Abstract: A Chip Authentication Program based on 3-D Secure protocols is provided for authenticating customers' on-line transactions. An issuer, who may be a payment card issuer, operates Access Control and Authentication Request Servers for authenticating transactions by individual customers who are identified by their personal EMV-complaint smart cards. An authentication token is generated at the point of interaction (POI) for each transaction based on information from the customer's smart card and transaction specific information sent directly by the issuer to populate a web page at the POI. Authentication tokens generated at the POI are evaluated by the Authentication Request Server to authenticate individual customer and/or card presence at the transaction POI. Authentication values are transported on-line in designated Universal Cardholder Authentication Fields consistent with 3-D Secure protocols.

Abstract: A secure electronic payment system and method for conducting a secure transaction using voice authentication is provided. A merchant's computer transmits an authorization request to an access control server. The access control server places a telephone call to the purchaser and performs voice authentication to confirm the identity of the purchaser. The access control server then transmits a response to the merchant's computer. If the purchaser is authorized to access the account, payment is processed by the merchant and the transaction is completed.

Abstract: A consumer product promotional assembly includes a consumer product, and a prize associated with the consumer product, the prize being spendable in a payment card infrastructure. The prize may employ, for example, radio frequency (RF) contactless technology or a bar coded or printed account number. In some embodiments, the prize is flexible and can conform to non-planar surfaces of the product.

Abstract: A secure electronic payment system and method for conducting a secure transaction using voice authentication is provided. A merchant's computer transmits an authorization request to an access control server. The access control server places a telephone call to the purchaser and performs voice authentication to confirm the identity of the purchaser. The access control server then transmits a response to the merchant's computer. If the purchaser is authorized to access the account, payment is processed by the merchant and the transaction is completed.

Abstract: A proxy authentication method and apparatus is described for use in user authentication, e.g. for payment transactions. The authentication is carried out before the transaction between a electronic, e.g. digital identification device and a person terminal. Verification information is entered at the personal terminal to authenticate the user and if this is successful a verification flag is set in the digital identification device. The status of this flag, or an encrypted version thereof can be used by a transaction terminal of evidence that the user has been authenticated without having to transmit any secret identification information to the transaction terminal.

Abstract: A method and apparatus for conducting a secure transaction involving generation of a dynamic authentication code on a mobile device, based on secret data which does not identify an account. The authentication code and financial account identifying information are transmitted to a validating entity, which shares information about the secret data, to authorize the transaction.

Abstract: A method and apparatus for conducting a transaction involving transmission of a dynamic authentication code in place of a static PIN block using currently existing messaging standards or PIN acceptance devices. Minimal changes to existing processes an equipment are made while greatly improving security and fraud minimization.

Abstract: A system for conducting financial transactions is provided wherein payment cards have stored account information including a first portion readable by a first machine-readable technology and a second portion readable by a second different machine-readable technology. Terminals employing both of said first and second technologies are used to capture said card account information for conducting each such transaction.

Abstract: Techniques for reducing or eliminating the likelihood of fraud in a contactless proximity communications apparatus are provided. The apparatus can include a body portion with a body, a communications circuit, and an antenna. The apparatus can also include a signal-disrupting portion that is mounted for motion, such as rotary or linear motion, with respect to the body portion and configured to substantially disrupt RF signals in a first position, and to move to a second position where RF communication is possible.

Abstract: A system for conducting a financial transaction over a payment network is disclosed, which system includes a micropayment system interfaced with the payment network for allowing identification of the transaction as a micropayment transaction and allowing, at the option of the cardholder, repudiation of the micropayment transaction automatically by crediting the cardholder's account the amount of the micropayment transaction.

Abstract: In accordance with the present invention, when an appropriate transaction message is received by a payment gateway, instead of requesting an authorization of the transaction through the payment network, the payment gateway instead sends an authorization response back to the message originator. The payment gateway may perform authentication functions and send transaction data back to the message originator. In this way, the payment gateway may be used for authentication functions while the message originator may use its existing payment system protocols to conduct authorization functions.

Abstract: Secure protection and distribution of a personal identification number (PIN) is achieved by using a first encryption process only for PIN data and a second encryption process for non-PIN data. The first encryption process uses asymmetric encryption, where a public key is used for encryption of PIN data and a private key, held only by an authorizing agent, is used to decrypt the PIN data. The second encryption process uses a key which is available to an authentication requestor, such as merchants. A party seeking authentication of PIN data must forward the encrypted PIN data to an authorizing agent along with account data necessary to validate the PIN data. The authentication requestor is provided with a signal which is indicative of the verification status of the PIN data without being privy to the contents of the PIN data.

Abstract: A secure electronic payment system and method for conducting a secure transaction using authentication is provided. A merchant's computer transmits an authorization request to an access control server. The access control obtains authentication to confirm the identity of the purchaser, via e.g., an electronic form or interactive voice response system. The access control server then transmits a response to the merchant's computer. If the purchaser is authorized to access the account, payment is processed by the merchant and the transaction is completed.

Abstract: A proximity device transmits a first dynamic authentication value contactlessly to a terminal. The first authentication value is included in a discretionary data field of message data arranged in an ISO Track 1 and/or ISO Track 2 formal Message data is sent from the terminal to an issuer. The issuer separately derives a second authentication value and compares it with the first authentication value.

Abstract: A self-validating payment device for making proximity payment transactions through a point-of-sale device is provided. The payment device includes electronics for wireless communication of stored or processed payer information to the point-of-sale device. A biometric reader is integrated into the payment device. A biometric measurement of a user of the payment device in the field is compared internally with a reference biometric measurement corresponding to the user to whom the payment device is registered. The payment device self-validates itself for use according to the results of comparison.

Abstract: A proximity device transmits a first dynamic authentication value contactlessly to a terminal. The first authentication value is included in a discretionary data field of message data arranged in an ISO Track 1 and/or ISO Track 2 format. Message data is sent from the terminal to an issuer. The issuer separately derives a second authentication value and compares it with the first authentication value. An identifier associated with the primary account number (PAN) is also used and transmitted instead of the PAN.

Abstract: A system for conducting financial transactions is provided wherein payment cards have stored account information including a first portion readable by a first machine-readable technology and a second portion readable by a second different machine-readable technology. Terminals employing both of said first and second technologies are used to capture said card account information for conducting each such transaction.

Abstract: A system for conducting financial transactions is provided wherein payment cards have stored account information including a first portion readable by a first machine-readable technology and a second portion readable by a second different machine-readable technology. Terminals employing both of said first and second technologies are used to capture said card account information for conducting each such transaction.

Abstract: A secure electronic payment system and method for conducting a secure transaction using voice authentication is provided. A merchant's computer transmits an authorization request to an access control server. The access control server places a telephone call to the purchaser and performs voice authentication to confirm the identity of the purchaser. The access control server then transmits a response to the merchant's computer. If the purchaser is authorized to access the account, payment is processed by the merchant and the transaction is completed.

Abstract: A system and method for authenticating a digital ID can utilize a central switch to transmit data between a network connected to a service provider and a network connected to a digital ID issuer. The system can be configured to provide a “yes/no” authorization or a validation at a selected validation level. The system can receive an encrypted authorization request message, and can generate an encrypted authorization response message. The authorization response message can be used by the service provider to decide whether to provide a service to a digital ID holder.