Images

Classifications

• • G—PHYSICS
  • G06—COMPUTING; CALCULATING OR COUNTING
  • G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
  • G06Q20/00—Payment architectures, schemes or protocols
  • G06Q20/02—Payment architectures, schemes or protocols involving a neutral party, e.g. certification authority, notary or trusted third party [TTP]
• • G—PHYSICS
  • G06—COMPUTING; CALCULATING OR COUNTING
  • G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
  • G06Q20/00—Payment architectures, schemes or protocols
  • G06Q20/08—Payment architectures
  • G06Q20/10—Payment architectures specially adapted for electronic funds transfer [EFT] systems; specially adapted for home banking systems
  • G06Q20/102—Bill distribution or payments
• • G—PHYSICS
  • G06—COMPUTING; CALCULATING OR COUNTING
  • G06F—ELECTRIC DIGITAL DATA PROCESSING
  • G06F16/00—Information retrieval; Database structures therefor; File system structures therefor
  • G06F16/20—Information retrieval; Database structures therefor; File system structures therefor of structured data, e.g. relational data
  • G06F16/21—Design, administration or maintenance of databases
  • G06F16/215—Improving data quality; Data cleansing, e.g. de-duplication, removing invalid entries or correcting typographical errors
• • G—PHYSICS
  • G06—COMPUTING; CALCULATING OR COUNTING
  • G06F—ELECTRIC DIGITAL DATA PROCESSING
  • G06F16/00—Information retrieval; Database structures therefor; File system structures therefor
  • G06F16/20—Information retrieval; Database structures therefor; File system structures therefor of structured data, e.g. relational data
  • G06F16/23—Updating
• • G—PHYSICS
  • G06—COMPUTING; CALCULATING OR COUNTING
  • G06F—ELECTRIC DIGITAL DATA PROCESSING
  • G06F16/00—Information retrieval; Database structures therefor; File system structures therefor
  • G06F16/20—Information retrieval; Database structures therefor; File system structures therefor of structured data, e.g. relational data
  • G06F16/23—Updating
  • G06F16/2379—Updates performed during online database operations; commit processing
• • G—PHYSICS
  • G06—COMPUTING; CALCULATING OR COUNTING
  • G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
  • G06Q20/00—Payment architectures, schemes or protocols
  • G06Q20/08—Payment architectures
  • G06Q20/10—Payment architectures specially adapted for electronic funds transfer [EFT] systems; specially adapted for home banking systems
  • G06Q20/108—Remote banking, e.g. home banking
• • G—PHYSICS
  • G06—COMPUTING; CALCULATING OR COUNTING
  • G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
  • G06Q20/00—Payment architectures, schemes or protocols
  • G06Q20/08—Payment architectures
  • G06Q20/12—Payment architectures specially adapted for electronic shopping systems
  • G06Q20/127—Shopping or accessing services according to a time-limitation
• • G—PHYSICS
  • G06—COMPUTING; CALCULATING OR COUNTING
  • G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
  • G06Q20/00—Payment architectures, schemes or protocols
  • G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
  • G06Q20/32—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
  • G06Q20/326—Payment applications installed on the mobile devices
  • G06Q20/3263—Payment applications installed on the mobile devices characterised by activation or deactivation of payment capabilities
• • G—PHYSICS
  • G06—COMPUTING; CALCULATING OR COUNTING
  • G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
  • G06Q20/00—Payment architectures, schemes or protocols
  • G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
  • G06Q20/36—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes
  • G06Q20/367—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes involving electronic purses or money safes
  • G06Q20/3672—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes involving electronic purses or money safes initialising or reloading thereof
• • G—PHYSICS
  • G06—COMPUTING; CALCULATING OR COUNTING
  • G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
  • G06Q20/00—Payment architectures, schemes or protocols
  • G06Q20/38—Payment protocols; Details thereof
  • G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
  • G06Q20/405—Establishing or using transaction specific rules
• • G—PHYSICS
  • G06—COMPUTING; CALCULATING OR COUNTING
  • G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
  • G06Q20/00—Payment architectures, schemes or protocols
  • G06Q20/38—Payment protocols; Details thereof
  • G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
  • G06Q20/409—Device specific authentication in transaction processing
• • G—PHYSICS
  • G06—COMPUTING; CALCULATING OR COUNTING
  • G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
  • G06Q20/00—Payment architectures, schemes or protocols
  • G06Q20/38—Payment protocols; Details thereof
  • G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
  • G06Q20/409—Device specific authentication in transaction processing
  • G06Q20/4093—Monitoring of device authentication
• • G—PHYSICS
  • G06—COMPUTING; CALCULATING OR COUNTING
  • G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
  • G06Q20/00—Payment architectures, schemes or protocols
  • G06Q20/38—Payment protocols; Details thereof
  • G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
  • G06Q20/409—Device specific authentication in transaction processing
  • G06Q20/4097—Device specific authentication in transaction processing using mutual authentication between devices and transaction partners
• • G—PHYSICS
  • G06—COMPUTING; CALCULATING OR COUNTING
  • G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
  • G06Q20/00—Payment architectures, schemes or protocols
  • G06Q20/38—Payment protocols; Details thereof
  • G06Q20/42—Confirmation, e.g. check or permission by the legal debtor of payment
• • G—PHYSICS
  • G06—COMPUTING; CALCULATING OR COUNTING
  • G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
  • G06Q40/00—Finance; Insurance; Tax strategies; Processing of corporate or income taxes
  • G06Q40/02—Banking, e.g. interest calculation or account maintenance

