Systems and methods for performing ATM fund transfer using active authentication

US 10,089,612 B2
Filed: 05/05/2011
Issued: 10/02/2018
Est. Priority Date: 03/15/2011
Status: Active Grant

First Claim

Patent Images

1. A method of performing a fund transfer at an ATM, comprising:

receiving, at a first computer processor, a request for authentication from a user device, the user having an account at a financial institution;

authenticating, by the first computer processor, the user based on data received from the user device;

receiving, via a wireless communication protocol, parameters associated with an ATM fund transfer request transmitted from the user device, the parameters including a future time period during which the fund transfer is to be performed;

randomly generating, by the first computer processor, a single-use active authentication transaction key, wherein the single-use active authentication transaction key lacks a static identifier associated with the account and is unique for the ATM fund transfer request and valid for a limited period of time;

transmitting, via the wireless communication protocol, the single-use active authentication transaction key to a mobile financial transaction instrument associated with the account, wherein the mobile financial transaction instrument includes a user device different from the user device from which the user requested authentication;

receiving, via the wireless communication protocol, the single-use active authentication transaction key at an ATM from the mobile financial transaction instrument;

randomly generating, at a second computer processor, a PIN in response to receiving the single-use active authentication transaction key, the second computer processor being associated with the ATM;

extracting and transmitting, by the second computer processor, at least a first portion of the single-use active authentication transaction key to an active authentication registry to identify the financial institution to which the single-use active authentication transaction key is to be routed;

transmitting, by the second computer processor, an authorization request message to the financial institution identified by the single-use active authentication transaction key, the authorization request message including the PIN, the at least a first portion of the single-use active authentication transaction key, and the parameters;

processing a PIN received from the mobile financial transaction instrument, including comparing, by the second processor, the PIN received from the mobile financial transaction instrument to the generated PIN to confirm that the PINs match, responsive to receiving a message from the financial institution authorizing the ATM fund transfer request, wherein authorizing the ATM fund transfer request includes validating the single-use active authentication transaction key and validating that the ATM transaction request complies with the parameters; and

directing, by the second computer processor, that funds associated with the ATM fund transfer request be dispensed in response to processing the PIN.

View all claims

5 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method of performing a fund transfer at an ATM includes receiving an active authentication transaction key at an ATM from a mobile financial transaction instrument via a wireless communication protocol, generating a PIN at the ATM, and storing the PIN in a machine readable storage medium. An authorization request message is transmitted to a financial institution identified by the active authentication transaction key. The authorization request message includes the PIN and at least a portion of the active authentication transaction key. The PIN is received from a user of the mobile financial transaction instrument, and the funds are dispensed in response to receiving the PIN.

54 Citations

View as Search Results

15 Claims

1. A method of performing a fund transfer at an ATM, comprising:
- receiving, at a first computer processor, a request for authentication from a user device, the user having an account at a financial institution;
  
  authenticating, by the first computer processor, the user based on data received from the user device;
  
  receiving, via a wireless communication protocol, parameters associated with an ATM fund transfer request transmitted from the user device, the parameters including a future time period during which the fund transfer is to be performed;
  
  randomly generating, by the first computer processor, a single-use active authentication transaction key, wherein the single-use active authentication transaction key lacks a static identifier associated with the account and is unique for the ATM fund transfer request and valid for a limited period of time;
  
  transmitting, via the wireless communication protocol, the single-use active authentication transaction key to a mobile financial transaction instrument associated with the account, wherein the mobile financial transaction instrument includes a user device different from the user device from which the user requested authentication;
  
  receiving, via the wireless communication protocol, the single-use active authentication transaction key at an ATM from the mobile financial transaction instrument;
  
  randomly generating, at a second computer processor, a PIN in response to receiving the single-use active authentication transaction key, the second computer processor being associated with the ATM;
  
