Secure account provisioning
First Claim
Patent Images
1. A mobile payment account system comprising one or more processors that:
- transmit, from a server to a portable electronic device, data to pre-install a wallet application module on the portable electronic device, wherein prior to the transmission, the wallet application module is not associated with a new mobile payment account;
receive, by the server from the portable electronic device, a request from the pre-installed wallet application module to create the new mobile payment account, the request including data identifying the portable electronic device and an associated user;
create, by the server in response to receiving the request, a new mobile payment account associated with the portable electronic device based on data received in the request, wherein the created mobile payment account includes data identifying a one-time activation servicing state;
transmit, by the server to the portable electronic device, data identifying the created mobile payment account to the wallet application module on the portable electronic device, wherein the activation servicing state of the mobile payment account is initially set to a first one of a plurality of states where the new mobile payment account is not available for use by the wallet application module to carry out transactions; and
responsive to verifying the identity of the associated user, sent by the server, the activation servicing state of the new mobile payment account to a different one of the plurality of states where the new mobile payment account is available for use by the wallet application module to carry out transactions,wherein the server verifies the identity of the associated user by receiving, from the portable electronic device, a validation answer to at least one validation question in the form of identification and validation questions and answers stored on a middleware server or payment account issuer or provided by a third party, and automatically authenticates the user based on the received validation answer, andwherein the server determines a number of validation questions to be transmitted to the portable electronic device based on a determined level of security associated with the user.
2 Assignments
0 Petitions
Accused Products
Abstract
A mobile payment system and method are described that facilitates the secure and real time user authentication and activation of a mobile payment account for a user portable electronic device over a communications network.
-
Citations
25 Claims
-
1. A mobile payment account system comprising one or more processors that:
-
transmit, from a server to a portable electronic device, data to pre-install a wallet application module on the portable electronic device, wherein prior to the transmission, the wallet application module is not associated with a new mobile payment account; receive, by the server from the portable electronic device, a request from the pre-installed wallet application module to create the new mobile payment account, the request including data identifying the portable electronic device and an associated user; create, by the server in response to receiving the request, a new mobile payment account associated with the portable electronic device based on data received in the request, wherein the created mobile payment account includes data identifying a one-time activation servicing state; transmit, by the server to the portable electronic device, data identifying the created mobile payment account to the wallet application module on the portable electronic device, wherein the activation servicing state of the mobile payment account is initially set to a first one of a plurality of states where the new mobile payment account is not available for use by the wallet application module to carry out transactions; and responsive to verifying the identity of the associated user, sent by the server, the activation servicing state of the new mobile payment account to a different one of the plurality of states where the new mobile payment account is available for use by the wallet application module to carry out transactions, wherein the server verifies the identity of the associated user by receiving, from the portable electronic device, a validation answer to at least one validation question in the form of identification and validation questions and answers stored on a middleware server or payment account issuer or provided by a third party, and automatically authenticates the user based on the received validation answer, and wherein the server determines a number of validation questions to be transmitted to the portable electronic device based on a determined level of security associated with the user. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A portable electronic device comprising:
-
a contactless data communication interface; a wallet application module for contactless payment at an electronic point of sale via the contactless data communication interface, the wallet application module configured to; transmit, to a remote server, a request to create a new mobile payment account at the remote server, the request including data identifying the portable electronic device and an associated user, wherein prior to the transmission, the wallet application module is not associated with the new mobile payment account; receive, from the remote server, and store data identifying the new mobile payment account in a secure memory, wherein the mobile payment account has an activation servicing state that is initially set to a first one of a plurality of states where the new mobile payment account is not available for use by the wallet application module to carry out transactions; prompt the user to initiate an identity verification process with the at remote server; transmit, to the remote server, user input for identity verification by the remote server; wherein the remote server verifies the identity of the user by receiving, from the portable electronic device, a validation answer to at least one validation question in the form of identification and validation questions and answers stored on a middleware server or payment account issuer or provided by a third party, and automatically authenticates the user based on the received validation answer, and wherein the server determines a number of validation questions to be transmitted to the portable electronic based on a determined level of security associated with the user; and receive, in response to the user identity verification, data from the remote server indicating that the activation servicing state of the new mobile payment account is set to an active state a different one of the plurality of states where the new mobile payment account is available for use by the wallet application module to carry out transactions. - View Dependent Claims (13, 14, 15, 16)
-
-
17. A non-transitory computer-readable medium comprising computer-executable instructions, that when executed by a processor of a server, perform a method of:
-
transmitting data to pre-install a wallet application module on a portable electronic device, wherein prior to the transmission, the wallet application module is not associated with a new mobile payment account; receiving a request from the pre-installed wallet application module to create the new mobile payment account, the request including data identifying the portable electronic device and an associated user; creating, in response to receiving the request, a new mobile payment account associated with the portable electronic device based on data received in the request, wherein the created mobile payment account includes data identifying a one-time activation servicing state; transmitting data identifying the created mobile payment account to the wallet application module on the portable electronic device, wherein the activation servicing state of the mobile payment account is initially set to a first one of a plurality of states where the new mobile payment account is not available for use by the wallet application module to carry out transactions; and responsive to verifying the identity of the associated user, set the activation servicing state of the new mobile payment account to a different one of the plurality of states where the new mobile payment account is available for use by the wallet application module to carry out transactions; wherein said computer readable medium further comprises computer-executable instructions for verifying the identity of the associated user by receiving, from the portable electronic device, a validation answer to at least one validation question, and automatically authenticates the user based on the received validation answer, wherein said computer readable medium further comprises computer-executable instructions for verifying the identity of the associated user further based on additional identification and validation information provided by a database that is remote from the server and the portable electronic device, and wherein the server determines a number of validation questions to be transmitted to the portable electronic device based on a determined level of security associated with the user. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24, 25)
-
Specification