Patents by Inventor Christian Aabye
Christian Aabye has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 12112315Abstract: In a system for verifying transactions, when a user with a portable communication device nears a resource provider location, the portable communication device provides an indication to a transaction processing system of its proximity to the location. The portable communication device then provides a universally unique identifier (UUID) of a base station of the resource provider to the transaction processing system, which generates a hash using the UUID and a primary account number (PAN) of a portable transaction device that is associated with the portable communication device. When the user conducts a transaction with the portable transaction device at the provider, the provider generates a separate hash from the UUID and the PAN and sends the hash to the transaction processing system, A match between the hashes is taken into account as a positive indicator that the transaction is not fraudulent and the resource provider is complying with the system.Type: GrantFiled: July 29, 2016Date of Patent: October 8, 2024Assignee: VISA INTERNATIONAL SERVICE ASSOCIATIONInventors: John F. Sheets, Kim Wagner, Christian Aabye, Jing Jin
-
Patent number: 12112325Abstract: Embodiments of the invention are directed to access transactions. A gate access device may interact with a payment card such as a credit card. The gate access device may generate and transmit a first authorization request message to a payment processing network computer. The first authorization request message does not include an amount for the transaction, but only contains identification information. A first authorization response message is transmitted back to the gate access device. At a later point in time, a second authorization request message containing the transaction amount is transmitted from the gate access device to the issuer, and a response is received from the issuer.Type: GrantFiled: August 24, 2021Date of Patent: October 8, 2024Assignee: Visa International Service AssociationInventors: Christian Aabye, Eric Schindewolf
-
Publication number: 20240320652Abstract: A reader device may include a midrange wireless transceiver, a controller coupled to the midrange wireless transceiver, and a memory coupled to the controller. The memory may store executable code, which when executed by the controller, causes the reader device to implement various operations including maintaining a transaction service attributes database in the memory. The operations may also include broadcasting a beacon including a transaction service indicator at a periodic interval using the midrange wireless transceiver, receiving a connection request from a communication device, and establishing a wireless connection with the communication device. The operations may further include performing an application selection process with the communication device, performing application data processing with the communication device, and performing authorization request processing for the communication device.Type: ApplicationFiled: June 4, 2024Publication date: September 26, 2024Applicant: VISA INTERNATIONAL SERVICE ASSOCIATIONInventors: Jing Jin, Thomas Bellenger, Christian Aabye, Bryan Carroll
-
Patent number: 12086777Abstract: A system, apparatus, and method for processing payment transactions that are conducted using a mobile payment device that includes a contactless element, such as an integrated circuit chip. The invention enables one or more of the operations of activation of a payment application, transfer of transaction data, updating of account records, setting or re-setting of a payment application counter or register, or transfer or processing of a script, command, or instruction, with these functions being performed with minimal impact on a consumer. This is accomplished by introducing a pre-tap and/or two-tap operation prior to, or as part of, the transaction flow.Type: GrantFiled: December 9, 2021Date of Patent: September 10, 2024Assignee: Visa International Service AssociationInventors: Christian Aabye, Hao Ngo, David William Wilson
-
Patent number: 12033132Abstract: A reader device may include a midrange wireless transceiver, a controller coupled to the midrange wireless transceiver, and a memory coupled to the controller. The memory may store executable code, which when executed by the controller, causes the reader device to implement various operations including maintaining a transaction service attributes database in the memory. The operations may also include broadcasting a beacon including a transaction service indicator at a periodic interval using the midrange wireless transceiver, receiving a connection request from a communication device, and establishing a wireless connection with the communication device. The operations may further include performing an application selection process with the communication device, performing application data processing with the communication device, and performing authorization request processing for the communication device.Type: GrantFiled: March 11, 2022Date of Patent: July 9, 2024Assignee: Visa International Association ServiceInventors: Jing Jin, Thomas Bellenger, Christian Aabye, Bryan Carroll
-
Publication number: 20240223538Abstract: Systems and methods are disclosed for securely communicating sensitive such as an identifier. A user device may receive a first message comprising a terminal type indicator. For certain values of the terminal type indicator, the user device may be configured to transmit a request message comprising a first identifier and an encrypted identifier. For other values of the terminal type indicator, the user device may be configured to generating an obfuscated identifier based at least in part on a first portion of a second identifier and a second portion of the encrypted identifier. The user device may then transmit a request message that includes the obfuscated identifier and the encrypted identifier.Type: ApplicationFiled: March 13, 2024Publication date: July 4, 2024Applicant: Visa International Service AssociationInventors: Andreas Aabye, Christian Aabye
-
