Patent Grant
10970708
Electronic transaction processing systems may utilize a payment terminal. The payment terminal can include a payment reader with corresponding circuits that are used to process payment transactions and interact with payment devices such as a payment card having a magnetic strip that is swiped in a magnetic reader of the payment reader, a payment device having a Europay/Mastercard/Visa (EMV) chip that is inserted into a corresponding EMV slot of the payment reader, and near field communication (NFC) enabled devices such as a smart phone or EMV card that is tapped at the payment reader and transmits payment information over a secure wireless connection
Electronic devices such as electronic cards may store information that may be used for communications and processing of transactions. For example, EMV cards may have an EMV chip located on the EMV card. The EMV chip may interface with a device such as the payment terminal or a portion thereof, which may provide a power source for the EMV chip, e.g., by connecting power and ground pins of the EMV chip to a power source and ground of the payment terminal. Once the EMV chip is connected to a power source, it may communicate with the payment reader or terminal via one or more data lines. In this manner, the EMV chip may exchange information as required to complete a transaction such as a payment transaction.
The EMV chip and payment reader or terminal may perform certain initialization steps after power is applied to the EMV chip. Once those initialization steps are complete, transactions may be performed and information such as encrypted payment information may be exchanged. In the case of payment transactions, these steps of initialization and transaction processing may take a number of seconds to complete. During this time, the EMV chip and the payment reader or terminal must remain connected in order to maintain the power and communications connections with the EMV chip. This creates delays in transaction processing time and is inconvenient for customers and merchants.
The above and other features of the present disclosure, its nature and various advantages will be more apparent upon consideration of the following detailed description, taken in conjunction with the accompanying drawings in which:
An electronic transaction card such as an EMV card has a chip (e.g., an EMV chip) embedded in or on the chip. The chip has contacts that can be accessed by a reader device such as a payment terminal, for example, by inserting the EMV card into an EMV slot. When properly placed in the slot, the chip contacts will physically contact corresponding contacts of the reader device. The physical contacts provide power to the chip, which in turn allows processing circuitry and memory of the EMV card to begin to function. The reader device and the EMV card then provide information to each other to initialize a communication for a transaction.
An application file locator (AFL) may be provided by the EMV card. The AFL provides information about records that are stored in memory in the EMV card, which in turn include data objects that are used to implement functionality such as EMV standard functionality, payment system functionality, and issuer-specific functionality. The AFL provides information such as a short file indicator (SFI) for the records as well as where in the EMV card memory the records may be accessed. Different card types, payment systems, and issuers not only have different records but may also have records located at disparate locations in memory and in different orders.
Reading of records from the EMV card may begin as soon as information about one or more records is known by the payment terminal. Records may be requested, data objects may be extracted from the records, and the data objects may be stored in a data object cache of the payment terminal. During processing the payment terminal will need particular data objects in order to process a transaction. The payment terminal may look for a data object in the cache in order to determine if the data object has already been received prior to the request for the particular data object. If the data object has not already been stored in the data cache, it may be determined if the location of the record that includes the data object is known or probable, for example, based on known information about particular card types, issuers, payment systems, or transactions involving other similar card characteristics. If so, a record may be read from the predicted location prior to obtaining records from other locations. If a probable location is not known or if that record request is not successful, records may be read until the desired data object is retrieved. In this manner, transaction processing may occur in parallel with reading of records from the EMV card, and in some instances, transaction processing may be completed prior to completion of the record reading process.
Information relating to record reading activities (e.g., AFL size, record sizes and locations, SFI information, record/data object associations, etc.) and information about EMV cards (e.g., issuer, payment system, card identifiers, cardholder information, etc.) may be provided by the payment terminal to one or more centralized systems (e.g., a payment service system) for analysis. This information may be analyzed to create rules for reading records from particular EMV cards and based on particular data object requests. In this manner, record reading and data object acquisition may be optimized based on information from numerous payment transactions.
The electronic interactions between the merchant and the customer take place between the customer's payment device 10 and the merchant's payment terminal 20. The customer has a payment device 10 such as a credit card having magnetic stripe, a credit card having an EMV chip, or a NFC-enabled electronic device such as a smart phone running a payment application. The merchant has a payment terminal 20 such as a merchant device, payment reader, standalone terminal, combined customer/merchant terminals, electronic device (e.g., smart phone) running a point-of-sale application, or other electronic device that is capable of processing payment information (e.g., encrypted payment card data and user authentication data) and transaction information (e.g., purchase amount and point-of-purchase information).
In some embodiments (e.g., for low-value transactions or for payment transactions that are less than a payment limit indicated by a NFC or EMV payment device 10) the initial processing and approval of the payment transaction may be processed at payment terminal 20. In other embodiments, payment terminal 20 may communicate with payment server 40 over network 30. Although payment server 40 may be operated by a single entity, in one embodiment payment server 40 may include any suitable number of servers operated by any suitable entities, such as a payment service system 50 and one or more banks of the merchant and customer (e.g., a bank server 60). The payment terminal 20 and the payment server 40 communicate payment and transaction information to determine whether the transaction is authorized. For example, payment terminal 20 may provide encrypted payment data, user authentication data, purchase amount information, and point-of-purchase information to payment server 40 over network 30. Payment server 40 may determine whether the transaction is authorized based on this received information as well as information relating to customer or merchant accounts, and responds to payment terminal 20 over network 30 to indicate whether or not the payment transaction is authorized. Payment server 40 may also transmit additional information such as transaction identifiers to payment terminal 20.
Based on the information that is received at payment terminal 20 from payment server 40, the merchant may indicate to the customer whether the transaction has been approved. In some embodiments such as a chip card payment device, approval may be indicated at the payment terminal, for example, at a screen of a payment terminal. In other embodiments such as a smart phone or watch operating as a NFC payment device, information about the approved transaction and additional information (e.g., receipts, special offers, coupons, or loyalty program information) may be provided to the NFC payment device for display at a screen of the smart phone or watch or storage in memory.
During transactions involving an EMV card, the EMV card may be inserted into a card slot of the payment terminal. The terminal may make a number of electrical connections with the EMV card including, inter alia, a power line, ground line, and data line. The EMV card may have a processing element that is powered by the power and ground lines, and that performs various functions in conjunction with the payment terminal, such as encryption and communication of card and transaction information, for example via authorization request cryptogram (ARQC) and other transaction information. In addition, the EMV card and payment terminal exchange information that allows them to perform transaction processing, such as a process options data object list (PDOL) provided from the terminal and application interchange profile (AIP) and application file locator (AFL) provided by the EMV card.
The AFL provides a listing of files and records (e.g., application elementary files (AEF)) that are used in performing transactions. The AFL listing provides record information such as a short file identifier (SFI) for each record and a byte listing of the record locations (e.g., based on a record location). The terminal may then utilizes this information to transmit “READ RECORD” messages to the EMV card to acquire the data objects within records in the AFL. These data objects may include a variety of information, including records that are related to an EMV specification, records that are specific to a particular payment system and records that are issuer-specific.
In some embodiments, not all of the data objects may be required to process a particular transaction. However, the records that include the data objects are not necessarily located at a particular location within any one EMV card, and different transaction types, payment systems, and issuers may have different record types, sizes, locations, and applications to particular transactions. In some embodiments of the present disclosure, data objects may be requested by a first software routine (e.g., a unique set of code, subroutine, function, or any other suitable portion of software that performs a particular function) of the payment terminal as required. A second software routine may read records and store data objects within a data object cache and respond to requests from the first software routine with requested data records from the cache. In this manner, data objects may be provided on demand without acquiring all records from the EMV card. Transaction processing steps may be performed in parallel with acquisition of records, and in some instances, transactions may be completed without acquiring all records for the EMV card.
In one embodiment, payment device 10 may be a device that is capable of communicating with payment terminal 20 (e.g., via payment reader 22), such as a NFC device 12 or an EMV chip card 14. Chip card 14 may include a secure integrated circuit that is capable of communicating with a payment terminal such as payment terminal 20, generating encrypted payment information, and providing the encrypted payment information as well as other payment or transaction information (e.g., transaction limits for payments that are processed locally) in accordance with one or more electronic payment standards such as those promulgated by EMVCo. Chip card 14 may include contact pins for communicating with payment reader 22 (e.g., in accordance with ISO 7816) and in some embodiments, may be inductively coupled to payment reader 22 via a near field 15. A chip card 14 that is inductively coupled to payment reader 22 may communicate with payment reader 22 using load modulation of a wireless carrier signal that is provided by payment reader 22 in accordance with a wireless communication standard such as ISO 14443.
NFC device 12 may be an electronic device such as a smart phone, tablet, or smart watch that is capable of engaging in secure transactions with payment terminal 20 (e.g., via communications with payment reader 22). NFC device 12 may have hardware (e.g., a secure element including hardware and executable code) and/or software (e.g., executable code operating on a processor in accordance with a host card emulation routine) for performing secure transaction functions. During a payment transaction NFC device 12 may be inductively coupled to payment reader 22 via near field 15 and may communicate with payment terminal 20 by active or passive load modulation of a wireless carrier signal provided by payment reader 22 in accordance with one or more wireless communication standards such as ISO 14443 and ISO 18092.
