WO2014130222A1 - Transaction token issuing authorities - Google Patents

Transaction token issuing authorities Download PDF

Info

Publication number
WO2014130222A1
WO2014130222A1 PCT/US2014/013955 US2014013955W WO2014130222A1 WO 2014130222 A1 WO2014130222 A1 WO 2014130222A1 US 2014013955 W US2014013955 W US 2014013955W WO 2014130222 A1 WO2014130222 A1 WO 2014130222A1
Authority
WO
WIPO (PCT)
Prior art keywords
transaction
token
party
information
issuer
Prior art date
Application number
PCT/US2014/013955
Other languages
English (en)
French (fr)
Inventor
Kevin Laracey
Original Assignee
Paydiant, Inc.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority to RU2015136777A priority Critical patent/RU2015136777A/ru
Priority to CN201480006517.XA priority patent/CN105164708A/zh
Priority to CN202210231616.4A priority patent/CN114648335A/zh
Priority to CA2898205A priority patent/CA2898205C/en
Priority to JP2015555448A priority patent/JP2016510468A/ja
Priority to AU2014219386A priority patent/AU2014219386B2/en
Application filed by Paydiant, Inc. filed Critical Paydiant, Inc.
Priority to EP14753967.0A priority patent/EP2951762A4/en
Priority to KR1020157020648A priority patent/KR20150132098A/ko
Priority to MX2015009820A priority patent/MX2015009820A/es
Priority to BR112016016822A priority patent/BR112016016822A2/pt
Publication of WO2014130222A1 publication Critical patent/WO2014130222A1/en
Priority to AU2017204113A priority patent/AU2017204113B2/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/12Payment architectures specially adapted for electronic shopping systems
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/322Aspects of commerce using mobile devices [M-devices]
    • G06Q20/3223Realising banking transactions through M-devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/36Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/385Payment protocols; Details thereof using an alias or single-use codes

Definitions

  • a "token" (such as a checkout token, or ATM token) may be captured or communicated to the mobile device.
  • the token is used by a transaction management system to facilitate completion of the transaction between the user of the mobile device and the transaction location.
  • the transaction management system may use information associated with the token to identify the merchant (or the consumer) associated with the transaction location and to identify pending transaction information associated with the transaction location.
  • a token is used to link two entities that wish to engage in a transaction.
  • the system described can be used to replace the use of a magnetic stripe card and reader, which in the case of purchase transactions is used to link together, for example, a purchase transaction that is pending in a checkout lane at a store with the payment credentials of a consumer who wishes to pay the merchant for the goods associated with the pending transaction.
  • the transaction could be a purchase transaction, an ATM transaction, a money transfer transaction, or an authentication transaction, a check in process, or any other transaction where information needs to be exchanged between two entities.
  • it is a merchant and a buyer, in others it is two people, and in others it could be a person wanting to make their presence known to a retailer so that a gas pump can be automatically turned on, or so that a bartender at a bar can know to automatically prepare their favorite drink.
  • a device involved in a transaction may easily identify the appropriate transaction management system as well as the correct path or communication channel to use to communicate with the appropriate transaction management system for each transaction. For example, in transactions in which a mobile device captures a token associated with a point of transaction, the mobile device may perform processing to identify the appropriate transaction management system for use in the transaction based on information received from the token. As another example, in transactions in which a transaction terminal captures a checkout token from a mobile device, the transaction terminal may perform processing to identify the appropriate transaction management system for use in the transaction based on information received from the token.
  • FIG. 1 is a block diagram depicting portions of a system configured pursuant to some embodiments.
  • FIG. 2 is a block diagram depicting portions of the system of FIG. 1 configured pursuant to some embodiments.
  • FIG. 3 is a block diagram depicting portions of a system configured pursuant to some embodiments.
  • FIG. 4 is a flow diagram depicting a process pursuant to some embodiments.
  • FIG. 5 is a block diagram depicting portions of a system configured pursuant to some embodiments.
  • FIG. 6 is a block diagram depicting portions of a system configured pursuant to some embodiments.
  • Embodiments of the present invention relate to systems, methods, processes, computer program code, and means for conducting transactions. More particularly, some embodiments relate to systems, methods, processes, computer program code and means for operating a mobile device to conduct transactions with merchants, services providers and other devices (such as automated teller machines or "ATMs"). Pursuant to some embodiments, systems, methods, processes, computer program code and means for operating a mobile device to conduct a transaction includes determining a transaction token issuing authority associated with a merchant or point of transaction such that the mobile device may communicate with the appropriate entity (or entities) to conduct a transaction. In general, embodiments may be deployed in conjunction with a system such as that described by the inventors in their co-pending and commonly assigned
  • mobile devices may be used to conduct transactions by scanning, capturing, or otherwise entering a code associated with a transaction.
  • a mobile device is used to conduct a transaction at a merchant location or point of interaction (or, in some embodiments, at an automated teller machine, a kiosk, or the like).
  • multiple transaction management systems may be associated with or used in a payment system of the present invention. For example, a first merchant may utilize the services of a first transaction management system to process transactions, while a second merchant may utilize the services of a second transaction management system to process transactions.
  • a consumer who carries a mobile payment device with a mobile payment application according to the present invention need not necessarily know which transaction management system each merchant uses.
  • the mobile payment application on the mobile device must know which transaction management system to communicate with during transactions associated with the present invention.
  • Embodiments described herein provide techniques for allowing the mobile payment application on a mobile device to determine which transaction management system to communicate with in order to conduct a payment transaction. Further, embodiments may also be used in situations where the merchant systems need to determine, based on information received from a mobile device, the appropriate transaction management system to communicate with. The result is a system which allows multiple transaction management systems to be involved in a payment system. Further, there may be multiple layers or sets of systems or entities that perform aspects of a transaction management system, each of which may refer to other systems or entities as described further herein.
  • the functions of a transaction management system may be performed by multiple entities or systems.
  • one or more wallet issuers may perform functions such as user authentication and basic transaction management functions.
  • One or more token issuing authorities may perform functions such as merchant authentication and basic transaction management functions.
  • the mobile device when a consumer operates a mobile device to conduct a transaction with a merchant, the mobile device (and/or the mobile device operating in conjunction with a wallet issuer) must determine which token issuing authority issued a token on behalf of the merchant so that the transaction can be conducted between the consumer (operating the mobile device) and the merchant.
  • Embodiments allow such transactions to be conducted.
  • FIG. 1 where multiple transaction management systems may be involved in
  • FIG. 2 Further transaction details will be provided in FIG. 2 (where multiple transaction management systems may be involved).
  • FIG. 3 transaction details are described where some of the functions of a transaction management system are performed by one or more token issuing authorities and one or more wallet issuers.
  • FIG. 4 a wallet registration process is described (which may be performed between a user who wishes to configure a mobile payment application on a mobile device and a transaction management system or a wallet issuer).
  • FIG. 5 further details of a transaction process are described for situations where one or more wallet issuers and one or more token issuing authorities are involved in a transaction. A number of terms are used herein for convenience and ease of exposition.
  • a "point of transaction” will be used to generally refer to an entity, device or other object with which a user operating a mobile device wishes to transact.
  • a "point of transaction” may be a point of sale terminal at a merchant, a merchant website, an ATM, a kiosk, another individual, an item with an identifier such as a QR code printed on it, or an item or object containing a wireless device or beacon such as a Bluetooth beacon, NFC chip, audio device, or other device that can be used to initiate a transaction when working in conjunction with another device, or the like.
  • a "point of transaction” may also be referred to simply as a "merchant”.
  • the term “token” will be used to refer to an identifier or information that is exchanged between devices involved in a transaction.
  • a token may be provided by a merchant point of transaction to a mobile device during or associated with a transaction involving the merchant and the mobile device.
  • a token may be provided by an ATM to a mobile device during or associated with a transaction involving the ATM and the mobile device.
  • a token may be provided by a customer to a point of interaction to initiate a transaction.
  • a token may be provided in a number of different forms as will be described further herein.
  • a token may be issued for use in a transaction in a number of different ways. For example, as will be described further herein, a token may be issued, generated or otherwise provided by a transaction management system or a "token issuing authority".
  • capture will be used to refer to the act of scanning, reading or other obtaining of a "token” (an identifier used to facilitate transactions pursuant to some embodiments).
  • the term “capturing” (or “captured”) is not intended to be limiting, and is intended to encompass embodiments where a mobile device is operated to receive a token (or data associated with a token) via key entry, via image capture, via RFID reading, BLE/Bluetooth, NFC, and using other scanning, reading, or other wired or wireless techniques described herein.
  • the term “capture” further includes any decoding or image processing of a token required to retrieve or otherwise obtain information from the token.
  • the term “wireless” is used to refer to unwired remote communication techniques, such as, for example, using radio frequency or other electromagnetic radiation based communication techniques (including RFID, wifi, Bluetooth/BLE, zigbee or other techniques).
  • RFID electromagnetic radiation based communication techniques
  • Bluetooth/BLE Bluetooth/BLE
  • zigbee zigbee or other techniques.
  • the term “transaction management system” refers to a system operated by an entity to facilitate transactions involving mobile devices and merchants, ATMs, or other devices. In general, a transaction management system may be a transaction management system such as described in U.S. Patent Nos. 8,632,000 and
  • a transaction management system may be a system which matches pending transaction information received from one device (such as a point of transaction, a mobile device, or an item) associated with a first party with information received from another device (such as a mobile device, a point of transaction, or the like) associated with a second party.
  • the transaction management system performs the matching using, at least in part, a token (such as a checkout token or ATM token).
  • a token such as a checkout token or ATM token
  • the transaction management system may perform other functions. For example, a transaction management system may perform user and mobile device authentication processing. A transaction management system may also be used to issue tokens for use in conducting transactions. As used herein, a "transaction management system" may also be used to detect the presence of a user or device at a given venue and take actions on their behalf. For example, upon a user's device determining via a Bluetooth beacon capability that broadcasts a token and which is located near a particular retailer (where the token may be used to determine the user's location on its own or in conjunction with geolocation capabilities on the user's device), ATM or other point of interaction, the transaction management system may check the user associated with a given device in with one or more points of interaction at that location.
  • Checking in means that the point of interaction system receives some profile information about the user, such as their name, nickname, picture, loyalty program number, preferences for goods and services that they frequently purchase.
  • the check-in process can result in the point of interaction or personnel at the point of interaction executing transactions on behalf of the user, such as automatically performing a pre-authorization on a payment instrument for a
  • a gas station pump point of interaction
  • a bartender to automatically begin preparing a particular drink or have kitchen staff begin preparing the user's favorite meal.
  • a transaction management system may perform functions such as authentication of a user and a mobile device as well as certain transaction processing functions.
  • a "token issuing authority” or “token issuer” is used to refer to an entity, system or device that may perform functions such as authentication and communication with a merchant, ATM or other point of interaction as well as certain transaction processing functions.
  • the term "directory service” may be used to refer to a service performed by or on behalf of any of a transaction management system, a token issuing authority, and a wallet issuer (or other entity).
  • a "directory service” may provide a service to allow a lookup or mapping function to be performed (e.g., based on a token) to determine which entity or entities a device (such as a mobile device or a merchant) should communicate with to perform transaction processing as described herein. Details of such functions will be provided further below.
  • FIG. 1 is a block diagram of a system 100 pursuant to some embodiments. More particularly, FIG. 1 is a block diagram of a system where multiple transaction management systems 130a-n are used. Each transaction management system 130 may perform functions as described herein, or other functions that allow a mobile payment application transaction to be processed in situations where different transaction systems are involved.
  • a payment account holder, buyer, or other user or operator may have or use a mobile device 102 (such as a mobile telephone or the like).
  • the mobile device 102 has a display screen 136 and a data entry device 138 (such as a keypad or touch screen).
  • the customer may use the mobile device 102 to conduct a transaction with a merchant 108 (such as a payment, loyalty, return, or other transaction).
  • the merchant 108 may be a physical storefront, electronic commerce merchant, or mail order and telephone (“MOTO”) merchant (or another person or entity, or any other object capable of working in conjunction with the customer and/or the customer's device to initiate a transaction). Further, the merchant 108 need not be a "merchant”, but may also be another individual (in the case of person to person transactions), or a kiosk or other unattended device (such as an automated teller machine (“ATM”)) or the like. In a typical example transaction, a customer may purchase products or services from the merchant 108 by first taking the products or services to a point of sale (e.g., such as a physical checkout counter, an electronic shopping cart, or the like, generally referred to herein as the "point of sale” or "POS").
  • POS point of sale
  • the merchant 108 begins the checkout transaction as normal, by totaling the items to be purchased (e.g., by using a bar code scanner, key entry of product codes, or the like).
  • the merchant (acting through a clerk, a display screen, a POS terminal facing the customer, or the like) then prompts the customer to select a payment option.
  • the merchant might prompt the customer to select "credit", "debit” or another payment option.
  • the merchant (acting through a clerk, display screen, a POS terminal facing the customer, or the like) may prompt the customer for those options as well as a mobile payment option. If the customer selects the mobile payment option, features of the present invention are utilized to process the transaction.
  • the choice may be made by the customer's act of scanning, capturing or entering a checkout identifier or "token" (as discussed below).
  • the action of capturing the token used in the present invention will cause the transaction to proceed pursuant to the present invention.
  • the merchant 108 transmits a merchant payment authorization request message to a transaction management system 130 (via path 116).
  • the merchant payment authorization request message may include one or more pieces of data or information about the transaction.
  • the message may include one or more of a merchant identifier, the amount due, and a token which, as will be described further herein, is used to identify the merchant and the transaction for further processing.
  • a number of techniques may be used to generate or present the token.
  • one or more tokens may be predefined or established for use with a given merchant 108 (e.g., the merchant 108 could have a number of checkout tokens available to display or present at the point of sale). In such embodiments, the merchant 108 would choose a token for use with a given transaction.
  • the merchant payment authorization request message may include one or more pieces of data or information about the transaction.
  • the message may include one or more of a merchant identifier, the amount due, and a token which, as will be described further herein, is used to identify the merchant and the transaction for further
  • such tokens may be generated or provided using a standardized format.
  • a merchant 108 may be issued or provided with a range of tokens or a predefined series or sequencing of numbers.
  • a merchant may be instructed to use a range of numbers (e.g., from "00000" to "99999") as well as a sequencing or usage pattern (e.g., a specific checkout token may only be used in conjunction with a single active transaction).
  • the POS system would pass a selected token to the transaction management system 130.
  • the tokens are issued or selected by the transaction management system 130 and are provided to the merchant 108 in response to a merchant authorization request message (as will be described further below).
  • a token may be issued by a "token issuing authority”.
  • the token is dynamically generated for each transaction.
  • the token is a static identifier associated with an individual checkout location (e.g., such as a specific point of sale terminal or location, a specific ATM machine or other device, or with a small business person such as a plumber or electrician who has no specific checkout location, or with an individual).
  • the merchant 108 causes the token to be displayed or presented to the customer.
  • the token may be displayed on a display device associated with the merchant, or pre-printed on a placard or other display near the point of sale.
  • the payment process of the present invention may begin with the customer performing an authentication process to confirm their identity and authority to conduct transactions using the present invention.
  • the authentication process may be performed after, or in some situations, prior to the customer's selection of the mobile payment option at the point of sale.
  • the authentication process serves to authenticate the customer to the transaction management system 130.
  • the authentication process may involve the customer launching a mobile payment application or a Web browser on the mobile device 102 and providing one or more credentials or items of information to the transaction management system 130 via communication path 114.
  • the authentication process may involve the entry of a user identifier, a password, or other credentials into a login screen or other user interface displayed on a display device 136 of the mobile device 102.
  • the transaction management system 130 compares the received information with stored information to authenticate the customer.
  • different transaction management systems 130a-n may be involved, and different mobile devices may interact with different transaction management systems 130a-n to perform this authentication process.
  • the function of performing authentication may be performed by an entity that issued the mobile payment application used by the consumer. Such an entity may be referred to herein as a "wallet issuer".
  • the authentication process also involves the comparison of one or more attributes of the mobile device 102 with a stored set of attributes collected from the mobile device 102 during a registration process (such as the process of FIG. 3).
  • the attributes may include identifiers associated with the mobile device 102 which uniquely identify the device.
  • the customer is authenticated two ways— with something they know (login credentials), and something they have (mobile device).
  • the system has access to a variety of attributes about the customer, including a list of payment accounts that the customer previously identified to the transaction management system 130 as part of the registration process.
  • the authentication process is performed between a mobile device 102 and a wallet issuer.
  • the customer is prompted to scan, capture (or otherwise enter) a token from a device associated with the merchant 108 (shown as interaction 112 between the mobile device 102 and the merchant 108).
  • the token is used, as will be described further herein, to link messages from the mobile device 102 and the merchant 108, and the transaction management system 130, so that transactions pursuant to the present invention may be accomplished.
  • the mobile device 102 transmits the token to the transaction management system 130 in a customer transaction lookup request message (over communication path 114).
  • the customer transaction lookup request message includes the token captured by the mobile device 102.
  • either a "static” token or a “dynamic” token may be used.
  • a "static” token e.g., such as one that is assigned for use by a specific point of transaction location and which does not include any variable information for each transaction
  • the transaction management system 130 matches the information in the customer transaction lookup request (received from the mobile device 102) with the information in the merchant payment authorization request (received from the merchant 108) by matching the token information received in each of the messages. Once a match is found, the transaction management system 130 transmits a transaction detail message (via path 114) to the customer's mobile device 102.
  • the information from the transaction detail message provides the customer with details about the transaction, including but not limited to the amount due, the name and location of the merchant (information contained in or derived from the merchant payment authorization request), and possibly one or more marketing messages.
  • the transaction management system 130 may also send to the phone a list of payment accounts the customer has registered with the system, including credit, debit, checking, prepaid and other types of accounts.
  • the list of accounts may include all of the accounts the customer registered with the system, or it may include a subset of accounts, based on rules established by the mobile payment network operator, the merchant, the issuer of each payment account, the customer, or another entity (e.g., the list of accounts sent to the mobile device may only include those accounts that may be used for the current transaction).
  • the list of accounts may include only a single account or a plurality of accounts. Further, the list of accounts do not include actual payment credentials - instead, the actual payment credentials are stored at (or accessible to) the transaction management system 130 (or, in some embodiments, the wallet issuer as will be described below). In this way, the mobile device 102 does not store sensitive payment account information.
  • the list of accounts may simply include identifiers (such as proxies) allowing the transaction management system 130 or wallet issuer to identify the actual payment credentials associated with each account of the customer. Now the customer can see on the display 136 of their mobile device 102 the name of the merchant they are about to pay, the amount to be paid, and a list of their payment accounts they can use to pay the merchant 108.
  • the merchant's token may be derived from a unique identifier in the merchant payment authorization request. For example, in cases where the merchant can't easily modify their system to pass the transaction management system 130 a static token, such a derivation may reduce or even eliminate the need for equipment upgrades and software changes that might otherwise be required by a merchant adopting a new payment method.
  • the token may be derived using a mapping table which maps a merchant identifier, a terminal identifier, or other information (passed by the merchant system to the transaction management system 130) to a token. Based on the received identifier, a mapping process may occur to identify the appropriate token for use in that payment transaction.
  • the selected token is associated with the transaction in a merchant transaction queue at the transaction management system 130 (or at the token issuing authority as described further below) where it is made available to be matched with transactions from a customer message queue at the transaction management system 130 (or at a wallet issuer as will be described further below).
  • the token is an identifier (consisting of a combination of letters, numbers, and/or symbols) used to link a merchant payment authorization request to a payment authorization request received from a customer operating a mobile device pursuant to the present invention.
  • checkout processing may proceed without a need for a customer transaction lookup request message to be transmitted to the transaction management system 130.
  • some or all of the transaction details may be encoded in a dynamic token which, when captured and processed by the mobile device 102, provides the transaction details to the mobile device 102. Further details of both “static” and “dynamic” token embodiments may be discussed further below or in the commonly assigned applications incorporated by reference herein. In either event, however, the token is used to match messages from the mobile device 102 with messages from the merchant 108 at the transaction management system 130 (or at a combination of a wallet issuer and a token issuing authority as described herein).
  • the customer then interacts with the mobile device 102 to select a desired payment account to use in the present transaction, and causes a customer payment authorization request message to be submitted (via path 114) to the transaction management system 130.
  • the transaction management system 130 transmits a payment authorization request message to the customer's mobile device, enabling the customer to have a final opportunity to confirm or cancel the payment transaction, although this step is optional.
  • the transaction management system 130 creates an authorization approval request message for transmission through one or more payment processing networks (not shown in FIG. 1) to cause the authorization, clearing and settlement of funds for the transaction.
  • This request message includes information from the merchant payment authorization request such as the amount of the transaction, or at least a pointer or reference to the relevant merchant payment authorization request (received from the merchant 108) and a payment account identifier identifying the payment account selected by the customer and previously stored in the transaction management system 130 (and identified by a proxy or other identifier received from the mobile device).
  • authorization approval processing is performed using standard financial authorization processing over one or more authorization networks (e.g., such as the VISANET® network operated by Visa, Inc., an Automated Clearing House system such as NACHA, or the like, referred to in FIGs. 2, 3 5, and 6 below simply as "payment processing").
  • the transaction management system sends the merchant payment authorization response message (via path 116) to the merchant so the transaction can be completed at the point of sale.
  • a customer payment authorization response message may also be displayed to the customer at the point of sale and/or transmitted to the customer's mobile device.
  • the merchant 108 is not provided with any actual payment credentials of the customer during the checkout process.
  • the mobile device 102 never stores, sends or receives actual payment credentials. Instead, the mobile device 102 stores or has access to a proxy associated with actual payment credentials, and the proxy is used to identify a desired payment account for use in a given transaction.
  • the proxy is transmitted to the transaction management system 130 (or, in some embodiments, to a wallet issuer) in a customer payment authorization request message and the transaction management system 130 (or, in some embodiments, to a wallet issuer) uses the proxy to lookup or identify the actual payment credentials associated with the selected account.
  • the actual payment credentials are then transmitted from the transaction management system 130 (or, in some embodiments, from a wallet issuer) to an account issuer or agent for authorization.
  • the mobile device 102 may be a smart phone or a Web enabled mobile device such as, for example, an iPhone®, an Android® phone, or any phone that can access and display Web content or access the Internet.
  • the mobile device 102 communicates with transaction management system 130 using a cellular or wireless network.
  • the transaction management system 130 is a secure server (or network of servers).
  • the transaction management system 130 (or, in some embodiments, a wallet issuer and/or token issuing authority) is in communication with one or more payment processing networks (not shown in FIG. 1, but shown in FIGs. 2, 3, 5 and 6 as "payment processing") such as the VISANET® network operated by Visa Inc., the BANKNET® network operated by MasterCard International, or the like.
  • the transaction management system 130 (or, in some embodiments, a wallet issuer and/or token issuing authority) may also be in communication with other financial transaction networks (such as ACH and EFT networks, private label networks, alternative payment systems such as PayPal®, or the like) to allow customers operating mobile devices 102 to conduct transactions using a wide variety of different forms of payment instruments and accounts.
  • the transaction management system 130 may further be in communication with one or more ad or offer management networks, such as those provided by Google®, Apple®, Yahoo®, Microsoft® or the like.
  • ad or offer management networks such as those provided by Google®, Apple®, Yahoo®, Microsoft® or the like.
  • advertisements and offers may be received from those networks and presented to customers via the mobile device 102.
  • other devices may obtain a token and/or initiate a transaction.
  • a customer operating a mobile device 102 may obtain a token for use in a transaction, and then provide that token to another participant in the transaction (such as a merchant, another customer operating another mobile device, or the like).
  • another participant in the transaction such as a merchant, another customer operating another mobile device, or the like.
  • a transaction (such as a payment, loyalty or other transaction) may be performed by a consumer operating a mobile device 102 to obtain a token from a transaction management system 130 and then presenting the token to a point of interaction (such as a merchant 108, another mobile device, or the like).
  • a point of interaction such as a merchant 108, another mobile device, or the like.
  • the mobile payment application may cause the token (or an encoded version of the token, such as in a QR code or the like) to be displayed on a display screen of the mobile device 102 for reading or capture by the point of interaction, transmitted to the point of interaction via a wireless communication link, or the like.
  • a process at a merchant 108 may proceed as follows (although other process flows may also be used with desirable results).
  • a clerk associated with the merchant 108 may scan items at a POS terminal and create an initial basket or set of items for purchase by a customer operating a mobile device 102 (although the scanning of items may occur after a token is generated and captured, in this illustrative embodiment, for convenience, the scanning of items is described as occurring first).
  • a consumer operating a mobile device 102 configured with a payment application pursuant to the present invention (and who has registered one or more payment accounts with the transaction management system 130 via a process such as that described below in conjunction with FIG. 4, for example) decides to use the mobile device 102 to conduct the payment transaction at the merchant 108, and interacts with the mobile device 102 to request a token for use in the transaction.
  • This request causes a message to be transmitted to a transaction management system 130.
  • the message may also include information authenticating the consumer as well as the consumer's mobile device (as described above), and the transaction management system 130 uses the data from the message to create a pending transaction record in the transaction queue as well as to generate a token for use in the transaction.
  • the transaction management system 130 causes a message to be transmitted to the mobile device 102 which includes data associated with the token for use in the transaction.
  • the mobile device 102 (under control of the payment application of the present invention) causes the token to be displayed on a display screen of the mobile device 102.
  • the token may be displayed or presented in the form of a QR code, a bar code, Bluetooth or RFID signal, or the like, and the consumer is prompted to present the token to the merchant clerk or the merchant POS system for capture.
  • the merchant system 108 upon capturing the token from the mobile device 102, associates the token with the pending transaction details (which may include the total transaction amount and other details of the items scanned) and transmits a process transaction request message to the transaction management system 130 which includes the token information as well as information about the transaction (which may include the transaction amount, among other information).
  • the message may include data elements including: information identifying the token (received from the mobile device 102), information identifying the cashier, the POS terminal, the merchant 108, the location, the transaction amount, and line item details of the items purchased.
  • the transaction management system 130 uses the information from the process transaction request message to identify the pending transaction in the transaction queue and updates the transaction queue.
  • a request message may then be transmitted from the transaction management system 130 to the mobile device 102 which includes information associated with the transaction received from the merchant 108 including the transaction amount.
  • the message may information identifying one or more available payment accounts of the customer which were identified by the transaction management system 130 as being available for use by the customer in the specific transaction (e.g., by applying one or more merchant-specific rules, one or more system-specific rules, and one or more customer account rules).
  • the customer interacting with the mobile device 102, selects an available payment account from the information received from the transaction management system 130 and causes the selected account information and a transaction confirmation message to be transmitted to the transaction management system 130.
  • some or all of these messages between the mobile device 102 and the transaction management system 130 may be sent in one or more transaction sessions. That is, a session control is initiated ensuring that the same mobile device 102 both requests the token and receives information about available payment accounts and selects an available payment account in a single transaction session. In this way, embodiments ensure that a different customer or user could not somehow reuse or copy a different user's payment information. In addition, this approach ensures that the mobile device 102 that initiated the request for the token is the only device that can be used to make a payment for the transaction identified in the message sent from the merchant 108 to the transaction management system 130.
  • the transaction management system 130 upon receipt of the selection of a payment account and confirmation of the transaction, causes a payment authorization request message to be transmitted to payment processing systems (not shown in FIG. 1, but shown in FIGs. 2, 3, 5 and 6).
  • the payment authorization request message includes the actual payment credentials (identified based on the information received from the mobile device 102), the transaction amount, and the merchant information.
  • the transaction management system 130 upon receipt of an authorization response from the payment processing systems, causes a confirmation response message to be transmitted to the merchant 108 (a confirmation response may also be transmitted to the mobile device 102).
  • the pending transaction may also be removed from the transaction queue.
  • a payment transaction may be performed by allowing a mobile device 102 to obtain a token for use in the transaction and to provide that token to a merchant 108 for use in the transaction.
  • This transaction process may also be used in conjunction with the loyalty, discount, and other types of transactions. Further, the process may be used to conduct transactions at other types of merchant locations (including MOTO, Internet, or the like), at ATM machines or kiosks, and in person to person transactions.
  • FIG. 1 shows only a single mobile device 102 and merchant 108 those skilled in the art will appreciate that in use there will be a number of devices in use, a number of merchants using the system. Further, pursuant to some embodiments, multiple instances of the transaction management system 130 (and, in some embodiments, wallet issuers and token issuing authorities) in operation.
  • transactions conducted using embodiments of the present invention have a number of desirable advantages over existing payment methods. For example, customers are able to conduct payment transactions at a wide variety of merchant locations using their mobile device. Further, the mobile device may be used to access a variety of different payment accounts held by the customer, allowing the customer to select the most appropriate or desirable payment account for each transaction. Using features of the present invention, merchants need not undertake costly hardware retrofit or replacements, as embodiments may utilize existing point of sale systems and hardware.
  • paying with embodiments of the present invention can be more secure than existing payment methods, as it is possible to require that each transaction be authenticated using two items—user information (such as a user identifier and/or password, or a PIN) known to the customer, as well as unique attributes associated with the mobile device the customer uses to initiate the transaction.
  • user information such as a user identifier and/or password, or a PIN
  • the system 100 includes a plurality of transaction management systems 130a-130n.
  • Each (or some) merchant 108 may have an association or relationship with one or more transaction management systems 130a- 13 On, and the customer operating the mobile device 102 need not know which of the transaction management systems 130a- 13 On is involved in any given transaction.
  • each mobile device 102 may communicate with a number of different transaction management systems 130a- 13 On, and the merchant or point of transaction need not necessarily know which of the transaction management systems 130a-n is involved in any given transaction prior (until such information is discerned during the transaction as described herein).
  • a purchase or other transaction process includes the generation, scanning or capturing of a token associated with the point of transaction.
  • this token may be dynamically generated for use in individual transactions at specific merchants or locations.
  • the scanning or capturing of the token by the mobile device 102 causes information to be transmitted to a transaction management system 130 for use in completing a transaction.
  • data associated with the token may be used in conjunction with identifying or selecting an appropriate payment account for the transaction.
  • data associated with the token may also be used to determine which transaction management system 130a-n the mobile device should communicate with in order to retrieve information about a transaction at a merchant (such as, for example, information identifying the amount due, the retailer name, or the like).
  • the mobile device 102 (or, the merchant 108, in situations where a token is provided from the mobile device 102 to the merchant system in a transaction) can use any of a number of different methods to determine which transaction management system 130a-n to contact during a given transaction.
  • the token may include an identifier or other information that may be used by the mobile payment application to contact the appropriate transaction
  • the identifier or other information may be, for example, a URI or URL encoded directly in the token and which is used by the mobile application on the mobile device 102 to determine the path to reach the appropriate transaction management system 130a-n.
  • the URL may be, for example, a URI or URL encoded directly in the token and which is used by the mobile application on the mobile device 102 to determine the path to reach the appropriate transaction management system 130a-n.
  • the URL may be, for example, a URI or URL encoded directly in the token and which is used by the mobile application on the mobile device 102 to determine the path to reach the appropriate transaction management system 130a-n.
  • the URL may be, for example, a URI or URL encoded directly in the token and which is used by the mobile application on the mobile device 102 to determine the path to reach the appropriate transaction management system 130a-n.
  • a formatted URL string may be encoded in a token (e.g., the URL string may be encoded in a QR code, or the like) for capture and processing by a mobile payment application.
  • a formatted URL string may have a structure as follows:
  • the transaction meta data that may be carried in this string may be, for example (and without limitation) information such as: the currency of the transaction, an amount of the transaction, and a merchant identifier.
  • a URI based identifier may be encoded in a token (e.g., the URI based identifier may be encoded in a QR code, or the like) for capture and processing by a mobile payment application.
  • the token may be an alpha numeric token such as "3ab0f564-82b5-4846- 83a0-604c44989c59".
  • tokenized string could be used to lookup the appropriate transaction management system (or wallet issuer / token issuing authority) for interaction.
  • a tokenized string identifier may also be used.
  • the tokenized string may be formatted in a number of ways, including as an illustrative (but not limiting) example: ⁇ tokenIssuingAuthorityIdentifier> : ⁇ issuedToken> : ⁇ transactionMetaData>.
  • the token may include an identifier that is used to lookup the appropriate path to reach or communicate with the appropriate transaction management system 130a-n.
  • the mobile payment application installed on the mobile device 102 may be provisioned with a lookup table (which may be updated or modified from time to time) with one or more identifier / path pairs.
  • the mobile payment application may store a table such as the example Table I below:
  • the token captured by the mobile device 102 from the merchant 108 may include the identifier "ABC123" as well as the value of the token.
  • the mobile device 102 upon receiving the token, performs a lookup to determine that the path to use to communicate with the transaction management system is the path associated with identifier ABC 123 (in the example, the appropriate path will be https ://paydiant. com/tms/production) .
  • the token captured by the mobile device 102 from the merchant 108 may include the identifier "XYZ567" as well as the value of the token.
  • the mobile device 102 upon receiving the token, performs a lookup to determine that the path to use to communicate with the transaction management system is the path associated with identifier XYZ567 (in the example, the path will be https ://visa .com/tms/production) .
  • an external service may be used to retrieve the appropriate path.
  • the mobile device 102 may interact with a merchant device 108 and may scan or capture a token presented by the merchant.
  • the token may be encoded to include both an identifier and a token value, and the identifier may be used as a parameter in a web service call made by the mobile device 102 to retrieve the path to the
  • the mobile device 102 need not store or maintain a lookup table, but need only make a call to a
  • a predetermined webservice endpoint that will return the path information associated with a transaction management system identifier.
  • a combination of a lookup table and a webservice call may be used (e.g., if an identifier is not available or included in a lookup table stored at the mobile device 102, the mobile device 102 may make a call to a webservice endpoint to retrieve the appropriate path information to the transaction management system 130).
  • one entity or device may act as a directory service.
  • a token may encode or contain information including a URI or URL (or other address) to the directory service.
  • the directory service may operate to identify or provide one or more other URIs, URLs (or other addresses) which may be used by a device (such as a mobile device 102, a merchant 108, another transaction management system 130, or the like) to obtain further information associated or usable with the transaction.
  • a directory service contacted about a particular transaction may provide a first address at which merchant data associated with the transaction may be obtained, a second address at which transaction receipt data may be obtained (e.g., after completion of the transaction), and a third address at which authorization data associated with the transaction may be obtained.
  • Each of these additional addresses may be obtained by a device or entity having the address of the directory server as well as a valid token value.
  • interaction with the directory server may be controlled (e.g., such that only authorized entities or devices may obtain the information from the directory service). Additional levels of relationships may also be used.
  • a token issuing authority may provide an address associated with transaction details, and that address may refer to another device or entity for additional transaction details, and that address may refer to additional information associated with the transaction.
  • no values from the token itself may be needed to determine the appropriate transaction management system 130 to use.
  • the mobile device 102 or merchant 108 may follow one or more rules based on any number of factors, such as the time of day, day of week, current transaction volume at a point of interaction, dollar amount of a purchase, or any other factor to determine which transaction management system 130 to use.
  • the mobile device 102 or merchant 108 may also have a default transaction management system 130 setting (which defines a default transaction management system 130 to be used in cases where no specific transaction management system 130 is specified in conjunction with a token), and the transaction management system 130 might be able to be changed based on one or more rules that evaluate data that could include one or more data items from the token or a data item from any other data source.
  • the token captured by the mobile device 102 may include an identifier which may be decoded by the mobile payment application on the mobile device 102 to deduce the path to the relevant transaction management system 130a-n.
  • an algorithm could be used to convert an identifier received in the token to a path to the appropriate transaction management system 130.
  • a simple identifier of "VIP" may be used to construct a path of
  • a transaction management system 130 may communicate with the appropriate transaction management system 130.
  • the functions performed by a transaction management system 130 may be performed by one or more entities. For example, in some
  • the functions performed by a transaction management system 130 may be performed by a wallet issuer and a token issuing authority.
  • the functions performed by a wallet issuer may include, for example, functions related to user management, user authentication, and some basic transaction management.
  • the functions performed by a token issuing authority may include, for example, functions related to merchant management, merchant authentication, and some basic transaction management.
  • wallet issuers e.g., which issue mobile wallets to a plurality of consumers and which manage user related functions for those consumers
  • token issuing authorities e.g., which interact with different merchants to facilitate transactions pursuant to the present invention.
  • FIG. 2 is a block diagram of an example payment system network environment showing communication paths between a mobile device 202, merchants 208, one or more transaction management systems 230 and payment processing systems 232.
  • Mobile device 202 may be, for example, a mobile telephone, PDA, personal computer, or the like.
  • mobile device 202 may be an iPhone® from Apple, Inc., a BlackBerry® from RIM, a mobile phone using the Google Android® operating system, or the like.
  • mobile device 202 may operate a payment application allowing mobile device 202 to operate as a payment device as described herein.
  • mobile device 202 is capable of accessing and displaying Web content or otherwise accessing the Internet so that a customer operating mobile device 202 may interact with one or more transaction management systems 230 to initiate a transaction via a Web interface.
  • Mobile device 202 of FIG. 2 can, for example, communicate over one or more wired and/or wireless networks 201.
  • a wireless network can be a cellular network (represented by a cell transmitter 215).
  • a mobile device 202 may communicate over a cellular or other wireless network and through a gateway 216 and then
  • Access point 218 may be provided to facilitate data and other communication access to network 214.
  • Access point 218 may be, for example, compliant with the 802.1 lg (or other) communication standards.
  • the payment application may cause or control communication of data through network 201 to one or more transaction management systems 230.
  • mobile device 202 may engage in both voice and data communications over wireless network 214 via access point 218.
  • mobile device 202 may be able to place or receive phone calls, send and receive emails, send and receive short message service (“SMS”) messages, send and receive email messages, access electronic documents, send and receive streaming media, or the like, over the wireless network through access point 218. Similar communications may be made via network 215.
  • SMS short message service
  • a mobile device 202 may also establish communication by other means, such as, for example, wired connections with networks, peer-to-peer communication with other devices (e.g., using Bluetooth networking or the like), etc.
  • Mobile device 202 can, for example, communicate with one or more services over networks 201, such as one or more transaction management systems 230 (to conduct payment transactions, to create, edit, view or otherwise modify payment account settings and preferences, etc.), the Web 240, and other services 242.
  • Mobile device 202 can also access other data over the one or more wired and/or wireless networks 201.
  • content providers such as news sites, RSS feeds, web sites, blogs, social networking sites, developer networks, etc., can be accessed by mobile device 202.
  • Such access can be provided by invocation of a web browsing function or application (e.g., a browser) in response to a customer launching a Web browser application installed on mobile device 202.
  • a user may utilize a Web browser to interact with one or more transaction management systems 230 to register payment accounts, establish account preferences, perform payment transactions, etc.
  • Mobile device 202 has a display screen 236 and a data entry device 238 (such as a keypad or touch screen, or voice interface).
  • the customer may use the mobile device 202 to conduct a purchase transaction with a merchant 208 (or an ATM transaction with an ATM, or any other transaction supported by the system of the present invention).
  • Mobile device 202 may be a physical storefront, electronic commerce merchant, or MOTO merchant (or another person or entity).
  • Mobile device 202 also has a camera (not shown) or other image capture device which allows the mobile device 202 to capture an image or representation of a token 210.
  • Mobile device 202 in some embodiments, also has a wireless receiver (not shown) or other wireless signal receiving device which allows the mobile device 202 to capture a wireless signal representation of a token 210.
  • a customer may operate mobile device 202 to take a digital picture or capture the image of a token 210 displayed on or at a merchant point of sale device to initiate a payment transaction using the present invention.
  • the captured image is shown as item 237 on the display screen 236.
  • the token 210 may be used to initiate and conduct transactions with a merchant.
  • Merchant 208 may operate one or more merchant systems 209 to process payments and transactions, including, as will be described, payment transactions pursuant to the present invention (as well as "traditional" or standard payment transactions involving cash, standard payment cards, or the like).
  • Merchant system 209 may be a networked point of sale system (such as for a physical retail location) or it may be a shopping cart system (such as for an electronic commerce or Internet retail location).
  • the "merchant" is an ATM device
  • merchant system 209 may further be an ATM network or the like.
  • Merchant system 209 may further be a combination of systems designed to allow a merchant to accept payments for goods or services.
  • merchant system 209 may be in communication with one or more point of sale devices 212 which have display devices 213 for presenting and receiving information from customers.
  • a merchant system 209 may be in communication with a number of different point of sale devices 212 each of which is located at a different checkout lane or location within the store (or in different stores in different geographical locations).
  • Each of the point of sale devices 212 may present, display, or communicate transaction information to customers at the point of sale (or "POS") so that the customer can approve or authorize purchases and present payment for the purchases.
  • POS point of sale
  • the merchant system 209 may be a Web server (or a network of servers, some of which may be Internet accessible) configured to process purchase transactions associated with merchant 208.
  • Point of sale devices 212 in such an example, may be a number of remote terminals interacting with merchant system 209 such as, for example, personal computers, mobile devices, or the like that are able to interact with the merchant system 209 via a network such as the Internet. Because embodiments of the present invention are capable of initiating and conducting transactions for both physical and remote types of merchants, the point of sale, point of purchase, or interaction between a buyer and merchant may be referred to as the "point of sale" or "point of interaction" herein.
  • a token 210 is displayed on or near the point of sale.
  • the token 210 may be either a "static” token or a “dynamic” token.
  • the token may be printed, displayed, or provided near the point of sale location (such as on a sticker or placard displayed so the customer can easily see and read or capture the token).
  • Static tokens 210 may be printed as a bar code image, as an alphanumeric identifier, or in other forms.
  • tokens may be presented in forms which are easily discemable by a human so that they may be both key-entered or captured using a mobile device 202.
  • an additional processing step may be performed (as will be described further below) in order to provide the mobile device 202 with detailed information about the transaction.
  • the token may be displayed on a display device 213 associated with a point of sale device 212.
  • a dynamic token may be generated to include transaction information (e.g., such as the purchase amount, etc.) and may, in some embodiments, involve fewer messages between the mobile device 202 and the transaction management system 230 during a payment transaction.
  • the token 210 may be encoded or displayed as a bar code image, as an alphanumeric identifier, as a wireless signal, or in other forms to allow the token 210 to be captured as an image (e.g., using a camera or scanner associated with the mobile device 202).
  • the token 210 may also be key entered by a customer of the mobile device 202 or be captured by a wireless receiver associated with the mobile device 202.
  • a mobile device may be operated in conjunction with multiple types of tokens 210 (e.g., a mobile application may be capable of capturing a token 210 using image capture, wireless receiving, or key entry, depending on how the token 210 is presented at a point of sale).
  • a mobile application may be capable of capturing a token 210 using image capture, wireless receiving, or key entry, depending on how the token 210 is presented at a point of sale).
  • the display device 213 could be an LCD (or other display technologies) display (e.g., such as those currently available at many merchants in systems such as the Hypercom 4150 terminal, or the Verifone MX870 terminal or the like).
  • the use of the token 210 in transactions pursuant to the present invention will be described further below.
  • the token 210 is used by the transaction management system 230 to match a payment request from a mobile device 202 with a payment authorization request from the merchant 208 to complete a payment transaction using information stored at, or accessible to, the transaction management system 230.
  • the token may further be used to communicate transaction details from the merchant 208 to the mobile device 202.
  • a customer may purchase products or services from the merchant 208 by first selecting mobile payment as a payment option, performing an authentication process with a payment application on a mobile device 202 (or via a Web browser interacting with transaction management system 230), capturing a token 210 from a device associated with the merchant 208 (such as from a display 213 of a point of sale device 212), receiving transaction details and a payment account list or list of preferred or eligible accounts from the transaction management system 230, selecting a payment option on the mobile device 202, and submitting a customer payment authorization request to a transaction management system 230 over a network 201.
  • the selection of a payment option involves receiving information identifying one or more payment accounts available to the customer.
  • the available payment accounts may be those specified by the customer during a registration process such as the process described further below in conjunction with FIG. 4.
  • the presentation of the different payment account options may include applying one or more rules or preferences to a list of available payment accounts so that the customer is presented with the account(s) that are best suited or available for the current transaction.
  • the customer selects the payment account (or accounts, in the case of a split tender transaction) to use and the information is transmitted to the transaction management system 230.
  • all of the customer's available payment accounts may be displayed to the customer after the customer has been authenticated.
  • the list of accounts later received from the transaction management system 230 may include additional metadata or information associated with each payment account (e.g., such as the current available account balance, any special offers available if the account is used in the current transaction, etc.).
  • the list of accounts later received from the transaction management system 230 may include fewer accounts based on the application of rules at the transaction management system 230 (e.g., such as the application of one or more customer, merchant or system rules). For example, a rule may specify that a specific payment account not be used for low dollar value transactions. In such a case, that specific payment account would not be included in the list of accounts sent from the transaction management system in response to the customer transaction lookup request.
  • the list of payment accounts received from the transaction management system 230 after it processes the customer transaction lookup request may be a subset of all the accounts the customer has registered.
  • the merchant 208 transmits a merchant payment authorization request message to the transaction management system 230 over a network 220.
  • the transaction management system 230 matches the customer payment
  • a dynamic token 210 In some embodiments where a dynamic token 210 is used, no transaction details need be received by the mobile device 202 from the transaction management system 230- -instead, some or all of the transaction details may be provided to the mobile device 202 via data encoded or otherwise contained in the dynamic token 210. In some embodiments where a dynamic token 210 is used, no transaction details need be received by the mobile device 202 from the transaction management system 230- -instead, some or all of the transaction details may be provided to the mobile device 202 via data encoded or otherwise contained in the dynamic token 210. In some embodiments where a dynamic token 210 is used, no transaction details need be received by the mobile device 202 from the transaction management system 230- -instead, some or all of the transaction details may be provided to the mobile device 202 via data encoded or otherwise contained in the dynamic token 210. In some embodiments where a dynamic token 210 is used, no transaction details need be received by the mobile device 202 from the transaction management system 230- -instead, some or
  • the mobile device 202 requests or receives some or all of the transaction details from the transaction management system even where a dynamic token is used.
  • the transaction management system 230 then transmits a customer payment confirmation request message to the customer's mobile device 202, enabling the customer to have a final opportunity to confirm or cancel the payment transaction. For example, the customer may be prompted to "confirm” or “cancel" the payment transaction. The prompt may provide additional information about the transaction and the selected payment account so the customer can have detailed information about the transaction before selecting "confirm” or "cancel".
  • customers may be given the opportunity to set preferences or otherwise configure the mobile payment application to enable or disable certain messages or transaction steps. As a specific example, customers may be given the opportunity to receive (or not receive) customer payment confirmation request messages.
  • the transaction management system 230 creates an authorization approval request message for transmission through one or more payment processing network(s) 232 to cause the authorization, clearing and settlement of funds for the transaction.
  • This request message includes the transaction details, such as the amount of the transaction or other information, from the merchant payment authorization request (received from the merchant 208) and the actual payment credentials associated with the payment account selected by the customer.
  • the actual payment credentials may be obtained by using the payment account selection information and performing a lookup of actual payment account credentials previously stored in a database or location accessible to the transaction management system 230.
  • the authorization approval processing may be performed using standard financial authorization processing over one or more payment processing networks 232 (e.g., such as the VISANET® network operated by Visa, Inc., an Automated Clearing House system such as NACHA, or the like).
  • the transaction management system then sends a merchant payment authorization response message to the merchant 208 so the transaction can be completed at the point of sale 212, and a customer payment authorization response message to the customer's mobile device 202.
  • similar processing may occur in situations where the mobile device 202 is used to obtain a token from a transaction management system 230, and where the merchant 208 (or other mobile device, or other point of interaction device) captures the token from the mobile device 108.
  • a payment system pursuant to the present invention may include multiple entities that perform different processing functions that would normally be provided by one or more transaction management systems as described above.
  • wallet issuers entities that perform different processing functions that would normally be provided by one or more transaction management systems as described above.
  • a financial institution or other entity may choose to issue and manage the task and functions of providing mobile payment applications to its customers. This can result in multiple wallet issuers participating in the payment system of the present invention.
  • a financial institution or other entity may choose to provide token issuing functions on behalf of one or more merchants. That is, an entity may have an existing relationship with a merchant and may already have integrated with or access to the merchants point of sale and other merchant systems. The entity may wish to offer token issuing functions to the merchant. This can result in multiple token issuing authorities participating in the payment system of the present invention.
  • FIG. 3 is similar to the system shown in FIG. 2 except that one or more token issuing authorities 250 and one or more wallet issuers 260 are shown instead of a transaction management system 230 (however, in some embodiments, one or more transaction management systems 230 may still be utilized in the system operating in conjunction with the one or more wallet issues 260 and the one or more token issuing authorities 250).
  • the wallet issuer 260 may be in communication with a mobile device 202 via one or more network paths.
  • the wallet issuer 260 and each mobile device 202 operating a mobile payment application issued by the wallet issuer 260 may be in communication (for example, the mobile payment application may be coded to ensure reliable interaction and
  • the token issuing authority 250 is in communication with one or more merchants 208 via one or more network paths. In some transaction embodiments and scenarios, there may further be communication between wallet issuers 260 and token issuing authorities 250 (e.g., to complete a transaction involving both entities). Further, while the wallet issuer 260 is shown as being in communication with one or more payment processing networks 232, in some embodiments, token issuing authorities may also be in communication with one or more payment processing networks 232. Further details of transactions involving these entities will be provided below in conjunction with the discussion of FIG. 5.
  • a customer before a customer can use a mobile device (such as the mobile device 202 of FIG. 3) to conduct a purchase transaction using the present invention, the customer must perform a registration process such as the process described in conjunction with FIG.4.
  • Data collected or provided in association with the process 400 may be stored at or be accessible to one or more databases associated with a transaction management system such as system 230. Further, pursuant to some embodiments, a separate wallet issuer 260 may store data collected or provided in association with the process 400.
  • the registration process 400 of FIG. 4 begins when a customer first (at 402) interacts with a registration server (which may be a component of, or related to, transaction management system 230 of FIG. 2 or wallet issuer 260 of FIG. 3) to initiate a registration process.
  • a registration server which may be a component of, or related to, transaction management system 230 of FIG. 2 or wallet issuer 260 of FIG. 3 to initiate a registration process.
  • the customer may operate an Internet browser (either on a mobile device or another computing device) to access a registration Web page associated with the registration server or use functionality in a mobile application to complete the registration process.
  • the registration Web page may request the customer provide some identifying information to begin the account creation process. For example, a customer may provide name, address and other contact information as well as contact preferences, including one or more email addresses and phone numbers.
  • a customer identifier or other unique record (or records) may be established in a database associated with or accessible to a transaction management system 230 or a wallet issuer 260.
  • a customer identifier may be used to uniquely identify the customer.
  • the customer identifier may be an alphanumeric identifier assigned by the transaction management system 230 (or the wallet issuer 260, depending on the embodiment) or may be information based on or provided by the customer (e.g., such as a mobile phone number or identifier associated with a mobile device 202).
  • the account creation includes providing contact and identifying information associated with the customer, as well as information identifying one or more mobile device(s) from which the customer wishes to make transactions.
  • Each mobile device 202 may, for example, be identified by its phone number and/or other unique identifier(s) (such as a hardware serial number, an ASIN, a Advertising Identifier in the case of an iPhone, a component serial number such as a CPU serial number or the like).
  • the system may capture unique identifying information associated with the mobile device (e.g., such as a hardware serial number, an ASIN, a Advertising Identifier or other device identifiers).
  • unique identifying information associated with the mobile device e.g., such as a hardware serial number, an ASIN, a Advertising Identifier or other device identifiers.
  • the customer provides information about one or more payment devices or payment accounts that the customer wishes to have associated with the payment system of the present invention.
  • the customer provides information about one or more payment accounts that the customer wishes to associate with the customer's account relationship with the transaction management system 230 (or wallet issuer 260, depending on the embodiment).
  • the customer may enter information about one or more credit cards, debit cards, gift cards, bank accounts, checking accounts, or the like.
  • the information about each account includes the actual payment credentials or sufficient information to process a transaction using the account.
  • the information may include: the primary account number (or PAN), the expiry date, and the verification code.
  • the information may include: the routing number and the account number.
  • Other information, such as bank or issuer information may also be entered at 406.
  • a customer named "Jane” has entered details about four of her payment accounts that she would like to be able to utilize in conjunction with the present invention, including: a Chase Credit Card, having a primary account number (or "PAN") of #######, and a card expiration date of 05/12, a Webster Bank Checking account having an ABA number of ####### and an account number of ########, a
  • Additional account identifying information may be provided as required (e.g., in some embodiments, for payment cards, a card verification number may also be provided).
  • the data obtained during processing 400 may be, for example, securely stored in a PCI compliant database.
  • by securely storing payment card data (including expiry date and verification codes), payments made using the present invention may qualify for reduced interchange as "card present" transactions.
  • a customer may add, remove or update account information as needed.
  • the customer may optionally establish one or more preferences or rules associated with the use of one or more of the accounts entered at 406.
  • the customer may designate one of the accounts as the "primary" or default account.
  • Other rules and preferences may also be set to enable accounts to be selected and used in an efficient and logical manner.
  • a customer may specify priorities or other account-based rules to indicate how a particular payment account should be treated with respect to other payment accounts.
  • a customer may also specify spend limitations or balance requirements that govern how and when a payment account is to be presented as an option.
  • a customer may also specify the order in which accounts are displayed on the mobile phone, based on what merchant they are purchasing from, or the funds available in each account, or the rewards received for using each account.
  • a rule may cause a payment process to proceed more quickly, or with fewer customer steps.
  • a customer may specify that when making a purchase (or a certain type of purchase, such as a purchase below a certain dollar amount) at a specific merchant, that a default payment account be used.
  • a purchase transaction using the present invention may proceed without need for the customer to select or confirm the selection of a payment account—it is done automatically by application of the customer-specified rule.
  • the customer named "Jane” has specified the following account preferences: (i) she wants to reduce the use of credit, and (ii) she wants to reduce transaction fees.
  • Jane has also specified rules to be applied when specific payment accounts are analyzed for use in a given transaction: (i) her Starbucks gift card balance should be used where possible (having been assigned the highest priority), (ii) her checking account or the debit card associated with her checking account should be used as the second highest priority (although she prefers not to use the checking account if a transaction would reduce her balance to below $1,000), and (iii) her credit card should be the final payment option, having the lowest priority.
  • the transaction management system 230 When Jane uses her mobile device to conduct a transaction using the present invention, the transaction management system 230 (or the wallet issuer 260) will compare the rules and preferences Jane has specified to the details of the transaction to recommend which payment account(s) are available for the transaction. For example, if Jane uses her mobile device to purchase a cup of coffee at Starbucks, the transaction management system will let her know that she can use her Starbucks gift card for the purchase. In this manner, customers having a variety of payment accounts may be presented with choices of payment options that are based on their overall preferences and usage objectives.
