System and method for secure transactions manageable by a transaction account provider

US 7,543,738 B1
Filed: 07/28/2005
Issued: 06/09/2009
Est. Priority Date: 07/10/2001
Status: Expired due to Fees

First Claim

Patent Images

1. A method for securely completing a transaction, comprising:

assigning a transaction account to a user according to user personal information;

assigning a transaction account code to said transaction account, said transaction account and said user personal information being sensitive information;

receiving a proxy code from a transaction device associated with said user, wherein said transaction device generates said proxy code;

associating said proxy code to said transaction account code, said proxy code configured to be provided to a merchant system for transaction completion, wherein said proxy code is absent of said sensitive information, and includes the same format as said transaction account code;

receiving from said merchant system a transaction request, said transaction request including said proxy code;

locating said transaction account code associated with said proxy code;

locating said transaction account using said transaction account code; and

processing said transaction request in accordance with said transaction accounts;

wherein said transaction device is configured to interface with a transponder/reader system comprising;

a Radio Frequency Identification (RFID) reader configured to provide a first radio frequency (RF) interrogation signal for powering a transponder system, to receive a transponder system RF signal, and to communicate transponder system account data related to said transponder system RF signal to a merchant system, said RFID reader including, a first interrogator for providing said first RF interrogation signal;

an RFID reader authentication circuit in communication with said first interrogator for authenticating said transponder system RF signal;

an RFID reader database for storing RFID reader data, said RFID reader database in communication with said RFID reader authentication circuit;

an RFID reader protocol/sequence controller in communication with at least one of said first interrogator, said RFID reader authentication circuit, and said RFID reader database, said RFID reader protocol/sequence controller configured to facilitate control of an order of operation of said first interrogator, said RFID reader authentication circuit, and said RFID reader database;

an RFID reader communications interface configured to communicate with said merchant system, said RFID reader communications interface configured to provide said transponder system account data, wherein said transponder system is configured to receive said first RF interrogation signal, to authenticate said first RF interrogation signal, and to transmit said transponder system account data, said transponder system further comprising;

a first transponder responsive to said first RF interrogation signal;

a transponder system authentication circuit in communication with said first transponder, said transponder system authentication circuit configured to authenticate said first RF interrogation signal;

a transponder system database for storing said transponder system account data, said transponder system database in communication with said transponder system authentication circuit; and

a transponder system protocol/sequence controller in communication with at least one of said first transponder, said transponder system authentication circuit, and said transponder system database, said transponder system protocol/sequence controller configured to control the order of operation of said first transponder, said transponder system authentication circuit, and said transponder system database, wherein said transponder system protocol/sequence controller is configured to activate said transponder system authentication circuit in response to said first RF interrogation signal having an RFID reader authentication code, said transponder system authentication circuit configured to encrypt said RFID reader authentication code to provide an encrypted RFID reader authentication code, said transponder system authentication circuit configured to provide said encrypted RFID reader authentication code to said first transponder for providing to said RFID reader, wherein said RFID reader is configured to receive said encrypted RFID reader authentication code, and wherein said RFID reader protocol/sequence controller is configured to activate said RFID reader authentication circuit in response to said encrypted RFID reader authentication code, wherein said RFID reader database is configured to provide a transponder system decryption security key to said RFID reader authentication circuit in response to said encrypted RFID reader authentication code, said transponder system decryption security key for use in decrypting said encrypted RFID reader authentication code to form a decrypted RFID reader authentication code, said transponder system decryption security key provided to said RFID reader based on an unique transponder identification code, wherein said RFID reader authentication circuit is configured to compare said decrypted RFID reader authentication code and said RFID reader authentication code to determine whether a match exists, and wherein said RFID reader protocol/sequence controller is configured to activate said RFID reader communications interface where said RFID reader authentication circuit matches said decrypted RFID reader authentication code and said RFID reader authentication code.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method for securing a financial transaction using a proxy code, which is assigned a transaction account number. An account issuer permanently assigns the proxy code to a transaction account correlated to the transaction device. The proxy code is uploaded onto the transaction device for later use in completing a transaction request. During transaction completion, the proxy code is provided to a merchant system in lieu of any sensitive account information. Since the proxy code is permanently assigned, the number need not be changed or updated on the merchant system once uploaded into a payment device or merchant database. The account issuer may manipulate the sensitive account information without need to alter the information stored on the merchant database. Since the proxy code contains no sensitive information, the sensitive information related to the transaction account is secured from theft.