Although payment terminal 20 may be implemented in any suitable manner, in one embodiment payment terminal 20 may include a payment reader 22 and a merchant device 29. The merchant device 29 runs a point-of-sale application that provides a user interface for the merchant and facilitates communication with the payment reader 22 and the payment server 40. Payment reader 22 may facilitate communications between payment device 10 and merchant device 29. As described herein, a payment device 10 such as NFC device 12 or chip card 14 may communicate with payment reader 22 via inductive coupling. This is depicted in
In one embodiment, payment device 10 may be a contactless payment device such as NFC device 12 or chip card 14, and payment reader 22 and the contactless payment device 10 may communicate by modulating the wireless carrier signal within near field 15. In order to communicate information to payment device 10, payment reader 22 changes the amplitude and/or phase of the wireless carrier signal based on data to be transmitted from payment reader 22, resulting in a wireless data signal that is transmitted to the payment device. This signal is transmitted by an antenna of payment reader 22 that is tuned to transmit at 13.56 MHz, and if the payment device 10 also has a suitably tuned antenna within the range of the near field 15 (e.g., 0 to 10 cm), the payment device receives the wireless carrier signal or wireless data signal that is transmitted by payment reader 22. In the case of a wireless data signal, processing circuitry of the payment device 10 is able to demodulate the received signal and process the data that is received from payment reader 22.
When a contactless payment device such as payment device 10 is within the range of the near field 15, it is inductively coupled to the payment reader 22. Thus, the payment device 10 is also capable of modulating the wireless carrier signal via active or passive load modulation. By changing the tuning characteristics of the antenna of payment device 10 (e.g. by selectively switching a parallel load into the antenna circuit based on modulated data to be transmitted) the wireless carrier signal is modified at both the payment device 10 and payment reader 22, resulting in a modulated wireless carrier signal. In this manner, the payment device is capable of sending modulated data to payment reader 22.
In some embodiments, payment reader 22 also includes an EMV slot 21 that is capable of receiving chip card 14. Chip card 14 may have contacts that engage with corresponding contacts of payment reader 22 when chip card 14 is inserted into EMV slot 21. Payment reader 22 provides power to an EMV chip of chip card 14 through these contacts and payment reader 22 and chip card 14 communicate through a communication path established by the contacts.
Payment reader 22 may also include hardware for interfacing with a magnetic strip card (not depicted in
Merchant device 29 may be any suitable device such as tablet payment device 24, mobile payment device 26, or payment terminal 28. In the case of a computing device such as tablet payment device 24 or mobile payment device 26, a point-of-sale application may provide for the entry of purchase and payment information, interaction with a customer, and communications with a payment server 40. For example, a payment application may provide a menu of services that a merchant is able to select and a series of menus or screens for automating a transaction. A payment application may also facilitate the entry of customer authentication information such as signatures, PIN numbers, or biometric information. Similar functionality may also be provided on a dedicated payment terminal 28.
Merchant device 29 may be in communication with payment reader 22 via a communication path 23/25/27. Although communication path 23/25/27 may be implemented via a wired (e.g., Ethernet, USB, FireWire, Lightning) or wireless (e.g., Wi-Fi, Bluetooth, NFC, or ZigBee) connection, in one embodiment payment reader 22 may communicate with the merchant device 29 via a Bluetooth low energy interface. In some embodiments processing of the payment transaction may occur locally on payment reader 22 and merchant device 29, for example, when a transaction amount is small or there is no connectivity to the payment server 40. In other embodiments, merchant device 29 or payment reader 22 may communicate with payment server 40 via a public or dedicated communication network 30. Although communication network 30 may be any suitable communication network, in one embodiment communication network 30 may be the internet and payment and transaction information may be communicated between payment terminal 20 and payment server 40 in an encrypted format such by a transport layer security (TLS) or secure sockets layer (SSL) protocol.
Processing unit 120 of reader chip 100 of payment reader 22 may be a suitable processor and may include hardware, software, memory, and circuitry as is necessary to perform and control the functions of payment reader 22. Processing unit 120 may include one or more processors, and may perform the operations of reader chip 100 based on instructions in any suitable number of memories and memory types. In some embodiments, processing unit 120 may have multiple independent processing units, for example a multi-core processor or other similar component. Processing unit 120 may execute instructions stored in memory 122 of reader chip 100 to control the operations and processing of payment reader 22. As used herein, a processor or processing unit may include one or more processors having processing capability necessary to perform the processing functions described herein, including but not limited to hardware logic (e.g., hardware designed by software that that describes the configuration of hardware, such as hardware description language (HDL) software), computer readable instructions running on a processor, or any suitable combination thereof. A processor may run software to perform the operations described herein, including software accessed in machine readable form on a tangible non-transitory computer readable storage medium.
In an exemplary embodiment, the processing unit 120 of reader chip 100 may include two RISC processors configured to operate as a hub for controlling operations of the various components of payment reader 22, based on instructions stored in memory 122. As used herein, memory may refer to any suitable tangible or non-transitory storage medium. Examples of tangible (or non-transitory) storage medium include disks, thumb drives, and memory, etc., but does not include propagated signals. Tangible computer readable storage medium include volatile and non-volatile, removable and non-removable media, such as computer readable instructions, data structures, program modules or other data. Examples of such media include RAM, ROM, EPROM, EEPROM, SRAM, flash memory, disks or optical storage, magnetic storage, or any other non-transitory medium that stores information that is accessed by a processor or computing device.
Reader chip 100 may also include additional circuitry (not depicted) such as interface circuitry, analog front end circuitry, security circuitry, and monitoring component circuitry. In one embodiment, interface circuitry may include circuitry for interfacing with a wireless communication interface 108 (e.g., Wi-Fi, Bluetooth classic, and Bluetooth low energy), circuitry for interfacing with a wired communication interface 110 (e.g., USB, Ethernet, FireWire, and Lightning), circuitry for interfacing with other communication interfaces or buses (e.g., I2C, SPI, UART, and GPIO), and circuitry for interfacing with a power supply 106 (e.g., power management circuitry, power conversion circuitry, rectifiers, and battery charging circuitry).
In an exemplary embodiment, reader chip 100 may perform functionality relating to processing of payment transactions, interfacing with payment devices, cryptography, and other payment-specific functionality. In some embodiments, reader chip 100 may include a cryptographic processing unit 125 for handling cryptographic processing operations. Note that each of general processing unit 120 and cryptographic processing unit 125 may have dedicated memory associated therewith (i.e., general memory 122 and cryptographic memory 128). In this manner, specific cryptographic processing and critical security information (e.g., cryptographic keys, passwords, user information, etc.), may be securely stored by cryptographic memory 128 and processed by cryptographic processing unit 125.
One or both of general processing unit 120 and cryptographic processing unit 125 of reader chip 100 may communicate with the other (e.g., processing unit 120 may communicate with cryptographic processing unit 125 and vice versa), for example, using any suitable internal bus and communication technique. In an embodiment, software routines running on each of the processing units may communicate with each other to exchange information, such as transaction processing information, requests for information, data objects, records, files, and similar information as described herein. In this manner, reader chip 100 can process transactions and communicate information regarding processed transactions (e.g., with merchant device 29).
Reader chip 100 may also include circuitry for implementing a contact interface 104 (e.g., power and communication circuitry for directly interfacing with an EMV chip of a chip card 14 that is inserted into slot 21). In some embodiments, reader chip 100 also may also include analog front end circuitry for interfacing with the analog components of contactless interface 102 (e.g., electromagnetic compatibility (EMC) circuitry, matching circuits, modulation circuitry, and measurement circuitry).
Contactless interface 102 may provide for NFC communication with a contactless device such as NFC device 12 or chip card 14. Based on a signal provided by reader chip 100, an antenna of contactless interface 102 may output either a carrier signal or a modulated signal. A carrier signal may be a signal having a fixed frequency such as 13.56 MHZ. A modulated signal may be a modulated version of the carrier signal according to a modulation procedure such as ISO 14443 and ISO 18092. When the payment reader 22 is inductively coupled to a contactless device, the contactless device may also modulate the carrier signal, which may be sensed by the contactless interface 102 and provided to the reader chip 100 for processing. Based on these modulations of the carrier signal, payment reader 22 and a contactless device are able to communicate information such as payment information.
