Isolating distinct service provider widgets within a wallet container
원문보기
IPC분류정보
국가/구분
United States(US) Patent
등록
국제특허분류(IPC7판)
G06Q-020/36
G06Q-020/20
G06F-003/08
G06K-007/00
G06Q-020/32
G06Q-010/06
G06Q-030/06
G06Q-040/02
출원번호
US-0096720
(2013-12-04)
등록번호
US-10032160
(2018-07-24)
발명자
/ 주소
Desai, Mehul
Pitroda, Satyan G.
Maniar, Nehal
출원인 / 주소
MASTERCARD MOBILE TRANSACTIONS SOLUTIONS, INC.
대리인 / 주소
GTC Law Group PC & Affiliates
인용정보
피인용 횟수 :
0인용 특허 :
118
초록▼
Isolating distinct service provider widgets within a wallet container is accomplished by configuring a widget to provide access to an issuer-specific service group of services that are accessible in a service tier of a multi-tier platform for providing secure transactions, determining widget isolati
Isolating distinct service provider widgets within a wallet container is accomplished by configuring a widget to provide access to an issuer-specific service group of services that are accessible in a service tier of a multi-tier platform for providing secure transactions, determining widget isolation requirements for operating the widget, configuring a widget descriptor with the isolation requirements, and communicating with the configured widget that has been deployed on a mobile device to provide at least one service from the issuer-specific service group.
대표청구항▼
1. An apparatus, comprising: a plurality of widget modules accessible in a memory of a mobile device, wherein each widget module is associated with a service provider; anda wallet container that is accessible in the memory, the wallet container operable on the mobile device to: isolate a plurality o
1. An apparatus, comprising: a plurality of widget modules accessible in a memory of a mobile device, wherein each widget module is associated with a service provider; anda wallet container that is accessible in the memory, the wallet container operable on the mobile device to: isolate a plurality of distinct electronic wallets that are accessible in the memory;control access to the plurality of distinct electronic wallets through the plurality of widget modules by authenticating a widget module to access a distinct electronic wallet based on wallet access rights of the service provider associated with the widget module;determine wallet access rights of the service provider by processing a widget access context object associated with a specific widget that is used by the wallet container to manage widget access, wherein the widget access context object is a runtime accessible data structure that is populated with information derived from a widget access record;securely isolate access to mobile device resources that is allowed for each widget module via limiting access to at least one application programming interface;control widget access to resources with service provider-specific security domain applets that are accessible in a memory of the mobile device;limit, with the wallet container widget use of security domain applets to a security domain applet of the service provider associated with the widget; andstore at least one widget module of the plurality of widget modules associated with a service provider in a particular non-volatile service provider-specific security domain memory of a plurality of non-volatile service provider-specific security domain memories of a secure element of the mobile device, the particular security domain memory comprising the at least one widget module and the service provider-specific security domain applet; andaccess the security domain and all applets disposed therein as a group using unique, security domain-specific security keys when accessing the secure element. 2. The apparatus of claim 1, wherein the wallet container operates in cooperation with an enabling tier of a multi-tier platform for providing secure personalized transactions comprising at least enabling, service, and personalization tiers so that widget isolation from device resources is effected by the enabling tier. 3. The apparatus of claim 2, wherein the enabling tier abstracts device resources from widget execution to facilitate securely controlling widget access within the mobile device. 4. The apparatus of claim 2, wherein the enabling tier facilitates isolating first widget accessible device resources from a second widget. 5. The apparatus of claim 2, wherein access to a first widget accessible service in a group of services accessible in the service tier is isolated from access by a second widget by the enabling tier. 6. The apparatus of claim 2, wherein the enabling tier facilitates isolating a first widget accessible service in a group of services accessible in the service tier from a second widget. 7. The apparatus of claim 1, wherein the wallet container comprises a runtime environment adapted to facilitate isolated execution of a plurality of separate widget modules and the plurality of distinct electronic wallets. 8. The apparatus of claim 7, wherein the runtime environment facilitates widget and wallet execution by interpreting the plurality of separate widget modules and the plurality of distinct electronic wallets. 9. The apparatus of claim 1, wherein the wallet container facilitates limiting access of service provider-specific workflows to widget modules associated with the service provider. 10. The apparatus of claim 1, wherein widget mobile device resource access rights are determined from a widget descriptor associated with a specific widget. 11. The apparatus of claim 10, wherein a widget descriptor comprises a data structure that is signed by a service provider associated with the widget. 12. The apparatus of claim 1, wherein widget access rights to electronic wallets are determined from a widget access record that is referenced to authenticate a widget. 13. The apparatus of claim 12, wherein a widget access record is accessible in a secure element of a mobile device. 14. The apparatus of claim 11, wherein the widget access rights determined from a widget access record are used to populate a widget access context object that is used by the wallet container to manage widget access to actions, the mobile device display screen, external network resources, and secure element resources. 15. The apparatus of claim 1, wherein cooperation of two or more widgets that is required to perform certain secure transactions is coordinated by the wallet container. 16. The apparatus of claim 1, wherein a widget comprises executable code and data that is used to facilitate performing a secure transaction between an electronic wallet, to which the widget is authenticated for access, and a service provider, with which the widget is associated, over a network connection provided by the mobile device.
연구과제 타임라인
LOADING...
LOADING...
LOADING...
LOADING...
LOADING...
