Methods and apparatus for conducting electronic transactions
원문보기
IPC분류정보
국가/구분
United States(US) Patent
등록
국제특허분류(IPC7판)
G06Q-020/00
G06Q-020/10
출원번호
US-0524848
(2012-06-15)
등록번호
US-8924310
(2014-12-30)
발명자
/ 주소
Bishop, Fred Alan
Glazer, Elliott Harold
Gorgol, Zygmunt Steven
Hohle, William G.
Johnson, Michael G.
Johnstone, David E.
Lake, Walter Donald
Royer, Coby
Simkin, Marvin
Swift, Nick
White, Dirk B.
Bennett, Russell
출원인 / 주소
Lead Core Fund, L.L.C.
대리인 / 주소
Christensen O'Connor Johnson Kindness PLLC
인용정보
피인용 횟수 :
1인용 특허 :
163
초록▼
A system and method for conducting electronic commerce are disclosed. In various embodiments, the electronic transaction is a purchase transaction. A user is provided with an intelligent token, such as a smartcard containing a digital certificate. The intelligent token suitably authenticates with a
A system and method for conducting electronic commerce are disclosed. In various embodiments, the electronic transaction is a purchase transaction. A user is provided with an intelligent token, such as a smartcard containing a digital certificate. The intelligent token suitably authenticates with a server on a network that conducts all or portions of the transaction on behalf of the user. In various embodiments a wallet server interacts with a security server to provide enhanced reliability and confidence in the transaction. In various embodiments, the wallet server includes a toolbar. In various embodiments, the digital wallet pre-fills forms. Forms may be pre-filled using an auto-remember component.
대표청구항▼
1. A method comprising: receiving, by a first server from a second server, an authentication request associated with a transaction and a user device, the first and second servers comprising a processor and a memory;in response to the receiving authentication request, sending, by the second server, a
1. A method comprising: receiving, by a first server from a second server, an authentication request associated with a transaction and a user device, the first and second servers comprising a processor and a memory;in response to the receiving authentication request, sending, by the second server, a challenge to the first server;forwarding, by the first server to the user device, the challenge, wherein an intelligent token is configured to generate a challenge response based on the challenge and the user device is configured to send the challenge response to the first server;receiving, by the second server from the first server, the challenge response;verifying, by the second server, the intelligent token based upon the challenge response;in response to the verifying, assembling, by the second server, credentials associated with the user device, wherein the credentials comprise a key;sending, by the second server, at least a portion of the assembled credentials to the first server;receiving, by the second server from the first server, an authentication request, wherein the authentication request includes the portion of the assembled credentials;validating, by the second server, the portion of the assembled credentials with the key; andin response to the validating, sending, by the second server to the first server, an approval message for the user device, wherein in response to the approval message, the user device is allowed to proceed with the transaction. 2. The method of claim 1, wherein the challenge is a cryptographic challenge. 3. The method of claim 1, wherein the challenge is configured to prevent reply attacks. 4. The method of claim 1, wherein the user device comprises the intelligent token. 5. The method of claim 1, wherein the authentication request is for an electronic purchase transaction. 6. The method of claim 5, wherein the electronic purchase transaction is conducted using a digital wallet. 7. The method of claim 1, wherein the intelligent token is a smartcard. 8. The method of claim 7, wherein the user device is communicatively coupled to a smart-card reader. 9. The method of claim 1, further comprising: accessing information associated with the user device from a second server; andpopulating one or more corresponding user purchase forms at said second server with said information, wherein the second server provides the populated user purchase forms and an authorization response message to a merchant for processing and completion of the transaction. 10. The method of claim 9, wherein the information includes at least one of a user name, user address, shipping address, card number, and payment amount. 11. The method of claim 1, wherein the user device is a mobile device. 12. The method of claim 11, wherein the intelligent token is stored in a memory of the mobile device. 13. The method of claim 1, wherein the transaction request is received from at least one of the user device and the first server. 14. The method of claim 1, wherein the first server comprises at least one of a wallet server and a merchant server. 