Abstract: A cryptographic expansion device that can be attached to a communication component of a communication device to enable the communication device to perform cryptographic operations on communications sent to and from the communication device is described. The cryptographic expansion device can be a small-form factor cryptographic expansion device that can be used with a small-form factor communication component such as a micro-SIM (subscriber identity module) card. When used with a communication device, the cryptographic expansion device enables the communication device to send and received end-to-end secure encrypted communications. The end-to-end secure communications enabled by the cryptographic expansion device can be utilized by a user of the communication device to perform financial and/or banking transactions.

Abstract: Systems, methods and devices for providing a single-use payment credential usable in a financial transaction are disclosed. In a method conducted at a remotely accessible server, a request for a single-use payment credential is received from an issuing financial entity. The request includes a consumer identifier of a consumer. The server associates the consumer identifier with a single-use payment credential in a database and transmits the single-use payment credential to a communication device of the consumer for presentation to a merchant. The server receives a transaction request including the single-use payment credential from an acquiring financial entity and transmits an indication of the transaction request in respect of the consumer identifier to the issuing financial entity such that the financial transaction may be completed.

Abstract: A method and system for transmitting and receiving transaction information are provided. The method for transmitting transaction information is performed on a computing device and includes: accessing transaction information to be transmitted and selecting an electronic file. The metadata stored in the electronic file is edited to insert the transaction information into one or more fields of the metadata to provide modified metadata of the electronic file. The electronic file with the modified metadata is transmitted to a receiving entity for processing of the transaction information. The transaction information may be in the form of payment credentials usable to enable a payment transaction.

Abstract: A cryptographic expansion device that can be attached to a communication component of a communication device to enable the communication device to perform cryptographic operations on communications sent to and from the communication device is described. The cryptographic expansion device can be a small-form factor cryptographic expansion device that can be used with a small-form factor communication component such as a micro-SIM (subscriber identity module) card. When used with a communication device, the cryptographic expansion device enables the communication device to send and received end-to-end secure encrypted communications. The end-to-end secure communications enabled by the cryptographic expansion device can be utilized by a user of the communication device to perform financial and/or banking transactions.

Abstract: A method and system for conducting a pre-authorized financial transaction is disclosed. A security gateway receives a pre-authorization token and a consumer alias from a merchant or an acquirer of the merchant. The token identifies a pre-authorized financial transaction and the token and alias have previously been provided to the merchant by a consumer. The alias is matched with a stored alias to identify an electronic device of the consumer. An authorization request is transmitted to the electronic device. A confirmation message or a denial message is received by the security gateway in response to the authorization request. The token may be associated with a series of recurring transactions with the merchant. The consumer may utilize the electronic device to send a request to the security gateway to cancel the series of recurring transactions. The security gateway may disable the token and transmit a cancellation notification to the merchant.

Abstract: Methods and systems for transferring electronic money from a first mobile device of a first user to a receiver are provided. The method performed on the first mobile device includes the steps of: receiving, from the first user, an input representing an amount of electronic money to be transferred from a first electronic purse holding electronic money and associated with the first mobile device; generating, by means of a secure element associated with the first mobile device, an encrypted token representing the amount of electronic money to be transferred, the encrypted token including a unique identifier of the first electronic purse; decrementing an available balance in the first electronic purse by the amount of electronic money to be transferred; and transmitting the encrypted token to the receiver.

Abstract: Systems, methods and devices for providing digital certificates are disclosed. In a method conducted at a remotely accessible server, a request, including an identifier, for a digital certificate is received. A communication address of a mobile device, having a certificate store module in communication therewith, associated with the identifier is then obtained. A request for a digital certificate is transmitted to the certificate store module via the mobile device and the certificate store module is configured to prompt a user thereof, via the mobile device, for a passcode before releasing the certificate. The digital certificate is received from the certificate store module via the mobile device in response to entry of a passcode into the certificate store module which corresponds to an offset stored in the certificate store module. The digital certificate is then transmitted to a communication device for use in digitally signing or encrypting a data message.

Abstract: A payment card, for use with a payment card acceptance terminal, and related systems and methods are disclosed. The payment card includes an acceptance terminal interface component for interfacing with a payment card acceptance terminal and a user input receiving component for receiving an input by a user directly. The payment card also includes an integrated circuit which is in communication with the acceptance terminal interface and the user input receiving component and is configured to provide payment credentials to the payment card acceptance terminal on receipt of an input at the user input receiving component.

Abstract: Systems and methods for verification conducted at a secure element are disclosed. In a method of verification conducted at a secure element interacting with a mobile device, the secure element receives at least one of an identifier of a universal integrated circuit card (UICC) and an identifier of the mobile device. The secure element then compares each of the received at least one identifiers against a registered identifier of corresponding form stored in a non-volatile memory of the secure element. If the received at least one identifiers match corresponding registered identifiers stored in the non-volatile memory, the secure element permits further interaction with the mobile device. If at least one of the received identifiers do not match corresponding registered identifiers stored in the non-volatile memory, the secure element denies further interaction with the mobile device.

Abstract: Rules relating to the authorization of contactless payment transactions may be stored on a mobile device. After provision of contactless payment credentials to a merchant, the mobile device receives a query relating to the authorization of the transaction. The transaction details contained in the query are compared to the rules stored on the mobile device. Depending on the relevant rule applicable, the transaction may either be approved or rejected automatically, or may require user authorization. Depending on input received from the user in response to a prompt therefore, the transaction will be authorized or rejected.

