A multiple-application systematic framework for an IC card comprising a card issuer device 10, a service provider device 20 and a user terminal device 30, in which the three devices are interconnected by a first communications means. The card issuer device 10 comprises a card-issuing module 100 and a service provider management module 101. The service provider device 20 comprises a service module 200. The user terminal device 30 comprises an IC card 300 supplied by a card issuer and a communications device 301 comprising an application control module 3010, the IC card 300 comprises an authentication and security management module 3000 and a multi-application data storage area 3001. The communications device 301 and the IC card 300 communicate through a second communications means. The service provider management module 101 enables the service module 200 to use storage space in the multi-application data storage area 3001 for providing a service to a user via a service token, and the service module 200 communicates with the application control modulo 3010 enable a user and/or at least one service provider to manipulate one or more service tokens in the IC card 300.

The present invention relates to a method for conducting transactions, such as standard banking transactions, using a wireless device, such as a cellular telephone, personal digital assistant, and other web-enabled wireless devices utilizing software downloaded to the wireless device. The software provides a user with interface screens on the display of the wireless device for facilitating information requests to a service provider having access to at least one account of the user.

According to an aspect of the invention, a method for personalizing a secure element for a mobile device is conceived, wherein an application is stored in the secure element and wherein the application is pre-provisioned by loading secure credentials into the application without tying said secure credentials to a specific user of the secure element.

Embodiments of the invention are directed to programming a payment device that can be in the same form factor as a typical credit or debit card and which can be programmed and reprogrammed with various payment profiles. The payment device is interfaced with a mobile device, such as through insertion into a module capable of holding the payment device within proximity to a main housing of the mobile device. The payment device can include both a magnetic stripe and an IC chip which is capable of near field communication. In embodiments of the invention, the mobile device, such as a cellular phone, includes a memory element. The memory element securely stores payment profiles of financial accounts which are commonly found on credit, debit, gift, transit and loyalty cards. When a payment profile stored in the memory element of the mobile phone is selected, the mobile phone writes the profile onto the payment device. The payment device can then be utilized to communicate payment profile information to a payment device reader during contact or contactless transaction.

A method and a system for providing a financial transaction using an empty card are provided. The method for providing a financial transaction using an empty card includes receiving, by a server, a virtual card number generated by a program included in a user terminal, searching, by the server, for an empty card storage location at which the empty card is registered, in a storage location search algorithm based on the virtual card number, searching, by the server, for a real card number storage space linked to a user identification (UID) assigned to the found empty card storage location, extracting, by the server, a real card number stored in the real card number storage space, and performing, by the server, a financial transaction progress or a financial transaction progress request with the extracted real card number.

The invention relates to a customer initiated fraud management. With an embodiment of the present invention, customers may control card utilization through a mobile application. For example, customers may restrict the utilization on their cards when they do not need to use their cards as well as allow specific types of transactions on demand (e.g., PoS, Cash, card absent environment transactions, etc.). Also, an interactive user interface provides cardholders the ability to open utilization windows in specific countries and for specific utilization types.

Universal cards are used in place of all the other traditional cards which a person may want to carry. The universal card can include a short range communications transceiver to communicate with a mobile device. The mobile device can include a user interface and an e-wallet application so that the user can interface with the e-wallet application for programming the universal card via the short range communication link. Once programmed, the universal card emulates a function of a traditional card.

A device may detect a trigger to perform a contactless transaction. The trigger may relate to the device being within a threshold proximity of a point of sale device. The device may provide a dynamic card identifier associated with the device based on detecting the trigger to perform the contactless transaction. The device may exchange data, with the point of sale device after providing the dynamic card identifier, to perform a mutual authentication to establish a secure session. The data may be encrypted based on a dynamic diversified key associated with the dynamic card identifier. The dynamic card identifier and the dynamic diversified key may be valid for a threshold period of time and may be invalid after the threshold period of time. The device may perform the contactless transaction via the secure session based on exchanging the data to perform the mutual authentication to establish the secure session.

The present invention relates to a method for a secure transaction utilizing a portable radio communication device (10), wherein both parts in the secure transaction are protected against fraudulent actions, among other things by use of a common transaction identity on a predefined transaction server.

A secure element (30) has a local store of file property data (50). A method of preparing a script to send to the secure element (30) to remotely provision a profile (31) at the secure element includes preparing the script such that the script lacks a command to create a file if the local store of file property data (50) at the secure element includes file property data which can be used to locally create that file. A script may include an entry of reduced length which refers to the file to be locally created, such as a SELECT FILE command and an identifier of the file.