US20180268399A1 - Systems and methods for supporting legacy and tokenized e-commerce - Google Patents

Systems and methods for supporting legacy and tokenized e-commerce Download PDF

Info

Publication number
US20180268399A1
US20180268399A1 US15/923,569 US201815923569A US2018268399A1 US 20180268399 A1 US20180268399 A1 US 20180268399A1 US 201815923569 A US201815923569 A US 201815923569A US 2018268399 A1 US2018268399 A1 US 2018268399A1
Authority
US
United States
Prior art keywords
merchant
payment
wallet
aggregating
credential
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
US15/923,569
Other versions
US11138589B2 (en
Inventor
Howard Spector
Allison Beer
Christina Sheppard
Scott H. Ouellette
Jason Carlyle
Tu P. Le
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
JPMorgan Chase Bank NA
Original Assignee
JPMorgan Chase Bank NA
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by JPMorgan Chase Bank NA filed Critical JPMorgan Chase Bank NA
Priority to US15/923,569 priority Critical patent/US11138589B2/en
Publication of US20180268399A1 publication Critical patent/US20180268399A1/en
Assigned to JPMORGAN CHASE BANK, N.A. reassignment JPMORGAN CHASE BANK, N.A. ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: SHEPPARD, Christina, BEER, ALLISON P, CARLYLE, JASON B, LE, TU P, OUELLETTE, SCOTT H, SPECTOR, HOWARD
Priority to US17/493,829 priority patent/US11587068B2/en
Application granted granted Critical
Publication of US11138589B2 publication Critical patent/US11138589B2/en
Active legal-status Critical Current
Adjusted expiration legal-status Critical

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/36Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/20Point-of-sale [POS] network systems
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/20Point-of-sale [POS] network systems
    • G06Q20/202Interconnection or interaction of plural electronic cash registers [ECR] or to host computer, e.g. network details, transfer of information from host to ECR or from ECR to ECR
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/22Payment schemes or models
    • G06Q20/227Payment schemes or models characterised in that multiple accounts are available, e.g. to the payer
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/322Aspects of commerce using mobile devices [M-devices]
    • G06Q20/3224Transactions dependent on location of M-devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3821Electronic credentials
    • G06Q20/38215Use of certificates or encrypted proofs of transaction rights
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/385Payment protocols; Details thereof using an alias or single-use codes

