PIN-BASED PAYMENT CONFIRMATION

US 20170124566A1
Filed: 01/10/2017
Published: 05/04/2017
Est. Priority Date: 02/23/2011
Status: Active Application

First Claim

Patent Images

1. A method comprising:

receiving a request to authenticate a consumer who initiated a prospective transaction using a first communications device;

determining whether the consumer has a second communications device linked to an account of the consumer with a third party payment provider, wherein the second communications device is separate and different from the first communications device;

generating, in response to the determining, a random and non-static secret code that changes each time it is generated;

sending the secret code to the second communications device;

prompting the consumer to input the secret code via a pop-up window that is overlying a checkout webpage that is displayed on the first communications device;

detecting an input in the pop-up window from the consumer in response to the prompting; and

selectively authenticating the consumer based on the detected input from the consumer;

wherein the receiving, the determining, the generating, the sending, the prompting, the detecting, and the selectively authenticating are performed by one or more electronic processors.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present disclosure involves a method of operating a payment platform. The method includes receiving a request to authenticate a first party from a second party. The method includes determining whether the first party has an account with the payment platform and a communications device associated with the account. The method includes generating a secret code in response to the determining. The method includes sending the secret code to the communications device of the first party. The method includes prompting the first party to input the secret code. The method includes authenticating the first party based on the input from the first party.

31 Citations

View as Search Results

20 Claims

1. A method comprising:
- receiving a request to authenticate a consumer who initiated a prospective transaction using a first communications device;
  
  determining whether the consumer has a second communications device linked to an account of the consumer with a third party payment provider, wherein the second communications device is separate and different from the first communications device;
  
  generating, in response to the determining, a random and non-static secret code that changes each time it is generated;
  
  sending the secret code to the second communications device;
  
  prompting the consumer to input the secret code via a pop-up window that is overlying a checkout webpage that is displayed on the first communications device;
  
  detecting an input in the pop-up window from the consumer in response to the prompting; and
  
  selectively authenticating the consumer based on the detected input from the consumer;
  
  wherein the receiving, the determining, the generating, the sending, the prompting, the detecting, and the selectively authenticating are performed by one or more electronic processors.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The method of claim 1, wherein the generating the secret code comprises generating the secret code only after the request to authenticate the consumer is received.
  - 3. The method of claim 1, wherein the generating the secret code comprises generating the secret code using Javascript.
  - 4. The method of claim 1, further comprising:
    - preventing a permanent storage of the secret code.
  - 5. The method of claim 1, further comprising:
    - generating the pop-up window using a Javascript lightbox.
  - 6. The method of claim 1, wherein a different secret code is generated for each different prospective transaction.
  - 7. The method of claim 1, wherein the selectively authenticating comprises:
    - retrieving, in response to a determination that the detected input fails to match the secret code, a location of the consumer at a time when the request is received;
      
      calculating a reliability score of the transaction based on the location of the consumer; and
      
      granting the request in response to the reliability score meeting a predetermined threshold.
  - 8. The method of claim 1, wherein the selectively authenticating comprises:
    - determining, in response to a determination that the detected input fails to match the secret code, a frequency of recent transaction associated with the consumer;
      
      calculating a reliability score of the transaction based on the frequency of the recent transactions; and
      
      granting the request in response to the reliability score meeting a predetermined threshold.
  - 9. The method of claim 1, wherein the selectively authenticating comprises:
    - determining, in response to a determination that the detected input fails to match the secret code, a total amount of the prospective transaction;
      
      calculating a reliability score of the transaction based on the total amount of the prospective transaction; and
      
      granting the request in response to the reliability score meeting a predetermined threshold.
  - 10. The method of claim 1, wherein the selectively authenticating comprises:
    - determining, in response to a determination that the detected input fails to match the secret code, a type of goods involved in the prospective transaction;
      
      calculating a reliability score of the transaction based on the type of goods involved in the prospective transaction; and
      
      granting the request in response to the reliability score meeting a predetermined threshold.

