Patents by Inventor Kshitiz Vadera
Kshitiz Vadera has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 11887022Abstract: A provisioning system is provided for terminals such as point of sale terminals. An interface device interfaces with a smart card and a provisioning server, providing initialization keys and security codes that are stored on the smart card. At a terminal, an initialization key from the smart card may be provided to the terminal if a correct security code is entered at the terminal. The terminal may then provide a terminal authorization package to the smart card. The terminal authorization package is stored on the smart card. At the interface device, the terminal authorization package is provided to the provisioning server. The terminal may then securely communicate transactions with an issuer server.Type: GrantFiled: April 11, 2022Date of Patent: January 30, 2024Assignee: Block, IncInventors: Malcolm Smith, Kshitiz Vadera, Afshin Rezayee
-
Publication number: 20220237596Abstract: A provisioning system is provided for terminals such as point of sale terminals. An interface device interfaces with a smart card and a provisioning server, providing initialization keys and security codes that are stored on the smart card. At a terminal, an initialization key from the smart card may be provided to the terminal if a correct security code is entered at the terminal. The terminal may then provide a terminal authorization package to the smart card. The terminal authorization package is stored on the smart card. At the interface device, the terminal authorization package is provided to the provisioning server. The terminal may then securely communicate transactions with an issuer server.Type: ApplicationFiled: April 11, 2022Publication date: July 28, 2022Applicant: Block, Inc.Inventors: Malcolm Smith, Kshitiz Vadera, Afshin Rezayee
-
Patent number: 11301840Abstract: A provisioning system is provided for terminals such as point of sale terminals. An interface device interfaces with a smart card and a provisioning server, providing initialization keys and security codes that are stored on the smart card. At a terminal, an initialization key from the smart card may be provided to the terminal if a correct security code is entered at the terminal. The terminal may then provide a terminal authorization package to the smart card. The terminal authorization package is stored on the smart card. At the interface device, the terminal authorization package is provided to the provisioning server. The terminal may then securely communicate transactions with an issuer server.Type: GrantFiled: June 26, 2015Date of Patent: April 12, 2022Assignee: Block, Inc.Inventors: Malcolm Smith, Kshitiz Vadera, Afshin Rezayee
-
Patent number: 10496975Abstract: A point of sale system has a display for receiving touch inputs, a controller to receive the touch inputs from the display, and a secure controller to receive touch input data from the controller. The system also has a card interface module and a contactless interface module to provide encrypted data to the secure controller. The secure controller can operate in either a secure mode or a non-secure mode. When a non-secure mode is engaged, the secure controller provides the touch input data to a processor. When a secure mode is engaged, the secure controller blocks at least a portion of the touch input data from the processor.Type: GrantFiled: June 26, 2015Date of Patent: December 3, 2019Assignee: Square, Inc.Inventors: Afshin Rezayee, Malcolm Ronald Smith, Kshitiz Vadera, Kevin Ka Wai Ng, Haipeng Yan
-
Patent number: 10430616Abstract: Processor system with a general purpose processor and a cryptographic processor dedicated to performing cryptographic operations and enforcing the security of critical security parameters. The cryptographic processor prevents exposure of critical security parameters outside the cryptographic processor itself, and instead implements a limited scripting engine, which can be used by the general purpose processor to execute operations that require the critical security parameters.Type: GrantFiled: December 29, 2017Date of Patent: October 1, 2019Assignee: Square, Inc.Inventors: Malcolm Ronald Smith, Kshitiz Vadera, Mark Phillip Zagrodney, Kevin Ka Wai Ng, Afshin Rezayee
-
Patent number: 10248940Abstract: A transaction processing system includes a payment reader for processing payment transactions. The payment reader receives payment information from a payment interface. The payment information is processed based on firmware instructions that are stored in memory and executed by a processor. A first subset of the firmware instructions is associated with transaction processing modules. Each of the transaction processing modules comprise position independent code and are located in a distinct section of memory from a second subset of firmware instructions and the position independent code associated with each of the other of the transaction processing modules.Type: GrantFiled: September 24, 2015Date of Patent: April 2, 2019Assignee: Square, Inc.Inventors: Ovidiu I Bota, Kshitiz Vadera
