US20230196355A1 - Processing of electronic transactions - Google Patents

Processing of electronic transactions Download PDF

Info

Publication number
US20230196355A1
US20230196355A1 US18/108,481 US202318108481A US2023196355A1 US 20230196355 A1 US20230196355 A1 US 20230196355A1 US 202318108481 A US202318108481 A US 202318108481A US 2023196355 A1 US2023196355 A1 US 2023196355A1
Authority
US
United States
Prior art keywords
merchant
payment
data
transaction
request
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
US18/108,481
Inventor
Edison U. ORTIZ
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Royal Bank of Canada
Original Assignee
Royal Bank of Canada
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from US15/000,685 external-priority patent/US11080700B2/en
Priority claimed from US15/201,428 external-priority patent/US11080701B2/en
Application filed by Royal Bank of Canada filed Critical Royal Bank of Canada
Priority to US18/108,481 priority Critical patent/US20230196355A1/en
Assigned to ROYAL BANK OF CANADA reassignment ROYAL BANK OF CANADA ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: ORTIZ, EDISON U.
Publication of US20230196355A1 publication Critical patent/US20230196355A1/en
Pending legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/02Payment architectures, schemes or protocols involving a neutral party, e.g. certification authority, notary or trusted third party [TTP]
    • G06Q20/023Payment architectures, schemes or protocols involving a neutral party, e.g. certification authority, notary or trusted third party [TTP] the neutral party being a clearing house
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/12Payment architectures specially adapted for electronic shopping systems
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/322Aspects of commerce using mobile devices [M-devices]
    • G06Q20/3223Realising banking transactions through M-devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/385Payment protocols; Details thereof using an alias or single-use codes
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q30/00Commerce
    • G06Q30/02Marketing; Price estimation or determination; Fundraising
    • G06Q30/0207Discounts or incentives, e.g. coupons or rebates
    • G06Q30/0226Incentive systems for frequent usage, e.g. frequent flyer miles programs or point systems

