Pin block replacement
First Claim
1. A method for processing a token-based transaction, wherein a token having token data that comprises account data, and an original PIN used to authenticate the token, are used to fulfill the token-based transaction, the method for processing comprising:
- receiving, using a computer system, transaction data for the token-based transaction at a processing device, the transaction data comprising encrypted account information and an encrypted first PIN block, wherein the processing device comprises the computer system;
the processing device;
obtaining an unencrypted account data for the token by decrypting the encrypted account information using a first key;
obtaining a decrypted first PIN block by decrypting the encrypted first PIN block using a second key, wherein the decrypted first PIN block comprises a combination of the encrypted account information and the original PIN;
obtaining the original PIN by applying the encrypted account information to the decrypted first PIN block;
creating a second PIN block containing a combination of the original PIN and the unencrypted account data by combining the unencrypted account data with the original PIN; and
routing, based on the account data, the second PIN block and the unencrypted account data to a PIN verification system.
11 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods for performing token transactions are provided. In one embodiment, the invention provides for processing token transactions, including receiving an encrypted password for a debit card transaction, wherein the password was secured using encrypted debit-card information, decrypting the password using encrypted debit-card information for the debit card, recreating the password using actual debit-card information for the debit card, and forwarding the recreated password for subsequent transaction processing. The invention is suitable for implementation with other types of tokens in addition to debit-card tokens as well. The invention can be implemented in a scenario where the password includes a PIN block that is created by combining a clear or encrypted PIN for the token with token information.
169 Citations
17 Claims
-
1. A method for processing a token-based transaction, wherein a token having token data that comprises account data, and an original PIN used to authenticate the token, are used to fulfill the token-based transaction, the method for processing comprising:
-
receiving, using a computer system, transaction data for the token-based transaction at a processing device, the transaction data comprising encrypted account information and an encrypted first PIN block, wherein the processing device comprises the computer system; the processing device; obtaining an unencrypted account data for the token by decrypting the encrypted account information using a first key; obtaining a decrypted first PIN block by decrypting the encrypted first PIN block using a second key, wherein the decrypted first PIN block comprises a combination of the encrypted account information and the original PIN; obtaining the original PIN by applying the encrypted account information to the decrypted first PIN block; creating a second PIN block containing a combination of the original PIN and the unencrypted account data by combining the unencrypted account data with the original PIN; and routing, based on the account data, the second PIN block and the unencrypted account data to a PIN verification system. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A computer-based apparatus comprising:
-
means for receiving transaction data for a token-based transaction, the transaction data comprising encrypted account information and an encrypted first PIN block; means for obtaining an unencrypted account data for the token by decrypting the encrypted account information using a first key; means for obtaining a decrypted first PIN block by decrypting the encrypted first PIN block using a second key, wherein the decrypted first PIN block comprises a combination of encrypted account information and a PIN; means for obtaining the PIN by applying the encrypted account information to the decrypted first PIN block; means for creating a second PIN block containing a combination of the PIN and the unencrypted account data by combining the unencrypted account data with the PIN; and means for routing, based on the unencrypted account data, the second PIN block and the unencrypted account data to a PIN verification system. - View Dependent Claims (9, 10, 11, 12, 13)
-
-
14. A token transaction system for processing a token-based transaction, wherein a token having token data that comprises account data, and a PIN used to authenticate the token, are used to fulfill the token-based transaction, comprising:
-
a processor; a memory coupled to the processor and having instructions stored thereon that, when executed by the processor, causes the processor to perform the steps of; receiving transaction data for the token based transaction, the transaction data comprising encrypted account information and an encrypted first PIN block, obtaining an unencrypted account data for the token by decrypting the encrypted account information using a first key, obtaining a decrypted first PIN block by decrypting the encrypted first PIN block using a second key, wherein the decrypted first PIN block comprises a combination of the encrypted account information and the PIN; obtaining the PIN by applying the encrypted account information to the decrypted first PIN block, creating a second PIN block containing a combination of the PIN and the unencrypted account data by combining the unencrypted account data with the PIN; and routing, based on the account data, the second PIN block and the unencrypted account data to a PIN verification system. - View Dependent Claims (15, 16, 17)
-
Specification