AU2010202038B2 - Serial number and payment data based payment card processing - Google Patents

Serial number and payment data based payment card processing Download PDF

Info

Publication number
AU2010202038B2
AU2010202038B2 AU2010202038A AU2010202038A AU2010202038B2 AU 2010202038 B2 AU2010202038 B2 AU 2010202038B2 AU 2010202038 A AU2010202038 A AU 2010202038A AU 2010202038 A AU2010202038 A AU 2010202038A AU 2010202038 B2 AU2010202038 B2 AU 2010202038B2
Authority
AU
Australia
Prior art keywords
media device
payment account
server
payment
user
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
AU2010202038A
Other versions
AU2010202038A1 (en
Inventor
Simon J. Hurry
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Visa USA Inc
Original Assignee
Visa USA Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority to US12/129,396 priority Critical
Priority to AU2009255399A priority patent/AU2009255399B2/en
Application filed by Visa USA Inc filed Critical Visa USA Inc
Priority to AU2010202038A priority patent/AU2010202038B2/en
Publication of AU2010202038A1 publication Critical patent/AU2010202038A1/en
Application granted granted Critical
Publication of AU2010202038B2 publication Critical patent/AU2010202038B2/en
Application status is Active legal-status Critical
Anticipated expiration legal-status Critical

Links

Abstract

SERIAL NUMBER AND PAYMENT DATA BASED PAYMENT CARD PROCESSING A server (20) is operable to receive a media device identifying number (ID) and 57 establish an association between a media device (14) and a payment account and, in one embodiment, supports at least one of payment authorization and payment clearing based at least in part on the media device ID and the payment account. A network (142) and system (10) includes a payment card processor server (46) that is operable to receive a payment authorization request and to determine if an authorized media device 10 (14) generated a purchase selection message and to determine to approve a received payment authorization request based, in part, if the media device was authorized for the purchase selection based upon a received media device ID. a)) N~ EU c E a) c 00 E a U, 0 = a)a c a)cauE>' cx" - L a a) a)0 in a)

