Patents by Inventor Dino Dai Zovi

Dino Dai Zovi has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).

  • Patent number: 10733594
    Abstract: Methods, systems, and apparatus, including computer programs encoded on a computer storage medium, for storing a plurality of stored fingerprints, wherein each of the stored fingerprints is associated with a respective software environment and a respective mobile device; receiving from a first mobile device a first fingerprint of a first software environment in the first mobile device; determining whether the stored fingerprints include less than a threshold amount of fingerprints identical to the first fingerprint; based on a determination that the stored fingerprints include less than the threshold amount of fingerprints identical to the first fingerprint, determining that the first software environment is a compromised software environment; and performing a corrective measure.
    Type: Grant
    Filed: May 11, 2015
    Date of Patent: August 4, 2020
    Assignee: SQUARE, INC.
    Inventors: Dino Dai Zovi, Janek Klawe
  • Patent number: 10673622
    Abstract: A technique is introduced that can securely displaying decrypted images while preventing these decrypted images against an attempt to capture such. Some aspects of the technique include loading a cryptographic shader into a graphics processor unit (GPU) in the recipient's computer device separate from the CPU in the recipient's computer device. In some embodiments, the cryptographic shader that is loaded includes instructions that implement a white-box cryptographic algorithm to decrypt encrypted images. A cryptographic key is integrated within the white-box cryptographic algorithm so that the cryptographic key is protected from extraction. When the GPU receives the encrypted images, the cryptographic shader can perform decryption processes to generate decrypted images. The decrypted images are loaded by the GPU directly from the GPU into a frame buffer such that the decrypted images are to be displayed without any portion of the decrypted images passing through the CPU.
    Type: Grant
    Filed: November 14, 2014
    Date of Patent: June 2, 2020
    Assignee: SQUARE, INC.
    Inventor: Dino Dai Zovi
  • Publication number: 20200160355
    Abstract: Disclosed herein is a method and system to establish a secure communication channel between a payment object reader and a payment terminal For this, the server determines whether a payment terminal has associated with an attestation ticket. The method further includes determining, whether to approve or deny the request for establishing the secure communication channel between the payment object reader and the payment terminal based on the attestation ticket. If the determination yields that the request has been approved, further generating a session approval interrupt having one or more session approval conditions; and sending the session approval interrupt to the payment terminal, where the session approval interrupt causes a secure communication channel to be established between the payment object reader and the payment terminal.
    Type: Application
    Filed: January 27, 2020
    Publication date: May 21, 2020
    Inventors: Dino Dai Zovi, Janek Klawe
  • Publication number: 20200065817
    Abstract: A payment terminal may include payment interfaces to receive payment information from payment devices such as chip cards and NFC payment devices. Monitoring components may monitor these payment interfaces. In addition, test requests may be transmitted to a payment device in order to elicit responses. The monitored information and the responses may be used by the payment terminal to determine whether a transaction is fraudulent or if a tamper attempt is ongoing, based on local test criteria. In addition, the monitored information and responses may be provided to a server, which may store the monitored information and responses, test for fraudulent transactions and tamper attempts based on server test criteria, and determine updates to the local test criteria.
    Type: Application
    Filed: October 28, 2019
    Publication date: February 27, 2020
    Applicant: Square, Inc.
    Inventors: Max Guise, Andrew John Leiserson, Dino Dai Zovi
  • Patent number: 10546302
    Abstract: Disclosed herein is a method and system to establish a secure communication channel between a payment object reader and a payment terminal For this, the server determines whether a payment terminal has associated with an attestation ticket. The method further includes determining, whether to approve or deny the request for establishing the secure communication channel between the payment object reader and the payment terminal based on the attestation ticket. If the determination yields that the request has been approved, further generating a session approval interrupt having one or more session approval conditions; and sending the session approval interrupt to the payment terminal, where the session approval interrupt causes a secure communication channel to be established between the payment object reader and the payment terminal.
