Mobile banking system with cryptographic expansion device

US 9,686,235 B2
Filed: 07/20/2012
Issued: 06/20/2017
Est. Priority Date: 07/20/2011
Status: Active Grant

First Claim

Patent Images

1. A method for conducting a mobile banking transaction using a mobile device, the method comprising:

establishing, at a secure gateway device, a secure communication channel with the mobile device, the secure communication channel being established by;

receiving a predetermined sequence of network messages having a predetermined order of port identifiers, wherein at least two of the network messages have different port identifiers that are respectively received on different ports of the secure gateway device, and wherein the secure gateway device refrains from responding to a network message until the predetermined sequence of network messages has been received;

receiving, at the secure gateway device, a transaction request message originating from the mobile device on the secure communication channel for conducting a mobile banking transaction, wherein the transaction request message is encrypted by a cryptographic expansion device attached to a communication component of the mobile device;

decrypting, by the secure gateway device, the transaction request message originating from the mobile device; and

forwarding the transaction request message to a server for processing.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A mobile banking system that uses a cryptographic expansion device attached to a communication component of a mobile device and a secure gateway device to enable end-to-end secure communications between the mobile device and a payment processing network is disclosed. The cryptographic expansion device enables the mobile device to perform cryptographic operations on communications sent to and from the mobile device. The secure gateway device prevents unauthorized accesses to the payment processing network.

50 Citations

20 Claims

1. A method for conducting a mobile banking transaction using a mobile device, the method comprising:
- establishing, at a secure gateway device, a secure communication channel with the mobile device, the secure communication channel being established by;
  
  receiving a predetermined sequence of network messages having a predetermined order of port identifiers, wherein at least two of the network messages have different port identifiers that are respectively received on different ports of the secure gateway device, and wherein the secure gateway device refrains from responding to a network message until the predetermined sequence of network messages has been received;
  
  receiving, at the secure gateway device, a transaction request message originating from the mobile device on the secure communication channel for conducting a mobile banking transaction, wherein the transaction request message is encrypted by a cryptographic expansion device attached to a communication component of the mobile device;
  
  decrypting, by the secure gateway device, the transaction request message originating from the mobile device; and
  
  forwarding the transaction request message to a server for processing.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method of claim 1, wherein the communication component is a SIM card, and the cryptographic expansion device is in the form of a label that is attached to the SIM card.
  - 3. The method of claim 2, further comprisingre-encrypting the transaction request message prior to forwarding the transaction request message to the server.
  - 4. The method of claim 2, wherein the transaction request message originated from the mobile device as a Short Message Service (SMS) message or a Unstructured Supplementary Service Data (USSD) message.
  - 5. The method of claim 2, wherein the transaction request message originated from the mobile device as a Near Field Communication (NFC) message or a Radio Frequency (RF) communication message.
  - 6. The method of claim 2, wherein the cryptographic expansion device is an adhesive label.
  - 7. The method of claim 1, wherein the predetermined sequence of network messages comprises a sequence of synchronize messages.

8. A method for conducting a mobile banking transaction using a mobile device, the method comprising:
- receiving, at the mobile device, a user request to conduct the mobile banking transaction;
  
  generating a transaction request message;
  
  encrypting the transaction request message with a cryptographic expansion device attached to a communication component of the mobile device;
  
  establishing a secure communication channel with a secure gateway device, the secure communication channel being established by;
  
  sending a predetermined sequence of network messages having a predetermined order of port identifiers, wherein at least two of the network messages have different port identifiers that are respectively sent to different ports of the secure gateway device, and wherein the secure gateway device refrains from responding to a network message until the predetermined sequence of network messages has been received; and
  
  sending the transaction request message on the secure communication channel to a secure gateway device, wherein the secure gateway device is to forward the transaction request message to a server for processing.
- View Dependent Claims (9, 10, 11, 12)
- - 9. The method of claim 8, wherein the communication component is a SIM card, and the cryptographic expansion device is in the form of a label that is attached to the SIM card.
  - 10. The method of claim 9, wherein the transaction request message is sent from the mobile device as a Short Message Service (SMS) message or a Unstructured Supplementary Service Data (USSD) message.
  - 11. The method of claim 9, wherein the transaction request message is sent from the mobile device as a Near Field Communication (NFC) communication or a Radio Frequency (RF) communication.
  - 12. The method of claim 9, wherein the cryptographic expansion device is an adhesive label.