Definitions

  • aspects of the material disclosed in this application relate to the creation, administration, manipulation, processing, and storage of data useful in processing of payment transactions. Aspects of such creation, administration, manipulation, processing, and storage may be subject to regulation by governmental and other agencies.
  • the disclosure herein is made solely in terms of the use of logical and physical components, functions, and combinations in signal processing systems and communications systems, in order open new economic and communications possibilities, without regard to statutory, regulatory, or other legal considerations.
  • None herein is intended as a statement or representation that any of the systems, components, or processes proposed or discussed herein, or the application thereof, does or does not comply with any statute, law, regulation, or other legal requirement in any jurisdiction.
  • the present disclosure relates generally to the generation and secure and efficient execution of electronic signal exchanges, and more particularly to improved systems, methods, and programming structures for the secure negotiation, authorization, execution, and confirmation of multi-party and multi-device transactional data processes.
  • Electronic signal exchanges such as those representing payments and other transactions are a type of electronic signal exchange that have provided significant benefits to human kind, including improved efficiency in the distribution and production of goods and services.
  • Such transactions are associated with both numerous risks and intense pressures from users of such systems for speed, security, reliability, and convenience.
  • systems, devices, and processes useful in negotiating and executing such transactions have been proposed, there remains significant room for improvement.
  • a given merchant might not easily and reliably support payments through the use of accounts administered by one or another bank, and vice versa; difficulties are encountered by networked merchant resources in setting up and enabling access to rewards, loyalties, and other forms of marketing processes; and banks and other financial institutions are hampered in, or unable to, pass along efficiencies in data and signal management and administration to purchasers, merchants, and other parties involved in electronic transaction.
  • the disclosure herein provides systems, devices, methods, and machine-executable programming structures stored in persistent (i.e., non-transitory), computer-readable media for the secure execution of electronic signal exchanges, and more particularly improved systems, methods, and programming structures for the rapid and secure negotiation, authorization, execution, and confirmation of multi-party data processes, including payment transactions conducted between purchasers having electronic access to bank accounts and other sources of payment, merchants operating e- and/or m-commerce transaction options, and banks and other financial institutions capable of electronically communicating with both.
  • the disclosure provides systems, methods, and programming structures which are particularly well suited for the negotiation, authorization, execution, and confirmation of such purchases, and other electronic resource (including funds) transfers.
  • a system can comprise one or more network communication systems, one or data processors, and one or more persistent memory devices.
  • the persistent memory device(s) comprise stored, machine-interpretable instructions adapted to cause the data processor(s) to receive from purchaser communication devices, using the network communication systems, requests for generation of select merchant payment tokens.
  • the payment authorization management systems can generate the select merchant payment tokens, and store them in secure memory, along with identifiers associated with one or more transaction funding sources, such as credit, debit, and rewards accounts associated with requesting purchasers.
  • select merchant payment tokens can be stored in association with special transactional requests submitted by the select merchants, such as requests for application of discounts, modified loyalty or rewards program rules, rebates, etc.
  • special merchant transaction requests can be updated at any time, at the request of the select merchant(s).
  • a system can comprise one or more network communication systems, one or data processors, and one or more persistent memory devices.
  • the persistent memory device(s) comprise stored, machine-interpretable instructions adapted to cause the data processor(s) to receive from purchaser communication devices, using the one or more network communication systems, select merchant payment token authorization requests, such requests comprising secure purchaser identifiers and select merchant payment token generated by payment authorization management systems associated with the purchasers.
  • the systems can communicate with the payment authorization management systems in order to confirm the validity of the tokens and any associated conditions, restrictions, or rules, including any special transactional requests provide by the merchant transaction management systems.
  • the invention provides purchaser communication devices, and related processes and logical programming structures.
  • a device can comprise one or more network and/or short-range data communication systems, one or more data processors, one or more of any of a wide variety of input, output, and/or input-output devices, and one or more persistent memory device comprising stored, machine-interpretable instruction sets.
  • Such machine-interpretable instruction sets can multiple distinct application programs, i.e., logical structures adapted to enable the data processor(s) to execute separately-controllable processes according to distinct security and logical specifications.
  • application programs can include internet and other web browsers, and specialized payment management applications (e.g.
  • the invention enables purchasers to set up payment and other preferences with both the FIs that administer their payment accounts and the merchants from whom they wish to acquire goods and/or services, while allowing both the FIs and merchants to maintain their distinct security and legal obligations while operating according to their own preferred commercial standards.
  • Such merchant and FI applications enable merchants and FIs to communicate with purchasers in ways that are efficient and convenient for the purchasers, while allowing the merchants and FIs to maintain their own security and commercial standards, through the use of controlled encryption, secure memory storage and access, etc.
  • select merchant tokens generated and otherwise processed in accordance with the disclosure can be used to complete electronic transactions in accordance with any special requests generated by purchasers and/or merchants, using accounts identified by purchasers as sources of payments, rapidly, securely, and efficiently.
  • the use of systems, devices, and methods in accordance with the disclosure offers a number of advantages, including more convenient or less burdensome user interfaces, particularly with respect to the ability to draw on multiple sources of transaction funds and/or other payment sources, which can be held, administered and/or otherwise controlled by single or multiple financial institutions and/or other financial services providers, and increased ability on the part of purchasers, merchants, and FIs to complete transactions, which in some circumstances may be critical to their physical and/or economic health or well-being.
  • various aspects and embodiments of the invention enable more flexible and efficient interactions between purchasers, merchants, and account administration systems such as servers controlled by banks, credit unions, and other financial institutions (FIs).
  • FIG. 1 is a schematic block diagram of an example system suitable for use in processing data in accordance with aspects of the disclosure
  • FIG. 2 is a schematic block diagram of an example signal communication device suitable for use in processing data in accordance with aspects of the disclosure
  • FIGS. 3 and 4 are schematic diagrams showing representative signal exchanges between components of systems for secure processing of electronic transactions in accordance with aspects of the disclosure.
  • FIGS. 5 - 9 show embodiments of graphical user interfaces suitable for use by various embodiments of purchaser devices in implementing various aspects and embodiments of the invention.
  • FIG. 1 shows a schematic diagram of a system 100 suitable for use in implementing various aspects and embodiments of the invention.
  • a system 100 includes one or more purchaser or other user request communication devices 110 (also a “network transaction communication device” and/or a “network communication device”), for use by purchasers or other users 190 ( FIGS.
  • System(s) 100 may also include, or be adapted to communicate with or by means of, one or more communications networks 200 such as the internet, public or private wireline networks such as the PSTN, etc.
  • communications networks 200 such as the internet, public or private wireline networks such as the PSTN, etc.
  • FIG. 1 While only one of each of devices 110 , 120 , 130 , 132 , 134 , 136 , 150 , 200 is shown in FIG. 1 , those skilled in the relevant arts will readily understand that a system 100 can include any desired, required, or otherwise advantageous numbers of such devices.
  • Payment authorization management system(s) and other FSP, FI, or transaction processing system(s) or platform(s) 120 , 136 , 150 , 160 may comprise or consist of any suitably-configured enterprise, server, desktop, laptop, or other suitably-configured types or class(es) of electronic data processing (computer) systems.
  • FSP Federal Communications Commission
  • FI Transaction processing system
  • platform(s) 120 , 150 , 160 may comprise or consist of any suitably-configured enterprise, server, desktop, laptop, or other suitably-configured types or class(es) of electronic data processing (computer) systems.
  • a large number and variety of suitable devices are now available commercially, and doubtless others will be developed subsequent to the preparation of this specification. Further details of platform(s) 120 , 150 , 160 are provided below.
  • such systems can include any one or more of a wide variety of data/signal processing units 122 and memories 126 , in order for example to securely, reliably, rapidly, and efficiently store, access, and read stored data representing account information for any desired numbers of account users, as well machine-readable instructions representing logical structures to be applied in authorizing, evaluating, adjudicating, and otherwise process requests relating to purchases and other transactions.
  • Such components can include one or more of each of processor(s) 122 , network and other data communications systems 124 , and memories 126 , which can include any persistent and secure memory(ies) suitable for use in implementing the various systems, devices and processes disclosed herein.
  • Merchant transaction management system(s) 130 and device(s) 132 , 134 , 136 may comprise or consist of any suitably-configured POS, mPOS, and backend data processing devices, including special-purpose devices including, card, chip, short-range wireless, and other devices, servers, etc. as well as server-class general-purpose systems such as those described above in connection with payment authorization management system(s) 120 .
  • Such systems can include any one or more of a wide variety of data/signal processing units and memories, in order for example to securely, reliably, rapidly, and efficiently store, access, and read stored data representing account information for any desired numbers of account users, as well machine-readable instructions representing logical structures to be applied in authorizing, evaluating, adjudicating, and otherwise process requests relating to purchases and other transactions.
  • Such components can include one or more of each of processor(s) 137 , network and other data communications systems 138 , and memories 139 , which can include any persistent and secure memory(ies) suitable for use in implementing the various systems, devices and processes disclosed herein. Further details of merchant system(s) 130 and device(s) 132 , 134 , 136 are provided below.
  • Any of devices 110 , 120 , 130 , 132 , 134 , 136 , 150 , 160 may communicate with each other by wireless (including radio, wireless telephone, optical, RFID, and infrared), wireline, or other means, using for example suitably-configured signal processors, transmitters, and receivers configured to communicate via the internet, the PSTN, and/or other communications networks 200 , using any suitable protocols or combinations of protocols.
  • wireless including radio, wireless telephone, optical, RFID, and infrared
  • wireline or other means
  • signal processors including radio, wireless telephone, optical, RFID, and infrared
  • transmitters, and receivers configured to communicate via the internet, the PSTN, and/or other communications networks 200 , using any suitable protocols or combinations of protocols.
  • CPUs central processing units
  • a device 110 may generally be any portable, desktop, or other electronic signal/data processing and communication device comprising an assembly of electronic, structural and/or electro-mechanical components within a suitable housing, and which in some embodiments provides a user with various voice and/or data functions including short and/or long-range network connectivity.
  • terms such as “portable” or “mobile”, when used herein, can indicate that device 110 may generally be transported between different physical locations by a user without resort to physical aids.
  • mobile embodiments of devices 110 can include devices that may be carried on a user's person or clothing, such as cellular or other radio telephones, personal data assistants (PDA), tablets, notepads, portable computers, smart watches or jewelry, and the like.
  • PDA personal data assistants
  • non-mobile communication devices 110 such as laptop or personal computers.
  • purchaser communication device(s) 110 , 600 may include one or more data processors (CPUs) 602 , random access or other forms of persistent, typically re-writable memory(ies) 604 , 606 any of which may store non-transient either or both of data and machine interpretable instruction sets representing logical structures in the form of device applications, or other programs or routines.
  • CPUs data processors
  • memories typically re-writable memory(ies) 604 , 606 any of which may store non-transient either or both of data and machine interpretable instruction sets representing logical structures in the form of device applications, or other programs or routines.
  • CPU(s) 602 can include any microprocessor(s) or other general or special purpose processing unit(s) configured to control the overall operation of device(s) 110 and their various components, with which CPU(s) 602 may be connected by a bus(es) or other electronic link(s) or path(s) adapted for transferring data or other signals, power, etc., on the device 110 .
  • Read and write operations of CPU(s) 602 may be facilitated by memory(ies) 604 , 606 or other integrated circuit(s) or volatile memory storage associated with or integrated within CPU(s) 602 or to which CPU(s) 602 have access.
  • Memory(ies) 604 , 606 may include one or more persistent (i.e., non-transitory) memory stores, such as flash memory or read-only memory (ROM), which are either physically embedded within the device(s) 110 or which may alternatively be removably loaded or inserted into device(s) 110 by a user, such as on a subscriber identity module (SIM) card or secure digital (SD) memory card.
  • Memory(ies) 606 may be used to store any type of data and/or executable machine instruction files, such as but not limited to media files (music and photos), as well as software used to implement operating systems (OSs) 608 and other programs, routines, or applications, as described herein.
  • Memory(ies) 606 may also be used to store one or more files used by CPU 602 or mobile OS 608 to execute different functions or control different components on mobile device 110 , 600 , such as contact information, network preferences, application data, and other files.
  • Purchaser communication device(s) 110 may further be equipped with one or more of any of a very wide variety of input and/or output components 610 , in order to enable user to interactions with the device(s) 110 .
  • Such components which are generally denoted herein as 610 , may provide both for the user to input data or commands into device 110 , as well as to perceive or otherwise access data or information output by the device 110 .
  • different possible input components 610 can include touch pads, dials, click wheels, touchscreens and other displays, keyboards, keypads, and other buttons and switches, as well as cameras, microphones, and biometric sensors (e.g., fingerprint scanners).
  • Example output components 610 can include speakers, screens and visual displays, rumble packs, and combinations thereof.
  • Other I/O components 610 not specifically mentioned herein may also be included in different embodiments.
  • Device(s) 110 can further include data communications systems, including for example long-range or network communications components 612 and/or short-range network communications components 614 to enable the device(s) 110 to employ a variety of voice, data, and other signal communication functions.
  • data communications systems including for example long-range or network communications components 612 and/or short-range network communications components 614 to enable the device(s) 110 to employ a variety of voice, data, and other signal communication functions.
  • long-range and “short-range” may be used herein to denote relative distances and are not intended to denote any specific limitations or ranges.
  • long-data communications systems 612 , 614 allow device(s) 110 to communicate with other proximately or remotely located targets, which can be other similarly or differently configured devices 110 , servers 120 , 130 , 150 , 160 , systems 100 , and other network-enabled devices.
  • long-range or network communications component(s) 612 may be used by a device 110 to communicate with other components of system(s) 100 via cellular or other distributed networks 200 using suitable voice and/or data communications protocols, such as but not limited to Time Division Multiple Access (TDMA), Code Division Multiple Access (CDMA), Global System for Mobile Communication (GSM), Wireless Application Protocol (WAP), and others. Using such protocols a device 110 can route communications to arbitrarily remote devices of various types, including voice, data, and text-based messages without limitation.
  • various hardware and/or software components may be included in system(s) 612 , such as an antennae, transmitters, receivers, and digital signal processors. Specific configuration(s) of long-range communications systems 612 can depend generally upon the communication protocol(s) that are implemented and the purposes to which a device 110 is to be put.
  • Short-range or near-field communications component(s) 614 can enable communication between mobile or other device(s) 110 and other relatively proximately located devices, servers, or systems.
  • short-range communications 614 may include one or more short-range transceivers, such as for connection to Wi-Fi (802.11 standard) or Bluetooth networks, as well as other modes of short-range communication, like RFID, infrared or optical.
  • short-range communications 614 may in particular include a near field communications (NFC) subsystem 616 that may be utilized to communicate with an NFC reader, among various different purposes or functions, so as to initiate contactless mobile payments with merchant POS terminals 134 as described further below.
  • NFC near field communications
  • devices 110 further include secure elements 618 configured as tamper-resistant, limited-access storage environments for sensitive data and other information, such as payment credentials or cryptographic keys, data and programming structures.
  • secure element(s) 618 may include or operate under the separate and secure control of any or all of suitably-configured integrated circuit(s) (IC(s)), an operating system(s) (OS(s)), or program(s), including payment management (or “virtual wallet”) application(s) 112 , merchant transaction management application(s) 114 , host card emulation (HCE) applications and the like.
  • IC integrated circuit
  • OS(s) operating system
  • program(s) including payment management (or “virtual wallet”) application(s) 112 , merchant transaction management application(s) 114 , host card emulation (HCE) applications and the like.
  • HCE host card emulation
  • Secure element(s) 618 may be either embedded (integrated) physically within a mobile device 110 or, alternatively, provided on a card such as a SIM or SD card that is insertable into the device 110 .
  • CPU(s) 602 , applications 112 , 114 , and NFC subsystem(s) 616 may in various embodiments have access to the contents of secure element 616 .
  • Device(s) 110 can further include power supply(ies) 620 configured with any components or circuitry that are suitable for generating, receiving or transmitting power to CPU 602 and other components of a device 110 .
  • a power supply 620 may include circuitry for processing power received from an external power source, such as an electrical utility or grid, when a device 110 is plugged into or otherwise connected to such external power source.
  • power supply 620 may further include one or more batteries, such as nickel metal hydride, nickel cadmium, and lithium-ion batteries, which may provide a source of power when device 110 is not able to connect to an external power source.
  • power supply 620 may deliver energy to different components within a device 110 . It should be noted that individual connections between power supply 620 and other components within device 110 are not shown in FIG. 6 and instead power supply 620 is indicated for convenience only as an isolated element.
  • purchaser and other request communication device(s) 110 are not “mobile” device(s).
  • a purchaser device 110 may have a size, shape and/or weight that make it difficult, inconvenient, or otherwise impractical for a user to transport over more than trivial distances without some physical assistance or assistance, or for routine portable use.
  • a non-mobile user device 110 may be one that a user cannot practically carry on their person or clothing. Examples of a non-mobile device 110 include a user's desktop computer and other normally stationary devices.
  • Non-mobile embodiments of device(s) 110 may or may not differ, in terms of communications ability, secure memory, etc., from mobile embodiments.
  • a non-mobile embodiment of a device 110 may lack a secure element 618 because such device 110 is not configured to receive a SIM or SD card.
  • at least one of long-range communications 612 and short-range communications 614 may differ between mobile and non-mobile embodiments.
  • a purchaser device 110 can include one or more modems or other network components for connecting to a distributed network 200 , such as the Internet, in place of a cellular antenna.
  • short-range communications 614 may not include an NFC receiver 616 , but may include WI-FI and/or Bluetooth antennae or others.
  • Embodiments of the systems and processes described herein may utilize either a mobile device 600 or a non-mobile device without limitation.
  • a mobile or other device 110 can in accordance with various aspects and embodiments of the invention be configured to initiate and otherwise control mobile payments and other electronic transactions from within either or both of payment management or “virtual wallet” application(s) 112 associated with one or more banks or other FIs responsible for administration of monetary and alternative value (e.g., loyalty or rewards) accounts and merchant transaction management application(s) or program(s) 114 provided by or otherwise associated with a merchant or merchant system 130 or, as described further below, from non-dedicated application(s) or program(s), such as one or more web browsers or merchant transaction e-commerce websites administered by, for example, a merchant transaction management system 136 .
  • payment management or “virtual wallet” application(s) 112 associated with one or more banks or other FIs responsible for administration of monetary and alternative value (e.g., loyalty or rewards) accounts
  • merchant transaction management application(s) or program(s) 114 provided by or otherwise associated with a merchant or merchant system 130 or, as described further below, from non-
  • an “application,” or application program is a set of computer-interpretable instructions adapted to be executed by one or more processors 602 , 137 , 122 of device 110 , 120 , 130 , etc., in accordance with logical structures directed toward a common task or purpose, such as the management of one or more banking or other financial or value accounts (e.g., application 112 ), for interaction with a specific merchant e- or m-commerce program (application 114 ), etc. Instructions associated with such applications can be stored together in single memory(ies) 606 , 604 , 126 , 139 , etc., or can be stored in multiple memories served by or otherwise accessible to devices 110 , 120 , 130 , using distributed programming techniques.
  • one or more different merchant and payment management transaction communication applications 112 , 114 or other programs may be installed by a user of a device 110 into mobile or other device memories 606 , 604 , for execution by a CPU 602 under the higher-level control of an operating system (OS) not shown.
  • OS operating system
  • a virtual wallet or other payment management application 112 can comprise data representing machine-executable instruction sets representing rules or other logical structures to be applied by one or more processor(s) 602 of a device 110 and configured to enable a user of the device to interact with account and/or transaction management and control programs implemented or otherwise controlled by one or more payment authorization management systems 120 and adapted to enable secure access to operating systems and other programs that will enable an authorized user of a device 110 to access and control information pertaining one or more monetary or other value accounts, so as to control deposits, withdrawals, change of name, address, and other information, etc.
  • such applications 112 may reside wholly on a device 110 and be configured for secure communication with account access and control programs implemented on such systems 120 , in accordance with logical structures residing in memory on the user device 110 ; or such applications 112 can be configured for distributed implementation by, for example, providing a front end/user interface application on the user's device 110 , with control and management processing taking place in accordance with logical structures associated with the application residing on the FI system 120 .
  • a merchant application 114 can comprise data representing machine-executable instruction sets representing rules or other logical structures to be applied by one or more processor(s) 602 of a device 110 and configured to enable a user of the device to purchase a product or service that a merchant 130 displays or advertises to the user from within the merchant application 114 , or to navigate to a website or other e- or m-commerce site associated with the merchant and browse services, products, etc., and set up and execute purchase or other transactions.
  • Different possible merchant applications 114 can include those which are dedicated to a specific merchant's goods and/or services, as well as third party applications, such as auction sites or merchant group affiliations, which offer goods and/or services on behalf of multiple merchants.
  • Applications 114 can reside wholly on a user's device 110 and be configured for secure communication with transaction control programs implemented on merchant transaction management systems 130 , in accordance with logical structures residing in memory on the user device 110 ; or such applications 114 can be configured for distributed implementation by, for example, providing a front end/user interface application on the user's device 110 , with transaction control processing taking place in accordance with logical structures associated with the application residing on the merchant system 130 .
  • a merchant transaction management application 114 may be configured so that payment credentials or other information stored within one or more wallet applications 112 may be pulled, or otherwise accessed, by the merchant application 114 from or through a virtual wallet application 112 or (other) secure memory source without need for a user of a device 110 to open or launch any separate wallet or other payment management application 112 .
  • a payment transaction is initiated by a user via a merchant application 114 the user may be presented with a screen or prompt providing the user with a choice which payment credential stored in any of one or more wallet applications 112 to pull for use in executing the transaction.
  • merchant application 114 , 630 may automatically pull a default or pre-selected payment credential from wallet application 112 , 622 without prompting the user.
  • the provision of separate merchant transaction management application(s) 114 and FI-related payment management application(s) 112 on a purchaser device 110 can enable a purchaser or other user to interact with merchant system(s) 130 and FI(s) 120 separately, using logical structures generated by the respective merchants and FIs and thereby ensuring that communications involved in such interactions are conducted according to distinct security, legal, and commercial standards required or otherwise imposed by the merchants and FIs.
  • the invention opens up significant new transactional possibilities, without sacrificing security or commercial advantage or necessity.
  • memory(ies) 604 , 608 of a device 110 can further incorporate or otherwise support non-merchant specific applications or programs, such as games, general purpose web browsers, readers, and the like from which it may be possible to initiate electronic transactions by, for example accessing a merchant website over the internet, via pop-up (graphical) user interfaces (GUIs,) etc.
  • non-merchant specific applications or programs such as games, general purpose web browsers, readers, and the like from which it may be possible to initiate electronic transactions by, for example accessing a merchant website over the internet, via pop-up (graphical) user interfaces (GUIs,) etc.
  • Such non-merchant applications may be coupled to one or more mobile wallet applications 112 in order to retrieve payment tokens or other credentials that may be stored therein, or otherwise cooperate with such wallet applications; and, via CPU 602 , to a network communication component such as short-range communications 614 or long-range communication 612 or to any other network component, such as a modem installed in a non-mobile user device 110 , 110 ′, and thereby any one or more merchant transaction management system(s) 130 .
  • a network communication component such as short-range communications 614 or long-range communication 612 or to any other network component, such as a modem installed in a non-mobile user device 110 , 110 ′, and thereby any one or more merchant transaction management system(s) 130 .
  • a user may, to initiate an electronic transaction, navigate to a web page or website using, e.g., any available I/O devices as described herein.
  • a suitably-configured transaction request data set (or ‘requested transaction data set’), comprising for example data representing one or more items the user wishes to purchase, and perhaps a full or partial description thereof, along with item, subtotal, and/or total purchase prices, by for example selecting the items for addition to the merchant application's virtual shopping cart, and has initiated a payment (e.g., ‘checkout’) process
  • merchant application 112 may display an option to the user to pay for the transaction using a wallet application 112 installed in memory 606 and/or secure element 618 .
  • the payment tokens selected for use in the transaction may be located in or other memory or locations on mobile device 110 or, in some cases, in virtual wallet(s) 112 or other memory(ies) or application(s) in a secure cloud resource hosted by or otherwise associated with one or more FI systems 120 , 160 .
  • the device operating system may interface with such application 112 so as to obtain a suitable payment token depending on the selected form of payment.
  • the obtained payment token may be transmitted over short-range communications 614 or long-range communication 612 for processing by a merchant transaction management backend system 130 .
  • a user may securely log in to a bank account administered by an FI system 120 , 160 from within an application or program on user device 110 using some form of identification information (e.g., user identification and password, biometric, etc.) and, once authenticated, the user's bank may transmit electronic payment tokens to the merchant/acquirer for processing of the transaction. Processing of the electronic payment through a payment network or other entities may then proceed as described herein.
  • identification information e.g., user identification and password, biometric, etc.
  • the invention provides systems, processes, and persistently stored, machine-accessible and machine-readable programming structures that enable one or more request devices 110 , such as smart phones, tablet computers, wearable devices, or other mobile devices, to interact with payment authorization management system(s) 120 by means of suitably-configured signal exchanges over a communications network 200 , and, as a result of such interactions, to be cause to be generated or otherwise be provided with a secure data set, such as a token representing account information, for storage in volatile or non-volatile memory 604 , 606 , 618 of the device 110 and thereby enable a user to conduct transaction(s) with one or more merchant system(s) 130 .
  • request devices 110 such as smart phones, tablet computers, wearable devices, or other mobile devices
  • payment authorization management system(s) 120 by means of suitably-configured signal exchanges over a communications network 200 , and, as a result of such interactions, to be cause to be generated or otherwise be provided with a secure data set, such as a token representing account information, for storage in
  • any purchaser or request device(s) 110 may be associated with multiple authorized human and/or juristic users, and/or with multiple accounts associated with such user(s).
  • each such device may be used by different authorized users and/or entities in different jurisdictions, or in different data processing contexts, as for example different social media platforms vs inside a brick-and-mortar merchant premises or particular online services (e.g., an online music or media source).
  • a representation of, link to, and/or other data or instruction(s) associated with each validated identity may be stored in secure memory controlled by or otherwise associated with any off applications 112 , 114 , etc.
  • a further advantage offered by various aspects and embodiments of the invention is improvement in the manner in which single or multiple forms and sources of payment to be used in completing a transaction can be agreed upon in advance, at the time of a transaction, and/or after the transaction has been confirmed, between a user of a device 110 and a merchant system 130 , and communicated to the bank/FI processor 120 , 160 , for example, by the POS 132 , 134 , or server 136 , etc.
  • Such methods of payment may be registered with or otherwise authenticated by the bank 160 or other trusted platform 120 , in the form of select merchant payment token data sets (or “authorized merchant token data sets) described herein, so that the need for transmitting and interpreting information identifying such methods may be obviated or otherwise reduced.
  • payment may be completed with use of an instruction to the bank 160 or other trusted platform 120 to process payment according to the agreed upon method of payment, without having to provide any details (which may be of a sensitive nature) related to the selected source or method of payment in the payment message itself.
  • such forms of payment may be negotiated between a user of a device 110 and one or more payment management authorization systems or other FIs 120 , in accordance with logical structures associated with either or both of applications 112 , 114 , as described herein.
  • such configurations enable merchants 136 to take direct or indirect part in negotiating the form of such of such payments, and special rules, or business functions, such as promotions, special loyalty offers, etc., to be applied in conjunction with such transactions.
  • both the user of a device 110 and a merchant system 130 may agree one or more types, modes, or protocols of payment(s) to be used (e.g. credit, debit, cash bank transfer, loyalty point redemption, including one or more specific accounts associated with each such type of payment), and identifier(s) associated with the selected protocol can be transmitted to the trusted platform server 120 .
  • types, modes, or protocols of payment(s) to be used e.g. credit, debit, cash bank transfer, loyalty point redemption, including one or more specific accounts associated with each such type of payment
  • identifier(s) associated with the selected protocol can be transmitted to the trusted platform server 120 .
  • a variety of data and/or other signals may be generated by any or all of systems 120 , 160 , 130 , and passed to the user's device 110 .
  • a purchase or other transaction request is generated
  • FIGS. 3 and 4 Examples of ways in which the invention may be used to increase flexibility and convenience for purchasers and other users 190 , merchants 130 , and FIs 120 , etc., in setting up preferences for and conducting payments and other electronic transactions are described in connection with in FIGS. 3 and 4 .
  • means for enabling either or both of a user 190 and merchant system 130 to designate types, protocols, rules, and/or specific accounts to be used for receiving, accepting, and otherwise processing payments are described. For example, as shown and explained in connection with FIG.
  • a purchaser or other user 190 of a network request communication device 110 is enabled to select one or more desired funding sources to be associated with payments made via a merchant transaction application 114 or otherwise in connection with purchases made through one or more specific vendors, while the merchant 130 is enabled to specify one or more preferred payment types, protocols, formats, and rules to be used in receiving or otherwise processing payment from the user 190 through the merchant application 114 , independent of any preferences designated by the user 190 .
  • merchant application(s) 114 installed on a purchaser communication device 110 can be adapted for communication with a variety of components of system(s) 100 , including for example any or all of virtual wallet application(s) 112 , merchant backend system(s) 130 , 136 , and payment authorization management systems and/or other FI system(s) 120 , 150 , 160 , etc.
  • a user 190 can invoke or otherwise access a merchant application 114 and, through the use of suitably-configured user interfaces (UIs), generate a preferred funding source instruction request data set representing one or more funding sources to be used in transactions conducted with the merchant, or through the application 114 , and route the preferred funding source instruction data set to the merchant application 114 .
  • UIs user interfaces
  • a user 190 of a purchaser communication device 110 comprising one or more input/out devices 610 such as one or more touchscreens 621 , select switches 623 , cameras 625 , microphones 627 , and speakers 629 can invoke one of a virtual wallet application 112 , merchant application 114 , or a network browser by selecting one of corresponding application icons 112 ′, 114 ′, 116 ′.
  • a user 190 has selected a “MY STORE” application icon 114 ′ to invoke a merchant transaction communication application 114 associated with a merchant “MY STORE” and adapted to facilitate secure and efficient communications between the device 110 and merchant server 136 of a merchant transaction management system 130 as shown in FIG. 1 .
  • a “MY STORE” application icon 114 ′ to invoke a merchant transaction communication application 114 associated with a merchant “MY STORE” and adapted to facilitate secure and efficient communications between the device 110 and merchant server 136 of a merchant transaction management system 130 as shown in FIG. 1 .
  • invocation of the application 114 has enabled the user 190 to access a “Preferences” GUI 639 adapted to solicit designation by the user of one or more accounts to be used, for example as defaults, as sources of funds for satisfaction of one or more purchase transactions conducted with the merchant MY STORE's transaction management system 130 , either directly or through the “MY STORE” application 114 .
  • a purchaser communication device 110 can be provided with multiple merchant applications 114 as well as one or more virtual wallet applications 112 , each of which can be configured to facilitate communications an individual bank or other FI account administration system 120 directly.
  • a single virtual wallet application 112 can act as a one-stop clearing house by facilitating communications with multiple FI systems 120 .
  • Merchant applications 114 can be configured to facilitate communications with any one or more account administration systems 120 directly, or in many embodiments to communicate with designated systems 120 through wallet application(s) 112 , optionally at the election or designation of one or more users authorized to access the device 110 .
  • the merchant application 114 GUI 639 has generated icons 631 to enable the user 190 to designate one or more payment accounts administered by or otherwise associated with a first preferred bank or other FI 120 ; 633 to enable the user to designate one or more accounts administered or otherwise associated with a second preferred bank or other FI 120 ; and 634 to enable a user to access a listing of accounts associated with multiple FIs 120 .
  • the merchant application 114 is configured to communicate with the corresponding FIs 120 indirectly, by communicating with virtual wallet application(s) 112 controlled by the user 190 's device 110 .
  • selection of an item 634 “ALL MY CARDS” can one or more of processors 602 to generate and present a GUI such as GUI 640 , and thereby enable a user 190 to designate one or more accounts associated with multiple FI systems 120 to be used as funding sources in connection with transaction(s) to be conducted with the merchant MY STORE's transaction management system 130 .
  • GUI such as GUI 640
  • selection of a command item 631 “My Preferred Cards” can enable the user 190 to designate one or more accounts associated with a preferred bank or FI 120 ; selection of a command item 633 “My Preferred Cards at another Bank” can enable the user 190 to designate one or more accounts associated with a second bank; and selection of a command item 634 “All My Cards” can enable the user 190 to designate one or more accounts associated with any or all of multiple FIs 120 .
  • command item 634 “All My Cards” can result in generation of a GUI 640 listing multiple accounts administered or otherwise associated with multiple FI systems 120 .
  • invocation of the command item 634 can cause one or more processors 602 of the device 100 to generate, in accordance with instructions incorporated within logical structures associated with the My Store merchant API 114 , a preferred or select payment or funding source instruction request data set (also referred to as a “request to add card” data set), and route the data set either to a single wallet application 112 configured to control access to accounts administered by multiple FI systems 120 ; or to multiple dedicated wallet applications 112 , each configured to control access to accounts administered by a single FI system 120 ; or to multiple FI systems 120 directly, without working through any wallet application 112 .
