| CPC G06Q 20/4014 (2013.01) [G06F 9/547 (2013.01)] | 20 Claims |
|
1. A method of managing execution of a secure payment application, comprising:
transmitting an API of a secure payment application by a secure application manager executing on a computer to a wireless communication device, wherein the API of the secure payment application, when installed on a device, is configured to build an initial profile of the wireless communication device comprising an identity of the wireless communication device, a firmware version of the wireless communication device, an operating system version of the wireless communication device, and a hash value determined over the API of the secure payment application as installed on the wireless communication device and configured to transmit the initial profile of the wireless communication device to the secure application manager;
receiving the initial profile by the secure application manager from the API of the secure payment application on the wireless communication device;
validating the authenticity of the initial profile by the secure application manager;
after validating the authenticity of the initial profile, storing the initial profile by the secure application manager as an immutable record in a datastore;
receiving a request by the secure application manager from the API of the secure payment application on the wireless communication device to invoke an operation of a secure payment application executing on a computer, wherein the request comprises a current profile of the wireless communication device generated by the API of the secure payment application;
comparing the current profile of the wireless communication device by the secure application manager to the initial profile of the wireless communication device stored in the immutable record in the datastore;
in response to determining that the current profile of the wireless communication device matches the initial profile of the wireless communication device, passing the request to invoke an operation of the secure payment application by the secure application manager to the secure payment application for execution;
receiving a request by the secure application manager from a current owner of the wireless communication device to transfer ownership of the wireless communication device to a different owner;
authenticating the current owner by the secure application manager;
in response to authenticating the current owner, commanding the wireless communication device by the secure application manager to rebuild an initial profile of the wireless communication device including an identity of the different owner;
receiving an updated initial profile of the wireless communication device by the secure application manager; and
storing the updated initial profile of the wireless communication device by the secure application manager as an immutable record in the datastore.
|