Abstract: Techniques are described for securely updating a point-of-sale (POS) system that includes a merchant-facing device and a buyer-facing device. For instance, the merchant-facing device may execute first software that provides first POS functionality and the buyer-facing device may execute second software that provides second POS functionality. To update both devices, the merchant-facing device may receive a software update from a payment service via a network connection, and update the first software using the software update. The merchant-facing device can then cause, via a physical connection, the buyer-facing device to reboot in an update mode and send the software update to the buyer-facing device. In response, the buyer-facing device can update the second software using the software update and then reboot in a payments mode. In some instances, the buyer-facing device can then update a secure enclave on the buyer-facing device using the software update.

Abstract: A transaction device can implement a monitoring system to detect for tamper attempts at a chip card interface. The monitoring system can establish a baseline when no chip card is present in the chip card interface, or in some embodiments, when it is known that an authentic chip card is present in the slot. During subsequent evaluations of the chip card interface by the monitoring system, a response received by the monitoring system that deviates from the baseline can indicate that a tamper attempt at the chip card interface may have occurred. If a tamper attempt is determined by the monitoring system, a remedial or corrective action can be taken.

Abstract: A consumer terminal for a point-of-sale (POS) system used in performing a POS transaction between a merchant and a consumer. The consumer terminal includes a touch screen display having a touch panel, a secure processor in a physically secure area and a main processor in a non-secure area. The main processor is configured to display a series of screens to guide a consumer through the POS transaction. Upon receiving a request for secure data from the main processor, the secure processor instructs the main processor to exit pass-through mode and enter a secure touch mode. Upon a determination that the request for secure data is complete, the secure processor instructs the main processor to exit secure touch mode and return to pass-through mode.

Abstract: A transaction chip can exchange information with a chip card during a payment transaction. The transaction chip can incorporate a processing unit, a memory device, a contact interface and power and communication circuitry. The transaction chip can acquire payment information from the chip card when the EMV chip of the chip card is interfaced with the power and communication circuitry of the transaction chip via the contact interface.

Abstract: A point-of-sale (POS) system used in performing a POS transaction between a merchant and a consumer. The POS system includes a display having a touch panel, a main processor and a memory device. The POS system also includes a secure enclave with a secure processor and a microcontroller. The main processor is configured to display a series of screens to guide a consumer through the POS transaction. The microcontroller provides the inputs from the touch panel to the main processor when the POS system is operated in a pass-through mode and provides the inputs from the touch panel to the secure processor when the POS system is operated in a secure touch mode.

Abstract: A system for managing and using digital financial assets, such as cryptocurrency uses multiple independent devices that mutually cooperate to control cryptocurrency assets in a secure manner. Each of these devices may store a unique private key associated with the cryptocurrency assets, which may be configured such that a certain minimum number of these private keys are required to transfer the cryptocurrency assets. The use of multiple private keys spread across multiple distinct devices may reduce the likelihood of loss stemming from a hardware failure or reduce the likelihood of an attacker successfully gaining access to the cryptocurrency assets. In addition, selection of the devices to be used for storing these private keys, as well as how many private keys are required to authorize a transaction, may be tailored to balance a user's preferences for reliability of access versus security and for third-party custody versus self-custody.

Abstract: A system for managing and using digital financial assets, such as cryptocurrency uses multiple independent devices that mutually cooperate to control cryptocurrency assets in a secure manner. Each of these devices may store a unique private key associated with the cryptocurrency assets, which may be configured such that a certain minimum number of these private keys are required to transfer the cryptocurrency assets. The use of multiple private keys spread across multiple distinct devices may reduce the likelihood of loss stemming from a hardware failure or reduce the likelihood of an attacker successfully gaining access to the cryptocurrency assets. In addition, selection of the devices to be used for storing these private keys, as well as how many private keys are required to authorize a transaction, may be tailored to balance a user's preferences for reliability of access versus security and for third-party custody versus self-custody.

Abstract: A payment terminal may include payment interfaces to receive payment information from payment devices. The payment interfaces can include an interface configured to receive a payment card. Monitoring components may monitor the payment interfaces. In addition, a detection signal can be provided while a payment card is communicatively coupled to its corresponding payment interface. The monitored information and the detection signal may be used by the payment terminal to determine whether a transaction is fraudulent or if a tamper attempt is ongoing, based on local test criteria. In addition, the monitored information and detection signal may be provided to a server, which may store the monitored information and detection signal, test for fraudulent transactions and tamper attempts based on server test criteria, and determine updates to the local test criteria.

Abstract: A payment terminal may include payment interfaces to receive payment information from payment devices such as chip cards and NFC payment devices. Monitoring components may monitor these payment interfaces. In addition, test requests may be transmitted to a payment device in order to elicit responses. The monitored information and the responses may be used by the payment terminal to determine whether a transaction is fraudulent or if a tamper attempt is ongoing, based on local test criteria. In addition, the monitored information and responses may be provided to a server, which may store the monitored information and responses, test for fraudulent transactions and tamper attempts based on server test criteria, and determine updates to the local test criteria.

Abstract: A payment processing device can implement a monitoring system to detect for tamper attempts at a chip card interface. The monitoring system can establish a baseline when no chip card is present in the chip card interface, or in some embodiments, when it is known that an authentic chip card 14 is present in the slot 21. During subsequent evaluations of the chip card interface by the monitoring system, a response received by the monitoring system that deviates from the baseline can indicate that a tamper attempt at the chip card interface may have occurred. If a tamper attempt is determined by the monitoring system, a remedial or corrective action can be taken.

