Abstract: An on-boarding server is configured to receive a data set and a manufacturer identifier from a communications device, validate an identity of an entity from the data set, and locate a first terminal cryptographic key associated with the manufacturer identifier in a terminal database. The on-boarding server is configured to confirm, using the located first terminal cryptographic key, that the manufacturer identifier received from the communications device was signed with a second terminal cryptographic key. The located first terminal cryptographic key and the second terminal cryptographic key are an asymmetric cryptographic key pair. The on-boarding server is configured to determine an acquirer server from the data set, and authorize the entity to effect electronic payments by providing the communications device with a merchant identifier and transmitting the merchant identifier to the acquirer server.

Abstract: An on-boarding server is configured to receive a data set and a manufacturer identifier from a communications device, validate an identity from the data set, and locate a first terminal cryptographic key associated with the manufacturer identifier in a terminal database. The on-boarding server is configured to confirm, using the located first terminal cryptographic key, that the manufacturer identifier received from the communications device was signed with a second terminal cryptographic key. The located first terminal cryptographic key and the second terminal cryptographic key are an asymmetric cryptographic key pair. The on-boarding server is configured to determine an acquirer server from the data set, provide the acquirer server with a merchant identifier, and download to the communications device a payload that includes the merchant identifier.

Abstract: A terminal configuration server is configured to associate a terminal identifier with a cryptographic key set, and to provide a communications device with the terminal identifier and the cryptographic key set. The terminal configuration server is configured to receive the terminal identifier from the communications device via a communications network, and establish an encrypted tunnel with a terminal via the communications device and the cryptographic key set. The encrypted tunnel is encrypted end-to-end between the terminal configuration server and the terminal. The terminal configuration server is configured to receive a payload request from the terminal via the encrypted tunnel, locate a payload that is associated with the terminal identifier in the payload database, and download the located payload to the terminal via the encrypted tunnel.

Abstract: A terminal configuration server is configured to save a manufacturer identifier in a terminal database, in association with a merchant identifier. The manufacturer identifier identifies a terminal. The terminal configuration server is configured to transmit the merchant identifier to a communications device via a communications network, and to receive from the communications device via the communications network, a terminal identifier request that includes the manufacturer identifier and the merchant identifier. The terminal configuration server is configured to verify that the manufacturer identifier, included in the terminal identifier request, is associated with the merchant identifier in the terminal database, and to download a payload to the terminal via the communications device after verifying the manufacturer identifier.

Abstract: A terminal configuration apparatus is configured to receive a merchant identifier and a manufacturer identifier from a communications device, and to locate a first terminal cryptographic key that is associated with the manufacturer identifier in a terminal database. The terminal configuration apparatus is configured to confirm, using the located first terminal cryptographic key, that the merchant identifier was signed with a second terminal cryptographic key, and to download a payload to a terminal via the communications device. The located first terminal cryptographic key and the second terminal cryptographic key are an asymmetric cryptographic key pair.

Abstract: A computer server includes a processor that is configured to receive an incoming authorization request that includes an original numeric value and an identification number, and locate a profile that is associated with the identification number. The located profile includes at least one adjustment criterion. The processor is configured to determine a primary numeric value and a secondary numeric value from the original numeric value and the adjustment criterion, confirm that the secondary numeric value is not greater than a balance value in a loyalty points account associated with the identification number, and reduce the balance value in the loyalty points account by the secondary numeric value. The processor is configured to, after confirming the secondary numeric value, generate a revised authorization request and transmit the revised authorization request to an authorization server. The revised authorization request includes the identification number and the primary numeric value.

Abstract: A payment terminal includes a card interface and a transaction processor. The terminal receives a preliminary authorization amount, and receives application data from a payment card that is interfaced with the card interface. The application data includes an account number that is uniquely associated with the payment card. The processor generates an adjusted authorization amount from the account number and the preliminary authorization amount, determines whether the adjusted authorization amount can be authorized offline, and transmits a cryptogram request to the payment card. The adjusted authorization amount is different from the preliminary authorization amount. The cryptogram request includes the adjusted authorization amount.