Definitions

• the invention relates generally, to computer networking security, and more specifically, to injecting user control for user card updates automatically applied to card-on-file merchant data and recurring payment transaction parameters between acquirer processors and issuer processors over data communication networks.
• card users rely upon availability of electronic funds for point-of-sale and online purchases with merchants.
• an electronic payment fails due to issues within the system, apart from actual availability of electronic funds, card users can have services disrupted, purchases failed, and even be embarrassed in front of friends.
• One case of failed user card transactions arises when there is a change in the underlying user card being used for the transaction. For example, if an existing card is lost or stolen, and a new physical card is typically issued by mail to the address on file and, after receipt, the card user manually updates the card information. In the meantime, no electronic payments can be consummated.
• card users may be suspicious of COF (card on file) merchants that store the user card information so that the user does not have to reenter for each use.
• COF merchants automatically consummate charges for a predetermined amount at a predetermined frequency, such as monthly dues for a health club membership. If a user is suspicious, card users have a lack of control over COF merchants and recurring payments. The conventional options for control are to submit a dispute with the credit card company or the merchant. But this can be time consuming and complicated.
• What is needed is a robust technique for improving user card data stored by card-on-file merchants and recurring payment transactions between acquirer processors and issuer processors over data communication networks, in cases such as updated card information, pushing a card to a new merchant so that it can be stored on file, recommending targeted subscription services to users who may not have subscribed to merchant services yet but are exhibiting organic recurring purchasing behavior with the merchants, and other cases discussed herein.
• a database of transactions is formed form forwarded transactions from financial institutions, the forwarded transactions transmitted from an acquirer processor for approval by an issuer processor.
• a transaction classifier can be trained from the database of transactions to identify COF (card on file) merchants having payment credentials on file for a specific card user, and participating in account update services for a financial institution.
• COF card on file
• the resulting list of the COF merchants and associated transactions, along with action buttons related to the COF merchants can be provided to card users as well as an ISO transaction approval system.
• updates to a card of the specific card user that will affect subsequent payments to the COF merchants has occurred are detected based on receiving a notification from an issuer processor.
• payment credentials can be automatically updated with the COF merchants for the specific card user
• spectral analysis technology is used to improve network transaction technology. Furthermore, the technical field of network security is improved by reducing falsely declined transactions, and network performance is improved for the user.
• FIG. 1 is a high-level block diagram illustrating a system for injecting user control for user card updates automatically applied to COF merchants and recurring payment transactions of an ISO transaction approval system, according to an embodiment.
• FIG. 2 is a sequence diagram illustrating interactions between the components of the system of FIG. 1 , according to an embodiment.
• FIGS. 3 A and 3 B are more detailed block diagram illustrating a user control server of the system of FIG. 1 , according to some embodiments.
• FIG. 4 is a more detailed block diagram illustrating a data enrichment server of the system of FIG. 1 , according to some embodiments.
• FIG. 5 is a high-level flow diagram illustrating a method for injecting user control for user card updates automatically applied to COF merchants and recurring payment transactions of an ISO transaction approval system, according to an embodiment.
• FIG. 6 A is a more detailed flow diagram illustrating a step of discovering COF merchants and recurring payments, from the method of FIG. 5 , according to an embodiment.
• FIG. 6 B is a more detailed flow diagram illustrating a step of performing spectral analysis on a time series of ISO transactions to detect periodicity from spikes, from the method of FIG. 6 A , according to an embodiment.
• FIG. 7 is a high-level flow diagram illustrating a step of providing a list of COF merchants and recurring payments to card users and to transaction approval system, in the method of FIG. 5 , according to an embodiment.
• FIG. 8 is a high-level flow diagram illustrating a step of enriching raw merchant data of an authorization request with normalized merchant data according to user location, in the method of FIG. 7 , according to an embodiment.
• FIG. 9 is a table illustrating an example of user controls for the list of COF merchants and recurring payments displayed on an app of card users, according to an embodiment.
• FIG. 10 is a block diagram illustrating an example computing device, according to one embodiment.
