[특허]Methods and systems for secure transmission of identification information over public networks

Methods and systems for secure transmission of identification information over public networks 원문보기

IPC분류정보
국가/구분	United States(US) Patent 등록
국제특허분류(IPC7판)	G06F-021/00 H04L-009/32 H04K-001/00 G06F-015/16
출원번호	UP-0067306 (2005-02-25)
등록번호	US-7669233 (2010-04-09)
발명자 / 주소	Grace, David Turgeon, Paul
출원인 / 주소	Metavante Corporation
대리인 / 주소	Townsend and Townsend and Crew LLP
인용정보	피인용 횟수 : 2 인용 특허 : 37

초록 ▼

Methods and systems are provided for generating a party static token to be used in combination with a party dynamic token for identifying a party to a host system. Identification information that identifies the party to the host system is received. Such identification information includes a host dynamic token and a host static token. A false host dynamic token that differs from the host dynamic token is generated. The host dynamic token and the false host dynamic token are encrypted. In addition, information that uniquely identifies the party dynamic token is encrypted. The party static token is produced from a combination of the encrypted host dynamic token, the encrypted false host dynamic token, and the encrypted information that uniquely identifies the party dynamic token.

대표청구항 ▼

What is claimed is: 1. A method for generating a party static token to be used in combination with a party dynamic token for identifying a party to a host system, the method comprising: receiving identification information that identifies the party to the host system, the information comprising a host dynamic token and a host static token; generating a false host dynamic token, wherein the false host dynamic token differs from the host dynamic token; encrypting the host dynamic token; encrypting the false host dynamic token; encrypting information that uniquely identifies the party dynamic token; and producing the party static token from a combination of the encrypted host dynamic token, the encrypted false host dynamic token, and the encrypted information that uniquely identifies the party dynamic token. 2. The method recited in claim 1 wherein producing the party static token comprises encrypting the combination of the encrypted host dynamic token, the encrypted false host dynamic token, and the encrypted information that uniquely identifies the party dynamic token. 3. The method recited in claim 2 wherein each of the encrypting steps is performed with a symmetric-key encryption algorithm. 4. The method recited in claim 3 wherein each of the encrypting steps is performed with a different key. 5. The method recited in claim 3 wherein encrypting the host dynamic token and encrypting the false host dynamic token are performed with the same key. 6. The method recited in claim 1 wherein the information that uniquely identifies the party dynamic token comprises a seed value and a complement to the party dynamic token, the method further comprising determining the complement to the party dynamic token from the seed value and the party dynamic token. 7. The method recited in claim 6 wherein determining the complement comprises: encrypting the seed value; selecting a portion of the encrypted seed value having a predetermined length to produce a natural party dynamic token; and calculating a difference between the natural party dynamic token and the party dynamic token. 8. The method recited in claim 6 further comprising generating the seed value randomly. 9. The method recited in claim 1 further comprising receiving the party dynamic token from the host system. 10. The method recited in claim 1 further comprising generating the party dynamic token randomly. 11. A method for transmitting party-identification information to a host system, the method comprising: receiving a party static token and a purported party dynamic token from a party; decrypting the party static token to extract an encrypted host dynamic token, an encrypted false host dynamic token, a host static token, and encrypted information that uniquely identifies a party dynamic token, wherein the host static token and host dynamic token identify the party to the host system and the false host dynamic token differs from the host dynamic token; generating the party dynamic token from the encrypted information that uniquely identifies the party dynamic token; and transmitting the host static token and a decrypted one of the host dynamic token and false host dynamic token to the host system depending on a comparison of the party dynamic token and purported party dynamic token. 12. The method recited in claim 11 further comprising decrypting the one of the host dynamic token and false host dynamic token depending on the comparison of the party dynamic token and purported party dynamic token. 13. The method recited in claim 11 wherein receiving the party static token and purported party dynamic token comprises receiving the party static token and purported party dynamic token over a public network from a public-network access device accessed by the party. 14. The method recited in claim 11 wherein receiving the party static token and purported party dynamic token comprises receiving the party static token and purported party dynamic token over a public network from an intermediary system accessed by the party with a public-network access device. 15. The method recited in claim 11 wherein generating the party dynamic token comprises: decrypting the encrypted information that uniquely identifies the party dynamic token to extract a seed value and a complement to the party dynamic token; and generating the party dynamic token from the seed value and the complement. 16. The method recited in claim 15 wherein generating the party dynamic token from the seed value and the complement comprises: encrypting the seed value; selecting a portion of the encrypted seed value having a predetermined length to produce a natural party dynamic token; and calculating a difference between the natural party dynamic token and the complement. 17. The method recited in claim 15 wherein each of the decrypting steps is performed with a symmetric-key decryption algorithm. 