[go: up one dir, main page]

US20190026741A9 - Processing electronic payments on a mobile computer device - Google Patents

Processing electronic payments on a mobile computer device Download PDF

Info

Publication number
US20190026741A9
US20190026741A9 US15/829,307 US201715829307A US2019026741A9 US 20190026741 A9 US20190026741 A9 US 20190026741A9 US 201715829307 A US201715829307 A US 201715829307A US 2019026741 A9 US2019026741 A9 US 2019026741A9
Authority
US
United States
Prior art keywords
payment
otp
authorization server
transaction
pan
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
US15/829,307
Other versions
US11222334B2 (en
US20180165680A1 (en
Inventor
Piyush Sharma
Elson Rodrigues
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Mastercard International Inc
Original Assignee
Mastercard International Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Mastercard International Inc filed Critical Mastercard International Inc
Assigned to MASTERCARD INTERNATIONAL INCORPORATED reassignment MASTERCARD INTERNATIONAL INCORPORATED ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: RODRIGUES, ELSON, SHARMA, PIYUSH
Publication of US20180165680A1 publication Critical patent/US20180165680A1/en
Publication of US20190026741A9 publication Critical patent/US20190026741A9/en
Application granted granted Critical
Publication of US11222334B2 publication Critical patent/US11222334B2/en
Active legal-status Critical Current
Adjusted expiration legal-status Critical

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • G06Q20/4014Identity check for transactions
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/02Payment architectures, schemes or protocols involving a neutral party, e.g. certification authority, notary or trusted third party [TTP]
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/02Payment architectures, schemes or protocols involving a neutral party, e.g. certification authority, notary or trusted third party [TTP]
    • G06Q20/027Payment architectures, schemes or protocols involving a neutral party, e.g. certification authority, notary or trusted third party [TTP] involving a payment switch or gateway
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/322Aspects of commerce using mobile devices [M-devices]
    • G06Q20/3223Realising banking transactions through M-devices
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/352Contactless payments by cards
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3821Electronic credentials
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/385Payment protocols; Details thereof using an alias or single-use codes
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/409Device specific authentication in transaction processing
    • G06Q20/4093Monitoring of device authentication
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q30/00Commerce
    • G06Q30/06Buying, selling or leasing transactions
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
    • H04L9/3228One-time or temporary data, i.e. information which is sent for every authentication or authorization, e.g. one-time-password, one-time-token or one-time-key
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/56Financial cryptography, e.g. electronic payment or e-cash

