Electronic transaction systems utilizing a PEAD and a private key
원문보기
IPC분류정보
국가/구분
United States(US) Patent
등록
국제특허분류(IPC7판)
H04L-029/06
H04L-009/32
H04L-009/08
H04L-009/00
G06F-012/14
G06F-007/04
G08B-029/00
H04K-001/00
출원번호
US-0792224
(2001-02-23)
등록번호
US-8225089
(2012-07-17)
발명자
/ 주소
Wang, Ynjiun P.
Ding, Joshua C.
Grizzard, James A.
출원인 / 주소
Otomaku Properties Ltd., L.L.C.
대리인 / 주소
Perkins Coie LLP
인용정보
피인용 횟수 :
17인용 특허 :
157
초록▼
The method includes the steps of receiving at the PEAD first digital data representing the transaction request. The PEAD provides information to the user regarding an ability to approve the transaction request. When the transaction request is approved by the user, the PEAD receives second digital da
The method includes the steps of receiving at the PEAD first digital data representing the transaction request. The PEAD provides information to the user regarding an ability to approve the transaction request. When the transaction request is approved by the user, the PEAD receives second digital data representing the electronic service authorization token. A remote agent server may provided a bridge between the electronic transaction system and the PEAD. In another embodiment, the private key is stored on the portable device, encrypted. The decryption key is stored outside of the device, at a trusted 3rd party location. When the user attempts to make a signature the software sends a request for the decryption key, along with the user's password or pass phrase keyed in at the keyboard of the PDA, smart phone, or cell phone, to a server belonging to the trusted 3rd party.
대표청구항▼
1. In a portable electronic authorization device, a method for approving a transaction request originated from an electronic transaction system, comprising: receiving at said portable electronic authorization device first digital data, said first digital data representing said transaction request; a
1. In a portable electronic authorization device, a method for approving a transaction request originated from an electronic transaction system, comprising: receiving at said portable electronic authorization device first digital data, said first digital data representing said transaction request; andreceiving from a user at said portable electronic authorization device a user input signal approving said transaction request; in response to receiving said user input, encrypting and transmitting a second digital data to said electronic transaction system, said second digital data being encrypted by hardware within said portable electronic authorization device and signifying said user's approval of said transaction request. 2. The method of claim 1 wherein said second digital data includes at least a portion of said transaction request. 3. The method of claim 1, wherein encrypting said second digital data includes encrypting said second digital data with a user's private key using public key cryptography, said user's private key being kept within said portable electronic authorization device thereby eliminating a need to exchange said user's private key between said portable electronic authorization device and said electronic transaction system for approving said transaction request. 4. The method of claim 3 wherein said portable electronic authorization device is enclosed in a tamper-proof enclosure, said tamper-proof enclosure being configured to prevent said user's private key from being extracted from said portable electronic authorization device if said tamperproof enclosure has been tampered with. 5. The method of claim 1 further comprising: authenticating said user prior to permitting said user to approve said transaction request using said portable electronic authorization device, said authenticating requires one of a password, a finger print, or a voice print at a user authentication mechanism associated with said portable electronic authorization device. 6. The method of claim 1 further comprising displaying said transaction request for viewing by said user on a display screen associated with said portable electronic authorization device. 7. The method of claim 1 wherein said transaction request represents a request for authenticating an electronic file, said second digital data includes an electronic signature for authenticating said electronic file. 8. The method of claim 1 wherein said first digital data represents an encrypted version of said transaction request encrypted using public key cryptography with a private key associated with a transaction partner, wherein said receiving further comprising decrypting, using decryption logic associated with said portable electronic authorization device, said first digital data using a public key associated with said transaction partner. 9. The method of claim 1 wherein said portable electronic authorization device is implemented on a single chip. 10. The method of claim 1 wherein said transmitting said second digital data is performed via a PC card communication port associated with said portable electronic authorization device. 11. The method of claim 1 wherein said second digital data comprises at least a portion of said transaction request, said transaction approval data further comprising identification data pertaining said user and a time stamp. 12. The method of claim 1 further comprising configuring said portable electronic authorization device for said user by receiving configuration data from an issuer of an account capable of transaction via said portable electronic authorization device, said configuration data includes at least one of identification data pertaining said user or said private key. 13. A portable electronic authorization device for approving a transaction request originated from an electronic transaction system, comprising: first logic circuit configured to receive first digital data representative of said transaction request;second logic circuit configured to receive a user input signal from a user approving said transaction request;third logic circuit configured to form second digital data responsive to said transaction request received by said first logic circuit and in response to said user input signal, said second digital data representing encrypted data signifying an approval by said user of said transaction request; anda transmitter coupled to said second logic circuit, said transmitter being configured to transmit said second digital data from said portable electronic authorization apparatus to said electronic transaction system if said user approves said transaction request. 