System and method for providing certification-related and other services
IPC분류정보
국가/구분
United States(US) Patent
등록
국제특허분류(IPC7판)
G06Q-020/00
G06Q-020/02
G06Q-020/38
출원번호
US-0441979
(2003-05-20)
등록번호
US-9684889
(2017-06-20)
발명자
/ 주소
Hicks, Mack
Seiler, Regina
Tallent, Guy
Kupres, Kristin
Freudenstein, Allen
출원인 / 주소
Identrust, Inc.
대리인 / 주소
Sophir, Eric L.
인용정보
피인용 횟수 :
0인용 특허 :
151
초록▼
A system for warranting the identity of a party over an electronic network. The system comprises a root entity and a plurality of additional entities. Each additional entity is admitted to the system after agreeing to abide by a plurality of operating rules promulgated by the root entity. The additi
A system for warranting the identity of a party over an electronic network. The system comprises a root entity and a plurality of additional entities. Each additional entity is admitted to the system after agreeing to abide by a plurality of operating rules promulgated by the root entity. The additional entities may comprise level-one participants and level-two participants. Certificate authorities maintained by level-one participants issue digital certificates to their customers. The digital certificates bind the customers to their public keys. System customers are also provided with a warranty request formatter which is adapted to formulate a request for a warranty as to the veracity of information contained in a digital certificate. The warranty request formatter is also adapted to transmit the request for the warranty to the customer's level-one participant. The level-one participants maintain an intelligent messaging gateway which is adapted to receive messages from their customers and to transmit messages to appropriate system entities. Warranty offers are issued by the participant that issued the digital certificate identified in the warranty request. The participants are required to maintain collateral with a collateral custodian.
대표청구항▼
1. A computer-implemented method comprising: generating, by a root entity computer associated with a root entity, one or more digital certificate records in a root repository configured to store a plurality of certificate records, each digital certificate record containing a digital certificate and
1. A computer-implemented method comprising: generating, by a root entity computer associated with a root entity, one or more digital certificate records in a root repository configured to store a plurality of certificate records, each digital certificate record containing a digital certificate and a status associated with the digital certificate;transmitting, by the root entity computer associated with the root entity, to a plurality of computing devices a set of one or more operating rules associated with one or more automated services, the plurality of computing devices comprising an issuing participant computer and a relying participant computer, wherein the one or more operating rules define a set of rights and responsibilities associated with each of: the root entity computer, the issuing participant computer, the relying participant computer, and one or more relying customer computers;issuing, by the root entity computer, one or more digital certificates to the issuing participant computer and the relying participant computer in accordance with the operating rules, wherein the root entity computer transmits from the root repository the one or more digital certificate records to the issuing participant computer and the relying participant computer;generating, by the issuing participant computer associated with an issuing participant, from the one or more digital certificate records received from the root entity computer, one or more issuing participant certificate records in an issuing participant repository configured to store a plurality of issuing participant certificate records, each issuing participant certificate record containing the digital certificate and the status associated with the digital certificate from a corresponding digital certificate record of the one or more digital certificate records received from the root entity computer;issuing, by the issuing participant computer associated with an issuing participant, from the issuing participant certificate records in the issuing participant repository, one or more digital certificates to one or more subscribing customer computers respectively according to the operating rules, wherein a subscribing customer computer is associated with a customer of the issuing participant;validating, by the issuing participant computer, the digital certificate of the respective subscribing customer computer, in accordance with the status of the digital certificate of the subscribing customer computer in the issuing participant certificate record for the digital certificate, wherein the status indicates a revocation status and a warranty cap status for the digital certificate;generating, by the relying participant computer associated with an relying participant, from the one or more digital certificate records received from the root entity computer, one or more relying participant certificate records in a relying participant repository configured to store a plurality of relying participant certificate records, each issuing participant certificate record containing the digital certificate and the status associated with the digital certificate from a corresponding digital certificate record of the one or more digital certificate records received from the root entity computer;issuing, by the relying participant computer associated with the relying participant, from the relying participant certificate records in the relying participant repository, one or more digital certificates to the one or more relying customer computers respectively according to the operating rules, wherein a relying customer computer is associated with