Deploying an issuer-specific widget to a secure wallet container on a client device

US 9,886,691 B2
Filed: 12/11/2013
Issued: 02/06/2018
Est. Priority Date: 10/06/2005
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

configuring a widget in a non-transient memory of a networked server, at least partially, by the networked server to provide access to an issuer-specific service group of services accessible via a service tier of a multi-tier platform for providing secure transactions, the platform comprising at least enabling, service, and personalization tiers a portion of which are deployed across the networked server and at least one client mobile device, wherein the networked server is an issuer-specific server of an issuer of the widget;

determining service provider-specific platform resource access requirements that facilitate securely operating the widget on a client device;

configuring a widget descriptor with the access requirements and associating the widget descriptor with the widget;

requesting a secure wallet container operating on the client mobile device to deploy the configured widget by sending at least one of the configured widget and the widget descriptor from the issuer-specific server to the client mobile device;

receiving a confirmation of successful deployment of the configured widget, wherein the successful deployment meets the access requirements configured in the widget descriptor; and

activating access by the widget to a service provider-specific workflow service from the issuer-specific service group of services via communicating from the server to the deployed widget, the workflow facilitating the widget providing a trust model-based secure personalized transaction that uses each of the enabling, service, and personalization tiers wherein the trust based model is selected from the group consisting of a delegated trust model, a direct trust model and a brokered trust model and wherein the providing comprises executing the trust model based, at least in part, on a trigger.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Deploying an issuer-specific widget to a wallet container on a client device is accomplished by configuring a widget to provide access to an issuer-specific service group of services that are accessible in a service tier of a multi-tier platform for providing secure transactions, determining service-provider specific resource access requirements for operating the widget, configuring a widget descriptor with the access requirements, and communicating with wallet container to ensure successful deployment of the configured widget that meets the access requirements in the widget descriptor.

379 Citations

20 Claims

1. A method comprising:
- configuring a widget in a non-transient memory of a networked server, at least partially, by the networked server to provide access to an issuer-specific service group of services accessible via a service tier of a multi-tier platform for providing secure transactions, the platform comprising at least enabling, service, and personalization tiers a portion of which are deployed across the networked server and at least one client mobile device, wherein the networked server is an issuer-specific server of an issuer of the widget;
  
  determining service provider-specific platform resource access requirements that facilitate securely operating the widget on a client device;
  
  configuring a widget descriptor with the access requirements and associating the widget descriptor with the widget;
  
  requesting a secure wallet container operating on the client mobile device to deploy the configured widget by sending at least one of the configured widget and the widget descriptor from the issuer-specific server to the client mobile device;
  
  receiving a confirmation of successful deployment of the configured widget, wherein the successful deployment meets the access requirements configured in the widget descriptor; and
  
  activating access by the widget to a service provider-specific workflow service from the issuer-specific service group of services via communicating from the server to the deployed widget, the workflow facilitating the widget providing a trust model-based secure personalized transaction that uses each of the enabling, service, and personalization tiers wherein the trust based model is selected from the group consisting of a delegated trust model, a direct trust model and a brokered trust model and wherein the providing comprises executing the trust model based, at least in part, on a trigger.
- View Dependent Claims (2, 3, 4, 5, 6, 12)
- - 2. The method of claim 1, further comprising communicating from the server to the deployed widget to provide at least one service from the issuer-specific service group, wherein the at least one service comprises following a service provider-specific workflow.
  - 3. The method of claim 2, wherein the service provider-specific workflow facilitates a trust model-based secure personalized transaction using each of the enabling, service, and personalization tiers.
  - 4. The method of claim 1, wherein the widget descriptor comprises access requirements for a service provider-specific workflow, device operating system actions, domains, user interface code, and widget persistent data.
  - 5. The method of claim 1, wherein the widget descriptor comprises a data structure that is signed by the issuer-specific server.
  - 6. The method of claim 1, wherein platform resources for which access requirements are determined comprise at least one of Secure Element applets and mobile wallet accounts.
  - 12. The method of claim 1, wherein platform resources for which access requirements are determined comprise at least one of Secure Element applets and mobile wallet accounts.

7. A method comprising:
- configuring a widget, at least partially, by a networked server to provide access to an issuer-specific service group of services accessible via a service tier of a multi-tier platform for providing secure transactions, the platform comprising at least enabling, service, and personalization tiers;
  
  determining service provider-specific platform resource access requirements that facilitate securely operating the widget on a client device;
  
  configuring a widget descriptor with the access requirements and associating the widget descriptor with the widget;
  
  receiving a request from a component of the multi-tier platform operating on a client mobile device to deploy the configured widget and in response thereto sending at least one of the configured widget and the widget descriptor from an issuer-specific server to the client mobile device;
  
  receiving a confirmation of successful deployment of the configured widget on the client mobile device, wherein the successful deployment meets the access requirements configured in the widget descriptor; and
  
