System and method for securely validating transactions
First Claim
Patent Images
1. A server computer comprising:
- a processor; and
a non-transitory computer readable storage medium coupled to the processor having code stored thereon which is executable by the processor for implementing a method, the method comprising;
in a first transaction,receiving a first authorization request message for the first transaction at the server computer, the first authorization request message comprising a first account identifier associated with a credit or debit account, and a first dynamic verification value;
determining, by the server computer that the first dynamic verification value is valid;
generating, by the server computer, a second authorization request message, based on the first authorization request message, comprising the first account identifier, a validation indicator indicating that the first dynamic verification value is valid, and a static verification value that replaces the first dynamic verification value;
sending the second authorization request message including the first account identifier, the static verification value, and the validation indicator to a first issuer computer operated by a first issuer of the first account identifier; and
receiving, from the first issuer computer, an authorization response message for the first transaction, the authorization response message for the first transaction generated based on the validation indicator;
in a second transaction,receiving, at the server computer, a first authorization request message for the second transaction comprising a second account identifier and a second dynamic verification value;
determining, by the server computer, that the second dynamic verification value is not valid, the second dynamic verification value being stored in a data field reserved for static verification values of the first authorization request message for the second transaction;
in response to determining that the second dynamic verification value is not valid, sending, to a second issuer computer operated by a second issuer of the second account identifier, the second dynamic verification value in the data field reserved for static verification values of the first authorization request message for the second transaction; and
receiving, from the second issuer computer, an authorization response message for the second transaction indicating that the second transaction is denied, because the second dynamic verification value that was received by the second issuer computer was not a correct static verification value associated with the second account identifier.
1 Assignment
0 Petitions
Accused Products
Abstract
Systems and methods for validating and processing payment transactions are disclosed. In the embodiments of the invention a first authorization request message and a first verification value are received at a server computer. The verification value is validated and a second authorization request message with a second verification value is generated. The first verification value may be a dynamic value and the second verification value may be static value. The second verification value is associated with portable device used to perform a transaction and it is what the issuer computers of the portable device expect to receive as part of an authorization request message in a payment transaction.
-
Citations
23 Claims
-
1. A server computer comprising:
-
a processor; and a non-transitory computer readable storage medium coupled to the processor having code stored thereon which is executable by the processor for implementing a method, the method comprising; in a first transaction, receiving a first authorization request message for the first transaction at the server computer, the first authorization request message comprising a first account identifier associated with a credit or debit account, and a first dynamic verification value; determining, by the server computer that the first dynamic verification value is valid; generating, by the server computer, a second authorization request message, based on the first authorization request message, comprising the first account identifier, a validation indicator indicating that the first dynamic verification value is valid, and a static verification value that replaces the first dynamic verification value; sending the second authorization request message including the first account identifier, the static verification value, and the validation indicator to a first issuer computer operated by a first issuer of the first account identifier; and receiving, from the first issuer computer, an authorization response message for the first transaction, the authorization response message for the first transaction generated based on the validation indicator; in a second transaction, receiving, at the server computer, a first authorization request message for the second transaction comprising a second account identifier and a second dynamic verification value; determining, by the server computer, that the second dynamic verification value is not valid, the second dynamic verification value being stored in a data field reserved for static verification values of the first authorization request message for the second transaction; in response to determining that the second dynamic verification value is not valid, sending, to a second issuer computer operated by a second issuer of the second account identifier, the second dynamic verification value in the data field reserved for static verification values of the first authorization request message for the second transaction; and receiving, from the second issuer computer, an authorization response message for the second transaction indicating that the second transaction is denied, because the second dynamic verification value that was received by the second issuer computer was not a correct static verification value associated with the second account identifier. - View Dependent Claims (2, 3, 4, 5, 6, 7, 9, 10, 11, 12, 13, 14, 22, 23)
-
-
8. A method comprising:
-
in a first transaction, receiving a first authorization request message for the first transaction at a server computer, the first authorization request message comprising a first account identifier associated with a credit or debit account, and a first dynamic verification value; determining, by the server computer that the first dynamic verification value is valid; generating, by the server computer, a second authorization request message, based on the first authorization request message, comprising the first account identifier, a validation indicator indicating that the first dynamic verification value is valid, and a static verification value that replaces the first dynamic verification value; sending the second authorization request message including the first account identifier, the static verification value, and the validation indicator to a first issuer computer operated by a first issuer of the first account identifier; and receiving, from the first issuer computer, an authorization response message for the first transaction, the authorization response message for the first transaction generated based on the validation indicator; in a second transaction, receiving, at the server computer, a first authorization request message for the second transaction comprising a second account identifier and a second dynamic verification value; determining, by the server computer, that the second dynamic verification value is not valid, the second dynamic verification value being stored in a data field reserved for static verification values of the first authorization request message for the second transaction; in response to determining that the second dynamic verification value is not valid, sending, to a second issuer computer operated by a second issuer of the second account identifier, the second dynamic verification value in the data field reserved for static verification values of the first authorization request message for the second transaction; and receiving, from the second issuer computer, an authorization response message for the second transaction indicating that the second transaction is denied, because the second dynamic verification value that was received by the second issuer computer was not a correct static verification value associated with the second account identifier. - View Dependent Claims (15, 16, 17, 18, 19, 20, 21)
-
Specification