13. A mobile banking system comprising:
- a cryptographic expansion device comprising a hardware security module (HSM) to encrypt a transaction request message being sent from a mobile device to conduct a mobile banking transaction, wherein the cryptographic expansion device is in the form of a label that is attached to a communication component of the mobile device; and
  
  a secure gateway device communicatively coupled to the mobile device to receive and forward the transaction request message to a server for processing, the secure gateway device comprising;
  
  an access control module to establish a secure communication channel to the mobile device using a predetermined sequence of network messages, wherein the predetermined sequence of network messages have a predetermined order of port identifiers, at least two of the network messages have different port identifiers that are respectively received on different ports of the secure gateway device, and wherein the secure gateway device refrains from responding to a network message until the predetermined sequence of network messages has been received; and
  
  a cryptographic module to decrypt the transaction request message originating from the mobile device received on the secure communication channel.
- View Dependent Claims (14, 15, 16, 17, 18, 19, 20)
- - 14. The mobile banking system of claim 13, wherein the communication component is a SIM card, and the cryptographic expansion device is in the form of a label that is attached to the SIM card.
  - 15. The mobile banking system of claim 14, wherein the transaction request message is sent from the mobile device as a Short Message Service (SMS) message or a Unstructured Supplementary Service Data (USSD) message.
  - 16. The mobile banking system of claim 14, wherein the transaction request message is sent from the mobile device as a Radio Frequency (RF) communication or a Near Field Communication (NFC) communication.
  - 17. The mobile banking system of claim 14, wherein the cryptographic expansion device is an adhesive label.
  - 18. The mobile banking system of claim 13, wherein the cryptographic module of the secure gateway device is further to re-encrypt the transaction request message prior to the secure gateway device forwarding the transaction request message to the server.
  - 19. The mobile banking system of claim 13, wherein the predetermined message sequence comprises a sequence of synchronize messages.
  - 20. The mobile banking system of claim 13, wherein the HSM includes a public processing unit and a secure processing unit that is accessible only via the public processing unit.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Visa International Service Association (Visa, Inc.)
Original Assignee
Visa International Service Association (Visa, Inc.)
Inventors
Huxham, Horatio Nelson
Primary Examiner(s)
HESS, DANIEL A

Application Number

US14/234,101
Publication Number

US 20140188738A1
Time in Patent Office

1,796 Days
Field of Search

235492, 235380, 361715
US Class Current
CPC Class Codes

G06Q 20/027   involving a payment switch ...

G06Q 20/3223   Realising banking transacti...

G06Q 20/3226   Use of secure elements sepa...

G06Q 20/3229   Use of the SIM of a M-devic...

G06Q 20/325   using wireless networks

G06Q 20/3278   RFID or NFC payments by mea...

G06Q 20/382   insuring higher security of...

G06Q 20/3823   combining multiple encrypti...

H04L 2463/102   applying security measure f...

H04L 63/02   for separating internal fro...

H04L 63/0281   Proxies

H04L 63/0464   using hop-by-hop encryption...

H04L 63/08   for authentication of entit...

H04L 63/10   for controlling access to d...

H04W 12/02   Protecting privacy or anony...

H04W 12/033   of the user plane, e.g. use...

H04W 12/08   Access security

H05K 3/321   by conductive adhesives

Y10T 29/4913   Assembling to base an elect...

Y10T 29/53174   Means to fasten electrical ...

Mobile banking system with cryptographic expansion device

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

50 Citations

20 Claims

Specification

Use Cases

Quick Links

Others

Mobile banking system with cryptographic expansion device

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

50 Citations

20 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others