公开(公告)号：US20190392449A1

公开(公告)日：2019-12-26

申请号：US16448596

申请日：2019-06-21

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Julia Sharon Gosset ,  Robert Albert Ederle ,  Ranjita Shankar Iyer ,  Brian Piel ,  Christopher John Merz ,  Felix Johannes Flory

IPC: G06Q20/40 ,  H04W12/00 ,  H04L29/06

Abstract: An authentication platform for authenticating an online user is provided. The authentication platform includes a memory device including an authentication profile and at least one processor coupled to the memory device. The at least one processor is programmed to receive an authentication request message. The authentication request message includes authentication data. The at least one processor is also programmed to extract the authentication data from the authentication request message, generate, based at least in part on the extracted authentication data, risk-based authentication (RBA) result data including a risk score, and route the RBA result data based on the authentication profile and the RBA result data.

公开(公告)号：US20190392440A1

公开(公告)日：2019-12-26

申请号：US16448822

申请日：2019-06-21

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Robert Albert Ederle ,  Julia Sharon Gosset ,  Ranjita Shankar Iyer ,  Brian Piel ,  Dennis A. Gamiello ,  Christopher John Merz ,  Felix Johnnes Flory

IPC: G06Q20/40 ,  H04L29/06

Abstract: An authentication platform for authenticating an online user is provided. The authentication platform includes a memory device including an authentication profile and at least one processor coupled to the memory device. The at least one processor is programmed to receive an authentication request message for a transaction. The authentication request message includes authentication data. The at least one processor is also programmed to extract the authentication data from the authentication request message and determine if the ACS is available to process the transaction. If the ACS is unavailable, the at least one processor is further programmed to generate, based at least in part on the extracted authentication data, risk-based authentication (RBA) result data including a risk score and transmit an authentication response message based on the RBA result data.

公开(公告)号：US12260411B2

公开(公告)日：2025-03-25

申请号：US16448822

申请日：2019-06-21

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Robert Albert Ederle ,  Julia Sharon Gosset ,  Ranjita Shankar Iyer ,  Brian Piel ,  Dennis A. Gamiello ,  Christopher John Merz ,  Felix Johannes Flory

IPC: G06Q20/40 ,  G06Q20/12 ,  G06Q20/32 ,  H04L9/40 ,  H04W12/67

Abstract: An authentication platform for authenticating an online user is provided. The authentication platform includes a memory device including an authentication profile and at least one processor coupled to the memory device. The at least one processor is programmed to receive an authentication request message for a transaction. The authentication request message includes authentication data. The at least one processor is also programmed to extract the authentication data from the authentication request message and determine if the ACS is available to process the transaction. If the ACS is unavailable, the at least one processor is further programmed to generate, based at least in part on the extracted authentication data, risk-based authentication (RBA) result data including a risk score and transmit an authentication response message based on the RBA result data.

公开(公告)号：US11823187B2

公开(公告)日：2023-11-21

申请号：US17332563

申请日：2021-05-27

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Robert Albert Ederle ,  Mark B. Hey ,  Kris Lowell Donaldson ,  Gregory S. Kriebaum

IPC: G06Q20/40 ,  G06Q20/38 ,  G06Q20/06

CPC classification number: G06Q20/4012 ,  G06Q20/065 ,  G06Q20/389 ,  G06Q20/405

Abstract: Systems and methods are provided for associating authentications and authorizations in connection with network interactions. An exemplary system includes a computing device configured to receive an authorization request for a network interaction from an acquirer, where the authorization request includes a primary account number (PAN) for a payment account and a transaction amount. The computing device is also configured to determine whether the authorization request includes an accountholder authentication value (AAV) and/or a transaction identifier (ID). In response to the authorization request including the AAV and the transaction ID, the computing device is configured to determine whether the AAV and the transaction ID are included in a data structure and, in response to them being included in the data structure, append a tag to the authorization request indicative of association of the authorization request to an authentication in the data structure associated with the AAV and the transaction ID.

公开(公告)号：US20240037554A1

公开(公告)日：2024-02-01

申请号：US18379920

申请日：2023-10-13

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Robert Albert Ederle ,  Mark B. Hey ,  Kris Lowell Donaldson ,  Gregory S. Kriebaum

IPC: G06Q20/40 ,  G06Q20/38 ,  G06Q20/06

CPC classification number: G06Q20/4012 ,  G06Q20/389 ,  G06Q20/065 ,  G06Q20/405

Abstract: Systems and methods are provided for associating authentications and authorizations in connection with network interactions. An exemplary system includes a computing device configured to receive an authorization request for a network interaction from an acquirer, where the authorization request represents a transaction to a payment account and includes a transaction amount and an accountholder authentication value (AAV) indicative of a prior authentication associated with the transaction. The computing device is configured to determine whether the authorization request, the transaction amount and/or an interval associated with the authorization request satisfies a parameter. In response to the authorization request, the transaction amount and/or the interval associated with the authorization request failing to satisfy the parameter, the computing device is configured to append a tag indicative of the parameter to the authorization request and transmit the authorization request to an issuer of the payment account.