15. The method of claim 14, wherein the first server receives the transaction request from the user device. 16. The method of claim 15, wherein the first server redirects the authentication request to the server. 17. The method of claim 14, wherein the transaction is associated with the merchant server. 18. The method of claim 1, wherein the credentials are associated with at least one of a user account and the user device. 19. An article of manufacture including a non-transitory computer readable medium having instructions stored thereon that, in response to execution by a security server, cause the security server to perform operations comprising: receiving, by the security server from a wallet server, an authentication request associated with a transaction and a user device;creating, by the security server, a challenge in response to the authentication request;forwarding, by the security server, the challenge to the wallet server, wherein an intelligent token communicatively coupled to a user device generates a challenge response based on the challenge and the user device sends the challenge response to the wallet server;receiving, by the security server from the wallet server, the challenge response;verifying, by the security server, the intelligent token based upon the challenge response;in response to the verifying, assembling, by the security server, credentials associated with the user device, wherein the credentials comprise a key;sending, by the security server, at least a portion of the assembled credentials to the wallet server;receiving, by the security server from the wallet server, an authentication request, wherein the authentication request includes the portion of the assembled credentials;validating, by the security server, the portion of the assembled credentials with the key; andin response to the validating, sending, by the security server to the wallet server, an approval message for the user device, wherein in response to the approval message, the user device is allowed to proceed with the transaction. 20. A system comprising: memory communicatively coupled to a transaction security server comprising a security processor,the memory having instructions stored thereon that, in response to execution by the security processor, at least cause: receiving, from a wallet server, an authentication request associated with a transaction and a user device;generating a challenge in response to the authentication request;forwarding the challenge to the wallet server, wherein an intelligent token communicatively coupled to a user device generates a challenge response based on the challenge and the user device sends the challenge response to the wallet server;receiving from the wallet server the challenge response;verifying the intelligent token based upon the challenge response;in response to the verifying, assembling credentials associated with the user device, wherein the credentials comprise a key;sending at least a portion of the assembled credentials to the wallet server;receiving from the wallet server an authentication request, wherein the authentication request includes the portion of the assembled credentials;validating the portion of the assembled credentials with the key; andin response to the validating, sending, by the security server to the wallet server, an approval message for the user device, wherein in response to the approval message, the user device is allowed to proceed with the transaction.
연구과제 타임라인
LOADING...
LOADING...
LOADING...
LOADING...
LOADING...
이 특허에 인용된 특허 (163)
Gokcebay Asil T. (San Francisco CA), Access control system with mechanical keys which store data.
Davis Terry L. (Scottsdale AZ) Hart James A. (Radnor PA) O\Malley Michael F. (Glenside PA) Russell James F. (Hockessin DE) Sears John W. (Peoria AZ) Trice Philip H. (Phoenix AZ), Collection of value from stored value systems.
Rose Marshall T. ; Stein Lee H. ; Borenstein Nathaniel S. ; Lowery Carlyn M. ; New Darren ; Stefferud Einar, Computerized payment system for purchasing goods and services on the internet.
Stein Lee H. ; Stefferud Einar A. ; Borenstein Nathaniel S. ; Rose Marshall T., Computerized system for making payments and authenticating transactions over the internet.
Renner G. Fred ; Johnson Randall E. ; Chu-Jeng Caroline, Distinct smart card reader having wiegand, magnetic strip and bar code types emulation output.
Mansvelt Andre P. (171 ANderson Avenue Northcliff ; Johannesburg ; Transvaal ZAX) Belamant Serge C. P. (55 - 13th Street Parkmore ; Johannesburg ; Transvaal ZAX), Funds transfer system.
Dancs Frank B. ; Zmuda James E., Mechanism for facilitating secure storage and retrieval of information on a smart card by an internet service provider using various network computer client devices.
Glass Randal ; Salganicoff Marcos ; von Seelen Ulf Cahn, Method and apparatus for securely transmitting and authenticating biometric data over a network.