Contact interface 104 may be a suitable interface for providing power to a payment chip such as an EMV chip of a chip card 14 and communicating with the EMV chip. Contact interface 104 may include a plurality of contact pins (not depicted in
Power supply 106 may include one or more power supplies such as a physical connection to AC power, DC power, or a battery. Power supply 106 may include power conversion circuitry for converting an AC or DC power source into a plurality of DC voltages for use by components of payment reader 22. When power supply 106 includes a battery, the battery may be charged via a physical power connection, via inductive charging, or via any other suitable system. Although not depicted as physically connected to the other components of the payment reader 22 in
Wireless communication interface 108 may include suitable wireless communications hardware (e.g., antennas, matching circuitry, etc.) and one or more processors having processing capability necessary to engage in wireless communication (e.g., with a merchant device 29 via a protocol such as Bluetooth low energy) and control associated circuitry, including but not limited to hardware logic, computer readable instructions running on a processor, or any suitable combination thereof. Although wireless communication interface 108 may be implemented in any suitable manner, in an exemplary embodiment, wireless communication interface 108 may include a processing unit (not depicted) and memory (not depicted).
Wired communication interface 110 may include any suitable interface for wired communication with other devices or a communication network, such as USB, Lightning, FireWire, Ethernet, any other suitable wired communication interface, or any combination thereof. In some embodiments, wired communication interface 110 may allow payment reader to communicate with one or both of merchant device 29 and payment server 40.
In some embodiments, reader chip 100 may include a signal conditioning device 112. Although signal conditioning device 112 may include any suitable hardware, software, or any combination thereof, in an exemplary embodiment signal conditioning device may comprise an FPGA. Signal condition device 112 may receive and condition signals sent from contactless interface 102, such as when a payment device 10 using NFC communication communicates with payment reader 22.
Payment reader may also include a user interface 114. User interface may provide one or more suitable systems for a user to interact with the payment reader 22, such as buttons, a touch pad, a touch screen, a microphone, a speaker, a screen, a camera, a keyboard, or any suitable combination thereof. User interface 114 may allow the user to initiate actions of the payment reader 22 (e.g., initiating a reset mode, a sleep mode, a power-down, a low-power mode, or a transaction) and to respond to requests for information from the payment reader 22.
In some embodiments, general memory 122 may be any suitable memory as described herein, and may include a plurality of sets of instructions for controlling operations of payment reader 22 and performing general transaction processing operations of payment reader 22, such as operating instructions 130, transaction processing instructions 132, data authentication instructions 134, and EMV object request control instructions 136.
Operating instructions 130 may include instructions for controlling general operations of the payment reader 22, such as internal communications, power management, processing of messages, system monitoring, sleep modes, user interface response and control, operation of the contact interface 104, the wireless interface 108, the wired interface 110, or the signal conditioning device 112, and the management of the other sets of instructions. In one embodiment, the operating instructions 130 may provide the operating system and applications necessary to perform most of the processing operations that are performed by the processing unit 120 of the reader chip 100 of payment reader 22.
Operating instructions 130 may also include instructions for interacting with a merchant device 29. In one embodiment, the merchant device 29 may be running a point-of-sale application. The operating instructions 130 may include instructions for a complementary application to run on processing unit 120 of reader chip 100, in order to exchange information with the point-of-sale application. For example, the point-of-sale application may provide a user interface that facilitates a user such as a merchant to engage in purchase transactions with a customer. Menus may provide for the selection of items, calculation of taxes, addition of tips, and other related functionality. When it is time to receive payment, the point-of-sale application may send a message to the payment reader 22 (e.g., via wireless interface 108). The operating instructions 130 facilitate processing of the payment, for example, by acquiring payment information via the contactless interface 102 or contact interface 104, and invoking the various resources of reader chip 100 to process that payment information (e.g., by executing instructions stored in cryptographic memory 128 using cryptographic processing unit 125), and by generating responsive messages that are transmitted to the point-of-sale application of the merchant device 29 via wireless communication interface 108 and wired communication interface 110.
Operating instructions 130 may also include instructions for interacting with a payment service system 50 at a payment server 40. In one embodiment, a payment service system 50 may be associated with the payment reader 22 and the point-of-sale application of the merchant device 29. For example, the payment service system 50 may have information about payment readers 22 and merchant devices 29 that are registered with the payment service system 50 (e.g., based on unique identifiers). This information may be used to process transactions with servers of the merchant and customer financial institutions, for providing analysis and reports to a merchant, and aggregating transaction data. The payment reader 22 may process payment information (e.g., based on operation of reader chip 100) and communicate the processed payment information to the point-of-sale application, which in turn communicates with the payment service system 50. In this manner, messages from the payment reader 22 may be forwarded to the payment service system 50 of payment server 40, such that the payment reader 22 and payment service system 50 may collectively process the payment transaction.
Transaction processing instructions 132 may include instructions for controlling general transaction processing operations of the payment reader 22, such as controlling the interaction between the payment reader 22 and a payment device 10 (e.g., for interfacing with a payment device via the contactless interface 102 and contact interface 104), selecting payment processing procedures (e.g., based on a payment processing entity associated with a payment method), interfacing with the cryptographic processor 125, and any other suitable aspects of transaction processing.
Transaction processing instructions 132 also may include instructions for processing payment transactions at payment reader 22. In one embodiment, the transaction processing instructions may be compliant with a payment standard such as those promulgated by EMV. Depending on the payment method that is being used (e.g., Europay, Mastercard, Visa, American Express, etc.), a particular processing procedure associated with the payment method may be selected and the transaction may be processed according to that procedure. When executed by processing unit 120, these instructions may determine whether to process a transaction locally, how payment information is accessed from a payment device, how that payment information is processed, which cryptographic functions to perform, the types of communications to exchange with a payment server, and any other suitable information related to the processing of payment transactions. In some embodiments, transaction processing instructions 132 may perform high level processing, and provide instructions for processing unit 120 to communicate with cryptographic processing unit 125 to perform most transaction processing operations, such as acquisition of records from the EMV card. In addition, transaction processing instructions 132 may provide instructions for acquiring any suitable information from a chip card (e.g., via contact interface 104 and cryptographic processing unit 125) such as authorization responses, card user name, card expiration, etc.
Data authentication instructions 134 may include instructions for providing configuration information for a payment terminal 20. The configuration information may include any suitable information, such as payment limits and types of transactions for local transactions (i.e., transactions that occur without contacting a payment server 40) and supported applications. As an example, in some embodiments, data authentication instructions 134 may include configuration instructions such as TMS-CAPK instructions. In some embodiments, the TMS-CAPK may be tailored for a particular jurisdiction (e.g., country-specific).
EMV data object request instructions 136 may comprise instructions that when executed by a processing unit (e.g., a first software routine run by the processing unit 120) may prioritize and process the acquisition and processing of EMV data objects that are obtained from an EMV card. Data objects may be required at a variety of stages of a transaction, for example, based on steps that occur within instructions such as the transaction processing instructions 132 or data authentication instructions 134. At a stage where a data object is required, the transaction processing instructions 132 or data authentication instructions 134 may request a data object or to perform operations that require access to a data object.
As described herein, data objects may be obtained from an EMV card, e.g., based on reading records stored on the EMV card. The EMV object request instructions 136 may determine that a particular data object is required (e.g., based on a specific request and/or analysis of transaction processing operations) and may execute a request to obtain the data object. In an embodiment, the request may be provided to a second software routine (e.g., EMV record control instructions 180) which may acquire the desired data object. In some embodiments, EMV object request instructions may pre-fetch data objects based on a stage in a transaction, one or more data object acquisition rules, or other information related to the transaction.
Although in the embodiment depicted in
Cryptographic processing unit 125 may be any suitable processor as described herein, and, in some embodiments, may perform cryptographic functions for the processing of payment transactions. For example, in some embodiments a cryptographic processing unit 125 may encrypt and decrypt data based on one or more encryption keys, in a manner that isolates the encryption functionality from other components of payment reader 22 and protects the encryption keys from being exposed to other components of payment reader 22.
In some embodiments, cryptographic memory 128 may be any suitable memory or combination thereof as described herein, and may include a plurality of sets of instructions for performing cryptographic operations, such as payment processing instructions 176, cryptographic instructions 178, and EMV record control instructions 180. In an embodiment, cryptographic memory 128 may also include an EMV cache, which may provide quickly accessible storage of information relating to the EMV card and transactions, such as EMV data objects obtained via READ RECORD requests.
Payment processing instructions 176 may include instructions for performing aspects of payment processing, such as providing for encryption techniques to be used in association with particular payment procedures, accessing account and processing information, any other suitable payment processing functionality, or any suitable combination thereof. Cryptographic instructions 178 may include instructions for performing cryptographic operations. Cryptographic processing unit 125 may execute the cryptographic instructions 178 to perform a variety of cryptographic functions, such as to encrypt, decrypt, sign, or verify a signature upon payment and transaction information as part of a payment transaction.
In an embodiment, EMV record control instructions 180 may facilitate the acquisition of records from an EMV card and the processing of requests for data objects contained in those records. EMV cache 182 may store information about data acquired from the EMV card such as AFL data, records, and data objects, as described herein. By maintaining and querying the EMV cache, and otherwise managing and prioritizing requests for data objects from other software routines of the payment reader 22, and record requests and other communications with the EMV card, EMV record control instructions may facilitate parallel processing of transactions with the accessing of records from the EMV card, and in some instances, may permit the completion of transaction processing prior to the acquisition of all records from an EMV card.
