Transaction authorization service
First Claim
1. A system for enabling payments by a user to a third party, comprising:
- One or more processors; and
memory having stored thereon program instructions that when executed by the one or more processors cause the one or more processors to implement;
registering users with a service center to establish at least two codes for each user, wherein registering users with the service center comprises, for a particular user;
assigning, to the particular user, one code for authenticating communications from the particular user to the service center; and
for assigning, to the particular user, another code for authenticating communications from the service center to the particular user, wherein the code for authentication communications from the service center to the particular user is known only to the particular user and the service center;
establishing a payment account for the particular user;
receiving by the service center a message indicating initiation of a transaction between the particular user and a third party;
sending by the service center an authorization challenge to the particular user through a phone call requiring the particular user to enter the code for authenticating communications from the particular user to the service center, wherein the phone call includes the code for authenticating communications from the service center to the particular user to thus indicate to the particular user that the phone call is an authentic phone call from the service center;
for making payment to the third party from the payment account for the particular user once the transaction is authorized; and
sending a confirmation message to means for sending a confirmation message to the particular user and to the third party that indicates that the payment has been made.
1 Assignment
0 Petitions
Accused Products
Abstract
System and method for authorizing transactions, such as payments or money transfers. A source entity may initiate a transaction with a target entity via a first communications channel. In initiating the transaction, the source entity may indicate that the transaction is to be performed through a transaction authorization service. The target entity may send a transaction initiation message to the transaction authorization service. In response to receiving the transaction initiation message, the service may authorize the transaction with the source entity via a second communications channel. To authorize the transaction, the source entity may provide a PIN number or other identifier via the second communications channel. After receiving and validating the response from the source entity, the transaction authorization service may inform the target entity that the transaction is authorized. The target entity may then complete the transaction with the transaction authorization service and the source entity.
122 Citations
72 Claims
-
1. A system for enabling payments by a user to a third party, comprising:
-
One or more processors; and memory having stored thereon program instructions that when executed by the one or more processors cause the one or more processors to implement; registering users with a service center to establish at least two codes for each user, wherein registering users with the service center comprises, for a particular user; assigning, to the particular user, one code for authenticating communications from the particular user to the service center; and for assigning, to the particular user, another code for authenticating communications from the service center to the particular user, wherein the code for authentication communications from the service center to the particular user is known only to the particular user and the service center; establishing a payment account for the particular user; receiving by the service center a message indicating initiation of a transaction between the particular user and a third party; sending by the service center an authorization challenge to the particular user through a phone call requiring the particular user to enter the code for authenticating communications from the particular user to the service center, wherein the phone call includes the code for authenticating communications from the service center to the particular user to thus indicate to the particular user that the phone call is an authentic phone call from the service center; for making payment to the third party from the payment account for the particular user once the transaction is authorized; and sending a confirmation message to means for sending a confirmation message to the particular user and to the third party that indicates that the payment has been made.
-
-
2. A method, comprising:
performing, by a transaction authorization service implemented on one or more computers; registering a source entity with the transaction authorization service, wherein said registering the source entity comprises; associating an identifier with the source entity, wherein the identifier identifies the source entity to the transaction authorization service; and assigning a security phrase to the source entity, wherein the security phrase is known only to the source entity and the transaction authorization service; receiving a message from a target entity indicating initiation of a transaction between the source entity and the target entity; sending, in response to the message from the target entity, an authorization request message indicating a request for authorization of the transaction from the transaction authorization service to a communications device of the source entity via a communications channel, wherein the authorization request message includes the security phrase assigned to the source entity, wherein the security phrase in the authorization request message indicates to the source entity that the authorization request message is an authentic message from the transaction authorization service; and receiving a response message indicating a response to the request for authorization from the source entity, wherein the response message includes information authorizing the transaction and the identifier associated with the source entity. - View Dependent Claims (3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30)
-
31. A system, comprising:
-
a processor; and a memory comprising program instructions, wherein the program instructions are executable by the processor to implement a transaction authorization service to; register a source entity with the transaction authorization service, wherein, to register the source entity, the transaction authorization service is to; associate an identifier with the source entity, wherein the identifier identifies the source entity to the transaction authorization service; and assign a security phrase to the source entity, wherein the security phrase is known only to the source entity and the transaction authorization service; receive a message from a target entity indicating initiation of a transaction between the source entity and the target entity; in response to the message from the target entity, send an authorization request message indicating a request for authorization of the transaction to a communications device of the source entity via a communications channel, wherein the authorization request message includes the security phrase assigned to the source entity, wherein the security phrase in the authorization request message indicates to the source entity that the authorization request message is an authentic message from the transaction authorization service; and receive a response message indicating a response to the request for authorization from the source entity, wherein the response message includes information authorizing the transaction and the identifier associated with the source entity. - View Dependent Claims (32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48, 49, 50, 51)
-
-
52. A non-transitory computer-accessible storage medium comprising program instructions, wherein the program instructions are configured to implement a transaction authorization service configured to:
-
register a source entity with the transaction authorization service, wherein, to register the source entity, the transaction authorization service is configured to; associate an identifier with the source entity, wherein the identifier identifies the source entity to the transaction authorization service; and assign a security phrase to the source entity, wherein the security phrase is known only to the source entity and the transaction authorization service; receive a message from a target entity indicating initiation of a transaction between the source entity and the target entity; in response to the message from the target entity, send an authorization request message indicating a request for authorization of the transaction to a communications device of the source entity via a communications channel, wherein the authorization request message includes the security phrase assigned to the source entity, wherein the security phrase in the authorization request message indicates to the source entity that the authorization request message is an authentic message from the transaction authorization service; and receive a response message indicating a response to the request for authorization from the source entity, wherein the response message includes information authorizing the transaction and the identifier associated with the source entity. - View Dependent Claims (53, 54, 55, 56, 57, 58, 59, 60, 61, 62, 63, 64, 65, 66, 67, 68, 69, 70, 71, 72)
-
Specification