• FIGS. 1 - 4 I. System for Injecting User Control to COF User Card Data and Transaction Parameters
• FIG. 1 is a high-level block diagram illustrating a system 100 for injecting user control (e.g., for user card updates automatically) applied to COF merchants and recurring payment transactions of an ISO transaction approval system, according to an embodiment.
• the system 100 primarily comprises a user control server 110 , a transactional approval system 120 , a transaction-initiating device 130 and an account holder device 140 .
• Additional network components can also be part of the system 100 , such as firewalls, virus scanners, routers, switches, application servers, databases, data lakes, data warehousing, as well as additional controllers, access points, access switches, stations, SDN (Software-Defined Networking) controllers, Wi-Fi controllers, and the like.
• the network components can be implemented as hardware, software, or a combination of both, for example, as described with respect to the computing environment of FIG. 10 .
• the account holder device 140 may be a mobile device using Wi-Fi or cellular, for example, that couples to an edge device 145 for access to the network 199 .
• the network 199 may be the Internet, a wide area network, a local area network, a cellular network (e.g., 3G, 4G, 5G or 6G), Wi-Fi, or a hybrid network.
• the user control server 110 receives an update request 102 along with a copy of an ISO authorization request 101 and responds with an update response 102 .
• the update response 102 can include a new user card number, a new expiration date, a product upgrade, information from a portfolio conversion, user controls, or the like.
• the user control server 110 continually classifies ISO transactions to identify COF merchants and recurring payments associated with a particular user card. A list of COF merchants and recurring payments is determined, and updated as new ISO transactions are classified.
• the user control server 110 can provide the list of COF merchants and recurring payments back to elements of the ISO transaction approval system 120 , such as a financial institution or issuer processor.
• COF merchants store user card data used by a merchant device to fund purchases that are either automatically triggered (Amazon Prime annual fee) or manually triggered (e.g., Amazon toy purchase). Further, recurring transactions are subset of transactions conducted by the COF merchant. A transaction is recurring if it is automatically conducted at some frequency for a standard amount. The Amazon Prime annual fee may be charged on May 1st of each year with the same card data, recurring, and without new authorization from the card holder. In one embodiment, besides detecting recurring merchants (merchant-level insights), it can also detect recurring insights at the combination of card and merchant level. So, for each card and merchant information, frequency, trial end date, next billing date, and estimated amount, are known based on history.
• updates to a specific user card are received and processed by the user control server 110 .
• the updates can be initiated by financial institutions or issuer processors or by users themselves. For example, when a new user card is requested or automatically dispatched by mail to a Chase card holder, Chase can immediately send updated card information to the user control server 110 over a secure channel before the Chase card holder is even aware that the new user card exists.
• the update in turn, can be applied to the list of COF and recurring payments in either a push or pull distribution.
• the user can also be notified of COF updates 105 and make decisions to inject control how the new information is disseminated.
• a card user may be suspicious of a particular merchant or POS type and wish to discontinue by precluding the update.
• a user app on the account holder device 140 with a touch screen button can be pressed, thereby providing card users with easy access to a traditionally closed loop ISO transaction approval system 120 .
• the data enrichment server 115 extracts raw merchant data from the ISO authorization request for conversion to enriched merchant data for the list of merchants.
• the raw merchant data is typically customized by a particular merchant and their business practice, or there is any protocol at all.
• Enriched merchant data is normalized with known commercial names. This prevents several different COF merchant entries for a common merchant, for example, at different locations. While raw merchant data can have 2, 10 or more variations, enriched merchant data is coalesced under a single entry. When a customer wants to cancel a recurring payment at Walmart, for example, all the transactions and actions are accessible under a single commercial name rather than having to individually check each name and decipher raw merchant data. Some merchants have more than one enriched merchant names, such as Amazon Prime and Amazon Fresh.
• the data enrichment server 115 is an optional part of the system 100 .
• the user location 103 for the account holder device 140 can be pushed or pulled and utilized to filter search results of a places server.
• a data field has WLMRT within close proximity to a known Walmart store, the custom abbreviation can be enriched to the common trade name.
• the location is preferably in real-time with data enrichment, but in some cases, is done asynchronously.
