公开(公告)号：US11328298B2

公开(公告)日：2022-05-10

申请号：US15291360

申请日：2016-10-12

Applicant: The Toronto-Dominion Bank

Inventor： Bryan Michael Gleeson ,  John Henry Dunstan

IPC: G06Q20/40 ,  H04L29/06 ,  G06Q20/38

Abstract: A network gateway includes a gateway authenticator, a first network interface for interfacing the network gateway with a first computer network, and a second network interface for interfacing the network gateway with a second computer network that is distinct from the first computer network. The gateway authenticator receives from a pin-pad terminal, via the first computer network, an activation credential request that includes a first administrator credential. The pin-pad terminal receives the first administrator credential from a hardware token that is interfaced with the pin-pad terminal. The gateway authenticator is configured to (i) verify that, before the pin-pad terminal received the first administrator credential from the hardware token, the first computer network associated the first administrator credential with the pin-pad terminal; and (ii) install in the pin-pad terminal a digital authentication certificate that facilitates authentication of the pin-pad terminal to the second computer network via the network gateway.

公开(公告)号：US10891611B2

公开(公告)日：2021-01-12

申请号：US14340417

申请日：2014-07-24

Applicant: The Toronto Dominion Bank

Inventor： Robert Hayhow ,  Bryan Michael Gleeson

IPC: G06Q20/38 ,  G06Q20/02 ,  G06Q20/34 ,  G06Q20/20

Abstract: A method of authenticating a payment terminal to a computer server involves the terminal generating a terminal activation request from a private key uniquely associated with the terminal, and from a credential uniquely associated with the terminal. The activation request includes a public key that the payment terminal generates from the private key. The private key is both provided to and uniquely associated with the terminal by an entity other than the terminal prior to the terminal generating the activation request. The terminal transmits the activation request to a certificate server, and receives a digital certificate in response. The terminal initiates a transaction with a network client by authenticating to the computer server using the digital certificate. The computer server is in communication with the network client via a communications network. The terminal effects payment for the transaction via an acquirer network distinct from the communications network.

公开(公告)号：US20190188705A1

公开(公告)日：2019-06-20

申请号：US15724249

申请日：2017-10-03

Applicant: The Toronto-Dominion Bank

Inventor： Jeffrey Aaron Ecker ,  Bryan Michael Gleeson ,  Igor Elkhinovich ,  Dmitri Rabinovich ,  Adam Douglas McPhee ,  Matta Wakim ,  Kyryll Odobetskiy ,  Arun Victor Jagga ,  John Jong-Suk Lee ,  Rakesh Thomas Jethwa

IPC: G06Q20/40 ,  G06F16/903 ,  G06Q20/20

CPC classification number: G06Q20/40 ,  G06F16/90335 ,  G06Q20/204

Abstract: A point-of-sale terminal includes a card interface, and is configured to receive a plurality of pre-authorization requests, each comprising an authorization and further comprising an account number received from the card interface. The terminal is further configured, in response to each said pre-authorization request, to locate in a pre-authorization database a database record associated with the respective account number, confirm that the respective authorization amount is not greater than an offline authorization threshold, generate an authorization confirmation message comprising the respective account number and the respective authorization amount, and save the authorization confirmation message in a clearing database. The terminal is further configured to generate a clearing payload comprising the plurality of saved authorization confirmation messages, and transmit the clearing payload over a computer network.

公开(公告)号：US20140108265A1

公开(公告)日：2014-04-17

申请号：US14137910

申请日：2013-12-20

Applicant: The Toronto Dominion Bank

Inventor： Robert Hayhow ,  Bryan Michael Gleeson

IPC: G06Q20/38

CPC classification number: G06Q20/38215 ,  G06Q20/02 ,  G06Q20/027 ,  G06Q20/20 ,  G06Q20/341 ,  G06Q20/3821 ,  G06Q20/3829

Abstract: A method of network gateway authenticating involves a network gateway receiving an authentication request from a communications terminal. The communications terminal is in communication with an identity token. The authentication request includes a token cryptogram generated from a cryptographic key stored on the identity token. The network gateway transmits the authentication request to a communications network, and receives an authentication response from the communications network in accordance with a validity of the token cryptogram. The authentication response includes a gateway authentication certificate. The gateway authentication certificate is configured to authenticate the network gateway to a network device of the communications network.

