Abstract

The present disclosure relates to a method and system for enabling issuer-controlled delegated access to physical payment cards with usage constraints. The method involves creating a secondary Personal Identification Number (PIN) associated with the physical payment card, where this secondary PIN is generated by the issuer's authorization system. Usage constraints, including time validity, maximum transaction count, and spending limits, are defined, and the secondary PIN is encrypted and securely stored by the issuer to protect the primary PIN. During authorization requests, the secondary PIN is verified by evaluating these constraints in real-time, and the PIN is automatically revoked if any constraints are exceeded. The system further comprises a hardware security module for secure generation and management of the PIN, ensuring compliance with the defined constraints while allowing effective delegated access without modifying existing infrastructure.

Creative Commons License

Creative Commons License
This work is licensed under a Creative Commons Attribution 4.0 License.

Download

Share

COinS