Showing papers by "Visa Inc. published in 2003"

Mobile account authentication service

Abstract: A payment authentication service authenticates the identity of a payer during online transactions. The authentication service allows a card issuer to verify a cardholder's (110) identity using a variety of authentication methods, such as with the use of tokens. Authenticating the identity of a cardholder (110) during an online transaction involves querying an access control server to determine if a cardholder (110) is enrolled in the payment authentication service, requesting a password from the cardholder, verifying the password, and notifying a merchant whether the cardholder's (110) authenticity has been verified. Systems for imp lementing the authentication service in which a cardholder (110) uses a mobile device capable of transmitting messages via the Internet are described. Systems for implementing the authentication service in which a cardholder (110) uses a mobile device capable of transmitting messages through voice and messaging channels is also described.

Conducting commerce between individuals with integrated shipping

Abstract: Receiving payment includes the establishment, at a first server, a transaction record including information identifying a payment amount, a first account to be credited by the payment amount, and a second account to be debited by a debit amount. A financial authorization network performs an authorization analysis on at least the second account. The second account is debited if the authorization analysis is successfully completed, and the first account is directly credited by the payment amount to conclude the transaction. Risk analysis may be performed for each individual. Payment is integrated with shipping.

Method for conducting financial transactions utilizing infrared data communications

Abstract: A method and device are described for conducting a transaction between electronic devices in which transaction data is exchanged over an infrared frequency. A first and second electronic device, with a common encryption algorithm deployed on each device, establish an infrared communications link. The second electronic device transmits a transaction request together with an encryption key to the first electronic device. The first electronic device returns response data to the second electronic device which response data is encrypted using the common encryption algorithm and the encryption key. An account to be utilized in the transaction is derived from the response data allowing the transaction to be completed.

Data authentication and provisioning method and system

Abstract: Techniques for authenticating the identity and validating the profile of an individual ('a presenter') who presents (708) him or herself to another party ('an acceptor') (716) as having a certain identity and having certain corresponding profile data are described. The invention can be advantageously used in Internet transactions where such authentication and validation is difficult to perform. The techniques of the present invention allow the trusted party (710) to give a definitive answer regarding the authentication of identity and validity of profile data. Other services such as profile data provisioning and profile data updating can also be performed.

Profile and identity authentication service

Abstract: Authenticating the identity and validating the profile of an individual who presents himself to another party as having a certain identity and corresponding profile data occurs during an Internet transaction. A trusted party gives a definitive answer regarding the authentication of identity and validity of profile data. The trusted party can be a financial institution that has an established relationship with the individual. For example, the financial institution can be a bank that issues a debit or credit card to the individual. The trusted party can also provide the profile data of the individual to the other party, rather than have the individual provide such data. The trusted party can also update the individual's profile data held by the other party when such data is no longer current.