Data verification using access device
First Claim
1. A method comprising:
- receiving, at a server computer, portable device information and a mobile device identifier associated with a mobile device;
storing, by the server computer, the portable device information and the mobile device identifier in a database associated with the server computer;
receiving, by the server computer, first transaction data from an access device for a physical or proximity transaction conducted at the access device, wherein the physical or proximity transaction includes physically presenting the portable device to the access device to provide portable device data to the access device;
determining, by the server computer, from the first transaction data that the physical or proximity transaction is associated with the portable device;
determining, by the server computer, a location of the access device;
determining, by the server computer, a location of the mobile device associated with the mobile device identifier;
determining, by the server computer, that the location of the mobile device matches the location of the access device;
marking, by the server computer, the stored portable device information and the stored mobile device identifier as authentication verified;
generating, by the server computer, a verification value or a digital certificate indicating that the status of the portable device is authentication verified;
storing, by the server computer, the verification value or the digital certificate;
receiving, at the server computer, second transaction data from a transactor computer for a remote transaction conducted via the transactor computer, wherein the remote transaction includes providing the portable device data to the transactor computer over a network without physically presenting the portable device to an access device;
determining, by the server computer, from the second transaction data that the remote transaction is associated with the portable device;
determining, by the server computer, that the stored portable device information and the stored mobile device identifier are marked as authentication verified;
identifying, by the server computer, the stored the verification value or the digital certificate; and
sending, by the server computer, a message indicating the status of the portable device as authentication verified to the transactor computer or to an issuer, the message including the verification value or the digital certificate, wherein the verification value or the digital certificate is subsequently used in a determination as to whether the remote transaction is fraudulent.
1 Assignment
0 Petitions
Accused Products
Abstract
An embodiment of the invention is directed to a method comprising receiving, at a server computer, information for a portable device that includes a mobile device identifier and storing, by the server computer, the information for the portable device that includes the mobile device identifier in a database associated with the server computer. The method further comprising receiving, by the server computer, transaction data from an access device for a transaction conducted at the access device, determining, by the server computer, from the transaction data that the transaction is associated with the portable device, determining, by the server computer, a location of the access device, determining, by the server computer, a location of a mobile device associated with the mobile device identifier, determining, by the server computer, that the location of the mobile device matches the location of the access device, and marking, by the server computer, the stored information for the portable device as authentication verified.
-
Citations
20 Claims
-
1. A method comprising:
-
receiving, at a server computer, portable device information and a mobile device identifier associated with a mobile device; storing, by the server computer, the portable device information and the mobile device identifier in a database associated with the server computer; receiving, by the server computer, first transaction data from an access device for a physical or proximity transaction conducted at the access device, wherein the physical or proximity transaction includes physically presenting the portable device to the access device to provide portable device data to the access device; determining, by the server computer, from the first transaction data that the physical or proximity transaction is associated with the portable device; determining, by the server computer, a location of the access device; determining, by the server computer, a location of the mobile device associated with the mobile device identifier; determining, by the server computer, that the location of the mobile device matches the location of the access device; marking, by the server computer, the stored portable device information and the stored mobile device identifier as authentication verified; generating, by the server computer, a verification value or a digital certificate indicating that the status of the portable device is authentication verified; storing, by the server computer, the verification value or the digital certificate; receiving, at the server computer, second transaction data from a transactor computer for a remote transaction conducted via the transactor computer, wherein the remote transaction includes providing the portable device data to the transactor computer over a network without physically presenting the portable device to an access device; determining, by the server computer, from the second transaction data that the remote transaction is associated with the portable device; determining, by the server computer, that the stored portable device information and the stored mobile device identifier are marked as authentication verified; identifying, by the server computer, the stored the verification value or the digital certificate; and sending, by the server computer, a message indicating the status of the portable device as authentication verified to the transactor computer or to an issuer, the message including the verification value or the digital certificate, wherein the verification value or the digital certificate is subsequently used in a determination as to whether the remote transaction is fraudulent. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A server computer comprising:
-
a processor; and a non-transitory computer readable medium coupled with the processor, the computer readable medium comprising instructions executable by the processor, the instructions comprising; receiving portable device information and a mobile device identifier associated with a mobile device; storing the portable device information and the mobile device identifier in a database associated with the server computer; receiving first transaction data from an access device for a physical or proximity transaction conducted at the access device, wherein the physical or proximity transaction includes physically presenting the portable device to the access device to provide portable device data to the access device; determining from the first transaction data that the physical or proximity transaction is associated with the portable device; determining a location of the access device; determining a location of the mobile device associated with the mobile device identifier; determining that the location of the mobile device matches the location of the access device; marking the stored portable device information and the stored mobile device identifier as authentication verified; generating a verification value or a digital certificate indicating that the status of the portable device is authentication verified; storing the verification value or the digital certificate; receiving second transaction data from a transactor computer for a remote transaction conducted via the transactor computer, wherein the remote transaction includes providing the portable device data to the transactor computer over a network without physically presenting the portable device to an access device; determining from the second transaction data that the remote transaction is associated with the portable device; determining that the stored portable device information and the stored mobile device identifier are marked as authentication verified; identifying the stored the verification value or the digital certificate; and sending a message indicating the status of the portable device as authentication verified to the transactor computer or to an issuer, the message including the verification value or the digital certificate, wherein the verification value or the digital certificate is subsequently used in a determination as to whether the remote transaction is fraudulent. - View Dependent Claims (14, 15, 16, 17, 18, 19)
-
-
20. A computer apparatus comprising:
-
a processor; and a non-transitory computer readable medium coupled with the processor, the computer readable medium comprising instructions executable by the processor, the instructions comprising; sending portable device information and a mobile device identifier associated with a mobile device, to a server computer wherein the server computer stores the portable device information and the mobile device identifier in a database associated with the server computer; receiving first transaction data for a physical or proximity transaction conducted using the portable device, wherein the physical or proximity transaction includes physically presenting the portable device to an access device to provide portable device data to the access device; sending the first transaction data to the server computer wherein the server computer determines a location of an access device associated with the mobile device identifier, determines a location of the mobile device associated with the mobile device identifier, determines that the location of the mobile device identifier matches the location of the access device, marks the stored portable device information and the stored mobile device identifier in the database as authentication verified, generates a verification value or a digital certificate indicating that the status of the portable device is authentication verified, and stores the verification value or the digital certificate; receiving second transaction data for a remote transaction, wherein the remote transaction includes providing the portable device data over a network without physically presenting the portable device to the access device; and sending the second transaction data to the server computer wherein the server computer determines from the second transaction data that the remote transaction is associated with the portable device, determines that the stored portable device information the stored mobile device identifier are marked as authentication verified, identifies the stored the verification value or the digital certificate, and sends a message indicating the status of the portable device as authentication verified, the message including the verification value or the digital certificate, wherein the verification value or the digital certificate is subsequently used in a determination as to whether the remote transaction is fraudulent.
-
Specification