US 12,008,549 B2
Federated custodian
Sivanarayana Gaddam, Santa Clara, CA (US); Atul Luykx, San Francisco, CA (US); and Cuy Sheffield, Menlo Park, CA (US)
Assigned to Visa International Service Association, San Francisco, CA (US)
Filed by Visa International Service Association, San Francisco, CA (US)
Filed on Jul. 22, 2019, as Appl. No. 16/518,764.
Prior Publication US 2021/0027283 A1, Jan. 28, 2021
Int. Cl. G06Q 20/36 (2012.01); G06Q 20/02 (2012.01); G06Q 20/40 (2012.01); H04L 9/08 (2006.01); H04L 9/00 (2022.01)
CPC G06Q 20/3674 (2013.01) [G06Q 20/027 (2013.01); G06Q 20/401 (2013.01); H04L 9/0825 (2013.01); H04L 9/50 (2022.05)] 15 Claims
OG exemplary drawing
 
1. A computer system, comprising:
a gateway comprising a first processor, and a first memory including instructions that, when executed by the first processor causes the gateway to:
receive, from a plurality of members of a federated blockchain on a network of computing devices, approvals for a transaction associated with an authentication capsule, wherein each of the plurality of members receives the authentication capsule and approves of the transaction based upon data in the authentication capsule, the authentication capsule including one or more authentication policies, encrypted credentials, and device and application metadata, the device and application metadata identifying a currency amount associated with the transaction or a frequency of previous transactions associated with a member of the plurality of members conducting the transaction, the one or more authentication policies identifying at least the plurality of members required to authenticate the transaction for the approvals and conditions for approving the transaction via the plurality of members of the federated blockchain on the network of computing devices based at least in part on the device and application metadata, a number of the plurality of members required to authenticate the transaction determined based on device data of a device conducting the transaction and a geographic location of the transaction, the device data including an IP address of the device and application data of the device;
generate, via a first trusted execution environment implemented by the computer system, a first machine readable code in response to receiving the approvals for the transaction, the first machine readable code including encrypted information for the transaction and the approvals; and
transmit, to a cold interaction system, the first machine readable code generated in response to receiving approvals for the transaction; and the cold interaction system comprising one or more processors and one or more memories, the one or more memories comprising instructions executable by the one or more processors to:
receive the first machine readable code comprising the encrypted information and the approvals;
decrypt the encrypted information for the transaction and the approvals from the first machine readable code;
generate a first private key that corresponds to a public key for the transaction, the public key maintained by the plurality of members of the federated blockchain on the network of computing devices;
encrypt the transaction using the first private key; and
transmit, to the gateway, a second machine readable code, the second machine readable code verifying completion of the transaction.