Abstract: A terminal configuration network includes a communications terminal and a certificate server. The certificate server is configured to receive, from the communications terminal, an activation request that includes at least one credential. The certificate server is configured to confirm that the credential was uniquely associated with the terminal in a database before the server received the activation request. The certificate server is also configured to generate an activation response that includes a digital certificate, and to transmit the response to the terminal. The terminal communications is configured to establish an encrypted channel with a computer server using the digital certificate, and to download a payload to the terminal via the encrypted channel. The computer server is distinct from the certificate server.

Abstract: A terminal management server includes a data transceiver, and a data processor in communication with the data transceiver. The data transceiver is configured to receive from a point-of-sale terminal data indicative of a violation detected by the point-of-sale terminal of one or more security parameters. The violation is indicative of a compromise of the point-of-sale terminal. The data processor is configured to (i) classify the detected violation as potential fraudulent activity, and (ii) in response to the data processor classifying the detected violation as potential fraudulent activity, cause the data transceiver to send a command to the point-of-sale terminal disabling functionality of the point-of-sale terminal. One or more of the security parameters may include a status of a network connection between the point-of-sale terminal and the terminal management server, and the detected violation may include a termination of the network connection.

Abstract: A method of authenticating a payment terminal to a computer server involves the terminal generating a terminal activation request from a private key uniquely associated with the terminal, and from a credential uniquely associated with the terminal. The activation request includes a public key that the payment terminal generates from the private key. The private key is both provided to and uniquely associated with the terminal by an entity other than the terminal prior to the terminal generating the activation request. The terminal transmits the activation request to a certificate server, and receives a digital certificate in response. The terminal initiates a transaction with a network client by authenticating to the computer server using the digital certificate. The computer server is in communication with the network client via a communications network. The terminal effects payment for the transaction via an acquirer network distinct from the communications network.

Abstract: A terminal configuration server is configured to associate a terminal identifier with a cryptographic key set, and to provide a communications device with the terminal identifier and the cryptographic key set. The terminal configuration server is configured to receive the terminal identifier from the communications device via a communications network, and establish an encrypted tunnel with a terminal via the communications device and the cryptographic key set. The encrypted tunnel is encrypted end-to-end between the terminal configuration server and the terminal. The terminal configuration server is configured to receive a payload request from the terminal via the encrypted tunnel, locate a payload that is associated with the terminal identifier in the payload database, and download the located payload to the terminal via the encrypted tunnel.

Abstract: An on-boarding server is configured to receive a data set and a manufacturer identifier from a communications device, validate an identity from the data set, and locate a first terminal cryptographic key associated with the manufacturer identifier in a terminal database. The on-boarding server is configured to confirm, using the located first terminal cryptographic key, that the manufacturer identifier received from the communications device was signed with a second terminal cryptographic key. The located first terminal cryptographic key and the second terminal cryptographic key are an asymmetric cryptographic key pair. The on-boarding server is configured to determine an acquirer server from the data set, provide the acquirer server with a merchant identifier, and download to the communications device a payload that includes the merchant identifier.

Abstract: A terminal configuration server is configured to save a manufacturer identifier in a terminal database, in association with a merchant identifier. The manufacturer identifier identifies a terminal. The terminal configuration server is configured to transmit the merchant identifier to a communications device via a communications network, and to receive from the communications device via the communications network, a terminal identifier request that includes the manufacturer identifier and the merchant identifier. The terminal configuration server is configured to verify that the manufacturer identifier, included in the terminal identifier request, is associated with the merchant identifier in the terminal database, and to download a payload to the terminal via the communications device after verifying the manufacturer identifier.

Abstract: A terminal configuration apparatus is configured to receive a merchant identifier and a manufacturer identifier from a communications device, and to locate a first terminal cryptographic key that is associated with the manufacturer identifier in a terminal database. The terminal configuration apparatus is configured to confirm, using the located first terminal cryptographic key, that the merchant identifier was signed with a second terminal cryptographic key, and to download a payload to a terminal via the communications device. The located first terminal cryptographic key and the second terminal cryptographic key are an asymmetric cryptographic key pair.