Definitions

  • the present disclosure generally relates to systems and methods for supporting legacy and tokenized transactions.
  • e-commerce aggregating wallet providers need to provide credentials to their merchants.
  • a method for selecting an electronic payment credential to communicate to a merchant may include (1) an electronic wallet backend receiving a plurality of payment credentials associated with a payment account; (2) the electronic wallet backend receiving a credential capability for a merchant; (3) the electronic wallet backend selecting one of the payment credentials for a transaction with the merchant based on the credential capability; and (4) the electronic wallet backend communicating the selected payment credential to a point of transaction device for the merchant.
  • the electronic wallet backend may be an aggregating wallet backend.
  • one of the plurality of payment credentials may be a single use account number for the payment account.
  • the single use account number may be received from a financial institution associated with the payment account.
  • one of the plurality of payment credentials may be a cryptogram for the payment account.
  • the method may further include receiving a dynamic card validation value.
  • the electronic wallet backend may receive the credential capability for the merchant based on a location of the information processing apparatus.
  • the electronic wallet backend may receive the credential capability for the merchant from a database of merchant credential capabilities.
  • the method may further include the electronic wallet backend receiving a selection of the payment account from a mobile payment computer application executed a mobile electronic device.
  • the payment credential may be associated with at least one restriction.
  • the electronic wallet backend may select at least a subset of the plurality of the payment credentials and communicates the subset of the plurality of the payment credentials to the merchant.
  • a method for selecting an electronic payment credential to communicate to a merchant may include: (1) a mobile electronic application for an aggregating wallet provider executed by a mobile electronic device initiating a transaction with a merchant; (2) the mobile electronic wallet application receiving an account selection from a mobile payment application executed by the mobile electronic device; (3) the mobile electronic wallet application for the aggregating wallet provider communicating a session id to an electronic wallet backend for the aggregating wallet provider; (4) the electronic wallet backend for the aggregating wallet provider receiving a plurality of payment credentials from a financial institution using the session id; (5) the electronic wallet backend for the aggregating wallet provider receiving a credential capability for the merchant; (6) the electronic wallet backend for the aggregating wallet provider selecting one of the payment credentials for the transaction with the merchant based on the credential capability; and (7) the electronic wallet backend for the aggregating wallet provider communicating the selected payment credential to a point of transaction device for the merchant.
  • one of the plurality of payment credentials may be a single use account number for the payment account, and the electronic wallet backend for the aggregating wallet provider receives the single use account number from a financial institution associated with the payment account.
  • one of the plurality of payment credentials may be a cryptogram for the payment account.
  • the method may further include the electronic wallet backend for the aggregating wallet provider receiving a dynamic card validation value.
  • the electronic wallet backend for the aggregating wallet provider may receive the credential capability for the merchant based on a location of the information processing apparatus.
  • the method may further include the electronic wallet backend for the aggregating wallet provider receives the credential capability for the merchant from a database of merchant credential capabilities.
  • the method may further include the electronic wallet backend for the aggregating wallet provider receiving a selection of the payment account from a mobile payment computer application executed a mobile electronic device.
  • the payment credential may be associated with at least one restriction.
  • the electronic wallet backend for the aggregating wallet provider may provide a plurality of the payment credentials to the merchant.
  • FIG. 1 depicts a system for supporting legacy and tokenized transactions according to one embodiment
  • FIG. 2 depicts a method for supporting legacy and tokenized transactions according to one embodiment.
  • ecommerce aggregating wallet providers may be provided with both tokenized and single use account (SUA) credentials, and may pass the appropriate credential(s), and other information, to the merchant in order to conduct the transaction.
  • the wallet provider may determine which credential(s) to provide to the merchant based on, for example, the wallet provider's relationship with the merchant, the type of payment the wallet provider knows that the merchant can process, etc.
  • issuers and wallet providers may migrate to tokenized credentials with minimal, if any, customer impact.
  • the wallet provider may request a token or the SUA from the issuer based on the needs of the merchant.
  • the wallet may provide one or more levels of credentials to the merchant's point of transaction (e.g., a point of sale device) to conduct a transaction.
  • the wallet may provide the SUA to the merchant.
  • the wallet may provide a cryptogram to the merchant.
  • the wallet may provide a cryptogram and additional information (e.g., a dynamic card validation value, or “dCVV”).
  • the wallet may provide the dCVV without the cryptogram.
  • the wallet may select the credentials to provide the merchant based on, for example, the registered information for the merchant (e.g., what credentials the merchant is registered to accept), machine learning (e.g., past experience with the merchant), mobile device/merchant location (e.g., retrieving merchant credential capabilities based on the location of the user's mobile device), etc.
  • the wallet may provide multiple credentials to the merchant, and the merchant (e.g., the merchant's point of transaction device) may decide which credential to use.
  • System 100 may include consumer electronic device 110 , which may be any suitable electronic device including one or more processor 112 , memory 114 , an input/output (not shown), and a network interface (not shown). Examples include smartphones, tablet computers, notebook computers, desktop computers, workstations, Internet of Things (IoT) appliances, etc.
  • IoT Internet of Things
  • Electronic device 110 may execute application (“app”) or program 122 for a financial institution, or may access a financial institution website (e.g., a mobile website) via a mobile browser (not shown), etc.
  • financial institution app 122 may be a payment application (e.g., ChasePay).
  • Electronic device 110 may also execute aggregating wallet application 125 , which may be, for example, a third party shopping app, a third party payment app, or any app in which a user may make a purchase.
  • aggregating wallet app is Facebook.
  • aggregating wallet app 125 may be provided with software development kit (SDK) 126 for the financial institution.
  • SDK software development kit
  • an identifier such as Consumer Merchant Authentication Code, or “CMAC” 128 may also be provided.
  • CMAC 128 may be stored in one or more locations on electronic device 110 . The location may depend on the manufacturer of electronic device 110 , the operating system, etc. For example, CMAC 128 may be stored in a “key ring” or “key vault” on the device, in secure storage on electronic device 110 (e.g., the secure element on an iPhone), within aggregating wallet app 124 , within SDK 126 , etc. Other storage locations may be used as is necessary and/or desired.
  • aggregating wallet app 125 may be updated without requiring a new CMAC 128 .
  • Electronic device 110 may also execute merchant app 124 , which may be provided for interaction with a merchant.
  • System 100 may further include browser 116 .
  • Browser 116 may be a full browser or a mobile browser, and may be executed by a mobile electronic device (e.g., smartphone, tablet computer, etc.), an Internet of Things appliance, a desktop computer, a notebook computer, etc.
  • a user may use browser 116 to interact with aggregating wallet backend 170 to identify a good or service for purchase.
  • the user may authenticate within browser 116 using a lightbox, by entering credentials (e.g., username and password), biometrics, etc.
  • System 100 may further include wallet services 130 .
  • wallet services may be provided by the financial institution that controls or manages the electronic wallet and/or payment application.
  • Wallet services 130 may be provided with API gateway 132 .
  • aggregating wallet backend 170 may code for API gateway 132 .
  • System 100 may further include one or more payment network 150 , which may include one or more acquirer 152 and one or more issuer 154 .
  • System 100 may further include merchant 140 , which may be a brick-and-mortar merchant, an on-line merchant, etc.
  • merchant 140 may include point of transaction terminal 142 (e.g., a point of sale terminal) and payment host 144 .
  • payment host 144 may comprise the main server that all point of transaction terminals for a merchant to connect with. In one embodiment, this may consolidate all payment processing for acquirer 152 .
  • Aggregating wallet backend 170 may be the backend or host for aggregating wallet app 125 . In one embodiment, aggregating wallet backend 170 may communicate directly with merchant 140 and/or wallet services 130 . Aggregating wallet backend 170 may include API gateway 172 , which a merchant may code to.
  • electronic device 110 , wallet services 130 , one or more payment network 150 , browser 116 , and aggregating wallet backend 170 may communicate over one or more communication network(s) 190 .
  • Communication networks 190 may include any suitable communication network, including for example, WiFi, cellular, satellite, etc.
  • System 100 may further include cryptogram source 160 .
  • cryptogram source 160 may be a payment network association (e.g., VISA), a third party token provider (e.g., The Clearing House Payments Company, L.L.C. (TCH)), the issuer or financial institution, etc. Any suitable cryptogram source may be used as is necessary and/or desired.
  • the cryptogram may be a token authentication verification value (“TAVV”), Dynamic Token Verification Value (DTVV), etc.
  • TAVV token authentication verification value
  • DTVV Dynamic Token Verification Value
  • the payment app may provide token information and SUA data to the wallet, and the wallet provider and/or the wallet may determine the one or more credentials to provide to the merchant.
  • a customer may make a purchase while using, for example, an aggregating wallet app, a browser at the aggregating wallet's website, etc., and may elect to pay with an electronic wallet hosted by a financial institution, such as ChasePay.
  • a financial institution such as ChasePay.
  • the transaction may be with an online merchant, a brick and mortar merchant, etc.
  • the aggregating wallet provider may initiate payment with the financial institution's electronic wallet using a value or identifier.
  • the aggregating wallet may use a SDK and CMAC, a browser light box, or an API gateway to initiate a customer-specific “session” with the wallet.
  • References to the customer's accounts associated with the value may be returned to the wallet based on the identifier to allow the user to select the account to use for the transaction.
  • the user may be authenticated to the aggregating wallet and/or the financial institution wallet. For example, when the aggregating wallet is using a payment application light box, the user may enter a Username and password for every checkout.
  • the value (e.g., the CMAC) may be provided as a one-time event before a checkout. The value may then be used to authenticate for each checkout. The user only enters a username/password or fingerprint once in order to have the value issued and stored on the user's mobile electronic device
  • an OAUTH Refresh token may be provided as a one-time event before a checkout.
  • the OAUTH token may then be used to authenticate for each checkout.
  • the user only enters a username/password or fingerprint once in order to have the OAUTH token issued.
  • the OAUTH token may be stored on the aggregating wallet backend.
  • the authentication with the aggregating wallet may vary based on the aggregating wallet.
  • the aggregating wallet may require a username and password, a biometric, etc.
  • the two authentications may be separate.
  • the aggregating wallet authentication may be considered to be a first line of defense, while the financial institution wallet authentication may be considered to be a second line of defense.
  • step 215 using the financial institution's electronic wallet, the customer may identify or select the payment account to use for the transaction.
  • the API may update the aggregating wallet's app and/or with the user's payment account selection.
  • a cryptogram for the account may be created.
  • the cryptogram may be created by the payment network association (e.g., VISA).
  • a third party token provider e.g., The Clearing House Payments Company, L.L.C. (TCH)
  • TCH Clearing House Payments Company
  • issuer or financial institution may provide the cryptogram. Any other suitable source of a cryptogram may be used as is necessary and/or desired.
  • a dynamic CVV (dCVV) that may be based on the cryptogram may be provided with the token instead of, or in addition to, the cryptogram.
  • the dCVV may be a hash of the cryptogram.
  • a token may be passed with an expiration date and the dCVV to the merchant for processing.
  • the issuer receives the transaction, the dCVV can be validated by hashing the cryptogram.
  • the dCVV may be used with the financial institution's electronic wallet or with a third party wallet.
