Authorizing a payment transaction using seasoned data
First Claim
1. A method of processing payment transactions conducted by a consumer, comprising:
- receiving a first authorization request message for a first payment transaction at a payment processing network or an issuer computer of a payment transaction authorization network from a first terminal in a first node comprising a first merchant processing system, the payment processing network or the issuer computer configured to perform a first payment transaction authorization operation for the first payment transaction, wherein the first authorization request message was generated by the first terminal, and wherein the first authorization request message passes through a first acquirer computer prior to being received at the payment processing network or the issuer computer;
identifying, by the payment processing network or the issuer computer, a trusted node indicator in the first authorization request message;
determining, by the payment processing network or the issuer computer based on the trusted node indicator in the first authorization request message, that the first node that transmitted the first authorization request message is a trusted node;
prior to authorizing the first payment transaction by the issuer computer, by-passing performing a consumer authentication by the payment processing network or the issuer computer based, at least in part, on the trusted node indicator, wherein the payment processing network or the issuer computer relies upon consumer authentication assertion of the trusted node;
updating, by the payment processing network or the issuer computer, a record associated with the consumer at a database of the payment processing network or the issuer computer to indicate that the consumer is an authenticated consumer based on the consumer authentication performed by the first node;
authorizing the first payment transaction at the payment processing network or the issuer computer without requiring, from the consumer, authentication data that would otherwise be requested in a payment transaction that was not processed by the trusted node, wherein the first payment transaction is authorized based on the first node comprising the first merchant processing system being the trusted node;
sending, from the payment processing network or the issuer computer to the first node, a first authorization response message indicating that the first payment transaction is authorized;
receiving a second authorization request message for a second payment transaction at the payment processing network or the issuer computer of the payment transaction authorization network from a second terminal in a second node comprising a second merchant processing system, the payment processing network or the issuer computer configured to perform a second payment transaction authorization operation for the second payment transaction, wherein the second authorization request message was generated by the second terminal, and wherein the second authorization request message passes through a second acquirer computer prior to being received at the payment processing network or the issuer computer;
analyzing, by the payment processing network or the issuer computer, the second authorization request message and determining, by absence of the trusted node indicator in the second authorization request message, that the second node is not trusted and that the second authorization request message was not transmitted by the trusted node;
sending, by the payment processing network or the issuer computer, a challenge message to a consumer device of the consumer requiring authentication data from the consumer to complete the second payment transaction regardless of a previous consumer authentication of the consumer by the second node;
receiving, by the payment processing network or the issuer computer, authentication data of the consumer from the consumer device;
authorizing, by the payment processing network or the issuer computer, the second payment transaction in response to receiving the authentication data of the consumer; and
sending, from the payment processing network or the issuer computer to the second node, a second authorization response message indicating that the second payment transaction is authorized, wherein the first payment transaction and the second payment transaction are different payment transactions.
1 Assignment
0 Petitions
Accused Products
Abstract
A system, apparatus, and method for expediting the authorization of an electronic payment transaction. Authorization of a transaction at a node of an authorization network is the result of inferring the trustworthiness of a customer to the transaction using data obtained from a different node of the authorization network. The authorization process is expedited by relying on the previous authentication decision of another node, where the previous decision may have been made based on a different payment device or different user inputs. The invention uses a decision made by a first node in the authorization network as a proxy for the authorization decision at a different node, thereby transferring the trustworthiness of a consumer, consumer'"'"'s device, payment device, or other aspect of the transaction from the first node to the second.
103 Citations
12 Claims
-
1. A method of processing payment transactions conducted by a consumer, comprising:
-
receiving a first authorization request message for a first payment transaction at a payment processing network or an issuer computer of a payment transaction authorization network from a first terminal in a first node comprising a first merchant processing system, the payment processing network or the issuer computer configured to perform a first payment transaction authorization operation for the first payment transaction, wherein the first authorization request message was generated by the first terminal, and wherein the first authorization request message passes through a first acquirer computer prior to being received at the payment processing network or the issuer computer; identifying, by the payment processing network or the issuer computer, a trusted node indicator in the first authorization request message; determining, by the payment processing network or the issuer computer based on the trusted node indicator in the first authorization request message, that the first node that transmitted the first authorization request message is a trusted node; prior to authorizing the first payment transaction by the issuer computer, by-passing performing a consumer authentication by the payment processing network or the issuer computer based, at least in part, on the trusted node indicator, wherein the payment processing network or the issuer computer relies upon consumer authentication assertion of the trusted node; updating, by the payment processing network or the issuer computer, a record associated with the consumer at a database of the payment processing network or the issuer computer to indicate that the consumer is an authenticated consumer based on the consumer authentication performed by the first node; authorizing the first payment transaction at the payment processing network or the issuer computer without requiring, from the consumer, authentication data that would otherwise be requested in a payment transaction that was not processed by the trusted node, wherein the first payment transaction is authorized based on the first node comprising the first merchant processing system being the trusted node; sending, from the payment processing network or the issuer computer to the first node, a first authorization response message indicating that the first payment transaction is authorized; receiving a second authorization request message for a second payment transaction at the payment processing network or the issuer computer of the payment transaction authorization network from a second terminal in a second node comprising a second merchant processing system, the payment processing network or the issuer computer