Module ID based encryption for financial transactions
First Claim
1. A method comprising:
- determining, by a media device, that a smart card has been communicatively coupled to the media device;
communicating, by the media device, with the smart card through a smart card interface;
receiving, by the media device, a first encryption key from the smart card;
creating, by the media device, a first secure communication tunnel with a first remote server using the received first encryption key;
receiving, by the media device, a second encryption key, from the first remote server, through the created first secure communication tunnel, wherein the second encryption key is generated based at least in part on a media device id associated with the media device;
receiving, by the media device, a purchase selection indication from a control device;
encrypting a first portion of payment account information using the second encryption key;
receiving, by the media device, a third encryption key;
encrypting a second portion of the payment account information using the received third encryption key;
creating, by the media device, a second secure communication tunnel with a second remote server using the second encryption key; and
transmitting, by the media device, the first portion of the payment account information encrypted with the second encryption key and the second portion of the payment account information encrypted with the third encryption key to the second remote server.
0 Assignments
0 Petitions
Accused Products
Abstract
A server is operable to receive a media device identifying number (ID) and establish an association between a media device and a payment account and, in one embodiment, supports at least one of payment authorization and payment clearing based at least in part on the media device ID and the payment account. A network and system includes a payment card processor server that is operable to receive a payment authorization request and to determine if an authorized media device generated a purchase selection message and to determine to approve a received payment authorization request based, in part, if the media device was authorized for the purchase selection based upon a received media device ID. The system is further operable to perform a key rotation to protect payment account information.
-
Citations
20 Claims
-
1. A method comprising:
-
determining, by a media device, that a smart card has been communicatively coupled to the media device; communicating, by the media device, with the smart card through a smart card interface; receiving, by the media device, a first encryption key from the smart card; creating, by the media device, a first secure communication tunnel with a first remote server using the received first encryption key; receiving, by the media device, a second encryption key, from the first remote server, through the created first secure communication tunnel, wherein the second encryption key is generated based at least in part on a media device id associated with the media device; receiving, by the media device, a purchase selection indication from a control device; encrypting a first portion of payment account information using the second encryption key; receiving, by the media device, a third encryption key; encrypting a second portion of the payment account information using the received third encryption key; creating, by the media device, a second secure communication tunnel with a second remote server using the second encryption key; and transmitting, by the media device, the first portion of the payment account information encrypted with the second encryption key and the second portion of the payment account information encrypted with the third encryption key to the second remote server. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 19)
-
-
10. An apparatus comprising:
-
one or more processors programmed to execute a set of instructions; and a non-transitory computer readable medium coupled to the one or more processors for storing the set of instructions that, when executed causes the one or more processors to execute a process comprising; determining that a smart card has been communicatively coupled to a media device; communicating with the smart card through a smart card interface; receiving a first encryption key from the smart card; creating a first secure communication tunnel with a first remote server using the received first encryption key; receiving a second encryption key, from the first remote server, through the created first secure communication tunnel, wherein the second encryption key is generated based at least in part on a media device id associated with the media device; receiving a purchase selection indication from a control device; encrypting a first portion of payment account information using the second encryption key; receiving a third encryption key; encrypting a second portion of the payment account information using the received third encryption key; creating a second secure communication tunnel with a second remote server using the second encryption key; and transmitting the first portion of the payment account information encrypted with the second encryption key and the second portion of the payment account information encrypted with the third encryption key to the second remote server. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18, 20)
-
Specification