1528 Citations

11 Claims

1. A method for securely completing a transaction, comprising:
- assigning a transaction account to a user according to user personal information;
  
  assigning a transaction account code to said transaction account, said transaction account and said user personal information being sensitive information;
  
  receiving a proxy code from a transaction device associated with said user, wherein said transaction device generates said proxy code;
  
  associating said proxy code to said transaction account code, said proxy code configured to be provided to a merchant system for transaction completion, wherein said proxy code is absent of said sensitive information, and includes the same format as said transaction account code;
  
  receiving from said merchant system a transaction request, said transaction request including said proxy code;
  
  locating said transaction account code associated with said proxy code;
  
  locating said transaction account using said transaction account code; and
  
  processing said transaction request in accordance with said transaction accounts;
  
  wherein said transaction device is configured to interface with a transponder/reader system comprising;
  
  a Radio Frequency Identification (RFID) reader configured to provide a first radio frequency (RF) interrogation signal for powering a transponder system, to receive a transponder system RF signal, and to communicate transponder system account data related to said transponder system RF signal to a merchant system, said RFID reader including, a first interrogator for providing said first RF interrogation signal;
  
  an RFID reader authentication circuit in communication with said first interrogator for authenticating said transponder system RF signal;
  
  an RFID reader database for storing RFID reader data, said RFID reader database in communication with said RFID reader authentication circuit;
  
  an RFID reader protocol/sequence controller in communication with at least one of said first interrogator, said RFID reader authentication circuit, and said RFID reader database, said RFID reader protocol/sequence controller configured to facilitate control of an order of operation of said first interrogator, said RFID reader authentication circuit, and said RFID reader database;
  
  an RFID reader communications interface configured to communicate with said merchant system, said RFID reader communications interface configured to provide said transponder system account data, wherein said transponder system is configured to receive said first RF interrogation signal, to authenticate said first RF interrogation signal, and to transmit said transponder system account data, said transponder system further comprising;
  
  a first transponder responsive to said first RF interrogation signal;
  
  a transponder system authentication circuit in communication with said first transponder, said transponder system authentication circuit configured to authenticate said first RF interrogation signal;
  
  a transponder system database for storing said transponder system account data, said transponder system database in communication with said transponder system authentication circuit; and
  
  a transponder system protocol/sequence controller in communication with at least one of said first transponder, said transponder system authentication circuit, and said transponder system database, said transponder system protocol/sequence controller configured to control the order of operation of said first transponder, said transponder system authentication circuit, and said transponder system database, wherein said transponder system protocol/sequence controller is configured to activate said transponder system authentication circuit in response to said first RF interrogation signal having an RFID reader authentication code, said transponder system authentication circuit configured to encrypt said RFID reader authentication code to provide an encrypted RFID reader authentication code, said transponder system authentication circuit configured to provide said encrypted RFID reader authentication code to said first transponder for providing to said RFID reader, wherein said RFID reader is configured to receive said encrypted RFID reader authentication code, and wherein said RFID reader protocol/sequence controller is configured to activate said RFID reader authentication circuit in response to said encrypted RFID reader authentication code, wherein said RFID reader database is configured to provide a transponder system decryption security key to said RFID reader authentication circuit in response to said encrypted RFID reader authentication code, said transponder system decryption security key for use in decrypting said encrypted RFID reader authentication code to form a decrypted RFID reader authentication code, said transponder system decryption security key provided to said RFID reader based on an unique transponder identification code, wherein said RFID reader authentication circuit is configured to compare said decrypted RFID reader authentication code and said RFID reader authentication code to determine whether a match exists, and wherein said RFID reader protocol/sequence controller is configured to activate said RFID reader communications interface where said RFID reader authentication circuit matches said decrypted RFID reader authentication code and said RFID reader authentication code.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The method of claim 1, comprising:
    - associating said proxy code to said sensitive information stored in a database.
  - 3. The method of claim 2, further comprising holding said proxy code fixed and altering said sensitive information to form altered sensitive information, and associating said altered sensitive information to said proxy code in said database.
  - 4. The method of claim 1, further comprising issuing said proxy code via a network authorization message containing a proxy code.
  - 5. The method of claim 1, wherein said step of locating said transaction account code includes generating said transaction account code from said proxy code.
  - 6. The method of claim 1, further comprising:
    - associating said proxy code with a secondary form of identification for use in validating said proxy code.
  - 7. The method of claim 1, further comprising:
    - providing said proxy code to said transaction device, said transaction device presentable to said merchant system for transaction completion.
  - 8. The method of claim 7, wherein said proxy code is presented to said merchant system in an ISO 7816 magnetic stripe compatible format.
  - 9. The method of claim 7, wherein said transaction device is operable to present said proxy code to said merchant system in a contactless environment.
  - 10. The method of claim 9, wherein said transaction device is operable to present said proxy code to said merchant system via radio frequency identification (RFID) technology.