  • a SUA may be generated.
  • the SUA may include an account number (e.g., a 16 digit account number), a CVV (e.g., CVV2), and an expiration date.
  • the SUA may be created by the association, by the financial institution, etc.
  • the SUA may be a unique account number. In another embodiment, the SUA may be used more than once, and the CVV and/or expiration date may vary. In one embodiment, the combination of the account number, the CVV, and the expiration date may be unique.
  • restrictions may be associated with the use of the token, cryptogram, or SUA.
  • the token, cryptogram, or SUA may have an expiration time (e.g., it expires after 1 hour), a merchant restriction (e.g., it can only be used with the merchant it is being generated for the transaction with), a geographical restriction, etc. Any other restrictions may be used as is necessary and/or desired.
  • the financial institution and/or the payment association may maintain a mapping of the token to the SUA.
  • a third party may maintain the mapping as well.
  • an “internal” token that may be generated and/or assigned by the financial institution may be used.
  • an internal token may be associated with an account or token, but may not be the actual account number.
  • the internal token may be provided, along with an expiration date and a CVV (which may be the dCVV) to the merchant for processing.
  • the token, cryptogram, or dCVV may be cached along with an assigned SUA to the financial institution's wallet service.
  • the consumer interactions that use the consumer's mobile device or browser may be separated from the backend interactions that are server-to-server trusted connections.
  • the financial institution's wallet services may only transfer the most valuable data (the payment data) over a private connection, while only a low value session id may be passed to the customer's electronic device.
  • the session id for the session may be sent to the aggregating wallet backend, and in step 240 , the session id may be used by the aggregating wallet backend to retrieve token information, the cryptogram, the SUA, dCVV data, and/or any other information as necessary and/or desired.
  • the aggregating wallet backend may determine which credential(s) to send to the merchant based on the merchant capabilities. In one embodiment, this determination may be based on the relationship between the wallet provider and the merchant, known information about the merchant's credential capabilities, machine learning, the identification of the merchant from the location of the mobile device, etc.
  • information about the merchant may be maintained in a database, and the appropriate credential(s) may be provided.
  • the wallet may transmit the credential(s) based on a prior transaction between the financial institution's electronic wallet and the merchant, the aggregating wallet backend and the merchant, a third party electronic wallet and the merchant, etc.
  • the merchant may be identified based on the location of the mobile device (e.g., GPS), and by consulting a database of merchants in that geographical area.
  • the aggregating wallet backend may provide all credentials (e.g., SUA, cryptogram, dCVV, etc.) to the merchant, and the merchant may select the credential that it supports.
  • the merchant point of transaction may communicate the credential that was used to the wallet.
  • step 250 the transaction may be executed either with the appropriate credential over the payment network.
  • business as usual network tokenization may be used with a trusted acquirer (e.g., an internal acquirer, a partner acquirer, etc.) to process a payment.
  • the token may be passed with an expiration date and, for example, a dCVV to the merchant.
  • the acquirer may then contact the issuer to retrieve the full cryptogram for the token. This may include providing the dCVV to the issuer so that he issuer can validate the dCVV before providing the full cryptogram.
  • the transaction may then proceed as a business as usual tokenized transaction.
  • the system of the invention or portions of the system of the invention may be in the form of a “processing machine,” such as a general purpose computer, for example.
  • processing machine is to be understood to include at least one processor that uses at least one memory.
  • the at least one memory stores a set of instructions.
  • the instructions may be either permanently or temporarily stored in the memory or memories of the processing machine.
  • the processor executes the instructions that are stored in the memory or memories in order to process data.
  • the set of instructions may include various instructions that perform a particular task or tasks, such as those tasks described above. Such a set of instructions for performing a particular task may be characterized as a program, software program, or simply software.
  • the processing machine may be a specialized processor.
  • the processing machine executes the instructions that are stored in the memory or memories to process data.
  • This processing of data may be in response to commands by a user or users of the processing machine, in response to previous processing, in response to a request by another processing machine and/or any other input, for example.
  • the processing machine used to implement the invention may be a general purpose computer.
  • the processing machine described above may also utilize any of a wide variety of other technologies including a special purpose computer, a computer system including, for example, a microcomputer, mini-computer or mainframe, a programmed microprocessor, a micro-controller, a peripheral integrated circuit element, a CSIC (Customer Specific Integrated Circuit) or ASIC (Application Specific Integrated Circuit) or other integrated circuit, a logic circuit, a digital signal processor, a programmable logic device such as a FPGA, PLD, PLA or PAL, or any other device or arrangement of devices that is capable of implementing the steps of the processes of the invention.
  • the processing machine used to implement the invention may utilize a suitable operating system.
  • embodiments of the invention may include a processing machine running the iOS operating system, the OS X operating system, the Android operating system, the Microsoft WindowsTM operating systems, the Unix operating system, the Linux operating system, the Xenix operating system, the IBM AIXTM operating system, the Hewlett-Packard UXTM operating system, the Novell NetwareTM operating system, the Sun Microsystems SolarisTM operating system, the OS/2TM operating system, the BeOSTM operating system, the Macintosh operating system, the Apache operating system, an OpenStepTM operating system or another operating system or platform.
  • each of the processors and/or the memories of the processing machine may be located in geographically distinct locations and connected so as to communicate in any suitable manner.
  • each of the processor and/or the memory may be composed of different physical pieces of equipment. Accordingly, it is not necessary that the processor be one single piece of equipment in one location and that the memory be another single piece of equipment in another location. That is, it is contemplated that the processor may be two pieces of equipment in two different physical locations. The two distinct pieces of equipment may be connected in any suitable manner. Additionally, the memory may include two or more portions of memory in two or more physical locations.
  • processing is performed by various components and various memories.
  • the processing performed by two distinct components as described above may, in accordance with a further embodiment of the invention, be performed by a single component.
  • the processing performed by one distinct component as described above may be performed by two distinct components.
  • the memory storage performed by two distinct memory portions as described above may, in accordance with a further embodiment of the invention, be performed by a single memory portion.
  • the memory storage performed by one distinct memory portion as described above may be performed by two memory portions.
  • various technologies may be used to provide communication between the various processors and/or memories, as well as to allow the processors and/or the memories of the invention to communicate with any other entity; i.e., so as to obtain further instructions or to access and use remote memory stores, for example.
  • Such technologies used to provide such communication might include a network, the Internet, Intranet, Extranet, LAN, an Ethernet, wireless communication via cell tower or satellite, or any client server system that provides communication, for example.
  • Such communications technologies may use any suitable protocol such as TCP/IP, UDP, or OSI, for example.
  • a set of instructions may be used in the processing of the invention.
  • the set of instructions may be in the form of a program or software.
  • the software may be in the form of system software or application software, for example.
  • the software might also be in the form of a collection of separate programs, a program module within a larger program, or a portion of a program module, for example.
  • the software used might also include modular programming in the form of object oriented programming. The software tells the processing machine what to do with the data being processed.
  • the instructions or set of instructions used in the implementation and operation of the invention may be in a suitable form such that the processing machine may read the instructions.
  • the instructions that form a program may be in the form of a suitable programming language, which is converted to machine language or object code to allow the processor or processors to read the instructions. That is, written lines of programming code or source code, in a particular programming language, are converted to machine language using a compiler, assembler or interpreter.
  • the machine language is binary coded machine instructions that are specific to a particular type of processing machine, i.e., to a particular type of computer, for example. The computer understands the machine language.
  • any suitable programming language may be used in accordance with the various embodiments of the invention.
  • the programming language used may include assembly language, Ada, APL, Basic, C, C++, COBOL, dBase, Forth, Fortran, Java, Modula-2, Pascal, Prolog, REXX, Visual Basic, and/or JavaScript, for example.
  • assembly language Ada
  • APL APL
  • Basic Basic
  • C C
  • C++ C++
  • COBOL COBOL
  • dBase Forth
  • Fortran Fortran
  • Java Modula-2
  • Pascal Pascal
  • Prolog Prolog
  • REXX REXX
  • Visual Basic Visual Basic
  • JavaScript JavaScript
  • instructions and/or data used in the practice of the invention may utilize any compression or encryption technique or algorithm, as may be desired.
  • An encryption module might be used to encrypt data.
  • files or other data may be decrypted using a suitable decryption module, for example.
  • the invention may illustratively be embodied in the form of a processing machine, including a computer or computer system, for example, that includes at least one memory.
  • the set of instructions i.e., the software for example, that enables the computer operating system to perform the operations described above may be contained on any of a wide variety of media or medium, as desired.
  • the data that is processed by the set of instructions might also be contained on any of a wide variety of media or medium. That is, the particular medium, i.e., the memory in the processing machine, utilized to hold the set of instructions and/or the data used in the invention may take on any of a variety of physical forms or transmissions, for example.
  • the medium may be in the form of paper, paper transparencies, a compact disk, a DVD, an integrated circuit, a hard disk, a floppy disk, an optical disk, a magnetic tape, a RAM, a ROM, a PROM, an EPROM, a wire, a cable, a fiber, a communications channel, a satellite transmission, a memory card, a SIM card, or other remote transmission, as well as any other medium or source of data that may be read by the processors of the invention.
  • the memory or memories used in the processing machine that implements the invention may be in any of a wide variety of forms to allow the memory to hold instructions, data, or other information, as is desired.
  • the memory might be in the form of a database to hold data.
  • the database might use any desired arrangement of files such as a flat file arrangement or a relational database arrangement, for example.
  • a user interface includes any hardware, software, or combination of hardware and software used by the processing machine that allows a user to interact with the processing machine.
  • a user interface may be in the form of a dialogue screen for example.
  • a user interface may also include any of a mouse, touch screen, keyboard, keypad, voice reader, voice recognizer, dialogue screen, menu box, list, checkbox, toggle switch, a pushbutton or any other device that allows a user to receive information regarding the operation of the processing machine as it processes a set of instructions and/or provides the processing machine with information.
  • the user interface is any device that provides communication between a user and a processing machine.
  • the information provided by the user to the processing machine through the user interface may be in the form of a command, a selection of data, or some other input, for example.
  • a user interface is utilized by the processing machine that performs a set of instructions such that the processing machine processes data for a user.
  • the user interface is typically used by the processing machine for interacting with a user either to convey information or receive information from the user.
  • the user interface of the invention might interact, i.e., convey and receive information, with another processing machine, rather than a human user. Accordingly, the other processing machine might be characterized as a user.
  • a user interface utilized in the system and method of the invention may interact partially with another processing machine or processing machines, while also interacting partially with a human user.

