Selective authorization method and system

US 10,282,710 B2
Filed: 06/13/2012
Issued: 05/07/2019
Est. Priority Date: 06/13/2011
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

receiving, by a mobile gateway from a mobile communication device, a time window specified by a consumer during which the consumer does not have to re-enter a passcode for each transaction after a payment application in the mobile communication device has verified the consumer'"'"'s passcode, the time window including a start time point and an end time point;

receiving, by the mobile gateway from the mobile communication device comprising the payment application over a first network, a validation message that includes an indication that the payment application has verified the consumer'"'"'s passcode, an account identifier, and a timestamp when the passcode was entered into the mobile communication device;

storing, by the mobile gateway in a database, the validation message including the indication that the payment application has verified the consumer'"'"'s passcode, the account identifier, and the timestamp when the passcode was entered into the mobile communication device;

receiving, by a payment processing network, a first authorization request message comprising the account identifier from a first access device over a second network, after the first access device interacts with the mobile communication device during a first transaction;

querying, the mobile gateway by the payment processing network, to determine if the consumer'"'"'s passcode has been validated;

searching, by the mobile gateway, the database using the account identifier received in the first authorization request message from the first access device;

determining, as a result of searching the database by the mobile gateway, that the validation message associated with the mobile communication device has been received indicating that the payment application has verified the consumer'"'"'s passcode;

determining, by the mobile gateway, that the first transaction is occurring within the time window after the timestamp;

receiving, by the payment processing network from the mobile gateway, the indication that the payment application has verified the consumer'"'"'s passcode has been received, and a determination that the validation message with the indication that the payment application has verified the consumer'"'"'s passcode has been received and that the first transaction is occurring during the time window;

modifying, by the payment processing network, the first authorization request message based on a determination that the validation message with the indication that the payment application has verified the consumer'"'"'s passcode has been received and that the first transaction is occurring during the time window by including the indication that the payment application has verified the consumer'"'"'s passcode in the first authorization request message to form a modified first authorization request message;

transmitting, by the payment processing network, the modified first authorization request message to an issuer computer for authorization;

receiving, by the payment processing network, a second authorization request message from a second access device, after the second access device interacts with the mobile communication device during a second transaction, and wherein the consumer did not re-enter the passcode into the payment application to conduct the second transaction;

determining, by the mobile gateway, that the second transaction occurs within the time window;

receiving, by the payment processing network from the mobile gateway, the determination that the second transaction occurs within the time window;

modifying, by the payment processing network, the second authorization request message based on the determination that the second transaction occurs within the time window by including the indication that the payment application has verified the consumer'"'"'s passcode in the second authorization request message to form a modified second authorization request message; and

transmitting, by the payment processing network, the modified second authorization request message to the issuer computer for authorization.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Embodiments of the invention generally relate to mobile payments. For example, an application running on a phone can verify a passcode of a consumer. An indication of whether the passcode was verified and a time associated with when the passcode was verified is then sent to a mobile gateway. Later, when a user conducts one or more transactions, a payment processing network can use the indication sent to the mobile gateway to determine whether a the one or more transactions were conducted within a time window, which can be used to authorize the one or more transactions.

Citations

15 Claims

1. A method comprising:
- receiving, by a mobile gateway from a mobile communication device, a time window specified by a consumer during which the consumer does not have to re-enter a passcode for each transaction after a payment application in the mobile communication device has verified the consumer'"'"'s passcode, the time window including a start time point and an end time point;
  
  receiving, by the mobile gateway from the mobile communication device comprising the payment application over a first network, a validation message that includes an indication that the payment application has verified the consumer'"'"'s passcode, an account identifier, and a timestamp when the passcode was entered into the mobile communication device;
  
  storing, by the mobile gateway in a database, the validation message including the indication that the payment application has verified the consumer'"'"'s passcode, the account identifier, and the timestamp when the passcode was entered into the mobile communication device;
  
  receiving, by a payment processing network, a first authorization request message comprising the account identifier from a first access device over a second network, after the first access device interacts with the mobile communication device during a first transaction;
  
  querying, the mobile gateway by the payment processing network, to determine if the consumer'"'"'s passcode has been validated;
  
  searching, by the mobile gateway, the database using the account identifier received in the first authorization request message from the first access device;
  
