公开(公告)号：US20140365377A1

公开(公告)日：2014-12-11

申请号：US14301082

申请日：2014-06-10

Applicant: The Toronto-Dominion Bank

Inventor： Hisham SALAMA ,  Lauren Van Heerden ,  Ian Sundberg ,  Anand Kannan ,  Orin Del Vecchio

IPC: G06Q20/38 ,  G06Q20/08

Abstract: A method of authorizing a transaction involves a computer server authenticating a payment cardholder from a cardholder credential, and receiving a request from a communications terminal to initiate an online transaction with the server. The server communicates with a database of clusters, each uniquely associated with a respective cardholder and identifying an authentication card and a partial payment card number. The server requests an authentication credential from the terminal in response to determining that the requested transaction possesses a high risk of fraud. The server receives the requested authentication credential, and uses the cardholder and authentication credentials to locate the authentication card uniquely associated with the cardholder and the authentication credential in the database. The authentication credential has fewer digits than the account number of the located authentication card. The server authorizes the transaction in response to authenticating the cardholder using the account number of the located authentication card.

Abstract translation: 授权交易的方法涉及计算机服务器从持卡人凭证认证支付持卡人，并且从通信终端接收请求以发起与服务器的在线交易。 服务器与集群的数据库通信，每个集群数据库与相应的持卡人唯一相关联，并且识别认证卡和部分支付卡号。 响应于确定所请求的交易具有高风险的欺诈，服务器从终端请求认证证书。 服务器接收请求的身份验证凭证，并使用持卡人和身份验证凭据来定位与持卡人唯一相关联的认证卡和数据库中的身份验证凭证。 身份验证凭证的数量少于所在身份验证卡的帐号。 服务器授权交易响应使用所在身份验证卡的帐号认证持卡人。

公开(公告)号：US10726400B2

公开(公告)日：2020-07-28

申请号：US14301082

申请日：2014-06-10

Applicant: The Toronto-Dominion Bank

Inventor： Hisham Salama ,  Lauren Van Heerden ,  Ian Sundberg ,  Anand Kannan ,  Orin Del Vecchio

IPC: G06Q20/10 ,  G06Q20/40

Abstract: A method of authorizing a transaction involves a computer server authenticating a payment cardholder from a cardholder credential, and receiving a request from a communications terminal to initiate an online transaction with the server. The server communicates with a database of clusters, each uniquely associated with a respective cardholder and identifying an authentication card and a partial payment card number. The server requests an authentication credential from the terminal in response to determining that the requested transaction possesses a high risk of fraud. The server receives the requested authentication credential, and uses the cardholder and authentication credentials to locate the authentication card uniquely associated with the cardholder and the authentication credential in the database. The authentication credential has fewer digits than the account number of the located authentication card. The server authorizes the transaction in response to authenticating the cardholder using the account number of the located authentication card.

公开(公告)号：US11676115B2

公开(公告)日：2023-06-13

申请号：US16914660

申请日：2020-06-29

Applicant: The Toronto-Dominion Bank

Inventor： Hisham Salama ,  Lauren Van Heerden ,  Ian Sundberg ,  Anand Kannan ,  Orin Del Vecchio

IPC: G06Q20/10 ,  G06Q20/40

CPC classification number: G06Q20/10 ,  G06Q20/401 ,  G06Q20/4016

Abstract: An authorization system includes a database, and at least one computer server in communication with the database. The database includes a plurality of database records, each including an account number and an associated card number. Each card number has fewer digits than the associated account number. The server is configured to receive, from a communications terminal, a request message that initiates a transaction with the server. The server is configured to request an authentication credential from the terminal, and in the database locate the card number that matches the received authentication credential and locate the account number that is associated with the located card number. The server is configured to request authorization of a test transaction using the account number, receive an authorization response confirming authorization of the test transaction, and authorize the initiated transaction in response to the authorization response. The test transaction is different from the initiated transaction.