SYSTEMS, METHODS, AND COMPUTER READABLE MEDIA FOR CONDUCTING A TRANSACTION USING CLOUD BASED CREDENTIALS
First Claim
1. A method for conducting an electronic transaction, the method comprising:
- initiating an electronic transaction between a mobile device and a point of sale (POS) reader device;
applying at least a user identifier that is associated with a user of the mobile device and shared secret data as inputs to a cryptographic function in the mobile device, wherein the shared secret data is a key or password shared by both the user and an issuer server;
inserting the output of the cryptographic function into legacy transaction formatted data;
wirelessly providing the legacy transaction formatted data to the POS reader device via the electronic transaction;
forwarding, from the POS reader device, the legacy transaction formatted data to the issuer server;
processing, at the issuer server, the legacy transaction formatted data to verify the user identifier and request authorization for the electronic transaction;
sending, to the POS reader device, a notification message that indicates that the electronic transaction is authorized; and
conducting, at the POS reader device, the electronic transaction upon receipt of the notification message.
1 Assignment
0 Petitions
Accused Products
Abstract
A method for conducting an electronic transaction that includes initiating an electronic transaction between a mobile device and a POS reader device and applying at least a user identifier that is associated with a user of the mobile device and shared secret data as inputs to a cryptographic function in the mobile device. The method further includes inserting the output of the cryptographic function into legacy transaction formatted data, wirelessly providing the legacy transaction formatted data to the POS reader device via the electronic transaction, forwarding the legacy transaction formatted data to the issuer server, and processing, at the issuer server, the legacy transaction formatted data to verify the user identifier and request authorization for the electronic transaction. The method also includes sending a notification message to the POS reader device that indicates that the electronic transaction is authorized and conducting the electronic transaction upon receipt of the notification message.
-
Citations
23 Claims
-
1. A method for conducting an electronic transaction, the method comprising:
-
initiating an electronic transaction between a mobile device and a point of sale (POS) reader device; applying at least a user identifier that is associated with a user of the mobile device and shared secret data as inputs to a cryptographic function in the mobile device, wherein the shared secret data is a key or password shared by both the user and an issuer server; inserting the output of the cryptographic function into legacy transaction formatted data; wirelessly providing the legacy transaction formatted data to the POS reader device via the electronic transaction; forwarding, from the POS reader device, the legacy transaction formatted data to the issuer server; processing, at the issuer server, the legacy transaction formatted data to verify the user identifier and request authorization for the electronic transaction; sending, to the POS reader device, a notification message that indicates that the electronic transaction is authorized; and conducting, at the POS reader device, the electronic transaction upon receipt of the notification message. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21)
-
-
22. A system for conducting an electronic transaction, the system comprising:
-
a point of sale (POS) reader device located a point of sale that is configured to process an electronic transaction; a mobile device configure configured to initiate the electronic transaction with the POS reader device, to apply at least a user identifier that is associated with a user of the mobile device and shared secret data as inputs to a cryptographic function in the mobile device, wherein the shared secret data is a key or password shared by both the user and an issuer server, to insert the output of the cryptographic function into the legacy transaction formatted data, and to wirelessly provide the legacy transaction formatted data to the POS reader device via the electronic transaction; and an issuer server configured to receive the legacy transaction formatted data from the POS reader device, to process the legacy transaction formatted data to verify the user identifier and request authorization for the electronic transaction, and to send a notification message that indicates that the electronic transaction is authorized to the POS reader device.
-
-
23. A non-transitory computer readable medium having stored thereon executable instructions for controlling a computer to perform steps comprising:
-
initiating an electronic transaction between a mobile device and a point of sale (POS) reader device; applying at least a user identifier that is associated with a user of the mobile device and shared secret data as inputs to a cryptographic function in the mobile device, wherein the shared secret data is a key or password shared by both the user and an issuer server; inserting the output of the cryptographic function into legacy transaction formatted data; wirelessly providing the legacy transaction formatted data to the POS reader device via the electronic transaction; forwarding, from the POS reader device, the legacy transaction formatted data to the issuer server; processing, at the issuer server, the legacy transaction formatted data to verify the user identifier and request authorization for the electronic transaction; sending, to the POS reader device, a notification message that indicates that the electronic transaction is authorized; and conducting, at the POS reader device, the electronic transaction upon receipt of the notification message.
-
Specification