Agile OTP generation
US-9118663-B1 · Aug 25, 2015 · US
Systems and methods for performing transactions with contactless cards
US12125027B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-12125027-B2 |
| Application number | US-202117488012-A |
| Country | US |
| Kind code | B2 |
| Filing date | Sep 28, 2021 |
| Priority date | Oct 2, 2018 |
| Publication date | Oct 22, 2024 |
| Grant date | Oct 22, 2024 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
Example embodiments of systems and methods for data transmission system between transmitting and receiving devices are provided. In an embodiment, each of the transmitting and receiving devices can contain a master key. The transmitting device can generate a diversified key using the master key, protect a counter value and encrypt data prior to transmitting to the receiving device, which can generate the diversified key based on the master key and can decrypt the data and validate the protected counter value using the diversified key.
First claim
Opening claim text (preview).
What is claimed is: 1. A method for transmitting data by a contactless card having a processor and a memory, the memory containing a card key, the method comprising: generating a cryptogram; encrypting the cryptogram using the card key; transmitting the encrypted cryptogram; and transmitting a tap password comprising a plurality of taps of the contactless card on a receiving device. 2. The method of claim 1 , further comprising, prior to transmitting the tap password, receiving a request for the tap password from an application comprising instructions for execution on the receiving device. 3. The method of claim 1 , wherein the plurality of taps comprises two short taps and one long tap. 4. The method of claim 3 , wherein each of the two short taps last less than one second. 5. The method of claim 3 , wherein the long tap lasts more than one second. 6. The method of claim 3 , wherein the two short taps and the one long tap may occur in any order. 7. The method of claim 1 , wherein the plurality of taps may occur in any order. 8. A data transmission system, comprising: a contactless card comprising: a processor; and a memory, the memory of the contactless card containing a card key, wherein the contactless card is configured to: generate a cryptogram, encrypt the cryptogram using the card key, transmit the encrypted cryptogram, and transmit a tap password comprising a plurality of taps of the contactless card on a receiving device. 9. The data transmission system of claim 8 , wherein the taps comprising the plurality of taps on the receiving device are at least one selected from the group of taps directly on the receiving device and taps directly on an intermediary device that is transmitted to the receiving device. 10. The data transmission system of claim 8 , wherein the receiving device comprises at least one selected from the group of a mobile device, a smart device, a terminal, a server, and a wearable device. 11. The data transmission system of claim 8 , wherein the tap password is associated with a sequence of at least one selected from the group of a first set of taps and a second set of taps. 12. The data transmission system of claim 11 , wherein the first set of taps comprises one or more taps having a first duration and the set second of taps comprises one or more taps having a second duration. 13. The data transmission system of claim 9 , wherein: the taps directly on the receiving device comprise a wave of the contactless card relative to the receiving device, and the taps directly on the intermediary device comprise a wave of the contactless card relative to the intermediary device. 14. The data transmission system of claim 8 , wherein: the plurality of taps comprises two short taps and one long tap, and each of the two short taps have a duration less than a duration of the long tap. 15. The data transmission system of claim 8 , further comprising an application comprising instructions for execution on the receiving device, wherein: the application is configured to request a tap password from the contactless card, and the contactless card is configured to transmit the tap password in response to the request. 16. The data transmission system of claim 15 , wherein the application is configured to validate the tap password by comparison with a reference tap password. 17. The data transmission system of claim 16 , wherein, upon validation of the tap password, the application is configured to approve a transaction that exceeds a threshold value. 18. A server, comprising: a processor, and a memory, the memory containing a key, a reference tap password, and an application comprising instructions for execution by the processor, wherein the application is configured to: receive an encrypted cryptogram, decrypt the encrypted cryptogram using the key, request a tap password comprising a plurality of taps of a contactless card on a receiving device, and the plurality of taps may occur in any order, receive a tap password, compare the tap password to the reference tap password, and upon determining that the tap password matches the reference tap password, authorize a transaction. 19. The server of claim 18 , wherein the application is further configured to, upon determining that the tap password does not match the reference tap password, reject the transaction. 20. The server of claim 18 , wherein the taps comprising the plurality of taps on the receiving device are at least one selected from the group of taps directly on the receiving device and taps directly on an intermediary device that is transmitted to the receiving device.
Assignees
Inventors
Classifications
Use of certificates or encrypted proofs of transaction rights · CPC title
involving user or device identifiers, e.g. serial number, physical or biometrical information, DNA, hand-signature or measurable physical characteristics · CPC title
Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these (network architectures or network communication protocols for key exchange in a packet data network H04L63/061) · CPC title
Financial cryptography, e.g. electronic payment or e-cash · CPC title
Contactless payments by cards · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US12125027B2 cover?
- Example embodiments of systems and methods for data transmission system between transmitting and receiving devices are provided. In an embodiment, each of the transmitting and receiving devices can contain a master key. The transmitting device can generate a diversified key using the master key, protect a counter value and encrypt data prior to transmitting to the receiving device, which can ge…
- Who is the assignee on this patent?
- Capital One Services Llc
- What technology area does this patent fall under?
- Primary CPC classification G06Q20/401. Mapped technology areas include Physics.
- When was this patent published?
- Publication date Tue Oct 22 2024 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 12 related publications on this page (citations in our corpus or others sharing the same primary CPC).