Mobile authentication for web payments using single sign on credentials
First Claim
Patent Images
1. A method comprising:
- receiving at a proxy server, from a server hosting a website, a request for authentication of a mobile device for payment, the request being sent via a computer device accessing the website, the request including a geographical location of the computer device;
identifying the mobile device based on a geographical proximity of the mobile device to the geographical location of the computer device and determining that the mobile device runs a mobile payment application;
identifying a mobile directory number (MDN) associated with the identified mobile device;
authenticating the mobile device associated with the MDN at the proxy server;
responsive to the request for authentication, sending from the proxy server to the website a challenge for authentication, for providing to the computer device accessing the website;
receiving at the proxy server, from the mobile device associated with the MDN, via a user interface of the mobile device, a response to the challenge for authentication, the mobile device being other than the computer device accessing the website;
verifying, at the proxy server, that the response to the challenge for authentication is a valid response; and
upon verifying the response is the valid response, transmitting from the proxy server to the web site a payment information associated with the MDN.
1 Assignment
0 Petitions
Accused Products
Abstract
Systems and methods for mobile authentication for web payments are disclosed. In some implementations, a proxy server receives, from a computing device different from a mobile device, a request from a user to process a web payment via a payment account associated with the mobile device, the web payment being associated with an online merchant. The proxy server verifies that the mobile device is associated with the user. The proxy server transmits, to a commerce server of the online merchant, payment information for the web payment in response to verifying that the mobile device is associated with the user.
-
Citations
18 Claims
-
1. A method comprising:
-
receiving at a proxy server, from a server hosting a website, a request for authentication of a mobile device for payment, the request being sent via a computer device accessing the website, the request including a geographical location of the computer device; identifying the mobile device based on a geographical proximity of the mobile device to the geographical location of the computer device and determining that the mobile device runs a mobile payment application; identifying a mobile directory number (MDN) associated with the identified mobile device; authenticating the mobile device associated with the MDN at the proxy server; responsive to the request for authentication, sending from the proxy server to the website a challenge for authentication, for providing to the computer device accessing the website; receiving at the proxy server, from the mobile device associated with the MDN, via a user interface of the mobile device, a response to the challenge for authentication, the mobile device being other than the computer device accessing the website; verifying, at the proxy server, that the response to the challenge for authentication is a valid response; and upon verifying the response is the valid response, transmitting from the proxy server to the web site a payment information associated with the MDN. - View Dependent Claims (2, 3, 4)
-
-
5. A method comprising:
-
receiving, at a website hosted by a server and integrated with a mobile communication network payment application interface, a checkout request from a user accessing the website with a computing device, having a mobile account with a mobile communication network; presenting on the website a user interface for a user of the computing device accessing the website to select the mobile communication network payment application interface for using the user'"'"'s mobile account with the mobile communication network for a payment; receiving a geographical location of the computing device to help identify a mobile directory number (MDN) associated with the user'"'"'s mobile account, where the MDN is identified based on a geographical proximity of a mobile device to the geographical location of the computing device and determining that the mobile device runs the mobile communication network payment application interface; upon the website receiving from the computing device, through the user interface, the user selection of the mobile communication network payment application interface, sending from the website to a server of the mobile communication network a challenge for authentication, for the server to communicate to and cause to be presented on a user interface of the mobile device associated with the MDN, the mobile device being different than the computing device accessing the website; receiving, at the website, from the server of the mobile communication network, an indication of a response to the challenge for authentication having been entered at of the user interface of the mobile device associated with the MDN in response to the presenting on the mobile device of the challenge for authentication; and upon verifying at the website, from the indication of the response to the challenge for authentication received from the server of the mobile communication network server, that the response is correct, enabling the user to input information, through the website, to finalize the checkout and pay for purchased items using the user'"'"'s mobile account with the mobile communication network. - View Dependent Claims (6, 7, 8, 9)
-
-
10. A method comprising:
-
receiving, at a proxy server, from a computing device different from a mobile device, a request from a user to process a web payment via a payment account associated with the mobile device, the web payment being associated with an online website and the request including a geographical location of computing device; identifying the mobile device based on a geographical proximity of the mobile device to the geographical location of the computer device and determining that the mobile device runs a mobile payment application; identifying a mobile directory number (MDN) associated with the identified mobile device; verifying, at the proxy server, that the mobile device associated with the MDN is associated with the user; and transmitting, from the proxy server to a server of the online website, payment information for the web payment in response to verifying that the mobile device is associated with the user; wherein the MDN is entered at a user interface of the computing device presented to the user. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
-
Specification