AUTHENTICATION OF CARD-NOT-PRESENT TRANSACTIONS
First Claim
1. A method of processing a card-not-present transaction, the method comprising:
- receiving at a payment processor system a request for a card-not-present transaction involving an enrolled consumer, the request including information identifying the enrolled consumer but wherein the information identifying the enrolled consumer is not sufficient for conducting a financial transaction;
reading with the payment processor system a record of information related to the enrolled consumer;
authenticating the enrolled consumer with the payment processor system based at least in part on the information of the request identifying the enrolled consumer and the record of information related to the enrolled consumer;
in response to authenticating the enrolled consumer, generating with the payment processor system a set of single-use payment information, the set of single-use payment information including at least a one-time password and a dynamic Primary Account Number (PAN), wherein the dynamic PAN is valid for a single transaction and does not reveal a true PAN of the enrolled consumer; and
providing the single-use payment information from the payment processor system to the enrolled consumer.
8 Assignments
0 Petitions
Accused Products
Abstract
Methods, systems, and machine-readable media are disclosed for processing a card-not-present transaction. According to one embodiment, processing a card-not-present transaction can comprise receiving a request for a card-not-present transaction involving an enrolled consumer. The request can include information identifying the enrolled consumer. A record of information related to the enrolled consumer can be read and the enrolled consumer can be authenticated based at least in part on the information of the request and the record of information related to the enrolled consumer. In response to authenticating the enrolled consumer, a set of single-use payment information can be generated which can include a one-time password and a dynamic Primary Account Number (PAN) which is valid for a single transaction. The single-use payment information can be provided to the enrolled consumer or the merchant to complete the transaction in place of the true PAN.
212 Citations
38 Claims
-
1. A method of processing a card-not-present transaction, the method comprising:
-
receiving at a payment processor system a request for a card-not-present transaction involving an enrolled consumer, the request including information identifying the enrolled consumer but wherein the information identifying the enrolled consumer is not sufficient for conducting a financial transaction; reading with the payment processor system a record of information related to the enrolled consumer; authenticating the enrolled consumer with the payment processor system based at least in part on the information of the request identifying the enrolled consumer and the record of information related to the enrolled consumer; in response to authenticating the enrolled consumer, generating with the payment processor system a set of single-use payment information, the set of single-use payment information including at least a one-time password and a dynamic Primary Account Number (PAN), wherein the dynamic PAN is valid for a single transaction and does not reveal a true PAN of the enrolled consumer; and providing the single-use payment information from the payment processor system to the enrolled consumer. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19)
-
-
20. A method of conducting a card-not-present transaction, the method comprising:
-
initiating with a client system of a consumer enrolled with a service of a payment processor system a card-not-present transaction with a merchant system; receiving at the client system from the payment processor system a set of single-use payment information, the set of single-use payment information including at least a one-time password and a dynamic Primary Account Number (PAN), wherein the dynamic PAN is valid for a single transaction and does not reveal a true PAN of the enrolled consumer; and providing with the client system to the merchant system the dynamic PAN and cardholder verification information to affect payment of the card-not-present transaction. - View Dependent Claims (21, 22, 23, 24, 25)
-
-
26. A system comprising:
-
a merchant system providing an e-commerce website; a client device adapted to access the e-commerce website; and a payment processor system communicatively coupled with the merchant system and the client device, wherein the payment processor system maintains enrollment information for a user of the client device, wherein the client device initiates a card-not-present transaction with the merchant system through the e-commerce website and requests a set of single-use payment information from the payment processor system, wherein the payment processor system receives the request for the card-not-present transaction, the request including information identifying the user of the client device but wherein the information identifying the user of the client device is not sufficient for conducting a financial transaction, reads the enrollment information for the user of the client device, authenticates the user of the client device based at least in part on the information of the request identifying the user of the client device and the enrollment information for the user of the client device, and in response to authenticating the user of the client device, generates the set of single-use payment information, the set of single-use payment information including at least a one-time password and a dynamic Primary Account Number (PAN), wherein the dynamic PAN is valid for a single transaction and does not reveal a true PAN of the user of the client device, and provides the single-use payment information to the user of the client device, wherein the client device providing to the merchant system the dynamic PAN and cardholder verification information to affect payment of the card-not-present transaction, wherein the merchant system receives the dynamic PAN and cardholder verification information and sends a request to process payment of the card-not-present transaction to the payment processor system, the request including the dynamic PAN and cardholder verification information, and wherein the payment processor system receives the request to process payment of the card-not-present transaction from a merchant system, authenticates the request to process payment of the card-not-present transaction based on the dynamic PAN and cardholder verification information from the request to process payment of the card-not-present transaction, and in response to authenticating the request to process payment of the card-not-present transaction, determines the true PAN for the user of the client device from the enrollment information for the user of the client device and processes payment of the card-not-present transaction using the true PAN for the user of the client device. - View Dependent Claims (27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38)
-
Specification