Authentication system and method
DCFirst Claim
1. A computer-implemented method for a credit or debit card account holder to authorize a resource provider to use a credit or debit card account number to pay a specific merchant for a specific transaction without transmitting or otherwise providing the credit or debit card account number to the merchant, the computer-implemented method comprising the steps of:
- providing at least one interface adapted to receive and transmit data in communication with a credit or debit card account holder'"'"'s mobile device, a merchant'"'"'s payment application, or both;
receiving registration information received from the credit or debit card account holder through the at least one interface, the registration information comprising a credit or debit card account holder identifier and at least one credit or debit card account number having an associated unique account identifier wherein the credit or debit card account number and unique account identifier are not the same;
receiving an authorization request message to pay the specific merchant for the specific transaction from a given debit or credit card account, the authorization request message having been received through the at least one interface and originating from the credit or debit card account holder'"'"'s mobile device and comprising;
a first merchant identifier;
a first transaction specific information selected from the group consisting of a first transaction amount and first client reference identifier;
the credit or debit card account holder identifier; and
a designated unique account identifier selected from the at least one unique account identifiers; and
generating a first transaction specific authentication credential associated with the authorization request, whereby the first transaction specific authentication credential comprises a key string wherein the key string is not a temporary credit or debit card account number and does not include or reveal the credit or debit card account number associated with the designated unique account identifier;
receiving a payment request message from the merchant'"'"'s payment application through the at least one interface, the payment request message comprising;
a second merchant identifier;
a second transaction specific information selected from the group consisting of a second transaction amount and second client reference identifier; and
a second transaction specific authentication credential whereby the second authentication credential was received by the merchant application from the credit or debit card account holder'"'"'s mobile device; and
validating the credit or debit card account holder'"'"'s request to use the credit or debit card account number associated with the designated unique account identifier for payment to the specific merchant for the specific transaction and authorizing the resource provider to use the credit or debit card account number associated with the designated unique account identifier to pay a specific merchant for a specific transaction without transmitting or otherwise providing the credit or bank account number to the specific merchant by determining that;
the first merchant identifier matches the second merchant identifier;
the first transaction specific information matches the second transaction specific information; and
the first transaction specific authentication credential matches the second transaction specific authentication credential.
0 Assignments
Litigations
0 Petitions
Accused Products
Abstract
An authentication system for authenticating the identity of a requester of access by an unauthorized service client to a secured resource. The system has a messaging gateway having a first set of instructions operable to receive from a requester purporting to be an authorized user of a secured resource a request for limited access to the secured resource by an unauthorized service client for a particular transaction; a server having a second set of instructions operable to determine a key string known to both the secured resource and the authorized user the requestor purports to be, the key string being adapted to provide a basis for authenticating the identity of the requester as the authorized account holder; and a service user interface having a third set of instructions embodied in a computer readable medium operable to receive transaction specific information input into the request by the unauthorized service client.
44 Citations
16 Claims
-
1. A computer-implemented method for a credit or debit card account holder to authorize a resource provider to use a credit or debit card account number to pay a specific merchant for a specific transaction without transmitting or otherwise providing the credit or debit card account number to the merchant, the computer-implemented method comprising the steps of:
-
providing at least one interface adapted to receive and transmit data in communication with a credit or debit card account holder'"'"'s mobile device, a merchant'"'"'s payment application, or both; receiving registration information received from the credit or debit card account holder through the at least one interface, the registration information comprising a credit or debit card account holder identifier and at least one credit or debit card account number having an associated unique account identifier wherein the credit or debit card account number and unique account identifier are not the same; receiving an authorization request message to pay the specific merchant for the specific transaction from a given debit or credit card account, the authorization request message having been received through the at least one interface and originating from the credit or debit card account holder'"'"'s mobile device and comprising; a first merchant identifier; a first transaction specific information selected from the group consisting of a first transaction amount and first client reference identifier; the credit or debit card account holder identifier; and a designated unique account identifier selected from the at least one unique account identifiers; and generating a first transaction specific authentication credential associated with the authorization request, whereby the first transaction specific authentication credential comprises a key string wherein the key string is not a temporary credit or debit card account number and does not include or reveal the credit or debit card account number associated with the designated unique account identifier; receiving a payment request message from the merchant'"'"'s payment application through the at least one interface, the payment request message comprising; a second merchant identifier; a second transaction specific information selected from the group consisting of a second transaction amount and second client reference identifier; and a second transaction specific authentication credential whereby the second authentication credential was received by the merchant application from the credit or debit card account holder'"'"'s mobile device; and validating the credit or debit card account holder'"'"'s request to use the credit or debit card account number associated with the designated unique account identifier for payment to the specific merchant for the specific transaction and authorizing the resource provider to use the credit or debit card account number associated with the designated unique account identifier to pay a specific merchant for a specific transaction without transmitting or otherwise providing the credit or bank account number to the specific merchant by determining that; the first merchant identifier matches the second merchant identifier; the first transaction specific information matches the second transaction specific information; and the first transaction specific authentication credential matches the second transaction specific authentication credential. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A computer-implemented system for a credit or debit card account holder to authorize a resource provider to use a credit or debit card account number to pay a specific merchant for a specific transaction without transmitting or otherwise providing the credit or debit card account number to the merchant, the computer-implemented system comprising:
-
at least one interface adapted to receive and transmit data in communication with a credit or debit card account holder'"'"'s mobile device, a merchant'"'"'s payment application, or both; one or more servers in secure communication with the at least one interface, the one or more servers having; a first instruction embodied in a computer readable medium, the first instruction operable to receive registration information received from the credit or debit card account holder through the at least one interface, the registration information comprising a credit or debit card account holder identifier and at least one credit or debit card account number having an associated unique account identifier wherein the credit or debit card account number and unique account identifier are not the same; a second instruction embodied in a computer readable medium, the second instruction operable to receive an authorization request message to pay the specific merchant for the specific transaction from a given debit or credit card account, the authorization request message having been received through the at least one interface and originating from the credit or debit card account holder'"'"'s mobile device and comprising; a first merchant identifier; a first transaction specific information selected from the group consisting of a first transaction amount and first client reference identifier; the credit or debit card account holder identifier; and a designated unique account identifier selected from the at least one unique account identifiers; and a third instruction embodied in a computer readable medium, the third instruction operable to; generate a first transaction specific authentication credential associated with the authorization request, whereby the first transaction specific authentication credential comprises a key string wherein the key string is not a temporary credit or debit card account number and does not include or reveal the credit or debit card account number associated with the designated unique account identifier; receive a payment request message from the merchant'"'"'s payment application through the at least one interface, the payment request message comprising; a second merchant identifier; a second transaction specific information selected from the group consisting of a second transaction amount and second client reference identifier; and a second transaction specific authentication credential whereby the second authentication credential was received by the merchant application from the credit or debit card account holder'"'"'s mobile device; and validate the credit or debit card account holder'"'"'s request to use the credit or debit card account number associated with the designated unique account identifier for payment to the specific merchant for the specific transaction and authorize the resource provider to use the credit or debit card account number associated with the designated unique account identifier to pay a specific merchant for a specific transaction without transmitting or otherwise providing the credit or bank account number to the specific merchant by determining if; the first merchant identifier matches the second merchant identifier; the first transaction specific information matches the second transaction specific information; and the first transaction specific authentication credential matches the second transaction specific authentication credential. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
Specification