One-tap payment using a contactless card
First Claim
1. A system, comprising:
- a plurality of processor circuits; and
a memory storing instructions which when executed by one or more of the processor circuits, cause the one or more of the processor circuits to;
output, by an application executing on a first processor circuit of the plurality of processor circuits, an indication specifying to tap a contactless card to complete a transaction initiated in the application, the transaction associated with a transaction identifier;
receive, by the application from a communications interface of the contactless card, encrypted data generated by the contactless card based at least in part on a private key for the contactless card stored in a memory of the contactless card;
transmit, by the application;
(i) a merchant identifier of a merchant associated with the application, (ii) the transaction identifier, (iii) the encrypted data, and (iv) a location of a device comprising the first processor circuit to an authentication application executing on a second processor circuit of the plurality of processor circuits;
verify, by the authentication application, the encrypted data by decrypting the encrypted data based at least in part on the private key for the contactless card;
determine, by the authentication application, that the contactless card has previously been used to make a purchase with the merchant;
determine, by the authentication application, that the location of the device is within a threshold distance of a known location, the known location to comprise at least one of a home location or a work location associated with the contactless card;
generate, by a virtual account number generator executing on a third processor circuit of the plurality of processor circuits based on the verification of the encrypted data, the determination that the contactless card has previously been used to make a purchase with the merchant, and the determination that the device is within the threshold distance of the known location by the authentication application, a virtual account number;
transmit, by the virtual account number generator, the merchant identifier, the transaction identifier, the virtual account number, an expiration date associated with the virtual account number, and a card verification value (CVV) associated with the virtual account number to a merchant server executing on a fourth processor circuit of the plurality of processor circuits, the merchant server associated with the merchant; and
process, by the merchant server, the transaction using the transaction identifier, the virtual account number, the expiration date, and the CVV.
1 Assignment
0 Petitions
Accused Products
Abstract
One-tap payment using a contactless card. An application may output an indication specifying to tap a contactless card to complete a transaction initiated in the application. The application may receive encrypted data generated by the contactless card based on a private key stored in the contactless card. The application may transmit a merchant identifier, a transaction identifier, and the encrypted data to an authentication server. The authentication server may verify the encrypted data based on the private key for the contactless card stored by the authentication server. A virtual account number server may generate a virtual account number. A merchant server may receive the merchant identifier, the transaction identifier, the virtual account number, an expiration date, and a card verification value (CVV), and process the transaction using the transaction identifier, the virtual account number, the expiration date, and the CVV.
557 Citations
18 Claims
-
1. A system, comprising:
-
a plurality of processor circuits; and a memory storing instructions which when executed by one or more of the processor circuits, cause the one or more of the processor circuits to; output, by an application executing on a first processor circuit of the plurality of processor circuits, an indication specifying to tap a contactless card to complete a transaction initiated in the application, the transaction associated with a transaction identifier; receive, by the application from a communications interface of the contactless card, encrypted data generated by the contactless card based at least in part on a private key for the contactless card stored in a memory of the contactless card; transmit, by the application;
(i) a merchant identifier of a merchant associated with the application, (ii) the transaction identifier, (iii) the encrypted data, and (iv) a location of a device comprising the first processor circuit to an authentication application executing on a second processor circuit of the plurality of processor circuits;verify, by the authentication application, the encrypted data by decrypting the encrypted data based at least in part on the private key for the contactless card; determine, by the authentication application, that the contactless card has previously been used to make a purchase with the merchant; determine, by the authentication application, that the location of the device is within a threshold distance of a known location, the known location to comprise at least one of a home location or a work location associated with the contactless card; generate, by a virtual account number generator executing on a third processor circuit of the plurality of processor circuits based on the verification of the encrypted data, the determination that the contactless card has previously been used to make a purchase with the merchant, and the determination that the device is within the threshold distance of the known location by the authentication application, a virtual account number; transmit, by the virtual account number generator, the merchant identifier, the transaction identifier, the virtual account number, an expiration date associated with the virtual account number, and a card verification value (CVV) associated with the virtual account number to a merchant server executing on a fourth processor circuit of the plurality of processor circuits, the merchant server associated with the merchant; and process, by the merchant server, the transaction using the transaction identifier, the virtual account number, the expiration date, and the CVV. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A method, comprising:
-
outputting, by an application executing on a processor circuit, an indication specifying to tap a contactless card to complete a transaction initiated in the application, the transaction associated with a transaction identifier; receiving, by the application from a communications interface of the contactless card, encrypted data generated by the contactless card based at least in part on a private key for the contactless card stored in a memory of the contactless card; transmitting, by the application;
(i) a merchant identifier of a merchant associated with the application, (ii) the transaction identifier, (iii) the encrypted data, and (iv) a location of a device comprising the processor circuit to an authentication server;verifying, by the authentication server, the encrypted data by decrypting the encrypted data based at least in part on the private key for the contactless card stored in a memory of the authentication server; determining, by the authentication server, that the contactless card has previously been used to make a purchase with the merchant; determining, by the authentication server, that the location of the device is within a threshold distance of a known location associated with the contactless card, the known location to comprise at least one of a home location or a work location associated with the contactless card; generating, by a virtual account number server based on the verification of the encrypted data, the determination that the contactless card has previously been used to make a purchase with the merchant, and the determination that the device is within the threshold distance of the known location by the authentication server, a virtual account number; transmitting, by the virtual account number server, the merchant identifier, the transaction identifier, the virtual account number, an expiration date associated with the virtual account number, and a card verification value (CVV) associated with the virtual account number to a merchant server associated with the merchant; and processing, by the merchant server, the transaction using the transaction identifier, the virtual account number, the expiration date, and the CVV. - View Dependent Claims (8, 9, 10, 11, 12)
-
-
13. A non-transitory computer-readable storage medium having computer-readable program code embodied therewith, the computer-readable program code executable by one or more processor circuits of a plurality of processor circuits to:
-
output, by an application executing on a first processor circuit of the plurality of processor circuits, an indication specifying to tap a contactless card to complete a transaction initiated in the application, the transaction associated with a transaction identifier; receive, by the application from a communications interface of the contactless card, encrypted data generated by the contactless card based at least in part on a private key for the contactless card stored in a memory of the contactless card; transmit, by the application;
(i) a merchant identifier of a merchant associated with the application, (ii) the transaction identifier, (iii) the encrypted data, and (iv) a location of a device comprising the first processor circuit to an authentication application executing on a second processor circuit of the plurality of processor circuits;verify, by the authentication application, the encrypted data by decrypting the encrypted data based at least in part on the private key for the contactless card; determine, by the authentication application, that the contactless card has previously been used to make a purchase with the merchant; determine, by the authentication application, that the location of the device is within a threshold distance of a known location, the known location to comprise at least one of a home location or a work location associated with the contactless card; generate, by a virtual account number generator executing on a third processor circuit of the plurality of processor circuits based on the verification of the encrypted data, the determination that the contactless card has previously been used to make a purchase with the merchant, and the determination that the device is within the threshold distance of the known location by the authentication application, a virtual account number; transmit, by the virtual account number generator, the merchant identifier, the transaction identifier, the virtual account number, an expiration date associated with the virtual account number, and a card verification value (CVV) associated with the virtual account number to a merchant server executing on a fourth processor circuit of the plurality of processor circuits, the merchant server associated with the merchant; and process, by the merchant server, the transaction using the transaction identifier, the virtual account number, the expiration date, and the CVV. - View Dependent Claims (14, 15, 16, 17, 18)
-
Specification