SYSTEMS AND METHODS FOR PERFORMING A REISSUE OF A CONTACTLESS CARD
First Claim
1. A non-transitory computer-readable medium storing:
- a first applet configured to authorize transactions for a contactless card and maintaining a first primary account number (PAN) for the contactless card, the first PAN identifying the contactless card in the transactions;
a second applet distinct from the first applet and configured to interact with an outside application and serve as a bridge between the outside application and the first applet;
instructions configured to cause a processing circuit to;
receive an instruction, at the second applet, to change the first PAN;
authenticate the contactless card by instructing the contactless card to generate a cryptogram, transmitting the cryptogram generated by the contactless card to an authentication server, and receiving an authentication approval from the authentication server;
in response to authenticating the contactless card, instruct the first applet, on a secure communication channel from the second applet, to change the first PAN; and
change the first PAN to a second PAN at the first applet, wherein changing the first PAN causes the first applet to use the second PAN in place of the first PAN in future transactions.
1 Assignment
0 Petitions
Accused Products
Abstract
Example embodiments relate to reissuing or otherwise altering a contactless card. These embodiments are particularly well-suited to an emergency reissue in which many cards have been compromised as the result of a data breach of a major credit card provider or department store. An exemplary contactless card includes a chip that stores encrypted authentication information, including a primary account number (PAN) that identifies the card. The chip may include a first applet responsible making payments with the card; the first applet may manage the PAN. A second applet may be capable of interacting with an outside application, and may serve as a bridge to the first applet. A rewrite of the PAN may be triggered by issuing a write command to the second applet, or by interacting with the chip in a predetermined manner (e.g., tapping the card on an interactable element a predetermined number of times).
12 Citations
20 Claims
-
1. A non-transitory computer-readable medium storing:
-
a first applet configured to authorize transactions for a contactless card and maintaining a first primary account number (PAN) for the contactless card, the first PAN identifying the contactless card in the transactions; a second applet distinct from the first applet and configured to interact with an outside application and serve as a bridge between the outside application and the first applet; instructions configured to cause a processing circuit to; receive an instruction, at the second applet, to change the first PAN; authenticate the contactless card by instructing the contactless card to generate a cryptogram, transmitting the cryptogram generated by the contactless card to an authentication server, and receiving an authentication approval from the authentication server; in response to authenticating the contactless card, instruct the first applet, on a secure communication channel from the second applet, to change the first PAN; and change the first PAN to a second PAN at the first applet, wherein changing the first PAN causes the first applet to use the second PAN in place of the first PAN in future transactions. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method comprising:
-
storing an original number for a credit account in digital payment logic on a chip of a contactless card; receiving an instruction at communication logic, stored on the chip and distinct from the digital payment logic, to update the original number for the credit account; authenticating the contactless card by instructing the contactless card to generate a cryptogram, transmitting the cryptogram generated by the contactless card to an authentication server, and receiving an authentication approval from the authentication server; in response to authenticating the contactless card, establishing a secure data transmission from the communication logic to the digital payment logic; issue a command from the communication logic to the digital payment logic to update the original number using the secure data transmission; update the original number to an updated number using the digital payment logic in response to receiving the command. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. An apparatus having a contact pad comprising:
-
an antenna configured to receive a short range communication from a device; a microprocessor circuit powered by the antenna using energy from the short range communication; a memory storing; transaction logic configured to reference an identifier for the apparatus in connection with a transaction; and encryption and authentication logic configured to communicate with the device via the antenna, wherein the encryption and authentication logic is further configured to recognize a directive from the device and received by the antenna, the directive indicating that the identifier is to be rewritten, authenticate the contactless card by instructing the contactless card to generate a cryptogram, transmitting the cryptogram generated by the contactless card to an authentication server, and receiving an authentication approval from the authentication server, and, in response to authenticating the contactless card, communicate the directive to the transaction logic, and the transaction logic is further configured to rewrite the identifier based on the directive. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification