AUTHENTICATION USING APPLICATION AUTHENTICATION ELEMENT

US 20120246079A1
Filed: 03/23/2012
Published: 09/27/2012
Est. Priority Date: 03/24/2011
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

providing, by a mobile communication device, an application authentication element comprising a pre-selected authentication element;

receiving, by the mobile communication device and from the user, a user authentication token; and

conducting a transaction using an application on a mobile communication device.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Embodiments of the present invention can be directed to systems, apparatuses, and methods for performing transactions through mobile communication devices using telecommunications networks, systems, or proximity near-field communications systems. Embodiments may be directed to a mobile communication device displaying an application authentication element including a pre-selected authentication element. The application authentication element may include transaction data associated with a transaction conducted by a mobile communication device. The mobile communication device may obtain the pre-selected authentication element by either transmitting a request to a server computer or retrieving the pre-selected authentication element from a secure memory in the mobile communication device. A user authentication token may then be received by the mobile communication device from the user. The mobile communication device may then generate a secret token derived from the user authentication token, and if the secret token is correlated to a secret reference token, a transaction may be conducted.

326 Citations

22 Claims

1. A method comprising:
- providing, by a mobile communication device, an application authentication element comprising a pre-selected authentication element;
  
  receiving, by the mobile communication device and from the user, a user authentication token; and
  
  conducting a transaction using an application on a mobile communication device.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method of claim 1 wherein after receiving, the method further comprises:
    - generating, by the mobile communication device, a secret token that is derived from the user authentication token and wherein providing comprises displaying.
  - 3. The method of claim 1 wherein the user authentication token is in the form of a swipe.
  - 4. The method of claim 1 wherein the application authentication element further comprises transaction data associated with a transaction conducted by the mobile communication device.
  - 5. The method of claim 1 wherein the method further comprises:
    - transmitting, a request to a server computer to obtain the pre-selected authentication element.
  - 6. The method of claim 1 wherein the method further comprises:
    - retrieving the pre-selected authentication element from a secure memory in the mobile communication device.

7. A mobile communication device comprising:
- an antenna;
  
  a processor; and
  
  a non-transitory computer-readable storage medium coupled to the processor, the non-transitory computer-readable storage medium comprising code executable by the processor for implementing a method comprising;
  
  providing, by a mobile communication device, an application authentication element comprising a pre-selected authentication element;
  
  receiving, by the mobile communication device and from the user, a user authentication token; and
  
  conducting a transaction using an application on a mobile communication device.
- View Dependent Claims (8, 9, 10, 11, 12)
- - 8. The mobile communication device of claim 7 wherein after receiving, the method further comprises:
    - generating, by the mobile communication device, a secret token that is derived from the user authentication token and wherein providing comprises displaying.
  - 9. The mobile communication device of claim 7 wherein the authentication token is in the form of a swipe.
  - 10. The mobile communication device of claim 7 wherein the application authentication element further comprises transaction data associated with a transaction conducted by the mobile communication device.
  - 11. The mobile communication device of claim 7 wherein the method further comprises:
    - transmitting a request to a server computer to obtain the pre-selected authentication element.
  - 12. The mobile communication device of claim 7 wherein the method further comprises:
    - retrieving the pre-selected authentication element from a secure memory in the mobile communication device.

13. A method comprising:
- receiving, by a processor, an application authentication request;
  
  generating, by the processor, an application authentication element comprising a pre-selected authentication element; and
  
  providing, by the processor, the application authentication element to a mobile communication device.
- View Dependent Claims (14, 15, 16, 17)
- - 14. The method of claim 13 wherein the application authentication request is an application authentication request message from the mobile communication device and wherein providing the application authentication element to the mobile communication device further comprises sending an application authentication response message comprising the application authentication element to the mobile communication device.
  - 15. The method of claim 14 wherein after sending, the method further comprises:
    - receiving, by the server computer, a secret token, wherein the secret token is generated by the mobile communication device using a user authentication token;
      
      comparing the secret token to a secret reference token;
      
      if the secret token and the secret reference token are correlated, sending a user authentication message to the mobile communication device; and
      
      if the secret token and the secret reference token are not correlated, sending a denial message to the mobile communication device.
  - 16. The method of claim 13 wherein the user authentication token is in the form of a swipe.
  - 17. The method of claim 13 wherein the application authentication element further comprises transaction data associated with a transaction conducted by the mobile communication device.

18. An apparatus comprising:
- a processor and a non-transitory computer-readable storage medium coupled to the processor, the computer-readable storage medium comprising code executable by the processor for implementing a method comprising;
  
  receiving an application authentication request;
  
  generating an application authentication element comprising a pre-selected authentication element; and
  
  providing the application authentication element.
- View Dependent Claims (19, 20, 21, 22)
- - 19. The apparatus of claim 18 wherein the apparatus is a server computer, and wherein receiving the application authentication request further comprises receiving an application authentication request message from a mobile communication device;
    - and wherein providing the application authentication element further comprises sending an application authentication response message comprising the application authentication element to the mobile communication device.
  - 20. The apparatus of claim 18 wherein the method further comprises:
    - receiving a secret token, wherein the secret token is generated by the mobile communication device using a user authentication token;
      
      comparing the secret token to a secret reference token;
      
      if the secret token and the secret reference token are correlated, sending a user authentication message to the mobile communication device; and
      
      if the secret token and the secret reference token are not correlated, sending a denial message to the mobile communication device.
  - 21. The apparatus of claim 18 wherein the user authentication token is in the form of a swipe.
  - 22. The apparatus of claim 18 wherein the application authentication element further comprises transaction data associated with a transaction conducted by the mobile communication device.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Visa International Service Association (Visa, Inc.)
Original Assignee
Visa International Service Association (Visa, Inc.)
Inventors
Wilson, Dave William, Aabye, Christian, Bourdillon, John Francis Benedict

Granted Patent

US 9,883,387 B2
Time in Patent Office

Days
Field of Search
US Class Current

705/67
CPC Class Codes

G06Q 20/3226   Use of secure elements sepa...

G06Q 20/3227   using secure elements embed...

G06Q 20/3229   Use of the SIM of a M-devic...

G06Q 20/325   using wireless networks

G06Q 20/326   Payment applications instal...

G06Q 20/3265   characterised by personalis...

G06Q 20/3278   RFID or NFC payments by mea...

G06Q 20/384   using social networks

G06Q 20/40145   Biometric identity checks

H04L 63/0807   using tickets, e.g. Kerbero...

H04W 12/062   Pre-authentication

AUTHENTICATION USING APPLICATION AUTHENTICATION ELEMENT

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

326 Citations

22 Claims

Specification

Use Cases

Quick Links

Others

AUTHENTICATION USING APPLICATION AUTHENTICATION ELEMENT

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

326 Citations

22 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others