Publicly Discoverable ePayment Address(es) Part 3: Difference between revisions

From IDESG Wiki
Jump to navigation Jump to search
m (17 revisions imported: Initial Upload of old pages from IDESG Wiki)
 
(No difference)

Latest revision as of 04:03, 28 June 2018

Title: Publicly Discoverable ePayment Address(es) Part 3, LOOKUP


Use Case Description: Minimal API consisting of a secureXML interface split into two separate interfaces: Registration & Query (Lookup). Query involves only “Lookup User” to resolve PII, GLID into LCA-PAN, LCA-ACH or Linked GLID


Purpose: To employ simple design characteristics that can be implemented without delay to a.) enhance safety and security by minimizing the ability for illegitimate (fabricated or stolen) identities to acquire identifiers with attributes having sufficient trust to utilize monetary and high value information asset transfer services; b.) enhance privacy by minimizing the risk that high-trust, private financial identifiers such as bank account or card numbers are unnecessarily divulged and therefore put at some risk to be improperly used to effect monetary or high value information asset transfer services without account-owner's authorization and c.) lay the groundwork for later extensions by Financial Institutions to enhance legitimate identities ability to assert ownership rights and privacy permissions pertaining to the use of cloud-based transactional data.


Use Case Category: Trust/Assurance, Authentication, Interoperability, Privacy


Contributors : Richard O'Brien - Payment Pathways, Inc., Peter Tapling - Authentify, Inc., and Peter Gordon - FISGlobal & PayNet

Use Case Details

Actors: Financial institutions, Relying parties, eCommerce Companies, Identity Providers, Authoritative Parties


Goals: 1) Timely access to publicly discoverable ePayment addresses by Relying Parties on behalf of payers.

2) Fraud reduction which may imply cost reduction for the relying party. Viable business model for the relying party.


Assumptions: The relying party supports access and revocation of access


Requirements: Internet access device, identity information for the authorizing user and identity information of the relying party.


Process Flow: 1) The user intending to make a payment accesses the relying party with authentication as required by the relying party.

2) The user wishes to pay another user or business:

    a)	The financial institution’s payment application queries the registry to validate the intended recipient is registered and equipped to receive at least one class of epayment 

(e.g. next banking day payment, instant payment; domestic, international, etc.)

    b)	The payment application finds the recipient in the registry, confirms with the payer that the personal identifiers are those of the intended recipient.
    c)	The payment application creates a money transfer using the validated ePayment address of the payment network supporting the desired class of service.

3) The money transfer instruction is delivered to the appropriate payment network in the normal manner


Success Scenario: 1) Trusted ePayment Addresses discovered and/or validated.

2) Trusted ePayment Addresses not found.


Error Conditions: 1) The payer does not have the credentials required by the Relying Party’s portal. Mitigation: the relying party to allow manual lookup 2) Identity Provider does not support revocation. GLID permanently unavailable.



Relationships

Extension of:

  • Publicly Discoverable ePayment Address(es) Part 1 ENROLLMENT
  • Publicly Discoverable ePayment Address(es) Part 2 UPDATE AND REVOCATION

GRAPHIC 1: High Level Economic Model ePayment Address Registry

GRAPHIC 2: Greenlist in the NSTIC IDEcosystem

GRAPHIC 3: PayNet's Greenlist Benefits

GRAPHIC 4: Greenlist Benefits for Stakeholder Groups

GRAPHIC 5: PayNet Launch Schedule

References and Citations

  • Enhanced System for Electronic Funds Transfer and Elimination of the Payee’s Need for Encryption and Privacy

US Patent No. 7,831,490 Modigliani, O’Brien and Vitagliano claim a computer implemented method of conducting monetary asset transfer transactions associating a unique identifier with payment address that can only be debited by the accountholder. Such directories containing identifiers and payment addresses are synchronized to a root directory to enable non-repudiable deposits.

  • Methods and Systems for Identity Authentication

US Patent No. 7,945,511 O’Brien, Gallant, et al claim a computer implemented method of conducting informational asset transfer transactions where a registry of unique identifiers are associated with informational assets and access to said assets is regulated in accordance with guidelines established by communities of interest functioning as registrars.