Biorge James E. ; Hauge Richard T. ; Svigals Jerome, Method and system for allocating and redeeming incentive credits between a portable device and a base device.
Friedes Albert (East Brunswick NJ) Perea Carlos A. (Bethlehem PA) Tsao Yao-Chung (Middletown NJ), Method and system for mediating transactions that use portable smart cards.
Bolle, Rudolf Maarten; Nunes, Sharon Louise; Pankanti, Sharathchandra; Ratha, Nalini Kanta; Smith, Barton Allen; Zimmerman, Thomas Guthrie, Method for biometric-based authentication in wireless communication for access control.
Binding,Carl; Hild,Stefan; Moser,Michael; O'Connor,Luke, Method of establishing the trustworthiness level of a participant in a communication connection.
Bishop, Fred Alan; Glazer, Elliot Harold; Gorgol, Zygmunt Steven; Hohle, William G.; Johnson, Michael G.; Johnstone, David E; Lake, Walter Donald; Royer, Coby; Simkin, Marvin; Swift, Nick; White, Dirk B; Bennett, Russell, Methods and apparatus for conducting electronic transactions.
Maes Stephane Herman ; Sedivy Jan,CSX, Portable information and transaction processing system and method utilizing biometric authorization and digital certificate security.
Dolan George M. (Charlotte NC) Holloway Christopher J. (Woking GB2) Matyas ; Jr. Stephen M. (Poughkeepsie NY), Public key data communications system under control of a portable security device.
Hoffstein Jeffrey ; Kaliski ; Jr. Burton S. ; Lieman Daniel Bennett ; Robshaw Matthew John Barton ; Yin Yiqun Lisa, Secure user identification based on constrained polynomials.
Schick David (150-54 76th Rd. Flushing NY 11367) Bane Mark (141-17 72nd Crescent Flushing NY 11367), Self verifying transaction card with disabling capability.
Fox, Barbara L.; Waters, Lester L.; Spelman, Jeffrey F.; Seidensticker, Robert B.; Thomlinson, Matthew W., System and method for secure electronic commerce transaction.
Dillaway Blair B. ; Barlow Douglas C. ; Lipscomb Terry M., System and method of using smart cards to perform security-critical operations requiring user authorization.
Hoehn-Saric Rudolph Christopher ; Nguyen Christopher L. ; Stevens Patrick D., System for administration of remotely-proctored, secure examinations and methods therefor.
Michael F. Guheen ; James D. Mitchell ; James J. Barrese, System for establishing plan to test components of web based framework by displaying pictorial representation and conveying indicia coded components of existing network framework.
Bogosian ; Jr. Charles A. (Warwick RI), System for verifying use of a credit/identification card including recording of physical attributes of unauthorized user.
Nguyen Trong ; Subramanian Mahadevan P. ; Haller Daniel R., System, method and article of manufacture for a gateway system architecture with system administration information acce.
Williams Humphrey ; Hughes Kevin ; Parmar Bipinkumar G., System, method and article of manufacture for network electronic authorization utilizing an authorization instrument.
Davis Terry L. ; Hart James A. ; Imperia Vincent A. ; Love Michael ; O'Malley Michael F. ; Russell James F. ; Sears John W. ; Trice Philip H., Transaction system comprising a first transportable integrated circuit device, a terminal, and a security device.
Davis Terry L. (Scottsdale AZ) Hart James A. (Radnor PA) Imperia Vincent A. (Tempe AZ) Love Michael (Wilmington DE) O\Malley Michael F. (Glenside PA) Russell James F. (Hockessin DE) Sears John W. (Pe, Transaction system for integrated circuit cards.
Pitroda Satyan G. (1480 Golden Bell Ct. Downers Grove IL 60515), Universal electronic transaction card including receipt storage and system and methods of conducting electronic transact.
Bezos,Jeffrey P.; Kaphan,Sheldon J.; Ratajak,Ellen L.; Schonhoff,Thomas K., Use of shopping cart to collect and purchase items selected from multiple web sites.
※ AI-Helper는 부적절한 답변을 할 수 있습니다.