14. The portable electronic authorization device of claim 13 wherein said first digital data represents an encrypted version of said transaction request, said first digital data being encrypted using public key cryptography with a private key associated with a transaction partner, wherein said first logic circuit comprises decrypting circuitry configured to decrypt said first digital data using a public key associated with said transaction partner. 15. The portable electronic authorization device of claim 14 further including first memory circuit coupled to said decrypting circuitry, said first memory circuit being configured for storing a user's private key for use in forming said second digital data in accordance with a public key cryptography technique, wherein said second logic circuit includes encrypting logic coupled to said first memory circuit for creating said encrypted data with said user's private key using said public key cryptography technique, whereby said presence of said user's private key in said first memory circuit eliminates a need to exchange said user's private key between said portable electronic authorization device and said electronic transaction system for approving said transaction request. 16. The portable electronic authorization device of claim 15 further comprising key generation logic coupled to said first memory means for generating said user's private key within said portable electronic authorization device. 17. The portable electronic authorization device of claim 16 wherein said first logic circuit comprises receiving circuit coupled to said decrypting logic, said receiving circuit being configured to receive said first digital data from said electronic transaction system prior to passing said first digital data to said decrypting logic for decryption, said receiving circuit being decoupled from said first memory circuit, wherein said user's private key stored in said first memory circuit is inaccessible directly by said receiving logic, thereby preventing said user's private key from being accessed from externally without traversing said decrypting logic. 18. The portable electronic authorization device of claim 17 wherein said transmitter is decoupled from said first memory circuit, wherein said user's private key stored in said first memory circuit is inaccessible directly by said transmission circuit, thereby preventing said user's private key from being accessed from externally without traversing one of said decrypting logic or said encrypting logic. 19. The portable electronic authorization device of claim 13 further comprising: a user authentication mechanism coupled to said second logic circuit, said user authentication mechanism being configured to authenticate said user prior to permitting said user to approve said transaction request using said portable electronic authorization device, said authentication mechanism requires one of a password, a finger print, or a voice print. 20. The portable electronic authorization device of claim 13 wherein said transmitter includes circuitry configured for communicating with said electronic transaction system using infrared signals. 21. The portable electronic authorization device of claim 13 wherein said transmitter includes circuitry configured for communicating with said electronic transaction system using wireless RF signals. 22. The portable electronic authorization device of claim 13 wherein said transmitter includes a contact-type serial port for communicating with said electronic transaction system. 23. The portable electronic authorization device of claim 13 wherein said transmitter includes a contact-type parallel port for communicating with said electronic transaction system. 24. The portable electronic authorization device of claim 13 further comprising a display coupled to said first logic circuit, said display being configured to display said transaction request for viewing by said user. 25. The portable electronic authorization device of claim 13 further comprising a switch coupled to said second logic circuit, said switch permitting said user to indicate through activating said switch that said transaction request is approved by said user. 26. The portable electronic authorization device of claim 13 further comprising tamper-proof enclosure enclosing said first logic circuit, said second logic circuit, and said transmitter therein, said tamper-proof enclosure being configured to prevent said user's private key from being extracted from said portable electronic authorization device if said tamper-proof enclosure has been tampered with. 27. The portable electronic authorization device of claim 13 wherein said first logic circuit, said second logic circuit, and said transmitter are implemented on a single chip. 28. The portable electronic authorization device of claim 13 wherein said transmitter comprises a PC card communication port associated with said portable electronic authorization device. 29. The portable electronic authorization device of claim 13 wherein said second digital data comprises at least a portion of said transaction request, said second digital data further comprising identification data pertaining said user and a time stamp. 