公开(公告)号：WO2018057997A3

公开(公告)日：2018-03-29

申请号：PCT/US2017/053107

申请日：2017-09-22

Applicant: APPLE INC.

Inventor： SIBERT, Herve ,  ELRAD, Oren M. ,  HAUCK, Jerrold V. ,  TACKIN, Onur E. ,  ROSEN, Zachary A. ,  LERCH, Matthias

IPC: G06F21/31 ,  G06Q20/32 ,  G06F21/32 ,  H04W12/06

Abstract: Techniques are disclosed relating to secure data storage. In various embodiments, a mobile device includes a wireless interface, a secure element, and a secure circuit. The secure element is configured to store confidential information associated with a plurality of users and to receive a request to communicate the confidential information associated with a particular one of the plurality of users. The secure element is further configured to communicate, via the wireless interface, the confidential information associated with the particular user in response to an authentication of the particular user. The secure circuit is configured to perform the authentication of the particular user. In some embodiments, the mobile device also includes a biosensor configured to collect biometric information from a user of the mobile device. In such an embodiment, the secure circuit is configured to store biometric information collected from the plurality of users by the biosensor.

Abstract translation: 公开了涉及安全数据存储的技术。 在各种实施例中，移动设备包括无线接口，安全元件和安全电路。 安全元件被配置为存储与多个用户相关联的机密信息并且接收传送与多个用户中的特定一个用户相关联的机密信息的请求。 安全元件还被配置为响应于特定用户的认证，经由无线接口传送与特定用户相关联的机密信息。 安全电路被配置为执行特定用户的认证。 在一些实施例中，移动设备还包括被配置成从移动设备的用户收集生物测定信息的生物传感器。 在这样的实施例中，安全电路被配置为存储由生物传感器从多个用户收集的生物信息。

公开(公告)号：WO2018057997A2

公开(公告)日：2018-03-29

申请号：PCT/US2017/053107

申请日：2017-09-22

Applicant: APPLE INC.

Inventor： SIBERT, Herve ,  ELRAD, Oren M. ,  HAUCK, Jerrold V. ,  TACKIN, Onur E. ,  ROSEN, Zachary A. ,  LERCH, Matthias

IPC: G06F21/31 ,  G06Q20/32 ,  G06F21/32 ,  H04W12/06

Abstract: Techniques are disclosed relating to secure data storage. In various embodiments, a mobile device includes a wireless interface, a secure element, and a secure circuit. The secure element is configured to store confidential information associated with a plurality of users and to receive a request to communicate the confidential information associated with a particular one of the plurality of users. The secure element is further configured to communicate, via the wireless interface, the confidential information associated with the particular user in response to an authentication of the particular user. The secure circuit is configured to perform the authentication of the particular user. In some embodiments, the mobile device also includes a biosensor configured to collect biometric information from a user of the mobile device. In such an embodiment, the secure circuit is configured to store biometric information collected from the plurality of users by the biosensor.

公开(公告)号：WO2015183412A1

公开(公告)日：2015-12-03

申请号：PCT/US2015/024447

申请日：2015-04-06

Applicant: APPLE INC.

Inventor： BROWN, Jeremy T. ,  ROSEN, Zachary A. ,  GRAINGER, Morgan J.

IPC: G06Q20/20 ,  G06Q20/32 ,  G06Q20/34 ,  G06Q20/40 ,  G07F7/08

CPC classification number: G06Q20/206 ,  G06K7/10831 ,  G06Q20/20 ,  G06Q20/202 ,  G06Q20/204 ,  G06Q20/3227 ,  G06Q20/327 ,  G06Q20/3278 ,  G06Q20/352 ,  G06Q20/3572 ,  G06Q20/36 ,  G06Q20/401 ,  G06Q20/40145 ,  G06Q2220/00 ,  G07F7/0806 ,  G07F7/0833

Abstract: In certain embodiments, an electronic device can include a secure element that detects a mechanical input. The mechanical input can correspond to an instruction to transmit securely stored payment information to another device and/or to release such information to an application on the device (e.g., for use in an in-app commerce transaction). This feature can inhibit or prevent unauthorized transmission of payment information. When the mechanical input is detected, payment information can be transmitted to a point of sale (POS) terminal (e.g., via near-field communication) or released to an app on the device. Further, a user can either use default payment information or interact with the device (before or after providing the mechanical input) to select appropriate payment information for a transaction. For example, the user can select between credit cards, debit cards and/or stored-value cards (e.g., transit card).