In an embodiment, processing of records and data objects as part of an initialization process after the EMV card is placed in the EMV slot. Information may be obtained from the card that relates directly to the records (e.g., AFL data) or that may be used to identify known or probable information about records (e.g., issuer, card type, cardholder, payment system, etc.). Based on this information, the EMV record control instructions may execute one or more rules to selectively obtain records from the EMV card in an expedited manner. In an embodiment, record read requests may be based in part on known or probable record locations and a known or probable ordering of data object requests. Prior to receiving an actual data object request (e.g., from EMV data object request instructions), read record requests may be made in order to obtain data object that will permit prompt processing of transactions. Any data object that is extracted from a read record may be stored in the EMV cache for future use in response to future data object requests (e.g., from EMV data object request instructions 136).
Upon receipt of a data object request (e.g., from EMV data object request instructions 136), the EMV record control instructions 180 may perform a number of steps to return the requested data object. In an embodiment, the EMV record control instructions 180 may first query the EMV cache 182 to determine whether the data object has already been obtained and stored. If not, it may be determined from the data object or other information provided with the data object (e.g., transaction processing step, etc.) whether a known or probable location of the data record within the EMV card can be identified. If such a location may be identified, the current acquisition sequence of read record requests may cease and the identified location may be queried. If the data object is located at the identified location, the data object may be provided in response to the request and stored. If the identified location does not include the data object, other high probability record locations may be searched until the data object is found. If the data object cannot be found in the EMV cache 182 or from known/probable record locations (if any exist), read records may continue to be read sequentially and stored in the EMV cache until the desired data object is found. In some embodiments, multiple data object requests may be processed simultaneously, e.g., such that multiple data object requests are being checked against newly-read records.
Although particular components are depicted in a particular arrangement in
In one embodiment, the merchant device 29 includes a processing unit 202 and memory 204 that are configured to control and perform the necessary operations of the merchant device 29. In one embodiment, the processing unit 202 may be a general purpose processor running instructions for a mobile operating system, programs, and applications based on instructions that may be stored in memory 204. The memory 204 may include any suitable memory types or combination thereof as described herein, such as ROM, flash memory, and RAM, for storing instructions and other data and providing a working memory for the execution of the operating system, programs, and applications of the merchant device 29. In one embodiment, the memory 204 may include a plurality of sets of instructions, such as operating instructions 220, point-of-sale application instructions 222, and EMV record control instructions 224.
The processing unit 202 may execute the instructions of memory 204 to interact with and control one or more other components of the merchant device 29. Although the processing unit 202 may communicate with other components of the merchant device 29 in any suitable manner, in one embodiment the processing unit may utilize an interface bus 206. Interface bus 206 may include one or more communication buses such as I2C, SPI, USB, UART, and GPIO. In one embodiment, the processing unit 202 may execute instructions of the memory and based on those instructions may communicate with the other components of the merchant device 29 via the communication buses of interface bus 206.
Merchant device 29 may also include a power supply 208. Power supply 208 may include power conversion circuitry for converting AC power and/or generating a plurality of DC voltages for use by components of merchant device 29. When power supply 208 includes a battery, the battery may be charged via a physical power connection, via inductive charging, or via any other suitable method. Although not depicted as physically connected to the other components of merchant device 29 in
Merchant device 29 may also include a user interface 210. User interface 210 may provide various options for the user of the merchant device 29 to interact with applications and programs running on the merchant device 29. An exemplary user interface 210 may include hardware and software for any suitable user interface, such as a touchscreen interface, voice command interface, keyboard, mouse, gesture recognition, any other suitable user interface, or any combination thereof. In one embodiment, the user interface 210 may be a touchscreen interface that displays an interactive user interface for programs and applications such as a point-of-sale application running on the merchant device 29.
Merchant device 29 may also include a plurality of wireless communication interfaces. The wireless communication interfaces may include any suitable hardware and software for providing a wireless communication interface such as Bluetooth classic, Bluetooth low energy, WiFi, cellular, short message service (SMS), NFC, any other suitable wireless communication interface, or any combination thereof. In an embodiment, a first wireless communication interface 212 may be a wireless communication interface that primarily communicates with payment reader 22 (e.g., Bluetooth low energy interface) while a second wireless communication interface 214 may be a wireless communication interface (e.g., WiFi) that primarily communicates with a payment service system 50 of payment server 40 (e.g., via the internet).
Merchant device may also include a plurality of wired interfaces 216 and 218, which may include any suitable interface for wired communication with other devices or a communication network, such as USB, Lightning, FireWire, Ethernet, any other suitable wired communication interface, or any combination thereof. In an embodiment, wired interface 216 may primarily communicate with payment reader 22 (e.g., via USB) while wired interface 218 may primarily communicate with payment service system 50 (e.g., via Ethernet).
Operating instructions 220 may include instructions for controlling any suitable general operations of the merchant device 29, such as internal communications, power management, control of I/O devices, control of communication devices, control of other hardware of the merchant device 29, any other suitable instructions, or any combination thereof. In one embodiment, the operating instructions may provide instructions for the operating system of the merchant device 29 as well as most drivers, programs, and applications operating on the merchant device 29.
Operating instructions 220 may include instructions for controlling the operations of the user interface 210. The user interface 210 may be controlled in accordance with the instructions of programs and applications of the operating instructions 220, point-of-sale application instructions 222, and EMV record control instructions 224. Operating instructions 220 may also include instructions for interacting with a payment reader 22 and for interacting with a payment service system 50 at a payment server 40. The payment reader 22 and/or the application running on the merchant device 29 may be known (e.g., via a registration process) to the payment service system 50, such that the merchant device 29 may process payments with the payment service system 50 according to the point-of-sale application instructions 222.
Point-of-sale application instructions 222 include instructions for running a point-of-sale application on the merchant device 29. When executed by the processing unit 202, the point-of-sale application instructions 222 may provide for a rich display of an interactive interface that allows a merchant to process payment transactions with customers. These instructions may include customized interfaces that allow the merchant or customer to select products for purchase, calculate sales tax, process tips, provide receipts, generate discounts or special offers, process customer loyalty programs, search for items in inventory or for delivery, and perform any other suitable retail operations.
EMV Record Control Instructions 224 may provide operations and services for assisting with the processing of data object requests for payment transactions at payment reader 22 and the intake and processing of information related to EMV card data object and record information at payment service system 50. In an integrated payment terminal (e.g., where functionality of the payment reader 22 and merchant terminal are integrated into a single device) the functionality of EMV record control instructions 224 may be integrated at the integrated payment terminal (e.g., with EMV data object request instructions 136, EMV record control instructions 180, and EMV cache 182).
In an embodiment, EMV record control instructions 224 may assist with data object and record requests during payment transactions. Aspects of the processing described for payment reader 22 (e.g., aspects of EMV data object request instructions 136, EMV record control instructions 180, and EMV cache 182) may be offloaded to merchant terminal 29. EMV record control instructions 224 may assist with predictive requesting of data objects or records, execution of rules for identifying record rules, and parallel processing of payment transaction steps.
In an embodiment, EMV record control instructions 224 may provide local processing to modify or create record and data object processing rules. As described in more detail with respect to the operations of payment service system 50, data from numerous payment transactions may be aggregated and analyzed to generate rules for predictive requests of data objects, predictive requests of records, identification of known or probable record locations, parallelization of transaction processing steps, and similar functionality to expedite the process of acquiring data objects and processing payment transactions based on the acquired data objects. A particular merchant terminal 29 may receive information from a limited number of sources (e.g., a limited subset of payment readers 22 that connect to the merchant device 29, other merchant devices on shared networks, other merchant devices operated by the same entity, etc.). That limited information may be used to generate independent local rules (e.g., without regard to whether any rules are received from payment service system 50), or in some embodiments, modifications to global rules received from payment service system 50).
In an exemplary local rule, the merchant devices may operate in a particular locality where a large percentage of EMV cards have records located at particular locations, or where only a limited number of card types with particular record locations are used. Local rules may be created that that prioritize record searches based on these locations, and may supplement or displace global rules.
In another exemplary local rule, merchants may have customer information (e.g., from loyalty programs, etc.) that may identify customers and associate customers with known record locations. In this manner, a library of payment cards and record locations may be pre-loaded once a customer is identified. In an embodiment, customers may be identified by merchant biometric or monitoring systems (e.g., facial recognition, morphology, RFID devices, WiFi connections, GPS, cellular data, etc.) upon entering a queue, merchant location, or proximity to a merchant location, such that record location information may be identified and pre-loaded for the particular customer.
