公开(公告)号：US20150220925A1

公开(公告)日：2015-08-06

申请号：US14174828

申请日：2014-02-06

Applicant: Google Inc.

Inventor： Justin Lee Brickell ,  Swaminathan Mahadevan ,  Harry Lee Butler, IV ,  Bobby Wieler ,  Ignacio Carlos Blanco

IPC: G06Q20/40 ,  G06Q20/36

CPC classification number: G06Q20/4014 ,  G06Q20/36

Abstract: Using discretionary data fields to secure transactions comprises a payment system employing a server configured to associate a payment account of a user with a user computing device, the payment account comprising a payment account identifier that identifies the payment account, and establish a authentication challenge and an corresponding challenge response. The payment system receives a first payment authorization request originating from a merchant computing system comprising the payment account identifier, data associated with the payment account identifier, and a request to fund a transaction using the payment account, wherein the data associated with the payment account identifier comprises a challenge response provided by the user computing device located in a discretionary data field. The payment system compares the provided challenge response with the corresponding challenge response, and approves the transaction based on whether the provided challenge response and the corresponding challenge response match.

Abstract translation: 使用任意数据字段来保护交易包括采用服务器的支付系统，所述服务器被配置为将用户的支付账户与用户计算设备相关联，所述支付账户包括标识支付账户的支付帐户标识符，以及建立认证挑战和 相应的挑战回应。 支付系统接收来自商业计算系统的第一支付授权请求，该请求包括支付帐户标识符，与支付帐户标识符相关联的数据，以及使用支付账户资助交易的请求，其中与付款帐户识别符相关联的数据 包括由位于任意数据字段中的用户计算设备提供的质询响应。 支付系统将提供的挑战响应与相应的挑战响应进行比较，并且基于所提供的挑战响应和相应的挑战响应是否匹配来批准交易。

公开(公告)号：US09858572B2

公开(公告)日：2018-01-02

申请号：US14174828

申请日：2014-02-06

Applicant: Google Inc.

Inventor： Justin Lee Brickell ,  Swaminathan Mahadevan ,  Harry Lee Butler, IV ,  Bobby Wieler ,  Ignacio Carlos Blanco

IPC: G06K5/00 ,  G06Q20/40 ,  G06Q20/36

CPC classification number: G06Q20/4014 ,  G06Q20/36

Abstract: Using discretionary data fields to secure transactions comprises a payment system employing a server configured to associate a payment account of a user with a user computing device, the payment account comprising a payment account identifier that identifies the payment account, and establish a authentication challenge and an corresponding challenge response. The payment system receives a first payment authorization request originating from a merchant computing system comprising the payment account identifier, data associated with the payment account identifier, and a request to fund a transaction using the payment account, wherein the data associated with the payment account identifier comprises a challenge response provided by the user computing device located in a discretionary data field. The payment system compares the provided challenge response with the corresponding challenge response, and approves the transaction based on whether the provided challenge response and the corresponding challenge response match.