Systems, methods, and computing platforms for executing credential-less network-based communication exchanges
US-12184638-B2 · Dec 31, 2024 · US
Mobile account authentication service
US9769134B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-9769134-B2 |
| Application number | US-61713509-A |
| Country | US |
| Kind code | B2 |
| Filing date | Nov 12, 2009 |
| Priority date | Apr 17, 2002 |
| Publication date | Sep 19, 2017 |
| Grant date | Sep 19, 2017 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
A payment authentication service authenticates the identity of a payer during online transactions. The authentication service allows a card issuer to verify a cardholder's identity using a variety of authentication methods, such as with the use of tokens. Authenticating the identity of a cardholder during an online transaction involves querying an access control server to determine if a cardholder is enrolled in the payment authentication service, requesting a password from the cardholder, verifying the password, and notifying a merchant whether the cardholder's authenticity has been verified. Systems for implementing the authentication service in which a cardholder uses a mobile device capable of transmitting messages via the Internet are described. Systems for implementing the authentication service in which a cardholder uses a mobile device capable of transmitting messages through voice and messaging channels is also described.
First claim
Opening claim text (preview).
We claim: 1. A method by which a trusted party computer of a trusted party authenticates an identity of an account holder during a transaction between said account holder and a requesting party, said method comprising: receiving, by a trusted party computer, a verification enrollment request message comprising a primary account number and mobile device information about an Internet-capable mobile device from a requesting party computer in response to establishment of an online, Internet communication connection between the requesting party computer and the Internet-capable mobile device of said account holder in order to conduct said transaction; determining, by said trusted party computer, if the primary account number is enrolled in an account authentication service and if authentication can be performed using the Internet-capable mobile device; transmitting, by said trusted party computer, a verification enrollment response message indicating that authentication can be performed with the Internet-capable mobile device to the requesting party computer; receiving an authentication request message by said trusted party computer via said Internet-capable mobile device of said account holder from the requesting party computer, wherein said receiving of said authentication request message is effected by redirecting an Internet browser of said Internet-capable mobile device from a web site of said requesting party to said trusted party computer of said trusted party; contacting, by said trusted party computer, said Internet-capable mobile device of said account holder; receiving, by said trusted party computer, an identity-authenticating token from said Internet-capable mobile device; verifying an identity of said account holder by said trusted party computer using said identity-authenticating token received from said account holder; creating an authentication response message at said trusted party computer; and transmitting said authentication response message to said requesting party computer via said Internet-capable mobile device of said account holder, wherein said transmitting of said authentication response message is effected by redirecting said Internet browser of said Internet-capable mobile device from said trusted party computer of said trusted party back to said web site of said requesting party, wherein said requesting party computer validates that said authentication response message indicates that the identity of said account holder is authenticated, whereby the identity of said account holder is authenticated by said trusted party for said requesting party. 2. A method as recited in claim 1 wherein said trusted party computer is an issuer computer that maintains an account of said account holder, said method further comprising: verifying, by said issuer computer during a registration process, the identity of said account holder as the owner of said account and designating a registration token for said account; and comparing said received identity-authenticating token against said registration token previously designated for said account of said account holder, whereby said issuer computer verifies the identity of said account holder. 3. A method as recited in claim 1 wherein said identity-authenticating token is a password, a response to a question, a cryptogram or a value from a chip card. 4. A method as recited in claim 1 , wherein the authentication request message is a condensed payer authentication request message and wherein the authentication response message is a condensed payer authentication response message. 5. A method as recited in claim 1 wherein said authentication request and authentication response messages are Internet-based messages made up of multiple elements that each have a name tag, each name tag having a first tag size, said method further comprising: replacing each of the name tags with a respective shortened name tag that has a second tag size, each of the second tag sizes being smaller than its respective first tag size. 6. A method as recited in claim 1 wherein said authentication response message is a condensed message, said method further comprising: reconstructing a complete authentication response message at said requesting party computer by combining said condensed authentication response message with data available at said requesting party computer; and validating a digital signature of said complete authentication response message to confirm that the identity of said account holder is authenticated. 7. A method as recited in claim 1 wherein said requesting party is an online merchant, wherein said trusted party is a financial institution, wherein said transaction is a financial transaction and wherein said account of said account holder is maintained by said trusted party. 8. A method as recited in claim 1 wherein said Internet-capable mobile device includes a WAP browser. 9. A method as recited in claim 1 further comprising: transmitting said authentication request message and said authentication response message by embedding said messages within markup language forms. 10. A method as recited in claim 1 further comprising: performing said steps of transmitting and said step of verifying without the use of any additional software on said Internet-capable mobile device of said account holder relating to said method of authenticating. 11. A method as recited in claim 1 wherein said authentication request message includes a telephone number of said Internet-capable mobile device. 12. A method comprising: receiving, by a trusted party computer of a trusted party, a verification enrollment request message comprising a primary account number and mobile device information about an Internet-capable mobile device from a requesting party computer in response to establishment of an online, Internet communication connection between the requesting party computer and the Internet-capable mobile device of an account holder in order to conduct a transaction; determining, by said trusted party computer, if the primary account number is enrolled in an account authentication service and if authentication can be performed using the Internet-capable mobile device; transmitting, by said trusted party computer, a verification enrollment response message indicating that authentication can be performed with the Internet-capable mobile device to the requesting party computer; receiving an authentication request message from the mobile device by said trusted party computer from said requesting party computer, wherein said transmitting of said request message is effected by redirecting an Internet browser of said Internet-capable mobile device from a web site of said requesting party on the requesting party computer to the trusted party computer of said trusted party; establishing a connection between the mobile device and the trusted party computer; receiving an identity-authenticating token from said Internet-capable mobile device by the trusted party computer over said connection; and transmitting an authentication response message to the mobile device from the trusted party computer via the mobile device, wherein said transmitting of said authentication response message is effected by redirecting said Internet browser of said Internet-capable mobile device from said trusted party computer of said trusted party back to said web site of said requesting party. 13. A method as recited in claim 12 wherein said trusted party computer is an issuer computer that maintains an account of said account holder, said method further comprising: verifying, by said trusted party computer during a registration proces
Assignees
Inventors
Classifications
PIN is checked remotely · CPC title
Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists · CPC title
Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system · CPC title
Electronic shopping [e-shopping] · CPC title
using two different networks, one for transaction and one for security confirmation · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US9769134B2 cover?
- A payment authentication service authenticates the identity of a payer during online transactions. The authentication service allows a card issuer to verify a cardholder's identity using a variety of authentication methods, such as with the use of tokens. Authenticating the identity of a cardholder during an online transaction involves querying an access control server to determine if a cardhol…
- Who is the assignee on this patent?
- Dominguez Benedicto H, Manessis Thomas J, Roth Janet T, and 5 more
- What technology area does this patent fall under?
- Primary CPC classification H04L63/08. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue Sep 19 2017 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).