Abstract translation: 在某些实施例中，电子设备可以包括检测机械输入的安全元件。 机械输入可以对应于将安全存储的支付信息发送到另一设备的指令和/或将该信息发布到设备上的应用（例如，用于在应用程序内商业交易中）。 此功能可以抑制或阻止未经授权的付款信息的传输。 当检测到机械输入时，支付信息可以被发送到销售点（POS）终端（例如，经由近场通信）或发布到设备上的应用。 此外，用户可以使用默认支付信息或与设备交互（在提供机械输入之前或之后）为交易选择适当的支付信息。 例如，用户可以在信用卡，借记卡和/或储值卡（例如，转接卡）之间进行选择。

公开(公告)号：EP3516567A2

公开(公告)日：2019-07-31

申请号：EP17780598.3

申请日：2017-09-22

Applicant: Apple Inc.

Inventor： SIBERT, Herve ,  ELRAD, Oren M. ,  HAUCK, Jerrold V. ,  TACKIN, Onur E. ,  ROSEN, Zachary A. ,  LERCH, Matthias

IPC: G06F21/31 ,  G06Q20/32 ,  G06F21/32 ,  H04W12/06

公开(公告)号：EP3149679A1

公开(公告)日：2017-04-05

申请号：EP15716386.6

申请日：2015-04-06

Applicant: Apple Inc.

Inventor： BROWN, Jeremy T. ,  ROSEN, Zachary A. ,  GRAINGER, Morgan J.

IPC: G06Q20/20 ,  G06Q20/32 ,  G06Q20/34 ,  G06Q20/40 ,  G07F7/08

CPC classification number: G06Q20/206 ,  G06K7/10831 ,  G06Q20/20 ,  G06Q20/202 ,  G06Q20/204 ,  G06Q20/3227 ,  G06Q20/327 ,  G06Q20/3278 ,  G06Q20/352 ,  G06Q20/3572 ,  G06Q20/36 ,  G06Q20/401 ,  G06Q20/40145 ,  G06Q2220/00 ,  G07F7/0806 ,  G07F7/0833

Abstract: In certain embodiments, an electronic device can include a secure element that detects a mechanical input. The mechanical input can correspond to an instruction to transmit securely stored payment information to another device and/or to release such information to an application on the device (e.g., for use in an in-app commerce transaction). This feature can inhibit or prevent unauthorized transmission of payment information. When the mechanical input is detected, payment information can be transmitted to a point of sale (POS) terminal (e.g., via near-field communication) or released to an app on the device. Further, a user can either use default payment information or interact with the device (before or after providing the mechanical input) to select appropriate payment information for a transaction. For example, the user can select between credit cards, debit cards and/or stored-value cards (e.g., transit card).

Abstract translation: 在某些实施例中，电子装置可包括一个安全元件做了检测的机械输入。 机械输入可以在指令对应于安全地存储的支付信息发送到另一装置和/或释放的信息上应用查询的设备上（例如，以用于在应用内电子商务交易）。 此功能可以抑制或防止支付信息传输未经授权。 当检测到的机械输入，支付信息可以是反式mitted到销售点（POS）终端的点（E. G.，经由近场通信），或释放到设备上的应用程序。 此外，用户可以使用默认要么支付信息或与所述设备（之前或提供机械输入后），以选择一个合适的交易支付信息交互。 对于实施例，用户可使用信用卡，借记卡和/或储值卡（例如，公交卡）之间进行选择。

公开(公告)号：EP4152187A1

公开(公告)日：2023-03-22

申请号：EP22205943.8

申请日：2014-06-20

Applicant: Apple Inc.

