Secure mobile payment system
First Claim
1. A method comprising:
- receiving, by a portable wireless phone, a selection of an account from a consumer;
retrieving, automatically by the portable wireless phone, a pseudo account identifier associated with the selected account in response to receiving the selection of the account by;
sending, by the portable wireless phone, a request for the pseudo account identifier associated with the selected account over a first network, the request including an account identifier for the selected account; and
receiving, by the portable wireless phone, over the first network, the pseudo account identifier that corresponds to the account identifier associated with the selected account, the pseudo account identifier being generated by a server computer, wherein generation of the pseudo account identifier by the server computer and retrieval of the pseudo account identifier by the portable wireless phone is transparent to the consumer such that the consumer does not know the pseudo account identifier is received; and
transmitting, by the portable wireless phone using a contactless transmitter, the pseudo account identifier to an access device comprising a contactless reader to conduct a transaction, wherein the access device thereafter sends an authorization request message comprising the pseudo account identifier to a payment processing network over a second network that is different than the first network, wherein the payment processing network converts the pseudo account identifier in the authorization request message back to the account identifier, wherein the payment processing network sends the authorization request message including the account identifier to an issuer associated with the account identifier, wherein the issuer generates an authorization response message and sends the authorization response message to the payment processing network, and wherein the access device thereafter receives the authorization response message indicating whether the transaction is approved or not approved.
0 Assignments
0 Petitions
Accused Products
Abstract
The present invention provides a method for conducting a transaction that includes receiving a pseudo account identifier that corresponds to a primary account identifier. The pseudo account identifier may be received at a portable wireless device and may be generated by a remote server computer. The portable wireless device can receive the pseudo account identifier over a first network and provide the pseudo account identifier to an access device. The access devices generally comprises a reader that can receive the pseudo account identifier, and thereafter send a message to request authorization of a transaction. The authorization request message may include the pseudo account identifier and is sent to a payment processing network. The authorization request message is sent to the payment processing network over a second network. The payment processing network may then process the authorization message and return a response that indicates if the transaction is authorized or not.
556 Citations
21 Claims
-
1. A method comprising:
-
receiving, by a portable wireless phone, a selection of an account from a consumer; retrieving, automatically by the portable wireless phone, a pseudo account identifier associated with the selected account in response to receiving the selection of the account by; sending, by the portable wireless phone, a request for the pseudo account identifier associated with the selected account over a first network, the request including an account identifier for the selected account; and receiving, by the portable wireless phone, over the first network, the pseudo account identifier that corresponds to the account identifier associated with the selected account, the pseudo account identifier being generated by a server computer, wherein generation of the pseudo account identifier by the server computer and retrieval of the pseudo account identifier by the portable wireless phone is transparent to the consumer such that the consumer does not know the pseudo account identifier is received; and transmitting, by the portable wireless phone using a contactless transmitter, the pseudo account identifier to an access device comprising a contactless reader to conduct a transaction, wherein the access device thereafter sends an authorization request message comprising the pseudo account identifier to a payment processing network over a second network that is different than the first network, wherein the payment processing network converts the pseudo account identifier in the authorization request message back to the account identifier, wherein the payment processing network sends the authorization request message including the account identifier to an issuer associated with the account identifier, wherein the issuer generates an authorization response message and sends the authorization response message to the payment processing network, and wherein the access device thereafter receives the authorization response message indicating whether the transaction is approved or not approved. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A portable wireless phone for performing a proximity transaction comprising:
-
a long range communication element; a short range communication element; a processor coupled to the long range communication element and the short range communication element; a memory coupled to the processor, the memory comprising computer code for performing a method, the method comprising; receiving a selection of an account from a user; in response to receiving the selection of the account, automatically retrieving a pseudo account identifier associated with the selected account by; sending a request for a pseudo account identifier associated with the selected account using the long range communication element, the request including an account identifier for the selected account; and receiving the pseudo account identifier that corresponds to the account identifier associated with the selected account at the portable wireless phone over a first network using the long range communication element, the pseudo account identifier being generated a server computer, wherein generation of the pseudo account identifier by the server computer and retrieval of the pseudo account identifier by the portable wireless phone is transparent to the user such that the users does not know the pseudo account identifier is received; and transmitting the pseudo account identifier to an access device comprising a reader using the short range communication element, wherein the access device thereafter sends an authorization request message comprising the pseudo account identifier to a payment processing network over a second network, wherein the payment processing network converts the pseudo account identifier in the authorization request message back to the account identifier, wherein the payment processing network sends the authorization request message including the account identifier to an issuer associated with the selected account, wherein the issuer generates an authorization response message and sends the authorization response message to the payment processing network, and wherein the access device thereafter receives the authorization response message indicating whether the proximity transaction is approved or not approved. - View Dependent Claims (11, 12)
