Method for the authorization of transactions

US 20020032661A1
Filed: 05/07/2001
Published: 03/14/2002
Est. Priority Date: 05/08/2000
Status: Abandoned Application

First Claim

Patent Images

1. Method for the authorization of transactions, wherein a user equipment receives an authorization request with an identifier of a transaction and replies to the request with an authorization response, said method comprising the steps of reception of the authorization request, determining an indication for the authorization request, output of the indication by the user equipment (UE), waiting for an input to approve or disapprove the authorization request, signing the identifier (H), sending the authorization response according to the input, wherein an approving authorization response comprises the signed identifier (H).

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method for the authorization of transactions is described, wherein a user equipment receives an authorization request with an identifier of a transaction and replies to the request with an authorization response. For an authorization request, an indication is determined which is output by the user equipment (UE). Preferably, the identifier is a hash value of the content which is to be authorized. After an input to approve or disapprove the authorization request, the identifier (H) is signed and the authorization response according to the input is sent, wherein an approving authorization response comprises the signed identifier (H). Devices and software programs adapted to the method are also described.

Citations

26 Claims

1. Method for the authorization of transactions, wherein a user equipment receives an authorization request with an identifier of a transaction and replies to the request with an authorization response, said method comprising the steps of reception of the authorization request, determining an indication for the authorization request, output of the indication by the user equipment (UE), waiting for an input to approve or disapprove the authorization request, signing the identifier (H), sending the authorization response according to the input, wherein an approving authorization response comprises the signed identifier (H).
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 15, 16, 18, 19, 26)
- - 2. Method according to claim 1, wherein the identifier (H) is a hash value.
  - 3. Method according to claim 1 or 2, wherein a check is performed whether the authorization request comprises a string (T) and the indication is the detected string (T) or a default string else.
  - 4. Method according to any preceding claim, wherein the displayed indication is included in the authorization response.
  - 5. Method according to any preceding claim, wherein a check is performed whether a connection is classified as safe and the indication comprises a result of the check or is selected according to the check.
  - 6. Method according to any preceding claim, wherein the authorization request comprises a signature of the sender and a check of the sender signature is performed.
  - 7. Method according to claim 6, wherein the indication comprises a result of the check or is selected according to the check.
  - 8. Method according to any preceding claim, wherein a concatenation of the identifier (H) and at least one further parameter is signed.
  - 9. Method according to any preceding claim, wherein a signature depends on a parameter which varies in consecutive authorization requests or authorization responses.
  - 10. Method according to any preceding claim, wherein the authorization request is sent by a server (MS) after reception of a message from a further entity.
  - 11. Method according to claim 10, wherein the message comprises the indication or a parameter determining the indication.
  - 12. Method according to claim 10 or 11, wherein the server (MS) forwards an approval of the identifier (H) to the further entity.
  - 13. Method according to any of the claims 10 to 12, wherein the server (MS) stores the indication or forwards it to the further entity.
  - 15. Server according to claim 14, wherein the server (MS) comprises an interface to receive messages from a further entity and the processing system is adapted to extract the content for authorization from a message received from the further network entity and to send a reply to the further network entity, wherein the reply is determined by the authorization response.
  - 16. Server according to any of the claims 14 or 15, wherein the server (MS) performs at least one step of a method according to any of the claims 1 to 13.
  - 18. User equipment according to claim 17, wherein the processing system (PS) performs a check whether the authorization request comprises a string (T) and selects the detected string (T) as indication or a default string else.
  - 19. User equipment according to claim 17 or 18, wherein the processing system (PS) includes the displayed indication in the authorization response.
  - 26. Computer program unit according to claim 25, wherein the program unit performs at least one step of a method according to any of the claims 2 to 9.

14. Server for processing authorization procedures in a communication system with an interface to exchange messages with user equipment of the communication system, wherein the server has a processing system adapted to send an authorization request for a content which is to be authorized to the user equipment and to receive an authorization response from the user equipment, characterized in that the processing system determines an identifier (H) for the content and includes the identifier (H) into the authorization request, the processing system determines an indication for the content and includes the indication into the authorization request and the server (MS) checks the authorization response for the identifier (H) signed by the user equipment (UE).

17. User equipment for a communication system, especially for a mobile communication system, with a transmission unit to receive and send messages, the messages comprising authorization requests and authorization responses, a unit to process input of a user, a unit to perform an output to the user, a unit to sign parameters and a processing system (PS) controlling said units which is adapted to process an authorization request with an identifier (H) of a transaction and to reply to the request with an authorization response, wherein the processing system (PS) includes a unit to determine an indication for the request, to initiate the output of the indication by the output unit (OU), to wait for an approval of the request by the user, to initiate the signing of the identifier (H) and to initiate the sending of an authorization response with the signed identifier (H) by the transmission unit (TU).
- View Dependent Claims (20, 21, 22, 23, 24)
- - 20. User equipment according to any of the claims 17 to 19, wherein the processing system (PS) performs a check whether a connection is classified as safe and includes the result of the check in the indication or selects the indication according to the check.
  - 21. User equipment according to any of the claims 17 to 20, wherein the authorization request comprises a signature of the sender and the processing system (PS) performs a check of the sender signature.
  - 22. User equipment according to claim 21, wherein the processing system (PS) includes the result of the check in the indication or selects the indication according to the check.
  - 23. User equipment according to any of the claims 17 to 22, wherein the processing system (PS) signs a concatenation of the identifier (H) and at least one further parameter.
  - 24. User equipment according to any of the claims 17 to 23, wherein the processing system (PS) includes a parameter which varies in consecutive authorization requests or authorization responses into a signed content.

25. Computer program unit for receiving an authorization request with an identifier of a transaction and replying to the request with an authorization response, the program unit comprising code for performing the steps of reception of the authorization request, determining an indication for the authorization request, initiating the output of the indication, waiting for an input approving or disapproving the authorization request, initiating the signing of the identifier (H), determining the authorization response according to the input, wherein an approving authorization response comprises the signed identifier (H).

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Telefonaktiebolaget LM Ericsson
Original Assignee
Telefonaktiebolaget LM Ericsson
Inventors
Wrona, Konrad, Schuba, Marko, Zavagli, Guido

Application Number

US09/850,338
Publication Number

US 20020032661A1
Time in Patent Office

Days
Field of Search
US Class Current

705/64
CPC Class Codes

G06Q 20/02   involving a neutral party, ...

G06Q 20/382   insuring higher security of...

G06Q 20/3827   Use of message hashing

G06Q 20/385   using an alias or single-us...

G06Q 20/40   Authorisation, e.g. identif...

H04L 2463/102   applying security measure f...

H04L 63/0869   for achieving mutual authen...

Method for the authorization of transactions

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

26 Claims

Specification

Solutions

Use Cases

Quick Links

Method for the authorization of transactions

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

26 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links