  • a payment account that is unavailable or unsuitable for a particular transaction may be identified as such by the transaction management system 230 (or the wallet issuer 260) so that the customer need not be presented with that payment account as an option (e.g., if Jane is purchasing gas at a gas station, she will not be presented with the Starbucks gift card as a payment option for that transaction).
  • processing may continue at 410 if the customer operates or uses mobile devices that are capable of operating an application that is associated with the present invention (such as an iPhone or an Android phone).
  • the customer is prompted to download and install an application on their mobile device.
  • the application allows the customer to operate their mobile device to quickly and easily conduct payment transactions pursuant to the present invention.
  • a link or Web page may be created or provided to the customer that may be accessed via a mobile phone browser, so that the customer can conduct payment transactions pursuant to the present invention.
  • the customer may utilize the system of the present invention to conduct purchase transactions at merchants that support transactions of the present invention.
  • different entities, systems or devices may perform different transaction management functions.
  • some consumers may obtain their mobile payment applications on their mobile devices 202 from their financial institution or other entity, and the financial institution or other entity may act as (or use an agent to perform the function of) the wallet issuer 260 for those consumers.
  • Some merchants 208 may choose to interact with certain token issuing authorities 250 but not others. Or, a merchant 208 may use a single token issuing authority 250. Each of these choices result in a combination of entities participating in a given transaction between a consumer and a merchant 208 and pose a technical challenge to allowing all participants to engage in transactions without issues.
  • Embodiments provide systems and methods for allowing transactions to occur despite the potentially large and diverse number of participants.
  • FIG. 5 a further system diagram is shown depicting portions of a system 500 in which a consumer operating a mobile device 102 conducts a transaction with a merchant 108.
  • the mobile device 102 operates a payment application (which may have been installed and configured through a process such as that shown in FIG. 4) provided by a wallet issuer 260.
  • the merchant 108 has a relationship or otherwise interacts with one or more token issuing authorities 250a-250n.
  • a merchant 108 may have a relationship with one or more entities (such as a financial institution, merchant acquirer, point of sale system vendor, or the like) which it trusts to provide tokens for transactions conducted pursuant to the present invention.
  • a consumer operating a mobile device 102 wishes to conduct a transaction with a merchant 108.
  • the customer may be at a checkout lane of a merchant in which the items to be purchased have been rung up by a clerk, and the customer may have indicated a desire to pay with his mobile application.
  • the selection of the mobile payment option may cause the merchant systems to request a token for the transaction.
  • the merchant 108 uses several different token issuing authorities 250a-n (for example, the merchant 108 may use token issuing authority 250a for certain types of transactions, and token issuing authority 250b and 250n for others).
  • the merchant 108 has several relationships, and in the depicted transaction (at the interaction labeled as "1"), requests issuance of a token from token issuing authority 250b.
  • the request may be requested in a message such as a merchant payment authorization request message which transmits information associated with the pending transaction to the token issuing authority 250b.
  • the token issuing authority 250b Upon receipt of the merchant payment authorization request message, the token issuing authority 250b generates or otherwise identifies a token for use in the transaction.
  • the token issuing authority 250b may also create a pending transaction record associated with the token.
  • the pending transaction record may include
  • the token generated or obtained by the token issuing authority 250b includes information usable to identify token issuing authority 250b. As discussed above, such information may include a formatted URL string (providing a URL to the token issuing authority 250b as well as other transaction related information in some embodiments), a URI based identifier, a tokenized string identifier, or the like.
  • the token (including the token identifier and the information for identifying the token issuing authority) is returned to the merchant 108 for presentation or communication to the mobile device 102.
  • the token and information for identifying the token issuing authority may also be pre-stored or made available locally at the merchant 108.
  • the merchant 108 may display or otherwise present the token as a QR code or via other means and the customer may be prompted to capture the token using their mobile device 102 (shown as the interaction at "2"). Once captured, the mobile payment application on the mobile device 102 may be operated to decode the token to obtain the information contained therein (shown as the interaction at "3"'). In some embodiments, the decoding of the token may involve cooperative processing between the mobile device 102, the mobile payment application, and the wallet issuer 260 that issued the mobile payment application, or some other device . The decoding of the token can result in any or all of the following: the identification of the particular token issuing authority 250b that issued the token, the actual token value, as well as any meta data provided with the token value.
  • the token issuing authority 250b has a pending transaction record containing the transaction details received from the merchant 108.
  • the pending transaction record may be identified using the token issued or otherwise provided by the token issuing authority 250b.
  • the token issuing authority 250b may not know any information at this point regarding the customer or the payment mechanism to be used by the customer.
  • the customer via the mobile payment application on the mobile device 102 may have information about the pending transaction to the extent provided in the meta data decoded at "3", and also has a token value as well as information usable to identify the token issuing authority 250b.
  • the wallet issuer 260 has authenticated the customer and the mobile device 102 and also has information associated with the token received or captured by the mobile device 102.
  • the wallet issuer 260 also knows the identity of the token issuing authority 250b.
  • the wallet issuer 260 may also know certain items of meta data associated with the transaction (if those items were provided in conjunction with the token). For example, consider an illustrative example where the token was encoded with a formatted URL string having the following format:
  • the string received by the mobile device 102 at "2" and decoded at “3” may reveal the following formatted URL string:
  • the token obtained at "2" from the merchant 108 may not include meta data (such as data identifying a transaction amount, or the like).
  • one or more further interactions may be required.
  • one such further interaction is shown as interaction "4" where the mobile device 102 interacts with the wallet issuer 260 with a request for transaction details. Processing at "4" may include the mobile device 102 providing the wallet issuer 260 with the token value as well as information usable to identify the token issuing authority 250b.
  • the wallet issuer 260 may issue a request to the token issuing authority 250b requesting transaction details associated with the pending transaction record associated with the token value obtained by the mobile device 102 at "2".
  • processing at "4" in the case where the token obtained at "2" had no or insufficient meta data associated with the transaction
  • processing at "3" in the case where the token obtained at "2" did have sufficient meta data associated with the transaction
  • the wallet issuer 260 interacting with the mobile payment application on the mobile device 102 may proceed to perform processing to determine which payment account(s) of the customer may be used in the transaction. For example, the wallet issuer 260, which stores the customer's preferences and rules, may determine that only several payment accounts of the customer are available for use at the merchant identified by "MID01001" (or based on the merchant type and location). The wallet issuer 260 may also determine that only certain payment accounts are available for use to complete transactions in US Dollars in the amount of $3,400. The wallet issuer 260 may interact with the mobile payment application to inform the customer which payment accounts are available for use in the pending transaction and obtain a customer selection of one or more payment accounts for use in completing the transaction.
  • processing may proceed with an interaction "5" where either the mobile device 102, the wallet issuer 260 or a combination of the mobile device 102 and the wallet issuer 260 communicate with the token issuing authority 250b to obtain a transaction authorization from one or more payment processing networks 280 for the transaction and provide the transaction authorization to the appropriate token issuing authority 250b.
  • Such interaction at "5" may involve a number of messages.
  • a message is transmitted identifying the desired payment account(s) to the wallet issuer 260 (which message, according to some embodiments, does not include actual payment account credentials but rather a proxy or identifier usable by the wallet issuer 260 to retrieve or identify the actual payment account credentials).
  • the wallet issuer 260 constructs a payment authorization request message with information including: the actual payment account credentials (such as a PAN, account number, validation or verification data, expiry date, etc.), the transaction amount, and the merchant identifier.
  • the payment authorization request message is then transmitted to one or more payment networks for authorization processing. If the transaction is authorized, the wallet issuer 260 may receive an authorization code and authorization response message, which are then transmitted to the appropriate token issuing authority 250b along with the token.
  • the token issuing authority 250b upon receipt of the authorization code and authorization response, uses the received token to identify the pending transaction record and performs processing (at "6") to interact with the merchant 108 to complete the transaction. For example, in situations where the payment is authorized, the token issuing authority 250b may transmit information confirming the transaction was successfully completed so the merchant 108 can cause a transaction receipt to be printed at the point of interaction.
  • the wallet issuer 260 may also cause a transaction receipt or other information to be transmitted to the mobile device 106. In some situations, it may not be possible for the wallet issuer 260 to obtain a payment authorization from the payment processing networks 280 based on the information available to the wallet issuer 260.
  • the token issuing authority 250 may not provide additional metadata associated with a transaction (such as a merchant identifier and/or a transaction amount). In such cases, embodiments may be provided in which further communication between the wallet issuer 260 and the token issuing authority 250 may be required. For example, in some embodiments, once the wallet issuer 260 has obtained a token from the mobile device 102, the wallet issuer 260 may establish communication with the token issuing authority 250 to obtain the missing meta data (including, for example, a merchant identifier and transaction amount). The wallet issuer 260 may then proceed as above and obtain a payment authorization from the payment processing networks 280.
  • the token issuing authority 250 may obtain the payment authorization.
  • the wallet issuer 260 upon identifying the appropriate payment account credential(s) for use in the transaction may pass those payment account credential(s) to the token issuing authority 250 (along with the token), thereby allowing the token issuing authority to construct a payment authorization message with the information from the pending transaction record as well as the payment account credential(s) received from the wallet issuer 260.
  • the ability to complete a transaction is based on providing the mobile device 102 and the wallet issuer 260 with information usable to identify the transaction (the token) as well as information usable to identify the token issuing authority 250 (the information such as a URL, URI or other data provided with the token).
  • a mobile device 102 may be operated to obtain a token, and the token may then be provided to a merchant 108 (or to another device or participant in a transaction).
  • the token may then be provided to a merchant 108 (or to another device or participant in a transaction).
  • different entities, systems or devices may perform different transaction management functions.
  • FIG. 6 where one illustrative system will be described.
  • there may be multiple wallet issuers 260 and multiple token issuing authorities 250 interacting with multiple transactions involving multiple mobile devices 202 and multiple merchants 208 (or other points of interaction, such as ATMs, other mobile devices, or the like).
  • FIG. 6 a further system diagram is shown depicting portions of a system 600 in which a consumer operating a mobile device 102 conducts a transaction with a merchant 108.
  • the mobile device 102 operates a payment application (which may have been installed and configured through a process such as that shown in FIG. 4) provided by a wallet issuer 260.
  • the mobile device 102 obtains the token from a token issuing authority 250b (in the transaction labeled as item "1").
  • a user and device authentication process may occur in conjunction with or prior to interaction "1" (e.g., where the user and the device are authenticated by the wallet issuer 260).
  • the mobile device 102 when it makes a request for a token from token issuing authority 250b, it may also provide information usable by the token issuing authority 250b to communicate with the mobile device 102 (which will allow the token issuing authority 250b to transmit transaction details to the mobile device 102 in a message to be described below and labeled as item "4").
  • the token issuing authority 250b may create a pending transaction record associated with the token.
  • the pending transaction record may include information including a wallet issuer identifier (for use in identifying the wallet issuer 260 associated with the mobile payment application of the mobile device 102), a customer identifier, and other data associated with the pending transaction.
  • the token generated or obtained by the token issuing authority 250b includes information usable to identify token issuing authority 250b.
  • information may include a formatted URL string (providing a URL to the token issuing authority 250b as well as other transaction related information in some embodiments), a URI based identifier, a tokenized string identifier, or the like.
  • the token (including the token value and the information for identifying the token issuing authority and, in some embodiments, some additional meta data) is returned to the mobile device 102 for presentation or
  • the mobile device 102 may display or present the token as a QR code (or present it via a wireless signal like Bluetooth, NFC or the like) and the merchant 108 may be may be prompted to capture the token (e.g., using a scanner or other reader) (shown as the interaction at "2"). Once captured, the merchant 108 may decode the token to obtain the information contained therein (shown as the interaction at "3"). In some embodiments, the decoding of the token may involve cooperative processing between the merchant 108 and another entity. The decoding of the token can result in any or all of the following: the identification of the particular token issuing authority 250b that issued the token, the actual token value, as well as any meta data provided with the token value.
  • the merchant 108 may then perform processing to generate and transmit a merchant payment authorization request message to the token issuing authority 250b identified in the token (e.g., via interaction "4").
  • the merchant payment authorization request message may transmit information associated with the pending transaction to the token issuing authority 250b, as well as the token value obtained from the interaction at "2" and "3".
  • the information may include a merchant identifier, terminal identifier, transaction amount, and other data associated with the pending transaction.
  • the token issuing authority 250b has a pending transaction record containing the information received from the mobile device 102, and pending transaction data containing the information received from the merchant 108.
  • the pending transaction record may be identified using the token value issued or otherwise provided by the token issuing authority 250b to the mobile device 102 (and which was then communicated to the merchant 108).
  • the token issuing authority 250b may also have information usable to communicate information to the mobile device 102 (e.g., including information allowing direct communication with the mobile device 102 and/or information allowing communication with the mobile device 102 through the wallet issuer 260 associated with the mobile device 102, any or all of which information may which may have been obtained in the interaction labeled as item "1").
  • the token issuing authority 250b may not know any information at this point regarding the payment mechanism to be used by the customer. Further, at this point, the mobile device 102 may not have any transaction details (including information associated with the merchant, the transaction amount, or the like). In some embodiments, the token issuing authority 250b causes a further message associated with interaction "4" to occur. The further message is a message between the token issuing authority 250b and the mobile device 102. In some embodiments, this message may be routed through the wallet issuer 260 associated with the mobile device 102 as shown in FIG. 6, while other embodiments may allow direct communication between the token issuing authority 250b and the mobile device 102.
  • the wallet issuer 260 may continue with an interaction labeled as "5".
  • the wallet issuer 260 In processing during the interaction shown as item "5", the wallet issuer 260, interacting with the mobile payment application on the mobile device 102 may proceed to perform processing to determine which payment account(s) of the customer may be used in the transaction. For example, the wallet issuer 260, which stores the customer's preferences and rules, may determine that only several payment accounts of the customer are available for use at the merchant (or based on the merchant type and location). The wallet issuer 260 may interact with the mobile payment application to inform the customer which payment accounts are available for use in the pending transaction and obtain a customer selection of one or more payment accounts for use in completing the transaction.
  • processing of interaction "5" may proceed where either the mobile device 102, the wallet issuer 260 or a combination of the mobile device 102 and the wallet issuer 260 communicate to obtain a transaction authorization from one or more payment processing networks 280 for the transaction and provide the transaction authorization to the appropriate token issuing authority 250b.
  • Such interaction at "5" may involve a number of messages.
  • a message is transmitted identifying the desired payment account(s) to the wallet issuer 260 (which message, according to some embodiments, does not include actual payment account credentials but rather a proxy or identifier usable by the wallet issuer 260 to retrieve or identify the actual payment account credentials).
  • the wallet issuer 260 constructs a payment authorization request message with information including: the actual payment account credentials (such as a PAN, account number, validation or verification data, expiry date, etc.), the transaction amount, and the merchant identifier.
  • the payment authorization request message is then transmitted to one or more payment networks for authorization processing. If the transaction is authorized, the wallet issuer 260 may receive an authorization code and authorization response message, which are then transmitted to the appropriate token issuing authority 250b along with the token.
  • the token issuing authority 250b upon receipt of the authorization code and authorization response, uses the received token to identify the pending transaction record and performs processing (at "6") to interact with the merchant 108 to complete the transaction. For example, in situations where the payment is authorized, the token issuing authority 250b may transmit information confirming the transaction was successfully completed so the merchant 108 can cause a transaction receipt to be printed at the point of interaction.
  • the wallet issuer 260 may also cause a transaction receipt or other information to be transmitted to the mobile device 106.
  • the wallet issuer 260 may not provide additional metadata associated with a transaction (such as a merchant identifier and/or a transaction amount), or may not have provided the additional transaction information to the mobile device 102 and wallet issuer 260 in conjunction with the interaction at "4". In such cases, embodiments may be provided in which further communication between the wallet issuer 260 and the token issuing authority 250 may be required.
  • the wallet issuer 260 may establish communication with the token issuing authority 250 to obtain the missing meta data (including, for example, a merchant identifier and transaction amount). The wallet issuer 260 may then proceed as above and obtain a payment authorization from the payment processing networks 280.
  • the token issuing authority 250 may obtain the payment authorization.
  • the wallet issuer 260 upon identifying the appropriate payment account credential(s) for use in the transaction may pass those payment account credential(s) to the token issuing authority 250 (along with the token), thereby allowing the token issuing authority to construct a payment authorization message with the information from the pending transaction record as well as the payment account credential(s) received from the wallet issuer 260.
  • the ability to complete a transaction is based on providing the mobile device 102 and the wallet issuer 260 with information usable to identify the transaction (the token) as well as information usable to identify the token issuing authority 250 (the information such as a URL, URI or other data provided with the token).
  • Embodiments allow processing to occur in systems having multiple transaction management systems and further to allow processing to occur in systems having multiple entities performing different aspects of transaction management (such as wallet issuers and token issuance) and allow mobile devices to easily and efficiently identify which transaction management system (or other device or entity) to communicate with as well as the path or communication channel to use to interact with the relevant transaction management system (or other device or entity) for each specific transaction.
  • transaction management system or other device or entity
  • Embodiments allow processing to occur in systems having multiple transaction management systems and further to allow processing to occur in systems having multiple entities performing different aspects of transaction management (such as wallet issuers and token issuance) and allow mobile devices to easily and efficiently identify which transaction management system (or other device or entity) to communicate with as well as the path or communication channel to use to interact with the relevant transaction management system (or other device or entity) for each specific transaction.
  • embodiments allow a wide variety of different transaction management systems and other entities and devices to be used in a payment system of the present invention, and allow mobile devices participating in the payment system to correctly identify and determine which transaction management system (or other device or entity) to communicate with to complete a transaction pursuant to the present invention based on information captured in a checkout token obtained at a point of transaction.
PCT/US2014/013955 2013-01-30 2014-01-30 Transaction token issuing authorities WO2014130222A1 (en)