  extracting and transmitting, by the second computer processor, at least a first portion of the single-use active authentication transaction key to an active authentication registry to identify the financial institution to which the single-use active authentication transaction key is to be routed;
  
  transmitting, by the second computer processor, an authorization request message to the financial institution identified by the single-use active authentication transaction key, the authorization request message including the PIN, the at least a first portion of the single-use active authentication transaction key, and the parameters;
  
  processing a PIN received from the mobile financial transaction instrument, including comparing, by the second processor, the PIN received from the mobile financial transaction instrument to the generated PIN to confirm that the PINs match, responsive to receiving a message from the financial institution authorizing the ATM fund transfer request, wherein authorizing the ATM fund transfer request includes validating the single-use active authentication transaction key and validating that the ATM transaction request complies with the parameters; and
  
  directing, by the second computer processor, that funds associated with the ATM fund transfer request be dispensed in response to processing the PIN.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method of claim 1, wherein the single-use active authentication transaction key includes a substantially random alpha-numeric string.
  - 3. The method of claim 1, further comprising:
    - transmitting a second portion of the single-use active authentication transaction key to the active authentication registry; and
      
      receiving an identity of the financial institution from the active authentication registry based on the second portion of the single-use active authentication transaction key.
  - 4. The method of claim 1, further comprising identifying the financial institution based on a second portion of the single-use active authentication transaction key.
  - 5. The method of claim 1, wherein the PIN is received via a wireless transmission from the mobile financial transaction instrument.
  - 6. The method of claim 1, wherein the PIN is received from the mobile financial transaction instrument via physical contact between the mobile financial transaction instrument and the ATM.

7. A non-transitory machine-readable storage medium storing instructions that when executed by a plurality of processors, cause the plurality of processors to:
- receive a request for authentication from a user device, the user having an account at a financial institution;
  
  authenticate the user based on data received from the user device;
  
  receive parameters associated with an ATM fund transfer request transmitted from the user device, the parameters including a future time period during which the fund transfer is to be performed;
  
  cause a single-use active authentication transaction key to be randomly generated, wherein the single-use active authentication transaction key lacks a static identifier associated with an account and is unique for the ATM fund transfer request and valid for a limited period of time;
  
  cause the single-use active authentication transaction key to be transmitted to a mobile financial transaction instrument associated with the account, wherein the user financial transaction instrument includes a user device different from the user device from which the user requested authentication;
  
  cause a PIN to be randomly generated in response to receiving the single-use active authentication transaction key at an ATM from the mobile financial transaction instrument;
  
  cause at least a first portion of the single-use active authentication transaction key to be extracted and transmitted to an active authentication registry to identify the financial institution to which the single-use active authentication transaction key is to be routed;
  
  cause an authorization message to be transmitted to the financial institution identified by the single-use active authentication transaction key, the authorization message including the PIN, the at least a first portion of the single-use active authentication transaction key, and the parameters;
  
  cause a PIN received from the mobile financial transaction instrument to be processed, including comparing the PIN received from the mobile financial transaction instrument to the generated PIN to confirm that the PINs match, responsive to receiving a message from the financial institution authorizing the ATM fund transfer request, wherein authorizing the ATM fund transfer request includes validating the single-use active authentication transaction key and validating that the ATM transaction request complies with the parameters; and
  
  cause funds associated with the ATM fund transfer request to be dispensed in response to processing the PIN.
- View Dependent Claims (8, 9, 10, 11)
- - 8. The non-transitory machine-readable storage medium of claim 7, wherein the single-use active authentication transaction key includes a substantially random alpha-numeric string.
  - 9. The non-transitory machine readable storage medium of claim 7, wherein the instructions further cause the plurality of processors to:
    - cause a second portion of the single-use active authentication transaction key to be transmitted to the active authentication registry; and
      
      receive an identity of the financial institution from the active authentication registry based on the second portion of the single-use active authentication transaction key.
  - 10. The non-transitory machine-readable storage medium of claim 7, wherein the instructions further cause the plurality of processors to identify the financial institution based on a second portion of the single-use active authentication transaction key.
  - 11. The non-transitory machine-readable storage medium of claim 7, wherein the instructions further cause the plurality of processors to wirelessly receive the PIN from the mobile financial transaction instrument.

