Location based authentication

US 10,163,100 B2
Filed: 06/23/2017
Issued: 12/25/2018
Est. Priority Date: 10/25/2007
Status: Active Grant

First Claim

Patent Images

1. A method for conducting a transaction, the method comprising:

receiving, at a server, first location information associated with a location of a mobile communication device of a consumer during a transaction conducted with a merchant;

receiving, at the server, second location information associated with a geographic location of the merchant at a time of the transaction, wherein the second location information is transferred from the merchant to the mobile communication device during the transaction, and wherein the second location information is then forwarded to the server from the mobile communication device instead of from an access device operated by the merchant;

using the server, determining that a portable consumer device held by the consumer is authentic when the first location information matches the second location information; and

wherein the first location information and the second location information are received from the mobile communication device held by the consumer, and wherein the second location information is provided to the mobile communication device directly from the access device operated by the merchant.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A portable consumer device that is used to conduct a transaction at a merchant is authenticated. Information provided to a server computer includes locations of a merchant and a mobile communication device possessed by a consumer. If the location of the mobile communication device corresponds to the location of the merchant, the portable consumer device that is used to conduct the transaction is authenticated.

181 Citations

20 Claims

1. A method for conducting a transaction, the method comprising:
- receiving, at a server, first location information associated with a location of a mobile communication device of a consumer during a transaction conducted with a merchant;
  
  receiving, at the server, second location information associated with a geographic location of the merchant at a time of the transaction, wherein the second location information is transferred from the merchant to the mobile communication device during the transaction, and wherein the second location information is then forwarded to the server from the mobile communication device instead of from an access device operated by the merchant;
  
  using the server, determining that a portable consumer device held by the consumer is authentic when the first location information matches the second location information; and
  
  wherein the first location information and the second location information are received from the mobile communication device held by the consumer, and wherein the second location information is provided to the mobile communication device directly from the access device operated by the merchant.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The method of claim 1 wherein the mobile communication device is also the portable consumer device.
  - 3. The method of claim 1, wherein the geographic location is a second location, which is a particular merchant location, and wherein the method further comprises:
    - in the event that a subsequent transaction is initiated using a different portable consumer device at a different merchant at a different merchant location, determining that the different portable consumer device is authentic based on at least one of a distance between the particular merchant location and the different merchant location and an amount of time elapsed between the transaction at the particular merchant location and the subsequent transaction at the different merchant location.
  - 4. The method of claim 1 further comprising:
    - sending a message to the merchant indicating that the portable consumer device is authentic.
  - 5. The method of claim 1 further comprising:
    - determining that a subsequent transaction is authentic using the first location information and the second location information.
  - 6. The method of claim 1, wherein the second location information is encrypted at the merchant using an electronic signature before it is transferred to the mobile communication device.
  - 7. The method of claim 1, further comprising:
    - contacting the consumer to authenticate when the first location information and the second location information do not match.
  - 8. The method of claim 1, further comprising:
    - authenticating the consumer with the mobile communication device before initiating the transaction with the merchant.
  - 9. The method of claim 1, wherein the second location information is generated by the access device operated by the merchant, and wherein the first location information and the second location information are received at the server in a same authorization request message forwarded by the consumer'"'"'s mobile communication device.

10. A server comprising:
- a processor; and
  
  a computer readable medium, the computer readable medium comprising code, executable by the processor, to implement a method comprising;
  
  receiving first location information associated with a location of a mobile communication device of a consumer during a transaction conducted with a merchant;
  
  receiving second location information associated with a fixed geographic location of the merchant at a time of the transaction, wherein the second location information is transferred from the merchant to the mobile communication device during the transaction, and wherein the second location information is then forwarded to the server from the mobile communication device instead of from an access device operated by the merchant;
  
  determining that a portable consumer device held by the consumer is authentic when the first location information matches the second location information; and
  
