Token based transaction authentication
First Claim
Patent Images
1. A method comprising:
- receiving, by a server computer, a consumer payment nickname from a client computer;
receiving, by the server computer, a payment reference identifier from the client computer, wherein the payment reference identifier was previously generated by the server computer;
analyzing, by the server computer, the received payment reference identifier;
determining, by the server computer, that the received payment reference identifier matches the previously generated payment reference identifier to determine an authentication thread;
analyzing, by the server computer, the consumer payment nickname;
determining, by the server computer, an account identifier associated with the consumer payment nickname;
determining, by the server computer, an authorization computer from the account identifier;
generating, by the server computer, a message comprising the payment reference identifier and the account identifier;
sending, by the server computer, the message comprising the payment reference identifier and the account identifier associated with the consumer payment nickname to the authorization computer; and
receiving, from the authorization computer, the payment reference identifier and an authentication address, which is forwarded to the client computer and is used to authenticate a user that holds an account associated with the account identifier.
0 Assignments
0 Petitions
Accused Products
Abstract
A token based transaction authentication system is disclosed. Issuer, merchants, and a payment processing network generate unique tokens or keys to authenticate messages between themselves and to authenticate a sending entity or consumer as they are redirected between entities. The tokens are also used to identify the particular authentication thread a message or sending entity is associated with. The sending entity authentication occurs over a web-based channel or a mobile based channel.
44 Citations
25 Claims
-
1. A method comprising:
-
receiving, by a server computer, a consumer payment nickname from a client computer; receiving, by the server computer, a payment reference identifier from the client computer, wherein the payment reference identifier was previously generated by the server computer; analyzing, by the server computer, the received payment reference identifier; determining, by the server computer, that the received payment reference identifier matches the previously generated payment reference identifier to determine an authentication thread; analyzing, by the server computer, the consumer payment nickname; determining, by the server computer, an account identifier associated with the consumer payment nickname; determining, by the server computer, an authorization computer from the account identifier; generating, by the server computer, a message comprising the payment reference identifier and the account identifier; sending, by the server computer, the message comprising the payment reference identifier and the account identifier associated with the consumer payment nickname to the authorization computer; and receiving, from the authorization computer, the payment reference identifier and an authentication address, which is forwarded to the client computer and is used to authenticate a user that holds an account associated with the account identifier. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A server computer comprising:
-
a processor; and a computer readable medium coupled to the processor, the computer readable medium comprising code, executable by the processor to implement a method comprising receiving, by the server computer, a consumer payment nickname from a client computer, receiving, by the server computer, a payment reference identifier from the client computer, wherein the payment reference identifier was previously generated by the server computer; analyzing, by the server computer, the received payment reference identifier; determining, by the server computer, that the received payment reference identifier matches the previously generated payment reference identifier to determine an authentication thread; analyzing, by the server computer, the consumer payment nickname; determining, by the server computer, an account identifier associated with the consumer payment nickname; determining, by the server computer, an authorization computer from the account identifier; generating, by the server computer, a message comprising the payment reference identifier and the account identifier; sending, by the server computer, the message comprising the payment reference identifier and the account identifier associated with the consumer payment nickname to the authorization computer; and receiving, from the authorization computer, the payment reference identifier and an authentication address, which is forwarded to the client computer and is used to authenticate a user that holds an account associated with the account identifier. - View Dependent Claims (8, 9, 10)
-
-
11. A system comprising:
-
a server computer comprising a processor and a computer readable medium coupled to the processor, the computer readable medium comprising code, executable by the processor to implement a method comprising receiving a consumer payment nickname from a client computer, receiving a payment reference identifier from the client computer, wherein the payment reference identifier was previously generated by the server computer, analyzing, by the server computer, the received payment reference identifier, determining, by the server computer, that the received payment reference identifier matches the previously generated payment reference identifier to determine an authentication thread; determining an account identifier associated with the consumer payment nickname, determining an authorization computer from the account identifier, generating a message comprising the payment reference identifier and the account identifier, sending the message comprising the payment reference identifier and the account identifier associated with the consumer payment nickname to the authorization computer, and receiving, from the authorization computer, the payment reference identifier and an authentication address, which is forwarded to the client computer and is used to authenticate a user that holds an account associated with the account identifier; and the client computer in communication with the server computer. - View Dependent Claims (12)
-
-
13. A method comprising:
-
sending, by a sending entity computer, a consumer payment nickname to a merchant computer, wherein the merchant computer thereafter forwards a merchant key and a payment reference identifier to a payment processing network, and wherein the payment processing network forwards an initiate authentication request to an issuer and receives an initiate authentication response including the payment reference identifier and an issuer key from the issuer; receiving, by the sending entity computer, an authentication address for an authentication computer; sending, by the sending entity computer, a passcode to the authentication address of the authentication computer so that the authentication computer determines an authentication result; receiving from the authentication computer a message comprising the authentication result and a redirect command; and automatically redirecting, using the redirect command, the sending entity computer to the merchant computer; and generating and transmitting, by the sending entity computer, a message comprising the merchant key and the payment reference identifier to the merchant computer. - View Dependent Claims (14, 15, 16, 17, 18)
-
-
19. A sending entity computer comprising:
-
a processor; and a computer readable medium coupled to the processor, the computer readable medium comprising code, executable by the processor to implement a method comprising sending, by the sending entity computer, a consumer payment nickname to a merchant computer, wherein the merchant computer thereafter forwards a merchant key and a payment reference identifier to a payment processing network, and wherein the payment processing network forwards an initiate authentication request to an issuer and receives an initiate authentication response including the payment reference identifier and an issuer key from the issuer, receiving, by the sending entity computer, an authentication address for an authentication computer, sending, by the sending entity computer, a passcode to the authentication address of the authentication computer so that the authentication computer determines an authentication result receiving from the authentication computer a message comprising the authentication result and a redirect command; and automatically redirecting, using the redirect command, the sending entity computer to the merchant computer; and generating and transmitting, by the sending entity computer, a message comprising the merchant key and the payment reference identifier to the merchant computer. - View Dependent Claims (20, 21, 22, 23, 24)
-
-
25. A system comprising:
-
a sending entity computer comprising a processor, and a computer readable medium coupled to the processor, the computer readable medium comprising code, executable by the processor to implement a method comprising sending a consumer payment nickname to a merchant computer, wherein the merchant computer thereafter forwards a merchant key and a payment reference identifier to a payment processing network, and wherein the payment processing network forwards an initiate authentication request to an issuer and receives an initiate authentication response including the payment reference identifier and an issuer key from the issuer, receiving an authentication address for an authentication computer, sending, by the sending entity computer, a passcode to the authentication address of the authentication computer so that the authentication computer determines an authentication result, receiving from the authentication computer a message comprising the authentication result and a redirect command, and automatically redirecting, using the redirect command, the sending entity computer to the merchant computer, and generating and transmitting, by the sending entity computer, a message comprising the merchant key and the payment reference identifier to the merchant computer; and the payment processing network in communication with the sending entity computer.
-
Specification