	US 11,714,885 B2
	Encryption key exchange process using access device
Christopher Dean, San Francisco, CA (US); and Christian Aabye, Redwood City, CA (US)
Assigned to Visa International Service Association, San Francisco, CA (US)
Filed by Visa International Service Association, San Francisco, CA (US)
Filed on Dec. 13, 2021, as Appl. No. 17/548,994.
Application 17/548,994 is a continuation of application No. 16/311,144, granted, now 11,238,140, previously published as PCT/US2017/041220, filed on Jul. 7, 2017.
Claims priority of provisional application 62/360,768, filed on Jul. 11, 2016.
Prior Publication US 2022/0100828 A1, Mar. 31, 2022
Int. Cl. G06F 21/31 (2013.01); H04W 12/02 (2009.01); H04W 4/80 (2018.01); H04L 9/32 (2006.01); H04W 12/08 (2021.01); H04W 12/033 (2021.01); H04W 12/037 (2021.01); H04W 12/041 (2021.01); H04W 12/0431 (2021.01); H04W 12/0471 (2021.01)

CPC G06F 21/31 (2013.01) [H04L 9/3213 (2013.01); H04W 4/80 (2018.02); H04W 12/02 (2013.01); H04W 12/033 (2021.01); H04W 12/037 (2021.01); H04W 12/041 (2021.01); H04W 12/0431 (2021.01); H04W 12/0471 (2021.01); H04W 12/08 (2013.01); H04L 2209/56 (2013.01)]

20 Claims

1. A method comprising:

receiving, by a remote server, an authorization request message from an access device during a transaction between the access device and a portable communication device, the portable communication device comprising a first limited use key;

determining, by the remote server, a second limited use key;

modifying, by the remote server, an authorization response message to include the second limited use key; and

transmitting, by the remote server, the modified authorization response message comprising the second limited use key to the access device,

wherein the authorization request message further comprises a token and a cryptogram obtained by the access device from the portable communication device, the cryptogram generated with the first limited use key, and wherein the method further comprises:

verifying, by the remote server, the cryptogram.