Landscapes

  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Engineering & Computer Science (AREA)
  • Strategic Management (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Finance (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Computer Security & Cryptography (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

System and methods for supporting legacy and tokenized transactions are disclosed. According to one embodiment, in an information processing device comprising at least one computer processor, a method for selecting an electronic payment credential to communicate to a merchant, may include (1) an electronic wallet backend receiving a plurality of payment credentials associated with a payment account; (2) the electronic wallet backend receiving a credential capability for a merchant; (3) the electronic wallet backend selecting one of the payment credentials for a transaction with the merchant based on the credential capability; and (4) the electronic wallet backend communicating the selected payment credential to a point of transaction device for the merchant.

Description

    RELATED APPLICATIONS
  • This application claims priority to U.S. Provisional Patent Application Ser. No. 62/472,174, filed Mar. 16, 2017, the disclosure of which is hereby incorporated, by reference, in its entirety.
    • BACKGROUND OF THE INVENTION 1. Field of the Invention
  • The present disclosure generally relates to systems and methods for supporting legacy and tokenized transactions.
    • 2. Description of the Related Art
  • To conduct a transaction, e-commerce aggregating wallet providers need to provide credentials to their merchants. Most ecommerce aggregating wallets and most merchants, however, do not support card on file tokenization. This means that existing token infrastructures will not function.
    • SUMMARY OF THE INVENTION
  • System and methods for supporting legacy and tokenized transactions are disclosed. According to one embodiment, in an information processing device comprising at least one computer processor, a method for selecting an electronic payment credential to communicate to a merchant, may include (1) an electronic wallet backend receiving a plurality of payment credentials associated with a payment account; (2) the electronic wallet backend receiving a credential capability for a merchant; (3) the electronic wallet backend selecting one of the payment credentials for a transaction with the merchant based on the credential capability; and (4) the electronic wallet backend communicating the selected payment credential to a point of transaction device for the merchant.
  • In one embodiment, the electronic wallet backend may be an aggregating wallet backend.
  • In one embodiment, one of the plurality of payment credentials may be a single use account number for the payment account. The single use account number may be received from a financial institution associated with the payment account.
  • In one embodiment, one of the plurality of payment credentials may be a cryptogram for the payment account.
  • In one embodiment, the method may further include receiving a dynamic card validation value.
  • In one embodiment, the electronic wallet backend may receive the credential capability for the merchant based on a location of the information processing apparatus.
  • In one embodiment, the electronic wallet backend may receive the credential capability for the merchant from a database of merchant credential capabilities.
  • In one embodiment, the method may further include the electronic wallet backend receiving a selection of the payment account from a mobile payment computer application executed a mobile electronic device.
  • In one embodiment, the payment credential may be associated with at least one restriction.
  • In one embodiment, the electronic wallet backend may select at least a subset of the plurality of the payment credentials and communicates the subset of the plurality of the payment credentials to the merchant.
  • According to another embodiment, a method for selecting an electronic payment credential to communicate to a merchant may include: (1) a mobile electronic application for an aggregating wallet provider executed by a mobile electronic device initiating a transaction with a merchant; (2) the mobile electronic wallet application receiving an account selection from a mobile payment application executed by the mobile electronic device; (3) the mobile electronic wallet application for the aggregating wallet provider communicating a session id to an electronic wallet backend for the aggregating wallet provider; (4) the electronic wallet backend for the aggregating wallet provider receiving a plurality of payment credentials from a financial institution using the session id; (5) the electronic wallet backend for the aggregating wallet provider receiving a credential capability for the merchant; (6) the electronic wallet backend for the aggregating wallet provider selecting one of the payment credentials for the transaction with the merchant based on the credential capability; and (7) the electronic wallet backend for the aggregating wallet provider communicating the selected payment credential to a point of transaction device for the merchant.
  • In one embodiment, one of the plurality of payment credentials may be a single use account number for the payment account, and the electronic wallet backend for the aggregating wallet provider receives the single use account number from a financial institution associated with the payment account.
  • In one embodiment, one of the plurality of payment credentials may be a cryptogram for the payment account.
  • In one embodiment, the method may further include the electronic wallet backend for the aggregating wallet provider receiving a dynamic card validation value.
  • In one embodiment, the electronic wallet backend for the aggregating wallet provider may receive the credential capability for the merchant based on a location of the information processing apparatus.
  • In one embodiment, the method may further include the electronic wallet backend for the aggregating wallet provider receives the credential capability for the merchant from a database of merchant credential capabilities.
  • In one embodiment, the method may further include the electronic wallet backend for the aggregating wallet provider receiving a selection of the payment account from a mobile payment computer application executed a mobile electronic device.
  • In one embodiment, the payment credential may be associated with at least one restriction.
  • In one embodiment, the electronic wallet backend for the aggregating wallet provider may provide a plurality of the payment credentials to the merchant.
    • BRIEF DESCRIPTION OF THE DRAWINGS
  • For a more complete understanding of the present invention, the objects and advantages thereof, reference is now made to the following descriptions taken in connection with the accompanying drawings in which:
  • FIG. 1 depicts a system for supporting legacy and tokenized transactions according to one embodiment; and
  • FIG. 2 depicts a method for supporting legacy and tokenized transactions according to one embodiment.
    •  DETAILED DESCRIPTION OF PREFERRED EMBODIMENTS
  • Systems and methods for supporting legacy and tokenized e-commerce are disclosed.
  • According to embodiments, ecommerce aggregating wallet providers may be provided with both tokenized and single use account (SUA) credentials, and may pass the appropriate credential(s), and other information, to the merchant in order to conduct the transaction. In one embodiment, the wallet provider may determine which credential(s) to provide to the merchant based on, for example, the wallet provider's relationship with the merchant, the type of payment the wallet provider knows that the merchant can process, etc. As the networks enable tokenized credentials to work fully with ecommerce merchants, issuers and wallet providers may migrate to tokenized credentials with minimal, if any, customer impact.
  • In another embodiment, the wallet provider may request a token or the SUA from the issuer based on the needs of the merchant.
  • In one embodiment, the wallet may provide one or more levels of credentials to the merchant's point of transaction (e.g., a point of sale device) to conduct a transaction. For example, in one embodiment, the wallet may provide the SUA to the merchant. In another embodiment, the wallet may provide a cryptogram to the merchant. In still another embodiment, the wallet may provide a cryptogram and additional information (e.g., a dynamic card validation value, or “dCVV”). In another embodiment, the wallet may provide the dCVV without the cryptogram. The wallet may select the credentials to provide the merchant based on, for example, the registered information for the merchant (e.g., what credentials the merchant is registered to accept), machine learning (e.g., past experience with the merchant), mobile device/merchant location (e.g., retrieving merchant credential capabilities based on the location of the user's mobile device), etc. Alternatively, the wallet may provide multiple credentials to the merchant, and the merchant (e.g., the merchant's point of transaction device) may decide which credential to use.
  • Referring to FIG. 1, a system for supporting legacy and tokenized e-commerce is disclosed according to one embodiment. System 100 may include consumer electronic device 110, which may be any suitable electronic device including one or more processor 112, memory 114, an input/output (not shown), and a network interface (not shown). Examples include smartphones, tablet computers, notebook computers, desktop computers, workstations, Internet of Things (IoT) appliances, etc.
  • Electronic device 110 may execute application (“app”) or program 122 for a financial institution, or may access a financial institution website (e.g., a mobile website) via a mobile browser (not shown), etc. In one embodiment, financial institution app 122 may be a payment application (e.g., ChasePay).
  • Electronic device 110 may also execute aggregating wallet application 125, which may be, for example, a third party shopping app, a third party payment app, or any app in which a user may make a purchase. An example of aggregating wallet app is Facebook.
  • In one embodiment, aggregating wallet app 125 may be provided with software development kit (SDK) 126 for the financial institution. In one embodiment, an identifier, such as Consumer Merchant Authentication Code, or “CMAC” 128 may also be provided. CMAC 128 may be stored in one or more locations on electronic device 110. The location may depend on the manufacturer of electronic device 110, the operating system, etc. For example, CMAC 128 may be stored in a “key ring” or “key vault” on the device, in secure storage on electronic device 110 (e.g., the secure element on an iPhone), within aggregating wallet app 124, within SDK 126, etc. Other storage locations may be used as is necessary and/or desired.
  • In one embodiment, by storing CMAC 128 in a location other than aggregating wallet app 125 or SDK 126, aggregating wallet app 125 may be updated without requiring a new CMAC 128.
  • Exemplary implementations and uses of CMACs are disclosed in U.S. patent application Ser. No. 15/612,167 and 62/345,390. The disclosures of these documents are hereby incorporated by reference in their entireties.
  • Electronic device 110 may also execute merchant app 124, which may be provided for interaction with a merchant.
  • System 100 may further include browser 116. Browser 116 may be a full browser or a mobile browser, and may be executed by a mobile electronic device (e.g., smartphone, tablet computer, etc.), an Internet of Things appliance, a desktop computer, a notebook computer, etc. In one embodiment, a user may use browser 116 to interact with aggregating wallet backend 170 to identify a good or service for purchase.
  • In one embodiment, the user may authenticate within browser 116 using a lightbox, by entering credentials (e.g., username and password), biometrics, etc.
  • System 100 may further include wallet services 130. In one embodiment, wallet services may be provided by the financial institution that controls or manages the electronic wallet and/or payment application. Wallet services 130 may be provided with API gateway 132. In one embodiment, aggregating wallet backend 170 may code for API gateway 132.
  • System 100 may further include one or more payment network 150, which may include one or more acquirer 152 and one or more issuer 154.
  • System 100 may further include merchant 140, which may be a brick-and-mortar merchant, an on-line merchant, etc. In one embodiment, merchant 140 may include point of transaction terminal 142 (e.g., a point of sale terminal) and payment host 144. In one embodiment, payment host 144 may comprise the main server that all point of transaction terminals for a merchant to connect with. In one embodiment, this may consolidate all payment processing for acquirer 152.
  • Aggregating wallet backend 170 may be the backend or host for aggregating wallet app 125. In one embodiment, aggregating wallet backend 170 may communicate directly with merchant 140 and/or wallet services 130. Aggregating wallet backend 170 may include API gateway 172, which a merchant may code to.
  • In one embodiment, electronic device 110, wallet services 130, one or more payment network 150, browser 116, and aggregating wallet backend 170 may communicate over one or more communication network(s) 190. Communication networks 190 may include any suitable communication network, including for example, WiFi, cellular, satellite, etc.
  • System 100 may further include cryptogram source 160. In one embodiment, cryptogram source 160 may be a payment network association (e.g., VISA), a third party token provider (e.g., The Clearing House Payments Company, L.L.C. (TCH)), the issuer or financial institution, etc. Any suitable cryptogram source may be used as is necessary and/or desired.
  • In one embodiment, the cryptogram may be a token authentication verification value (“TAVV”), Dynamic Token Verification Value (DTVV), etc.
  • Referring to FIG. 2, a multi-credential checkout process is disclosed according to one embodiment. In general, in one embodiment, the payment app (e.g., ChasePay) may provide token information and SUA data to the wallet, and the wallet provider and/or the wallet may determine the one or more credentials to provide to the merchant.
  • In one embodiment, in step 205, a customer may make a purchase while using, for example, an aggregating wallet app, a browser at the aggregating wallet's website, etc., and may elect to pay with an electronic wallet hosted by a financial institution, such as ChasePay.
  • In one embodiment, the transaction may be with an online merchant, a brick and mortar merchant, etc.
  • In step 210, the aggregating wallet provider may initiate payment with the financial institution's electronic wallet using a value or identifier. For example, the aggregating wallet may use a SDK and CMAC, a browser light box, or an API gateway to initiate a customer-specific “session” with the wallet. References to the customer's accounts associated with the value may be returned to the wallet based on the identifier to allow the user to select the account to use for the transaction.
  • In one embodiment, the user may be authenticated to the aggregating wallet and/or the financial institution wallet. For example, when the aggregating wallet is using a payment application light box, the user may enter a Username and password for every checkout.
  • If the aggregating wallet uses the SDK, then the value (e.g., the CMAC) may be provided as a one-time event before a checkout. The value may then be used to authenticate for each checkout. The user only enters a username/password or fingerprint once in order to have the value issued and stored on the user's mobile electronic device
  • If the aggregating wallet is using a API gateway, an OAUTH Refresh token may be provided as a one-time event before a checkout. The OAUTH token may then be used to authenticate for each checkout. The user only enters a username/password or fingerprint once in order to have the OAUTH token issued. The OAUTH token may be stored on the aggregating wallet backend.
  • The authentication with the aggregating wallet may vary based on the aggregating wallet. For example, the aggregating wallet may require a username and password, a biometric, etc.
  • In one embodiment, the two authentications—the aggregating wallet authentication and the financial institution wallet authentication—may be separate. For example, the aggregating wallet authentication may be considered to be a first line of defense, while the financial institution wallet authentication may be considered to be a second line of defense.
  • In step 215, using the financial institution's electronic wallet, the customer may identify or select the payment account to use for the transaction. In one embodiment, the API may update the aggregating wallet's app and/or with the user's payment account selection.
  • In step 220, a cryptogram for the account may be created. In one embodiment, the cryptogram may be created by the payment network association (e.g., VISA). In another embodiment, a third party token provider (e.g., The Clearing House Payments Company, L.L.C. (TCH)) may provide the cryptogram. In still another embodiment, the issuer or financial institution may provide the cryptogram. Any other suitable source of a cryptogram may be used as is necessary and/or desired.
  • In one embodiment, a dynamic CVV (dCVV) that may be based on the cryptogram may be provided with the token instead of, or in addition to, the cryptogram. For example, the dCVV may be a hash of the cryptogram. Thus, a token may be passed with an expiration date and the dCVV to the merchant for processing. When the issuer receives the transaction, the dCVV can be validated by hashing the cryptogram.
