Tap to copy data to clipboard via NFC

US 10,438,437 B1
Filed: 03/20/2019
Issued: 10/08/2019
Est. Priority Date: 03/20/2019
Status: Active Grant

First Claim

Patent Images

1. An apparatus, comprising:

a processor circuit; and

a memory storing instructions which when executed by the processor circuit, cause the processor circuit to;

receive, by an application executing on the processor circuit, encrypted data from a communications interface of a contactless card associated with an account, the encrypted data generated based on one or more cryptographic algorithms and a diversified key, the diversified key stored in a memory of the contactless card and generated based on a master key and a counter value stored in the memory of the contactless card;

receive, by the application from a server, verification of the encrypted data, the server to decrypt the encrypted data based on one or more cryptographic algorithms and the diversified key stored in a memory of the server to verify the encrypted data, the diversified key stored in the memory of the server generated based on a master key and a counter value stored in the memory of the server;

receive, by the application from the server, an encrypted account number associated with the account;

decrypt, by the application, the encrypted account number to yield the account number; and

copy, by the application, the account number to a clipboard of an operating system (OS) executing on the processor circuit.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Various embodiments are generally directed to copying data to a clipboard of a mobile device from a contactless card using NFC. A mobile device may issue a request to read data from the contactless card. The contactless card may generate encrypted data in response to the request. The mobile device may receive the encrypted data via NFC and transmit the encrypted data to a server for verification. The server may verify the encrypted data and transmit an indication of an account number for the contactless card to the mobile device. The mobile device may then copy the account number to a clipboard of the mobile device.

544 Citations

20 Claims

1. An apparatus, comprising:
- a processor circuit; and
  
  a memory storing instructions which when executed by the processor circuit, cause the processor circuit to;
  
  receive, by an application executing on the processor circuit, encrypted data from a communications interface of a contactless card associated with an account, the encrypted data generated based on one or more cryptographic algorithms and a diversified key, the diversified key stored in a memory of the contactless card and generated based on a master key and a counter value stored in the memory of the contactless card;
  
  receive, by the application from a server, verification of the encrypted data, the server to decrypt the encrypted data based on one or more cryptographic algorithms and the diversified key stored in a memory of the server to verify the encrypted data, the diversified key stored in the memory of the server generated based on a master key and a counter value stored in the memory of the server;
  
  receive, by the application from the server, an encrypted account number associated with the account;
  
  decrypt, by the application, the encrypted account number to yield the account number; and
  
  copy, by the application, the account number to a clipboard of an operating system (OS) executing on the processor circuit.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The apparatus of claim 1, the memory storing instructions which when executed by the processor circuit, cause the processor circuit to:
    - receive, by the application from the server, an encrypted expiration date and an encrypted card verification value (CVV) associated with the account;
      
      decrypt, by the application, the encrypted expiration date and the encrypted CVV to yield the expiration date and CVV; and
      
      copy, by the application, at least one of the expiration date and the CVV to the clipboard of the OS.
  - 3. The apparatus of claim 2, the memory storing instructions which when executed by the processor circuit, cause the processor circuit to:
    - identify a form comprising a plurality of fields including a first field, a second field, and a third field;
      
      determine that the first field is associated with the account number, the second field is associated with the expiration date, and the third field is associated with the CVV; and
      
      paste, from the clipboard;
      
      (i) the account number to the first field, (ii) the expiration date to the second field, and (iii) the CVV to the third field.
  - 4. The apparatus of claim 3, the memory storing instructions which when executed by the processor circuit, cause the processor circuit to:
    - modify the clipboard based on at least one of;
      
      (i) completion of a purchase, and (ii) expiration of a time threshold, wherein modifying the clipboard comprises one or more of;
      