Definitions

  • the present disclosure relates to processing of electronic payments on a mobile computer device.
  • POS point of sales
  • the fixed layout creates problems with user experience because customers can feel like they are being treated like cattle, being herded around in a defined path to ensure maximum opportunity to purchase items.
  • the cashiers' desks become bottlenecks where customers are forced to queue, further devaluing the shopping experience for the customer.
  • cash is king is one typically used in business for highlighting the importance of cash flow.
  • cash transactions may often result in a number of issues.
  • merchants have to ensure that they have sufficient cash in a variety of denominations throughout the store's operational hours.
  • this would require a designated secure storage area to securely store the cash e.g. a secure safe.
  • good security protocols need to be implemented and observed to mitigate the risk of theft or robbery.
  • Another issue with cash is the cost associated with ensuring proper cash handling including training. Employees may be required to manually tally the cash in till at the end of each shift (possibly multiple times over for increased accuracy) and the cash needs to be securely transferred to a safe or bank. There is also a chance that employees may mishandle or misplace cash.
  • an employee management system e.g. for registering employee's time clocking activities and maintaining and creating rosters.
  • Stores may have implemented these systems separately and incrementally. This may be due to a gradual expansion of the store or the high costs associated with these systems resulting in a slow uptake of new systems. In that regard, these systems may not be unified and as such, do not share data with each other. As a result, the system may be haphazard and inefficient requiring the data to be entered into multiple systems resulting in an increase in employee costs.
  • Certain embodiments of the present disclosure provide a device for processing electronic payments for the purchase of goods or services, the device including one or more computer processors in communication with non-transitory computer readable data storage and a display, the data storage including instructions stored thereon that, when executed by the one or more processors, cause the device to execute a transaction process including:
  • the above-mentioned device further includes a contactless EMV reader component.
  • the payment request data is encrypted using a unique one-time cryptogram before being transmitted to the third party authorization server.
  • an authorization server for processing electronic payments including one or more computer processors which are configured to:
  • a method for processing electronic payments on an authorization server including, on one or more computer processors of the authorization server:
  • FIG. 1 is a schematic diagram of a system for and a method for adding goods to a merchant's inventory database and a method for processing POS transactions and electronic payments;
  • FIG. 2 is a schematic diagram showing components of a mobile computer device of the system shown in FIG. 1 ;
  • FIG. 3 is an image of an exemplary embodiment of the mobile computer device shown in FIG. 1 ;
  • FIG. 4 is a flowchart diagram showing the steps performed by an application being executed by the mobile computer device of the system shown in FIG. 1 ;
  • FIG. 5A is a flowchart diagram showing the inventory process in FIG. 4 ;
  • FIG. 5B is a flowchart diagram showing the scan identification indicia process in FIG. 5A ;
  • FIG. 6A is a flowchart diagram showing the POS process in FIG. 4 ;
  • FIG. 6B is a flowchart diagram showing the scan identification indicia process in FIG. 6A ;
  • FIG. 7A is a flowchart diagram showing the transaction process in FIG. 4 ;
  • FIG. 7B is a flowchart diagram showing the interoperation of the components of the system to execute the transaction process in FIG. 7A .
  • the system 10 shown in FIG. 1 is for use in performing at least part of the following:
  • the system 10 includes:
  • a merchant's mobile computer device (MCD) 100 (a) a merchant's mobile computer device (MCD) 100 ;
  • the components of system 10 are in communication via network 2 .
  • the communications network 2 may include the Internet, telecommunications networks, and/or local area networks.
  • a merchant may already own a MCD 100 and would not need to acquire new equipment.
  • the system 10 may also allow a merchant to process POS payments and effect electronic transactions from practically anywhere within the store, or otherwise, that has access to network 2 .
  • FIG. 2 is a block diagram showing an exemplary MCD 100 in which embodiments of the disclosure may be practiced.
  • the MCD 100 may be a mobile computing device, such as a smartphone, a personal data assistant (PDA), a palm-top computer, multimedia Internet enabled cellular telephones, or a tablet computer such as one manufactured by AppleTM, LGTM, HTCTM, SamsungTM, or MotorolaTM, for example.
  • PDA personal data assistant
  • FIG. 2 is a block diagram showing an exemplary MCD 100 in which embodiments of the disclosure may be practiced.
  • the MCD 100 may be a mobile computing device, such as a smartphone, a personal data assistant (PDA), a palm-top computer, multimedia Internet enabled cellular telephones, or a tablet computer such as one manufactured by AppleTM, LGTM, HTCTM, SamsungTM, or MotorolaTM, for example.
  • PDA personal data assistant
  • SamsungTM SamsungTM
  • MotorolaTM for example.
  • the MCD 100 includes the following components in electronic communication via a bus 106 :
  • RAM random access memory
  • transceiver component 112 that includes N transceivers
  • FIG. 2 is not intended to be a hardware diagram. Thus many of the components depicted in FIG. 2 may be realized by common constructs or distributed among additional physical components. Moreover, it is certainly contemplated that other existing and yet-to-be developed physical components and architectures may be utilized to implement the functional components described with reference to FIG. 2 .
  • the display 102 generally operates to provide a presentation of content to a user, and may be realized by any of a variety of displays (e.g., CRT, LCD, HDMI, micro-projector, and OLED displays).
  • displays e.g., CRT, LCD, HDMI, micro-projector, and OLED displays.
  • non-transitory data storage 104 functions to store (e.g., persistently store) data and executable code including code that is associated with the functional components of application programs, including the Merchant Application (App) 118 .
  • the non-volatile memory 104 includes bootloader code, modem software, operating system code, file system code, and code to facilitate the implementation of one or more portions of the Merchant App 118 as well as other components well known to those of ordinary skill in the art that are not depicted for simplicity.
  • the non-volatile memory 104 is realized by flash memory (e.g., NAND or ONENAND memory), but it is certainly contemplated that other memory types may be utilized as well. Although it may be possible to execute the code from the non-volatile memory 104 , the executable code in the non-volatile memory 104 is typically loaded into RAM 108 and executed by one or more of the N processing components 110 .
  • flash memory e.g., NAND or ONENAND memory
  • the N processing components 110 in connection with RAM 108 generally operate to execute the instructions stored in non-volatile memory 104 to effectuate the functional components.
  • the N processing components 110 may include a video processor, modem processor, DSP, graphics processing unit (GPU), and other processing components.
  • the transceiver component 112 includes N transceiver chains, which may be used for communicating with external devices via wireless networks.
  • Each of the N transceiver chains may represent a transceiver associated with a particular communication scheme.
  • each transceiver may correspond to protocols that are specific to local area networks, cellular networks (e.g., a CDMA network, a GPRS network, a UMTS networks), and other types of communication networks.
  • the transceiver components 112 are also adapted to effect contactless payments.
  • the transceiver components are able to effect contactless payment using Near-Field Communications (NFC) according to the EMV standard.
  • NFC Near-Field Communications
  • Digital payment methods based on the EMV standard may include Apple PayTM, or MasterPassTM, for example.
  • the camera component 120 includes a standard camera module communicating in a standard way with other components e.g. the user control 114 , app 118 , display 102 , RAM 108 , non-volatile memory 104 and any other components necessary to effect a process of capturing a digital image (or multiple digital images continuously for a video).
  • other components e.g. the user control 114 , app 118 , display 102 , RAM 108 , non-volatile memory 104 and any other components necessary to effect a process of capturing a digital image (or multiple digital images continuously for a video).
  • FIG. 2 is merely exemplary and in one or more exemplary embodiments, the functions described herein may be implemented in hardware, software, firmware or any combination thereof. If implemented in software, the functions may be stored on or transmitted over as one or more instructions or code encoded on a non-transitory computer-readable medium 104 .
  • Non-transitory computer-readable media 104 may include both computer storage media and communication media, including any medium that facilitates transfer of a computer program from one place to another.
  • a storage medium may be any available medium that can be accessed by a computer.
  • the interoperation of the components of system 10 is hereafter described by way of non-limiting example, with reference to the Merchant App 118 being executed on the merchant's MCD 100 .
  • the Merchant App 118 can be used with payment cards including credit cards, debit cards, store cards, or digital wallets.
  • the Merchant App 118 is described below by way of reference to credit cards only.
  • the Merchant App 118 and the system 10 can be used with any suitable payment card.
  • the Merchant App 118 performs the process 400 shown in FIG. 4 including, generating at step 402 , the “Home” graphical user interface (GUI) shown in FIG. 3 on the display 102 of MCD 100 .
  • GUI graphical user interface
  • the “Home” GUI includes the following function buttons:
  • the Merchant App 118 executes the inventory management process 500 shown in FIG. 5A which calls up the services of the components of the system 10 .
  • the Merchant App 118 executes the identification indicia scanning process 502 shown in FIG. 5B .
  • the Merchant App 118 launches the camera module 120 on the MCD 100 and generates the camera's image on the display 102 .
  • the Merchant App 118 may generate a box within the image on the display 102 which indicates the ideal location for a successful identification of the identification indicia such as a barcode, QR code, or any other uniquely identifiable visual representation.
  • the identification indicia in this embodiment of the disclosure is a Universal Product Code (UPC) barcode which is widely used internationally and follows a global specification.
  • a UPC barcode typically consists of a unique string of numbers (Global Trade Item Number (GTIN)) which correspond to a company prefix and an item reference.
  • GTIN Global Trade Item Number
  • the Merchant App 118 instructs the camera module 120 to capture an image which is received by the Merchant App 118 at step 556 , and saved on the non-volatile memory 104 of the MCD 100 .
  • the Merchant App 118 processes the saved image by first isolating the barcode and then separating the barcode into black and white bars.