    Type: Grant
    Filed: June 30, 2016
    Date of Patent: January 28, 2020
    Assignee: Square, Inc.
    Inventors: Dino Dai Zovi, Janek Klawe
  • Patent number: 10475034
    Abstract: A payment terminal may include payment interfaces to receive payment information from payment devices such as chip cards and NFC payment devices. Monitoring components may monitor these payment interfaces. In addition, test requests may be transmitted to a payment device in order to elicit responses. The monitored information and the responses may be used by the payment terminal to determine whether a transaction is fraudulent or if a tamper attempt is ongoing, based on local test criteria. In addition, the monitored information and responses may be provided to a server, which may store the monitored information and responses, test for fraudulent transactions and tamper attempts based on server test criteria, and determine updates to the local test criteria.
    Type: Grant
    Filed: February 12, 2016
    Date of Patent: November 12, 2019
    Assignee: Square, Inc.
    Inventors: Max Guise, Andrew John Leiserson, Dino Dai Zovi
  • Patent number: 10438187
    Abstract: Disclosed is a technique for establishing a secure communication session between a mobile device and a card reader. The technique can involve using a trusted, remote validation server to validate security information of both the card reader and a POS module in the mobile device prior to, and as a precondition of, the card reader and the POS module establishing a secure communication session with each other. In certain embodiments the POS module sends the security information of both the card reader and the POS module to the validation server. The security information can include cryptographic keys of the POS module and the card reader and additional security information related to the POS module and its software environment.
    Type: Grant
    Filed: May 8, 2014
    Date of Patent: October 8, 2019
    Assignee: Square, Inc.
    Inventors: Max Joseph Guise, Jason Waddle, Dino Dai Zovi
  • Patent number: 10373167
    Abstract: Disclosed herein is a method and system to determine whether a payment terminal has been tampered with based on a comparison of attestation data received from the payment terminal. If the determination yields that the request has been approved, the terminal generates an attestation ticket having one or more validity conditions, wherein the validity conditions include expiration time that indicates the time after which the attestation ticket becomes invalid. The attestation ticket can be used as long as it is valid or until another trigger causes the ticket to be invalidated or regenerated.
    Type: Grant
    Filed: June 30, 2016
    Date of Patent: August 6, 2019
    Assignee: Square, Inc.
    Inventors: Dino Dai Zovi, Janek Klawe
  • Patent number: 10037518
    Abstract: Some examples include sending, to a secure environment, coordinates for certain touch events made to a touchscreen of an electronic device. As one example, an import address table that is accessed by an event loop of the electronic device may be modified. For instance, only those touch events that are performed within the bounds of a user interface area may be diverted to the secure environment, and all touch events outside that area may continue to be identified, such as by using operating system libraries of the electronic device. In some cases, a checksum may be generated for the import address table using a cryptographic hash function. The checksum may allow a payment application and/or a payment processing system to determine whether an unauthorized modification of the import address table is present.
    Type: Grant
    Filed: February 28, 2017
    Date of Patent: July 31, 2018
    Assignee: SQUARE, INC.
    Inventors: Dino Dai Zovi, Eric Monti
  • Patent number: 9965654
    Abstract: Techniques for securely displaying sensitive information against attempts to capture such information via screenshots are introduced. Similar to the pieces of a puzzle, a plurality of images that collectively represent a keypad (for example) are generated and each image represents a different part of the characters. The generated images are to be displayed to a human user in a sequential fashion at at least a predetermined minimum frame rate, such that the plurality of images sequentially displayed are perceivable by the human user collectively as the keypad. In each of the plurality of images, at least a part of the characters of the keypad is disguised or concealed, and in some embodiments, to the extent that not a single character of the keypad is recognizable by a human or a machine. Further, bogus data can be selectively inserted to enhance security.
