SECURE AUTHENTICATION SYSTEM AND METHOD

US 20150379515A1
Filed: 06/05/2015
Published: 12/31/2015
Est. Priority Date: 05/15/2009
Status: Active Grant

First Claim

Patent Images

1-112. -112. (canceled)

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Apparatuses, methods, and systems pertaining to the verification of portable consumer devices for 3-D Secure Systems are disclosed. In one implementation, a verification token is coupled to a computer by a USB connection so as to use the computer'"'"'s networking facilities. The verification token reads identification information from a user'"'"'s portable consumer device (e.g., credit card) and sends the information to a validation entry over a communications network using the computer'"'"'s networking facilities. The validation entity applies one or more validation tests to the information that it receives from the verification token. If a selected number of tests are passed, the validation entity sends a 3-D Secure datum to the verification token. The verification token may enter the 3-D Secure datum into a hidden field of a Purchase Authentication Page appearing on the computer'"'"'s display.

Citations

132 Claims

1-112. -112. (canceled)

113. A method comprising:
- sending, by a control server, a Purchase Authentication Page to a computer over a communications network, the Purchase Authentication Page having a user response posting field to receive a response from a user to authenticate the user;
  
  receiving, by the control server, a returned Purchase Authentication Page from the computer over the communications network, the returned Purchase Authentication Page having a user response disposed in the user response posting field and a secure datum received from a verification token associated with the computer;
  
  comparing, by the control server, at least a portion of the received user response to a stored user response to make a first determination of whether a match exists;
  
  comparing, by the control server, the received secure datum to a stored secure datum to make a second determination of whether a match exists; and
  
  generating, by the control server, a Payer Authentication Response message based on at least the first and second determinations.
- View Dependent Claims (114, 115, 116, 117, 118, 119)
- - 114. The method of claim 113 wherein the secure datum was received by the verification token from a validation entity after the validation entity validates information received from the validation token.
  - 115. The method of claim 113 wherein the secure datum is generated based on an identity of a merchant with which a user conducts a transaction, and a date or time of the transaction.
  - 116. The method of claim 113 wherein the secure datum is generated based on an identifier associated with the verification token or an IP address of the computer.
  - 117. The method of claim 113 wherein the verification token comprises a data processor and a computer readable medium comprising code, executable by the processor, for causing the verification token to read portable consumer device identification information from the portable consumer device, the portable consumer device being used by the user.
  - 118. The method of claim 117 wherein the portable consumer device is a credit card.
  - 119. The method of claim 113 wherein the control server is an access control server.

120. A control server comprising:
- a processor; and
  
  a computer readable medium, the computer readable medium comprising code, executable by the processor, for implementing a method comprisingsending, by a control server, a Purchase Authentication Page to a computer over a communications network, the Purchase Authentication Page having a user response posting field to receive a response from a user to authenticate the user;
  
  receiving, by the control server, a returned Purchase Authentication Page from the computer over the communications network, the returned Purchase Authentication Page having a user response disposed in the user response posting field and a secure datum received from a verification token associated with the computer;
  
  comparing, by the control server, at least a portion of the received user response to a stored user response to make a first determination of whether a match exists,comparing, by the control server, the received secure datum to a stored secure datum to make a second determination of whether a match exists, andgenerating, by the control server, a Payer Authentication Response message based on at least the first and second determinations.
- View Dependent Claims (121, 122, 123, 124, 125, 127, 128, 130, 131, 132)
- - 121. The control server of claim 120 wherein the secure datum is generated based on at least two of an identity of a merchant with which a user conducts a transaction, a date or time of the transaction, an identifier associated with the verification token, and an IP address of the computer.
  - 122. The control server of claim 120 wherein the secure datum was received by the verification token from a validation entity after the validation entity validates information received from the validation token.
  - 123. The control server of claim 120, wherein the method further comprises:
    - receiving the secure datum from the validation entity before receiving the secure datum from the verification token.
  - 124. A system comprising:
    - the control server of claim 120; and
      
      the computer in communication with the control server.
  - 125. The system of claim 124 further comprising:
    - the validation entity in communication with the computer.
  - 127. The method of claim 123 wherein the risk assessment is performed based upon data from a directory server.
  - 128. The method of claim 123 further comprising:
    - the Purchase Authenticate Page is sent to the computer with display parameters which cause the Purchase Authentication Page to be in hidden form to the user on the computer.
  - 130. The method of claim 123 further comprising:
    - receiving, by the control server, a secure datum from a verification token associated with the computer.
  - 131. The method of claim 123 further comprising:
    - receiving, by the control server, a secure datum from a verification token associated with the computer.
  - 132. The method of claim 131 wherein the verification token is in the form of a USB stick.

126. A method comprising:
- obtaining, by a control server, a risk assessment for a transaction;
  
  generating and sending, by the control server, a Purchase Authentication Page to a computer with page display parameters that causes the Purchase Authentication Page to not be visible or to not be fully visible on a display of the computer if the risk assessment is below a threshold value; and
  
  sending, by the control server, the Purchase Authentication Page to the computer with page display parameters that cause the Purchase Authentication Page to be visible on the display of the computer if the risk assessment is above the threshold value.
- View Dependent Claims (129)
- - 129. The method of claim 126 wherein the secure datum is a 3-D secure datum.

Specification

Resources

Litigation Campaign Assessment

Granted Patent

US 9,792,611 B2
Time in Patent Office

Days
Field of Search
US Class Current

1/1
CPC Class Codes

G06F 21/34   involving the use of extern...

G06F 2221/2129   Authenticate client device ...

G06Q 20/12   specially adapted for elect...

G06Q 20/3674   involving authentication

G06Q 20/3821   Electronic credentials

G06Q 20/385   using an alias or single-us...

G06Q 20/40   Authorisation, e.g. identif...

G06Q 20/409   Device specific authenticat...

G06Q 20/42   Confirmation, e.g. check or...

G06Q 20/425   using two different network...

G06Q 2220/00   Business processing using c...

G06Q 30/06   Buying, selling or leasing ...

H04L 2209/56   Financial cryptography, e.g...

H04L 63/0853   using an additional device,...

H04L 63/126   the source of the received ...

H04L 9/0866   involving user or device id...

H04L 9/321   involving a third party or ...

H04L 9/3234   involving additional secure...

H04L 9/3273   for mutual authentication n...

SECURE AUTHENTICATION SYSTEM AND METHOD

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

Citations

132 Claims

Specification

Solutions

Use Cases

Quick Links

SECURE AUTHENTICATION SYSTEM AND METHOD

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

132 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links