  • a preferred or select payment or funding source instruction request data set also referred to as a “request to add card” data set
  • data can be accessed from memory, generated, and routed to various recipients in accordance with security measures imposed by logical structures associated the application(s) 114 , 112 , handling the data; and therefore designated by their respective merchant 130 and FI 120 sponsors or producers.
  • security measures imposed by logical structures associated the application(s) 114 , 112 , handling the data; and therefore designated by their respective merchant 130 and FI 120 sponsors or producers.
  • a “request to add card” command data set generated by a merchant API 114 and routed to a multi-FI wallet application can, for example, include:
  • the merchant is enabled to cause, through the use of suitably configured rules implemented by logical structures stored in data associated with an API 114 , any of a wide variety of data communications routed to FI system(s) 120 to include data representing requests for special processing of such transactions.
  • request to add card data sets can, for example, include:
  • Such merchant special processing request flags can include any identifiers, representing any processing requests, that can be understood and appropriately processed by merchant system(s) 130 , FI system(s) 120 , and optionally by either or both of user(s) 190 and device(s) 110 .
  • Examples of such processing requests include application of merchant, FI, and/or user specified rules pertaining to any of the following:
  • identifiers associated with such special merchant or other transaction processing requests can be communicated implicitly, based on either or both of the secure merchant application identifier(s) and the flag indicating the nature of the request.
  • pluralities of either merchant identifiers and/or flags can be used, a single identifier or flag indicating both the identity of the requesting merchant, or the fact that an account listing is requested, and the nature of a special processing request.
  • the merchant special or other transaction processing request flag(s) can also represent or include either (a) one or more specific, one-time requested transaction amount(s); or (b) express or implied request(s) for authorized limit(s) for a single or multiple transactions.
  • a user 190 and merchant 130 can request generation of one or more pre-paid, negotiable payment token data sets, and/or a limit to be generally authorized for future transactions, subject to verification of availability of funds at the time of a proposed transaction.
  • the merchant application 114 or virtual wallet application 112 can, in accordance with rules represented by logical structures associated with the application, generate one or more preferred funding source identification request data sets (or “eligible accounts list request data sets”) adapted to cause polling of one or more FI systems 120 associated with accounts or other funding sources controlled by or otherwise available to the user 190 in satisfying payment transaction requests for data identifying all or some such available funding sources.
  • a virtual wallet application 112 associated with a specific bank can parse the data set and, using flags or other identifiers as described above, execute known table look-up and value comparison techniques to determine routing information for the one or more FI systems 120 to which the request is to be routed, subject to any merchant preferences for funding FIs expressed by means of explicit or implicit special processing request identifiers.
  • Identifiers associated with any such special processing requests suitable for consideration by target FI system(s) 120 can also be explicitly or implicitly included in the eligible accounts list request data set.
  • Eligible accounts list request data sets generated in accordance with such aspects of the invention can, for example, be formatted in accordance with any agreed or otherwise suitable protocol(s) and can include:
  • such a request can, for example, be forwarded by a virtual wallet application 112 (or merchant application 114 ) installed on the user 190 's device 110 to the one or more FI system(s) associated with the virtual wallet application 112 .
  • logical structures associated with the application 112 (or merchant application 114 ) can cause one or more of processor(s) 302 to route the preferred funding source identification request data set(s) to a network or short-range communication system 612 , 612 to route the request to one or more payment authorization management systems 112 via network(s) 200 or NFC or other communications paths.
  • any payment management authorization system(s) 120 to which a preferred funding source identification request data set has been routed can parse the request, and based on any agreed or otherwise accepted protocols and use of table look-up or other suitable processes or techniques determine the identities of requesting purchasers or users 190 , merchants identified by the request, and special preferences or rules to be applied to identification of eligible accounts, and apply such criteria to identification of any eligible accounts. For example, each account associated with an authorized purchaser can be polled, and compared to received criteria, and an eligible account data list can be assembled, for example by writing associated identifiers to one or more buffers or other temporary memory stores.
  • logical structures associated with payment authorization management systems 120 and/or processes executed thereby can be used to set or enforce account eligibility requirements, which can for example include any applicable legal requirements, bank rules (e.g., available credit, availability of debit funds and applicability of any daily or other periodic withdrawal limits, line of credit (LOC) restrictions, foreign currency exchange restrictions, etc.); requirements or restrictions imposed by merchants associated with the request; requirements or restrictions imposed by the FI on specific merchants or classes of merchants; agreements with merchants or merchant associations, etc.
  • eligible accounts can include any source(s) of funds available to the identified user, including any and all forms of demand and other deposit accounts, certificates, etc.; credit accounts, including LOCs; loyalty/rewards points accounts; foreign currency accounts, etc.
  • the list of eligible accounts can be determined using those as criteria as well.
  • the virtual wallet application 112 (or merchant application 114 ) can communicate with the FI(s) 120 to request generation of a data set representing a list of accounts available for designation as preferred funding sources with respect to transactions conducted through the merchant application 114 , and at 2407 one or more processors associated with the polled FI system(s) 2407 can return, via one or more network communications systems, eligible account list data set(s) that include the following:
  • Such data sets can also include, if/as desired, identifiers associated with merchants with whom the accounts are eligible to be used, and/or data representing information confirming or otherwise related to any merchant or user special processing requests.
  • the virtual wallet application 112 (or merchant application 114 ) to which and eligible account list data set(s) has been returned can use the data received at 2407 to cause generation and display on the user's device 110 of a GUI 640 listing the eligible funding source(s) for selection as preferred funding source(s). This can accomplished by displaying such a GUI directly through use of logical structures associated with the virtual wallet application 112 , or by returning the list data to the requesting merchant application 114 so that logical structures associated with the merchant application 114 can be used to generate and display the preferred funding source selection GUI.
  • GUI 640 listing multiple accounts administered or otherwise associated with one or more FI systems 120 .
  • GUI 640 lists accounts controlled or otherwise administered by a plurality of payment authorization management systems 120 “My Bank” and “My Other Bank.”
  • Listing 641 includes checking, savings, credit, LOC, merchant loyalty, bank loyalty, and 3 rd party rewards accounts administered by or available through My Bank, as well as checking, credit, and rewards accounts administered by My Other Bank.
  • Accounts such as third-party rewards accounts (such as that listed under My Bank) which are not directly administered by a FI 120 by whom an account listing has been generated can for example be accounts linked to a bank, or to a merchant, or to a purchaser, by agreements between any or all of the bank, merchant and purchaser.
  • a merchant associated with a merchant API 114 with respect to whom a user 190 wishes to designate one or more accounts to as sources of funds for transactions conducted with the merchant, can identify special rewards rules by means of one or more special merchant processing request identifier(s), as described above, and thereby authorize or cause an FI system 120 generating an eligible account listing to include the third party rewards account in the listing.
  • a GUI listing eligible accounts can include one or more radio button items 643 or other GUI devices in association with each account, in order to enable the user 190 to select one or more accounts as preferred funding sources for transactions with the specified merchant(s).
  • An important feature enabled by such aspects and embodiments of the invention is the ability to identify multiple accounts as preferred funding sources for transactions. For example, split pay features such as those described below, and in the incorporated priority applications, can be applied. Thus, in the example shown in FIG. 7 , user 190 can select any desired number of the displayed accounts by touching the corresponding radio button item(s)
  • the user can be provided with a choice of establishing a priority list, with first choices being exhausted before secondary or tertiary choices are used to satisfy transaction payments.
  • the merchant or wallet application 112 , 114 can generate a GUI which enables the user to use a physical or virtual keyboard to identify a desired precedence, or the order in which selections are designated can be used to establish the desired precedence.
  • split pay option item 645 can invoke GUIs adapted for precedences, ratios, etc., to be used in split pay processes, for example as described in the incorporated references.
  • a listing 641 of eligible accounts is too long to be displayed conveniently on a single GUI screen, the user can use a “NEXT” command item 647 to access a continued list.
  • the virtual wallet application 112 or merchant application 114 can route a selection of one or more preferred funding sources selected by the user 190 in response to the list displayed at 2408 to the FI(s) 120 by which they are controlled or otherwise administered, along with data implicitly or explicitly representing an instruction or request for generation of a preferred funding source token based on the user's selection.
  • the application 112 , 114 can generate a merchant token authorization request data set, or “select merchant payment token request data set,” and route it to the payment authorization management system(s) 120 intended to process transactions conducted between the user 190 or device 110 and merchant system(s) 130 .
  • a select merchant payment token request data set can, for example, include data representing:
  • the corresponding FI system(s) 120 can create preferred funding source token(s) and link or otherwise associate the token(s) with the selected funding sources. This can be done, for example, by a primary banking/account administration processor 120 or by an associated or independent token service processor 160 , as shown in FIG. 1 . Generation of such tokens can be subject to adjudication by the receiving FI system(s) 120 , for example to ensure that requesting user(s) 190 , prospective authorized merchants 130 , and/or combinations of the two, are not subject to legal, FI, or other restrictions in conducting transactions.
  • a secure token generation service 120 , 160 associated with the FI system 120 responsible for managing accounts accessible by the requesting user can generate and store in secure persistent memory, such as a suitably secure database of select merchant payment token data sets, an unpredictable select merchant payment token (or “selected merchant payment token”) to serve as a unique identifier of (i) the merchant(s) or merchant account(s) to which payments associated with use of the token are to be made; and (ii) the accounts to be used as funding sources for transactions between the merchant(s) and the requesting user.
  • secure persistent memory such as a suitably secure database of select merchant payment token data sets, an unpredictable select merchant payment token (or “selected merchant payment token”) to serve as a unique identifier of (i) the merchant(s) or merchant account(s) to which payments associated with use of the token are to be made; and (ii) the accounts to be used as funding sources for transactions between the merchant(s) and the requesting user.
  • the token can also be linked, e.g., through a table-look up process, with any special business functions or requests associated with the token request, including for example any special loyalty account rules, discounts, etc., specified or requested by the corresponding merchants, users, or FI(s) 120 .
  • Any suitably coded or otherwise non-predictable character set(s) e.g., random or pseudo-random string(s) of letters, numbers, special characters, etc.
  • other credentials can be used as an authorized or selected merchant payment token generated at this step.
  • an authorized or select merchant payment token data set generated by a payment authorization management system 120 in accordance with this aspect of the invention can include multiple data records, each including some or all of the following, along with any other required or desired data:
  • a payment authorization management system 120 controlling such a data set can use the select or authorized merchant payment token to look up an associated select merchant payment token data set, identify applicable parties and rules, and apply them to adjudication and other processing of the transaction request.
  • Optional pre-authorized transaction limits can be included where, for example, a pre-paid token is to be generated and stored on a user's device 110 , or within secure memory at an account administration FI 120 , for later access by the user in transactions with the merchant. In such cases funds can be set aside in a temporary or permanent sequestered or ‘buffered’ account until expended in a transaction.
  • generation of the Merchant API token can be created in advance simply in order to speed transaction processing at the time a transaction is desired, while uniquely identifying all applicable payment rules, including special discounts, loyalty rewards, and accounts to be used as transaction funding sources.
  • the normal processes of verifying availability of sufficient funds to settle a transaction, etc. can be applied.
  • the preferred funding source token can be returned by the FI system 120 that generated it to the requesting wallet application 112 or merchant application 114 , which at 2416 can forward it, or a modified or replacement token, to merchant application 114 associated with the token request process 2400 .
  • the select merchant payment token can be routed by an account management system FI 120 to the requesting user 190 's virtual wallet application 112 , and at forwarded by wallet application 112 to a merchant application 114 associated with the authorized merchant, which at 2418 can in turn forward the token to the corresponding merchant back-end system 130 .
  • a merchant application 114 can generate a select merchant token confirmation data set, comprising data representing one or more secure purchaser identifiers associated with the prospective purchaser 190 and/or device 110 and the same or another select merchant payment token, and route the select merchant token confirmation data set to a merchant transaction management system 130 , in order enable the merchant backend system 130 , 136 associated with the merchant application 114 to store the select merchant token and optionally the secure purchaser identifiers in secure persistent storage and optionally to request generation of a special payment token to be used by the merchant application 114 , 630 in internal or other processing transaction payment requests originated by the user's device 110 .
  • the select merchant token and secure purchaser identifier(s) can be used by the merchant transaction management system 130 , for example, to confirm the validity of proposed transactions and to route inquiries, confirmations, transaction receipt data, etc. to one or more user devices 110 , and to route confirmations, inquiries, and other required or desired information to payment authorization management system(s) 120 as appropriate or otherwise suitable for negotiating, executing, confirming, and clearing transactions.
  • the merchant back-end system can route the token to banking/token management services associated with FI system(s) 120 , 160 a request for confirmation, with identifiers representing any special transaction processing requests, and/or for generation of a separate unpredictable identifier to be associated by the merchant system 130 with the user 190 in processing of any transactions initiated by the user, etc.
  • a select merchant token confirmation request data set can include, for example:
  • select merchant token confirmation request data sets can be generated and routed by merchant transaction processing systems 130 step 2420 or any subsequent time, in order for example to revise, delete, replace or otherwise modify one or more merchant transaction processing requests, so that, for example discounts on various specified goods and/or services can be increased or decreased, rewards or loyalty program rules revised, etc.
  • select merchant token confirmation request data sets data representing one or more purchasers 190
  • awards programs, discounts, etc. applicable to one or more persons, or classes of persons
  • the merchant backend system 130 , 136 can generate and forward to the FI system 120 associated with the preferred funding source(s)/merchant token request the same or another merchant application payment token request data set.
  • the merchant application payment token request data set or merchant confirmation data set can include data representing a request that payments made between the requesting user 190 , device 110 , and/or merchant application 114 be formatted in accordance with an desired type or protocol, independent of the preferred funding source(s) designated by the user 190 .
  • the merchant system 130 can request that payments drawn from such accounts be processed in accordance with EMV (Europay-Visa-MasterCard) and/or other credit protocols.
  • EMV Europay-Visa-MasterCard
  • the invention enables the user 190 and merchant 130 to independently designate one or more preferred funding source types and protocols to be used in processing transactions between the user's merchant application 114 and the requesting user 190 .
  • the responsible FI 120 can return a suitably-formatted select merchant payment token, or confirmation of an earlier-generated token, to the requesting merchant backend system 130 for use as described herein.
  • confirmation can further include, for example, data representing confirmation or proposed modification(s) of special transaction processing requests forwarded (directly or indirectly) by the authorized merchant system 130 .
  • payment authorization management systems 120 can be configured to parse data representing merchant transaction processing requests and cause the corresponding requests to be reviewed for compliance with legal, regulatory, and FI policies, optionally automatically according to suitably-configured heuristic analyses, or by human regulatory and/or policy compliance officers; and, when requested modifications are approved, cause the associated FI system(s) 120 to generate and route to requesting merchant transaction management system(s) 130 suitably-configured merchant transaction processing request confirmation data set(s) comprising flags or other data representing confirmation of acceptance by a payment authorization management system of one or more merchant transaction processing requests.
  • a responsible FI system 120 can update its data set associated with the authorized merchant token, and return the same or another suitable token to the Merchant back end.
  • the confirmation can include any data representing confirmation of any special merchant-side special function requests, such as special savings, rewards points offers, etc.
  • a token confirmation data set returned by an FI 120 to a requesting merchant backend system 130 can include:
  • such a merchant application payment token or other select merchant payment token can be provided in a form suitable for processing using “conventional” payment rails 150 through, for example, use of a discretionary field in a “conventional” transaction payment data set.
  • an select merchant payment token can comprise a plurality of encoded or otherwise unpredictable data sets or items, formatted as follows:
  • an FI 120 can parse a received transaction request data set associated with an select merchant payment token, and can look up the associated select merchant payment token data set to process the transaction according to specified special transaction requests, as described above.
  • the invention can be used to enable the use of multiple funding sources to be applied toward the satisfaction of purchase transactions.
  • such payments can be processed through the use of conventional ‘payment rails’ provided by third-party FI system(s) 150 , by generating transaction request data sets comprising select merchant payment tokens in discretionary data fields of EMV and/or other traditional payment protocols.
  • select merchant payment tokens can be used to facilitate payments made according to Applicant's unique split-pay techniques.
  • an select merchant payment token received by an FI 120 in a discretionary field of a transaction request formatted according to the EMV protocol can be used to look a corresponding authorized merchant data set.
  • the authorized merchant data set associated with the select merchant payment token can include a split-pay data set comprising the following bits:
  • P1 percentage or amount of value to be funded by source 1
  • P2 percentage or amount of value to be funded by source 2
  • PX percentage or amount of value to be funded by source X
  • the invention provides networked payment authorization management systems 120 , wherein such a system comprises one or more network communication systems 124 , one or more data processors 122 , and one or more persistent memory devices 126 , the at least one persistent memory device 126 comprising stored, machine-interpretable instructions adapted to cause the at least one data processor to receive from a purchaser communication device 110 , using the at least one network communication system 124 , a select merchant payment token request data set, the select merchant payment token request data set comprising data representing at least one or more selected merchant identifiers and one or more selected payment source identifiers; to generate a secure select merchant payment token; generate an authorized merchant token data set comprising at least the select merchant payment token, the one or more selected merchant identifiers, and the one or more payment source identifiers; cause the authorized merchant token data set to be stored in any or all of secure persistent memories 126 , 139 , 606 , 604 ; using the same or another network communication
  • the invention provides networked merchant transaction management systems 130 , wherein such a system comprises one or more network communication systems 138 , one or more data processors 137 ; and one or more persistent memory devices 139 , the at least one persistent memory device 139 comprising stored, machine-interpretable instructions adapted to cause the at least one data processor 137 to receive from a purchaser communication device 110 , using the at least one network communication system 138 , a select merchant payment token authorization request data set, the select merchant payment token authorization request data set comprising data representing at least one or more secure purchaser identifiers and a select merchant payment token; generate a select merchant token confirmation request data set, the select merchant the select merchant token confirmation request data set comprising data representing at least the select merchant payment token, and optionally one or more merchant transaction processing requests; and, using the same or another network communication system 138 , route the select merchant token confirmation request to a payment authorization management system 120 .
  • Such optional merchant transaction processing requests can, for example, include data representing requests that a discount to be applied to one or more price terms associated with transaction request data sets generated by one or more designated purchaser communication devices; and/or new, special, or modified a loyalty account points award rules to be applied with respect to transactions associated with transaction request data sets generated by one or more designated purchaser communication devices.
  • the invention provides purchaser communication devices 110 , wherein such a device comprises one or more one data communication systems 612 , 614 , one or more data processors 602 , one or more of input, output, and input-output devices 610 , 621 , 623 , 625 , 627 , 629 , etc.; and one or more persistent memory devices 606 , 604 , 618 , the at least one persistent memory device 606 , 604 , 608 comprising stored, machine-interpretable instructions representing a merchant transaction management application 114 and adapted to cause the at least one data processor 602 to control the generation, receipt, and processing of data, routing of data using the at least one data communication system, and access to secure persistent memory 618 , in accordance with one or more logical structures associated therewith.
  • the same or another persistent memory device(s) 606 , 604 , 618 of the purchaser communication device 110 can comprise stored, machine-interpretable instructions representing a payment management application 112 and adapted to cause the same or another at least one data processor 602 to control the generation, receipt, and processing of data, routing of data using the same or another at least one data communication system, and access to the same or other secure persistent memory in accordance with one or more logical structures associated with the application 114 , separately from the application 112 .
  • the at least one processor 602 can further be configured to, in accordance with logical structures associated with the merchant transaction application 114 , receive from at least one input device 610 signals representing a command to designate one or more payment source accounts to be used in funding transactions conducted with at least one select merchant 130 ; in accordance with logical structures associated with the payment management application 112 , route to at least one payment authorization management system 120 an eligible accounts list request data set, the eligible accounts list request data set comprising data representing at least one or more purchaser identifiers; and receive from the at least one payment authorization management system 120 an eligible accounts list data set, the eligible accounts list data set comprising data representing at least one or more identifiers associated with each of one or more payment source accounts eligible for use in funding purchase transactions.
  • the at least one processor 602 can further be configured to, for example, generate and display on an output device 610 a suitably-configured GUI 640 for use by the user 190 , and thereafter receive from at least one input device 610 , in response to selections made by the user 190 , signals representing a designation of at least one of the one or more payment source accounts eligible for use in funding purchase transactions, and route to at the least one payment authorization management system 120 a select merchant payment token request data set comprising data representing at least identifiers associated with the one or more designated payment source accounts to be used to fund transactions conducted with at the least one select merchant 130 .
  • the at least one processor 602 can be configured to receive from the payment authorization management system 120 , via the same or another data communication system 612 , 614 , a select merchant payment token; and in accordance with logical structures associated with the merchant transaction application 114 , route the select merchant payment token to at least one merchant transaction management system 130 associated with the merchant transaction application 114 , using the same or another data communication system 610 , 612 .
  • FI's 120 , purchasers 190 , and optionally merchants 130 can agree on payment funding sources without any need for the merchant 130 to know the funding sources, or even the type(s) of funding sources involved.
  • merchants and purchasers need not agree on payment protocols to be used, so long as either or both can communicate with the FI system 120 .
  • a user 190 may invoke a merchant application 114 on a device 110 and select one or more items (good and/or services) to be purchased, rented, leased, etc.
  • a merchant application 114 the user 190 can use any suitably-configured keyboards, keypads, pointers, touch screen devices, and/or other input/output device(s) 610 in conjunction with suitably-configured user interface display screens to designate such goods or services.
  • merchant application 114 may transmit (directly or via any other suitable components, such as mPOS or POS device(s) 132 , 134 ) a request to merchant backend 136 a request for confirmation of purchase terms and other details, including for example price(s), quantities, goods/services to be purchased, date/time of delivery, location of delivery or pickup, etc.
  • a user may initiate a transaction from within any other application or program 112 , 116 , etc. by selecting a suitable start-up command item 112 , 116 , etc.
  • a user can use any suitably-configured I/O devices 610 , in conjunction with suitably-configured user interface I/O display screens, to select a wallet application 112 for payment. Such selection may be in response to presentation of multiple different payment options, including those which do not use a wallet application 112 .
  • FIG. 4 An example process 2500 for use of an select merchant payment token generated in accordance with process 2400 shown in FIG. 3 in order to complete a payment transaction is shown in FIG. 4 .
  • Process 2500 can begin at 2502 , when a user 190 accesses a merchant application 114 online, or at a merchant POS 132 , 134 , or uses a general internet browser to access a merchant online e-commerce application hosted by a merchant system 136 , to negotiate a purchase transaction.
  • a user of a merchant application 114 associated with a merchant “My Store” as described above who has used one or more GUIs generated by the merchant application 114 to identify one or more items for purchase can be presented with a GUI 650 such as that shown in FIG. 8 , comprising a list 652 of items to be purchased, a list 654 of prices associated with the items to be purchased; a total purchase price 656 (including any applicable taxes, etc.) to be paid, and one or more command items 658 , 660 associated with payment options.
  • Selection of command item 660 “My Wallet” can cause processor(s) 602 of the user's device to invoke a virtual wallet application 112 , and process payment in accordance with logical structures associated with the application 112 .
  • Such processes can, for example, result in generation of a transaction request data set, and routing of such data set to an FI system 120 associated with the virtual wallet 112 for processing and payment using one or more accounts designated through the virtual wallet application 112 .
  • the user 190 can be charged, and pay, the full purchase price 656 shown in FIG. 8 .
  • selection command item 658 “Token Pay” can cause processor(s) 602 of the user's device to generate and at 2505 route to a corresponding a merchant POS system 132 , 134 , a merchant backend system 130 , 136 , an select merchant payment token transaction request data set comprising an select merchant payment token generated in accordance with process(es) 2400 described above.
  • Such an select merchant payment token transaction request data set can, for example, be formatted according to any desired payment protocol, and can comprise:
  • a network communication system of the merchant backend system 130 , 136 can forward the select merchant payment token transaction request data set to the secure FI portal address, optionally (as shown at 2506 ) via conventional transaction processing systems (payment rails) 150 .
  • the select merchant payment token transaction request data set can be forwarded directly to the secure FI portal address by the merchant API of the user's device 110 , using one or more short-range or network communications systems 612 , 614 , without making use of either a merchant backend system 136 or payment rails 150 .
  • the payment authorization management system 120 to which the transaction request data set has been routed can parse and adjudicate the request. For example, by interpreting the select merchant payment token included in the data set and using it, by means of table-look or other processes in a suitably-configured data base of select merchant payment token data sets, the FI system 120 can identify the corresponding authorized merchant data set and confirm the existence and validity of the data set, availability of funds in identified source accounts, etc., permissibility under applicable laws, regulations, and rules etc.
  • the payment authorization management system 120 can identify and apply and special transaction requests designated by the merchant 130 or other parties. For example, where a merchant 130 has requested application of one or more discount, rebate, or loyalty awards rules, the FI system 120 can confirm the propriety of their application to the current request. Accordingly, for example, the system 120 can determine that a discount is to be applied, and calculate a reduced or otherwise adjusted price to be applied to the transaction.
  • the payment authorization management system can confirm the availability of adequate funds, rewards points, etc., to satisfy the transaction request.
  • This process can, for example, involve application of split-pay processes described above, communications with third-party rewards administrators 160 , etc., and conversion (or request for conversion) of loyalty or other rewards points to equivalent cash value, conversion of foreign currencies, etc.
  • the payment authorization management system 120 can approve the request, and debit or otherwise update funding source accounts to settle the transaction. This can for example include notifying third-party credit, loyalty, rewards program administrators, etc., of the transaction and approval of the application of resources associated with such accounts toward the transaction. As will be understood by those skilled in the relevant arts, such transaction settlement procedures can proceed in real time, or periodically (e.g., end of day or business week) in accordance with a wide variety of accepted or otherwise-desired processes or conventions.
  • token management processes and account crediting, debiting, and other updating/administrative procedures can be implemented by a single FI system 120 , or can be divided along any desired or required lines.
  • storage, parsing, and maintenance of records pertaining to select merchant payment tokens can be handled by specialized or otherwise separate token management services 160
  • account administration procedures can be handled by separate FI(s) 120 .
  • an FI system 120 , 160 applies special transaction processing requests such as discounts, rebates, or special loyalty points awards
  • the system 120 , 160 can generate a purchaser transaction approval data set, and route it directly or indirectly to the requesting merchant application 114 .
  • a purchaser transaction approval data set can, for example, include:
  • logical structures associated with a merchant application 114 or wallet application 112 can cause processor(s) 302 to generate and display a purchaser approval GUI such as purchaser approval GUI 670 shown in FIG. 9 , which includes item list 652 , original price terms 654 , updated (in this case, discounted) price terms 664 , and updated total price 668 .
  • a user 190 can use a command item 672 to generate a purchaser select merchant transaction confirmation data set, which can include a simply yes/no flag, and route the approval to the purchase authorization management system 120 .
  • the system 120 can process any final transaction approvals, account balance updates, etc.
  • a user 190 can decline alternative transaction terms, including discounted prices or modified loyalty wards applications, at any time prior to completion of the purchase (e.g., by selecting command item 672 ).
  • a user 190 not wishing to accept such modified terms can generate a select merchant offer decline command by selecting a command item 671 “No Thanks” and reverting to terms shown, for example, in GUI 650 of FIG. 8 .
  • such a user can avoid consideration of alternative terms altogether by selection of a command item 660 “My Wallet” in a GUI 650 , so as to complete transaction execution by, for example, invoiding another payment management application 112 .
  • the system(s) 120 , 160 can generate a suitably-formatted transaction confirmation data set and route it to any one or more of merchant backend system(s) 130 , 136 , POSs 132 , 134 , and/or merchant application(s) 114 . As shown in FIG. 4 , such confirmations may be routed over conventional payment rails 150 .
  • the invention provides networked payment authorization management systems according to the foregoing, configured such that at least one data processor 122 can receive from at least one of a purchaser communication device 110 and a merchant transaction management system 130 , using at least one network communication system, a transaction request data set, the transaction data set comprising data representing at least the select merchant payment token and a transaction price, and optionally one or more merchant transaction processing request.
  • select merchant payment tokens can be subject to one or more account eligibility restrictions imposed by the payment authorization management system 120 , which may for example be legal, regulatory, or commercial in nature.
  • the invention further provides, in the same and further aspects and embodiments, networked merchant transaction management systems, such a system comprising processor(s) 137 adapted to receive from purchaser communication devices 110 , via one or more one network communication systems 138 , merchant transaction processing request confirmation data sets, the merchant transaction processing confirmation data set comprising data representing confirmation of acceptance by a payment authorization management system 120 of one or more merchant transaction processing requests.
  • networked merchant transaction management systems such a system comprising processor(s) 137 adapted to receive from purchaser communication devices 110 , via one or more one network communication systems 138 , merchant transaction processing request confirmation data sets, the merchant transaction processing confirmation data set comprising data representing confirmation of acceptance by a payment authorization management system 120 of one or more merchant transaction processing requests.
  • the invention provides purchaser communication devices adapted to receive from merchant transaction management systems 130 , using one or more data communications systems 612 , 614 , data representing goods or services to be purchased from one or more merchants associated with the systems 130 , and corresponding price terms; to generate transaction request data sets, such a set comprising data representing at least a select merchant payment token associated with the merchant and a transaction price associated with the corresponding price terms; and, using the same or another data communication system 612 , 614 , route the transaction request data set to at least one of the merchant transaction management system 130 , 132 , 134 , 136 and one or more payment authorization management systems 120 .
  • the merchant application 114 can access and route to a POS system 132 , 134 and/or a merchant system 130 a select merchant payment token returned to the corresponding merchant system 130 at 2422 , such token having been stored on the user's device 110 , or accessed via the merchant backend system 136 , etc.
  • the authorized merchant payment token may be used to generate a transaction authorization request data set as described above, the transaction authorization request data set comprising fields as described above, including a payment type identifier associated with a payment type and/or protocol preferred by the merchant and one or more identifiers associated with funding sources preferred by the user 190 .
  • a discretionary field can be used to identify one or more funding sources preferred by the user.
  • the merchant system 130 , 132 , 134 can route the transaction authorization request data set generated at 2504 to the FI system(s) 120 , 160 associated with the preferred funding source(s) designated by the user in process 2400 .
  • the transaction authorization request data set can be routed over ‘conventional’ payment network rails 150 , and at 2508 interpreted and otherwise processed by components 150 like any other payment request.
  • the requested transaction may be processed and adjudicated in accordance with suitable process(es), including those described above, including for example by checking at 2510 for the availability of adequate funds/points balances in preferred funding source(s) identified by the user 190 and routing approvals at 2512 , 2514 .
  • suitable process(es) including those described above, including for example by checking at 2510 for the availability of adequate funds/points balances in preferred funding source(s) identified by the user 190 and routing approvals at 2512 , 2514 .
  • Such processes can, for example, include the use of split pay and/or real-time credit processes such as those described.
  • Merchant authorization and/or application payment tokens in accordance with the invention can be configured to enable the merchant to request that an FI 120 to which the token is routed to perform any of a very wide range of business functions, in addition to or in lieu of payment transactions.
  • the application or award of unique rewards functions, payment refunds, etc. can be executed in accordance within instructions of the corresponding merchant system 130 .
  • systems and processes in accordance with the invention may be implemented wholly or partly through the use of various forms of public ledgers, such as blockchains.
  • public ledgers such as blockchains.
  • one or more mPOSs or other trusted devices 110 ′ may be established as a node in a blockchain ledger system.
  • each trusted device 110 ′ including any trusted mPOSs 134 , may route transaction data sets securely from merchant system(s) 130 to FSP systems 160 , 120 while complying with applicable blockchain/public ledger protocols.
  • a block chain is a distributed and generally encrypted or otherwise secure data store that acts as a virtual public ledger of transactions, and is particularly useful in implementing cryptocurrencies such as bitcoin.
  • ledger schemes a plurality of devices are implemented as node, each node controlling or otherwise having access to a distinct, complete or partial stored copy of the ledger; the ledger comprises data sets representing legal or otherwise recognized tender for transactions.
  • each involved network node can validate the transaction, or a portion of it, and generate data representing suitable ledger annotations, enter the annotations in the node's portion or copy of the ledger, and push or make available updated ledger annotations to other nodes.