EMV record control instructions 224 may also provide data to the payment service system 50 from payment reader 22. This information may include data record locations, card information, customer information, data object-record associations, utilization of records and data objects in processing payment transactions (e.g., identification of records that include data objects that are frequently or infrequently used in payment transactions), and other similar information. This information may be forwarded to the payment service system, and in some embodiments, additional information may be appended. The additional information may be any suitable information that may be acquired by the merchant terminal, such as customer information, customer preference information, geographic information, store-specific information, purchased items, etc.
EMV record control instructions 224 may also facilitate updates to the EMV data object request instructions 136, EMV record control instructions 180, and EMV cache 182. In some embodiments, EMV record control instructions 224 may modify firmware updates received from payment service system 50 based on local rules.
In one embodiment, the payment service system 50 includes a processing unit 302 and memory 304 that are configured to control and perform the necessary operations of the payment service system 50. In one embodiment, the processing unit 302 of may be a high-speed processor running instructions for an operating system for the server, programs, and applications based on instructions that may be stored in memory 304. The memory 304 may include any suitable memory types or combination thereof as described herein for storing instructions and other data and providing a working memory for the execution of the operating system, programs, and applications of the payment service system 50. In one embodiment, the memory may include a plurality of sets of instructions, including but not limited to operating instructions 320, payment processing instructions 322, EMV expedited record instructions 324, and EMV record rule instructions 326. Memory 304 may also include EMV record storage 328, which may provide for storage of information relating to EMV records (e.g., from an AFL) as well as rules and related information to assist and expedite the processing of records.
The processing unit 302 may execute the instructions of memory 304 to interact with and control one or more other components of the payment service system 50. Although the processing unit 302 may communicate with other components of the payment service system 50 in any suitable manner, in one embodiment the processing unit 302 may utilize an interface bus 306. Interface bus 306 may include one or more communication buses such as I2C, SPI, USB, UART, and GPIO. In one embodiment, the processing unit 302 may execute instructions of the memory 304 and based on those instructions may communicate with the other components of the payment service system 50 via the communication buses of interface bus 306.
The payment service system 50 may also include a power supply 308. Power supply 308 may include power conversion circuitry for converting AC power and/or generating a plurality of DC voltages for use by components of the payment service system 50. In some embodiments, power supply 308 may include a backup system such as a battery backup, to avoid interruptions in service during power outages. Although not depicted as physically connected to the other components of the payment service system 50 in
The payment service system 50 may also include a communication interface 310. Although communication interface 310 may include any suitable communication interface or combination thereof, in some embodiments, the communication interface 310 may utilize higher speed communication interfaces such as WiFi, cellular, Ethernet, or fiber optics. The communication interface 310 may establish a secured connection (e.g., via TLS or SSL) with a payment terminal 20 (e.g., payment reader 22 via merchant device 29) in order to exchange messages relating to transactions to be processed, record acquisition and processing, firmware updates, application updates, etc. The communication interface 310 may also communicate with other servers of the payment server 40 such as payment servers, which may, in some embodiments, be located remotely from the payment service system 50 and operated by different entities than those that control the payment service system 50. For example, in one embodiment, the payment service system 50 may be operated by an entity that provides one or more of the payment reader 22, merchant device 29, or point-of-sale application 222. Payment servers may be associated with and operated by one or more of the merchant, issuer, or customer banks.
Memory 304 may include a plurality of data stores and a plurality of sets of instructions for performing the processing operations of the payment service system 50, such as operating instructions 320, payment instructions 322, EMV expedited record instructions 324, EMV record rule instructions 326, EMV record storage 328, and other suitable instructions and data stores for use in operating the payment service system 50 (e.g., instructions related to the operation of one or more other applications or components of the payment service system 50).
Operating instructions 320 may include instructions for controlling suitable general operations of the payment service system 50, such as internal communications, power management, control of communication devices, control of other hardware of the payment service system 50, any other suitable instructions, or any combination thereof. In one embodiment, the operating instructions may provide instructions for the operating system of the payment service system 50 as well as most drivers, programs, and applications operating on the payment service system 50.
Operating instructions 320 may also include instructions for interacting with a merchant device 29. In one embodiment, the payment service system 50 may communicate with the merchant device 29 via the communication interface 310. Operating instructions 320 may include instructions that when executed by processing unit 302 control these communications and provide for secure communication by implementing procedures such as TLS, SSL or as encrypted data based on keys.
Payment processing instructions 322 include instructions for processing payments, and may control the content of messages that are communicated to the merchant device 29, payment reader 22 (e.g., via merchant device 29), and/or payment servers. In one embodiment, the payment processing instructions may include information about each payment reader 22 and merchant device 29 having an installed point-of-sale application 222. In addition to performing payment processing functions such as providing payment information such as amount and a credit card number to a transaction processing system and communicating responses back to the merchant, the payment service system 50 may also perform complex analysis of merchant data that may be used to provide reports, metrics, or other data to a merchant (e.g., a merchant operating a plurality of merchant devices 29 at a plurality of locations). Payment processing instructions 322 may also include instructions for accessing encryption keys such as a shared private key or a key of a public/private key pair for encrypting and decrypting data provided by one or more of a payment device 10, payment reader 22, or merchant device 29.
EMV record storage 328 may provide a repository for storage of information relating EMV transactions, EMV record and data object processing rules, and other related data. In an embodiment, the stored data and include information relating to record locations from transactions for payment readers that are in communication with the payment service system, data object utilization information for such transactions, related transaction information (e.g., payment system information, issuer information, etc.), store and customer information (e.g., provided by merchant terminals), other suitable data, and associations therebetween. The stored data may also include rules for processing transactions based on such information, which may be organized for selection based on global, national, and local factors, e.g., to determine which record and data object processing rules should be provided to which merchant terminals and payment readers. In an exemplary embodiment, rules may be targeted based on information such as updates to EMV cards, merchant type, particular merchants, locality, customer demographics, etc., that may be associated with particular known or probable record locations and data object utilization.
EMV expedited record instructions 324 may assist with data object and record requests during payment transactions with connected payment terminals. Aspects of the processing described for payment reader 22 (e.g., aspects of EMV data object request instructions 136, EMV record control instructions 180, and EMV cache 182) and/or merchant terminal 29 (e.g., EMV record control instructions 224) may be offloaded to the payment service system 50. EMV expedited record instructions 324 may assist with predictive requesting of data objects or records, execution of rules for identifying record rules, parallel processing of payment transaction steps, and identification of information that may be used to determine likely record locations and data object utilization (e.g., customer information, etc.).
EMV record rule instructions 326 may provide for the creation, association, and storage of rules for processing or records and data objects. As described herein, information may be provided from a variety of sources that may be determined to be associated with known or probable record locations and data object utilization. Payment service system may receive this information for a very large number of transactions on a daily basis, from a very large number of merchants and payment terminals. This data may be analyzed using a variety of techniques (e.g., supervised or unsupervised machine learning) in order to identify rules for identifying record locations and transaction/data object processing steps and sequences. These rules may be hierarchical such that global rules may apply to large categories of payment terminals, with numerous levels of modification and refinement applying to particular sub-categories such as merchant type, location, customer demographics, issuer frequency, payment system frequency, etc. EMV record rule instructions may provide for the generation of software updates that may be provided to payment terminals, e.g., to update instructions and stored record and data object information.
In view of the structures and devices described supra, methods that can be implemented in accordance with the disclosed subject matter will be better appreciated with reference to the flowcharts of
Processing of
At step 604, records may be requested from the EMV card. As described herein, the received AFL information and known or probable record locations may be used to sequence and generate read record requests for particular storage locations within the EMV card. As record requests are received, the records and/or data objects may be stored within the EMV cache. This processing may continue until a transaction begins, at which time processing may continue to step 606.
At step 606, one or more data objects may be requested (e.g., by a first software routine of EMV data object request instructions 136) for use in processing a payment transaction. In some embodiments, sequencing of requests may be determined based on record and data object processing rules in a manner that facilitates parallel processing of payment transactions while data objects and records are being acquired, as described herein. Once the request for one or more data objects is received, processing may continue to step 608.
At step 608, the EMV cache may be queried (e.g., by a second software routine of EMV record control instructions 180) to determine whether requested data objects are located in the EMV cache. If the data records are available from the cache, processing may continue to steps 610. If the data records are not available from the EMV cache, processing may continue to step 616.
At step 610, the data records are acquired from the EMV cache (e.g., by the second software routine of EMV record control instructions 180). Once the data object has been acquired, processing may continue to step 612, at which the data object is returned for transaction processing (e.g., to the first software routine of EMV data object request instructions 136). Processing may then continue to step 614.
At step 614, it may be determined that no additional data objects are required to complete the transaction. If no additional data objects are required, processing may end. If additional data objects may be required, processing may return to step 604 at which additional records may be requested and data objects stored.
At step 616, it may be determined (e.g., by the second software routine of EMV record control instructions 180) whether the location of the record or records that are associated with the requested data object is known. If the location is known, processing may continue to step 618. If the location of the associated record is not known, processing may continue to step 622.
