Systems and methods for authenticating online users with an access control server

Assignee

• MASTERCARD INTERNATIONAL INCORPORATED · US

Inventors

• Julia Sharon Gosset · Tarrytown, US
• Robert Albert Ederle · Chesterfield, US
• Ranjita Shankar Iyer · Chappaqua, US
• Brian Piel · Ballwin, US
• Christopher John Merz · Wildwood, US
• Felix Johannes Flory · Wildwood, US
• Andres Gonzalez · Austin, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L2463/082
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

A computer-implemented method for authenticating an online user with an access control server (ACS) is provided. The method includes receiving, at a risk-based authentication enabled (RBA-enabled) directory server, an authentication request message including authentication data, extracting, using the RBA-enabled directory server, the authentication data from the authentication request message, transmitting the extracted authentication data to an RBA engine, generating, using the RBA engine, based at least in part on the extracted authentication data, RBA result data including a risk score, a risk analysis, and at least one reason code, transmitting the RBA result data to the RBA-enabled directory server, embedding, using the RBA-enabled directory server, the RBA result data into the authentication request message to generate an enhanced authentication request message, and transmitting the enhanced authentication request message to the ACS to enable the ACS to make an authentication decision based on the RBA result data.