Secure online credit card transactions

US 9,818,104 B1
Filed: 01/25/2013
Issued: 11/14/2017
Est. Priority Date: 01/25/2013
Status: Expired due to Fees

First Claim

Patent Images

1. A method of completing a transaction using proxy credit card information comprising:

initiating, via a radio transceiver of a mobile device, a transaction with a computer system associated with a merchant or payee;

generating, in a secure element of the mobile device comprising a non-transitory memory and by executing an application that configures a processor of the mobile device to execute a mobile device algorithm, proxy credit card information based on original credit card information stored in the non-transitory memory of the secure element on the mobile device, wherein the proxy credit card information comprises a proxy credit card number that is different from the original credit card information, and wherein the secure element comprises a chip embedded on the mobile device that provides security during the transaction;

receiving, via an interface on the mobile device, user input which defines at least one usage rule that limits use of the proxy credit card information to the merchant or payee;

in response to the generating and the receiving, creating based on the user input, writing in the secure element, and associating, by the application of the mobile device, the at least one usage rule with the proxy credit card information, wherein the at least one usage rule limits use of the proxy credit card information to the merchant or payee;

communicating, by the mobile device over a wireless network to an issuer server associated with the original credit card information in response to the generating and the creating, an indication that the proxy credit card information was created in the secure element and communicating the at least one usage rule created in the secure element, wherein the mobile device communicates with the issuer server independent from the computer system of the merchant or payee;

receiving, by the issuer server, the indication from the mobile device;

in response to the issuer server receiving the indication from the mobile device, generating, by the issuer server independently executing an issuer server algorithm, the same proxy credit card information based on the original credit card information independently of the mobile device generating the proxy credit card information, wherein the mobile device algorithm and the issuer server algorithm are the same algorithm stored and executed on different devices;

associating, by the issuer server, the independently generated proxy credit card information with a user corresponding to the original credit card information;

providing, by the application of the mobile device, the proxy credit card information generated in the secure element to the computer system associated with the merchant or payee for payment in the transaction;

receiving, by the issuer server from the computer system of the merchant or payee, the proxy credit card information that was provided to the computer system of the merchant or payee from the mobile device;

using, by the issuer server, the independently generated proxy credit card information to determine that the proxy credit card information generated by the mobile device is the same as the independently generated proxy credit card information based on the association;

enforcing, by the issuer server, the at least one usage rule received from the mobile device by determining that the transaction is in conformance with the at least one usage rule;

verifying, by the issuer server, the transaction based on the determination, by the issuer server, that the proxy credit card information generated by the mobile device is the same as the independently generated proxy credit card information and based on the determination, by the issuer server, that the transaction is in conformance with the at least one usage rule; and

completing, by using the proxy credit card information provided to the computer system of the merchant or payee from the mobile device, the transaction based at least on the determination, by the issuer server, that the proxy credit card information generated by the mobile device is the same as the independently generated proxy credit card information by the issuer server and based at least on the determination, by the issuer server, that the transaction is in conformance with the at least one usage rule.

View all claims

6 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Embodiments relate generally to systems and methods for enabling and/or completing secure online credit card transactions. Transactions may involve the use of mobile devices wherein credit card information may be stored on the mobile device. The credit card information may be accessed and used to generate proxy credit card information, wherein the proxy information may be communicated during a transaction. The proxy credit card information may be generated by an application on the mobile device and may be communicated to and/or generated by the issuer/network of the original credit card.

56 Citations

View as Search Results

16 Claims

1. A method of completing a transaction using proxy credit card information comprising:
- initiating, via a radio transceiver of a mobile device, a transaction with a computer system associated with a merchant or payee;
  
  generating, in a secure element of the mobile device comprising a non-transitory memory and by executing an application that configures a processor of the mobile device to execute a mobile device algorithm, proxy credit card information based on original credit card information stored in the non-transitory memory of the secure element on the mobile device, wherein the proxy credit card information comprises a proxy credit card number that is different from the original credit card information, and wherein the secure element comprises a chip embedded on the mobile device that provides security during the transaction;
  
  receiving, via an interface on the mobile device, user input which defines at least one usage rule that limits use of the proxy credit card information to the merchant or payee;
  
  in response to the generating and the receiving, creating based on the user input, writing in the secure element, and associating, by the application of the mobile device, the at least one usage rule with the proxy credit card information, wherein the at least one usage rule limits use of the proxy credit card information to the merchant or payee;
  
  communicating, by the mobile device over a wireless network to an issuer server associated with the original credit card information in response to the generating and the creating, an indication that the proxy credit card information was created in the secure element and communicating the at least one usage rule created in the secure element, wherein the mobile device communicates with the issuer server independent from the computer system of the merchant or payee;
  
  receiving, by the issuer server, the indication from the mobile device;
  
  in response to the issuer server receiving the indication from the mobile device, generating, by the issuer server independently executing an issuer server algorithm, the same proxy credit card information based on the original credit card information independently of the mobile device generating the proxy credit card information, wherein the mobile device algorithm and the issuer server algorithm are the same algorithm stored and executed on different devices;
  
