US 12,335,412 B2
Systems and methods for scalable cryptographic authentication of contactless cards
Kevin Osborn, Newton Highlands, MA (US); and Samuel Patrick Edwards, Richmond, VA (US)
Assigned to Capital One Services, LLC, McLean, VA (US)
Filed by Capital One Services, LLC, McLean, VA (US)
Filed on Jun. 21, 2021, as Appl. No. 17/353,556.
Prior Publication US 2022/0407724 A1, Dec. 22, 2022
Int. Cl. H04L 9/32 (2006.01); H04L 9/14 (2006.01); H04L 9/30 (2006.01); H04L 9/40 (2022.01)
CPC H04L 9/3271 (2013.01) [H04L 9/30 (2013.01); H04L 63/0435 (2013.01); H04L 63/0492 (2013.01); H04L 9/14 (2013.01)] 20 Claims
OG exemplary drawing
 
1. An authentication server, comprising:
a processor; and
a memory,
wherein the processor:
transmits an authentication request;
receives a first response that is responsive to the authentication request, the first response comprising a first cryptogram;
generates a first challenge based on the first response;
encrypts the first challenge with a symmetric key;
generates a secret salt that is associated with a transaction;
transmits the first challenge after it has been encrypted and transmits the secret salt along with the encrypted first challenge;
receives a second response that is responsive to the first challenge, the second response comprising a second cryptogram, wherein the second cryptogram is generated using the first challenge in combination with one or more private card keys, and comprises the secret salt;
authenticates the second response by:
decrypting the second cryptogram, and
validating the decrypted second cryptogram using a session key by comparing the secret salt from the second cryptogram with a reference secret salt; and
transmits, to a client device, one or more authentication messages as a result of the validation of the decrypted second cryptogram.