User enhanced authentication system for online purchases
First Claim
1. A merchant server, the merchant server comprising a processor and a computer readable medium having a computer readable code embodied therein, wherein the computer readable code is adapted to be executed on the processor, wherein the computer readable code is adapted to be executed to implement a method, the method comprising:
- sending a merchant checkout page to a client computer operated by consumer conducting an online transaction, wherein the merchant checkout page is configured to receive from the merchant server an indication of whether an issuer server is configured to authenticate the consumer using an inline authentication form;
sending an enrollment verification request to a directory server to locate the issuer server;
receiving an enrollment verification response from the directory server, wherein the enrollment verification response includes an indication of whether the issuer server is configured to authenticate the consumer using the inline authentication form, the issuer server being capable of authenticating the consumer conducting the online transaction using the inline authentication form, the enrollment verification response further including an address of the issuer server for the inline authentication form; and
opening the inline authentication form on the merchant checkout page using the address, the inline authentication form being provided by the issuer server,wherein the merchant checkout page includes support for a shopping cart, wherein the shopping cart is associated with a session, wherein the inline authentication form is configured to permit the issuer server to authenticate the consumer without navigating away from the session associated with the shopping cart.
0 Assignments
0 Petitions
Accused Products
Abstract
Embodiments of the invention are directed to methods, systems, devices and computer-readable media. In embodiments of the invention, a user is authenticated using an authentication process that is capable of authenticating a user using an inline authentication form that can authenticate a consumer without transferring a session maintained by a merchant. The inline authentication form is used if the components of the authentication system are capable of supporting an inline authentication form. If the components of the system cannot support an inline authentication form, a different authentication process is used. In one embodiment, an inline authentication form is presented to the user asynchronously. This inline authentication form may be presented within an iFrame embedded in a merchant'"'"'s checkout page after verifying that the components to be used during the authentication can support the inline authentication form.
41 Citations
18 Claims
-
1. A merchant server, the merchant server comprising a processor and a computer readable medium having a computer readable code embodied therein, wherein the computer readable code is adapted to be executed on the processor, wherein the computer readable code is adapted to be executed to implement a method, the method comprising:
-
sending a merchant checkout page to a client computer operated by consumer conducting an online transaction, wherein the merchant checkout page is configured to receive from the merchant server an indication of whether an issuer server is configured to authenticate the consumer using an inline authentication form; sending an enrollment verification request to a directory server to locate the issuer server; receiving an enrollment verification response from the directory server, wherein the enrollment verification response includes an indication of whether the issuer server is configured to authenticate the consumer using the inline authentication form, the issuer server being capable of authenticating the consumer conducting the online transaction using the inline authentication form, the enrollment verification response further including an address of the issuer server for the inline authentication form; and opening the inline authentication form on the merchant checkout page using the address, the inline authentication form being provided by the issuer server, wherein the merchant checkout page includes support for a shopping cart, wherein the shopping cart is associated with a session, wherein the inline authentication form is configured to permit the issuer server to authenticate the consumer without navigating away from the session associated with the shopping cart. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 16, 17, 18)
-
-
9. A system comprising:
-
a merchant server; a directory server; and a client computer operated by consumer, wherein the merchant server, the directory server, and the client computer are in communication with each other, wherein the merchant server comprises a processor and a computer readable medium having a computer readable code embodied therein, wherein the computer readable code is adapted to be executed on the processor, wherein the computer readable code is adapted to be executed to implement a method, the method comprising; sending a merchant checkout page to the client computer operated by consumer conducting an online transaction, wherein the merchant checkout page is configured to receive from the merchant server an indication of whether an issuer server is configured to authenticate the consumer using an inline authentication form, sending an enrollment verification request to the directory server to locate the issuer server, receiving an enrollment verification response from the directory server, wherein the enrollment verification response includes an indication of whether the issuer server is configured to authenticate the consumer using the inline authentication form, the issuer server being capable of authenticating the consumer conducting the online transaction using the inline authentication form, the enrollment verification response further including an address of the issuer server for the inline authentication form, and opening the inline authentication form on the merchant checkout page using the address, the inline authentication form being provided by the issuer server, wherein the merchant checkout page includes support for a shopping cart, wherein the shopping cart is associated with a session, wherein the inline authentication form is configured to permit the issuer server to authenticate the consumer without navigating away from the session associated with the shopping cart.
-
-
10. A method comprising:
-
sending a merchant checkout page to a client computer operated by a consumer conducting an online transaction, wherein the merchant checkout page is configured to receive from the merchant server an indication of whether an issuer server is configured to authenticate the consumer using an inline authentication form; sending an enrollment verification request to a directory server to locate the issuer server; receiving an enrollment verification response from the directory server, wherein the enrollment verification response includes an indication of whether the issuer server is configured to authenticate the consumer using the inline authentication form, the issuer server being capable of authenticating the consumer conducting the online transaction using the inline authentication form, the enrollment verification response further including an address of the issuer server for the inline authentication form; and opening the inline authentication form on the merchant checkout page using the address, the inline authentication form being provided by the issuer server, wherein the merchant checkout page includes support for a shopping cart, wherein the shopping cart is associated with a session, wherein the inline authentication form is configured to permit the issuer server to authenticate the consumer without navigating away from the session associated with the shopping cart. - View Dependent Claims (11, 12, 13, 14, 15)
-
Specification