Description

S&F Ref: 952438 AUSTRALIA PATENTS ACT 1990 COMPLETE SPECIFICATION FOR A STANDARD PATENT Name and Address Visa U.S.A. Inc., of P.O. Box 8999, M1-11 F, San of Applicant: Francisco, California, 94128-8999, United States of America Actual Inventor(s): Simon J. Hurry Address for Service: Spruson & Ferguson St Martins Tower Level 35 31 Market Street Sydney NSW 2000 (CCN 3710000177) Invention Title: Serial number and payment data based payment card processing The following statement is a full description of this invention, including the best method of performing it known to me/us: 5845c(2718494_1) SERIAL NUMBER AND PAYMENT DATA BASED PAYMENT CARD PROCESSING 5 BACKGROUND [0001] Technical field of the invention [0002] The present invention relates to systems, devices and method that facilitate electronic commerce transactions. [0003] Description of related art 10 [0004] Consumers, product and service merchants, purchasing and sales agents, suppliers, manufacturers, credit card and debit card companies and banks have all seen process improvements including improved payment processes due to advances in electronic commerce technology. Buyers can now find desired products through Internet searches and can purchase goods and services through secure 15 online channels. Transactions may be processed almost instantly leading to faster delivery of the purchased item, media content, or service. [0005] One aspect of such transactions is the common concern of theft of payment account information. Accordingly, e-commerce systems typically include, when the user chooses to make a purchase, the establishment of an encrypted tunnel 20 between the merchant and the customer so that payment account information may be transmitted safely. Typically, a secure page is provided to the customer to prompt the customer to enter a payment account number and other required account information. A merchant server then validates the account information as a part of completing the transaction. Thereafter, a purchase confirmation is generated in one 25 of a variety of formats to the customer. [0006] In addition to the advances in e-commerce, the Internet is also changing the way that television is being watched. As Internet storage capacity and throughput have increased, and user terminal memory and data processing technology has advanced, media servers now deliver streaming video at a data rate that provides 30 resolution and quality comparable to broadcast/cable/satellite television. Media servers now transmit streaming video having content similar to that provided by prior television services. [0007] Along similar lines, Internet Protocol television boxes have been developed that support the display of streamed media and other data received over the Internet 5 on a television. Accordingly, the manner in which television and other media content are delivered may undergo a dramatic change and may even result in a decoupling of program scheduling and viewer enjoyment. Moreover, the interactive nature of personal computers and other Internet Protocol based systems may allow for more interaction between a user and the media and advertisements viewed on a display 10 device. [0008] As is known, advertisements displayed on a computer terminal include tags that are used to track user interest and to give credit to a particular web page provider for generating a positive response to the advertisement. While television advertisements are unidirectional broadcasts and provide no direct feedback that 15 allows a merchant or television broadcaster to determine consumer interest, Internet based advertisements are interactive as associated scripts are operable to indicate whether a user selected an advertisement for closer review and even whether the user purchased a product in response to the advertisement using the e-commerce transaction technology mentioned before. E-commerce and its payment processes, 20 however, are currently setup to only support transactions that result from shopping activities in a physical or virtual store that often result from the uni-directional broadcast advertisements and web-based product and service searches. [0009] Figure 1 is a functional diagram that illustrates a payment card authorization process that can support a typical e-commerce transaction according to the prior art. 25 As may be seen, a cardholder initially presents a payment card to a merchant. Specifically, the card is presented to a point of sale terminal or, as described previously, the account information is presented to the terminal through secured data entry over the Internet. Thereafter, the merchant produces card and payment information to an acquirer server. An acquirer is a payment card association 30 member that initiates and maintains relationships with merchants that accept payment cards. Thereafter, the acquirer server produces an authorization request to a payment card company for review. The payment card company then sends the authorization request for review to the appropriate payment card issuer. The 2 3 payment card issuer then issues an approval or denial that is propagated back to the merchant. SUMMARY [0009a] A first aspect of the present disclosure provides a system comprising: one or more processors; and memory coupled to the one or more processors, the memory including 5 instructions configured to cause the one or more processors to perform operations including: receiving a payment authorization request; receiving a media device ID from a media device with which the smart card is coupled, the media device ID corresponding to the media device that originated a purchase selection message associated with the payment authorization request; determining encrypted payment account information from the received payment authorization [0 request, the encrypted payment account information being associated with a user payment account and having been retrieved from the smart card coupled to the media device, wherein the smart card is created based on the media device ID; determining whether the media device is authorized to conduct transactions using the user payment account, the determining including: determining a decryption key based on the media device ID corresponding to the media device [5 that transmitted the purchase selection message; initiating decryption of the encrypted user payment account information using the decryption key; and determining that the media device that transmitted the purchase selection message is authorized to conduct transactions using the user payment account upon successfully decrypting the encrypted user payment account information using the decryption key; and sending an approval message to a payment server, the Zo approval message indicating that the payment authorization request has been approved. [0009b] Another aspect of the present disclosure provides a method for approving a payment authorization request, comprising: receiving, by a server, a payment authorization request; receiving a media device ID from a media device with which the smart card is coupled, the media device ID corresponding to the media device that originated a purchase selection message 25 associated with the payment authorization request; determining encrypted payment account information from the received payment authorization request, the encrypted payment account information being associated with a user payment account and having been retrieved from the smart card coupled to the media device, wherein the smart card is created based on the media device ID; determining whether the media device is authorized to conduct transactions using the 30 user payment account, the determining including: determining a decryption key based on the media device ID corresponding to the media device that transmitted the purchase selection message; initiating decryption of the encrypted user payment account information using the decryption key; and determining that the media device that transmitted the purchase selection 10760987_1 3a message is authorized to conduct transactions using the user payment account upon successfully decrypting the encrypted user payment account information using the decryption key; and sending an approval message to a payment server, the approval message indicating that the payment authorization request has been approved. 5 BRIEF DESCRIPTION OF THE DRAWINGS [0010] Figure 1 is a functional diagram that illustrates a payment card authorization process that can support a typical e-commerce transaction according to the prior art. [0011] Figure 2 is a functional block diagram of a system 10 that illustrates a process flow for a system to implement a "buy it now" feature according to one embodiment of the invention. [0 [0012] Figure 3 is a functional block diagram of a system for establishing an established association between a media device and a payment account according to one embodiment of the invention. [0013] Figure 4 is a functional block diagram of a payment card company server that is operable to receive and process an application for a payment account that is to be associated with [5 a media device according to one embodiment of the invention. [0014] Figure 5 is a functional block diagram of a network operable for establishing and supporting electronic transactions according to one embodiment of the invention. [0015] Figure 6 is a functional block diagram of a computer network operable to support payment authorization processing according to one embodiment of the invention. !o [0016] Figure 7 is a functional block diagram of a payment account according to one embodiment of the invention. [0017] Figure 8 is a functional block diagram of a computer system that illustrates a process for creating an established association between a payment account and a media device according to one embodiment of the invention. 25 [0018] Figure 9 is a functional block diagram of a computer system that includes a payment card company server and a financial institution issuer server that jointly support creating an established association between a payment account and a media device according to one embodiment of the invention. 10760987_1 [0019] Figure 10 is a functional block diagram of a computer system that includes a payment card company server operable to support creating an established association between a payment account and a media device according to one embodiment of the invention. 5 [0020] Figure 11 is a functional block diagram of a computer network that includes a payment card company server operable to support creating an established association between a payment account and a media device according to one embodiment of the invention. [0021] Figures 12-15 are flow charts that illustrate method steps for a payment 10 account according to a plurality of embodiment of the invention. [0022] Figure 16 is a functional block diagram of a computer system that determines whether to approve purchase authorization requests based in part upon an established association between a user payment account and an authorized media device according to one embodiment of the invention. 15 [0023] Figure 17 is a functional block diagram of a computer system 600 that determines whether to approve purchase authorizations for purchase selections made through a media device according to one embodiment of the invention. [0024] Figures 18A-18C are functional block diagrams of alternate embodiments of the invention of a payment card company server. 20 [0025] Figures 19-20 are flow charts that illustrate method steps for approving a payment authorization request according to a plurality of embodiment of the invention. DETAILED DESCRIPTION OF SPECIFIC EMBODIMENTS 25 [0026] Figure 2 is a functional block diagram of a system 10 that illustrates one embodiment of a process flow for a system to implement a "buy it now" feature. The "buy it now" feature supported by the systems, networks, devices and methods of the various embodiments of the invention allow a user to initiate a purchase of an advertised item by interaction with a media device that has an established 30 association with a payment account without requiring the user to manually enter necessary payment account information. Merely pressing the "buy it now" button triggers an authorization and subsequent settlement process based upon stored 4 payment account information that is associated with the media device. The media device may be a cable television set top box, a satellite television set top box, an IP television (IPTV) set top box, a personal or laptop computer, or an IP game box capable playing interactive games over the Internet. Any device such as an IPTV set 5 top box, IP game box or other device operable to receive media over the Internet is included in references to IP media devices (IPMDs, media devices). [0027] To achieve this functionality, devices, systems, networks, and/or associated method steps generally support a process to generate a payment account that has an established association with a specific media device. References herein to a 10 media device are references to any type of device that can communicate over an IP network, a public network including the Internet, cable TV, satellite TV networks, and other types of networks that support data communications. The payment accounts may be card based in the form of a plastic bank card, a smart card, a dedicated SIM card, or may be in an electronic format and not require a physical form factor (i.e., 15 electronically stored and encrypted account information). Additionally, while the embodiments shown typically refer to a hardware media device it should be understood that a software based module that operates with generic hardware (for example, a personal computer) may serve as the media device described that supports operation described in relation to at least one of the embodiments of the 20 invention. [0028] Generally, the system and processes described with reference to Figure 2 illustrate a process that with which a set top box or other media device supports a purchase transaction using a "buy it now" operation, e.g., button selection, wherein the purchase transaction is made by an authorized media device. 25 [0029] More specifically, the system 10 includes a media device 14 that communicates over a wireless communication link with remote control 18 (though a remote control is not required). Media device 14 is operably coupled to receive streaming media content from a media server 22 and to provide content interaction indications to media server 22. For example, the content interaction indications may 30 include activation of a "buy it now" feature (generically, a "purchase selection") for products, services and media advertised within the media content. [0030] Media device 14 may be coupled to receive the media content over a computer network, a data packet network, a cable network, a satellite network, or a 5 traditional broadcast television network. Media device 14 may also receive, simultaneously or separately, media via a plurality of transmission channels. For example, media server 22 may receive broadcast television programming over a cable network cable connection or as a wireless broadcast transmission received via 5 an antenna. The media server 22 may convert the received broadcast transmission programming to a packet format for delivery to media device 14 via a data packet network or a computer network. In addition, media server 22 may deliver media received from other media sources to media device 14 over the data packet network or the computer network. 10 [0031] Media server 22 produces advertising and other purchase options (collectively "advertisement") with a tag number 26 to media device 14 for display upon an associated monitor or display. A purchase selection by the user by interaction with remote control 18 in response to an advertisement results in media device 14 generating a purchase selection message 30 that includes tag number 26 15 identifying a specific advertisement or media source. In the described embodiment, remote control 18 includes a dedicated button, the so called "buy it now" button that, when depressed, prompts remote control 18 to transmit signals to further prompt media device 14 to transmit message 30 as a purchase selection indication. [0032] Payment account information is stored by a smart card 34 that is inserted or 20 installed into a receiving port 38 of media device 14. The payment account information includes traditional payment card data such as track 1, track 2, track 3, magnetic stripe equivalent data (MSD), or payment data conforming to the Europay MasterCard Visa (EMV) specifications identifying information of a traditional payment card magnetic strip. As is known by one of average skill in the art, a traditional 25 payment card magnetic strip includes a plurality of tracks of data, while smart card based payment cards may additionally include MSD or EMV data. One particular prior art format includes three tracks wherein the data on tracks 1 and 2 is formatted by most cards in a consistent manner to improve global readability while track 3 data has not been implemented in such a constant format. Here, tracks are not used as 30 such data is stored in memory. The type of data from the common formats for track 1 and track 2, however, are exemplary of the data stored within smart card 34. The types of data stored by smart card 34 may include the magnetic stripe equivalent data of Track 1 and Track 2 (MSD) or a payment account number, account or card expiration date, usage limits including purchase amounts or totals, a permanent ID of 6 an authorized device that has an established association with the payment account, issuer ID, payment account processor ID, and personal identification number. Additionally, in one embodiment, a user mailing address and a user billing address is included. The payment account processor is a company that processes payment 5 account transactions. Historically, such processing has been on the behalf of payment card issuer companies such as banks and other financial institutions. [0033] Accordingly, media device 14 is operable to retrieve the account information from smart card 34 and to produce the payment account information within message 30. Generally, a form factor and associated interface of smart card 34 and port 38 10 may include any known topology or structure. Moreover, while the described embodiment includes the media device 14 having port 38 to receive smart card 34 with the payment account information, it should be understood that an alternate embodiment includes remote control 18 having a port to receive the smart card 34. As with the media device 14, a port within remote control 18 may also be of any 15 known topology or structure. [0034] In an alternate embodiment in which a payment account is not associated with a physical form factor such as a plastic credit card or SIM card, a payment account secured software module may be installed into the media device to support the "buy it now" feature. In such case, the media device 14 or remote control 18 may 20 be uniquely identified to support the "buy it now" feature. [0035] The media device 14 includes an identifying number that is a permanent identification number of the media device 14. For example, the media device 14 identifying number may be a serial number assigned to media device 14. One aspect of this identifying number is that the number is non-modifiable. In an 25 alternate embodiment in which a media device comprises a software based module (for example, one installed in a personal computer), the media device identifying number is a non-modifiable identification number associated with the software based media device. [0036] In response to receiving message 30, media server 22 transmits message 30 42 to a payment card management server 46. Message 42, which operates as a purchase selection indication, includes the media device ID, tag number 26, and the payment account information. Message 42 may be the same as message 30 or may be different but based upon message 30. Message 42 may include additional 7 information such as a shipping address associated with the payment account. Payment card management server 46 then determines a corresponding merchant e commerce server 50 based upon the tag number and transmits an order 54 to merchant e-commerce server 50. Merchant e-commerce server 50 then engages in 5 payment authorization and settlement communications 58 with a financial payment network 62 to complete the transaction. [0037] Figure 3 is a functional block diagram of a system 80 that illustrates a process for creating an established association between an authorized media device and a payment account according to one embodiment of the invention. The figures 10 and corresponding text are directed to a media device that is capable of receiving data and communicating over at least one of a plurality of network types. In one specific embodiment, media device 14 (as described here in Figure 3) is an IP media device (IPMD). Alternatively, the media device may be an IP television (IPTV) set top box. Additionally, in the described embodiment of Figure 3, the payment account 15 is associated with a smart card 34 produced in the form of a smart card. Generally, a process of system 80 supported