Method and system for authenticating a party to a transaction

US 8,156,543 B2
Filed: 04/16/2008
Issued: 04/10/2012
Est. Priority Date: 04/17/2007
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

a) receiving, at a directory server, an alias identifier, wherein the alias identifier is associated with an account identifier for an account of a presenter;

b) determining, by the directory server, an associated trusted party using the alias identifier;

c) sending, by the directory server, a verification request message to the trusted party after receiving the verification request message from a merchant plug-in and determining the associated trusted party, where the verification request message requests information regarding whether the trusted party or the presenter participates in an authentication program;

d) receiving, at the directory server, a verification response message, wherein the verification response message indicates whether the trusted party or the presenter participates in the authentication program to indicate an authentication availability for the presenter; and

e) sending a first authentication request message to an access control server operated by the trusted party, from the directory server, after receiving the verification response message from the access control server, wherein the access control server subsequently sends a second authentication request message to the presenter.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

One embodiment of the invention is directed to a method including receiving an alias identifier associated with an account associated with a presenter, determining an associated trusted party using the alias identifier, sending a verification request message to the trusted party after determining the associated trusted party, and receiving a verification response message.

Citations

20 Claims

1. A method comprising:
- a) receiving, at a directory server, an alias identifier, wherein the alias identifier is associated with an account identifier for an account of a presenter;
  
  b) determining, by the directory server, an associated trusted party using the alias identifier;
  
  c) sending, by the directory server, a verification request message to the trusted party after receiving the verification request message from a merchant plug-in and determining the associated trusted party, where the verification request message requests information regarding whether the trusted party or the presenter participates in an authentication program;
  
  d) receiving, at the directory server, a verification response message, wherein the verification response message indicates whether the trusted party or the presenter participates in the authentication program to indicate an authentication availability for the presenter; and
  
  e) sending a first authentication request message to an access control server operated by the trusted party, from the directory server, after receiving the verification response message from the access control server, wherein the access control server subsequently sends a second authentication request message to the presenter.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method of claim 1 wherein the alias identifier is a number.
  - 3. The method of claim 1 wherein the trusted party is a financial institution that maintains the account.
  - 4. The method of claim 1 wherein prior to receiving the alias identifier, the presenter sends the alias identifier using a communication device.
  - 5. The method of claim 1 wherein the trusted party is an issuer that issued the account identifier.
  - 6. The method of claim 1, wherein the presenter is presented with a list of account numbers to select from.

7. A non-transitory computer readable storage medium comprising:
- a) code for receiving an alias identifier, wherein the alias identifier is associated with an account identifier for an account of a presenter;
  
  b) code for determining an associated trusted party using the alias identifier;
  
  c) code for sending a verification request message to the trusted party after receiving the verification request message from a merchant plug-in and determining the associated trusted party, where the verification request message requests information regarding whether the trusted party or the presenter participates in a authentication program;
  
  d) code for receiving a verification response message, wherein the verification response message indicates whether the trusted party or the presenter participates in the authentication program to indicate an authentication availability for the presenter; and
  
  e) code for sending a first authentication request message to an access control server operated by the trusted party after receiving the verification response message from the access control server, wherein the access control server subsequently sends a second authentication request message to the presenter.
- View Dependent Claims (8)
- - 8. A directory server comprising:
    - a processor; and
      
      the computer readable medium system of claim 7 coupled to the processor.

9. A method comprising:
- a) providing an alias identifier associated with an account identifier associated with an account of a presenter, using a communication device, to a directory server;
  
  b) receiving an authentication request message, using the communication device, after providing the alias identifier, wherein the authentication request message is received from an access control server operated by a trusted party after the directory server receives a verification request message from a merchant plug-in and determines that the trusted party participates in an authentication program by receiving a verification response message indicating an authentication availability for the presenter; and
  
  c) sending an authentication response message, using the communication device, after receiving the authentication request message.
- View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
- - 10. The method of claim 9 wherein the alias identifier is a number.
  - 11. The method of claim 9 wherein the alias identifier is provided using the presenter'"'"'s voice.
  - 12. The method of claim 11 wherein the authentication request message is received at a communication device operated by the presenter.
  - 13. The method of claim 12 wherein the authentication response message comprises a password or a pin number.
  - 14. The method of claim 9 wherein the alias identifier is provided to a merchant in a face-to-face transaction.
  - 15. The method of claim 9 wherein the alias identifier is provided to a merchant using a communication device that is remotely located with respect to the merchant.
  - 16. The method of claim 9, wherein the authentication response message includes at least one of a shipping address, contact information, or preference of the presenter.

17. A non-transitory computer readable storage medium comprising:
- a) code for providing an alias identifier associated with an account identifier associated with an account of a presenter, to a directory server;
  
  b) code for receiving an authentication request message after providing the alias identifier, wherein the authentication request message is received from an access control server operated by a trusted party after the directory server receives a verification request message from a merchant plug-in and determines that the trusted party participates in an authentication program by receiving a verification response message indicating an authentication availability for the presenter; and
  
  c) code for sending an authentication response message after receiving the authentication request message.
- View Dependent Claims (18, 19, 20)
- - 18. The computer readable medium of claim 17 wherein the alias identifier is provided to a merchant in a face-to-face transaction.
  - 19. The computer readable medium of claim 17 wherein the alias identifier is provided to a merchant using a communication device that is remotely located with respect to the merchant.
  - 20. A communication device comprising a processor, coupled to the non-transitory computer readable storage medium of claim 17.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Visa USA, Inc. (Visa, Inc.)
Original Assignee
Visa USA, Inc. (Visa, Inc.)
Inventors
Wentker, David, Lindelsee, Michael, Brand, Olivier, Dimmick, James, Singh Grewal, Tribhuwan A.
Primary Examiner(s)
Chai, Longbit

Application Number

US12/104,186
Publication Number

US 20090037982A1
Time in Patent Office

1,455 Days
Field of Search

726/3
US Class Current

726/3
CPC Class Codes

G06F 21/33   using certificates

G06F 2221/2103   Challenge-response

G06F 2221/2115   Third party

G06Q 20/385   using an alias or single-us...

G06Q 20/386   using messaging services or...

G06Q 20/40   Authorisation, e.g. identif...

G06Q 30/06   Buying, selling or leasing ...

H04L 63/0421   Anonymous communication, i....

H04L 63/0428   wherein the data content is...

H04L 63/08   for authentication of entit...

H04L 63/083   using passwords cryptograph...

H04L 63/0884   by delegation of authentica...

Method and system for authenticating a party to a transaction

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Method and system for authenticating a party to a transaction

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links