Abstract: Various implementation described herein are directed to a method for providing access control. User information is received at a device. A request to provide access control is generated by the device based on the received user information. The request is transmitted via a network to an access manager. A response to the request is received from the access manager. Access control via the device is provided based on the response to the request.

Abstract: A selective transaction authorization method and system wherein the payment authorization request includes restriction information indicating a restricted purchase is requested, and the payment authorization request is declined or authorized according to a status of the account with which the purchase is being attempted.

Abstract: Various implementation described herein are directed to a method for providing access control. User information is received at a device. A request to provide access control is generated by the device based on the received user information. The request is transmitted via a network to an access manager. A response to the request is received from the access manager. Access control via the device is provided based on the response to the request.

Abstract: The invention provides systems and methods capable of effecting payment with a payment account that is different to the payment account associated with a payment device that initiated a payment transaction. An authorisation request message is modified by the invention to replace a cryptogram associated with the payment device with a cryptogram associated with the payment account that payment is to be taken from. A user may use a mobile communication device to communicate with a server storing associations between payment devices, such that the server can be consulted by a payment network server to determine which cryptogram to generate when modifying the authorisation request.

Abstract: The present invention provides a technical solution by which a consumer can be successfully authenticated in the scenario where the payment card or payment token provided by the consumer in an e-commerce/card not present transaction does not correspond to the payment account that is to provide the funds for effecting payment. This technical solution advantageously ensures that authentication security is not compromised whilst also enabling the consumer to enjoy the increased flexibility that comes with funding a transaction using a payment account that is not associated with the payment card/token provided by the consumer. Additionally, the present invention requires relatively little change to the configuration of the computing devices that collectively function to enable the transaction to take place (e.g. payment network computing devices, merchant computing devices, access control servers (ACS)).

Abstract: The invention provides a method and system allowing a consumer to update (secondary) payment credentials linked to a single set of main (first) payment credentials. This allows consumers to initiate transactions using such first set of payment credentials, which are treated by the merchant and acquirer as the payment credentials for the transaction, while the transaction is funded using payment credentials that the consumer dynamically selected. The selection may be performed before the transaction begins, or in some cases the selection can be made in real time whilst the transaction is ongoing.

Abstract: A method for a tokenisation service provider (TSP) to generate tokenised card numbers tPANs associated with real card numbers PANs for digital payment transactions, and a processor configured to perform the method are provided. The method comprises a TSP processor: receiving from a card issuer processor a request to generate one or more tokenised card numbers tPAN1 . . . m; generating and recording one or more tokenised card numbers tPAN1 . . . m, wherein the one or more tPAN1 . . . m is/are not associated with a real card number PAN; receiving a real card number PANi from the card issuer processor; and recording the mapping of the real card number PANi to a tokenised card number tPANxE1 . . . m in a tokenisation service provider database. A method for a card issuer to provide tokenised card numbers tPANs associated with real card numbers PANs for digital payment transactions, and a processor configured to perform the method are also provided.

Abstract: A method for a tokenisation service provider (TSP) to generate tokenised card numbers tPANs associated with real card numbers PANs for digital payment transactions, and a processor configured to perform the method are provided. The method comprises a TSP processor: receiving from a card issuer processor a request to generate one or more tokenised card numbers tPAN1 . . . m; generating and recording one or more tokenised card numbers tPAN1 . . . m, wherein the one or more tPAN1 . . . m is/are not associated with a real card number PAN; receiving a real card number PANi from the card issuer processor; and recording the mapping of the real card number PANi to a tokenised card number tPANxE1 . . . m in a tokenisation service provider database. A method for a card issuer to provide tokenised card numbers tPANs associated with real card numbers PANs for digital payment transactions, and a processor configured to perform the method are also provided.

Abstract: In one aspect, a method of securing a Mail Order/Telephone Order (MO/TO) transaction is provided. The method is performed by a MO/TO account holder-facing application running on a processor of an account holder computing device, and includes receiving a MO/TO token request from an account holder; and responsive thereto, obtaining data corresponding to a token for use in a MO/TO transaction request to be provided to a merchant having access to a merchant-facing application corresponding to said account holder-facing application. In another aspect, a method of processing a MO/TO transaction is provided. The method is performed by a MO/TO merchant-facing application running on a processor of a merchant computing device, and includes receiving a MO/TO transaction request, comprising data corresponding to a token, from a merchant; and responsive thereto, initiating obtaining payment credentials using said token.