Abstract: A secure trusted service manager provider may include at least one processor configured to provide, to an electronic device, a first script to provision an applet instance corresponding to a third party server, the script including a public key corresponding to the third party server. The at least one processor may be configured to receive, from the electronic device, an encrypted symmetric key and provide the encrypted symmetric key to the third party server, the symmetric key being encrypted with the public key. The at least one processor may be configured to receive, from the third party server, an encrypted data element corresponding to a transaction to be performed by the applet instance, the encrypted data element being encrypted with the symmetric key, generate a second script that includes the encrypted data element and provide, to the electronic device, the second script that includes the encrypted data element.

Abstract: A device implementing an inter-device credential transfer system may include at least one processor that is configured to receive a request to transfer a transaction credential from a first device to a second device, the transaction credential being associated with a stored monetary value and the request comprising a transaction credential identifier of the transaction credential. The at least one processor is further configured to prevent, responsive to the request, the transaction credential from being utilized for payment transactions by the first device. The at least one processor is further configured to provision an instance of the transaction credential on the second device. The at least one processor is further configured to cause the instance of the transaction credential to be activated on the second device with a balance corresponding to the stored monetary value associated with the transaction credential.

Abstract: A device facilitating script deployment through service provider servers includes at least one processor configured to receive, from a service provider, a request to perform a transaction directly with a device secure element on which a credential is provisioned, where the request includes a credential identifier corresponding to the credential. The at least one processor is further configured to identify, based at least in part on the credential identifier, the device secure element. The at least one processor is further configured to verify that the service provider is authorized to interact directly with the device secure element. The at least one processor is further configured to instruct, responsive to the verifying, the device secure element to communicate directly with a service provider server to perform the transaction. The at least one processor is further configured to receive, from the device secure element, a result associated with the transaction.

Abstract: A device implementing an inter-device credential transfer system may include at least one processor that is configured to receive a request to transfer a transaction credential from a first device to a second device, the transaction credential being associated with a stored monetary value and the request comprising a transaction credential identifier of the transaction credential. The at least one processor is further configured to prevent, responsive to the request, the transaction credential from being utilized for payment transactions by the first device. The at least one processor is further configured to provision an instance of the transaction credential on the second device. The at least one processor is further configured to cause the instance of the transaction credential to be activated on the second device with a balance corresponding to the stored monetary value associated with the transaction credential.

Abstract: A device implementing an inter-device credential transfer system may include at least one processor that is configured to receive a request to transfer a transaction credential from a first device to a second device, the transaction credential being associated with a stored monetary value and the request comprising a transaction credential identifier of the transaction credential. The at least one processor is further configured to prevent, responsive to the request, the transaction credential from being utilized for payment transactions by the first device. The at least one processor is further configured to provision an instance of the transaction credential on the second device. The at least one processor is further configured to cause the instance of the transaction credential to be activated on the second device with a balance corresponding to the stored monetary value associated with the transaction credential.

Abstract: A secure trusted service manager provider may include at least one processor configured to provide, to an electronic device, a first script to provision an applet instance corresponding to a third party server, the script including a public key corresponding to the third party server. The at least one processor may be configured to receive, from the electronic device, an encrypted symmetric key and provide the encrypted symmetric key to the third party server, the symmetric key being encrypted with the public key. The at least one processor may be configured to receive, from the third party server, an encrypted data element corresponding to a transaction to be performed by the applet instance, the encrypted data element being encrypted with the symmetric key, generate a second script that includes the encrypted data element and provide, to the electronic device, the second script that includes the encrypted data element.

Abstract: A device implementing an inter-device credential transfer system may include at least one processor that is configured to receive a request to transfer a transaction credential from a first device to a second device, the transaction credential being associated with a stored monetary value and the request comprising a transaction credential identifier of the transaction credential. The at least one processor is further configured to prevent, responsive to the request, the transaction credential from being utilized for payment transactions by the first device. The at least one processor is further configured to provision an instance of the transaction credential on the second device. The at least one processor is further configured to cause the instance of the transaction credential to be activated on the second device with a balance corresponding to the stored monetary value associated with the transaction credential.

Abstract: A device facilitating script deployment through service provider servers includes at least one processor configured to receive, from a service provider, a request to perform a transaction directly with a device secure element on which a credential is provisioned, where the request includes a credential identifier corresponding to the credential. The at least one processor is further configured to identify, based at least in part on the credential identifier, the device secure element. The at least one processor is further configured to verify that the service provider is authorized to interact directly with the device secure element. The at least one processor is further configured to instruct, responsive to the verifying, the device secure element to communicate directly with a service provider server to perform the transaction. The at least one processor is further configured to receive, from the device secure element, a result associated with the transaction.