according to an embodiment of the present invention is one that establishes an association between a user payment account and an authorized media device, such as media device 14. After such association is made, an IPMD wherein purchase selection messages may only be made for the 20 specified user account by the authorized media device 14. [00381 The process begins with a user generating an application 84 for a new payment account and producing the application 84 to a payment card processor 88. Payment card processor 88 is, for example, a credit card company that processes credit cards for issuer companies such as banks and other financial institutions or for 25 the bank itself. In general, references herein to "payment card processor" are references to payment card processing entities or companies. The user may utilize a web based interactive program or may physically deliver a paper application to the payment card processor 88, which then produces processed application 92 in an electronic form to bank 96 for processing. Processed application 92 is based on 30 application 84. [0039] While the example of Figure 3 illustrates the user providing the application directly to payment card processor 88, it should be understood that the user may also deliver the application to any other entity that subsequently provides the application to the payment card processor 88 including bank 96 and an IPMD service 8 provider. Accordingly, payment card processor 88 generates a processed application 92 to bank 96. Bank 96 then approves or denies processed application 92. [0040] Upon approving processed application 92, bank 96 generates an approval 5 100 to payment card processor 88. Bank 96 also generates a smart card request 104 to payment card personalization service 108. Upon receiving approval 100, payment card processor 88 generates a new user notification 112 to IPMD service provider 116. In an alternate approach, bank 96 generates and transmits new user notification 112 to IPMD service provider 116 after bank 96 approves processed 10 application 92. IPMD service provider 116 then transmits an IPMD order 120 to IPMD distribution center 124. IPMD distribution center 124 then ships an IPMD to the user. Finally, during this process, payment card personalization service 108 ships smart card 34 for insertion into port 38 of IPMD 14. In the embodiment in which the IPMD comprises an IPTV set top box, for example, IPMD distribution 15 center 124 sends the IPTV set top box to the user. [0041] In one embodiment of the invention, smart card 34 includes a serial number or other identification number of media device 14. This serial number is a non modifiable number and is hardware based. Accordingly, subsequent purchase orders can only be approved if the ID number stored on the smart card and the ID of 20 the media device match when a purchase selection is made by an authorized media device in one embodiment of the invention. The process includes media server service provider 116 producing the hardware ID number to either bank 96 or payment card processor 88 for delivery to payment card personalization service 108. In general, the ID of the authorized media device must match the ID of a media 25 device that generates a purchase selection message for an account having an established association with the media device before a purchase approval can be generated. [0042] Payment card personalization service 108 is, in one embodiment, an element of a network operable to generate personalized smart cards that include 30 account information as well as encryption keys and other information to support the creation of secure smart cards. For example, US Patent 6,367,011 to Lee et al. provides details of one smart card personalization system which, as shown in Figure 1 of Lee et al., includes elements at the issuer location as well as elements at a "personalization location." 9 [0043] The methods and apparatus of the embodiments of the invention are applicable to Internet based media devices that operably couple to an associated media server from which media content or associated products or services may be purchased over a public network. For example, the concepts herein are applicable 5 to game systems such as the Sony WiiTM1 GamecubeM, and XBOXTm and other similar systems. Generally, though, media content and advertisements for products and services are produced to a display device to allow a user to make purchases associated with the media content and advertisements merely by pressing the so called "buy it now" button on a remote control, a dedicated button on the system, or 10 a so called "soft button" of a graphic display. A display for displaying media with advertising may comprise any known display device including television sets, traditional monitors, LCD displays, or projectors. These displays may be separate or integrated into the media device. For example, the display may be an LCD screen of an audio player such as an MP3 player. Many such systems include an ability to 15 communicate over an IP network though the ability to communicate over an IP network is not required. Generally, the embodiments include any system that is operable to deliver media to the user device and to receive a purchase indication from the user device through the same or a different network while a purchase transaction is pending. 20 [0044] Figure 4 is a functional block diagram of a device 130 that is operable to receive and process an application for a payment account that is to be associated with media device 14 according to one embodiment of the invention. Device 130 includes an input/output module 132 operable to receive user inputs from a keyboard, mouse and other user input devices and further to generate display 25 signals and/or audio signals for display on a display device and for playing sound through a speaker system, respectively, to create a user interface with device 130. As such, device 130 is operable to receive an application directly from a user in addition to receiving the application over the Internet. A processing module 134 is operable to communicate with input/output module 132 and to process incoming 30 signals based upon user input and upon signals received over the Internet. Memory 130 is operable to store computer instructions and data. [0045] The processing module 134 may be a single processing device or a plurality of processing devices. Such a processing device may be a microprocessor, micro controller, digital signal processor, microcomputer, central processing unit, field 10 programmable gate array, programmable logic device, state machine, logic circuitry, analog circuitry, digital circuitry, and/or any device that manipulates signals (analog and/or digital) based on hard coding of the circuitry and/or operational instructions. The processing module may have an associated memory and/or memory element, 5 which may be a single memory device, a plurality of memory devices, and/or embedded circuitry of the processing module. Such a memory device may be a read-only memory, random access memory, volatile memory, non-volatile memory, static memory, dynamic memory, flash memory, cache memory, and/or any device that stores digital information. 10 [0046] Note that when the processing module 134 implements one or more of its functions via a state machine, analog circuitry, digital circuitry, and/or logic circuitry, the memory and/or memory element storing the corresponding operational instructions may be embedded within, or external to, the circuitry comprising the state machine, analog circuitry, digital circuitry, and/or logic circuitry. Further note 15 that, the memory element stores, and the processing module executes, hard coded and/or operational instructions corresponding to at least some of the steps and/or functions illustrated in Figures 2-3 and in the Figures that follow Figure 4. [0047] Continuing to refer to Figure 4, processing module 134 of device 130 is operable to retrieve computer instructions from memory 136 which instructions 20 define operational logic of device 130 including logic for performing the method steps of at least one embodiment of the invention described herein this specification. For example, the logic defined by the computer instructions support application processing for payment accounts that will be associated with a media device. Finally, processing module 134 is operable to engage in wireless and wired 25 communications through various data packet networks and wireless communication networks via network communication module 138 to support the various method steps described herein. [0048] More specifically, processing module 134 is operable to communicate with the input/output module 132, network communication module 138, and memory 136 30 to execute the computer instructions stored within memory 136. Based upon at least one of the stored data in memory 136, the received data from network communication module 138, and the user data entry received from input/output module 132, processing module 134 is operable to receive and process an application for a media device associated payment account, transmit an approved 11 application indication, and support or establish an established association between the payment account and media device 14. [0049] Figure 5 is a functional block diagram of a network operable for establishing and supporting electronic transactions according to one embodiment of the 5 invention. Network 140 generally comprises financial network devices that interact with media service provider devices, merchant devices and user media devices having an ability to establish and subsequently support a purchase selection. More specifically, the network elements or devices of network 140 are operable to initially support creation of personalized payment cards and to subsequently support 10 electronic transactions using the payment cards. In at least one embodiment, the payment cards are smart cards have a form factor similar to subscriber identity module (SIM) cards in that they may be received by SIM card reader to communicate with a computer or other device that has a port or interface to communicate through a SIM card reader with the smart card. In one particular 15 embodiment, through not required, the smart card is formed as an actual SIM card. [0050] Here, the payment card, with associated payment account track 1-3 type data, as well as other information, may be encrypted and protected by the smart card. In one embodiment, the data is partially encrypted to allow access to certain types of data while protecting other types of information. Examples of payment data 20 which may be fully protected, partially protected or not protected all according to implementation include payment account number, expiration date, usage limits including purchase amounts or totals, a permanent ID of an authorized device that has an established association with the payment account, issuer ID, payment account processor ID, and personal identification number. One aspect of network 25 140 is that network 140 is operable to support an application and account creation process that results in a payment account having an established association with a specified user media device from which a user may initiate purchase transactions using the payment account. [0051] Network 140 includes a media server device 142, a user media device 144, 30 a media advertisement response processor 146, and a media based merchant device 148 that are all coupled to communicate through one or more public networks 150. Media server device 142 is operable to provide media content and tagged advertisements to user media device 144. 12 [0052] Media server device 142 can be, for example, a device that delivers media by way of wireless communication channels and/or wired networks. The wireless networks can comprise the wireless cellular networks, satellite based wireless networks, or even public wireless local area networks and wireless wide area 5 networks. The wired networks can be any known technology including cable networks for delivering so called broadcast television programming content, the public switched telephone networks, or computer and data networks such as Internet Protocol networks. According to implementation, these various types of networks can be used either for delivery of media content, delivery of communication 10 messages that support an electronic transaction, or both. For example, one type of network may be used for delivering the media content while another is used to conduct purchase related communications. Alternatively, one type of network may be used for both. [0053] Continuing to refer to Figure 5, network 140 includes an acquiring entity 15 device 152 of a payment card acquirer company that is operable to communicate with media based merchant device 148 over public network 150 as well as with a payment account processor entity device 154 or 156 of a payment account processor company by way of a proprietary network 158. Acquiring entity device 152 includes a mapping of user payment accounts with transaction processing 20 entities such credit card processing companies. [0054] A proprietary interface 160 is utilized to enable acquiring entity device 152 to communicate through proprietary network 158. An issuer device 162 also is coupled to communicate through both the public network 150 and through proprietary network 158 by way of interface 164. Similarly, a payment card personalization 25 service device 166 is coupled to communicate through both the public network 150 and through proprietary network 158 by way of interface 168. Finally, as shown, each transaction processor entity device 154 is operable to communicate with one or more databases that include payment account information and a permanent ID of a module or media device from which authorized purchase transactions may be 30 initiated. [0055] In operation, media server device 142 is operable to produce media with a tag number for identifying items or services that may be purchased by a user. Accordingly, user media device 144 is operable to receive and play the media content for advertisements or advertised items. Media device 144 is also operable to 13 produce purchase selection indications to media server device 142 with the advertisement tag number to identify the advertisement that corresponds to the purchase selection indications. In an alternate embodiment, the purchase selection indications are produced to media advertisement response processor 146. Here, a 5 first type of public network delivers media to user media device 144 and a second type of network delivers user media device responses to media server device 142 or to media advertisement response processor 146. A public network 150 is used for delivery of the media content though a private network may be used instead. [0056] Once either device 142 or 146 receives a purchase selection indication, 10 device 142 or 146 is operable to forward the purchase selection indication to merchant device 148 over public network 150. Merchant device 148 is then operable to generate and provide a purchase authorization request to acquiring entity device 152. Acquiring entity device 152 then forwards the purchase authorization request to a transaction processor entity device 154 by way of 15 proprietary network 158. The transaction processing entity device then performs several authorization processing steps including evaluating account standing and verifying that all authorization associated data appears to be proper according to implemented guidelines. Transaction processor entity device 154 then forwards the authorization request to a payment account issuer device 162. Payment account 20 issuer device then makes a final authorization decision to approve or deny the authorization request. [0057] User media device 144 is operable to provide payment account information and an ID of user media device 144 along with the purchase selection indication. Accordingly, at least one of the media server device 142, the media advertisement 25 response processor 146, the acquiring entity device 152 and the issuer device 162 is operable to compare the user media device ID to the payment account information as a part of determining whether to approve (or forward) the authorization request. [0058] Media server device 142 is operably disposed to communicate through public network 150 with merchant device 148 that is identified by the tag number of 30 an advertisement. Merchant device 148 is further coupled to communicate over public network 150 with acquiring entity device 152 to initiate transaction approval and settlement processing. Generally, acquiring entity device 152 is operable to receive the authorization request for a purchase transaction and to communicate 14 with at least one device in a financial network through a proprietary interface and/or network to request and receive a purchase authorization approval. [0059] An additional aspect of the operation of network 140 is that any of devices 142, 148, 154 and 162 is operable to provide account application information 5 including at least a portion of an account number directly or indirectly to payment card personalization service device 166. Payment card personalization service device 166 is operable to receive the permanent ID of user media device 144 to embed the permanent ID within the data stored within the payment card. For example, the ID may be stored in an encrypted form in a smart card along with other 10 account information to create an established association between the account and the user media device 144. [0060] In an alternate embodiment, an established association between the account and the user media device may be created through an initial communication. Here, devices 154 and 162 are operable to establish a common encryption key with 15 one of user media device 144 or smart card 34 installed within user media device 144 to generate an encryption key for protecting data in purchase transactions initiated by the (authorized) user media device. This encryption key is then used to protect at least a portion of the account information. Accordingly, the encrypted portion of the account information will only be properly decrypted if an authorized ID 20 is provided as a part of a purchase selection since the provided ID will be used to select an encryption key for a received authorization request. In general, a user media device ID is transmitted as a part of or in association with a purchase selection and, if the ID is one that has an established association with the payment account identified in the transaction and/or account data, then the transaction may 25 be approved or forwarded to a different device for approval. [0061] Figure 6 is a functional block diagram of a computer network 170 operable to support payment authorization processing according to one embodiment of the invention. A plurality of media based merchant devices 172-174 are each operable to generate and provide transaction and/or account data and to transmit such data 30 through a public network 176 to an acquiring entity device 178. Acquiring entity device 178 is then operable to provide the transaction and/or account data to an in band processing entity device 180 or to an out of band transaction processing entity device 182. Here, in-band processing entity device 180 is further operable to provide the transaction and/or account data to an issuer device 184. 