  • the black and white bars are analyzed to see if they resemble a barcode. If the black and white bars do not resemble a barcode, the process loops back to perform step 554 again. If the black and white bars do resemble a barcode, the process continues on to step 562 .
  • the Merchant App 118 converts the black and white spaces into numbers.
  • the numbers are analyzed to determine if they resemble a typical UPC barcode numbers. If the numbers resemble a barcode, step 566 is performed, otherwise, the process loops back to perform step 554 .
  • the numbers representing a manufacturer code (company prefix) and a product code (item reference) are matched against a list of manufacturers and products in an inventory database and retrieved by Merchant App 118 .
  • the inventory database may be physically located on the non-volatile memory 104 of the MCD 100 , a cloud server, or any other external server connected to network 2 .
  • this embodiment of the disclosure has the inventory database located on the non-volatile memory 104 of the MCD 100 .
  • the processed image of the identification indicia and the matching manufacturer and product names are saved to the non-volatile memory 104 on the MCD 100 for further processing.
  • the Merchant App 118 executes step 504 in system 500 .
  • the barcode numbers (or any other uniquely identifiable alphanumeric series) can be entered manually.
  • the good or service can be searched by product name using the Merchant App 118 in communication with the inventory database.
  • step 504 Upon successful scanning of the identification indicia, the Merchant App 118 processes step 504 which generates on the display 102 the following:
  • step 506 retrieves and generates for display 112 a user input such as a fillable form requesting for information regarding the good or service.
  • relevant information may be the quantity of goods to be entered into the inventory database, batch information (e.g. expiration date), supplier information, and retail price.
  • the Merchant App 118 At the end of the user input, the Merchant App 118 generates for display 112 on MCD 100 a function button with the text “Save good or service to inventory database”.
  • the Merchant App 118 executes step 508 whereby it receives the entered user information (good or service information).
  • Step 510 sends the user information to the inventory database to be stored.
  • step 512 Upon successful saving of a good or service to the inventory database, the Merchant App 118 executes step 512 which generates two function buttons on display 102 :
  • the Merchant App 118 upon receipt of user input (a) above will loop the process 500 back to step 502 .
  • the Merchant App 118 upon receipt of user input (b) will bring up the “Home” GUI 402 on the display 102 .
  • the Merchant App 118 may have additional inventory management functions such as modifying the quantity of goods in the inventory database, sending reminders for goods that are low in quantity in the inventory database, or automatically sending purchase orders to a supplier for those goods.
  • the Merchant App 118 executes the POS process 600 shown in FIG. 6A which calls up the services of the components of the system 10 .
  • the Merchant App 118 executes the identification indicia scanning process 602 shown in FIG. 6B .
  • the Merchant App 118 launches the camera module 120 on the MCD 100 and generates the camera's image on the display 102 .
  • the Merchant App 118 may generate a box within the image on the display 102 which indicates the ideal location for a successful identification of the identification indicia such as a barcode, QR code, or any other uniquely identifiable visual representation.
  • the identification indicia in this embodiment of the disclosure is a barcode.
  • the Merchant App 118 instructs the camera module 120 to capture an image which is then received by the Merchant App 118 at step 656 , and saved on the non-volatile memory 104 of the MCD 100 .
  • the Merchant App 118 processes the saved image by first isolating to barcode and then separating it into black and white bars.
  • the black and white bars are analyzed to see if they resemble a barcode. If the black and white bars do not resemble a barcode, the process loops back to perform step 654 . If the black and white bars do resemble a barcode, the process proceeds on to step 662 .
  • the app converts the black and white spaces into numbers.
  • the numbers are checked to see if they resemble a typical UPC barcode. If the numbers resemble a barcode, step 666 is then performed, otherwise, the process loops back to perform step 654 .
  • step 666 the numbers representing a manufacturer code (company prefix) and a product code (item reference) are matched against a list of manufacturers and products in the inventory database.
  • step 668 the Merchant App 118 retrieves the matched product name and retail price from the inventory database and these are saved to the non-volatile memory 104 of the MCD 100 for further processing.
  • the Merchant App 118 executes step 604 in system 600 .
  • the barcode numbers (or any other uniquely identifiable alphanumeric series) can be entered manually.
  • the good or service can be searched by product name using the Merchant App 118 in communication with the inventory database.
  • step 604 Upon successful identification of the good or service, the Merchant App 118 performs step 604 which adds the matching product name and retail price of the good or service to a transaction list saved on the non-volatile memory 104 of MCD 100 .
  • step 606 generates on the display 102 the product name and retail price from the non-volatile memory 104 from step 668 .
  • step 608 generates on the display 102 , three function buttons showing the text:
  • the default quantity of items to be added to the transaction list is one item, but if multiple items are to be entered, a user may select function button (a). Selecting this button initiates the Merchant App 118 to generate for display a user input and upon receipt of the user input, increases the quantity of the good or service in the transaction list to the entered user input. If a user selects function button (b), “Add additional good or service to transaction list”, then the Merchant App 118 loops back to step 602 . If a user selects function button (c), “No more items to be scanned. Generate total”, the Merchant App 118 performs step 610 which retrieves the transaction list from the non-volatile memory 104 and calculates the total transaction cost by adding the retail prices of the items in the transaction list. In step 612 , the Merchant App 118 generates for display 102 the total transaction cost to be shown to the customer for verification.
  • the Merchant App 118 generates for display the total transaction cost and two function buttons on display 102 with the text:
  • the Merchant App 118 upon receipt of function button (a) above generates for display 102 the option for the user to amend the transaction list.
  • options to amend the transaction include modifying the quantity of a good or service on the transaction list, modify the total transaction cost or apply a discount (e.g. 10%) to the entire bill.
  • the process loops back to step 610 .
  • the Merchant App 118 upon receipt of function button (b) ends the POS transaction process 600 and invokes the electronic payment transaction process 700 .
  • the Merchant App 118 executes the transaction process 700 shown in FIG. 7A which invokes the services of the components of the system 10 in the manner shown in FIG. 7B .
  • the Merchant App 118 generates for display 102 the user message “Please tap card” which indicates to the purchaser to bring his or her near-field communication (NFC) device into proximity with the merchant's MCD 100 for exchanging data therebetween.
  • the exchanged data may include the primary account number (PAN) associated with a payment card such as a debit or credit card, or a payment token which consists of or includes a surrogate value for the PAN.
  • PAN primary account number
  • a NFC device may be a NFC-enabled payment card or a NFC-enabled MCD having a digital wallet application executing or executable thereon (e.g. Apple PayTM or MasterPassTM).
  • the Merchant App 118 activates the NFC reader on the MCD 100 to receive PAN information from the NFC device.
  • the PAN and any other received data are secured by means of tokenization or encryption prior to any storing or processing processes.
  • Payment credentials used by the Merchant App 118 and any of its processes may be stored on the MCD 100 secure element (SE) and segregated by limiting other applications or system tools from accessing or using the SE. Alternatively, the payment credentials may be stored in a secure shared repository which is part of a host card emulation (HCE) system.
  • HCE host card emulation
  • the Merchant App 118 Upon successful receipt of PAN information (or a payment token as described above), at step 706 , the Merchant App 118 generates for display 102 on the MCD 100 the user message “Please remove card”. Additional indications of a successful flow of data include playing a “beep” sound or switching on a green LED light.
  • the payment request data (including total transaction cost and PAN or payment token) may be encrypted as part of a unique one-time cryptogram before being transmitted to a third party for authorization.
  • the Merchant App 118 sends the encrypted payment request data to the third party authorization server 900 as a first stage of an authorization request.
  • the third party authorization server may be a mobile application server, for example.
  • the third party authorization server 900 Upon receipt of the payment request, the third party authorization server 900 generates an issued one time password (OTP) and sends it to a mobile device 300 registered against the PAN or payment token.
  • OTP an issued one time password
  • the communication of the OTP could be in the form of a short message service (SMS) message or an email, via an SMS gateway or an email gateway as appropriate.
  • SMS short message service
  • the purchaser upon receipt of the OTP on the mobile device 300 communicates the OTP to the merchant's MCD 100 .
  • the Merchant App 118 receives the received OTP by user input.
  • the Merchant App 118 then performs step 712 and sends the received OTP to the third party authorization server 900 for authentication.
  • the third party authentication process involves the step of the third party authorization server 900 receiving the purchaser's received OTP and comparing it with the generated OTP. If the two OTPs are an exact match, the third party authorization server 900 generates a transaction authorization request message, for example an ISO 8583-formatted transaction authorization request, using the payment request data (which may include merchant identification data, for example) and sends the transaction authorization request message to an acquirer system (not shown) for routing to a payment network in known fashion.
  • a transaction authorization request message for example an ISO 8583-formatted transaction authorization request
  • a transaction approval message is received at the third party authorization server 900 , which then transmits an approval message to the MCD 100 .
  • the Merchant App 118 receives the transaction approval and at step 716 generates for display 102 , “Successful payment transaction”.
  • the Merchant App 118 may send a request to issue a receipt for the successful transaction. This may be a request to the third party for a digital receipt to be communicated to the purchaser (for example by email or SMS). Alternatively, the Merchant App 118 may generate (or receive from the third party) and send the receipt to be printed by a printer connected to the MCD 100 by network 2 .