  • In one embodiment, the dCVV may be used with the financial institution's electronic wallet or with a third party wallet.
  • In step 225, a SUA may be generated. In one embodiment, the SUA may include an account number (e.g., a 16 digit account number), a CVV (e.g., CVV2), and an expiration date. In one embodiment, the SUA may be created by the association, by the financial institution, etc.
  • In one embodiment, the SUA may be a unique account number. In another embodiment, the SUA may be used more than once, and the CVV and/or expiration date may vary. In one embodiment, the combination of the account number, the CVV, and the expiration date may be unique.
  • In one embodiment, restrictions may be associated with the use of the token, cryptogram, or SUA. For example, the token, cryptogram, or SUA may have an expiration time (e.g., it expires after 1 hour), a merchant restriction (e.g., it can only be used with the merchant it is being generated for the transaction with), a geographical restriction, etc. Any other restrictions may be used as is necessary and/or desired.
  • In one embodiment, the financial institution and/or the payment association may maintain a mapping of the token to the SUA. In one embodiment, a third party may maintain the mapping as well.
  • In another embodiment, an “internal” token that may be generated and/or assigned by the financial institution may be used. For example, an internal token may be associated with an account or token, but may not be the actual account number. The internal token may be provided, along with an expiration date and a CVV (which may be the dCVV) to the merchant for processing.
  • In step 230, the token, cryptogram, or dCVV may be cached along with an assigned SUA to the financial institution's wallet service. For example, the consumer interactions that use the consumer's mobile device or browser may be separated from the backend interactions that are server-to-server trusted connections. Thus, the financial institution's wallet services may only transfer the most valuable data (the payment data) over a private connection, while only a low value session id may be passed to the customer's electronic device.
  • In step 235, the session id for the session may be sent to the aggregating wallet backend, and in step 240, the session id may be used by the aggregating wallet backend to retrieve token information, the cryptogram, the SUA, dCVV data, and/or any other information as necessary and/or desired.
  • In step 245, the aggregating wallet backend may determine which credential(s) to send to the merchant based on the merchant capabilities. In one embodiment, this determination may be based on the relationship between the wallet provider and the merchant, known information about the merchant's credential capabilities, machine learning, the identification of the merchant from the location of the mobile device, etc.
  • For example, in one embodiment, information about the merchant may be maintained in a database, and the appropriate credential(s) may be provided. In another embodiment, the wallet may transmit the credential(s) based on a prior transaction between the financial institution's electronic wallet and the merchant, the aggregating wallet backend and the merchant, a third party electronic wallet and the merchant, etc.
  • In one embodiment, the merchant may be identified based on the location of the mobile device (e.g., GPS), and by consulting a database of merchants in that geographical area.
  • In one embodiment, the aggregating wallet backend may provide all credentials (e.g., SUA, cryptogram, dCVV, etc.) to the merchant, and the merchant may select the credential that it supports. In one embodiment, the merchant point of transaction may communicate the credential that was used to the wallet.
  • In step 250, the transaction may be executed either with the appropriate credential over the payment network.
  • In another embodiment, business as usual network tokenization may be used with a trusted acquirer (e.g., an internal acquirer, a partner acquirer, etc.) to process a payment. In one embodiment, the token may be passed with an expiration date and, for example, a dCVV to the merchant. The acquirer may then contact the issuer to retrieve the full cryptogram for the token. This may include providing the dCVV to the issuer so that he issuer can validate the dCVV before providing the full cryptogram. The transaction may then proceed as a business as usual tokenized transaction.
  • The following documents are hereby incorporated, by reference, in their entireties: U.S. patent application Ser. No. 15/362,019; U.S. patent application Ser. No. 15/069,418; U.S. patent application Ser. No. 14/699,511, U.S. Provisional Patent Application Ser. No. 62/148,493; U.S. Provisional Patent Application Ser. No. 62/107,800; U.S. Provisional Patent Application Ser. No. 62/037,891; U.S. patent application Ser. No. 15/069,458; U.S. patent application Ser. No. 15/088,437; U.S. patent application Ser. No. 15/158,720; U.S. patent application Ser. No. 15/345,942; U.S. Provisional Patent Application Ser. No. 62/331,564, U.S. patent application Ser. No. 15/131,979, U.S. Provisional Patent Application Ser. No. 62/312,204, U.S. Provisional Patent Application Ser. No. 62/345,390; U.S. Provisional Patent Application Ser. No. 62/331,564, U.S. Provisional Patent Application Ser. No. 62/465,683; and U.S. Provisional Patent Application Ser. No. 62/469,135, the disclosures of which are hereby incorporated, by reference, in their entireties.
  • Hereinafter, general aspects of implementation of the systems and methods of the invention will be described.
  • The system of the invention or portions of the system of the invention may be in the form of a “processing machine,” such as a general purpose computer, for example. As used herein, the term “processing machine” is to be understood to include at least one processor that uses at least one memory. The at least one memory stores a set of instructions. The instructions may be either permanently or temporarily stored in the memory or memories of the processing machine. The processor executes the instructions that are stored in the memory or memories in order to process data. The set of instructions may include various instructions that perform a particular task or tasks, such as those tasks described above. Such a set of instructions for performing a particular task may be characterized as a program, software program, or simply software.
  • In one embodiment, the processing machine may be a specialized processor.
  • As noted above, the processing machine executes the instructions that are stored in the memory or memories to process data. This processing of data may be in response to commands by a user or users of the processing machine, in response to previous processing, in response to a request by another processing machine and/or any other input, for example.
  • As noted above, the processing machine used to implement the invention may be a general purpose computer. However, the processing machine described above may also utilize any of a wide variety of other technologies including a special purpose computer, a computer system including, for example, a microcomputer, mini-computer or mainframe, a programmed microprocessor, a micro-controller, a peripheral integrated circuit element, a CSIC (Customer Specific Integrated Circuit) or ASIC (Application Specific Integrated Circuit) or other integrated circuit, a logic circuit, a digital signal processor, a programmable logic device such as a FPGA, PLD, PLA or PAL, or any other device or arrangement of devices that is capable of implementing the steps of the processes of the invention.
  • The processing machine used to implement the invention may utilize a suitable operating system. Thus, embodiments of the invention may include a processing machine running the iOS operating system, the OS X operating system, the Android operating system, the Microsoft Windows™ operating systems, the Unix operating system, the Linux operating system, the Xenix operating system, the IBM AIX™ operating system, the Hewlett-Packard UX™ operating system, the Novell Netware™ operating system, the Sun Microsystems Solaris™ operating system, the OS/2™ operating system, the BeOS™ operating system, the Macintosh operating system, the Apache operating system, an OpenStep™ operating system or another operating system or platform.
  • It is appreciated that in order to practice the method of the invention as described above, it is not necessary that the processors and/or the memories of the processing machine be physically located in the same geographical place. That is, each of the processors and the memories used by the processing machine may be located in geographically distinct locations and connected so as to communicate in any suitable manner. Additionally, it is appreciated that each of the processor and/or the memory may be composed of different physical pieces of equipment. Accordingly, it is not necessary that the processor be one single piece of equipment in one location and that the memory be another single piece of equipment in another location. That is, it is contemplated that the processor may be two pieces of equipment in two different physical locations. The two distinct pieces of equipment may be connected in any suitable manner. Additionally, the memory may include two or more portions of memory in two or more physical locations.
  • To explain further, processing, as described above, is performed by various components and various memories. However, it is appreciated that the processing performed by two distinct components as described above may, in accordance with a further embodiment of the invention, be performed by a single component. Further, the processing performed by one distinct component as described above may be performed by two distinct components. In a similar manner, the memory storage performed by two distinct memory portions as described above may, in accordance with a further embodiment of the invention, be performed by a single memory portion. Further, the memory storage performed by one distinct memory portion as described above may be performed by two memory portions.
  • Further, various technologies may be used to provide communication between the various processors and/or memories, as well as to allow the processors and/or the memories of the invention to communicate with any other entity; i.e., so as to obtain further instructions or to access and use remote memory stores, for example. Such technologies used to provide such communication might include a network, the Internet, Intranet, Extranet, LAN, an Ethernet, wireless communication via cell tower or satellite, or any client server system that provides communication, for example. Such communications technologies may use any suitable protocol such as TCP/IP, UDP, or OSI, for example.
  • As described above, a set of instructions may be used in the processing of the invention. The set of instructions may be in the form of a program or software. The software may be in the form of system software or application software, for example. The software might also be in the form of a collection of separate programs, a program module within a larger program, or a portion of a program module, for example. The software used might also include modular programming in the form of object oriented programming. The software tells the processing machine what to do with the data being processed.
  • Further, it is appreciated that the instructions or set of instructions used in the implementation and operation of the invention may be in a suitable form such that the processing machine may read the instructions. For example, the instructions that form a program may be in the form of a suitable programming language, which is converted to machine language or object code to allow the processor or processors to read the instructions. That is, written lines of programming code or source code, in a particular programming language, are converted to machine language using a compiler, assembler or interpreter. The machine language is binary coded machine instructions that are specific to a particular type of processing machine, i.e., to a particular type of computer, for example. The computer understands the machine language.
  • Any suitable programming language may be used in accordance with the various embodiments of the invention. Illustratively, the programming language used may include assembly language, Ada, APL, Basic, C, C++, COBOL, dBase, Forth, Fortran, Java, Modula-2, Pascal, Prolog, REXX, Visual Basic, and/or JavaScript, for example. Further, it is not necessary that a single type of instruction or single programming language be utilized in conjunction with the operation of the system and method of the invention. Rather, any number of different programming languages may be utilized as is necessary and/or desirable.
  • Also, the instructions and/or data used in the practice of the invention may utilize any compression or encryption technique or algorithm, as may be desired. An encryption module might be used to encrypt data. Further, files or other data may be decrypted using a suitable decryption module, for example.
  • As described above, the invention may illustratively be embodied in the form of a processing machine, including a computer or computer system, for example, that includes at least one memory. It is to be appreciated that the set of instructions, i.e., the software for example, that enables the computer operating system to perform the operations described above may be contained on any of a wide variety of media or medium, as desired. Further, the data that is processed by the set of instructions might also be contained on any of a wide variety of media or medium. That is, the particular medium, i.e., the memory in the processing machine, utilized to hold the set of instructions and/or the data used in the invention may take on any of a variety of physical forms or transmissions, for example. Illustratively, the medium may be in the form of paper, paper transparencies, a compact disk, a DVD, an integrated circuit, a hard disk, a floppy disk, an optical disk, a magnetic tape, a RAM, a ROM, a PROM, an EPROM, a wire, a cable, a fiber, a communications channel, a satellite transmission, a memory card, a SIM card, or other remote transmission, as well as any other medium or source of data that may be read by the processors of the invention.
  • Further, the memory or memories used in the processing machine that implements the invention may be in any of a wide variety of forms to allow the memory to hold instructions, data, or other information, as is desired. Thus, the memory might be in the form of a database to hold data. The database might use any desired arrangement of files such as a flat file arrangement or a relational database arrangement, for example.
  • In the system and method of the invention, a variety of “user interfaces” may be utilized to allow a user to interface with the processing machine or machines that are used to implement the invention. As used herein, a user interface includes any hardware, software, or combination of hardware and software used by the processing machine that allows a user to interact with the processing machine. A user interface may be in the form of a dialogue screen for example. A user interface may also include any of a mouse, touch screen, keyboard, keypad, voice reader, voice recognizer, dialogue screen, menu box, list, checkbox, toggle switch, a pushbutton or any other device that allows a user to receive information regarding the operation of the processing machine as it processes a set of instructions and/or provides the processing machine with information. Accordingly, the user interface is any device that provides communication between a user and a processing machine. The information provided by the user to the processing machine through the user interface may be in the form of a command, a selection of data, or some other input, for example.
  • As discussed above, a user interface is utilized by the processing machine that performs a set of instructions such that the processing machine processes data for a user. The user interface is typically used by the processing machine for interacting with a user either to convey information or receive information from the user. However, it should be appreciated that in accordance with some embodiments of the system and method of the invention, it is not necessary that a human user actually interact with a user interface used by the processing machine of the invention. Rather, it is also contemplated that the user interface of the invention might interact, i.e., convey and receive information, with another processing machine, rather than a human user. Accordingly, the other processing machine might be characterized as a user. Further, it is contemplated that a user interface utilized in the system and method of the invention may interact partially with another processing machine or processing machines, while also interacting partially with a human user.
  • It will be readily understood by those persons skilled in the art that the present invention is susceptible to broad utility and application. Many embodiments and adaptations of the present invention other than those herein described, as well as many variations, modifications and equivalent arrangements, will be apparent from or reasonably suggested by the present invention and foregoing description thereof, without departing from the substance or scope of the invention.
  • Accordingly, while the present invention has been described here in detail in relation to its exemplary embodiments, it is to be understood that this disclosure is only illustrative and exemplary of the present invention and is made to provide an enabling disclosure of the invention. Accordingly, the foregoing disclosure is not intended to be construed or to limit the present invention or otherwise to exclude any other such embodiments, adaptations, variations, modifications or equivalent arrangements.

