Centralized identification and authentication system and method
First Claim
1. A system for identifying an individual over a communication network;
- comprising;
a User that needs to be identified in e-commerce;
a Central-Entity that provides digital identity to the users to positively identify themselves in e-commerce;
an External-Entity offering goods or services and needs to authenticate the users in e-commerce;
a communication network for the user, the Central-Entity and the External-Entity to send and receive information between each other.
2 Assignments
0 Petitions
Accused Products
Abstract
A method and system is provided by a Central-Entity, for identification and authorization of users over a communication network such as Internet. Central-Entity centralizes users personal and financial information in a secure environment in order to prevent the distribution of user'"'"'s information in e-commerce. This information is then used to create digital identity for the users. The digital identity of each user is dynamic, non predictable and time dependable, because it is a combination of user name and a dynamic, non predictable and time dependable secure code that will be provided to the user for his identification.
The user will provide his digital identity to an External-Entity such as merchant or service provider. The External-Entity is dependent on Central-Entity to identify the user based on the digital identity given by the user. The External-Entity forwards user'"'"'s digital identity to the Central-Entity for identification and authentication of the user and the transaction.
The identification and authentication system provided by the Central-Entity, determines whether the user is an authorized user by checking whether the digital identity provided by the user to the External-Entity, corresponds to the digital identity being held for the user by the authentication system. If they correspond, then the authentication system identifies the user as an authorized user, and sends an approval identification and authorization message to the External-Entity, otherwise the authentication system will not identify the user as an authorized user and sends a denial identification and authorization message to the External-Entity.
-
Citations
5 Claims
-
1. A system for identifying an individual over a communication network;
- comprising;
a User that needs to be identified in e-commerce;
a Central-Entity that provides digital identity to the users to positively identify themselves in e-commerce;
an External-Entity offering goods or services and needs to authenticate the users in e-commerce;
a communication network for the user, the Central-Entity and the External-Entity to send and receive information between each other. - View Dependent Claims (2, 3, 4)
- comprising;
-
5. A method for identifying an individual;
- comprising the steps;
The user registers at the Central-Entity;
The user provides his personal and/or financial information to the Central-Entity;
The user receives his unique UserName and Password from the Central-Entity;
The user attempts to get access to a restricted web site or to buy goods and/or services from an External-Entity;
The External-Entity requests the user to authenticate himself using his digital identity;
The user requests SecureCode from the Central-Entity;
The Central-Entity generates dynamic, non-predictable and time dependable SecureCode for the user;
The Central-Entity stores a copy of the SecureCode and sends out the SecureCode to the user over a communication network;
The user receives the SecureCode over a communication network;
The user submits his SecureCode as part of the digital identity in response to External-Entity'"'"'s request;
The External-Entity forwards the user'"'"'s digital identity along with the identification and authentication request to the Central-Entity over a communication network;
The Central-Entity retrieves the user'"'"'s digital identity including the SecureCode from the system;
The Central-Entity compares the retrieved users digital identity with the digital identity received from the External-Entity;
The Central-Entity sends approval identification and authorization message to the External-Entity when the digital identity forwarded to the Central-Entity, matches the users digital identity retrieved from the system;
The Central-Entity sends a denial identification and authorization message to the External-Entity when the digital identity forwarded to the Central-Entity does not match the users digital identity retrieved from the system.
- comprising the steps;
Specification