• GPS, Wi-Fi triangulation, IP address analyses, or other techniques at the account holder device 140 determines local geo-coordinates and sends to the data enrichment server 115 .
• the data enrichment server 115 uses algorithms to predict the location based on previous locations.
• the data enrichment server 115 infers location from the merchant location, IP address, or any other appropriate technique.
• the data enrichment server 115 is part of a third-party fraud detection system, separate from the card updater system or the transaction approval system 120 . In other embodiments, the data enrichment server 115 can be integrated with the user control server 110 .
• the data enrichment server 115 is set forth in more detail with respect to FIG. 4 below.
• the transactional approval system 120 is a backend to a payment authorization system for credit card transactions for a merchant.
• the transactions can be financial transactions, such as a credit card approval, a debit card approval, an ACH, or other financial transactions. In other embodiments, the transactions are non-financial.
• the financial transaction approval system can include an acquirer processor, a card network, an issuer processor, a card issuer, and an account host. Responsive to a transaction initiated at the merchant, the acquirer processor can send the ISO authorization request according to the ISO 8583 standard, including a ⁇ 100 or a ⁇ 200 message type, with a transaction card number, transaction card credentials, merchant information, transaction amount, and other mandatory and optional fields.
• the card network does validity checks on the ISO authorization request and involves any additional services the acquirer or issuer have signed up for (such as address validation, PIN validation, risk scoring, and the like), and then forward the ISO authorization request to the issuer processor.
• the issue processor can perform validity checks and invoke value-added services such as risk scoring and cardholder policy checks, before checking with an account host if a user account has adequate funds to satisfy a transaction request.
• the account host responds to the issuer processor with an approval or denial that the issuer processor can form into an ISO authorization response, along with a approve or denial reason code.
• the card network forwards the ISO authorization response to the acquirer processor, and in turn, back to the merchant at the POS. Many other approval systems are possible.
• the transactional approval system 120 subscribes to the user control server 110 for updates to user card data.
• an update service can check for any changes to user card data stored by a merchant device. Data can be pushed through a subscription, or data can be pulled by merchant checks.
• the user control server 110 is able to implement controls of the account holder device 140 by registering a user account with a third party administrating the data enrichment server 115 .
• a third-party COF server (not shown) provides user control of COF merchants outside of the ISO transactional approval system 120 .
• one embodiment bypasses the traditional financial system for managing COF merchants and recurring transactions.
• the transaction-initiating device 130 can be a merchant device or other POS, where a merchant swipes a transaction card through a transaction card reader which uses transceiver coupled to the network 199 for transmitting an ISO authorization request to the transaction approval system 120 for approval.
• the transaction-initiating device 130 is a COF merchant storing user card data, for various reasons.
• Amazon stores user cards for easy check out.
• Spotify stores user cards, and charges a premium service fee at the same time of each month, for the same amount each month.
• Some COF transactions are recurring transactions.
• One implementation of the transaction-initiating device 130 is a terminal at a gym using Stripe to charge for membership services. The card may be stored for monthly fees. If the case of updated user card data, the transaction-initiating device 130 avoids declines by pushing the update initiated by a user.
• the account holder device 140 for a purchaser can be a user device such as a mobile telephone, electronic payment device, an iPad, laptop computer, or the like.
• the purchaser or other user logs onto the data enrichment server 110 with authentication credentials to create a secure channel for location sharing, changing transaction controls, and managing transactions.
• a mobile application is downloaded to the account holder device 140 for communication with the user control server 110 .
• an operating system or Bluetooth-connected device communicates with the data enrichment sever 110 .
• FIG. 2 is a sequence diagram illustrating interactions between the components of the system of FIG. 1 , according to an embodiment. Variations in the sequence are possible. For instance, real-time card updates and real-time user controls are shown in the interactions of FIG. 2 . However, in other embodiments, updates can be pulled from the user control server 110 in batch mode. In still other embodiments, user COF controls are applied separately from real-time ISO transactions.
• the transaction-initiating device 130 receives data from a payment card swipe by the merchant or the user (or Apple Pay, an NFC contactless swipe, or otherwise) thereby initiating the network security techniques descried herein.