a customer of the relying participant;providing, by the relying participant computer, the one or more automated services to the one or more relying customer computers in accordance with the status of each relying customer computer in the respective relying participant certificate record in the relying participant repository;receiving, by the relying participant computer, from the relying customer computer issued the respective digital certificate, a request for a warranty of identification validation having a warranty amount associated with the subscribing customer computer, wherein the warranty is an indicator associated with the certificate and indicates the relying participant associated with the relying participant computer warrants the certificate content and validity of the certificate, and wherein the warranty cap in the status of the relying participant digital record of the digital certificate indicates to the issuing participant computer on a maximum limitation of exposure determined by the issuing participant computer in accordance with one or more warranty indicators having a respective warranty amount associated with the digital certificate;validating, by the root entity computer, the digital certificate of the issuing participant in accordance with the status of the digital certificate of the issuing participant, upon the root entity computer: receiving from the relying participant computer a validity check request for the digital certificate of the issuing participant, determining the digital certificate is unrevoked, and determining that the warranty cap of the digital certificate satisfies the maximum limitation of exposure threshold amount based upon the warranty amount in the request for the warranty of identification validation;validating, by the issuing participant computer, the digital certificate of the subscribing customer computer in accordance with the status of the digital certificate of the subscribing customer computer in response to the root entity computer determining the status of the digital certificate of the issuing participant computer;transmitting, by the relying participant computer, the request for the warranty of identification validation associated with the subscribing customer computer to the issuing participant computer, wherein the warranty is associated with at least one of the one or more automated services; andissuing, by the issuing participant computer, the warranty of identification validation associated with the digital certificate of the subscribing customer to the relying customer computer, upon determining that issuing the warranty of identification does not exceed the maximum limitation of exposure value of the one or more digital certificates issued to the issuing participant computer. 2. The method of claim 1, wherein one of the plurality of automated services is an automated dispute resolution service. 3. The system method of claim 1, wherein the root entity computer monitors a warranty cap associated with the issuing participant. 4. The system method of claim 3, wherein the root entity computer monitors the warranty cap on a daily basis. 5. The method of claim 3, wherein the root entity computer monitors the warranty cap in real-time.
연구과제 타임라인
LOADING...
LOADING...
LOADING...
LOADING...
LOADING...
이 특허에 인용된 특허 (151)
Candelore Brant, Anti-tamper bond wire shield for an integrated circuit.
Jaffe, Joshua M.; Kocher, Paul C.; Jun, Benjamin C., Balanced cryptographic computational method and apparatus for leak minimizational in smartcards and other cryptosystems.
Crane Christina Heidi ; Philpot ; Jr. Edwin Michael ; Sirkin Stephna Jeanne ; Walker ; Jr. Kenneth, Configuration and unconfiguration of distributed computing environment components.
Dickinson, Alexander G.; Rohrbach, Mark D.; Clayton, Richard F.; Stark, Gregory H.; Ferrante, Michelle, Cryptographic server with provisions for interoperability between cryptographic systems.
Spies Terrence R. (Redmond WA) Spelman Jeffrey F. (Duvall WA) Simon Daniel R. (Redmond WA), Cryptography system and method for providing cryptographic services for a computer application.
Spies, Terrence R.; Spelman, Jeffrey F.; Simon, Daniel R., Cryptography system and method for providing cryptographic services for a computer application.
Schrab Jacqueline M. ; Sebesta James S. ; Erickson Joey L. ; Senger Susan A., Development system for automatically enabling a server application to execute with an XATMI-compliant transaction manager managing transactions within multiple environments.
Linsker Ralph (New York NY) Bennett Charles Henry (Croton-on-Hudson NY), Digital signature generator /verifier/ recorder (DS-GVR) for analog transmissions.
Okamoto Tatsuaki,JPX, Electronic cash implementing method with a surveillance institution, and user apparatus and surveillance institution apparatus for implementing the same.
Boesch Brian Paul ; Crocker Stephen David ; Eastlake ; III Donald Eggleston ; Hart ; Jr. Alden Sherburne ; Lindenberg Robert A. ; Paredes Denise Marie, Electronic transfer system and method.
Jones Michael F. (Nashua NH) Zachai Arthur (Swampscott MA), Encrypted data storage card including smartcard integrated circuit for storing an access password and encryption keys.
Gordon M. Green ; Robin Anne Maley ; Michael H. Barnett ; Richard Eckerstrom ; Richard Allen Kamm ; Robert J. Keenoy ; Donald Louis Mikkelsen ; Coleman L. Munch ; Jesse N. Randall ; Michael , Health care policy on-line maintenance dissemination and compliance testing system.
Turnbull James Arthur,CAX ; Curry Ian H.,CAX ; Van Oorschot Paul C.,CAX ; Hillier Stephen William,CAX, Method and apparatus for extending secure communication operations via a shared list.
Aziz, Ashar; Baehr, Geoffrey; Caronni, Germano; Gupta, Amit; Gupta, Vipul; Scott, Glenn C., Method and apparatus for providing secure communication with a relay in a network.