  associating, by the issuer server, the independently generated proxy credit card information with a user corresponding to the original credit card information;
  
  providing, by the application of the mobile device, the proxy credit card information generated in the secure element to the computer system associated with the merchant or payee for payment in the transaction;
  
  receiving, by the issuer server from the computer system of the merchant or payee, the proxy credit card information that was provided to the computer system of the merchant or payee from the mobile device;
  
  using, by the issuer server, the independently generated proxy credit card information to determine that the proxy credit card information generated by the mobile device is the same as the independently generated proxy credit card information based on the association;
  
  enforcing, by the issuer server, the at least one usage rule received from the mobile device by determining that the transaction is in conformance with the at least one usage rule;
  
  verifying, by the issuer server, the transaction based on the determination, by the issuer server, that the proxy credit card information generated by the mobile device is the same as the independently generated proxy credit card information and based on the determination, by the issuer server, that the transaction is in conformance with the at least one usage rule; and
  
  completing, by using the proxy credit card information provided to the computer system of the merchant or payee from the mobile device, the transaction based at least on the determination, by the issuer server, that the proxy credit card information generated by the mobile device is the same as the independently generated proxy credit card information by the issuer server and based at least on the determination, by the issuer server, that the transaction is in conformance with the at least one usage rule.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method of claim 1, wherein the at least one usage rule further comprises one of:
    - a purchase amount limit, a maximum number of uses limit of the proxy credit card information with the merchant or payee, a maximum frequency of use limit allowed, or a time limit.
  - 3. The method of claim 1, wherein the at least one usage rule is stored in the non-transitory memory after being created based on the user input.
  - 4. The method of claim 1, further comprising determining, by the application on the mobile device, that the proxy credit card information complies with Luhn'"'"'s algorithm prior to providing the proxy credit card information to the computer system.
  - 5. The method of claim 4, wherein providing the proxy credit card information feeds the proxy credit card information to the computer system via a communicative coupling with the mobile device.
  - 6. The method of claim 1, wherein providing the proxy credit card information presents at least a portion of the proxy credit card information on a display of the mobile device.

7. A method of completing a transaction using proxy credit card information comprising:
- initiating, via a mobile device, a transaction with an interface communicatively coupled to a computer system associated with a merchant or payee;
  
  creating, in a secure element comprising a non-transitory memory of the mobile device, proxy credit card information using an application on the mobile device executing a mobile device algorithm, wherein creating the proxy credit card information is based on original credit card information, wherein the proxy credit card information comprises a proxy credit card number that is different from the original credit card information, and wherein the secure element comprises a chip embedded on the mobile device that provides security during the transaction;
  
  receiving, via an interface on the mobile device, user input which defines at least one usage rule that specifies at least one of a purchase amount limit, a number of uses limit, and a frequency of use limit;
  
  based on the user input, creating, in the secure element by executing the application of the mobile device, the at least one usage rule associated with use of the proxy credit card information in response to creating the proxy credit card information by the mobile device;
  
  storing, in the secure element of the mobile device, the proxy credit card information based on the at least one usage rule;
  
  communicating, via the mobile device to an issuer server associated with the original credit card information, the at least one usage rule created in the secure element and communicating an indication that the proxy credit card information was created using the secure element of the mobile device;
  
  receiving, by the issuer server, the indication from the mobile device;
  
  in response to the issuer server receiving the indication from the mobile device, generating, by the issuer server independently executing an issuer server algorithm, the same proxy credit card information based on the original credit card information independently of the mobile device generating the proxy credit card information, wherein the mobile device algorithm and the issuer server algorithm are the same algorithm stored and executed on different devices;
  
  associating, by the issuer server, the independently generated proxy credit card information with a user corresponding to the original credit card information;
  
  sending, from the mobile device, the proxy credit card information to the computer system of the merchant or payee;
  
  subsequent to the proxy credit card information being sent to the computer system of the merchant or payee, receiving, by the issuer server from the computer system of the merchant or payee, the proxy credit card information that was provided to the computer system of the merchant or payee from the mobile device;
  
  using, by the issuer server, the independently generated proxy credit card information to determine that the proxy credit card information generated by the mobile device is the same as the independently generated proxy credit card information based on the association;
  
  enforcing, by the issuer server, the at least one usage rule received from the mobile device by determining that the transaction is in conformance with the at least one usage rule;
  
  verifying, by the issuer server, the transaction based on the determination, by the issuer server, that the proxy credit card information generated by the mobile device is the same as the independently generated proxy credit card information and based on the determination, by the issuer server, that the transaction is in conformance with the at least one usage rule; and
  
  completing, by using the proxy credit card information provided to the computer system of the merchant or payee from the mobile device, the transaction based at least on the determination, by the issuer server, that the proxy credit card information generated by the mobile device is the same as the independently generated proxy credit card information and based at least on the determination, by the issuer server, that the transaction is in conformance with the at least one usage rule.
- View Dependent Claims (8, 9, 10, 11)
- - 8. The method of claim 7, wherein the transaction is completed at least in part via the proxy credit card information created on the mobile device without the mobile device or the issuer server communicating all the original credit card information to the computer system of the merchant or payee.
  - 9. The method of claim 8, wherein completing the transaction comprises sending the proxy credit card information via the interface to the computer system associated with merchant or payee.
  - 10. The method of claim 8, further comprising inputting, via the secure element of the mobile device, the proxy credit card information into the interface, and wherein the transaction is an online transaction.
  - 11. The method of claim 7, wherein the at least one usage rule comprises a merchant specification, wherein the merchant specification is a data structure that defines a limitation for use of the proxy credit card information with a type of merchant or payee.