At step 618, a read record request may be provided to the EMV card, based on the known location of the record in the storage of the EMV card. Once the requested record is returned, processing may continue to step 620.
At step 620, the received record may be processed and the record and/or data object may be stored at the EMV cache for future use. Processing may then continue to steps 612 and 614, at which the data object is returned and it is determined whether any additional data objects are required to complete the transaction.
At step 622, a read record request may be provided to the EMV card. In some embodiments, the read record request may be based on one or more known probable locations of the record that is associated with the requested object, such that read record requests may be prioritized for that location. The requested record may be received and the data object of the request may be extracted. Processing may then continue to step 624.
At step 624, it may be determined whether the data object acquired at step 622 corresponds to the requested data object from step 606. If the desired data object was not received, processing may return to step 622 to request additional records. If the desired data object was returned, processing may continue to step 620, at which the data object is stored in the EMV cache, step 612, at which the requested data object is returned for use in transaction processing, and step 614 in which it is determined whether any additional data objects are required to complete the transaction.
Processing may begin at step 702, at which a communication regarding a record and/or data object may be received. As described herein, various information may be communicated regard records and data objects, such as requests to assist in processing (e.g., to identify likely record locations or data object utilization information), data record and object information for analysis, and information associated with records and objects that may be analyzed to identify rules for processing of records and data objects. Once the communication is received, processing may continue to step 704.
At step 704, it may be determined whether the communication requires a response. If a response is required, processing may continue to step 706. If a response is not required, processing may continue to step 708.
At step 706, the response to the communication may be identified and transmitted. In some embodiments, the response may include information such as a record location to request, a sequence of read record requests, a data object to request, a sequence of data object requests, a sequence of transaction processing steps, software updates, and/or libraries of known record locations for reference at the transaction processing device. Once the response is transmitted, processing may continue to step 708.
At step 708, existing record information may be acquired for analysis. As described herein, EMV record storage may include information about records, data objects, rules related to these records and data objects, and other information that may be used to develop those rules. Existing information may include the raw data, existing rules, data models, and/or other suitable information. Once the existing record information is acquired, processing may continue to step 710.
At step 710, the rules may be updated based on information in the newly received communication. As described herein, a hierarchy of rules may be provided and updated based on newly acquired information. In some embodiments, updates may be performed at different intervals (e.g., periodically) and/or based on a quantity or type of acquired data (e.g., based on a certain volume of new data being acquired). Once the rules are updated, the processing of
The foregoing is merely illustrative of the principles of this disclosure and various modifications may be made by those skilled in the art without departing from the scope of this disclosure. The above described embodiments are presented for purposes of illustration and not of limitation. The present disclosure also can take many forms other than those explicitly described herein. Accordingly, it is emphasized that this disclosure is not limited to the explicitly disclosed methods, systems, and apparatuses, but is intended to include variations to and modifications thereof, which are within the spirit of the following claims.
As a further example, variations of apparatus or process parameters (e.g., dimensions, configurations, components, process step order, etc.) may be made to further optimize the provided structures, devices and methods, as shown and described herein. In any event, the structures and devices, as well as the associated methods, described herein have many applications. Therefore, the disclosed subject matter should not be limited to any single embodiment described herein, but rather should be construed in breadth and scope in accordance with the appended claims.
This application is a continuation of U.S. application Ser. No. 15/396,609, filed on Dec. 31, 2016, entitled “PARTIAL DATA OBJECT ACQUISITION AND PROCESSING,” and granted as U.S. Pat. No. 10,402,816 on Sep. 3, 2019, which is incorporated herein by reference.
| Number | Name | Date | Kind |
|---|---|---|---|
| 3128349 | Boesch et al. | Apr 1964 | A |
| 4150784 | Moorman et al. | Apr 1979 | A |
| 4776003 | Harris | Oct 1988 | A |
| 4860336 | D'Avello et al. | Aug 1989 | A |
| 5221838 | Gutman et al. | Jun 1993 | A |
| 5351296 | Sullivan | Sep 1994 | A |
| 5388155 | Smith | Feb 1995 | A |
| 5408513 | Busch, Jr. et al. | Apr 1995 | A |
| 5714741 | Pieterse et al. | Feb 1998 | A |
| 5729591 | Bailey | Mar 1998 | A |
| 5740232 | Pailles et al. | Apr 1998 | A |
| 5798507 | Kawagishi et al. | Aug 1998 | A |
| 5838773 | Eisner et al. | Nov 1998 | A |
| 5850599 | Seiderman | Dec 1998 | A |
| 5867795 | Novis et al. | Feb 1999 | A |
| 5940510 | Curry et al. | Aug 1999 | A |
| 6010067 | Elbaum | Jan 2000 | A |
| 6098881 | Deland, Jr. et al. | Aug 2000 | A |
| 6098888 | Praden | Aug 2000 | A |
| 6144336 | Preston et al. | Nov 2000 | A |
| 6234389 | Valliani et al. | May 2001 | B1 |
| 6278779 | Bryant et al. | Aug 2001 | B1 |
| 6308144 | Bronfeld | Oct 2001 | B1 |
| 6378073 | Davis et al. | Apr 2002 | B1 |
| 6426944 | Moore | Jul 2002 | B1 |
| 6481623 | Grant et al. | Nov 2002 | B1 |
| 6702182 | Kanayama | Mar 2004 | B1 |
| 6886742 | Stoutenburg et al. | May 2005 | B2 |
| 6990683 | Itabashi | Jan 2006 | B2 |
| 7003316 | Elias et al. | Feb 2006 | B1 |
| 7066382 | Kaplan | Jun 2006 | B2 |
| 7083090 | Zuili | Aug 2006 | B2 |
| 7163148 | Durbin et al. | Jan 2007 | B2 |
| 7210627 | Morley et al. | May 2007 | B2 |
| 7363054 | Elias et al. | Apr 2008 | B2 |
| 7370804 | Ishii | May 2008 | B2 |
| 7424732 | Matsumoto et al. | Sep 2008 | B2 |
| 7433452 | Taylor et al. | Oct 2008 | B2 |
| 7591425 | Zuili et al. | Sep 2009 | B1 |
| 7673799 | Hart et al. | Mar 2010 | B2 |
| 7712670 | Sauerwein, Jr. et al. | May 2010 | B2 |
| 7810729 | Morley, Jr. | Oct 2010 | B2 |
| 7896248 | Morley, Jr. | Mar 2011 | B2 |
| 8086531 | Litster et al. | Dec 2011 | B2 |
| 8126734 | Dicks et al. | Feb 2012 | B2 |
| 8265553 | Cheon et al. | Sep 2012 | B2 |