Landscapes

  • Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Computer Security & Cryptography (AREA)
  • Strategic Management (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Finance (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Development Economics (AREA)
  • Economics (AREA)
  • Marketing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Microelectronics & Electronic Packaging (AREA)
  • Cash Registers Or Receiving Machines (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
  • User Interface Of Digital Computer (AREA)

Abstract

A device for processing electronic payments for the purchase of goods or services is provided. The device includes one or more computer processors in communication with non-transitory computer readable data storage and a display. The data storage includes instructions stored thereon that, when executed by the one or more processors, cause the device to execute a transaction process including receiving purchase data representing one or more goods or services to be purchased, receiving user input to effect a payment transaction, determining a total transaction amount from the purchase data, reading payment credentials from a purchaser's payment device, sending a payment request, receiving data representing a received one time password (OTP), sending the received OTP to the third party authorization server for authentication against a OTP sent by the third party authorization server to a mobile device, and receiving data representing successful authentication from the third party authorization server.

Description

    CROSS REFERENCE TO RELATED APPLICATIONS
  • This patent application claims priority to Singapore Application No. 10201610472X filed on Dec. 14, 2016, the disclosure of which is incorporated by reference herein in its entirety as part of the present application.
    • BACKGROUND
  • The present disclosure relates to processing of electronic payments on a mobile computer device.
  • Traditional brick-and-mortar stores typically have a fixed layout which forces a procedural sales experience, whereby:
  • (a) customers enter from the storefront;
  • (b) pick up items they would like to purchase;
  • (c) approach the designated check-out area where their items would be entered into a point of sales (POS) system including, for example, a cash register;
  • (d) pays the cashier by cash and receives change (if any); and
  • (e) retrieves item(s) and leaves the store via the exit usually placed close to the check-out area.
  • The fixed layout creates problems with user experience because customers can feel like they are being treated like cattle, being herded around in a defined path to ensure maximum opportunity to purchase items. In addition, it is often the case that the cashiers' desks become bottlenecks where customers are forced to queue, further devaluing the shopping experience for the customer.
  • The phrase “cash is king” is one typically used in business for highlighting the importance of cash flow. In practice however, cash transactions may often result in a number of issues. For hassle-free cash transactions, merchants have to ensure that they have sufficient cash in a variety of denominations throughout the store's operational hours. For businesses (especially those with high volume or high cash value transactions), this would require a designated secure storage area to securely store the cash e.g. a secure safe. In that regard, good security protocols need to be implemented and observed to mitigate the risk of theft or robbery. Another issue with cash is the cost associated with ensuring proper cash handling including training. Employees may be required to manually tally the cash in till at the end of each shift (possibly multiple times over for increased accuracy) and the cash needs to be securely transferred to a safe or bank. There is also a chance that employees may mishandle or misplace cash.
  • The issues with cash transactions resulted in a wave of new retail payment systems being introduced to the market. To remain competitive, especially with the rise of online shopping, retailers are constantly under pressure to update their systems to incorporate these new systems resulting in increased costs to both acquire and maintain them. Additionally, with technology constantly improving at a rapid speed, these systems are often phased out and replaced with newer technology. Due to these high costs, retailers are often limited to operating only a small number of systems which may result in longer waiting times for customers. This may ultimately deter customers from returning to the store if they have to wait for an extended period of time to complete a purchase.
  • Current POS systems are often older systems that have been modified to work in combination with various newer systems. For example,
  • (a) a non-computerized cash register which does not include database of inventory;
  • (b) a variety of payment systems (magnetic strip credit card reader, EMV chip reader, NFC-enabled reader, and debit card machine);
  • (c) a separate computer system or a manual method for maintaining the inventory in the store; and
  • (d) an employee management system e.g. for registering employee's time clocking activities and maintaining and creating rosters.
  • Stores may have implemented these systems separately and incrementally. This may be due to a gradual expansion of the store or the high costs associated with these systems resulting in a slow uptake of new systems. In that regard, these systems may not be unified and as such, do not share data with each other. As a result, the system may be haphazard and inefficient requiring the data to be entered into multiple systems resulting in an increase in employee costs.
  • Operating a multitude of separate systems results in a large footprint on the cashier's desk. This is a waste of precious retail space which could be valuable to a retailer. Additionally, these systems are cumbersome to move around therefore are positioned in a designated area. This renders the retail space rigid and inflexible.
  • It is generally desirable to overcome or ameliorate one or more of the above described difficulties, or to at least provide a useful alternative.
    • BRIEF DESCRIPTION
  • Certain embodiments of the present disclosure provide a device for processing electronic payments for the purchase of goods or services, the device including one or more computer processors in communication with non-transitory computer readable data storage and a display, the data storage including instructions stored thereon that, when executed by the one or more processors, cause the device to execute a transaction process including:
  • (a) receiving purchase data representing one or more goods or services to be purchased;
  • (b) receiving user input to effect a payment transaction;
  • (c) determining a total transaction amount from the purchase data;
  • (d) reading payment credentials from a purchaser's payment device, the payment credentials including a primary account number (PAN) or a payment token;
  • (e) sending a payment request, including the payment credentials, to a third party authorization server;
  • (f) receiving data representing a received one time password (OTP);
  • (g) sending the received OTP to the third party authorization server for authentication against a OTP sent by the third party authorization server to a mobile device registered against the PAN or the payment token; and
  • (h) receiving data representing successful authentication from the third party authorization server.
  • The above-mentioned device further includes a contactless EMV reader component.
  • The payment request data is encrypted using a unique one-time cryptogram before being transmitted to the third party authorization server.
  • In accordance with certain embodiments of the disclosure, there is an authorization server for processing electronic payments, the authorization server including one or more computer processors which are configured to:
  • (a) receive, from a merchant's mobile computer device, payment request data including payment credentials, the payment credentials including a primary account number (PAN) or a payment token;
  • (b) generate a one time password (OTP);
  • (c) send the generated OTP to a mobile device registered against the PAN or the payment token;
  • (d) receive a received OTP from the merchant's mobile computer device;
  • (e) match the received OTP against the generated OTP; and
  • (f) if the received OTP matches the generated OTP, generate a transaction authorization request from the payment request data.
  • In accordance with certain embodiments of the disclosure, there is method for processing electronic payments on a merchant's mobile computer device for the purchase of goods or services, the method for execution by one or more computer processors of the mobile computer device in communication with computer readable data storage and a display, including the steps of:
  • (a) receiving purchase data representing one or more goods or services to be purchased;
  • (b) receiving user input to effect a payment transaction;
  • (c) determining a total transaction amount from the purchase data;
  • (d) reading payment credentials from a purchaser's payment device, the payment credentials including a primary account number (PAN) or a payment token;
  • (e) sending a payment request, including the payment credentials, to a third party authorization server;
  • (f) receiving data representing a received one time password (OTP);
  • (g) sending the received OTP to the third party authorization server for authentication against a OTP sent by the third party authorization server to a mobile device registered against the PAN or the payment token; and
  • (h) receiving data representing successful authentication from the third party authorization server.
  • In accordance with certain embodiments of the disclosure, there is a method for processing electronic payments on an authorization server, the method including, on one or more computer processors of the authorization server:
  • (a) receiving, from a merchant's mobile computer device, payment request data including payment credentials, the payment credentials including a primary account number (PAN) or a payment token;
  • (b) generating a one time password (OTP);
  • (c) sending the generated OTP to a mobile device registered against the PAN or the payment token;
  • (d) receiving a received OTP from the merchant's mobile computer device;
  • (e) matching the received OTP against the generated OTP; and
  • (f) if the received OTP matches the generated OTP, generating a transaction authorization request from the payment request data.
    • BRIEF DESCRIPTION OF THE DRAWINGS
  • Certain embodiments of the disclosure are hereafter described, by way of non-limiting example only, with reference to the accompanying drawings, in which:
  • FIG. 1 is a schematic diagram of a system for and a method for adding goods to a merchant's inventory database and a method for processing POS transactions and electronic payments;
  • FIG. 2 is a schematic diagram showing components of a mobile computer device of the system shown in FIG. 1;
  • FIG. 3 is an image of an exemplary embodiment of the mobile computer device shown in FIG. 1;
  • FIG. 4 is a flowchart diagram showing the steps performed by an application being executed by the mobile computer device of the system shown in FIG. 1;
