Method and system using candidate dynamic data elements

US 9,940,621 B2
Filed: 06/17/2013
Issued: 04/10/2018
Est. Priority Date: 11/16/2006
Status: Active Grant

First Claim

Patent Images

1. A method for conducting a transaction, comprising:

generating, by a portable consumer device, a verification value in response to a transaction involving an access device;

sending, by the portable consumer device, the verification value and a portion of a first dynamic data element to the access device, the portion of the first dynamic data element including data included in a fixed position of the first dynamic data element, the verification value being different from the portion of the first dynamic data element; and

communicating, by the access device, the verification value and the portion of the first dynamic data element to a service provider computer;

wherein the service provider computer determines a plurality of candidate dynamic data elements using the portion of the first dynamic data element in response to determining that the verification value does not match a second verification value independently generated by the service provider computer, determines a plurality of candidate verification values from the plurality of candidate dynamic data elements, and determines whether the verification value matches any of the plurality of candidate verification values;

wherein, each of the plurality of candidate verification values is unique to a corresponding candidate dynamic data element of the plurality of candidate dynamic data elements; and

wherein the transaction is thereafter authenticated when the verification value matches any of the plurality of candidate verification values.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method and computer readable medium for conducting a transaction, comprising receiving a verification value and a portion of a dynamic data element, determining candidate dynamic data elements using the portion of the dynamic data element, calculating candidate verification values using candidate dynamic data elements, and determining if the received verification value matches any of the candidate verification values, wherein the transaction is thereafter authenticated if a candidate verification value matches a candidate verification value.

Citations

21 Claims

1. A method for conducting a transaction, comprising:
- generating, by a portable consumer device, a verification value in response to a transaction involving an access device;
  
  sending, by the portable consumer device, the verification value and a portion of a first dynamic data element to the access device, the portion of the first dynamic data element including data included in a fixed position of the first dynamic data element, the verification value being different from the portion of the first dynamic data element; and
  
  communicating, by the access device, the verification value and the portion of the first dynamic data element to a service provider computer;
  
  wherein the service provider computer determines a plurality of candidate dynamic data elements using the portion of the first dynamic data element in response to determining that the verification value does not match a second verification value independently generated by the service provider computer, determines a plurality of candidate verification values from the plurality of candidate dynamic data elements, and determines whether the verification value matches any of the plurality of candidate verification values;
  
  wherein, each of the plurality of candidate verification values is unique to a corresponding candidate dynamic data element of the plurality of candidate dynamic data elements; and
  
  wherein the transaction is thereafter authenticated when the verification value matches any of the plurality of candidate verification values.
- View Dependent Claims (2, 4, 5, 6, 7, 8, 9, 18, 19, 20, 21)
- - 2. The method of claim 1, further comprising:
    - constructing a data string using the first dynamic data element; and
      
      encrypting the data string with the one or more unique derived keys,wherein generating the verification value comprises determining the verification value from the encrypted data string.
  - 4. The method of claim 1, further comprising receiving an authorization response message by the access device, wherein the authorization response message indicates that the transaction is authorized.
  - 5. The method of claim 1, wherein the transaction is declined if none of the plurality of candidate verification values matches the verification value.
  - 6. The method of claim 1, wherein the verification value is generated using at least one static data element, and wherein the transaction is a payment transaction.
  - 7. The method of claim 6, wherein the static data element includes at least one of an expiration date, a phone number, a card number, a service code, and an account number.
  - 8. The method of claim 1, wherein the dynamic data element is a counter value.
  - 9. The method of claim 1, wherein the access device is a POS terminal.
  - 18. The method of claim 1, wherein the service provider computer authenticates and executes the transaction.
  - 19. The method of claim 1, wherein the verification value and the portion of the dynamic data element are in track data, wherein the track data is included in an authorization request that requests authorization of the transaction.
  - 20. The method of claim 1, wherein dynamic data element includes at least one of a time of day, current transaction amount, terminal ID, merchant ID, randomly generated number, counter, or pointer.
  - 21. The method of claim 1, wherein the selected portion of the dynamic data element does not include the entire dynamic data element.

3. A system comprising:
- a database; and
  
  a server coupled to the database and operable to;
  
  receive a verification value and a portion of a dynamic data element, the portion of the dynamic data element including data located within a fixed position of the dynamic data element;
  
  determine that the verification value does not match an expected value, the expected value stored at the system;
  
  upon determining that the verification value does not match an expected value, determine a plurality of candidate dynamic data elements using the portion of the dynamic data element;
  
  calculate a plurality of candidate verification values using the plurality of candidate dynamic data elements;
  
  determine if the received verification value matches any of the plurality of candidate verification values; and
  
  if the received verification value matches any of the plurality of candidate verification values, store the candidate dynamic data element associated with the matching candidate verification value,wherein a transaction associated with the received verification value is thereafter authenticated when the received verification value matches any of the plurality of candidate verification values.
- View Dependent Claims (10, 11, 12, 13, 14, 15, 16, 17)
- - 10. The system of claim 3, wherein the service provider computer is further operable to send an authorization response message to an access device, wherein the authorization response message indicates that the transaction is authorized.
  - 11. The system of claim 3, wherein the transaction is declined if none of the plurality of candidate verification values matches the received verification value.
  - 12. The system of claim 3, wherein the verification value is generated using at least one static data element, and wherein the transaction is a payment transaction.
  - 13. The system of claim 12, wherein the static data element includes at least one of an expiration date, a phone number, a card number, a service code, and an account number.
  - 14. The system of claim 3, wherein the verification value is generated using unique derived keys.
  - 15. The system of claim 3, wherein the dynamic data element is a counter value.
  - 16. The system of claim 3, wherein the verification value is derived using a PAN, an account sequence number, an inverse of the PAN, or an inverse of the account sequence number.
  - 17. The system of claim 3, further comprising a POS terminal.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Visa USA, Inc. (Visa, Inc.)
Original Assignee
Visa USA, Inc. (Visa, Inc.)
Inventors
Faith, Patrick, Hammad, Ayman
Primary Examiner(s)
BADII, BEHRANG

Application Number

US13/919,900
Publication Number

US 20130282591A1
Time in Patent Office

1,758 Days
Field of Search

705 75, 705 44, 705 35, 235382, 235381, 713168, 713178
US Class Current
CPC Class Codes

G06Q 20/20   Point-of-sale [POS] network...

G06Q 20/40   Authorisation, e.g. identif...

G06Q 20/4016   involving fraud or risk lev...

G06Q 30/04   Billing or invoicing

G07F 7/08   by coded identity card or c...

G07F 7/12   Card verification

G07F 7/122   Online card verification

Method and system using candidate dynamic data elements

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

Citations

21 Claims

Specification

Solutions

Use Cases

Quick Links

Method and system using candidate dynamic data elements

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

21 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links