Systems and methods for performing secure financial transactions
First Claim
Patent Images
1. A method for use by a server to perform a point of sale transaction with a mobile device of a user, the mobile device storing an identification information, said method comprising:
- transmitting, by the server, an encryption information comprising a pointer to one of a plurality of encryption keys for use by the mobile device to encrypt the identification information in accordance with the encryption information;
receiving, by said server, the identification information in an encrypted form and a transaction information for a purchase; and
decrypting, by said server, said encrypted identification information;
associating, by the server after the decrypting, the identification information with an account number of the user; and
transmitting, in response to the associating the identification information with the account number, an authorization from the server for authorizing the purchase.
1 Assignment
0 Petitions
Accused Products
Abstract
An RFID system includes an RFID tag, an RFID reader, and a server. The RFID tag communicates to the server via encrypted information. The information may be encrypted with synchronized encryption keys. In this manner, the reader need not decrypt the information from the RFID tag. The effectiveness of malicious readers is thereby reduced, resulting in improved RFID tag security.
26 Citations
14 Claims
-
1. A method for use by a server to perform a point of sale transaction with a mobile device of a user, the mobile device storing an identification information, said method comprising:
-
transmitting, by the server, an encryption information comprising a pointer to one of a plurality of encryption keys for use by the mobile device to encrypt the identification information in accordance with the encryption information; receiving, by said server, the identification information in an encrypted form and a transaction information for a purchase; and decrypting, by said server, said encrypted identification information; associating, by the server after the decrypting, the identification information with an account number of the user; and transmitting, in response to the associating the identification information with the account number, an authorization from the server for authorizing the purchase. - View Dependent Claims (2, 3, 4)
-
-
5. A method for use by a point of sale device to perform a point of sale transaction using a mobile device of a user and a server, the method comprising:
-
receiving, by the point of sale device from the server, an encryption information; transmitting the encryption information, by the point of sale device to the mobile device, for use by the mobile device to encrypt an identification information in accordance with the encryption information, wherein the encryption information includes a pointer to one of a plurality of encryption keys; obtaining, by the point of sale device from the mobile device, the identification information in an encrypted form; transmitting, by the point of sale device to the server, the identification information of the mobile device in the encrypted form and a transaction information for a purchase, wherein the point of sale device does not decrypt the identification information of the mobile device in the encrypted form to obtain the identification information; and receiving, by the point of sale device from the server, in response to the transmitting, an authorization from the server authorizing the purchase. - View Dependent Claims (6, 7, 8)
-
-
9. A method for use by a mobile device of a user to perform a point of sale transaction with a server, the method comprising:
-
receiving, by the mobile device, an encryption information provided by the server, the encryption information comprising a pointer to one of a plurality of encryption keys; encrypting, by the mobile device, an identification information in accordance with the encryption information to generate the identification information in an encrypted form; and providing, by the mobile device, the identification information of the mobile device in the encrypted form for transmission to the server to decrypt the identification information of the mobile device in the encrypted form to obtain the identification information. - View Dependent Claims (10)
-
-
11. A server for performing a point of sale transaction with a mobile device of a user, the mobile device storing an identification information to be obtained by the server in an encrypted form from the mobile device, the server comprising:
one or more circuits configured to; transmit an encryption information for use by the mobile device to encrypt the identification information in accordance with the encryption information, the encryption information comprising a pointer to one of a plurality of encryption keys; receive the identification information of the mobile device in the encrypted form and a transaction information for a purchase; decrypt the identification information of the mobile device in the encrypted form; associate, after decrypting, the identification information with an account number of the user; and transmit, in response to associating, an authorization from the server to for authorizing the purchase. - View Dependent Claims (12, 13, 14)
Specification