System and method for securely validating transactions

US 10,373,138 B2
Filed: 04/07/2011
Issued: 08/06/2019
Est. Priority Date: 04/09/2010
Status: Active Grant

First Claim

Patent Images

1. A server computer comprising:

a processor; and

a non-transitory computer readable storage medium coupled to the processor having code stored thereon which is executable by the processor for implementing a method, the method comprising;

in a first transaction,receiving a first authorization request message for the first transaction at the server computer, the first authorization request message comprising a first account identifier associated with a credit or debit account, and a first dynamic verification value;

determining, by the server computer that the first dynamic verification value is valid;

generating, by the server computer, a second authorization request message, based on the first authorization request message, comprising the first account identifier, a validation indicator indicating that the first dynamic verification value is valid, and a static verification value that replaces the first dynamic verification value;

sending the second authorization request message including the first account identifier, the static verification value, and the validation indicator to a first issuer computer operated by a first issuer of the first account identifier; and

receiving, from the first issuer computer, an authorization response message for the first transaction, the authorization response message for the first transaction generated based on the validation indicator;

in a second transaction,receiving, at the server computer, a first authorization request message for the second transaction comprising a second account identifier and a second dynamic verification value;

determining, by the server computer, that the second dynamic verification value is not valid, the second dynamic verification value being stored in a data field reserved for static verification values of the first authorization request message for the second transaction;

in response to determining that the second dynamic verification value is not valid, sending, to a second issuer computer operated by a second issuer of the second account identifier, the second dynamic verification value in the data field reserved for static verification values of the first authorization request message for the second transaction; and

receiving, from the second issuer computer, an authorization response message for the second transaction indicating that the second transaction is denied, because the second dynamic verification value that was received by the second issuer computer was not a correct static verification value associated with the second account identifier.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Systems and methods for validating and processing payment transactions are disclosed. In the embodiments of the invention a first authorization request message and a first verification value are received at a server computer. The verification value is validated and a second authorization request message with a second verification value is generated. The first verification value may be a dynamic value and the second verification value may be static value. The second verification value is associated with portable device used to perform a transaction and it is what the issuer computers of the portable device expect to receive as part of an authorization request message in a payment transaction.

38 Citations

View as Search Results

23 Claims

1. A server computer comprising:
- a processor; and
  
  a non-transitory computer readable storage medium coupled to the processor having code stored thereon which is executable by the processor for implementing a method, the method comprising;
  
  in a first transaction,receiving a first authorization request message for the first transaction at the server computer, the first authorization request message comprising a first account identifier associated with a credit or debit account, and a first dynamic verification value;
  
  determining, by the server computer that the first dynamic verification value is valid;
  
  generating, by the server computer, a second authorization request message, based on the first authorization request message, comprising the first account identifier, a validation indicator indicating that the first dynamic verification value is valid, and a static verification value that replaces the first dynamic verification value;
  
  sending the second authorization request message including the first account identifier, the static verification value, and the validation indicator to a first issuer computer operated by a first issuer of the first account identifier; and
  
  receiving, from the first issuer computer, an authorization response message for the first transaction, the authorization response message for the first transaction generated based on the validation indicator;
  
  in a second transaction,receiving, at the server computer, a first authorization request message for the second transaction comprising a second account identifier and a second dynamic verification value;
  
  determining, by the server computer, that the second dynamic verification value is not valid, the second dynamic verification value being stored in a data field reserved for static verification values of the first authorization request message for the second transaction;
  
  in response to determining that the second dynamic verification value is not valid, sending, to a second issuer computer operated by a second issuer of the second account identifier, the second dynamic verification value in the data field reserved for static verification values of the first authorization request message for the second transaction; and
  
