Processing

Please wait...

Settings

Settings

Goto Application

1. WO2016033499 - SECURE ON DEVICE CARDHOLDER AUTHENTICATION USNING BIOMETRIC DATA

Publication Number WO/2016/033499
Publication Date 03.03.2016
International Application No. PCT/US2015/047492
International Filing Date 28.08.2015
IPC
G06F 21/00 2013.1
GPHYSICS
06COMPUTING; CALCULATING OR COUNTING
FELECTRIC DIGITAL DATA PROCESSING
21Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
CPC
G06F 21/32
GPHYSICS
06COMPUTING; CALCULATING; COUNTING
FELECTRIC DIGITAL DATA PROCESSING
21Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
30Authentication, i.e. establishing the identity or authorisation of security principals
31User authentication
32using biometric data, e.g. fingerprints, iris scans or voiceprints
G06F 21/35
GPHYSICS
06COMPUTING; CALCULATING; COUNTING
FELECTRIC DIGITAL DATA PROCESSING
21Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
30Authentication, i.e. establishing the identity or authorisation of security principals
31User authentication
34involving the use of external additional devices, e.g. dongles or smart cards
35communicating wirelessly
G06F 21/42
GPHYSICS
06COMPUTING; CALCULATING; COUNTING
FELECTRIC DIGITAL DATA PROCESSING
21Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
30Authentication, i.e. establishing the identity or authorisation of security principals
31User authentication
42using separate channels for security data
G06F 21/74
GPHYSICS
06COMPUTING; CALCULATING; COUNTING
FELECTRIC DIGITAL DATA PROCESSING
21Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
71to assure secure computing or processing of information
74operating in dual or compartmented mode, i.e. at least one secure mode
G06Q 20/3227
GPHYSICS
06COMPUTING; CALCULATING; COUNTING
QDATA PROCESSING SYSTEMS OR METHODS, SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES, NOT OTHERWISE PROVIDED FOR
20Payment architectures, schemes or protocols
30characterised by the use of specific devices ; or networks
32using wireless devices
322Aspects of commerce using mobile devices [M-devices]
3227using secure elements embedded in M-devices
G06Q 20/326
GPHYSICS
06COMPUTING; CALCULATING; COUNTING
QDATA PROCESSING SYSTEMS OR METHODS, SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES, NOT OTHERWISE PROVIDED FOR
20Payment architectures, schemes or protocols
30characterised by the use of specific devices ; or networks
32using wireless devices
326Payment applications installed on the mobile devices
Applicants
  • MASTERCARD INTERNATIONAL INCORPORATED [US]/[US]
Inventors
  • KAMAL, Ashfaq
  • REANY, Bob
  • WILLIAMSON, Gregory, D.
Agents
  • FILIPEK, Stephan, J.
Priority Data
62/043,81829.08.2014US
Publication Language English (en)
Filing Language English (EN)
Designated States
Title
(EN) SECURE ON DEVICE CARDHOLDER AUTHENTICATION USNING BIOMETRIC DATA
(FR) AUTHENTIFICATION DU TITULAIRE DE CARTE SÉCURISÉE RÉALISÉE SUR LE DISPOSITIF À L'AIDE DES DONNÉES BIOMÉTRIQUES
Abstract
(EN) A secure on-device cardholder authentication method and system. In an embodiment, a consumer's mobile device uses a mobile application to receive a user authentication request from an entity. A biometric data capture request is then transmitted to a biometric sensor of the mobile device, and a determination made that the mobile application is authorized to use an authenticator API. Next, the mobile device processor prompts the user to provide at least one form of biometric data in accordance with business rules, receives a user authentication response when the user provided biometric data matches locally stored biometric data, generates a positive user authentication response message, and transmits the positive user authentication response message to the entity.
(FR) La présente invention concerne un procédé et un système d'authentification du titulaire de carte sécurisée réalisée sur le dispositif. Dans un mode de réalisation, un dispositif mobile de consommateur utilise une application mobile pour recevoir une demande d'authentification d'utilisateur provenant d'une entité. Une demande de capture des données biométriques est ensuite transmise à un détecteur biométrique du dispositif mobile et une détermination est faite que l'application mobile est autorisée à utiliser une API d'authentification. Ensuite, le processeur de dispositif mobile invite l'utilisateur à fournir au moins une forme de données biométriques conformément à des règles commerciales, reçoit une réponse d'authentification de l'utilisateur lorsque les données biométriques fournies par l'utilisateur correspondent à des données biométriques mémorisées localement, génère un message de réponse positive d'authentification de l'utilisateur et transmet à l'entité le message de réponse positive d'authentification de l'utilisateur.
Related patent documents
Latest bibliographic data on file with the International Bureau