公开(公告)号：US20170083914A1

公开(公告)日：2017-03-23

申请号：US14857406

申请日：2015-09-17

Applicant: MasterCard International Incorporated

Inventor： Paul Stephen Baker ,  Robert Albert Ederle ,  John Artman ,  Stephanie Dickinson ,  Craig Gilbert ,  Karen Jeanne Gieselman ,  Brian John Piel

IPC: G06Q20/40

CPC classification number: G06Q20/4014 ,  G06Q20/02 ,  G06Q20/0855 ,  G06Q20/12 ,  G06Q20/34 ,  G06Q20/4012 ,  G06Q20/4016

Abstract: Methods, media, and systems directed to a platform for receiving, from at least one external user of an authentication system, a record including customer information for the external user and associated with at least an enrollment of the at least one external user to the authentication system; receiving, by a computer interfaced with an authentication database storing historical external user customer information, the record including the customer information for the external user; validating the record including customer information for the external user and the historical external user customer information; and storing an indication of the validated record.

公开(公告)号：US11875349B2

公开(公告)日：2024-01-16

申请号：US16448572

申请日：2019-06-21

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Julia Sharon Gosset ,  Robert Albert Ederle ,  Ranjita Shankar Iyer ,  Brian Piel ,  Christopher John Merz ,  Felix Johannes Flory ,  Andres Gonzalez

IPC: G06Q20/40 ,  H04L9/40 ,  G06Q20/32 ,  H04W12/67 ,  G06Q20/12

CPC classification number: G06Q20/4016 ,  G06Q20/12 ,  G06Q20/3226 ,  G06Q20/405 ,  H04L63/08 ,  H04L63/083 ,  H04L63/101 ,  H04W12/67

Abstract: A computer-implemented method for authenticating an online user with an access control server (ACS) is provided. The method includes receiving, at a risk-based authentication enabled (RBA-enabled) directory server, an authentication request message including authentication data, extracting, using the RBA-enabled directory server, the authentication data from the authentication request message, transmitting the extracted authentication data to an RBA engine, generating, using the RBA engine, based at least in part on the extracted authentication data, RBA result data including a risk score, a risk analysis, and at least one reason code, transmitting the RBA result data to the RBA-enabled directory server, embedding, using the RBA-enabled directory server, the RBA result data into the authentication request message to generate an enhanced authentication request message, and transmitting the enhanced authentication request message to the ACS to enable the ACS to make an authentication decision based on the RBA result data.

公开(公告)号：US20210374747A1

公开(公告)日：2021-12-02

申请号：US17332563

申请日：2021-05-27

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Robert Albert Ederle ,  Mark B. Hey ,  Kris Lowell Donaldson ,  Gregory S. Kriebaum

IPC: G06Q20/40 ,  G06Q20/06 ,  G06Q20/38

Abstract: Systems and methods are provided for associating authentications and authorizations in connection with network interactions. An exemplary system includes a computing device configured to receive an authorization request for a network interaction from an acquirer, where the authorization request includes a primary account number (PAN) for a payment account and a transaction amount. The computing device is also configured to determine whether the authorization request includes an accountholder authentication value (AAV) and/or a transaction identifier (ID). In response to the authorization request including the AAV and the transaction ID, the computing device is configured to determine whether the AAV and the transaction ID are included in a data structure and, in response to them being included in the data structure, append a tag to the authorization request indicative of association of the authorization request to an authentication in the data structure associated with the AAV and the transaction ID.

公开(公告)号：US20190392450A1

公开(公告)日：2019-12-26

申请号：US16448884

申请日：2019-06-21

Applicant: MASTERCARD INTERNATIONAL INCORPORATED

Inventor： Julia Sharon Gosset ,  Robert Albert Ederle ,  Ranjita Shankar Iyer ,  Brian Piel ,  Christopher John Merz ,  Felix Johannes Flory ,  Nimit Gulati ,  Paul Baker

IPC: G06Q20/40 ,  G06Q20/12 ,  H04L29/06

Abstract: An authentication platform for authenticating an online user in a transaction without use of strong consumer authentication (SCA) includes receiving an authentication request message for a transaction involving a regulated market includes authentication data and a transaction value, extracting the authentication data from the authentication request message, generating risk-based authentication (RBA) result data, determining that a risk of fraud in the transaction satisfies a risk threshold established by the regulatory entity by evaluating the risk score relative to the risk threshold, determining that the transaction value is below a transaction limit set by the regulatory entity, the transaction limit identifies a threshold transaction value below which strong consumer authentication may be avoided for transactions satisfying the risk threshold, and transmitting an authentication response message authenticating the transaction without strong consumer authentication having been performed based on satisfying the risk threshold and being below the transaction limit.