US 11,934,512 B2
Method, system, and computer program product for authenticating a device
Muthyam Reddy Paaredi, Bangalore (IN); and Jerry Jose Zachariah, Bangalore (IN)
Assigned to Visa International Service Association, San Francisco, CA (US)
Filed by Visa International Service Association, San Francisco, CA (US)
Filed on Aug. 22, 2022, as Appl. No. 17/892,270.
Application 17/892,270 is a continuation of application No. 17/046,448, granted, now 11,436,313, previously published as PCT/US2018/026872, filed on Apr. 10, 2018.
Prior Publication US 2022/0405378 A1, Dec. 22, 2022
This patent is subject to a terminal disclaimer.
Int. Cl. G06F 21/44 (2013.01); G06F 21/62 (2013.01); H04L 9/08 (2006.01); H04L 9/30 (2006.01); H04L 9/40 (2022.01)
CPC G06F 21/44 (2013.01) [G06F 21/6218 (2013.01); H04L 9/0816 (2013.01); H04L 9/30 (2013.01); H04L 63/08 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A system for authenticating a device, comprising:
an interaction database configured to store interaction data;
a first device coupled to the interaction database, the first device configured to store a first group public key, a first group private key, a first device public key, and a first device private key; and
a second device coupled to the interaction database, the second device configured to store the first group public key, the first group private key, a second device public key, and a second device private key;
wherein the first device is configured to transmit a first message to a remote computer system, the first message comprising challenge data associated with a challenge question corresponding to the interaction data, first remote computer system public key data associated with a first remote computer system public key, response data associated with a required response to the challenge question corresponding to the interaction data, and authentication data associated with the first device, the challenge data, the first remote computer system public key data, and the response data each encrypted with the first group public key, the first message encrypted with the first remote computer system public key of the remote computer system;
wherein the second device is configured to receive a second message from a second remote computer system, the second message comprising the challenge data and the first remote computer system public key data encrypted with the first group public key from the first message, the second message encrypted with the second device public key;
wherein the second device is configured to transmit a third message to the second remote computer system, the third message comprising response data associated with the required response to the challenge question corresponding to the interaction data, the response data encrypted with the first group public key, the third message encrypted with the first remote computer system public key from the second message; and
wherein, in response to receiving an authentication message from the second remote computer system indicating that the first device has not been authenticated by the remote computer system, the first device is configured to prevent interaction between the first device and at least one of the first remote computer system or the second remote computer system.