15 [0062] The transaction and/or account data is transmitted as a part of an authorization request for approval of a pending purchase selection. The transaction and/or account data includes an ID of a user media device that generated the purchase selection request. The acquiring entity device 178 comprises a plurality of 5 processing modules including, in the described embodiment, a prepaid account processing module, a credit account processing module, and a group account processing module. [0063] Based upon the transaction and/or account data, a corresponding module of the modules of device 178 process the transaction and/or account data to determine 10 which processing entity device should receive the transaction and/or account data. For example, for a credit account or group account, an in-band processing entity such as entity 180 may be the device to which the transaction and/or account data should be transmitted. Similarly, for a prepaid account, the prepaid account processing module may determine that an out-of-band transaction processing entity 15 such as entity 182 should receive the transaction and/or account data. Generally, Figure 6 illustrates that a single acquiring entity device may interact with a plurality of merchant devices 172-174 as well as a plurality of processing entity devices 180 182. [0064] Any one of acquiring entity device 178, in-band transaction processing entity 20 device 180, out-of-band transaction processing entity device 182, or issuer device 184 is operable to determine if the permanent ID of the media device that transmitted the purchase selection indication is one that corresponds to and is authorized to initiate purchase selections for the payment account identified by the payment account information. Such a determination may be made based upon an established 25 association between the payment account and the device ID in a plurality of described approaches. [0065] Figure 7 is a functional block diagram of a payment card according to one embodiment of the invention. Payment card 34 is a smart card and includes a plurality of magnetic stripe equivalent (MSD) data blocks including track account 30 data blocks 190-192, an encryption data block 194 and a media device ID data block 196. Any or all of the MSD data blocks 190-196 may be encrypted or may include encrypted data. The "track account" data (i.e., magnetic stripe equivalent data) of blocks 190-192 is merely the type of data that has historically gone into so called track 1, track 2, or track 3 of a magnetic strip of a payment card. Here, two track 16 account data blocks are provided in which one includes encrypted data and one includes unencrypted data though the payment card may including additional account data blocks. Encryption data block 194 includes an encryption key for encrypting data and/or for encrypted communications between the smart card 5 (payment card 34) and another device such as a processing entity device 180 or issuer device 184. In one embodiment, a smart card personalization service creates a unique derived key from a master key that is stored within encryption data block 194. If the master key is altered in a subsequent process, the new unique derived key is stored within encryption data block 194. Media device ID block 196 includes a 10 media device ID that was received by the smart card personalization service for associating with a payment account. In one embodiment of the invention, the unique derived key is derived using the media device ID 196 as derivation data. [0066] Figure 8 is a functional block diagram of a computer system 200 that performs an exemplary process for creating an established association between a 15 payment account and a media device according to one embodiment of the invention. Referring now to Figure 8, payment card company server system 204 is operable to communicate with a user 208 to receive a payment account application that is to be associated with media device 14. For exemplary purposes, user 208 is coupled to and communicates with payment card processor server 220 through a secure IP 20 tunnel 212 over a data packet network such as the Internet 216. Alternatively, user 208 may enter such application using a keyboard, mouse, and display coupled to payment card processor server 220 or to financial institution issuer server 224. [0067] Secure IP tunnel 212 is an encrypted communication that is transmitted through wired and/or wireless communication paths within one or more data packet 25 networks such as the Internet. Any known technology for securing data packet transmissions through wired and wireless communication links may be included. Hereinafter, all references to secure IP tunnels and/or secure communication channels should be understood to refer to encrypted and protected communication through at least one of a wired or wireless network and may include encrypted 30 transmissions through known data packet networks such as Internet 216. Moreover, in the embodiments that follow, it should be understood that at least a portion of the payment account related data is encrypted whether or not shown or described in relation to the figures in addition to encryption of communications between devices. 17 [0068] Payment card company server system 204 includes at least one of a payment card processor server 220 and a financial institution issuer server 224. Generally, the various embodiments of network 200 and, more specifically, payment card company server system 204 may include a single payment card processor 5 server 220, a single financial institution issuer server 224, or both. In an embodiment that comprises both, payment card processor server 220 communicates with financial institution issuer server 224 over a secure IP tunnel. [0069] In system in which payment card company server system 204 includes only one server 220 or 224, either server 220 or 224 performs the same basic tasks of 10 receiving and approving applications and supporting the creation of a smart card based payment account that is to have an established association with a media device 14. Thus, it may be seen that either a payment card processor company, for example, Visa, Inc., or a financial institution, may perform all of payment account application processing that has historically been performed jointly by both 15 institutions. Accordingly, in the various embodiments of the invention, a system 200 may comprise one processor server 220, one issuer server 224, or both to support the creation of a payment account that is to have an established association with a media device 14 as an authorized media device. Payment card processing server system 204 therefore reflects any of these embodiments. Generally, supporting the 20 creation of a smart card based payment account includes any of the steps or transmission of any of the messages described herein for system 204 or for servers 220-224. [0070] Payment card processing server system 204 is therefore operable to generate an approved indication to a smart card personalization service server 228 25 over a secure IP tunnel 232 after the application has been approved. Each smart card personalization server such as smart card personalization server 228 is similar to payment card personalization service 108 of Figure 3 in that server 228 may represent but one element of a system that supports smart card creation and personalization. The approved indication includes customer payment account 30 information that is to be embedded within a smart card 34 generated by smart card personalization service server 228. [0071] Payment card processing server system 204 is also operable to transmit a media device new user account indication to a media device service provider server 202 over a secure IP tunnel 206 through a data packet network or other public 18 network such as the Internet. Media server service provider server 202 is then operable to transmit an order to media server distribution center server 210 over secure IP tunnel 214. In response, media server distribution center server 210 prompts the mailing or delivery of a media device to user 208. Additionally, in one 5 embodiment, media server distribution center server 210 is operable to produce the media device identifying number for the media device being sent to user 208 to one of payment card processing network 218 over secure IP tunnel 222 or to payment card company server system 204 by way of secure IP tunnel 226. This identifying number is transmitted to support subsequent payment authorization and settlement 10 processes that evaluate a media device user payment account in relation to the media device identifying number and, more generally, to support the creation of an established association between media device 14 and the payment account for user 208. [0072] If the media device identifying number is produced to payment card 15 processing server system 204 by server 210 and not to PCP network 218, in an alternate embodiment, then payment card processing system server system 204 is operable to distribute the media device identifying number to PCP network 218 as necessary to support payment authorization and settlement processes. For example, payment card processing system server 204 is operable to transmit the 20 media device identifying number and at least a portion of the associated media device payment account information to at least one of a transaction authorization network server to support the authorization of transactions based in part upon the media device identifying number and/or to a settlement processing network server to support the settlement of transactions based in part upon the media device 25 identifying number. [0073] Figure 9 is a functional block diagram of a computer system 250 that includes a payment card processor server 258 and a financial institution issuer server 266 that jointly support creating an established association between a payment account and a media device according to one embodiment of the invention. 30 A user 208 provides a media device payment account application 254 to payment card processor server 258 for a payment account for use in association with a media device such as media device 14 of the prior figures. The application may be provided through manual entry or in an electronic form, through a computer network or Internet connection as described in relation to Figures 3-5 and 7-8. Payment card 19 processor server 258 then generates message 262 which includes processed media device payment account application to financial institution server 256. [0074] Processed media device payment account application 262 is based upon the media device payment account application 254 and may include additional 5 information such as an application reference number or other application identifying information.. The information is provided in a defined format to enable financial institution issuer server 266 to receive and further process the application. A flexible extended markup language type protocol may be used, for example, for the defined format. 10 [0075] Financial institution issuer server 266 then generates message 270 which includes an approved media device payment account application indication to payment card processor server 258. This indication in message 270 may be based upon a user input. For example, a credit or loan officer of the financial institution may approve the application and enter such approval to allow financial institution 15 issuer server 266 to transmit message 270. Alternatively, logic executed by financial institution issuer server 266 allows, at least in some conditions, for approval of the media device payment account processed application of message 262. [0076] The approved media device payment account application indication in message 270 specifically includes the application reference number or identification 20 information. Additionally, financial institution sever 266 also generates message 274 which includes the approved media device payment account application indication to smart card personalization service server 278 to facilitate creation of a smart card based user smart card payment account. The approved media device payment account application indication of message 274 includes a user 208 mailing address 25 as well as additional user 208 payment account information to allow smart card personalization service server 278 to prompt a mailing of a generated smart card with the user 208 payment account information to user 208. [0077] Payment card processor server 258 generates message 282 which includes a media device payment account new user indication to media server service 30 provider server 286. Media server service provider server 286 then generates media device order in a message 290 to media device distribution center server 294. Media device distribution center server 294, in response to receiving message 290, initiates a delivery or mailing of a media device 14 to user 208. Additionally, in one 20 embodiment, media device distribution center server 294 then produces message 298 which includes media device payment account information and the media device ID to authorization and settlement network elements or devices of authorization and settlement network 304. The authorization and settlement network 304 is similar to 5 and may include one or more of the financial network elements or devices of Figure 5 to support, as necessary, the established association between payment accounts and media devices. Media device distribution center server 294 is also operable to provide the media device ID in message 302 to payment card processor server 258 to allow payment card processor server 258 to take one or more subsequent steps to 10 create the established association between the media device based on the media device ID received in message 302 with the user 208 payment account. [0078] Payment card processor server 258, for example, may subsequently transmit message 298, in an embodiment in which server 294 does not generate message 298, to authorization and settlement network elements of authorization and 15 settlement network 304. Additionally, payment card processor server 258 is operable to produce the media device ID in a message 306 to smart card personalization service server 278 to enable smart card personalization service server 278 to include the media device ID of message 306 within the user 208 payment account information to support creating the established association 20 between the payment account and media device 14. Message 306 may include additional information to enable smart card personalization service server 278 to associate the media device ID to the correct payment account. [0079] Figure 10 is a functional block diagram of a computer system 310 that includes a payment card company server 314 operable to support creating an 25 established association between a payment account and a media device according to one embodiment of the invention. In general, references herein to "payment Card Company" are intended to relate to companies that serve in the role of a payment card processing company such as a credit card processing company, or to a payment card issuer such as a bank or other financial institution, or to a combination 30 of an issuer and a processing company. Accordingly, a payment card company server such as server 314 is one that is capable of performing functionality of any issuer server and/or any payment card processor server and represents one or more servers. 21 [0080] Returning to Figure 10, a user 208 provides a media device payment account application 254 to payment card company server 314 for a payment account for use in association with a media device such as media device 14. Payment card company server 314 is operable to support approval of the media device payment 5 account application and then to generate message 274. Message 274 includes an approved application indication and is transmitted to smart card personalization service server 278 to facilitate creation of a smart card that includes payment account information. [0081] The approved application indication of message 274 includes a user 208 10 mailing address as well as additional user 208 payment account information. This allows smart card personalization service server 278 to prompt a mailing of a generated smart card with the user 208 payment account information to user 208. This indication of message 274 may be based upon a user input wherein, for example, an approval of the application by a credit or loan officer of the financial 15 institution. Alternatively, the indication of message 274 may be based upon logic executed by a payment card company server that allows, at least in some conditions, for approval of an application based upon the data provided within a media device payment account application. [0082] Payment card company server 314 also generates message 282 which 20 includes a media device payment account new user indication to media server service provider server 286. Media server service provider server 286 then generates media device order in message 290 to media device distribution center server 294. Media device distribution center server 294 then initiates a delivery or mailing of a media device 14 to user 208. Additionally, in one embodiment, media 25 device distribution center server 294 then produces media device payment account information and a media device ID in message 298 to authorization and settlement network elements of authorization and settlement network 304. Media device distribution center server 294 is also operable to optionally provide the media device ID in message 302 to payment card company server 314. Payment card company 30 server 314 is operable to then take one or more subsequent steps to create an established association between the media device and the user 208 payment account. [0083] Payment card company server 314, for example, may subsequently transmit payment account information and the media device ID in message 298 to 22 authorization and settlement network elements of authorization and settlement network 304 in place of server 294 sending message 298. Additionally, payment card company server 314 may produce the media device ID in message 306 to smart card personalization service 278. This enables smart card personalization 5 service server 278 to include the media device ID received in message 306 within the user 208 payment account information to support approval and settlement processes that are based upon both user account information and an ID of a media device server 14. Message 306 includes the media device ID in message 302 and may also include additional information to enable smart card personalization service 10 server 278 to associate the media device ID to the correct payment account. [0084] The operation performed in relation to Figure 10 and its description herein may be modified, for example, by substituting payment card company server 314 with a financial institution issuer server 266, for example, wherein financial institution issuer server 266 performs all of the steps and message transmissions described for 15 payment card company server 314. Here, the financial institution server operates as payment card company server 314. Accordingly, for such an embodiment, any reference to payment card company server 314 includes financial institution issuer server 266. [0085] In current processes, the roles of the payment card processor company and 20 financial institution are distinct and thus a process as illustrated in relation to Figure 9 may be implemented. If payment card processor companies and financial institutions expand their roles to overlap with tasks traditionally performed by the other, then an embodiment of the invention similar to that described here in Figure 10 could be realized. The payment card company server may be a part of a network 25 or system of any entity that enters the space of issuing payment cards as well as the credit or monetary balances to facilitate the settlement process for approved purchases. [0086] Figure 11 is a functional block diagram of a computer system 350 that includes a payment card company server operable to support creating an 30 established association between a payment account and a media device according to one embodiment of the invention. A user 354 provides a media device payment account application 358 to media device server system 362 for a payment account for use in association with a media device such as media device 14. As may be seen, media device server system 362 may include both a media server and a media 23 device distribution center server. The functionality of these two servers may readily be rearranged or distributed across a different number of servers or may even be combined into one server. Each such embodiment is represented by media device server system 362. Each of the described embodiments may be similarly modified. 5 [0087] Media device server system 362 is operable to generate a media device payment account processed application 360 in an electronic form to payment card company server 370. As before, payment card company server 370 is a server that is in operable, among other tasks, to initiate a payment card and account generation process. Moreover, payment card company server 370 can comprise any of the 10 embodiments of payment card company server system 204 of Figure 8. Stated differently, server 370 may comprise a single module similar to server 314 of Figure 10 or a plurality of modules similar to servers 258 and 266 of Figure 9. [00881 Payment card company server 370 is then operable to generate message 374 which includes a media device approved application indication to smart card 15 personalization service server 378 to facilitate creation of a smart card for a payment account. The media device payment account approved application indication of message 374 includes a user 354 mailing address as well as additional user 354 payment account information [0089] Payment card company server 370 generates message 382 which includes 20 media device payment account information to media device server system 362. The media device payment account information of message 382 may comprise an indication that the account is approved. Message 382 comprises at least some of the payment account information to allow media device server system 362 to perform an initial authorization for a user selected charge using the "pay it now" 25 feature described previously. Generally, references to transmitting payment account information include transmitting any portion of the payment account information including all of the payment account information that is stored within or received by a device. [0090] Additionally, in one embodiment, media device server system 362 then 30 produces message 386 which includes media device payment account and the media device ID to authorization and settlement network elements of authorization and settlement network 304. Media device server system 362 is also operable to provide message 390 which includes the media device ID to payment card company 24 server 370 to allow payment card company server 370 to take one or more subsequent steps to create the established association between the media device ID 390 (and therefore the associated media device) and the user 354 payment account. In one embodiment, media device server system 362 is further operable to provide 5 message 390 which includes the media device ID directly to smart card personalization server 378 to enable the generation of smart cards having not only payment account information, but also the media device ID. [0091] Figure 12 is a flow chart that illustrates a method for a payment account according to one embodiment of the invention. The method initially includes 10 receiving and processing an application for a media device associated payment account (step 400). Thereafter, the method includes transmitting an approved application indication to a remote server to initiate a payment card generation process (step 404). Additionally, the method also includes taking one or more steps supporting an established association between the payment account and the media 15 device (step 408). [0092] The method also includes, in one embodiment, receiving the application and generating the processed application to a financial institution server and subsequently receiving an approved indication from the financial institution server (step 412). Finally, the method includes determining and transmitting a media 20 device identification number (ID) and at least a portion of the media device associated payment account information to at least one device or element of a transaction authorization and settlement network to support the authorization of transactions based in part upon the media device ID (step 416). [0093] Figure 13 is a flow chart that illustrates a method for a payment account 25 according to one embodiment of the invention. The method steps of Figure 13 include, receiving the payment account application, and generating an approved application indication to a smart card personalization service server (step 420). After the account is approved, the method further includes transmitting a media device new user account indication to a media device service provider server (step 424). 