-
-
13. A method comprising:
-
receiving, by a server computer, a request for retrieving a pseudo account identifier corresponding to a consumer'"'"'s account identifier, wherein the request is received over a first network, wherein the request for the pseudo account identifier is automatically generated by a portable wireless phone in response to a selection by a consumer of an account associated with the consumer'"'"'s account identifier; generating, by the server computer, the pseudo account identifier corresponding to the consumer'"'"'s account identifier; storing, by the server computer, the generated pseudo account identifier as being associated with the consumer'"'"'s account identifier; sending, by the server computer, the generated pseudo account identifier to the portable wireless phone over the first network, wherein the portable wireless phone is thereafter capable of performing one or more transactions by transmitting the pseudo account identifier to an access device using a contactless transmitter of the portable wireless phone and a contactless receiver of the access device, and wherein generation of the pseudo account identifier by the server computer and retrieval of the pseudo account identifier by the portable wireless phone is transparent to the consumer such that the consumer does not know the pseudo account identifier is received; receiving, by the server computer, an authorization request message for a transaction, the authorization request message comprising the pseudo account identifier over a second network that is different than the first network; determining, by the server computer, the consumer'"'"'s account identifier associated with the pseudo account identifier by retrieving the consumer'"'"'s account identifier associated with the stored pseudo account identifier; converting, by the server computer, the pseudo account identifier in the authorization request message to the consumer'"'"'s account identifier; sending, by the server computer, the authorization request message to an issuer associated with the consumer'"'"'s account identifier, wherein the issuer generates an authorization response message including an indication of whether the transaction is approved or not approved; receiving, by the server computer, the authorization response message; and forwarding, by the server computer, the authorization response message to the access device for completion of the transaction based on the indication of whether the transaction is approved or not approved. - View Dependent Claims (14, 15, 16)
-
-
17. A server computer comprising:
-
a processor; a computer readable medium coupled to the processor, the computer readable medium comprising computer code for performing a method, the method comprising; receiving a request for retrieving a pseudo account identifier corresponding to a consumer'"'"'s account identifier, wherein the request is received over a first network, and wherein the request for the pseudo account identifier is automatically generated by a portable wireless phone in response to a selection by a consumer of an account associated with the consumer'"'"'s account identifier; generating the pseudo account identifier corresponding to the first consumer'"'"'s account identifier; storing the generated pseudo account identifier as being associated with the consumer'"'"'s account identifier; sending the generated pseudo account identifier to the portable wireless phone over the first network, wherein the portable wireless phone is thereafter capable of performing one or more transactions by transmitting the pseudo account identifier to an access device using a contactless transmitter of the portable wireless phone and a contactless receiver of the access device, and wherein generation of the pseudo account identifier by the server computer and retrieval of the pseudo account identifier by the portable wireless phone is transparent to the consumer such that the consumer does not know the pseudo account identifier is received; receiving an authorization request message comprising the pseudo account identifier over a second network that is different than the first network for a transaction; determining the consumer'"'"'s account identifier associated with the pseudo account identifier; converting the pseudo account identifier in the authorization request message to the consumer'"'"'s account identifier; sending the authorization request message to an issuer associated with the consumer'"'"'s account identifier, wherein the issuer generates an authorization response message including an indication of whether the transaction is approved or not approved; receiving the authorization response message; and forwarding the authorization response message to the access device for completion of the transaction based on the indication of whether the transaction is approved or not approved.
-
-
18. A method comprising:
-
receiving, by an access device using a contactless reader, a pseudo account identifier from a portable wireless phone comprising a contactless transmitter to conduct a transaction, wherein the pseudo account identifier corresponds to a consumer'"'"'s account identifier and was retrieved by the portable wireless phone over a communications network via a wireless access point, wherein the pseudo account identifier was previously generated and stored by a server computer upon the server computer receiving a request that was automatically generated by the portable wireless phone in response to a selection of an account associated with the consumer'"'"'s account identifier, and wherein generation of the pseudo account identifier by the server computer and retrieval of the pseudo account identifier by the portable wireless phone is transparent to a consumer such that the consumer does not know the pseudo account identifier is received; sending, by the access device, a transaction authorization request comprising the pseudo account identifier to a payment processing network, wherein the pseudo account identifier is thereafter converted to the consumer'"'"'s account identifier by the server computer, and wherein the transaction authorization request is processed to approve or deny the transaction; and receiving, by the access device, an authorization response message via the payment processing network, wherein the authorization response message indicates if the transaction is approved or not approved. - View Dependent Claims (19, 20, 21)
-
Specification