Secure electronic payment

US 10,692,085 B2
Filed: 11/09/2017
Issued: 06/23/2020
Est. Priority Date: 02/13/2015
Status: Active Grant

First Claim

Patent Images

1. A method of authorizing a secure electronic payment from a payer to a payee, the method comprising:

receiving, at a digital identity system, an electronic message, which comprises a payer credential and identifies a payee system;

at the digital identity system, accessing a digital identity associated with the payer credential, wherein the digital identity comprises;

1) at least one identity attribute or data for deriving at least one identity attribute, and2) a payment token or data for obtaining a payment token, the payment token for effecting an electronic payment from the payer to a recipient of the payment token;

and transmitting at least one electronic message from the digital identity system to the payee system to render the identity attribute of the payer digital identity and the payment token of the payer digital identity available to the payee system, for determining, based on the identity attribute rendered available to the payee system, whether to use the available payment token of the payer digital identity to effect an electronic payment from the payer to the payee;

wherein the payment token or the data for obtaining the payment token are stored at the digital identity system in an encrypted form and at least one payer key is required to decrypt them, wherein the payer key is provided to a device of the payer and is not retained at the digital identity system, and wherein the method comprises receiving at the digital identity system the at least one payer key from the payer device and using it at the digital identity system to decrypt the payment token or the data for obtaining the payment token for rendering available to the payee system.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method of authorizing a secure electronic payment from a payer to a payee. At a digital identity system, an electronic message is received, which comprises a payer credential and identifies a payee system, and a digital identity associated with the payer credential is accessed, the digital identity comprising: 1) at least one identity attribute or data for deriving at least one identity attribute, and 2) a payment token or data for obtaining a payment token, the payment token for effecting an electronic payment from the payer to a recipient of the payment token. At least one electronic message is transmitted from the digital identity system to the payee system to render the identity attribute and the payment token available to the payee system, for determining, based on the identity attribute rendered available to the payee device, whether to use the available payment token to effect the electronic payment.

85 Citations

View as Search Results

20 Claims

1. A method of authorizing a secure electronic payment from a payer to a payee, the method comprising:
- receiving, at a digital identity system, an electronic message, which comprises a payer credential and identifies a payee system;
  
  at the digital identity system, accessing a digital identity associated with the payer credential, wherein the digital identity comprises;
  
  1) at least one identity attribute or data for deriving at least one identity attribute, and2) a payment token or data for obtaining a payment token, the payment token for effecting an electronic payment from the payer to a recipient of the payment token;
  
  and transmitting at least one electronic message from the digital identity system to the payee system to render the identity attribute of the payer digital identity and the payment token of the payer digital identity available to the payee system, for determining, based on the identity attribute rendered available to the payee system, whether to use the available payment token of the payer digital identity to effect an electronic payment from the payer to the payee;
  
  wherein the payment token or the data for obtaining the payment token are stored at the digital identity system in an encrypted form and at least one payer key is required to decrypt them, wherein the payer key is provided to a device of the payer and is not retained at the digital identity system, and wherein the method comprises receiving at the digital identity system the at least one payer key from the payer device and using it at the digital identity system to decrypt the payment token or the data for obtaining the payment token for rendering available to the payee system.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 20)
- - 2. A method according to claim 1, wherein the electronic message comprising the payer credential is received from a device of the payer.
  - 3. A method according to claim 1, wherein the payee system is identified by a payee credential comprised in the message and associated with the payee system.
  - 4. A method according to claim 1, wherein the payment token is obtained from card details or bank details of the payer.
  - 5. A method according to claim 4, wherein the card or bank details are stored as part of the digital identity, and the stored details are used by the digital identity system to obtain the payment token.
  - 6. A method according to claim 1, wherein the payer key is provided to the payer device in an encrypted form and a payer wrapper key retained at the digital identity system is required to decrypt it, wherein the payer wrapper key is not released outside of the digital identity system.
  - 7. A method according to claim 1, wherein the identity attribute is at least one of an age-related identity attribute for determining whether the payer meets an age requirement before effecting the electronic payment, a name, a facial image or other biometric identifier of the payee, or a data item captured from an identity document.
  - 8. A method according to claim 7, wherein the identity attribute is the age-related identity attribute and the payee system is embodied in a self-checkout terminal and the self-checkout terminal uses the identity attribute to determine whether the payer meets the age requirement.
  - 9. A method according to claim 1, wherein the payment token is obtained independently of a trusted source of identity information to which the identity attribute is anchored.
  - 10. A method according to claim 7, wherein the identity attribute is the data item and identity attribute is verified by comparing a biometric identifier captured from the payer with a biometric of the identity document.
  - 11. A method according to claim 1, wherein the payment token is at least one of a payment token bound to an identifier of the payee that can only be used by the payee, or a one-time use only payment token.
  - 12. A digital identity system according to claim 1, wherein the identity attribute is an anonymous identity attribute.
  - 13. A method according to claim 1, wherein a biometric authentication is performed by comparing a biometric identifier captured from the payer with biometric data of or associated with the digital identity.
  - 14. A method according to claim 13, wherein the identity attribute comprises the biometric data for performing the biometric authentication at the payee system.
  - 15. A method according to claim 14, wherein the at least one electronic message also renders available to the payee system an age-related attribute of or derived from the digital identity.
  - 16. A method according to claim 13, wherein the biometric identifier is captured at the payee system and provided to a device of the payer for performing the biometric authentication at the payer device.
  - 17. A method according to claim 1, wherein the payment token is at least one of an authentication token for authorizing the electronic payment via an API, or a token for authorizing a cryptocurrency transfer.
  - 20. A method according to claim 1, wherein the at least one identity attribute or the data for deriving the at least one identity attribute are stored at the digital identity system in an encrypted form, and wherein the at least one payer key as received from the device of the payer is also required to decrypt, at the digital identity system, the at least one identity attribute or the data for deriving the at least one identity attribute.

