Enhanced network server authentication using a physical out-of-band channel
First Claim
Patent Images
1. A method for authenticating a web site using an in-band electronic communications channel and authentication comprising:
- receiving a communication including web site authentication data including challenge data and response data through an out-of-band physical delivery communications channel;
sending the challenge data to the web site using the in-band electronic communications channel;
receiving reply response data from the web site using the in-band electronic communications channel; and
comparing the reply response data with the response data.
2 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods for increasing user trust by authenticating an electronic commerce server over an electronic communications channel using information received through an out-of-band communication in a physical communications channel are described. In one configuration, a paper bill is sent to a user by physical mail delivery and it includes challenge and response data used to authenticate the electronic commerce server over the electronic communications channel.
-
Citations
20 Claims
-
1. A method for authenticating a web site using an in-band electronic communications channel and authentication comprising:
-
receiving a communication including web site authentication data including challenge data and response data through an out-of-band physical delivery communications channel; sending the challenge data to the web site using the in-band electronic communications channel; receiving reply response data from the web site using the in-band electronic communications channel; and comparing the reply response data with the response data. - View Dependent Claims (2, 3, 4, 18)
-
-
5. A method for providing web site authentication data to a user in response to a challenge from the user using an in-band electronic communications channel comprising:
-
receiving a challenge from the user through the in-band communications channel; determining the appropriate response data associated with the challenge authentication data received from the user; and sending the determined reply response data to the user using the in-band electronic communications channel, wherein the authentication data was sent to the user in a communication through an out-of-band delivery channel. - View Dependent Claims (6, 7, 8, 9, 10, 11, 19, 20)
-
-
12. A method for providing electronic commerce vendor web site authenticating data to a user through an out-of-band physical channel comprising:
-
obtaining challenge/response pair data for use in providing an out-of-band communication to the user; receiving statement data for the user from the vendor; generating a statement including the challenge/response pair data; and inducting the statement into the out-of-band physical channel directed toward the user. - View Dependent Claims (13, 14, 15, 16, 17)
-
Specification