	US 11,868,999 B2
	Distributing payment keys among multiple discrete devices in a point of sale system
Brian Jeremiah Murray, Sunnyvale, CA (US)
Assigned to CLOVER NETWORK, LLC, Sunnyvale, CA (US)
Filed by Clover Network, LLC, Sunnyvale, CA (US)
Filed on Nov. 18, 2022, as Appl. No. 17/990,472.
Application 17/990,472 is a continuation of application No. 15/685,809, filed on Aug. 24, 2017, granted, now 11,538,030.
Prior Publication US 2023/0092936 A1, Mar. 23, 2023
This patent is subject to a terminal disclaimer.
Int. Cl. G06Q 20/38 (2012.01); G06Q 20/20 (2012.01); G06Q 20/32 (2012.01)

CPC G06Q 20/3829 (2013.01) [G06Q 20/20 (2013.01); G06Q 20/322 (2013.01); G06Q 20/3278 (2013.01); G06Q 20/3827 (2013.01)]

18 Claims

1. A point of sale system comprising:

a first discrete device with a first means for receiving payment information;

a second discrete device with a second means for receiving payment information;

a wire communicatively connecting the first discrete device to the second discrete device;

a second memory system on the second discrete device having stored thereon a public key certificate and a corresponding private key;

a first memory system on the first discrete device that stores instructions to: (i) receive the public key certificate from the second discrete device; (ii) verify the public key certificate; and (iii) form a secure connection between the first discrete device and the second discrete device over the wire using a protocol after the public key certificate is verified,

wherein to form the secure connection using the protocol, the first discrete device and the second discrete device conduct a handshake using a public key from the public key certificate and the corresponding private key; and

wherein the handshake comprises one of (a) a secret that is encrypted at the first discrete device using the public key from the public key certificate to generate an encrypted secret that is transmitted to the second discrete device, wherein the second discrete device decrypts the encrypted secret using the corresponding private key such that upon decryption, both the first discrete device and the second discrete device share the secret; or (b) a pre-master that is encrypted at the first discrete device using the public key from the public key certificate to generate an encrypted pre-master that is sent to the second discrete device, wherein the second discrete device decrypts the encrypted pre-master using the corresponding private key to generate a decrypted pre-master, and wherein the first discrete device and the second discrete device each generate a shared secret from the pre-master and the decrypted pre-master, respectively.