Tokenization revocation list
First Claim
Patent Images
1. A method comprising:
- generating, by a token revocation list computer system, a status for each of a plurality of tokens issued by a server computer that is coupled with a token revocation database of the token revocation list computer system, wherein the plurality of tokens are generated by a plurality of different entities;
maintaining, by the token revocation list computer system, the status for each of the plurality of tokens in a token revocation list, and wherein the token revocation list is centrally stored;
receiving, by the token revocation list computer system, a token validation request from a requester, wherein the token validation request includes at least one payment token of the plurality of tokens, a digital signature of the requester, and a public key;
determining, by the token revocation list computer system, the status of the at least one payment token of the plurality of tokens included in the token validation request by searching the token revocation database for the status of the at least one of the plurality of tokens;
determining, by the token revocation list computer system, if the requester is authorized to validate the at least one payment token by validating the digital signature of the requester with the public key;
generating, by the token revocation list computer system, a token validation response in accordance with the token validation request and the status of the token in the token revocation list; and
sending, by a token revocation list computer system, the token validation response including the determined status of the at least one payment token of the plurality of tokens to the requester,wherein in response to the determined status of the at least one payment token of the plurality of tokens being valid, completing a payment transaction.
1 Assignment
0 Petitions
Accused Products
Abstract
A method for providing a token revocation list is disclosed. The method includes maintaining a status for each of a plurality of tokens in a token revocation database. Token validation requests are received, and the statuses of payment tokens can be determined. Response messages with the statuses of the payment tokens are then sent to token status requesters so that they may make decisions on whether or not to use them to process transactions.
-
Citations
23 Claims
-
1. A method comprising:
-
generating, by a token revocation list computer system, a status for each of a plurality of tokens issued by a server computer that is coupled with a token revocation database of the token revocation list computer system, wherein the plurality of tokens are generated by a plurality of different entities; maintaining, by the token revocation list computer system, the status for each of the plurality of tokens in a token revocation list, and wherein the token revocation list is centrally stored; receiving, by the token revocation list computer system, a token validation request from a requester, wherein the token validation request includes at least one payment token of the plurality of tokens, a digital signature of the requester, and a public key; determining, by the token revocation list computer system, the status of the at least one payment token of the plurality of tokens included in the token validation request by searching the token revocation database for the status of the at least one of the plurality of tokens; determining, by the token revocation list computer system, if the requester is authorized to validate the at least one payment token by validating the digital signature of the requester with the public key; generating, by the token revocation list computer system, a token validation response in accordance with the token validation request and the status of the token in the token revocation list; and sending, by a token revocation list computer system, the token validation response including the determined status of the at least one payment token of the plurality of tokens to the requester, wherein in response to the determined status of the at least one payment token of the plurality of tokens being valid, completing a payment transaction. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A token revocation list computer system comprising:
-
a token status list database; and token status list computer comprising a processor, and a computer readable medium coupled to the processor, the computer readable medium comprising, code executable by the processor, to implement a method comprising; generating, by a token revocation list computer system, a status for each of a plurality of tokens issued by a server computer that is coupled with a token revocation database of the token revocation list computer system, wherein the plurality of tokens are generated by a plurality of different entities; maintaining the status for each of the plurality of tokens in a token revocation list, and wherein the token revocation list is centrally stored; receiving a token validation request from a requester, wherein the token validation request includes at least one payment token of the plurality of tokens, a digital signature of the requester, and a public key; determining the status of the at least one of the plurality of tokens by searching the token revocation database for the status of the at least one payment token of the plurality of tokens included in the token validation request; determining, by the token revocation list computer system, if the requester is authorized to validate the at least one payment token by validating the digital signature of the requester with the public key; generating, by the token revocation list computer system, a token validation response in accordance with the token validation request and the status of the token in the token revocation list; and sending the token validation response including the determined status of the at least one payment token of the plurality of tokens to the requester, wherein in response to the determined status of the at least one payment token of the plurality of tokens being valid, completing a payment transaction. - View Dependent Claims (16, 17, 18)
-
-
19. A token validation system comprising:
-
a requester device; and a token revocation list computer system in communication with the requester device, the token revocation list computer system comprising (a) a token status list database, and (b) a token status list computer comprising a processor, and a computer readable medium coupled to the processor, the computer readable medium comprising, code executable by the processor, to implement a method comprising; generating, by a token revocation list computer system, a status for each of a plurality of tokens issued by a server computer that is coupled with a token revocation database of the token revocation list computer system, wherein the plurality of tokens are generated by a plurality of different entities; maintaining the status for each of the plurality of in a token revocation list, and wherein the token revocation list is centrally stored; receiving a token validation request from a requester, wherein the token validation request includes at least one payment token of the plurality of tokens, a digital signature of the requester, and a public key; determining the status of the at least one of the plurality of tokens included in the token validation request by searching the token revocation database for the status of the at least one payment token of the plurality of tokens; determining, by the token revocation list computer system, if the requester is authorized to validate the at least one payment token by validating the digital signature of the requester with the public key; generating, by the token revocation list computer system, a token validation response in accordance with the token validation request and the status of the token in the token revocation list; and sending the token validation response including the determined status of the at least one payment token of the plurality of tokens to the requester, wherein in response to the determined status of the at least one payment token of the plurality of tokens being valid, completing a payment transaction. - View Dependent Claims (20, 21, 22, 23)
-
Specification