US20170308891A1 - System and Method for Distributed Real Time Authorization of Payment Transactions - Google Patents
System and Method for Distributed Real Time Authorization of Payment TransactionsDownload PDFInfo
- Publication number
- US20170308891A1 US20170308891A1US15/643,480US201715643480AUS2017308891A1US 20170308891 A1US20170308891 A1US 20170308891A1US 201715643480 AUS201715643480 AUS 201715643480AUS 2017308891 A1US2017308891 A1US 2017308891A1
- Authority
- US
- United States
- Prior art keywords
- payment
- server
- data
- payee
- consumer
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Abandoned
Links
Images
Classifications
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/385—Payment protocols; Details thereof using an alias or single-use codes
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/02—Payment architectures, schemes or protocols involving a neutral party, e.g. certification authority, notary or trusted third party [TTP]
- G06Q20/027—Payment architectures, schemes or protocols involving a neutral party, e.g. certification authority, notary or trusted third party [TTP] involving a payment switch or gateway
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
- G06Q20/401—Transaction verification
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
- G06Q20/401—Transaction verification
- G06Q20/4015—Transaction verification using location information
Definitions
- the present inventionrelates generally to the field of payment transactions, and more particularly, to systems and methods for distributed, real-time authorization of payment transactions initiated by a mobile device.
- the systems and methodsare capable performing the functions of existing centralized card networks in a unique and efficient manner, and the systems and methods further permit the implementation of the many features and advantages offered by modern computing devices when conducting payment transactions.
- POSpoint of sale
- the POS devicereads static, preprogrammed information from a magnetic strip on the card and transmits the information to an issuing bank through an acquirer (merchant) bank and a centralized card network (e.g., VISATM or MASTERCARDTM).
- the issuing bankapproves or declines the transaction and, if approved, transmits a payment to the acquirer bank through the card network.
- the issuing bankalso transmits an approval or decline notice to the POS device that is routed through the card network and the acquirer bank.
- the card networktypically subtracts an interchange fee before routing the payment to the acquirer bank.
- the systems and methods of the present inventionenable the new generation of payment transactions initiated and performed by computing devices and address the requirements needed to bring the such innovations to market by providing a low-cost, highly scalable, and resilient distributed banking and payment platform capable of performing real-time authorization of payment transactions initiated by mobile and other computing devices.
- a method and system of authorizing payment transactionsincludes receiving, by a first server associated with a payee financial account, a payment data envelope transmitted by a payee computing device.
- the payment data envelopeincludes payer data, encrypted payee data, and payment instructions.
- the payee financial account serverdecrypts the encrypted payee data, verifies the payee identity by comparing the payee data in the received payment data envelope to payee data stored in a database, and then transmits the payment data envelope to a second financial server associated with the payer.
- the payee financial serverreceives a transaction status message from the payer financial server indicating whether the payment transaction was authorized.
- the payer dataincludes a payer account alias that is transmitted by the payee financial account server to a routing key and management server.
- the payee financial account serverreceives, from the routing key and management server, routing information for transmitting the payment data envelope to the payer financial account server.
- a method and systemincludes receiving, by a first server associated with a payer financial account, a first payment data envelope transmitted by a second server associated with a payee financial account.
- the payment data envelopeincludes encrypted payer data, payee data, and payment instructions.
- the payer financial account serverdecrypts the encrypted payee data and verifies the payer identity by comparing the payer data in the first payment data envelope to payer data stored in a database.
- the payer financial account serveralso determines a whether the payment is authorized or declined.
- the payer financial serverthen generates a transaction status message that is transmitted to the payee financial account server.
- the payee dataincludes a payee account alias that is transmitted by the payer financial account server to a routing key and management server.
- the payer financial account serverreceives, from the routing key and management server, routing information for transmitting the transaction status message to the payee financial account server.
- Another aspect of the inventionprovides for the receipt of a second payment data envelope containing payer data transmitted by an identity management server associated with the payer and/or generated by a payer computing device.
- the payer financial account serververifies the payer identity and authorizes the payment transaction by: (1) comparing the payer data in the second payment data envelope to payer data stored in a database; and (2) comparing the payer data in the first payment data envelope to the payer data in the second payment data envelope.
- the encrypted payer datacomprises cancellable biometric information.
- the payer financial account serverauthorizes a payment transaction by determining whether data in the payment data envelope complies with one or more payment restrictions associated with the payer and stored in a database on the server.
- Payment restrictionsmay include, for instance: a predetermined upper limit on the payment amount; a geographic limitation on the location where the payer can initiate a payment transaction; a limitation on the types of products for which a payer can initiate a payment transaction; and/or a limitation on the identity of the payment recipient for whom the payer can initiate a payment transaction.
- a first server associated with a payee financial accountfacilitates a payment transaction by first storing payee data to a database and associating the payee data with payee transaction data.
- the first serverreceives a first payment data envelope associated with a payment transaction from a payee device where the payment data envelope includes a payer alias, a payee alias, a payee shared secret, and crypto data including encrypted payee data and encrypted payee transaction data.
- the first serverdecrypts the encrypted payee data and payee transaction data from the payment data envelope using the payee shared secret.
- the first serverretrieves the stored payee data using the decrypted payee transaction data and compares the decrypted payee data with the retrieved payee data.
- the first servervalidates the payee identity through this comparison, and if the identity can be verified, then the first server transmits the payer alias to a routing & key management (“RKM”) server.
- RKMrouting & key management
- the first serverreceives an IP address for a second server associated with a payer financial account. The first server utilizes this IP address to transmit the first payment data envelope to the second server.
- the first serverreceives a transaction status message from a second server associated with a payer financial account.
- the first payment data envelopeincludes an instruction data array
- the transaction status messageincludes a transaction flag with a value of authorized or declined.
- the first servercreates a temporary database record of the payment transaction that is used to update a payee account balance.
- the first servertransmits the first payment data envelope to an alternate consumer account server based on the instruction data array.
- the method describedcan also include steps whereby the second server stores a consumer PIN and biometric information and associates the consumer PIN and biometric information with consumer payment information.
- the second serverreceives the first payment data envelope from the first server, and the first payment data envelope includes a consumer shared secret and consumer crypto data including encrypted biometric data, encrypted PIN and encrypted payment information.
- the second serverdecrypts the encrypted PIN, biometric information, and payment information from the first payment data envelop using the consumer shared secret and retrieves the stored consumer PIN and biometric information using the decrypted payment information.
- the second servercompares the decrypted consumer PIN and biometric information with the retrieved consumer PIN and biometric information.
- the second serverauthorizes the payment transaction based on the comparison and generates a transaction status message.
- the transaction status messageis transmitted to the first server after obtaining an IP address for the first server from a RKM server.
- Yet another embodimentutilizes the second server to store one or more payment restrictions to a data storage device and associate the one or more payment restrictions with the payer.
- the second processor serverdetermines whether data in the first payment data envelope or a second payment data envelope complies with the one or more payment restrictions.
- Payment restrictionsmay include, for instance: a predetermined upper limit on the payment amount; a geographic limitation on the location where the payer can initiate a payment transaction; a limitation on the types of products for which a payer can initiate a payment transaction; and/or a limitation on the identity of the payment recipient for whom the payer can initiate a payment transaction.
- the first payment data envelopecan include payment instructions that are used to determine the amount paid as part of the payment transaction.
- the payment informationcan include, for instance, the cost of goods or services along with a gratuity amount to be added to the cost amount or include a discount amount that should be subtracted from the transaction cost amount.
- the second serveruses the payment instructions and payment information to determine the final payment amount that is then included in the transaction status message transmitted to the first server by the second server.
- FIG. 1is a diagram of a distributed, real-time payment transaction authorization system according to one embodiment
- FIG. 2is a data flow diagram illustrating an exemplary payment transaction authorization system and method according to one embodiment of the invention
- FIG. 3is an exemplary payment data envelope illustrating payer data
- FIG. 4is an exemplary payment data envelope illustrating payer data
- FIG. 5is an exemplary payment data envelope illustrating payer and payee data
- FIG. 6is an exemplary payment data envelope illustrating payer and payee data
- FIG. 7is a data flow diagram illustrating an exemplary payment transaction authorization system and method according to one embodiment of the invention.
- FIG. 8is a data flow diagram illustrating an exemplary payment transaction authorization system and method according to one embodiment of the invention.
- FIG. 9is a data flow diagram illustrating an exemplary payment transaction authorization system and method according to one embodiment of the invention.
- FIG. 10is a data flow diagram illustrating an exemplary distributed payment authorization system.
- Payment transaction typescan include, but are not limited to, sales of goods or services, cancellations, product returns or refunds, credit-based transactions, and promotions.
- the term “payee”generally describes an individual or entity receiving payment during a transaction, such as a merchant, vendor, retailer, or other seller of goods and services.
- the term “payer”is intended to generally describe a person or entity that makes a payment during a transaction, such as a purchaser of products or services.
- the term “payer”may be used interchangeably with the terms “consumer” or “purchaser.” Those skilled in the art will recognize that the roles of a payer and payee in any transaction can be reversed as happens when, for example, a customer returns a product to a merchant for a refund.
- a systemgenerally includes a computing device (e.g., an Internet-enabled device) operated by a consumer 101 , a computing device associated with a payee 102 , an identity management service 106 (“IdM”), and a computer system 200 associated with one or more financial service providers (“FSP”).
- the FSP computer system 200may include one or more network computing devices, such as a financial server associated with a payee account 103 , a financial server associated with a consumer account 105 , and a routing & key management (“RKM”) server 104 , as well as one or more computing devices associated with FSP employees (not shown).
- Various components of the FSP computing system 200can be associated with different FSPs, such as when a merchant and consumer utilize financial accounts with separate FSPs.
- the IdM service 106can include one or more network computing device, such as a server, as well as one or more personal computing devices.
- the payee computing device 102can be an autonomous device, or it can be networked to a payee computing system (not shown) that includes one or more network computing devices, such as a server, as well as other payee computing devices.
- a payee computing devicecan be associated with one or more merchants, such as when an individual person operates two separate businesses and utilizes the same payee computing device to process payment transactions for both businesses.
- a single merchantmay utilize multiple payee computing devices, such as a retailer with numerous sales associates who each utilize a separate payee computing device to process payment transactions.
- the FSP computer system 200may utilize only a single server implemented by one or more computing devices, or a single computing device may implement one or more of the payee account server 103 , consumer account server 105 , RKM server 104 , and/or the FSP employee computing devices. Further, a single computing device may implement more than one step of the method described herein; a single step may be implemented by more than one computing device; or any other logical division of steps may be used.
