Authentication of a data card using a transit verification value

US 8,346,639 B2
Filed: 02/28/2007
Issued: 01/01/2013
Est. Priority Date: 02/28/2007
Status: Active Grant

First Claim

Patent Images

1. A portable consumer device comprising:

a processor chip; and

memory coupled to the processor chip, the memory storing;

retail application data for use in connection with a retail transaction, the retail application data having a retail application data field configuration for use with a retail processing system of an issuer that receives the retail application data and processes it to either authorize or deny payment for a retail transaction, the retail application data including a retail primary account number (PAN) that is associated with the retail application data and that identifies an account from which the payment is made, and the retail application data field configuration of the retail application data corresponds to a standardized format that includes selective authorization for merchant field categories that can be configured by the issuer to limit authorization of the retail transaction in accordance with the merchant field categories such that at least one predetermined merchant field category is accepted by the issuer for authorization of the retail transaction; and

access transaction application data for use in connection with an access transaction, the access transaction application data comprising a separate installation from the retail application data and having an access transaction application data field configuration for use with a reader of an agency from which the access transaction application data is received, wherein the access transaction application data field configuration of the access transaction application data is substantially similar to the retail application data field configuration, except that the access transaction application data includes an access transaction PAN that is used by the issuer to selectively authorize the access transaction and is used by the agency to grant access to a particular location at the reader, and the access transaction application data field configuration of the access transaction application data includes at least one data field that supports selective authorization for merchant field categories that can be configured by the issuer to limit authorization of the access transaction in accordance with the merchant field categories such that at least one predetermined merchant field category is not accepted by the agency for authorization of the access transaction;

wherein the access transaction application data further includes a transit verification value (TVV) that is adapted for offline verification processing in connection with the portable consumer device,wherein the access transaction application data field configuration of the access transaction application data conforms to a magnetic stripe data (MSD) configuration,wherein the TVV occupies a Personal Identification Number (PIN) data field of the MSD configuration, andwherein the TVV is implemented as a dynamic value and is variable by the processor chip of the portable consumer device.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Transaction processing involves receiving data from an access transaction application of a portable consumer device, wherein the received data comprises data from an access transaction data string that includes a transit verification value wherein, with the exception of the transit verification value, the access transaction data string is substantially similar to a retail data string comprising retail data, wherein the access application data string is adapted for use with an access transaction processing system and the retail data string is adapted for use with a retail processing system. The transaction processing involves processing access transaction application data for selective authorization of the transaction.

Citations

17 Claims

1. A portable consumer device comprising:
- a processor chip; and
  
  memory coupled to the processor chip, the memory storing;
  
  retail application data for use in connection with a retail transaction, the retail application data having a retail application data field configuration for use with a retail processing system of an issuer that receives the retail application data and processes it to either authorize or deny payment for a retail transaction, the retail application data including a retail primary account number (PAN) that is associated with the retail application data and that identifies an account from which the payment is made, and the retail application data field configuration of the retail application data corresponds to a standardized format that includes selective authorization for merchant field categories that can be configured by the issuer to limit authorization of the retail transaction in accordance with the merchant field categories such that at least one predetermined merchant field category is accepted by the issuer for authorization of the retail transaction; and
  
  access transaction application data for use in connection with an access transaction, the access transaction application data comprising a separate installation from the retail application data and having an access transaction application data field configuration for use with a reader of an agency from which the access transaction application data is received, wherein the access transaction application data field configuration of the access transaction application data is substantially similar to the retail application data field configuration, except that the access transaction application data includes an access transaction PAN that is used by the issuer to selectively authorize the access transaction and is used by the agency to grant access to a particular location at the reader, and the access transaction application data field configuration of the access transaction application data includes at least one data field that supports selective authorization for merchant field categories that can be configured by the issuer to limit authorization of the access transaction in accordance with the merchant field categories such that at least one predetermined merchant field category is not accepted by the agency for authorization of the access transaction;
  
  wherein the access transaction application data further includes a transit verification value (TVV) that is adapted for offline verification processing in connection with the portable consumer device,wherein the access transaction application data field configuration of the access transaction application data conforms to a magnetic stripe data (MSD) configuration,wherein the TVV occupies a Personal Identification Number (PIN) data field of the MSD configuration, andwherein the TVV is implemented as a dynamic value and is variable by the processor chip of the portable consumer device.
- View Dependent Claims (2, 3, 4, 5, 6, 14)
- - 2. The portable consumer device of claim 1, wherein the access transaction PAN is associated with merchant category code (MCC) data of the MSD configuration.
  - 3. The portable consumer device of claim 2, wherein the MCC data corresponds to a transit category, such that the issuer will deny any access transactions of the portable consumer device that are outside of a transit MCC.
  - 4. The portable consumer device of claim 2, wherein the MSD configuration includes issuer assigned data files for data storage on the portable consumer device in the access transaction application data.
  - 5. The portable consumer device of claim 1, further including issuer assigned data files for data storage in the access transaction application data of the portable consumer device.
  - 6. The portable consumer device of claim 1, wherein the portable consumer device comprises a contactless smart card device.
  - 14. The portable consumer device of claim 1, wherein the retail application data cannot be accessed from the agency reader and the access transaction data cannot be accessed from the retail processing system such that the portable consumer device cannot link the corresponding accounts.