| 8397988 | Zuili | Mar 2013 | B1 |
| 9020853 | Hoffman et al. | Apr 2015 | B2 |
| 9088403 | Caggioni et al. | Jul 2015 | B1 |
| 9092766 | Bedier et al. | Jul 2015 | B1 |
| 9286494 | Lamfalusi et al. | Mar 2016 | B1 |
| 9317848 | Hammad | Apr 2016 | B2 |
| 9424445 | Lamfalusi et al. | Aug 2016 | B2 |
| 9652641 | Lamfalusi et al. | May 2017 | B2 |
| 9679286 | Colnot et al. | Jun 2017 | B2 |
| 9721123 | Wade | Aug 2017 | B1 |
| 9760743 | Lamfalusi et al. | Sep 2017 | B2 |
| 9858448 | Terra et al. | Jan 2018 | B1 |
| 9881337 | Jaycobs | Jan 2018 | B2 |
| 9922320 | Bonalle | Mar 2018 | B2 |
| 9953353 | Singhal | Apr 2018 | B2 |
| 10002268 | Terra et al. | Jun 2018 | B1 |
| 10318952 | Wade et al. | Jun 2019 | B1 |
| 10380389 | Wade | Aug 2019 | B1 |
| 20010029595 | Murata | Oct 2001 | A1 |
| 20020060249 | Perron | May 2002 | A1 |
| 20020091633 | Proctor | Jul 2002 | A1 |
| 20020153414 | Stoutenburg et al. | Oct 2002 | A1 |
| 20030067940 | Edholm | Apr 2003 | A1 |
| 20030131191 | Zhang | Jul 2003 | A1 |
| 20030135418 | Shekhar et al. | Jul 2003 | A1 |
| 20030154414 | von Mueller et al. | Aug 2003 | A1 |
| 20030183691 | Lahteenmaki et al. | Oct 2003 | A1 |
| 20040005051 | Wheeler | Jan 2004 | A1 |
| 20040012875 | Wood | Jan 2004 | A1 |
| 20040015418 | Dooley | Jan 2004 | A1 |
| 20040041911 | Odagiri et al. | Mar 2004 | A1 |
| 20040059682 | Hasumi et al. | Mar 2004 | A1 |
| 20040080973 | Ogura | Apr 2004 | A1 |
| 20040124246 | Allen et al. | Jul 2004 | A1 |
| 20040167820 | Melick et al. | Aug 2004 | A1 |
| 20040179019 | Sabella | Sep 2004 | A1 |
| 20040204082 | Abeyta | Oct 2004 | A1 |
| 20050097015 | Wilkes et al. | May 2005 | A1 |
| 20050109841 | Ryan et al. | May 2005 | A1 |
| 20050132151 | Kuriyama | Jun 2005 | A1 |
| 20050156026 | Ghosh et al. | Jul 2005 | A1 |
| 20050184164 | De Jong | Aug 2005 | A1 |
| 20050236480 | Vrotsos et al. | Oct 2005 | A1 |
| 20060032905 | Bear et al. | Feb 2006 | A1 |
| 20060049255 | von Mueller et al. | Mar 2006 | A1 |
| 20060192542 | Uguen | Aug 2006 | A1 |
| 20060223580 | Antonio et al. | Oct 2006 | A1 |
| 20070012763 | Van de Velde et al. | Jan 2007 | A1 |
| 20070067833 | Colnot | Mar 2007 | A1 |
| 20070152058 | Yeakley | Jul 2007 | A1 |
| 20070168300 | Quesselaire et al. | Jul 2007 | A1 |
| 20070194104 | Fukuda et al. | Aug 2007 | A1 |
| 20070198436 | Weiss | Aug 2007 | A1 |
| 20070260638 | Madsen et al. | Nov 2007 | A1 |
| 20080091617 | Hazel et al. | Apr 2008 | A1 |
| 20080189547 | Sugiyama | Aug 2008 | A1 |
| 20080191845 | Strzelczyk | Aug 2008 | A1 |
| 20080238679 | Rofougaran et al. | Oct 2008 | A1 |
| 20080245851 | Kowalski | Oct 2008 | A1 |
| 20080301030 | Boss et al. | Dec 2008 | A1 |
| 20080301050 | DiGioacchino | Dec 2008 | A1 |
| 20090006262 | Brown et al. | Jan 2009 | A1 |
| 20090020602 | Pratone | Jan 2009 | A1 |
| 20090043918 | Schroeder | Feb 2009 | A1 |
| 20090070583 | von Mueller et al. | Mar 2009 | A1 |
| 20090112768 | Hammad et al. | Apr 2009 | A1 |
| 20090132852 | Sekiya | May 2009 | A1 |
| 20090164326 | Bishop et al. | Jun 2009 | A1 |
| 20090283600 | Chang et al. | Nov 2009 | A1 |
| 20100057620 | Li et al. | Mar 2010 | A1 |
| 20100149196 | Hattori | Jun 2010 | A1 |
| 20100224684 | Bonnin et al. | Sep 2010 | A1 |
| 20100241595 | Felsher | Sep 2010 | A1 |
| 20100243732 | Wallner | Sep 2010 | A1 |
| 20100252624 | Van de Velde et al. | Oct 2010 | A1 |
| 20100253482 | Catala Mora et al. | Oct 2010 | A1 |
| 20100287339 | Olszewski | Nov 2010 | A1 |
| 20100318468 | Carr et al. | Dec 2010 | A1 |
| 20110060637 | Sakai | Mar 2011 | A1 |
| 20110179494 | Adams et al. | Jul 2011 | A1 |
| 20110244799 | Roberts et al. | Oct 2011 | A1 |
| 20110246371 | Puetsch | Oct 2011 | A1 |
| 20120017106 | Curren et al. | Jan 2012 | A1 |
| 20120126009 | Osen et al. | May 2012 | A1 |
| 20120159207 | Chao et al. | Jun 2012 | A1 |
| 20120166344 | Cheng et al. | Jun 2012 | A1 |
| 20120173817 | Jiang et al. | Jul 2012 | A1 |
| 20120185397 | Levovitz | Jul 2012 | A1 |
| 20120215830 | Anguiano | Aug 2012 | A1 |
| 20120226601 | Cole et al. | Sep 2012 | A1 |
| 20130006847 | Hammad et al. | Jan 2013 | A1 |
| 20130095755 | Moreton et al. | Apr 2013 | A1 |
| 20130185772 | Jaudon | Jul 2013 | A1 |
| 20130248601 | Liang et al. | Sep 2013 | A1 |
| 20130299574 | Theobald | Nov 2013 | A1 |
| 20140052637 | Jooste et al. | Feb 2014 | A1 |
| 20140067675 | Leyva | Mar 2014 | A1 |
| 20140127995 | Hendricksen et al. | May 2014 | A1 |
| 20140138438 | Wakao | May 2014 | A1 |
| 20140189359 | Marien et al. | Jul 2014 | A1 |
| 20140217169 | Lewis et al. | Aug 2014 | A1 |
| 20140229521 | Meadway | Aug 2014 | A1 |
| 20140279309 | Cowen | Sep 2014 | A1 |
| 20140279520 | Armstrong | Sep 2014 | A1 |
| 20140289465 | Suduo | Sep 2014 | A1 |
| 20140299664 | Ardis et al. | Oct 2014 | A1 |
| 20140331072 | Osen et al. | Nov 2014 | A1 |
| 20150106216 | Kenderov | Apr 2015 | A1 |
| 20160117529 | Bedier et al. | Apr 2016 | A1 |
| 20160117659 | Bedier et al. | Apr 2016 | A1 |
| 20160117662 | Bedier et al. | Apr 2016 | A1 |
| 20160275478 | Li et al. | Sep 2016 | A1 |
| 20160306977 | Zarakas et al. | Oct 2016 | A1 |
| 20160307189 | Zarakas et al. | Oct 2016 | A1 |
| 20170004475 | White | Jan 2017 | A1 |
| 20170028693 | Free et al. | Feb 2017 | A1 |
| 20170242961 | Shukla et al. | Aug 2017 | A1 |
| 20180005243 | Zovi | Jan 2018 | A1 |
| 20180115617 | Kalaf | Apr 2018 | A1 |
| 20180189771 | Terra | Jul 2018 | A1 |
| 20180218181 | Terra et al. | Aug 2018 | A1 |
| 20180240103 | Rezayee et al. | Aug 2018 | A1 |
| 20180240117 | Rezayee et al. | Aug 2018 | A1 |
| 20200202357 | Rezayee et al. | Jun 2020 | A1 |
| Number | Date | Country |
|---|---|---|
| 2324402 | Jun 2002 | AU |
| 2017245414 | Nov 2017 | AU |
| 2 968 660 | May 2016 | CA |
| 20320080 | Apr 2004 | DE |
| 0 895 203 | Feb 1999 | EP |
| 1 431 861 | Jun 2004 | EP |
| 1 874 014 | Jan 2008 | EP |
| 2 812 744 | Feb 2002 | FR |
| 2 812 745 | Feb 2002 | FR |
| 2 834 156 | Jun 2003 | FR |
| H09231285 | Sep 1997 | JP |
| 2000-030146 | Jan 2000 | JP |
| 2000-276539 | Oct 2000 | JP |
| 2001-222595 | Aug 2001 | JP |
| 2002-074507 | Mar 2002 | JP |
| 2002-123771 | Apr 2002 | JP |
| 2002-279320 | Sep 2002 | JP |
| 2002-352166 | Dec 2002 | JP |
| 2002-358285 | Dec 2002 | JP |
| 2003-108777 | Apr 2003 | JP |
| 2003-281453 | Oct 2003 | JP |
| 2003-308438 | Oct 2003 | JP |
| 2004-054651 | Feb 2004 | JP |
| 2004-062733 | Feb 2004 | JP |
| 2004-078553 | Mar 2004 | JP |
| 2004-078662 | Mar 2004 | JP |
| 2004-199405 | Jul 2004 | JP |
| 4248820 | Apr 2009 | JP |
| 10-1999-0066397 | Aug 1999 | KR |
| 10-1999-0068618 | Sep 1999 | KR |
| 200225019 | Mar 2001 | KR |
| 10-2003-0005936 | Jan 2003 | KR |
| 10-2003-0005984 | Jan 2003 | KR |
| 10-2003-0012910 | Feb 2003 | KR |
| 200333809 | Nov 2003 | KR |
| 10-2004-0016548 | Feb 2004 | KR |
| 100447431 | Aug 2004 | KR |
| 200405877 | Jan 2006 | KR |
| 100649151 | Nov 2006 | KR |
| 10-2007-0107990 | Nov 2007 | KR |
| 100842484 | Jun 2008 | KR |
| 2284578 | Sep 2006 | RU |
| 1998012674 | Mar 1998 | WO |
| 2000011624 | Mar 2000 | WO |
| 2000025277 | May 2000 | WO |
| 0101300 | Jan 2001 | WO |
| 2001086599 | Nov 2001 | WO |
| 2002033669 | Apr 2002 | WO |
| 2002043020 | May 2002 | WO |
| 2002082388 | Oct 2002 | WO |
| 2002084548 | Oct 2002 | WO |
| 2003044710 | May 2003 | WO |
