Digital Signature Authentication
First Claim
1. A method for authenticating an electronic transaction between a consumer and a merchant, wherein the method occurs at the merchant and comprises:
- receiving account information associated with an account from the consumer over the Internet, wherein the consumer accesses the Internet using a consumer'"'"'s computer;
confirming enrollment of the account for digital signature authentication from a financial institution;
receiving consumer specific authentication parameters from the financial institution, wherein the consumer specific authentication parameters comprises an authentication scheme;
sending transaction information over the Internet to the consumer'"'"'s computer for a digital signature;
sending the authentication scheme over the Internet to the consumer'"'"'s computer; and
receiving a digital signature from the consumer'"'"'s computer, wherein the digital signature.
8 Assignments
0 Petitions
Accused Products
Abstract
A systems and methods for authenticating a consumer with a transaction card using digital signatures according to one embodiment of the invention is disclosed. These systems and methods allow consumers to digitally sign transaction information with a private key. The private key may be used to digitally sign the transaction, for example, through a hosted or local system that protects the integrity of the private key. A financial institution may authenticate the consumer by decrypting the digital signature with a public key.
-
Citations
25 Claims
-
1. A method for authenticating an electronic transaction between a consumer and a merchant, wherein the method occurs at the merchant and comprises:
-
receiving account information associated with an account from the consumer over the Internet, wherein the consumer accesses the Internet using a consumer'"'"'s computer; confirming enrollment of the account for digital signature authentication from a financial institution; receiving consumer specific authentication parameters from the financial institution, wherein the consumer specific authentication parameters comprises an authentication scheme; sending transaction information over the Internet to the consumer'"'"'s computer for a digital signature; sending the authentication scheme over the Internet to the consumer'"'"'s computer; and receiving a digital signature from the consumer'"'"'s computer, wherein the digital signature. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A method for authenticating an electronic transaction between a consumer and a merchant, wherein the method occurs at a consumer'"'"'s computer and comprises:
-
enrolling a debit card for digital signature authentication at a financial institution; initiating a transaction between the consumer and the merchant over the Internet; selecting a payment scheme that includes payment using the debit card; receiving a request for a digital signature from the merchant, wherein the request includes transaction information; receiving an authentication scheme from the merchant; accessing the authentication scheme; gaining access to a private key as determined by the authentication scheme; creating a digital signature by encrypting the transaction information with the private key; and sending the digital signature to the merchant. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20, 21)
-
-
22. A system for authenticating an electronic transaction between a consumer and a merchant, wherein the system comprises:
-
a merchant system connected to the internet and accessible by a consumer; a merchant processor adapted to process transactions for the merchant, wherein the merchant processor is in communication with the merchant; an issuing authentication server (IAS) adapted to host an Internet based authentication scheme for the consumer with enrolled debit cards; a cardholder account directory service (CADS), wherein the CADS is adapted to provide enrollment information regarding debit cards; and a financial network, wherein the financial network is adapted to provide communication between the merchant processor, the IAS and the CADS; wherein; the merchant receives a request from a consumer to use a debit card for a transaction between the consumer and the merchant; the merchant requests enrollment information for the debit card used by the consumer from the CADS through the merchant processor; if the debit card is enrolled, the CADS requests from the IAS a URL pointing to an Internet based authentication scheme for the debit card; and the URL pointing to an Internet based authentication scheme is sent to the consumer for authentication of the debit card for the transaction. - View Dependent Claims (23, 24, 25)
-
Specification