7. A portable consumer device comprising:
- a processor chip;
  
  memory coupled to the processor chip, the memory storing;
  
  retail application data stored the retail application data having a retail application data field configuration for use with a merchant reader of a retail processing system of an issuer such that the issuer receives the retail application data from the merchant reader and processes it to either authorize or deny payment on a retail transaction, and wherein the retail application data includes a retail primary account number (PAN) that identifies an account from which the payment is made, and the retail application data field configuration of the retail application data corresponds to a standardized format that includes selective authorization for merchant field categories that can be configured by the issuer to limit authorization of the retail transaction in accordance with the merchant field categories such that at least one predetermined merchant field category is accepted by the issuer for authorization of the retail transaction, andaccess transaction application data stored the access transaction application data comprising a separate installation from the retail application data and having an access transaction application predetermined data field configuration for use with an access reader of an agency, wherein the access transaction application data field configuration of the access transaction application data is substantially similar to the retail application data field configuration, except that the access transaction application data includes an access transaction PAN that is received by the agency from the access reader to selectively authorize access to a particular location at the access reader, andan antenna element coupled to the processor chip, the antenna element configured to perform contactless transmission of at least one of the retail application data or the access transaction application data to at least one of the merchant reader or the access reader;
  
  wherein the access transaction PAN application data is received by the issuer to selectively authorize the access transaction;
  
  wherein the access transaction application data further includes a transit verification value (TVV) that is adapted for offline verification processing in connection with the agency authorization of access to the particular location at the access reader;
  
  wherein the access transaction application data field configuration of the access transaction application data conforms to a magnetic stripe data (MSD) configuration;
  
  wherein the TVV occupies a Personal Identification Number (PIN) data field of the MSD configuration;
  
  wherein the access transaction application data further includes blocking data that is received by the access reader to halt processing for conducting an access transaction when fraud is detected;
  
  wherein the access transaction application predetermined data field configuration of the access transaction application data includes at least one data field that supports selective authorization for merchant field categories that can be configured by the issuer to limit authorization of the access transaction based on in accordance with the merchant field categories such that at least one predetermined merchant field category is not accepted by the agency for authorization of the access transaction, andwherein the TVV is implemented as a dynamic value and is variable by the processor chip of the portable consumer device.
- View Dependent Claims (8, 9, 10, 11, 12, 13, 15, 16, 17)
- - 8. The portable consumer device of claim 7, wherein the retail application data field configuration of the retail application data corresponds to ISO 8583 configuration data.
  - 9. The portable consumer device of claim 7, wherein the access transaction PAN is associated with merchant category code (MCC) data of the MSD configuration.
  - 10. The portable consumer device of claim 9, wherein the MCC data corresponds to a transit category, such that the issuer will deny any access transactions of the portable consumer device that are outside of a transit MCC.
  - 11. The portable consumer device of claim 7, wherein the MSD data configuration includes issuer assigned data files for data storage on the portable consumer device in the access transaction application data.
  - 12. The portable consumer device of claim 7, further including issuer assigned data files for data storage in the access transaction application data of the portable consumer device.
  - 13. The portable consumer device of claim 7, wherein the portable consumer device comprises a contactless smart card device.
  - 15. The portable consumer device of claim 7, wherein the retail application data cannot be accessed from the agency reader and the access transaction data cannot be accessed from the retail processing system such that the portable consumer device cannot link the corresponding accounts.
  - 16. The portable consumer device of claim 7, wherein the retail application data includes a first access condition and the access transaction application data includes a second access condition different from the first access condition such that the merchant reader of the retail processing system cannot access the access transaction application data and the access reader of the agency cannot access the retail application data.
  - 17. The portable consumer device of claim 7, wherein the access transaction PAN is examined for inclusion on a negative list, such that the access transaction is authorized when the access transaction PAN is not found on the negative list.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Visa USA, Inc. (Visa, Inc.)
Original Assignee
Visa USA, Inc. (Visa, Inc.)
Inventors
Hammad, Ayman, Dixon, Philip B.
Primary Examiner(s)
Trammell, James
Assistant Examiner(s)
Malhotra, Sanjeev

Application Number

US11/680,594
Publication Number

US 20080203152A1
Time in Patent Office

2,134 Days
Field of Search

705/14, 705/21, 705/22, 705/26, 705/35, 705/38, 705/39, 705/41, 705/44, 705/50, 705/74, 705/75, 701/117, 709/203, 709/205, 709/224, 235/380, 235/381, 235/382, 235/383, 235/435, 235/492, 340/10.41, 340/572.7, 340/426.35, 380/270, 379/91.02, 348/150, 455/406, 194/205, 725/78, 707/999.03
US Class Current

705/35
CPC Class Codes

G06K 17/00   Methods or arrangements for...

G06Q 20/20   Point-of-sale [POS] network...

G06Q 20/3221   Access to banking informati...

G06Q 20/40   Authorisation, e.g. identif...

G06Q 20/409   Device specific authenticat...

G06Q 20/4097   using mutual authentication...

Authentication of a data card using a transit verification value

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

17 Claims

Specification

Solutions

Use Cases

Quick Links

Authentication of a data card using a transit verification value

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

17 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links