Methods, apparatus and computer software are provided for authorizing an EMV transaction between a user device and a point of sale terminal, particularly, but not exclusively, in situations where a secure element is not made available for the deployment of a payment application on the user device. The payment application is instead deployed to a processing environment that is outside of any secure element on the user device. An ICC Master Key corresponding to the payment application is held by a trusted authority, such as the issuing bank. The trusted authority is adapted generate time-limited session keys on the basis of the ICC Master Key and distribute session keys to the payment application. Receipt of a session key by the payment application enables the payment application to conduct an EMV payment transaction. The session key is used to authorize a single EMV payment transaction.

A method and system are disclosed for providing integrated circuit chip cards (e.g. transaction cards) pursuant to an order placed by or on behalf of a card issuer wherein a testing data file is provided in conjunction with prepersonalization data encoding for use in conjunction with subsequent testing of the accuracy of the encoded prepersonalization data. Such testing may be completed prior to personalization data encoding to facilitate the identification of prepersonalization data encoding errors, thereby further facilitating remedial action and reduction of production disruptions.

Various embodiments each include at least one of systems, devices, methods, and software for cross-channel security authentication, such as with regard to providing of payment card (e.g., credit and debit card) data for payment within a transaction. One such embodiment, in the form of a method includes receiving, by a payment account app on a mobile device, a payment authorization request and subsequently receiving approval or denial input within the payment account app following receipt of valid payment account authentication input. This method, following receipt of approval input, further includes generating authorized payment output to provide in response to the received payment authorization request.

A method for conducting an offline data exchange associated with a blockchain includes: storing a structured data set associated with a blockchain network, the data set including a network identifier, unspent output hash, output index, output value, and key pair; receiving the network identifier and a transaction amount from a point of sale; validating the structured data set as including the network identifier and an output value greater than or equal to the transaction amount; transmitting the unspent output hash and output index to the point of sale; receiving a destination address from the point of sale; generating transaction data including the destination address and a payment amount based on the transaction amount; and transmitting the transaction data to the point of sale.

Method of controlling an electronic device and corresponding electronic device. The method may be performed by an electronic device (20) and includes steps such as receiving an instruction command (CMD) that includes identifiers (ID) of instructions (IS) that are prerecorded in a memory (30) of the electronic device; using the identifiers to form a code (RC) defining a set of instructions, where the set of instructions combines prerecorded instructions (IS) to execute a security check; and storing the code (RC) in a memory (28) of the electronic device in order to configure the electronic device (20) to execute the security check.

A method for conducting an offline data exchange associated with a blockchain includes: storing a structured data set associated with a blockchain network, the data set including a network identifier, unspent output hash, output index, output value, and key pair; receiving the network identifier and a transaction amount from a point of sale; validating the structured data set as including the network identifier and an output value greater than or equal to the transaction amount; transmitting the unspent output hash and output index to the point of sale; receiving a destination address from the point of sale; generating transaction data including the destination address and a payment amount based on the transaction amount; and transmitting the transaction data to the point of sale.

Provided is an electronic cash-based offline transaction method and system. The method includes: receiving, by a back-end server from a smart card, an anti-replay factor generated by the smart card; determining, by the back-end server in accordance with a predetermined algorithm, whether an abnormal transaction occurs on the smart card, generating, by the back-end server when no abnormal transaction occurs, a security information signature by signing security information with a private key of the back-end server, and transmitting, by the back-end server, the security information and the security information signature to the smart card (S2).

Methods, apparatus and computer software are provided for authorizing an EMV transaction between a user device and a point of sale terminal, particularly, but not exclusively, in situations where a secure element is not made available for the deployment of a payment application on the user device. The payment application is instead deployed to a processing environment that is outside of any secure element on the user device. An ICC Master Key corresponding to the payment application is held by a trusted authority, such as the issuing bank. The trusted authority is adapted generate time-limited session keys on the basis of the ICC Master Key and distribute session keys to the payment application. Receipt of a session key by the payment application enables the payment application to conduct an EMV payment transaction. The session key is used to authorize a single EMV payment transaction.

A settlement system performs on-line settlement and off-line settlement by switching between them, while reducing risk to the business side and not causing a user making payment to be aware of the switching.

A terminal device includes selection means for comparing a payment amount with a set amount read from a recording medium and for selecting between off-line processing and on-line processing, depending on a result of the comparison, off-line processing means for performing a process of subtracting the payment amount from the set amount recorded in the recording medium and a process of sending the payment amount to a server device; and on-line processing means for performing a process of sending the payment amount to the server device and a process of updating the set amount when having received an update value. A server device includes server processing means for performing a process of receiving the payment amount from a terminal device and a process of subtracting the payment amount from a balance of an account corresponding to the recording medium, and for performing, in a case of the on-line processing, a process of sending the update value to the terminal device.

Methods, apparatus and computer software are provided for authorizing an EMV transaction between a user device and a point of sale terminal, particularly, but not exclusively, in situations where a secure element is not made available for the deployment of a payment application on the user device. The payment application is instead deployed to a processing environment that is outside of any secure element on the user device. An ICC Master Key corresponding to the payment application is held by a trusted authority, such as the issuing bank. The trusted authority is adapted generate time-limited session keys on the basis of the ICC Master Key and distribute session keys to the payment application. Receipt of a session key by the payment application enables the payment application to conduct an EMV payment transaction. The session key is used to authorize a single EMV payment transaction.