| 发明名称 |
Two-Factor Authentication with Push Notification for a Security Code |
| 摘要 |
Disclosed is a technology for password-free account authentication. The technology includes utilizing a mobile device running an application (“App”) associated with a payment service (PS) system. Using the App, a user can enter an addressable handle, which is transmitted to the PS system. The PS system identifies an account state, based on the receipt of the addressable handle, for example, whether the addressable handle corresponds to a user's system account and device. A first authentication factor is based on the knowledge that the user is in possession of and has access to a device that corresponds to the user and the addressable handle. The PS system pushes a notification to the corresponding device, based on the account state, prompting entry of a security code. Receipt of a security code that corresponds to a payment card linked to the user's system account serves as a second authentication factor. |
| 申请公布号 |
US2016019543(A1) |
申请公布日期 |
2016.01.21 |
| 申请号 |
US201414332169 |
申请日期 |
2014.07.15 |
| 申请人 |
SQUARE, INC. |
发明人 |
TAYLOR, III Jotham M.;FEDERMAN Daniel S. |
| 分类号 |
G06Q20/40;H04L29/06 |
主分类号 |
G06Q20/40 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A method performed by a computer system for authentication associated with a payment service (PS) system, comprising:
receiving at the PS system an email address submitted by a user via an application running on a mobile computing device, wherein the application is associated with the PS system; deciding at the PS system if the received email address corresponds to a user system account associated with the PS system; identifying at the PS system the mobile computing device associated with the user system account; identifying at the PS system an account state associated with the identified email address; causing at the PS system a notification to be transmitted to the mobile computing device based on the identified account state, the notification configured to display, via an application running on the mobile computing device, a request for the user to submit a CVV code that corresponds to a payment account associated with the user system account; receiving at the PS system the CVV code from the mobile computing device; testing at the PS system if the CVV code corresponds to a payment account associated with the user system account, wherein the testing comprises
sending from the PS system an authorization request for a financial transaction to a financial entity that is associated with the payment account, wherein the authorization request includes the CVV code; andreceiving at the PS system an authorization approval from the financial entity if the CVV code matches the payment account; granting at the PS system access for the user, via the mobile computing device, to the system user account based in response to the received authorization approval; receiving at the PS system, through the accessed system user account, a transaction request from the user for a monetary transaction; and responsive to the received transaction request, initiating the monetary transaction from the payment account. |
| 地址 |
San Francisco CA US |
