Systems and methods for authentication of a remote transaction
Abstract
A method and apparatus for authenticating a transaction between remote systems are described. The method can include authenticating, by a first computer server, a mobile user associated with a mobile device, and transmitting, by the first computer server to the mobile device in response to the authentication, a one-use authorization code in connection with the transaction, the transaction between the mobile user and a second server computer. The method can further include receiving, by the first computer server, the one-use authorization code from the second computer server in connection with one or more transaction parameters, and verifying, by the first server computer, a validity of the one-use authorization code and the one or more transaction parameters. Furthermore, the method can include in response to a successful verification, transmitting, by the first computer server, an authorization of the transaction to the second computer server.
Claims
exact text as granted — not AI-modifiedWhat is claimed is:
1 . A computer server-based method for authenticating a transaction between remote systems, comprising:
authenticating, by a first computer server, a mobile user associated with a mobile device; transmitting, by the first computer server to the mobile device in response to the authentication, a one-use authorization code in connection with the transaction, the transaction between the mobile user and a second server computer; receiving, by the first computer server, the one-use authorization code from the second computer server in connection with one or more transaction parameters; verifying, by the first server computer, a validity of the one-use authorization code and the one or more transaction parameters; and in response to a successful verification, transmitting, by the first computer server, an authorization of the transaction to the second computer server.
2 . The computer server-based method of claim 1 , wherein authenticating the mobile user associated with the mobile device further comprises:
receiving, by the first computer server from the mobile device, a user identifier and a mobile device identifier, the user identifier comprising a personal identification number (PIN); and authenticating the mobile user based on an authentication of both the PIN and the mobile device identifier.
3 . The method of claim 2 , further comprising:
in response to a successful authentication of the mobile user, determining that an incentive is associated with the second computer server and the mobile device; and transmitting a query to the mobile device as to whether to apply the incentive to the transaction.
4 . The computer server-based method of claim 3 , further comprising:
in response to receiving a mobile user selection to apply the incentive and a requested amount of the incentive to be applied to the transaction, applying the incentive to the requested amount.
5 . The computer server-based method of claim 4 , wherein the one-use authorization code is perishable, and wherein verifying the validity of the one-use authorization code and the one or more transaction parameters comprises:
verifying, by the first computer server, the one-use authorization code is associated with the mobile user and the one-use authorization code is valid; and verifying, by the first computer server, the one or more transaction parameters with a third computer server comprising verifying an availability of funds of the mobile user associated with a payment instrument of the mobile user less the requested amount.
6 . The computer server-based method of claim 1 , wherein the one-use authorization code is displayed on the mobile device.
7 . The computer server-based method of claim 1 , further comprising:
transmitting a balance to the mobile device for a tender available to the mobile user in connection with the one-use authorization code, and wherein the tender comprises at least one of: a financial account or an incentive.
8 . The computer server-based method of claim 1 , further comprising:
after authorization of the transaction, transmitting an electronic receipt of the transaction to the merchant computer server and the mobile device.
9 . A first computer server for authenticating a transaction between remote systems, comprising:
at least one processor; and, a memory containing a plurality of program instructions executable by the at least one processor, the plurality of program instructions being configured to cause the at least one processor to perform operations comprising:
authenticating, by the first computer server, a mobile user associated with a mobile device,
transmitting, by the first computer server to the mobile device in response to the authentication, a one-use authorization code in connection with the transaction, the transaction between the mobile user and a second server computer,
receiving, by the first computer server, the one-use authorization code from the second computer server in connection with one or more transaction parameters,
verifying, by the first server computer, a validity of the one-use authorization code and the one or more transaction parameters, and
in response to a successful verification, transmitting, by the first computer server, an authorization of the transaction to the second computer server.
10 . The first computer server of claim 9 , wherein the at least one processor performing operations for authenticating the mobile user associated with the mobile device further comprises the at least one processor performing further operations comprising:
receiving, by the first computer server from the mobile device, a user identifier and a mobile device identifier, the user identifier comprising a personal identification number (PIN); and authenticating the mobile user based on an authentication of both the PIN and the mobile device identifier.
11 . The first computer server of claim of claim 10 , wherein the at least one processor performing further operations comprising:
in response to a successful authentication of the mobile user, determining that an incentive is associated with the second computer server and the mobile device; and transmitting a query to the mobile device as to whether to apply the incentive to the transaction.
12 . The first computer server of claim of claim 11 , wherein the at least one processor performing further operations comprising:
in response to receiving a mobile user selection to apply the incentive and a requested amount of the incentive to be applied to the transaction, applying the incentive to the requested amount.
13 . The first computer server of claim of claim 12 , wherein the one-use authorization code is perishable, and wherein the at least one processor performing operations for verifying the validity of the one-use authorization code and the one or more transaction parameters comprises the at least one processor performing further operations comprising:
verifying, by the first computer server, the one-use authorization code is associated with the mobile user and the one-use authorization code is valid; and verifying, by the first computer server, the one or more transaction parameters with a third computer server comprising verifying an availability of funds of the mobile user associated with a payment instrument of the mobile user less the requested amount.
14 . The first computer server of claim of claim 9 , wherein the one-use authorization code is displayed on the mobile device.
15 . The first computer server of claim of claim 9 , further comprises the at least one processor performing further operations comprising:
transmitting a balance to the mobile device for a tender available to the mobile user in connection with the one-use authorization code, and wherein the tender comprises at least one of: a financial account or an incentive.
16 . The first computer server of claim of claim 9 , further comprises the at least one processor performing further operations comprising:
after authorization of the transaction, transmitting an electronic receipt of the transaction to the merchant computer server and the mobile device.
17 . A non-transitory computer-readable medium comprising a plurality of program instructions configured to cause at least one processor to perform operations for authenticating a transaction between remote systems, the operations comprising:
authenticating, by a first computer server, a mobile user associated with a mobile device; transmitting, by the first computer server to the mobile device in response to the authentication, a one-use authorization code in connection with the transaction, the transaction between the mobile user and a second server computer; receiving, by the first computer server, the one-use authorization code from the second computer server in connection with one or more transaction parameters; verifying, by the first server computer, a validity of the one-use authorization code and the one or more transaction parameters; and in response to a successful verification, transmitting, by the first computer server, an authorization of the transaction to the second computer server.
18 . The non-transitory computer-readable medium of claim 17 , wherein authenticating the mobile user associated with the mobile device further comprises:
receiving, by the first computer server from the mobile device, a user identifier and a mobile device identifier, the user identifier comprising a personal identification number (PIN); and authenticating the mobile user based on an authentication of both the PIN and the mobile device identifier.
19 . The non-transitory computer-readable medium of claim 18 , further comprising:
in response to a successful authentication of the mobile user, determining that an incentive is associated with the second computer server and the mobile device; and transmitting a query to the mobile device as to whether to apply the incentive to the transaction.
20 . The non-transitory computer-readable medium of claim 19 , further comprising:
in response to receiving a mobile user selection to apply the incentive and a requested amount of the incentive to be applied to the transaction, applying the incentive to the requested amount.Cited by (0)
No later patents cite this yet.
References (0)
No backward citations on record.