SYSTEM AND METHOD FOR TOKEN DOMAIN CONTROL
First Claim
Patent Images
1. A method comprising:
- receiving, by a processor in a token service computer, a first token request from a first token requestor computer, wherein the first token request includes a value credential and a first domain identifier;
identifying, by the processor in the token service computer, a value token associated with the value credential;
generating, by the processor in the token service computer, a first token code associated with the value token;
assigning, by the processor in the token service computer, the value token and the first token code to the first domain identifier; and
providing, by the processor in the token service computer, the value token and the first token code to the first token requestor computer, wherein the first token requestor subsequently uses the value token for an interaction, wherein the first token requestor'"'"'s subsequent use of the value token is valid if the value token is accompanied by the first token code, and wherein the first token code is domain specific.
1 Assignment
0 Petitions
Accused Products
Abstract
A method for providing a token code in conjunction with a value token is disclosed. The token code serves as a shared secret for authenticating the use of the value token. Multiple token holders can possess the same value token, but each token holder may have a different token code for use with the value token.
313 Citations
20 Claims
-
1. A method comprising:
-
receiving, by a processor in a token service computer, a first token request from a first token requestor computer, wherein the first token request includes a value credential and a first domain identifier; identifying, by the processor in the token service computer, a value token associated with the value credential; generating, by the processor in the token service computer, a first token code associated with the value token; assigning, by the processor in the token service computer, the value token and the first token code to the first domain identifier; and providing, by the processor in the token service computer, the value token and the first token code to the first token requestor computer, wherein the first token requestor subsequently uses the value token for an interaction, wherein the first token requestor'"'"'s subsequent use of the value token is valid if the value token is accompanied by the first token code, and wherein the first token code is domain specific. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A token service computer comprising:
-
a processor; and a computer readable medium, the computer readable medium comprising code, executable by the processor, for implementing a method comprising; receiving a first token request from a first token requestor computer, wherein the first token request includes a value credential and a first domain identifier; identifying a value token associated with the value credential; generating a first token code associated with the value token; assigning the value token and the first token code to the first domain identifier; and providing the value token and the first token code to the first token requestor computer, wherein the first token requestor subsequently uses the value token for an interaction, wherein the first token requestor'"'"'s subsequent use of the value token is valid if the value token is accompanied by the first token code, and wherein the first token code is domain specific. - View Dependent Claims (7, 8, 9, 10)
-
-
11. A method comprising:
-
receiving, by a token service system, a first authorization request message including a value token, a first token code, and a first domain identifier; determining, by the token service system, that the first token code is associated with the value token; determining, by the token service system, that the value token and the first token code are assigned to the first domain identifier, wherein the first token code is domain specific; identifying, by the token service system, a value credential associated with the value token; adding, by the token service system, the value credential to the first authorization request message; sending, by the token service system, the first authorization request message to an authorizing entity computer; receiving, by the token service system, a first authorization response message including the value credential from the authorizing entity computer; replacing, by the token service system, the value credential with the value token and the first token code in the first authorization response message; and forwarding, by the token service system, the first authorization response message. - View Dependent Claims (12, 13, 14, 15)
-
-
16. A token service system comprising:
-
a token service computer comprising a first processor and a first computer readable medium, the first computer readable medium comprising code, executable by the first processor to implement a method comprising; receiving a first value credential request from a transaction processing network computer, the first value credential request including a value token, a first token code, and a first domain identifier; determining that the first token code is associated with the value token; determining that the value token and the first token code are assigned to the first domain identifier, wherein the first token code is domain specific; identifying a value credential associated with the value token; and sending a first value credential response including the value credential to the transaction processing network computer; and a transaction processing network computer in communication with the token service computer, the transaction processing network computer comprising a second processor and a second computer readable medium, the second computer readable medium comprising code, executable by the second processor for implementing a method comprising; receiving a first authorization request message including the value token, the first token code, and the first domain identifier; sending the first value credential request to the token service computer, the first value credential request including the value token, the first token code, and the first token requestor; receiving the first value credential response including the value credential associated with the value token from the token service computer; adding the value credential to the first authorization request message; sending the first authorization request message to an authorizing entity computer; receiving a first authorization response message including the value credential from the authorizing entity computer; replacing the value credential with the value token and the first token code in the first authorization response message; and forwarding the first authorization response message; - View Dependent Claims (17, 18, 19, 20)
-
Specification