- the consumer computing device 101 , the payee computing device 102 , and the computing devices of the FSP system 200can include a processor that communicates with a number of peripheral subsystems via a bus subsystem.
- peripheral subsystemsmay include a memory subsystem (e.g., random access memory), a storage subsystem (e.g., optical, magnetic, or solid-state storage), user input and output subsystems (e.g., a keyboard, mouse, computer monitor, touch-screen display, microphone, or speaker), a networking subsystem, and a communication subsystem.
- the processorsmay perform one or more steps of the methods described herein.
- the consumer computing device 101 and the payee computing device 102are portable electronic devices that include one or more integrated software applications configured to provide, among other features, a user interface configured to facilitate payment transactions and two-way communication with other electronic devices.
- the consumer computing device 101 and the payee computing device 102can be any type of suitable portable electronic device, including, for example, a cellular phone, a tablet computer, or a laptop computer.
- the portable electronic devicecan also be an application-specific device configured for processing payments, such as a merchant checkout terminal, debit/credit card reader, or virtual wallet.
- the software applications integrated with the consumer and payee computing devices 101 & 102are a program, function, routine, applet, or similar module that performs operations on the computing devices to implement the steps of the methods disclosed herein.
- the application integrated with the consumer computing device 101may be one or more of a digital wallet application, a coupon application, a merchant loyalty account application, or any other suitable application configured for processing payment transactions.
- the application integrated with the payee computing device 102may be a mobile checkout application, a debit/credit card reader application, or any other suitable point of sale application configured for processing payment transactions.
- the consumer computing device application and the payee computing device applicationprovide a user interface that outputs data and information to, and accept inputs from, a user.
- Types of data and information processed by the applicationsinclude text, images, audio, video, or any other form of information that can exist in a computer-based environment.
- the user interfacecan include various display screens that output data to a user as well as functions for accepting user inputs and commands, such as text boxes, pull-down menus, radio buttons, scroll bars, or other suitable functions known to one of ordinary skill in the art.
- the integrated software applicationsinterface with a communication subsystem to provide for a secure connection with other electronic devices.
- Possible connectionsinclude a local area network, a wide area network, an intranet, an Internet connection, a mobile telephone network, a personal area network, or any other suitable connection.
- the one or more communication subsystemsmay include a wireless communication system configured to communicate through radio frequency (“RF”), WI-FI (e.g., wireless local area network products based on the Institute of Electrical and Electronics Engineers 802.11 standards), near field communications (“NFC”), Bluetooth, or Low Energy Bluetooth.
- RFradio frequency
- WI-FIe.g., wireless local area network products based on the Institute of Electrical and Electronics Engineers 802.11 standards
- NFCnear field communications
- Bluetoothor Low Energy Bluetooth
- a consumerhas the ability to make purchases with the consumer computing device 101 by using NFC to wirelessly establish a secure link with the payee computing device 102 , which can be connected to (i) a payee computer system configured to facilitate commercial transactions, and (ii) a FSP computer system 200 .
- the consumer computing device 101 and payee computing device 102include a secure element 109 to ensure confidentiality of sensitive consumer or payee data (e.g., credit card or bank account numbers) during transmission between electronic devices.
- the secure element 109exists within a removable smart chip or a secure digital card or is embedded within a fixed chip on the computing device.
- the secure element 109includes an integrated software application that performs the functions described herein.
- the secure element 109is capable of storing encrypted consumer or payee data 313 & 332 and allowing only trusted applications to access the data. In this manner, the secure element 109 permits software applications to interact with certain functions in the secure element 109 while protecting sensitive data stored in the element 109 .
- the secure element 109generates an account alias 312 & 331 for sensitive consumer or payee data; though, the account alias 312 & 331 could also be entered by the consumer or provided by a merchant.
- the alias 312 & 331is passed to the software applications and transmitted between devices rather than the unencrypted consumer data.
- the aliases 312 & 331are identifiers for sensitive consumer or payee data that cannot be used to make a payment without valid crypto data 313 & 332 that corresponds to the aliases 312 & 331 .
- the aliases 312 & 331do not need to be stored securely because payments made with an alias are not accepted unless the corresponding crypto data 313 & 332 is also supplied.
- the crypto data 313is generated using a shared secret 314 that operates on the alias 312 or sensitive consumer data.
- the shared secret 314can be, for example, a symmetric key representing a password, a random number, a counter value that is incremented for each alias value, or any other suitable value.
- the shared secret 314is distributed to the secure element 109 at the time the device is manufactured as well as loaded into the payee computing device 102 and/or the financial servers 103 & 105 before a payment transaction is initiated.
- the shared secret 314is created at the start of a communication session using a key-agreement protocol.
- the financial serverdetermines whether the combination of the alias 312 and crypto data 313 are valid using the shared secret 314 that is known to the secure element 109 and the financial server.
- the financial serveruses the shared secret 314 to verify the alias 312 and the crypto data 313 .
- the financial serverreceives the alias 312 from the consumer computing device 101 via the payee computing device 102 and combines the alias 312 with other information, as described above.
- the financial servercan then generate the same crypto data 313 using the shared secret 314 and received data and compare the result with the received crypto data 313 . If the comparison indicates that the values are the same, then the payment transaction is authorized and proceeds as normal. Otherwise, the transaction can be denied or authorization can be withheld pending the receipt of additional information.
- the financial serverdetermines whether the combination of the payee alias 331 and payee crypto data 332 are valid using the shared secret 333 .
- the financial serverreceives the alias 331 from the payee computing device 102 via the consumer computing device 101 and combines the payee alias 331 with other information.
- the financial servercan then verify the transaction by generating the same payee crypto data 332 using the payee shared secret 333 and received data and comparing the result with the received payee crypto data 332 .
- FIG. 2The flow of data during a consumer payment transaction according to one embodiment is illustrated in FIG. 2 .
- the consumer computing device 101connects to the payee computing device 102 .
- the payee computing device 102transmits transaction data to the consumer computing device 101 for display to a consumer.
- Transaction informationcan include, for instance, a product description, stock-keeping unit (“SKU”), product price, tax payment, merchant identifying information, coupon or discount codes, customer-loyalty information, customer preferences, warranties, product registration information, a transaction identifier, or any other information useful to the consumer.
- SKUstock-keeping unit
- the consumer computing device 101displays the transaction information to the consumer and requests payment transaction authorization and payment instructions.
- the consumeroptionally specifies payment instructions.
- the consumercan specify a gratuity amount; a discount code; the personal financial account from which the payment should be withdrawn or credited; whether payment should be performed in installments amounts, and if so, the duration and amount of the payments; a merchant rating; or any nonstandard payment instructions capable of being processed by the payee and/or FSP computer system 200 .
- the consumer computing device 101can optionally communicate 202 with an IdM service 106 associated with the consumer.
- the IdM service 106is an account that permits authentication of the consumer's identity and management of the consumer's preferences or other information. Examples include, but are not limited to, social media accounts, employer accounts, or merchant loyalty accounts.
- the IdM service 106provides information to the consumer that is relevant to the payment transaction, such as merchant ratings; cost comparisons; and payment transaction rules, restrictions, or controls.
- the IdM service 106can also provide information useful for ensuring the security of the transaction, such as cancellable biometric data, a personal identification number (“PIN”), gesture recognition information, federated identification information, or geographic restrictions on where payment transactions can be authorized.
- PINpersonal identification number
- a consumermay have an IdM service account with his or her employer that utilizes an unique user identification and password and that is associated with an employer-issued credit card for the payment of business expenses.
- the employer accountmay include preferences, available discounts, or payment restrictions.
- the consumercan be informed of whether the employer has a discount available through a particular merchant or whether the employer limits purchasing authorization to particular merchants, products, geographic locations, or spending limits.
- a software application integrated with the consumer computing device 101After receiving authorization and payment instructions from the consumer, a software application integrated with the consumer computing device 101 generates a secure payment envelope 301 that is stored to a database on the consumer computing device 101 .
- the secure payment envelope 301contains a variety of information to facilitate authentication of the consumer and payee identities, authorization of the payment transaction, and the security of the data transmitted.
- An exemplary payment envelope 301 generated by the consumer computing device 101is illustrated in FIG. 3 and includes: (1) transaction data 311 ; (2) a consumer account alias 312 ; (3) consumer crypto data 313 ; (4) a shared secret 314 ; and (5) a payment instruction data array 315 .
- the secure payment envelope 301may include additional information to facilitate authorization of the payment transaction through traditional means, as shown in FIG. 4 .
- the additional informationincludes, for example: (1) credit card or debit card numbers 316 ; (2) card expiration dates 317 ; and (3) or other information 318 necessary for authentication, such as a consumer's address, zip code, or card verification value (“CVV”).
- CVVcard verification value
- the consumer computing device 101transmits the payment envelope 301 and the consumer's payment transaction authorization to the payee computing device 102 as well as to the IdM service 106 .
- the IdM service 106can in turn transmit 207 the payment envelope 301 to the consumer financial server 105 to update the consumer's account and facilitate authorization of the payment transaction, as described in more detail below.
- the consumer computing device 101can bypass the IdM service 106 and transmit the payment envelope 301 directly to the consumer financial server 105 .
- the payee computing device 102In processing the payment envelope 301 , the payee computing device 102 appends payee data to the envelope, as illustrated in FIG. 5 .
- the appended payee dataincludes information such as: (1) transaction data 330 ; (2) a payee account alias 331 ; (3) payee crypto data 332 ; (4) a shared secret 333 ; and (5) an instruction data array 334 .
- the secure payment envelope 301may further include information to permit authorization of the payment transaction through conventional means, as shown in FIG. 6 .
- the additional informationincludes, for example, merchant account information 335 relating to the payee's account with a FSP (e.g., an acquiring bank that contracts with the merchant to create and maintain an account that allows the merchant to accept credit card and debit card payments).
- the payee computing device 102can further append nonsensitive transaction data 306 , such as a payer identification 342 or terminal data 341 identifying the payee name, location, and merchant classification.
- the nonsensitive transaction data 306could be utilized by the consumer's FSP or IdM service 106 to track the consumer's spending habits.
- a familycan have multiple members utilizing a single checking account where each family member has a separate consumer computing device 101 with an unique payer identification 342 .
- the payer identification 342 and merchant categories 341can be appended to the payment envelope 301 as nonsensitive data 306 during each payment transaction.
