Location based authentication
First Claim
Patent Images
1. A method for conducting a transaction, the method comprising:
- receiving, at a server in a payment processing network coupled with a mobile communication device held by a consumer, first location information associated with a particular location of the consumer'"'"'s mobile communication device during a transaction conducted with a merchant;
receiving, at the server, second location information associated with a particular fixed geographic location of the merchant at the time of the transaction, wherein the second location information is contained within a unique merchant identifier transferred from the merchant to the mobile communication device during the transaction, and wherein the second location information is then forwarded to the server from the mobile communication device via the payment processing network instead of from an access device operated by the merchant;
receiving an authorization request message at the server computer;
using the server computer, determining that a portable consumer device held by the consumer is authentic when the first location information matches the second location information; and
using the server computer, forwarding the authorization request message to an issuer with an indicator specifying that the consumer has been authenticated or that the consumer has not been authenticated;
wherein the first location information and the second location information are received from the mobile communication device held by the consumer, and wherein the second location information is provided to the mobile communication device directly from the access device operated by the merchant.
1 Assignment
0 Petitions
Accused Products
Abstract
A portable consumer device that is used to conduct a transaction at a merchant is authenticated. Information provided to a server computer includes locations of a merchant and a mobile communication device possessed by a consumer. If the location of the mobile communication device corresponds to the location of the merchant, the portable consumer device that is used to conduct the transaction is authenticated.
185 Citations
28 Claims
-
1. A method for conducting a transaction, the method comprising:
-
receiving, at a server in a payment processing network coupled with a mobile communication device held by a consumer, first location information associated with a particular location of the consumer'"'"'s mobile communication device during a transaction conducted with a merchant; receiving, at the server, second location information associated with a particular fixed geographic location of the merchant at the time of the transaction, wherein the second location information is contained within a unique merchant identifier transferred from the merchant to the mobile communication device during the transaction, and wherein the second location information is then forwarded to the server from the mobile communication device via the payment processing network instead of from an access device operated by the merchant; receiving an authorization request message at the server computer; using the server computer, determining that a portable consumer device held by the consumer is authentic when the first location information matches the second location information; and using the server computer, forwarding the authorization request message to an issuer with an indicator specifying that the consumer has been authenticated or that the consumer has not been authenticated; wherein the first location information and the second location information are received from the mobile communication device held by the consumer, and wherein the second location information is provided to the mobile communication device directly from the access device operated by the merchant. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A method for conducting a transaction, the method comprising:
-
providing first location information to a server computer in a payment processing network, wherein the first location information corresponds to a location of a mobile communication device held by a consumer during a transaction conducted with a merchant; providing second location information to the server computer, wherein the second location information corresponds to a fixed geographic location of the merchant at the time of the transaction, wherein the second location information is contained within a unique merchant identifier transferred from the merchant to the consumer'"'"'s mobile communication device during the transaction and is thereafter forwarded to the server computer from the mobile communication device via the payment processing network instead of from the merchant, wherein the server computer is configured to determine that a portable consumer device used in the transaction is authentic when the first location information matches with the second location information; and wherein the second location information is generated by an access device operated by the merchant; and
the first location information and the second location information are received from the mobile communication device, wherein the second location information is provided to the mobile communication device directly from the access device operated by the merchant, andwherein the first and second location information do not pass through an acquirer in communication with the access device of the merchant, and wherein the server computer forwards an authorization request message to an issuer with an indicator that it has determined that the consumer has been authenticated or that the consumer has not been authenticated. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25)
-
-
26. A computer program product comprising a computer readable medium configured to store a plurality of instructions for controlling a processor of a server to perform an operation for conducting a transaction, the instructions comprising:
-
receiving, at a server computer in a payment processing network coupled with a mobile communication device held by a consumer, first location information associated with a particular location of the consumer'"'"'s mobile communication device during a transaction conducted with a merchant; receiving, at the server, second location information associated with a particular fixed geographic location corresponding to the merchant at the time of the transaction, wherein the second location information is contained within a unique merchant identifier transferred from the merchant to the mobile communication device during the transaction and is thereafter provided to the server from the mobile communication device through the payment processing network instead of from an access device operated by the merchant; receiving an authorization request message; using the server computer, determining that a portable consumer device held by a consumer is authentic when the first location information matches the second location information; and forwarding the authorization request message to an issuer with an indicator, wherein the indicator specifies whether the consumer has been authenticated or that the consumer has not been authenticated; wherein the first location information and the second location information are received at the server computer from the mobile communication device of the consumer, and wherein the second location information is provided to the mobile communication device directly from the access device operated by the merchant wherein the unique merchant identifier is sent to the server computer from the mobile communication device as evidence of interaction between the access device of the merchant and the mobile communication device. - View Dependent Claims (27)
-
-
28. A method for conducting a transaction, the method comprising:
-
receiving, at a server in a payment processing network, an authorization request message including; (1) first location information associated with a particular location of a mobile communication device held by a consumer conducting a transaction with a merchant; and (2) second location information associated with a geographic location associated with the merchant, wherein the second location information is contained within a unique merchant identifier transferred from the merchant to the mobile communication device during the transaction, and wherein the second location information is forwarded to the server from the consumer'"'"'s mobile communication device via the payment processing network instead of from an access device operated by the merchant; authenticating the consumer, at the server, when the first location information matches the second location information; and forwarding, from the server, the authorization request message to an issuer with an indicator specifying whether the consumer has been authenticated or not.
-
Specification