Abstract: Methods and apparatus for enabling a proximity payment device to generate dynamic data for securely conducting a transaction by emulating a magnetic stripe payment card. In an embodiment, a mobile device processor transmits information to a digital enablement service computer to activate a simulated magnetic stripe payment wallet application stored in the mobile device. The mobile device then receives one or more cryptographic keys, generates an unpredictable number (UN), generates dynamic CVC3 data based on the UN, and then assembles emulated magnetic stripe data. During initiation of a purchase transaction, the mobile device processor transmits the emulated magnetic stripe data to a communications interface associated with a merchant device.

Abstract: A mobile computing device has at least one processor and at least one memory together providing a first execution environment and a second execution environment logically isolated from the first execution environment. The following approach is taken to manage data items for an application executing the first execution environment. A trust relationship is established between a trust client in the second execution environment and a remote trusted party and the trust client receives one or more data items from the remote trusted party. On executing the application in the first execution environment, the trust client provides the data items or further data items derived therefrom to the application. Provision of these data items may be conditional upon a user authentication process. A suitable mobile computing device is also described.

Abstract: A mobile computing device having at least one processor and at least one memory, together providing a first execution environment and a second execution environment logically isolated from the first execution environment, the mobile computing device comprising: a first application executable within the first execution environment; a second trusted application executable within the second execution environment; and a secure communications channel between the first application and the second trusted application, wherein the second trusted application is configured to generate one or more data items and to provide the one or more data items to the first application via the secure communications channel.

Abstract: A portable device configured to enable completion of transactions. The portable device comprises an input mechanism arranged to enable input of an identifier into the portable device, and a selection mechanism arranged to enable the user to select a payment mechanism to be associated with the identifier. The portable device further comprises a communication module arranged to transmit data relating to the identifier and the payment mechanism selection to a remote server. Completion of a subsequent transaction relating to the identifier is enabled using the selected payment mechanism.

Abstract: Processes and systems for facilitating purchase transactions with a mobile device. In an embodiment, a mobile device processor receives an indication to conduct a purchase transaction, initializes a secure mobile wallet application and receives a selection of a payment account. The mobile device processor then retrieves a pre-loaded wallet single use key (W_SUK) from a secure storage component, derives a wallet session key (W_SK) utilizing the W_SUK, encrypts transaction data using the W_SK, generates a machine readable code utilizing the encrypted transaction data, and displays the machine readable code on a display screen for reading by a merchant scanner to continue the processing of the purchase transaction.

Abstract: A request may be received for a transaction. In response to the request, a nonce value may be generated. A cryptographic key may be used to cryptographically process a payment token with the nonce value to produce a security code. The payment token, the nonce value and the security code may be transmitted together as payment credentials. In some cases, the nonce value may be in the format for a payment account expiration date.

Abstract: A mobile computing device having at least one processor and at least one memory, together providing a first execution environment and a second execution environment logically isolated from the first execution environment, the mobile computing device comprising: a first application executable within the first execution environment; a second trusted application executable within the second execution environment; and a secure communications channel between the first application and the second trusted application, wherein the second trusted application is configured to generate one or more data items and to provide the one or more data items to the first application via the secure communications channel.

Abstract: Methods and apparatus for enabling a proximity payment device to generate dynamic data for securely conducting a transaction by emulating a magnetic stripe payment card. In an embodiment, a mobile device processor transmits information to a digital enablement service computer to activate a simulated magnetic stripe payment wallet application stored in the mobile device. The mobile device then receives one or more cryptographic keys, generates an unpredictable number (UN), generates dynamic CVC3 data based on the UN, and then assembles emulated magnetic stripe data. During initiation of a purchase transaction, the mobile device processor transmits the emulated magnetic stripe data to a communications interface associated with a merchant device.

Abstract: A mobile computing device has at least one processor and at least one memory together providing a first execution environment and a second execution environment logically isolated from the first execution environment. The following approach is taken to manage data items for an application executing the first execution environment. A trust relationship is established between a trust client in the second execution environment and a remote trusted party and the trust client receives one or more data items from the remote trusted party. On executing the application in the first execution environment, the trust client provides the data items or further data items derived therefrom to the application 213. Provision of these data items may be conditional upon a user authentication process. A suitable mobile computing device is also described.

Abstract: A portable device configured to enable completion of transactions. The portable device comprises an input mechanism arranged to enable input of an identifier into the portable device, and a selection mechanism arranged to enable the user to select a payment mechanism to be associated with the identifier. The portable device further comprises a communication module arranged to transmit data relating to the identifier and the payment mechanism selection to a remote server. Completion of a subsequent transaction relating to the identifier is enabled using the selected payment mechanism.

Abstract: A method of performing a transaction using first and second computing devices is described. A local data connection is established between the first computing device and the second computing device. An amount to transfer is identified at either the first computing device or the second computing device. A first account is identified at the first computing device and a second account at the second computing device. Credentials are provided at the first computing device to authorize the transaction, and encrypted and authenticated transaction data is sent to a payer account provider for value transfer between the first account provider and a second account provider. Confirmation of the completed transaction is then provided to the first computing device and the second computing device. Suitable computer program products and computing devices are provided. This method is particularly effective for providing local person to person value transfers in real time.