• Data packets including an ISO authorization request are sent to the transactional-approval system.
• the transmission channel can be, for example, an end-to-end wired connection, a Wi-Fi or other wireless connection, or a hybrid network.
• an update request checks for COF or recurring payment updates by sending a copy of the ISO authentication request.
• a location-based search query is sent to the place server 115 at interaction 103 and a response is sent back at interaction 104 .
• the list of merchants compiled from enriched data can be sent as COF updates, at interaction 105 , to the account holder device.
• User actions, user payment controls, geographical fencing, or charge amount limitations, or other processes can be applied at this point and are sent as user COF controls, at interaction 106 , from the account holder device 150 back to the user control server 110 .
• an update response is sent back to the transaction approval system 120 .
• the ISO authorization response is sent to the transaction-initiating device 130 .
• a release of goods to the user can be allowed or disallowed by the merchant, in one example.
• FIG. 3 A is a more detailed block diagram illustrating a user control server of the system of FIG. 1 , according to some embodiments.
• the data enrichment server 110 includes a historical ISO transactional database 310 , a transaction classifier 320 , a COF merchants and recurring payments module 330 , and a network communication module 340 .
• the components can be implemented in hardware, software, or a combination.
• the historical ISO transactional database 310 stores previous ISO authentication requests and responses for training the transaction classifier 320 .
• the previous transactions can be limited to a specific user, a specific location (e.g., zip code, city or state), a specific transaction type (e.g., recurring transactions), or as otherwise needed for a specific implementation.
• the transaction classifier 320 can use numeric or signal processing modeling to identify COF merchants and recurring payments.
• One instance uses discrete Fourier transformational power spectral density for accurate and deep learning from the past ISO transactions. To do so, transactions are projected onto the frequency (sinusoids) domain. Perfectly sinusoidal data will have one spike. Periodic yet not sinusoidal data will have one spikes at the integer multiple of the frequency. Noise will have no spike, indicative of no recurring payments. Further, a periodogram/PSD involves the square of the magnitude of discrete Fourier transform to provide a good estimation from energy concentrated around certain frequencies.
• a flag is set in the data field 58.4 of the ISO 8583 format, or alternatively or in combination with, flags in data field 22 for POS entry mode and field 126 for POS environmental, and other variations.
• the data field 58.4 flag indicates that a recurring transaction is occurring. This self-identification of COF merchants can also be added to the COF list and the recurring transactions list. Other flags can include data field 61, for instance.
• a recurring transaction is identified when a first transaction includes account verification with a CVV2 or security code indicator set and subsequent transactions are higher than $0 do not include a CVV2.
• the COF merchants and recurring payments module 330 compiles, updates and distributes the list of COF merchants and recurring payments, in an embodiment.
• a user interface can communicate with the account holder device 140 to provide a display to card users to verify and control.
• the user interface can provide settings for notifications about updates to the user.
• subscriptions to the update servers with financial institutions, and other aspects of the transaction system 120 are examples of the entities that provide a display to card users to verify and control.
• the network communication module 340 can include a network interface, transceivers, antenna, protocol software, operating systems, APIs and other necessary components.
• FIG. 3 B further details the transactions classifier 320 , in an embodiment, to include a training module 350 and a prediction module 360 .
• the training module 350 uses the training set to identify the elbow points where the power density has a significant drop in value. Multiple elbow points may be present, since the power density may be amplified further when there are multiple recurring patterns. The training module then produce the best threshold value to use for differentiating a recurring pattern vs a non-recurring pattern.
• the prediction module 360 in turn includes a time series derivation module 362 , a frequency projection module 364 and a recurring payments database 366 . After old ISO transactions are processed for training by the training module 350 , predictions for identifying recurring payments can be made in real-time or batch by the prediction module 360 . Further details are set forth below with respect to FIGS. 6 A and 6 B .
• FIG. 4 is a more detailed block diagram illustrating a data enrichment server 115 of FIG. 1 , according to some embodiments.
• the data enrichment server 115 includes a historical ISO transactional database 410 , a data learning engine 420 , a location-based index of merchant data 430 and a network communication module 440 .
• the components can be implemented in hardware, software, or a combination.
