Method and system for secure transactions
First Claim
Patent Images
1. A computer-implemented method for authenticating a payment transaction, the method performed by computer-readable instructions executed by a processor, the computer implemented method comprising the steps of:
- receiving, at a secure payment computing device, a payment account number associated with the payment transaction;
determining, by the secure payment computing device using a database table, a registered mobile device identifier associated with the payment account number;
sending an authentication request from the secure payment computing device to a registered mobile device associated with the registered mobile device identifier;
receiving, at the secure payment computing device from the registered mobile device, an authentication response, the authentication response comprising a token indicating that a registered user has approved the payment transaction using a combination of a PIN number and one or more fingerprint biometric factors the one or more fingerprint biometric factors captured contemporaneously when the registered user touches numeric positions on a user interface of the registered mobile device, the fingerprint biometric factors received by a biometric signal handler of the registered mobile device and validated on the mobile device by comparing the one or more fingerprint biometric factors to previously registered fingerprint biometric factors stored on a file system or secure element of the mobile device, wherein a first number of the PIN and a first fingerprint biometric factor are captured when the registered user'"'"'s first finger touches a first numeric position of the user interface, and a second number of the PIN and a second fingerprint biometric factor are captured when the registered user'"'"'s second finger touches a second numeric position of the user interface;
andapproving the transaction based on the token received at the secure payment computing device matching a token previously stored at the secure payment computing device.
2 Assignments
0 Petitions
Accused Products
Abstract
This invention relates to systems and methods for authenticating transactions using a mobile device based primarily on the introduction of a layer of middleware and wherein the Payment Networks, Merchants, Issuing Banks, Credit Reporting Bureaus, Insurance Companies, Healthcare Providers may customize the implementation of the services based on individual strategy and consumer preferences.
92 Citations
30 Claims
-
1. A computer-implemented method for authenticating a payment transaction, the method performed by computer-readable instructions executed by a processor, the computer implemented method comprising the steps of:
-
receiving, at a secure payment computing device, a payment account number associated with the payment transaction; determining, by the secure payment computing device using a database table, a registered mobile device identifier associated with the payment account number; sending an authentication request from the secure payment computing device to a registered mobile device associated with the registered mobile device identifier; receiving, at the secure payment computing device from the registered mobile device, an authentication response, the authentication response comprising a token indicating that a registered user has approved the payment transaction using a combination of a PIN number and one or more fingerprint biometric factors the one or more fingerprint biometric factors captured contemporaneously when the registered user touches numeric positions on a user interface of the registered mobile device, the fingerprint biometric factors received by a biometric signal handler of the registered mobile device and validated on the mobile device by comparing the one or more fingerprint biometric factors to previously registered fingerprint biometric factors stored on a file system or secure element of the mobile device, wherein a first number of the PIN and a first fingerprint biometric factor are captured when the registered user'"'"'s first finger touches a first numeric position of the user interface, and a second number of the PIN and a second fingerprint biometric factor are captured when the registered user'"'"'s second finger touches a second numeric position of the user interface; and approving the transaction based on the token received at the secure payment computing device matching a token previously stored at the secure payment computing device. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A non-transitory computer-readable medium comprising instructions that when executed by a processor authenticate a payment transaction, the instructions comprising the steps of:
-
receiving an authentication request at a registered mobile device from a secure payment computing device, the secure payment computing device having determined a registered mobile device identifier associated with a payment account number included with the payment transaction; transmitting, from the registered mobile device, an authentication response, the authentication response comprising a token indicating that a registered user has approved the payment transaction using a combination of a PIN number and one or more biometric factors the one or more biometric factors captured contemporaneously when the registered user touches numeric positions on a user interface of the registered mobile device, the biometric factors received by a biometric signal handler of the registered mobile device and validated on the mobile device by comparing the one or more biometric factors to previously registered biometric factors stored on a file system or secure element of the mobile device, wherein a first number of the PIN and a first biometric factor are captured when the registered user'"'"'s first finger touches a first numeric position of the user interface, and a second number of the PIN and a second biometric factor are captured when the registered user'"'"'s second finger touches a second numeric position of the user interface; and wherein the secure payment computing device approves the transaction based on the token received from the registered mobile device matching a token previously stored on the secure payment computing device. - View Dependent Claims (9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 29, 30)
-
-
19. A system for authenticating a payment transaction, the system comprising a secure payment computing device in communication via one or more communication links with one or more payment networks, one or more payment acquirers, and one or more payment issuers, the system further comprising computer-readable instructions that when executed by a processor are operable to perform the steps of:
-
receiving, at the secure payment computing device, a payment account number associated with the payment transaction; determining, by the secure payment computing device using a database table, a registered mobile device identifier associated with the payment account number; sending an authentication request from the secure payment computing device to a registered mobile device associated with the registered mobile device identifier; receiving, at the secure payment computing device from the registered mobile device, an authentication response, the authentication response comprising a token indicating that a registered user has approved the payment transaction using a combination of a PIN number and one or more fingerprint biometric factors, the PIN and the one or more fingerprint biometric factors captured contemporaneously when the registered user touches numeric positions on a user interface of the registered mobile device, the fingerprint biometric factors received by a biometric signal handler of the registered mobile device and compared to previously registered and securely stored fingerprint biometric factors stored on the registered mobile device, wherein a first number of the PIN and a first fingerprint biometric factor are captured when the registered user'"'"'s first finger touches a first numeric position of the user interface, and a second number of the PIN and a second fingerprint biometric factor are captured when the registered user'"'"'s second finger touches a second numeric position of the user interface; and approving the transaction based on the token received at the secure payment computing device matching a token previously stored on the secure payment computing device. - View Dependent Claims (20, 21, 22, 23, 24, 25, 26, 27, 28)
-
Specification