US 11,810,107 B2
Systems and methods for use in authenticating users in connection with network transactions
Sowmya Reddy Lakka, Wildwood, MO (US); Brian Piel, Ballwin, MO (US); Vincenzo Palomba, London (GB); Jonathan James Main, Hook (GB); and David Anthony Roberts, Warrington (GB)
Assigned to MASTERCARD INTERNATIONAL INCORPORATED, Purchase, NY (US)
Filed by MASTERCARD INTERNATIONAL INCORPORATED, Purchase, NY (US)
Filed on Aug. 2, 2021, as Appl. No. 17/391,667.
Application 17/391,667 is a continuation of application No. 15/725,893, filed on Oct. 5, 2017, granted, now 11,080,697.
Prior Publication US 2021/0357922 A1, Nov. 18, 2021
This patent is subject to a terminal disclaimer.
Int. Cl. G06Q 20/38 (2012.01); G06Q 20/40 (2012.01); G06Q 20/12 (2012.01); G06Q 20/04 (2012.01)
CPC G06Q 20/385 (2013.01) [G06Q 20/04 (2013.01); G06Q 20/12 (2013.01); G06Q 20/38215 (2013.01); G06Q 20/401 (2013.01)] 15 Claims
OG exemplary drawing
 
1. A system for use in authenticating users to accounts, the system comprising:
a payment network, wherein the payment network is separate from a merchant, an acquirer associated with the merchant, and an issuer of a payment account;
a directory server included in the payment network, the directory server coupled in communication with an access control server (ACS) associated with the issuer of the payment account; and
a digital service server (DSS) coupled in communication with the directory server, the DSS being separate from the merchant, the acquirer associated with the merchant and the issuer of the payment account;
wherein the directory server is configured to:
receive an authentication request, from a merchant plug-in (MPI) associated with the merchant, for a transaction involving the payment account, the payment account associated with an account number, the authentication request including at least one of a token associated with the payment account and the account number; and
transmit the at least one of the token and the account number to the DSS;
wherein the DSS is configured to:
generate a directory server nonce (DSN) for the authentication request; and
transmit the DSN and the account number for the payment account to the directory server; and
wherein the directory server is configured to:
transmit the DSN and the account number to the ACS associated with the issuer of the payment account, whereby the ACS responds with an issuer authentication value (IAV) in response to authentication of a user associated with the payment account;
in response to the IAV, compile an accountholder authentication value (AAV), the AAV including the IAV, the DSN, and an amount of the transaction; and
transmit the AAV to the MPI involved in the transaction, thereby concluding the authentication of the user associated with the payment account and providing the AAV as an indication of the authentication for inclusion in an authorization request for the transaction.