| 2003079259 | Sep 2003 | WO |
| 2004023366 | Mar 2004 | WO |
| 2006131708 | Dec 2006 | WO |
| 2009149715 | Dec 2009 | WO |
| 2013051032 | Apr 2013 | WO |
| 2015001468 | Jan 2015 | WO |
| 2016081804 | May 2016 | WO |
| WO-2017142851 | Aug 2017 | WO |
| 2018125808 | Jul 2018 | WO |
| 2018144591 | Aug 2018 | WO |
| 2018156742 | Aug 2018 | WO |
| Entry |
|---|
| Contactless EMV: A Work in Progress: Both EMV and contactless payment are gaining ground. Work on a single contactless EMV standard has begun, but until it is complete, the major card organizations are making their own choices Author: Rueter, Thad (Year: 2006). |
| Non-Final Office Action dated Apr. 12, 2017, for U.S. Appl. No. 15/396,609, of Terra, D., filed Dec. 31, 2016. |
| Rueter, T., “Contactless EMV: A Work in Progress: Both EMV and contactless payment are gaining ground. Work on a single contactless EMV standard has begun, but until it is complete, the major card organizations are making their own choices”, Card Technology SourceMedia, Inc (Year: 2006), pp. 1-4. |
| Notice of Allowance dated Mar. 26, 2019, for U.S. Appl. No. 15/396,609, of Terra, D. et al., filed Dec. 31, 2016. |
| Notice of Allowance dated Mar. 27, 2019, for U.S. Appl. No. 15/650,713, of Wade, J. et al., filed Jul. 14, 2017. |
| Notice of Allowance dated May 31, 2019, for U.S. Appl. No. 15/439,708, of Rezayee, A., et al., filed Feb. 22, 2017. |
| Notice of Allowance dated Nov. 15, 2018, for U.S. Appl. No. 15/824,945, of Terra, D., et al., filed Nov. 28, 2017. |
| Notice of Allowance dated Dec. 28, 2018, for U.S. Appl. No. 14/868,221, of Wade, J., et al., filed Sep. 28, 2015. |
| Notice of Allowance for Canadian Patent Application No. 2,968,660, dated Feb. 6, 2019. |
| Final Office Action dated Nov. 15, 2017, for U.S. Appl. No. 15/396,609, of Terra, D., filed Dec. 31, 2016. |
| Non-Final Office Action dated Sep. 16, 2015, for U.S. Appl. No. 14/549,338, of Lamfalusi, M.C., et al., filed Nov. 20, 2014. |
| Notice of Allowance dated Nov. 10, 2015, for U.S. Appl. No. 14/549,338, of Lamfalusi, M.C., et al., filed Nov. 20, 2014. |
| Non-Final Office Action dated Jan. 14, 2016, for U.S. Appl. No. 14/947,162, of Lamfalusi, M.C., et al., filed Nov. 20, 2015. |
| Notice of Allowance dated Mar. 25, 2016, for U.S. Appl. No. 14/947,162, of Lamfalusi, M.C., et al., filed Nov. 20, 2015. |
| Non-Final Office Action dated Aug. 25, 2016, for U.S. Appl. No. 15/220,262, of Lamfalusi, M.C., et al., filed Jul. 26, 2016. |
| Non-Final Office Action dated Aug. 25, 2016, for U.S. Appl. No. 15/221,383, of Lamfalusi, M.C., et al., filed Jul. 27, 2016. |
| Notice of Allowance dated Jan. 5, 2017, for U.S. Appl. No. 15/220,262, of Lamfalusi, M.C., et al., filed Jul. 26, 2016. |
| Ex Parte Quayle Action dated Jan. 26, 2017, for U.S. Appl. No. 14/967,108, of Wade, J., filed Dec. 11, 2015. |
| Notice of Allowance dated Mar. 22, 2017, for U.S. Appl. No. 14/967,108, of Wade, J., filed Dec. 11, 2015. |
| Notice of Allowance dated Apr. 21, 2017, for U.S. Appl. No. 15/221,383, of Lamfalusi, M.C., et al., filed Jul. 27, 2016. |
| Notice of Allowance dated Aug. 23, 2017, for U.S. Appl. No. 15/420,730, of Terra, D., et al., filed Jan. 31, 2017. |
| Examination Report No. 1 for Australian Patent Application No. 2017245444, dated Dec. 1, 2017. |
| Notice of Allowance dated Feb. 5, 2018, for U.S. Appl. No. 15/421,373, of Terra, D., et al., filed Jan. 31, 2017. |
| Examiner Requisition for Canadian Patent Application No. 2,968,660, dated Mar. 2, 2018. |
| Non-Final Office Action dated Jul. 19, 2018, for U.S. Appl. No. 15/824,945, of Terra, D., et al., filed Nov. 28, 2017. |
| Non-Final Office Action dated Jul. 26, 2018, for U.S. Appl. No. 14/868,221, of Wade, J., et al., filed Sep. 28, 2015. |
| Non-Final Office Action dated Aug. 13, 2018, for U.S. Appl. No. 15/396,609, of Terra, D., filed Dec. 31, 2016. |
| Notice of Acceptance for Australian Patent Application No. 2017245444, dated Aug. 29, 2018. |
| Non-Final Office Action dated Aug. 31, 2018, for U.S. Appl. No. 15/650,713, of Wade, J., filed Jul. 14, 2017. |
| International Search Report and Written Opinion for International Application No. PCT/US2015/061771 dated Jan. 29, 2016. |
| International Search Report and Written Opinion for International Application No. PCT/US2017/068220, dated Apr. 10, 2018. |
| International Search Report and Written Opinion for International Application No. PCT/US2018/016219, dated Apr. 30, 2018. |
| International Search Report and Written Opinion for International Application No. PCT/US2018/019191, dated May 30, 2018. |
| Non-Final Office Action dated Aug. 30, 2019, for U.S. Appl. No. 15/439,685, of Rezayee, A., et al., filed Feb. 22, 2017. |
| “Connection of Terminal Equipment to the Telephone Network,” FCC 47 CFR Part 68, Retrieved from the URL: http://www.tscm.com/FCC47CFRpart68.pdf, on Sep. 24, 2019 Oct. 1, 1999 Edition. |
| “EMBEDDED FINancial transactional IC card READer,” Retrieved from the URL: https://cordis.europa.eu/project/rcn/58338/factsheet/en. |
| Geethapriya Venkataramani and Srividya Gopalan., “Mobile phone based RFID architecture for secure electronic payments using RFID credit cards,” 2007 IEEE, (ARES'07). |
| “Guideline for the Use of Advanced Authentication Technology,” FIPS 190, Sep. 28, 1994. |
| “Identification cards—Recording technique—Part 4—Location of read-only magnetic tracks—Track 1 and 2,” ISO/IEC 7811-4:1995, International Organization for Standardization, Aug. 1995. |
| Jerome Svigals., “The Long Life and Imminent Death of the Mag-stripe Card,” IEEE Spectrum, vol. 49, Issue 61, Jun. 2012. |
| “Magensa's Decryption Services and MagTek's MagneSafe™ Bluetooth Readers Selected by eProcessing Network to Implement Secure Customer Card Data with Mobile Devices,” Retrieved from the URL: https://www.magnensa.net/aboutus/articles/eProcessing—rev1.pdf Apr. 14, 2008. |
| Martha E. Haykin et al., “Smart Card Technology: New Methods for Computer Access Control,” NIST Special Publication 500-157, Sep. 1988. |
| “MSP430x1xx Family User's Guide,” (including 2016 correction sheet at 2), Texas Instruments Inc., 2006. |
| Spegele, Joseph Brain., “A Framework for Evaluating Application of Smart Cards and Related Technology Within the Department of Defense,” Naval Postgraduate School, Jan. 1995. |
| Stephen A. Sherman et al., “Secure Network Access Using Multiple Applications of AT&T's Smart Card,” AT&T Technical Journal, Sep./Oct. 1994. |
| Office Action for European Patent Application No. 18709230.9, dated Jan. 31, 2020. |
| Office Action for European Patent Application No. 18709230.9, dated Jun. 24, 2020. |
| Notice of Allowance dated Nov. 29, 2019, for U.S. Appl. No. 15/439,685, of Rezayee, A., et al., filed Feb. 22, 2017. |
| Intention to Grant for European Patent Application No. 18709230.9, dated Sep. 2 , 2020. |
| Non-Final Office Action dated Nov. 27, 2020, for U.S. Appl. No. 16/810,700, of Rezayee, A., et al., filed Mar. 5, 2020. |
| Office Action for European Patent Application No. 17829889.9, dated Nov. 2, 2020. |
| Number | Date | Country | |
|---|---|---|---|
| 20180189772 A1 | Jul 2018 | US |
| Number | Date | Country | |
|---|---|---|---|
| Parent | 15396609 | Dec 2016 | US |
| Child | 15417888 | US |