  • FIG. 5A is a flowchart diagram showing the inventory process in FIG. 4;
  • FIG. 5B is a flowchart diagram showing the scan identification indicia process in FIG. 5A;
  • FIG. 6A is a flowchart diagram showing the POS process in FIG. 4;
  • FIG. 6B is a flowchart diagram showing the scan identification indicia process in FIG. 6A;
  • FIG. 7A is a flowchart diagram showing the transaction process in FIG. 4; and
  • FIG. 7B is a flowchart diagram showing the interoperation of the components of the system to execute the transaction process in FIG. 7A.
    •  DETAILED DESCRIPTION
  • The system 10 shown in FIG. 1 is for use in performing at least part of the following:
  • (a) inventory management, including the ability to add goods to a merchant's inventory database;
  • (b) processing POS transactions; and
  • (c) processing electronic payments.
  • The system 10 includes:
  • (a) a merchant's mobile computer device (MCD) 100;
  • (b) a purchaser's mobile device 300; and
  • (c) a third party authorization server 900.
  • The components of system 10 are in communication via network 2. The communications network 2 may include the Internet, telecommunications networks, and/or local area networks.
  • Advantages are achieved by consolidating one or more of the operations above into one MCD 100. To this end, a merchant may already own a MCD 100 and would not need to acquire new equipment. The system 10 may also allow a merchant to process POS payments and effect electronic transactions from practically anywhere within the store, or otherwise, that has access to network 2.
    • Mobile Computer Device 100
  • FIG. 2 is a block diagram showing an exemplary MCD 100 in which embodiments of the disclosure may be practiced. The MCD 100 may be a mobile computing device, such as a smartphone, a personal data assistant (PDA), a palm-top computer, multimedia Internet enabled cellular telephones, or a tablet computer such as one manufactured by Apple™, LG™, HTC™, Samsung™, or Motorola™, for example.
  • As shown in FIG. 2, the MCD 100 includes the following components in electronic communication via a bus 106:
  • (a) a display 102;
  • (b) non-volatile memory 104;
  • (c) random access memory (“RAM”) 108;
  • (d) N processing components 110;
  • (e) a transceiver component 112 that includes N transceivers; and
  • (f) user controls 114.
  • Although the components depicted in FIG. 2 represent physical components, FIG. 2 is not intended to be a hardware diagram. Thus many of the components depicted in FIG. 2 may be realized by common constructs or distributed among additional physical components. Moreover, it is certainly contemplated that other existing and yet-to-be developed physical components and architectures may be utilized to implement the functional components described with reference to FIG. 2.
  • The display 102 generally operates to provide a presentation of content to a user, and may be realized by any of a variety of displays (e.g., CRT, LCD, HDMI, micro-projector, and OLED displays).
  • In general, the non-transitory data storage 104 (also referred to as non-volatile memory) functions to store (e.g., persistently store) data and executable code including code that is associated with the functional components of application programs, including the Merchant Application (App) 118.
  • In some embodiments, for example, the non-volatile memory 104 includes bootloader code, modem software, operating system code, file system code, and code to facilitate the implementation of one or more portions of the Merchant App 118 as well as other components well known to those of ordinary skill in the art that are not depicted for simplicity.
  • In many implementations, the non-volatile memory 104 is realized by flash memory (e.g., NAND or ONENAND memory), but it is certainly contemplated that other memory types may be utilized as well. Although it may be possible to execute the code from the non-volatile memory 104, the executable code in the non-volatile memory 104 is typically loaded into RAM 108 and executed by one or more of the N processing components 110.
  • The N processing components 110 in connection with RAM 108 generally operate to execute the instructions stored in non-volatile memory 104 to effectuate the functional components. As one of ordinarily skill in the art will appreciate, the N processing components 110 may include a video processor, modem processor, DSP, graphics processing unit (GPU), and other processing components.
  • The transceiver component 112 includes N transceiver chains, which may be used for communicating with external devices via wireless networks. Each of the N transceiver chains may represent a transceiver associated with a particular communication scheme. For example, each transceiver may correspond to protocols that are specific to local area networks, cellular networks (e.g., a CDMA network, a GPRS network, a UMTS networks), and other types of communication networks.
  • The transceiver components 112 are also adapted to effect contactless payments. For example, the transceiver components are able to effect contactless payment using Near-Field Communications (NFC) according to the EMV standard. Digital payment methods based on the EMV standard may include Apple Pay™, or MasterPass™, for example.
  • The camera component 120 includes a standard camera module communicating in a standard way with other components e.g. the user control 114, app 118, display 102, RAM 108, non-volatile memory 104 and any other components necessary to effect a process of capturing a digital image (or multiple digital images continuously for a video).
  • It should be recognized that FIG. 2 is merely exemplary and in one or more exemplary embodiments, the functions described herein may be implemented in hardware, software, firmware or any combination thereof. If implemented in software, the functions may be stored on or transmitted over as one or more instructions or code encoded on a non-transitory computer-readable medium 104. Non-transitory computer-readable media 104 may include both computer storage media and communication media, including any medium that facilitates transfer of a computer program from one place to another. A storage medium may be any available medium that can be accessed by a computer.
  • The operational steps for an example embodiment of the disclosure are described in further detail below.
    • Merchant Application 118
  • The interoperation of the components of system 10 is hereafter described by way of non-limiting example, with reference to the Merchant App 118 being executed on the merchant's MCD 100. The Merchant App 118 can be used with payment cards including credit cards, debit cards, store cards, or digital wallets. For ease of description, the Merchant App 118 is described below by way of reference to credit cards only. However, the Merchant App 118 and the system 10 can be used with any suitable payment card.
  • On execution of the Merchant App icon, the Merchant App 118 performs the process 400 shown in FIG. 4 including, generating at step 402, the “Home” graphical user interface (GUI) shown in FIG. 3 on the display 102 of MCD 100. The “Home” GUI includes the following function buttons:
  • (a) Inventory Management 302;
  • (b) POS 304; and
  • (c) Electronic Payment Transaction 306.
  • The abovementioned processes are described below by way of non-limiting example.
    • Inventory Management Process 500
  • On execution of the Inventory Management function button 302 on the “Home” GUI 402, the Merchant App 118 executes the inventory management process 500 shown in FIG. 5A which calls up the services of the components of the system 10.
  • The Merchant App 118 executes the identification indicia scanning process 502 shown in FIG. 5B. At step 552, the Merchant App 118 launches the camera module 120 on the MCD 100 and generates the camera's image on the display 102. The Merchant App 118 may generate a box within the image on the display 102 which indicates the ideal location for a successful identification of the identification indicia such as a barcode, QR code, or any other uniquely identifiable visual representation. For ease of description, the identification indicia in this embodiment of the disclosure is a Universal Product Code (UPC) barcode which is widely used internationally and follows a global specification. A UPC barcode typically consists of a unique string of numbers (Global Trade Item Number (GTIN)) which correspond to a company prefix and an item reference.
  • At step 554, the Merchant App 118 instructs the camera module 120 to capture an image which is received by the Merchant App 118 at step 556, and saved on the non-volatile memory 104 of the MCD 100. At step 558, the Merchant App 118 processes the saved image by first isolating the barcode and then separating the barcode into black and white bars. At step 560, the black and white bars are analyzed to see if they resemble a barcode. If the black and white bars do not resemble a barcode, the process loops back to perform step 554 again. If the black and white bars do resemble a barcode, the process continues on to step 562.
  • At step 562, the Merchant App 118 converts the black and white spaces into numbers. At step 564, the numbers are analyzed to determine if they resemble a typical UPC barcode numbers. If the numbers resemble a barcode, step 566 is performed, otherwise, the process loops back to perform step 554.
  • At step 566, the numbers representing a manufacturer code (company prefix) and a product code (item reference) are matched against a list of manufacturers and products in an inventory database and retrieved by Merchant App 118. The inventory database may be physically located on the non-volatile memory 104 of the MCD 100, a cloud server, or any other external server connected to network 2. For ease of description, this embodiment of the disclosure has the inventory database located on the non-volatile memory 104 of the MCD 100. In step 568, the processed image of the identification indicia and the matching manufacturer and product names are saved to the non-volatile memory 104 on the MCD 100 for further processing. At the conclusion of process 502, the Merchant App 118 executes step 504 in system 500.
  • If the identification indicia cannot be identified for reasons such as poor lightning or incomplete indicia, the barcode numbers (or any other uniquely identifiable alphanumeric series) can be entered manually. Alternatively, the good or service can be searched by product name using the Merchant App 118 in communication with the inventory database.
  • Upon successful scanning of the identification indicia, the Merchant App 118 processes step 504 which generates on the display 102 the following:
  • (a) the identification indicia from step 568;
  • (b) the matching manufacturer and product names from step 568; and
  • (c) two function buttons showing the text:
      • (i) “Add good or service to inventory database”; and
      • (ii) “Discard and rescan identification indicia”.
  • If a user selects “Add good or service to inventory database”, then the Merchant App 118 executes step 506, which retrieves and generates for display 112 a user input such as a fillable form requesting for information regarding the good or service. As an example, relevant information may be the quantity of goods to be entered into the inventory database, batch information (e.g. expiration date), supplier information, and retail price.
