ENCRYPTION SWITCH PROCESSING
First Claim
1. A processing server computer comprising:
- a processor; and
a non-transitory computer readable medium coupled to the processor, the non-transitory computer readable medium comprising code executable by the processor for implementing operations including;
receiving an envelope associated with a transaction, wherein the envelope includes unencrypted transaction details, a token derived from a key associated an account identifier, and a first portion of the transaction details in an encrypted format, the first portion of the transaction details encrypted using the key;
retrieving the key associated from a key database;
converting the token to the account identifier using the key;
verifying that the account identifier is associated with a valid account; and
decrypting the first portion of the transaction details and comparing the decrypted first portion of the transaction details with the unencrypted transaction details in the envelope associated with the transaction to determine whether the transaction is approved or declined.
0 Assignments
0 Petitions
Accused Products
Abstract
Techniques for eliminating the need for merchants and acquirers to conduct Payment Card Industry (“PCI”) security audit procedures are provided. Merchants and acquirers can eliminate the operating expenses associated with conducting audits to ensure compliance with PCI Data Security Standards (“DSS”), while at the same time ensuring that cardholders'"'"' data remains secure, thus protecting the cardholders from fraudulent transactions. System security is further enhanced through the use of per transaction audits, with the scope of the audit being directly between the Point of Sale (POS) terminal and the payment processing network. PCI DSS compliance can thus be assured on a per transaction basis, as opposed to only ensuring compliance generally for a merchant or acquirer on a periodic basis. Per transaction PCI DSS compliance is assured, while at the same time eliminating the need for merchants or acquirers to conduct compliance audits.
-
Citations
20 Claims
-
1. A processing server computer comprising:
-
a processor; and a non-transitory computer readable medium coupled to the processor, the non-transitory computer readable medium comprising code executable by the processor for implementing operations including; receiving an envelope associated with a transaction, wherein the envelope includes unencrypted transaction details, a token derived from a key associated an account identifier, and a first portion of the transaction details in an encrypted format, the first portion of the transaction details encrypted using the key; retrieving the key associated from a key database; converting the token to the account identifier using the key; verifying that the account identifier is associated with a valid account; and decrypting the first portion of the transaction details and comparing the decrypted first portion of the transaction details with the unencrypted transaction details in the envelope associated with the transaction to determine whether the transaction is approved or declined. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 20)
-
-
11. A method comprising:
-
receiving, by a server, an envelope associated with a transaction, wherein the envelope includes unencrypted transaction details, a token derived from a key associated an account identifier, and a first portion of the transaction details in an encrypted format, the first portion of the transaction details encrypted using the key; retrieving, by the server, the key associated from a key database; converting, by the server, the token to the account identifier using the key; verifying, by the server, that the account identifier is associated with a valid account; and decrypting, by the server, the first portion of the transaction details and comparing the decrypted first portion of the transaction details with the unencrypted transaction details in the envelope associated with the transaction to determine whether the transaction is approved or declined. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19)
-
Specification