Methods and systems for secure cross-platform token exchange
Abstract
Systems and methods are disclosed for cross-platform token exchange. One method comprises receiving a primary token exchange request from an upstream entity, generating an ancillary detokenization request based on the primary token exchange request, and transmitting the ancillary detokenization request to an input token vault. An ancillary detokenization response comprising sensitive data may then be received from the input token vault, and one or more ancillary tokenization requests may be generated based on the ancillary detokenization response and the primary token exchange request. The one or more ancillary tokenization requests may be transmitted to one or more output token vaults. Subsequently, one or more ancillary tokenization responses may be received from the one or more output token vaults, each ancillary tokenization response comprising an output token. A primary token exchange response may be generated based on the one or more ancillary tokenization responses and transmitted to the upstream entity.
Claims
exact text as granted — not AI-modified1 .- 20 . (canceled)
21 . A method for cross-platform token exchange, the method comprising:
receiving a token exchange request including a first token from a merchant system; obtaining sensitive data corresponding to the first token from a first token service provider, based on the token exchange request; obtaining a second token corresponding to the sensitive data from a second token service provider; and transmitting the second token to the merchant system.
22 . The method of claim 21 , further comprising:
generating a detokenization request based on the token exchange request; transmitting the detokenization request to the first token service provider; and receiving a detokenization response including the sensitive data from the first token service provider, wherein the obtaining the sensitive data corresponding to the first token from the first token service provider comprises obtaining the sensitive data based on receiving the detokenization response including the sensitive data.
23 . The method of claim 21 , further comprising:
generating a tokenization request including the sensitive data; transmitting the tokenization request to the second token service provider; and receiving a tokenization response including the second token from the second token service provider, wherein the obtaining the second token corresponding to the sensitive data from the second token service provider comprises obtaining the second token based on receiving the tokenization response including the second token from the second token service provider.
24 . The method of claim 21 , wherein the token exchange request includes a first identifier of the first token service provider, and includes a second identifier of the second token service provider.
25 . The method of claim 21 , wherein the sensitive data comprises a primary account number (PAN), a social security number, a bank routing number, or a driver's license number.
26 . The method of claim 21 , further comprising:
obtaining a third token corresponding to the sensitive data from a third token service provider, based on the token exchange request; and transmitting the third token to the merchant system.
27 . The method of claim 26 , wherein the token exchange request includes a first identifier of the first token service provider, a second identifier of the second token service provider, and a third identifier of the third token service provider.
28 . A device for cross-platform token exchange, the device comprising:
a memory configured to store instructions; and a processor configured to execute the instructions to perform operations comprising:
receiving a token exchange request including a first token from a merchant system;
obtaining sensitive data corresponding to the first token from a first token service provider, based on the token exchange request;
obtaining a second token corresponding to the sensitive data from a second token service provider; and
transmitting the second token to the merchant system.
29 . The device of claim 28 , wherein the operations further comprise:
generating a detokenization request based on the token exchange request; transmitting the detokenization request to the first token service provider; and receiving a detokenization response including the sensitive data from the first token service provider, wherein the obtaining the sensitive data corresponding to the first token from the first token service provider comprises obtaining the sensitive data based on receiving the detokenization response including the sensitive data.
30 . The device of claim 28 , wherein the operations further comprise:
generating a tokenization request including the sensitive data; transmitting the tokenization request to the second token service provider; and receiving a tokenization response including the second token from the second token service provider, wherein the obtaining the second token corresponding to the sensitive data from the second token service provider comprises obtaining the second token based on receiving the tokenization response including the second token from the second token service provider.
31 . The device of claim 28 , wherein the token exchange request includes a first identifier of the first token service provider, and includes a second identifier of the second token service provider.
32 . The device of claim 28 , wherein the sensitive data comprises a primary account number (PAN), a social security number, a bank routing number, or a driver's license number.
33 . The device of claim 28 , wherein the operations further comprise:
obtaining a third token corresponding to the sensitive data from a third token service provider, based on the token exchange request; and transmitting the third token to the merchant system.
34 . The device of claim 33 , wherein the token exchange request includes a first identifier of the first token service provider, a second identifier of the second token service provider, and a third identifier of the third token service provider.
35 . A non-transitory computer-readable medium storing instructions that, when executed by one or more processors of a device for cross-platform token exchange, cause the one or more processors to perform operations comprising:
receiving a token exchange request including a first token from a merchant system; obtaining sensitive data corresponding to the first token from a first token service provider, based on the token exchange request; obtaining a second token corresponding to the sensitive data from a second token service provider; and transmitting the second token to the merchant system.
36 . The non-transitory computer-readable medium of claim 35 , wherein the operations further comprise:
generating a detokenization request based on the token exchange request; transmitting the detokenization request to the first token service provider; and receiving a detokenization response including the sensitive data from the first token service provider, wherein the obtaining the sensitive data corresponding to the first token from the first token service provider comprises obtaining the sensitive data based on receiving the detokenization response including the sensitive data.
37 . The non-transitory computer-readable medium of claim 35 , wherein the operations further comprise:
generating a tokenization request including the sensitive data; transmitting the tokenization request to the second token service provider; and receiving a tokenization response including the second token from the second token service provider, wherein the obtaining the second token corresponding to the sensitive data from the second token service provider comprises obtaining the second token based on receiving the tokenization response including the second token from the second token service provider.
38 . The non-transitory computer-readable medium of claim 35 , wherein the token exchange request includes a first identifier of the first token service provider, and includes a second identifier of the second token service provider.
39 . The non-transitory computer-readable medium of claim 35 , wherein
the operations further comprise: obtaining a third token corresponding to the sensitive data from a third token service provider, based on the token exchange request; and transmitting the third token to the merchant system.
40 . The non-transitory computer-readable medium of claim 39 , wherein the token exchange request includes a first identifier of the first token service provider, a second identifier of the second token service provider, and a third identifier of the third token service provider.Join the waitlist — get patent alerts
Track US2023319020A1 — get alerts on status changes and closely related new filings.
We store only your email — no account needed. See our privacy policy.