    Type: Grant
    Filed: June 28, 2016
    Date of Patent: May 8, 2018
    Assignee: SQUARE, INC.
    Inventor: Dino Dai Zovi
  • Publication number: 20180005243
    Abstract: Disclosed herein is a method and system to determine whether a payment terminal has been tampered with based on a comparison of attestation data received from the payment terminal. If the determination yields that the request has been approved, the terminal generates an attestation ticket having one or more validity conditions, wherein the validity conditions include expiration time that indicates the time after which the attestation ticket becomes invalid. The attestation ticket can be used as long as it is valid or until another trigger causes the ticket to be invalidated or regenerated.
    Type: Application
    Filed: June 30, 2016
    Publication date: January 4, 2018
    Inventors: Dino Dai Zovi, Janek Klawe
  • Publication number: 20180005230
    Abstract: Disclosed herein is a method and system to establish a secure communication channel between a payment object reader and a payment terminal For this, the server determines whether a payment terminal has associated with an attestation ticket. The method further includes determining, whether to approve or deny the request for establishing the secure communication channel between the payment object reader and the payment terminal based on the attestation ticket. If the determination yields that the request has been approved, further generating a session approval interrupt having one or more session approval conditions; and sending the session approval interrupt to the payment terminal, where the session approval interrupt causes a secure communication channel to be established between the payment object reader and the payment terminal.
    Type: Application
    Filed: June 30, 2016
    Publication date: January 4, 2018
    Inventors: Dino Dai Zovi, Janek Klawe
  • Patent number: 9858432
    Abstract: Techniques for securely displaying sensitive information against attempts to capture such information via screenshots are introduced. Similar to the pieces of a puzzle, a plurality of images that collectively represent a keypad (for example) are generated and each image represents a different part of the characters. The generated images are to be displayed to a human user in a sequential fashion at least at a predetermined minimum frame rate, such that the plurality of images sequentially displayed are perceivable by the human user collectively as the keypad. In each of the plurality of images, at least a part of the characters of the keypad is disguised or concealed, and in some embodiments, to the extent that not a single character of the keypad is recognizable by a human or a machine. Further, bogus data can be selectively inserted to enhance security.
    Type: Grant
    Filed: August 30, 2016
    Date of Patent: January 2, 2018
    Assignee: SQUARE, INC.
    Inventor: Dino Dai Zovi
  • Publication number: 20170236125
    Abstract: A payment terminal may include payment interfaces to receive payment information from payment devices such as chip cards and NFC payment devices. Monitoring components may monitor these payment interfaces. In addition, test requests may be transmitted to a payment device in order to elicit responses. The monitored information and the responses may be used by the payment terminal to determine whether a transaction is fraudulent or if a tamper attempt is ongoing, based on local test criteria. In addition, the monitored information and responses may be provided to a server, which may store the monitored information and responses, test for fraudulent transactions and tamper attempts based on server test criteria, and determine updates to the local test criteria.
    Type: Application
    Filed: February 12, 2016
    Publication date: August 17, 2017
    Applicant: Square, Inc.
    Inventors: Max Guise, Andrew John Leiserson, Dino Dai Zovi
  • Publication number: 20170169412
    Abstract: Some examples include sending, to a secure environment, coordinates for certain touch events made to a touchscreen of an electronic device. As one example, an import address table that is accessed by an event loop of the electronic device may be modified. For instance, only those touch events that are performed within the bounds of a user interface area may be diverted to the secure environment, and all touch events outside that area may continue to be identified, such as by using operating system libraries of the electronic device. In some cases, a checksum may be generated for the import address table using a cryptographic hash function. The checksum may allow a payment application and/or a payment processing system to determine whether an unauthorized modification of the import address table is present.