18. The method recited in claim 17 wherein each of the decrypting steps is performed with a different key. 19. A computer-readable storage medium having a computer-readable program embodied therein for directing operation of a token preparer including a communications system, a processor, and a storage device, wherein the computer-readable program includes instructions for operating the token preparer to generate a party static token to be used in combination with a party dynamic token for identifying a party to a host system in accordance with the following: receiving, with the communications system, identification information that identifies the party to the host system, the information comprising a host dynamic token and a host static token; generating, with the processor, a false host dynamic token, wherein the false host dynamic token differs from the host dynamic token; encrypting, with the processor, the host dynamic token; encrypting, with the processor, the false host dynamic token; encrypting, with the processor, information that uniquely identifies the party dynamic token; and producing, with the processor, the party static token from a combination of the encrypted host dynamic token, the encrypted false host dynamic token, and the encrypted information that uniquely identifies the party dynamic token. 20. The computer-readable storage medium recited in claim 19 wherein the instructions for producing the party static token comprise instructions for encrypting the combination of the encrypted host dynamic token, the encrypted false host dynamic token, and the encrypted information that uniquely identifies the party dynamic token. 21. The computer-readable storage medium recited in claim 19 wherein the information that uniquely identifies the party dynamic token comprises a seed value and a complement to the party dynamic token, the computer-readable program further including instructions for determining, with the processor, the complement to the party dynamic token from the seed value and the party dynamic token. 22. The computer-readable storage medium recited in claim 21 wherein the instructions for determining the complement comprise: instructions for encrypting, with the processor, the seed value; instructions for selecting, with the processor, a portion of the encrypted seed value having a predetermined length to produce a natural party dynamic token; and instructions for calculating, with the processor, a difference between the natural party dynamic token and the party dynamic token. 23. The computer-readable storage medium recited in claim 19 wherein the computer-readable program further includes instructions for receiving, with the communications system, the party dynamic token from the host system. 24. The computer-readable storage medium recited in claim 19 wherein the computer-readable program further includes instructions for generating, with the processor, the party dynamic token randomly. 25. A computer-readable storage medium having a computer-readable program embodied therein for directing operation of a public-network intercept including a communications system, a processor, and a storage device, wherein the computer-readable program includes instructions for operating the public-network intercept to transmit party-identification information to a host system in accordance with the following: receiving, with the communications system, a party static token and a purported party dynamic token from a party; decrypting, with the processor, the party static token to extract an encrypted host dynamic token, an encrypted false host dynamic token, a host static token, and encrypted information that uniquely identifies a party dynamic token, wherein the host static token and host dynamic token identify the party to the host system and the false host dynamic token differs from the host dynamic token; generating, with the processor, the party dynamic token from the encrypted information that uniquely identifies the party dynamic token; and transmitting, with the communications system, the host static token and a decrypted one of the host dynamic token and false host dynamic token to the host system depending on a comparison of the party dynamic token and purported party dynamic token. 26. The computer-readable storage medium recited in claim 25 wherein the computer-readable program further includes instructions for decrypting, with the processor, the one of the host dynamic token and false host dynamic token depending on the comparison of the party dynamic token and purported party dynamic token. 27. The computer-readable storage medium recited in claim 25 wherein the instructions for generating the party dynamic token comprise: instructions for decrypting, with the processor, the encrypted information that uniquely identifies the party dynamic token to extract a seed value and a complement to the party dynamic token; and instructions for generating, with the processor, the party dynamic token from the seed value and the complement. 28. The computer-readable storage medium recited in claim 27 wherein the instructions for generating the party dynamic token from the seed value and the complement comprise: instructions for encrypting, with the processor, the seed value; instructions for selecting, with the processor, a portion of the encrypted seed value having a predetermined length to produce a natural party dynamic token; and instructions for calculating, with the processor, a difference between the natural party dynamic token and the complement. 29. A computer-readable storage medium having stored thereon a data structure comprising: a first field containing data representing an encrypted host dynamic token; a second field containing data representing an encrypted false host dynamic token, wherein the false host dynamic token differs from the host dynamic token; a third field containing data representing a host static token, wherein a pairing of the host static token and host dynamic token provide information identifying a party to a host system and a pairing of the host static token and false host dynamic token do not provide information identifying the party to the host system; and a fourth field containing data that uniquely identify a party dynamic token that identifies the party when paired with the data structure. 30. The computer-readable storage medium recited in claim 29 wherein the first, second, third, and fourth fields are commonly encrypted with a first symmetric-key encryption algorithm. 31. The computer-readable storage medium recited in claim 30 wherein the host dynamic token and false host dynamic token are encrypted with a common second symmetric-key algorithm. 32. The computer-readable storage medium recited in claim 29 wherein the third field comprises: a first subfield containing data representing a seed value; and a second subfield containing data representing a party dynamic token complement, wherein the host dynamic token is equal to a result of applying a predetermined algorithm to the seed value, the party dynamic token complement, and the party dynamic token. 33. The method recited in claim 29 wherein the data contained by the third field are encrypted with a first symmetric-key algorithm that differs from a second symmetric-key algorithm under which the host dynamic token and false host dynamic token are commonly encrypted.

