Method and system for conducting secure payments over a computer network without a pseudo or proxy account number
First Claim
1. A method of conducting an electronic transaction over a public communications network, with a payment account number having a certain amount of available funds, using a payment network linked to a check site, comprising:
- (a) generating a secret key associated with said payment account number;
(b) using said secret key to generate a message authentication code specific to said transaction;
(c) generating an authorization request message including said message authentication code;
(d) forwarding said authorization request message over said payment network to said check site for verifying the authenticity of said message authentication code;
(e) verifying the message authentication code by said check site using said secret key;
(f) responding to said authorization request message over said payment network based on said available funds and said transaction amount.
1 Assignment
0 Petitions
Accused Products
Abstract
A method is provided for conducting an electronic transaction with a payment account number having a certain amount of available funds, using a payment network and a “check site”. The method comprises the following steps: (a) generating a secret key associated with the payment account number; (b) using the secret key to generate a message authentication code (“MAC”) specific to the transaction; (c) generating an authorization request message including the message authentication code; (d) forwarding the authorization request message over the payment network to the check site for verifying the authenticity of the MAC; (e) verifying the message authentication code by the check site using the secret key; (f) responding to the authorization request message over the payment network based on the available funds and the transaction amount.
161 Citations
11 Claims
-
1. A method of conducting an electronic transaction over a public communications network, with a payment account number having a certain amount of available funds, using a payment network linked to a check site, comprising:
-
(a) generating a secret key associated with said payment account number;
(b) using said secret key to generate a message authentication code specific to said transaction;
(c) generating an authorization request message including said message authentication code;
(d) forwarding said authorization request message over said payment network to said check site for verifying the authenticity of said message authentication code;
(e) verifying the message authentication code by said check site using said secret key;
(f) responding to said authorization request message over said payment network based on said available funds and said transaction amount. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A method of conducting an electronic transaction over a public communications network with a check site and a payment account number having a BIN associated with said check site comprising:
-
(a) generating a per-card key associated with said payment account number;
(b) generating a message authentication code (MAC) using said per-card key;
(c) generating a MAC verification request including said payment account number and said MAC;
(d) verifying said MAC;
(e) based on said verification, creating an expected transaction sequence number (ETSN) for said MAC;
(f) providing said check site with reference data associated with said ETSN;
(g) generating a second message authentication code using said ETSN and said per-card key;
(h) routing said second message authentication code to said check site based on said BIN associated with said check site;
(i) determining said per-card key associated with the payment account number of an unverified message authentication code having associated ETSN and reference data;
(j) verifying said second message authentication code by said check site using said determined per-card key, and said associated ETSN and reference data. - View Dependent Claims (7, 8, 9, 10, 11)
-
Specification