      (i) erasing all data stored in the clipboard, and (ii) copying random data to the clipboard.
  - 5. The apparatus of claim 1, the encrypted data received from the contactless card based on a first tap of the contactless card to the apparatus, the memory storing instructions which when executed by the processor circuit, cause the processor circuit to:
    - receive, by the application from the contactless card based on a second tap of the contactless card to the apparatus, an expiration date associated with the account;
      
      copy, by the application, the expiration date to the clipboard of the OS;
      
      receive, by the application from the contactless card based on a third tap of the contactless card to the apparatus, a card verification value (CVV) associated with the account; and
      
      copy, by the application, the CVV to the clipboard of the OS.
  - 6. The apparatus of claim 1, wherein the communications interface of the contactless card is configured to support at least one of near field communication (NFC), Bluetooth, and Wi-Fi, wherein the account number is a virtual account number.
  - 7. The apparatus of claim 1, wherein the encrypted data received from the contactless card comprises at least a customer identification value.

8. A method, comprising:
- authenticating, by an application executing on a processor circuit of a mobile device, a user of an account;
  
  receiving, by the application, encrypted data from a communications interface of a contactless card associated with the account, the encrypted data generated based on one or more cryptographic algorithms and a diversified key, the diversified key stored in a memory of the contactless card and generated based on a master key and a counter value stored in the memory of the contactless card;
  
  receiving, by the application from a server, verification of the encrypted data, the server to decrypt the encrypted data based on one or more cryptographic algorithms and the diversified key stored in a memory of the server to verify the encrypted data, the diversified key stored in the memory of the server generated based on a master key and a counter value stored in the memory of the server;
  
  receiving, by the application from the server, an account number associated with the account; and
  
  copying, by the application, the account number to a clipboard of an operating system (OS) executing on the processor circuit.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The method of claim 8, further comprising:
    - receiving, by the application from the server, an expiration date and a card verification value (CVV) associated with the account; and
      
      copying, by the application, at least one of the expiration date and the CVV to the clipboard of the OS.
  - 10. The method of claim 9, further comprising:
    - identifying a form comprising a plurality of fields including a first field, a second field, and a third field;
      
      determining that the first field is associated with the account number, the second field is associated with the expiration date, and the third field is associated with the CVV; and
      
      pasting, from the clipboard;
      
      (i) the account number to the first field, (ii) the expiration date to the second field, and (iii) the CVV to the third field.
  - 11. The method of claim 10, further comprising:
    - modifying the clipboard based on at least one of;
      
      (i) completion of a purchase, and (ii) expiration of a time threshold, wherein modifying the clipboard comprises one or more of;
      
      (i) erasing all data stored in the clipboard, and (ii) copying random data to the clipboard.
  - 12. The method of claim 8, the encrypted data received from the contactless card based on a first tap of the contactless card to the mobile device, method further comprising:
    - receiving, by the application from the contactless card based on a second tap of the contactless card to the mobile device, an expiration date associated with the account;
      
      copying, by the application, the expiration date to the clipboard of the OS;
      
      receiving, by the application from the contactless card based on a third tap of the contactless card to the mobile device, a card verification value (CVV) associated with the account; and
      
      copying, by the application, the CVV to the clipboard of the OS.
  - 13. The method of claim 8, wherein the communications interface of the contactless card is configured to support at least one of near field communication (NFC), Bluetooth, and Wi-Fi, wherein the account number is a virtual account number, wherein the encrypted data received from the contactless card comprises at least a customer identification value.
  - 14. The method of claim 8, further comprising:
    - generating, by the server, the diversified key based on the master key and the counter value stored in the memory of the server,wherein the contactless card is configured to;
      
      encrypt the counter value using one or more cryptographic algorithms and the master key to generate the diversified key;
      
      store the generated diversified key in the memory of the contactless card;
      
      encrypt data using one or more cryptographic algorithms and the diversified key to yield the encrypted data; and
      
      transmit the encrypted data to the mobile device.

