AUTHENTICATION TOOL

US 20120185386A1
Filed: 01/18/2011
Published: 07/19/2012
Est. Priority Date: 01/18/2011
Status: Abandoned Application

First Claim

Patent Images

1. A method of authenticating a user of an online system at a financial institution to an electronic funds transfer, the method comprising:

receiving logon credentials of the user to an online banking system of a financial institution where the user has an account;

authenticating the user to the online banking system;

receiving a selection that the user desires to perform an electronic funds transfer using the user'"'"'s account;

presenting an authentication tool configured to allow a user to enter information associated with a credit/debit card associated with the user'"'"'s account at the financial institution to determine if the user is authorized to perform the electronic funds transfer;

receiving credit card information entered by the user into the authentication tool;

validating, using a computer, an identification of the user using the received credit card information; and

authenticating the user in response to the identification of the user being valid.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An electronic funds transfer authentication system and method facilitates the verification and authentication of a user and if authenticated allows the user to perform an action in an online system, such as an electronic funds transfer. The user-entered data is validated, and then the action (e.g., electronic funds transfer) is validated using credit/debit card information. Using a unique combination of security measures and procedures, the risk associated with various types of action and fund transfers is reduced, thereby enabling a financial institution to protect its customers'"'"' accounts with a greater degree of certainty.

234 Citations

44 Claims

1. A method of authenticating a user of an online system at a financial institution to an electronic funds transfer, the method comprising:
- receiving logon credentials of the user to an online banking system of a financial institution where the user has an account;
  
  authenticating the user to the online banking system;
  
  receiving a selection that the user desires to perform an electronic funds transfer using the user'"'"'s account;
  
  presenting an authentication tool configured to allow a user to enter information associated with a credit/debit card associated with the user'"'"'s account at the financial institution to determine if the user is authorized to perform the electronic funds transfer;
  
  receiving credit card information entered by the user into the authentication tool;
  
  validating, using a computer, an identification of the user using the received credit card information; and
  
  authenticating the user in response to the identification of the user being valid.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
- - 2. The method of claim 1 wherein the credit card information that the user enters comprises:
    - a credit/debit card number identifying the user'"'"'s account; and
      
      an expiration date of the credit/debit card.
  - 3. The method of claim 2, wherein the credit card information that the user enters further comprises a card verification value (“
    - CVV”
      
      ) of the credit/debit card
  - 4. The method of claim 3 wherein the CVV comprises one of a three or four digit security code located on the back of a credit/debit card.
  - 5. The method of claim 1 wherein the credit/debit card information is only used to authenticate the user and the credit card is not used to credit or debit the user'"'"'s account.
  - 6. The method of claim 1 further comprising presenting an interface for entering information needed to perform the online banking action.
  - 7. The method of claim 6 wherein the interface is presented along with the authentication tool on a single graphical user interface.
  - 8. The method of claim 1 wherein the electronic funds transfer comprises one of an automated clearing house (“
    - ACH”
      
      ) transfer or an electronic wiring of funds.
  - 9. The method of claim 1 wherein the validating the identification of the user comprises:
    - sending the received credit card information to a security server;
      
      comparing the received credit card information to stored credit card information stored at the security server; and
      
      providing an indication that the received credit card information is valid in response to determining that the received credit card information matches the stored credit card information.
  - 10. The method of claim 1 further comprising disallowing the user to perform the electronic funds transfer in response to the received credit card information not being validated.
  - 11. The method of claim 1, further comprising sending an alert in response to determining unauthorized access to the user'"'"'s account.
  - 12. The method of claim 1 further comprising:
    - receiving an indication that the user desires to add an account to be used in electronic funds transfer;
      
      receiving account information required to add the account; and
      
      adding the account in response to the user being authenticated.
  - 13. The method of claim 1 further comprising:
    - validating transaction data related to the electronic funds transfer; and
      
      validating the electronic funds transfer.
  - 14. The method of claim 1 wherein the user is using a computer system to request access to a remotely located device through a web-based interface.
  - 15. The method of claim 1 further comprising:
    - determining if the user is enrolled in an authentication program, whereby the authentication program comprises an online authentication tool that is only presented to the user if the user is enrolled in the authentication program and in response to the user attempting to perform an action in an online banking system; and
      
      presenting the online authentication tool in response to determining that the user is enrolled in the authentication program.
  - 16. The method of claim 15 wherein the online authentication tool comprises a tool that uses a security code that is provided to the user electronically to authenticate the electronic funds transfer.