Van Oorschot Paul C.,CAX ; Wiener Michael J.,CAX ; Curry Ian,CAX, Method and apparatus for use in determining validity of a certificate in a communication system employing trusted paths.
Schaefer Diane E. ; Kayser Steven L. ; Rajcan Steven L., Methods and apparatus for enabling a component in a first transaction processing environment to access a resource in another environment that is under the control of an Xatmi complaint transaction ma.
Lin David Dah-Haur ; Shaheen Amal Ahmed ; Yellepeddy Krishna Kishore, Multiple remote data access security mechanism for multitiered internet computer networks.
Dolan George M. (Charlotte NC) Holloway Christopher J. (Woking GB2) Matyas ; Jr. Stephen M. (Poughkeepsie NY), Public key data communications system under control of a portable security device.
Bruwer Frederick Johannes,ZAX ; Pretorius Pieter Jacobus,ZAX ; Dippenaar Theodor Johannes,ZAX, Secure token integrated circuit and method of performing a secure authentication function or transaction.
Puhl Larry C. ; Vogler Dean H. ; Dabbish Ezzat A., Secure wireless electronic-commerce system with digital product certificates and digital license certificates.
Russell,Wilfred G.; Helland,Patrick James; Hope,Greg; Limprecht,Rodney; Al Ghosein,Mohsen; Gray,Jan Stephen, Software component execution management using context objects for tracking externally-defined intrinsic properties of executing software components within an execution environment.
Barlow Doug ; Dillaway Blair ; Fox Barbara ; Lipscomb Terry ; Spies Terrence, System and method for configuring and managing resources on a multi-purpose integrated circuit card using a personal computer.
Brandenburg,Jackson; Krishnamacharii,Narasimhan; Dulin,Charles, System and method for facilitating access by sellers to certificate-related and other services.
Miller,Lawrence R.; Ahmed,Khaja E.; Vasanthakumar,Navin; Robinson,Mark; Boyd,Jeffrey F.; Goldstein,Deborah; Cerra,Peter, System and method for providing warranties in electronic commerce.
Fox, Barbara L.; Waters, Lester L.; Spelman, Jeffrey F.; Seidensticker, Robert B.; Thomlinson, Matthew W., System and method for secure electronic commerce transaction.
Fox Barbara L. ; Waters Lester L. ; Spelman Jeffrey F. ; Seidensticker Robert B. ; Thomlinson Matthew W., System and method for secure electronic commerce transactions.
Tallent, Jr.,Guy S.; Miller,Lawrence R.; Ahmed,Khaja E., System and method for transparently providing certificate validation and other services within an electronic transaction.
Nguyen Trong ; Haller Daniel R. ; Kramer Glenn A., System, method and article of manufacture for a gateway payment architecture utilizing a multichannel, extensible, flexible architecture.
Williams Humphrey ; Hughes Kevin ; Parmar Bipinkumar G., System, method and article of manufacture for network electronic authorization utilizing an authorization instrument.
Berger David A. ; Weber Jay C. ; Kramer Glenn A., System, method and article of manufacture for processing a plurality of transactions from a single initiation point on a.
Kevin T. B. Rowney, System, method and article of manufacture for transmitting messages within messages utilizing an extensible, flexible architecture.
Brown Keith T. ; Brown Philip B. ; Waddell J. William ; Andre Jeffrey J., Systems and methods for facilitating the exchange of information between separate business entities.
Ginter Karl L. ; Shear Victor H. ; Sibert W. Olin ; Spahn Francis J. ; Van Wie David M., Systems and methods for secure transaction management and electronic rights protection.
Breen, Jr., Napier Fulton; Hompesch, Randall, Systems, methods and computer program products for conducting regulation-compliant commercial transactions of regulated goods via a computer network.
Abraham Dennis G. (Concord NC) Aden Steven G. (Charlotte NC) Arnold Todd W. (Charlotte NC) Neckyfarow Steven W. (Charlotte NC) Rohland William S. (Charlotte NC), Transaction system security method and apparatus.
Ginter Karl L. ; Shear Victor H. ; Spahn Francis J. ; Van Wie David M. ; Weber Robert P., Trusted and secure techniques, systems and methods for item delivery and execution.
Ginter, Karl L.; Shear, Victor H.; Spahn, Francis J.; Van Wie, David M.; Weber, Robert P., Trusted infrastructure support system, methods and techniques for secure electronic commerce transaction and rights management.
※ AI-Helper는 부적절한 답변을 할 수 있습니다.