- This informationis stored to a database on the consumer financial server 105 or IdM service 106 and can be displayed to the parent as a pie chart showing that half of the child's expenditures went to dining and entertainment and half went to transportation.
- the payee computing device 102transmits 204 the payment envelope 301 to the payee financial server 103 for storage and processing.
- the payeemay be associated with one or more financial accounts so that if the primary payee financial account server is unavailable, the payment envelope 301 can be routed to a secondary payee financial account server.
- the payee financial server 103Upon receiving the payment envelope 301 , the payee financial server 103 retrieves the payee data from the payment envelope 301 , including the payee account alias 331 and the payee crypto data 332 . The payee financial server unencrypts the payee crypto data 332 using the shared secret 314 / 333 . The payee identity and transaction are authenticated by, for example, comparing payee and transaction information contained in the received payment envelope 301 with information stored on the payee financial server 103 . A payment request record is created and stored to a database on the payee financial server 103 .
- the payment envelope 301is routed from the payee financial server 103 to the consumer financial server 105 using information in the consumer account alias 312 .
- the payee financial server 103can optionally obtain from a RKM server 104 additional information useful for communicating with the consumer financial server 105 , such as an Internet Protocol (“IP”) address for the consumer financial server 105 or a session “token” or “cookie.”
- IPInternet Protocol
- a tokenis a packet of data that contains information identifying a series of related message exchanges and that can facilitate routing and authentication of the transmitted messages.
- the payee financial server 102can transmit the routing number to the RKM server 104 and receive in return the IP address of the consumer financial server 105 or a token for establishing a secure communication session.
- the payee financial server 103can save the IP address, token, or other routing information to a database for faster processing until the token expires and the communication session with the consumer financial server 105 ends.
- the consumer financial server 105retrieves the consumer data from the payment envelope 301 , including the payee account alias 312 and the consumer crypto data 313 .
- the consumer financial server 105unencrypts the payee crypto data 313 using the shared secret 314 , and a payment request record is created and stored to a database on the consumer financial server 105 .
- the consumer's identityis authenticated and the payment transaction authorized by comparing data from the received payment envelope 301 with consumer or transaction data stored on the consumer financial server 105 . If the consumer and transaction data stored on the consumer financial server 105 matches the data contained in the payment envelope 301 , then the payment transaction is authorized and proceeds as normal.
- the payment authorizationcan be denied or authorization can be withheld pending the receipt of additional information. If the payment transaction is authorized, the consumer financial server 105 will memo post the payment transaction by creating a temporary database record of the payment transaction in the consumer's financial account for which a complete posting to update the consumer account balance will be done as part of an end-of-day batch processing.
- the consumer financial server 105authenticates the consumer identity and authorizes the payment transaction by retrieving 207 a copy of the payment envelope 301 or other consumer or transaction data stored in a database on the IdM service 106 and comparing this information with the payment envelope 301 received from the payee financial server 103 . If the consumer and transaction data stored with the IdM service 106 matches the data contained in the payment envelope 301 received from the payee financial server 103 , then the identity of the consumer is authenticated and the payment transaction is authorized. Authentication through the IdM service 106 is optional and can be performed in addition to, or instead of, the authentication and authorization performed by comparing data from the received payment envelope 301 with consumer or transaction data stored in a database on the consumer financial server 105 .
- the consumer's identitycan be authenticated using cancellable biometrics, a preselected personal identification number (“PIN”), machine gesture recognition, or any other secure and independently known consumer data or combination of such data.
- PINpersonal identification number
- the payment transactioncan be authorized or declined based on a variety of factors, including, for example: (1) whether the consumer identity was properly authenticated; (2) whether the amount of the payment request exceeds the available account balance; and (3) whether the transaction complies with any rules, restrictions, or controls associated with the consumer's account.
- Authentication of the consumer identity and authorization of a payment transactioncan be better understood with reference to the following simplified example.
- a consumercan provide biometric information, like a fingerprint, as well as conventional security information, like a PIN.
- Biometric informationcan be secured by making it “cancellable,” which refers to a systematic and repeatable distortion of the biometric information through known techniques, like salting or noninvertible transforms.
- the consumercan also set one or more rules or restrictions governing the authorization of payment transactions, such as permitting authorization only within the zip code in which the consumer lives.
- the distorted biometric informationis securely stored in a secure element 109 of the consumer computing device 101 , the consumer financial server 105 , and/or the IdM service 106 .
- the PINis also stored in a database on the consumer financial server 105 and can optionally be stored on the consumer computing device 101 or IdM service 106 or input by a consumer during a payment transaction.
- the cancellable fingerprint data, PIN, and checking account numberare encrypted using the shared secret 314 and stored in the crypto data 313 of the payment envelope 301 .
- the routing number of the checking accountis stored in the consumer account alias 312 of the payment envelope 301 .
- the payment envelope 301is transmitted 203 a to the payee computing device 102 and the IdM service 106 , and the IdM service 106 transmits the payment envelope 301 to the consumer financial server 105 .
- the consumer financial server 105unencrypts the crypto data 313 using the shared secret 314 , and compares the received cancellable biometric data and PIN to the cancellable biometric data and PIN stored on the consumer financial server 105 and associated with the consumer's checking account.
- the consumer financial server 105performs an additional security check by comparing the cancellable biometric data and PIN received from the payee financial server 103 to the cancellable biometric data and PIN received from the IdM service 106 .
- the consumer financial server 105also compares the geolocation data contained in the terminal data 341 of the payment envelope 301 to the geographic zip code restrictions associated with the consumer's account and stored in a database on the consumer financial server 105 .
- the payment transactionis authorized if: (1) the cancellable biometric data and PIN received from the payee financial server 103 matches the corresponding data stored on the consumer financial server 105 and received from the IdM service 106 ; and (2) the zip code stored in the nonsensitive terminal data 341 of the payment envelope 301 matches the geographic zip code restriction set by the consumer.
- the consumer financial server 105After verifying the consumer identity and payment transaction, the consumer financial server 105 generates a transaction status message indicating the status of the payment transaction—i.e., that the payment transaction is authorized, declined, or that authorization is withheld pending the receipt of further information.
- the transaction status messageis transmitted to the payee financial server 103 .
- the transaction status messagecan also be transmitted to the IdM service 106 and/or the consumer computing device 101 .
- the consumer financial server 105can optionally obtain from the RKM server 104 information useful for communicating with the payee financial server 103 , such as an IP address or a session token.
- the payee financial server 103will memo post the payment transaction by creating a temporary database record of the payment transaction in the payee's account. In the event that the payment transaction is not authorized, the payee financial server 103 can route the payment envelope 301 to an alternate consumer financial account server listed in the instruction data array 315 . If the alternate consumer financial account also declines the payment transaction, or if no alternate payment accounts are identified, then the transaction is denied or authorization is withheld pending the receipt of additional information. In 210 , the payee financial server 103 transmits the transaction status message to the payee computing device 102 , which then transmits 211 the transaction status message and possibly a receipt to the consumer computing device 101 for display to the consumer.
- FIG. 2is not intended to be limiting, and one or more steps can be omitted or altered, or the order of the steps can be altered, without compromising the functionality of the systems and methods disclosed herein. For instance, if the consumer and payee utilize the same FSP, it might not be necessary for the financial servers to communicate with a RKM server 104 to properly route electronic communications during a payment transaction. Additionally, if the consumer does not have an account with an IdM service 106 , or if a payee is making a payment to the consumer, then transmissions 202 , 203 b, 207 , and 211 b involving the IdM service 106 could be omitted.
- the consumer computing device 101could communicate directly with the consumer financial server 105 when transmitting the payment envelope 301 or receiving consumer information and financial account settings and preferences.
- the consumer computing device 101can receive the transaction status message from only the payee computing device 102 , from only the IdM service 106 , or from both the payee computing device 102 and the IdM service 106 .
- the consumer computing device 101can transmit the payment envelope 301 and payment request to an IdM service 106 and/or directly to the consumer financial server 105 , as shown in FIG. 7 .
- the consumer financial server 105authenticates the consumer's identity and authorizes the payment transaction by comparing the data in the received payment envelope 301 with data stored in a database on the server or with data in a payment envelope 301 received from the IdM service 106 . If the transaction is authorized, the consumer financial server 105 transmits a transaction authorization 350 message to the IdM service 106 along with a payment code 360 .
- the payment code 360can be transmitted to the consumer computing device 101 and then relayed to the payee orally or electronically for redemption with a FSP in exchange for remuneration 370 .
- the payeedoes not receive consumer data contained in the payment envelope 301 , so the identity of the consumer remains confidential and anonymous.
- the consumer computing device 101can transmit a payment envelope 301 and payment approval to an IdM service 106 , which transmits the payment envelope to the consumer financial server 105 .
- the consumer financial server 105authenticates the consumer's identity and authorizes or declines the payment transaction. If the transaction is authorized, the consumer financial server 105 transmits a transaction authorization 350 message to the payee financial server 103 , which transmits the transaction authorization message 350 to the payee computing device 102 .
- the present inventioncan be used with a secure payment system where the consumer utilizes a merchant-specific charge account or merchant-specific consumer identification and where the merchant securely requests payment authorization from the consumer's FSP without receiving a payment envelope 301 from the consumer.
- the consumer computing device 101transmits to the payee computing device 102 a payee-specific consumer identifier 380 that is recognized by both the payee and the consumer's FSP.
- the payee's backend systeme.g., the consumer financial server 103
- the consumer financial server 105transmits a transaction authorization message 350 to the payee backend system, which transmits the transaction authorization message to the payee computing device 102 , which in turn transmits the authorization message to the consumer computing device 101 .
- This embodimenteliminates any security risk posed by transmitting from the consumer computing device 101 to the payee computing device 102 a payment envelope 301 containing sensitive consumer data.
- FIG. 10illustrates the present systems and methods in that payment transactions are authorized without the need to route the transactions through a centralized card network.
Landscapes
- Business, Economics & Management (AREA)
- Accounting & Taxation (AREA)
- Engineering & Computer Science (AREA)
- Strategic Management (AREA)
- Physics & Mathematics (AREA)
- General Business, Economics & Management (AREA)
- General Physics & Mathematics (AREA)
- Theoretical Computer Science (AREA)
- Finance (AREA)
- Computer Security & Cryptography (AREA)
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Abstract
Description
- This divisional application claims priority from pending U.S. nonprovisional application Ser. No. 14/227,770 filed Mar. 27, 2014, the entirety of which is incorporated herein.
