发明名称 |
VALIDATING ENCRYPTED DATA FROM A MULTI-LAYER TOKEN |
摘要 |
A message processing server includes a message processor and a database of multi-layer tokens. Each token in the database includes a plurality of encrypted data layers. The first layer includes a first data pointer. A primary layer includes the first layer and identifies a reference data value. The message processor receives from a communications device an authentication request identifying a first data value, validates the authentication request from the first data value and the reference data value configured in one of the multi-layer tokens, receives a first authorization message including a first cryptographic key, derives a first decrypted data layer from the first cryptographic key and the first encrypted data layer of the one multi-layer token, and validates the first data pointer by receiving confirmation of the first data pointer pointing to a database entry comprising a second data value less than the reference data value. |
申请公布号 |
US2017124558(A1) |
申请公布日期 |
2017.05.04 |
申请号 |
US201615286734 |
申请日期 |
2016.10.06 |
申请人 |
The Toronto-Dominion Bank |
发明人 |
Molnar Matthew Randolph;BARNETT Jonathan K.;LEE John Jong Suk;CHAN Paul Mon-Wah;DEL VECCHIO Orin |
分类号 |
G06Q20/38;G06Q20/40;H04L9/32;G06Q20/10;H04W12/06;H04L29/06 |
主分类号 |
G06Q20/38 |
代理机构 |
|
代理人 |
|
主权项 |
1. A message processing server comprising:
a memory storing a token database of multi-layer tokens, each said multi-layer token including a plurality of encrypted data layers, a first of the encrypted data layers including a first data pointer, another of the encrypted data layers including the first encrypted data layer and identifying a reference data value; and a message processor coupled to the memory and configured to:
receive, from a communications device, an authentication request identifying a first data value;validate the authentication request from the first data value and the reference data value configured in one of the multi-layer tokens;receive, from the communications device, a first authorization message including a first cryptographic key;derive a first decrypted data layer by decrypting, with the first cryptographic key, the first encrypted data layer of the one multi-layer token and; and validate the first data pointer of the first decrypted data layer by receiving confirmation of the first data pointer pointing to a database entry comprising a second data value less than the reference data value. |
地址 |
Toronto CA |