Abstract: The invention provides a method and system for providing financial details from a mobile device of a user for use in a transaction. The method is performed on a mobile device of the user and includes the steps of generating, on a token generating component, a session-specific token by applying an algorithm requiring a dynamic key; providing financial details for use in a transaction; incorporating the session-specific token and the financial details into a modified form the financial details; and transferring the modified form of the financial details from the mobile device to initiate the transaction. A corresponding method and system for validating financial details received, at a server of an issuing authority, is also provided.

Abstract: The invention provides a method and system for providing financial details from a mobile device of a user for use in a transaction. The method is performed on a mobile device of the user and includes the steps of generating, on a token generating component, a session-specific token by applying an algorithm requiring a dynamic key; providing financial details for use in a transaction; incorporating the session-specific token and the financial details into a modified form the financial details; and transferring the modified form of the financial details from the mobile device to initiate the transaction. A corresponding method and system for validating financial details received, at a server of an issuing authority, is also provided.

Abstract: The invention provides a method and system for providing financial details from a mobile device of a user for use in a transaction. The method is performed on a mobile device of the user and includes the steps of generating, on a token generating component, a session-specific token by applying an algorithm requiring a dynamic key; providing financial details for use in a transaction; incorporating the session-specific token and the financial details into a modified form the financial details; and transferring the modified form of the financial details from the mobile device to initiate the transaction. A corresponding method and system for validating financial details received, at a server of an issuing authority, is also provided.

Abstract: A method and system for provisioning payment credentials usable by a mobile device in conducting a payment. The method is conducted at a provisioning system and comprises the steps of: receiving payment credentials from a receiving device, the payment credentials having been obtained from a portable payment device presented by a consumer at the receiving device; receiving, from the receiving device, an identifier entered by the consumer; identifying a mobile device or a secure element corresponding to the identifier; and communicating the payment credentials or a derivation of the payment credentials to the identified mobile device or the secure element to be securely stored in association with the mobile device. The method may include: encrypting the received payment credentials, the encrypted payment credentials having a unique decryption key; and wherein communicating a derivation of the payment credentials communicates the unique decryption key.

Abstract: A method and system for provisioning payment credentials usable by a mobile device in conducting a payment. The method is conducted at a provisioning system and comprises the steps of: receiving payment credentials from a receiving device, the payment credentials having been obtained from a portable payment device presented by a consumer at the receiving device; receiving, from the receiving device, an identifier entered by the consumer; identifying a mobile device or a secure element corresponding to the identifier; and communicating the payment credentials or a derivation of the payment credentials to the identified mobile device or the secure element to be securely stored in association with the mobile device. The method may include: encrypting the received payment credentials, the encrypted payment credentials having a unique decryption key; and wherein communicating a derivation of the payment credentials communicates the unique decryption key.

Abstract: A dynamic object tag for a product and systems and methods relating thereto is disclosed. The dynamic object tag comprises a hardware security module, including an electronic storage module, and a communication module for communicating with an interrogation device. The hardware security module is adapted to establish a secure communication channel with the interrogation device, to exchange dynamic authentication parameters with the interrogation device, and to communicate product information stored on the electronic storage module to the interrogation device over the secure communication channel.

Abstract: Systems and methods for verification conducted at a secure element are disclosed. In a method of verification conducted at a secure element interacting with a mobile device, the secure element receives at least one of an identifier of a universal integrated circuit card (UICC) and an identifier of the mobile device. The secure element then compares each of the received at least one identifiers against a registered identifier of corresponding form stored in a non-volatile memory of the secure element. If the received at least one identifiers match corresponding registered identifiers stored in the non-volatile memory, the secure element permits further interaction with the mobile device. If at least one of the received identifiers do not match corresponding registered identifiers stored in the non-volatile memory, the secure element denies further interaction with the mobile device.

Abstract: Systems and methods for authorizing a transaction are disclosed. In a method a remotely accessible server receives biometric data from a communication device. The biometric data is gathered directly by the communication device from an individual at a merchant's premises. The server receives environmental data unique to the merchant and having been obtained at the merchant's premises. The server identifies a stored individual's profile associated with a biometric data record substantially matching the received biometric data and verifies the received environmental data against stored environmental data. If a stored individual's profile is identified and the environmental data is verified, the server authorizes the transaction.

Abstract: The invention provides systems, methods and devices for performing passcode authentication. In one embodiment of the invention, a method of performing passcode authentication conducted at a mobile device is provided which comprises the steps of: receiving an authentication request from a security gateway; receiving a passcode entered by a user of the mobile device; comparing the entered passcode to a passcode offset securely stored in a hardware security module (HSM) coupled to the mobile device; and, if the entered passcode corresponds with the passcode offset, generating a secure authentication confirmation message and transmitting the confirmation message to the security gateway; or, if the entered passcode does not correspond with the passcode offset, generating a secure authentication denial message and transmitting the authentication denial message to the security gateway.

Abstract: A method and system for transmitting and receiving transaction information are provided. The method for transmitting transaction information is performed on a computing device and includes: accessing transaction information to be transmitted and selecting an electronic file. The metadata stored in the electronic file is edited to insert the transaction information into one or more fields of the metadata to provide modified metadata of the electronic file. The electronic file with the modified metadata is transmitted to a receiving entity for processing of the transaction information. The transaction information may be in the form of payment credentials usable to enable a payment transaction.