Publication number: 20240214186Abstract: A method is disclosed. The method comprises transmitting, by an access device to a communication device, a resource provider certificate and an access device certificate. Then, establishing a secure channel between the access device and the communication device using data from the resource provider certificate and the access device certificate. Then, transmitting to or receiving data from the communication device using the secure channel.Type: ApplicationFiled: March 7, 2024Publication date: June 27, 2024Applicant: Visa International Service AssociationInventors: Brian Sullivan, Dinah Sloan, Christian Aabye, Hao Ngo, Yuexi Chen, Fahimeh Rezaei
-
Publication number: 20240143788Abstract: A method includes receiving, by a network processing computer, software information from a development computer. The network processing computer can determine one or more logical modules of a plurality of logical modules based on the software information. The network processing computer can provide the one or more logical modules to a testing computer. The testing computer evaluates one or more software modules corresponding to the software information using the one or more logical modules. The network processing computer receives a security evaluation report from the testing computer based on the evaluation of the one or more software modules using the one or more logical modules. The network processing computer creates a security evaluation summary based on the security evaluation report.Type: ApplicationFiled: February 24, 2022Publication date: May 2, 2024Applicant: Visa International Service AssociationInventors: Yuexi Chen, Christian Aabye, Janet Cookson, Ian Javkin, Geraldine Mitchley, Chackan Lai, Marc Kekicheff, Pawel Chrobok
-
Patent number: 11973742Abstract: Systems and methods are disclosed for securely communicating sensitive such as an identifier. A user device may receive a first message comprising a terminal type indicator. For certain values of the terminal type indicator, the user device may be configured to transmit a request message comprising a first identifier and an encrypted identifier. For other values of the terminal type indicator, the user device may be configured to generating an obfuscated identifier based at least in part on a first portion of a second identifier and a second portion of the encrypted identifier. The user device may then transmit a request message that includes the obfuscated identifier and the encrypted identifier.Type: GrantFiled: October 15, 2018Date of Patent: April 30, 2024Assignee: VISA INTERNATIONAL SERVICE ASSOCIATIONInventors: Andreas Aabye, Christian Aabye
-
Patent number: 11956349Abstract: A method is disclosed. The method comprises transmitting, by an access device to a communication device, a resource provider certificate and an access device certificate. Then, establishing a secure channel between the access device and the communication device using data from the resource provider certificate and the access device certificate. Then, transmitting to or receiving data from the communication device using the secure channel.Type: GrantFiled: October 29, 2018Date of Patent: April 9, 2024Assignee: Visa International Service AssociationInventors: Brian Sullivan, Dinah Sloan, Christian Aabye, Hao Ngo, Yuexi Chen, Fahimeh Rezaei
-
Patent number: 11936684Abstract: A user device may receive (e.g., when proximate to the first access device), from an intervening device, device identification data for a first access device. A message may be received from a second access device via the intervening device. The message may include a digital signature generated based at least in part on second access device identification data. The user device may validate the message utilizing the digital signature and a public key. If the message is invalid, the user device may discard the message. If the message is valid, (e.g., unaltered), the user device may determine that the user has not confirmed an intent to interact with the second access device and may terminate a[n] further interaction with the second access device accordingly.Type: GrantFiled: March 30, 2023Date of Patent: March 19, 2024Assignee: VISA INTERNATIONAL SERVICE ASSOCIATIONInventors: Brian Sullivan, Quan Wang, Yuexi Chen, Christian Aabye, Christian Flurscheim, Pasan Hapuarachchi
-
Publication number: 20240048395Abstract: An issuing authority (IA) may validate the identity of a user and issue a digital license to the user. IA may generate IA public-private key pair, and provide IA public key to the certification authority (CA). IA may sign the digital license with IA private key, and provision the signed digital license on the user device. IA may request CA to certify the digital license. CA may use IA public key to validate the digital license, and sign IA public key with CA private key, thereby generating a digital certificate associated with the issuing authority that is linked to the digital license. A relying party may use CA public key to validate the digital license. The relying party can retrieve the information from the digital license and trust that the retrieved information is legitimate.Type: ApplicationFiled: October 12, 2023Publication date: February 8, 2024Applicant: Visa International Service AssociationInventors: Andreas Aabye, Christopher McMillan, Adam Clark, Christian Aabye, Simon Hurry
-
Patent number: 11875344Abstract: Techniques for enhancing the security of a communication device when conducting a transaction using the communication device may include using a limited-use key (LUK) to generate a transaction cryptogram, and transmitting a token instead of a real account identifier and the transaction cryptogram to an access device to conduct the transaction. The token and the transaction cryptogram can be transmitted to a magnetic stripe reader by generating an emulated magnetic signal. The LUK may be associated with a set of one or more limited-use thresholds that limits usage of the LUK, and the transaction can be authorized based on at least whether usage of the LUK has exceeded the set of one or more limited-use thresholds.Type: GrantFiled: April 5, 2021Date of Patent: January 16, 2024Assignee: Visa International Service AssociationInventors: Christian Flurscheim, Christian Aabye
