Secure transfer of digital tokens

US 20040104097A1
Filed: 08/07/2003
Published: 06/03/2004
Est. Priority Date: 08/07/2002
Status: Abandoned Application

First Claim

Patent Images

1. A system for securely transferring digital tokens by electronic means, the system comprising:

a secure digital token handling domain comprising a plurality of tamper-resistant electronic token holders, each token holder having the ability to process and store information relating to the transfer of digital tokens;

means for said token holders to communicate within the digital token handling domain only with other token holders, means for said token holders to communicate outside the digital token handling domain only with predetermined trusted third parties, including one or more trusted authorities responsible for the administration of encryption matters;

means for encrypting and decrypting secure communications between token holders within the digital token handling domain, and between token holders and the predetermined third parties;

whereby, in use, digital token transfers can be securely performed within the digital token handling domain.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system for securely transferring digital tokens by electronic means includes a secure digital token handling domain and predetermined third parties. The secure digital token handling domain comprises a plurality of tamper-resistant electronic token holders. Each token holder has the ability to process and store information relating to the transfer of digital tokens. The token holders are able to communicate within the digital token handling domain only with other token holders. The token holders are able to communicate outside the digital token handling domain only with the predetermined trusted third parties. One or more of the trusted authorities being responsible for the administration of encryption matters. Communications between token holders within the digital token handling domain, and between token holders and the predetermined third parties involving encrypting and decrypting of messages. Digital token transfers can be securely performed within the digital token handling domain according to a predetermined method.

106 Citations

View as Search Results

55 Claims

1. A system for securely transferring digital tokens by electronic means, the system comprising:
- a secure digital token handling domain comprising a plurality of tamper-resistant electronic token holders, each token holder having the ability to process and store information relating to the transfer of digital tokens;
  
  means for said token holders to communicate within the digital token handling domain only with other token holders, means for said token holders to communicate outside the digital token handling domain only with predetermined trusted third parties, including one or more trusted authorities responsible for the administration of encryption matters;
  
  means for encrypting and decrypting secure communications between token holders within the digital token handling domain, and between token holders and the predetermined third parties;
  
  whereby, in use, digital token transfers can be securely performed within the digital token handling domain.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44)
- - 2. A system according to claim 1, wherein the means for said token holders to communicate within the digital token handling domain is in the form of a digital cashier that resides in each token holder.
  - 3. A system according to either claim 1 or 2, wherein the means for said token holders to communicate outside the digital token handling domain is in the form of a digital cashier that resides within the token holder.
  - 4. A system according to any one of claim 1 to 3, wherein the means for encrypting and decrypting secure communications is in the form of a control means resident within each token holder.
  - 5. A system according to claim 4, wherein each control means operates according to a pre-programmed method of encrypting and decrypting communication to and from the respective digital cashier.
  - 6. A system according to claim 4, wherein the control means controls stores digital token according to a pre-programmed method based on information encrypted within communications with other token holders and predetermined trusted parties.
  - 7. A system according to any one of claims 1 to 6, wherein the amount of digital token within the secure digital token handling domain remains constant except where digital token is a added to the secure digital token handling domain by a source predetermined trusted third party or digital token is removed from the secure digital token handling domain by a sink trusted third party.
  - 8. A system according to claim 7, wherein the one or more trusted authorities provide each token holder with a decryption key for use in decrypting encrypted communication with other token holders.
  - 9. A system according to either claim 1 or 8, wherein each token handler has a unique identification.
  - 10. A system according to claim 9, wherein the decryption key provided by each trusted authority is a private key capable of decrypting a message encrypted with a public key derived from the identification of the respective token holder.
  - 31. A method according to any one of claims 1 to 30, wherein the method includes the steps of DTH1 providing DTH2 with ID1.
  - 32. A method according to any one of claims 1 to 31, wherein the method further includes the step of DTH2 encrypting the symmetrical key and ID2 using a public key derived from ID1 to provide a first encrypted message.
  - 33. A method according to claim 32, wherein the public key is also derived from a temporal value.
  - 34. A method according to either claim 32 or 33, wherein DTH2 provides DTH1 with the first encrypted message.
  - 35. A method according to claim 34, wherein the method further includes the step of DTH1 using the first decryption key to decrypt the first encrypted message to obtain the symmetrical key and ID2.
  - 36. A method according to claim 35, wherein DTH1 displaces ID2 and the amount of token to be transferred to DTH2.
  - 37. A method according to claim 36, wherein DTH1 receives confirmation to proceed with the transfer of the amount of digital token.
  - 38. A method according to claim 37, wherein the amount of digital token is encrypted with a public key derived from ID2.
  - 39. A method according to claim 38, wherein the public key is also derived from a temporal value.
  - 40. A method according to claim 39, wherein the decryption key is used to decrypt the encrypted message sent from DTH1 to DTH2 to obtain a second encrypted message.
  - 41. A method according to claim 40, wherein DTH2 uses the symmetrical decryption key to decrypt the second encrypted message to obtain the digital token to be transferred.
  - 42. A method according to claim 41, wherein DTH2 displays the amount of digital token transferred.
  - 43. A method according to either claim 41 or 42, DTH2 acknowledges receipt of the digital token to DTH1.
  - 44. A method according to claim 43, wherein DTH1 displays the receipt.