  receiving, from the second issuer computer, an authorization response message for the second transaction indicating that the second transaction is denied, because the second dynamic verification value that was received by the second issuer computer was not a correct static verification value associated with the second account identifier.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 9, 10, 11, 12, 13, 14, 22, 23)
- - 2. The server computer of claim 1, wherein the static verification value is generated based on transaction data in the first authorization request message for the first transaction.
  - 3. The server computer of claim 1, wherein the static verification value is associated with a portable device.
  - 4. The server computer of claim 1, wherein the first authorization request message for the first transaction includes data associated with a portable device.
  - 5. The server computer of claim 4, wherein the portable device is a payment card.
  - 6. The server computer of claim 4, wherein the portable device is a mobile phone.
  - 7. The server computer of claim 1, wherein the second authorization request message for the first transaction is in a magnetic stripe data format.
  - 9. The server computer of claim 1, wherein the first authorization request message for the first transaction is received from a first communication channel.
  - 10. The server computer of claim 9, wherein the second authorization request message for the first transaction is sent via a second communication channel different from the first communication channel to the first issuer computer.
  - 11. The server computer of claim 9, wherein the first communication channel is configured to establish communication between a client computer and an IP Gateway server computer coupled to a payment processing network comprising the server computer.
  - 12. The server computer of claim 10, wherein the second communication channel is configured to establish communication between a payment processing network comprising the server computer and the first issuer computer.
  - 13. The server computer of claim 1, wherein the first dynamic verification value is placed in a field of the first authorization request message for the first transaction reserved for the static verification value.
  - 14. The server computer of claim 1, wherein the static verification value in the second authorization request message for the first transaction is generated in a format that can be processed by the first issuer computer.
  - 22. A system comprising the server computer of claim 1;
    - and the first issuer computer and the second issuer computer in communication with the server computer.
  - 23. The system of claim 22, wherein the server computer is in a payment processing network.

8. A method comprising:
- in a first transaction,receiving a first authorization request message for the first transaction at a server computer, the first authorization request message comprising a first account identifier associated with a credit or debit account, and a first dynamic verification value;
  
  determining, by the server computer that the first dynamic verification value is valid;
  
  generating, by the server computer, a second authorization request message, based on the first authorization request message, comprising the first account identifier, a validation indicator indicating that the first dynamic verification value is valid, and a static verification value that replaces the first dynamic verification value;
  
  sending the second authorization request message including the first account identifier, the static verification value, and the validation indicator to a first issuer computer operated by a first issuer of the first account identifier; and
  
  receiving, from the first issuer computer, an authorization response message for the first transaction, the authorization response message for the first transaction generated based on the validation indicator;
  
  in a second transaction,receiving, at the server computer, a first authorization request message for the second transaction comprising a second account identifier and a second dynamic verification value;
  
  determining, by the server computer, that the second dynamic verification value is not valid, the second dynamic verification value being stored in a data field reserved for static verification values of the first authorization request message for the second transaction;
  
  in response to determining that the second dynamic verification value is not valid, sending, to a second issuer computer operated by a second issuer of the second account identifier, the second dynamic verification value in the data field reserved for static verification values of the first authorization request message for the second transaction; and
  
  receiving, from the second issuer computer, an authorization response message for the second transaction indicating that the second transaction is denied, because the second dynamic verification value that was received by the second issuer computer was not a correct static verification value associated with the second account identifier.
- View Dependent Claims (15, 16, 17, 18, 19, 20, 21)
- - 15. The method of claim 8 further comprising:
    - generating, by the server computer, the static verification value.
  - 16. The method of claim 8, wherein the first authorization request message for the first transaction is received from a merchant computer, which receives the first dynamic verification value and the first account identifier from a client computer operated by a user, after the client computer receives the static verification value from a portable device used by the user.
  - 17. The method of claim 8, wherein the first authorization request message is received from a merchant computer, which receives the first dynamic verification value and the first account identifier from a client computer operated by a user, after the client computer receives the first account identifier and the static verification value from a portable device used by the user using a verification token.
  - 18. The method of claim 17, wherein the client computer transmits the first account identifier and the static verification value that is received from the portable device to a gateway computer, wherein the gateway computer evaluates the static verification value and the first account identifier, generates the first dynamic verification value, and transmits the first dynamic verification value to the client computer.
  - 19. The method of claim 8, wherein the first dynamic verification value is a dCVV2 value and the static verification value is a CVV2 value.
  - 20. The method of claim 8, wherein the server computer is in a payment processing network.
  - 21. The method of claim 8, wherein the first authorization request message and the second authorization request message in the first transaction are ISO 8583 messages.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Visa International Service Association (Visa, Inc.)
Original Assignee
Visa International Service Association (Visa, Inc.)
Inventors
Hammad, Ayman
Primary Examiner(s)
Sigmond, Bennett M
Assistant Examiner(s)
Cunningham, II, Gregory S

Application Number

US13/081,871
Publication Number

US 20110270757A1
Time in Patent Office

3,043 Days
Field of Search
US Class Current
CPC Class Codes

G06Q 20/12   specially adapted for elect...

G06Q 20/385   using an alias or single-us...

G06Q 20/4018   using the card verification...

G06Q 20/425   using two different network...

G06Q 30/06   Buying, selling or leasing ...

H04L 2209/56   Financial cryptography, e.g...

H04L 9/3234   involving additional secure...

System and method for securely validating transactions

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

38 Citations

23 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for securely validating transactions

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

38 Citations

23 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links