Abstract: A consumer terminal for a point-of-sale (POS) system used in performing a POS transaction between a merchant and a consumer. The consumer terminal includes a display, a touch panel, first electronics in a physically secure area and second electronics in a non-secure area. The first electronics are configured to display a series of screens to guide a consumer through the POS transaction. The second electronics comprises a microcontroller and a secure processor. Upon receiving a request for secure data from the non-secure processor, the secure processor sends a notification to the non-secure processor to exit pass-through mode and enter a secure touch mode. Upon completion of PIN entry, the secure processor instructs non-secure processor to exit secure touch mode and return to pass-through mode.

Abstract: A payment processing device can implement a monitoring system to detect for tamper attempts at a chip card interface. The monitoring system can establish a baseline when no chip card is present in the chip card interface, or in some embodiments, when it is known that an authentic chip card 14 is present in the slot 21. During subsequent evaluations of the chip card interface by the monitoring system, a response received by the monitoring system that deviates from the baseline can indicate that a tamper attempt at the chip card interface may have occurred. If a tamper attempt is determined by the monitoring system, a remedial or corrective action can be taken.

Abstract: This disclosure describes, in part, techniques for securely updating a point-of-sale (POS) system that includes a merchant-facing device and a buyer-facing device. For instance, the merchant-facing device may execute first software that provides first POS functionality and the buyer-facing device may execute second software that provides second POS functionality. To update both devices, the merchant-facing device may receive a software update from a payment service via a network connection, and update the first software using the software update. The merchant-facing device can then cause, via a physical connection, the buyer-facing device to reboot in an update mode and send the software update to the buyer-facing device. In response, the buyer-facing device can update the second software using the software update and then reboot in a payments mode. In some instances, the buyer-facing device can then update a secure enclave on the buyer-facing device using the software update.

Abstract: A wireless communication device such as a payment reader has a wireless communication interface and is able to establish wireless pairing with an interactive electronic device such as a merchant device running a point of sale application. In order to establish pairing, the wireless communication device accesses a passkey and encrypts the passkey. The encrypted passkey is transmitted to the interactive electronic device via the wireless communication interface, and the interactive electronic device sends the encrypted passkey to a pairing server. The pairing server decrypts the encrypted passkey and sends the decrypted passkey back to the interactive electronic device via a secure connection. The wireless communication device and the interactive electronic device establish wireless pairing based on the passkey and the decrypted passkey.

Abstract: A consumer terminal for a point-of-sale (POS) system used in performing a POS transaction between a merchant and a consumer. The consumer terminal includes a display, a touch panel, first electronics in a physically secure area and second electronics in a non-secure area. The first electronics are configured to display a series of screens to guide a consumer through the POS transaction. The second electronics comprises a microcontroller and a secure processor. Upon receiving a request for secure data from the non-secure processor, the secure processor sends a notification to the non-secure processor to exit pass-through mode and enter a secure touch mode. Upon completion of PIN entry, the secure processor instructs non-secure processor to exit secure touch mode and return to pass-through mode.

Abstract: A consumer terminal for a point-of-sale (POS) system used in performing a POS transaction between a merchant and a consumer. The consumer terminal includes a display, a touch panel, first electronics in a physically secure area and second electronics in a non-secure area. The first electronics are configured to display a series of screens to guide a consumer through the POS transaction. The second electronics comprises a microcontroller and a secure processor. Upon receiving a request for secure data from the non-secure processor, the secure processor sends a notification to the non-secure processor to exit pass-through mode and enter a secure touch mode. Upon completion of PIN entry, the secure processor instructs non-secure processor to exit secure touch mode and return to pass-through mode.

Abstract: Techniques for securely updating a point-of-sale (POS) system that includes a merchant-facing device and a buyer-facing device are described. For instance, the merchant-facing device may execute first software that provides first POS functionality and the buyer-facing device may execute second software that provides second POS functionality. To update both devices, the merchant-facing device may receive a software update from a payment service via a network connection, and update the first software using the software update. The merchant-facing device can then cause, via a physical connection, the buyer-facing device to reboot in an update mode and send the software update to the buyer-facing device. In response, the buyer-facing device can update the second software using the software update and then reboot in a payments mode. In some instances, the buyer-facing device can then update a secure enclave on the buyer-facing device using the software update.

Abstract: A payment processing device can implement a monitoring system to detect for tamper attempts at a chip card interface. The monitoring system can establish a baseline when no chip card is present in the chip card interface, or in some embodiments, when it is known that an authentic chip card 14 is present in the slot 21. During subsequent evaluations of the chip card interface by the monitoring system, a response received by the monitoring system that deviates from the baseline can indicate that a tamper attempt at the chip card interface may have occurred. If a tamper attempt is determined by the monitoring system, a remedial or corrective action can be taken.

Abstract: A payment processing device can implement a monitoring system to detect for tamper attempts at a chip card interface. The monitoring system can establish a baseline when no chip card is present in the chip card interface, or in some embodiments, when it is known that an authentic chip card 14 is present in the slot 21. During subsequent evaluations of the chip card interface by the monitoring system, a response received by the monitoring system that deviates from the baseline can indicate that a tamper attempt at the chip card interface may have occurred. If a tamper attempt is determined by the monitoring system, a remedial or corrective action can be taken.

Abstract: A payment terminal may include payment interfaces to receive payment information from payment devices such as chip cards and NFC payment devices. Monitoring components may monitor these payment interfaces. In addition, test requests may be transmitted to a payment device in order to elicit responses. The monitored information and the responses may be used by the payment terminal to determine whether a transaction is fraudulent or if a tamper attempt is ongoing, based on local test criteria. In addition, the monitored information and responses may be provided to a server, which may store the monitored information and responses, test for fraudulent transactions and tamper attempts based on server test criteria, and determine updates to the local test criteria.