  • At the end of the user input, the Merchant App 118 generates for display 112 on MCD 100 a function button with the text “Save good or service to inventory database”. When a user selects the function button, the Merchant App 118 executes step 508 whereby it receives the entered user information (good or service information). Step 510 sends the user information to the inventory database to be stored.
  • Upon successful saving of a good or service to the inventory database, the Merchant App 118 executes step 512 which generates two function buttons on display 102:
  • (a) “Add another good or service”; and
  • (b) “Quit to main menu”.
  • The Merchant App 118 upon receipt of user input (a) above will loop the process 500 back to step 502. Alternatively, the Merchant App 118 upon receipt of user input (b) will bring up the “Home” GUI 402 on the display 102.
  • The Merchant App 118 may have additional inventory management functions such as modifying the quantity of goods in the inventory database, sending reminders for goods that are low in quantity in the inventory database, or automatically sending purchase orders to a supplier for those goods.
    • POS Process 600
  • On execution of the POS function button 304 on the “Home” GUI 402, the Merchant App 118 executes the POS process 600 shown in FIG. 6A which calls up the services of the components of the system 10.
  • The Merchant App 118 executes the identification indicia scanning process 602 shown in FIG. 6B. At step 652, the Merchant App 118 launches the camera module 120 on the MCD 100 and generates the camera's image on the display 102. The Merchant App 118 may generate a box within the image on the display 102 which indicates the ideal location for a successful identification of the identification indicia such as a barcode, QR code, or any other uniquely identifiable visual representation. For ease of description, the identification indicia in this embodiment of the disclosure is a barcode.
  • At step 654, the Merchant App 118 instructs the camera module 120 to capture an image which is then received by the Merchant App 118 at step 656, and saved on the non-volatile memory 104 of the MCD 100. At step 658, the Merchant App 118 processes the saved image by first isolating to barcode and then separating it into black and white bars. At step 660, the black and white bars are analyzed to see if they resemble a barcode. If the black and white bars do not resemble a barcode, the process loops back to perform step 654. If the black and white bars do resemble a barcode, the process proceeds on to step 662.
  • At step 662, the app converts the black and white spaces into numbers. At step 664, the numbers are checked to see if they resemble a typical UPC barcode. If the numbers resemble a barcode, step 666 is then performed, otherwise, the process loops back to perform step 654.
  • At step 666, the numbers representing a manufacturer code (company prefix) and a product code (item reference) are matched against a list of manufacturers and products in the inventory database. In step 668, the Merchant App 118 retrieves the matched product name and retail price from the inventory database and these are saved to the non-volatile memory 104 of the MCD 100 for further processing. At the conclusion of process 602, the Merchant App 118 executes step 604 in system 600.
  • If the identification indicia cannot be identified, for reasons such as poor lightning or incomplete indicia, the barcode numbers (or any other uniquely identifiable alphanumeric series) can be entered manually. Alternatively, the good or service can be searched by product name using the Merchant App 118 in communication with the inventory database.
  • Upon successful identification of the good or service, the Merchant App 118 performs step 604 which adds the matching product name and retail price of the good or service to a transaction list saved on the non-volatile memory 104 of MCD 100. Step 606 generates on the display 102 the product name and retail price from the non-volatile memory 104 from step 668. Step 608 generates on the display 102, three function buttons showing the text:
  • (a) “Increase quantity of good or service”;
  • (b) “Add additional good or service to transaction list”; and
  • (b) “No more items to be scanned. Generate total”.
  • The default quantity of items to be added to the transaction list is one item, but if multiple items are to be entered, a user may select function button (a). Selecting this button initiates the Merchant App 118 to generate for display a user input and upon receipt of the user input, increases the quantity of the good or service in the transaction list to the entered user input. If a user selects function button (b), “Add additional good or service to transaction list”, then the Merchant App 118 loops back to step 602. If a user selects function button (c), “No more items to be scanned. Generate total”, the Merchant App 118 performs step 610 which retrieves the transaction list from the non-volatile memory 104 and calculates the total transaction cost by adding the retail prices of the items in the transaction list. In step 612, the Merchant App 118 generates for display 102 the total transaction cost to be shown to the customer for verification.
  • At step 616, the Merchant App 118 generates for display the total transaction cost and two function buttons on display 102 with the text:
  • (a) “Amend transaction cost”; and
  • (b) “Total transaction cost is correct”.
  • At step 614, The Merchant App 118 upon receipt of function button (a) above generates for display 102 the option for the user to amend the transaction list. For example, options to amend the transaction include modifying the quantity of a good or service on the transaction list, modify the total transaction cost or apply a discount (e.g. 10%) to the entire bill. After step 614, the process loops back to step 610. Alternatively, the Merchant App 118 upon receipt of function button (b) ends the POS transaction process 600 and invokes the electronic payment transaction process 700.
    • Electronic Payment Transaction Process 700
  • On execution of the Electronic Payment Transaction function button 306 on the “Home” GUI 402 or upon verification of the total transaction cost from step 616 of process 600, the Merchant App 118 executes the transaction process 700 shown in FIG. 7A which invokes the services of the components of the system 10 in the manner shown in FIG. 7B.
  • At step 702, the Merchant App 118 generates for display 102 the user message “Please tap card” which indicates to the purchaser to bring his or her near-field communication (NFC) device into proximity with the merchant's MCD 100 for exchanging data therebetween. The exchanged data may include the primary account number (PAN) associated with a payment card such as a debit or credit card, or a payment token which consists of or includes a surrogate value for the PAN. A NFC device may be a NFC-enabled payment card or a NFC-enabled MCD having a digital wallet application executing or executable thereon (e.g. Apple Pay™ or MasterPass™).
  • At step 704, the Merchant App 118 activates the NFC reader on the MCD 100 to receive PAN information from the NFC device. The PAN and any other received data are secured by means of tokenization or encryption prior to any storing or processing processes. Payment credentials used by the Merchant App 118 and any of its processes may be stored on the MCD 100 secure element (SE) and segregated by limiting other applications or system tools from accessing or using the SE. Alternatively, the payment credentials may be stored in a secure shared repository which is part of a host card emulation (HCE) system.
  • Upon successful receipt of PAN information (or a payment token as described above), at step 706, the Merchant App 118 generates for display 102 on the MCD 100 the user message “Please remove card”. Additional indications of a successful flow of data include playing a “beep” sound or switching on a green LED light. The payment request data (including total transaction cost and PAN or payment token) may be encrypted as part of a unique one-time cryptogram before being transmitted to a third party for authorization. At step 708, the Merchant App 118 sends the encrypted payment request data to the third party authorization server 900 as a first stage of an authorization request. The third party authorization server may be a mobile application server, for example.
  • Upon receipt of the payment request, the third party authorization server 900 generates an issued one time password (OTP) and sends it to a mobile device 300 registered against the PAN or payment token. The communication of the OTP could be in the form of a short message service (SMS) message or an email, via an SMS gateway or an email gateway as appropriate. The purchaser, upon receipt of the OTP on the mobile device 300 communicates the OTP to the merchant's MCD 100.
  • At step 710, the Merchant App 118 receives the received OTP by user input. The Merchant App 118 then performs step 712 and sends the received OTP to the third party authorization server 900 for authentication. The third party authentication process involves the step of the third party authorization server 900 receiving the purchaser's received OTP and comparing it with the generated OTP. If the two OTPs are an exact match, the third party authorization server 900 generates a transaction authorization request message, for example an ISO 8583-formatted transaction authorization request, using the payment request data (which may include merchant identification data, for example) and sends the transaction authorization request message to an acquirer system (not shown) for routing to a payment network in known fashion. If the transaction is approved, a transaction approval message is received at the third party authorization server 900, which then transmits an approval message to the MCD 100. At step 714, the Merchant App 118 receives the transaction approval and at step 716 generates for display 102, “Successful payment transaction”.
  • The Merchant App 118 may send a request to issue a receipt for the successful transaction. This may be a request to the third party for a digital receipt to be communicated to the purchaser (for example by email or SMS). Alternatively, the Merchant App 118 may generate (or receive from the third party) and send the receipt to be printed by a printer connected to the MCD 100 by network 2.
  • Many modifications will be apparent to those skilled in the art without departing from the scope of the present disclosure.
  • Throughout this specification and the claims which follow, unless the context requires otherwise, the word “comprise”, and variations such as “comprises” and “comprising”, will be understood to imply the inclusion of a stated integer or step or group of integers or steps but not the exclusion of any other integer or step or group of integers or steps.
  • The reference in this specification to any prior publication (or information derived from it), or to any matter which is known, is not, and should not be taken as an acknowledgment or admission or any form of suggestion that that prior publication (or information derived from it) or known matter forms part of the common general knowledge in the field of endeavor to which this specification relates.