30 The method also includes receiving a media device identifying number (step 428). Thereafter, the method includes transmitting the media device identifying number to the smart card issuing server to support an established association with the payment account (step 432). The media device identifying number is an unalterable 25 identifying number such as a serial number of a hardware device or software module. [0094] The method includes an optional step of communicating with the media device or a smart card installed in the media device to receive the media device 5 identifying number (step 436). A secure connection is established with either the media device or with the smart card installed in the media device to enable the payment card processing server to receive the media device ID directly from the media device or the smart card installed in the media device. This step may further include determining an encryption key for data, especially payment account 10 information that is to be transmitted by the media device with a purchase selection indication. [0095] Figure 14 is a flow chart that illustrates a method for a payment account according to an alternate embodiment of the invention. The method initially includes receiving a media device identifying number (step 450). The media device number 15 may be received by way of an Internet connection with a remote user terminal through a communication module of the server, an input/output module of the server receiving user entries, and a communication link with the media device. [0096] Thereafter, the method includes transmitting the media device identifying number to at least one financial network device to support creating an established 20 association between the media device and the payment account (step 454). The method further transmitting the media device identifying number to a smart card personalization service server to support creating an established association between the media device and the payment account (step 458). The method also optionally includes transmitting the media device identifying number to an issuer 25 server to support creating an established association between the media device and the payment account (step 462). Finally, one embodiment includes engaging in communications to determine an encryption key that corresponds to the established association between the media device and the payment account (step 466). More specifically, the encryption is for encryption a portion of data that is to be transmitted 30 by an authorized media device having the established association with the payment account. [0097] In one specific embodiment of the invention, the three secure methods for "personalizing" the remote control, an 1/O device and a media device (for example, 26 an IPTV set top box) with user payment account related data are provided. Generally, the three secure methods for personalizing the media device include pre issuance personalization, personalization during installation, and post-issuance personalization. Pre-issuance personalization includes personalizing the media 5 device with user payment account information or data prior to either the payment card (e.g., a smart card) or the media device being shipped or delivered to the customer. Personalization during installation is a process wherein the device is personalized during the installation phase of the media device. Finally, post issuance personalization is a process wherein a new card number is entered post 10 installation or a card number is changed, added, or deleted post installation. [0098] All three methods may require a payment card or account activation process prior to use of the payment functionality on the device. Activation will take place via traditional financial institution methods such as activation by phone, IVR or online activation. In all three personalization scenarios, the media device is assumed to 15 contain a secure module, such as a smart card, tamper resistant module or secure access module (SAM). The device is also assumed to have the necessary slots or ports to insert a smart card or SAM. The secure module may hold an asymmetric key pair with a public key certificate and one or more diversified symmetric keys. In all personalization scenarios actual personalization data may be replaced with a 20 message digest generated by a secure hash algorithm. The actual data can be reconstituted and verification of the message digest may be substituted in lieu of transmission or storage or the actual data. [0099] Figure 15 is a flow chart that illustrates a method for personalizing a smart card for a media device according to one embodiment of the invention. In the two 25 personalization scenarios described above wherein personalization occurs during installation or post delivery of either the media device or the smart card, a method is required for completing the setup for a media device that is to have an established association with a user payment account. The method includes creating a user payment account (step 470). The user payment account is one that is to be used for 30 purchases made through the media device. [0100] The method includes subsequently establishing a secure communication link for securely carrying data between a financial network server and a smart card module installed within the media device (step 474). The financial network server may be a server such as a financial institution server or a payment card processor 27 server. The server and the media device (or smart card) communicate to support the step of creating an established relationship between the media device and the user payment account (step 478). [0101] From the perspective of the smart card or media device, this step includes 5 transmitting a media device ID in relation to the user payment account information to support creating the established relationship between the media device and the user payment account. From the perspective of the network server, this step includes receiving the media device ID in relation to the user payment account information and storing and transmitting such information to other servers in the financial 10 network to facilitate processing in which the media device ID for a purchase selection message may be compared to the user payment account information as a part of approving and settling a purchase transaction. [0102] The method further includes the financial institution server transmitting and the smart card and media device receiving full track 2 data equivalent of a magnetic 15 strip of a payment card or a full set of personalization data for a contactless card (step 482) and the smart card securely storing the received track 2 data equivalent (step 486). Accordingly, when the user makes a purchase selection, a purchase selection message may include the user payment account information (including the track 2 data equivalent). With the above method, a system may be updated to 20 reflect a new account or piece of hardware. [0103] Figure 16 is a functional block diagram of a computer system 500 that determines whether to approve purchase authorization requests for purchase selections made through a media device according to one embodiment of the invention based in part upon an established association between a user payment 25 account and an authorized media device. Generally, in the embodiment of Figure 16, system 500 is operable to conduct a media device ID of a media device that initiates a purchase selection message through various network elements or devices to a payment card processor server. This ID is transmitted in addition to messages transmitted to support a purchase that corresponds to a purchase selection message 30 generated by a specified media device. The payment card processor server is operable to perform at least a partial approval of a purchase authorization request based in part upon the received media device ID. 28 [0104] More specifically, a media server 504 produces media content including an advertisement or other tagged media content with tag number 26 to media device 14. Media device 14 displays the media content on an associated display including the advertisement. In response to receiving a purchase selection from an associated 5 remote control 18, for example, depression of a "buy it now" button on the remote control, media device 14 generates message 30 that includes tag number 26 identifying the tagged media content, a media device ID and customer payment account information to media server 504. The customer payment account information is extracted from smart card 34 which is installed or loaded within media 10 device 14. In one embodiment, at least a portion of the payment account information is encrypted. [0105] Media server 504, in the described embodiment of the invention, then produces message 508 including tag number 26, the payment card account information and the media device ID of media device 14 to payment card subscriber 15 management server 512. Upon receiving message 508, server 512 is operable to translate the tag number into a SKU number with a corresponding price, to verify customer details in the payment account information, and the standing of the customer to whom the payment account belongs. Server 512 is further operable to identify and generate message 516 which includes the SKU number and the price for 20 the item the user is wishing to purchase as indicated in the purchase selection message 30. Message 516 also includes, in one embodiment, the media device ID. Part of generating message 516 includes determining which merchant server 520 is to receive message 516. In one embodiment, the SKU number includes an indication of the merchant server 520. 25 [0106] Upon receiving message 516, merchant server 520 is operable to generate message 524 which includes a payment authorization request and the media device ID to a payment card acquirer payment server 528. The payment authorization request of message 524 further includes the payment card account information. Server 528 is then operable to determine a corresponding payment card processor 30 server 536 and to send message 532 to corresponding payment card processor server 536. Message 532 includes the payment authorization request and the media device ID of the media device 14 that generated purchase selection message 30. [0107] Upon receiving message 532, payment card processor server 536 is operable approve or validate the payment authorization request and to determine a 29 payment card issuer company that issued the payment card account. Server 536 is further operable to place an authorization hold on an amount that is based upon an amount specified in the payment authorization request message. Typically, an authorization hold is placed on a specified amount based an indicated transaction 5 amount to prevent charges from exceeding specified limits such as daily limits, credit limits, etc. Such an authorization hold is typically placed when the authorization request is approved if the account status and specified transaction and credit limits allow approval of the transaction in view of account balances and other authorization holds that have not yet been settled. 10 [0108] Authorization server 536 is operable to also supplement traditional authorization processes by determining whether the received media device ID is an ID of a media device 14 that is authorized to generate purchase selection 30 for the payment card account to validate the transaction. An authorized media device is one that has an established association with the payment account. After approving 15 or validating the payment authorization request, payment card processor 536 transmits the payment authorization request in a payment authorization request message 540 to financial institution issuer server 544. Financial institution issuer server is a server of the previously identified payment card issuer company. [0109] More specifically, server 536 compares the received media device ID to a 20 media device ID that is embedded within the payment card account information (which was originally stored on smart card 34 when smart card 34 was created). Thus, server 536 is operable to extract the media device ID stored within the payment card account information. If the media device ID stored within the payment card account information corresponds to the received media device ID of the media 25 device 14 that generated purchase selection message 30, authorization server 536 sends payment authorization request message 540 to financial institution issuer server 544 indicating that it has approved the payment authorization request for approval. In one embodiment, mere transmission of the payment authorization requests indicates the approval by the authorization server 536. Alternately, an 30 express approval or denial by server 536 may be included in message 540 to enable server 544 to validate or override the determination by server 536. [0110] After receiving message 540, financial institution issuer server 544 is operable to generate message 552 to server 536 that indicates approval (or denial) of the purchase authorization request. Server 536 then generates message 556 to 30 server 528 which then sends message 560 to merchant server 520. Messages 556 and 560 both include the approval indication generated by server 544. Merchant server 520, upon receiving message 560, initiates delivery (assuming an approval indication) of the product or service to an address associated with the payment card 5 account holder. In the illustrated example, merchant server 520 produces delivery instructions 564 to product service supplier server 568. [0111] In one embodiment, the media device ID and at least a portion of the payment account information transmitted within the payment authorization request is encrypted or coded in a manner requiring a corresponding code or encryption key to 10 extract the information. Accordingly, payment card processor server 536 is operable to decode or decrypt the media device ID embedded within the payment account information with a previously received (or determined) encryption key or code for decrypting or decoding the embedded ID. In the example shown, a message 548 is received which includes the encryption key or code. The encryption key or code 15 may be received from an alternate source including, for example, media device 14 or media server 504. In one specific embodiment, the encryption key is based upon the media device ID. [0112] In the embodiments that reference the media device ID being embedded within the payment account information, it should be understood that there are many 20 embodiments for embedding such an ID. For example, the authorized media device ID may be embedded directly within the encrypted payment account information. Alternatively, the media device ID may be used to identify an encryption key that is used to encrypt or protect the encryption information for an authorized media device for the user payment account. Accordingly, based upon a received media device ID, 25 an authorization server 536 selects a corresponding encryption key which will only work to provide access to the encrypted payment account information if the media device that generated the purchase selection message 30 is an authorized media device (for the user payment account in the payment authorization request). Because an encryption key is associated with an ID of a media device, the payment 30 card company server can determine that the media device that generated message 30 is an authorized media device based on the payment data being successfully decrypted and can therefore approve or validate the payment authorization request upon successfully decrypting the payment authorization request. 31 [0113] In one specific embodiment, smart card 34, for example, initiates an encrypted communication with payment card processor server 536 to change an initial key for smart card 34 to a new key to perform a "key rotation." In one embodiment, the new key is associated with the media device ID to associate the 5 smart card (and therefore, user payment account) to the media device and to define the media device as the authorized media device. In this embodiment the new key is derived from a host based master key using the media device ID as derivation data. Thus, the payment card processor server 536 and the media device 14 are able to generate a unique encryption key that is associated with the user payment account 10 (and smart card and media device). [0114] In the embodiment of Figure 16, a payment card processor server 536 and financial institution server 544 work in cooperative manner to approve a payment authorization request. In an alternate embodiment, a server or server system that belongs to either the payment card processing company or the financial institution 15 issuer may solely perform payment card processing and approval steps and logic described in relation to both servers 536 and 544. [0115] Figure 17 is a functional block diagram of a computer system 600 that determines whether to approve purchase authorizations for purchase selections made through a media device according to one embodiment of the invention. More 20 specifically, a media server 604 produces tagged media content with tag number 26 that identifies the tagged media content to media device 14. In response to receiving a purchase selection from an associated remote control 18, for example, depression of a "buy it now" button on the remote control, media device 14 generates purchase selection message 30 that includes tag number 26 for identifying the tagged media 25 content, a media device ID, and customer payment account information to media server 604. The customer payment account information is extracted from smart card 34 which is installed or loaded within media device 14. [0116] Media server 604, in the described embodiment of the invention, then produces message 608 including the tag number, payment card account information, 30 and media device ID to payment card subscriber management server 612. Upon receiving message 608, server 612 is operable to translate the tag number into a SKU number with a corresponding price, to verify customer details in the payment card account information, and the standing of the customer to whom the payment card account belongs. Server 612 is further operable to identify and generate 32 message 616 which includes the SKU number and the price for the item the user is wishing to purchase when the purchase selection message 30 was generated (the product corresponding to the tag number). Part of generating message 616 includes determining which merchant server 620 is to receive message 616. In one 5 embodiment, the SKU number includes an indication of the merchant server 620. [0117] Upon receiving message 616, merchant server 620 is operable to generate message 624 which includes the payment authorization request to a payment card acquirer payment server 628. The authorization request of message 624 further includes the payment account information. Server 628 is then operable to determine 10 a corresponding payment card company server based on the payment account information and to send message 632 to the corresponding payment card company server 636. Message 632 includes the payment authorization request. [0118] In one embodiment, media server 604 generates message 638 which includes the media device ID and at least a portion of the payment account 15 information for delivery to payment card company server 636. As described in relation to the preceding figure for message 548, message 638 may include an encryption key or other information to enable payment card company server 636 to determine an encryption key for decrypting or gaining access to payment account information received in a payment authorization request. 