Authentication methods for use in financial transactions and information banking
First Claim
Patent Images
1. A method comprising:
- initiating a financial transaction involving a person, using a mobile device;
determining, based on a characteristic of the transaction, a necessary authentication level for the transaction within a hierarchy of authentication levels, wherein each authentication level requires a different authentication method, and wherein each authentication level in the hierarchy of authentication levels requires an authentication method comprising the cumulative authentication methods of all lower authentication levels in the hierarchy and an additional authentication method;
receiving, at the mobile device, authentication information related to the person based on the necessary authentication level; and
authenticating the person by verification of the authentication information, using the mobile device, using the authentication method required by the necessary authentication level,wherein if the person is authenticated, the transaction is completed, and if the person is not authenticated, the transaction is prevented.
1 Assignment
0 Petitions
Accused Products
Abstract
A method for conducting a financial transaction can be used by a person using a mobile device to conduct the transaction. The mobile device receives information related to the person that can be used for authentication purposes, such as a PIN or biometric data. The mobile device then authenticates the person by verifying the information received. If the person is authenticated, the transaction is completed using the mobile device, and if the person is not authenticated, the transaction is prevented.
169 Citations
16 Claims
-
1. A method comprising:
-
initiating a financial transaction involving a person, using a mobile device; determining, based on a characteristic of the transaction, a necessary authentication level for the transaction within a hierarchy of authentication levels, wherein each authentication level requires a different authentication method, and wherein each authentication level in the hierarchy of authentication levels requires an authentication method comprising the cumulative authentication methods of all lower authentication levels in the hierarchy and an additional authentication method; receiving, at the mobile device, authentication information related to the person based on the necessary authentication level; and authenticating the person by verification of the authentication information, using the mobile device, using the authentication method required by the necessary authentication level, wherein if the person is authenticated, the transaction is completed, and if the person is not authenticated, the transaction is prevented. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A mobile device comprising a processor configured for use in conducting a plurality of financial transactions related to the person using the mobile device, wherein, in performing each transaction, the processor is configured to cause the mobile device to perform:
-
initiating a financial transaction involving a person; determining, based on a characteristic of the transaction, a necessary authentication level for the transaction within a hierarchy of authentication levels, wherein each authentication level requires a different authentication method, and wherein each authentication level in the hierarchy of authentication levels requires an authentication method comprising the cumulative authentication methods of all lower authentication levels in the hierarchy and an additional authentication method; receiving authentication information related to the person based on the necessary authentication level; and authenticating the person by verification of the authentication information, using the authentication method required by the necessary authentication level, wherein if the person is authenticated, the transaction is completed, and if the person is not authenticated, the transaction is prevented.
-
-
7. A computer-readable medium containing computer-executable instructions configured to cause a mobile device to perform:
-
initiating a financial transaction involving a person; determining, based on a characteristic of the transaction, a necessary authentication level for the transaction within a hierarchy of authentication levels, wherein each authentication level requires a different authentication method, and wherein each authentication level in the hierarchy of authentication levels requires an authentication method comprising the cumulative authentication methods of all lower authentication levels in the hierarchy and an additional authentication method; receiving authentication information related to the person based on the necessary authentication level; and authenticating the person by verification of the authentication information, using the authentication method required by the necessary authentication level, wherein if the person is authenticated, the transaction is completed, and if the person is not authenticated, the transaction is prevented.
-
-
8. A mobile device comprising:
-
a biometric sensor configured to read biometric information of a person; a processor configured to cause the mobile device to perform; receiving, at a point-of-sale, information regarding a financial transaction occurring at the point-of-sale; receiving, at the point-of-sale, biometric information of a person to the financial transaction; verifying, at the point-of-sale, the biometric information by comparing the biometric information with stored biometric information accessible to the processor; and transmitting a signal confirming the verification of the biometric information, wherein the transaction is prevented unless the biometric information is verified; automatically periodically gathering additional biometric information related to the person; and re-authenticating the person by verification of the additional biometric information. - View Dependent Claims (9, 10, 11, 12, 13)
-
-
14. A system comprising:
-
a mobile device comprising a biometric sensor configured to read biometric information of a person and a processor configured to cause the mobile device to perform; receiving, at a point-of-sale, information regarding a financial transaction occurring at the point-of-sale; determining, based on a characteristic of the transaction, one or more types of biometric information which are necessary for authenticating the transaction; receiving, at the point-of-sale, biometric information of a person to the financial transaction, the received biometric information corresponding to the one or more types of biometric information that are determined to be necessary; verifying, at the point-of-sale, the biometric information by comparing the biometric information with stored biometric information accessible to the processor; and transmitting a signal confirming the verification of the biometric information, wherein the transaction is prevented unless the biometric information is verified; automatically periodically gathering additional biometric information related to the person; and re-authenticating the person by verification of the additional biometric information; and a payment card, wherein the payment card cannot be used to complete a financial transaction without verification and recognition of the payment card by the mobile device.
-
-
15. A method comprising:
-
receiving, by a mobile device having a processor and a biometric sensor, at a point-of-sale, information regarding a financial transaction occurring at the point-of-sale; receiving, by the mobile device at the point-of-sale, biometric information of a person to the financial transaction; verifying, by the mobile device at the point-of-sale, the biometric information by comparing the biometric information with stored biometric information accessible to the processor; transmitting a signal from the mobile device, confirming the verification of the biometric information, wherein the transaction is prevented unless the biometric information is verified; automatically periodically gathering additional biometric information related to the person, by the mobile device; and re-authenticating the person by verification of the additional biometric information, by the mobile device.
-
-
16. A computer-readable medium containing computer-executable instructions configured to cause a mobile device having a biometric sensor to perform:
-
receiving, at a point-of-sale, information regarding a financial transaction occurring at the point-of-sale; receiving, at the point-of-sale, biometric information of a person to the financial transaction; verifying, at the point-of-sale, the biometric information by comparing the biometric information with stored biometric information accessible to the processor; transmitting a signal confirming the verification of the biometric information, wherein the transaction is prevented unless the biometric information is verified; automatically periodically gathering additional biometric information related to the person; and re-authenticating the person by verification of the additional biometric information.
-
Specification