US 12,481,973 B2
Method and device for managing access authorization to a payment service provided to a user
Fabrice Jeanne, Chatillon (FR); Baptiste François Hemery, Chatillon (FR); Sandrine Le Calvez, Chatillon (FR); and Romain Trinquart, Chatillon (FR)
Assigned to Orange, Issy-les-Moulineaux (FR)
Appl. No. 17/786,492
Filed by Orange, Issy-les-Moulineaux (FR)
PCT Filed Nov. 26, 2020, PCT No. PCT/FR2020/052177
§ 371(c)(1), (2) Date Jun. 16, 2022,
PCT Pub. No. WO2021/123527, PCT Pub. Date Jun. 24, 2021.
Claims priority of application No. 1914842 (FR), filed on Dec. 19, 2019.
Prior Publication US 2023/0009823 A1, Jan. 12, 2023
Int. Cl. G06Q 20/22 (2012.01); G06Q 20/38 (2012.01); G06Q 20/40 (2012.01); G06Q 20/42 (2012.01)
CPC G06Q 20/229 (2020.05) [G06Q 20/3829 (2013.01); G06Q 20/4014 (2013.01); G06Q 20/42 (2013.01); G06Q 2220/00 (2013.01)] 9 Claims
OG exemplary drawing
 
1. A method of managing access authorization to a payment service provided to a user, referred to as owner user, the method being implemented by a processor of a management device, the method comprising:
receiving, from a terminal of the owner user, a first request to initialize at least one access authorization, the access authorization being intended to allow at least one delegated user to access the payment service provided to the owner user, the request comprising at least one identifier of the delegated user and one identifier of the owner user;
sending to the terminal of the owner user a confirmation request to confirm the initialization request;
receiving from the terminal of the owner user a confirmation message comprising a confidential code of the owner user for accessing the payment service;
generating temporary data for accessing the payment service associated with the delegated user, the temporary data comprising a public identifier associated with the delegated user, and a confidential code associated with the public identifier,
wherein generating the temporary data comprises:
encoding the identifier of the owner user using an encryption key specific to the management device to form the public identifier associated with the delegated user;
encoding the confidential code of the owner using the encryption key to form the confidential code associated with the public identifier associated with the delegated user; and
storing the public identifier associated with the delegated user and a key index identifying the encryption key,
wherein the used encryption key is selected from a list of available encryption keys and wherein the request further comprises an indication of an access authorization type and the public identifier is formed in a target format depending on the access authorization type;
wherein the public identifier of the delegated user is authenticated to a payment service provider and wherein the generated confidential code is not stored by the management device; and
transmitting the temporary data to at least one terminal of the delegated user or of another user.