System and method for verifying a user's identity in electronic transactions

DC CAFC

US 8,285,648 B2
Filed: 09/14/2007
Issued: 10/09/2012
Est. Priority Date: 09/29/2006
Status: Active Grant

- Alert
- Pin

Associated Cases

Associated Defendants

First Claim

Patent Images

1. A user identity verification method for verifying the identity of a user by a verifier in the course of an electronic transaction, said user identity verification method comprising the steps of:

(a) pre-enrolling the user, comprising the steps of;

(a1) assigning to the user a bona fide secure identifier; and

,(a2) storing the bona fide secure identifier in a database that is accessible to the verifier;

(b) pre-enrolling a user communications device, wherein pre-enrolling the user communications device comprises the steps of;

(b1) obtaining a user access number for the user communications device, wherein the user access number can be used to open a communications link with the user communications device; and

,(b2) storing the user access number in a database that is accessible to the verifier;

(c) retrieving the user access number stored at Step (b2);

(d) opening a communications link between the verifier and the user communications device by using the user access number retrieved at Step (c);

(e) sending an identity verification request (IVR) from the verifier to the user through the communications link opened at Step (d);

(f) inputting by the user a putative secure identifier;

(g) sending through the communications link opened at Step (d) a response to the IVR of Step (e);

(h) retrieving the bona fide secure identifier stored at Step (a2);

(i) comparing the putative secure identifier input at Step (f) with the bona fide secure identifier retrieved at Step (h); and

,(j) allowing the transaction to proceed only if the comparison of Step (i) results in a match between the putative secure identifier and the bona fide secure identifier.

View all claims

1 Assignment

Timeline View

Assignment View

Litigations

3 Petitions

Accused Products

Abstract

In an electronic transaction, the invention provides a process and system for blocking a user'"'"'s account until a verifier verifies the identity of the user. The process comprises pre-enrolling the user and the user'"'"'s personal communication device. Optionally, one or more of the user'"'"'s accounts are enrolled.

At the time a transaction is initiated, the verifier sends an identification verification request to the portable communication device of the person initiating the electronic-transaction. The person then verifies his/her identity as the user. Optionally, the user authorizes the amount of the transaction.

Optionally, the verifier issues to the user a proxy transaction card which the user uses to initiate electronic transactions that will be billed to one of the user'"'"'s pre-enrolled accounts. Using information obtained from the user'"'"'s proxy transaction card, the retailer/merchant'"'"'s bank opens a communications link to the verifier, and the verifier then verifies the user'"'"'s identity.

48 Citations

View as Search Results

19 Claims

1. A user identity verification method for verifying the identity of a user by a verifier in the course of an electronic transaction, said user identity verification method comprising the steps of:
- (a) pre-enrolling the user, comprising the steps of;
  
  (a1) assigning to the user a bona fide secure identifier; and
  
  ,(a2) storing the bona fide secure identifier in a database that is accessible to the verifier;
  
  (b) pre-enrolling a user communications device, wherein pre-enrolling the user communications device comprises the steps of;
  
  (b1) obtaining a user access number for the user communications device, wherein the user access number can be used to open a communications link with the user communications device; and
  
  ,(b2) storing the user access number in a database that is accessible to the verifier;
  
  (c) retrieving the user access number stored at Step (b2);
  
  (d) opening a communications link between the verifier and the user communications device by using the user access number retrieved at Step (c);
  
  (e) sending an identity verification request (IVR) from the verifier to the user through the communications link opened at Step (d);
  
  (f) inputting by the user a putative secure identifier;
  
  (g) sending through the communications link opened at Step (d) a response to the IVR of Step (e);
  
  (h) retrieving the bona fide secure identifier stored at Step (a2);
  
  (i) comparing the putative secure identifier input at Step (f) with the bona fide secure identifier retrieved at Step (h); and
  
  ,(j) allowing the transaction to proceed only if the comparison of Step (i) results in a match between the putative secure identifier and the bona fide secure identifier.

