Communication method and system

US 9,706,405 B2
Filed: 10/03/2016
Issued: 07/11/2017
Est. Priority Date: 08/21/2001
Status: Expired due to Term

First Claim

Patent Images

1. A method for an authentication system performing online authentication of an online transaction between a mobile phone, associated with a user, and a payment system, via communication messages between the mobile phone and the payment system, the authentication system including at least one processor and authentication software running on the at least one processor to cause the at least one processor to perform the method, wherein the method comprises:

preparing a transaction authentication communication message for the transaction to be sent to the mobile phone over at least one telecommunication network;

randomly selecting a reply address from a multiplicity of reply addresses at which the online authentication system is capable of receiving reply communication messages from one or more mobile phones including the mobile phone;

associating the randomly selected reply address as a reply address for the transaction authentication communication message;

sending the transaction authentication communication message, including the randomly selected reply address, to the mobile phone over the at least one telecommunication network;

receiving a reply communication message from the mobile phone over the at least one telecommunication network at the randomly selected reply address, the reply communication message having a sender address that is the user'"'"'s subscriber number, Calling Line Identity (CLI), e-mail address or IP address associated with the mobile phone; and

authenticating the transaction based on contents of the reply communication message, the sender address and the randomly selected reply address at which the reply communication message from the mobile phone is received by the online authentication system.

View all claims

13 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method and system for authenticating a transaction between a user and a payment system are provided in which transaction information is transmitted through a secure communications from the user to the payment system, and the authentication message is sent from a payment system to the user via an authentication system. The authentication message is sent from the authentication system from one of multiplicity of addresses to the user, and the response to the message is received in that address. Additional security is achieved when the reply addresses are selected randomly.

68 Citations

17 Claims

1. A method for an authentication system performing online authentication of an online transaction between a mobile phone, associated with a user, and a payment system, via communication messages between the mobile phone and the payment system, the authentication system including at least one processor and authentication software running on the at least one processor to cause the at least one processor to perform the method, wherein the method comprises:
- preparing a transaction authentication communication message for the transaction to be sent to the mobile phone over at least one telecommunication network;
  
  randomly selecting a reply address from a multiplicity of reply addresses at which the online authentication system is capable of receiving reply communication messages from one or more mobile phones including the mobile phone;
  
  associating the randomly selected reply address as a reply address for the transaction authentication communication message;
  
  sending the transaction authentication communication message, including the randomly selected reply address, to the mobile phone over the at least one telecommunication network;
  
  receiving a reply communication message from the mobile phone over the at least one telecommunication network at the randomly selected reply address, the reply communication message having a sender address that is the user'"'"'s subscriber number, Calling Line Identity (CLI), e-mail address or IP address associated with the mobile phone; and
  
  authenticating the transaction based on contents of the reply communication message, the sender address and the randomly selected reply address at which the reply communication message from the mobile phone is received by the online authentication system.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17)
- - 2. The method of claim 1, further comprising sending information indicating that the user authenticated the transaction from the online authentication system to the payment system following authentication of the transaction.
  - 3. The method of claim 1, wherein the at least one telecommunications network is a mobile communications network.
  - 4. The method of claim 1, wherein the transaction authenticating is also based on semantics of the reply.
  - 5. The method of claim 4, wherein the further analysis of the semantics of the reply communication message includes comparing content of the reply communication message with stored information about what kinds of reply content are acceptable.
  - 6. The method of claim 5, wherein, if reply content does not meet criteria identified in the stored information, the reply communication message is rejected as not being an authentic reply communication message.
  - 7. The method of claim 1, further comprising the online authentication system tracking which of the multiplicity of reply addresses are currently available for use, and selecting each particular randomly selected reply address from among the reply addresses which are currently available for use.
  - 8. The method of claim 1, wherein the transaction is a payment request which is sent to the payment system from a seller'"'"'s system to a credit card company'"'"'s payment system or to a banking system.
  - 9. The method of claim 1, wherein further comprising transmitting information that the user authenticated the transaction from the online authentication system to the payment system via the telecommunications network connection following authentication of the transaction.
  - 10. The method of claim 1, wherein the transaction authentication communication and reply communication messages are short messages.
  - 11. The method of claim 1, wherein the transaction authentication communication and reply communication messages are SMS messages.
  - 12. The method of claim 1, wherein the transaction authentication communication and reply communication messages are text messages.
  - 13. The method of claim 1, wherein the transaction is associated with a booking event.
  - 14. The method of claim 13, wherein the booking event pertains to a booking that is an allocation of a single resource to the user.
  - 15. The method of claim 14, wherein the booking is for a service from a service provider.
  - 16. The method of claim 1, further comprising associating the transaction authentication communication and reply communication messages with a dialogue between the online authentication system and the mobile phone.
  - 17. The method of claim 16, wherein the dialogue is activated by transmission of a message to the mobile phone.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Smartcom Labs OY
Original Assignee
Bookit Oy Ajanvarauspalvelu
Inventors
Salonen, Jukka
Primary Examiner(s)
Maguire, Lindsay M

Application Number

US15/283,925
Publication Number

US 20170026837A1
Time in Patent Office

281 Days
Field of Search

705 44
US Class Current
CPC Class Codes

G06Q 10/02   Reservations, e.g. for tick...

G06Q 10/025   Coordination of plural rese...

G06Q 10/109   Time management, e.g. calen...

G06Q 10/1095   Meeting or appointment

G06Q 20/322   Aspects of commerce using m...

G06Q 20/3221   Access to banking informati...

G06Q 20/3255   using mobile network messag...

G06Q 20/40   Authorisation, e.g. identif...

G06Q 20/4014   Identity check for transact...

G06Q 30/0267   Wireless devices

G06Q 30/0601   Electronic shopping [e-shop...

G06Q 30/0609   Buyer or seller confidence ...

G06Q 30/0623   Item investigation

G06Q 50/14   Travel agencies

G08G 1/207   with respect to certain are...

H04L 2101/37   E-mail addresses

H04L 51/18   Commands or executable codes

H04L 51/23   Reliability checks, e.g. ac...

H04L 67/01   Protocols

H04L 67/10   in which an application is ...

H04M 3/42382 : Text-based messaging servic...

H04W 12/06 : Authentication

H04W 12/71 : Hardware identity

H04W 12/72 : Subscriber identity

H04W 4/12 : Messaging; Mailboxes; Annou...

H04W 4/14 : Short messaging services, e...

H04W 4/40 : for vehicles, e.g. vehicle-...

H04W 4/50 : Service provisioning or rec...

View All

Communication method and system

First Claim

13 Assignments

0 Petitions

Accused Products

Abstract

68 Citations

17 Claims

Specification

Solutions

Use Cases

Quick Links

Communication method and system

First Claim

13 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

68 Citations

17 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links