SYSTEM FOR SECURING CARD PAYMENT TRANSACTIONS USING A MOBILE COMMUNICATION DEVICE
First Claim
1. A system for authorizing transactions initiated with a payment card, comprising one or more servers for receiving electronic transaction information and issuing communications to mobile communications devices, said one or more servers each having a memory for storing program instructions and at least one processor for executing said program instructions, said program instructions comprising program instructions for:
- registering the payment card with an issuer of the card by providing a number or address of the mobile communications device to an issuer of the payment card, wherein the issuer associates the payment card with the number or address of the mobile communications device;
subsequent to the registering, receiving a communication from an owner of the payment card that selects whether the payment card is in a one-time-authorization mode or a normal authorization mode, whereby the owner of the payment card selects whether or not a next transaction using the payment card will be in one-time-authorization mode;
receiving a notification from a point of sales terminal located at a point of sales indicating that the next transaction has been initiated, wherein the notification is received by a point of sales system;
within the point of sales system, determining whether the payment card is in the one-time-authorization mode or the normal authorization mode;
in response to determining that the payment card is in the normal authorization mode, requiring input of a static multi-use personal identification number (PIN) at the point of sales terminal, and authorizing the next transaction if a static multi-use personal identification number (PIN) entered as a first input to the point of sales terminal is valid; and
in response to determining that the payment card is in the one-time-authorization mode, setting a timer and sending a message associated with the particular card transaction to a user of the particular mobile communications device via the particular mobile communications device, wherein the message contains a one-time-use personal identification number (PIN) for use in the next transaction, requiring input of the one-time use personal identification number (PIN) at the point of sales terminal before the timer has expired in order to authorize the particular card transaction, receiving the one-time-use personal identification number (PIN) from the user at the point of sales, entering the one-time-use personal identification number (PIN) as a second input to the point of sales terminal, wherein the point of sales system receives the one-time-use personal identification number (PIN) and authorizes the particular card transaction only if the one-time-use personal identification number (PIN) is received from the point of sales terminal before the timer has expired.
1 Assignment
0 Petitions
Accused Products
Abstract
An authorization system and computer program for provision and process of a personal identification number (PIN) via a short-message-service (SMS) text message to a mobile communication device. The authorization system and computer program receive a communication from the user indicating a one-time-authorization mode. The authorization system and computer program retrieve information from a point-of-sales location and process a unique identifier for the mobile communication device. A text message is sent to the identified mobile device. The message communicates a one-time-use PIN with required PIN return via the point-of-sales system. The confirmation is processed, which authorization only occurring after confirmation. The PIN response period is voided after a short time, further improving security of the transaction.
42 Citations
4 Claims
-
1. A system for authorizing transactions initiated with a payment card, comprising one or more servers for receiving electronic transaction information and issuing communications to mobile communications devices, said one or more servers each having a memory for storing program instructions and at least one processor for executing said program instructions, said program instructions comprising program instructions for:
-
registering the payment card with an issuer of the card by providing a number or address of the mobile communications device to an issuer of the payment card, wherein the issuer associates the payment card with the number or address of the mobile communications device;
subsequent to the registering, receiving a communication from an owner of the payment card that selects whether the payment card is in a one-time-authorization mode or a normal authorization mode, whereby the owner of the payment card selects whether or not a next transaction using the payment card will be in one-time-authorization mode;receiving a notification from a point of sales terminal located at a point of sales indicating that the next transaction has been initiated, wherein the notification is received by a point of sales system; within the point of sales system, determining whether the payment card is in the one-time-authorization mode or the normal authorization mode; in response to determining that the payment card is in the normal authorization mode, requiring input of a static multi-use personal identification number (PIN) at the point of sales terminal, and authorizing the next transaction if a static multi-use personal identification number (PIN) entered as a first input to the point of sales terminal is valid; and in response to determining that the payment card is in the one-time-authorization mode, setting a timer and sending a message associated with the particular card transaction to a user of the particular mobile communications device via the particular mobile communications device, wherein the message contains a one-time-use personal identification number (PIN) for use in the next transaction, requiring input of the one-time use personal identification number (PIN) at the point of sales terminal before the timer has expired in order to authorize the particular card transaction, receiving the one-time-use personal identification number (PIN) from the user at the point of sales, entering the one-time-use personal identification number (PIN) as a second input to the point of sales terminal, wherein the point of sales system receives the one-time-use personal identification number (PIN) and authorizes the particular card transaction only if the one-time-use personal identification number (PIN) is received from the point of sales terminal before the timer has expired. - View Dependent Claims (2)
-
-
3. A computer program product comprising media encoding program instructions for execution on one or more servers for receiving electronic transaction information and issuing communications to mobile communications devices, wherein said program instructions are program instructions for authorizing transactions initiated with a payment card, said program instructions comprising program instructions for:
-
registering the payment card with an issuer of the card by providing a number or address of the mobile communications device to an issuer of the payment card, wherein the issuer associates the payment card with the number or address of the mobile communications device;
subsequent to the registering, receiving a communication from an owner of the payment card that selects whether the payment card is in a one-time-authorization mode or a normal authorization mode, whereby the owner of the payment card selects whether or not a next transaction using the payment card will be in one-time-authorization mode;receiving a notification from a point of sales terminal located at a point of sales indicating that the next transaction has been initiated, wherein the notification is received by a point of sales system; within the point of sales system, determining whether the payment card is in the one-time-authorization mode or the normal authorization mode; in response to determining that the payment card is in the normal authorization mode, requiring input of a static multi-use personal identification number (PIN) at the point of sales terminal, and authorizing the next transaction if a static multi-use personal identification number (PIN) entered as a first input to the point of sales terminal is valid; and in response to determining that the payment card is in the one-time-authorization mode, setting a timer and sending a message associated with the particular card transaction to a user of the particular mobile communications device via the particular mobile communications device, wherein the message contains a one-time-use personal identification number (PIN) for use in the next transaction, requiring input of the one-time use personal identification number (PIN) at the point of sales terminal before the timer has expired in order to authorize the particular card transaction, receiving the one-time-use personal identification number (PIN) from the user at the point of sales, entering the one-time-use personal identification number (PIN) as a second input to the point of sales terminal, wherein the point of sales system receives the one-time-use personal identification number (PIN) and authorizes the particular card transaction only if the one-time-use personal identification number (PIN) is received from the point of sales terminal before the timer has expired. - View Dependent Claims (4)
-
Specification