• the historical ISO transactional database 410 stores previous ISO authentication requests and responses for training the data learning engine 420 .
• the previous transactions can be limited to a specific user, a specific location (e.g., zip code, city or state), a specific transaction type (e.g., recurring transactions), or as otherwise needed for a specific implementation.
• the historical ISO transactional database 410 stores previous ISO authentication request for other users.
• recurring transactions can be identified for a particular user from historical information and patterns of others. This is particularly useful for identifying recurring payments from a first payment of the series, for example.
• the location-based index of merchant data 430 is generated from the learning process as varying merchant names are coalesced under a single name, and payment controls are implemented through the single name. Being local to the data enrichment server 115 , one embodiment provides real-time look-up of enriched merchant data and when there is a cache miss, raw merchant data is used for making decisions.
• the enriched data can be retrieved from a places server.
• the data enrichment server 115 is under independent control from the transaction approval system 120 . As a result, the location-based index is controlled and leveraged by the user typically precluded from the ISO transaction data path.
• the network communication module 440 can include a network interface, transceivers, antenna, protocol software, APIs and other aspects necessary
• FIG. 5 is a high-level flow diagram illustrating a method for injecting user control for user card data (e.g., user card updates) automatically applied to COF merchants and recurring payment transactions of an ISO transaction approval system, according to an embodiment.
• user card data e.g., user card updates
• FIG. 5 is a high-level flow diagram illustrating a method for injecting user control for user card data (e.g., user card updates) automatically applied to COF merchants and recurring payment transactions of an ISO transaction approval system, according to an embodiment.
• the steps herein are merely example groupings of functionality that can be performed in different orders, enhanced with other steps, and otherwise modified under the spirit of the present disclosure.
• COF merchants and recurring payments are discovered, as described in more detail with respect to FIG. 6 .
• a list of COF merchants and recurring payments are provided to card users and/or to a transaction approval system, as shown with further detail in FIG. 7 . If a change to user card data or parameter is detected (e.g., an update to a card for a specific card user is detected) at step 530 , at step 540 payment credentials for COF merchants and recurring payments are automatically updated, as described throughout the disclosure.
• FIG. 6 A is a high-level flow diagram illustrating a step of discovering COF merchants and recurring payments, in the method of FIG. 5 , according to an embodiment.
• ISO transactions are forwarded in real-time or batch mode for analysis. If a recurring payment flag is set for explicit identification of recurring payments, for example in data field 58.4 of an ISO 8583 format packet at step 620 , the merchant is added to the COF merchant list.
• Another embodiment uses alternative data fields for the recurring data, such as data field 60 and data field 126, depending on whether the transaction is an US transaction or a non-US international transaction.
• the frequency is not explicitly identified in step 625 .
• spectral analysis is performed, at step 630 , in order to determine a frequency (e.g., daily, weekly, monthly). Besides spectral analysis, in other embodiments, different transaction attributes are analyzed. If the recurring payment flag is explicitly set at step 620 and frequency is explicitly identified at step 625 , the process continues to step 520 for providing the COF merchants and recurring payments list.
• a frequency e.g., daily, weekly, monthly.
• step 620 if the recurring payment flag is not set, spectral analysis can be performed at step 620 to identify recurring payments in an implicit manner.
• step 640 a frequency of recurring payments is derived from the spikes of the spectral analysis. In one embodiment, step 640 is not performed due to poor results in the spectral analysis of step 630 , failing to implicitly identify recurring payments. The process then returns to step 520 of FIG. 5 .
• the spectral analysis step of 630 is further defined in FIG. 6 B .
• a time series for a merchant is derived from ISO transactions, in step 631 .
• the derived time series is then projected onto a frequency domain, in step 632 . If spikes are detected in step 633 that meet a correlation threshold in step 634 , the transactions are determined to be recurring payments in step 656 .
• perfectly sinusoidal data has one spike.
• Periodic, yet non sinusoidal data has spikes at the integer multiple of the predominant frequency. The multiple spikes are generally caused by spectral leakage due to the imperfect data
• step 633 if there are no spikes in frequency detected at step 633 , or the detected spikes of step 633 do not meet the correlation threshold at step 634 , it is determined that the time series contains no recurring payments at step 635 . For instance, white noise has no spike.
