TOKEN AND CRYPTOGRAM USING TRANSACTION SPECIFIC INFORMATION

US 20180006821A1
Filed: 02/17/2016
Published: 01/04/2018
Est. Priority Date: 02/17/2015
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

receiving access device data by a mobile communication device from an access device;

generating, by the mobile communication device, a token request including the access device data and communication device data;

sending, by the mobile communication device, the token request to a server computer, wherein the server computer thereafter determines a token and generates a cryptogram, the cryptogram generated using the access device data and the communication device data;

receiving, by the mobile communication device, the token and the cryptogram; and

providing, by the mobile communication device, the token and the cryptogram to the access device, wherein the access device forwards the cryptogram and the token to the server computer, which verifies the cryptogram and processes the token.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Systems and methods for token processing are disclosed. An access device can provide access device data to a mobile communication device. The communication device generates a token request including the access device data and communication device data and sends the token request to a server computer. The server computer returns a token and a token cryptogram to the mobile communication device. The token and the cryptogram may be used in a transaction.

248 Citations

18 Claims

1. A method comprising:
- receiving access device data by a mobile communication device from an access device;
  
  generating, by the mobile communication device, a token request including the access device data and communication device data;
  
  sending, by the mobile communication device, the token request to a server computer, wherein the server computer thereafter determines a token and generates a cryptogram, the cryptogram generated using the access device data and the communication device data;
  
  receiving, by the mobile communication device, the token and the cryptogram; and
  
  providing, by the mobile communication device, the token and the cryptogram to the access device, wherein the access device forwards the cryptogram and the token to the server computer, which verifies the cryptogram and processes the token.
- View Dependent Claims (2, 4, 5)
- - 2. The method of claim 1, wherein the access device data comprises location information of the access device, and wherein the communication device data comprises location information of the communication device. The method of claim 2, wherein the cryptogram is generated using token specific information, the token specific information including when the token was requested.
  - 4. The method of claim 1, wherein the access device data was present in a two-dimensional code displayed on the access device.
  - 5. The method of claim 1, wherein the access device data comprises a resource provider ID and a transaction initiate timestamp.

6. A communication device comprising;
- a processor, anda computer readable medium, the computer readable medium comprising code, executable by the processor, for implementing a method comprising;
  
  receiving access device data from an access device;
  
  generating a token request including the access device data and communication device data;
  
  sending the token request to a server computer, wherein the server computer thereafter determines a token and generates a cryptogram, the cryptogram generated using the access device data and the communication device data;
  
  receiving the token and the cryptogram; and
  
  providing the token and the cryptogram to the access device, wherein the access device forwards the cryptogram and the token to the server computer, which verifies the cryptogram and processes the token.
- View Dependent Claims (7, 8, 9, 10)
- - 7. The communication device of claim 6 wherein the access device data comprises location information of the access device, and wherein the communication device data comprises location information of the communication device.
  - 8. The communication device of claim 7, wherein the cryptogram is generated using token specific information, the token specific information including when the token was requested.
  - 9. The communication device of claim 6, wherein the access device data was present in a two-dimensional code displayed on the access device.
  - 10. The communication device of claim 6, wherein the access device data comprises a resource provider ID and a transaction initiate timestamp.

11. A method comprising:
- providing, by an access device, access device data to a mobile communication device, wherein the mobile communication device generates a token request including the access device data and communication device data and sends the token request to a server computer, which returns a token and a token cryptogram to the mobile communication device;
  
  receiving, by the access device, the token and the cryptogram from the mobile communication device;
  
  generating, by the access device, an authorization request message; and
  
  transmitting, by the access device, the authorization request message to the server computer, wherein the server computer verifies the cryptogram and processes the transaction using the token.
- View Dependent Claims (12, 13, 14)
- - 12. The method of claim 11, wherein the access device data comprises location information for the access device, and wherein the communication device data comprises location information for the communication device
  - 13. The method of claim 12, wherein the cryptogram is generated using token specific information, the token specific information including when the token was requested.
  - 14. The method of claim 11, wherein the access device data was present n a two-dimensional code displayed on the access device.

15. An access device comprising:
- a processor; and
  
  a computer readable medium, the computer readable medium comprising code, executable by the processor, for implementing a method comprising;
  
  providing access device data to a mobile communication device, wherein the mobile communication device generates a token request including the access device data and communication device data and sends the token request to a server computer, which returns a token and a token cryptogram to the mobile communication device;
  
  receiving, by the access device, the token and the cryptogram from the mobile communication device;
  
  generating an authorization request message; and
  
  transmitting the authorization request message to the server computer, wherein the server computer verifies the cryptogram and processes the transaction using the token.
- View Dependent Claims (16, 17, 18)
- - 16. The access device of claim 15, wherein the access device data comprises location information for the access device, and wherein the communication device data comprises location information for the communication device.
  - 17. The access device of claim 16, wherein the cryptogram is generated using token specific information, the token specific information including when the token was requested.
  - 18. The access device of claim 15, wherein the access device data was present in a two-dimensional code displayed on the access device.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Visa International Service Association (Visa, Inc.)
Original Assignee
Visa International Service Association (Visa, Inc.)
Inventors
KINAGI, Veerish

Granted Patent

US 11,068,895 B2
Time in Patent Office

Days
Field of Search
US Class Current
CPC Class Codes

G06Q 20/3224   Transactions dependent on l...

G06Q 20/385   using an alias or single-us...

G06Q 20/4015   using location information

H04L 2209/56   Financial cryptography, e.g...

H04L 2209/80   Wireless network architectu...

H04L 2463/121   Timestamp cryptographic mec...

H04L 63/107   wherein the security polici...

H04L 63/108   when the policy decisions a...

H04L 9/3213   using tickets or tokens, e....

H04L 9/3228   One-time or temporary data,...

H04L 9/3234   involving additional secure...

H04W 12/02   Protecting privacy or anony...

H04W 12/03   Protecting confidentiality,...

H04W 12/06   Authentication

H04W 12/068   using credential vaults, e....

H04W 12/12   Detection or prevention of ...

H04W 12/61   Time-dependent

H04W 12/63   Location-dependent; Proximi...

H04W 12/67   Risk-dependent, e.g. select...

H04W 4/02   Services making use of loca...

TOKEN AND CRYPTOGRAM USING TRANSACTION SPECIFIC INFORMATION

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

248 Citations

18 Claims

Specification

Use Cases

Quick Links

Others

TOKEN AND CRYPTOGRAM USING TRANSACTION SPECIFIC INFORMATION

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

248 Citations

18 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others