Claims (20)

What is claimed is:
1. A method for selecting an electronic payment credential to communicate to a merchant, comprising:
in an information processing apparatus comprising a computer processor:
an electronic wallet backend receiving a plurality of payment credentials associated with a payment account;
the electronic wallet backend receiving a credential capability for a merchant;
the electronic wallet backend selecting one of the payment credentials for a transaction with the merchant based on the credential capability; and
the electronic wallet backend communicating the selected payment credential to a point of transaction device for the merchant.
2. The method of claim 1, wherein the electronic wallet backend is an aggregating wallet backend.
3. The method of claim 1, wherein one of the plurality of payment credentials is a single use account number for the payment account.
4. The method of claim 3, wherein the single use account number is received from a financial institution associated with the payment account.
5. The method of claim 1, wherein one of the plurality of payment credentials is a cryptogram for the payment account.
6. The method of claim 1, wherein the electronic wallet backend receives the credential capability for the merchant based on a location of the information processing apparatus.
7. The method of claim 1, wherein the electronic wallet backend receives the credential capability for the merchant from a database of merchant credential capabilities.
8. The method of claim 1, further comprising:
the electronic wallet backend receiving a selection of the payment account from a mobile payment computer application executed a mobile electronic device.
9. The method of claim 1, wherein the payment credential is associated with at least one restriction.
10. The method of claim 1, wherein the electronic wallet backend selects at least a subset of the plurality of the payment credentials and communicates the subset of the plurality of the payment credentials to the merchant.
11. A method for selecting an electronic payment credential to communicate to a merchant, comprising:
a mobile electronic application for an aggregating wallet provider executed by a mobile electronic device initiating a transaction with a merchant;
the mobile electronic wallet application receiving an account selection from a mobile payment application executed by the mobile electronic device;
the mobile electronic wallet application for the aggregating wallet provider communicating a session id to an electronic wallet backend for the aggregating wallet provider;
the electronic wallet backend for the aggregating wallet provider receiving a plurality of payment credentials from a financial institution using the session id;
the electronic wallet backend for the aggregating wallet provider receiving a credential capability for the merchant;
the electronic wallet backend for the aggregating wallet provider selecting one of the payment credentials for the transaction with the merchant based on the credential capability; and
the electronic wallet backend for the aggregating wallet provider communicating the selected payment credential to a point of transaction device for the merchant.
12. The method of claim 11, wherein one of the plurality of payment credentials is a single use account number for the payment account.
13. The method of claim 12, further comprising:
the electronic wallet backend for the aggregating wallet provider receiving, from a financial institution associated with the payment account, the single use account number.
14. The method of claim 11, wherein one of the plurality of payment credentials is a cryptogram for the payment account.
15. The method of claim 14, further comprising:
the electronic wallet backend for the aggregating wallet provider receiving a dynamic card validation value.
16. The method of claim 11, wherein the electronic wallet backend for the aggregating wallet provider receives the credential capability for the merchant based on a location of the information processing apparatus.
17. The method of claim 11, further comprising a database of merchant credential capabilities, wherein the electronic wallet backend for the aggregating wallet provider receives the credential capability for the merchant from the database of merchant credential capabilities.
18. The method of claim 11, further comprising:
the electronic wallet backend for the aggregating wallet provider receiving a selection of the payment account from a mobile payment computer application executed a mobile electronic device.
19. The method of claim 11, wherein the payment credential is associated with at least one restriction.
20. The method of claim 11, wherein the electronic wallet backend for the aggregating wallet provider provides a plurality of the payment credentials to the merchant.
US15/923,569 2017-03-16 2018-03-16 Systems and methods for supporting legacy and tokenized e-commerce Active 2038-09-15 US11138589B2 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
US15/923,569 US11138589B2 (en) 2017-03-16 2018-03-16 Systems and methods for supporting legacy and tokenized e-commerce
US17/493,829 US11587068B2 (en) 2017-03-16 2021-10-04 Systems and methods for supporting legacy and tokenized e-commerce

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US201762472174P 2017-03-16 2017-03-16
US15/923,569 US11138589B2 (en) 2017-03-16 2018-03-16 Systems and methods for supporting legacy and tokenized e-commerce

Related Child Applications (1)

Application Number Title Priority Date Filing Date
US17/493,829 Continuation US11587068B2 (en) 2017-03-16 2021-10-04 Systems and methods for supporting legacy and tokenized e-commerce

Publications (2)

Publication Number Publication Date
US20180268399A1 true US20180268399A1 (en) 2018-09-20
US11138589B2 US11138589B2 (en) 2021-10-05

Family

ID=63519525

Family Applications (2)

Application Number Title Priority Date Filing Date
US15/923,569 Active 2038-09-15 US11138589B2 (en) 2017-03-16 2018-03-16 Systems and methods for supporting legacy and tokenized e-commerce
US17/493,829 Active US11587068B2 (en) 2017-03-16 2021-10-04 Systems and methods for supporting legacy and tokenized e-commerce

Family Applications After (1)

Application Number Title Priority Date Filing Date
US17/493,829 Active US11587068B2 (en) 2017-03-16 2021-10-04 Systems and methods for supporting legacy and tokenized e-commerce

Country Status (2)

Country Link
US (2) US11138589B2 (en)
WO (1) WO2018170404A1 (en)

