Centralized identity authentication for electronic communication networks

US 10,032,165 B2
Filed: 09/13/2013
Issued: 07/24/2018
Est. Priority Date: 03/06/2000
Status: Active Grant

First Claim

Patent Images

1. A method operative to perform centralized identity authentication for transactions conducted over the Internet, said method comprising:

registering a plurality of users with a centralized agent such that each registered user is associated with an account holder record including at least one set of authentication data from which that user can be authenticated;

registering a plurality of different vendors having a presence on the Internet, said registered vendors selectively transacting with registered users;

receiving a registered user directed thereto from a registered vendor over the Internet; and

,authenticating via a computer the received user'"'"'s identity over the Internet prior to completion of a transaction between the registered vendor and the registered user, wherein said authenticating includes comparing a provided authentication data to data in the account holder records, said provided authentication data including at least one of a user name, a password, a personal identification number and a dynamically changing non-predictable code, wherein the received user is identified as an account holder when there is a sufficient match resulting from the comparison, and is not identified as an account holder when there is no sufficient match resulting from the comparison;

wherein a given registered user employs the same authentication data to transact with multiple different registered vendors.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method of centralized identity authentication for use in connection with a communications network includes registering users of the communications network such that each registered user'"'"'s identity is uniquely defined and determinable, and registering a plurality of vendors having a presence on the communications network. The registered vendors selectively transact with registered users, wherein the transactions include: (i) the registered vendor selling goods and/or services to the registered user; (ii) the registered vendor granting the registered user access to personal records maintained by the registered vendor; and/or (iii) the registered vendor communicating to the registered user personal information maintained by the registered vendor. The method also includes each user'"'"'s identity being authenticated over the communications network prior to completion of transactions between registered vendors and registered users.

75 Citations

23 Claims

1. A method operative to perform centralized identity authentication for transactions conducted over the Internet, said method comprising:
- registering a plurality of users with a centralized agent such that each registered user is associated with an account holder record including at least one set of authentication data from which that user can be authenticated;
  
  registering a plurality of different vendors having a presence on the Internet, said registered vendors selectively transacting with registered users;
  
  receiving a registered user directed thereto from a registered vendor over the Internet; and
  
  ,authenticating via a computer the received user'"'"'s identity over the Internet prior to completion of a transaction between the registered vendor and the registered user, wherein said authenticating includes comparing a provided authentication data to data in the account holder records, said provided authentication data including at least one of a user name, a password, a personal identification number and a dynamically changing non-predictable code, wherein the received user is identified as an account holder when there is a sufficient match resulting from the comparison, and is not identified as an account holder when there is no sufficient match resulting from the comparison;
  
  wherein a given registered user employs the same authentication data to transact with multiple different registered vendors.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 23)
- - 2. The method of claim 1, wherein the plurality of different vendors includes at least one of a first type of vendor, such that the transaction between the first type of registered vendor and the registered user includes a sale of at least one of goods and services from the vendor to the registered user.
  - 3. The method of claim 2, wherein the plurality of different vendors includes at least one of a second type of vendor which maintains at least one database containing records associated with at least one of the registered users, such that the transaction between the second type of registered vendor and the registered user includes the vendor providing the registered user access to their records contained in the database of the second type of registered vendor.
  - 4. The method of claim 3, wherein the registering a plurality of users includes:
    - providing a registration page over the Internet to the users to be registered; and
      
      collecting registration data from the users via the registration page.
  - 5. The method of claim 4, where the registering a plurality of users further includes:
    - verifying users'"'"' identities from the collected registration data by determining a consistency of the collected registration data with records contained in the databases of one or more of the second type of registered vendors.
  - 6. The method of claim 1, wherein the authenticating includes at least two-factor authentication.
  - 7. The method of claim 1, further comprising:
    - notifying a registered user when an attempt at authenticating the registered user fails.
  - 8. The method of claim 1, wherein during the transaction between the registered vendor and the registered user, the agent withholds the identity of the registered user from the registered vendor.
  - 9. The method of claim 1, wherein the registering a plurality of users includes:
    - providing a registration page over the Internet to the users to be registered; and
      
      collecting registration data from the users via the registration page.
  - 10. The method of claim 9, where the registering a plurality of users further includes:
    - verifying users'"'"' identities from the collected registration data by determining a consistency of the collected registration data with records contained in the databases of one or more of the registered vendors.
  - 23. The method of claim 6, wherein during the transaction between the registered vendor and the registered user, the agent withholds the identity of the registered user from the registered vendor.

