Centralized identity authentication for electronic communication networks

US 10,032,166 B2
Filed: 09/13/2013
Issued: 07/24/2018
Est. Priority Date: 03/06/2000
Status: Active Grant

First Claim

Patent Images

1. A computer system operative to perform centralized identity authentication for transactions conducted over a public communications network, said system comprising:

a centralized agent implemented via at least one hardware server connected with said network so as to maintain a presence thereon, said at least one hardware server being operative to;

receive user registration data so as to register a plurality of users with the centralized agent such that each registered user is associated with a created account holder record including at least one set of authentication data from which that user can be authenticated;

receive vendor registration data so as to register with the centralized agent a plurality of different vendors having hardware servers connected with said network so as to maintain a presence thereon;

receive a registered user redirected over the network thereto from a server of a registered vendor, said user employing a device running a browser thereon to connect to the at least one hardware server of the centralized agent via the network; and

,authenticate the received user'"'"'s identity over the network prior to completion of a transaction between the registered user and the registered vendor from which the registered user was redirected, wherein to authenticate the received user'"'"'s identity, said at least one hardware server of the centralized agent compares a provided authentication data from the received user to authentication data in the account holder records, such that the received user is identified as an account holder when there is a sufficient match resulting from the comparison;

wherein a given registered user employs the same authentication data to transact with multiple different registered vendors.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method of centralized identity authentication for use in connection with a communications network includes registering users of the communications network such that each registered user'"'"'s identity is uniquely defined and determinable, and registering a plurality of vendors having a presence on the communications network. The registered vendors selectively transact with registered users, wherein the transactions include: (i) the registered vendor selling goods and/or services to the registered user; (ii) the registered vendor granting the registered user access to personal records maintained by the registered vendor; and/or (iii) the registered vendor communicating to the registered user personal information maintained by the registered vendor. The method also includes each user'"'"'s identity being authenticated over the communications network prior to completion of transactions between registered vendors and registered users.

76 Citations

View as Search Results

21 Claims

1. A computer system operative to perform centralized identity authentication for transactions conducted over a public communications network, said system comprising:
- a centralized agent implemented via at least one hardware server connected with said network so as to maintain a presence thereon, said at least one hardware server being operative to;
  
  receive user registration data so as to register a plurality of users with the centralized agent such that each registered user is associated with a created account holder record including at least one set of authentication data from which that user can be authenticated;
  
  receive vendor registration data so as to register with the centralized agent a plurality of different vendors having hardware servers connected with said network so as to maintain a presence thereon;
  
  receive a registered user redirected over the network thereto from a server of a registered vendor, said user employing a device running a browser thereon to connect to the at least one hardware server of the centralized agent via the network; and
  
  ,authenticate the received user'"'"'s identity over the network prior to completion of a transaction between the registered user and the registered vendor from which the registered user was redirected, wherein to authenticate the received user'"'"'s identity, said at least one hardware server of the centralized agent compares a provided authentication data from the received user to authentication data in the account holder records, such that the received user is identified as an account holder when there is a sufficient match resulting from the comparison;
  