2. A system for verifying the identity of a user by a verifier during the course of an electronic transaction, said system comprising:
- a. a verifier-database (703);
  
  b. a verifier-computer (903), wherein said verifier-computer is adapted to write data to and retrieve data from said verifier-database;
  
  c. a first verifier communications device (2403) for receiving communications from the user and transmitting communications to the user, wherein said first verifier communications device is accessible to said verifier-computer;
  
  d. a user communications device (2303) for receiving communications from the verifier and transmitting communications to the verifier, wherein said user communications device is accessible to the user;
  
  e. an input/output (I/O) (503) device that accepts input from the user and displays output to the user; and
  
  ,f. a user-computer (603) coupled to said user communication device and coupled to said I/O device, wherein said user-computer is adapted to;
  
  i) display on said I/O device an incoming identity verification request (IVR) sent to said user communications device by the verifier-computer through said verifier communications device;
  
  ii) acquire the user'"'"'s input to said I/O device, wherein the user'"'"'s input includes a putative secure identifier; and
  
  ,iii) send a response to the IVR from said user communications device to said first verifier communications device,wherein at least one of said user-computer and said verifier-Computer is adapted to;
  
  iv) receive as a first input a bona fide secure identifier retrieved from said verifier-database;
  
  v) receive as a second input the putative secure identifier; and
  
  ,vi) compare the first input with the second input;
  
  wherein the electronic transaction proceeds if the first input and second input match.
- View Dependent Claims (3, 4)
- - 3. The system of claim 2 wherein said user communications device is a personal communications device.
  - 4. The system of claim 2 further comprising a second verifier communications device (803) for transmitting a confirmation output to a bank.

5. A user identity verification method for verifying the identity of a user by a verifier in the course of an electronic transaction, said user identity verification method comprising the steps of:
- (a) assigning a bona fide secure identifier to the user;
  
  (b) storing the bona fide secure identifier of Step (a) in a database that is accessible to the verifier;
  
  (c) storing a user access number for a user communications device in a database, wherein the database is accessible to the verifier, and wherein the user access number can be used to open a communications link with the user communications device;
  
  (d) retrieving the user access number stored at Step (c);
  
  (e) using the user access number retrieved at Step (d) to open a communications link between the verifier and the user communications device;
  
  (f) sending an identity verification request (IVR) from the verifier to the user through the communications link opened at Step (e);
  
  (g) inputting by the user a putative secure identifier;
  
  (h) receiving through the communications link opened at Step (e) a response to the IVR of Step (f);
  
  (j) retrieving the bona fide secure identifier stored at Step (b); and
  
  ,(k) comparing the putative secure identifier input at Step (g) with the bona fide secure identifier retrieved at Step (j),wherein the transaction proceeds if the comparison of Step (k) results in a match between the putative secure identifier and the bona fide secure identifier.
- View Dependent Claims (6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19)
- - 6. The method of claim 5 wherein the response received at Step (h) includes the putative secure identifier input at Step (g), and wherein Step (k) is performed by the verifier.
  - 7. The method of claim 5 further comprising the step of:
    - (m) downloading local software to the user communications device.
  - 8. The method of claim 7 wherein the IVR sent at Step (f) includes the bona fide secure identifier retrieved at Step (j), and wherein Step (k) is performed by the local software downloaded at Step (m), and wherein the response received at Step (h) includes the results of the comparison done at Step (k).
  - 9. The method of claim 7 wherein the local software downloaded at Step (m) performs at least one of:
    - (i)sending the response received at Step (h) and,(ii) Step (k).
  - 10. The method of claim 7 wherein the local software downloaded at Step (m) performs the steps of:
    - (n) receiving the IVR sent at Step (f);
      
