Hosted thin-client interface in a payment authorization system

US 9,978,064 B2
Filed: 12/31/2012
Issued: 05/22/2018
Est. Priority Date: 12/30/2011
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

receiving, by a host server computer from a client device, first transaction request data for a transaction between a user of the client device and a value added service provider, the first transaction request data including an account identifier of an account of the user of the client device involved in the transaction, an amount of the transaction, and biometric data of the user;

transmitting, by the host server computer, a verification request message to a value added service provider computer of the value added service provider, the verification request message requesting verification data for verifying the authenticity of the value added service provider;

receiving, by the host server computer, a verification response message from the value added service provider computer, the verification response message including the verification data;

verifying, by the host server computer, the authenticity of the value added service provider using the verification data included in the verification response message;

generating, by the host server computer, an authorization request message for the transaction, the authorization request message including the account identifier of the account of the user, the amount of the transaction, the biometric data of the user, and a request for authorization to conduct the transaction for the amount of the transaction using the account of the user;

transmitting, by the host server computer after the verifying of authenticity of the value added service provider, the authorization request message including the account identifier of the account of the user, and the amount of the transaction, the biometric data of the user, and the request for authorization to conduct the transaction to a central server computer, wherein the central server computer communicates with an authentication server computer to validate the biometric data of the user, wherein the central server computer sends the authorization request message including the account identifier of the account of the user, the amount of the transaction, the biometric data of the user, and the request for authorization to conduct the transaction to an issuer computer associated with the account of the user, and wherein the central server computer receives an authorization response message from the issuer computer indicating that the transaction has been authorized by the issuer computer based on the biometric data of the user, the account identifier of the user, and the amount of the transaction;

receiving, by the host server computer, the authorization response message from the central server computer indicating that the transaction has been authorized by the issuer computer based on the biometric data of the user, the account identifier of the user, and the amount of the transaction; and

sending, by the host server computer after the receiving of the authorization response message indicating that the transaction has been authorized by the issuer computer, a service fulfillment request to the value added service provider computer including a request to fulfill the transaction with the value added service provider and an indication that the transaction has been authorized by the issuer computer.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A methods and system of hosted thin-client payment authorization and authentication services for processing payments for value-added service (VAS) providers is described. A method, performed by a host server operating a thin-client device, includes receiving transaction request data at a host server computer from a thin-client device, where the transaction request data can include financial account data and biometric data. The host-server transmits a verification request message to a VAS provider and receives an indication that it is a valid merchant. The host-server transmits an authorization request message comprising the biometric data to a payment processing network (PPN), where the PPN communicates with an authentication server computer to validate the biometric data, sends the authorization request message to an issuer and receives an authorization response message from the issuer. The host-server receives the authorization response message from the PPN and sends a service fulfillment request to the VAS provider.

132 Citations

10 Claims

1. A method comprising:
- receiving, by a host server computer from a client device, first transaction request data for a transaction between a user of the client device and a value added service provider, the first transaction request data including an account identifier of an account of the user of the client device involved in the transaction, an amount of the transaction, and biometric data of the user;
  
  transmitting, by the host server computer, a verification request message to a value added service provider computer of the value added service provider, the verification request message requesting verification data for verifying the authenticity of the value added service provider;
  
  receiving, by the host server computer, a verification response message from the value added service provider computer, the verification response message including the verification data;
  
  verifying, by the host server computer, the authenticity of the value added service provider using the verification data included in the verification response message;
  
  generating, by the host server computer, an authorization request message for the transaction, the authorization request message including the account identifier of the account of the user, the amount of the transaction, the biometric data of the user, and a request for authorization to conduct the transaction for the amount of the transaction using the account of the user;
  
  transmitting, by the host server computer after the verifying of authenticity of the value added service provider, the authorization request message including the account identifier of the account of the user, and the amount of the transaction, the biometric data of the user, and the request for authorization to conduct the transaction to a central server computer, wherein the central server computer communicates with an authentication server computer to validate the biometric data of the user, wherein the central server computer sends the authorization request message including the account identifier of the account of the user, the amount of the transaction, the biometric data of the user, and the request for authorization to conduct the transaction to an issuer computer associated with the account of the user, and wherein the central server computer receives an authorization response message from the issuer computer indicating that the transaction has been authorized by the issuer computer based on the biometric data of the user, the account identifier of the user, and the amount of the transaction;
  
  receiving, by the host server computer, the authorization response message from the central server computer indicating that the transaction has been authorized by the issuer computer based on the biometric data of the user, the account identifier of the user, and the amount of the transaction; and
  