15. A non-transitory computer-readable storage medium having computer-readable program code embodied therewith, the computer-readable program code executable by a processor circuit to cause the processor circuit to:
- receive, by an application executing on the processor circuit, encrypted data from a communications interface of a contactless card associated with an account, the encrypted data generated based on one or more cryptographic algorithms and a diversified key, the diversified key stored in a memory of the contactless card and generated based on a master key and a counter value stored in the memory of the contactless card;
  
  receive, by the application from a server, verification of the encrypted data, the server to decrypt the encrypted data based on one or more cryptographic algorithms and the diversified key stored in a memory of the server to verify the encrypted data, the diversified key stored in the memory of the server generated based on a master key and a counter value stored in the memory of the server;
  
  receive, by the application from the server, an encrypted account number associated with the account;
  
  decrypt, by the application, the encrypted account number to yield the account number; and
  
  copy, by the application, the account number to a clipboard of an operating system (OS) executing on the processor circuit.
- View Dependent Claims (16, 17, 18, 19, 20)
- - 16. The non-transitory computer-readable storage medium of claim 15, further comprising computer-readable program code executable by the processor circuit to cause the processor circuit to:
    - paste the account number in a form field.
  - 17. The non-transitory computer-readable storage medium of claim 15, further comprising computer-readable program code executable by the processor circuit to cause the processor circuit to:
    - receive, by the application from the server, an encrypted expiration date and an encrypted card verification value (CVV) associated with the account;
      
      decrypt, by the application, the encrypted expiration date and the encrypted CVV to yield the expiration date and CVV; and
      
      copy, by the application, at least one of the expiration date and the CVV to the clipboard of the OS.
  - 18. The non-transitory computer-readable storage medium of claim 15, further comprising computer-readable program code executable by the processor circuit to cause the processor circuit to:
    - modify the clipboard based on at least one of;
      
      (i) completion of a purchase, and (ii) expiration of a time threshold, wherein modifying the clipboard comprises one or more of;
      
      (i) erasing all data stored in the clipboard, and (ii) copying random data to the clipboard.
  - 19. The non-transitory computer-readable storage medium of claim 15, the encrypted data received from the contactless card based on a first tap of the contactless card to a mobile device, further comprising computer-readable program code executable by the processor circuit to cause the processor circuit to:
    - receive, by the application from the contactless card based on a second tap of the contactless card to the mobile device, an expiration date associated with the account;
      
      copy, by the application, the expiration date to the clipboard of the OS;
      
      receive, by the application from the contactless card based on a third tap of the contactless card to the mobile device, a card verification value (CVV) associated with the account; and
      
      copy, by the application, the CVV to the clipboard of the OS.
  - 20. The non-transitory computer-readable storage medium of claim 15, wherein the communications interface of the contactless card is configured to support at least one of near field communication (NFC), Bluetooth, and Wi-Fi, wherein the account number is a virtual account number, wherein the encrypted data received from the contactless card comprises at least a customer identification value.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Capital One Services LLC (Capital One Financial Corporation)
Original Assignee
Capital One Services LLC (Capital One Financial Corporation)
Inventors
Herrington, Daniel, Rule, Jeffrey, Hart, Colin, Ji, Jason
Primary Examiner(s)
Walsh, Daniel I

Application Number

US16/359,966
Time in Patent Office

202 Days
Field of Search
US Class Current
CPC Class Codes

G06F 9/543   User-generated data transfe...

G06Q 20/322   Aspects of commerce using m...

G06Q 20/3278   RFID or NFC payments by mea...

G06Q 20/352   Contactless payments by cards

G07F 7/0813   Specific details related to...

G07F 7/084   Additional components relat...

G07F 7/0893   the card reader reading the...

H04L 2209/56   Financial cryptography, e.g...

H04L 2209/805   Lightweight hardware, e.g. ...

H04L 63/0435   wherein the sending and rec...

H04L 63/067   using one-time keys cryptog...

H04L 9/0869   involving random numbers or...

H04L 9/14   using a plurality of keys o...

H04W 12/041   Key generation or derivation

H04W 4/80   Services using short range ...

Tap to copy data to clipboard via NFC

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

544 Citations

20 Claims

Specification

Use Cases

Quick Links

Others

Tap to copy data to clipboard via NFC

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

544 Citations

20 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others