18. A non-transitory computer readable medium having executable instructions for authorizing a secure electronic payment from a payer to a payee, the instructions configured, when executed at a digital identity system, to implement the following steps:
- receiving an electronic message, which comprises a payer credential and identifies a payee system;
  
  accessing a digital identity associated with the payer credential, wherein the digital identity comprises;
  
  1) at least one identity attribute or data for deriving at least one identity attribute, and2) a payment token or data for obtaining a payment token, the payment token for effecting an electronic payment from the payer to a recipient of the payment token; and
  
  transmitting at least one electronic message from the digital identity system to the payee system to render the identity attribute of the payer digital identity and the payment token of the payer digital identity available to the payee system, for determining, based on the identity attribute rendered available to the payee system, whether to use the available payment token of the payer digital identity to effect an electronic payment from the payer to the payee;
  
  wherein the payment token or the data for obtaining the payment token are stored at the digital identity system in an encrypted form and at least one payer key is required to decrypt them, wherein the payer key is provided to a device of the payer and is not retained at the digital identity system, and wherein the method comprises receiving at the digital identity system the at least one payer key from the payer device and using it at the digital identity system to decrypt the payment token or the data for obtaining the payment token for rendering available to the payee system.

19. A digital identity system comprising:
- a computer interface configured to receive an electronic message, which comprises a payer credential and identifies a payee system; and
  
  at least one processor configured to implement the following steps;
  
  accessing a digital identity associated with the payer credential, wherein the digital identity comprises;
  
  1) at least one identity attribute or data for deriving at least one identity attribute, and2) a payment token or data for obtaining a payment token, the payment token for effecting an electronic payment from the payer to a recipient of the payment token; and
  
  transmitting at least one electronic message from the digital identity system to the payee device to render the identity attribute of the payer digital identity and the payment token of the payer digital identity available to the payee device, for determining, based on the identity attribute rendered available to the payee device, whether to use the available payment token of the payer digital identity to effect an electronic payment from the payer to the payee;
  
  wherein the payment token or the data for obtaining the payment token are stored at the digital identity system in an encrypted form and at least one payer key is required to decrypt them, wherein the payer key is provided to a device of the payer and is not retained at the digital identity system, and wherein the method comprises receiving at the digital identity system the at least one payer key from the payer device and using it at the digital identity system to decrypt the payment token or the data for obtaining the payment token for rendering available to the payee system.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Yoti Holding Ltd
Original Assignee
Yoti Holding Ltd
Inventors
Zagarese, Quirino, Rodriguez, Francisco Angel Garcia, Powlesland, Piers, Greci, Paolo, Withers, Laurence, Loughlin-McHugh, Eleanor Simone Frederika, Szczesniak, Roman Edward
Primary Examiner(s)
Rahim, Monjur

Application Number

US15/808,766
Publication Number

US 20180181964A1
Time in Patent Office

957 Days
Field of Search

726 5
US Class Current
CPC Class Codes

G06Q 20/10   specially adapted for elect...

G06Q 20/367   involving electronic purses...

G06Q 20/3821   Electronic credentials

G06Q 20/40145   Biometric identity checks

Secure electronic payment

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

85 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Secure electronic payment

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

85 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links