DATA AUTHENTICATION AND PROVISIONING METHOD AND SYSTEM

US 20120066129A1
Filed: 08/04/2011
Published: 03/15/2012
Est. Priority Date: 09/10/2002
Status: Active Grant

First Claim

Patent Images

1-36. -36. (canceled)

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Techniques for authenticating the identity and validating the profile of an individual (“a presenter”) who presents him or herself to another party (“an acceptor”) as having a certain identity and having certain corresponding profile data are described. The invention can be advantageously used in Internet transactions where such authentication and validation is difficult to perform. The techniques of the present invention allow the trusted party to give a definitive answer regarding the authentication of identity and validity of profile data. Other services such as profile data provisioning and profile data updating can also be performed.

16 Citations

View as Search Results

65 Claims

1-36. -36. (canceled)

37. A method involving a presenter, a trusted party, and an acceptor for providing at least some profile data of said presenter during performed during an on-line transaction, the method to said acceptor comprising:
- querying said receiving a query at an access control server at a trusted party by said from an acceptor for said trusted party to provide said profile data to said acceptor; and
  
  providing profile data of said presenter, by said access control server of said trusted party, to said acceptor.
- View Dependent Claims (43, 44, 45, 46)
- - 43. A method as recited in claim 37 further comprising:
    - receiving and storing identity and profile data from said presenter at said trusted party.
  - 44. A method as recited in claim 37 further comprising:
    - providing, by said trusted party, to said presenter with a program identity number which is correlated with said identity, profile data, and pre-designated authenticating data; and
      
      storing said program identity number by said trusted party.
  - 45. A method as recited in claim 44 wherein said program identity number is an account number for a financial account of said presenter wherein said trusted party is a financial institution that maintains said financial account.
  - 46. A method as recited in claim 37 wherein said identity and profile data include at least the name and address of said presenter.

38-42. -42. (canceled)

47-51. -51. (canceled)

52. An access control server operated by a trusted party for use in an on-line data authentication system, wherein the access control server is configured to comprising:
- a trusted party who receives and authenticates receive and authenticate authenticating data and provides provide profile data of a presenter, and an acceptor who is conducting a transaction with said presenter and who requests said trusted party to authenticate the identity of said presenter and to provide said profile data of said presenter; and
  
  a directory server configured to determine the existence and identity of said trusted party who will be able to authenticate the identity of said presenter and to provide said profile data of said presenter.
- View Dependent Claims (53, 54)
- - 53. An access control server as recited in claim 52 wherein each of said acceptor and said trusted party are the access control server is configured to communicate with a presenter via the Internet.
  - 54. An access control server as recited in claim 53 wherein the trusted party is configured to provide a definitive answer as to whether said identity of said presenter is authentic or not authentic.

55. A method comprising:
- receiving, from an acceptor server plug in at a directory server, a service enrollment request message;
  
  sending, by the directory server, the service enrollment request message to an access control server;
  
  receiving, by the directory server, a service enrollment response message; and
  
  sending, by the directory server, the service enrollment response message to the acceptor server merchant plug in,wherein the service enrollment request message requests verification that a presenter is enrolled in a data authentication program.
- View Dependent Claims (56, 57, 58, 59, 60, 61, 62, 63, 64, 65)
- - 56. The method of claim 55 wherein the access control server comprises a presenter file database.
  - 57. The method of claim 55 wherein the service enrollment request message comprises a program identity number.
  - 58. The method of claim 55 wherein if the access control server determines that the presenter is enrolled in the program, then the method further comprises:
    - receiving a data authentication request from the acceptor server merchant plug in.
  - 59. The method of claim 55 wherein if the access control server determines that the presenter is enrolled in the program, then the method further comprises:
    - receiving a data authentication request from the acceptor server merchant plug in; and
      
      sending the data authentication request to the access control server.
  - 60. The method of claim 55 wherein if the access control server determines that the presenter is enrolled in the program, then the method further comprises:
    - receiving a data authentication request from the acceptor server merchant plug in;
      
      sending the data authentication request to the access control server;
      
      receiving a data authentication response from the access control server; and
      
      sending the data authentication response to the acceptor server merchant plug in.
  - 61. The method of claim 60 wherein the presenter is a consumer, the access control server is operated by a bank, and the acceptor server merchant plug in is operated by a merchant.
  - 62. The method of claim 60 wherein the data authentication request and response messages pass through a device operated by the presenter.
  - 63. The method of claim 62 wherein a payment transaction using a payment card is initiated after sending the data authentication response to the acceptor server merchant plug in.
  - 64. The method of claim 55 wherein the director server is present in an interoperability domain.
  - 65. The method of claim 64 wherein the interoperability domain further comprises a transaction history server.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Visa International Service Association (Visa, Inc.)
Original Assignee
Visa International Service Association (Visa, Inc.)
Inventors
Dominguez, Benedicto H., Manessis, Thomas J., Rutherford, Melody L., Salvatori, Sandra, Roth, Janet T.

Granted Patent

US 10,679,453 B2
Time in Patent Office

Days
Field of Search
US Class Current

705/44
CPC Class Codes

G06F 21/33   using certificates

G06Q 20/02   involving a neutral party, ...

G06Q 20/04   Payment circuits

G06Q 20/0855   involving a third party

G06Q 20/341   Active cards, i.e. cards in...

G06Q 20/40   Authorisation, e.g. identif...

G06Q 20/401   Transaction verification

G06Q 20/4014   Identity check for transact...

G06Q 20/40975   using encryption therefor

G07C 9/22   in combination with an iden...

G07F 7/1008   Active credit-cards provide...

DATA AUTHENTICATION AND PROVISIONING METHOD AND SYSTEM

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

16 Citations

65 Claims

Specification

Use Cases

Quick Links

Others

DATA AUTHENTICATION AND PROVISIONING METHOD AND SYSTEM

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

16 Citations

65 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others