Claims (18)

1. A device for processing electronic payments for the purchase of goods or services, the device including one or more computer processors in communication with non-transitory computer readable data storage and a display, the data storage including instructions stored thereon that, when executed by the one or more processors, cause the device to execute a transaction process comprising:
(a) receiving purchase data representing one or more goods or services to be purchased;
(b) receiving user input to effect a payment transaction;
(c) determining a total transaction amount from the purchase data;
(d) reading payment credentials from a purchaser's payment device, the payment credentials comprising a primary account number (PAN) or a payment token;
(e) sending a payment request, including the payment credentials, to a third party authorization server;
(f) receiving data representing a received one time password (OTP);
(g) sending the received OTP to the third party authorization server for authentication against a OTP sent by the third party authorization server to a mobile device registered in association with the PAN or the payment token; and
(h) receiving data representing successful authentication from the third party authorization server.
2. The device according to claim 1, further comprising a contactless EMV reader component.
3. The device according to claim 1, wherein the transaction process comprises generating a total for transaction for display on the device before the step of receiving user input to effect the transaction.
4. The device according to claim 1, wherein the payment request data is encrypted using a unique one-time cryptogram before being transmitted to the third party authorization server.
5. An authorization server for processing electronic payments, the authorization server including one or more computer processors which are configured to:
(a) receive, from a merchant's mobile computer device, payment request data comprising payment credentials, the payment credentials including a primary account number (PAN) or a payment token;
(b) generate a one time password (OTP);
(c) send the generated OTP to a mobile device registered in association with the PAN or the payment token;
(d) receive a received OTP from the merchant's mobile computer device;
(e) match the received OTP against the generated OTP; and
(f) if the received OTP matches the generated OTP, generate a transaction authorization request from the payment request data.
6. The authorization server according to claim 5, wherein the one or more computer servers are configured to send the generated OTP to a mobile device registered in association with the PAN or the payment token by one of short message service (SMS) and e-mail.
7. The authorization server according to claim 5, wherein the payment request data is encrypted.
8. The authorization server according to claim 5, wherein the one or more computer processors are configured to, prior to the step of sending the generated OTP, retrieve from computer readable data storage, data identifying the mobile device registered in association with the PAN or payment token.
9. A method for processing electronic payments on a merchant's mobile computer device for the purchase of goods or services, the method for execution by one or more computer processors of the mobile computer device in communication with computer readable data storage and a display, including the steps of:
(a) receiving purchase data representing one or more goods or services to be purchased;
(b) receiving user input to effect a payment transaction;
(c) determining a total transaction amount from the purchase data;
(d) reading payment credentials from a purchaser's payment device, the payment credentials comprising a primary account number (PAN) or a payment token;
(e) sending a payment request, including the payment credentials, to a third party authorization server;
(f) receiving data representing a received one time password (OTP);
(g) sending the received OTP to the third party authorization server for authentication against a OTP sent by the third party authorization server to a mobile device registered in association with the PAN or the payment token; and
(h) receiving data representing successful authentication from the third party authorization server.
10. The method according to claim 9, wherein the step of reading payment credentials from the purchaser's payment device is carried out using a contactless EMV reader.
11. The method according to claim 9, including the step of generating a total for transaction for display on the merchant device before the step of receiving user input to effect the transaction.
12. The method according to claim 9, wherein the payment request data is encrypted using a unique one-time cryptogram before being transmitted to the third party authorization server.
13. A method according to claim 9, wherein the third party authorization server receives the payment request from the merchant and determines whether the payment request is in accordance with payment parameters associated with the merchant.
14. The method according to claim 9, wherein the third party's authentication process includes the steps of:
(a) comparing the purchaser's received OTP with the generated OTP; and
(b) approving the transaction if it is a match.
15. A method for processing electronic payments on an authorization server, the method including, on one or more computer processors of the authorization server:
(a) receiving, from a merchant's mobile computer device, payment request data comprising payment credentials, the payment credentials comprising a primary account number (PAN) or a payment token;
(b) generating a one time password (OTP);
(c) sending the generated OTP to a mobile device registered in association with the PAN or the payment token;
(d) receiving a received OTP from the merchant's mobile computer device;
(e) matching the received OTP against the generated OTP; and
(f) if the received OTP matches the generated OTP, generating a transaction authorization request from the payment request data.
16. The method according to claim 15, wherein the generated OTP is sent to a mobile device registered in association with the PAN or the payment token by one of short message service (SMS) and e-mail.
17. The method according to claim 15, wherein the payment request data is encrypted.
18. The method according to claim 15, wherein prior to the step of sending the generated OTP, the third party authorization server retrieves from computer readable data storage, data identifying the mobile device registered in association with the PAN or payment token.
US15/829,307 2016-12-14 2017-12-01 Processing electronic payments on a mobile computer device Active 2040-06-21 US11222334B2 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
SG10201610472XA SG10201610472XA (en) 2016-12-14 2016-12-14 Processing electronic payments on a mobile computer device
SG10201610472X 2016-12-14

Publications (3)

Publication Number Publication Date
US20180165680A1 US20180165680A1 (en) 2018-06-14
US20190026741A9 true US20190026741A9 (en) 2019-01-24
US11222334B2 US11222334B2 (en) 2022-01-11

Family

ID=62487407

Family Applications (1)

Application Number Title Priority Date Filing Date
US15/829,307 Active 2040-06-21 US11222334B2 (en) 2016-12-14 2017-12-01 Processing electronic payments on a mobile computer device

Country Status (2)

Country Link
US (1) US11222334B2 (en)
SG (1) SG10201610472XA (en)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10515353B2 (en) * 2016-12-29 2019-12-24 Paypal, Inc. Electronic identification and authentication system
CN112805737A (en) 2018-10-08 2021-05-14 维萨国际服务协会 Techniques for token proximity transactions

