Method to Make Payment or Charge Safe Transactions Using Programmable Mobile Telephones
0 Assignments
0 Petitions
Accused Products
Abstract
A system, method and mobile application for conducting financial transactions wherein a mobile device operated by a user is operably coupled to a server over a mobile communication network. Both the server and the user'"'"'s mobile device store a user encryption key (UEK) and a user access key (UAK). A software application stored on the user'"'"'s mobile device and the server are configured to conduct a transaction wherein a session key (SK) specific to the transaction is exchanged in an encrypted form based upon the UEK. The software application is further configured to i) generate transaction data, ii) access the UAK stored on the mobile device, iii) encrypt the UAK and transaction data into an encrypted form based upon the SK, and iv) send the UAK and transaction data in encrypted form from the mobile device to the server over the mobile communication network in order to conduct the transaction.
32 Citations
17 Claims
-
1-3. -3. (canceled)
-
4. A system for conducting financial transactions through a mobile communication network, comprising:
-
a mobile device operated by a user, said mobile device including memory means; a server operably coupled to said mobile device over the mobile communication network, said server accessing a database which stores a phone number corresponding to the mobile device and personal information corresponding to the user of the mobile device, said personal information including a user encryption key and a user access key that are both uniquely assigned to the user; and a software application configured to conduct a transaction by communicating transaction data to said server over the mobile communication network, said software application together with said user encryption key and said user access key stored in said memory means of said mobile device; wherein said server and said software application are configured to exchange a session key specific to the transaction, the session key communicated between the server and the software application in an encrypted form based upon the user encryption key; and wherein said software application is configured to i) generate the transaction data for the transaction, ii) access said user access key from said memory means of said mobile device, iii) encrypt said user access key and said transaction data into an encrypted form based upon said session key, and iv) send said user access key and said transaction data in encrypted form from said mobile device to said server over the mobile communication network in order to conduct the transaction. - View Dependent Claims (5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A method for conducting financial transactions on a mobile device of a user, the method comprising:
-
providing a server operably coupled to the mobile device over a mobile communication network, the server accessing a database; storing in the database a phone number corresponding to the mobile device as well as a user encryption key and a user access key that are both uniquely assigned to the user; storing in memory means of the mobile device a software application along with the user encryption key and the user access key, the software application configured to conduct a transaction by exchanging transaction data with the server over the communication network; wherein, during the transaction, (i) the server and software application exchange a session key specific to the transaction, the session key communicated between the server and the software application in an encrypted form based upon the user encryption key, (ii) the software application generates the transaction data for the transaction, (iii) the software application accesses the user access key from the memory means of the mobile device, (iv) the software application encrypts the user access key and transaction data accessed from the memory means of the mobile device into an encrypted form based upon the session key, and (v) the software application sends said transaction data and said user access key in encrypted form from said mobile device to said server over the mobile communication network. - View Dependent Claims (15, 16)
-
-
17. In a system including a mobile device operated by a user and a server operably coupled to the mobile device over a mobile communication network, a software application downloadable onto the mobile device, the software application embodying a program of instructions executable on the mobile device to perform method steps for carrying out financial transactions on the mobile device, the method steps comprising:
-
communicating with said server to exchange a user access key unique to a particular user; storing the user access key in memory means of the mobile device; generating transaction data specific to a transaction; communicating with the server to exchange a session key specific to the transaction, the session key communicated between the server and the software application in an encrypted form based upon a user encryption key stored by both the mobile device and the server; using the session key to encrypt the transaction data for the transaction together with the user access key stored in the memory means of the mobile device into an encrypted form; and sending the transaction data and user access key in encrypted form to the server over the mobile communication network in order to conduct the transaction.
-
Specification