System, Method, and Computer-Readable Medium for Mobile Payment Authentication and Authorization
First Claim
1. A method of electronic commerce, comprising:
- maintaining authentication information of a user in association with purchase authorization information of the user, wherein authentication and authorization information of a plurality of users is maintained in association with a common subscriber account;
receiving an identifier of a product to be purchased at a remote location by the user;
performing an authentication of the user based on input supplied by the user;
performing an authorization evaluation of whether the user is authorized to purchase the product based on the authorization information; and
accepting or denying purchase of the product based on at least one of results of the authentication and results of the authorization.
1 Assignment
0 Petitions
Accused Products
Abstract
A system, method, and computer-readable medium for user authentication and mobile payment authorization are provided. A user operating a mobile terminal may submit a product for purchase at a point-of-sale and submit the user'"'"'s phone number and personal identification number thereto. An authentication and authorization process is then performed to authenticate the user and authorize the purchase. Upon authentication and authorization, a one-time-password is transmitted to the point-of-sale and the user'"'"'s mobile terminal. The user provides the one-time-password as input to the point-of-sale which compares the one-time-password provided by Mobile Payment System with the one-time-password provided by the user to determine whether to approve or deny the purchase. Multiple users each having different authorization levels and purchase limits may be associated with a common account, and each user may have a distinct identifier used to authenticate the particular user of the account.
189 Citations
20 Claims
-
1. A method of electronic commerce, comprising:
-
maintaining authentication information of a user in association with purchase authorization information of the user, wherein authentication and authorization information of a plurality of users is maintained in association with a common subscriber account; receiving an identifier of a product to be purchased at a remote location by the user; performing an authentication of the user based on input supplied by the user; performing an authorization evaluation of whether the user is authorized to purchase the product based on the authorization information; and accepting or denying purchase of the product based on at least one of results of the authentication and results of the authorization. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A computer-readable medium having computer-executable instructions for execution by a processing system, the computer-executable instructions for electronic commerce, comprising:
-
instructions for maintaining authentication information of a user in association with purchase authorization information of the user, wherein authentication and authorization information of a plurality of users is maintained in association with a common subscriber account; instructions for receiving an identifier of a product to be purchased at a remote location by the user; instructions for performing an authentication of the user based on input supplied by the user; instructions for performing an authorization evaluation of whether the user is authorized to purchase the product based on the authorization information; and instructions for accepting or denying purchase of the product based on at least one of results of the authentication and results of the authorization. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
-
17. A system for performing electronic commerce, comprising:
-
a mobile terminal assigned to a user having a mobile phone number assigned thereto; a merchant point-of-sale terminal adapted to receive a product identifier of a product to be purchased by the user, the phone number of the mobile terminal of the user, and a personal identification number of the user, wherein the point-of-sale terminal is adapted to determine a product description and generate a message including the phone number, the personal identification number, the product identifier, and the product description; and a mobile payment system communicatively coupled with the merchant point-of-sale terminal and adapted to receive the message, wherein the mobile payment system is adapted to authenticate the user and authorize the purchase based at least in part on one of the phone number, the personal identification number and the product identifier, and wherein the mobile payment system is adapted to transmit a one-time-password in an encrypted format to the point-of-sale terminal; a messaging network communicatively coupled with the mobile payment system, wherein the messaging network receives a request from the mobile payment system to transmit the one-time-password to the mobile terminal, wherein the point-of-sale terminal is adapted to receive the one-time-password received by the mobile terminal from the user and determine whether to accept or deny the purchase based on the one-time-password received by the mobile terminal and the one-time-password transmitted to the point-of-sale terminal from the mobile payment system. - View Dependent Claims (18, 19, 20)
-
Specification