External payment credential digitization

12008,562

15/725630

October 05, 2017

Provided are a system and method for distributing the digitization of a payment credential to an entity that does not have access to issuer master keys. In one example, the method includes receiving a personalization script for a payment credential, the personalization script generated by an issuer of the payment credential, generating tokenized payment information for the payment credential based on the received personalization script, wherein the tokenized payment information is generated by the digitization entity without having access to issuer master keys (IMKs) of the issuer of the payment credential, and transmitting the tokenized payment information for the payment credential to a digital wallet executing on a user device.

MasterCard International Incorporated (Purchase, NY, US)

MASTERCARD INTERNATIONAL INCORPORATED (Purchase, NY, US)

1. A method, comprising: receiving, via a digitization entity located in a first geographic jurisdiction, a request for tokenizing payment card data of a payment card associated with a payment account stored in a second geographic jurisdiction that comprises regulations which restrict sharing of payment account data stored in the second geographic jurisdiction from being shared outside of the second geographic jurisdiction; retrieving a personalization script for the payment card from an issuer of the payment account located in the second geographic jurisdiction, wherein the personalization script comprises instructions for digitizing payment account data from the payment account hosted in the second geographic jurisdiction onto a mobile device located in the first geographic jurisdiction and which satisfies the regulations which restrict sharing of payment account data stored in the second geographic jurisdiction from being shared outside of the second geographic jurisdiction, the personalization script generated based on issuer master keys provided by an issuer of the payment account; executing the personalization script at the digitization entity; extracting the payment account data from the payment card based on issuer instructions for extracting the payment account data included in the personalization script when executing the personalization script at the digitization entity; converting the extracted payment account data into tokenized payment account data based on issuer instructions for tokenizing the payment card included in the personalization script when executing the personalization script at the digitization entity; and transmitting the tokenized payment account data to a secure element of the mobile device when executing the personalization script at the digitization entity.

2. The method of claim 1 , wherein the payment account data comprises a primary account number (PAN) from the payment card and the digitizing comprises adding a tokenized PAN to the user device based on the issuer instructions included in the personalization script.

3. The method of claim 1 , further comprising receiving a request, from the digital wallet, for digitizing the payment card data prior to retrieving the personalization script from the issuer located in the second jurisdiction.

4. The method of claim 1 , further comprising transmitting a request for the personalization script to a cryptographic service provider, and receiving the personalization script from the cryptographic service provider in response to the request.

5. The method of claim 1 , further comprising authenticating a cardholder of the payment card via the user device prior to extracting the payment account data from the payment card.

6. The method of claim 1 , wherein the method further comprises extracting an account number from a chip or a strip of the payment card based on the issuer instructions included in the personalization script, and the converting comprises generating a tokenized account number based on the issuer instructions included in the personalization script.

7. A digitization device, comprising: a network interface configured to receive, via a digitization entity located in a first geographic jurisdiction, a request for tokenizing payment card data of a payment card associated with a payment account stored in a second geographic jurisdiction that comprises regulations which restrict sharing of payment account data stored in the second geographic jurisdiction from being shared outside of the second geographic jurisdiction; and a processor configured to retrieve a personalization script for the payment card from an issuer of the payment account located in the second geographic jurisdiction, wherein the personalization script comprises instructions for digitizing payment account data from the payment account hosted in the second geographic jurisdiction onto a mobile device located in the first geographic jurisdiction and which satisfies the regulations which restrict sharing of payment account data stored in the second geographic jurisdiction from being shared outside of the second geographic jurisdiction the personalization script generated based on issuer master keys provided by an issuer of the payment account, execute the personalization script at the digitization device, extract payment account data from the payment card based on issuer instructions for extracting the account information included in the personalization script when executing the personalization script, convert the extracted payment account data into tokenized payment account data based on issuer instructions for tokenizing the payment account data included in the personalization script when executing the personalization script at the digitization entity, and transmit the tokenized payment account data to a secure element of the mobile device when executing the personalization script at the digitization entity.

8. The digitization device of claim 7 , wherein the payment account data comprises a primary account number (PAN) from the payment card and the processor is configured to add a tokenized PAN to the user device based on the issuer instructions included in the personalization script.

9. The digitization device of claim 7 , wherein the network interface is further configured to receive a request, from the digital wallet, for digitizing the payment card prior to retrieving the personalization script from the issuer located in the second jurisdiction.

10. The digitization device of claim 7 , wherein the network interface is further configured to transmit a request for the personalization script to a cryptographic service provider, and receive the personalization script from the cryptographic service provider in response to the request.

11. The digitization device of claim 7 , wherein the processor is further configured to authenticate a cardholder of the payment card via the user device prior to extracting the payment account data from the payment card.

12. A non-transitory computer readable medium having stored therein instructions that when executed cause a computer to perform a method comprising: receiving, via a digitization entity located in a first geographic jurisdiction, a request for tokenizing payment card data of a payment card associated with a payment account hosted in a second geographic jurisdiction that comprises regulations which restrict sharing of payment account data stored in the second geographic jurisdiction from being shared outside of the second geographic jurisdiction; retrieving a personalization script for the payment card from an issuer of the payment account located in the second geographic jurisdiction, wherein the personalization script comprises instructions for digitizing payment account data from the payment account stored and hosted in the second geographic jurisdiction onto a mobile device, the personalization script generated based on issuer master keys provided by an issuer of the payment account; executing the personalization script at the digitization entity; extracting the account information from the payment card data based on issuer instructions for extracting the payment account data included in the personalization script when executing the personalization script at the digitization entity; converting the extracted payment account data into tokenized account information based on issuer instructions for tokenizing the payment account data included in the personalization script when executing the personalization script at the digitization entity; and transmitting the tokenized payment account data to a secure element of the mobile device when executing the personalization script at the digitization entity.

13. The non-transitory computer readable medium of claim 12 , wherein the payment account data comprises a primary account number (PAN) from the payment card and the digitizing comprises adding a tokenized PAN to the user device based on the issuer instructions included in the personalization script.

14. The non-transitory computer readable medium of claim 12 , wherein the method further comprises transmitting a request for the personalization script to a cryptographic service provider, and receiving the personalization script from the cryptographic service provider in response to the request.

10275764 April 2019 Nwokolo
20090198618 August 2009 Chan
20100106570 April 2010 Radu
20130208893 August 2013 Shablygin
20130246258 September 2013 Dessert
20150112871 April 2015 Kumnick
20150142673 May 2015 Nelsen
20150178724 June 2015 Ngo
20160057619 February 2016 Lopez
20160103675 April 2016 Aabye
20160350746 December 2016 Johnson
20170070500 March 2017 Hockey
20170185997 June 2017 D'Alisa
20170270517 September 2017 Vasu
755458 October 1999
2702723 March 2014

Linn, Courtney J., “Regulating the cross-border movement of prepaid cards”, Journal of Money Laundering Control 11.2: 146-171. Emerald Group Publishing Limited. (2008) (Year: 2008). cited by examiner
PCT International Search Report and Written Opinion for PCT Application No. PCT/US2018/052130, dated Dec. 7, 2018, 12 pages. cited by applicant

edspgr.12008562