[go: up one dir, main page]

MX356939B - Method and system for generating an advanced storage key in a mobile device without secure elements. - Google Patents

Method and system for generating an advanced storage key in a mobile device without secure elements.

Info

Publication number
MX356939B
MX356939B MX2016010086A MX2016010086A MX356939B MX 356939 B MX356939 B MX 356939B MX 2016010086 A MX2016010086 A MX 2016010086A MX 2016010086 A MX2016010086 A MX 2016010086A MX 356939 B MX356939 B MX 356939B
Authority
MX
Mexico
Prior art keywords
program
mobile device
code associated
generating
storage key
Prior art date
Application number
MX2016010086A
Other languages
Spanish (es)
Other versions
MX2016010086A (en
Inventor
Radu Cristian
Collinge Mehdi
Original Assignee
Mastercard International Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Mastercard International Inc filed Critical Mastercard International Inc
Publication of MX2016010086A publication Critical patent/MX2016010086A/en
Publication of MX356939B publication Critical patent/MX356939B/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3829Payment protocols; Details thereof insuring higher security of transaction involving key management
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/45Structures or tools for the administration of authentication
    • G06F21/46Structures or tools for the administration of authentication by designing passwords or checking the strength of passwords
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/322Aspects of commerce using mobile devices [M-devices]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/326Payment applications installed on the mobile devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3821Electronic credentials
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3823Payment protocols; Details thereof insuring higher security of transaction combining multiple encryption tools for a transaction

Landscapes

  • Business, Economics & Management (AREA)
  • Engineering & Computer Science (AREA)
  • Accounting & Taxation (AREA)
  • Theoretical Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • Computer Security & Cryptography (AREA)
  • Finance (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
  • Storage Device Security (AREA)
  • Telephone Function (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Cash Registers Or Receiving Machines (AREA)

Abstract

A method for building an advanced storage key includes: storing, in a memory of a mobile device, at least (i) device information associated with the mobile device, (ii) program code associated with a first program, the code including an instance identifier, and (iii) program code associated with a second program, the code including a first key; generating a device fingerprint associated with the mobile device based on the device information via execution of the code associated with the first program; generating a random value via execution of the code associated with the first program; building a diversifier value based on the generated device fingerprint, the generated random value, and the instance identifier included in the code associated with the first program; and decrypting the built diversifier value using the first key stored in the code associated with the second program via execution of the code associated with the second program to obtain a storage key.
MX2016010086A 2014-04-14 2014-12-02 Method and system for generating an advanced storage key in a mobile device without secure elements. MX356939B (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US201461979113P 2014-04-14 2014-04-14
PCT/US2014/068000 WO2015160385A1 (en) 2014-04-14 2014-12-02 Method and system for generating an advanced storage key in a mobile device without secure elements

Publications (2)

Publication Number Publication Date
MX2016010086A MX2016010086A (en) 2017-04-27
MX356939B true MX356939B (en) 2018-06-20

Family

ID=54324415

Family Applications (1)

Application Number Title Priority Date Filing Date
MX2016010086A MX356939B (en) 2014-04-14 2014-12-02 Method and system for generating an advanced storage key in a mobile device without secure elements.

Country Status (14)

Country Link
EP (1) EP3132406A4 (en)
JP (3) JP6224254B2 (en)
KR (3) KR102151579B1 (en)
CN (2) CN111523884B (en)
AU (3) AU2014391256B2 (en)
CA (1) CA2933336C (en)
IL (1) IL246109B (en)
MX (1) MX356939B (en)
NZ (1) NZ721223A (en)
RU (2) RU2682840C2 (en)
SG (2) SG10201801008SA (en)
UA (1) UA117951C2 (en)
WO (1) WO2015160385A1 (en)
ZA (1) ZA201603938B (en)