  sending, by the host server computer after the receiving of the authorization response message indicating that the transaction has been authorized by the issuer computer, a service fulfillment request to the value added service provider computer including a request to fulfill the transaction with the value added service provider and an indication that the transaction has been authorized by the issuer computer.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method of claim 1 wherein the value added service provider is a service provider including one of a ticket booking service, mobile top-up service, or utility payment service.
  - 3. The method of claim 1 wherein the host server computer provides a graphical user interface to be displayed on the client device to provide an interface with the value added service provider computer.
  - 4. The method of claim 1 wherein the biometric data includes one or more of finger print data or retinal scan data.
  - 5. The method of claim 1 wherein the authorization request message is in ISO 8583 standard format, wherein the authorization request message further comprises a card verification value, an expiration date, a merchant identifier, and a merchant location.
  - 6. The method of claim 1 wherein the verification data of the verification response message received from the value added service provider computer includes at least one of a credential, a record, account data, and a list of products or services.

7. A host server computer comprising:
- a processor and a computer-readable storage medium coupled to the processor, the computer readable storage medium comprising code executable by the processor for implementing a method comprising;
  
  receiving, by the host server computer from a client device, first transaction request data for a transaction between a user of the client device and a value added service provider, the first transaction request data including an account identifier of an account of the user of the client device involved in the transaction, an amount of the transaction, and biometric data of the user;
  
  transmitting, by the host server computer, a verification request message to a value added service provider computer of the value added service provider, the verification request message requesting verification data for verifying the authenticity of the value added service provider;
  
  receiving, by the host server computer, a verification response message from the value added service provider computer, the verification response message including the verification data;
  
  verifying, by the host server computer, the authenticity of the value added service provider using the verification data included in the verification response message;
  
  generating, by the host server computer, an authorization request message for the transaction, the authorization request message including the account identifier of the account of the user, the amount of the transaction, the biometric data of the user, and a request for authorization to conduct the transaction for the amount of the transaction using the account of the user;
  
  transmitting, by the host server computer after the verifying of authenticity of the value added service provider, the authorization request message including the account identifier of the account of the user, the amount of the transaction, the biometric data of the user, and the request for authorization to conduct the transaction for the amount of the transaction using the account of the user to a central server computer, wherein the central server computer communicates with an authentication server computer to validate the biometric data of the user, wherein the central server computer sends the authorization request message including the account identifier of the account of the user, the amount of the transaction, the biometric data of the user, and the request for authorization to conduct the transaction to an issuer computer associated with the account of the user, and wherein the central server computer receives an authorization response message from the issuer computer indicating that the transaction has been authorized by the issuer computer based on the biometric data of the user, the account identifier of the user, and the amount of the transaction;
  
  receiving, by the host server computer, the authorization response message from the central server computer indicating that the transaction has been authorized by the issuer computer based on the biometric data of the user, the account identifier of the user, and the amount of the transaction; and
  
  sending, by the host server computer after the receiving of the authorization response message indicating that the transaction has been authorized by the issuer computer, a service fulfillment request to the value added service provider computer including a request to fulfill the transaction with the value added service provider and an indication that the transaction has been authorized by the issuer computer.
- View Dependent Claims (8, 9, 10)
- - 8. The server computer of claim 7 wherein the value added service provider is a service provider including one of a ticket booking service, mobile top-up service, or utility service.
  - 9. The server computer of claim 7 wherein the server computer provides a graphical user interface to be displayed on the client device to provide an interface with the value added service provider computer.
  - 10. The server computer of claim 7 wherein the biometric data includes one or more of finger print data or retinal scan data.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Visa International Service Association (Visa, Inc.)
Original Assignee
Visa International Service Association (Visa, Inc.)
Inventors
Kumnick, Phil, Chandra, Sonika
Primary Examiner(s)
Ebersman, Bruce I
Assistant Examiner(s)
Sharvin, David P

Application Number

US13/731,500
Publication Number

US 20130179346A1
Time in Patent Office

1,968 Days
Field of Search
US Class Current
CPC Class Codes

G06Q 20/123   Shopping for digital content

G06Q 20/40   Authorisation, e.g. identif...

G06Q 20/40145   Biometric identity checks

Hosted thin-client interface in a payment authorization system

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

132 Citations

10 Claims

Specification

Solutions

Use Cases

Quick Links

Hosted thin-client interface in a payment authorization system

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

132 Citations

10 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links