  activating access by the widget to a service provider-specific workflow service from the issuer-specific service group of services via communicating from the server to the deployed widget, the workflow facilitating the widget providing a trust model-based secure personalized transaction that uses each of the enabling, service, and personalization tiers wherein the trust based model is selected from the group consisting of a delegated trust model, a direct trust model and a brokered trust model and wherein the providing comprises executing the trust model based, at least in part, on a trigger.
- View Dependent Claims (8, 9, 10, 11)
- - 8. The method of claim 7, further comprising communicating from the server to the deployed widget to provide at least one service from the issuer-specific service group, wherein the at least one service comprises following a service provider-specific workflow.
  - 9. The method of claim 8, wherein the service provider-specific workflow facilitates a trust model-based secure personalized transaction using each of the enabling, service, and personalization tiers.
  - 10. The method of claim 7, wherein the widget descriptor comprises access requirements for a service provider-specific workflow, device operating system actions, domains, user interface code, and widget persistent data.
  - 11. The method of claim 7, wherein the widget descriptor comprises a data structure that is signed by the issuer-specific server.

13. A method comprising:
- receiving in a secure wallet container operating on a client mobile device an indication of availability of a mobile device executable widget configured to provide access to an issuer-specific service group of services accessible in a service tier of a multi-tier platform for providing secure transactions, the platform comprising at least enabling, service, and personalization tiers;
  
  determining service provider-specific platform resource access requirements that facilitate securely operating the widget on the client device to provide at least one service from the issuer-specific service group of services, wherein the service provider-specific access requirements are based on a widget descriptor that is associated with the widget;
  
  receiving a request that the configured widget be installed with the secure wallet container;
  
  receiving at least one of the configured widget and the widget descriptor from an issuer-specific server at the client mobile device;
  
  installing the configured widget, based on the access requirements, on the mobile device through the secure wallet container; and
  
  activating access by the widget to a service provider-specific workflow service from the issuer-specific service group of services via communicating from the server to the deployed widget, the workflow facilitating the widget providing a trust model-based secure personalized transaction that uses each of the enabling, service, and personalization tiers wherein the trust based model is selected from the group consisting of a delegated trust model, a direct trust model and a brokered trust model and wherein the providing comprises executing the trust model based, at least in part, on a trigger.
- View Dependent Claims (14, 15, 16, 17, 18, 19, 20)
- - 14. The method of claim 13, wherein installing the configured widget comprises determining widget isolation requirements for operating the widget on the client device and configuring the secure wallet container to ensure that the widget isolation requirements are met.
  - 15. The method of claim 13, further comprising transmitting a confirmation of successful deployment of the configured widget on the client mobile device, wherein the successful deployment meets the access requirements configured in the widget descriptor.
  - 16. The method of claim 13, further comprising communicating from the deployed widget to a server to provide at least one service from the issuer-specific service group, wherein the at least one service comprises following a service provider-specific workflow.
  - 17. The method of claim 16, wherein the issuer-specific service facilitates a trust model-based secure personalized transaction using each of the enabling, service, and personalization tiers.
  - 18. The method of claim 13, wherein the widget descriptor comprises access requirements for a service provider-specific workflow, device operating system actions, domains, user interface code, and widget persistent data.
  - 19. The method of claim 13, wherein the widget descriptor comprises a data structure that is signed by the issuer-specific server.
  - 20. The method of claim 13, wherein platform resources for which access requirements are determined comprise at least one of Secure Element applets and mobile wallet accounts.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Mastercard Mobile Transactions Solutions, Inc. (MasterCard Incorporated)
Original Assignee
Mastercard Mobile Transactions Solutions, Inc. (MasterCard Incorporated)
Inventors
Desai, Mehul, Pitroda, Satyan G., Maniar, Nehal
Primary Examiner(s)
Wong, Eric T
Assistant Examiner(s)
Poe, Kevin

Application Number

US14/103,054
Publication Number

US 20140095382A1
Time in Patent Office

1,518 Days
Field of Search

705 41
US Class Current
CPC Class Codes

G05B 2219/25107   Pluggable card, magnetic or...

G06F 21/57   Certifying or maintaining t...

G06F 3/08   from or to individual recor...

G06K 7/0065   comprising keyboard or disp...

G06Q 10/067   Enterprise or organisation ...

G06Q 20/20   Point-of-sale [POS] network...

G06Q 20/202   Interconnection or interact...

G06Q 20/322   Aspects of commerce using m...

G06Q 20/3278   RFID or NFC payments by mea...

G06Q 20/36   using electronic wallets or...

G06Q 20/367   involving electronic purses...

G06Q 20/3674   involving authentication

G06Q 30/06   Buying, selling or leasing ...

G06Q 40/02   Banking, e.g. interest calc...

Deploying an issuer-specific widget to a secure wallet container on a client device

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

379 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Deploying an issuer-specific widget to a secure wallet container on a client device

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

379 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links