- The present invention relates generally to the field of payment transactions, and more particularly, to systems and methods for distributed, real-time authorization of payment transactions initiated by a mobile device. The systems and methods are capable performing the functions of existing centralized card networks in a unique and efficient manner, and the systems and methods further permit the implementation of the many features and advantages offered by modern computing devices when conducting payment transactions.
- Traditional payment transactions between a merchant and a consumer often use credit or debit cards that are processed by a card reader or other point of sale (“POS”) device. The POS device reads static, preprogrammed information from a magnetic strip on the card and transmits the information to an issuing bank through an acquirer (merchant) bank and a centralized card network (e.g., VISA™ or MASTERCARD™). The issuing bank approves or declines the transaction and, if approved, transmits a payment to the acquirer bank through the card network. The issuing bank also transmits an approval or decline notice to the POS device that is routed through the card network and the acquirer bank. The card network typically subtracts an interchange fee before routing the payment to the acquirer bank.
- Traditional methods of conducting payment transactions have the disadvantage that the information exchanged cannot be customized for each transaction, and the methods are not capable of taking advantage of opportunities provided by recent advances in computing and mobile technology. To illustrate, it is now possible to initiate payment transactions using personal computers or cellular “smartphones” that are capable of transmitting and receiving a variety of useful information during a payment transaction, such as coupon codes, payment instructions, and additional security features for authenticating a consumer's identity (e.g., biometric information or machine gesture recognition).
- It would, therefore, be advantageous to provide payment transaction systems and methods that are capable of processing customizable payment transactions initiated and conducted by computing devices. It would also be advantageous to provide distributed payment transaction systems and methods that permit direct communication between financial service providers, such as acquirer and issuing banks, without the need to route payment transactions through a centralized card network that deducts interchange fees.
- The systems and methods of the present invention enable the new generation of payment transactions initiated and performed by computing devices and address the requirements needed to bring the such innovations to market by providing a low-cost, highly scalable, and resilient distributed banking and payment platform capable of performing real-time authorization of payment transactions initiated by mobile and other computing devices.
- According to one embodiment of the invention, a method and system of authorizing payment transactions is provided. The method includes receiving, by a first server associated with a payee financial account, a payment data envelope transmitted by a payee computing device. The payment data envelope includes payer data, encrypted payee data, and payment instructions. The payee financial account server decrypts the encrypted payee data, verifies the payee identity by comparing the payee data in the received payment data envelope to payee data stored in a database, and then transmits the payment data envelope to a second financial server associated with the payer. The payee financial server then receives a transaction status message from the payer financial server indicating whether the payment transaction was authorized.
- In another aspect of the invention, the payer data includes a payer account alias that is transmitted by the payee financial account server to a routing key and management server. In return, the payee financial account server receives, from the routing key and management server, routing information for transmitting the payment data envelope to the payer financial account server.
- According to another embodiment of the invention, a method and system includes receiving, by a first server associated with a payer financial account, a first payment data envelope transmitted by a second server associated with a payee financial account. The payment data envelope includes encrypted payer data, payee data, and payment instructions. The payer financial account server decrypts the encrypted payee data and verifies the payer identity by comparing the payer data in the first payment data envelope to payer data stored in a database. The payer financial account server also determines a whether the payment is authorized or declined. The payer financial server then generates a transaction status message that is transmitted to the payee financial account server.
- In one aspect of the invention, the payee data includes a payee account alias that is transmitted by the payer financial account server to a routing key and management server. In return, the payer financial account server receives, from the routing key and management server, routing information for transmitting the transaction status message to the payee financial account server.
- Another aspect of the invention provides for the receipt of a second payment data envelope containing payer data transmitted by an identity management server associated with the payer and/or generated by a payer computing device. The payer financial account server verifies the payer identity and authorizes the payment transaction by: (1) comparing the payer data in the second payment data envelope to payer data stored in a database; and (2) comparing the payer data in the first payment data envelope to the payer data in the second payment data envelope.
- In yet another aspect of the invention, the encrypted payer data comprises cancellable biometric information.
- In one embodiment of the invention, the payer financial account server authorizes a payment transaction by determining whether data in the payment data envelope complies with one or more payment restrictions associated with the payer and stored in a database on the server. Payment restrictions may include, for instance: a predetermined upper limit on the payment amount; a geographic limitation on the location where the payer can initiate a payment transaction; a limitation on the types of products for which a payer can initiate a payment transaction; and/or a limitation on the identity of the payment recipient for whom the payer can initiate a payment transaction.
- In another embodiment of the invention, a first server associated with a payee financial account facilitates a payment transaction by first storing payee data to a database and associating the payee data with payee transaction data. The first server then receives a first payment data envelope associated with a payment transaction from a payee device where the payment data envelope includes a payer alias, a payee alias, a payee shared secret, and crypto data including encrypted payee data and encrypted payee transaction data. The first server decrypts the encrypted payee data and payee transaction data from the payment data envelope using the payee shared secret. Next, the first server retrieves the stored payee data using the decrypted payee transaction data and compares the decrypted payee data with the retrieved payee data. The first server validates the payee identity through this comparison, and if the identity can be verified, then the first server transmits the payer alias to a routing & key management (“RKM”) server. In return, the first server receives an IP address for a second server associated with a payer financial account. The first server utilizes this IP address to transmit the first payment data envelope to the second server.
- In another aspect of the invention, the first server receives a transaction status message from a second server associated with a payer financial account. The first payment data envelope includes an instruction data array, and the transaction status message includes a transaction flag with a value of authorized or declined. When the transaction flag with a value of authorized is received by the first server, the first server creates a temporary database record of the payment transaction that is used to update a payee account balance. When the transaction flag has a value of declined, the first server transmits the first payment data envelope to an alternate consumer account server based on the instruction data array.
- The method described can also include steps whereby the second server stores a consumer PIN and biometric information and associates the consumer PIN and biometric information with consumer payment information. The second server then receives the first payment data envelope from the first server, and the first payment data envelope includes a consumer shared secret and consumer crypto data including encrypted biometric data, encrypted PIN and encrypted payment information. The second server decrypts the encrypted PIN, biometric information, and payment information from the first payment data envelop using the consumer shared secret and retrieves the stored consumer PIN and biometric information using the decrypted payment information. The second server then compares the decrypted consumer PIN and biometric information with the retrieved consumer PIN and biometric information. The second server authorizes the payment transaction based on the comparison and generates a transaction status message. The transaction status message is transmitted to the first server after obtaining an IP address for the first server from a RKM server.
- Yet another embodiment utilizes the second server to store one or more payment restrictions to a data storage device and associate the one or more payment restrictions with the payer. The second processor server determines whether data in the first payment data envelope or a second payment data envelope complies with the one or more payment restrictions. Payment restrictions may include, for instance: a predetermined upper limit on the payment amount; a geographic limitation on the location where the payer can initiate a payment transaction; a limitation on the types of products for which a payer can initiate a payment transaction; and/or a limitation on the identity of the payment recipient for whom the payer can initiate a payment transaction.
- In another feature of the invention, the first payment data envelope can include payment instructions that are used to determine the amount paid as part of the payment transaction. The payment information can include, for instance, the cost of goods or services along with a gratuity amount to be added to the cost amount or include a discount amount that should be subtracted from the transaction cost amount. The second server uses the payment instructions and payment information to determine the final payment amount that is then included in the transaction status message transmitted to the first server by the second server.
- Features, aspects, and advantages of the present invention are better understood when the following detailed description of the invention is read with reference to the accompanying figures, in which:
FIG. 1 is a diagram of a distributed, real-time payment transaction authorization system according to one embodiment;FIG. 2 is a data flow diagram illustrating an exemplary payment transaction authorization system and method according to one embodiment of the invention;FIG. 3 is an exemplary payment data envelope illustrating payer data;FIG. 4 is an exemplary payment data envelope illustrating payer data;FIG. 5 is an exemplary payment data envelope illustrating payer and payee data;FIG. 6 is an exemplary payment data envelope illustrating payer and payee data;FIG. 7 is a data flow diagram illustrating an exemplary payment transaction authorization system and method according to one embodiment of the invention;FIG. 8 is a data flow diagram illustrating an exemplary payment transaction authorization system and method according to one embodiment of the invention;FIG. 9 is a data flow diagram illustrating an exemplary payment transaction authorization system and method according to one embodiment of the invention; andFIG. 10 is a data flow diagram illustrating an exemplary distributed payment authorization system.- The present invention will now be described more fully hereinafter with reference to the accompanying drawings in which exemplary embodiments of the invention are shown. However, the invention may be embodied in many different forms and should not be construed as limited to the representative embodiments set forth herein. The exemplary embodiments are provided so that this disclosure will be both thorough and complete and will fully convey the scope of the invention and enable one of ordinary skill in the art to make, use, and practice the invention.
- Disclosed herein are systems and methods for distributed, real-time authorization of payment transactions. Although the embodiments described herein are generally described with reference to exemplary commercial transactions where a consumer purchases goods or services from a merchant, those skilled in the art will recognize that the systems and methods are applicable to payment transactions generally. Payment transaction types can include, but are not limited to, sales of goods or services, cancellations, product returns or refunds, credit-based transactions, and promotions.
- As used herein, the term “payee” generally describes an individual or entity receiving payment during a transaction, such as a merchant, vendor, retailer, or other seller of goods and services. The term “payer” is intended to generally describe a person or entity that makes a payment during a transaction, such as a purchaser of products or services. The term “payer” may be used interchangeably with the terms “consumer” or “purchaser.” Those skilled in the art will recognize that the roles of a payer and payee in any transaction can be reversed as happens when, for example, a customer returns a product to a merchant for a refund.
