公开(公告)号：US12278813B2

公开(公告)日：2025-04-15

申请号：US17687279

申请日：2022-03-04

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Brian Piel

IPC: H04L29/06 ,  H04L9/40 ,  G06Q20/40

Abstract: An authentication correlation (AC) computing device is provided. The AC computing device includes a processor and a memory. The AC computing device receives a first authentication request from a requesting computer device including an account identifier, a first timestamp, and at least one authentication factor, and determines a first security level of the first authentication request. The AC computing device stores the first security level and the first timestamp. The AC computing device is also configured to receive a second authentication request including the account identifier and a second timestamp, determine that the second authentication satisfies an authentication rule based on the account identifier, the second timestamp, and the stored authentication data wherein the rule defines a timeframe and an authentication threshold, and generate an authentication response based on the determination and the authentication rule wherein the authentication response includes an approval indicator.

公开(公告)号：US20220191198A1

公开(公告)日：2022-06-16

申请号：US17687279

申请日：2022-03-04

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Brian Piel

IPC: H04L9/40

Abstract: An authentication correlation (AC) computing device is provided. The AC computing device includes a processor and a memory. The AC computing device receives a first authentication request from a requesting computer device including an account identifier, a first timestamp, and at least one authentication factor, and determines a first security level of the first authentication request. The AC computing device stores the first security level and the first timestamp. The AC computing device is also configured to receive a second authentication request including the account identifier and a second timestamp, determine that the second authentication satisfies an authentication rule based on the account identifier, the second timestamp, and the stored authentication data wherein the rule defines a timeframe and an authentication threshold, and generate an authentication response based on the determination and the authentication rule wherein the authentication response includes an approval indicator.

公开(公告)号：US20190108515A1

公开(公告)日：2019-04-11

申请号：US15725893

申请日：2017-10-05

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Sowmya Reddy Lakka ,  Brian Piel ,  Vincenzo Palomba ,  Jonathan James Main ,  David Anthony Roberts

IPC: G06Q20/38 ,  G06Q20/40

Abstract: Systems and methods are provided for authenticating users to payment accounts in connection with transactions. An exemplary method includes receiving, by at least one computing device, an authentication request for a transaction associated with a payment account where the authentication request includes a token associated with the payment account and a cryptogram, and mapping the token to a primary account number (PAN) for the payment account. The method also includes validating the cryptogram, generating a directory server nonce (DSN) for the authentication request, and transmitting the DSN and the account number to an access control server (ACS) associated with an issuer of the payment account. The method further includes, in response to an issuer authentication value (IAV), compiling an accountholder authentication value (AAV) including the IAV, the DSN and an amount of the transaction, and transmitting the AAV to one of a merchant and a server.

公开(公告)号：US20230040368A1

公开(公告)日：2023-02-09

申请号：US17967667

申请日：2022-10-17

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Brian Piel

IPC: G06Q20/02 ,  G06Q20/40 ,  G06Q20/12

Abstract: An authentication computing device, including a processor in communication with a memory, for authenticating an ACH transaction processed over an ACH network is provided. The processor is programmed to register a payee with the authentication computing device, and to receive an authentication request for an electronic ACH transaction to transfer funds from a payor account to a payee account. The request is received from a first client computing device and includes an account identifier associated with the payor account. The processor is also programmed to transmit an authentication challenge to a second client computing device based on account data associated with the account identifier. The processor is further programmed to receive a response to the authentication challenge, determine whether the account data has been authenticated based on the received challenge response, and transmit an authentication response to the payee based on the determination.

公开(公告)号：US11348116B2

公开(公告)日：2022-05-31

申请号：US15805985

申请日：2017-11-07

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Brian Piel

IPC: G06Q20/40 ,  G06Q20/30 ,  G06F21/31 ,  G06Q20/32 ,  H04L9/40

Abstract: A personal cloud authentication (PCA) system for authenticating an online user using device data stored on a personal cloud platform of the user is provided. The PCA system configured to build an authentication table using a user profile that includes at least user account information. The PCA system is also configured to receive transaction data associated with the user account information and store the transaction data within a database, wherein the transaction data includes at least an authentication request, a second primary user computing device identifier and a second secondary user computing device identifier. The PCA system is further configured to parse the transaction data, match the first primary user computing device identifier to the second primary user computing device identifier and the first secondary user computing device identifier to the second secondary user computing device identifier, generate an authentication response based on the match, and transmit the authentication response.