11. A digital token holder comprising at least:
- a tamper-resistant store for storing digital tokens;
  
  communication means for enabling communication within a digital token handling domain only with one or more other token holders for the transfer of digital token to one of said other token holders;
  
  communication means for enabling communication outside the digital token handling domain only with predetermined trusted third parties including communication for receipt of a decryption key;
  
  means for encrypting and decrypting secure communications with token holders within the digital token handling domain, and with the predetermined third parties;
  
  control means for controlling the store of digital tokens according to a pre-programmed method of encrypted communication with other token holders within the digital token handling domain and predetermined trusted third parties to ensure secure exchange of digital tokens.
- View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20)
- - 13. A digital token holder according to either claim 11 or 12, wherein the means for said token holder to communicate outside the digital token handling domain is in the form of a digital cashier that resides within the token holder.
  - 14. A digital token holder according to any one of claims 11 to 13, wherein the means for encrypting and decrypting secure communications is in the form of a control means resident within each token holder.
  - 15. A digital token holder according to claim 14, wherein each control means operates according to a pre-programmed method of encrypting and decrypting communication to and from the respective digital cashier.
  - 16. A digital token holder according to claim 14, wherein the control means controls stores digital token according to a pre-programmed method based on information encrypted within communications with other token holders and predetermined trusted parties.
  - 17. A digital token holder according to any one of claims 11 to 16, wherein the amount of digital token within the secure digital token handling domain remains constant except where digital token is added to the secure digital token handling domain by a source predetermined trusted third party or digital token is removed from the secure digital token handling domain by a sink trusted third party.
  - 18. A digital token holder according to claim 17, wherein the one or more trusted authorities provide each token holder with a decryption key for use in decrypting encrypted communication with other token holders.
  - 19. A digital token holder according to any one of claims 11 to 18, wherein each token handler has a unique identification.
  - 20. A digital token holder according to claim 19, wherein the decryption key provided by each trusted authority is a private key capable of decrypting a message encrypted with a public key derived from the identification of the respective token holder.

12. A digital token holder according to clam 11, wherein the means for said token holders to communicate within the digital token handling domain is in the form of a digital cashier that resides in each token holder.

21. A method of exchange of digital tokens including the steps of:
- providing a secure digital token handling domain comprising a plurality of tamper-resistant electronic token holders, each token holder having the ability to process and store information relating to the transfer of digital token;
  
  each of the token holders communicating with a corresponding predetermined trusted third party to obtain a decryption key;
  
  a first of the token holders (DTH1) communicating with a second of the token holders (DTH2) by an exchange of one or more encrypted messages, wherein the respective decryption key obtained by the first and second token holder enables decryption of the encrypted messages send by the other token holder, wherein one of the encrypted messages includes an amount of digital token to be transferred from the first token holder to the second holder;
  