- As shown in
FIG. 1 , a system according to one embodiment of the present invention generally includes a computing device (e.g., an Internet-enabled device) operated by aconsumer 101, a computing device associated with apayee 102, an identity management service106 (“IdM”), and acomputer system 200 associated with one or more financial service providers (“FSP”). TheFSP computer system 200 may include one or more network computing devices, such as a financial server associated with apayee account 103, a financial server associated with aconsumer account 105, and a routing & key management (“RKM”)server 104, as well as one or more computing devices associated with FSP employees (not shown). Various components of theFSP computing system 200 can be associated with different FSPs, such as when a merchant and consumer utilize financial accounts with separate FSPs. - The
IdM service 106 can include one or more network computing device, such as a server, as well as one or more personal computing devices. Similarly, thepayee computing device 102 can be an autonomous device, or it can be networked to a payee computing system (not shown) that includes one or more network computing devices, such as a server, as well as other payee computing devices. A payee computing device can be associated with one or more merchants, such as when an individual person operates two separate businesses and utilizes the same payee computing device to process payment transactions for both businesses. Alternatively, a single merchant may utilize multiple payee computing devices, such as a retailer with numerous sales associates who each utilize a separate payee computing device to process payment transactions. - The system shown in
FIG. 1 is not intended to be limiting, and one of ordinary skill in the art will recognize that the systems and methods of the present invention may be implemented using other suitable hardware or software configurations. For example, theFSP computer system 200 may utilize only a single server implemented by one or more computing devices, or a single computing device may implement one or more of thepayee account server 103,consumer account server 105,RKM server 104, and/or the FSP employee computing devices. Further, a single computing device may implement more than one step of the method described herein; a single step may be implemented by more than one computing device; or any other logical division of steps may be used. - Any suitable computing device can be used to implement the
consumer computing device 101, thepayee computing device 102, or the components of theFSP computer system 200. Theconsumer computing device 101, thepayee computing device 102, and the computing devices of theFSP system 200 can include a processor that communicates with a number of peripheral subsystems via a bus subsystem. These peripheral subsystems may include a memory subsystem (e.g., random access memory), a storage subsystem (e.g., optical, magnetic, or solid-state storage), user input and output subsystems (e.g., a keyboard, mouse, computer monitor, touch-screen display, microphone, or speaker), a networking subsystem, and a communication subsystem. By processing instructions stored on a storage device or in memory, the processors may perform one or more steps of the methods described herein. - In a preferred embodiment, the
consumer computing device 101 and thepayee computing device 102 are portable electronic devices that include one or more integrated software applications configured to provide, among other features, a user interface configured to facilitate payment transactions and two-way communication with other electronic devices. Theconsumer computing device 101 and thepayee computing device 102 can be any type of suitable portable electronic device, including, for example, a cellular phone, a tablet computer, or a laptop computer. The portable electronic device can also be an application-specific device configured for processing payments, such as a merchant checkout terminal, debit/credit card reader, or virtual wallet. - The software applications integrated with the consumer and
payee computing devices 101 &102 are a program, function, routine, applet, or similar module that performs operations on the computing devices to implement the steps of the methods disclosed herein. For example, the application integrated with theconsumer computing device 101 may be one or more of a digital wallet application, a coupon application, a merchant loyalty account application, or any other suitable application configured for processing payment transactions. The application integrated with thepayee computing device 102 may be a mobile checkout application, a debit/credit card reader application, or any other suitable point of sale application configured for processing payment transactions. The consumer computing device application and the payee computing device application provide a user interface that outputs data and information to, and accept inputs from, a user. Types of data and information processed by the applications include text, images, audio, video, or any other form of information that can exist in a computer-based environment. The user interface can include various display screens that output data to a user as well as functions for accepting user inputs and commands, such as text boxes, pull-down menus, radio buttons, scroll bars, or other suitable functions known to one of ordinary skill in the art. - The integrated software applications interface with a communication subsystem to provide for a secure connection with other electronic devices. Possible connections include a local area network, a wide area network, an intranet, an Internet connection, a mobile telephone network, a personal area network, or any other suitable connection. The one or more communication subsystems may include a wireless communication system configured to communicate through radio frequency (“RF”), WI-FI (e.g., wireless local area network products based on the Institute of Electrical and Electronics Engineers 802.11 standards), near field communications (“NFC”), Bluetooth, or Low Energy Bluetooth. In one example, a consumer has the ability to make purchases with the
consumer computing device 101 by using NFC to wirelessly establish a secure link with thepayee computing device 102, which can be connected to (i) a payee computer system configured to facilitate commercial transactions, and (ii) aFSP computer system 200. - A consumer is able to link multiple personal financial accounts to the
consumer computing device 101, including checking and savings accounts, credit card accounts, store-specific charge accounts, and electronic funding service accounts (e.g., PAYPAL™). In this manner, a consumer is able to utilize applications integrated with the consumer computing device to purchase goods and services using any of the linked financial accounts. The integrated application can also provide other functions permitting the consumer to receive account balance information, make withdrawals, or deposit funds, among other features. - The
consumer computing device 101 andpayee computing device 102 include asecure element 109 to ensure confidentiality of sensitive consumer or payee data (e.g., credit card or bank account numbers) during transmission between electronic devices. Thesecure element 109 exists within a removable smart chip or a secure digital card or is embedded within a fixed chip on the computing device. Thesecure element 109 includes an integrated software application that performs the functions described herein. Thesecure element 109 is capable of storing encrypted consumer orpayee data 313 &332 and allowing only trusted applications to access the data. In this manner, thesecure element 109 permits software applications to interact with certain functions in thesecure element 109 while protecting sensitive data stored in theelement 109. - In an exemplary embodiment, the
secure element 109 generates anaccount alias 312 &331 for sensitive consumer or payee data; though, theaccount alias 312 &331 could also be entered by the consumer or provided by a merchant. Thealias 312 &331 is passed to the software applications and transmitted between devices rather than the unencrypted consumer data. Thealiases 312 &331 are identifiers for sensitive consumer or payee data that cannot be used to make a payment without validcrypto data 313 &332 that corresponds to thealiases 312 &331. Thealiases 312 &331 do not need to be stored securely because payments made with an alias are not accepted unless the correspondingcrypto data 313 &332 is also supplied. - In the embodiment shown in
FIG. 2 depicting a purchase made by a consumer, thecrypto data 313 is generated using a shared secret314 that operates on thealias 312 or sensitive consumer data. The shared secret314 can be, for example, a symmetric key representing a password, a random number, a counter value that is incremented for each alias value, or any other suitable value. The sharedsecret 314 is distributed to thesecure element 109 at the time the device is manufactured as well as loaded into thepayee computing device 102 and/or thefinancial servers 103 &105 before a payment transaction is initiated. Alternatively, the sharedsecret 314 is created at the start of a communication session using a key-agreement protocol. - Those of ordinary skill in the art will recognize that the above-described embodiments are not intended to be limiting, and the system and methods described herein can be implemented using other suitable means for establishing a secure connection, such as public/private key encryption, digital signature authentication, or the Wi-Fi Protected Access 2 standard, among others. Further, in embodiments where the payee is making a payment to the consumer, such as during the return of merchandise to a merchant, skilled artisans will recognize that the process is reversed, and the payee generates
crypto data 332 using a shared secret333 that operates on apayee alias 331. The payee shared secret333 can be the same or different from the consumer sharedsecret 314. In the case of public/private key encryption, the public key will be transmitted as a shared secret314 &333 in thepayment envelope 301. - In one or more embodiments, when a consumer initiates a request to make a payment transaction using sensitive consumer data, the financial server determines whether the combination of the
alias 312 andcrypto data 313 are valid using the shared secret314 that is known to thesecure element 109 and the financial server. The financial server uses the shared secret314 to verify thealias 312 and thecrypto data 313. The financial server receives thealias 312 from theconsumer computing device 101 via thepayee computing device 102 and combines thealias 312 with other information, as described above. The financial server can then generate the samecrypto data 313 using the sharedsecret 314 and received data and compare the result with the receivedcrypto data 313. If the comparison indicates that the values are the same, then the payment transaction is authorized and proceeds as normal. Otherwise, the transaction can be denied or authorization can be withheld pending the receipt of additional information. - Similarly, if a payee initiates a request to make a payment transaction using sensitive payee data, the financial server determines whether the combination of the
payee alias 331 and payeecrypto data 332 are valid using the sharedsecret 333. The financial server receives thealias 331 from thepayee computing device 102 via theconsumer computing device 101 and combines thepayee alias 331 with other information. The financial server can then verify the transaction by generating the same payee cryptodata 332 using the payee shared secret333 and received data and comparing the result with the receivedpayee crypto data 332. - The flow of data during a consumer payment transaction according to one embodiment is illustrated in
FIG. 2 . During a payment transaction, theconsumer computing device 101 connects to thepayee computing device 102. At201, thepayee computing device 102 transmits transaction data to theconsumer computing device 101 for display to a consumer. Transaction information can include, for instance, a product description, stock-keeping unit (“SKU”), product price, tax payment, merchant identifying information, coupon or discount codes, customer-loyalty information, customer preferences, warranties, product registration information, a transaction identifier, or any other information useful to the consumer. - The
consumer computing device 101 displays the transaction information to the consumer and requests payment transaction authorization and payment instructions. In authorizing the payment transaction, the consumer optionally specifies payment instructions. As an example, the consumer can specify a gratuity amount; a discount code; the personal financial account from which the payment should be withdrawn or credited; whether payment should be performed in installments amounts, and if so, the duration and amount of the payments; a merchant rating; or any nonstandard payment instructions capable of being processed by the payee and/orFSP computer system 200. - Before transmitting203apayment instructions to the
payee computing device 102, theconsumer computing device 101 can optionally communicate202 with anIdM service 106 associated with the consumer. TheIdM service 106 is an account that permits authentication of the consumer's identity and management of the consumer's preferences or other information. Examples include, but are not limited to, social media accounts, employer accounts, or merchant loyalty accounts. TheIdM service 106 provides information to the consumer that is relevant to the payment transaction, such as merchant ratings; cost comparisons; and payment transaction rules, restrictions, or controls. TheIdM service 106 can also provide information useful for ensuring the security of the transaction, such as cancellable biometric data, a personal identification number (“PIN”), gesture recognition information, federated identification information, or geographic restrictions on where payment transactions can be authorized. - To illustrate, a consumer may have an IdM service account with his or her employer that utilizes an unique user identification and password and that is associated with an employer-issued credit card for the payment of business expenses. The employer account may include preferences, available discounts, or payment restrictions. Thus, the consumer can be informed of whether the employer has a discount available through a particular merchant or whether the employer limits purchasing authorization to particular merchants, products, geographic locations, or spending limits.
