Trust tokens
1 Assignment
0 Petitions
Accused Products
Abstract
An identity confirmation device comprises a token issuer 4 and an authentication device 5, the token issuer being programmable by a central identity provider 2 to issue certification tokens for use in e-commerce whereby transactions can be certified with suppliers without need for additional communication with a central server.
-
Citations
36 Claims
-
1-18. -18. (canceled)
-
19. An identity confirmation device comprising a memory card including readable data and a writeable data store, the device being programmable by a security server and including data defining the user identity, data derived from a user feature and digital signature data issued by the security server, the device being used in combination with a reader arranged to derive the user identity, compare user feature data with the user present and issuing a single use token confirming the validity of a transaction certified by the digital signature data;
- in which the device includes multiple person identities stored thereon, the strength of token issued being dependent upon the number of confirmed identities of persons present at the time of issue of the token.
- View Dependent Claims (20, 21, 22, 23, 24, 25, 26, 27)
-
28. A method of confirming an identity including the steps of providing an identity confirmation device, programming the device with data defining the user identity, data derived from a user feature and digital signature data issued by the security server, reading the device to derive the user identity, compare user feature data with the user present and issue a single use token confirming the validity of a transaction certified by the digital signature data;
- including storing multiple person identities on the device and varying the strength of token issued dependent upon the number of confirmed identities of persons present at the time of issue of the token.
- View Dependent Claims (29, 30, 31, 32, 33, 34, 35, 36)
Specification