Families Citing this family (21)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10270748B2 (en) 2013-03-22 2019-04-23 Nok Nok Labs, Inc. Advanced authentication techniques and applications
US11521203B2 (en) * 2015-07-09 2022-12-06 Cryptography Research, Inc. Generating a cryptographic key based on transaction data of mobile payments
JP2017175226A (en) * 2016-03-18 2017-09-28 株式会社インテック Program, method and system for issuing public key certificate
US10769635B2 (en) 2016-08-05 2020-09-08 Nok Nok Labs, Inc. Authentication techniques including speech and/or lip movement analysis
EP3340094B1 (en) * 2016-12-22 2021-04-28 Mastercard International Incorporated Method for renewal of cryptographic whiteboxes under binding of new public key and old identifier
EP3364329B1 (en) * 2017-02-21 2023-07-26 Mastercard International Incorporated Security architecture for device applications
CN108804908B (en) * 2017-05-04 2023-05-09 腾讯科技(深圳)有限公司 Equipment fingerprint generation method and device and computing equipment
CN107908948B (en) * 2017-11-01 2019-11-19 中国移动通信集团江苏有限公司 A fingerprint generation method for Android APP devices applied to security risk control
US11868995B2 (en) 2017-11-27 2024-01-09 Nok Nok Labs, Inc. Extending a secure key storage for transaction confirmation and cryptocurrency
US11831409B2 (en) 2018-01-12 2023-11-28 Nok Nok Labs, Inc. System and method for binding verifiable claims
CN109068304A (en) * 2018-08-07 2018-12-21 佛山市苔藓云链科技有限公司 It is a kind of to verify the true method of internet of things equipment using near-field communication
US10581611B1 (en) * 2018-10-02 2020-03-03 Capital One Services, Llc Systems and methods for cryptographic authentication of contactless cards
US11258604B2 (en) * 2018-10-19 2022-02-22 Oracle International Corporation Rewiring cryptographic key management system service instances
US12041039B2 (en) 2019-02-28 2024-07-16 Nok Nok Labs, Inc. System and method for endorsing a new authenticator
JP7127585B2 (en) * 2019-03-12 2022-08-30 オムロン株式会社 Safety system and maintenance method
US11792024B2 (en) 2019-03-29 2023-10-17 Nok Nok Labs, Inc. System and method for efficient challenge-response authentication
US11783332B2 (en) 2020-02-14 2023-10-10 Mastercard International Incorporated Method and system for facilitating secure card-based transactions
EP3933731A1 (en) * 2020-06-30 2022-01-05 Mastercard International Incorporated Authorization data processing for multiple issuers
EP3933730A1 (en) * 2020-06-30 2022-01-05 Mastercard International Incorporated Realtime selection of payment account
US11784798B2 (en) 2021-03-30 2023-10-10 Visa International Service Association System, method, and computer program product for data security
CN115396103B (en) * 2022-10-26 2023-03-24 杭州海康威视数字技术股份有限公司 AI data sharing method, system and device based on white box key

Family Cites Families (22)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7606771B2 (en) * 2001-01-11 2009-10-20 Cardinalcommerce Corporation Dynamic number authentication for credit/debit cards
WO2006072263A1 (en) * 2005-01-07 2006-07-13 Hentze-Lissotschenko Patentverwaltungs Gmbh & Co. Kg Device for homogenizing light
KR100842267B1 (en) * 2006-12-01 2008-06-30 한국전자통신연구원 Integrated user authentication server, client and method in a system with multiple authentication means
JP2009284231A (en) * 2008-05-22 2009-12-03 Panasonic Corp Key generating apparatus, key generating method, key generating program, and electronic apparatus
US8555089B2 (en) * 2009-01-08 2013-10-08 Panasonic Corporation Program execution apparatus, control method, control program, and integrated circuit
US8893967B2 (en) * 2009-05-15 2014-11-25 Visa International Service Association Secure Communication of payment information to merchants using a verification token
US8380177B2 (en) * 2010-04-09 2013-02-19 Paydiant, Inc. Mobile phone payment processing methods and systems
SG183988A1 (en) * 2010-04-09 2012-10-30 Visa Int Service Ass System and method for securely validating transactions
EP2603892A4 (en) * 2010-08-12 2015-09-02 Mastercard International Inc Multi-commerce channel wallet for authenticated transactions
US20120151223A1 (en) * 2010-09-20 2012-06-14 Conde Marques Ricardo Nuno De Pinho Coelho Method for securing a computing device with a trusted platform module-tpm
US8746553B2 (en) * 2010-09-27 2014-06-10 Mastercard International Incorporated Purchase Payment device updates using an authentication process
CN103201758A (en) 2010-11-10 2013-07-10 斯玛特哈伯私人有限公司 Method of performing a financial transaction via unsecured public telecommunication infrastructure and an apparatus for same
GB201105765D0 (en) * 2011-04-05 2011-05-18 Visa Europe Ltd Payment system
WO2012170895A1 (en) * 2011-06-09 2012-12-13 Yeager C Douglas Systems and methods for authorizing a transaction
US9473295B2 (en) * 2011-09-26 2016-10-18 Cubic Corporation Virtual transportation point of sale
US10515359B2 (en) * 2012-04-02 2019-12-24 Mastercard International Incorporated Systems and methods for processing mobile payments by provisioning credentials to mobile devices without secure elements
WO2013158419A1 (en) * 2012-04-18 2013-10-24 Google Inc. Processing payment transactions without a secure element
WO2013159110A1 (en) * 2012-04-20 2013-10-24 Conductiv Software, Inc. Multi-factor mobile transaction authentication
KR20130140948A (en) * 2012-05-17 2013-12-26 삼성전자주식회사 Apparatus and method for contents encryption and decryption based on storage device id
US8738454B2 (en) * 2012-07-23 2014-05-27 Wal-Mart Stores, Inc. Transferring digital receipt data to mobile devices
US9646303B2 (en) * 2013-08-15 2017-05-09 Visa International Service Association Secure remote payment transaction processing using a secure element
WO2015084755A1 (en) * 2013-12-02 2015-06-11 Mastercard International Incorporated Method and system for secure authentication of user and mobile device without secure elements