이 특허에 인용된 특허 (37)

Davis Derek L. (Phoenix AZ), Apparatus and method for providing secured communications.
상세보기
Hellman Martin E., Authentication using random challenges.
상세보기
Booth Bradley J., Auto-polling unit for interrupt generation in a network interface device.
상세보기
Flenley, John Martin, Automatic teller machine with secure variable storage for internet applications.
상세보기
Muschellack,Erich; Soares de Casto,Marcelo; Lopez de Oliveira,Alexandre, Cash dispensing automated banking machine firmware authentication system and method.
상세보기
Hosoe, Makoto, Client-server system, server access authentication method, memory medium stores server-access authentication programs, and issuance device which issues the memory medium contents.
상세보기
Kikuchi, Yoshihide; Akagi, Masanobu, Data storage apparatus with improved security process and partition allocation funds.
상세보기
Shear Victor H. (Bethesda MD), Database usage metering and protection system and method.
상세보기
Grantham Paul V. ; Lyles Joseph B. ; Smith William T., Document communications controller.
상세보기
Halpern John W. (London GB2), Electronic money purse and fund transfer system.
상세보기
Chen James F. (Potomac MD) Wang Jieh-Shan (Potomac MD), Electronic payment system and method.
상세보기
Rosen Sholom S. (New York NY), Electronic-monetary system.
상세보기
Motoyama Takeshi,JPX, Financial information intermediary system.
상세보기
Polcyn Michael J., Interactive information transaction processing system with universal telephony gateway capabilities.
상세보기
Solokl Daniel David ; Knight Kirk Hoyt ; Corsini Frank Anton, Method and apparatus for executing electronic commercial transactions with minors.
상세보기
Lawlor Matthew P. (Washington DC) Carmody Timothy E. (McLean VA), Method and system for remote delivery of retail banking services.
상세보기
Glaschick Rainer (Paderborn DEX), Method for authenticating the user of a data station connected to a computer system.
상세보기
Sovio,Sampo; Asokan,Nadarajah; Nyberg,Kaisa; Niemi,Valtteri, Method for sharing the authorization to use specific resources.
상세보기
Schrader Joseph A. ; Bhatt Patanjali ; Altekruse Charles A., Personal online banking with integrated online statement and checkbook user interface.
상세보기
Bocinsky ; Jr. Ronald V. (Woodstock GA), Secure electronic funds transfer from telephone or unsecured terminal.
상세보기
Campbell Carl M. (Newtown Square PA), Security system for electronic funds transfer system.
상세보기
Roskind,James, Simple secure login with multiple-authentication providers.
상세보기
Dolphin Janet L. (Milpitas CA), System and method for access control for portable data storage media.
상세보기
Dolphin Janet L. (Milpitas CA), System and method for access control for portable data storage media.
상세보기
Chen Qilun ; Murphy ; Jr. Thomas Edwin ; Rieth Paul Francis ; Stevens Jeffrey Scott, System and method for building and exchanging encrypted passwords between a client and server.
상세보기
Grate Thomas A. ; Saliba Bassam A., System and method for making function calls from a web browser to a local application.
상세보기
Slater Alan, System and method for performing an electronic financial transaction.
상세보기
Hongwei, Yang, System and method of authenticating individuals.
상세보기
Weber Jay C., System, method and article of manufacture for remote virtual point of sale processing utilizing a multichannel, extensi.
상세보기
Berger David A. ; Weber Jay C. ; Madapurmath Vilas I., System, method and article of manufacture for virtual point of sale processing utilizing an extensible, flexible archite.
상세보기
Saigh Michael M. ; Chang Edward H. ; Brockhouse Douglas B. ; Chang Hsiao-Shih, Systems and apparatus for electronic communication and storage of information.
상세보기
Ginter Karl L. ; Shear Victor H. ; Sibert W. Olin ; Spahn Francis J. ; Van Wie David M., Systems and methods for secure transaction management and electronic rights protection.
상세보기
Lawlor Matthew P. ; Carmody Timothy E., Targeting advertising in a home retail banking delivery service.
상세보기
Lee,Kun Hak, User authentication method using password.
상세보기
Xia,Chenhong; Malloy,William Earl, User authorization management system using a meta-password and method for same.
상세보기
Newton Farrell ; Williams Gareth, User identification and authentication system using ultra long identification keys and ultra large databases of identif.
상세보기
Jones Timothy L. (East Sussex GB2) Higgins Graham R. L. (Avon GB2), Value transfer system.
상세보기