Inventor： KHAN, Ahmer A. ,  HAGGERTY, David T. ,  DICKER, George R. ,  HAUCK, Jerroid V. ,  LINDE, Joakim ,  ADLER, Mitchell D. ,  ROSEN, Zachary A. ,  VAID, Yousaf H. ,  SHARP, Christopher

IPC: G06F21/35 ,  G06Q20/32 ,  G06Q20/40 ,  G06Q20/42

Abstract: Systems, methods, and computer-readable media for provisioning credentials on an electronic device are provided. In one example embodiment, a secure platform system may be in communication with an electronic device and a financial institution subsystem. The secure platform system may be configured to, inter alia, receive user account information from the electronic device, authenticate a user account with a commercial entity using the received user account information, detect a commerce credential associated with the authenticated user account, run a commercial entity fraud check on the detected commerce credential, commission the financial institution subsystem to run a financial entity fraud check on the detected commerce credential based on the results of the commercial entity fraud check, and facilitate provisioning of the detected commerce credential on the electronic device based on the results of the financial entity fraud check. Additional embodiments are also provided.

公开(公告)号：EP3149676A1

公开(公告)日：2017-04-05

申请号：EP15725473.1

申请日：2015-05-14

Applicant: Apple Inc.

Inventor： BROWN, Jeremy T. ,  DICKER, George R. ,  STEELE, Glen W. ,  GRAINGER, Morgan J. ,  ROSEN, Zachary A.

IPC: G06Q20/00

CPC classification number: G06Q20/3821 ,  G06Q20/12 ,  G06Q20/20 ,  G06Q20/3227 ,  G06Q20/3278 ,  G06Q20/351 ,  G06Q20/354 ,  G06Q20/367

Abstract: A system for provisioning credentials onto an electronic device is provided. The system may include a payment network subsystem, a service provider subsystem, a primary user device, and a secondary user device. The user may select a particular payment card to provision onto the secondary user device by providing an input at the primary user device. A broker module running on the service provider subsystem may then transfer a disabled pass to the secondary user device. Concurrently, the payment network subsystem may direct a trusted service manager module on the service provider subsystem to write credential information onto a secure element within the secondary user device. Once the secure element has been updated, the broker module may provide an activated pass to the secondary user device so that the secondary user device can be used to perform NFC-based financial transactions at a merchant terminal.

Abstract translation: 本发明提供一种用于提供凭证走上到电子设备系统。 该系统可以包括一个付款网络子系统，服务提供商子系统，主用户设备，和次级用户设备。 用户可通过在主用户装置在输入端提供选择特定支付卡委托到副用户设备。 然后服务提供商子系统中运行的代理模块可以禁用通转移到次级用户设备。 同时，支付网络子系统可以直接在服务提供商子系统的可信服务管理器模块写凭证信息到辅助用户设备内的安全元件。 一旦安全元件已被更新，代理模块可以提供对活化通行证所以也次要用户设备可用于在商家终端进行基于NFC的金融交易辅助用户设备。

公开(公告)号：EP3039606A1

公开(公告)日：2016-07-06

申请号：EP14742020.2

申请日：2014-06-20

Applicant: Apple Inc.

Inventor： KHAN, Ahmer A. ,  HAGGERTY, David T. ,  DICKER, George R. ,  HAUCK, Jerrold V. ,  LINDE, Joakim ,  ADLER, Mitchell D. ,  ROSEN, Zachary A. ,  VAID, Yousuf H. ,  SHARP, Christopher

IPC: G06F21/35 ,  G06Q20/32 ,  G06Q20/40

CPC classification number: G06Q20/42 ,  G06F21/35 ,  G06Q20/32 ,  G06Q20/3226 ,  G06Q20/40 ,  G06Q20/4016

Abstract: Systems, methods, and computer-readable media for provisioning credentials on an electronic device are provided. In one example embodiment, a secure platform system may be in communication with an electronic device and a financial institution subsystem. The secure platform system may be configured to, inter alia, receive user account information from the electronic device, authenticate a user account with a commercial entity using the received user account information, detect a commerce credential associated with the authenticated user account, run a commercial entity fraud check on the detected commerce credential, commission the financial institution subsystem to run a financial entity fraud check on the detected commerce credential based on the results of the commercial entity fraud check, and facilitate provisioning of the detected commerce credential on the electronic device based on the results of the financial entity fraud check. Additional embodiments are also provided.