Apparatus and method for conducting secure financial transactions
First Claim
1. A system for creating a secure transaction platform, comprising:
- a commercial computer system for creating and maintaining accounts for a plurality of users; and
a user computer system including;
a trusted platform module for storing security information relating to the user and at least one account associated with the commercial computer system, anda virtual appliance module for creating at least one protected environment for establishing a secure connection with an external computer system based on at least the security information stored in the trusted platform module;
wherein the commercial computer system creates at least a portion of the security information stored in the trusted platform module; and
wherein the protected environment is inaccessible to applications running outside of the protected environment.
2 Assignments
0 Petitions
Accused Products
Abstract
A system and method are disclosed for conducting secure electronic transactions using dual-authentications. A secure server stores security information for a plurality of users and authorizes transactions being conducted by these users. A user computer system having a trusted platform module is used for storing security information relating to at least one user account. Protected environments are created to facilitate secure connections based on at least the security information stored in the trusted platform module. Transactions between the user/electronic merchants and between the user/secure server are conducted within protected environments. When a user conducts an electronic transaction with an electronic merchant, the transaction is authenticated by the secure server before can be completed.
23 Citations
2 Claims
-
1. A system for creating a secure transaction platform, comprising:
-
a commercial computer system for creating and maintaining accounts for a plurality of users; and a user computer system including; a trusted platform module for storing security information relating to the user and at least one account associated with the commercial computer system, and a virtual appliance module for creating at least one protected environment for establishing a secure connection with an external computer system based on at least the security information stored in the trusted platform module; wherein the commercial computer system creates at least a portion of the security information stored in the trusted platform module; and wherein the protected environment is inaccessible to applications running outside of the protected environment.
-
-
2. A system for conducting secure transactions comprising:
-
a secure server for storing security information for a plurality of users and authorizing transactions initiated by the plurality of users; an electronic merchant providing a plurality of products and/or services for purchase; and a user computer system including; a trusted platform module for storing security information relating to at least one user account, wherein the security information stored in the trusted platform module is the same security information stored in the secure server, and a virtual appliance module for creating at least one protected environment for establishing a secure connection based on at least the security information stored in the trusted platform module, wherein the protected environment is inaccessible to applications running outside of the protected environment; wherein transactions between the user computer system and the electronic merchant are authenticated by the secure server.
-
Specification
-
- Resources
-
Current Assignee4361423 Canada Incorporated
-
Original Assignee4361423 Canada Incorporated
-
InventorsLo, Chi Wah, Tang, Tai Kwan, Mages, Kenneth G., Mages, Kent H.
-
Granted Patent
-
Time in Patent OfficeDays
-
Field of Search
-
US Class Current705/26
-
CPC Class CodesG06Q 20/12 specially adapted for elect...G06Q 20/40 Authorisation, e.g. identif...G06Q 30/0601 Electronic shopping [e-shop...G06Q 40/12 Accounting