이 특허를 인용한 특허 (2)

Roskind, James, Simple, secure login with multiple authentication providers.
상세보기
Roskind, James, Simple, secure login with multiple authentication providers.
상세보기

IPC	Description
A	생활필수품
A62	인명구조; 소방(사다리 E06C)
A62B	인명구조용의 기구, 장치 또는 방법(특히 의료용에 사용되는 밸브 A61M 39/00; 특히 물에서 쓰이는 인명구조 장치 또는 방법 B63C 9/00; 잠수장비 B63C 11/00; 특히 항공기에 쓰는 것, 예. 낙하산, 투출좌석 B64D; 특히 광산에서 쓰이는 구조장치 E21F 11/00)
A62B-1/08	.. 윈치 또는 풀리에 제동기구가 있는 것

내보내기 구분	파일저장 인쇄 메일전송
구성항목	기본정보 상세정보 관리번호, 국가코드, 자료구분, 상태, 출원번호, 출원일자, 공개번호, 공개일자, 등록번호, 등록일자, 발명명칭(한글), 발명명칭(영문), 출원인(한글), 출원인(영문), 출원인코드, 대표IPC 관리번호, 국가코드, 자료구분, 상태, 출원번호, 출원일자, 공개번호, 공개일자, 공고번호, 공고일자, 등록번호, 등록일자, 발명명칭(한글), 발명명칭(영문), 출원인(한글), 출원인(영문), 출원인코드, 대표출원인, 출원인국적, 출원인주소, 발명자, 발명자E, 발명자코드, 발명자주소, 발명자 우편번호, 발명자국적, 대표IPC, IPC코드, 요약, 미국특허분류, 대리인주소, 대리인코드, 대리인(한글), 대리인(영문), 국제공개일자, 국제공개번호, 국제출원일자, 국제출원번호, 우선권, 우선권주장일, 우선권국가, 우선권출원번호, 원출원일자, 원출원번호, 지정국, Citing Patents, Cited Patents
저장형식	Text(ASCII format) Excel format PIAS분석(.xls)
메일정보	받는사람 (필수) @ 보내는사람 (선택) @ 제목 내용 KISTI 검색결과 이메일 서비스
안내	총 건의 자료가 검색되었습니다. 다운받으실 자료의 인덱스를 입력하세요. (1-10,000) 검색결과의 순서대로 최대 10,000건 까지 다운로드가 가능합니다. 데이타가 많을 경우 속도가 느려질 수 있습니다.(최대 2~3분 소요) 다운로드 파일은 UTF-8 형태로 저장됩니다. 파일의 내용이 제대로 보이지 않을실 때는 웹브라우저 상단의 보기 -> 인코딩 -> 자동선택 여부를 확인하십시오. ~ Text(ASCII format) Excel format

연합인증

Methods and systems for secure transmission of identification information over public networks 원문보기

초록 ▼

대표청구항 ▼

연구과제 타임라인

이 특허에 인용된 특허 (37)

이 특허를 인용한 특허 (2)

관련 콘텐츠

특허 원문 보기

IPC 상위 출원인

AI-Helper ※ AI-Helper는 오픈소스 모델을 사용합니다.

선택된 텍스트

연합인증

Methods and systems for secure transmission of identification information over public networks 원문보기

초록 ▼

대표청구항 ▼

연구과제 타임라인

전체(0) 논문(0) 특허(0) 보고서(0)

전체(0) 논문(0) 특허(0) 보고서(0)

이 특허에 인용된 특허 (37)

이 특허를 인용한 특허 (2)

관련 콘텐츠

특허 원문 보기

IPC 상위 출원인

AI-Helper ※ AI-Helper는 오픈소스 모델을 사용합니다.

선택된 텍스트