Method and system for securely managing application transactions using cryptographic techniques
First Claim
Patent Images
1. A data structure of related elements embodied in a computer-readable medium, said data structure comprising:
- a data package, said data package having been received by a transaction management system from an application device and being in plaintext or ciphertext;
a header for identifying attributes of said data package, said header further comprising;
a transaction code that is a globally-unique, infinitely expandable and infinitely extensible object identifier, a transaction number for matching request and response data packages, and a transaction route identifying the sender of the data package, the receiver of the data package, and any intermediaries;
a trailer for confirming the identity of an originator of the data package and providing data confidentiality of said data package; and
an integrity object for providing content integrity of said data package to a provable point in time.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and system for secure managing transactions between application devices over a network. The present invention provides a method and system for receiving data from an application device, such as computer workstation, ATM, credit card point-of-sale terminal, or application software, and transferring that data securely over a network to a recipient application device. The method and system provide secure cryptographic key and enterprise management of embedded, standalone and tightly coupled information assurance components.
-
Citations
12 Claims
-
1. A data structure of related elements embodied in a computer-readable medium, said data structure comprising:
-
a data package, said data package having been received by a transaction management system from an application device and being in plaintext or ciphertext;
a header for identifying attributes of said data package, said header further comprising;
a transaction code that is a globally-unique, infinitely expandable and infinitely extensible object identifier, a transaction number for matching request and response data packages, and a transaction route identifying the sender of the data package, the receiver of the data package, and any intermediaries;
a trailer for confirming the identity of an originator of the data package and providing data confidentiality of said data package; and
an integrity object for providing content integrity of said data package to a provable point in time. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A system for securely managing application transactions using cryptographic techniques to provide data integrity, entity authentication, and data confidentiality, said system comprising:
-
a data storage for storing trusted transactions;
a unit interface driver for receiving a data package from and providing a data package to an application device;
a unit interface process being connected to said unit interface driver for receiving data packages therefrom generating outbound trusted transaction based thereon, and for placing trusted transactions into and retrieving data packages from said data storage;
a network interface driver for receiving a trusted transaction from and sending a trusted transaction to a network, said network interface driver being connected to said data storage for the provision of trusted transactions thereto and retrieval of trusted transactions therefrom;
a network interface process connected to said network interface driver for validating an inbound trusted transaction, and placing data packages into and retrieving trusted transactions from said data storage;
an audit logging process connected to said unit interface process and said network interface process for administering an audit log of each generated and validated trusted transaction, and managing means for managing each generated trusted transaction and each validated trusted transaction, and processing errors, said managing means being connected to said unit interface driver, said network interface driver, said unit interface process, and said network interface process. - View Dependent Claims (10, 11, 12)
-
Specification