公开(公告)号：US11080697B2

公开(公告)日：2021-08-03

申请号：US15725893

申请日：2017-10-05

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Sowmya Reddy Lakka ,  Brian Piel ,  Vincenzo Palomba ,  Jonathan James Main ,  David Anthony Roberts

IPC: G06Q20/38 ,  G06Q20/40 ,  G06Q20/12 ,  G06Q20/04

Abstract: Systems and methods are provided for authenticating users to payment accounts in connection with transactions. An exemplary method includes receiving, by at least one computing device, an authentication request for a transaction associated with a payment account where the authentication request includes a token associated with the payment account and a cryptogram, and mapping the token to a primary account number (PAN) for the payment account. The method also includes validating the cryptogram, generating a directory server nonce (DSN) for the authentication request, and transmitting the DSN and the account number to an access control server (ACS) associated with an issuer of the payment account. The method further includes, in response to an issuer authentication value (IAV), compiling an accountholder authentication value (AAV) including the IAV, the DSN and an amount of the transaction, and transmitting the AAV to one of a merchant and a server.

公开(公告)号：US20190139044A1

公开(公告)日：2019-05-09

申请号：US15805985

申请日：2017-11-07

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Brian Piel

IPC: G06Q20/40 ,  H04L29/06 ,  G06Q20/32

Abstract: A personal cloud authentication (PCA) system for authenticating an online user using device data stored on a personal cloud platform of the user is provided. The PCA system configured to build an authentication table using a user profile that includes at least user account information. The PCA system is also configured to receive transaction data associated with the user account information and store the transaction data within a database, wherein the transaction data includes at least an authentication request, a second primary user computing device identifier and a second secondary user computing device identifier. The PCA system is further configured to parse the transaction data, match the first primary user computing device identifier to the second primary user computing device identifier and the first secondary user computing device identifier to the second secondary user computing device identifier, generate an authentication response based on the match, and transmit the authentication response.

公开(公告)号：US12260411B2

公开(公告)日：2025-03-25

申请号：US16448822

申请日：2019-06-21

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Robert Albert Ederle ,  Julia Sharon Gosset ,  Ranjita Shankar Iyer ,  Brian Piel ,  Dennis A. Gamiello ,  Christopher John Merz ,  Felix Johannes Flory

IPC: G06Q20/40 ,  G06Q20/12 ,  G06Q20/32 ,  H04L9/40 ,  H04W12/67

Abstract: An authentication platform for authenticating an online user is provided. The authentication platform includes a memory device including an authentication profile and at least one processor coupled to the memory device. The at least one processor is programmed to receive an authentication request message for a transaction. The authentication request message includes authentication data. The at least one processor is also programmed to extract the authentication data from the authentication request message and determine if the ACS is available to process the transaction. If the ACS is unavailable, the at least one processor is further programmed to generate, based at least in part on the extracted authentication data, risk-based authentication (RBA) result data including a risk score and transmit an authentication response message based on the RBA result data.

公开(公告)号：US11880842B2

公开(公告)日：2024-01-23

申请号：US16222780

申请日：2018-12-17

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Brian Piel

IPC: G06Q20/40 ,  G06N20/00 ,  G06Q20/38

CPC classification number: G06Q20/40145 ,  G06N20/00 ,  G06Q20/3823 ,  G06Q20/4097

Abstract: An adaptive authentication (AA) computer device used for improved payment transaction authentication services is provided. The AA computer device includes at least one processor in communication with at least one memory device and is configured to retrieve historical transaction data and authentication types for each historical transaction. The AA computer device is also configured to generate a model associating each of the authentication types with a corresponding set of values for transaction parameters. The AA computer device is further configured to receive pending transaction data including a cardholder identifier of a first cardholder, a merchant identifier, and a transaction amount. The AA computer device is further configured to determine an authentication type by applying the model to the transaction parameters derived from the pending transaction and transmit to the first cardholder an authentication request of the authentication type.

公开(公告)号：US11461854B2

公开(公告)日：2022-10-04

申请号：US15802907

申请日：2017-11-03

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Brian Piel

IPC: G06Q40/00 ,  G06Q20/40 ,  H04W12/06

Abstract: An authentication computing device stores a cardholder profile that is associated with a candidate cardholder and includes a cardholder identifier, a device identifier, payment account data, and trusted authentication data in a database system, receives an authentication request that is associated with a tax filing of the candidate cardholder and includes a filing identifier from a revenue computing device, detects the authentication request is associated with the candidate cardholder based upon the filing identifier and the cardholder profile, transmits an identity challenge requesting authentication data associated with the candidate cardholder to a user device associated with the device identifier, receives a challenge response including response authentication data from the user device, determines an authentication status associated with the authentication request based on a comparison of the response authentication data and the trusted authentication data, and transmits the authentication status to the revenue computing device.