-
Patent number: 10083437Abstract: A payment reader includes a contactless interface for communicating with a contactless device. The payment reader has a processor that executes instructions stored in memory, and the instructions include instructions for a plurality of firmware modules including a message dispatcher module and a plurality of functional modules. The functional modules generate messages and the message dispatcher module stores the messages in a queued data structure such as a stack or a queue. The messages are provided to the functional modules from the queued data structure. Some of the messages are timed messages that are returned to the queued data structure.Type: GrantFiled: February 24, 2016Date of Patent: September 25, 2018Assignee: Square, Inc.Inventor: Kshitiz Vadera
-
Publication number: 20180247084Abstract: Processor system with a general purpose processor and a cryptographic processor dedicated to performing cryptographic operations and enforcing the security of critical security parameters. The cryptographic processor prevents exposure of critical security parameters outside the cryptographic processor itself, and instead implements a limited scripting engine, which can be used by the general purpose processor to execute operations that require the critical security parameters.Type: ApplicationFiled: December 29, 2017Publication date: August 30, 2018Applicant: Square, Inc.Inventors: Malcolm Ronald Smith, Kshitiz Vadera, Mark Phillip Zagrodney, Kevin Ka Wai Ng, Afshin Rezayee
-
Patent number: 9886596Abstract: Processor system with a general purpose processor and a cryptographic processor dedicated to performing cryptographic operations and enforcing the security of critical security parameters. The cryptographic processor prevents exposure of critical security parameters outside the cryptographic processor itself, and instead implements a limited scripting engine, which can be used by the general purpose processor to execute operations that require the critical security parameters.Type: GrantFiled: June 25, 2015Date of Patent: February 6, 2018Assignee: Square, Inc.Inventors: Malcolm Ronald Smith, Kshitiz Vadera, Mark Philip Zagrodney, Kevin Ka Wai Ng, Afshin Rezayee
-
Patent number: 9613350Abstract: A payment reader includes a contactless interface for communicating with a contactless device. The payment reader has a processor that executes instructions stored in memory, and the instructions include instructions for a plurality of firmware modules including a message dispatcher module and a plurality of functional modules. The functional modules generate messages and the message dispatcher module stores the messages in a queued data structure such as a stack or a queue. The messages are provided to the functional modules from the queued data structure. Some of the messages are timed messages that are returned to the queued data structure.Type: GrantFiled: February 24, 2016Date of Patent: April 4, 2017Inventor: Kshitiz Vadera
-
Publication number: 20170083904Abstract: A payment reader includes a contactless interface for communicating with a contactless device. The payment reader has a processor that executes instructions stored in memory, and the instructions include instructions for a plurality of firmware modules including a message dispatcher module and a plurality of functional modules. The functional modules generate messages and the message dispatcher module stores the messages in a queued data structure such as a stack or a queue. The messages are provided to the functional modules from the queued data structure. Some of the messages are timed messages that are returned to the queued data structure.Type: ApplicationFiled: February 24, 2016Publication date: March 23, 2017Applicant: Square, Inc.Inventor: Kshitiz Vadera
-
Publication number: 20170083879Abstract: A payment reader includes a contactless interface for communicating with a contactless device. The payment reader has a processor that executes instructions stored in memory, and the instructions include instructions for a plurality of firmware modules including a message dispatcher module and a plurality of functional modules. The functional modules generate messages and the message dispatcher module stores the messages in a queued data structure such as a stack or a queue. The messages are provided to the functional modules from the queued data structure. Some of the messages are timed messages that are returned to the queued data structure.Type: ApplicationFiled: February 24, 2016Publication date: March 23, 2017Applicant: Square, Inc.Inventor: Kshitiz Vadera
-
