Method and system for conducting secure payments over a computer network without a pseudo or proxy account number
First Claim
1. A computerized method of conducting an electronic transaction over a public communications network, with a payment account number having a certain amount of available funds, using a payment network linked to a check site, comprising:
- (a) computer generating a secret key associated with said payment account number;
(b) using said secret key to computer generate a message authentication code specific to said transaction;
(c) computer generating an authorization request message including said message authentication code;
(d) forwarding said authorization request message over said payment network to said check site for computer verification of the authenticity of said message authentication code;
(e) verifying the message authentication code by said check site using said secret key; and
(f) responding by computer to said authorization request message over said payment network based on said available funds and said transaction amount,wherein said authorization request message is routed over said payment network based on a special bank identification number corresponding to said check site,wherein said authorization request message includes an expiration date field and said message authentication code is placed in said expiration date field,wherein said payment account number is issued by an issuer and said response is provided by said issuer; and
further comprising, providing software at a user location for generating said secret key.
1 Assignment
0 Petitions
Accused Products
Abstract
A method is provided for conducting an electronic transaction with a payment account number having a certain amount of available funds, using a payment network and a “check site”. The method comprises the following steps: (a) generating a secret key associated with the payment account number; (b) using the secret key to generate a message authentication code (“MAC”) specific to the transaction; (c) generating an authorization request message including the message authentication code; (d) forwarding the authorization request message over the payment network to the check site for verifying the authenticity of the MAC; (e) verifying the message authentication code by the check site using the secret key; (f) responding to the authorization request message over the payment network based on the available funds and the transaction amount.
-
Citations
6 Claims
-
1. A computerized method of conducting an electronic transaction over a public communications network, with a payment account number having a certain amount of available funds, using a payment network linked to a check site, comprising:
-
(a) computer generating a secret key associated with said payment account number; (b) using said secret key to computer generate a message authentication code specific to said transaction; (c) computer generating an authorization request message including said message authentication code; (d) forwarding said authorization request message over said payment network to said check site for computer verification of the authenticity of said message authentication code; (e) verifying the message authentication code by said check site using said secret key; and (f) responding by computer to said authorization request message over said payment network based on said available funds and said transaction amount, wherein said authorization request message is routed over said payment network based on a special bank identification number corresponding to said check site, wherein said authorization request message includes an expiration date field and said message authentication code is placed in said expiration date field, wherein said payment account number is issued by an issuer and said response is provided by said issuer; and further comprising, providing software at a user location for generating said secret key.
-
-
2. A computerized method of conducting an electronic transaction over a public communications network with a check site and a payment account number having a bank identification number (BIN) associated with said check site comprising:
-
(a) computer generating a per-card key associated with said payment account number; (b) computer generating a message authentication code (MAC) using said per-card key; (c) computer generating a MAC verification request including said payment account number and said MAC; (d) verifying said MAC; (e) based on said verification, and based on a transaction sequence number associated with the electronic transaction, creating an expected transaction sequence number (ETSN) for said MAC; (f) providing said check site with reference data associated with said ETSN; (g) computer generating a second message authentication code using said ETSN and said per-card key; (h) routing said second message authentication code to said check site based on said BIN associated with said check site; (i) determining said per-card key associated with the payment account number of an unverified message authentication code having associated ETSN and reference data;
computer verifying said second message authentication code by said check site using said determined per-card key, and said associated ETSN and reference data;wherein step (g) further comprises; (j) converting said second message authentication code into a pseudo expiration date using said reference data; (k) generating an authorization request having an expiration date field containing said pseudo expiration date; and (l) responding to said authorization request and verifying said second message authentication code based on said pseudo expiration date. - View Dependent Claims (3, 4, 5, 6)
-
Specification