END-TO-END SECURE PAYMENT PROCESSES
First Claim
Patent Images
1. A method for a merchant to perform a payment processing transaction without requiring the merchant to store payment device data or use payment device data to make a payment processing request, the method comprising:
- at a merchant payment system,identifying unencrypted payment device data;
encrypting the unencrypted payment device data without storing the unencrypted payment device data or encrypted payment device data at a merchant payment system;
submitting a first payment processing request to a secure payment system, wherein the payment processing request includes the encrypted payment device data; and
receiving a status from the secure payment system that the payment processing request is approved, declined, or has experienced an instance of process failure.
1 Assignment
0 Petitions
Accused Products
Abstract
Systems and method for performing secure electronic payment transactions to allow merchants to perform payment processing such that the merchant payment system is not required to store data specific to a particular payment device.
103 Citations
17 Claims
-
1. A method for a merchant to perform a payment processing transaction without requiring the merchant to store payment device data or use payment device data to make a payment processing request, the method comprising:
at a merchant payment system, identifying unencrypted payment device data; encrypting the unencrypted payment device data without storing the unencrypted payment device data or encrypted payment device data at a merchant payment system; submitting a first payment processing request to a secure payment system, wherein the payment processing request includes the encrypted payment device data; and receiving a status from the secure payment system that the payment processing request is approved, declined, or has experienced an instance of process failure. - View Dependent Claims (2, 3, 4, 5)
-
6. A method for a merchant to perform a payment processing transaction without requiring the merchant to store payment device data, the method comprising:
at a merchant payment system, identifying customer identification data and unencrypted payment device data; encrypting the unencrypted payment device data without storing the unencrypted payment device data or encrypted payment device data at any storage device controlled by the merchant; submitting a first payment processing request to a secure payment system, wherein the payment processing request includes the customer identification data and the encrypted payment device data; receiving a unique identifier associated with a customer account that was generated in response to the first payment processing request; submitting a second payment processing request to the secure payment system such that the merchant is only required to identify the unique identifier of the customer account and not unencrypted payment device data or encrypted payment device data of the at least one payment device; and receiving a status from the secure payment system that the second payment processing request is approved, declined, or has experienced an instance of process failure. - View Dependent Claims (7, 8, 9, 10, 11, 12, 13)
-
14. A method of processing electronic payment transactions using at least one payment device of a customer without requiring a merchant payment system to store data specific to the at least one payment device, the method comprising:
at a secure payment system, receiving a payment processing request from a merchant payment system that includes encrypted payment device data; generating a payment authorization request using the encrypted payment device data; sending the payment authorization request to a payment authorizing network; receiving a status from the payment authorizing network that the payment authorization request is approved, declined, or has experienced an instance of process failure; and forwarding the status to the merchant payment system. - View Dependent Claims (15, 17)
-
16. A method of processing electronic payment transactions using at least one payment device of a customer without requiring a merchant payment system to store data specific to the at least one payment device, the method comprising:
at a secure payment system, receiving a first payment processing request from a merchant payment system that includes customer identification data and encrypted payment device data; decrypting the encrypted payment device data; generating a unique identifier and a customer account such that the unique identifier and the customer account are associated with the customer identification data and the decrypted payment device data; providing the unique identifier to the merchant payment system; receiving a second payment processing request from the merchant payment system that includes the unique identifier such that the merchant payment system is only required to identify the unique identifier of the customer account and not the encrypted or decrypted payment device data; using the unique identifier to access the decrypted payment device data; generating a payment authorization request using the decrypted payment device data; sending the payment authorization request to a payment authorizing network; receiving a status from the payment authorizing network that the payment authorization request is approved, declined, or has experienced an instance of process failure; and forwarding the status to the merchant payment system.
Specification