Landscapes

  • Business, Economics & Management (AREA)
  • Engineering & Computer Science (AREA)
  • Accounting & Taxation (AREA)
  • Strategic Management (AREA)
  • Theoretical Computer Science (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Physics & Mathematics (AREA)
  • Finance (AREA)
  • Development Economics (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Entrepreneurship & Innovation (AREA)
  • Game Theory and Decision Science (AREA)
  • Economics (AREA)
  • Marketing (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
  • Cash Registers Or Receiving Machines (AREA)

Abstract

Systems 100; devices 110, 120, 130, 150, 160; methods 2400, 2500; and machine-executable programming structures stored in persistent (i.e., non-transitory), computer-readable media 604, 606, 618, 126, 139 for the rapid and secure negotiation, authorization, execution, and confirmation of multi-party data processes, including payment transactions conducted between purchasers 190 having electronic access to bank accounts and other sources of payment, merchants operating e- and/or m-commerce transaction systems 132, 134, 136, and banks and other financial institutions 120 capable of electronically communicating with both.

Description

    CROSS-REFERENCE TO RELATED APPLICATIONS
  • This application is a Continuation application of U.S. patent application Ser. No. 15/648,942, filed 13 Jul. 2017. U.S. patent application Ser. No. 15/648,942 claims all right and benefit, including priority, of U.S. Provisional Patent Application No. 62/361,919, filed 13 Jul. 2016 and entitled “SECURE PROCESSING OF ELECTRONIC PAYMENTS”, and is a continuation-in-part of U.S. patent application Ser. No. 15/000,685, filed 19 Jan. 2016 and entitled “SECURE PROCESSING OF ELECTRONIC PAYMENTS”, and a continuation-in-part of U.S. patent application Ser. No. 15/201,428, filed 2 Jul. 2016 and entitled “SECURE PROCESSING OF ELECTRONIC PAYMENTS,” and claims all right and benefit thereof, including rights of priority of U.S. Provisional Patent Application No. 62/188,067, filed Jul. 2, 2015, and entitled “SECURE PROCESSING OF ELECTRONIC PAYMENTS”; U.S. Provisional Application No. 62/200,859, filed Aug. 4, 2015, and entitled “SECURE PROCESSING OF ELECTRONIC PAYMENTS”. The entire contents of each of the foregoing are incorporated herein by this reference.
  • DISCLAIMER
  • Aspects of the material disclosed in this application relate to the creation, administration, manipulation, processing, and storage of data useful in processing of payment transactions. Aspects of such creation, administration, manipulation, processing, and storage may be subject to regulation by governmental and other agencies. The disclosure herein is made solely in terms of the use of logical and physical components, functions, and combinations in signal processing systems and communications systems, in order open new economic and communications possibilities, without regard to statutory, regulatory, or other legal considerations. Nothing herein is intended as a statement or representation that any of the systems, components, or processes proposed or discussed herein, or the application thereof, does or does not comply with any statute, law, regulation, or other legal requirement in any jurisdiction.
  • TECHNICAL FIELD
  • The present disclosure relates generally to the generation and secure and efficient execution of electronic signal exchanges, and more particularly to improved systems, methods, and programming structures for the secure negotiation, authorization, execution, and confirmation of multi-party and multi-device transactional data processes.
  • BACKGROUND
  • Electronic signal exchanges such as those representing payments and other transactions are a type of electronic signal exchange that have provided significant benefits to human kind, including improved efficiency in the distribution and production of goods and services. In addition to numerous benefits, however, such transactions are associated with both numerous risks and intense pressures from users of such systems for speed, security, reliability, and convenience. Although many different systems, devices, and processes useful in negotiating and executing such transactions have been proposed, there remains significant room for improvement.
  • In many cases, for example, users of desktop computers, smart phones and other mobile digital assistants, and other network communication devices encounter difficulties in safely, efficiently, reliably, and conveniently effecting purchase transactions with merchants by means of browser-based, point-of-sale (POS), m-commerce, and other forms of e-commerce systems, particularly where such users have access, or are entitled to have access, to multiple sources of funds to be applied in payment for such transaction. For example, a given merchant might not easily and reliably support payments through the use of accounts administered by one or another bank, and vice versa; difficulties are encountered by networked merchant resources in setting up and enabling access to rewards, loyalties, and other forms of marketing processes; and banks and other financial institutions are hampered in, or unable to, pass along efficiencies in data and signal management and administration to purchasers, merchants, and other parties involved in electronic transaction.
  • In addition, merchants and other providers of goods and services, including for example governmental and not-for-profit organizations, seldom have rapid, efficient, and reliable means for having input to transactional flow, when banks or other financial institutions control access to bank accounts and other sources of payment funding.
  • In general, rapid, reliable, and efficient communication between financial institutions and merchants have not always been available.
  • SUMMARY
  • In various aspects and embodiments the disclosure herein provides systems, devices, methods, and machine-executable programming structures stored in persistent (i.e., non-transitory), computer-readable media for the secure execution of electronic signal exchanges, and more particularly improved systems, methods, and programming structures for the rapid and secure negotiation, authorization, execution, and confirmation of multi-party data processes, including payment transactions conducted between purchasers having electronic access to bank accounts and other sources of payment, merchants operating e- and/or m-commerce transaction options, and banks and other financial institutions capable of electronically communicating with both. In various embodiments, the disclosure provides systems, methods, and programming structures which are particularly well suited for the negotiation, authorization, execution, and confirmation of such purchases, and other electronic resource (including funds) transfers.
  • For example, in one aspect the disclosure provides networked payment authorization management systems, and related processes and logical programming structures. A system according to such aspect of the invention can comprise one or more network communication systems, one or data processors, and one or more persistent memory devices. The persistent memory device(s) comprise stored, machine-interpretable instructions adapted to cause the data processor(s) to receive from purchaser communication devices, using the network communication systems, requests for generation of select merchant payment tokens. In response to the requests, and subject to any applicable legal, regulatory, and/or business constraints, the payment authorization management systems can generate the select merchant payment tokens, and store them in secure memory, along with identifiers associated with one or more transaction funding sources, such as credit, debit, and rewards accounts associated with requesting purchasers. In addition, the select merchant payment tokens can be stored in association with special transactional requests submitted by the select merchants, such as requests for application of discounts, modified loyalty or rewards program rules, rebates, etc. In some embodiments, such special merchant transaction requests can be updated at any time, at the request of the select merchant(s).
  • In another aspect, the disclosure provides networked merchant transaction management systems, and related processes and logical programming structures. A system according to such aspect of the invention can comprise one or more network communication systems, one or data processors, and one or more persistent memory devices. The persistent memory device(s) comprise stored, machine-interpretable instructions adapted to cause the data processor(s) to receive from purchaser communication devices, using the one or more network communication systems, select merchant payment token authorization requests, such requests comprising secure purchaser identifiers and select merchant payment token generated by payment authorization management systems associated with the purchasers. The systems can communicate with the payment authorization management systems in order to confirm the validity of the tokens and any associated conditions, restrictions, or rules, including any special transactional requests provide by the merchant transaction management systems.
  • In a further aspect, the invention provides purchaser communication devices, and related processes and logical programming structures. A device according to such aspect of the invention can comprise one or more network and/or short-range data communication systems, one or more data processors, one or more of any of a wide variety of input, output, and/or input-output devices, and one or more persistent memory device comprising stored, machine-interpretable instruction sets. Such machine-interpretable instruction sets can multiple distinct application programs, i.e., logical structures adapted to enable the data processor(s) to execute separately-controllable processes according to distinct security and logical specifications. For example, such application programs can include internet and other web browsers, and specialized payment management applications (e.g. virtual wallets) associated with banks or other financial institutions, and with merchant e- and/or m-commerce platforms. By enabling users of such purchaser devices to operate such payment management applications and merchant applications separately, but in cooperative fashion as taught herein, the invention enables purchasers to set up payment and other preferences with both the FIs that administer their payment accounts and the merchants from whom they wish to acquire goods and/or services, while allowing both the FIs and merchants to maintain their distinct security and legal obligations while operating according to their own preferred commercial standards. Such merchant and FI applications enable merchants and FIs to communicate with purchasers in ways that are efficient and convenient for the purchasers, while allowing the merchants and FIs to maintain their own security and commercial standards, through the use of controlled encryption, secure memory storage and access, etc.
  • In all cases, select merchant tokens generated and otherwise processed in accordance with the disclosure can be used to complete electronic transactions in accordance with any special requests generated by purchasers and/or merchants, using accounts identified by purchasers as sources of payments, rapidly, securely, and efficiently.
  • Thus, the use of systems, devices, and methods in accordance with the disclosure offers a number of advantages, including more convenient or less burdensome user interfaces, particularly with respect to the ability to draw on multiple sources of transaction funds and/or other payment sources, which can be held, administered and/or otherwise controlled by single or multiple financial institutions and/or other financial services providers, and increased ability on the part of purchasers, merchants, and FIs to complete transactions, which in some circumstances may be critical to their physical and/or economic health or well-being. In addition, various aspects and embodiments of the invention enable more flexible and efficient interactions between purchasers, merchants, and account administration systems such as servers controlled by banks, credit unions, and other financial institutions (FIs).
  • Many further advantages will be apparent to those skilled in the relevant arts from the disclosure herein.
  • Those skilled in the relevant arts will appreciate, once they have been made familiar with this disclosure, that the use of the invention in conjunction with other improvements provided by the applicant opens a very wide variety of further capabilities and advantages. For example, applicant's trusted platform, universal wallet, split pay, and real-time credit systems and processes, as described in co-pending, co-owned U.S. patent application Ser. Nos. 15/000,685 and 15/201,428, (each of which has been incorporated herein by reference) can be leveraged efficiently, with advantageous results.
  • BRIEF DESCRIPTION OF THE DRAWINGS
  • Reference will be made herein to the accompanying drawings, in which:
  • FIG. 1 is a schematic block diagram of an example system suitable for use in processing data in accordance with aspects of the disclosure;
  • FIG. 2 is a schematic block diagram of an example signal communication device suitable for use in processing data in accordance with aspects of the disclosure;
  • FIGS. 3 and 4 are schematic diagrams showing representative signal exchanges between components of systems for secure processing of electronic transactions in accordance with aspects of the disclosure; and
  • FIGS. 5-9 show embodiments of graphical user interfaces suitable for use by various embodiments of purchaser devices in implementing various aspects and embodiments of the invention.
  • For clarity and ease of description, like reference numerals are be used in the drawings to describe the same or like parts.
  • DETAILED DESCRIPTION
  • Reference is initially made to FIG. 1 , which shows a schematic diagram of a system 100 suitable for use in implementing various aspects and embodiments of the invention. In the example shown, a system 100 includes one or more purchaser or other user request communication devices 110 (also a “network transaction communication device” and/or a “network communication device”), for use by purchasers or other users 190 (FIGS. 3, 4 ); one or more payment authorization management systems 120; one or more merchant transaction management systems 130, each of which can comprise, for example, one or more merchant point of sale (POS) and/or other transaction device(s) 132, 134, and merchant or other financial service provider (FSP) server(s) 136; one or more optional 4th party transaction processors 150; and optional further FI system(s) 160, as described below. System(s) 100 may also include, or be adapted to communicate with or by means of, one or more communications networks 200 such as the internet, public or private wireline networks such as the PSTN, etc.
  • While only one of each of devices 110, 120, 130, 132, 134, 136, 150, 200 is shown in FIG. 1 , those skilled in the relevant arts will readily understand that a system 100 can include any desired, required, or otherwise advantageous numbers of such devices.
  • Payment authorization management system(s) and other FSP, FI, or transaction processing system(s) or platform(s) 120, 136, 150, 160 may comprise or consist of any suitably-configured enterprise, server, desktop, laptop, or other suitably-configured types or class(es) of electronic data processing (computer) systems. A large number and variety of suitable devices are now available commercially, and doubtless others will be developed subsequent to the preparation of this specification. Further details of platform(s) 120, 150, 160 are provided below. As will be understood by those skilled in the relevant arts, once they have been made familiar with this disclosure, such systems can include any one or more of a wide variety of data/signal processing units 122 and memories 126, in order for example to securely, reliably, rapidly, and efficiently store, access, and read stored data representing account information for any desired numbers of account users, as well machine-readable instructions representing logical structures to be applied in authorizing, evaluating, adjudicating, and otherwise process requests relating to purchases and other transactions. Such components can include one or more of each of processor(s) 122, network and other data communications systems 124, and memories 126, which can include any persistent and secure memory(ies) suitable for use in implementing the various systems, devices and processes disclosed herein.
  • Merchant transaction management system(s) 130 and device(s) 132, 134, 136 may comprise or consist of any suitably-configured POS, mPOS, and backend data processing devices, including special-purpose devices including, card, chip, short-range wireless, and other devices, servers, etc. as well as server-class general-purpose systems such as those described above in connection with payment authorization management system(s) 120. As will be understood by those skilled in the relevant arts, once they have been made familiar with this disclosure, such systems can include any one or more of a wide variety of data/signal processing units and memories, in order for example to securely, reliably, rapidly, and efficiently store, access, and read stored data representing account information for any desired numbers of account users, as well machine-readable instructions representing logical structures to be applied in authorizing, evaluating, adjudicating, and otherwise process requests relating to purchases and other transactions. Such components can include one or more of each of processor(s) 137, network and other data communications systems 138, and memories 139, which can include any persistent and secure memory(ies) suitable for use in implementing the various systems, devices and processes disclosed herein. Further details of merchant system(s) 130 and device(s) 132, 134, 136 are provided below.
  • Any of devices 110, 120, 130, 132, 134, 136, 150, 160 may communicate with each other by wireless (including radio, wireless telephone, optical, RFID, and infrared), wireline, or other means, using for example suitably-configured signal processors, transmitters, and receivers configured to communicate via the internet, the PSTN, and/or other communications networks 200, using any suitable protocols or combinations of protocols. Very commonly, such devices incorporate one or more dedicated communication subsystems, operating under the control of one or more central processing units (CPUs) and/or other processors, for such purposes.
  • Referring now to FIG. 2 , there is shown a schematic representation of a purchaser communication device 110, in the form of a mobile communication device such as a smart phone, tablet, or other PDA. As previously noted, a device 110 may generally be any portable, desktop, or other electronic signal/data processing and communication device comprising an assembly of electronic, structural and/or electro-mechanical components within a suitable housing, and which in some embodiments provides a user with various voice and/or data functions including short and/or long-range network connectivity. As will be understood, terms such as “portable” or “mobile”, when used herein, can indicate that device 110 may generally be transported between different physical locations by a user without resort to physical aids. In particular, in various embodiments mobile embodiments of devices 110 can include devices that may be carried on a user's person or clothing, such as cellular or other radio telephones, personal data assistants (PDA), tablets, notepads, portable computers, smart watches or jewelry, and the like. However, various aspects and embodiments of the invention may be implemented using non-mobile communication devices 110 such as laptop or personal computers.
  • In any such embodiments, purchaser communication device(s) 110, 600 may include one or more data processors (CPUs) 602, random access or other forms of persistent, typically re-writable memory(ies) 604, 606 any of which may store non-transient either or both of data and machine interpretable instruction sets representing logical structures in the form of device applications, or other programs or routines. In general, CPU(s) 602 can include any microprocessor(s) or other general or special purpose processing unit(s) configured to control the overall operation of device(s) 110 and their various components, with which CPU(s) 602 may be connected by a bus(es) or other electronic link(s) or path(s) adapted for transferring data or other signals, power, etc., on the device 110. Read and write operations of CPU(s) 602 may be facilitated by memory(ies) 604, 606 or other integrated circuit(s) or volatile memory storage associated with or integrated within CPU(s) 602 or to which CPU(s) 602 have access.
  • Memory(ies) 604, 606 may include one or more persistent (i.e., non-transitory) memory stores, such as flash memory or read-only memory (ROM), which are either physically embedded within the device(s) 110 or which may alternatively be removably loaded or inserted into device(s) 110 by a user, such as on a subscriber identity module (SIM) card or secure digital (SD) memory card. Memory(ies) 606 may be used to store any type of data and/or executable machine instruction files, such as but not limited to media files (music and photos), as well as software used to implement operating systems (OSs) 608 and other programs, routines, or applications, as described herein. Memory(ies) 606 may also be used to store one or more files used by CPU 602 or mobile OS 608 to execute different functions or control different components on mobile device 110, 600, such as contact information, network preferences, application data, and other files.
  • Purchaser communication device(s) 110 may further be equipped with one or more of any of a very wide variety of input and/or output components 610, in order to enable user to interactions with the device(s) 110. Such components, which are generally denoted herein as 610, may provide both for the user to input data or commands into device 110, as well as to perceive or otherwise access data or information output by the device 110. Without limitation, different possible input components 610 can include touch pads, dials, click wheels, touchscreens and other displays, keyboards, keypads, and other buttons and switches, as well as cameras, microphones, and biometric sensors (e.g., fingerprint scanners). Example output components 610 can include speakers, screens and visual displays, rumble packs, and combinations thereof. Other I/O components 610 not specifically mentioned herein may also be included in different embodiments.
  • Device(s) 110 can further include data communications systems, including for example long-range or network communications components 612 and/or short-range network communications components 614 to enable the device(s) 110 to employ a variety of voice, data, and other signal communication functions. As will be appreciated, the terms “long-range” and “short-range” may be used herein to denote relative distances and are not intended to denote any specific limitations or ranges. Thus, long- data communications systems 612, 614 allow device(s) 110 to communicate with other proximately or remotely located targets, which can be other similarly or differently configured devices 110, servers 120, 130, 150, 160, systems 100, and other network-enabled devices.
  • For example, long-range or network communications component(s) 612 may be used by a device 110 to communicate with other components of system(s) 100 via cellular or other distributed networks 200 using suitable voice and/or data communications protocols, such as but not limited to Time Division Multiple Access (TDMA), Code Division Multiple Access (CDMA), Global System for Mobile Communication (GSM), Wireless Application Protocol (WAP), and others. Using such protocols a device 110 can route communications to arbitrarily remote devices of various types, including voice, data, and text-based messages without limitation. To enable long-range communications, various hardware and/or software components may be included in system(s) 612, such as an antennae, transmitters, receivers, and digital signal processors. Specific configuration(s) of long-range communications systems 612 can depend generally upon the communication protocol(s) that are implemented and the purposes to which a device 110 is to be put.
  • Short-range or near-field communications component(s) 614 can enable communication between mobile or other device(s) 110 and other relatively proximately located devices, servers, or systems. For example, short-range communications 614 may include one or more short-range transceivers, such as for connection to Wi-Fi (802.11 standard) or Bluetooth networks, as well as other modes of short-range communication, like RFID, infrared or optical. In some embodiments, short-range communications 614 may in particular include a near field communications (NFC) subsystem 616 that may be utilized to communicate with an NFC reader, among various different purposes or functions, so as to initiate contactless mobile payments with merchant POS terminals 134 as described further below.
  • In various embodiments devices 110 further include secure elements 618 configured as tamper-resistant, limited-access storage environments for sensitive data and other information, such as payment credentials or cryptographic keys, data and programming structures. For example, secure element(s) 618 may include or operate under the separate and secure control of any or all of suitably-configured integrated circuit(s) (IC(s)), an operating system(s) (OS(s)), or program(s), including payment management (or “virtual wallet”) application(s) 112, merchant transaction management application(s) 114, host card emulation (HCE) applications and the like. Secure element(s) 618 may be either embedded (integrated) physically within a mobile device 110 or, alternatively, provided on a card such as a SIM or SD card that is insertable into the device 110. CPU(s) 602, applications 112, 114, and NFC subsystem(s) 616 may in various embodiments have access to the contents of secure element 616.
  • Device(s) 110 can further include power supply(ies) 620 configured with any components or circuitry that are suitable for generating, receiving or transmitting power to CPU 602 and other components of a device 110. For example, a power supply 620 may include circuitry for processing power received from an external power source, such as an electrical utility or grid, when a device 110 is plugged into or otherwise connected to such external power source. In some cases, power supply 620 may further include one or more batteries, such as nickel metal hydride, nickel cadmium, and lithium-ion batteries, which may provide a source of power when device 110 is not able to connect to an external power source. Other power generating or processing circuitry, such as solar panels or inductive coils, may also be included so that power supply 620 may deliver energy to different components within a device 110. It should be noted that individual connections between power supply 620 and other components within device 110 are not shown in FIG. 6 and instead power supply 620 is indicated for convenience only as an isolated element.
  • As previously mentioned, in many embodiments purchaser and other request communication device(s) 110 are not “mobile” device(s). Thus, for example, a purchaser device 110 may have a size, shape and/or weight that make it difficult, inconvenient, or otherwise impractical for a user to transport over more than trivial distances without some physical assistance or assistance, or for routine portable use. In particular, a non-mobile user device 110 may be one that a user cannot practically carry on their person or clothing. Examples of a non-mobile device 110 include a user's desktop computer and other normally stationary devices.
  • Non-mobile embodiments of device(s) 110 according to the invention may or may not differ, in terms of communications ability, secure memory, etc., from mobile embodiments. In some cases, for example, a non-mobile embodiment of a device 110 may lack a secure element 618 because such device 110 is not configured to receive a SIM or SD card. In others cases, at least one of long-range communications 612 and short-range communications 614 may differ between mobile and non-mobile embodiments. For example, instead of long-range communications system(s) 612 configured for wireless communication over distance, a purchaser device 110 can include one or more modems or other network components for connecting to a distributed network 200, such as the Internet, in place of a cellular antenna. In some cases, short-range communications 614 may not include an NFC receiver 616, but may include WI-FI and/or Bluetooth antennae or others. Embodiments of the systems and processes described herein may utilize either a mobile device 600 or a non-mobile device without limitation.
  • As further shown in FIG. 2 and described below, a mobile or other device 110 can in accordance with various aspects and embodiments of the invention be configured to initiate and otherwise control mobile payments and other electronic transactions from within either or both of payment management or “virtual wallet” application(s) 112 associated with one or more banks or other FIs responsible for administration of monetary and alternative value (e.g., loyalty or rewards) accounts and merchant transaction management application(s) or program(s) 114 provided by or otherwise associated with a merchant or merchant system 130 or, as described further below, from non-dedicated application(s) or program(s), such as one or more web browsers or merchant transaction e-commerce websites administered by, for example, a merchant transaction management system 136.
  • As will be understood by those skilled in the relevant arts, and as will be explained more fully below, an “application,” or application program, is a set of computer-interpretable instructions adapted to be executed by one or more processors 602, 137, 122 of device 110, 120, 130, etc., in accordance with logical structures directed toward a common task or purpose, such as the management of one or more banking or other financial or value accounts (e.g., application 112), for interaction with a specific merchant e- or m-commerce program (application 114), etc. Instructions associated with such applications can be stored together in single memory(ies) 606, 604, 126, 139, etc., or can be stored in multiple memories served by or otherwise accessible to devices 110, 120, 130, using distributed programming techniques.
  • Accordingly, one or more different merchant and payment management transaction communication applications 112, 114 or other programs may be installed by a user of a device 110 into mobile or other device memories 606, 604, for execution by a CPU 602 under the higher-level control of an operating system (OS) not shown. Only one such merchant application 114 and one payment management application (such as a virtual wallet) each are shown in FIG. 2 for convenience, but any number may be installed in different embodiments according to the user's preferences.
  • Among other possible functions, a virtual wallet or other payment management application 112 can comprise data representing machine-executable instruction sets representing rules or other logical structures to be applied by one or more processor(s) 602 of a device 110 and configured to enable a user of the device to interact with account and/or transaction management and control programs implemented or otherwise controlled by one or more payment authorization management systems 120 and adapted to enable secure access to operating systems and other programs that will enable an authorized user of a device 110 to access and control information pertaining one or more monetary or other value accounts, so as to control deposits, withdrawals, change of name, address, and other information, etc. As will be understood by those skilled in the relevant arts, such applications 112 may reside wholly on a device 110 and be configured for secure communication with account access and control programs implemented on such systems 120, in accordance with logical structures residing in memory on the user device 110; or such applications 112 can be configured for distributed implementation by, for example, providing a front end/user interface application on the user's device 110, with control and management processing taking place in accordance with logical structures associated with the application residing on the FI system 120.
  • A merchant application 114 can comprise data representing machine-executable instruction sets representing rules or other logical structures to be applied by one or more processor(s) 602 of a device 110 and configured to enable a user of the device to purchase a product or service that a merchant 130 displays or advertises to the user from within the merchant application 114, or to navigate to a website or other e- or m-commerce site associated with the merchant and browse services, products, etc., and set up and execute purchase or other transactions. Different possible merchant applications 114 can include those which are dedicated to a specific merchant's goods and/or services, as well as third party applications, such as auction sites or merchant group affiliations, which offer goods and/or services on behalf of multiple merchants. Applications 114 can reside wholly on a user's device 110 and be configured for secure communication with transaction control programs implemented on merchant transaction management systems 130, in accordance with logical structures residing in memory on the user device 110; or such applications 114 can be configured for distributed implementation by, for example, providing a front end/user interface application on the user's device 110, with transaction control processing taking place in accordance with logical structures associated with the application residing on the merchant system 130.
  • In some embodiments, as described further below, a merchant transaction management application 114 may be configured so that payment credentials or other information stored within one or more wallet applications 112 may be pulled, or otherwise accessed, by the merchant application 114 from or through a virtual wallet application 112 or (other) secure memory source without need for a user of a device 110 to open or launch any separate wallet or other payment management application 112. For example, when a payment transaction is initiated by a user via a merchant application 114 the user may be presented with a screen or prompt providing the user with a choice which payment credential stored in any of one or more wallet applications 112 to pull for use in executing the transaction. Alternatively, merchant application 114, 630 may automatically pull a default or pre-selected payment credential from wallet application 112, 622 without prompting the user.
  • The provision of separate merchant transaction management application(s) 114 and FI-related payment management application(s) 112 on a purchaser device 110 can enable a purchaser or other user to interact with merchant system(s) 130 and FI(s) 120 separately, using logical structures generated by the respective merchants and FIs and thereby ensuring that communications involved in such interactions are conducted according to distinct security, legal, and commercial standards required or otherwise imposed by the merchants and FIs.
  • By enabling cooperative use of such applications 112, 114 as disclosed herein, the invention opens up significant new transactional possibilities, without sacrificing security or commercial advantage or necessity.
  • In the same and further embodiments, memory(ies) 604, 608 of a device 110 can further incorporate or otherwise support non-merchant specific applications or programs, such as games, general purpose web browsers, readers, and the like from which it may be possible to initiate electronic transactions by, for example accessing a merchant website over the internet, via pop-up (graphical) user interfaces (GUIs,) etc. Such non-merchant applications may be coupled to one or more mobile wallet applications 112 in order to retrieve payment tokens or other credentials that may be stored therein, or otherwise cooperate with such wallet applications; and, via CPU 602, to a network communication component such as short-range communications 614 or long-range communication 612 or to any other network component, such as a modem installed in a non-mobile user device 110, 110′, and thereby any one or more merchant transaction management system(s) 130.
  • For example, in such cases a user may, to initiate an electronic transaction, navigate to a web page or website using, e.g., any available I/O devices as described herein. After the user has generated a suitably-configured transaction request data set (or ‘requested transaction data set’), comprising for example data representing one or more items the user wishes to purchase, and perhaps a full or partial description thereof, along with item, subtotal, and/or total purchase prices, by for example selecting the items for addition to the merchant application's virtual shopping cart, and has initiated a payment (e.g., ‘checkout’) process, merchant application 112 may display an option to the user to pay for the transaction using a wallet application 112 installed in memory 606 and/or secure element 618. Alternatively, the payment tokens selected for use in the transaction may be located in or other memory or locations on mobile device 110 or, in some cases, in virtual wallet(s) 112 or other memory(ies) or application(s) in a secure cloud resource hosted by or otherwise associated with one or more FI systems 120, 160. When the user selects to pay by wallet application 112 the device operating system may interface with such application 112 so as to obtain a suitable payment token depending on the selected form of payment. The obtained payment token may be transmitted over short-range communications 614 or long-range communication 612 for processing by a merchant transaction management backend system 130. Alternatively, a user may securely log in to a bank account administered by an FI system 120, 160 from within an application or program on user device 110 using some form of identification information (e.g., user identification and password, biometric, etc.) and, once authenticated, the user's bank may transmit electronic payment tokens to the merchant/acquirer for processing of the transaction. Processing of the electronic payment through a payment network or other entities may then proceed as described herein.
  • Thus, for example, in various aspects and embodiments the invention provides systems, processes, and persistently stored, machine-accessible and machine-readable programming structures that enable one or more request devices 110, such as smart phones, tablet computers, wearable devices, or other mobile devices, to interact with payment authorization management system(s) 120 by means of suitably-configured signal exchanges over a communications network 200, and, as a result of such interactions, to be cause to be generated or otherwise be provided with a secure data set, such as a token representing account information, for storage in volatile or non-volatile memory 604, 606, 618 of the device 110 and thereby enable a user to conduct transaction(s) with one or more merchant system(s) 130.
  • As will be appreciated by those skilled in the relevant arts, any purchaser or request device(s) 110 may be associated with multiple authorized human and/or juristic users, and/or with multiple accounts associated with such user(s). For example, each such device may be used by different authorized users and/or entities in different jurisdictions, or in different data processing contexts, as for example different social media platforms vs inside a brick-and-mortar merchant premises or particular online services (e.g., an online music or media source). A representation of, link to, and/or other data or instruction(s) associated with each validated identity may be stored in secure memory controlled by or otherwise associated with any off applications 112, 114, etc.
  • A further advantage offered by various aspects and embodiments of the invention is improvement in the manner in which single or multiple forms and sources of payment to be used in completing a transaction can be agreed upon in advance, at the time of a transaction, and/or after the transaction has been confirmed, between a user of a device 110 and a merchant system 130, and communicated to the bank/ FI processor 120, 160, for example, by the POS 132, 134, or server 136, etc. Such methods of payment may be registered with or otherwise authenticated by the bank 160 or other trusted platform 120, in the form of select merchant payment token data sets (or “authorized merchant token data sets) described herein, so that the need for transmitting and interpreting information identifying such methods may be obviated or otherwise reduced. In this manner, for example, payment may be completed with use of an instruction to the bank 160 or other trusted platform 120 to process payment according to the agreed upon method of payment, without having to provide any details (which may be of a sensitive nature) related to the selected source or method of payment in the payment message itself.
  • Alternatively, such forms of payment may be negotiated between a user of a device 110 and one or more payment management authorization systems or other FIs 120, in accordance with logical structures associated with either or both of applications 112, 114, as described herein. Among other advantages, such configurations enable merchants 136 to take direct or indirect part in negotiating the form of such of such payments, and special rules, or business functions, such as promotions, special loyalty offers, etc., to be applied in conjunction with such transactions.
  • Thus a wide variety of improved and advantageous types and modes of payment settlement processing are enabled by the invention.
  • For example, at the time of a transaction, both the user of a device 110 and a merchant system 130 may agree one or more types, modes, or protocols of payment(s) to be used (e.g. credit, debit, cash bank transfer, loyalty point redemption, including one or more specific accounts associated with each such type of payment), and identifier(s) associated with the selected protocol can be transmitted to the trusted platform server 120.
  • In such cases, when a user initiates a purchase or other transaction with a merchant system 130, as for example through the use of the PSTN/Internet and a desktop merchant application, a variety of data and/or other signals, including for example transaction confirmation signals, may be generated by any or all of systems 120, 160, 130, and passed to the user's device 110. For example, when a purchase or other transaction request is generated
  • Examples of ways in which the invention may be used to increase flexibility and convenience for purchasers and other users 190, merchants 130, and FIs 120, etc., in setting up preferences for and conducting payments and other electronic transactions are described in connection with in FIGS. 3 and 4 . In particular, means for enabling either or both of a user 190 and merchant system 130 to designate types, protocols, rules, and/or specific accounts to be used for receiving, accepting, and otherwise processing payments are described. For example, as shown and explained in connection with FIG. 3 , a purchaser or other user 190 of a network request communication device 110 is enabled to select one or more desired funding sources to be associated with payments made via a merchant transaction application 114 or otherwise in connection with purchases made through one or more specific vendors, while the merchant 130 is enabled to specify one or more preferred payment types, protocols, formats, and rules to be used in receiving or otherwise processing payment from the user 190 through the merchant application 114, independent of any preferences designated by the user 190.