12. A method for creating proxy credit card information comprising:
- accessing, by executing an application that configures a processor of a mobile device, original credit card information stored in a secure element on the mobile device, wherein the secure element comprises a chip embedded on the mobile device that provides security during a transaction;
  
  generating, in the secure element using the application of the mobile device executing a mobile device algorithm, proxy credit card information based on the original credit card information;
  
  receiving, on an interface of the mobile device, user input defining at least one usage rule that limits use of the proxy credit card information;
  
  in response to generating the proxy credit card information on the mobile device and receiving the user input defining the at least one usage rule, creating, by the mobile device in the secure element, the at least one usage rule associated with use of the proxy credit card information, wherein the proxy credit card information comprises a proxy credit card number and at least one of a name, an expiration date, a security code, or issuer information associated with the original credit card information;
  
  communicating, by the mobile device to an issuer server associated with the original credit card information, an indication message comprising an indication that the proxy credit card information was generated in the secure element of the mobile device and communicating the at least one usage rule created in the secure element, wherein the mobile device communicates with the issuer server independent from a computer system of the merchant or payee;
  
  receiving, by the issuer server, the indication from the mobile device;
  
  in response to the issuer server receiving the indication from the mobile device, generating, by the issuer server independently executing an issuer server algorithm, the same proxy credit card information based on the original credit card information independently of the mobile device generating the proxy credit card information, wherein the mobile device algorithm and the issuer server algorithm are the same algorithm stored and executed on different devices;
  
  associating, by the issuer server, the independently generated proxy credit card information with a user corresponding to the original credit card information;
  
  providing, by the mobile device, the proxy credit card information generated in the secure element to the computer system of the merchant or payee for payment in the transaction;
  
  receiving, by the issuer server from the computer system of the merchant or payee, the proxy credit card information that was provided to the computer system of the merchant or payee from the mobile device;
  
  using, by the issuer server, the independently generated proxy credit card information to determine that the proxy credit card information generated by the mobile device is the same as the independently generated proxy credit card information based on the association;
  
  enforcing, by the issuer server, the at least one usage rule received from the mobile device by determining that the transaction is in conformance with the at least one usage rule;
  
  verifying, by the issuer server, the transaction based on the determination, by the issuer server, that the proxy credit card information generated by the mobile device is the same as the independently generated proxy credit card information and based on the determination, by the issuer server, that the transaction is in conformance with the at least one usage rule; and
  
  completing, by using the proxy credit card information provided to the computer system of the merchant or payee from the mobile device, the transaction based at least on the determination, by the issuer server, that the proxy credit card information generated by the mobile device is the same as the independently generated proxy credit card information and based at least on the determination, by the issuer server, that the transaction is in conformance with the at least one usage rule.
- View Dependent Claims (13, 14, 15, 16)
- - 13. The method of claim 12, further comprising, subsequent to the generating proxy credit card information, determining, by the mobile device in the secure element, that the proxy credit card information complies with Luhn'"'"'s algorithm.
  - 14. The method of claim 12, wherein the at least one usage rule is created in the secure element based on user input.
  - 15. The method of claim 12, wherein the at least one usage rule comprises one of:
    - a purchase amount limit, a number of uses limit, a frequency of use limit, a time limit, a merchant specification, a type of merchant, or a type of goods purchased.
  - 16. The method of claim 12, wherein a portion of the proxy credit card information remains unchanged from the original credit card information.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
T-Mobile Innovations LLC (Deutsche Telekom AG)
Original Assignee
Sprint Communications Company LP (Deutsche Telekom AG)
Inventors
Katzer, Robin Dale, Tiwari, Hemant V.
Primary Examiner(s)
Maguire, Lindsay M
Assistant Examiner(s)
Alladin, Ambreen A

Application Number

US13/750,831
Time in Patent Office

1,754 Days
Field of Search

None
US Class Current
CPC Class Codes

G06Q 20/24   Credit schemes, i.e. "pay a...

G06Q 20/322   Aspects of commerce using m...

G06Q 20/385   using an alias or single-us...

G06Q 20/40   Authorisation, e.g. identif...

Secure online credit card transactions

First Claim

6 Assignments

0 Petitions

Accused Products

Abstract

56 Citations

16 Claims

Specification

Use Cases

Quick Links

Others

Secure online credit card transactions

First Claim

6 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

56 Citations

16 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others