  wherein a given registered user employs the same authentication data to transact with multiple different registered vendors.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21)
- - 2. The system of claim 1, wherein the set of authentication data includes at least one of a user name, a password, a personal identification number and a dynamically changing non-predictable code.
  - 3. The system of claim 1, wherein the public communication network is the Internet.
  - 4. The system of claim 1, wherein the plurality of different vendors includes at least one of a first type of vendor, such that the transaction between the first type of registered vendor and the registered user includes a sale of at least one of goods and services from the vendor to the registered used.
  - 5. The system of claim 4, wherein the plurality of different vendors includes at least one of a second type of vendor which maintains at least one database containing records associated with at least one of the registered users, such that the transaction between the second type of registered vendor and the registered user includes the vendor providing the registered used access to their records contained in the database of the second type of registered vendor.
  - 6. The system of claim 1, said system further comprising:
    - a database, said database storing the created account holder records and being accessible by the at least one hardware server of the centralized agent.
  - 7. The system of claim 1, wherein the received user is not identified as an account holder when there is no sufficient match resulting from the comparison.
  - 8. The system of claim 1, wherein the at least one hardware server of the centralized agent is further operative to notify a registered user when an attempt at authenticating the registered user fails.
  - 9. The system of claim 1, wherein the at least one hardware server of the centralized agent is further operative to authorize completion of the transaction between the registered user and the registered vendor from which the registered user was redirected.
  - 10. The system of claim 9, wherein the at least one hardware server of the centralized agent is further operative to establish account privileges for registered users which are stored with the created account holder record therefor, said privileges being operative to restrict authorization for at least one of transactions carried out with identified vendors, commercial transactions over a set price limit and automatically reoccurring transactions being conducted absent the direct participation of the registered user.
  - 11. The system of claim 2, wherein the public communication network is the Internet.
  - 12. The system of claim 11, wherein the plurality of different vendors includes at least one of a first type of vendor, such that the transaction between the first type of registered vendor and the registered user includes a sale of at least one of goods and services from the vendor to the registered used.
  - 13. The system of claim 12, wherein the plurality of different vendors includes at least one of a second type of vendor which maintains at least one database containing records associated with at least one of the registered users, such that the transaction between the second type of registered vendor and the registered user includes the vendor providing the registered used access to their records contained in the database of the second type of registered vendor.
  - 14. The system of claim 3, wherein the set of authentication data includes at least one of a user name, a password, a personal identification number and a dynamically changing non-predictable code.
  - 15. The system of claim 2, wherein the plurality of different vendors includes at least one of a first type of vendor, such that the transaction between the first type of registered vendor and the registered user includes a sale of at least one of goods and services from the vendor to the registered used.
  - 16. The system of claim 15, wherein the plurality of different vendors includes at least one of a second type of vendor which maintains at least one database containing records associated with at least one of the registered users, such that the transaction between the second type of registered vendor and the registered user includes the vendor providing the registered used access to their records contained in the database of the second type of registered vendor.
  - 17. The system of claim 2, said system further comprising:
    - a database, said database storing the created account holder records and being accessible by the at least one hardware server of the centralized agent.
  - 18. The system of claim 4, said system further comprising:
    - a database, said database storing the created account holder records and being accessible by the at least one hardware server of the centralized agent.
  - 19. The system of claim 1, wherein the set of authentication data includes all of a user name, a password, a personal identification number and a dynamically changing non-predictable code.
  - 20. The system of claim 19, wherein the set of authentication data further includes biometric data.
  - 21. The system of claim 1, wherein the set of authentication data includes biometric data.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
CardinalCommerce Corporation (Visa, Inc.)
Original Assignee
CardinalCommerce Corporation (Visa, Inc.)
Inventors
Bhagavatula, Ravishankar S., Balasubramanian, Chandra, Sherwin, Francis M., Keresman, III, Michael A., Bowman, Jeffry J.
Primary Examiner(s)
Song, Hosuk

Application Number

US14/026,350
Publication Number

US 20140020076A1
Time in Patent Office

1,775 Days
Field of Search

713150, 713155, 713168, 713170, 726 2- 9, 705 50, 705 53, 705 67- 68, 705 70, 705 75- 79
US Class Current
CPC Class Codes

G06F 21/31   User authentication

G06F 21/445   by mutual authentication, e...

G06Q 20/4014   Identity check for transact...

G06Q 30/06   Buying, selling or leasing ...

H04L 63/08   for authentication of entit...

H04L 63/083   using passwords cryptograph...

Centralized identity authentication for electronic communication networks

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

76 Citations

21 Claims

Specification

Use Cases

Quick Links

Others

Centralized identity authentication for electronic communication networks

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

76 Citations

21 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others