  • This can be accomplished efficiently through use of the systems and methods disclosed herein because, for example, as previously noted and as illustrated in the example embodiments shown in FIGS. 1, 3 and 4 , merchant application(s) 114 installed on a purchaser communication device 110 can be adapted for communication with a variety of components of system(s) 100, including for example any or all of virtual wallet application(s) 112, merchant backend system(s) 130, 136, and payment authorization management systems and/or other FI system(s) 120, 150, 160, etc.
  • In the example shown in FIG. 3 , for example, at 2402 a user 190 can invoke or otherwise access a merchant application 114 and, through the use of suitably-configured user interfaces (UIs), generate a preferred funding source instruction request data set representing one or more funding sources to be used in transactions conducted with the merchant, or through the application 114, and route the preferred funding source instruction data set to the merchant application 114.
  • For example, as shown in FIG. 5 , a user 190 of a purchaser communication device 110 comprising one or more input/out devices 610 such as one or more touchscreens 621, select switches 623, cameras 625, microphones 627, and speakers 629 can invoke one of a virtual wallet application 112, merchant application 114, or a network browser by selecting one of corresponding application icons 112′, 114′, 116′.
  • In the example shown in FIGS. 3 and 6 , a user 190 has selected a “MY STORE” application icon 114′ to invoke a merchant transaction communication application 114 associated with a merchant “MY STORE” and adapted to facilitate secure and efficient communications between the device 110 and merchant server 136 of a merchant transaction management system 130 as shown in FIG. 1 . In the example shown in FIG. 6 , invocation of the application 114 has enabled the user 190 to access a “Preferences” GUI 639 adapted to solicit designation by the user of one or more accounts to be used, for example as defaults, as sources of funds for satisfaction of one or more purchase transactions conducted with the merchant MY STORE's transaction management system 130, either directly or through the “MY STORE” application 114.
  • As previously noted, a purchaser communication device 110 can be provided with multiple merchant applications 114 as well as one or more virtual wallet applications 112, each of which can be configured to facilitate communications an individual bank or other FI account administration system 120 directly. Alternatively a single virtual wallet application 112 can act as a one-stop clearing house by facilitating communications with multiple FI systems 120. Merchant applications 114 can be configured to facilitate communications with any one or more account administration systems 120 directly, or in many embodiments to communicate with designated systems 120 through wallet application(s) 112, optionally at the election or designation of one or more users authorized to access the device 110. In the example shown in FIG. 6 , the merchant application 114 GUI 639 has generated icons 631 to enable the user 190 to designate one or more payment accounts administered by or otherwise associated with a first preferred bank or other FI 120; 633 to enable the user to designate one or more accounts administered or otherwise associated with a second preferred bank or other FI 120; and 634 to enable a user to access a listing of accounts associated with multiple FIs 120. In each case, in the example shown, the merchant application 114 is configured to communicate with the corresponding FIs 120 indirectly, by communicating with virtual wallet application(s) 112 controlled by the user 190's device 110.
  • In accordance with logical structures associated with the application 114, selection of an item 634 “ALL MY CARDS” can one or more of processors 602 to generate and present a GUI such as GUI 640, and thereby enable a user 190 to designate one or more accounts associated with multiple FI systems 120 to be used as funding sources in connection with transaction(s) to be conducted with the merchant MY STORE's transaction management system 130. In the example shown in FIG. 7 , selection of a command item 631 “My Preferred Cards” can enable the user 190 to designate one or more accounts associated with a preferred bank or FI 120; selection of a command item 633 “My Preferred Cards at another Bank” can enable the user 190 to designate one or more accounts associated with a second bank; and selection of a command item 634 “All My Cards” can enable the user 190 to designate one or more accounts associated with any or all of multiple FIs 120.
  • As shown for example in FIG. 7 , at 2404-2408 selection by the user 190 of a command item 634 “All My Cards” can result in generation of a GUI 640 listing multiple accounts administered or otherwise associated with multiple FI systems 120. For example, invocation of the command item 634 can cause one or more processors 602 of the device 100 to generate, in accordance with instructions incorporated within logical structures associated with the My Store merchant API 114, a preferred or select payment or funding source instruction request data set (also referred to as a “request to add card” data set), and route the data set either to a single wallet application 112 configured to control access to accounts administered by multiple FI systems 120; or to multiple dedicated wallet applications 112, each configured to control access to accounts administered by a single FI system 120; or to multiple FI systems 120 directly, without working through any wallet application 112. At each step in processes 2400, 2500, data can be accessed from memory, generated, and routed to various recipients in accordance with security measures imposed by logical structures associated the application(s) 114, 112, handling the data; and therefore designated by their respective merchant 130 and FI 120 sponsors or producers. Thus the security needs of all parties can be respected, in varying combinations.
  • The example to follow will be described in terms of the first possibility. In such a case a “request to add card” command data set generated by a merchant API 114 and routed to a multi-FI wallet application can, for example, include:
      • <secure merchant application identifier><flag indicating nature of request>
        where:
      • <secure merchant application identifier>=identifier(s) representing local resource address associated with the requesting application 114; and
      • <flag indicating nature of request>=identifier(s) representing a request by an authorized user of the device 110 for data representing a list of accounts available for use by the requesting user in transactions conducted with the merchant(s) associated with the requesting merchant API 114
  • Among the significant advantages offered by such aspects of the invention is the enablement of merchants and/or merchant associations associated with API(s) 114 to have increased input to and control of transactions conducted with specific purchasers, or classes of purchasers, and/or transactions involving accounts controlled or otherwise administered by specific banks or FIs associated with payment authorization management system(s) 120. For example, at various points in the processes described below, the merchant is enabled to cause, through the use of suitably configured rules implemented by logical structures stored in data associated with an API 114, any of a wide variety of data communications routed to FI system(s) 120 to include data representing requests for special processing of such transactions. In such instances, request to add card data sets can, for example, include:
      • <secure merchant application identifier>
      • <merchant special processing request flag(s)>
        where:
      • <merchant special processing request flag(s)>=identifier(s) representing one or more requests, including special merchant transaction processing requests, for special processing of transaction and/or other processes conducted between the requesting user 190 and/or device 110, merchant 130 associated with the application 114, and FI(s) associated with accounts to be specified in response to the with the request to add card data set.
  • Such merchant special processing request flags can include any identifiers, representing any processing requests, that can be understood and appropriately processed by merchant system(s) 130, FI system(s) 120, and optionally by either or both of user(s) 190 and device(s) 110. Examples of such processing requests include application of merchant, FI, and/or user specified rules pertaining to any of the following:
      • Application of special loyalty point awards (e.g., twice nominal points to be awarded, based on value of transaction and/or specific goods and/or services involved therewith
      • Special discount programs offered to preferred customers only
      • Rebate programs, and special parameters associated therewith, including e.g., preferred rates for specific purchasers or classes of purchaser, based on transaction history, demographics, etc.
      • Identifiers indicating FI(s)/FI system(s) 120 that a merchant or merchant 130 does or does not prefer to deal with, or will or will not transact with
      • Merchant account-type preferences (e.g., merchant prefers to deal only with any one or more credit, debit, loyalty accounts, or types of accounts etc.)
      • Special tracking of demographic and other data associated with transactions, and requests for transactions, and sharing of collected data with merchants and/or purchasers
      • Generation of one or more pre-paid tokens, at specifically identified values
      • Generation of non pre-paid tokens, with transaction value limits or caps
  • Optionally, identifiers associated with such special merchant or other transaction processing requests can be communicated implicitly, based on either or both of the secure merchant application identifier(s) and the flag indicating the nature of the request. For example, pluralities of either merchant identifiers and/or flags can be used, a single identifier or flag indicating both the identity of the requesting merchant, or the fact that an account listing is requested, and the nature of a special processing request.
  • Among further options, the merchant special or other transaction processing request flag(s) can also represent or include either (a) one or more specific, one-time requested transaction amount(s); or (b) express or implied request(s) for authorized limit(s) for a single or multiple transactions. For example, as described further below, either or both of a user 190 and merchant 130 can request generation of one or more pre-paid, negotiable payment token data sets, and/or a limit to be generally authorized for future transactions, subject to verification of availability of funds at the time of a proposed transaction.
  • As will be understood by those skilled in the relevant arts, once they have been made familiar with this disclosure, enabling merchants associated with systems 130 to make such requests opens possibilities for new and potentially more efficient ways of conducting electronic transactions, with savings that can be shared among any or all of merchants, purchasers, and FIs.
  • Having received such a preferred funding source instruction request (or “request to add card”) data set, at 2404 the merchant application 114 or virtual wallet application 112 can, in accordance with rules represented by logical structures associated with the application, generate one or more preferred funding source identification request data sets (or “eligible accounts list request data sets”) adapted to cause polling of one or more FI systems 120 associated with accounts or other funding sources controlled by or otherwise available to the user 190 in satisfying payment transaction requests for data identifying all or some such available funding sources.
  • For example, on receipt of the “request to add card” command data set, a virtual wallet application 112 associated with a specific bank can parse the data set and, using flags or other identifiers as described above, execute known table look-up and value comparison techniques to determine routing information for the one or more FI systems 120 to which the request is to be routed, subject to any merchant preferences for funding FIs expressed by means of explicit or implicit special processing request identifiers. Identifiers associated with any such special processing requests suitable for consideration by target FI system(s) 120 can also be explicitly or implicitly included in the eligible accounts list request data set.
  • Eligible accounts list request data sets generated in accordance with such aspects of the invention can, for example, be formatted in accordance with any agreed or otherwise suitable protocol(s) and can include:
      • <address(es) of secure FI portals><return address identifier(s)>
        • <flag(s) identifying request for accounts information>
          • <secure user identifier/verification data>
            • <(optional) merchant identifier(s)>
      • <(optional) special merchant processing request identifier(s)>
        where:
      • <address(es) of secure FI portals>=network resource addresses for any or all of FI systems 120 to which the request is to be routed. Where, for example, multiple FI systems 120 are to be polled for eligible accounts, multiple preferred funding source identification request data sets can be generated, and independently routed.
        where:
      • <return address identifier(s)>=network resource address(es) to which responsive data is to be routed (e.g, a URL or other network identifier associated with the requesting device 110
      • <flag(s) identifying request for accounts information>=identifier(s) useable by recipient FI system(s) 120 for identifying the received data string as a request for an account listing
      • <secure user identifier/verification data>=secure identifier(s) associated with authorized users or other access to accounts to be identified. Can include any suitable characters or symbols, including names, passwords, biometric data, and pointers to any such data stored on FI recipient systems 120, etc.
      • <(optional) merchant identifier(s)>=in cases where the identity(ies) of merchants associated with the request are not implicit in the request, or otherwise apparent, one or more identifiers associated with merchants and/or merchant systems 130 can be included. Can include names, codes, symbols, or any other suitable identifiers
      • <(optional) special merchant transaction processing request identifier(s)>=flag(s) or other identifiers associated with special merchant transaction processing requests associated with the information request
  • At 2406, such a request can, for example, be forwarded by a virtual wallet application 112 (or merchant application 114) installed on the user 190's device 110 to the one or more FI system(s) associated with the virtual wallet application 112. For example, logical structures associated with the application 112 (or merchant application 114) can cause one or more of processor(s) 302 to route the preferred funding source identification request data set(s) to a network or short- range communication system 612, 612 to route the request to one or more payment authorization management systems 112 via network(s) 200 or NFC or other communications paths.
  • On receipt, any payment management authorization system(s) 120 to which a preferred funding source identification request data set has been routed can parse the request, and based on any agreed or otherwise accepted protocols and use of table look-up or other suitable processes or techniques determine the identities of requesting purchasers or users 190, merchants identified by the request, and special preferences or rules to be applied to identification of eligible accounts, and apply such criteria to identification of any eligible accounts. For example, each account associated with an authorized purchaser can be polled, and compared to received criteria, and an eligible account data list can be assembled, for example by writing associated identifiers to one or more buffers or other temporary memory stores. In addition to criteria identified above, logical structures associated with payment authorization management systems 120 and/or processes executed thereby can be used to set or enforce account eligibility requirements, which can for example include any applicable legal requirements, bank rules (e.g., available credit, availability of debit funds and applicability of any daily or other periodic withdrawal limits, line of credit (LOC) restrictions, foreign currency exchange restrictions, etc.); requirements or restrictions imposed by merchants associated with the request; requirements or restrictions imposed by the FI on specific merchants or classes of merchants; agreements with merchants or merchant associations, etc. Subject to any such restrictions, eligible accounts can include any source(s) of funds available to the identified user, including any and all forms of demand and other deposit accounts, certificates, etc.; credit accounts, including LOCs; loyalty/rewards points accounts; foreign currency accounts, etc.
  • If any optional special merchant or other transaction processing requests have been included by a requesting merchant or user have been identified, the list of eligible accounts can be determined using those as criteria as well.
  • Thus, once the requesting user has been suitably identified and verified as authorized to access one or more funding sources associated with one or more FI systems 120, at 2406 the virtual wallet application 112 (or merchant application 114) can communicate with the FI(s) 120 to request generation of a data set representing a list of accounts available for designation as preferred funding sources with respect to transactions conducted through the merchant application 114, and at 2407 one or more processors associated with the polled FI system(s) 2407 can return, via one or more network communications systems, eligible account list data set(s) that include the following:
      • <originating (user return) network address>
      • <flag identifying account list data set><account identifier(s)>
        where:
      • <originating (user return) network address>=network resource locator(s) to which the eligible account list data set(s) are to be returned
      • <flag identifying account list data set>=identifier(s) useable by recipient application (s) 112 (or 114) for identifying the received data string as a requested list of eligible accounts
      • <account identifier(s)>=identifier(s) suitable for use by requesting application(s) 112, 114 in generating GUI(s) suitable for use by a requesting user 190 of one or more accounts to be used in conducting transaction(s) with the specified merchants
  • Such data sets can also include, if/as desired, identifiers associated with merchants with whom the accounts are eligible to be used, and/or data representing information confirming or otherwise related to any merchant or user special processing requests.
  • At 2408, the virtual wallet application 112 (or merchant application 114) to which and eligible account list data set(s) has been returned can use the data received at 2407 to cause generation and display on the user's device 110 of a GUI 640 listing the eligible funding source(s) for selection as preferred funding source(s). This can accomplished by displaying such a GUI directly through use of logical structures associated with the virtual wallet application 112, or by returning the list data to the requesting merchant application 114 so that logical structures associated with the merchant application 114 can be used to generate and display the preferred funding source selection GUI.
  • Thus, as previously noted and as shown for example in FIG. 7 , at 2408 selection by a user 190 2402 of a command item 634 “All My Cards” can result in generation of a GUI 640 listing multiple accounts administered or otherwise associated with one or more FI systems 120. In the example shown in FIG. 7 , GUI 640 lists accounts controlled or otherwise administered by a plurality of payment authorization management systems 120 “My Bank” and “My Other Bank.” Listing 641 includes checking, savings, credit, LOC, merchant loyalty, bank loyalty, and 3rd party rewards accounts administered by or available through My Bank, as well as checking, credit, and rewards accounts administered by My Other Bank.
  • Accounts such as third-party rewards accounts (such as that listed under My Bank) which are not directly administered by a FI 120 by whom an account listing has been generated can for example be accounts linked to a bank, or to a merchant, or to a purchaser, by agreements between any or all of the bank, merchant and purchaser. For example, a merchant associated with a merchant API 114, with respect to whom a user 190 wishes to designate one or more accounts to as sources of funds for transactions conducted with the merchant, can identify special rewards rules by means of one or more special merchant processing request identifier(s), as described above, and thereby authorize or cause an FI system 120 generating an eligible account listing to include the third party rewards account in the listing.
  • A GUI listing eligible accounts can include one or more radio button items 643 or other GUI devices in association with each account, in order to enable the user 190 to select one or more accounts as preferred funding sources for transactions with the specified merchant(s).
  • An important feature enabled by such aspects and embodiments of the invention is the ability to identify multiple accounts as preferred funding sources for transactions. For example, split pay features such as those described below, and in the incorporated priority applications, can be applied. Thus, in the example shown in FIG. 7 , user 190 can select any desired number of the displayed accounts by touching the corresponding radio button item(s)
  • When multiple accounts have been selected, the user can be provided with a choice of establishing a priority list, with first choices being exhausted before secondary or tertiary choices are used to satisfy transaction payments. For example, the merchant or wallet application 112, 114 can generate a GUI which enables the user to use a physical or virtual keyboard to identify a desired precedence, or the order in which selections are designated can be used to establish the desired precedence.
  • If, alternatively, the user wishes to apply split pay techniques, the user can select a split pay option item 645 to invoke GUIs adapted for precedences, ratios, etc., to be used in split pay processes, for example as described in the incorporated references.
  • If a listing 641 of eligible accounts is too long to be displayed conveniently on a single GUI screen, the user can use a “NEXT” command item 647 to access a continued list.
  • When the user is satisfied with his/her selections, he/she can select a command item 649 “NEXT,” “DONE,” “SEND,” etc., and at 2410 the virtual wallet application 112 or merchant application 114 can route a selection of one or more preferred funding sources selected by the user 190 in response to the list displayed at 2408 to the FI(s) 120 by which they are controlled or otherwise administered, along with data implicitly or explicitly representing an instruction or request for generation of a preferred funding source token based on the user's selection.
  • For example, in accordance with logical structures associated with the application 112, 114 which generated the GUI 640, the application 112, 114 can generate a merchant token authorization request data set, or “select merchant payment token request data set,” and route it to the payment authorization management system(s) 120 intended to process transactions conducted between the user 190 or device 110 and merchant system(s) 130. Such a select merchant payment token request data set can, for example, include data representing:
      • <address of secure FI portal><originating (user return) network address>
        • <flag identifying request for token authorization>
      • <secure user identifier/verification data><selected merchant identifier(s)>
        • <selected payment account identifiers>
          where:
      • <address of secure FI portal>=network resource locator associated with responsible payment authorization management system 120
      • <originating (user return) network address>=network resource locator(s) to which confirmations and/or other communications are to be returned
      • <flag identifying request for token authorization>=identifier(s) useable by recipient system 120 for identifying the received data string as a request for a secure payment authorization token associated with preferred transaction payment accounts to be used with identified merchant(s)
      • <secure user identifier/verification data>=data representing token(s) or other credential(s) securely establishing authority of the requesting user to access accounts identified in the request
      • <selected merchant identifier(s)>=data representing information suitable for routing transaction payment(s) to the intended merchant recipient, or recipient account(s), or other identifier(s) associated with selected merchants
      • <selected payment account identifiers>=data representing user accounts designated at 2408 as sources of transaction payment(s)
  • At 2412, the corresponding FI system(s) 120 can create preferred funding source token(s) and link or otherwise associate the token(s) with the selected funding sources. This can be done, for example, by a primary banking/account administration processor 120 or by an associated or independent token service processor 160, as shown in FIG. 1 . Generation of such tokens can be subject to adjudication by the receiving FI system(s) 120, for example to ensure that requesting user(s) 190, prospective authorized merchants 130, and/or combinations of the two, are not subject to legal, FI, or other restrictions in conducting transactions.
  • For example, a secure token generation service 120, 160 associated with the FI system 120 responsible for managing accounts accessible by the requesting user can generate and store in secure persistent memory, such as a suitably secure database of select merchant payment token data sets, an unpredictable select merchant payment token (or “selected merchant payment token”) to serve as a unique identifier of (i) the merchant(s) or merchant account(s) to which payments associated with use of the token are to be made; and (ii) the accounts to be used as funding sources for transactions between the merchant(s) and the requesting user. The token can also be linked, e.g., through a table-look up process, with any special business functions or requests associated with the token request, including for example any special loyalty account rules, discounts, etc., specified or requested by the corresponding merchants, users, or FI(s) 120.
  • Any suitably coded or otherwise non-predictable character set(s) (e.g., random or pseudo-random string(s) of letters, numbers, special characters, etc.) or other credentials can be used as an authorized or selected merchant payment token generated at this step.
  • Among the many advantageous features offered by various aspects and embodiments of systems and processes in accordance with the invention is the ability of banks and other payment authorization management systems 120 to generate and maintain tables or other databases or data sets of select merchant payment token data sets, for use in adjudicating, authorizing and otherwise processing transaction requests received from devices 110 on behalf of purchasers and other requesting users 190. As will be apparent to those skilled in the relevant arts upon a reading of this disclosure, by enabling each of the requesting user 190, FI system 120, and merchant 130 to specify special requirements or requests, including choices of payment accounts, discounts and other special offers or rules, etc., to be applied in processing such transactions—to individual purchasers or groups or classes of purchasers—the invention opens up a very wide range of new possibilities in electronically-enabled commerce, with the ability to rapidly and efficiently modify transactional processes at any time.
  • For example, an authorized or select merchant payment token data set generated by a payment authorization management system 120 in accordance with this aspect of the invention can include multiple data records, each including some or all of the following, along with any other required or desired data:
      • <non-predictable authorized token><identifiers associated with account(s) to be used as transaction funding sources><identifier(s) associated with requesting merchant and/or accounts to be credited in transaction(s)><flag(s) identifying merchant transaction processing requests or other special business function rules>
        • <(optional) pre-authorized transaction limit(s)>
          where:
      • <non-predictable select merchant payment token>=a select merchant payment token comprising any suitably non-predictable character set(s) (e.g., random or pseudo-random string(s) of letters, numbers, special characters, etc.) or other credentials uniquely associated with the merchant(s) associated with the request and accounts to be used as sources of payment funds
      • <identifiers associated with account(s) to be used as transaction funding sources>=data representing identifier(s) suitable identifying account(s) to be used a funding sources to satisfy payments in transactions conducted between the requesting user 190/device 110 and merchant(s) identified in association with the token request
      • <identifier(s) associated with requesting merchant and/or accounts to be credited in transaction(s)>=data representing account number(s) or other routing information suitable for use in routing transaction payments to merchants identified in association with the token request
      • <flag(s) identifying merchant transaction processing or other special transaction processing requests>=flags or other data representing or referring to special transaction processing requests to be applied in processing of transactions associated with the select merchant payment token. Requests can originate from corresponding merchant(s) 130, purchaser or other authorized account users 190, or account administration FIs 120, and subject to any applicable laws, rules, or agreements, can be changed at any time subsequent to creation of the select merchant payment token
      • <(optional) pre-authorized transaction limit(s)=any pre-authorized transaction limits imposed by requesting user(s) 190, merchant(s) 130, or FIs 120
  • As explained further below, on receipt from an authorized user 190 and/or device 110 of a transaction request data set comprising data representing an authorized merchant payment token, a payment authorization management system 120 controlling such a data set can use the select or authorized merchant payment token to look up an associated select merchant payment token data set, identify applicable parties and rules, and apply them to adjudication and other processing of the transaction request.
  • Optional pre-authorized transaction limits can be included where, for example, a pre-paid token is to be generated and stored on a user's device 110, or within secure memory at an account administration FI 120, for later access by the user in transactions with the merchant. In such cases funds can be set aside in a temporary or permanent sequestered or ‘buffered’ account until expended in a transaction.
  • In other cases, generation of the Merchant API token can be created in advance simply in order to speed transaction processing at the time a transaction is desired, while uniquely identifying all applicable payment rules, including special discounts, loyalty rewards, and accounts to be used as transaction funding sources. In such cases, at the time of transaction the normal processes of verifying availability of sufficient funds to settle a transaction, etc., can be applied.
  • At 2414, the preferred funding source token, or select merchant payment token, can be returned by the FI system 120 that generated it to the requesting wallet application 112 or merchant application 114, which at 2416 can forward it, or a modified or replacement token, to merchant application 114 associated with the token request process 2400.
  • For example, at 2416 the select merchant payment token can be routed by an account management system FI 120 to the requesting user 190's virtual wallet application 112, and at forwarded by wallet application 112 to a merchant application 114 associated with the authorized merchant, which at 2418 can in turn forward the token to the corresponding merchant back-end system 130.
  • Thus, for example, at 2418 a merchant application 114 can generate a select merchant token confirmation data set, comprising data representing one or more secure purchaser identifiers associated with the prospective purchaser 190 and/or device 110 and the same or another select merchant payment token, and route the select merchant token confirmation data set to a merchant transaction management system 130, in order enable the merchant backend system 130, 136 associated with the merchant application 114 to store the select merchant token and optionally the secure purchaser identifiers in secure persistent storage and optionally to request generation of a special payment token to be used by the merchant application 114, 630 in internal or other processing transaction payment requests originated by the user's device 110. The select merchant token and secure purchaser identifier(s) can be used by the merchant transaction management system 130, for example, to confirm the validity of proposed transactions and to route inquiries, confirmations, transaction receipt data, etc. to one or more user devices 110, and to route confirmations, inquiries, and other required or desired information to payment authorization management system(s) 120 as appropriate or otherwise suitable for negotiating, executing, confirming, and clearing transactions.
  • In addition, at 2420, the merchant back-end system can route the token to banking/token management services associated with FI system(s) 120, 160 a request for confirmation, with identifiers representing any special transaction processing requests, and/or for generation of a separate unpredictable identifier to be associated by the merchant system 130 with the user 190 in processing of any transactions initiated by the user, etc. Such a select merchant token confirmation request data set can include, for example:
      • <select merchant network address/merchant identifier(s)>
      • <flag indicating nature of request><select merchant payment token>
      • <merchant account identifier(s)><flag(s) identifying (updated) transaction processing requests><(optional) pre-authorized transaction limit(s)>
        where:
      • <select merchant network address/merchant identifier(s)>=network resource locator(s) to which confirmations and/or other communications are to be returned to the select merchant back-end system 130
      • <flag indicating nature of request>=data interpretable by the receiving FI system 120 to indicate any specific nature of the request, and type(s) of data to be expected in subsequent data fields
      • <select merchant payment token>=select merchant payment token generated at 2412, or suitable proxy
      • <merchant account identifier(s)>=any required or desired identifiers associated with merchant accounts to be used in transaction processing, where for example required or desired in conjunction with the specific request identified above
      • <flag(s) identifying (updated) transaction processing requests>=flags or other data representing or referring to special merchant transaction processing requests to be applied in processing of transactions associated with the select merchant payment token or updates thereto, requested by merchant system 130. In addition to loyalty program, discounts, and other requests to be applied to transactions initiated by the user 190 or device 110 associated with the merchant token generating request, such merchant-initiated special processing requests can include preferred payment protocol(s) to be applied to communications respecting transactions conducted with the merchant system 130
      • <(optional) pre-authorized transaction limit(s)>=if not included in updated special processing request, new or updated limits to be associated with transactions requested by user 190 or device 110 associated with the select merchant payment token
  • As important advantage offered by this aspect of the invention is that select merchant token confirmation request data sets can be generated and routed by merchant transaction processing systems 130 step 2420 or any subsequent time, in order for example to revise, delete, replace or otherwise modify one or more merchant transaction processing requests, so that, for example discounts on various specified goods and/or services can be increased or decreased, rewards or loyalty program rules revised, etc.
  • For example, by including in such select merchant token confirmation request data sets data representing one or more purchasers 190, awards programs, discounts, etc., applicable to one or more persons, or classes of persons, can be created, replaced, removed, or otherwise modified, by causing one or more payment authorization management system systems 120 to update pluralities of authorized merchant token data sets and/or select merchant data sets.
  • As a further example, at 2420 the merchant backend system 130, 136 can generate and forward to the FI system 120 associated with the preferred funding source(s)/merchant token request the same or another merchant application payment token request data set. An important advantage offered by this aspect of the invention is that the merchant application payment token request data set or merchant confirmation data set can include data representing a request that payments made between the requesting user 190, device 110, and/or merchant application 114 be formatted in accordance with an desired type or protocol, independent of the preferred funding source(s) designated by the user 190. For example, if the user 190 has requested that transactions initiated through the merchant application 11 be funded using one or more debit and/or points accounts, as described above, the merchant system 130 can request that payments drawn from such accounts be processed in accordance with EMV (Europay-Visa-MasterCard) and/or other credit protocols. As will be apparent to those skilled in the relevant arts, the invention enables the user 190 and merchant 130 to independently designate one or more preferred funding source types and protocols to be used in processing transactions between the user's merchant application 114 and the requesting user 190.
  • At 2422, the responsible FI 120 can return a suitably-formatted select merchant payment token, or confirmation of an earlier-generated token, to the requesting merchant backend system 130 for use as described herein. Such confirmation can further include, for example, data representing confirmation or proposed modification(s) of special transaction processing requests forwarded (directly or indirectly) by the authorized merchant system 130. Thus, for example, in various aspects and embodiments payment authorization management systems 120 can be configured to parse data representing merchant transaction processing requests and cause the corresponding requests to be reviewed for compliance with legal, regulatory, and FI policies, optionally automatically according to suitably-configured heuristic analyses, or by human regulatory and/or policy compliance officers; and, when requested modifications are approved, cause the associated FI system(s) 120 to generate and route to requesting merchant transaction management system(s) 130 suitably-configured merchant transaction processing request confirmation data set(s) comprising flags or other data representing confirmation of acceptance by a payment authorization management system of one or more merchant transaction processing requests.
  • For example, at 2422 in response to receipt of a select merchant token confirmation request, a responsible FI system 120 can update its data set associated with the authorized merchant token, and return the same or another suitable token to the Merchant back end. The confirmation can include any data representing confirmation of any special merchant-side special function requests, such as special savings, rewards points offers, etc.
  • Thus for example a token confirmation data set returned by an FI 120 to a requesting merchant backend system 130 can include:
      • <merchant network address/merchant identifier(s)>
      • <flag indicating nature of confirmation><select merchant payment token>
      • <user/purchaser identifier(s)><flag(s) identifying special transaction processing requests><(optional) pre-authorized transaction limit(s)>
        as explained above.
  • As one example, in accordance with the examples described above, such a merchant application payment token or other select merchant payment token can be provided in a form suitable for processing using “conventional” payment rails 150 through, for example, use of a discretionary field in a “conventional” transaction payment data set. For example, using the example described above, an select merchant payment token can comprise a plurality of encoded or otherwise unpredictable data sets or items, formatted as follows:
      • <token type><issuing FI><currency><value><time stamp>
        • <issuer ref><discretionary data>
    Where:
      • <token type>=format associated with the payment token, e.g. a credit token (EMV, etc.), debit token, etc. designated by the merchant system 130 at 2420 in FIG. 24
      • <issuing FI>=identifier(s) associated with the FI 120 that issued the token
      • <currency>=US dollars, Canadian dollars, Yen, etc. to be associated with value(s) represented by the token
      • <value>=amount of currency of specified type payable by the issuing FI on presentation of a pre-paid token, or a transaction limit associated with a reusable or other token to be presented with a transaction verified at the time of purchase
      • <time stamp>=date/time of token creation; optionally useful also for determining expiration of token after given length of time, etc.
      • <issuer ref>=token reference number generated by the issuing FI, can be tied, for example, to a specific transaction and/or user account. Etc.
      • <discretionary data>=select merchant payment token as described above, thus data representing the funding source(s) designated by the user 190 at 2408
  • In such cases, as a process of parsing all received transaction data strings, an FI 120 can parse a received transaction request data set associated with an select merchant payment token, and can look up the associated select merchant payment token data set to process the transaction according to specified special transaction requests, as described above.
  • As noted above, through generation and processing of suitably-formatted select merchant payment token data sets, the invention can be used to enable the use of multiple funding sources to be applied toward the satisfaction of purchase transactions. In various embodiments, such payments can be processed through the use of conventional ‘payment rails’ provided by third-party FI system(s) 150, by generating transaction request data sets comprising select merchant payment tokens in discretionary data fields of EMV and/or other traditional payment protocols.
  • For example, such use of select merchant payment tokens can be used to facilitate payments made according to Applicant's unique split-pay techniques. As one example, an select merchant payment token received by an FI 120 in a discretionary field of a transaction request formatted according to the EMV protocol can be used to look a corresponding authorized merchant data set. The authorized merchant data set associated with the select merchant payment token can include a split-pay data set comprising the following bits:

  • <SN/S1/P1/S2/P2/SX/PX>
  • Where:
  • SN=number of funding sources represented
  • S1=first funding source identifier
  • P1=percentage or amount of value to be funded by source 1
  • S2=second funding source identifier
  • P2=percentage or amount of value to be funded by source 2
  • SX=Xth funding source identifier
  • PX=percentage or amount of value to be funded by source X
  • It may be seen by the foregoing that in various aspects and embodiments the invention provides networked payment authorization management systems 120, wherein such a system comprises one or more network communication systems 124, one or more data processors 122, and one or more persistent memory devices 126, the at least one persistent memory device 126 comprising stored, machine-interpretable instructions adapted to cause the at least one data processor to receive from a purchaser communication device 110, using the at least one network communication system 124, a select merchant payment token request data set, the select merchant payment token request data set comprising data representing at least one or more selected merchant identifiers and one or more selected payment source identifiers; to generate a secure select merchant payment token; generate an authorized merchant token data set comprising at least the select merchant payment token, the one or more selected merchant identifiers, and the one or more payment source identifiers; cause the authorized merchant token data set to be stored in any or all of secure persistent memories 126, 139, 606, 604; using the same or another network communication system 124, route the authorized merchant token data set to the same or another purchaser communication device 110; and receive from a merchant transaction management system 130, using the same or another network communication device 124, a select merchant token confirmation request, the select merchant token confirmation request comprising data representing at least the select merchant payment token.
  • In the same and further aspects and embodiments, the invention provides networked merchant transaction management systems 130, wherein such a system comprises one or more network communication systems 138, one or more data processors 137; and one or more persistent memory devices 139, the at least one persistent memory device 139 comprising stored, machine-interpretable instructions adapted to cause the at least one data processor 137 to receive from a purchaser communication device 110, using the at least one network communication system 138, a select merchant payment token authorization request data set, the select merchant payment token authorization request data set comprising data representing at least one or more secure purchaser identifiers and a select merchant payment token; generate a select merchant token confirmation request data set, the select merchant the select merchant token confirmation request data set comprising data representing at least the select merchant payment token, and optionally one or more merchant transaction processing requests; and, using the same or another network communication system 138, route the select merchant token confirmation request to a payment authorization management system 120. Such optional merchant transaction processing requests can, for example, include data representing requests that a discount to be applied to one or more price terms associated with transaction request data sets generated by one or more designated purchaser communication devices; and/or new, special, or modified a loyalty account points award rules to be applied with respect to transactions associated with transaction request data sets generated by one or more designated purchaser communication devices.
  • Moreover, in the same and other aspects and embodiments, the invention provides purchaser communication devices 110, wherein such a device comprises one or more one data communication systems 612, 614, one or more data processors 602, one or more of input, output, and input-output devices 610, 621, 623, 625, 627, 629, etc.; and one or more persistent memory devices 606, 604, 618, the at least one persistent memory device 606, 604, 608 comprising stored, machine-interpretable instructions representing a merchant transaction management application 114 and adapted to cause the at least one data processor 602 to control the generation, receipt, and processing of data, routing of data using the at least one data communication system, and access to secure persistent memory 618, in accordance with one or more logical structures associated therewith. The same or another persistent memory device(s) 606, 604, 618 of the purchaser communication device 110 can comprise stored, machine-interpretable instructions representing a payment management application 112 and adapted to cause the same or another at least one data processor 602 to control the generation, receipt, and processing of data, routing of data using the same or another at least one data communication system, and access to the same or other secure persistent memory in accordance with one or more logical structures associated with the application 114, separately from the application 112. The at least one processor 602 can further be configured to, in accordance with logical structures associated with the merchant transaction application 114, receive from at least one input device 610 signals representing a command to designate one or more payment source accounts to be used in funding transactions conducted with at least one select merchant 130; in accordance with logical structures associated with the payment management application 112, route to at least one payment authorization management system 120 an eligible accounts list request data set, the eligible accounts list request data set comprising data representing at least one or more purchaser identifiers; and receive from the at least one payment authorization management system 120 an eligible accounts list data set, the eligible accounts list data set comprising data representing at least one or more identifiers associated with each of one or more payment source accounts eligible for use in funding purchase transactions. The at least one processor 602 can further be configured to, for example, generate and display on an output device 610 a suitably-configured GUI 640 for use by the user 190, and thereafter receive from at least one input device 610, in response to selections made by the user 190, signals representing a designation of at least one of the one or more payment source accounts eligible for use in funding purchase transactions, and route to at the least one payment authorization management system 120 a select merchant payment token request data set comprising data representing at least identifiers associated with the one or more designated payment source accounts to be used to fund transactions conducted with at the least one select merchant 130. Moreover, in accordance with logical structures associated with the payment management application 112, the at least one processor 602 can be configured to receive from the payment authorization management system 120, via the same or another data communication system 612, 614, a select merchant payment token; and in accordance with logical structures associated with the merchant transaction application 114, route the select merchant payment token to at least one merchant transaction management system 130 associated with the merchant transaction application 114, using the same or another data communication system 610, 612.
  • Among the many advantages offered by the various aspects and embodiments of the invention is increased security, because bank and other funding source account numbers, which are in some circumstances subject to fraudulent misuse, need not be communicated between devices 120, 130, 110 at all; rather proxy identifiers such as “my checking account” or “my Merchant rewards account” can be exchanged, and mapped into actual routing and account information by the responsible payment authorization management system 120. And when such numbers or other sensitive information needs to be communicated, it can be communicated solely through applications 112 generated by the FI system 120 itself, so that control over security is not lost. Thereafter, secure select merchant tokens can take the place of any one or more account numbers or other identifiers required for processing of payments and settlement of transactions.
  • Moreover, using systems and processes as described above, FI's 120, purchasers 190, and optionally merchants 130 can agree on payment funding sources without any need for the merchant 130 to know the funding sources, or even the type(s) of funding sources involved. In addition, merchants and purchasers need not agree on payment protocols to be used, so long as either or both can communicate with the FI system 120.
  • To initiate a transaction using one or more select merchant tokens generated according to the foregoing, a user 190 may invoke a merchant application 114 on a device 110 and select one or more items (good and/or services) to be purchased, rented, leased, etc. For example, upon accessing a merchant application 114 the user 190 can use any suitably-configured keyboards, keypads, pointers, touch screen devices, and/or other input/output device(s) 610 in conjunction with suitably-configured user interface display screens to designate such goods or services. As part of a checkout sequence, merchant application 114 may transmit (directly or via any other suitable components, such as mPOS or POS device(s) 132, 134) a request to merchant backend 136 a request for confirmation of purchase terms and other details, including for example price(s), quantities, goods/services to be purchased, date/time of delivery, location of delivery or pickup, etc.
  • Alternatively, a user may initiate a transaction from within any other application or program 112, 116, etc. by selecting a suitable start-up command item 112, 116, etc. As part of a checkout sequence, for example, a user can use any suitably-configured I/O devices 610, in conjunction with suitably-configured user interface I/O display screens, to select a wallet application 112 for payment. Such selection may be in response to presentation of multiple different payment options, including those which do not use a wallet application 112.
  • An example process 2500 for use of an select merchant payment token generated in accordance with process 2400 shown in FIG. 3 in order to complete a payment transaction is shown in FIG. 4 .
  • Process 2500 can begin at 2502, when a user 190 accesses a merchant application 114 online, or at a merchant POS 132, 134, or uses a general internet browser to access a merchant online e-commerce application hosted by a merchant system 136, to negotiate a purchase transaction.
  • At 2504, for example, a user of a merchant application 114 associated with a merchant “My Store” as described above who has used one or more GUIs generated by the merchant application 114 to identify one or more items for purchase can be presented with a GUI 650 such as that shown in FIG. 8 , comprising a list 652 of items to be purchased, a list 654 of prices associated with the items to be purchased; a total purchase price 656 (including any applicable taxes, etc.) to be paid, and one or more command items 658, 660 associated with payment options.
  • Selection of command item 660 “My Wallet” can cause processor(s) 602 of the user's device to invoke a virtual wallet application 112, and process payment in accordance with logical structures associated with the application 112. Such processes can, for example, result in generation of a transaction request data set, and routing of such data set to an FI system 120 associated with the virtual wallet 112 for processing and payment using one or more accounts designated through the virtual wallet application 112. In such a case the user 190 can be charged, and pay, the full purchase price 656 shown in FIG. 8 .
  • Alternatively, selection command item 658 “Token Pay” can cause processor(s) 602 of the user's device to generate and at 2505 route to a corresponding a merchant POS system 132, 134, a merchant backend system 130, 136, an select merchant payment token transaction request data set comprising an select merchant payment token generated in accordance with process(es) 2400 described above. Such an select merchant payment token transaction request data set can, for example, be formatted according to any desired payment protocol, and can comprise:
      • <address of secure FI portal><originating (user return) network address>
        • <select merchant payment token><purchase price>
          where:
      • <address of secure FI portal>=network resource locator associated with responsible payment authorization management system 120
      • <originating (user return) network address>=network resource locator(s) to which confirmations and/or other communications are to be returned
      • <select merchant payment token>=unpredictable character set(s) or other credentials uniquely associated with the merchant(s) associated with the request and accounts to be used as sources of payment funds, as described in connection with process 2400 above
      • <purchase price>=nominal purchase price to be paid for the transaction, as shown for example at 656 in FIG. 8 and paid by a user who elects payment through a virtual wallet application 112.
  • At 2506, a network communication system of the merchant backend system 130, 136 can forward the select merchant payment token transaction request data set to the secure FI portal address, optionally (as shown at 2506) via conventional transaction processing systems (payment rails) 150.
  • Alternatively, at 2504-2508 the select merchant payment token transaction request data set can be forwarded directly to the secure FI portal address by the merchant API of the user's device 110, using one or more short-range or network communications systems 612, 614, without making use of either a merchant backend system 136 or payment rails 150.
  • At 2508-2510 the payment authorization management system 120 to which the transaction request data set has been routed can parse and adjudicate the request. For example, by interpreting the select merchant payment token included in the data set and using it, by means of table-look or other processes in a suitably-configured data base of select merchant payment token data sets, the FI system 120 can identify the corresponding authorized merchant data set and confirm the existence and validity of the data set, availability of funds in identified source accounts, etc., permissibility under applicable laws, regulations, and rules etc.
  • Moreover, at 2508 the payment authorization management system 120 can identify and apply and special transaction requests designated by the merchant 130 or other parties. For example, where a merchant 130 has requested application of one or more discount, rebate, or loyalty awards rules, the FI system 120 can confirm the propriety of their application to the current request. Accordingly, for example, the system 120 can determine that a discount is to be applied, and calculate a reduced or otherwise adjusted price to be applied to the transaction.
  • At 2510 the payment authorization management system can confirm the availability of adequate funds, rewards points, etc., to satisfy the transaction request. This process can, for example, involve application of split-pay processes described above, communications with third-party rewards administrators 160, etc., and conversion (or request for conversion) of loyalty or other rewards points to equivalent cash value, conversion of foreign currencies, etc.
  • Conditioned upon availability of adequate funding resources, at 2511 the payment authorization management system 120 can approve the request, and debit or otherwise update funding source accounts to settle the transaction. This can for example include notifying third-party credit, loyalty, rewards program administrators, etc., of the transaction and approval of the application of resources associated with such accounts toward the transaction. As will be understood by those skilled in the relevant arts, such transaction settlement procedures can proceed in real time, or periodically (e.g., end of day or business week) in accordance with a wide variety of accepted or otherwise-desired processes or conventions.
  • As shown in FIG. 4 , token management processes and account crediting, debiting, and other updating/administrative procedures can be implemented by a single FI system 120, or can be divided along any desired or required lines. For example, storage, parsing, and maintenance of records pertaining to select merchant payment tokens can be handled by specialized or otherwise separate token management services 160, while account administration procedures can be handled by separate FI(s) 120.
  • In embodiments where an FI system 120, 160 applies special transaction processing requests such as discounts, rebates, or special loyalty points awards, at 2512 the system 120, 160 can generate a purchaser transaction approval data set, and route it directly or indirectly to the requesting merchant application 114. Such a purchaser transaction approval data set can, for example, include:
      • <originating (user return) network address>
        • <final transaction terms>
          where:
      • <originating (user return) network address>=network resource locator(s) to which confirmations and/or other communications are to be routed
      • <final transaction terms>=data representing authorized and optionally updated transaction terms, including discounted or otherwise updated price(s), proposed loyalty points awards, etc.
  • On receipt of a purchaser transaction approval data set, logical structures associated with a merchant application 114 or wallet application 112 can cause processor(s) 302 to generate and display a purchaser approval GUI such as purchaser approval GUI 670 shown in FIG. 9 , which includes item list 652, original price terms 654, updated (in this case, discounted) price terms 664, and updated total price 668. Upon satisfactory review and approval of the proposed revised transaction terms, a user 190 can use a command item 672 to generate a purchaser select merchant transaction confirmation data set, which can include a simply yes/no flag, and route the approval to the purchase authorization management system 120. Upon receipt, the system 120 can process any final transaction approvals, account balance updates, etc.
  • Among the advantages offered by such embodiments of the invention is the ability of a user 190 to decline alternative transaction terms, including discounted prices or modified loyalty wards applications, at any time prior to completion of the purchase (e.g., by selecting command item 672). For example, a user 190 not wishing to accept such modified terms can generate a select merchant offer decline command by selecting a command item 671 “No Thanks” and reverting to terms shown, for example, in GUI 650 of FIG. 8 . Alternatively, such a user can avoid consideration of alternative terms altogether by selection of a command item 660 “My Wallet” in a GUI 650, so as to complete transaction execution by, for example, invoiding another payment management application 112.
  • With a transaction request successfully adjudicated and approved by FI system(s) 120, 160, at 2513-2514 a,b,c the system(s) 120, 160 can generate a suitably-formatted transaction confirmation data set and route it to any one or more of merchant backend system(s) 130, 136, POSs 132, 134, and/or merchant application(s) 114. As shown in FIG. 4 , such confirmations may be routed over conventional payment rails 150.
  • Thus it may be seen that in various aspects and embodiments the invention provides networked payment authorization management systems according to the foregoing, configured such that at least one data processor 122 can receive from at least one of a purchaser communication device 110 and a merchant transaction management system 130, using at least one network communication system, a transaction request data set, the transaction data set comprising data representing at least the select merchant payment token and a transaction price, and optionally one or more merchant transaction processing request. In such aspects and embodiments, such select merchant payment tokens can be subject to one or more account eligibility restrictions imposed by the payment authorization management system 120, which may for example be legal, regulatory, or commercial in nature.
  • The invention further provides, in the same and further aspects and embodiments, networked merchant transaction management systems, such a system comprising processor(s) 137 adapted to receive from purchaser communication devices 110, via one or more one network communication systems 138, merchant transaction processing request confirmation data sets, the merchant transaction processing confirmation data set comprising data representing confirmation of acceptance by a payment authorization management system 120 of one or more merchant transaction processing requests.
  • It may further be seen from the foregoing that the invention provides purchaser communication devices adapted to receive from merchant transaction management systems 130, using one or more data communications systems 612, 614, data representing goods or services to be purchased from one or more merchants associated with the systems 130, and corresponding price terms; to generate transaction request data sets, such a set comprising data representing at least a select merchant payment token associated with the merchant and a transaction price associated with the corresponding price terms; and, using the same or another data communication system 612, 614, route the transaction request data set to at least one of the merchant transaction management system 130, 132, 134, 136 and one or more payment authorization management systems 120.
  • As a further example, at 2504 in FIG. 4 the merchant application 114 can access and route to a POS system 132, 134 and/or a merchant system 130 a select merchant payment token returned to the corresponding merchant system 130 at 2422, such token having been stored on the user's device 110, or accessed via the merchant backend system 136, etc. The authorized merchant payment token may be used to generate a transaction authorization request data set as described above, the transaction authorization request data set comprising fields as described above, including a payment type identifier associated with a payment type and/or protocol preferred by the merchant and one or more identifiers associated with funding sources preferred by the user 190. By using a format of the type described above, for example, a discretionary field can be used to identify one or more funding sources preferred by the user.
  • At 2506, the merchant system 130, 132, 134 can route the transaction authorization request data set generated at 2504 to the FI system(s) 120, 160 associated with the preferred funding source(s) designated by the user in process 2400. By using processes and formats described above, the transaction authorization request data set can be routed over ‘conventional’ payment network rails 150, and at 2508 interpreted and otherwise processed by components 150 like any other payment request.
  • At 2508-2514, the requested transaction may be processed and adjudicated in accordance with suitable process(es), including those described above, including for example by checking at 2510 for the availability of adequate funds/points balances in preferred funding source(s) identified by the user 190 and routing approvals at 2512, 2514. Such processes can, for example, include the use of split pay and/or real-time credit processes such as those described.
  • Merchant authorization and/or application payment tokens in accordance with the invention can be configured to enable the merchant to request that an FI 120 to which the token is routed to perform any of a very wide range of business functions, in addition to or in lieu of payment transactions. For example, through the use of discretionary data fields in accordance with existing or ‘conventional’ payment protocols, or through the use of specifically-formatted tokens in accordance with the foregoing, the application or award of unique rewards functions, payment refunds, etc., can be executed in accordance within instructions of the corresponding merchant system 130.
  • Among the many advantages offered by systems and process in accordance with the invention is their provide to adapt to developing technologies. For example, systems and processes in accordance with the invention, combined with suitable security features, may be implemented wholly or partly through the use of various forms of public ledgers, such as blockchains. For example, in some embodiments one or more mPOSs or other trusted devices 110′ may be established as a node in a blockchain ledger system. In such an implementation, each trusted device 110′, including any trusted mPOSs 134, may route transaction data sets securely from merchant system(s) 130 to FSP systems 160, 120 while complying with applicable blockchain/public ledger protocols.
  • As will be appreciated by those skilled in the relevant arts, a block chain is a distributed and generally encrypted or otherwise secure data store that acts as a virtual public ledger of transactions, and is particularly useful in implementing cryptocurrencies such as bitcoin. In such ledger schemes a plurality of devices are implemented as node, each node controlling or otherwise having access to a distinct, complete or partial stored copy of the ledger; the ledger comprises data sets representing legal or otherwise recognized tender for transactions. As a transaction progresses, each involved network node can validate the transaction, or a portion of it, and generate data representing suitable ledger annotations, enter the annotations in the node's portion or copy of the ledger, and push or make available updated ledger annotations to other nodes.
  • The foregoing description is intended to provide a thorough description of various aspects and example embodiments of one or more inventions. Accordingly, various aspects and/or components of such invention(s), and specific exemplary combinations thereof, have been described throughout at multiple different levels of abstraction. In some instances, embodiments may have been described on both a specific and a relatively general or generic level, for example, where an aspect or component of the embodiment is susceptible to variation in a manner that is not inconsistent with the specific structure(s) and/or operation(s) set forth. In these instances, the specific embodiments set forth herein may not be the only ones contemplated and instead may only be exemplary of a more general or generic configuration. The scope of the invention(s) described herein is therefore defined solely by the language of the claims appended hereto, giving due consideration to applicable doctrines for construing their meaning.
  • Moreover, as will be appreciated by those skilled in the relevant arts, a very wide variety of payment systems and transaction processes are enabled by the invention. While various specific combinations and embodiments have been described, it is very much contemplated that they may be used together in a very wide variety of combinations, even where specific combinations have not been described, due to practical concerns for brevity and clarity. As a specific example, the various processes disclosed and otherwise suggested or described can in many instances be implemented in orders or sequences other than those discussed in connection with exemplary embodiments.
  • It is intended that all such variations which are consistent scope of the claims presented herein are within the scope of the invention.