Patent number: 9330383Abstract: A payment reader includes a contactless interface for communicating with a contactless device. The payment reader has a processor that executes instructions stored in memory, and the instructions include instructions for a plurality of firmware modules including a message dispatcher module and a plurality of functional modules. The functional modules generate messages and the message dispatcher module stores the messages in a queued data structure such as a stack or a queue. The messages are provided to the functional modules from the queued data structure. Some of the messages are timed messages that are returned to the queued data structure.Type: GrantFiled: September 23, 2015Date of Patent: May 3, 2016Assignee: Square, Inc.Inventor: Kshitiz Vadera
-
Patent number: 9300665Abstract: Methods and systems are provided for performing and verifying transactions involving authentication with a secure credential, such as a smart card, in an untrusted or semi-trusted environment. An application module, operating in an untrusted or semi-trusted environment can be denied access to sensitive data. The application module can determine a preliminary command to be sent to the credential and transmit the preliminary command to a broker module. The broker module, operating in a trusted environment, can supply sensitive data and transmit the command to the credential. Subsequently, the broker module can extract sensitive data from a response before it is transmitted to the application module. A verification server can audit the transaction to verify that it was carried out properly.Type: GrantFiled: May 29, 2012Date of Patent: March 29, 2016Assignee: SecureKey Technologies Inc.Inventors: Troy Jacob Ronda, Andre Boysen, Afshin Rezayee, Malcolm Ronald Smith, Mikhael Khaymov, Kshitiz Vadera, Murat Cat
-
Publication number: 20160026990Abstract: A point of sale system has a display for receiving touch inputs, a controller to receive the touch inputs from the display, and a secure controller to receive touch input data from the controller. The system also has a card interface module and a contactless interface module to provide encrypted data to the secure controller. The secure controller can operate in either a secure mode or a non-secure mode. When a non-secure mode is engaged, the secure controller provides the touch input data to a processor. When a secure mode is engaged, the secure controller blocks at least a portion of the touch input data from the processor.Type: ApplicationFiled: June 26, 2015Publication date: January 28, 2016Applicant: Square, Inc.Inventors: Afshin Rezayee, Malcolm Ronald Smith, Kshitiz Vadera, Kevin Ka Wai Ng, Haipeng Yan
-
Patent number: 9135472Abstract: Processor system with a general purpose processor and a cryptographic processor dedicated to performing cryptographic operations and enforcing the security of critical security parameters. The cryptographic processor prevents exposure of critical security parameters outside the cryptographic processor itself, and instead implements a limited scripting engine, which can be used by the general purpose processor to execute operations that require the critical security parameters.Type: GrantFiled: October 31, 2013Date of Patent: September 15, 2015Assignee: Square, Inc.Inventors: Malcolm Ronald Smith, Kshitiz Vadera, Mark Philip Zagrodney, Kevin Ka Wai Ng, Afshin Rezayee
-
Publication number: 20150121086Abstract: Processor system with a general purpose processor and a cryptographic processor dedicated to performing cryptographic operations and enforcing the security of critical security parameters. The cryptographic processor prevents exposure of critical security parameters outside the cryptographic processor itself, and instead implements a limited scripting engine, which can be used by the general purpose processor to execute operations that require the critical security parameters.Type: ApplicationFiled: October 31, 2013Publication date: April 30, 2015Applicant: Kili Technology CorporationInventors: Malcolm Ronald Smith, Kshitiz Vadera, Mark Philip Zagrodney, Kevin Ka Wai Ng, Afshin Rezayee
-
Publication number: 20140101734Abstract: Methods and systems are provided for performing and verifying transactions involving authentication with a secure credential, such as a smart card, in an untrusted or semi-trusted environment. An application module, operating in an untrusted or semi-trusted environment can be denied access to sensitive data. The application module can determine a preliminary command to be sent to the credential and transmit the preliminary command to a broker module. The broker module, operating in a trusted environment, can supply sensitive data and transmit the command to the credential. Subsequently, the broker module can extract sensitive data from a response before it is transmitted to the application module. A verification server can audit the transaction to verify that it was carried out properly.Type: ApplicationFiled: May 29, 2012Publication date: April 10, 2014Applicant: Securekey Technologies Inc.Inventors: Troy Jacob Ronda, Andre Boysen, Afshin Rezayee, Malcolm Ronald Smith, Mikhael Khaymov, Kshitiz Vadera, Murat Cat