AUTOMATIC USER VALIDATION SYSTEM AND METHOD
First Claim
1. An automatic user validation system for determining if a purported user may conduct a transaction, comprising:
- a server configured to;
access a computerized database configured to store a plurality of records, wherein each record of the plurality of records corresponds to a respective user authorized to conduct a predetermined type of transaction and is configured to store a user identifier associated with the authorized user;
receive a user validation request, the request comprising an identifier of a purported user; and
send a message that indicates the purported user is valid, if the database does not contain a record storing a user identifier equivalent to the received identifier of the purported user.
1 Assignment
0 Petitions
Accused Products
Abstract
Methods and apparatus support optional user authentication. Whether an authentication, or an enhanced type of authentication, is required before proceeding with a transaction can be determined on a user-by-user basis. Some credit card users subscribe to a service that provides the users with security tokens. Transactions involving these credit cards may require correct entry of a security token code, before the transactions are allowed to proceed. However, other credit card users, i.e., users who have not subscribed to the service, are not required to enter a security token code before their transactions are allowed to proceed.
20 Citations
30 Claims
-
1. An automatic user validation system for determining if a purported user may conduct a transaction, comprising:
a server configured to; access a computerized database configured to store a plurality of records, wherein each record of the plurality of records corresponds to a respective user authorized to conduct a predetermined type of transaction and is configured to store a user identifier associated with the authorized user; receive a user validation request, the request comprising an identifier of a purported user; and send a message that indicates the purported user is valid, if the database does not contain a record storing a user identifier equivalent to the received identifier of the purported user. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
17. An automatic user validation system for determining if a purported user may conduct a transaction, comprising:
a server configured to; access a computerized database configured to store a plurality of records, wherein each record of the plurality of records corresponds to a respective user authorized to conduct a predetermined type of transaction and is configured to store a user identifier associated with the authorized user and identification verification information, other than the user identifier, associated with the authorized user; receive a user validation request, the request comprising an identifier of a purported user and data purportedly verifying identity of the purported user; and send a message that indicates the purported user is valid if; the database contains a record storing a user identifier equivalent to the received identifier of the purported user, and the received data purportedly verifying the identity of the purported user corresponds with the identity verification information stored in the record; send a message that indicates the purported user is invalid, if; the database contains a record storing a user identifier equivalent to the received identifier of the purported user, and the received data purportedly verifying the identity of the purported user does not correspond with the identity verification information stored in the record; and send a message that indicates validity of the purported user is unknown (wherein “
unknown is distinct from “
invalid”
) if;the database does not contain a record storing a user identifier equivalent to the received identifier of the purported user. - View Dependent Claims (18, 19, 20, 21)
-
22. An automatic user validation system for determining if a purported user may conduct a transaction, comprising:
a server configured to; access a computerized database configured to store a plurality of records, wherein each record of the plurality of records corresponds to a respective user authorized to conduct a predetermined type of transaction and is configured to store a user identifier associated with the authorized user; receive a user validation request, the request comprising an identifier of a purported user; and send a message that indicates validity of the purported user is unknown, if the database does not contain a record storing a user identifier equivalent to the received identifier of the purported user. - View Dependent Claims (23, 24)
-
25. A system for handling transactions involving respective users, the system comprising:
a computer comprising an interface configured to solicit, for each transaction, input of a user account identifier and user verification data, wherein entry of the user account identifier is required, but entry of the user verification data is optional, the computer being configured to; communicate with a transaction authorization server to cause funds to be transferred, in relation to the transaction and the user account; communicate with a user verification server, distinct from the transaction authorization server, to verify identity of a user, but not to cause funds to be transferred; for each transaction, send the account identifier entered, and the user verification data, if entered, to the user verification server; receive a response from the user verification server; allow the transaction to proceed, if the response from the user verification server indicates the user is verified and a response from the transaction authorization server indicates the transaction is authorized; and prevent the transaction from proceeding, if the response from the user verification server indicates the verification of the user failed. - View Dependent Claims (26, 27, 28, 29, 30)
Specification