-
Patent number: 11870919Abstract: An issuing authority (IA) may validate the identity of a user and issue a digital license to the user. IA may generate IA public-private key pair, and provide IA public key to the certification authority (CA). IA may sign the digital license with IA private key, and provision the signed digital license on the user device. IA may request CA to certify the digital license. CA may use IA public key to validate the digital license, and sign IA public key with CA private key, thereby generating a digital certificate associated with the issuing authority that is linked to the digital license. A relying party may use CA public key to validate the digital license. The relying party can retrieve the information from the digital license and trust that the retrieved information is legitimate.Type: GrantFiled: December 16, 2021Date of Patent: January 9, 2024Assignee: Visa International Service AssociationInventors: Andreas Aabye, Christopher McMillan, Adam Clark, Christian Aabye, Simon Hurry
-
Publication number: 20240007308Abstract: Systems and methods are for confidentially and securely provisioning data to an authenticated user device. A user device may register an authentication public key with an authentication server. The authentication public key may be signed by an attestation private key maintained by the user device. Once the user device is registered, a provisioning server may send an authentication request message including a challenge to the user device. The user device may sign the challenge using an authentication private key corresponding to the registered authentication public key, and may return the signed challenge to the provisioning server. In response, the provisioning server may provide provisioning data to the user device. The registration, authentication, and provisioning process may use public key cryptography while maintaining confidentiality of the user device, the provisioning server, and then authentication server.Type: ApplicationFiled: August 7, 2023Publication date: January 4, 2024Applicant: Visa International Service AssociationInventors: Eric Le Saint, Jing Jin, Christian Aabye
-
Publication number: 20230410075Abstract: A computer-implemented method of communicating with a point of sale terminal. The method includes establishing wireless communication with a point of sale terminal using a first communication channel, and establishing communication with the point of sale terminal using a second communication channel. The method also includes transmitting a first section of communication data via the first communication channel; and transmitting a second section of the communication data using the second communication channel.Type: ApplicationFiled: August 14, 2023Publication date: December 21, 2023Applicant: Visa International Service AssociationInventors: Christopher JONES, Sanjeev SHARMA, Christian FLURSCHEIM, Chandra SRIVASTAVA, Vishwanath SHASTRY, Kiushan PIRZADEH, Christian AABYE
-
Patent number: 11842350Abstract: Techniques for enhancing the security of a communication device when conducting a transaction using the communication device may include using a limited-use key (LUK) to generate a transaction cryptogram, and using a signature key to generate a signature. The transaction can be an offline data authentication transaction, and access can be granted based on authentication of the signature prior to verifying the transaction cryptogram.Type: GrantFiled: October 13, 2020Date of Patent: December 12, 2023Assignee: Visa International Service AssociationInventors: Erick Wong, Christian Aabye, Christian Flurscheim, Christopher Jones
-
Publication number: 20230396998Abstract: A method includes forming a communication channel between a user device and an access device. The communication channel is then secured using a user device key pair in the user device and an access device ephemeral key pair in the access device. The access device then generates a session key using at least a private cryptographic key in the access device ephemeral key pair, and a public key in the user device key pair. The access device then uses the session key to secure an ultra-wideband communication channel between the user device and the access device.Type: ApplicationFiled: August 22, 2023Publication date: December 7, 2023Applicant: Visa International Service AssociationInventors: Brian Sullivan, Aparna Girish, Mark Rigby, Christian Aabye, Mustafa Top, Yuexi Chen, Dinah Sloan, Hao Ngo
-
Patent number: 11810116Abstract: Described herein is a platform and method for determining a confidence level associated with a transaction that utilizes dynamic data. In some embodiments, the confidence level is determined based on location data received in relation to the transaction. For example, some embodiments are directed to storing first location information collected from a mobile device provided in a request for the dynamic data, receiving second location information related to a transaction conducted using the dynamic data, and comparing the two with respect to the amount of time that has elapsed between collection of each to determine a confidence level associated with a likelihood that the transaction is authentic.Type: GrantFiled: October 29, 2020Date of Patent: November 7, 2023Assignee: Visa International Service AssociationInventors: Gyan Prakash, Ajit Gaddam, Glenn Powell, Taeho Kgil, Christian Aabye
-
Patent number: 11785449Abstract: A method includes forming a communication channel between a user device and an access device. The communication channel is then secured using a user device key pair in the user device and an access device ephemeral key pair in the access device. The access device then generates a session key using at least a private cryptographic key in the access device ephemeral key pair, and a public key in the user device key pair. The access device then uses the session key to secure an ultrawideband communication channel between the user device and the access device.Type: GrantFiled: September 30, 2021Date of Patent: October 10, 2023Assignee: Visa International Service AssociationInventors: Brian Sullivan, Aparna Girish, Mark Rigby, Christian Aabye, Mustafa Top, Yuexi Chen, Dinah Sloan, Hao Ngo