Browse Prior Art Database

Dynamically varying the payment amount allowed through contactless payment by analysing the context Disclosure Number: IPCOM000246563D
Publication Date: 2016-Jun-17
Document File: 2 page(s) / 40K

Publishing Venue

The Prior Art Database


A method is described to dynamically vary the purchase upper limit via contactless payment. The limit for payment without active authentication would vary depending on contextual information gained about the user.

This text was extracted from a PDF file.
This is the abbreviated version, containing approximately 49% of the total text.

Page 01 of 2

Dynamically varying the payment amount allowed through contactless payment by analysing the context

Contactless card payments are now a widely adopted practise where if the user is spending less than for (for example) £20, they can pay without having to enter their PIN. This has proven to be a successful way to reduce the friction customers experience when making small, lower risk payments. However this is not a perfect system, for some people £20 is a large sum of money and is not an amount they consider 'low risk', similarly there will be people who would rather the £20 limit be raised, or at least in certain situations. This proposal aims to solve the problem of allowing dynamically variable limits to the amount of money that can be spent via a contactless payment by analysing the surrounding context in which the payment is made.

    The core idea is to dynamically vary the amount that a user's contactless debit/credit card has available for contactless payments. This must adjust the amount to a value which is considered to be a low enough risk that the user is not required to enter an active form of authentication such as a PIN. This dynamically varying amount would need to be calculated by taking into account the context of the purchase, as well as analysing the user's habits to determine a suitable contactless spending amount.

    The key advantage of this proposed method is that it would limit the friction that the user must go through when making small simple payments, without

increasing the security risk. Although the user would ideally have to actively authenticate with a PIN for fewer transactions, the level of risk would not be compromised as the context of the transaction would be known.

    When the user goes to make a payment, they would take the same action as they currently would. The user would tap their contactless payment card against the machine. The machine would ping a message to the user's bank, as if sending the payment through, but would instead be attempting the payment through the contactless method.

    The key difference in the implementation of this idea when compared with the current system is that currently the chip & PIN device will only scan for the card's RFID tag if the payment is under £20. This means that the card reading device is deciding whether or not to accept the payment as contactless or if a PIN is required to authenticate the user. This idea shifts this responsibility to the bank's processes so that when a payment is sent, it is also sent with details regarding whether the payment was done contactlessly or if a PIN was entered. At the bank's end, this

would then be analysed with regards to the context and the payment amount and

the transaction can either be accepted or declined, with a ping back requesting the

PIN to be entered.

When the bank has received the details of the transaction, they are to decide

whether to accept the payment as contactless or not. The information that would be used fo...