CPC G06Q 20/3829 (2013.01) [G06Q 20/322 (2013.01); G06Q 20/367 (2013.01); G06Q 20/3674 (2013.01); G06Q 20/385 (2013.01); H04L 9/0866 (2013.01); H04L 9/3226 (2013.01); H04L 9/3234 (2013.01); H04L 2209/56 (2013.01); H04L 2209/805 (2013.01)] | 20 Claims |
1. An electronic device for performing a payment transaction, the electronic device comprising:
a processor;
a memory coupled to the processor, the memory storing instructions that, when executed by the processor, cause the electronic device to:
send a provisioning request to a host card emulation server over a secure channel, the provisioning request including a payment account reference and a fingerprint of the electronic device, wherein the fingerprint is a unique identifier of the electronic device;
receive a provisioning reply from the host card emulation server, wherein the provisioning reply contains a payment token mapped to the payment account reference and the provisioning reply contains a secret value;
generate a session key based on the fingerprint of the electronic device, the secret value, and the payment token;
in response to a message from a point-of-sale terminal, generate a cryptogram using the session key; and
transmit to the point-of-sale terminal, a payment request including the payment token and the cryptogram.
|