      (o) formatting the IVR for display; and
      
      ,(p) displaying the IVR formatted at Step (o) on an input/output (I/O) device of the user communications device.
  - 11. The method of claim 7 wherein the local software downloaded at Step (m) performs at least one of:
    - (i) decrypting information received by the user communications device, and (ii) encrypting information sent by the user communications device.
  - 12. The method of claim 5 wherein at least one of the IVR of Step (f) and the response received at Step (h) are encrypted when sent.
  - 13. The method of claim 5 further including authorizing the transaction, said authorizing comprising the steps of:
    - (q) sending a transaction authorization request to the user communications device;
      
      (r) receiving a response to the transaction authorization request of Step (q); and
      
      ,(s) allowing the transaction to proceed only if the response received at Step (r) is to authorize the transaction.
  - 14. The method of claim 13 further comprising the step of:
    - (t) setting a flag in a database record, wherein the flag is associated with an account of the user and wherein the flag indicates whether or not at least one of Steps (q) through (s) are to be performed with respect to that account.
  - 15. The method of claim 5 further comprising the step of:
    - (u) setting a flag in a database record, wherein the flag is associated with an account of the user and wherein the flag indicates whether or not transaction authorization is to be performed.
  - 16. The method of claim 5 further comprising the steps of:
    - (v) acquiring access information for an account of the user; and
      
      ,(w) storing the account access information on a database that is accessible to the verifier.
  - 17. The method of claim 16 further comprising the steps of:
    - (x) issuing to the user a proxy transaction card containing data that can be used to authorize the verifier to access the account of Step (v);
      
      (y) using the data contained on the proxy transaction card to authorize the verifier to access the account of Step (v);
      
      (z) retrieving the account access information stored at Step (w); and
      
      ,(aa) the verifier using the account access information retrieved at Step (z) to access the account of Step (v) upon authorization at Step (y),wherein the transaction is made with respect to or debited to the account accessed at Step (aa).
  - 18. The method of claim 17, further comprising the steps of:
    - (bb) displaying to the user at least one account the verifier is authorized to access; and
      
      ,(cc) inputting by the user a choice as to which account displayed at Step (bb) the verifier is authorized to access.
  - 19. The method of claim 5 further comprising the steps of:
    - (dd) storing a device identifier of the user communications device of Step (c) in a database that is accessible to the verifier,(ee) retrieving the device identifier stored at Step (dd);
      
      (ff) obtaining the device identifier of the user communications device of Step (e); and
      
      ,(gg) comparing the device identifier retrieved at Step (ee) with the device identifier obtained at Step (ff);
      
      wherein the transaction is allowed to proceed only if the comparison of Step (gg) results in a match between the device identifier retrieved at Step (ee) and the device identifier obtained at Step (ff).

Specification

Resources

Litigation Campaign Assessment

Litigation Data

Current Assignee
Dan Scammell
Original Assignee
Dan Scammell
Inventors
Goodin, Stewart
Primary Examiner(s)
KUCAB, JAMIE R

Application Number

US12/443,426
Publication Number

US 20100030698A1
Time in Patent Office

1,852 Days
Field of Search

None
US Class Current

705/76
CPC Class Codes

G06Q 20/02   involving a neutral party, ...

G06Q 20/04   Payment circuits

G06Q 20/3223   Realising banking transacti...

G06Q 20/325   using wireless networks

G06Q 20/3821   Electronic credentials

G06Q 20/40   Authorisation, e.g. identif...

G06Q 20/4014   Identity check for transact...

G06Q 20/425   using two different network...

G07C 9/23   by means of a password

System and method for verifying a user's identity in electronic transactions

First Claim

1 Assignment

Litigations

3 Petitions

Accused Products

Abstract

48 Citations

19 Claims

Specification

Use Cases

Quick Links

Others

System and method for verifying a user's identity in electronic transactions

First Claim

1 Assignment

Subscription Required

Subscription Required

Litigations

3 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

48 Citations

19 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others