30. The portable electronic authorization device of claim 13 wherein said transaction request represents a request for authenticating an electronic file, said second digital data includes an electronic signature for authenticating said electronic file. 31. In a portable electronic authorization device, a method for approving a transaction request originated from an electronic transaction system, comprising: receiving at said portable electronic authorization device first digital data, said first digital data representing said transaction request; andin response to said transaction request being approved by a user of said portable electronic authorization device, encrypting and transmitting a second digital data to said electronic transaction system, said second digital data being encrypted by hardware within said portable electronic authorization device and signifying said user's approval of said transaction request,wherein encrypting said second digital data includes encrypting said second digital data with a user's private key using public key cryptography, said user's private key being kept within said portable electronic authorization device,wherein said portable electronic authorization device is enclosed in a tamper-proof enclosure, said tamper-proof enclosure being configured to prevent said user's private key from being extracted from said portable electronic authorization device. 32. In a portable electronic authorization device, a method for approving a transaction request originated from an electronic transaction system, comprising: receiving at said portable electronic authorization device first digital data, said first digital data representing said transaction request; andin response to said transaction request being approved by a user of said portable electronic authorization device, encrypting and transmitting a second digital data to said electronic transaction system, said second digital data being encrypted by hardware within said portable electronic authorization device and signifying said user's approval of said transaction request,wherein said encrypting and transmitting is performed by a single chip. 33. In a portable electronic authorization device, a method for approving a transaction request originated from an electronic transaction system, comprising: receiving at said portable electronic authorization device first digital data, said first digital data representing said transaction request; andin response to said transaction request being approved by a user of said portable electronic authorization device, encrypting and transmitting a second digital data to said electronic transaction system, said second digital data being encrypted by hardware within said portable electronic authorization device and signifying said user's approval of said transaction request,wherein said transmitting said second digital data is performed via a PC card of said portable electronic authorization device. 34. A portable electronic authorization device for approving a transaction request originated from an electronic transaction system, comprising: first logic circuit configured to receive first digital data representative of said transaction request;second logic circuit configured to form second digital data responsive to said transaction request received by said first logic circuit in response to said transaction request being approved by a user of said portable electronic transaction device, said second digital data representing encrypted data signifying an approval by said user of said transaction request;a transmitter coupled to said second logic circuit, said transmitter being configured to transmit said second digital data from said portable electronic authorization apparatus to said electronic transaction system if said user approves said transaction request; anda tamper-proof enclosure enclosing said first logic circuit, said second logic circuit, and said transmitter therein, said tamper-proof enclosure being configured to prevent said user's private key from being extracted from said portable electronic authorization device. 35. A portable electronic authorization device for approving a transaction request originated from an electronic transaction system, comprising: first logic circuit configured to receive first digital data representative of said transaction request;second logic circuit configured to form second digital data responsive to said transaction request received by said first logic circuit in response to said transaction request being approved by a user of said portable electronic transaction device, said second digital data representing encrypted data signifying an approval by said user of said transaction request; anda transmitter coupled to said second logic circuit, said transmitter being configured to transmit said second digital data from said portable electronic authorization apparatus to said electronic transaction system if said user approves said transaction request,wherein said second logic circuit and said transmitter are implemented on a single integrated circuit. 36. A portable electronic authorization device for approving a transaction request originated from an electronic transaction system, comprising: first logic circuit configured to receive first digital data representative of said transaction request;second logic circuit configured to form second digital data responsive to said transaction request received by said first logic circuit in response to said transaction request being approved by a user of said portable electronic transaction device, said second digital data representing encrypted data signifying an approval by said user of said transaction request; anda transmitter coupled to said second logic circuit, said transmitter being configured to transmit said second digital data from said portable electronic authorization apparatus to said electronic transaction system if said user approves said transaction request,wherein said transmitter comprises a PC card of said portable electronic authorization device.
연구과제 타임라인
LOADING...