이 특허에 인용된 특허 (118)
Pitroda, Satyan G.; Desai, Mehul, Administering a plurality of accounts for a client.
Wary, M. Jean-Philippe, Authentication process including setting up a secure channel between a subscriber and a service provider accessible through a telecommunications operator.
Miller, Willis; Zaugg, Matthew R.; Block, James; Graef, H. Thomas; Ramachandran, Natarajan; Enright, Jeffery M.; Douglass, Mark A., Banking system controlled responsive to data bearing records.
Matsuyama,Shinako; Ishibashi,Yoshihito; Futamura,Ichiro; Kon,Masashi; Watanabe,Hideaki, Content distribution system, content distribution method, information processing apparatus, and program providing medium.
Ehrsam William F. (Kingston NY) Elander Robert C. (Saugerties NY) Hollis Lloyd L. (Cary NC) Lennon Richard E. (Woodstock NY) Matyas Stephen M. (Poughkeepsie NY) Meyer Carl H. W. (Kingston NY) Oseas J, Cryptographic communication security for multiple domain networks.
Ehrsam William F. (Kingston NY) Elander Robert C. (Saugerties NY) Matyas Stephen M. (Poughkeepsie NY) Meyer Carl H. W. (Kingston NY) Smith John L. (Woodstock NY) Tuchman Walter L. (Woodstock NY), Cryptographic file security for single domain networks.
Walker Jay S. ; Schneier Bruce ; Jorasch James A., Method and apparatus for a cryptographically assisted commercial network system designed to facilitate buyer-driven cond.
Peitrucha, Jr., Stanislaus; Nenninger, Brian W.; Myers, Kenneth L.; Shedlick, Matthew T.; Radziewicz, Scott L.; Austin, Andre M.; Youm, Julie Hae Jung; Rowan, James R.; Tully, Rick D.; Lucas, Arnaud; Blanchard, Albert J.; Bragg, Robert M.; Gutierrez, Miguel J.; Moskosky, James P.; Meyers, John W., Method and apparatus for facilitating electronic acquisition and maintenance of goods and services via the internet.
Walker, Jay S.; Tedesco, Daniel E.; Tulley, Stephen C.; Packes, Jr., John M.; O'Shea, Deirdre; Bemer, Keith; Jorasch, James A.; Alderucci, Dean P., Method and apparatus for providing cross-benefits based on a customer activity.
Bouricius Willard G. (Katonah NY) Stuckert Paul E. (Katonah NY), Method and apparatus for secure message transmission for use in electronic funds transfer systems.
Hennige Hartmut (23 Packman Lane ; Home Green Kirk Ella Hull HU10 7TH N. Humberside GB3), Method and device for simplifying the use of a plurality of credit cards, or the like.
Anderson Michael W. ; Hargreaves David ; Hoellig Susan M. ; Johnson Drew S. ; Mischel Blaine D., Method and system for gathering and analyzing consumer purchasing information based on product and consumer clustering.
Robertson, James A.; Greene, William S.; Wille, Andrew N., Method and system for implementing a databus in a global ecosystem of interrelated services.
Petri Heinonen FI; Mikko Terho FI; Matti Marttila FI; Markku Rautiola FI, Method for using applications in a mobile station, a mobile station, and a system for effecting payments.
Low Colin,GBX ; Seaborne Andrew Franklin,GBX ; Bouthors Nicolas,FRX ; Beyschlag Ulf,FRX ; Raguideau Nicolas,FRX, Method of making available content resources to users of a telephone network.
Harrison, Allen Ray; Oney, Bruce Alan; Challappa, Murli; White, James H., Method, apparatus and system for providing product advisory information for a web-based sales application.
Ozaki, Toru; Mizutani, Masami; Sasaki, Shigeru, Portable communication device and system using the portable communication device and attachment for a portable communication device.
Maes Stephane Herman ; Sedivy Jan,CSX, Portable information and transaction processing system and method utilizing biometric authorization and digital certificate security.
Thomas Michael W. ; Allard James E. ; Howard Michael ; Chung Sophia ; Ferroni Cameron ; Henbenthal Douglas C. ; Ludeman John ; Stebbens Kim ; Sanders ; II Henry L. ; Treadwell ; III David R., System and method for administering a meta database as an integral component of an information server.
Merrien, Lionel; Carrara, Jean-Louis; Bebic, Youri; Miller, Paul, System and method for creating a trusted network capable of facilitating secure open network transactions using batch credentials.
Bensoussan, Pierre; De Jaegere, Antoine, System and method for instant consolidation, enrichment, delegation and reporting in a multidimensional database.
Eschelbeck, Gerhard; Villa, Andrea, System and method for providing trustworthy network security concern communication in an active security management environment.
Williams Humphrey ; Hughes Kevin ; Parmar Bipinkumar G., System, method and article of manufacture for network electronic authorization utilizing an authorization instrument.
Ginter Karl L. ; Shear Victor H. ; Spahn Francis J. ; Van Wie David M., Systems and methods for secure transaction management and electronic rights protection.
Cheng,Ray C. H.; Van Oorschot,Paul C.; Hillier,Stephen William, Systems and methods providing interactions between multiple servers and an end use device.
Pitroda Satyan G. (1480 Golden Bell Ct. Downers Grove IL 60515), Universal electronic transaction card including receipt storage and system and methods of conducting electronic transact.
※ AI-Helper는 부적절한 답변을 할 수 있습니다.