Mobile banking system with cryptographic expansion device
First Claim
Patent Images
1. A method for conducting a mobile banking transaction using a mobile device, the method comprising:
- establishing, at a secure gateway device, a secure communication channel with the mobile device, the secure communication channel being established by;
receiving a predetermined sequence of network messages having a predetermined order of port identifiers, wherein at least two of the network messages have different port identifiers that are respectively received on different ports of the secure gateway device, and wherein the secure gateway device refrains from responding to a network message until the predetermined sequence of network messages has been received;
receiving, at the secure gateway device, a transaction request message originating from the mobile device on the secure communication channel for conducting a mobile banking transaction, wherein the transaction request message is encrypted by a cryptographic expansion device attached to a communication component of the mobile device;
decrypting, by the secure gateway device, the transaction request message originating from the mobile device; and
forwarding the transaction request message to a server for processing.
2 Assignments
0 Petitions
Accused Products
Abstract
A mobile banking system that uses a cryptographic expansion device attached to a communication component of a mobile device and a secure gateway device to enable end-to-end secure communications between the mobile device and a payment processing network is disclosed. The cryptographic expansion device enables the mobile device to perform cryptographic operations on communications sent to and from the mobile device. The secure gateway device prevents unauthorized accesses to the payment processing network.
50 Citations
20 Claims
-
1. A method for conducting a mobile banking transaction using a mobile device, the method comprising:
-
establishing, at a secure gateway device, a secure communication channel with the mobile device, the secure communication channel being established by; receiving a predetermined sequence of network messages having a predetermined order of port identifiers, wherein at least two of the network messages have different port identifiers that are respectively received on different ports of the secure gateway device, and wherein the secure gateway device refrains from responding to a network message until the predetermined sequence of network messages has been received; receiving, at the secure gateway device, a transaction request message originating from the mobile device on the secure communication channel for conducting a mobile banking transaction, wherein the transaction request message is encrypted by a cryptographic expansion device attached to a communication component of the mobile device; decrypting, by the secure gateway device, the transaction request message originating from the mobile device; and forwarding the transaction request message to a server for processing. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method for conducting a mobile banking transaction using a mobile device, the method comprising:
-
receiving, at the mobile device, a user request to conduct the mobile banking transaction; generating a transaction request message; encrypting the transaction request message with a cryptographic expansion device attached to a communication component of the mobile device; establishing a secure communication channel with a secure gateway device, the secure communication channel being established by; sending a predetermined sequence of network messages having a predetermined order of port identifiers, wherein at least two of the network messages have different port identifiers that are respectively sent to different ports of the secure gateway device, and wherein the secure gateway device refrains from responding to a network message until the predetermined sequence of network messages has been received; and sending the transaction request message on the secure communication channel to a secure gateway device, wherein the secure gateway device is to forward the transaction request message to a server for processing. - View Dependent Claims (9, 10, 11, 12)
-
-
13. A mobile banking system comprising:
-
a cryptographic expansion device comprising a hardware security module (HSM) to encrypt a transaction request message being sent from a mobile device to conduct a mobile banking transaction, wherein the cryptographic expansion device is in the form of a label that is attached to a communication component of the mobile device; and a secure gateway device communicatively coupled to the mobile device to receive and forward the transaction request message to a server for processing, the secure gateway device comprising; an access control module to establish a secure communication channel to the mobile device using a predetermined sequence of network messages, wherein the predetermined sequence of network messages have a predetermined order of port identifiers, at least two of the network messages have different port identifiers that are respectively received on different ports of the secure gateway device, and wherein the secure gateway device refrains from responding to a network message until the predetermined sequence of network messages has been received; and a cryptographic module to decrypt the transaction request message originating from the mobile device received on the secure communication channel. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20)
-
Specification