Abstract translation: 网络网关认证的方法涉及从通信终端接收认证请求的网络网关。 通信终端与身份令牌通信。 认证请求包括从存储在身份令牌上的加密密钥生成的令牌密码。 网络网关将认证请求发送到通信网络，并且根据令牌密码的有效性从通信网络接收认证响应。 认证响应包括网关认证证书。 网关认证证书被配置为认证到通信网络的网络设备的网络网关。

公开(公告)号：US11669820B2

公开(公告)日：2023-06-06

申请号：US17144599

申请日：2021-01-08

Applicant: The Toronto-Dominion Bank

Inventor： David Samuel Tax ,  Milos Dunjic ,  Derek Richard Castell ,  Anthony Haituyen Nguyen ,  Bryan Michael Gleeson ,  Jeffrey Aaron Ecker

IPC: G06Q20/20 ,  G06Q20/32 ,  G06Q20/40

CPC classification number: G06Q20/204 ,  G06Q20/325 ,  G06Q20/3276 ,  G06Q20/405

Abstract: A method may include: causing a point-of-sale terminal processing a transaction to display a machine-readable code, the machine-readable code encoding a web address; receiving a request from a device that scanned the machine-readable code, the request received at the web address; in response to receiving the request, causing the device that scanned the machine-readable code to output an interface; receiving, through the interface, an input of an indication to separate the transaction into multiple transaction parts and one or more parameters indicating how the transaction is to be separated; and sending, to the point-of-sale terminal, a message that configures the point-of-sale terminal to separate the transaction in accordance with the one or more parameters.

公开(公告)号：US20200250639A1

公开(公告)日：2020-08-06

申请号：US16854446

申请日：2020-04-21

Applicant: The Toronto-Dominion Bank

Inventor： Robert HAYHOW ,  Giovanna Borsella ,  Milos Dunjic ,  Jeffrey Aaron Ecker ,  Bryan Michael Gleeson ,  Arthur Carroll Chow ,  Anthony Haituyen Nguyen ,  John Jong-Suk Lee ,  Rakesh Thomas Jethwa

IPC: G06Q20/10 ,  G06Q20/40 ,  G06Q20/38 ,  G06Q20/20 ,  G06Q20/12 ,  G06Q20/02

Abstract: A computer server includes a processor that is configured to receive an incoming authorization request that includes an original numeric value and an identification number, and locate a profile that is associated with the identification number. The located profile includes at least one adjustment criterion. The processor is configured to determine a primary numeric value and a secondary numeric value from the original numeric value and the adjustment criterion, confirm that the secondary numeric value is not greater than a balance value in a loyalty points account associated with the identification number, and reduce the balance value in the loyalty points account by the secondary numeric value. The processor is configured to, after confirming the secondary numeric value, generate a revised authorization request and transmit the revised authorization request to an authorization server. The revised authorization request includes the identification number and the primary numeric value.

公开(公告)号：US10671984B2

公开(公告)日：2020-06-02

申请号：US15699945

申请日：2017-09-08

Applicant: The Toronto-Dominion Bank

Inventor： Robert Hayhow ,  Giovanna Borsella ,  Milos Dunjic ,  Jeffrey Aaron Ecker ,  Bryan Michael Gleeson ,  Arthur Carroll Chow ,  Anthony Haituyen Nguyen ,  John Jong-Suk Lee ,  Rakesh Thomas Jethwa

IPC: G06Q20/00 ,  G06Q20/10 ,  G06Q20/02 ,  G06Q20/12 ,  G06Q20/20 ,  G06Q20/38 ,  G06Q20/40

Abstract: A computer server includes a transaction processor that is configured to receive from a POS terminal an incoming authorization request that includes an original numeric value, a token cryptogram and an identification number identifying an identity token; confirm that the token cryptogram was generated from the original numeric value and a cryptographic key associated with the token; determine primary and secondary numeric values from the original numeric value and a user profile associated with the identification number; confirm that the secondary numeric value is not greater than the balance in a loyalty points account associated with the identification number; transmit to an authorization server a revised authorization request that includes the identification number and the primary numeric value; and receive from the authorization server a confirmation message confirming that the primary numeric value is not greater than the balance in a payment account associated with the identification number.