Family Cites Families (29)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20070136140A1 (en) * 2005-12-13 2007-06-14 Microsoft Corporation Provision of shopping information to mobile devices
KR100914548B1 (en) 2006-07-03 2009-09-02 (주)씽크에이티 The Preliminary Verification System which has a Authentication by Phone on the Internet Environment
US7761325B2 (en) * 2006-10-27 2010-07-20 At&T Intellectual Property I, L.P. Intelligent inventory applications and services
US20080103984A1 (en) * 2006-10-30 2008-05-01 Mobilekash, Inc. System, Method, and Computer-Readable Medium for Mobile Payment Authentication and Authorization
US9846866B2 (en) 2007-02-22 2017-12-19 First Data Corporation Processing of financial transactions using debit networks
US8095113B2 (en) 2007-10-17 2012-01-10 First Data Corporation Onetime passwords for smart chip cards
US8565723B2 (en) * 2007-10-17 2013-10-22 First Data Corporation Onetime passwords for mobile wallets
US7657463B1 (en) * 2008-12-17 2010-02-02 At&T Intellectual Property I, L.P. Systems and methods for delivering item price notifications to a mobile device
US8630907B2 (en) 2009-09-30 2014-01-14 Ebay Inc. Secure transactions using a point of sale device
US8843757B2 (en) 2009-11-12 2014-09-23 Ca, Inc. One time PIN generation
US10049356B2 (en) * 2009-12-18 2018-08-14 First Data Corporation Authentication of card-not-present transactions
US20110238473A1 (en) * 2010-03-23 2011-09-29 Sanjay Dattatreya Sankolli Alternate mobile payment service
US10121133B2 (en) * 2010-10-13 2018-11-06 Walmart Apollo, Llc Method for self-checkout with a mobile device
US9053478B2 (en) * 2011-05-03 2015-06-09 Verifone, Inc. Mobile commerce system
US20150287021A1 (en) * 2011-05-11 2015-10-08 Mark Itwaru Mobile image payment system
US9953322B2 (en) * 2011-10-13 2018-04-24 Sk Planet Co., Ltd. Mobile payment method, system and device using home shopping
US20130159070A1 (en) * 2011-12-15 2013-06-20 Michael L. Salamone Mobile payment processing system
KR101236544B1 (en) * 2012-01-12 2013-03-15 주식회사 엘지씨엔에스 Payment method and payment gateway, mobile terminal and time certificate issuing server associated with the same
US20130282533A1 (en) * 2012-04-18 2013-10-24 Elizabeth Foran-Owens Providing an online consumer shopping experience in-store
US9607309B2 (en) * 2013-03-04 2017-03-28 Yahoo! Inc. Methods and systems for facilitating communications between providers of on-line services and potential customers
US9230254B1 (en) 2013-12-19 2016-01-05 Amazon Technologies, Inc. Credit card reader authenticator
DE102014000644A1 (en) * 2014-01-17 2015-07-23 Giesecke & Devrient Gmbh Procedure for authorizing a transaction
US10453050B1 (en) * 2014-01-24 2019-10-22 Jpmorgan Chase Bank, N.A. Systems and methods for flexible checkout
US10657531B1 (en) * 2014-01-24 2020-05-19 Jpmorgan Chase Bank, N.A. Systems and methods for streamlined checkout
CN104899672B (en) * 2014-06-06 2017-11-28 腾讯科技(深圳)有限公司 Item transfer device, system and method
SG10201508081TA (en) 2015-09-29 2017-04-27 Mastercard International Inc Method and system for dynamic pin authorisation for atm or pos transactions
US12400209B2 (en) * 2015-11-20 2025-08-26 Afirma Consulting & Technologies, S. L. Dynamic multilayer security for internet mobile-related transactions
US10395235B2 (en) * 2016-08-12 2019-08-27 International Business Machines Corporation Smart mobile application for E-commerce applications
SG10201609190TA (en) * 2016-11-02 2018-06-28 Mastercard International Inc Method and device for making a payment transaction

Also Published As

Publication number Publication date
SG10201610472XA (en) 2018-07-30
US11222334B2 (en) 2022-01-11
US20180165680A1 (en) 2018-06-14

Similar Documents

Publication Publication Date Title
US9514455B2 (en) Mobile device payment
US10192210B2 (en) Automatically emailing receipt at POS
US20200242585A1 (en) Processing payments for an online marketplace
KR101627954B1 (en) System and method for providing a personalized shopping experience and personalized pricing of products and services with a portable computing device
US9015066B2 (en) Digital wallet loading
US9846877B2 (en) In-store mobile payment
US20180068293A1 (en) Method and system for allowing offline peer-2-peer transactions using exchangeable provisioned tokens
US20130159178A1 (en) System and Method For Loading A Virtual Token Managed By A Mobile Wallet System
JP6322383B2 (en) Settlement support system, settlement support apparatus, settlement support program, settlement support method
KR20140033364A (en) Barcode checkout at point of sale
JP2015508201A (en) Mobile payment method and system therefor
US20120239542A1 (en) Systems and methods for capturing payment information using mobile devices
EP2922006A1 (en) Online payment method for face-to-face transactions
JP2017174047A (en) Settlement supporting system
US20200342438A1 (en) Customer-initiated payment system and process
US20180060863A1 (en) Method and system for payment status verification
US11222334B2 (en) Processing electronic payments on a mobile computer device
US20190378122A1 (en) Information management system, information management method, and program recording medium
US20190156389A1 (en) Shopping management systems and associated methods
CN111047393A (en) Information addition, information generation method, information processing system, and electronic device
US20170186076A1 (en) Product tracking and management using image recognition
US20160098712A1 (en) Online transaction verification system
US9703448B2 (en) Systems, devices, and methods for distributed processing for preauthorized payment
US20140258107A1 (en) Generating personal bank note using readable indicia
US20160098715A1 (en) Transaction verification system

Legal Events

Date Code Title Description
FEPP Fee payment procedure

Free format text: ENTITY STATUS SET TO UNDISCOUNTED (ORIGINAL EVENT CODE: BIG.); ENTITY STATUS OF PATENT OWNER: LARGE ENTITY

AS Assignment

Owner name: MASTERCARD INTERNATIONAL INCORPORATED, NEW YORK

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNORS:SHARMA, PIYUSH;RODRIGUES, ELSON;REEL/FRAME:044431/0313

Effective date: 20171215

STPP Information on status: patent application and granting procedure in general

Free format text: DOCKETED NEW CASE - READY FOR EXAMINATION

FEPP Fee payment procedure

Free format text: PETITION RELATED TO MAINTENANCE FEES GRANTED (ORIGINAL EVENT CODE: PTGR); ENTITY STATUS OF PATENT OWNER: LARGE ENTITY

STPP Information on status: patent application and granting procedure in general

Free format text: NON FINAL ACTION MAILED

STPP Information on status: patent application and granting procedure in general

Free format text: RESPONSE TO NON-FINAL OFFICE ACTION ENTERED AND FORWARDED TO EXAMINER

STPP Information on status: patent application and granting procedure in general

Free format text: NOTICE OF ALLOWANCE MAILED -- APPLICATION RECEIVED IN OFFICE OF PUBLICATIONS

STPP Information on status: patent application and granting procedure in general

Free format text: PUBLICATIONS -- ISSUE FEE PAYMENT VERIFIED

STCF Information on status: patent grant

Free format text: PATENTED CASE

MAFP Maintenance fee payment

Free format text: PAYMENT OF MAINTENANCE FEE, 4TH YEAR, LARGE ENTITY (ORIGINAL EVENT CODE: M1551); ENTITY STATUS OF PATENT OWNER: LARGE ENTITY

Year of fee payment: 4