Cited By (30)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10361856B2 (en) 2016-06-24 2019-07-23 Visa International Service Association Unique token authentication cryptogram
US20200005278A1 (en) * 2018-06-28 2020-01-02 Jpmorgan Chase Bank, N.A. Systems and methods for linking accounts using an enablement token
US10664844B2 (en) 2015-12-04 2020-05-26 Visa International Service Association Unique code for token verification
US10769628B2 (en) 2014-10-24 2020-09-08 Visa Europe Limited Transaction messaging
US10846683B2 (en) 2009-05-15 2020-11-24 Visa International Service Association Integration of verification tokens with mobile communication devices
US10922686B2 (en) 2005-09-06 2021-02-16 Visa U.S.A. Inc. System and method for secured account numbers in proximity devices
US11068899B2 (en) 2016-06-17 2021-07-20 Visa International Service Association Token aggregation for multi-party transactions
US11068578B2 (en) 2016-06-03 2021-07-20 Visa International Service Association Subtoken management system for connected devices
US20210287188A1 (en) * 2020-03-16 2021-09-16 Jpmorgan Chase Bank, N.A. Systems and methods for managing merchant-stored payment credentials
US20220012701A1 (en) * 2019-07-10 2022-01-13 Jpmorgan Chase Bank, N.A. Systems and methods for facilitating payment service-based checkout with a merchant
US11250424B2 (en) 2016-05-19 2022-02-15 Visa International Service Association Systems and methods for creating subtokens using primary tokens
US11256789B2 (en) 2018-06-18 2022-02-22 Visa International Service Association Recurring token transactions
US11323443B2 (en) 2016-11-28 2022-05-03 Visa International Service Association Access identifier provisioning to application
US11356257B2 (en) 2018-03-07 2022-06-07 Visa International Service Association Secure remote token release with online authentication
US11386421B2 (en) 2016-04-19 2022-07-12 Visa International Service Association Systems and methods for performing push transactions
US11443296B2 (en) * 2019-03-01 2022-09-13 Visa International Service Association Methods and systems for e-commerce payment transactions
US11469895B2 (en) 2018-11-14 2022-10-11 Visa International Service Association Cloud token provisioning of multiple tokens
US11494765B2 (en) 2017-05-11 2022-11-08 Visa International Service Association Secure remote transaction system using mobile devices
SE2150779A1 (en) * 2021-06-17 2022-12-18 Assa Abloy Ab Providing a credential for use with an electronic lock
US11574312B2 (en) 2009-05-15 2023-02-07 Visa International Service Association Secure authentication system and method
US11748743B1 (en) 2017-12-04 2023-09-05 Wells Fargo Bank, N.A. Trust-based application to application connectivity
US11775672B1 (en) * 2017-12-04 2023-10-03 Wells Fargo Bank, N.A. Trust-based application to application connectivity
US11777934B2 (en) 2018-08-22 2023-10-03 Visa International Service Association Method and system for token provisioning and processing
US11849042B2 (en) 2019-05-17 2023-12-19 Visa International Service Association Virtual access credential interaction system and method
US20240005308A1 (en) * 2019-05-08 2024-01-04 Visa International Service Association System and method for a cross-platform key across digital wallet providers
US11989774B1 (en) 2017-11-20 2024-05-21 Wells Fargo Bank, N.A. Systems and methods for providing digital trusted data
US11995633B2 (en) 2012-03-06 2024-05-28 Visa International Service Association Security system incorporating mobile device
US12028337B2 (en) 2018-10-08 2024-07-02 Visa International Service Association Techniques for token proximity transactions
US12141800B2 (en) 2021-02-12 2024-11-12 Visa International Service Association Interaction account tokenization system and method
US12211033B1 (en) 2021-02-23 2025-01-28 Wells Fargo Bank, N.A. Dynamic account status indicator via server-to-device secure data exchange

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20140040100A1 (en) * 2012-08-06 2014-02-06 The Keitz Group LLC Online stock payment system
US20140278965A1 (en) * 2013-03-15 2014-09-18 Capital One Financial Corporation Systems and methods for providing payment options
US20160241402A1 (en) * 2015-02-17 2016-08-18 James Gordon Secure authentication of user and mobile device

Family Cites Families (27)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6636833B1 (en) * 1998-03-25 2003-10-21 Obis Patents Ltd. Credit card system and method
AU2001238300A1 (en) * 2000-02-16 2001-08-27 Mastercard International Incorporated System and method for conducting electronic commerce with a remote wallet server
US8700729B2 (en) * 2005-01-21 2014-04-15 Robin Dua Method and apparatus for managing credentials through a wireless network
US20070051797A1 (en) * 2005-08-22 2007-03-08 Ronald Randolph-Wall Methods and systems for packaging and distributing financial instruments
WO2007047901A2 (en) * 2005-10-18 2007-04-26 Lacy Kolo Credit fraud prevention systems and methods
CN101425894B (en) * 2007-10-30 2012-03-21 阿里巴巴集团控股有限公司 Service implementing system and method
US8346662B2 (en) * 2008-05-16 2013-01-01 Visa U.S.A. Inc. Desktop alert with interactive bona fide dispute initiation through chat session facilitated by desktop application
US20120028609A1 (en) 2010-07-27 2012-02-02 John Hruska Secure financial transaction system using a registered mobile device
US8744974B2 (en) * 2011-03-12 2014-06-03 Mocapay, Inc. Systems and methods for secure wireless payment transactions when a wireless network is unavailable
WO2013155536A1 (en) * 2012-04-13 2013-10-17 Mastercard International Incorporated Systems, methods, and computer readable media for conducting a transaction using cloud based credentials
US9799021B1 (en) * 2013-11-26 2017-10-24 Square, Inc. Tip processing at a point-of-sale system
US10445718B2 (en) * 2013-12-27 2019-10-15 Visa International Service Association Processing a transaction using multiple application identifiers
US10162954B2 (en) * 2014-02-04 2018-12-25 Lenovo (Singapore) Pte. Ltd. Biometric account card
US20220019995A1 (en) * 2014-02-18 2022-01-20 Visa International Service Association Limited-use keys and cryptograms
US9852410B1 (en) * 2014-06-17 2017-12-26 Square, Inc. Dynamically configuring verification information at point-of-sale devices
US10902423B2 (en) * 2014-09-29 2021-01-26 Mastercard International Incorporated Method and apparatus for streamlined digital wallet transactions
TWI703521B (en) * 2014-09-30 2020-09-01 美商蘋果公司 Recommendation of payment credential to be used based on merchant information
US10540648B2 (en) * 2015-04-15 2020-01-21 Mastercard International Incorporated Use of mobile network operator data and/or scores in decision-making on requests for payment credential provisioning for mobile devices
US20160307186A1 (en) 2015-04-20 2016-10-20 Mastercard International Incorporated Verification of contactless payment card for provisioning of payment credentials to mobile device
US10410211B2 (en) * 2015-06-15 2019-09-10 Intel Corporation Virtual POS terminal method and apparatus
AU2016298372B2 (en) * 2015-07-30 2022-01-06 Visa International Service Association System and method for conducting transactions using biometric verification
US11087304B2 (en) 2016-03-14 2021-08-10 Jpmorgan Chase Bank, N.A. Systems and methods for device authentication
US10776785B2 (en) 2016-03-14 2020-09-15 Jpmorgan Chase Bank, N.A. Systems and methods for device authentication
US11321707B2 (en) * 2016-03-22 2022-05-03 Visa International Service Association Adaptable authentication processing
US11055720B2 (en) * 2016-06-29 2021-07-06 Huawei Technologies Co., Lid. Payment verification method and apparatus
CN108604346B (en) * 2016-10-31 2022-05-10 华为技术有限公司 Transaction method, payment equipment, verification equipment and server
US20190362334A1 (en) * 2016-11-21 2019-11-28 Huawei Technologies Co., Ltd. Transaction Method, Payment Device, Check Device, and Server

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20140040100A1 (en) * 2012-08-06 2014-02-06 The Keitz Group LLC Online stock payment system
US20140278965A1 (en) * 2013-03-15 2014-09-18 Capital One Financial Corporation Systems and methods for providing payment options
US20160241402A1 (en) * 2015-02-17 2016-08-18 James Gordon Secure authentication of user and mobile device