20 [0119] Accordingly, server 636 is operable to decode or decrypt the payment account information of message 632 with the determined encryption key or code. The encryption key or code may also be received from an alternate source including an encrypted communication directly from media device 14 or even from smart card 34 installed in media device 14. The encryption key may be based upon the media 25 device ID. [0120] In one specific embodiment, smart card 34, for example, initiates an encrypted communication with payment card company authorization server 636 to change an initial master key for smart card 34 to a master key that is based at least in part on the media device ID of the media device within which the smart card 30 payment card is installed. Accordingly, server 636 will only be able to decrypt the encrypted account information if the media device 14 that generates a purchase transaction selection is the one that is authorized for the payment card account. Generally, any encryption key may be generated that can only be used to provide 33 access to account data within purchase selection message 30 generated by media device 14. Because, however, an encryption key is associated with an ID of a media device, the media device ID is implicitly encoded since the payment card company server can determine that the media device that generated message 30 is an 5 authorized media device based on the payment data being successfully decrypted. [0121] As may also be seen, payment card subscriber management server 612 is operable to generate a message 642 to server 636 including transaction identifying information to enable server 636 to determine whether a transaction authorization request that server 636 received was generated by an associated (authorized) media 10 device. In one embodiment, message 642 includes a transaction ID and the ID of the media device that purchase selection message 30 (here, media device 14). Server 636 is operable, therefore, to use the transaction ID to identify the specified transaction and to know what media device generated the purchase selection message 30. In another embodiment, the transaction identifying information 15 includes the SKU number and some account information. Accordingly, the payment card company server 636 compares defined SKU numbers within received payment authorization requests to correlate a payment authorization request to the media device that generated purchase selection message 30. Generally, producing transaction identification information in relation to the media device ID directly to the 20 payment card company server 636 is an alternate approach to requiring servers 620 and 628 to process and transmit the media device ID as was required for servers 520 and 528 of Figure 16. [0122] Generally, in the embodiment of Figure 16, a media server 504 of computer system 500 is operable to transmit the media device ID through a plurality of network 25 devices including the merchant server 520 and the acquirer server 528 to payment card processor server 536 for a specified transaction for comparison to an authorized media device ID. Here in Figure 17, however, media server 604 produces the media device ID to a subscriber management server 612 that, in turn, produces the media device ID directly to the payment card company server 636 for 30 the specified transaction. In either embodiment, the media device ID is presented to the payment card company server 636 (or payment card processor server 536 as shown in Figure 16) for the specified transaction in a manner that allows the payment card company server 636 (or processor server 536) to correlate the received media device ID to a specified transaction purchase authorization request. 34 The payment card company server 636 of Figure 17 may comprise a server that is within a private financial network of a payment card authorization company such as, for example, Visa, Inc., or one that is owned by a financial institution card issuer such as a bank, or a combination of both, as described in relation to Figure 16. 5 [0123] Upon receiving message 632, payment card company server 636 is operable to determine whether to approve or deny the authorization request received in message 632 using traditional approval logic for payment card processing servers and issuer company servers as known by one of average skill in the art. Additionally, server 636 is further operable to determine to approve or deny the 10 transaction also by determining whether the media device that generated a purchase selection message was authorized to do so by determining the media device ID in the transaction identification information corresponds to the authorized media device ID. [0124] The transaction identification information described above includes any 15 information that allows server 636 to identify a corresponding payment authorization request that is received subsequently to the transaction identification information. Thus, for example, message 642 could include a merchant number in place of or in addition to the SKU number. Accordingly, if the merchant number or SKU number is received with the payment authorization request 632, then server 636 knows what 20 media device ID to compare to an authorized as a part of approving the transaction. A message similar to message 642 may be generated by another server as well. For example, media server 604 may generate message 642 to server 636. [0125] Once the payment authorization request is approved, payment card company server 636 sends message 646 to server 628 which then sends message 25 650 to merchant server 620. Messages 646 and 650 both include the approval indication. Merchant server 620, upon receiving message 650, initiates delivery of the product or service to an address associated with the payment card account holder. In the illustrated example, merchant server 620 produces delivery instructions 654 to product service supplier server 658. Message 646 containing the 30 approval indication is generated for delivery to merchant server 620 by way of one or more servers though message 646 may also be transmitted directly to merchant server 620. 35 [0126] Figures 18A-18C are functional block diagrams of alternate embodiments of the invention of a payment card company server 636. In each of Figures 18A-18C, the payment card company server 636 is a part of a payment card company payment processing network and includes logic to determine whether to approve or 5 validate a payment authorization request. The logic and structure shown in each of Figures 1 8A-1 8C may be used for any server that is operable to approve or validate a payment authorization request. Each embodiment of server 636 includes an authorization approval module or defined logic that is operable to make a decision to approve or deny the received payment authorization request and to generate an 10 approval indication either in a specified message or merely by further transmitting the payment authorization request to another server. [0127] In reference to Figure 18A, payment card company server 636 is operable to receive payment account information within a received payment authorization request that is encrypted with an encryption key that corresponds with the authorized 15 media device that has an established association with the user payment account. Server 636 includes logic for storing authorized media device IDs in relation to associated encryption keys in a mapping table. Server 636 includes an authorization approval module which further includes logic for determining whether to validate or approve a purchase authorization request. The authorization approval module 20 defines logic for approving the purchase authorization requests based upon user account standing, credit limits, balances, pending transactions, etc. Additionally, the authorization approval module is operable to approve a purchase authorization request based upon whether an authorized media device generated a purchase selection message that corresponds to the purchase authorization request. 25 [0128] Based upon a received ID of the media device that generated the purchase selection message 30, server 636 is operable to select a corresponding encryption key from the mapping table to access the payment account information. If the selected encryption key allows decryption of the account information, then the media device that generated purchase selection message 30 is one that has an established 30 association with the user payment account and is authorized. Otherwise, the selected encryption key is not the one required to access the user payment account information. If the encryption key allows server 636 to access the payment account information, server system 636 generates an approval indication as shown 36 (assuming the authorized request would be approved using known approval determination steps). [0129] In reference to Figure 18B, payment card company server 636 is operable and coupled to receive a payment authorization request with an authorized media 5 device ID embedded in the encrypted account information. Server 636 includes an authorization approval module, which further includes logic for determining whether to validate or approve a purchase authorization request. The authorization approval module defines logic for approving the purchase authorization requests based upon user account standing, credit limits, balances, pending transactions, etc. 10 Additionally, the authorization approval module is operable to approve a purchase authorization request based upon whether an authorized media device generated a purchase selection message that corresponds to the purchase authorization request. (0130] Payment card company server 636 is operable to receive an ID of a media device 14 that generated purchase selection message 30. The ID of the media 15 device 14 that generated purchase selection message 30 may be received as a part of the same message as the payment authorization request or as a separate message. Server system 636 is operable to extract the ID embedded in the encrypted account information of the authorized media device to evaluate whether the received ID for the media device that generated the purchase selection message 20 is authorized (i.e., has an established association with the user payment account). If the two IDs are a match, server system 636 generates an approval indication as shown (assuming the authorized request would be approved using known approval determination steps). [0131] In reference to Figure 18C which is a functional block diagram of a payment 25 card company server 636 according to an alternate embodiment of the invention, payment card company server system 636 includes an authorization approval module and logic for generating an authorized ID to user payment account mapping table. Server 636 includes an authorization approval module which further includes logic for determining whether to validate or approve a purchase authorization 30 request. The authorization approval module defines logic for approving the purchase authorization requests based upon user account standing, credit limits, balances, pending transactions, etc. Additionally, the authorization approval module is operable to approve a purchase authorization request based upon whether an 37 authorized media device generated a purchase selection message that corresponds to the purchase authorization request. [0132] As may be seen, payment card company server 636 is operable and coupled to receive a payment authorization request and to receive an ID of a media 5 device 14 that generated purchase selection message 30. The ID of the media device that may be received as a part of the same message as the payment authorization request or as a separate message as shown here in Figure 18B. [0133] The authorized ID-user payment account mapping table is pre-loaded with information that defines the established associations between payment accounts and 10 media devices. More specifically, the mapping table is pre-loaded with authorized media device IDs that are mapped to payment account information. Thus, based on the received account information within a payment authorization request, server 636 is operable to determine an authorized media device ID for comparing to the received media device ID to determine if the received media device ID was for an 15 authorized media device for the payment account. If the two IDs are a match, server 636 generates an approval indication as shown. In this embodiment, the account information within the payment authorization request is encrypted, though the encryption key is not necessarily based upon the media device ID. [0134] Figure 19 is a flow chart that illustrates various method steps according to 20 an embodiment of the invention for approving a purchase authorization request in which a media device module ID is used to encrypt payment account information. Referring to Figure 19, a first step includes receiving a payment authorization request that includes corresponding user payment card account information (step 680). In one embodiment of the invention, an additional method step includes 25 receiving a media device ID of a media device that originated a purchase selection message that corresponds with the payment authorization request (step 682). The media device ID may be received either with the payment authorization request or in advance in a manner that allows the payment authorization request to be identified when received (e.g., with transaction identification information). Thereafter, the 30 method includes determining a corresponding encryption key based upon the received ID of the media device that generated the purchase selection message (step 684). 38 [0135] Once the corresponding encryption key has been determined, the method includes decrypting the payment account information based upon the corresponding encryption key (step 686). In the described embodiment, the corresponding encryption key is selected based upon an ID of a media device. Accordingly, if the 5 received ID is not the ID of a media device that is authorized to generate the purchase selection for the payment account, the selected encryption key will not be the one that is required to decrypt the payment account information in the payment authorization request. If the payment account is successfully decrypted, however, the method includes approving or validating the payment authorization request and 10 transmitting the payment authorization request to a payment card issuer server (step 688). This step implicitly includes determining a corresponding issuing server for the payment account. [0136] Figure 20 is a flow chart that illustrates a method for a payment card processing company server according to an embodiment of the invention. The first 15 step includes receiving a payment authorization request that includes user payment card account information that corresponds to a user payment account (step 690). The method also includes receiving a media device ID for a purchase selection with identification information that corresponds to a payment authorization request (step 692). The method includes receiving a media device ID of an authorized media 20 device in relation to a payment account (step 694). The method also includes determining whether the received media device ID corresponds to an authorized media device (one that has an established association with the user payment account) and validating the payment authorization request (step 696). Validating the payment authorization request can include any one of forwarding the payment 25 authorization request to an issuer server, sending an approval indication to any one of a plurality of servers including the issuer server or to, ultimately, the merchant server. It should be understood that validating the payment authorization request further includes traditional authorization processing and logic including, for example, evaluating account status and account credit limits in relation to the payment 30 authorization request and other similar determinations or evaluations. This step may also include placing a hold on funds based upon an amount specified in a purchase authorization request. [0137] In one embodiment, the step includes determining whether the received media device ID is the same as an ID embedded either implicitly or explicitly in the 39 payment account information. In another embodiment, the step includes determining whether the received media device ID is the same as an ID stored in a table that maps media device IDs to payment account information. Finally, the method includes identifying an issuer server (for the second embodiment described here in 5 this paragraph) and, if the IDs match, sending the payment authorization request to the issuer server (step 698). [0138] The present invention has also been described above with the aid of method steps illustrating the performance of specified functions and relationships thereof. The boundaries and sequence of these functional building blocks and method steps 10 have been arbitrarily defined herein for convenience of description. Alternate boundaries and sequences can be defined so long as the specified functions and relationships are appropriately performed. Any such alternate boundaries or sequences are thus within the scope and spirit of the claimed invention. [0139] The present invention has been described above with the aid of functional 15 building blocks illustrating the performance of certain significant functions. The boundaries of these functional building blocks have been arbitrarily defined for convenience of description. Alternate boundaries could be defined as long as the certain significant functions are appropriately performed. Similarly, flow diagram blocks may also have been arbitrarily defined herein to illustrate certain significant 20 functionality. To the extent used, the flow diagram block boundaries and sequence could have been defined otherwise and still perform the certain significant functionality. Such alternate definitions of both functional building blocks and flow diagram blocks and sequences are thus within the scope and spirit of the claimed invention. One of average skill in the art will also recognize that the functional 25 building blocks, and other illustrative blocks, modules and components herein, can be implemented as illustrated or by discrete components, application specific integrated circuits, processors executing appropriate software and the like or any combination thereof. [0140] As may be used herein, the terms "substantially" and "approximately" 30 provides an industry-accepted tolerance for its corresponding term and/or relativity between items. Such an industry-accepted tolerance ranges from less than one percent to fifty percent and corresponds to, but is not limited to, component values, integrated circuit process variations, temperature variations, rise and fall times, and/or thermal noise. Such relativity between items ranges from a difference of a 40 few percent to magnitude differences. As may also be used herein, the term(s) "coupled to" and/or "coupling" and/or includes direct coupling between items and/or indirect coupling between items via an intervening item (e.g., an item includes, but is not limited to, a component, an element, a circuit, and/or a module) where, for 5 indirect coupling, the intervening item does not modify the information of a message but may adjust its current level, voltage level, and/or power level. As may further be used herein, inferred coupling (i.e., where one element is coupled to another element by inference) includes direct and indirect coupling between two items in the same manner as "coupled to." As may even further be used herein, the term "operable to" 10 indicates that an item includes one or more of power connections, input(s), output(s), etc., to perform one or more its corresponding functions and may further include inferred coupling to one or more other items. As may still further be used herein, the term "associated with," includes direct and/or indirect coupling of separate items and/or one item being embedded within another item. As may be used herein, the 15 term "compares favorably," indicates that a comparison between two or more items, messages, etc., provides a desired relationship. For example, when the desired relationship is that signal 1 has a greater magnitude than signal 2, a favorable comparison may be achieved when the magnitude of signal 1 is greater than that of signal 2 or when the magnitude of signal 2 is less than that of signal 1. 20 41