• a user can have multiple subscriptions of recurring transactions with a single vendor.
• the statistical modeling or spectral analysis can be used to detect the available subscription price points for a given merchant, since the transactions at each price point should yield strong recurring pattern at a certain frequency.
• the spectral analysis result can be combined with other features derived from transaction data in machine learning models to further fine tune the prediction accuracy.
• a machine learning classifier such as a neural network based classifier or a traditional random forest based classifier, can be used to combine the features including the periodicity and price points from the spectral analysis, the POS entry mode, amount, terminal class (attended or unattended, customer operated or card acceptor operated, on-premise or off-premise), presentation type (card present or card not present, customer present or customer not present), terminal type (home terminal, dial terminal, ecommerce terminal, etc.), payment token types, token device types, and other POS condition codes to predict whether the transaction is a recurring payment or not.
• the price point can be used to alert the user whenever there is an event of price divergence in the same recurring series.
• the user's price point can be compared with other similar users for the same merchant at the same city or at the same region, to further inform the users whether or not an anomaly has occurred, and whether or not they should contact the merchant for the difference in charges.
• the spectral analysis result (frequency, price point) from other cards on the same merchant can be crowd-sourced as additional features to determine whether this transaction is recurring or not.
• crowd-sourced features can also POS entry mode, terminal class (attended or unattended, customer operated or card acceptor operated, on-premise or off-premise), presentation type (card present or card not present, customer present or customer not present), terminal type (home terminal, dial terminal, ecommerce terminal, etc.), payment token types, token device types, and other POS condition codes.
• a merchant may send incorrect recurring indicator in the transaction data.
• Apple iTune may set the recurring flag for a regular non-recurring eCommerce transaction, regardless of whether the transaction is recurring or not.
• the same model with the same features can be used to detect and correct the incorrect flagging of the transaction. New rules can be automatically generated and implemented.
• FIG. 7 is a high-level flow diagram illustrating a step of providing a list of COF merchants and recurring payments to card users and to transaction approval system, in the method of FIG. 5 , according to an embodiment.
• raw merchant data of an authorization request is enriched with normalized merchant data according to a user location, as set forth below in association with FIG. 8 .
• the data enrichment can be performed prior to identifying recurring payments, in some embodiments.
• a list of COF merchants and recurring payment is compiled for display at, for example, a mobile app on a smartphone of the card user.
• step 740 the user control (e.g., cancel, update or limit) is executed against COF merchant and recurring payments. The process returns to step 530 of FIG. 5
• FIG. 8 is a high-level flow diagram illustrating a step of enriching raw merchant data of an authorization request with normalized merchant data according to user location, in the method of FIG. 7 , according to an embodiment.
• a location-based index is generated in batch mode.
• a location of a user device is determined at step 830 .
• raw merchant data is enriched with normalized merchant data according to the user location.
• FIG. 9 is a table illustrating an example of user controls for the list of COF merchants and recurring payments displayed on an app of card users, according to an embodiment.
• COF merchants are listed, some of which have associated recurring payments (i.e., 24-hour Fitness at $29.99 per month, and gas company billing on the 8th day of the month, although amounts may be different) and some do not have associated recurring payments (i.e., Amazon stored a card but purchases are not necessarily periodic in amount or date).
• user controls allow a direct action to the COF merchant such as canceling the COF information, confirming the recurring payment, limiting charges by geo-location or amount, updating the card, clicking to contact the merchant, and alerting the user.
• the user can update the card or give permission to the card updater to do so automatically. Many other variations are possible.
• FIG. 10 is a block diagram illustrating an exemplary computing device 1000 for use in the system 100 of FIG. 1 , according to one embodiment.
• the computing device 1000 is an exemplary device that is implementable for the user control server 110 , each of the components of ISO transactional system 120 , the transaction-initiating device 130 , or the account holder device 140 . Additionally, the computing device 1000 is merely an example implementation itself, since the system 100 can also be fully or partially implemented with laptop computers, tablet computers, smart cell phones, Internet appliances, and the like.
