Systems and methods for flexibly securing card data

Systems and methods for flexibly securing card data

A system and method for determining how much payment card data to mask or encrypt before transmitting the data to process a payment is disclosed. A non-Payment Card Industry (PCI) whitelist and/or a long Issuer Identification Number (IIN) list is received by a PIN entry device (PED). The non-PCI whi...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Daniel David Manning, Aaron Marcus Johnson, Ralph Grayson Hull IV, Jason Todd, Timothy Wayne Webb
Format: Patent
Sprache:eng
Schlagworte:
CALCULATING
COMPUTING
COUNTING
DATA PROCESSING SYSTEMS OR METHODS, SPECIALLY ADAPTED FORADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORYOR FORECASTING PURPOSES
PHYSICS
SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE,COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTINGPURPOSES, NOT OTHERWISE PROVIDED FOR
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
container_end_page
container_issue
container_start_page
container_title
container_volume
creator Daniel David Manning
Aaron Marcus Johnson
Ralph Grayson Hull IV
Jason Todd
Timothy Wayne Webb
description A system and method for determining how much payment card data to mask or encrypt before transmitting the data to process a payment is disclosed. A non-Payment Card Industry (PCI) whitelist and/or a long Issuer Identification Number (IIN) list is received by a PIN entry device (PED). The non-PCI whitelist references cards not subject to industry-defined security standards such as gift cards, shopping reward cards and employee discount cards. The long IIN list references card issuers whose cards are identified by more than a PCI-defined standard number of digits. The PED acquires data from a user card, and analyses the data using at least one of the non-PCI whitelist and the long IIN list. This analysis determines a masking level based on the type of card used, and the data is transmitted to a Point of Sale (POS) client with the determined masking level. The POS client may further examine the card data for non-compliance with pre-defined criteria, and transmits the data to an external server for authorisation. Card numbers referenced on the non-PCI whitelist would not be masked or encrypted, whereas those referenced on the long IIN list would at least be partially masked.
format Patent
fullrecord <record><control><sourceid>epo_EVB</sourceid><recordid>TN_cdi_epo_espacenet_GB2545987A</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>GB2545987A</sourcerecordid><originalsourceid>FETCH-epo_espacenet_GB2545987A3</originalsourceid><addsrcrecordid>eNrjZDAOriwuSc0tVkjMS1HITS3JyE8pVkjLL1JIy0mtyEzKqVQoTk0uLcrMS1dITixKUUhJLEnkYWBNS8wpTuWF0twM8m6uIc4euqkF-fGpxQWJyal5qSXx7k5GpiamlhbmjsaEVQAATmkrjw</addsrcrecordid><sourcetype>Open Access Repository</sourcetype><iscdi>true</iscdi><recordtype>patent</recordtype></control><display><type>patent</type><title>Systems and methods for flexibly securing card data</title><source>esp@cenet</source><creator>Daniel David Manning ; Aaron Marcus Johnson ; Ralph Grayson Hull IV ; Jason Todd ; Timothy Wayne Webb</creator><creatorcontrib>Daniel David Manning ; Aaron Marcus Johnson ; Ralph Grayson Hull IV ; Jason Todd ; Timothy Wayne Webb</creatorcontrib><description>A system and method for determining how much payment card data to mask or encrypt before transmitting the data to process a payment is disclosed. A non-Payment Card Industry (PCI) whitelist and/or a long Issuer Identification Number (IIN) list is received by a PIN entry device (PED). The non-PCI whitelist references cards not subject to industry-defined security standards such as gift cards, shopping reward cards and employee discount cards. The long IIN list references card issuers whose cards are identified by more than a PCI-defined standard number of digits. The PED acquires data from a user card, and analyses the data using at least one of the non-PCI whitelist and the long IIN list. This analysis determines a masking level based on the type of card used, and the data is transmitted to a Point of Sale (POS) client with the determined masking level. The POS client may further examine the card data for non-compliance with pre-defined criteria, and transmits the data to an external server for authorisation. Card numbers referenced on the non-PCI whitelist would not be masked or encrypted, whereas those referenced on the long IIN list would at least be partially masked.</description><language>eng</language><subject>CALCULATING ; COMPUTING ; COUNTING ; DATA PROCESSING SYSTEMS OR METHODS, SPECIALLY ADAPTED FORADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORYOR FORECASTING PURPOSES ; PHYSICS ; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE,COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTINGPURPOSES, NOT OTHERWISE PROVIDED FOR</subject><creationdate>2017</creationdate><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&amp;date=20170705&amp;DB=EPODOC&amp;CC=GB&amp;NR=2545987A$$EHTML$$P50$$Gepo$$Hfree_for_read</linktohtml><link.rule.ids>230,308,780,885,25564,76547</link.rule.ids><linktorsrc>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&amp;date=20170705&amp;DB=EPODOC&amp;CC=GB&amp;NR=2545987A$$EView_record_in_European_Patent_Office$$FView_record_in_$$GEuropean_Patent_Office$$Hfree_for_read</linktorsrc></links><search><creatorcontrib>Daniel David Manning</creatorcontrib><creatorcontrib>Aaron Marcus Johnson</creatorcontrib><creatorcontrib>Ralph Grayson Hull IV</creatorcontrib><creatorcontrib>Jason Todd</creatorcontrib><creatorcontrib>Timothy Wayne Webb</creatorcontrib><title>Systems and methods for flexibly securing card data</title><description>A system and method for determining how much payment card data to mask or encrypt before