Confirming the identity of integrator applications
Abstract
An application service system receives, from a merchant service system, an application program code comprising identifying information. The identifying information is extracted and the application is distributed for operation on a user device. A user interacts with the application, creating an access request that is transmitted to the application service system along with the extracted identifying information. The application service system transmits an access token to the user device comprising the received identifying information. The user device transmits the access token with a service request to the application service system. The application service system compares the identifying information from the access token to the identifying information extracted from the application program code received from the merchant services system. If the identifying information matches, the service request is processed. If the identifying information does not match, the service request is denied and an error message is transmitted to the user device.
Claims
exact text as granted — not AI-modified1 - 20 . (canceled)
21 . A computer-implemented method to verify identities of services making service requests, comprising:
by an application service computing system:
receiving, from a user computing device, a service request comprising first identifying information extracted by the user computing device from a service program code associated with a merchant service computing system, the service program code being resident on the user computing device;
comparing the first identifying information received from the user computing device to second identifying information associated with the service program code associated with the merchant service computing system; and
in response to the comparing:
determining a match between the first identifying information and the second identifying information; and
allowing the service request.
22 . The computer-implemented method of claim 21 , wherein receiving the service request further comprises, by the application service computing system:
receiving, from the user computing device, an access request and the first identifying information; in response to receiving the access request, generating an access token comprising the first identifying information; and transmitting the access token to the user computing device, wherein the service request includes the access token comprising the first identifying information.
23 . The computer-implemented method of claim 21 , further comprising, by the application service computing system:
in response to determining a discrepancy between the first identifying information and the second identifying information, denying the service request.
24 . The computer-implemented method of claim 23 , further comprising, by the application service computing system, in response to determining the discrepancy, transmitting an error message to the user computing device, wherein the error message is displayed by the user computing device.
25 . The computer-implemented method of claim 21 , further comprising, by the application service computing system prior to receiving the service request, distributing the service program code comprising the first identifying information to the user computing device.
26 . The computer-implemented method of claim 21 , wherein the first identifying information comprises one or more of an application identifier, a package name, and a digital signature.
27 . The computer-implemented method of claim 21 , wherein the service program code is associated with a merchant service application, a merchant service website, or a merchant shipping service.
28 . The computer-implemented method of claim 27 , wherein the service request comprises a request to process a financial transaction by the merchant service application, a request for shipping information, a request for information from an account of the user maintained by the one or more computing devices, or a request for offers or coupons to be redeemed.
29 . The computer-implemented method of claim 21 , further comprising, by the application service computing system:
receiving the service program code from the merchant service computing system; extracting the first identifying information from the service program code received from the merchant service computing system; and storing the second identifying information comprising the extracted first identifying information.
30 . The computer-implemented method of claim 29 , wherein extracting the first identifying information comprises executing, by the application service computing system, a search algorithm that locates and extracts the first identifying information from the service program code.
31 . The computer-implemented method of claim 29 , wherein extracting the first identifying information from the service program code received from the merchant service computing system comprises identifying, by the application service computing system, a predetermined location in the service program code and extracting the first identifying information from the predetermined location.
32 . The computer-implemented method of claim 21 , wherein an access request algorithm on the user computing device is activated in response to a service request being initiated on the user computing device, wherein the access request algorithm identifies and extracts the first identifying information from the service program code on the user computing device and transmits the first identifying information along with the service request to the application service computing system.
33 . The computer-implemented method of claim 21 , further comprising, by the application service computing system:
receiving the service program code from the merchant service computing system; inserting the first identifying information into the service program code received from the merchant service computing system; and distributing the service program code to the user computing device, the distributed service program code comprising the inserted first identifying information.
34 . The computer-implemented method of claim 33 , further comprising, by the application service computing system, storing the first identifying information as the second identifying information.Cited by (0)
No later patents cite this yet.
References (0)
No backward citations on record.