- After receiving authorization and payment instructions from the consumer, a software application integrated with the
consumer computing device 101 generates asecure payment envelope 301 that is stored to a database on theconsumer computing device 101. Thesecure payment envelope 301 contains a variety of information to facilitate authentication of the consumer and payee identities, authorization of the payment transaction, and the security of the data transmitted. Anexemplary payment envelope 301 generated by theconsumer computing device 101 is illustrated inFIG. 3 and includes: (1)transaction data 311; (2) aconsumer account alias 312; (3)consumer crypto data 313; (4) a sharedsecret 314; and (5) a paymentinstruction data array 315. - In the event that the
payee computing device 102 or one or more components of theFSP computer system 200 are not configured to process payment transactions using the inventive systems and methods disclosed herein, thesecure payment envelope 301 may include additional information to facilitate authorization of the payment transaction through traditional means, as shown inFIG. 4 . The additional information includes, for example: (1) credit card ordebit card numbers 316; (2) card expiration dates317; and (3) orother information 318 necessary for authentication, such as a consumer's address, zip code, or card verification value (“CVV”). - At203a&203b,the
consumer computing device 101 transmits thepayment envelope 301 and the consumer's payment transaction authorization to thepayee computing device 102 as well as to theIdM service 106. TheIdM service 106 can in turn transmit207 thepayment envelope 301 to the consumerfinancial server 105 to update the consumer's account and facilitate authorization of the payment transaction, as described in more detail below. Alternatively, theconsumer computing device 101 can bypass theIdM service 106 and transmit thepayment envelope 301 directly to the consumerfinancial server 105. - In processing the
payment envelope 301, thepayee computing device 102 appends payee data to the envelope, as illustrated inFIG. 5 . The appended payee data includes information such as: (1)transaction data 330; (2) apayee account alias 331; (3)payee crypto data 332; (4) a sharedsecret 333; and (5) aninstruction data array 334. In the event that one or more components of theFSP computer system 200 or theconsumer computing device 101 are not configured to process payment transactions using the inventive systems and methods described herein, thesecure payment envelope 301 may further include information to permit authorization of the payment transaction through conventional means, as shown inFIG. 6 . The additional information includes, for example,merchant account information 335 relating to the payee's account with a FSP (e.g., an acquiring bank that contracts with the merchant to create and maintain an account that allows the merchant to accept credit card and debit card payments). - The
payee computing device 102 can further appendnonsensitive transaction data 306, such as apayer identification 342 orterminal data 341 identifying the payee name, location, and merchant classification. Thenonsensitive transaction data 306 could be utilized by the consumer's FSP orIdM service 106 to track the consumer's spending habits. To illustrate, a family can have multiple members utilizing a single checking account where each family member has a separateconsumer computing device 101 with anunique payer identification 342. If a parent shares an account with a child, and the child uses aconsumer computing device 101 three times in a month and purchases (i) $25 in movie tickets, (ii) $50 of gasoline, and (iii) $25 in fast food, thepayer identification 342 and merchant categories341 (i.e., terminal data) can be appended to thepayment envelope 301 asnonsensitive data 306 during each payment transaction. This information is stored to a database on the consumerfinancial server 105 orIdM service 106 and can be displayed to the parent as a pie chart showing that half of the child's expenditures went to dining and entertainment and half went to transportation. - Turning again to
FIG. 2 , after processing thepayment envelope 301, thepayee computing device 102 transmits204 thepayment envelope 301 to the payeefinancial server 103 for storage and processing. The payee may be associated with one or more financial accounts so that if the primary payee financial account server is unavailable, thepayment envelope 301 can be routed to a secondary payee financial account server. - Upon receiving the
payment envelope 301, the payeefinancial server 103 retrieves the payee data from thepayment envelope 301, including thepayee account alias 331 and thepayee crypto data 332. The payee financial server unencrypts the payeecrypto data 332 using the shared secret314/333. The payee identity and transaction are authenticated by, for example, comparing payee and transaction information contained in the receivedpayment envelope 301 with information stored on the payeefinancial server 103. A payment request record is created and stored to a database on the payeefinancial server 103. - The
payment envelope 301 is routed from the payeefinancial server 103 to the consumerfinancial server 105 using information in theconsumer account alias 312. As show in instep 205, the payeefinancial server 103 can optionally obtain from aRKM server 104 additional information useful for communicating with the consumerfinancial server 105, such as an Internet Protocol (“IP”) address for the consumerfinancial server 105 or a session “token” or “cookie.” A token is a packet of data that contains information identifying a series of related message exchanges and that can facilitate routing and authentication of the transmitted messages. As an example, if theaccount alias 312 is a routing number for a personal financial account, the payeefinancial server 102 can transmit the routing number to theRKM server 104 and receive in return the IP address of the consumerfinancial server 105 or a token for establishing a secure communication session. The payeefinancial server 103 can save the IP address, token, or other routing information to a database for faster processing until the token expires and the communication session with the consumerfinancial server 105 ends. - After the
secure payment envelope 301 is transmitted206 to the consumerfinancial server 105, the consumerfinancial server 105 retrieves the consumer data from thepayment envelope 301, including thepayee account alias 312 and theconsumer crypto data 313. The consumerfinancial server 105 unencrypts the payeecrypto data 313 using the sharedsecret 314, and a payment request record is created and stored to a database on the consumerfinancial server 105. The consumer's identity is authenticated and the payment transaction authorized by comparing data from the receivedpayment envelope 301 with consumer or transaction data stored on the consumerfinancial server 105. If the consumer and transaction data stored on the consumerfinancial server 105 matches the data contained in thepayment envelope 301, then the payment transaction is authorized and proceeds as normal. Otherwise, the payment authorization can be denied or authorization can be withheld pending the receipt of additional information. If the payment transaction is authorized, the consumerfinancial server 105 will memo post the payment transaction by creating a temporary database record of the payment transaction in the consumer's financial account for which a complete posting to update the consumer account balance will be done as part of an end-of-day batch processing. - In one embodiment, the consumer
financial server 105 authenticates the consumer identity and authorizes the payment transaction by retrieving207 a copy of thepayment envelope 301 or other consumer or transaction data stored in a database on theIdM service 106 and comparing this information with thepayment envelope 301 received from the payeefinancial server 103. If the consumer and transaction data stored with theIdM service 106 matches the data contained in thepayment envelope 301 received from the payeefinancial server 103, then the identity of the consumer is authenticated and the payment transaction is authorized. Authentication through theIdM service 106 is optional and can be performed in addition to, or instead of, the authentication and authorization performed by comparing data from the receivedpayment envelope 301 with consumer or transaction data stored in a database on the consumerfinancial server 105. - The consumer's identity can be authenticated using cancellable biometrics, a preselected personal identification number (“PIN”), machine gesture recognition, or any other secure and independently known consumer data or combination of such data. The payment transaction can be authorized or declined based on a variety of factors, including, for example: (1) whether the consumer identity was properly authenticated; (2) whether the amount of the payment request exceeds the available account balance; and (3) whether the transaction complies with any rules, restrictions, or controls associated with the consumer's account.
- Authentication of the consumer identity and authorization of a payment transaction can be better understood with reference to the following simplified example. When establishing a personal checking account or IdM service account, a consumer can provide biometric information, like a fingerprint, as well as conventional security information, like a PIN. Biometric information can be secured by making it “cancellable,” which refers to a systematic and repeatable distortion of the biometric information through known techniques, like salting or noninvertible transforms. The consumer can also set one or more rules or restrictions governing the authorization of payment transactions, such as permitting authorization only within the zip code in which the consumer lives. The distorted biometric information is securely stored in a
secure element 109 of theconsumer computing device 101, the consumerfinancial server 105, and/or theIdM service 106. The PIN is also stored in a database on the consumerfinancial server 105 and can optionally be stored on theconsumer computing device 101 orIdM service 106 or input by a consumer during a payment transaction. - When authorizing a payment transaction through the
consumer computing device 101, the cancellable fingerprint data, PIN, and checking account number are encrypted using the sharedsecret 314 and stored in thecrypto data 313 of thepayment envelope 301. The routing number of the checking account is stored in theconsumer account alias 312 of thepayment envelope 301. Thepayment envelope 301 is transmitted203ato thepayee computing device 102 and theIdM service 106, and theIdM service 106 transmits thepayment envelope 301 to the consumerfinancial server 105. - The
payee computing device 102 appends to thepayment envelope 301 nonsensitive data, such as the geolocation of thepayee computing device 103. Thepayee computing device 102 transmits204 thesecure payment envelope 301 to the payeefinancial server 103, which then transmits206 thepayment envelope 301 to the consumerfinancial server 105. To properly route thepayment envelope 301, the payeefinancial server 103 transmits205 the alias312 (checking account routing number) to theRKM server 104, which returns an IP address for the appropriate consumerfinancial server 105. - The consumer
financial server 105 unencrypts thecrypto data 313 using the sharedsecret 314, and compares the received cancellable biometric data and PIN to the cancellable biometric data and PIN stored on the consumerfinancial server 105 and associated with the consumer's checking account. The consumerfinancial server 105 performs an additional security check by comparing the cancellable biometric data and PIN received from the payeefinancial server 103 to the cancellable biometric data and PIN received from theIdM service 106. The consumerfinancial server 105 also compares the geolocation data contained in theterminal data 341 of thepayment envelope 301 to the geographic zip code restrictions associated with the consumer's account and stored in a database on the consumerfinancial server 105. The payment transaction is authorized if: (1) the cancellable biometric data and PIN received from the payeefinancial server 103 matches the corresponding data stored on the consumerfinancial server 105 and received from theIdM service 106; and (2) the zip code stored in the nonsensitiveterminal data 341 of thepayment envelope 301 matches the geographic zip code restriction set by the consumer. - After verifying the consumer identity and payment transaction, the consumer
