	US 12,190,304 B2
	Embedded card reader security
Murat Cat, Vaughan (CA); Murtaza Munaim, Fremont, CA (US); Gokhan Aydeniz, Mississauga (CA); and Conrad Rushing, Brooklyn, NY (US)
Assigned to Block, Inc., Oakland, CA (US)
Filed by Block, Inc., Oakland, CA (US)
Filed on Jun. 16, 2023, as Appl. No. 18/210,895.
Application 18/210,895 is a continuation of application No. 17/183,149, filed on Feb. 23, 2021, granted, now 11,694,178.
Prior Publication US 2023/0410076 A1, Dec. 21, 2023
Int. Cl. G06Q 20/20 (2012.01); G06Q 20/40 (2012.01)

CPC G06Q 20/206 (2013.01) [G06Q 20/4012 (2013.01)]

20 Claims

1. A device, comprising:

one or more processors; and

non-transitory computer-readable media storing instructions that, when executed by the one or more processors, cause the one or more processors to perform operations comprising:

configuring a personal account number (PAN) application installed on the device to utilize an embedded card reader (ECR) of the device, wherein the PAN application is configured within a trusted execution environment (TEE) of the device, and wherein components within the TEE are isolated from components outside the TEE;

receiving, at the PAN application and based at least in part on an interaction between the ECR and the device, a PAN for a transaction;

sending, utilizing the PAN application, the PAN to a payment processing service;

in response to determining that the PAN has been received at the payment processing service, causing a personal identification number (PIN) application residing on the device to render a PIN user interface, wherein the PIN application is configured outside the TEE of the device, preventing communication between the PIN application and the PAN application;

receiving, at the PIN application and utilizing the PIN user interface, a PIN;

sending, utilizing the PIN application, the PIN to the payment processing service; and

completing the transaction based at least in part on an indication from the payment processing service that the PAN and the PIN have been accepted.