SECURE SYSTEM FOR THE ISSUANCE, ACQUISITION, AND REDEMPTION OF CERTIFICATES IN A TRANSACTION NETWORK
First Claim
1. A certificate system on a network, comprising:
- a certificate authority connected to said network, said certificate authority adapted to allow the definition of a virtual certificate comprising a redemption denomination defined by an issuer user, and a first public key identifier defined by said certificate authority;
a certificate issuance module for creation of an issued certificate upon selectable acquisition of said virtual certificate by an acquirer user across said network, said issued certificate including said redemption denomination and said first public key identifier, wherein said redemption denomination and said first public key identifier are stored at said certificate authority in association with said issued certificate;
a certificate authentication module for authorization of a redemption of said issued certificate at a redemption location to a holder of said issued certificate, based upon redemption submittal of said redemption denomination and said first public key identifier, and a matching comparison of said redemption denomination and said first public key identifier stored at said certificate authority; and
means to cancel further redemption of said issued certificate at said certificate authority.
0 Assignments
0 Petitions
Accused Products
Abstract
A transaction network contains a networked certificate authority, by which one or more virtual certificates may be remotely defined and stored, such as by an issuer user through a issuer web portal interface. An acquirer user, through an acquirer web portal interface, may acquire one or more virtual certificates, which contain a secret public key portion, as well as a corresponding private key, which is established by the acquirer at the time of acquisition, and is stored at the certificate authority. At a redemption location associated with an acquired certificate, the acquirer (or an alternate recipient of an acquired certificate to whom the acquirer has communicated the established private key), submits the certificate information, along with the established private key, to redeem the certificate.
-
Citations
23 Claims
-
1. A certificate system on a network, comprising:
-
a certificate authority connected to said network, said certificate authority adapted to allow the definition of a virtual certificate comprising a redemption denomination defined by an issuer user, and a first public key identifier defined by said certificate authority;
a certificate issuance module for creation of an issued certificate upon selectable acquisition of said virtual certificate by an acquirer user across said network, said issued certificate including said redemption denomination and said first public key identifier, wherein said redemption denomination and said first public key identifier are stored at said certificate authority in association with said issued certificate;
a certificate authentication module for authorization of a redemption of said issued certificate at a redemption location to a holder of said issued certificate, based upon redemption submittal of said redemption denomination and said first public key identifier, and a matching comparison of said redemption denomination and said first public key identifier stored at said certificate authority; and
means to cancel further redemption of said issued certificate at said certificate authority. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A process within a transaction network, comprising the steps of:
-
defining a virtual certificate on a certificate authority, said defined virtual certificate comprised of a redemption denomination defined by an issuer user, and a first public key identifier defined by said certificate authority;
creating an issued certificate upon acquisition of said virtual certificate by an acquirer user on said transaction network, said issued certificate including said redemption denomination and said first public key identifier, said redemption denomination and said first public key identifier stored at said certificate authority in association with said issued certificate;
authorizing a redemption of said issued certificate at a redemption location to a holder of said issued certificate, based upon redemption submittal of said redemption denomination and said first public key identifier, and a matching comparison of said redemption denomination and said first public key identifier stored at said certificate authority; and
canceling further redemption of said issued certificate at said certificate authority. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21, 22, 23)
-
Specification