Systems, methods, and computer-readable media for facilitating a fund transfer between user accounts are provided.

The present disclosure relates to credential management for mobile devices that can be used for access to secured physical environments. One aspect comprises a computer implemented method comprising a mobile computing device: receiving, from a server system, and storing, on the mobile computing device: one or more application sequence counter values, one or more limited use credentials (LUCs), each LUC being bound to a corresponding one of the application sequence counter values; one or more emergency credentials, and an account token; subsequently receiving an authentication request from a terminal; in response to receiving the authentication request, determining that no LUC is available for fulfilling the request; and in response to determining that no LUC is available for fulfilling the request: transmitting, to the terminal, the account token and an application cryptogram generated from an emergency credential of said one or more emergency credentials; and updating a current application sequence counter.

Systems and methods for secure mobile checkouts are disclosed. The system may include a secure mobile checkout device configured to scan products available in a merchant store. The device may scan the product to determine a product identifier. The device may transmit the scanned product data to a checkout application to retrieve product data corresponding to the product identifier. In device may initiate a transaction with a payment network to purchase the product, based on the product data provided by the checkout application. The payment network may process the transaction, and may authorize the purchase with the merchant.

Systems and methods for dynamic inclusion of enhanced data in transactions are disclosed. According to another embodiment, in an information processing apparatus comprising at least one computer processor, a method for conducting a mobile wallet payment with dynamic enhanced data using a mobile payment application may include: (1) receiving, from a merchant point of transaction device, a transaction request from a mobile payment application executed by a mobile electronic device, the transaction request comprising a unique identifier for a financial instrument provisioned to a mobile wallet computer application and a payment option selection; and (2) processing the transaction request according to the payment option selection.

A method for validating user credentials in a transaction initiated with a portable payment device associated with a biometric verification process including establishing a communication protocol between the portable payment device and the point-of-sale system, determining at least one result corresponding to a verification requirement of the biometric verification process, in response to determining an absence result or a failure result of the verification requirement of the biometric verification process, determining an alternate verification process associated with the portable payment device, determining a verification requirement of the alternate verification process, and transmitting the verification requirement of the alternate verification process to the point-of-sale system. A system and computer program product for validating user credentials in a transaction are also disclosed.

The invention relates to a method for making a transaction of a contactless application secure, said application (11) being stored in the mobile terminal (10), said transaction taking place between the mobile terminal and a contactless reader (12), said terminal including a security element (14), said method comprising the following steps carried out by the mobile terminal: the application sends (E13) a token representing a piece of sensitive data and a first authentication value relating to the token to the reader, the security element receives (E16) the token and the related first authentication value from the reader, the security element calculates (E17) a second authentication value from the received token and compares the first authentication value with the second authentication value, and sending (E18) the result of the comparison to the reader, said reader cancelling the transaction if the result is negative.

A secure element integrated within a mobile communications terminal. Such an element includes: at least one first application for processing transactions, having at least one interface for communications with a communications network in a secured manner; and at least one second application for processing secured data, having at least one communications interface for communications with an executing environment of said communications terminal. The first application is able to request at least one piece of data from the second application.

Techniques are disclosed relating to authentication using public key encryption. In one embodiment, a computing device includes a secure circuit, a processor, and memory. The secure circuit is configured to generate a public key pair usable to authenticate a user of the computing device. The memory has program instructions stored therein that are executable by the processor to cause the computing device to perform operations including authenticating the user with a server system by sending authentication information supplied by the user. The operations further include, in response to the server system verifying the authentication information, receiving a first token usable to register the public key pair with the server system and sending, to the server system, a request to register the public key pair for authenticating the user. In such an embodiment, the request includes the first token and identifies a public key of the public key pair.

A method of accessing, in a mobile communication device, an application issued by a Service Provider from a trusted application, also known as a wallet. A secure element, such as a SmartMX device, comprises a service manager that manages the application and a link between the application and an application-codec issued by the Service Provider, wherein the application-codec is designed for interfacing between the service manager and the application, for processing an access request requesting access to the application received from the service manager and, triggered by the wallet, accessing the application via the service manager by means of the link between the application and the application-codec, such that the application-codec linked with the respective application performs accessing the application under control of the service manager.

A system and method for online payment are described. The method includes receiving, from a vendor server, a payment amount, an identifier of a user and an identifier of a vendor; sending an indication of a payment to a user device associated with the identifier of the user; receiving, from the user device, a confirmation of the payment; receiving, from the user device, supplementary information generated when or after the user confirms the payment; determining legitimacy of the transaction based on the supplementary information; and making the payment from a financial account associated with the user identifier to a financial account associated with the identifier of the vendor if the transaction is legitimate.