Also Published As

Publication number Publication date
JP2017513248A (en) 2017-05-25
EP3132406A1 (en) 2017-02-22
RU2653290C1 (en) 2018-05-07
UA117951C2 (en) 2018-10-25
ZA201603938B (en) 2017-09-27
CN106104605A (en) 2016-11-09
NZ721223A (en) 2018-02-23
KR102151579B1 (en) 2020-09-03
SG11201604876YA (en) 2016-07-28
SG10201801008SA (en) 2018-03-28
RU2682840C2 (en) 2019-03-21
RU2018113732A (en) 2019-03-04
AU2019250276A1 (en) 2019-11-07
CA2933336A1 (en) 2015-10-22
IL246109B (en) 2020-03-31
WO2015160385A1 (en) 2015-10-22
KR20160132105A (en) 2016-11-16
JP6703510B2 (en) 2020-06-03
KR101903709B1 (en) 2018-10-04
AU2017245412A1 (en) 2017-11-02
AU2019250276B2 (en) 2021-04-01
AU2014391256B2 (en) 2017-07-13
KR20200018729A (en) 2020-02-19
CN106104605B (en) 2020-03-17
CN111523884A (en) 2020-08-11
MX2016010086A (en) 2017-04-27
JP2020074566A (en) 2020-05-14
EP3132406A4 (en) 2017-11-01
IL246109A0 (en) 2016-07-31
JP6224254B2 (en) 2017-11-01
KR20180108907A (en) 2018-10-04
JP6889967B2 (en) 2021-06-18
AU2014391256A1 (en) 2016-07-07
RU2018113732A3 (en) 2019-03-04
CA2933336C (en) 2018-09-04
JP2018050300A (en) 2018-03-29
CN111523884B (en) 2023-05-30
KR102150722B1 (en) 2020-09-02

Similar Documents

Publication Publication Date Title
UA117951C2 (en) Method and system for generating an advanced storage key in a mobile device without secure elements
CL2016001866A1 (en) A method to build an advanced storage key on a mobile communication device.
MX2023007718A (en) Encrypted userdata transit and storage.
GB2538927A (en) Methods and apparatus to identify media using hash keys
WO2017171987A8 (en) System, apparatus and method for performing secure memory training and management in a trusted environment
NZ746653A (en) Access control for encrypted data in machine-readable identifiers
CL2016001353A1 (en) Methods and systems for the secure authentication of a user and a mobile device without security elements and that generate payment credentials in a payment transaction.
EP4271016A3 (en) Enhanced authentication based on secondary device interactions
AR097524A1 (en) DATA ENCRYPTION AND SMART CARD THAT STORTS ENCRYPTED DATA
TW201614650A (en) Comparison operations in memory
GB2530972A (en) Encrypted purging of data from content node storage
EP4307695A3 (en) Systems and methods for performing transport i/o
WO2014195293A3 (en) Authentication devices, key generator devices, methods for controlling an authentication device, and methods for controlling a key generator
WO2014179145A3 (en) Drive level encryption key management in a distributed storage system
EP2639996A3 (en) Collusion-resistant outsourcing of private set intersection
NZ701459A (en) Systems and methods for secure processing with embedded cryptographic unit
GB201211472D0 (en) Ordered deletion of content in storage systems
MX355275B (en) Enabling access to data.
MX2016013227A (en) Method for storage device storing data and storage device.
BR112013001728A2 (en) methods for encrypting a value entered in a user device, for verifying a value communicated to an authentication system via a communications network, and for communicating a value entered in a user device to an authentication system via a communications network, user device, system, software, and computer readable medium.
IN2014MU00771A (en)
MX2019003604A (en) Cipher message with authentication instruction.
SG11201805503TA (en) Method of inputting document information, device, server, and storage medium
EA201690365A1 (en) SELECTED MANAGEMENT OF DETONATOR GROUPS
WO2014111725A3 (en) An attendance device

Legal Events

Date Code Title Description
FG Grant or registration