公开(公告)号：US20190114305A1

公开(公告)日：2019-04-18

申请号：US15725644

申请日：2017-10-05

Applicant: The Toronto-Dominion Bank

Inventor： Jeffrey Aaron Ecker ,  Bryan Michael Gleeson ,  Adam Douglas McPhee ,  Matta Wakim ,  Kyryll Odobetskiy ,  John John-Suk Lee ,  Rakesh Thomas Jethwa

IPC: G06F16/953 ,  G06F16/11

Abstract: A data set integration system receives a data set that includes a user identifier and a message type code. The integration system selects a terminal profile from a profile database. The selected terminal profile is associated with the user identifier and includes a tracking identifier. The integration system locates the tracking identifier in the selected terminal profile. The integration system selects an object profile from a data repository. The selected object profile is associated with the located tracking identifier and includes the located tracking identifier and an associated counter. The integration system updates the counter in the selected object profile in accordance with a value of the message type code.

公开(公告)号：US08561892B2

公开(公告)日：2013-10-22

申请号：US13850254

申请日：2013-03-25

Applicant: The Toronto Dominion Bank

Inventor： Robert Hayhow ,  Bryan Michael Gleeson

IPC: G07F19/00

CPC classification number: G06Q20/38215 ,  G06Q20/02 ,  G06Q20/027 ,  G06Q20/20 ,  G06Q20/341 ,  G06Q20/3821 ,  G06Q20/3829

Abstract: A method of completing a transaction with a payment terminal involves the payment terminal transmitting to a network gateway via a first communications network a transaction proposal identifying a proposed transaction with a network device, and receiving from the network gateway a transaction proposal response in response to the transaction proposal. The transaction proposal response specifies a pointer to the proposed transaction. The network gateway is configured to authenticate to the network device via a second communications network that comprises the network device. The payment terminal transmits over a payment network, distinct from the communications networks, payment particulars for the proposed transaction, and receives from the payment network a payment confirmation in response to the payment particulars. In accordance with the payment confirmation, the payment terminal initiates completion of the proposed transaction by generating a transaction completion request and transmitting the transaction completion request to the network device via the network gateway. The transaction completion request is generated from the transaction pointer, and requests completion of the proposed transaction with the network device.

Abstract translation: 一种用支付终端完成交易的方法包括支付终端经由第一通信网络向网络网关发送识别与网络设备的建议交易的交易方案，以及响应于所述交易提议响应从网络网关接收交易建议响应 交易方案。 交易提议响应指定了一个指向建议交易的指针。 网络网关被配置为经由包括网络设备的第二通信网络向网络设备进行认证。 支付终端通过不同于通信网络的支付网络发送所提交的交易的支付细节，并且从支付网络接收响应于支付细节的支付确认。 根据支付确认，支付终端通过生成交易完成请求来启动建议的交易的完成，并通过网络网关向网络装置发送交易完成请求。 交易完成请求是从事务指针生成的，请求完成与网络设备的建议事务。

公开(公告)号：US20130254119A1

公开(公告)日：2013-09-26

申请号：US13850234

申请日：2013-03-25

Applicant: THE TORONTO DOMINION BANK

Inventor： Robert Hayhow ,  Bryan Michael Gleeson

IPC: G06Q20/38

CPC classification number: G06Q20/38215 ,  G06Q20/02 ,  G06Q20/027 ,  G06Q20/20 ,  G06Q20/341 ,  G06Q20/3821 ,  G06Q20/3829

Abstract: A method of network gateway authenticating involves a network gateway receiving an authentication request from a communications terminal. The communications terminal is in communication with an identity token. The authentication request includes a token cryptogram generated from a cryptographic key stored on the identity token. The network gateway transmits the authentication request to a communications network, and receives an authentication response from the communications network in accordance with a validity of the token cryptogram. The authentication response includes a gateway authentication certificate. The gateway authentication certificate is configured to authenticate the network gateway to a network device of the communications network.

Abstract translation: 网络网关认证的方法涉及从通信终端接收认证请求的网络网关。 通信终端与身份令牌通信。 认证请求包括从存储在身份令牌上的加密密钥生成的令牌密码。 网络网关将认证请求发送到通信网络，并且根据令牌密码的有效性从通信网络接收认证响应。 认证响应包括网关认证证书。 网关认证证书被配置为认证到通信网络的网络设备的网络网关。