Claims (11)

1. A networked merchant transaction management system comprising:
at least one network communication system;
at least one data processor; and
at least one persistent memory device, the at least one persistent memory device comprising stored, machine-interpretable instructions adapted to cause the at least one data processor to:
receive from a purchaser communication device, using the at least one network communication system, a select merchant payment token request data set, the select merchant payment token request data set comprising at least one secure purchaser identifier and a secure select merchant payment token;
generate a select merchant token confirmation request, the select merchant token confirmation request comprising data representing at least the secure select merchant payment token;
using the same or another network communication system, route the select merchant token confirmation request to a payment authorization management system.
2. The networked merchant transaction management system of claim 1, wherein the select merchant token confirmation data set comprises data representing at least one merchant transaction processing request.
3. The networked merchant transaction management system of claim 2, wherein the data representing the at least one merchant transaction processing request comprises data representing a discount to be applied to one or more price terms associated with transaction request data sets generated by one or more designated purchaser communication devices.
4. The networked merchant transaction management system of claim 2, wherein the data representing the at least one merchant transaction processing request comprises data representing a loyalty account points award rule applied with respect to transactions associated with transaction request data sets generated by one or more designated purchaser communication devices.
5. The networked merchant transaction management system of claim 4, wherein the machine-interpretable instructions are adapted to cause the at least one data processor to receive from a purchaser communication device, using the at least one network communication system, a merchant transaction processing request confirmation data set, the merchant transaction processing request confirmation data set comprising data representing confirmation of acceptance by a payment authorization management system of one or more merchant transaction processing requests.
6. The networked merchant transaction management system of claim 1, wherein the select merchant payment token request data set further comprises:
one or more purchaser-selected merchant identifiers; and
one or more purchaser-selected payment source identifiers.
7. The networked merchant transaction management system of claim 6, wherein the select merchant token confirmation request further comprises:
one or more merchant-selected purchaser identifiers; and
one or more merchant-selected protocols associated with the one or more purchaser-selected payment source identifiers.
8. The networked merchant transaction management system of claim 6, wherein the secure select merchant payment token is associated with associated with the one or more purchaser-selected merchant identifiers.
9. The networked merchant transaction management system of claim 6, wherein the secure select merchant payment token is associated with the one or more purchaser-selected payment source identifiers.
10. A purchaser communication device comprising:
at least one data communication system;
at least one data processor;
one or more of input, output, and input-output devices;
at least one persistent memory device storing machine-interpretable instructions representing a merchant transaction management application and adapted to cause the at least one data processor to control the generation, receipt, and processing of data, routing of data using the at least one data communication system, and access to secure persistent memory in accordance with one or more logical structures associated therewith;
the same or another least one persistent memory device of the purchaser communication device comprising stored, machine-interpretable instructions representing a payment management application and adapted to cause the same or another at least one data processor to control the generation, receipt, and processing of data, routing of data using the same or another at least one data communication system, and access to the same or other secure persistent memory in accordance with one or more logical structures associated therewith;
wherein the at least one processor is configured to:
in accordance with logical structures associated with the merchant transaction application, receive from at least one input device signals representing a command to designate one or more payment source accounts to be used in funding transactions conducted with at least one select merchant;
in accordance with logical structures associated with the payment management application:
route to at least one payment authorization management system an eligible accounts list request data set, the eligible accounts list request data set comprising data representing at least one secure purchaser identifier; and
receive from the at least one payment authorization management system, an eligible accounts list data set, the eligible accounts list data set comprising data representing at least one or more identifiers associated with each of one or more payment source accounts eligible for use in funding purchase transactions;
receive from at least one input device signals representing a designation of at least one of the one or more payment source accounts eligible for use in funding purchase transactions;
route to at the least one payment authorization management system a select merchant payment token request data set, the select merchant payment token request data set comprising data representing at least identifiers associated with the one or more designated payment source accounts to be used to fund transactions conducted with at the least one select merchant;
in accordance with logical structures associated with the payment management application, receive from the payment authorization management system, via the same or another data communication system, a select merchant payment token; and
in accordance with logical structures associated with the merchant transaction application, route the select merchant payment token to at least one merchant transaction management system associated with the merchant transaction application, using the same or another data communication system.
11. The purchaser communication device of claim 10, the machine-interpretable instructions adapted to further cause the at least one data processor, in accordance with logical structures associated with at least one of the merchant transaction application and the payment management application, to:
receive from the merchant transaction management system, using the at least one data communications system, data representing one or more goods or services to be purchased, and corresponding price terms;
generate a transaction request data set, the transaction request data set comprising data representing at least the select merchant payment token and a transaction price associated with the corresponding price terms; and
using the same or another data communication system, route the transaction request data set to at least one of the merchant transaction management system and the payment authorization management system.
US18/108,481 2015-07-02 2023-02-10 Processing of electronic transactions Pending US20230196355A1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
US18/108,481 US20230196355A1 (en) 2015-07-02 2023-02-10 Processing of electronic transactions

Applications Claiming Priority (7)

Application Number Priority Date Filing Date Title
US201562188067P 2015-07-02 2015-07-02
US201562200859P 2015-08-04 2015-08-04
US15/000,685 US11080700B2 (en) 2015-01-19 2016-01-19 Secure processing of electronic payments
US15/201,428 US11080701B2 (en) 2015-07-02 2016-07-02 Secure processing of electronic payments
US201662361919P 2016-07-13 2016-07-13
US15/648,942 US11599879B2 (en) 2015-07-02 2017-07-13 Processing of electronic transactions
US18/108,481 US20230196355A1 (en) 2015-07-02 2023-02-10 Processing of electronic transactions

Related Parent Applications (1)

Application Number Title Priority Date Filing Date
US15/648,942 Continuation US11599879B2 (en) 2015-07-02 2017-07-13 Processing of electronic transactions

Publications (1)

Publication Number Publication Date
US20230196355A1 true US20230196355A1 (en) 2023-06-22

Family

ID=60294716

Family Applications (2)

Application Number Title Priority Date Filing Date
US15/648,942 Active 2036-08-13 US11599879B2 (en) 2015-07-02 2017-07-13 Processing of electronic transactions
US18/108,481 Pending US20230196355A1 (en) 2015-07-02 2023-02-10 Processing of electronic transactions

Family Applications Before (1)

Application Number Title Priority Date Filing Date
US15/648,942 Active 2036-08-13 US11599879B2 (en) 2015-07-02 2017-07-13 Processing of electronic transactions

Country Status (1)

Country Link
US (2) US11599879B2 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20240054473A1 (en) * 2022-08-15 2024-02-15 Mastercard International Incorporated Methods and systems for extending installment options

Families Citing this family (40)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP6433427B2 (en) 2012-09-12 2018-12-05 アイイーエックス グループ,インコーポレーテッド Communication latency leveling apparatus, method, and system
JP6542800B2 (en) 2014-04-16 2019-07-10 アイイーエックス グループ,インコーポレーテッド System and method for providing transaction updates
US10706470B2 (en) 2016-12-02 2020-07-07 Iex Group, Inc. Systems and methods for processing full or partially displayed dynamic peg orders in an electronic trading system
JP6655606B2 (en) 2014-08-22 2020-02-26 アイイーエックス グループ,インコーポレーテッド Dynamic peg order in electronic trading system
US10311515B2 (en) 2014-09-17 2019-06-04 Iex Group, Inc. System and method for a semi-lit market
EP3767877B1 (en) * 2015-02-17 2022-05-11 Visa International Service Association Token and cryptogram using transaction specific information
US11941632B2 (en) * 2015-07-10 2024-03-26 Dyron Clower Instant funds availability risk assessment and real-time fraud alert system and method
EP3131043A1 (en) 2015-08-14 2017-02-15 Mastercard International Incorporated Managing customer uniqueness in tokenised transaction systems
EP3131042A1 (en) * 2015-08-14 2017-02-15 Mastercard International Incorporated Managing customer uniqueness in tokenised transaction systems
US10861019B2 (en) 2016-03-18 2020-12-08 Visa International Service Association Location verification during dynamic data transactions
US11429971B1 (en) * 2016-06-03 2022-08-30 Jpmorgan Chase Bank, N.A. Systems, methods, and devices for integrating a first party service into a second party computer application
WO2018044334A1 (en) 2016-09-02 2018-03-08 Iex Group. Inc. System and method for creating time-accurate event streams
KR102646761B1 (en) * 2016-09-07 2024-03-13 삼성전자주식회사 Method and electronic device for registration of financial account and payment using the same
US10356102B2 (en) * 2017-02-24 2019-07-16 Verizon Patent And Licensing Inc. Permissions using blockchain
US11188977B2 (en) 2017-03-08 2021-11-30 Stichting Ip-Oversight Method for creating commodity assets from unrefined commodity reserves utilizing blockchain and distributed ledger technology
US10797878B2 (en) * 2017-11-29 2020-10-06 International Business Machines Corporation Multi-node transaction management using one-time tokens
US11132680B2 (en) * 2017-12-21 2021-09-28 Paypal, Inc. System and method for providing merchant in context checkout
WO2019173081A1 (en) * 2018-03-08 2019-09-12 Mastercard International Incorporated Systems and methods for digitizing payment card accounts
US10796016B2 (en) * 2018-03-28 2020-10-06 Visa International Service Association Untethered resource distribution and management
US11514452B2 (en) * 2018-03-30 2022-11-29 Block, Inc. Multi-device point-of-sale system having multiple merchant-facing devices
WO2019199411A1 (en) * 2018-04-09 2019-10-17 Visa International Service Association System, method, and computer program product for conducting a payment transaction involving payment on delivery
WO2019222658A1 (en) * 2018-05-17 2019-11-21 Jpmorgan Chase Bank, N.A. Systems and methods for reward account processing using a distributed ledger
CN108876606B (en) * 2018-05-29 2021-02-09 创新先进技术有限公司 Asset transfer method and device and electronic equipment
SG10201805337YA (en) * 2018-06-21 2020-01-30 Mastercard International Inc Computer system and computer-implemented method for secure payment transaction
US10896249B2 (en) 2018-08-31 2021-01-19 Target Brands, Inc. Secure electronic authentication of a user on an electronic device
US11288746B2 (en) 2019-01-11 2022-03-29 David Platt Method for granting access to a communications network in exchange for performing tasks associated with the communications network
US10846688B2 (en) * 2019-01-11 2020-11-24 David Platt Method for granting access to a communications network in exchange for performing tasks associated with the communications network
US11316663B2 (en) 2019-01-25 2022-04-26 International Business Machines Corporation One-time password with unpredictable moving factor
US10984417B2 (en) 2019-04-25 2021-04-20 Advanced New Technologies Co., Ltd. Blockchain-based data synchronization system, method, apparatus, and electronic device
US20200372496A1 (en) * 2019-05-23 2020-11-26 Clear Labs Israel Ltd. System and method for validation of business transactions
CN110443593B (en) * 2019-08-07 2023-11-21 网联清算有限公司 Transaction processing method and device, transaction processing system and computer system
CN110674180B (en) * 2019-09-26 2021-07-27 腾讯科技(深圳)有限公司 Business data processing method and device and readable storage medium
GB2599116A (en) * 2020-09-24 2022-03-30 Mastercard International Inc Method of authentication using device token
US11537455B2 (en) 2021-01-11 2022-12-27 Iex Group, Inc. Schema management using an event stream
US20220335468A1 (en) * 2021-04-14 2022-10-20 Capital One Services, Llc Utilizing payment tokens for reward purchases
US20220351202A1 (en) * 2021-04-29 2022-11-03 Shopify Inc. Multi-channel authentication using delegated credentials
EP4123538A1 (en) * 2021-07-22 2023-01-25 Deutsche Telekom AG Method and system for completing a transaction
US20240020757A1 (en) * 2022-07-14 2024-01-18 Yodlee, Inc. System, method, and computer program for quantifying the primacy of a financial relation
US20240249270A1 (en) * 2023-01-24 2024-07-25 Jpmorgan Chase Bank, N.A. Systems and methods for secure transmission of payment data
US20240273524A1 (en) * 2023-02-10 2024-08-15 Stripe Inc. Blockchain-based subscription model

