Consumer-driven secure sockets layer modulator
First Claim
Patent Images
1. A client computer based method for executing secure electronic transactions over a communications network, the method comprising:
- querying an exclusion list with a domain name associated with a transaction site to determine if a security of the transaction site needs verification; and
if the transaction site is not on the exclusion list, initiating the verification by querying an allowed list with the domain name to determine if the transaction site is allowed to continue the transaction.
1 Assignment
0 Petitions
Accused Products
Abstract
A software system and method for executing secure commercial transactions online is disclosed. The system intercepts and verifies, against consumer provided inputs, Secure Socket Layer (SSL) communications from normal Web browser usage. The system can include a software module loaded onto the consumer'"'"'s client computer, and which uses independently-derived look-ups to associate a web domain name with its SSL public key to verify that a given web session is appropriately encrypted.
-
Citations
20 Claims
-
1. A client computer based method for executing secure electronic transactions over a communications network, the method comprising:
-
querying an exclusion list with a domain name associated with a transaction site to determine if a security of the transaction site needs verification; and
if the transaction site is not on the exclusion list, initiating the verification by querying an allowed list with the domain name to determine if the transaction site is allowed to continue the transaction. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A client computer based method for executing secure electronic transactions over a communications network, the method comprising:
-
intercepting secure socket layer (SSL) communications with a transaction site on a server; and
verifying that a web session associated with the SSL communications is appropriately encrypted, by associating, against user-provided inputs, a domain name of the transaction site with its SSL public key. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
-
17. A client system for executing secure electronic transactions over a communications network, the system comprising:
a secure transaction module configured to intercept secure socket layer (SSL) communications from a transaction site on a server, and verify that a web session associated with the SSL communications is appropriately encrypted, by associating, against user-provided inputs, a domain name of the transaction site with its SSL public key. - View Dependent Claims (18, 19, 20)
Specification