12. A system, comprising:
- a random number generator;
  
  a first computer processor coupled to the random number generator, the first computer processor configured to;
  
  receive a request for authentication from a user device, the user having an account at a financial institution;
  
  authenticate the user based on data received from the user device;
  
  receive, via a wireless communication protocol, parameters associated with an ATM fund transfer request transmitted from the user device, the parameters including a future time period during which the fund transfer is to be performed;
  
  generate, by the random number generator, a single-use active authentication transaction key, wherein the single-use active authentication transaction key lacks a static identifier associated with the account and is unique for the ATM fund transfer request and valid for a limited period of time; and
  
  transmit, via the wireless communication protocol, the single-use active authentication transaction key to a mobile financial transaction instrument associated with the account, wherein the mobile financial transaction instrument includes a user device different from the user device from which the user requested authentication; and
  
  a second computer processor, the second computer processor being associated with an ATM, configured to;
  
  receive, via the wireless communication protocol, the single-use active authentication transaction key at the ATM from the mobile financial transaction instrument;
  
  randomly generate a PIN in response to receiving the single-use active authentication transaction key;
  
  extract and transmit at least a first portion of the single-use active authentication transaction key to an active authentication registry to identify the financial institution to which the single-use active authentication transaction key is to be routed;
  
  transmit an authorization request message to the financial institution identified by the single-use active authentication transaction key, the authorization request message including the PIN, the at least a first portion of the single-use active authentication transaction key, and the parameters;
  
  process a PIN received from the mobile financial transaction instrument, including comparing the PIN received from the mobile financial transaction instrument to the generated PIN to confirm that the PINs match, responsive to receiving a message from the financial institution authorizing the ATM fund transfer request, wherein authorizing the ATM fund transfer request includes validating the single-use active authentication transaction key and validating that the ATM transaction request complies with the user defined parameters; and
  
  direct that funds associated with the ATM fund transfer request be dispensed in response to processing the PIN.
- View Dependent Claims (13, 14, 15)
- - 13. The system of claim 12, wherein the single-use active authentication transaction key includes a substantially random alpha-numeric string.
  - 14. The system of claim 12, wherein the financial institution is identified by a second portion of the single-use active authentication transaction key.
  - 15. The system of claim 12, wherein the second processor is configured to:
    - cause a second portion of the single-use active authentication transaction key to be transmitted to the active authentication registry; and
      
      receive an identity of the financial institution from the active authentication registry based on the second portion of the single-use active authentication transaction key.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Capital One Services LLC (Capital One Financial Corporation)
Original Assignee
Capital One Services LLC (Capital One Financial Corporation)
Inventors
Wolfs, Rudolph Christian, Pinski, David Aaron
Primary Examiner(s)
Shaikh, Mohammad Z

Application Number

US13/101,759
Publication Number

US 20120239579A1
Time in Patent Office

2,707 Days
Field of Search

705 72, 705 35- 45, 713184, 235379
US Class Current
CPC Class Codes

G06Q 20/18   involving self-service term...

G06Q 20/20   Point-of-sale [POS] network...

G06Q 20/325   using wireless networks

G06Q 20/3278   RFID or NFC payments by mea...

G06Q 20/385   using an alias or single-us...

G06Q 20/40   Authorisation, e.g. identif...

Systems and methods for performing ATM fund transfer using active authentication

First Claim

5 Assignments

0 Petitions

Accused Products

Abstract

54 Citations

15 Claims

Specification

Solutions

Use Cases

Quick Links

Systems and methods for performing ATM fund transfer using active authentication

First Claim

5 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

54 Citations

15 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links