| CPC G06Q 20/3829 (2013.01) [G06Q 20/3674 (2013.01); G06Q 20/388 (2013.01); G06Q 20/3821 (2013.01)] | 19 Claims |
|
1. A mobile device, comprising:
a secure element locally installed on the mobile device and comprising a payment application hosted by a wallet provider;
a network interface installed on the mobile device that receives a session key shared with a manufacturer of the secure element from a digital enablement service, receive an encrypted merchant public key of a merchant from a remote key management service via the wallet provider that hosts the payment application installed on the secure element, and receive transaction data for settling a payment transaction with the merchant based on a payment card stored in the payment application; and
a processor that decrypts the encrypted merchant public key with the session key, dynamically generate a cryptogram that remotely authenticates the transaction data and sign the cryptogram via the secure element installed on the mobile device with a signature based on the decrypted merchant public key, wherein the cryptogram is verifiable by a merchant private key that corresponds to the merchant public key,
wherein the processor controls the network interface and transmits the dynamically generated cryptogram from the secure element on the mobile device to a computing system associated with the merchant.
|