| CPC G06Q 20/3226 (2013.01) [G06Q 20/308 (2020.05); G06Q 20/321 (2020.05); G06Q 20/3278 (2013.01); G06Q 20/4016 (2013.01); H04L 9/3234 (2013.01)] | 5 Claims |
|
1. A method (500) for processing a secure financial transaction using a Commercial off-the-shelf (COTS)/Internet of Things (IoT) device, the method comprising:
requesting (502) by the COTS/IoT device, a Secure Provisioning Manager (SPM) to verify a device identity and download a Trusted Application (TA) in a Trusted Environment (TE) of the COTS/IoT device,
creating a security domain after the TA is downloaded and running for a first time in the COTS/IoT device, wherein the security domain is an environment where cryptographic keys associated with the TA are stored, and where the TA is encrypted,
wherein the TE is a secured part of the COTS/IoT device where the TA is executed, and wherein the TE is isolated from an operating system of the COTS/IoT device and is executed in parallel to the operating system of the COTS/IoT device on a TE part of a processor;
executing (504) an application on the COTS/IoT device;
determining a first distance of a tag is within a predetermined distance from the COTS/IoT device;
initiating (506) a resonance response based on the first distance being within the predetermined distance from the COTS/IoT device;
receiving (508) tag information from the tag;
determining a second distance of the tag, wherein the second distance is closer to the COTS/IoT device than the first distance; and
processing a secure financial transaction using the COTS/IoT device based on the received tag information by accessing the TE, wherein processing the secure financial transaction is initiated based on the second determined distance of the tag being closer to the COTS/IoT device than the first determined distance.
|