11. A system for securely completing a transaction comprising:
- a transaction account issuer system for collecting personal data from a user, said transaction account issuer system configured to facilitate issuing a transaction account to said user in accordance with said personal data, assign said transaction account code to said transaction account, receive a proxy code from a transaction device associated with said user, wherein said transaction device is configured to generate said proxy code, associate said proxy code to said transaction account code, receiving said proxy code from a merchant in a merchant transaction request, locate said transaction account code in accordance with said proxy code, and process said transaction request in accordance with said transaction account,wherein said personal data, and said transaction account code are sensitive information and said proxy code is absent of said sensitive information,wherein said proxy code has a similar format as said transaction account code,wherein said proxy code is provided to a merchant system and said transaction account code is not provided to said merchant system, andwherein said transaction account issuer system is further configured to alter said sensitive information and to keep said proxy code fixed,wherein said transaction device is configured to interface with a transponder/reader system comprising;
  
  a Radio Frequency Identification (RFID) reader configured to provide a first radio frequency (RF) interrogation signal for powering a transponder system, to receive a transponder system RF signal, and to communicate transponder system account data related to said transponder system RF signal to a merchant system, said RFID reader including, a first interrogator for providing said first RF interrogation signal;
  
  an RFID reader authentication circuit in communication with said first interrogator for authenticating said transponder system RF signal;
  
  an RFID reader database for storing RFID reader data, said RFID reader database in communication with said RFID reader authentication circuit;
  
  an RFID reader protocol/sequence controller in communication with at least one of said first interrogator, said RFID reader authentication circuit, and said RFID reader database, said RFID reader protocol/sequence controller configured to facilitate control of an order of operation of said first interrogator, said RFID reader authentication circuit, and said RFID reader database;
  
  an RFID reader communications interface configured to communicate with said merchant system, said RFID reader communications interface configured to provide said transponder system account data, wherein said transponder system is configured to receive said first RF interrogation signal, to authenticate said first RF interrogation signal, and to transmit said transponder system account data, said transponder system further comprising;
  
  a first transponder responsive to said first RF interrogation signal;
  
  a transponder system authentication circuit in communication with said first transponder, said transponder system authentication circuit configured to authenticate said first RF interrogation signal;
  
  a transponder system database for storing said transponder system account data, said transponder system database in communication with said transponder system authentication circuit; and
  
  a transponder system protocol/sequence controller in communication with at least one of said first transponder, said transponder system authentication circuit, and said transponder system database, said transponder system protocol/sequence controller configured to control the order of operation of said first transponder, said transponder system authentication circuit, and said transponder system database, wherein said transponder system protocol/sequence controller is configured to activate said transponder system authentication circuit in response to said first RF interrogation signal having an RFID reader authentication code, said transponder system authentication circuit configured to encrypt said RFID reader authentication code to provide an encrypted RFID reader authentication code, said transponder system authentication circuit configured to provide said encrypted RFID reader authentication code to said first transponder for providing to said RFID reader, wherein said RFID reader is configured to receive said encrypted RFID reader authentication code, and wherein said RFID reader protocol/sequence controller is configured to activate said RFID reader authentication circuit in response to said encrypted RFID reader authentication code, wherein said RFID reader database is configured to provide a transponder system decryption security key to said RFID reader authentication circuit in response to said encrypted RFID reader authentication code, said transponder system decryption security key for use in decrypting said encrypted RFID reader authentication code to form a decrypted RFID reader authentication code, said transponder system decryption security key provided to said RFID reader based on an unique transponder identification code, wherein said RFID reader authentication circuit is configured to compare said decrypted RFID reader authentication code and said RFID reader authentication code to determine whether a match exists, and wherein said RFID reader protocol/sequence controller is configured to activate said RFID reader communications interface where said RFID reader authentication circuit matches said decrypted RFID reader authentication code and said RFID reader authentication code.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Liberty Peak Ventures, LLC (Dominion Harbor Enterprises, LLC)
Original Assignee
American Express Travel Related Services Company, Inc. (American Express Company)
Inventors
Barnes, Brian T, Saunders, Peter D
Primary Examiner(s)
Le, Thien M.
Assistant Examiner(s)
Vo, Tuyen K

Application Number

US11/161,295
Time in Patent Office

1,412 Days
Field of Search

235/375, 235/379, 235/380, 235/382, 235/382.5, 235/451, 235/492, 340/5.4, 340/5.61, 340/10.1
US Class Current

235/380
CPC Class Codes

G06F 18/00   Pattern recognition

G06Q 20/00   Payment architectures, sche...

G06Q 20/04   Payment circuits

G06Q 20/14   specially adapted for billi...

G06Q 20/20   Point-of-sale [POS] network...

G06Q 20/327   Short range or proximity pa...

G06Q 20/3674   involving authentication

G06Q 20/385   using an alias or single-us...

G06Q 20/388   using mutual authentication...

G06Q 20/40   Authorisation, e.g. identif...

G06Q 20/4014   Identity check for transact...

G06V 40/14   Vascular patterns

G06V 40/40   Spoof detection, e.g. liven...

G07C 9/257   electronically G07C9/26 tak...

G07C 9/28   the pass enabling tracking ...

G07C 9/29   the pass containing active ...

G07G 1/14   Systems including one or mo...

System and method for secure transactions manageable by a transaction account provider

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

1528 Citations

11 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for secure transactions manageable by a transaction account provider

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

1528 Citations

11 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links