Claims (20)

1. A system comprising: one or more processors; and memory coupled to the one or more processors, the memory including instructions configured to cause the one or more processors to perform operations including: receiving a payment authorization request; receiving a media device ID from a media device with which the smart card is coupled, the media device ID corresponding to the media device that originated a purchase selection message associated with the payment authorization request; determining encrypted payment account information from the received payment authorization request, the encrypted payment account information being associated with a user payment account and having been retrieved from the smart card coupled to the media device, wherein the smart card is created based on the media device ID; determining whether the media device is authorized to conduct transactions using the user payment account, the determining including: determining a decryption key based on the media device ID corresponding to the media device that transmitted the purchase selection message; initiating decryption of the encrypted user payment account information using the decryption key; and determining that the media device that transmitted the purchase selection message is authorized to conduct transactions using the user payment account upon successfully decrypting the encrypted user payment account information using the decryption key; and sending an approval message to a payment server, the approval message indicating that the payment authorization request has been approved.
2. The system of claim 1 wherein the encrypted user payment account information includes a user payment account identifier and a first media device ID for an authorized media device associated with the user payment account identifier, wherein the encrypted user payment account information is generated using an encryption key based on the first media device ID, the user payment account identifier being associated with the user payment account.
3. The system of claim 1 wherein the memory further includes instructions configured to cause the one or more processors to perform operations including extracting the media device 10761007_1 42 ID from the encrypted user payment account information when the encrypted user payment account information is successfully decrypted using the decryption key.
4. The system of claim 1 wherein determining the decryption key includes consulting a mapping table using the media device ID to select an encryption key corresponding to the media device ID, wherein the mapping table includes association information between one or more authorized device ID's and one or more encryption keys.
5. The system of claim 1 wherein the payment authorization request is received from a payment card acquirer server.
6. The system of claim 1 wherein the encrypted user payment account information is successfully decrypted when the decrypted payment account information matches the media device ID of the media device and wherein the media device is determined to be authorized to conduct transactions using the user payment account in response to the determination that the decrypted payment account information corresponds to the media device ID of the media device.
7. The system of claim 1 wherein the memory further includes instructions configured to cause the one or more processors to perform operations including: receiving a SKU number that can identify a merchant; determining a merchant based at least in part on the SKU number; and in response to determining that the media device that transmitted the purchase selection message is authorized to conduct transactions using the user payment account, sending an approval to the merchant.
8. The system of claim 1 wherein the media device is an authorized media device that has an established association with the user payment account, and wherein the media device that transmitted the purchase selection message is authorized to conduct transactions using the user payment account based on the established association.
9. The system of claim 1 wherein the smart card is delivered separately from the media device to a user of the media device. 10761007_1 43
10. The system of claim 1 wherein the smart card stores the media device ID in an encrypted form along with other account information to create an established association between the user payment account and the media device.
11. A method for approving a payment authorization request, comprising: receiving, by a server, a payment authorization request; receiving a media device ID from a media device with which the smart card is coupled, the media device ID corresponding to the media device that originated a purchase selection message associated with the payment authorization request; determining encrypted payment account information from the received payment authorization request, the encrypted payment account information being associated with a user payment account and having been retrieved from the smart card coupled to the media device, wherein the smart card is created based on the media device ID; determining whether the media device is authorized to conduct transactions using the user payment account, the determining including: determining a decryption key based on the media device ID corresponding to the media device that transmitted the purchase selection message; initiating decryption of the encrypted user payment account information using the decryption key; and determining that the media device that transmitted the purchase selection message is authorized to conduct transactions using the user payment account upon successfully decrypting the encrypted user payment account information using the decryption key; and sending an approval message to a payment server, the approval message indicating that the payment authorization request has been approved.
12. The method of claim 11 wherein the encrypted user payment account information includes a user payment account identifier and a first media device ID for an authorized media device associated with the user payment account identifier, wherein the encrypted user payment account information is generated using an encryption key based on the first media device ID, the user payment account identifier being associated with the user payment account. 10761007_1 44
13. The method of claim 11 further including extracting, by the server, the media device ID from the encrypted user payment account information when the encrypted user payment account information is successfully decrypted using the decryption key.
14. The method of claim 11 wherein determining the decryption key includes consulting a mapping table using the media device ID to select an encryption key corresponding to the media device ID, wherein the mapping table includes association information between one or more authorized device ID's and one or more encryption keys.
15. The method of claim 11 wherein the payment authorization request is received from a payment card acquirer server.
16. The method of claim 11 wherein the encrypted user payment account information is successfully decrypted when the decrypted payment account information matches the media device ID of the media device and wherein the media device is determined to be authorized to conduct transactions using the user payment account in response to the determination that the decrypted payment account information corresponds to the media device ID of the media device.
17. The method of claim 11 further including: receiving a SKU number that can identify a merchant; determining a merchant based at least in part on the SKU number; and in response to determining that the media device that transmitted the purchase selection message is authorized to conduct transactions using the user payment account, sending an approval to the merchant.
18. The method of claim 11 wherein the media device is an authorized media device that has an established association with the user payment account, and wherein the media device that transmitted the purchase selection message is authorized to conduct transactions using the user payment account based on the established association.
19. The method of claim 11 wherein the smart card is delivered separately from the media device to a user of the media device. 10761007_1 45
20. The method of claim 11 wherein the smart card stores the media device ID in an encrypted form along with other account information to create an established association between the user payment account and the media device. Visa U.S.A. Inc. Patent Attorneys for the Applicant/Nominated Person SPRUSON & FERGUSON 10761007_1 46
AU2010202038A 2008-05-29 2010-05-19 Serial number and payment data based payment card processing Active AU2010202038B2 (en)