LOADING...
LOADING...
LOADING...
LOADING...
이 특허에 인용된 특허 (157)
Cuccia David ; Epstein Michael A. ; Pasieka Michael S., Administration and utilization of secret fresh random numbers in a networked environment.
Stupek ; Jr. Richard A. (Houston TX) Shaffer David S. (Cypress TX) Jones Curtis R. (Cypress TX) Davis Steve (Houston TX) Justice ; Jr. William D. (Houston TX), Automatic computer upgrading.
Amadon Charles Gregory (Seattle WA) Combest Rick F. (Florence OR) Stanhope David M. (Tacoma WA) Elliott Cameron Scott (Seattle WA), Cellular rental phone system and method having realtime data collection and billing.
Augustine Kurt E. (Rochester MN) Neeley ; Sr. James Edward (Chapel Hill NC) Strole Norman Clark (Raleigh NC), Communication network access method and system.
Soderberg John H. (Monroe NY) Eckert Alton B. (Norwalk CT) McFiggans Robert B. (Stamford CT), Electronic postage meter having plural computing systems.
Jones Michael F. (Nashua NH) Zachai Arthur (Swampscott MA), Encrypted data storage card including smartcard integrated circuit for storing an access password and encryption keys.
Rosen Richard D. (Columbus OH) McCown Robert B. (Columbus OH) Fleming Matthew S. (Columbus OH), Field initialized authentication system for protective security of electronic information networks.
Davis Terry L. (Scottsdale AZ) Hart James A. (Radnor PA) Russell James F. (Hockessin DE) Sears John W. (Peoria AZ) Trice Philip H. (Phoenix AZ), Information consolidation within a transaction network.
Lessin Arlen R. (New York NY) Gruppuso Frank M. (Commack NY) Harrison Shelley A. (Dix Hills NY), Intelligent portable interactive personal data system.
Westrope Robert John,CAX ; Martin Bruce Edward,CAX ; Lyons John Bernard,CAX, Method and apparatus for an interactive on line catalog system for facilitating international, cross-border transaction.
Liao Hanqing ; King Peter F., Method and apparatus for conducting crypto-ignition processes between thin client devices and server devices over data networks.
Sung Moo-Kyung (Ahnyang KRX) Kim Kee-Taek (Seoul KRX), Method and apparatus for controlling paper conveyance of an electrophotographic reproduction device.
Brown Daniel P. (Elmhurst IL) Finkelstein Louis D. (Wheeling IL) Smolinske Jeffrey C. (Hoffman Estates IL), Method and apparatus for efficient real-time authentication and encryption in a communication system.
Ross Cliff D. (Pleasant Grove UT) Taylor Neil W. (Springville UT) Kingdon Kevin W. (Orem UT) Davis Howard R. (Salem UT) Major Drew (Orem UT), Method and apparatus for electronic licensing.
Dolan Donald T. ; French Dale A. ; Lawton Kathryn V., Method and apparatus for ensuring debiting in a postage meter prior to its printing a postal indicia.
Owens Leslie D. (Westford MA) Jueneman Robert R. (Acton MA) Worrest Ralph (Hudson MA) Davis Alvah B. (Atlanta GA), Method and apparatus for entity authentication.
Dolan Donald T. ; French Dale A. ; Lawton Kathryn V., Method and apparatus for securely authorizing performance of a function in a distributed system such as a postage meter.
Terri A. Carroll ; David A. Ellis ; Jacques Hasbani, Method and system for communicating with a postage meter through a web-browser in a postal or shipping system.
Wang,Ynjiun P., Method for utilizing a portable electronic authorization device to approve transactions between a user and an electronic transaction system.
Teramoto Junichi,JPX ; Seikai Hiroshi,JPX ; Akiyoshi Nobuyasu,JPX ; Sato Susumu,JPX, Method of managing information exchanged between production information supervisory computer and line supervisory comput.
Wertheimer Michael A. ; Livingston Boyd T. ; White Tad P. ; Bielefeld Benjamin M. ; Monroe Thomas H. ; Pendergrass J. William, Method of public key cryptography that includes key escrow.
