US 12,340,369 B2
System and method to protect privacy of personal-identification-number entry on consumer mobile device and computing apparatus
Chi Wah Lo, Tsuen Wan (HK); Hwai Sian Tsai, Tsuen Wan (HK); and Namson Kwok, Tsuen Wan (HK)
Assigned to STRIPE, INC., South San Francisco, CA (US)
Filed by Stripe, Inc., South San Francisco, CA (US)
Filed on Jun. 25, 2024, as Appl. No. 18/753,597.
Application 18/753,597 is a continuation of application No. 18/219,541, filed on Jul. 7, 2023, granted, now 12,056,701.
Application 18/219,541 is a continuation of application No. 17/687,788, filed on Mar. 7, 2022, granted, now 11,756,033, issued on Sep. 12, 2023.
Application 17/687,788 is a continuation of application No. 17/088,955, filed on Nov. 4, 2020, granted, now 11,288,670, issued on Mar. 29, 2022.
Application 17/088,955 is a continuation of application No. 16/724,660, filed on Dec. 23, 2019, granted, now 10,832,243, issued on Nov. 10, 2020.
Application 16/724,660 is a continuation of application No. 15/404,297, filed on Jan. 12, 2017, granted, now 10,521,793, issued on Dec. 31, 2019.
Prior Publication US 2024/0346500 A1, Oct. 17, 2024
This patent is subject to a terminal disclaimer.
Int. Cl. G06Q 20/40 (2012.01); G06Q 20/20 (2012.01); G06Q 20/32 (2012.01); G07F 7/10 (2006.01); H04L 9/40 (2022.01); H04W 12/02 (2009.01); H04W 12/069 (2021.01)
CPC G06Q 20/4012 (2013.01) [G06Q 20/206 (2013.01); G06Q 20/3223 (2013.01); G06Q 20/3226 (2013.01); G07F 7/1016 (2013.01); G07F 7/1041 (2013.01); H04L 63/083 (2013.01); H04L 63/0853 (2013.01); H04W 12/02 (2013.01); H04W 12/069 (2021.01)] 20 Claims
OG exemplary drawing
 
1. A method authenticating a device using secure personal identification number (PIN) entry, the method comprising:
determining, by a first device, a randomized PIN layout;
displaying, by the first device, the randomized PIN layout on a first display of the first device;
displaying, by a second device, a blank keypad that enables entry of key presses at locations of the blank keypad corresponding to the randomized PIN layout displayed by the first device;
in response to receipt of a series of key presses from a user on the blank keypad, generating, by the second device, a PIN token comprising data indicative of locations of each of the series of key presses;
transmitting, by the second device, the PIN token to a third device;
in response to receipt of the PIN token from the second device, producing, by the third device, values of a PIN based on a local copy of the randomized PIN layout generated by the third device and the locations of each of the key presses in the PIN token; and
authenticating the first device for performing a transaction with a remote services system based on the values of the PIN produced by the third device.