Verification of portable consumer device for 3-D secure services
First Claim
1. A first server computer comprising:
- a processor; and
a computer readable medium coupled to the processor, wherein the computer readable medium comprises code executable by the processor for implementing a method comprising;
receiving at the first server computer from a verification token an electronic request for secure datum for a portable consumer device associated with a user,wherein the electronic request comprises identification information associated with the portable consumer device, andwherein the electronic request is based on an interaction between the portable consumer device and the verification token;
validating at the server computer the received electronic request by applying at least one validation test;
if the received electronic request is validated, electronically sending by the first server computer the secure datum to the verification token or to an entity configured to forward the secure datum to the verification token, wherein the secure datum is subsequently inserted by the verification token into a Purchase Authentication Page associated with a first transaction; and
electronically sending the secure datum to an Access Control Server, wherein the Access Control Server authenticates the user for the first transaction based at least in part on a comparison of the secure datum sent to the Access Control Server and the secure datum inserted by the verification token into the Purchase Authentication Page.
0 Assignments
0 Petitions
Accused Products
Abstract
Apparatuses, methods, and systems pertaining to the verification of portable consumer devices for 3-D Secure Systems are disclosed. In one implementation, a verification token is coupled to a computer by a USB connection so as to use the computer'"'"'s networking facilities. The verification token reads identification information from a user'"'"'s portable consumer device (e.g., credit card) and sends the information to a validation entry over a communications network using the computer'"'"'s networking facilities. The validation entity applies one or more validation tests to the information that it receives from the verification token. If a selected number of tests are passed, the validation entity sends a 3-D Secure datum to the verification token. The verification token may enter the 3-D Secure datum into a hidden field of a Purchase Authentication Page appearing on the computer'"'"'s display.
-
Citations
20 Claims
-
1. A first server computer comprising:
-
a processor; and a computer readable medium coupled to the processor, wherein the computer readable medium comprises code executable by the processor for implementing a method comprising; receiving at the first server computer from a verification token an electronic request for secure datum for a portable consumer device associated with a user, wherein the electronic request comprises identification information associated with the portable consumer device, and wherein the electronic request is based on an interaction between the portable consumer device and the verification token; validating at the server computer the received electronic request by applying at least one validation test; if the received electronic request is validated, electronically sending by the first server computer the secure datum to the verification token or to an entity configured to forward the secure datum to the verification token, wherein the secure datum is subsequently inserted by the verification token into a Purchase Authentication Page associated with a first transaction; and electronically sending the secure datum to an Access Control Server, wherein the Access Control Server authenticates the user for the first transaction based at least in part on a comparison of the secure datum sent to the Access Control Server and the secure datum inserted by the verification token into the Purchase Authentication Page. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A first device comprising:
-
a processor; and a computer readable medium coupled to the processor, wherein the computer readable medium comprises code executable by the processor for implementing a method comprising; electronically receiving identification information associated with a portable consumer device from the portable consumer device based on an interaction with the portable consumer device; electronically sending at least a portion of the identification information to a server computer, wherein the identification information is used to validate the portable consumer device; electronically receiving from the server computer secure datum if the portable consumer device is validated; electronically receiving a Payer Authentication Request message from a merchant associated with a first transaction; inserting the received secure datum into a posting field of a Purchase Authentication Page associated with the first transaction; electronically sending the Purchase Authentication Page to an Access Control Server; electronically receiving from the Access Control Server a Payer Authentication Response from the Access Control Server, wherein the Payer Authentication Response is based at least in part on a comparison of the secure datum electronically sent in the Purchase Authentication Page to secure datum stored at the Access Control Server; and electronically sending the Payer Authentication Response to the merchant, wherein the merchant initiates an authorization exchange with an acquirer for the first transaction based at least in part on the Payer Authentication Response message. - View Dependent Claims (13, 14, 15, 16)
-
-
17. A first server computer comprising
a processor; - and
a computer readable medium coupled to the processor, wherein the computer readable medium comprises code executable by the processor for implementing a method comprising; electronically sending a Purchase Authentication Page to a computer, wherein the Purchase Authentication Page comprises a posting field to receive a secure datum; electronically receiving a returned Purchase Authentication Page from the computer, wherein the returned Purchase Authentication Page comprises a secure datum disposed in the posting field, and wherein the secure datum was received by the computer from a validation entity based on a validation of a request generated by a verification token after an interaction between the verification token and a portable consumer device; determining by a microprocessor whether the received secure datum matches a stored secure datum; and generating electronically a Payer Authentication Response message based on at least the determination of whether the received secure datum matches the stored secure datum. - View Dependent Claims (18, 19)
- and
-
20. A first method comprising:
-
receiving at a server computer an electronic request from a verification token for secure datum for a portable consumer device associated with a user, wherein the electronic request comprises identification information associated with the portable consumer device, and wherein the electronic request is based on an interaction between the portable consumer device and the verification token; validating the received electronic request by applying at least one validation test; and if the received electronic request is validated, electronically sending secure datum to the verification token or to an entity configured to forward the secure datum to the verification token, wherein the sent secure datum is subsequently inserted by the verification token into a Purchase Authentication Page associated with a first transaction, wherein the Purchase Authentication Page is sent to an Access Control Server; and wherein the secure datum electronically inserted in the Purchase Authentication Page is compared to secure datum stored at the Access Control Server.
-
Specification