Abstract: A computer server includes a processor that is configured to receive an incoming authorization request that includes an original numeric value and an identification number, and locate a profile that is associated with the identification number. The located profile includes at least one adjustment criterion. The processor is configured to determine a primary numeric value and a secondary numeric value from the original numeric value and the adjustment criterion, confirm that the secondary numeric value is not greater than a balance value in a loyalty points account associated with the identification number, and reduce the balance value in the loyalty points account by the secondary numeric value. The processor is configured to, after confirming the secondary numeric value, generate a revised authorization request and transmit the revised authorization request to an authorization server. The revised authorization request includes the identification number and the primary numeric value.

Abstract: A method of remotely configuring a pin-pad terminal involves a computer server receiving a merchant identifier over a network from a communications device associated with the pin-pad terminal. The computer server confirms from the merchant identifier that an entity associated with the communications device is authorized to use the pin-pad terminal, and authenticates the pin-pad terminal from a cryptographically-signed datum received from the communications device. The computer server then transmits to the pin-pad terminal via the communications device a configuration payload for installation in the pin-pad terminal. The configuration payload includes at least a payment symmetric cryptographic key set uniquely associated with the pin-pad terminal. The payment symmetric key set configures the pin-pad terminal to effect secure electronic payment via the communications device.

Abstract: A computer server includes a transaction processor that is configured to receive from a POS terminal an incoming authorization request that includes an original numeric value, a token cryptogram and an identification number identifying an identity token; confirm that the token cryptogram was generated from the original numeric value and a cryptographic key associated with the token; determine primary and secondary numeric values from the original numeric value and a user profile associated with the identification number; confirm that the secondary numeric value is not greater than the balance in a loyalty points account associated with the identification number; transmit to an authorization server a revised authorization request that includes the identification number and the primary numeric value; and receive from the authorization server a confirmation message confirming that the primary numeric value is not greater than the balance in a payment account associated with the identification number.

Abstract: A terminal management server includes a data transceiver, and a data processor in communication with the data transceiver. The data transceiver is configured to receive from a point-of-sale terminal data indicative of a violation detected by the point-of-sale terminal of one or more security parameters. The violation is indicative of a compromise of the point-of-sale terminal. The data processor is configured to (i) classify the detected violation as potential fraudulent activity, and (ii) in response to the data processor classifying the detected violation as potential fraudulent activity, cause the data transceiver to send a command to the point-of-sale terminal disabling functionality of the point-of-sale terminal. One or more of the security parameters may include a status of a network connection between the point-of-sale terminal and the terminal management server, and the detected violation may include a termination of the network connection.

Abstract: A method for monitoring security of a point-of-sale terminal involves a terminal management server receiving from the point-of-sale terminal data indicative of a violation detected by the point-of-sale terminal of one or more security parameters. The violation is indicative of a compromise of the point-of-sale terminal. The point-of-sale terminal may maintain a network connection with the terminal management server. One or more of the security parameters may include a network connectivity status of the point-of-sale terminal, and the detected violation may include a termination of the network connection. The terminal management server may classify the detected violation of the one or more of the security parameters as potential fraudulent activity, and send a command to the point-of-sale terminal disabling functionality of the point-of-sale terminal.

Abstract: A computer server includes a transaction processor that is configured to receive from a POS terminal an incoming authorization request that includes an original numeric value, a token cryptogram and an identification number identifying an identity token; confirm that the token cryptogram was generated from the original numeric value and a cryptographic key associated with the token; determine primary and secondary numeric values from the original numeric value and a user profile associated with the identification number; confirm that the secondary numeric value is not greater than the balance in a loyalty points account associated with the identification number; transmit to an authorization server a revised authorization request that includes the identification number and the primary numeric value; and receive from the authorization server a confirmation message confirming that the primary numeric value is not greater than the balance in a payment account associated with the identification number.