11. A system operative to perform centralized identity authentication for transactions conducted over the Internet, said system comprising:
- a centralized agent, operative to;
  
  register a plurality of users therewith such that each registered user is associated with an account holder record including at least one set of authentication data from which that user can be authenticated;
  
  register a plurality of different vendors having a presence on the Internet, said registered vendors selectively transacting with registered users;
  
  receive a registered user directed thereto from a registered vendor over the Internet; and
  
  ,authenticate via a computer the received user'"'"'s identity over the Internet prior to completion of a transaction between the registered vendor and the registered user, wherein said authenticating includes comparing a provided authentication data to data in the account holder records, said provided authentication data including at least one of a user name, a password, a personal identification number and a dynamically changing non-predictable code, wherein the received user is identified as an account holder when there is a sufficient match resulting from the comparison, and is not identified as an account holder when there is no sufficient match resulting from the comparison;
  
  wherein a given registered user employs the same authentication data to transact with multiple different registered vendors.
- View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22)
- - 12. The system of claim 11, wherein the plurality of different vendors includes at least one of a first type of vendor, such that the transaction between the first type of registered vendor and the registered user includes a sale of at least one of goods and services from the vendor to the registered user.
  - 13. The system of claim 12, wherein the plurality of different vendors includes at least one of a second type of vendor which maintains at least one database containing records associated with at least one of the registered users, such that the transaction between the second type of registered vendor and the registered user includes the vendor providing the registered user access to their records contained in the database of the second type of registered vendor.
  - 14. The system of claim 13, wherein when registering the plurality of users, the centralized agent is operative to:
    - provide a registration page over the Internet to the users to be registered; and
      
      collect registration data from the users via the registration page.
  - 15. The system of claim 14, where when registering the plurality of users, the centralized agent is further operative to:
    - verify users'"'"' identities from the collected registration data by determining a consistency of the collected registration data with records contained in the databases of one or more of the second type of registered vendors.
  - 16. The system of claim 15, wherein the centralized agent is further operative to:
    - notify a registered user when an attempt at authenticating the registered user fails.
  - 17. The system of claim 11, wherein the authenticating includes at least two-factor authentication.
  - 18. The system of claim 11, wherein the centralized agent is further operative to:
    - notify a registered user when an attempt at authenticating the registered user fails.
  - 19. The system of claim 11, wherein during the transaction between the registered vendor and the registered user, the centralized agent withholds the identity of the registered user from the registered vendor.
  - 20. The system of claim 11, wherein when registering the plurality of users, the centralized agent is operative to:
    - provide a registration page over the Internet to the users to be registered; and
      
      collect registration data from the users via the registration page.
  - 21. The system of claim 20, wherein when registering the plurality of users, the centralized agent is further operative to:
    - verify users'"'"' identities from the collected registration data by determining a consistency of the collected registration data with records contained in databases of one or more of the registered vendors.
  - 22. The system of claim 21, wherein the authenticating includes at least two-factor authentication.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
CardinalCommerce Corporation (Visa, Inc.)
Original Assignee
CardinalCommerce Corporation (Visa, Inc.)
Inventors
Bhagavatula, Ravishankar S., Balasubramanian, Chandra, Sherwin, Francis M., Keresman, III, Michael A., Bowman, Jeffry J.
Primary Examiner(s)
Song, Hosuk

Application Number

US14/026,326
Publication Number

US 20140019362A1
Time in Patent Office

1,775 Days
Field of Search

713150, 713155, 713168, 713170, 726 2- 9, 705 50, 705 53, 705 67- 68, 705 70, 705 75- 79
US Class Current
CPC Class Codes

G06F 21/31   User authentication

G06F 21/445   by mutual authentication, e...

G06Q 20/4014   Identity check for transact...

G06Q 30/06   Buying, selling or leasing ...

H04L 63/08   for authentication of entit...

H04L 63/083   using passwords cryptograph...

Centralized identity authentication for electronic communication networks

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

75 Citations

23 Claims

Specification

Use Cases

Quick Links

Others

Centralized identity authentication for electronic communication networks

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

75 Citations

23 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others