• the computing device 1000 includes a memory 1010 , a processor 1020 , a storage drive 1030 , and an I/O port 1040 . Each of the components is coupled for electronic communication via a bus 1099 . Communication can be digital and/or analog, and use any suitable protocol.
• the memory 1010 further comprises network applications 1012 and an operating system 1014 .
• the network applications 1012 can include a web browser, a mobile application, an application that uses networking, a remote application executing locally, a network protocol application, a network management application, a network routing application, or the like.
• the operating system 1014 can be one of the Microsoft Windows®. family of operating systems (e.g., Windows 95, 98, Me, Windows NT, Windows 2000, Windows XP, Windows XP x104 Edition, Windows Vista, Windows CE, Windows Mobile, Windows 7, Windows 8, and Windows 10), Android, Linux, HP-UX, UNIX, Sun OS, Solaris, Mac OS X, Alpha OS, AIX, IRIX32, or IRIX104. Other operating systems may be used.
• Microsoft Windows is a trademark of Microsoft Corporation.
• the processor 1020 can be a network processor (e.g., optimized for IEEE 802.11), a general-purpose processor, an application-specific integrated circuit (ASIC), a field programmable gate array (FPGA), a reduced instruction set controller (RISC) processor, an integrated circuit, or the like. Qualcomm Atheros, Broadcom Corporation, and Marvell Semiconductors manufacture processors that are optimized for IEEE 802.11 devices.
• the processor 1020 can be single core, multiple core, or include more than one processing elements.
• the processor 1020 can be disposed on silicon or any other suitable material.
• the processor 1020 can receive and execute instructions and data stored in the memory 1010 or the storage device 1030 .
• the storage device 1030 can be any non-volatile type of storage such as a magnetic disc, EEPROM, Flash, or the like.
• the storage device 1030 stores code and data for applications.
• the I/O port 1040 further comprises a user interface 1042 and a network interface 1044 .
• the account holder interface 1042 can output to a display device and receive input from, for example, a keyboard.
• the network interface 1044 connects to a medium such as Ethernet or Wi-Fi for data input and output.
• the network interface 1044 includes IEEE 802.11 antennae.
• Computer software products may be written in any of various suitable programming languages, such as C, C++, C#, Java, JavaScript, PHP, Python, Perl, Ruby, and AJAX.
• the computer software product may be an independent application with data input and data display modules.
• the computer software products may be classes that are instantiated as distributed objects.
• the computer software products may also be component software such as Java Beans (from Sun Microsystems) or Enterprise Java Beans (EJB from Sun Microsystems).
• the computer that is running the previously mentioned computer software may be connected to a network and may interface to other computers using this network.
• the network may be on an intranet or the Internet, among others.
• the network may be a wired network (e.g., using copper), telephone network, packet network, an optical network (e.g., using optical fiber), or a wireless network, or any combination of these.
• data and other information may be passed between the computer and components (or steps) of a system of the invention using a wireless network using a protocol such as Wi-Fi (IEEE standards 802.11, 802.11a, 802.11b, 802.11e, 802.11g, 802.11i, 802.11n, and 802.ac, just to name a few examples).
• Wi-Fi IEEE standards 802.11, 802.11a, 802.11b, 802.11e, 802.11g, 802.11i, 802.11n, and 802.ac, just to name a few examples.
• signals from a computer may be transferred, at least in part
• a user accesses a system on the World Wide Web (WWW) through a network such as the Internet.
• WWW World Wide Web
• the Web browser is used to download web pages or other content in various formats including HTML, XML, text, PDF, and postscript, and may be used to upload information to other parts of the system.
• the Web browser may use uniform resource identifiers (URLs) to identify resources on the Web and hypertext transfer protocol (HTTP) in transferring files on the Web.
• URLs uniform resource identifiers
• HTTP hypertext transfer protocol

Landscapes

• Business, Economics & Management (AREA)
• Engineering & Computer Science (AREA)
• Accounting & Taxation (AREA)
• Theoretical Computer Science (AREA)
• Finance (AREA)
• Physics & Mathematics (AREA)
• General Physics & Mathematics (AREA)
• Strategic Management (AREA)
• General Business, Economics & Management (AREA)
• Databases & Information Systems (AREA)
• Development Economics (AREA)
• Computer Security & Cryptography (AREA)
• Economics (AREA)
• Data Mining & Analysis (AREA)
• General Engineering & Computer Science (AREA)
• Quality & Reliability (AREA)
• Marketing (AREA)
• Technology Law (AREA)
• Computer Networks & Wireless Communication (AREA)
• Cash Registers Or Receiving Machines (AREA)
• Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

Description

Claims (21)

Priority Applications (1)

Applications Claiming Priority (5)

Related Parent Applications (1)

Publications (2)

Family

ID=75687754

Family Applications (1)

Country Status (1)

Families Citing this family (2)

Citations (150)

• 2020
  • 2020-10-13 US US17/069,586 patent/US12112300B2/en active Active

Patent Citations (152)

Non-Patent Citations (17)

Also Published As

Similar Documents

Legal Events