17. A method of authenticating an action in an online banking system, the method comprising:
- receiving logon credentials of a user to the online banking system of a financial institution where the user has an account;
  
  authenticating the user to the online banking system;
  
  receiving a selection of an action that the user desires to perform in the online banking system;
  
  presenting an authentication tool configured to allow a user to enter credit card information of a credit/debit card associated with the user'"'"'s account to determine if the user is authorized to perform the selected action;
  
  receiving credit card information entered by the user into the authentication tool; and
  
  authenticating, using a computer, the user in response to the received credit card information being validated.
- View Dependent Claims (18, 19, 20, 21, 22, 23)
- - 18. The method of claim 17 wherein the credit card information that the user enters comprises:
    - a credit/debit card number identifying the user'"'"'s account;
      
      an expiration date of the credit/debit card; and
      
      a card verification value (“
      
      CVV”
      
      ) of the credit/debit card.
  - 19. The method of claim 18 wherein the CVV comprises one of a three or four digit security code located on the back of a credit/debit card.
  - 20. The method of claim 18 wherein the credit card information is only used to validate an identity of the user.
  - 21. The method of claim 17 further comprising presenting an interface for entering information needed to perform the online banking action.
  - 22. The method of claim 21 wherein the interface is presented along with the authentication tool on a single graphical user interface.
  - 23. The method of claim 17 wherein the action comprises an action associated with an electronic funds transfer.

24. A non-transitory computer-readable medium having computer program code embodied thereon, the computer program code, when executed on a computing device, configured to perform a method for authenticating an action via an online banking system, the method comprising:
- receiving logon credentials of a user to the online banking system of a financial institution where the user has an account;
  
  authenticating the user to the online banking system;
  
  receiving a selection of an action that the user desires to perform in the online banking system;
  
  presenting an authentication tool configured to allow a user to enter credit card information of a credit/debit card associated with the user'"'"'s account to determine if the user is authorized to perform the selected action;
  
  receiving credit card information entered by the user into the authentication tool; and
  
  authenticating the user in response to the received credit card information being validated.
- View Dependent Claims (25, 26, 27, 28)
- - 25. The non-transitory computer-readable medium of claim 24 wherein the credit card information that the user enters comprises:
    - a credit/debit card number identifying the user'"'"'s account;
      
      an expiration date of the credit/debit card; and
      
      a card verification value (“
      
      CVV”
      
      ) of the credit/debit card.
  - 26. The non-transitory computer-readable medium of claim 24 further comprising presenting an interface for entering information needed to perform the online banking action, wherein the interface is presented along with the authentication tool on a single graphical user interface.
  - 27. The non-transitory computer-readable medium of claim 24 further comprising validating, using a computer, an identification of the user using the received credit card information comprising:
    - sending the received credit card information to a security server;
      
      comparing the received credit card information to stored credit card information stored at the security server; and
      
      providing an indication that the received credit card information is valid in response to determining that the received credit card information matches the stored credit card information.
  - 28. The method of claim 24 wherein the action comprises an action associated with an electronic funds transfer.

29. An apparatus for authenticating an action via an online system, the apparatus comprising:
- an input system configured to allow a user to log into the online system and initiate the action via the online system; and
  
  a processing system in communication with the input system and configured to;
  
  receive credit card information entered by the user into the authentication tool; and
  
  authenticate the user in response to the received credit card information being validated.
- View Dependent Claims (30, 31, 32)
- - 30. The apparatus of claim 29 wherein the authentication tool is configured to allow a user to enter credit card information of a credit/debit card associated with the user'"'"'s account to determine if the user is authorized to perform the selected action.
  - 31. The apparatus of claim 30 wherein the credit card information that the user enters comprises:
    - a credit/debit card number identifying the user'"'"'s account;
      
      an expiration date of the credit/debit card; and
      
      a card verification value (“
      
      CVV”
      
      ) of the credit/debit card.
  - 32. The apparatus of claim 29 wherein the processing system comprises a server configured to:
    - receive logon credentials of a user to the online banking system of a financial institution;
      
      authenticate the user to the online banking system;
      
      receive a selection of an action that the user desires to perform in the online banking system;
      
      compare the received credit card information to stored credit card information stored at the server; and
      
      provide an indication that the received credit card information is valid in response to determining that the received credit card information matches the stored credit card information.