11. A system, comprising:
- a non-transitory memory; and
  
  one or more hardware processors coupled to the non-transitory memory and configured to read instructions from the non-transitory memory to cause the system to perform operations comprising;
  
  receiving from an online merchant, a request to authenticate a consumer who selected, at a checkout webpage of the online merchant displayed on a first communications device, a third party payment provider as a payment option to pay for a prospective transaction between the consumer and the online merchant;
  
  determining whether the consumer has an account with the third party payment provider as well as a second communications device associated with the account, wherein the second communications device is separate and different from the first communications device;
  
  generating, in response to the determining and after the request to authenticate the consumer is received, a random and dynamic secret code;
  
  sending the secret code to the second communications device, wherein the secret code is not stored in the second communications device;
  
  prompting the consumer to input the secret code via a pop-up window that is overlying the checkout webpage that is displayed on the first communications device;
  
  detecting an input in the pop-up window from the consumer in response to the prompting; and
  
  selectively authenticating the consumer based on the detected input from the consumer.
- View Dependent Claims (12, 13, 14, 15, 16, 17, 18)
- - 12. The system of claim 11, wherein the generating the secret code comprises generating the secret code using Javascript.
  - 13. The system of claim 11, further the operations further comprise:
    - generating the pop-up window using a Javascript lightbox.
  - 14. The system of claim 11, wherein a different secret code is generated for each different prospective transaction and changes each time it is generated.
  - 15. The system of claim 11, wherein the selectively authenticating comprises:
    - retrieving, in response to a determination that the detected input fails to match the secret code, a location of the consumer at a time when the request is received;
      
      calculating a reliability score of the transaction based on the location of the consumer; and
      
      granting the request in response to the reliability score meeting a predetermined threshold.
  - 16. The system of claim 11, wherein the selectively authenticating comprises:
    - determining, in response to a determination that the detected input fails to match the secret code, a frequency of recent transaction associated with the consumer;
      
      calculating a reliability score of the transaction based on the frequency of the recent transactions; and
      
      granting the request in response to the reliability score meeting a predetermined threshold.
  - 17. The system of claim 11, wherein the selectively authenticating comprises:
    - determining, in response to a determination that the detected input fails to match the secret code, a total amount of the prospective transaction;
      
      calculating a reliability score of the transaction based on the total amount of the prospective transaction; and
      
      granting the request in response to the reliability score meeting a predetermined threshold.
  - 18. The system of claim 11, wherein the selectively authenticating comprises:
    - determining, in response to a determination that the detected input fails to match the secret code, a type of goods involved in the prospective transaction;
      
      calculating a reliability score of the transaction based on the type of goods involved in the prospective transaction; and
      
      granting the request in response to the reliability score meeting a predetermined threshold.

19. A non-transitory machine-readable medium having stored thereon machine-readable instructions executable to cause a machine to perform operations comprising:
- receiving from an online merchant, a request to authenticate an entity who selected, at a checkout webpage of the online merchant displayed on a first communications device, a third party payment provider as a payment option to pay for a prospective transaction between the entity and the online merchant;
  
  determining whether the entity has an account with the third party payment provider as well as a second communications device associated with the account, wherein the second communications device is separate and different from the first communications device;
  
  generating, in response to the determining and after the request to authenticate the entity is received, a random and non-static secret code using Javascript, wherein the secret code changes each time it is generated, is not permanently stored, and is unique for each different prospective transaction;
  
  electronically transmitting the secret code to the second communications device;
  
  generating a pop-up window that is superimposed over the checkout webpage displayed on the first communications device;
  
  prompting the entity to input the secret code via the pop-up window;
  
  detecting an input in the pop-up window from the entity in response to the prompting; and
  
  selectively authenticating the entity based on the detected input from the entity.
- View Dependent Claims (20)
- - 20. The non-transitory machine-readable medium of claim 19, wherein the selectively authenticating comprises:
    - determining, in response to a determination that the detected input fails to match the secret code, information selected from the group consisting of;
      
      a location of the entity at a time when the request is received, a frequency of recent transaction associated with the consumer, a total amount of the prospective transaction, and a type of goods involved in the prospective transaction;
      
      calculating a reliability score of the transaction based on the location of the consumer; and
      
      granting the request in response to the reliability score meeting a predetermined threshold.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
PayPal, Inc. (PayPal Holdings, Inc.)
Original Assignee
PayPal, Inc. (PayPal Holdings, Inc.)
Inventors
Lindell, Jack, Ortner, Chris, Lewis, Scott, Thornton, Victor Manuel

Application Number

US15/402,285
Publication Number

US 20170124566A1
Time in Patent Office

Days
Field of Search
US Class Current
CPC Class Codes

G06Q 20/102   Bill distribution or payments

G06Q 20/3226   Use of secure elements sepa...

G06Q 20/4012   Verifying personal identifi...

G06Q 20/4016   involving fraud or risk lev...

G06Q 30/06   Buying, selling or leasing ...

G06Q 30/0613   Third-party assisted

G06Q 30/0641   Shopping interfaces

PIN-BASED PAYMENT CONFIRMATION

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

31 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

PIN-BASED PAYMENT CONFIRMATION

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

31 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links