financial server 105 generates a transaction status message indicating the status of the payment transaction—i.e., that the payment transaction is authorized, declined, or that authorization is withheld pending the receipt of further information. In209, the transaction status message is transmitted to the payeefinancial server 103. The transaction status message can also be transmitted to theIdM service 106 and/or theconsumer computing device 101. In208, the consumerfinancial server 105 can optionally obtain from theRKM server 104 information useful for communicating with the payeefinancial server 103, such as an IP address or a session token. - If the payment transaction is authorized, the payee
financial server 103 will memo post the payment transaction by creating a temporary database record of the payment transaction in the payee's account. In the event that the payment transaction is not authorized, the payeefinancial server 103 can route thepayment envelope 301 to an alternate consumer financial account server listed in theinstruction data array 315. If the alternate consumer financial account also declines the payment transaction, or if no alternate payment accounts are identified, then the transaction is denied or authorization is withheld pending the receipt of additional information. In210, the payeefinancial server 103 transmits the transaction status message to thepayee computing device 102, which then transmits211 the transaction status message and possibly a receipt to theconsumer computing device 101 for display to the consumer. - Those skilled in the art will recognize that the embodiment illustrated in
FIG. 2 is not intended to be limiting, and one or more steps can be omitted or altered, or the order of the steps can be altered, without compromising the functionality of the systems and methods disclosed herein. For instance, if the consumer and payee utilize the same FSP, it might not be necessary for the financial servers to communicate with aRKM server 104 to properly route electronic communications during a payment transaction. Additionally, if the consumer does not have an account with anIdM service 106, or if a payee is making a payment to the consumer, thentransmissions IdM service 106 could be omitted. In that case, theconsumer computing device 101 could communicate directly with the consumerfinancial server 105 when transmitting thepayment envelope 301 or receiving consumer information and financial account settings and preferences. In other embodiments, theconsumer computing device 101 can receive the transaction status message from only thepayee computing device 102, from only theIdM service 106, or from both thepayee computing device 102 and theIdM service 106. - The flexibility of the present systems and methods allows them to accommodate a variety of payment systems and POS devices. To illustrate, if a merchant is capable of processing anonymous payments, the
consumer computing device 101 can transmit thepayment envelope 301 and payment request to anIdM service 106 and/or directly to the consumerfinancial server 105, as shown inFIG. 7 . The consumerfinancial server 105 authenticates the consumer's identity and authorizes the payment transaction by comparing the data in the receivedpayment envelope 301 with data stored in a database on the server or with data in apayment envelope 301 received from theIdM service 106. If the transaction is authorized, the consumerfinancial server 105 transmits atransaction authorization 350 message to theIdM service 106 along with apayment code 360. Thepayment code 360 can be transmitted to theconsumer computing device 101 and then relayed to the payee orally or electronically for redemption with a FSP in exchange forremuneration 370. In this embodiment, the payee does not receive consumer data contained in thepayment envelope 301, so the identity of the consumer remains confidential and anonymous. - Another exemplary embodiment capable of processing anonymous payments is depicted in
FIG. 8 . Theconsumer computing device 101 can transmit apayment envelope 301 and payment approval to anIdM service 106, which transmits the payment envelope to the consumerfinancial server 105. The consumerfinancial server 105 authenticates the consumer's identity and authorizes or declines the payment transaction. If the transaction is authorized, the consumerfinancial server 105 transmits atransaction authorization 350 message to the payeefinancial server 103, which transmits thetransaction authorization message 350 to thepayee computing device 102. - In yet another embodiment illustrated in
FIG. 9 , the present invention can be used with a secure payment system where the consumer utilizes a merchant-specific charge account or merchant-specific consumer identification and where the merchant securely requests payment authorization from the consumer's FSP without receiving apayment envelope 301 from the consumer. In this embodiment, theconsumer computing device 101 transmits to the payee computing device102 a payee-specific consumer identifier 380 that is recognized by both the payee and the consumer's FSP. The payee's backend system (e.g., the consumer financial server103) establishes a secure connection with the consumerfinancial account server 105 and transmits apayment request 390 with the payee-specific consumer identifier 380. If the transaction is authorized, the consumerfinancial server 105 transmits atransaction authorization message 350 to the payee backend system, which transmits the transaction authorization message to thepayee computing device 102, which in turn transmits the authorization message to theconsumer computing device 101. This embodiment eliminates any security risk posed by transmitting from theconsumer computing device 101 to the payee computing device102 apayment envelope 301 containing sensitive consumer data. - Skilled artisans will appreciate that the present systems and methods are capable of accommodating the use of multiple payee financial servers as well as multiple consumer financial servers, as illustrated in
FIG. 10 . Multiple payee financial servers can be used if, for instance, a single merchant utilizes multiple FSPs; a payee computing device is used for multiple merchants; or a single payee FSP routes payment transactions through multiple financial servers. Multiple consumer financial servers can be used in instances where one payee financial server processes payment transactions for multiple consumers with separate FSPs, or when a single consumer utilizes a number of financial accounts with separate FSPs.FIG. 10 also illustrates the distributed nature of the present systems and methods in that payment transactions are authorized without the need to route the transactions through a centralized card network. - Although the foregoing description provides embodiments of the invention by way of example, it is envisioned that other embodiments may perform similar functions and/or achieve similar results. Any and all such equivalent embodiments and examples are within the scope of the present invention.
Claims (12)
1. A computer-implemented method of authorizing payment transactions comprising:
(a) storing, by a first server, payee data and associating, by the first server, the payee data with payee transaction data;
(b) receiving, by the first server, a first payment data envelope associated with a payment transaction from a payee device, the payment data envelope comprising a payer alias, a payee alias, a payee shared secret, and crypto data including encrypted payee data and encrypted payee transaction data;
(c) decrypting, by the first server, the encrypted payee data and payee transaction data from the payment data envelope using the payee shared secret, and retrieving, by the first server, the stored payee data using the decrypted payee transaction data and comparing, by the first server, the decrypted payee data with the retrieved payee data;
(d) validating, by the first server, a payee identity based on the comparison;
(e) based on validating the payee identity, transmitting, by the first server, the payer alias to an RKM server;
(f) receiving, by the first server, a second server IP address from the RKM server; and
(g) transmitting, by the first server, the first payment data envelope to a second server using the second server IP address.
2. The computer-implemented method ofclaim 1 wherein the first payment data envelope further comprises an instruction data array and the method further comprises the steps of:
(a) receiving, by the first server, from the second server, a transaction status message having a transaction flag with a value of authorized or declined, wherein:
(i) when the transaction flag has a value of authorized, the first server creates a temporary database record of the payment transaction that is used to update a payee account balance; and
(ii) when the transaction flag has a value of declined, the first server transmits the first payment data envelope to a third server based on the instruction data array.
3. The computer-implemented method ofclaim 1 further comprising the steps of:
(a) storing, by the second server, a consumer PIN and biometric information and associating, by the second server, the consumer PIN and biometric information with consumer payment information;
(b) receiving, by the second server, the first payment data envelope from the first server, the first payment data envelope further comprising a consumer shared secret and consumer crypto data including encrypted biometric data, encrypted PIN and encrypted payment information;
(c) decrypting, by the second server, the encrypted PIN, biometric information and payment information from the payment data envelope using the consumer shared secret, retrieving, by the second server, the stored consumer PIN and biometric information using the decrypted payment information and comparing, by the second server, the decrypted consumer PIN and biometric information with the retrieved consumer PIN and biometric information;
(d) authorizing, by the second server, the payment transaction based on the comparison of the decrypted consumer PIN and biometric information with the retrieved consumer PIN and biometric information;
(e) based on authorizing the payment transaction, generating, by the first server, a transaction status message corresponding to the authorization;
(f) transmitting, by the second server, the payee alias to the RKM server;
(g) receiving, by the second server, an first server IP address from the RKM server; and
(h) transmitting, by the second server, the transaction status message to the first server using the first server IP address.
4. The method ofclaim 3 further comprising the steps of:
(a) receiving, by the second server, a second payment data envelope from an identity management server;
(b) storing, by the second server, payer data and associating, by the second server, the payer data with the customer payment information; and wherein
(c) the step of authorizing, by the second server, the payment transaction further comprises the operations of (i) retrieving, by the second server, the payer data, (ii) verifying a payer identity by comparing, by the second server, payer data in the first payment data envelope with payer data in the second payment data envelope.
5. The method ofclaim 3 further comprising the steps of:
(a) receiving, by the second server, a second payment data envelope from an identity management server;
(b) storing, by the second server, payer data and associating, by the second server, the payer data with the customer payment information; and wherein
(c) the step of authorizing the payment transaction, by the second server, comprises the operations of (i) retrieving, by the second server, the payer data, (ii) verifying a payer identity by comparing, by the second server, payer data in the second payment data envelope with the retrieved payer data.
6. The method ofclaim 3 , wherein determining whether the payment transaction is authorized further comprises:
(a) storing, by the second server, one or more payment restrictions to a database;
(b) associating, by the second server, the one or more payment restrictions with the payer; and
(c) determining, by the second server, whether data in the first payment data envelope or a second payment data envelope complies with the one or more payment restrictions.
7. The method ofclaim 6 , wherein the payment restrictions comprise a predetermined upper limit on the payment amount.
8. The method ofclaim 6 , wherein the one or more payment restrictions comprise a geographic limitation on the location of the payment transaction.
9. The method ofclaim 6 , wherein the one or more payment restrictions comprise a limitation on the types of products subject to a payment transaction.
10. The method ofclaim 3 , wherein:
(a) the first payment data envelope further comprises payment instructions;
(b) the payment information comprises a cost amount; and
(c) the second server is further configured to perform the operations of (i) determining a payment amount based on the payment instructions and the cost amount, and (ii) incorporating the payment amount into the transaction status message.
11. The system ofclaim 10 , wherein the payment instructions include a gratuity amount and determining the payment amount comprises the operation of adding the gratuity amount to the cost amount.