Abstract: Methods and systems for transferring electronic money from a first mobile device of a first user to a receiver are provided. The method performed on the first mobile device includes the steps of: receiving, from the first user, an input representing an amount of electronic money to be transferred from a first electronic purse holding electronic money and associated with the first mobile device; generating, by means of a secure element associated with the first mobile device, an encrypted token representing the amount of electronic money to be transferred, the encrypted token including a unique identifier of the first electronic purse; decrementing an available balance in the first electronic purse by the amount of electronic money to be transferred; and transmitting the encrypted token to the receiver.

Abstract: Rules relating to the authorization of contactless payment transactions may be stored on a mobile device. After provision of contactless payment credentials to a merchant, the mobile device receives a query relating to the authorization of the transaction. The transaction details contained in the query are compared to the rules stored on the mobile device. Depending on the relevant rule applicable, the transaction may either be approved or rejected automatically, or may require user authorization. Depending on input received from the user in response to a prompt therefore, the transaction will be authorized or rejected.

Abstract: A payment card, for use with a payment card acceptance terminal, and related systems and methods are disclosed. The payment card includes an acceptance terminal interface component for interfacing with a payment card acceptance terminal and a user input receiving component for receiving an input by a user directly. The payment card also includes an integrated circuit which is in communication with the acceptance terminal interface and the user input receiving component and is configured to provide payment credentials to the payment card acceptance terminal on receipt of an input at the user input receiving component.

Abstract: Systems and methods for verification conducted at a secure element are disclosed. In a method of verification conducted at a secure element interacting with a mobile device, the secure element receives at least one of an identifier of a universal integrated circuit card (UICC) and an identifier of the mobile device. The secure element then compares each of the received at least one identifiers against a registered identifier of corresponding form stored in a non-volatile memory of the secure element. If the received at least one identifiers match corresponding registered identifiers stored in the non-volatile memory, the secure element permits further interaction with the mobile device. If at least one of the received identifiers do not match corresponding registered identifiers stored in the non-volatile memory, the secure element denies further interaction with the mobile device.

Abstract: A method and system for provisioning payment credentials usable by a mobile device in conducting a payment. The method is conducted at a provisioning system and comprises the steps of: receiving payment credentials from a receiving device, the payment credentials having been obtained from a portable payment device presented by a consumer at the receiving device; receiving, from the receiving device, an identifier entered by the consumer; identifying a mobile device or a secure element corresponding to the identifier; and communicating the payment credentials or a derivation of the payment credentials to the identified mobile device or the secure element to be securely stored in association with the mobile device. The method may include: encrypting the received payment credentials, the encrypted payment credentials having a unique decryption key; and wherein communicating a derivation of the payment credentials communicates the unique decryption key.

Abstract: The invention provides systems, methods and devices for performing passcode authentication. In one embodiment of the invention, a method of performing passcode authentication conducted at a mobile device is provided which comprises the steps of: receiving an authentication request from a security gateway; receiving a passcode entered by a user of the mobile device; comparing the entered passcode to a passcode offset securely stored in a hardware security module (HSM) coupled to the mobile device; and, if the entered passcode corresponds with the passcode offset, generating a secure authentication confirmation message and transmitting the confirmation message to the security gateway; or, if the entered passcode does not correspond with the passcode offset, generating a secure authentication denial message and transmitting the authentication denial message to the security gateway.

Abstract: The invention provides a method and system for providing financial details from a mobile device of a user for use in a transaction. The method is performed on a mobile device of the user and includes the steps of generating, on a token generating component, a session-specific token by applying an algorithm requiring a dynamic key; providing financial details for use in a transaction; incorporating the session-specific token and the financial details into a modified form the financial details; and transferring the modified form of the financial details from the mobile device to initiate the transaction. A corresponding method and system for validating financial details received, at a server of an issuing authority, is also provided.

Abstract: A dynamic object tag for a product and systems and methods relating thereto is disclosed. The dynamic object tag comprises a hardware security module, including an electronic storage module, and a communication module for communicating with an interrogation device. The hardware security module is adapted to establish a secure communication channel with the interrogation device, to exchange dynamic authentication parameters with the interrogation device, and to communicate product information stored on the electronic storage module to the interrogation device over the secure communication channel.

Abstract: A system and method of issuing payment credentials to a consumer is disclosed. A payment processing network sends payment credentials and an identifier of a consumer to whom the payment credentials belong to a secure gateway. The secure gateway encrypts or zone translates the payment credentials and sends them to a mobile device of the consumer through a secure communication channel. The mobile device includes a hardware security module (HSM) which stores the payment credentials to be used for subsequent financial transactions by the consumer. Multiple sets of payment credentials may be stored on the HSM, corresponding to multiple payment accounts belonging to the consumer.

Abstract: Systems, methods, apparatuses, and computer-readable media for using near sound communication (NSC) functionalities to complete transactions are presented. According to one or more aspects, a payment server may receive a data message from a payor's telephone, and the data message may include a user-specified password. In response to validating the payor based on the user-specified password, a call may be initiated to the payor's telephone. Subsequently, a unique audio stream may be played over the call. The unique audio stream may be adapted to be captured by a merchant point-of-sale terminal for use in completing a transaction. In some arrangements, the unique audio stream may include encoded information identifying the payor and/or identifying an amount of funds to be paid.