Priority Applications (11)

Application Number Priority Date Filing Date Title
CN201480006517.XA CN105164708A (zh) 2013-01-30 2014-01-30 交易令牌发行机构
CN202210231616.4A CN114648335A (zh) 2013-01-30 2014-01-30 交易令牌发行机构
CA2898205A CA2898205C (en) 2013-01-30 2014-01-30 Transaction token issuing authorities
JP2015555448A JP2016510468A (ja) 2013-01-30 2014-01-30 トランザクショントークン発行権限者
AU2014219386A AU2014219386B2 (en) 2013-01-30 2014-01-30 Transaction token issuing authorities
RU2015136777A RU2015136777A (ru) 2013-01-30 2014-01-30 Органы эмиссии жетонов транзакции
EP14753967.0A EP2951762A4 (en) 2013-01-30 2014-01-30 AUTHORITIES EMITTING A TRANSACTION TOKEN
KR1020157020648A KR20150132098A (ko) 2013-01-30 2014-01-30 트랜잭션 토큰 발행 권한
MX2015009820A MX2015009820A (es) 2013-01-30 2014-01-30 Autoridades emisoras de autenticacion de transaccion.
BR112016016822A BR112016016822A2 (pt) 2013-01-30 2014-01-30 métodos para operar um dispositivo e para conduzir uma transação, meio legível por computador não transitório, e, sistema para conduzir uma transação
AU2017204113A AU2017204113B2 (en) 2013-01-30 2017-06-16 Transaction token issuing authorities

