DEVICE AND METHOD FOR LOADING MANAGING AND USING SMARTCARD AUTHENTICATION TOKEN AND DIGITAL CERTIFICATES IN E-COMMERCE
First Claim
1. A system for making and accepting payments in an on-line network transaction between a first and second parties, the system comprising:
- an on-line networked transaction server coupled with a tangible storage device in which a subscriber data structure is defined and which stores transaction portal subscriber information;
the transaction server configured to communicate via the network with an issuer of digital certificates and with an issuer of bank cards;
the issuer of bank cards configured to communicate via the network and issuing bank cards having an integrated circuit defining a memory for storing a digital certificate and processing logic for protecting the memory from unauthorized access; and
the issuer of digital certificates configured to communicate via the network and issuing digital certificates that are associated with a identifier (ID) and maintaining a certificate database storing issued digital certificates and digital certificate status.
0 Assignments
0 Petitions
Accused Products
Abstract
Device, system, and method for loading, managing and using smartcard authentication token and digital certificates in e-commerce. System for making and accepting payments in on-line transaction between parties including transaction server coupled with storage device in which subscriber data structure is defined and stores transaction subscriber information and configured to communicate via network with certificate issuer and with card issuer. Computer implemented method for making and accepting payments in online transaction. Computer implemented method of issuing authentication certificate. Authentication token (smart card or SIM card) apparatus. Device for performing reading and/or writing operation to dual media smart card and SIM cards. Device, system, and method for using unique digital values to prevent fraudulent access or use of authentication token embedded with security digital certificate. System and method and business model for enabling payments to be made using Internet on secure basis using certificates and transaction facilitator payments portal.
231 Citations
55 Claims
-
1. A system for making and accepting payments in an on-line network transaction between a first and second parties, the system comprising:
-
an on-line networked transaction server coupled with a tangible storage device in which a subscriber data structure is defined and which stores transaction portal subscriber information; the transaction server configured to communicate via the network with an issuer of digital certificates and with an issuer of bank cards; the issuer of bank cards configured to communicate via the network and issuing bank cards having an integrated circuit defining a memory for storing a digital certificate and processing logic for protecting the memory from unauthorized access; and the issuer of digital certificates configured to communicate via the network and issuing digital certificates that are associated with a identifier (ID) and maintaining a certificate database storing issued digital certificates and digital certificate status. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17)
-
-
18. A computer implemented method for making and accepting payments in an online network transaction, the method comprising:
-
at a network on-line transaction portal, receiving a transaction instruction from a first party regarding an action to be taken relative to a second party; verifying with a certificate authority database in substantially real time that both the first party and the second party have currently valid digital certificates issued by a recognized digital certificate authority and associated with their unique identifier; verifying with a financial institution in substantially real time that the first party and the second party are capable of completing the transaction instruction; and maintaining an electronic transaction log to document the transaction and mitigate attempted repudiation of the transaction by the first party or the second party. - View Dependent Claims (19, 20, 21, 22, 23, 24, 25, 26)
-
-
27. A computer implemented method of issuing a digital security and authentication certificate, comprising:
-
opening, by a certificate issuing authority, over a computer interface, an interface with a network server, to initiate a certificate issuance application; inputting an identification information of the applicant; generating a key pair including a private key and public key and an applicant specific digital certificate for the applicant; storing the digital certificate into a tangible computer or machine readable storage medium; and after successful issuance of the certificate, publishing the corresponding public certificate to a certificate repository. - View Dependent Claims (28, 29, 30, 31, 32, 33)
-
-
34. An authentication token apparatus comprising:
-
an integrated circuit having a processing logic unit and a storage unit coupled to the processing logic unit; a substrate for carrying the integrated circuit; the storage unit storing a certificate loader and control program comprising a plurality of certificate loader and control executable instructions; and the plurality of certificate loader and control executable instructions being operable to cause the integrated circuit to interact with the authentication token control manager (card control manager) executing in the computer or information appliance. - View Dependent Claims (35, 36, 37, 38, 39, 40, 41, 43, 44, 45, 46, 47, 48, 49, 50, 51, 52, 53)
-
-
42. A device for performing a reading and/or writing operation for two objects each of which has a memory storage, the device comprising:
-
a first physical connector for electrically interfacing with a first object or media type; a second physical connector for electrically interfacing with a second object or media type; a third physical connector for electrically interfacing with a third object; and a controller unit for enabling and controlling communications between the first, second, and third objects.
-
-
54. A method for using unique digital values to prevent fraudulent access or use of an authentication token embedded with a security digital certificate, the method characterized in that a cryptographic hash value of that ID includes hashing a unique user ID is stored on the token and when the internally stored hash is accessed by a user password or PIN, a comparison of the stored hash value against the user ID is made to determine a match before access is permitted.
-
55. A device for using unique digital values to prevent fraudulent access or use of an authentication token embedded with a security digital certificate, the device characterized in that a cryptographic hash value of that ID includes hashing a unique user ID is stored on the token and when the internally stored hash is accessed by a user password or PIN, a comparison of the stored hash value against the user ID is made to determine a match before access is permitted.
Specification