Internet business security system
First Claim
1. An Internet business security system, wherein the business security system couples with a certificate issuer, the system comprises:
- a reading apparatus for reading a smart card and generating a one-time password, wherein the smart card is issued by the certificate issuer to a user based on a user data of the user;
a front process apparatus for transmitting an await check data for proving the one-time password and receiving a process data for the one-time password, and when the one-time password is correct, a service is provided to the user, wherein the await check data cannot link to the user data, or the await check data is not the data necessary to verify the one-time password; and
a rear process apparatus coupling with the front process apparatus to receive the await check data, wherein the rear process apparatus comprises;
a pre-proof module to process the await check data to generate a necessary data for verifying the one-time password; and
an authorization module authorized by the certificate issuer to determine whether or not the one-time password is correct.
0 Assignments
0 Petitions
Accused Products
Abstract
An Internet business security system is disclosed. The business security system couples with a certificate issuer. The certificate issuer issues a smart card to a user. The system includes a reading apparatus for reading the smart card and generating a one-time password based on a PIN number of the user, a front process apparatus to receive the one-time password and providing service to the user when the one-time password is correct, and a rear process apparatus coupling with the front process apparatus. The rear process apparatus includes a pre-proof module to process the matter of proving the identification of the user and an authorization module to determine whether or not the one-time password is correct and then to authorize the user private data stored in the certificate issuer to a web site when the one-time password is correct.
-
Citations
16 Claims
-
1. An Internet business security system, wherein the business security system couples with a certificate issuer, the system comprises:
-
a reading apparatus for reading a smart card and generating a one-time password, wherein the smart card is issued by the certificate issuer to a user based on a user data of the user; a front process apparatus for transmitting an await check data for proving the one-time password and receiving a process data for the one-time password, and when the one-time password is correct, a service is provided to the user, wherein the await check data cannot link to the user data, or the await check data is not the data necessary to verify the one-time password; and a rear process apparatus coupling with the front process apparatus to receive the await check data, wherein the rear process apparatus comprises; a pre-proof module to process the await check data to generate a necessary data for verifying the one-time password; and an authorization module authorized by the certificate issuer to determine whether or not the one-time password is correct. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. An Internet business security system, wherein the business security system couples with a certificate issuer, the system comprises:
-
a reading apparatus for reading a smart card and generating a one-time password, wherein the smart card is issued by the certificate issuer to a user based on a user data of the user; a front process apparatus for transmitting an await check data for proving the one-time password and receiving a process data for the one-time password, and when the one-time password is correct, a service is provided to the user, wherein the await check data cannot link to the user data, or the await check data is not the data necessary to verify the one-time password; and a rear process apparatus coupling with the front process apparatus to receive the await check data, wherein the rear process apparatus comprises; a pre-proof module to generate a necessary data for verifying the one-time password; and at least one authorization gateway to transmit the necessary data to the certificate issuer or a party authorized by the certificate issuer to determine whether or not the one-time password is correct, and when the one-time password is correct, the authorization gateway requires the certificate issuer or the party authorized by the certificate issuer to authorize the use of the user data stored in the certificate issuer, or to authorize to perform a trade process based on the user data, or to authorize to perform a payment process based on the user data. - View Dependent Claims (8, 9, 10, 11)
-
-
12. An Internet business security system, the system comprises:
-
a certificate issuer to issue a smart card to a user based on a user data of the user; a reading apparatus for reading the smart card and generating a one-time password; a web-site for transmitting an await check data for proving the one-time password and receiving a process data for the one-time password, and when the one-time password is correct, a service is provided to the user, wherein the await check data cannot link to the user data, or the await check data is not the data necessary to verify the one-time password; a pre-proof module coupling with the web-site to process the await check data to generate a necessary data for verifying the one-time password; and at least one authorization module coupling with the certificate issuer or a party authorized by the certificate issuer to determine whether or not the one-time password is correct. - View Dependent Claims (13, 14)
-
-
15. An Internet business security system, the system comprises:
-
a certificate issuer to issue a smart card to a user based on a user data of the user; a reading apparatus for reading the smart card and generating a one-time password; a web-site for transmitting an await check data for proving the one-time password and receiving a process data for the one-time password, and when the one-time password is correct, a service is provided to the user, wherein the await check data cannot link to the user data, or the await check data is not the data necessary to verify the one-time password; a pre-proof module coupling with the web-site to process the await check data to generate a necessary data for verifying the one-time password; and at least one authorization gateway coupling with the certificate issuer or a party authorized by the certificate issuer to transmit the necessary data to the certificate issuer or a party authorized by the certificate issuer to determine whether or not the one-time password is correct, and when the one-time password is correct, the authorization gateway requires the certificate issuer or the party authorized by the certificate issuer to authorize the use of the user data stored in the certificate issuer, or to authorize to perform a trade process based on the user data, or to authorize to perform a payment process based on the user data. - View Dependent Claims (16)
-
Specification