Transaction authentication based on contextual data presentation
First Claim
1. A method of producing a message in connection with a detected transaction, the method comprising:
- receiving transaction information that describes details of the detected transaction;
receiving user-provided contextual information that describes a context of the detected transaction, wherein the user-provided contextual information comprises a description of the detected transaction generated by a person that initiated the detected transaction, and generated during the detected transaction, wherein receiving the user-provided contextual data comprises;
receiving a selection by the user of automatic contextual information generation or manual contextual information generation;
in response to the selection being the automatic contextual information generation, obtaining machine-generated contextual information to use as the user-provided contextual information; and
in response to the selection being the manual contextual information generation, obtaining custom contextual data that is unrelated to the transaction information to use as the user-provided contextual information;
producing at least one digital signature based on a combination of the transaction information and the user-provided contextual information; and
transmitting the digital signature in a message to a server.
1 Assignment
0 Petitions
Accused Products
Abstract
Methods, devices, and systems are provided for approving a transaction through an exchange of presented user contextual approval information and approval decryption. The user contextual approval information is generated by a user during a transaction, cryptographically signed, and provided to a transaction server. The user contextual data uniquely describes the transaction to the user and can be employed to aid a user in approving or validating the transaction in a subsequent approval action. In particular, a transaction may present the contextual approval information to a user in the form of an approval challenge message. The approval challenge message may be sent to a known user device via the transaction server in the form of a text or multi-media message. The user may respond to the message with an approval or denial response.
13 Citations
16 Claims
-
1. A method of producing a message in connection with a detected transaction, the method comprising:
-
receiving transaction information that describes details of the detected transaction; receiving user-provided contextual information that describes a context of the detected transaction, wherein the user-provided contextual information comprises a description of the detected transaction generated by a person that initiated the detected transaction, and generated during the detected transaction, wherein receiving the user-provided contextual data comprises; receiving a selection by the user of automatic contextual information generation or manual contextual information generation; in response to the selection being the automatic contextual information generation, obtaining machine-generated contextual information to use as the user-provided contextual information; and in response to the selection being the manual contextual information generation, obtaining custom contextual data that is unrelated to the transaction information to use as the user-provided contextual information; producing at least one digital signature based on a combination of the transaction information and the user-provided contextual information; and transmitting the digital signature in a message to a server. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A server, comprising:
-
a processor; and a computer-readable storage medium having instructions stored thereon that, when executed by the processor, cause the processor to; receive transaction information describing details of a detected transaction; receive contextual information describing a custom user-provided context for the detected transaction, wherein the custom user-provided context comprises a description of the detected transaction generated by a person that initiated the detected transaction, and generated during the detected transaction, wherein to receive the custom user-provided context, the processor is to; receive a selection by the user of automatic contextual information generation or manual contextual information generation; in response to the selection being the automatic contextual information generation, obtain machine-generated contextual information to use as the custom user-provided context; and in response to the selection being the manual contextual information generation, obtain custom contextual data that is unrelated to the transaction information to use as the custom user-provided context; and transmit a cryptographically signed and/or encrypted challenge message including the custom user-provided context to a user device. - View Dependent Claims (11, 12, 13, 14, 15, 16)
-
Specification