Method and system for conducting secure payments over a computer network without a pseudo or proxy account number

US 20020120584A1
Filed: 06/22/2001
Published: 08/29/2002
Est. Priority Date: 04/11/2000
Status: Active Grant

First Claim

Patent Images

1. A method of conducting an electronic transaction over a public communications network, with a payment account number having a certain amount of available funds, using a payment network linked to a check site, comprising:

(a) generating a secret key associated with said payment account number;

(b) using said secret key to generate a message authentication code specific to said transaction;

(c) generating an authorization request message including said message authentication code;

(d) forwarding said authorization request message over said payment network to said check site for verifying the authenticity of said message authentication code;

(e) verifying the message authentication code by said check site using said secret key;

(f) responding to said authorization request message over said payment network based on said available funds and said transaction amount.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method is provided for conducting an electronic transaction with a payment account number having a certain amount of available funds, using a payment network and a “check site”. The method comprises the following steps: (a) generating a secret key associated with the payment account number; (b) using the secret key to generate a message authentication code (“MAC”) specific to the transaction; (c) generating an authorization request message including the message authentication code; (d) forwarding the authorization request message over the payment network to the check site for verifying the authenticity of the MAC; (e) verifying the message authentication code by the check site using the secret key; (f) responding to the authorization request message over the payment network based on the available funds and the transaction amount.

161 Citations

11 Claims

1. A method of conducting an electronic transaction over a public communications network, with a payment account number having a certain amount of available funds, using a payment network linked to a check site, comprising:
- (a) generating a secret key associated with said payment account number;
  
  (b) using said secret key to generate a message authentication code specific to said transaction;
  
  (c) generating an authorization request message including said message authentication code;
  
  (d) forwarding said authorization request message over said payment network to said check site for verifying the authenticity of said message authentication code;
  
  (e) verifying the message authentication code by said check site using said secret key;
  
  (f) responding to said authorization request message over said payment network based on said available funds and said transaction amount.
- View Dependent Claims (2, 3, 4, 5)
- - 2. The method of claim 1, wherein said authorization request message is routed over said payment network based on a special bank identification number corresponding to said check site.
  - 3. The method of claim 2, further comprising:
    - providing software at a user location for generating said secret key.
  - 4. The method of claim 3, wherein said payment account number is issued by an issuer and said response is provided by said issuer.
  - 5. The method of claim 4, wherein said authorization request message includes an expiration date field and said message authentication code is placed in said expiration date field.

6. A method of conducting an electronic transaction over a public communications network with a check site and a payment account number having a BIN associated with said check site comprising:
- (a) generating a per-card key associated with said payment account number;
  
  (b) generating a message authentication code (MAC) using said per-card key;
  
  (c) generating a MAC verification request including said payment account number and said MAC;
  
  (d) verifying said MAC;
  
  (e) based on said verification, creating an expected transaction sequence number (ETSN) for said MAC;
  
  (f) providing said check site with reference data associated with said ETSN;
  
  (g) generating a second message authentication code using said ETSN and said per-card key;
  
  (h) routing said second message authentication code to said check site based on said BIN associated with said check site;
  
  (i) determining said per-card key associated with the payment account number of an unverified message authentication code having associated ETSN and reference data;
  
  (j) verifying said second message authentication code by said check site using said determined per-card key, and said associated ETSN and reference data.
- View Dependent Claims (7, 8, 9, 10, 11)
- - 7. The method of claim 6 further including, after the step of generating a second message authentication code, the following steps:
    - (a) converting said second message authentication code into a pseudo expiration date using said reference data;
      
      (b) generating an authorization request having an expiration date field containing said pseudo expiration date; and
      
      (c) responding to said authorization request and verifying said second message authentication code based on said pseudo expiration date.
  - 8. The method of claim 7 wherein the step of generating a message authentication code further includes using an expiration date, application version number and transaction sequence number associated with said payment account number.
  - 9. The method of claim 8 wherein said MAC verification request further includes said application version number and said expiration date.
  - 10. The method of claim 9, wherein said step of verifying said MAC includes using said per-card key.
  - 11. The method of claim 6, wherein said reference data includes a reference data and a number of months indicator.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Mastercard International Incorporated (MasterCard Incorporated)
Original Assignee
Mastercard International Incorporated (MasterCard Incorporated)
Inventors
Campbell, Carl M., Hogan, Edward J.

Granted Patent

US 7,177,848 B2
Time in Patent Office

Days
Field of Search
US Class Current

705/67
CPC Class Codes

G06Q 20/02   involving a neutral party, ...

G06Q 20/027   involving a payment switch ...

G06Q 20/14   specially adapted for billi...

G06Q 20/24   Credit schemes, i.e. "pay a...

G06Q 20/341   Active cards, i.e. cards in...

G06Q 20/367   involving electronic purses...

G06Q 20/3674   involving authentication

G06Q 20/3821   Electronic credentials

G06Q 20/3823   combining multiple encrypti...

G06Q 20/3829   involving key management

G06Q 20/401   Transaction verification

G06Q 20/4014   Identity check for transact...

G06Q 20/403   Solvency checks

G06Q 20/40975   using encryption therefor

G07F 7/1008   Active credit-cards provide...

Method and system for conducting secure payments over a computer network without a pseudo or proxy account number

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

161 Citations

11 Claims

Specification

Solutions

Use Cases

Quick Links

Method and system for conducting secure payments over a computer network without a pseudo or proxy account number

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

161 Citations

11 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links