Reliance server for electronic transaction system
First Claim
1. A method of managing reliance in an electronic transaction system, the method comprising the steps of:
- (A) a certification authority issuing electronic signals representing a primary certificate to a subscriber;
(B) forwarding, from the certification authority to a reliance server, electronic signals representing information about the issued primary certificate;
(C) the reliance server maintaining the forwarded information about issued primary certificate;
(D) the subscriber forming a transaction and then providing electronic signals representing the transaction to a relying party, the transaction including electronic signals representing the primary certificate;
(E) the relying party sending to the reliance server electronic signals representing a request for assurance based on the transaction received from the subscriber;
(F) the reliance server determining whether to provide the requested assurance, said determining based on the information about the issued primary certificate and on the requested assurance; and
, based on said determining, (G) the reliance server issuing to the relying party electronic signals representing a secondary certificate providing the assurance to the relying party.
1 Assignment
0 Petitions
Accused Products
Abstract
A method of managing reliance in an electronic transaction system includes a certification authority issuing a primary certificate to a subscriber and forwarding to a reliance server, information about the issued primary certificate. The reliance server maintains the forwarded information about issued primary certificate. The subscriber forms a transaction and then provides the transaction to a relying party. The transaction includes the primary certificate or a reference thereto. The relying party sends to the reliance server a request for assurance based on the transaction received from the subscriber. The reliance server determines whether to provide the requested assurance based on the information about the issued primary certificate and on the requested assurance. Based on the determining, the reliance server issues to the relying party a secondary certificate providing the assurance to the relying party.
165 Citations
56 Claims
-
1. A method of managing reliance in an electronic transaction system, the method comprising the steps of:
-
(A) a certification authority issuing electronic signals representing a primary certificate to a subscriber;
(B) forwarding, from the certification authority to a reliance server, electronic signals representing information about the issued primary certificate;
(C) the reliance server maintaining the forwarded information about issued primary certificate;
(D) the subscriber forming a transaction and then providing electronic signals representing the transaction to a relying party, the transaction including electronic signals representing the primary certificate;
(E) the relying party sending to the reliance server electronic signals representing a request for assurance based on the transaction received from the subscriber;
(F) the reliance server determining whether to provide the requested assurance, said determining based on the information about the issued primary certificate and on the requested assurance; and
, based on said determining,(G) the reliance server issuing to the relying party electronic signals representing a secondary certificate providing the assurance to the relying party. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 24, 25, 28, 30, 31, 32)
-
-
23. An electronic transaction system comprising:
-
a certification authority issuing electronic signals representing primary certificates to subscribers to the system; and
a reliance server connectable to the certification authority and receiving from the certification authority electronic signals representing information regarding the primary certificates issued by the certification authority, the reliance server issuing, upon request from relying parties, electronic signals representing secondary certificates to the relying parties, the issuing being based on the information provided by the certification authority and on information provided by the relying parties.
-
-
26. In an electronic transaction system in which a certification authority issues electronic signals representing digital certificates to subscribers, a method of automatic replacement of a subscribers certificate, the method comprising the steps of, by a subscriber:
-
(A) creating a standby application for certification of a new key pair;
(B) digitally signing the standby application with a private key and then destroying the private key;
(C) including electronic signals representing the public key corresponding to the private key in a transactional certificate valid only for the standby application and forwarding the transactional to certificate to the certification authority; and
, by the certification authority,(D) keeping electronic signals representing the transactional certificate; and
subsequently,(E) the subscriber sending electronic signals representing the standby application to the certification authority;
(F) the certification authority verifying the digital signature on the application by reference to the transactional certificate; and
then(G) issuing electronic signals representing a new time-based certificate listing the public key indicated in the standby application.
-
-
27. A method of managing reliance in an electronic transaction system in which subscribers have digital time-based certificates issued by certification authorities, the method comprising the steps of, by a relying party:
-
receiving electronic signals representing a transaction from a subscriber, the transaction including information regarding at least one time-based certificate of that subscriber;
creating a message based on certificate information from the transaction, the message specifying an amount of the transaction upon which the relying party intends to rely; and
sending electronic signals representing the message to a reliance server requesting a guarantee for the amount of the transaction upon which the relying party intends to rely.
-
-
29. A method of managing reliance in an electronic transaction system in which subscribers have digital time-based certificates issued by certification authorities, the method comprising the steps of, by a reliance server:
-
receiving electronic signals representing a reliance request message from a party, the message specifying an amount of a transaction upon which the party intends to rely and requesting a guarantee for the amount of the transaction, the message including certificate information derived from the transaction;
determining whether to provide a guarantee for the amount of the transaction; and
sending electronic signals representing a voucher to the relying party, the voucher including an indication of whether the reliance server guarantees the amount of the transaction.
-
-
33. A method of managing reliance in an electronic transaction system, the method comprising the steps of, by a certification authority:
-
issuing electronic signals representing a time-based certificate to a subscriber, the certificate specifying a stated reliance limit; and
forwarding to a reliance server electronic signals representing an actual reliance limit for the certificate, the actual reliance limit being different from the stated reliance limit. - View Dependent Claims (35, 36, 37, 38, 39, 40, 41)
-
-
34. A method of managing reliance in an electronic transaction system in which subscribers have digital certificates, the method comprising the steps of, by a relying party:
-
receiving electronic signals representing a transaction from a subscriber, the transaction including information regarding at least one certificate of that subscriber;
creating electronic signals representing a message based on certificate information from the transaction, the message specifying an aspect of the transaction upon which the relying party intends to rely; and
sending the electronic signals representing the message to a reliance server requesting a guarantee for the aspect of the transaction upon which the relying party intends to rely.
-
-
42. A method of managing reliance in an electronic transaction system in which subscribers have digital certificates, the method comprising the steps of, by a reliance server:
-
receiving electronic signals representing a message from a party thereby requesting a guarantee for an aspect of the transaction, the message including certificate information derived from the transaction;
validating information in the message to determine whether to provide the guarantee for the aspect of the transaction; and
sending electronic signals representing a reply receipt to the relying party, the reply receipt including an indication of whether the reliance server guarantees the aspect of the transaction. - View Dependent Claims (43, 44, 45, 46, 47, 49, 50, 51, 52, 53, 54, 55, 56)
-
-
48. A method of managing reliance in an electronic transaction system, the method comprising the steps of:
-
a certification authority issuing electronic signals representing a time-based certificate to a subscriber;
forwarding, from the certification authority, electronic signals representing information about the certificate to a reliance server, the information including a unique identifier for the certificate and an actual reliance limit for the certificate;
the subscriber forming electronic signals representing a transaction based on the certificate and forwarding the transaction to a relying party;
the relying party sending electronic signals representing a reliance request message to the reliance server concerning the transaction;
the reliance server checking information in the reliance request message, and, based on the checking;
issuing electronic signals representing a transactional certificate as a voucher to the relying party.
-
Specification