Purchase Transaction System with Encrypted Payment Card Data
First Claim
1. A method in which a user at user computing equipment uses client software in completing an online purchase transaction with merchant computing equipment over a communications network, the method comprising:
- with payment processing computing equipment associated with a payment processor, providing the client software on the user computing equipment with code for an encryption function and a cryptographic key; and
with the payment processing computing equipment, receiving a purchase transaction authorization request from the merchant computing equipment that contains payment information encrypted by the client software using the encryption function.
5 Assignments
0 Petitions
Accused Products
Abstract
Online ordering systems allow a user to submit sensitive information such as payment card information to a merchant in encrypted form. A payment card processor server may be used to provide the user'"'"'s web browser with code for an encryption function, a cryptographic key, and a key identifier. The web browser may encrypt the payment card information by executing the encryption function and using the key. The encrypted payment card information may be supplied to the merchant over the internet. A key identifier that identifies which cryptographic key was used in encrypting the payment card information may be provided to the merchant without providing the merchant with access to the key. The merchant can forward the encrypted payment card information to the credit card processor server with the key identifier. The processor server can use the key identifier to obtain the key and decrypt the payment card information for authorization.
24 Citations
20 Claims
-
1. A method in which a user at user computing equipment uses client software in completing an online purchase transaction with merchant computing equipment over a communications network, the method comprising:
-
with payment processing computing equipment associated with a payment processor, providing the client software on the user computing equipment with code for an encryption function and a cryptographic key; and with the payment processing computing equipment, receiving a purchase transaction authorization request from the merchant computing equipment that contains payment information encrypted by the client software using the encryption function. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A method for conducting online purchases, comprising:
-
with a web server at merchant computing equipment, providing ordering information over the communications network to client software running on user computing equipment, wherein the ordering information includes code that requests a cryptographic key from a different server over the communications network; and with the merchant computing equipment, receiving encrypted payment information from the client software over the communications network that has been encrypted using the cryptographic key. - View Dependent Claims (11, 12, 13, 14, 15)
-
-
16. A method for conducting online purchases in a system that includes user computing equipment, a first server that communicates with the user computing equipment over a communications network, and a second server, the method comprising:
with client software at the user computing equipment, receiving code from the first server over the communications network, wherein the received code comprises a first code that requests a cryptographic key from the second server over the communications network and a second code for using the client software to accept payment information from a user of the client software. - View Dependent Claims (17, 18, 19, 20)
Specification