Contactless payment relay attack protection

Assignee

• MASTERCARD INTERNATIONAL INCORPORATED · US

Inventors

• Florent Hay · Laeken - Laken, BE
• Eddy Lodewijk Hortensia Van De Velde · Leuven, BE
• Patrick Mestré · Sart-Bernard, BE

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG06Q2220/00
• WIPO fieldIT methods for management
• WIPO sectorElectrical engineering

Abstract

A method for contactless payment relay attack protection includes receiving an online authorization request including a cryptogram, a measured processing time, and a reference processing time from a terminal. The cryptogram is verified, and a determination is performed as to whether the measured processing time exceeds the reference processing time. An online authorization response authorizing or declining a monetary transaction is transmitted, based on the determination. An artificial intelligence transaction analysis can be performed based on past and current conditions (e.g., battery level, operating system, open applications) of a payment device such as a mobile phone, past and current conditions of a terminal, and/or a monetary amount. The online authorization response can be based on the artificial intelligence transaction analysis.