  transferring the amount of digital token according to the encrypted message including the amount.
- View Dependent Claims (22, 23, 24, 25, 26, 27, 28, 29, 30, 45)
- - 22. A method according to claim 21, wherein the method further includes the step of a first trusted authority providing the DTH1 with a first private key capable of decrypting a message encrypted with a public key derived from an identification of DTH1 (ID1).
  - 23. A method according to claim 22, wherein the first private key is capable of decrypting a message encrypted with a public key derived from ID1 and a temporal value.
  - 24. A method according to any one of claims 21 or 23, wherein the method includes the step of providing the DTH2 with a second private key capable of decrypting a message encrypted with a public key derived from an identification of DTH2 (ID2).
  - 25. A method according to claim 24, wherein the second private key is capable of decrypting a message encrypted with a public key derived from ID2 and a temporal value.
  - 26. A method according to any one of claims 21 to 25, wherein the method includes the step of providing the DTH2 with a symmetrical key capable of encrypting a message that can be decrypted using the symmetrical key or a decryption key derived from the symmetrical key (hereinafter symmetrical decryption key).
  - 27. A method according to claim 26, wherein the symmetrical key is permanently stored in DTH2.
  - 28. A method according to claim 26, wherein the symmetrical key is generated by DTH2.
  - 29. A method according to either claim 27 or 28, wherein the symmetrical decryption key is permanently stored in the token holder.
  - 30. A method according to either claim 27 or 28, wherein the symmetrical decryption key is generated by DTH2.
  - 45. A method according to any one of claims 21 to 44, wherein the digital token is for the transfer of a currency, the token including an amount of currency transferred, wherein transfer of the digital token according to the encrypted message includes adding the amount to a store of currency in the second token holder and deducting the amount from a store of currency in the first token holder.

46. A method of exchange of digital tokens including the steps of:
- providing a first digital token holder (DTH1) having a store for holding digital tokens and a first identification (ID1);
  
  providing a second digital token holder (DTH2) having a store for holding digital tokens and a second identification (ID2);
  
  providing the DTH2 with a private decryption key capable of decrypting a message encrypted with a public key derived from ID2;
  
  DTH1 receiving ID2;
  
  DTH1 receiving an amount of digital token to be transferred to DTH2;
  
  DTH1 encrypting the amount of digital token with the public key derived from ID2 to provide an encrypted message;
  
  DTH1 providing DTH2 with the encrypted message;
  
  DTH1 deducting the amount from its store of digital token;
  
  DTH2 using the decryption key to decrypt the encrypted message to obtain the amount of digital token to transfer;
  
  DTH2 adding the amount to its store of digital token.
- View Dependent Claims (47, 48, 49, 50)
- - 47. A method according to claim 46, wherein the information received concerning the digital token to be transferred is an identification of the token.
  - 48. A method according to claim 46, wherein the information received concerning the digital token is the amount of a currency to be transferred, the amount forming the token.
  - 49. A method according to claim 48, wherein removing the digital token from the store of digital tokens involves deducting the amount of currency transferred to DTH2 from the store of currency held as a token in the store for holding digital tokens of DTH1.
  - 50. A method according to claim 48, wherein a digital token to the store of digital tokens involved adding the amount of currency transferred to a token representing the amount of currency currently stored.

51. A method of exchange of digital tokens in the form of digital cash including the steps of:
- providing a first digital cash holder (DCH1) having a store for holding digital tokens in the form of digital cash and a first identification (ID1);
  
  providing a second digital cash holder (DCH2) having a store for holding digital tokens in the form of digital cash and a second identification (ID2);
  
  a first trusted authority providing the DTH1 with a first private key capable of decrypting a message encrypted with a public key derived from ID1;
  
  providing the DCH2 with a second private key capable of decrypting a message encrypted with a public key including ID2 and the current date and a symmetrical key capable of encrypting a message that can be decrypted using a symmetrical decryption key;
  
  DCH1 providing DCH2 with ID1;
  
  DCH2 encrypting the symmetrical key and ID2 using a public key including ID1 and the current date to provide a first encrypted message;
  
  DCH2 providing DCH1 with the first encrypted message;
  
  DCH1 using the first decryption key to decrypt the first encrypted message to obtain the symmetrical key and ID2;
  
  DCH1 receiving an amount of digital cash to be transferred to DCH2;
  
  DCH1 encrypting the amount of digital cash with the symmetrical key to produce a second encrypted message;
  
  DCH1 encrypting the second encrypted message with a public key including ID2 and the current date to provide a third encrypted message;
  
  DCH1 providing DCH2 with the third encrypted message;
  
  DCH1 deducting the amount from its store of digital cash;
  
  DCH2 using the second decryption key to decrypt the third encrypted message to obtain the second encrypted message;
  
  DCH2 using the symmetrical decryption key to decrypt the second encrypted message to obtain the amount of digital cash to transfer; and
  
  DCH2 adding the amount to its store of digital cash.