  wherein the first location information and the second location information are received from the mobile communication device held by the consumer, and wherein the second location information is provided to the mobile communication device directly from the access device operated by the merchant.
- View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
- - 11. The server of claim 10 wherein the mobile communication device is also the portable consumer device.
  - 12. The server of claim 10, wherein the fixed geographic location is a second location, which is a particular merchant location, and wherein the method further comprises:
    - in the event that a subsequent transaction is initiated using a different portable consumer device at a different merchant at a different merchant location, determining that the different portable consumer device is authentic based on at least one of a distance between the particular merchant location and the different merchant location and an amount of time elapsed between the transaction at the particular merchant location and the subsequent transaction at the different merchant location.
  - 13. The server of claim 10, wherein the method further comprises:
    - sending a message to the merchant indicating that the portable consumer device is authentic.
  - 14. The server of claim 10, wherein the method further comprises:
    - determining that a subsequent transaction is authentic using the first location information and the second location information.
  - 15. The server of claim 10, wherein the second location information is encrypted at the merchant using an electronic signature before it is transferred to the mobile communication device.
  - 16. The server of claim 10, wherein the method further comprises:
    - contacting the consumer to authenticate when the first location information and the second location information do not match.
  - 17. The server of claim 10, wherein the method further comprises:
    - authenticating the consumer with the mobile communication device before initiating the transaction with the merchant.
  - 18. The server of claim 10, wherein the second location information is generated by the access device operated by the merchant, and wherein the first location information and the second location information are received at the server in a same authorization request message forwarded by the mobile communication device.

19. A method for conducting a transaction, the method comprising:
- providing first location information to a server computer, wherein the first location information corresponds to a location of a mobile communication device held by a consumer during a transaction conducted with a merchant; and
  
  providing second location information to the server computer, wherein the second location information corresponds to a geographic location of the merchant at a time of the transaction, wherein the second location information is transferred from the merchant to the consumer'"'"'s mobile communication device during the transaction and is thereafter forwarded to the server computer from the mobile communication device instead of from the merchant,wherein the server computer is configured to determine that a portable consumer device used in the transaction is authentic when the first location information matches with the second location information; and
  
  wherein the second location information is generated by an access device operated by the merchant, andthe first location information and the second location information are received from the mobile communication device, wherein the second location information is provided to the mobile communication device directly from the access device operated by the merchant.
- View Dependent Claims (20)
- - 20. The method of claim 19 wherein the first location information comprises global positioning system information associated with the mobile communication device, and wherein the second location information comprises a merchant identifier received in an authorization request message from the access device of the merchant that is conducting the transaction.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Visa International Service Association (Visa, Inc.)
Original Assignee
Visa International Service Association (Visa, Inc.)
Inventors
Hammad, Ayman, Faith, Patrick
Primary Examiner(s)
Marcus, Leland

Application Number

US15/632,189
Publication Number

US 20170286953A1
Time in Patent Office

550 Days
Field of Search

None
US Class Current
CPC Class Codes

G06Q 10/087   Inventory or stock manageme...

G06Q 20/10   specially adapted for elect...

G06Q 20/102   Bill distribution or payments

G06Q 20/20   Point-of-sale [POS] network...

G06Q 20/32   using wireless devices

G06Q 20/3223   Realising banking transacti...

G06Q 20/3224   Transactions dependent on l...

G06Q 20/3274   using a pictured code, e.g....

G06Q 20/3276   using a pictured code, e.g....

G06Q 20/3825   Use of electronic signatures

G06Q 20/387   Payment using discounts or ...

G06Q 20/40   Authorisation, e.g. identif...

G06Q 20/4015   using location information

G06Q 30/00   Commerce

G06Q 30/0212   Chance discounts or incentives

G06Q 30/0215   Including financial accounts

G06Q 30/0601   Electronic shopping [e-shop...

G06Q 40/00   Finance; Insurance; Tax str...

G06Q 40/03   Credit; Loans; Processing t...

G06Q 40/12   Accounting

G06Q 40/128 : Check-book balancing, updat...

H04L 63/18 : using different networks or...

View All

Location based authentication

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

181 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Location based authentication

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

181 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links