Family Cites Families (216)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5668876A (en) 1994-06-24 1997-09-16 Telefonaktiebolaget Lm Ericsson User authentication method and apparatus
US5668760A (en) 1996-04-23 1997-09-16 Intel Corporation Nonvolatile memory with a write protection circuit
US6636833B1 (en) 1998-03-25 2003-10-21 Obis Patents Ltd. Credit card system and method
CN1262485A (en) 1998-11-10 2000-08-09 阿拉丁知识系统有限公司 User-computer interactive method for group capable of flexible connecting of computer system
US6748541B1 (en) 1999-10-05 2004-06-08 Aladdin Knowledge Systems, Ltd. User-computer interaction method for use by a population of flexibly connectable computer systems
US8121874B1 (en) 1999-05-27 2012-02-21 Accenture Global Services Limited Phase delivery of components of a system required for implementation technology
AU3086101A (en) 2000-01-05 2001-07-16 American Express Travel Related Services Company, Inc. Smartcard internet authorization system
US7328189B2 (en) 2000-01-26 2008-02-05 Paybyclick Corporation Method and apparatus for conducting electronic commerce transactions using electronic tokens
FR2806505A1 (en) 2000-03-15 2001-09-21 Schlumberger Systems & Service COMMUNICATION METHOD BETWEEN A CHIP CARD AND A HOST STATION
US6439464B1 (en) 2000-10-11 2002-08-27 Stmicroelectronics, Inc. Dual mode smart card and associated methods
US6883715B1 (en) 2000-10-11 2005-04-26 Stmicroelectronics, Inc. Multi-mode smart card, system and associated methods
AU2002222194A1 (en) 2000-12-14 2002-06-24 Assendon Limited An authentication system
US20020169984A1 (en) 2001-05-09 2002-11-14 Kumar Gopikrishna T. Session management for wireless E-commerce
US7529700B1 (en) 2001-07-10 2009-05-05 Wageworks, Inc. Single-source multi-conduit apparatuses and methods for adjudicating pretax expenses
US6913196B2 (en) 2002-02-20 2005-07-05 O2Micro International Limited Dual mode controller for ISO7816 and USB enabled smart cards
US20040073688A1 (en) 2002-09-30 2004-04-15 Sampson Scott E. Electronic payment validation using Transaction Authorization Tokens
US7457778B2 (en) 2003-03-21 2008-11-25 Ebay, Inc. Method and architecture for facilitating payment to e-commerce merchants via a payment service
US6991173B2 (en) 2003-07-07 2006-01-31 Stmicroelectronics, Inc. Method and apparatus for autoreset of a USB smart card device in a mute mode
GB2406925B (en) 2003-10-09 2007-01-03 Vodafone Plc Facilitating and authenticating transactions
KR20050042694A (en) 2003-11-04 2005-05-10 한국전자통신연구원 Method for electronic commerce using security token and apparatus thereof
US20130054470A1 (en) 2010-01-08 2013-02-28 Blackhawk Network, Inc. System for Payment via Electronic Wallet
US7014107B2 (en) 2004-07-20 2006-03-21 Irek Singer Wireless payment processing system
EP1810243A4 (en) 2004-08-18 2012-05-02 Mastercard International Inc Method and system for authorizing a transaction using a dynamic authorization code
US7613919B2 (en) 2004-10-12 2009-11-03 Bagley Brian B Single-use password authentication
AU2005318933B2 (en) 2004-12-21 2011-04-14 Emue Holdings Pty Ltd Authentication device and/or method
US20060255158A1 (en) 2005-05-10 2006-11-16 Yanki Margalit Security card apparatus
US7438218B2 (en) 2005-02-28 2008-10-21 Per-Se Technologies Systems and methods for pharmacy reimbursement claim resubmission
US20060235795A1 (en) 2005-04-19 2006-10-19 Microsoft Corporation Secure network commercial transactions
US8996423B2 (en) 2005-04-19 2015-03-31 Microsoft Corporation Authentication for a commercial transaction using a mobile module
US7849020B2 (en) 2005-04-19 2010-12-07 Microsoft Corporation Method and apparatus for network transactions
EP1752937A1 (en) 2005-07-29 2007-02-14 Research In Motion Limited System and method for encrypted smart card PIN entry
US20070125838A1 (en) 2005-12-06 2007-06-07 Law Eric C W Electronic wallet management
US8352323B2 (en) 2007-11-30 2013-01-08 Blaze Mobile, Inc. Conducting an online payment transaction using an NFC enabled mobile communication device
BRPI0710021A2 (en) 2006-03-30 2011-08-02 Obopay Inc mobile individualized payment system
EP1843277A1 (en) 2006-04-04 2007-10-10 Axalto SA USB chip card
US20070256124A1 (en) 2006-04-13 2007-11-01 Go Play Network, Inc. Collectible token data management
CN101438291B (en) 2006-04-24 2012-11-21 Cypak股份公司 Device and method for identification and authentication
US20110208659A1 (en) 2006-08-15 2011-08-25 Last Mile Technologies, Llc Method and apparatus for making secure transactions using an internet accessible device and application
US7886156B2 (en) 2006-09-18 2011-02-08 John Franco Franchi Secure universal transaction system
US7761380B2 (en) 2006-09-28 2010-07-20 Verifi, Inc. System and method for authenticating a payment instrument transaction originating from a non-internet channel
US20080133350A1 (en) 2006-10-24 2008-06-05 Brigette White Method and apparatus for reward redemption at the point of interaction
US20080103923A1 (en) 2006-10-31 2008-05-01 Digital River, Inc. Centralized Payment Gateway System and Method
US7848980B2 (en) 2006-12-26 2010-12-07 Visa U.S.A. Inc. Mobile payment system and method using alias
CN101647040A (en) 2006-12-26 2010-02-10 维萨美国股份有限公司 Mobile payment system and method using alias
CN107423964A (en) 2007-01-17 2017-12-01 阿里巴巴集团控股有限公司 A kind of online payment method, apparatus and system
US8151345B1 (en) 2007-01-25 2012-04-03 Yeager C Douglas Self-authorizing devices
US7647404B2 (en) 2007-01-31 2010-01-12 Edge Technologies, Inc. Method of authentication processing during a single sign on transaction via a content transform proxy service
CN101071490A (en) 2007-03-23 2007-11-14 田小平 Member name and bank card binding electronic business system and method
FR2914800B1 (en) 2007-04-04 2010-09-17 Jacek Kowalski NFC MODULE, IN PARTICULAR FOR MOBILE TELEPHONE
US7841523B2 (en) 2007-05-17 2010-11-30 Shift4 Corporation Secure payment card transactions
US8935762B2 (en) 2007-06-26 2015-01-13 G3-Vision Limited Authentication system and method
CN101755291B (en) 2007-07-24 2012-05-30 Nxp股份有限公司 Method, system and trusted service manager for securely transmitting an application to a mobile phone
US8788835B2 (en) 2007-08-28 2014-07-22 Alcatel Lucent Methods for selectively capturing and replicating one-time password generator functionality from device to device
US20090063312A1 (en) 2007-08-28 2009-03-05 Hurst Douglas J Method and System for Processing Secure Wireless Payment Transactions and for Providing a Virtual Terminal for Merchant Processing of Such Transactions
EP2048594A1 (en) 2007-10-09 2009-04-15 Vodafone Holding GmbH Method for communication, communication device and secure processor
US8565723B2 (en) 2007-10-17 2013-10-22 First Data Corporation Onetime passwords for mobile wallets
US9177313B1 (en) 2007-10-18 2015-11-03 Jpmorgan Chase Bank, N.A. System and method for issuing, circulating and trading financial instruments with smart features
JP2009105558A (en) 2007-10-22 2009-05-14 Sony Corp Signal processing device, control method of signal processing device, digital broadcast receiving device, and control method of digital broadcast receiving device
US8549279B1 (en) 2007-10-23 2013-10-01 United Parcel Service Of America, Inc. Encryption and tokenization architectures
US20090240620A1 (en) 2008-03-24 2009-09-24 Propay Usa, Inc. Secure payment system
US20090281904A1 (en) 2008-04-02 2009-11-12 Pharris Dennis J Mobile telephone transaction systems and methods
WO2009134782A2 (en) 2008-04-29 2009-11-05 Visa U.S.A. Inc. Portable device including alterable indicator
US8651374B2 (en) 2008-06-02 2014-02-18 Sears Brands, L.L.C. System and method for payment card industry enterprise account number elimination
US20090307140A1 (en) 2008-06-06 2009-12-10 Upendra Mardikar Mobile device over-the-air (ota) registration and point-of-sale (pos) payment
US8494958B2 (en) 2008-06-25 2013-07-23 Softerware Inc. Method and system to process payment using URL shortening and/or QR codes
US8069121B2 (en) 2008-08-04 2011-11-29 ProPay Inc. End-to-end secure payment processes
EP2335159A2 (en) 2008-08-08 2011-06-22 Twinlinx Corporation Wireless device having a transparent mode of operation
CA2740206C (en) 2008-08-18 2016-11-29 Cashedge, Inc. Money movement network hub system
US20100063893A1 (en) 2008-09-11 2010-03-11 Palm, Inc. Method of and system for secure on-line purchases
US20100094755A1 (en) 2008-10-09 2010-04-15 Nelnet Business Solutions, Inc. Providing payment data tokens for online transactions utilizing hosted inline frames
US8838503B2 (en) 2008-12-08 2014-09-16 Ebay Inc. Unified identity verification
US20100148928A1 (en) 2008-12-15 2010-06-17 Mobile Payment Skins Llc Payment skin with contactless chip
US20120271705A1 (en) 2009-01-14 2012-10-25 Richard Postrel Method and system for simultaneous awarding and redeeming of reward points at the point of sale
US9721238B2 (en) 2009-02-13 2017-08-01 Visa U.S.A. Inc. Point of interaction loyalty currency redemption in a transaction
US8584251B2 (en) 2009-04-07 2013-11-12 Princeton Payment Solutions Token-based payment processing system
US9715681B2 (en) 2009-04-28 2017-07-25 Visa International Service Association Verification of portable consumer devices
WO2010126509A2 (en) 2009-04-30 2010-11-04 Donald Michael Cardina Systems and methods for randomized mobile payment
AU2010246902A1 (en) 2009-05-11 2012-01-12 Emue Holdings Pty Ltd User authentication device and method
US8534564B2 (en) 2009-05-15 2013-09-17 Ayman Hammad Integration of verification tokens with mobile communication devices
US20100306076A1 (en) 2009-05-29 2010-12-02 Ebay Inc. Trusted Integrity Manager (TIM)
US8560449B1 (en) 2009-07-30 2013-10-15 Red Giant Inc. Adaptive transaction rules system
US8468580B1 (en) 2009-08-20 2013-06-18 Apple Inc. Secure communication between trusted parties
EP2497057A1 (en) 2009-11-06 2012-09-12 Emue Holdings Pty Ltd A method and a system for validating identifiers
US20110137740A1 (en) 2009-12-04 2011-06-09 Ashmit Bhattacharya Processing value-ascertainable items
US8788429B2 (en) 2009-12-30 2014-07-22 First Data Corporation Secure transaction management
US20110166992A1 (en) 2010-01-06 2011-07-07 Firethorn Holdings, Llc System and method for creating and managing a stored value account associated with a client unique identifier
US11354649B2 (en) 2010-01-08 2022-06-07 Blackhawk Network, Inc. Method and system for reloading prepaid card
US9336519B2 (en) * 2010-03-08 2016-05-10 Qualcom Incorporated System and method for determining appropriate redemption presentations for a virtual token associated with a stored value account
WO2011112394A2 (en) 2010-03-09 2011-09-15 Visa International Service Association System and method including dynamic verification value
PL390674A1 (en) 2010-03-10 2011-09-12 Telecash Spółka Z Ograniczoną Odpowiedzialnością Method for realization of the payment transaction using a personal mobile device and personal mobile device system
US10304051B2 (en) 2010-04-09 2019-05-28 Paypal, Inc. NFC mobile wallet processing systems and methods
US10445723B2 (en) 2010-04-09 2019-10-15 Paypal, Inc. NFC-transaction processing systems and methods
US9400978B2 (en) 2010-04-09 2016-07-26 Paypal, Inc. Methods and systems for selecting accounts and offers in payment transactions
US8380177B2 (en) 2010-04-09 2013-02-19 Paydiant, Inc. Mobile phone payment processing methods and systems
US20120030047A1 (en) * 2010-06-04 2012-02-02 Jacob Fuentes Payment tokenization apparatuses, methods and systems
US8442913B2 (en) 2010-06-29 2013-05-14 Visa International Service Association Evolving payment device
US8655787B1 (en) 2010-06-29 2014-02-18 Emc Corporation Automated detection of defined input values and transformation to tokens
US20120005038A1 (en) 2010-07-02 2012-01-05 Saurabh Soman System And Method For PCI-Compliant Transactions
JP2013535903A (en) 2010-07-23 2013-09-12 エミュー ホールディングス ピーティワイ リミテッド Encryption apparatus and method
US20120028609A1 (en) 2010-07-27 2012-02-02 John Hruska Secure financial transaction system using a registered mobile device
US20120036042A1 (en) 2010-08-05 2012-02-09 Roam Data Inc System and method for checkout and customer data capture in commerce applications
CA2823685C (en) 2010-08-12 2017-03-07 Mastercard International, Inc. Multi-commerce channel wallet for authenticated transactions
US9342832B2 (en) 2010-08-12 2016-05-17 Visa International Service Association Securing external systems with account token substitution
WO2012027385A1 (en) 2010-08-23 2012-03-01 Princeton Payment Solutions Tokenized payment processing schemes
WO2012027708A2 (en) 2010-08-27 2012-03-01 Wherepro, Llc Operation of a computing device involving wireless tokens
US9558481B2 (en) 2010-09-28 2017-01-31 Barclays Bank Plc Secure account provisioning
US10929832B2 (en) 2011-09-06 2021-02-23 Barclays Execution Services Limited Method and system for electronic wallet access
US20120084210A1 (en) 2010-09-30 2012-04-05 Arvin Farahmand Mobile device payment system
US20120267432A1 (en) 2010-11-12 2012-10-25 Kuttuva Avinash Secure payments with global mobile virtual wallet
WO2012073014A1 (en) 2010-11-29 2012-06-07 Mobay Technologies Limited A system for verifying electronic transactions
US8941465B2 (en) 2010-12-02 2015-01-27 Viscount Security Systems Inc. System and method for secure entry using door tokens
EP2649745A4 (en) 2010-12-10 2014-05-07 Electronic Payment Exchange Tokenized contactless payments for mobile devices
US20120150553A1 (en) 2010-12-13 2012-06-14 Devin Wade Systems for facilitating creation and management of item lists with unique identification codes for items and associating the lists to sponsor's payment financial transaction card programs
US8352749B2 (en) 2010-12-17 2013-01-08 Google Inc. Local trusted services manager for a contactless smart card
US20130218657A1 (en) 2011-01-11 2013-08-22 Diane Salmon Universal value exchange apparatuses, methods and systems
US8686802B1 (en) 2011-01-16 2014-04-01 Micrel, Incorporated Bias voltage tuning of MEMS resonator operation point
US20120197797A1 (en) 2011-01-31 2012-08-02 Bank Of America Corporation Pending atm transactions
US20120209657A1 (en) 2011-02-14 2012-08-16 Aladdin Connolly Location triggered service response
SG193481A1 (en) 2011-02-16 2013-10-30 Visa Int Service Ass Snap mobile payment apparatuses, methods and systems
US20120239560A1 (en) 2011-03-04 2012-09-20 Pourfallah Stacy S Healthcare payment collection portal apparatuses, methods and systems
US20130179352A1 (en) 2011-03-12 2013-07-11 Mocapay, Inc. Secure wireless transactions when a wireless network is unavailable
MX2013011505A (en) 2011-04-07 2014-04-07 Fotec Group Llc Broker-mediated payment systems and methods.
WO2012142045A2 (en) 2011-04-11 2012-10-18 Visa International Service Association Multiple tokenization for authentication
US20130110658A1 (en) 2011-05-05 2013-05-02 Transaction Network Services, Inc. Systems and methods for enabling mobile payments
US10949844B2 (en) * 2011-05-09 2021-03-16 Intuit Inc. Processing electronic payment involving mobile communication device
US20120296725A1 (en) 2011-05-17 2012-11-22 Dessert Robert L System and method for managing transactions with a portable computing device
KR20140038473A (en) 2011-05-31 2014-03-28 블랙호크 네트워크, 아이엔씨. A system for payment via electronic wallet
US10318932B2 (en) 2011-06-07 2019-06-11 Entit Software Llc Payment card processing system with structure preserving encryption
WO2013101297A1 (en) 2011-06-07 2013-07-04 Visa International Service Association Payment privacy tokenization apparatuses, methods and systems
US20120317628A1 (en) 2011-06-09 2012-12-13 Yeager C Douglas Systems and methods for authorizing a transaction
US10055740B2 (en) 2011-06-27 2018-08-21 Amazon Technologies, Inc. Payment selection and authorization
EP2724523A4 (en) 2011-06-27 2014-12-03 Amazon Tech Inc Payment selection and authorization by a mobile device
US20130006860A1 (en) 2011-06-30 2013-01-03 Ebay Inc. Anticipatory payment authorization
SG10201706477YA (en) * 2011-07-15 2017-09-28 Mastercard International Inc Methods and systems for payments assurance
AU2012284047B2 (en) 2011-07-18 2016-10-06 Visa International Service Association Mobile device with secure element
US8676419B2 (en) 2011-07-28 2014-03-18 Ford Global Technologies, Llc Time-based vehicle battery balancing system and method
WO2013019567A2 (en) 2011-07-29 2013-02-07 Visa International Service Association Passing payment tokens through an hop/sop
WO2013022988A2 (en) 2011-08-08 2013-02-14 Visa International Service Association Payment device with integrated chip
US9275387B1 (en) 2011-08-16 2016-03-01 Jpmogan Chase Bank, N.A. Systems and methods for processing transactions using a wallet
WO2013028910A2 (en) 2011-08-23 2013-02-28 Visa International Service Association Mobile funding method and system
CA2846462C (en) 2011-08-30 2018-09-11 C. Douglas Yeager Systems and methods for authorizing a transaction with an unexpected cryptogram
US20130060708A1 (en) 2011-09-06 2013-03-07 Rawllin International Inc. User verification for electronic money transfers
GB201117293D0 (en) 2011-10-07 2011-11-16 Mgt Plc Secure payment system
WO2013055933A2 (en) 2011-10-12 2013-04-18 Boost Payment Solutions, LLC Electronic payment processing
BR112014008941A2 (en) 2011-10-12 2017-05-02 C-Sam Inc platform that enables secure multilayer mobile transactions
US9183490B2 (en) 2011-10-17 2015-11-10 Capital One Financial Corporation System and method for providing contactless payment with a near field communications attachment
US20130110675A1 (en) 2011-10-31 2013-05-02 Microsoft Corporation Marketplace for Composite Application and Data Solutions
EP2587432A1 (en) 2011-10-31 2013-05-01 NCR Corporation Self-service terminal transactions
US8682802B1 (en) 2011-11-09 2014-03-25 Amazon Technologies, Inc. Mobile payments using payment tokens
FR2982727B1 (en) 2011-11-14 2014-01-10 Jacek Kowalski AUXILIARY PORTABLE DEVICE, IN PARTICULAR FOR MOBILE TELEPHONE
US8818867B2 (en) 2011-11-14 2014-08-26 At&T Intellectual Property I, L.P. Security token for mobile near field communication transactions
US9792593B2 (en) 2011-11-23 2017-10-17 The Toronto-Dominion Bank System and method for processing an online transaction request
US20130138521A1 (en) 2011-11-30 2013-05-30 Google Inc. Contactless Payment System Providing Supplemental Content Associated with the Transaction
GB2497309A (en) 2011-12-06 2013-06-12 Barclays Bank Plc Mobile wallet system for offline payments
US9721282B2 (en) 2011-12-07 2017-08-01 Amazon Technologies, Inc. Merchant verification of in-person electronic transactions
US20130254117A1 (en) 2011-12-30 2013-09-26 Clay W. von Mueller Secured transaction system and method
SG193041A1 (en) 2012-02-21 2013-09-30 Global Blue Holdings Ab Transaction processing system and method
US20130268687A1 (en) 2012-04-09 2013-10-10 Mcafee, Inc. Wireless token device
US20130339188A1 (en) 2012-06-18 2013-12-19 Ebay Inc. Gift token
CA2819936C (en) 2012-06-27 2020-12-29 Moneris Solutions Corporation Secure payment system
US20140006280A1 (en) 2012-06-29 2014-01-02 Ebay, Inc. Payment authorization system
US8639619B1 (en) 2012-07-13 2014-01-28 Scvngr, Inc. Secure payment method and system
US9043609B2 (en) 2012-07-19 2015-05-26 Bank Of America Corporation Implementing security measures for authorized tokens used in mobile transactions
US20140025581A1 (en) 2012-07-19 2014-01-23 Bank Of America Corporation Mobile transactions using authorized tokens
US9256871B2 (en) * 2012-07-26 2016-02-09 Visa U.S.A. Inc. Configurable payment tokens
KR101573848B1 (en) 2012-07-31 2015-12-02 주식회사 케이티 Method and system for providing payment service
US10152711B2 (en) 2012-07-31 2018-12-11 Worldpay, Llc Systems and methods for arbitraged enhanced payment processing
US11317279B2 (en) 2012-08-13 2022-04-26 Certus Technology Systems, Inc. Client, computing platform, and methods for conducting secure transactions
EP2701415A1 (en) 2012-08-24 2014-02-26 Raja Kuppuswamy Mobile electronic device and use thereof for electronic transactions
WO2014043278A1 (en) * 2012-09-11 2014-03-20 Visa International Service Association Cloud-based virtual wallet nfc apparatuses, methods and systems
US20140074701A1 (en) 2012-09-13 2014-03-13 Bank Of America Corporation Physical-virtual gifting via online billpay
US8732077B2 (en) 2012-09-14 2014-05-20 Bank Of America Corporation Notification of alternative payment channel
CN103679443A (en) 2012-09-18 2014-03-26 中国银联股份有限公司 Method of payment with handset terminals, and processing system thereof
GB2506591A (en) 2012-09-28 2014-04-09 Bell Identification Bv Method of providing secure services using a mobile device
US9380048B2 (en) 2012-10-15 2016-06-28 Saife, Inc. Certificate authority server protection
CA2830260C (en) 2012-10-17 2021-10-12 Royal Bank Of Canada Virtualization and secure processing of data
US11080701B2 (en) 2015-07-02 2021-08-03 Royal Bank Of Canada Secure processing of electronic payments
US11210648B2 (en) 2012-10-17 2021-12-28 Royal Bank Of Canada Systems, methods, and devices for secure generation and processing of data sets representing pre-funded payments
US20160019536A1 (en) 2012-10-17 2016-01-21 Royal Bank Of Canada Secure processing of data
US11080700B2 (en) 2015-01-19 2021-08-03 Royal Bank Of Canada Secure processing of electronic payments
US11222329B2 (en) 2012-11-05 2022-01-11 Mastercard International Incorporated Electronic wallet apparatus, method, and computer program product
US20140164243A1 (en) 2012-12-07 2014-06-12 Christian Aabye Dynamic Account Identifier With Return Real Account Identifier
US20140278894A1 (en) 2013-03-15 2014-09-18 Universal Loyalty, Inc. Universal loyalty rewards and currency consolidation
AU2014265291B2 (en) 2013-05-15 2019-05-16 Visa International Service Association Mobile tokenization hub
US20150032626A1 (en) 2013-07-24 2015-01-29 Matthew Dill Systems and methods for interoperable network token processing
KR102552606B1 (en) 2013-08-15 2023-07-06 비자 인터네셔널 서비스 어소시에이션 Secure remote payment transaction processing using a secure element
WO2015025282A2 (en) 2013-08-21 2015-02-26 Visa International Service Association Methods and systems for transferring electronic money
US20150058191A1 (en) 2013-08-26 2015-02-26 Apple Inc. Secure provisioning of credentials on an electronic device
US9836727B1 (en) 2013-08-30 2017-12-05 Capital One Financial Corporation Systems and methods for point of sale deposits
US10515370B2 (en) 2013-10-09 2019-12-24 The Toronto-Dominion Bank Systems and methods for providing tokenized transaction accounts
US10515358B2 (en) * 2013-10-18 2019-12-24 Visa International Service Association Contextual transaction token methods and systems
US10489779B2 (en) * 2013-10-21 2019-11-26 Visa International Service Association Multi-network token bin routing with defined verification parameters
US9836739B1 (en) 2013-10-22 2017-12-05 Square, Inc. Changing a financial account after initiating a payment using a proxy card
US10366387B2 (en) 2013-10-29 2019-07-30 Visa International Service Association Digital wallet system and method
US9922318B2 (en) 2014-01-27 2018-03-20 Capital One Services, Llc Systems and methods for providing transaction tokens for mobile devices
US20150254635A1 (en) 2014-03-04 2015-09-10 Bank Of America Corporation Limiting the use of a token based on a user location
US9406065B2 (en) 2014-03-04 2016-08-02 Bank Of America Corporation Customer token preferences interface
US9721248B2 (en) 2014-03-04 2017-08-01 Bank Of America Corporation ATM token cash withdrawal
CA2884611C (en) 2014-03-12 2024-04-16 Scott Lawson Hambleton System and method for authorizing a debit transaction without user authentication
US10296888B2 (en) 2014-05-16 2019-05-21 Capital One Services, Llc Multi-account card
US9424574B2 (en) 2014-05-16 2016-08-23 Bank Of America Corporation Tokenization of user accounts for direct payment authorization channel
US20160071094A1 (en) 2014-09-05 2016-03-10 Ebay Inc. Systems and methods for implementing hybrid dynamic wallet tokens
US9269083B1 (en) 2014-09-30 2016-02-23 Wal-Mart Stores, Inc. Mobile device payment
CN107004190A (en) 2014-10-10 2017-08-01 加拿大皇家银行 System for handling electronic transaction
US20160189291A1 (en) 2014-12-30 2016-06-30 Ebay, Inc. Multi-lender servicing of a credit allowance
US11250391B2 (en) * 2015-01-30 2022-02-15 Visa International Service Association Token check offline
US10346848B2 (en) 2015-06-07 2019-07-09 Apple Inc. Provisioning multiple secure credentials on an electronic device
US10510057B2 (en) 2015-06-17 2019-12-17 Scvngr, Inc. Token-based gift cards
US20170161733A1 (en) 2015-12-02 2017-06-08 Mastercard International Incorporated Method and system for validation of a token requestor
US10521780B1 (en) 2015-12-16 2019-12-31 United Services Automobile Association (Usaa) Blockchain based transaction management
KR20170109433A (en) 2016-03-21 2017-09-29 삼성전자주식회사 Device for performing security transaction and method thereof
US20170323283A1 (en) 2016-05-03 2017-11-09 Paypal, Inc. System and method for splitting a card data structure
KR20180055209A (en) 2016-11-16 2018-05-25 삼성전자주식회사 Method and electronic device for payment using agent device
US11341488B2 (en) 2017-02-06 2022-05-24 Northern Trust Corporation Systems and methods for issuing and tracking digital tokens within distributed network nodes
US10679208B2 (en) 2017-11-20 2020-06-09 Paypal, Inc. Local digital token transfer during limited or no device communication
KR102587472B1 (en) 2017-11-30 2023-10-11 삼성전자주식회사 Electronic apparatus for controlling electronic payment, and method the same

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20240054473A1 (en) * 2022-08-15 2024-02-15 Mastercard International Incorporated Methods and systems for extending installment options

Also Published As

Publication number Publication date
US20170330181A1 (en) 2017-11-16
US11599879B2 (en) 2023-03-07

Similar Documents

Publication Publication Date Title
US20230196355A1 (en) Processing of electronic transactions
US11687928B2 (en) Secure processing of electronic payments
US11562360B2 (en) Mobile device payments
US20220391883A1 (en) System and method for location-based token transaction processing
KR102619230B1 (en) Secure processing of electronic payments
US11080701B2 (en) Secure processing of electronic payments
US11699152B2 (en) Secure processing of electronic payments
US20180253727A1 (en) Secure funding of electronic payments
WO2018010009A1 (en) Processing of electronic transactions
CA2823321A1 (en) Mobile payment system and method
CA3007992A1 (en) System and method for location-based token transaction processing
CA3052074A1 (en) Secure funding of electronic payments
KR20180089136A (en) Electronic transation method and system using virtual payment information
CN112136302B (en) Mobile network operator authentication protocol

Legal Events

Date Code Title Description
AS Assignment

Owner name: ROYAL BANK OF CANADA, CANADA

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNOR:ORTIZ, EDISON U.;REEL/FRAME:062676/0275

Effective date: 20190108

STPP Information on status: patent application and granting procedure in general

Free format text: DOCKETED NEW CASE - READY FOR EXAMINATION