via the online mode does not prevent the second wireless smart device from receiving the information regarding the account from the first wireless smart device via the secure offline data transfer using near field communications.
- View Dependent Claims (8, 9, 10, 11, 12, 13)
- - 8. The system of claim 7 wherein the first wireless smart device functions as an account sharer device and the second wireless smart device functions as an account owner device in the context of a second application.
  - 9. The system of claim 7 wherein the first application comprises a contactless payment application.
  - 10. The system of claim 7 wherein the first and second wireless smart devices obtain encryption parameters from a server for the secure offline data transfer.
  - 11. The system of claim 7 comprising a server with which the first and second wireless smart devices register, respectively, as account owner device and account sharer device.
  - 12. The system of claim 11 wherein the server allows a plurality of wireless smart devices to register as account sharer devices for sharing data with the first wireless smart device in the offline mode in the context of the first application.
  - 13. The system of claim 11 wherein the first wireless smart device unregisters the second wireless smart device as an account sharer device by sending an unregister message to the server.

14. A non-transitory computer readable medium having stored thereon computer executable instructions that when executed by a processor of a computer performs steps comprising:
- for an application configured to execute on a wireless smart device and that requires access to information regarding an account that does not reside on the wireless smart device;
  
  sending a registering message, to a server having access to the information regarding the account, a first wireless smart device as an account owner device (AOD) for operating in an online mode for obtaining the information regarding the account from the server and for operating in an offline mode for transferring the information regarding the account to at least one additional device via a secure offline data transfer using near field communications (NFC), wherein the registering message includes a designation by the owner of the account identification of the first wireless smart device as AOD, identification of the application and identification of the at least one additional device as account sharer devices (ASDs) associated with the first wireless smart device;
  
  in response to registering the first wireless smart device as the account owner device, granting, at the server, only the first wireless smart device access to the account information from the server;
  
  sending another registering message, to the server, using the at least one second wireless smart device as an account sharer device (ASD) for operating in the offline mode for receiving the information regarding the account from the first wireless smart device only via the secure offline data transfer using NFC from the first wireless device;
  
  in response to registering using the first wireless smart device and the at least second wireless smart device, the server transmitting a master key to the first wireless smart device and a diversified key that is different from the master key to the second wireless smart device to enable secure offline communication using NFC; and
  
  in response to registering the at least one second wireless smart device as the account sharer device, preventing, at the server, the at least one second wireless smart device from accessing the information regarding the account via the online mode, wherein preventing the at least one second wireless smart device from accessing the information regarding the account via the online mode does not prevent the at least one second wireless smart device from receiving the information regarding the account from the first wireless smart device via the secure offline data transfer using NFC.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Mastercard International Incorporated (MasterCard Incorporated)
Original Assignee
Mastercard International Incorporated (MasterCard Incorporated)
Inventors
Martin, Philippe, Liu, Ming-Li, Vijayshankar, Roshan, Kumar, Pradeep
Primary Examiner(s)
Gelagay, Shewaye

Application Number

US12/190,558
Publication Number

US 20100043061A1
Time in Patent Office

1,547 Days
Field of Search

None
US Class Current

726/4
CPC Class Codes

G06Q 20/20   Point-of-sale [POS] network...

G06Q 20/2295   Parent-child type, e.g. whe...

G06Q 20/3226   Use of secure elements sepa...

G06Q 20/3229   Use of the SIM of a M-devic...

G06Q 20/3278   RFID or NFC payments by mea...

G06Q 20/3572   Multiple accounts on card

G06Q 20/3574   Multiple applications on card

G06Q 20/3823   combining multiple encrypti...

G06Q 30/0603   Catalogue ordering

H04B 5/48   Transceivers

H04B 5/72   for local intradevice commu...

H04L 63/0853   using an additional device,...

H04L 63/105   Multiple levels of security

H04W 12/08   Access security

Systems, methods, and computer readable media for providing for secure offline data transfer between wireless smart devices

First Claim

6 Assignments

0 Petitions

Accused Products

Abstract

33 Citations

14 Claims

Specification

Solutions

Use Cases

Quick Links

Systems, methods, and computer readable media for providing for secure offline data transfer between wireless smart devices

First Claim

6 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

33 Citations

14 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links