Priority Applications (3)

Application Number Priority Date Filing Date Title
US12/129,396 2008-05-29
AU2009255399A AU2009255399B2 (en) 2008-05-29 2009-05-22 Media device payments remote control personalization and protection
AU2010202038A AU2010202038B2 (en) 2008-05-29 2010-05-19 Serial number and payment data based payment card processing

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
AU2010202038A AU2010202038B2 (en) 2008-05-29 2010-05-19 Serial number and payment data based payment card processing
AU2016202318A AU2016202318B2 (en) 2008-05-29 2016-04-13 Serial number and payment data based payment card processing

Related Parent Applications (1)

Application Number Title Priority Date Filing Date
AU2009255399A Division AU2009255399B2 (en) 2007-11-29 2009-05-22 Media device payments remote control personalization and protection

Related Child Applications (1)

Application Number Title Priority Date Filing Date
AU2016202318A Division AU2016202318B2 (en) 2008-05-29 2016-04-13 Serial number and payment data based payment card processing

Publications (2)

Publication Number Publication Date
AU2010202038A1 AU2010202038A1 (en) 2011-12-08
AU2010202038B2 true AU2010202038B2 (en) 2016-01-14

Family

ID=45465591

Family Applications (2)

Application Number Title Priority Date Filing Date
AU2010202038A Active AU2010202038B2 (en) 2008-05-29 2010-05-19 Serial number and payment data based payment card processing
AU2016202318A Active AU2016202318B2 (en) 2008-05-29 2016-04-13 Serial number and payment data based payment card processing

Family Applications After (1)

Application Number Title Priority Date Filing Date
AU2016202318A Active AU2016202318B2 (en) 2008-05-29 2016-04-13 Serial number and payment data based payment card processing

Country Status (1)

Country Link
AU (2) AU2010202038B2 (en)

Citations (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6098879A (en) * 1997-09-26 2000-08-08 Gilbarco, Inc. Fuel dispensing system providing customer preferences
WO2000049551A1 (en) * 1999-02-19 2000-08-24 Mobil Oil Corporation System and method for processing financial transactions
US6142369A (en) * 1995-04-11 2000-11-07 Au-System Electronic transaction terminal for conducting electronic financial transactions using a smart card
US20010016833A1 (en) * 1998-12-02 2001-08-23 Deborah Everling Merchant transaction data mining method
US6327578B1 (en) * 1998-12-29 2001-12-04 International Business Machines Corporation Four-party credit/debit payment protocol
US20020034304A1 (en) * 2000-08-11 2002-03-21 Ta-Kuang Yang Method of preventing illegal copying of an electronic document
US20040230488A1 (en) * 2001-07-10 2004-11-18 American Express Travel Related Services Company, Inc. Method for using a sensor to register a biometric for use with a transponder-reader system
US20080281718A1 (en) * 2007-01-08 2008-11-13 Barrett Morgan Household network incorporating secure set-top devices
US20090144205A1 (en) * 2007-11-29 2009-06-04 Visa Usa, Inc. Serial number and payment data based payment card processing
US20090260064A1 (en) * 2008-04-15 2009-10-15 Problem Resolution Enterprise, Llc Method and process for registering a device to verify transactions

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040243478A1 (en) * 1996-09-04 2004-12-02 Walker Jay S. Purchasing, redemption, and settlement systems and methods wherein a buyer takes possession at a retailer of a product purchased using a communication network
US8010976B2 (en) * 2002-12-11 2011-08-30 Broadcom Corporation Card-based and independent server-based billing and authorization system in a media exchange network

Patent Citations (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6142369A (en) * 1995-04-11 2000-11-07 Au-System Electronic transaction terminal for conducting electronic financial transactions using a smart card
US6098879A (en) * 1997-09-26 2000-08-08 Gilbarco, Inc. Fuel dispensing system providing customer preferences
US20010016833A1 (en) * 1998-12-02 2001-08-23 Deborah Everling Merchant transaction data mining method
US6327578B1 (en) * 1998-12-29 2001-12-04 International Business Machines Corporation Four-party credit/debit payment protocol
WO2000049551A1 (en) * 1999-02-19 2000-08-24 Mobil Oil Corporation System and method for processing financial transactions
US20020034304A1 (en) * 2000-08-11 2002-03-21 Ta-Kuang Yang Method of preventing illegal copying of an electronic document
US20040230488A1 (en) * 2001-07-10 2004-11-18 American Express Travel Related Services Company, Inc. Method for using a sensor to register a biometric for use with a transponder-reader system
US20080281718A1 (en) * 2007-01-08 2008-11-13 Barrett Morgan Household network incorporating secure set-top devices
US20090144205A1 (en) * 2007-11-29 2009-06-04 Visa Usa, Inc. Serial number and payment data based payment card processing
US20090260064A1 (en) * 2008-04-15 2009-10-15 Problem Resolution Enterprise, Llc Method and process for registering a device to verify transactions

Also Published As

Publication number Publication date
AU2010202038A1 (en) 2011-12-08
AU2016202318B2 (en) 2017-12-07
AU2016202318A1 (en) 2016-05-05

Similar Documents

Publication Publication Date Title
US8566239B2 (en) Mobile commerce systems and methods
US8805746B2 (en) Smart card purchasing transactions using wireless telecommunications network
KR100933387B1 (en) Online payment authentication services
US7599857B2 (en) System and method for facilitating interaction between consumer and merchant
US9881298B2 (en) Credit card system and method
US7299980B2 (en) Computer readable universal authorization card system and method for using same
CA2676848C (en) Methods and a system for providing transaction related information
CN1193313C (en) Network business operated by intelligent card allowed to te used through consumers' equipment
US7801829B2 (en) Smartcard internet authorization system
US8150767B2 (en) System and method for conducting electronic commerce with a remote wallet server
JP3260693B2 (en) Open network payment system and method
US8533116B2 (en) Internet payment, authentication and loading system using virtual smart card
US7627531B2 (en) System for facilitating a transaction
KR100930457B1 (en) Way authentication and payment system using the mobile communication terminal
US8244636B2 (en) Payment system
CN103548045B (en) Systems and methods for receiving the payment service point via wireless communication
US20050177517A1 (en) System and method for facilitating electronic financial transactions using a mobile telecommunication device
EP1271435A2 (en) Authentication and access control system
US20020077978A1 (en) Method and system for processing internet payments
US7840486B2 (en) System and method for performing secure credit card purchases
US20100299212A1 (en) System and method for a commerce window application for computing devices
US8725577B2 (en) Personalized mobile banking transactions
JP3594180B2 (en) Content providing method
AU781647B2 (en) A payment system and method for use in an electronic commerce system
US9390412B2 (en) Dynamic point of sale system integrated with reader device

Legal Events

Date Code Title Description
DA3 Amendments made section 104

Free format text: THE NATURE OF THE AMENDMENT IS: AMEND THE DIVISIONAL DETAILS TO READ 2009255399

FGA Letters patent sealed or granted (standard patent)