52. A method of controlling a first digital token holder (DTH1) to transfer a digital token to a second digital token holder (DTH2), said DTH1 having a communication means for communicating with DTH2, a store for holding digital token and a first identification (ID1), said DTH2 having a second identification (ID2);
- receiving a private decryption key capable of decrypting a message encrypted with a public key derived from ID1;
  
  sending ID1 to DTH2 using the communication means;
  
  receiving a first encrypted message from DTH2 using the communication means;
  
  decrypting the first encrypted message using the private decryption key to obtain a symmetrical key capable of encrypting a message that can be decrypted using the symmetrical key or a decryption key based on the symmetrical key and ID2;
  
  receiving an amount of digital token to be transferred to DTH2;
  
  encrypting the amount of digital token with the symmetrical key to produce a second encrypted message;
  
  encrypting the second encrypted message with a public key derived from ID2 to provide a third encrypted message;
  
  sending the third encrypted message to DTH2 using the communication means; and
  
  deducting the amount from the store of digital token.

53. A method of controlling a first digital token holder (DTH1) to receive a digital token from a second digital token holder (DTH2), said DTH1 having a communication means for communicating with DTH2, a store for holding digital tokens and a first identification (ID1), said DTH2 having a second identification (ID2);
- receiving a private decryption key capable of decrypting a message encrypted with a public key derived from ID1;
  
  receiving ID2 from DTH2 using the communication means;
  
  encrypting a symmetrical key capable of encrypting a message that can be decrypted using the symmetrical key or a decryption key based on the symmetrical key and ID1 using a public key derived from ID2 to provide a first encrypted message;
  
  sending the first encrypted message to DTH2 using the communication means receiving a second encrypted message from DTH2 using the communication means;
  
  using the private decryption key to decrypt the second encrypted message to obtain a third encrypted message;
  
  using the symmetrical key or decryption key to decrypt the third encrypted message to obtain an amount of digital token transferred from DTH2; and
  
  adding the amount to the store of digital tokens.

54. A method of controlling a first digital token holder (DTH1) to transfer a digital token to a second digital token holder (DTH2), said DTH1 having a communication means for communicating with DTH2, a store for holding digital token and a first identification (ID1), said DTH2 having a second identification (ID2);
- receiving a private decryption key capable of decrypting a message encrypted with a public key derived from ID1;
  
  sending ID1 to DTH2 using the communication means;
  
  receiving a first encrypted message from DTH2 using the communication means;
  
  decrypting the first encrypted message using the private decryption key to obtain ID2;
  
  receiving an amount of digital token to be transferred to DTH2;
  
  encrypting the amount of digital token with a public key derived from ID2 to provide a second encrypted message;
  
  sending the second encrypted message to DTH2 using the communication means; and
  
  deducting the amount from the store of digital token.

55. A method of controlling a first digital token holder (DTH1) to receive a digital token from a second digital token holder (DTH2), said DTH1 having a communication means for communicating with DTH2, a store for holding digital tokens and a first identification (ID1), said DTH2 having a second identification (ID2);
- receiving a private decryption key capable of decrypting a message encrypted with a public key derived from ID1;
  
  receiving ID2 from DTH2 using the communication means;
  
  encrypting ID1 using a public key derived from ID2 to provide a first encrypted message;
  
  sending the first encrypted message to DTH2 using the communication means receiving a second encrypted message from DTH2 using the communication means;
  
  using the private decryption key to decrypt the second encrypted message to obtain an amount of digital token transferred from DTH2; and
  
  adding the amount to the store of digital tokens.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Mobilastic Technologies Pte Limited
Original Assignee
Mobilastic Technologies Pte Limited
Inventors
Ngee, Goh Cheh

Application Number

US10/638,223
Publication Number

US 20040104097A1
Time in Patent Office

Days
Field of Search
US Class Current

194/210
CPC Class Codes

G06Q 20/02   involving a neutral party, ...

G06Q 20/06   Private payment circuits, e...

G06Q 20/29   characterised by micropayments

G06Q 20/3823   combining multiple encrypti...

G06Q 20/3829   involving key management

H04L 63/0414   during transmission, i.e. p...

H04L 63/0823   using certificates cryptogr...

Secure transfer of digital tokens

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

106 Citations

55 Claims

Specification

Solutions

Use Cases

Quick Links

Secure transfer of digital tokens

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

106 Citations

55 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links