configured to perform a second payment transaction authorization operation for the second payment transaction, wherein the second authorization request message was generated by the second terminal, and wherein the second authorization request message passes through a second acquirer computer prior to being received at the payment processing network or the issuer computer; analyzing, by the payment processing network or the issuer computer, the second authorization request message and determining, by absence of the trusted node indicator in the second authorization request message, that the second node is not trusted and that the second authorization request message was not transmitted by the trusted node; sending, by the payment processing network or the issuer computer, a challenge message to a consumer device of the consumer requiring authentication data from the consumer to complete the second payment transaction regardless of a previous consumer authentication of the consumer by the second node; receiving, by the payment processing network or the issuer computer, authentication data of the consumer from the consumer device; authorizing, by the payment processing network or the issuer computer, the second payment transaction in response to receiving the authentication data of the consumer; and sending, from the payment processing network or the issuer computer to the second node, a second authorization response message indicating that the second payment transaction is authorized, wherein the first payment transaction and the second payment transaction are different payment transactions. - View Dependent Claims (2, 5, 6, 7, 8, 9, 10, 11)
-
-
3. An apparatus for processing payment transactions for a consumer, comprising:
-
a processor configured to execute a set of instructions; a memory coupled to the processor and storing the set of instructions; and the set of instructions executable by the processor to perform a method comprising; receiving a first authorization request message for a first payment transaction from a first terminal in a first node comprising a first merchant processing system, wherein the apparatus is operated by a payment processing network or an issuer of a payment transaction authorization network, wherein the apparatus is configured to perform a first payment transaction authorization operation for the first payment transaction, wherein the first authorization request message was generated by the first terminal, and wherein the first authorization request message passes through a first acquirer computer prior to being received at the apparatus; identifying a trusted node indicator in the first authorization request message; determining, based on the trusted node indicator in the first authorization request message, that that the first node that transmitted the first authorization request message is a trusted node; prior to authorizing the first payment transaction by the issuer, by-passing performing a consumer authentication by the payment processing network or the issuer based, at least in part, on the trusted node indicator, wherein the payment processing network or the issuer relies upon consumer authentication assertion of the trusted node; updating a record associated with the consumer at a database of the payment processing network or the issuer to indicate that the consumer is an authenticated consumer based on the consumer authentication performed by the first node; authorizing the first payment transaction at the payment processing network or issuer computer without requiring, from the consumer, authentication data that would otherwise be requested in a payment transaction that was not processed by the trusted node, wherein the first payment transaction is authorized based on the first node comprising the first merchant processing system being the trusted node; sending, to the first node, a first authorization response message indicating that the first payment transaction is authorized; receiving a second authorization request message for a second payment transaction from a second terminal in a second node comprising a second merchant processing system, wherein the apparatus is configured to perform a second payment transaction authorization operation for the second payment transaction, wherein the second authorization request message was generated by the second terminal, and wherein the second authorization request message passes through a second acquirer computer prior to being received at the apparatus; analyzing the second authorization request message and determining, by absence of the trusted node indicator in the second authorization request message, that the second node is not trusted and that the second authorization request message was not transmitted by the trusted node; sending a challenge message to a consumer device of the consumer requiring authentication data from the consumer to complete the second payment transaction regardless of a previous consumer authentication of the consumer by the second node; receiving the authentication data of the consumer from the consumer device; authorizing the second payment transaction in response to receiving the authentication data of the consumer; and sending a second authorization response message to the second node indicating that the second payment transaction is authorized, wherein the first payment transaction and the second payment transaction are different payment transactions. - View Dependent Claims (4)
-
-
12. A method of processing payment transactions conducted by a consumer, comprising:
-
receiving an authorization request message for a payment transaction at a payment processing network or an issuer computer of a payment transaction authorization network from a terminal in a node comprising a merchant processing system, the payment processing network or the issuer computer configured to perform a payment transaction authorization operation for the payment transaction, wherein the authorization request message was generated by the terminal, and wherein the authorization request message passes through an acquirer computer prior to being received at the payment processing network or the issuer computer; determining, by the payment processing network or the issuer computer, that the authorization request message was transmitted by the node and that the consumer was previously authenticated by the node; analyzing, by the payment processing network or the issuer computer, the authorization request message to determine whether the authorization request message includes a trusted node indicator, if the authorization request message includes the trusted node indicator indicating that the node that transmitted the authorization request message is trusted, then the payment transaction authorization operation performed by the payment processing network or the issuer computer includes; authorizing the payment transaction at the payment processing network or the issuer computer without requiring, from the consumer, authentication data that would otherwise be requested in payment transactions not processed by a trusted node, wherein the payment transaction is authorized based on authentication assertion of the trusted node; if the authorization request message does not include the trusted node indicator indicating that the node that transmitted the authorization request message is trusted, then the payment transaction authorization operation performed by the payment processing network or the issuer computer includes; discarding authentication previously performed by the node; sending a challenge message to a consumer device of the consumer requiring authentication data from the consumer to complete the payment transaction; receiving authentication data of the consumer from the consumer device; authorizing the payment transaction in response to receiving the authentication data of the consumer; and sending, from the payment processing network or the issuer computer to the node, an authorization response message indicating that the payment transaction is authorized.
-
Specification