Liang Louis H. (Los Altos CA) Marinello Daniel A. (Burlington KY) Ryan William J. (Underhill VT), Methods and apparatus for authenticating data storage articles.
Cordery Robert A ; Lee David K. ; Pauly Steven J. ; Pintsov Leon A ; Riley David W. ; Ryan ; Jr. Frederick W. ; Weiant ; Jr. Monroe A, Network open metering system.
Cihiwsky Philip K. (Binghamton NY) Jaw Andrew C. (Vestal NY), Online performance monitoring and fault diagnosis technique for direct current motors as used in printer mechanisms.
Jackson Winslow E. (Monroe CT) Kim Paul H. K. (Wilton CT) Chen Robert K. T. (Wilton CT) Gargiulo Joseph L. (Trumbull CT) Durst Robert (Monroe CT) Chrosny Wojciech M. (Milford CT), Postal charge accounting system.
Dolan George M. (Charlotte NC) Holloway Christopher J. (Woking GB2) Matyas ; Jr. Stephen M. (Poughkeepsie NY), Public key data communications system under control of a portable security device.
Cordery Robert A. ; Lee David K. ; Pintsov Leon A. ; Ryan ; Jr. Frederick W. ; Weiant ; Jr. Monroe A., Secure user certification for electronic commerce employing value metering system.
Anderl Ewald C. (Middletown NJ) Frankel Oren (Ocean Township ; Monmouth County NJ) Zahavi Avi (Highland Park NJ), Security file system and method for securing data in a portable data carrier.
Molnar Charles E. (471 Toft La. Webster Groves MO 63119) Backus Alan L. (1550 Centinela Ave. ; No. 210 Los Angeles CA 90025), System to demonstrate and sell computer programs.
Nguyen Trong ; Haller Daniel R. ; Subramanian Mahadevan P., System, method and article of manufacture for a payment gateway system architecture for processing encrypted payment tr.
Williams Humphrey ; Hughes Kevin ; Parmar Bipinkumar G., System, method and article of manufacture for network electronic authorization utilizing an authorization instrument.
Williams Humphrey ; Hughes Kevin ; Parmar Bipinkumar G., System, method and article of manufacture for network electronic payment instrument and certification of payment and credit collection utilizing a payment.
Williams Humphrey ; Hughes Kevin ; Parmar Bipinkumar G., System, method and article of manufacture for the use of payment instrument holders and payment instruments in network.
Ginter Karl L. ; Shear Victor H. ; Sibert W. Olin ; Spahn Francis J. ; Van Wie David M., Systems and methods for secure transaction management and electronic rights protection.
Ginter Karl L. ; Shear Victor H. ; Spahn Francis J. ; Van Wie David M., Systems and methods for secure transaction management and electronic rights protection.
Marechal Guy N. L. J.,BEX, Telecommunication network having at least one facsimile machine, the network having an identification means for identifying and verifying an identity of a registered user and a content of a facsimile.
Hoffman Ned (Berkeley CA) Pare ; Jr. David F. (Berkeley CA) Lee Jonathan A. (Berkeley CA), Tokenless identification system for authorization of electronic transactions and electronic transmissions.
Gennaro Rosario ; Johnson Donald Byron ; Karger Paul Ashley ; Matyas ; Jr. Stephen Michael ; Peyravian Mohammad ; Safford David Robert ; Yung Marcel Mordechay ; Zunic Nevenko, Two-phase cryptographic key recovery system.
Kim, Won-Tae; Rhee, Do-Jun; Kim, Tae-Hoon; Hwang, Hyo-Sun, Mobile device, method of processing an input in a mobile device and electronic payment method using a mobile device.
Mendez, Daniel J.; Riggins, Mark D.; Wagle, Prasad; Bui, Hong Q.; Ng, Mason; Quinlan, Sean Michael; Ying, Christine C.; Zuleeg, Christopher R.; Cowan, David J.; Aptekar-Strober, Joanna A.; Bailes, R. Stanley, System and method for globally and securely accessing unified information in a computer network.
※ AI-Helper는 부적절한 답변을 할 수 있습니다.