transmitting the data to process a payment is disclosed. A non-Payment Card Industry (PCI) whitelist and/or a long Issuer Identification Number (IIN) list is received by a PIN entry device (PED). The non-PCI whitelist references cards not subject to industry-defined security standards such as gift cards, shopping reward cards and employee discount cards. The long IIN list references card issuers whose cards are identified by more than a PCI-defined standard number of digits. The PED acquires data from a user card, and analyses the data using at least one of the non-PCI whitelist and the long IIN list. This analysis determines a masking level based on the type of card used, and the data is transmitted to a Point of Sale (POS) client with the determined masking level. The POS client may further examine the card data for non-compliance with pre-defined criteria, and transmits the data to an external server for authorisation. Card numbers referenced on the non-PCI whitelist would not be masked or encrypted, whereas those referenced on the long IIN list would at least be partially masked.</description><subject>CALCULATING</subject><subject>COMPUTING</subject><subject>COUNTING</subject><subject>DATA PROCESSING SYSTEMS OR METHODS, SPECIALLY ADAPTED FORADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORYOR FORECASTING PURPOSES</subject><subject>PHYSICS</subject><subject>SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE,COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTINGPURPOSES, NOT OTHERWISE PROVIDED FOR</subject><fulltext>true</fulltext><rsrctype>patent</rsrctype><creationdate>2017</creationdate><recordtype>patent</recordtype><sourceid>EVB</sourceid><recordid>eNrjZDAOriwuSc0tVkjMS1HITS3JyE8pVkjLL1JIy0mtyEzKqVQoTk0uLcrMS1dITixKUUhJLEnkYWBNS8wpTuWF0twM8m6uIc4euqkF-fGpxQWJyal5qSXx7k5GpiamlhbmjsaEVQAATmkrjw</recordid><startdate>20170705</startdate><enddate>20170705</enddate><creator>Daniel David Manning</creator><creator>Aaron Marcus Johnson</creator><creator>Ralph Grayson Hull IV</creator><creator>Jason Todd</creator><creator>Timothy Wayne Webb</creator><scope>EVB</scope></search><sort><creationdate>20170705</creationdate><title>Systems and methods for flexibly securing card data</title><author>Daniel David Manning ; Aaron Marcus Johnson ; Ralph Grayson Hull IV ; Jason Todd ; Timothy Wayne Webb</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-epo_espacenet_GB2545987A3</frbrgroupid><rsrctype>patents</rsrctype><prefilter>patents</prefilter><language>eng</language><creationdate>2017</creationdate><topic>CALCULATING</topic><topic>COMPUTING</topic><topic>COUNTING</topic><topic>DATA PROCESSING SYSTEMS OR METHODS, SPECIALLY ADAPTED FORADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORYOR FORECASTING PURPOSES</topic><topic>PHYSICS</topic><topic>SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE,COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTINGPURPOSES, NOT OTHERWISE PROVIDED FOR</topic><toplevel>online_resources</toplevel><creatorcontrib>Daniel David Manning</creatorcontrib><creatorcontrib>Aaron Marcus Johnson</creatorcontrib><creatorcontrib>Ralph Grayson Hull IV</creatorcontrib><creatorcontrib>Jason Todd</creatorcontrib><creatorcontrib>Timothy Wayne Webb</creatorcontrib><collection>esp@cenet</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>Daniel David Manning</au><au>Aaron Marcus Johnson</au><au>Ralph Grayson Hull IV</au><au>Jason Todd</au><au>Timothy Wayne Webb</au><format>patent</format><genre>patent</genre><ristype>GEN</ristype><title>Systems and methods for flexibly securing card data</title><date>2017-07-05</date><risdate>2017</risdate><abstract>A system and method for determining how much payment card data to mask or encrypt before transmitting the data to process a payment is disclosed. A non-Payment Card Industry (PCI) whitelist and/or a long Issuer Identification Number (IIN) list is received by a PIN entry device (PED). The non-PCI whitelist references cards not subject to industry-defined security standards such as gift cards, shopping reward cards and employee discount cards. The long IIN list references card issuers whose cards are identified by more than a PCI-defined standard number of digits. The PED acquires data from a user card, and analyses the data using at least one of the non-PCI whitelist and the long IIN list. This analysis determines a masking level based on the type of card used, and the data is transmitted to a Point of Sale (POS) client with the determined masking level. The POS client may further examine the card data for non-compliance with pre-defined criteria, and transmits the data to an external server for authorisation. Card numbers referenced on the non-PCI whitelist would not be masked or encrypted, whereas those referenced on the long IIN list would at least be partially masked.</abstract><oa>free_for_read</oa></addata></record>
fulltext fulltext_linktorsrc
identifier
ispartof
issn
language eng
recordid cdi_epo_espacenet_GB2545987A
source esp@cenet
subjects CALCULATING
COMPUTING
COUNTING
DATA PROCESSING SYSTEMS OR METHODS, SPECIALLY ADAPTED FORADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORYOR FORECASTING PURPOSES
PHYSICS
SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE,COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTINGPURPOSES, NOT OTHERWISE PROVIDED FOR
title Systems and methods for flexibly securing card data
url https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2024-12-20T02%3A49%3A37IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-epo_EVB&rft_val_fmt=info:ofi/fmt:kev:mtx:patent&rft.genre=patent&rft.au=Daniel%20David%20Manning&rft.date=2017-07-05&rft_id=info:doi/&rft_dat=%3Cepo_EVB%3EGB2545987A%3C/epo_EVB%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_id=info:pmid/&rfr_iscdi=true