Token Based Transaction Authentication
First Claim
Patent Images
1. A method comprising:
- sending a message comprising a first payment reference identifier to a participant;
receiving from the participant a second payment reference identifier and a merchant key;
determining if the second payment reference identifier matches the first payment reference identifier and determining an authorizing entity;
communicating to the authorizing entity a message comprising the first payment reference identifier and the merchant key;
receiving from the authorizing entity an authentication address, an issuer key, and a third payment reference identifier; and
determining if the third payment reference identifier matches the first payment reference identifier.
1 Assignment
0 Petitions
Accused Products
Abstract
A token based transaction authentication system is disclosed. Issuer, merchants, and a payment processing network generate unique tokens or keys to authenticate messages between themselves and to authenticate a sending entity or consumer as they are redirected between entities. The tokens are also used to identify the particular authentication thread a message or sending entity is associated with. The sending entity authentication occurs over a web-based channel or a mobile based channel.
-
Citations
20 Claims
-
1. A method comprising:
-
sending a message comprising a first payment reference identifier to a participant; receiving from the participant a second payment reference identifier and a merchant key; determining if the second payment reference identifier matches the first payment reference identifier and determining an authorizing entity; communicating to the authorizing entity a message comprising the first payment reference identifier and the merchant key; receiving from the authorizing entity an authentication address, an issuer key, and a third payment reference identifier; and determining if the third payment reference identifier matches the first payment reference identifier. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 13)
-
-
12. A method comprising:
-
receiving a merchant key from a participant and an issuer key from an authorizing entity and generating a payment reference identifier; and sending to the participant a message comprising the merchant key, the issuer key, and the payment reference identifier, where participant sends the merchant key, issuer key, and payment reference identifier to the sending entity and redirects the sending entity to the authorizing entity, where the sending entity authenticates with the authorizing entity by providing the issuer key, and afterwards the authorizing entity redirects the sending entity to the participant, where the sending entity authenticates with the participant by providing the merchant key. - View Dependent Claims (14, 15, 16)
-
-
17. A system comprising:
-
a processor; and a computer-readable non-transitory medium coupled to the processor, the computer readable medium comprising code executable by the processor for implementing a method comprising; sending a message comprising a first payment reference identifier to a participant; receiving from the participant a second payment reference identifier and a merchant key; determining if the second payment reference identifier matches the first payment reference identifier and determining an authorizing entity; communicating to the authorizing entity a message comprising the first payment reference identifier and the merchant key; receiving from the authorizing entity an authentication address, an issuer key, and a third payment reference identifier; and determining if the third payment reference identifier matches the first payment reference identifier. - View Dependent Claims (18, 19, 20)
-
Specification