    Type: Application
    Filed: February 28, 2017
    Publication date: June 15, 2017
    Inventors: Dino Dai Zovi, Eric Monti
  • Patent number: 9665867
    Abstract: Disclosed is a technique for establishing a secure communication session between a mobile device and a card reader. The technique can involve using a trusted, remote validation server to validate security information of both the card reader and a POS module in the mobile device prior to, and as a precondition of, the card reader and the POS module establishing a secure communication session with each other. In certain embodiments the POS module sends the security information of both the card reader and the POS module to the validation server. The security information can include cryptographic keys of the POS module and the card reader and additional security information related to the POS module and its software environment.
    Type: Grant
    Filed: February 4, 2015
    Date of Patent: May 30, 2017
    Assignee: SQUARE, INC.
    Inventors: Max Joseph Guise, Jason Waddle, Dino Dai Zovi
  • Patent number: 9619802
    Abstract: Disclosed is a technique for identifying touch events performed on a mobile device within a secure environment. The technique can involve diverting coordinates for certain touch events to a secure environment in a payment application, for example, by modifying an import address table (e.g., implementing a “hook”) that is accessed by an event loop of the mobile device. Generally, only those touch events that are performed within the bounds of a user interface area are diverted to the secure environment, and all touch events outside that area continue to be identified using the operating system libraries of the mobile device. A checksum may be generated for the import address table using a cryptographic hash function. The checksum allows the payment application or a payment processing system to determine whether an unauthorized modification of the import address table is present.
    Type: Grant
    Filed: December 9, 2015
    Date of Patent: April 11, 2017
    Assignee: SQUARE, INC.
    Inventors: Dino Dai Zovi, Eric Monti
  • Publication number: 20160371498
    Abstract: Techniques for securely displaying sensitive information against attempts to capture such information via screenshots are introduced. Similar to the pieces of a puzzle, a plurality of images that collectively represent a keypad (for example) are generated and each image represents a different part of the characters. The generated images are to be displayed to a human user in a sequential fashion at least at a predetermined minimum frame rate, such that the plurality of images sequentially displayed are perceivable by the human user collectively as the keypad. In each of the plurality of images, at least a part of the characters of the keypad is disguised or concealed, and in some embodiments, to the extent that not a single character of the keypad is recognizable by a human or a machine. Further, bogus data can be selectively inserted to enhance security.
    Type: Application
    Filed: August 30, 2016
    Publication date: December 22, 2016
    Inventor: Dino Dai Zovi
  • Patent number: 9483653
    Abstract: Techniques for securely displaying sensitive information against attempts to capture such information via screenshots are introduced. Similar to the pieces of a puzzle, a plurality of images that collectively represent a keypad (for example) are generated and each image represents a different part of the characters. The generated images are to be displayed to a human user in a sequential fashion at at least a predetermined minimum frame rate, such that the plurality of images sequentially displayed are perceivable by the human user collectively as the keypad. In each of the plurality of images, at least a part of the characters of the keypad is disguised or concealed, and in some embodiments, to the extent that not a single character of the keypad is recognizable by a human or a machine. Not all of the plurality of images are displayed at any instant in time.
    Type: Grant
    Filed: October 29, 2014
    Date of Patent: November 1, 2016
    Assignee: Square, Inc.
    Inventor: Dino Dai Zovi
  • Publication number: 20160307003
    Abstract: Techniques for securely displaying sensitive information against attempts to capture such information via screenshots are introduced. Similar to the pieces of a puzzle, a plurality of images that collectively represent a keypad (for example) are generated and each image represents a different part of the characters. The generated images are to be displayed to a human user in a sequential fashion at at least a predetermined minimum frame rate, such that the plurality of images sequentially displayed are perceivable by the human user collectively as the keypad. In each of the plurality of images, at least a part of the characters of the keypad is disguised or concealed, and in some embodiments, to the extent that not a single character of the keypad is recognizable by a human or a machine. Further, bogus data can be selectively inserted to enhance security.
    Type: Application
    Filed: June 28, 2016
    Publication date: October 20, 2016
    Inventor: Dino Dai Zovi