Dynamic number authentication for credit/debit cards
First Claim
1. A method for conducting commercial transactions, the method comprising:
- by a transaction device;
receiving a selection of an account selection button from a plurality of account selection buttons of the transaction device, each of the plurality of account selection buttons assigned a unique account for conducting commercial transactions;
selecting a unique account identifier number representing the unique account assigned to the account selection button;
dispensing a next unused random number from a set of random numbers stored in a memory of the transaction device, the set of random numbers stored in the memory of the transaction device including a plurality of random numbers, being independent of the unique account identifier number, and being determined before dispensing any random number from the set of random numbers stored in the memory of the transaction device; and
displaying the dispensed next unused random number and the unique account identifier number on a display of the transaction device; and
by the external authentication system;
accepting the commercial transaction in response to the dispensed next unused random number matching a next unused random number of a set of random numbers stored on the external authentication system, the set of random numbers stored on the external authentication system being the same as the set of random numbers stored on the transaction device after synchronization of the transaction device with the external authentication system; and
rejecting the commercial transaction in response to the dispensed next unused random number failing to match the next unused random number of the set of random numbers stored on the external authentication system.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and apparatus for conducting a commercial transaction over the Internet or other network connection are provided. Random numbers, which are unique for each user session, are pre-loaded onto a handheld, portable device, or token The random numbers are generated by external systems and delivered to the token for storage an internal memory and to a database accessible by an authentication system. The random numbers are dispensed by the token to a user by pressing a button on the token or otherwise signaling the token. A dispensed number is cross referenced, by the authentication system, to the database. The dispensed number authenticates the user or transaction.
44 Citations
10 Claims
-
1. A method for conducting commercial transactions, the method comprising:
-
by a transaction device; receiving a selection of an account selection button from a plurality of account selection buttons of the transaction device, each of the plurality of account selection buttons assigned a unique account for conducting commercial transactions; selecting a unique account identifier number representing the unique account assigned to the account selection button; dispensing a next unused random number from a set of random numbers stored in a memory of the transaction device, the set of random numbers stored in the memory of the transaction device including a plurality of random numbers, being independent of the unique account identifier number, and being determined before dispensing any random number from the set of random numbers stored in the memory of the transaction device; and displaying the dispensed next unused random number and the unique account identifier number on a display of the transaction device; and by the external authentication system; accepting the commercial transaction in response to the dispensed next unused random number matching a next unused random number of a set of random numbers stored on the external authentication system, the set of random numbers stored on the external authentication system being the same as the set of random numbers stored on the transaction device after synchronization of the transaction device with the external authentication system; and rejecting the commercial transaction in response to the dispensed next unused random number failing to match the next unused random number of the set of random numbers stored on the external authentication system. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
Specification