33. A method of authenticating an action in an online banking system, the method comprising:
- receiving logon credentials of a user to the online banking system of a financial institution where the user has an account;
  
  authenticating the user to the online banking system;
  
  receiving a selection of an action that the user desires to perform in the online banking system;
  
  determining if the user is enrolled in an authentication program, whereby the authentication program comprises a first authentication tool in response to the user attempting to perform an action in an online banking system;
  
  in response to determining that the user is enrolled in the authentication program, presenting the first authentication tool;
  
  in response to determining that the user is not enrolled in the authentication program presenting a second authentication tool that is different from the first authentication tool, wherein the second authentication tool is configured to allow a user to enter credit card information of a credit/debit card associated with the user'"'"'s account to determine if the user is authorized to perform the selected action;
  
  determining, using a computer, if the user is authenticated using input received in the first authentication tool or the second authentication tool.
- View Dependent Claims (34, 35, 36, 37)
- - 34. The method of claim 33 wherein the credit card information that the user enters comprises:
    - a credit/debit card number identifying the user'"'"'s account;
      
      an expiration date of the credit/debit card; and
      
      a card verification value (“
      
      CVV”
      
      ) of the credit/debit card.
  - 35. The method of claim 33 further comprising receiving credit card information entered by the user into the authentication tool in response to presenting the second authentication tool.
  - 36. The method of claim 33 wherein in response to determining that the user is not enrolled in the authentication program the second authentication tool is presented instead of the first authentication tool.
  - 37. The method of claim 33 wherein the first authentication tool presents electronically a security code to one of the user'"'"'s phone or card for inputting in the first authentication tool.

38. An apparatus for authenticating an action via an online system, the apparatus comprising:
- an input system configured to allow a user to log into the online system and initiate the action via the online system; and
  
  a processing system in communication with the input system and configured to;
  
  determine if the user is enrolled in an authentication program;
  
  in response to the user attempting to perform an action in an online banking system;
  
  present a first authentication tool in response to determining that the user is enrolled in the authentication program; and
  
  present a second authentication tool that is different from the first authentication tool in response to determining that the user is not enrolled in the authentication program, wherein the second authentication tool is configured to allow a user to enter credit card information of a credit/debit card associated with the user'"'"'s account to determine if the user is authorized to perform the selected action; and
  
  determine if the user is authenticated the user using input received in the first authentication tool or the second authentication tool; and
  
  allow the user to perform the action in response to the user being authenticated.
- View Dependent Claims (39, 40, 41, 42, 43, 44)
- - 39. The apparatus of claim 38, wherein the processing system is further configured to receive credit card information entered by the user into the authentication tool if the second authentication tool is presented.
  - 40. The apparatus of claim 39 wherein the processing system is further configured to:
    - authenticate the user to the online banking system;
      
      receive a selection of an action that the user desires to perform in the online banking system;
      
      compare the received credit card information to stored credit card information stored at the server; and
      
      provide an indication that the received credit card information is valid in response to determining that the received credit card information matches the stored credit card information.
  - 41. The apparatus of claim 39 wherein the credit card information that is inputted comprises:
    - a credit/debit card number identifying the user'"'"'s account;
      
      an expiration date of the credit/debit card; and
      
      a card verification value (“
      
      CVV”
      
      ) of the credit/debit card.
  - 42. The apparatus of claim 39 wherein the processing system comprises a security server configured to:
    - receive the received credit card information;
      
      compare the received credit card information to stored credit card information stored at the security server; and
      
      provide an indication that the received credit card information is valid in response to determining that the received credit card information matches the stored credit card information.
  - 43. The apparatus of claim 38 wherein the second authentication tool is presented in an interface that also includes details input about the action that the user wishes to perform.
  - 44. The apparatus of claim 43 wherein the action comprises an electronic funds transfer and the details included in the interface includes the information required to set up an electronic funds transfer.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Bank of America Corp.
Original Assignee
Bank of America Corp.
Inventors
Shroyer, David, Salama, Hisham Ibrahim, Stanfield, Darrell Fitzgerald, Beachley, Denise Hanna, Dunne, Phillip Wayne, Bolisetty, Murali K.

Application Number

US13/008,281
Publication Number

US 20120185386A1
Time in Patent Office

Days
Field of Search
US Class Current

705/42
CPC Class Codes

G06Q 20/108 Remote banking, e.g. home b...

G06Q 40/00 Finance; Insurance; Tax str...

AUTHENTICATION TOOL

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

234 Citations

44 Claims

Specification

Solutions

Use Cases

Quick Links

AUTHENTICATION TOOL

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

234 Citations

44 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links