Abstract: A method and system for conducting a pre-authorized financial transaction is disclosed. A security gateway receives a pre-authorization token and a consumer alias from a merchant or an acquirer of the merchant. The token identifies a pre-authorized financial transaction and the token and alias have previously been provided to the merchant by a consumer. The alias is matched with a stored alias to identify an electronic device of the consumer. An authorization request is transmitted to the electronic device. A confirmation message or a denial message is received by the security gateway in response to the authorization request. Upon receiving a confirmation message, payment credentials associated with a selected payment instrument of the consumer and required for conducting the pre-authorized transaction are transmitted to the merchant or the acquirer of the merchant for use in completing the transaction.

Abstract: A method and system for provisioning payment credentials usable by a mobile device in conducting a payment. The method is conducted at a provisioning system and comprises the steps of: receiving payment credentials from a receiving device, the payment credentials having been obtained from a portable payment device presented by a consumer at the receiving device; receiving, from the receiving device, an identifier entered by the consumer; identifying a mobile device or a secure element corresponding to the identifier; and communicating the payment credentials or a derivation of the payment credentials to the identified mobile device or the secure element to be securely stored in association with the mobile device. The method may include: encrypting the received payment credentials, the encrypted payment credentials having a unique decryption key; and wherein communicating a derivation of the payment credentials communicates the unique decryption key.

Abstract: Methods, systems and devices for transacting are provided. In a method conducted at a mobile device of a consumer, having a mobile-based credential stored in a secure memory thereof and having an associated alias, a request for the mobile-based credential from a remotely accessible server is received in response to a requestor device receiving the alias from the consumer. The mobile-based credential is accessed from the secure memory and transmitted to the remotely accessible server. The mobile-based credential is then usable at the remotely accessible server in combination with a server-based credential stored thereat for obtaining payment credentials usable in completing the transaction.

Abstract: The invention provides systems, methods and devices for performing passcode authentication. In one embodiment of the invention, a method of performing passcode authentication conducted at a mobile device is provided which comprises the steps of: receiving an authentication request from a security gateway; receiving a passcode entered by a user of the mobile device; comparing the entered passcode to a passcode offset securely stored in a hardware security module (HSM) coupled to the mobile device; and, if the entered passcode corresponds with the passcode offset, generating a secure authentication confirmation message and transmitting the confirmation message to the security gateway; or, if the entered passcode does not correspond with the passcode offset, generating a secure authentication denial message and transmitting the authentication denial message to the security gateway.

Abstract: A cryptographic label is provided for enabling a mobile communications device to perform secure communications. The label comprises a flexible printed circuit having a first set of electrical contacts disposed on a top side of the circuit for interfacing to a mobile communications device, a second set of electrical contacts disposed on a bottom side of the circuit for interfacing to a communication card, and a hardware security module disposed in the circuit and coupled to the first and second sets of electrical contacts. The label is characterised in that it further includes a skirt attached to the flexible printed circuit, the skirt having an adhesive portion on at least a bottom side thereof which, in use, bonds to a communication card to attach the label to the communication card. The skirt is capable of having printed indicia provided on a top side thereof.

Abstract: The invention provides a method and system for providing financial details from a mobile device of a user for use in a transaction. The method is performed on a mobile device of the user and includes the steps of generating, on a token generating component, a session-specific token by applying an algorithm requiring a dynamic key; providing financial details for use in a transaction; incorporating the session-specific token and the financial details into a modified form the financial details; and transferring the modified form of the financial details from the mobile device to initiate the transaction. A corresponding method and system for validating financial details received, at a server of an issuing authority, is also provided.

Abstract: A dynamic object tag for a product and systems and methods relating thereto is disclosed. The dynamic object tag comprises a hardware security module, including an electronic storage module, and a communication module for communicating with an interrogation device. The hardware security module is adapted to establish a secure communication channel with the interrogation device, to exchange dynamic authentication parameters with the interrogation device, and to communicate product information stored on the electronic storage module to the interrogation device over the secure communication channel.

Abstract: A system and method of issuing payment credentials to a consumer is disclosed. A payment processing network sends payment credentials and an identifier of a consumer to whom the payment credentials belong to a secure gateway. The secure gateway encrypts or zone translates the payment credentials and sends them to a mobile device of the consumer through a secure communication channel. The mobile device includes a hardware security module (HSM) which stores the payment credentials to be used for subsequent financial transactions by the consumer. Multiple sets of payment credentials may be stored on the HSM, corresponding to multiple payment accounts belonging to the consumer.

Abstract: Embodiments of the invention disclose a remote control device for operating a media device that can be used to conduct financial transactions. The remote control device includes a user interface to accept user input, and a communication interface to communicate with the media device. The remote control device also includes a hardware security module that is coupled to the user interface and the communication interface. The hardware security module includes a secure processing unit, and a public processing unit that is configured to selectively request the secure processing unit to encrypt user input based on a function that is being performed on the media device.

Abstract: Systems, methods, apparatuses, and computer-readable media for using near sound communication (NSC) functionalities to complete transactions are presented. According to one or more aspects, a payment server may receive a data message from a payor's telephone, and the data message may include a user-specified password. In response to validating the payor based on the user-specified password, a call may be initiated to the payor's telephone. Subsequently, a unique audio stream may be played over the call. The unique audio stream may be adapted to be captured by a merchant point-of-sale terminal for use in completing a transaction. In some arrangements, the unique audio stream may include encoded information identifying the payor and/or identifying an amount of funds to be paid.