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US201361758543P 2013-01-30 2013-01-30
US61/758,543 2013-01-30

Publications (1)

Publication Number Publication Date
WO2014130222A1 true WO2014130222A1 (en) 2014-08-28

Family

ID=51391702

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2014/013955 WO2014130222A1 (en) 2013-01-30 2014-01-30 Transaction token issuing authorities

Country Status (10)

Country Link
EP (1) EP2951762A4 (ko)
JP (4) JP2016510468A (ko)
KR (1) KR20150132098A (ko)
CN (2) CN114648335A (ko)
AU (2) AU2014219386B2 (ko)
BR (1) BR112016016822A2 (ko)
CA (1) CA2898205C (ko)
MX (1) MX2015009820A (ko)
RU (1) RU2015136777A (ko)
WO (1) WO2014130222A1 (ko)

Cited By (16)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2016007801A1 (en) * 2014-07-11 2016-01-14 Google Inc. Hands-free transactions with a challenge request
US9652759B2 (en) 2014-07-11 2017-05-16 Google Inc. Hands-free transactions
US9779345B2 (en) 2014-08-11 2017-10-03 Visa International Service Association Mobile device with scannable image including dynamic data
JP2019506075A (ja) * 2016-02-23 2019-02-28 エヌチェーン ホールディングス リミテッドNchain Holdings Limited ブロックチェーンベースのトークナイゼーションを用いた交換
JP2019508951A (ja) * 2016-02-23 2019-03-28 エヌチェーン ホールディングス リミテッドNchain Holdings Limited ブロックチェーンベースユニバーサルトークン化システム
US10275827B2 (en) 2013-03-14 2019-04-30 Fexco Systems and methods for transferring funds using a wireless device
US10474879B2 (en) 2016-07-31 2019-11-12 Google Llc Automatic hands free service requests
US10482463B2 (en) 2016-03-01 2019-11-19 Google Llc Facial profile modification for hands free transactions
US10671988B2 (en) 2015-02-17 2020-06-02 Mastercard Asia/Pacific Pte. Ltd. Methods and systems for processing an electronic payment
JP2020522933A (ja) * 2017-06-02 2020-07-30 ブルーフィン ペイメント システムズ エルエルシーBluefin Payment Systems,Llc ウェブブラウザを介して決済端末を管理するシステム及び方法
EP3731164A1 (en) * 2015-03-05 2020-10-28 Bell Identification B.v. Method and apparatus for authenticating and processing secure transactions using a mobile device
US11151555B2 (en) 2018-06-28 2021-10-19 International Business Machines Corporation Code-based or token-based transfers using automated teller machines
US11574301B2 (en) 2014-07-11 2023-02-07 Google Llc Hands-free transactions with voice recognition
SE2250013A1 (en) * 2022-01-11 2023-07-12 Focalpay Ab Payment method, system and computer software product
US11887105B2 (en) 2010-04-09 2024-01-30 Paypal, Inc. Transaction token issuing authorities
US11961065B2 (en) 2010-04-09 2024-04-16 Paypal, Inc. NFC mobile wallet processing systems and methods

Families Citing this family (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10679214B2 (en) * 2016-03-09 2020-06-09 Mastercard International Incorporation Method and system for electronic distribution of controlled tokens
CN107220828B (zh) * 2016-03-22 2020-09-08 阿里巴巴集团控股有限公司 通过穿戴式设备进行支付授权与支付的方法、系统及装置
AU2016415250A1 (en) * 2016-07-19 2018-11-29 Visa International Service Association Method of distributing tokens and managing token relationships
CN107067240B (zh) 2016-12-12 2020-09-08 创新先进技术有限公司 资源调配方法和装置以及电子支付方法
US20210049560A1 (en) * 2018-03-08 2021-02-18 Visa International Service Association Method for providing data security using one-way token
JP7346488B2 (ja) 2021-04-21 2023-09-19 株式会社wevnal サービス利用支援方法、サービス利用支援プログラム及びサービス利用支援システム

Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20080078831A1 (en) * 2006-09-29 2008-04-03 Johnson P Marc System and method for presenting multiple transaction options in a portable device
WO2010056480A1 (en) 2008-11-17 2010-05-20 Firethorn Holdings, Llc System and method of conducting transactions using a mobile wallet system
KR20110053216A (ko) * 2011-04-28 2011-05-19 손영수 스마트폰을 이용한 카드결제방법 및 카드결제시스템
US20110251892A1 (en) 2010-04-09 2011-10-13 Kevin Laracey Mobile Phone Payment Processing Methods and Systems
WO2012088512A2 (en) 2010-12-23 2012-06-28 Paydiant, Inc. Mobile phone atm processing methods and systems
KR20120103924A (ko) * 2011-03-11 2012-09-20 방경식 Qr코드를 이용한 결제시스템 및 그 제어방법
KR20130000072A (ko) * 2011-06-22 2013-01-02 주식회사 티모넷 Nfc 휴대단말기를 이용한 온오프라인 결제 시스템 및 그 방법
WO2013009063A2 (ko) * 2011-07-08 2013-01-17 주식회사 하렉스인포텍 결제전용코드를 이용한 결제 시스템 및 그 방법

Family Cites Families (16)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040073688A1 (en) * 2002-09-30 2004-04-15 Sampson Scott E. Electronic payment validation using Transaction Authorization Tokens
US20050203584A1 (en) 2004-03-10 2005-09-15 Medtronic, Inc. Telemetry antenna for an implantable medical device
US7379921B1 (en) * 2004-11-08 2008-05-27 Pisafe, Inc. Method and apparatus for providing authentication
US10019708B2 (en) * 2006-08-25 2018-07-10 Amazon Technologies, Inc. Utilizing phrase tokens in transactions
US8935187B2 (en) 2007-03-07 2015-01-13 Playspan, Inc. Distributed payment system and method
JP2009048601A (ja) * 2007-07-20 2009-03-05 Takashi Maejima 遠隔操作依頼システム
US20090164796A1 (en) * 2007-12-21 2009-06-25 Daon Holdings Limited Anonymous biometric tokens
US8756161B2 (en) * 2008-02-11 2014-06-17 Accenture Global Services Limited Customer initiated payment method using mobile device
US20090254479A1 (en) * 2008-04-02 2009-10-08 Pharris Dennis J Transaction server configured to authorize payment transactions using mobile telephone devices
US20110066550A1 (en) * 2009-09-16 2011-03-17 Shank Clinton L System and method for a secure funds transfer
JP2011141853A (ja) * 2010-01-11 2011-07-21 Girunetto Kk 携帯端末を用いたオフライン取引の決済方法、プログラム、決済用近距離無線通信機器。
CA2787060C (en) * 2010-01-19 2017-07-25 Visa International Service Association Token based transaction authentication
CN102859544B (zh) * 2010-03-11 2016-09-14 沃尔玛百货有限公司 用于使用移动设备进行交易支付的系统和方法
JP2011210171A (ja) * 2010-03-30 2011-10-20 Japan Research Institute Ltd 決済サーバ、決済システム、決済方法および決済プログラム
JP5518615B2 (ja) * 2010-07-27 2014-06-11 株式会社日本総合研究所 決済システム、決済方法および決済プログラム
LT5992B (lt) 2012-06-26 2014-02-25 Uab "Vildoma" Reabilitacinė vaikštynė

Patent Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20080078831A1 (en) * 2006-09-29 2008-04-03 Johnson P Marc System and method for presenting multiple transaction options in a portable device
WO2010056480A1 (en) 2008-11-17 2010-05-20 Firethorn Holdings, Llc System and method of conducting transactions using a mobile wallet system
US20110251892A1 (en) 2010-04-09 2011-10-13 Kevin Laracey Mobile Phone Payment Processing Methods and Systems
WO2012088512A2 (en) 2010-12-23 2012-06-28 Paydiant, Inc. Mobile phone atm processing methods and systems
KR20120103924A (ko) * 2011-03-11 2012-09-20 방경식 Qr코드를 이용한 결제시스템 및 그 제어방법
KR20110053216A (ko) * 2011-04-28 2011-05-19 손영수 스마트폰을 이용한 카드결제방법 및 카드결제시스템
KR20130000072A (ko) * 2011-06-22 2013-01-02 주식회사 티모넷 Nfc 휴대단말기를 이용한 온오프라인 결제 시스템 및 그 방법
WO2013009063A2 (ko) * 2011-07-08 2013-01-17 주식회사 하렉스인포텍 결제전용코드를 이용한 결제 시스템 및 그 방법

Cited By (27)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US11961065B2 (en) 2010-04-09 2024-04-16 Paypal, Inc. NFC mobile wallet processing systems and methods
US11887105B2 (en) 2010-04-09 2024-01-30 Paypal, Inc. Transaction token issuing authorities
US10275827B2 (en) 2013-03-14 2019-04-30 Fexco Systems and methods for transferring funds using a wireless device
US11625771B2 (en) 2013-03-14 2023-04-11 Fexco Systems and methods for transferring funds using a wireless device
US10185960B2 (en) 2014-07-11 2019-01-22 Google Llc Hands-free transactions verified by location
US11574301B2 (en) 2014-07-11 2023-02-07 Google Llc Hands-free transactions with voice recognition
WO2016007801A1 (en) * 2014-07-11 2016-01-14 Google Inc. Hands-free transactions with a challenge request
US10460317B2 (en) 2014-07-11 2019-10-29 Google Llc Hands-free transaction tokens via payment processor
US9652759B2 (en) 2014-07-11 2017-05-16 Google Inc. Hands-free transactions
US10417542B2 (en) 2014-08-11 2019-09-17 Visa International Service Association Mobile device with scannable image including dynamic data
US9779345B2 (en) 2014-08-11 2017-10-03 Visa International Service Association Mobile device with scannable image including dynamic data
US10671988B2 (en) 2015-02-17 2020-06-02 Mastercard Asia/Pacific Pte. Ltd. Methods and systems for processing an electronic payment
US10915902B2 (en) 2015-03-05 2021-02-09 Bell Identification Bv Method and apparatus for authenticating and processing secure transactions using a mobile device
EP3731164A1 (en) * 2015-03-05 2020-10-28 Bell Identification B.v. Method and apparatus for authenticating and processing secure transactions using a mobile device
US11676145B2 (en) 2015-03-05 2023-06-13 Bell Identification B.V. Method and apparatus for authenticating and processing secure transactions using a mobile device
JP2019508951A (ja) * 2016-02-23 2019-03-28 エヌチェーン ホールディングス リミテッドNchain Holdings Limited ブロックチェーンベースユニバーサルトークン化システム
JP7249148B2 (ja) 2016-02-23 2023-03-30 エヌチェーン ライセンシング アーゲー ブロックチェーンベースユニバーサルトークン化システム
JP2019506075A (ja) * 2016-02-23 2019-02-28 エヌチェーン ホールディングス リミテッドNchain Holdings Limited ブロックチェーンベースのトークナイゼーションを用いた交換
US10839393B2 (en) 2016-03-01 2020-11-17 Google Llc Facial profile modification for hands free transactions
US10482463B2 (en) 2016-03-01 2019-11-19 Google Llc Facial profile modification for hands free transactions
US11495051B2 (en) 2016-07-31 2022-11-08 Google Llc Automatic hands free service requests
US10474879B2 (en) 2016-07-31 2019-11-12 Google Llc Automatic hands free service requests
JP7093531B2 (ja) 2017-06-02 2022-06-30 ブルーフィン ペイメント システムズ エルエルシー ウェブブラウザを介して決済端末を管理するシステム及び方法
JP2020522933A (ja) * 2017-06-02 2020-07-30 ブルーフィン ペイメント システムズ エルエルシーBluefin Payment Systems,Llc ウェブブラウザを介して決済端末を管理するシステム及び方法
US11151555B2 (en) 2018-06-28 2021-10-19 International Business Machines Corporation Code-based or token-based transfers using automated teller machines
SE2250013A1 (en) * 2022-01-11 2023-07-12 Focalpay Ab Payment method, system and computer software product
WO2023136767A1 (en) * 2022-01-11 2023-07-20 Focalpay Ab Payment method, system and computer software product

Also Published As

Publication number Publication date
JP2020030848A (ja) 2020-02-27
CA2898205C (en) 2024-04-09
CN105164708A (zh) 2015-12-16
JP7197631B2 (ja) 2022-12-27
JP2023030024A (ja) 2023-03-07
AU2017204113A1 (en) 2017-07-06
JP6891245B2 (ja) 2021-06-18
MX2015009820A (es) 2016-06-16
BR112016016822A2 (pt) 2019-09-24
AU2017204113B2 (en) 2018-07-05
JP2016510468A (ja) 2016-04-07
AU2014219386A1 (en) 2015-07-30
KR20150132098A (ko) 2015-11-25
EP2951762A4 (en) 2016-08-10
CA2898205A1 (en) 2014-08-28
EP2951762A1 (en) 2015-12-09
RU2015136777A (ru) 2017-03-06
CN114648335A (zh) 2022-06-21
JP2021121975A (ja) 2021-08-26
AU2014219386B2 (en) 2017-03-16

Similar Documents

Publication Publication Date Title
US11232437B2 (en) Transaction token issuing authorities
AU2017204113B2 (en) Transaction token issuing authorities
US9639837B2 (en) Transaction token issuing authorities
US11961065B2 (en) NFC mobile wallet processing systems and methods
US10102514B2 (en) Payment processing methods and systems
US11887105B2 (en) Transaction token issuing authorities
AU2019283828B2 (en) NFC mobile wallet processing systems and methods

Legal Events

Date Code Title Description
WWE Wipo information: entry into national phase

Ref document number: 201480006517.X

Country of ref document: CN

121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 14753967

Country of ref document: EP

Kind code of ref document: A1

ENP Entry into the national phase

Ref document number: 2898205

Country of ref document: CA

ENP Entry into the national phase

Ref document number: 2015555448

Country of ref document: JP

Kind code of ref document: A

ENP Entry into the national phase

Ref document number: 20157020648

Country of ref document: KR

Kind code of ref document: A

WWE Wipo information: entry into national phase

Ref document number: MX/A/2015/009820

Country of ref document: MX

ENP Entry into the national phase

Ref document number: 2014219386

Country of ref document: AU

Date of ref document: 20140130

Kind code of ref document: A

NENP Non-entry into the national phase

Ref country code: DE

WWE Wipo information: entry into national phase

Ref document number: 2014753967

Country of ref document: EP

ENP Entry into the national phase

Ref document number: 2015136777

Country of ref document: RU

Kind code of ref document: A

REG Reference to national code

Ref country code: BR

Ref legal event code: B01A

Ref document number: 112016016822

Country of ref document: BR

ENP Entry into the national phase

Ref document number: 112016016822

Country of ref document: BR

Kind code of ref document: A2

Effective date: 20160720