Online payer authentication service
First Claim
1. A method wherein an account issuer authenticates, for the benefit of a third party, that a customer using an account during an online transaction with said third party is the actual owner of said account, said third party desiring verification as to the identity of said customer before proceeding with said online transaction with said customer, said method comprising:
- receiving, by said issuer, authentication information concerning said customer;
verifying, by said issuer during a registration process, the identity of said customer as the owner of said account and associating a designated password with said account;
receiving a verify enrollment request message at an access control server operated by said issuer during said online transaction as to whether said customer account is registered;
sending a verify enrollment response message back to said third party indicating that said customer account is registered;
receiving an authentication request message at said access control server from said third party during said online transaction, said message requesting verification of the identity of said customer, said authentication request message being routed via an Internet browser of a computer of said customer and being sent after said verify enrollment response message;
requesting over a network, by said issuer from said customer during said online transaction, of an identity-authenticating password;
verifying, by said issuer, that said identity-authenticating password from said customer matches said password previously designated for said account; and
notifying said third party over said network during said online transaction, by said issuer, that said customer is the actual owner of said account when said identity-authenticating password entered by said customer matches the password that was previously designated for said account, said notifying being routed via said Internet browser of said computer of said customer, whereby said issuer authenticates said customer for said third party during said online transaction.
2 Assignments
0 Petitions
Accused Products
Abstract
A payment authentication service authenticates the identity of a payer during online transactions. The authentication service of the present invention allows a card issuer to verify a cardholder'"'"'s identity using a variety of authentication methods, such as the use of passwords. Also, the only system participant requiring a certificate is the issuing financial institution. One embodiment of the invention for authenticating the identity of a cardholder during an online transaction involves querying an access control server to determine if a cardholder is enrolled in the payment authentication service, requests a password from the cardholder, verifies the password, and notifies a merchant whether the cardholder'"'"'s authenticity has been verified. In another aspect of the invention, a chip card and the authentication service independently generate cryptograms that must match in order for the service to verify that the correct chip card is being used by the cardholder.
-
Citations
38 Claims
-
1. A method wherein an account issuer authenticates, for the benefit of a third party, that a customer using an account during an online transaction with said third party is the actual owner of said account, said third party desiring verification as to the identity of said customer before proceeding with said online transaction with said customer, said method comprising:
-
receiving, by said issuer, authentication information concerning said customer; verifying, by said issuer during a registration process, the identity of said customer as the owner of said account and associating a designated password with said account; receiving a verify enrollment request message at an access control server operated by said issuer during said online transaction as to whether said customer account is registered; sending a verify enrollment response message back to said third party indicating that said customer account is registered; receiving an authentication request message at said access control server from said third party during said online transaction, said message requesting verification of the identity of said customer, said authentication request message being routed via an Internet browser of a computer of said customer and being sent after said verify enrollment response message; requesting over a network, by said issuer from said customer during said online transaction, of an identity-authenticating password; verifying, by said issuer, that said identity-authenticating password from said customer matches said password previously designated for said account; and notifying said third party over said network during said online transaction, by said issuer, that said customer is the actual owner of said account when said identity-authenticating password entered by said customer matches the password that was previously designated for said account, said notifying being routed via said Internet browser of said computer of said customer, whereby said issuer authenticates said customer for said third party during said online transaction. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. A method performed by an authentication service wherein an account issuer authenticates, for the benefit of a third party, that a customer using an account during an online transaction with said third party is the actual owner of said account, said method comprising:
-
receiving, by said issuer, authentication information concerning said customer; verifying, by said issuer during a registration process, the identity of said customer as the owner of said account and associating a designated password with said account; performing a verification process by said third party during said online transaction to determine whether said customer account is registered; receiving an indication responsive to said performing at said third party indicating that said customer account is registered; sending an authentication request message via a customer computer from a third-party software module over a network during said online transaction, said request message being sent after said verification process; receiving said authentication request message at an access control server that is operated by said issuer; requesting over said network, by said issuer, of a password from said customer; verifying, by said issuer, that said password entered by said customer matches said password previously designated for said account; and sending over said network, by said issuer, an authentication response message to a third-party software module, said authentication response message containing an authentication status indicator, said response message being routed via said computer of said customer, whereby said issuer authenticates said customer for said third party. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24)
-
-
25. A method performed by a customer computer used with an authentication service wherein an issuer financial institution authenticates, for the benefit of a third party, that a customer using an account during an online transaction with said third party is the actual owner of said account, said method comprising:
-
sending enrollment information to an enrollment web site by said customer during a registration process so that said issuer verifies the identity of said customer as the owner of said account; supplying a password to be designated for said account during said registration process; performing a verification process by said third party during said online transaction to determine whether said customer account is registered with said authentication service; receiving an indication responsive to said performing at said third party indicating that said customer account is registered; receiving, by said customer computer after said verification process, an authentication request message from said third party during said online transaction that requests the identity of said customer be authenticated; sending said authentication request message to an access control server operated by said issuer financial institution, said customer having an account with said issuer financial institution; receiving a request from said access control server for said customer to enter a password used to verify the identity of said customer during said online transaction; supplying said password used to verify identity; and facilitating the sending of an authentication response message from said access control server to said third party via said customer computer regarding the verification of the identity of said customer, whereby said access control server verifies the identity of said customer for said third party. - View Dependent Claims (26, 27, 28, 29, 30)
-
-
31. A method performed by an authentication service wherein an account issuer authenticates a customer for the benefit of a third party, said method comprising:
-
receiving, by said issuer, authentication information concerning said customer; verifying, by said issuer during a registration process, the identity of said customer as the owner of said account and associating a designated password with said account; receiving a request over a network from a customer computer to perform an online financial transaction with said third party; performing a verification process by said third party during said online transaction to determine whether said customer account is enrolled in said authentication service; receiving an indication responsive to said performing at said third party indicating that said customer account is enrolled; sending an authentication request message from said third party via said customer computer over a network during said financial transaction, said authentication request message destined for a computer of said issuer and being sent after said performing; receiving an authentication response message from said computer of said issuer via said customer computer during said financial transaction, said authentication response message indicating the authenticity of said customer, said authenticity being based upon a password supplied by said customer to said computer of said issuer during said financial transaction and upon said password previously designated for said account, whereby said issuer authenticates said customer for said third party. - View Dependent Claims (32, 33, 34, 35, 36, 37, 38)
-
Specification