12. The system ofclaim 10 , wherein the payment instructions include a discount amount and determining the payment amount comprises the operation of subtracting the discount amount from the cost amount.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| US15/643,480US20170308891A1 (en) | 2014-03-27 | 2017-07-07 | System and Method for Distributed Real Time Authorization of Payment Transactions |
Applications Claiming Priority (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| US14/227,770US9785940B2 (en) | 2014-03-27 | 2014-03-27 | System and method for distributed real time authorization of payment transactions |
| US15/643,480US20170308891A1 (en) | 2014-03-27 | 2017-07-07 | System and Method for Distributed Real Time Authorization of Payment Transactions |
Related Parent Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| US14/227,770DivisionUS9785940B2 (en) | 2014-03-27 | 2014-03-27 | System and method for distributed real time authorization of payment transactions |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| US20170308891A1true US20170308891A1 (en) | 2017-10-26 |
Family
ID=54190956
Family Applications (3)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| US14/227,770Expired - Fee RelatedUS9785940B2 (en) | 2014-03-27 | 2014-03-27 | System and method for distributed real time authorization of payment transactions |
| US15/643,483AbandonedUS20170308892A1 (en) | 2014-03-27 | 2017-07-07 | System and method for distributed real time authorization of payment transactions |
| US15/643,480AbandonedUS20170308891A1 (en) | 2014-03-27 | 2017-07-07 | System and Method for Distributed Real Time Authorization of Payment Transactions |
Family Applications Before (2)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| US14/227,770Expired - Fee RelatedUS9785940B2 (en) | 2014-03-27 | 2014-03-27 | System and method for distributed real time authorization of payment transactions |
| US15/643,483AbandonedUS20170308892A1 (en) | 2014-03-27 | 2017-07-07 | System and method for distributed real time authorization of payment transactions |
Country Status (1)
| Country | Link |
|---|---|
| US (3) | US9785940B2 (en) |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US11037153B2 (en)* | 2017-11-08 | 2021-06-15 | Mastercard International Incorporated | Determining implicit transaction consent based on biometric data and associated context data |
| SE2151401A1 (en)* | 2021-11-17 | 2023-05-18 | Crunchfish Digital Cash Ab | Computerized method and system for digital payments |
| WO2023091068A1 (en)* | 2021-11-17 | 2023-05-25 | Crunchfish Digital Cash Ab | Computerized method and system for digital payments |
| US12074868B2 (en)* | 2016-04-27 | 2024-08-27 | Christoph Bron | Biometric authentication system based in the venous networks and unique non-falsifiable codes of tree structures and associated method |
Families Citing this family (14)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US10163108B1 (en) | 2013-02-28 | 2018-12-25 | OnDot Systems, Inc. | Transparently reconstructing sniffed network traffic over a back-end data communications network to reconstruct payment card transactions for generating user notifications during transactions |
| US10769613B1 (en) | 2013-10-22 | 2020-09-08 | Ondot Systems, Inc | Delegate cards |
| FR3053548B1 (en)* | 2016-06-30 | 2019-07-19 | Ingenico Group | METHOD OF AUTHENTICATING PAYMENT DATA, DEVICES AND PROGRAMS THEREFOR. |
| CN106251140A (en)* | 2016-08-02 | 2016-12-21 | 中国银联股份有限公司 | Method of payment, payment application system and payment system |
| US11270395B2 (en)* | 2016-12-15 | 2022-03-08 | Mastercard International Incorporated | Systems and methods for building a data table to reduce false declines over a network |
| US11455622B2 (en)* | 2017-11-09 | 2022-09-27 | Mastercard International Incorporated | Computer system and computer-implemented method for authenticating a contactless payment transaction |
| US11062389B2 (en) | 2018-11-05 | 2021-07-13 | The Toronto-Dominion Bank | Configuration of data transfer recipient |
| US11196737B2 (en) | 2019-04-30 | 2021-12-07 | Bank Of America Corporation | System for secondary authentication via contactless distribution of dynamic resources |
| US11234235B2 (en) | 2019-04-30 | 2022-01-25 | Bank Of America Corporation | Resource distribution hub generation on a mobile device |
| US10998937B2 (en) | 2019-04-30 | 2021-05-04 | Bank Of America Corporation | Embedded tag for resource distribution |
| CN110443617B (en)* | 2019-07-10 | 2023-05-02 | 创新先进技术有限公司 | Information processing method and device and computer equipment |
| EP4058913B1 (en)* | 2019-11-13 | 2025-02-12 | Visa International Service Association | Use of web authentication to enhance security of secure remote platform systems |
| CN110930138A (en)* | 2019-11-22 | 2020-03-27 | 中国民航信息网络股份有限公司 | Virtual payment method and system |
| CN114581094B (en)* | 2022-03-05 | 2022-11-18 | 浙江保融科技股份有限公司 | Payment channel dynamic decision method, server and computer readable medium |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20030042301A1 (en)* | 2001-08-31 | 2003-03-06 | Sanguthevar Rajasekaran | Enhancements to multi-party authentication and other protocols |
| US20100029244A1 (en)* | 2007-11-05 | 2010-02-04 | Neeta Moodbidri | Method and system for allowing incoming emergency communications on a disabled device |
| US20120209749A1 (en)* | 2011-02-16 | 2012-08-16 | Ayman Hammad | Snap mobile payment apparatuses, methods and systems |
| US8577730B2 (en)* | 2009-10-29 | 2013-11-05 | Cenpos, Inc. | Cash management optimization for payment processing |
| US20140019367A1 (en)* | 2012-07-13 | 2014-01-16 | Apple Inc. | Method to send payment data through various air interfaces without compromising user data |
| US20150019443A1 (en)* | 2013-07-15 | 2015-01-15 | John Sheets | Secure remote payment transaction processing |
Family Cites Families (16)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US6636833B1 (en)* | 1998-03-25 | 2003-10-21 | Obis Patents Ltd. | Credit card system and method |
| US6760841B1 (en)* | 2000-05-01 | 2004-07-06 | Xtec, Incorporated | Methods and apparatus for securely conducting and authenticating transactions over unsecured communication channels |
| US7103575B1 (en)* | 2000-08-31 | 2006-09-05 | International Business Machines Corporation | Enabling use of smart cards by consumer devices for internet commerce |
| US7287692B1 (en)* | 2004-07-28 | 2007-10-30 | Cisco Technology, Inc. | System and method for securing transactions in a contact center environment |
| US20070244831A1 (en)* | 2006-04-18 | 2007-10-18 | Kuo James Shaw-Han | System and method for secure online transaction |
| US20090063312A1 (en) | 2007-08-28 | 2009-03-05 | Hurst Douglas J | Method and System for Processing Secure Wireless Payment Transactions and for Providing a Virtual Terminal for Merchant Processing of Such Transactions |
| US20100078471A1 (en) | 2008-09-30 | 2010-04-01 | Apple Inc. | System and method for processing peer-to-peer financial transactions |
| US20100082485A1 (en) | 2008-09-30 | 2010-04-01 | Apple Inc. | Portable point of purchase devices and methods |
| US8127982B1 (en) | 2009-01-09 | 2012-03-06 | Apple Inc. | Parental controls |
| US8423457B1 (en) | 2009-04-13 | 2013-04-16 | Amazon Technologies, Inc. | Anonymous mobile payments |
| US8584224B1 (en)* | 2011-04-13 | 2013-11-12 | Symantec Corporation | Ticket based strong authentication with web service |
| US9008616B2 (en) | 2011-08-19 | 2015-04-14 | Google Inc. | Point of sale processing initiated by a single tap |
| US20130080236A1 (en) | 2011-09-26 | 2013-03-28 | First Data Corporation | Systems and Methods for Enrolling Consumers in Loyalty Programs |
| US20130185214A1 (en)* | 2012-01-12 | 2013-07-18 | Firethorn Mobile Inc. | System and Method For Secure Offline Payment Transactions Using A Portable Computing Device |
| US9846877B2 (en) | 2012-05-31 | 2017-12-19 | Paypal, Inc. | In-store mobile payment |
| US9135622B2 (en) | 2012-06-28 | 2015-09-15 | Paypay, Inc. | Secure payment made from a mobile device through a service provider |
- 2014
- 2014-03-27USUS14/227,770patent/US9785940B2/ennot_activeExpired - Fee Related
- 2017
- 2017-07-07USUS15/643,483patent/US20170308892A1/ennot_activeAbandoned
- 2017-07-07USUS15/643,480patent/US20170308891A1/ennot_activeAbandoned
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20030042301A1 (en)* | 2001-08-31 | 2003-03-06 | Sanguthevar Rajasekaran | Enhancements to multi-party authentication and other protocols |
| US20100029244A1 (en)* | 2007-11-05 | 2010-02-04 | Neeta Moodbidri | Method and system for allowing incoming emergency communications on a disabled device |
| US8577730B2 (en)* | 2009-10-29 | 2013-11-05 | Cenpos, Inc. | Cash management optimization for payment processing |
| US20120209749A1 (en)* | 2011-02-16 | 2012-08-16 | Ayman Hammad | Snap mobile payment apparatuses, methods and systems |
| US20140019367A1 (en)* | 2012-07-13 | 2014-01-16 | Apple Inc. | Method to send payment data through various air interfaces without compromising user data |
| US20150019443A1 (en)* | 2013-07-15 | 2015-01-15 | John Sheets | Secure remote payment transaction processing |
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US12074868B2 (en)* | 2016-04-27 | 2024-08-27 | Christoph Bron | Biometric authentication system based in the venous networks and unique non-falsifiable codes of tree structures and associated method |
| US11037153B2 (en)* | 2017-11-08 | 2021-06-15 | Mastercard International Incorporated | Determining implicit transaction consent based on biometric data and associated context data |
| SE2151401A1 (en)* | 2021-11-17 | 2023-05-18 | Crunchfish Digital Cash Ab | Computerized method and system for digital payments |
| WO2023091068A1 (en)* | 2021-11-17 | 2023-05-25 | Crunchfish Digital Cash Ab | Computerized method and system for digital payments |
| SE546821C2 (en)* | 2021-11-17 | 2025-02-25 | Crunchfish Digital Cash Ab | Computerized method and system for digital payments |
| EP4433974A4 (en)* | 2021-11-17 | 2025-08-13 | Crunchfish Digital Cash Ab | COMPUTERIZED METHOD AND SYSTEM FOR DIGITAL PAYMENTS |
Also Published As
| Publication number | Publication date |
|---|---|
| US20170308892A1 (en) | 2017-10-26 |
| US20150278809A1 (en) | 2015-10-01 |
| US9785940B2 (en) | 2017-10-10 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US9785940B2 (en) | System and method for distributed real time authorization of payment transactions | |
| US11880815B2 (en) | Device enrollment system and method | |
| US20240273506A1 (en) | Security system incorporating mobile device | |
| US12170730B2 (en) | Unique token authentication verification value | |
| US11379818B2 (en) | Systems and methods for payment management for supporting mobile payments | |
| US12074974B2 (en) | Method and system for access token processing | |
| US10592899B2 (en) | Master applet for secure remote payment processing | |
| US9530125B2 (en) | Method and system for secure mobile payment transactions | |
| US11888995B1 (en) | Systems and methods for value transfers using signcryption | |
| US20150199679A1 (en) | Multiple token provisioning | |
| US9691109B2 (en) | Mechanism for reputation feedback based on real time interaction | |
| US20130339253A1 (en) | Mobile Device Based Financial Transaction System | |
| US20240193603A1 (en) | Systems and methods for performing atm fund transfer using active authentication |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| STPP | Information on status: patent application and granting procedure in general | Free format text:DOCKETED NEW CASE - READY FOR EXAMINATION | |
| STPP | Information on status: patent application and granting procedure in general | Free format text:NON FINAL ACTION MAILED | |
| STPP | Information on status: patent application and granting procedure in general | Free format text:NON FINAL ACTION MAILED | |
| STCB | Information on status: application discontinuation | Free format text:ABANDONED -- FAILURE TO RESPOND TO AN OFFICE ACTION |