Cited By (57)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US12045812B2 (en) 2005-09-06 2024-07-23 Visa U.S.A. Inc. System and method for secured account numbers in wireless devices
US11605074B2 (en) 2005-09-06 2023-03-14 Visa U.S.A. Inc. System and method for secured account numbers in proximily devices
US10922686B2 (en) 2005-09-06 2021-02-16 Visa U.S.A. Inc. System and method for secured account numbers in proximity devices
US10846683B2 (en) 2009-05-15 2020-11-24 Visa International Service Association Integration of verification tokens with mobile communication devices
US11574312B2 (en) 2009-05-15 2023-02-07 Visa International Service Association Secure authentication system and method
US12086787B2 (en) 2009-05-15 2024-09-10 Visa International Service Association Integration of verification tokens with mobile communication devices
US11995633B2 (en) 2012-03-06 2024-05-28 Visa International Service Association Security system incorporating mobile device
US10769628B2 (en) 2014-10-24 2020-09-08 Visa Europe Limited Transaction messaging
US12051064B2 (en) 2014-10-24 2024-07-30 Visa Europe Limited Transaction messaging
US10664844B2 (en) 2015-12-04 2020-05-26 Visa International Service Association Unique code for token verification
US10664843B2 (en) 2015-12-04 2020-05-26 Visa International Service Association Unique code for token verification
US11127016B2 (en) 2015-12-04 2021-09-21 Visa International Service Association Unique code for token verification
US11386421B2 (en) 2016-04-19 2022-07-12 Visa International Service Association Systems and methods for performing push transactions
US11995649B2 (en) 2016-05-19 2024-05-28 Visa International Service Association Systems and methods for creating subtokens using primary tokens
US11250424B2 (en) 2016-05-19 2022-02-15 Visa International Service Association Systems and methods for creating subtokens using primary tokens
US11068578B2 (en) 2016-06-03 2021-07-20 Visa International Service Association Subtoken management system for connected devices
US11068899B2 (en) 2016-06-17 2021-07-20 Visa International Service Association Token aggregation for multi-party transactions
US11783343B2 (en) 2016-06-17 2023-10-10 Visa International Service Association Token aggregation for multi-party transactions
US12170730B2 (en) 2016-06-24 2024-12-17 Visa International Service Association Unique token authentication verification value
US10361856B2 (en) 2016-06-24 2019-07-23 Visa International Service Association Unique token authentication cryptogram
US11329822B2 (en) 2016-06-24 2022-05-10 Visa International Service Association Unique token authentication verification value
US11323443B2 (en) 2016-11-28 2022-05-03 Visa International Service Association Access identifier provisioning to application
US12273346B2 (en) 2016-11-28 2025-04-08 Visa International Service Association Access identifier provisioning to application
US11799862B2 (en) 2016-11-28 2023-10-24 Visa International Service Association Access identifier provisioning to application
US11494765B2 (en) 2017-05-11 2022-11-08 Visa International Service Association Secure remote transaction system using mobile devices
US12067562B2 (en) 2017-05-11 2024-08-20 Visa International Service Association Secure remote transaction system using mobile devices
US11989774B1 (en) 2017-11-20 2024-05-21 Wells Fargo Bank, N.A. Systems and methods for providing digital trusted data
US11775672B1 (en) * 2017-12-04 2023-10-03 Wells Fargo Bank, N.A. Trust-based application to application connectivity
US11748743B1 (en) 2017-12-04 2023-09-05 Wells Fargo Bank, N.A. Trust-based application to application connectivity
US11978039B2 (en) 2017-12-04 2024-05-07 Wells Fargo Bank, N.A. Trust-based application to application connectivity
US11743042B2 (en) 2018-03-07 2023-08-29 Visa International Service Association Secure remote token release with online authentication
US11356257B2 (en) 2018-03-07 2022-06-07 Visa International Service Association Secure remote token release with online authentication
US12008088B2 (en) 2018-06-18 2024-06-11 Visa International Service Association Recurring token transactions
US11256789B2 (en) 2018-06-18 2022-02-22 Visa International Service Association Recurring token transactions
US20200005278A1 (en) * 2018-06-28 2020-01-02 Jpmorgan Chase Bank, N.A. Systems and methods for linking accounts using an enablement token
US11777934B2 (en) 2018-08-22 2023-10-03 Visa International Service Association Method and system for token provisioning and processing
US12120117B2 (en) 2018-08-22 2024-10-15 Visa International Service Association Method and system for token provisioning and processing
US12028337B2 (en) 2018-10-08 2024-07-02 Visa International Service Association Techniques for token proximity transactions
US11870903B2 (en) 2018-11-14 2024-01-09 Visa International Service Association Cloud token provisioning of multiple tokens
US11469895B2 (en) 2018-11-14 2022-10-11 Visa International Service Association Cloud token provisioning of multiple tokens
US11995635B2 (en) * 2019-03-01 2024-05-28 Visa International Service Association Methods and systems for E-commerce payment transactions
US20220335408A1 (en) * 2019-03-01 2022-10-20 Visa International Service Association Methods and systems for e-commerce payment transactions
US11443296B2 (en) * 2019-03-01 2022-09-13 Visa International Service Association Methods and systems for e-commerce payment transactions
US20240311798A1 (en) * 2019-03-01 2024-09-19 Visa International Service Association Methods and systems for e-commerce payment transactions
US12141792B2 (en) * 2019-05-08 2024-11-12 Visa International Service Association System and method for a cross-platform key across digital wallet providers
US20240005308A1 (en) * 2019-05-08 2024-01-04 Visa International Service Association System and method for a cross-platform key across digital wallet providers
US11849042B2 (en) 2019-05-17 2023-12-19 Visa International Service Association Virtual access credential interaction system and method
US12026686B2 (en) * 2019-07-10 2024-07-02 Jpmorgan Chase Bank , N.A. Systems and methods for facilitating payment service-based checkout with a merchant
US20220012701A1 (en) * 2019-07-10 2022-01-13 Jpmorgan Chase Bank, N.A. Systems and methods for facilitating payment service-based checkout with a merchant
US20210287188A1 (en) * 2020-03-16 2021-09-16 Jpmorgan Chase Bank, N.A. Systems and methods for managing merchant-stored payment credentials
US12141800B2 (en) 2021-02-12 2024-11-12 Visa International Service Association Interaction account tokenization system and method
US12211033B1 (en) 2021-02-23 2025-01-28 Wells Fargo Bank, N.A. Dynamic account status indicator via server-to-device secure data exchange
US12229758B1 (en) 2021-02-23 2025-02-18 Wells Fargo Bank, N.A. Server-to-device secure data exchange authorized session management
US12299678B1 (en) 2021-02-23 2025-05-13 Wells Fargo Bank, N.A. Server-to-device secure data exchange transactions
SE545606C2 (en) * 2021-06-17 2023-11-07 Assa Abloy Ab Providing a credential for use with an electronic lock
SE2150779A1 (en) * 2021-06-17 2022-12-18 Assa Abloy Ab Providing a credential for use with an electronic lock
SE2150779A2 (en) * 2021-06-17 2023-04-18 Assa Abloy Ab Providing a credential for use with an electronic lock

Also Published As

Publication number Publication date
US20220027892A1 (en) 2022-01-27
WO2018170404A1 (en) 2018-09-20
US11138589B2 (en) 2021-10-05
US11587068B2 (en) 2023-02-21

Similar Documents

Publication Publication Date Title
US11587068B2 (en) Systems and methods for supporting legacy and tokenized e-commerce
US12254473B2 (en) Systems, methods, and devices for integrating a first party service into a second party computer application
US10433128B2 (en) Methods and systems for provisioning multiple devices
US12086773B2 (en) Systems and methods for facilitating payments
US10970721B2 (en) Systems and methods for secure mobile transactions
WO2019014374A1 (en) Systems and methods for using a transaction identifier to protect sensitive credentials
US20200034870A1 (en) Systems and methods for out-of-band, time-based matching for applying issuer benefits to transactions
US11836710B2 (en) Systems and methods for facilitating payment application provisioning and transacting
US11928669B2 (en) Systems and methods for mobile wallet payments
US20210233066A1 (en) Systems and methods for payment token provisioning with variable risk evaluation
US11049101B2 (en) Secure remote transaction framework
US20200005278A1 (en) Systems and methods for linking accounts using an enablement token
US12026686B2 (en) Systems and methods for facilitating payment service-based checkout with a merchant
US11507954B2 (en) Systems and methods for conducting transactions using a surrogate pin
US20230316265A1 (en) Systems and methods for provisioning funding card numbers to third party wallets
US12099986B2 (en) Systems and methods for providing embedded banking services
US20230306393A1 (en) Systems and methods for integrating pay by bank services
WO2024151309A1 (en) One-stop merchant integrated mobile payment experience
WO2021194928A1 (en) Systems and methods for customer identity protection from service or product providers

Legal Events

Date Code Title Description
FEPP Fee payment procedure

Free format text: ENTITY STATUS SET TO UNDISCOUNTED (ORIGINAL EVENT CODE: BIG.); ENTITY STATUS OF PATENT OWNER: LARGE ENTITY

STPP Information on status: patent application and granting procedure in general

Free format text: DOCKETED NEW CASE - READY FOR EXAMINATION

AS Assignment

Owner name: JPMORGAN CHASE BANK, N.A., NEW YORK

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNORS:SPECTOR, HOWARD;BEER, ALLISON P;SHEPPARD, CHRISTINA;AND OTHERS;SIGNING DATES FROM 20170323 TO 20170403;REEL/FRAME:047121/0394

STPP Information on status: patent application and granting procedure in general

Free format text: NON FINAL ACTION MAILED

STPP Information on status: patent application and granting procedure in general

Free format text: RESPONSE TO NON-FINAL OFFICE ACTION ENTERED AND FORWARDED TO EXAMINER

STPP Information on status: patent application and granting procedure in general

Free format text: FINAL REJECTION MAILED

STPP Information on status: patent application and granting procedure in general

Free format text: RESPONSE AFTER FINAL ACTION FORWARDED TO EXAMINER

STPP Information on status: patent application and granting procedure in general

Free format text: ADVISORY ACTION MAILED

STPP Information on status: patent application and granting procedure in general

Free format text: NON FINAL ACTION MAILED

STPP Information on status: patent application and granting procedure in general

Free format text: RESPONSE TO NON-FINAL OFFICE ACTION ENTERED AND FORWARDED TO EXAMINER

STPP Information on status: patent application and granting procedure in general

Free format text: NOTICE OF ALLOWANCE MAILED -- APPLICATION RECEIVED IN OFFICE OF PUBLICATIONS

STPP Information on status: patent application and granting procedure in general

Free format text: AWAITING TC RESP., ISSUE FEE NOT PAID

STPP Information on status: patent application and granting procedure in general

Free format text: NOTICE OF ALLOWANCE MAILED -- APPLICATION RECEIVED IN OFFICE OF PUBLICATIONS

STPP Information on status: patent application and granting procedure in general

Free format text: PUBLICATIONS -- ISSUE FEE PAYMENT VERIFIED

STCF Information on status: patent grant

Free format text: PATENTED CASE

MAFP Maintenance fee payment

Free format text: PAYMENT OF MAINTENANCE FEE, 4TH YEAR, LARGE ENTITY (ORIGINAL EVENT CODE: M1551); ENTITY STATUS OF PATENT OWNER: LARGE ENTITY

Year of fee payment: 4

OSZAR »