  determining, as a result of searching the database by the mobile gateway, that the validation message associated with the mobile communication device has been received indicating that the payment application has verified the consumer'"'"'s passcode;
  
  determining, by the mobile gateway, that the first transaction is occurring within the time window after the timestamp;
  
  receiving, by the payment processing network from the mobile gateway, the indication that the payment application has verified the consumer'"'"'s passcode has been received, and a determination that the validation message with the indication that the payment application has verified the consumer'"'"'s passcode has been received and that the first transaction is occurring during the time window;
  
  modifying, by the payment processing network, the first authorization request message based on a determination that the validation message with the indication that the payment application has verified the consumer'"'"'s passcode has been received and that the first transaction is occurring during the time window by including the indication that the payment application has verified the consumer'"'"'s passcode in the first authorization request message to form a modified first authorization request message;
  
  transmitting, by the payment processing network, the modified first authorization request message to an issuer computer for authorization;
  
  receiving, by the payment processing network, a second authorization request message from a second access device, after the second access device interacts with the mobile communication device during a second transaction, and wherein the consumer did not re-enter the passcode into the payment application to conduct the second transaction;
  
  determining, by the mobile gateway, that the second transaction occurs within the time window;
  
  receiving, by the payment processing network from the mobile gateway, the determination that the second transaction occurs within the time window;
  
  modifying, by the payment processing network, the second authorization request message based on the determination that the second transaction occurs within the time window by including the indication that the payment application has verified the consumer'"'"'s passcode in the second authorization request message to form a modified second authorization request message; and
  
  transmitting, by the payment processing network, the modified second authorization request message to the issuer computer for authorization.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
- - 2. The method of claim 1, further comprising:
    - receiving, by the payment processing network, a third authorization request message from a third access device, after the third access device interacts with the mobile communication device during a third transaction, and wherein the consumer did not re-enter the passcode into payment application to conduct the third transaction;
      
      determining, by the mobile gateway, that the third transaction does not occur within the time window; and
      
      denying, by the payment processing network, the third transaction.
  - 3. The method of claim 1 wherein the mobile communication device is a mobile phone with a first contactless element, and wherein the access device comprises a second contactless element.
  - 4. The method of claim 1, wherein the payment processing network is configured to process credit and debit card transaction and wherein the first authorization request message is for a first credit or debit card transaction.
  - 5. The method of claim 1, wherein the payment processing network is configured to perform authorization and clearing and settlement processing.
  - 6. The method of claim 1 wherein the account identifier is a credit or debit card account number.
  - 7. The method of claim 1 further comprising:
    - receiving, at the payment processing network, an authorization response message indicating whether the first transaction is authorized.
  - 8. The method of claim 7 whereinmodifying the first authorization request message comprises modifying the first authorization request message to also include the timestamp when the passcode was entered into the mobile communication device, and the time window.
  - 9. The method of claim 1 wherein the first and second access devices are first and second point of sale terminals, respectively.
  - 10. The method of claim 1 wherein the timestamp includes an absolute time.
  - 11. The method of claim 1 further comprising:
    - sending the modified first authorization request message to an issuer.
  - 12. The method of claim 1 wherein the first authorization request message and the second authorization request message are ISO 8583 messages.
  - 13. The method of claim 1 wherein the passcode is a PIN.
  - 14. The method of claim 1 wherein the mobile communication device and the first access device interact with each other using near field communications (NFC).
  - 15. The method of claim 1 wherein the first authorization request message is received by the payment processing network via an acquirer computer.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Visa International Service Association (Visa, Inc.)
Original Assignee
Visa International Service Association (Visa, Inc.)
Inventors
Wong, Erick
Primary Examiner(s)
Qayyum, Zeshan

Application Number

US13/517,512
Publication Number

US 20120317025A1
Time in Patent Office

2,519 Days
Field of Search

705 75
US Class Current
CPC Class Codes

G06Q 20/027   involving a payment switch ...

G06Q 20/3223   Realising banking transacti...

G06Q 20/326   Payment applications instal...

G06Q 20/4012   Verifying personal identifi...

Selective authorization method and system

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

15 Claims

Specification

Solutions

Use Cases

Quick Links

Selective authorization method and system

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

15 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links