METHODS AND APPARATUS FOR CONDUCTING ELECTRONIC TRANSACTIONS
First Claim
Patent Images
1. A method comprising:
- receiving, by a wallet server comprising a processor and a memory, a transaction request from a user device;
sending, by the wallet server, an authentication request to a security server, wherein the security server formats a challenge message;
receiving, by the wallet server and from the security server, the challenge message;
sending, by the wallet server and to the user device, a signature request based on the challenge message, wherein the user device creates a signature response message;
receiving, by the wallet server, the signature response message from the user device;
creating, by the wallet server, a validity check message based upon the signature response message and a security token;
sending, by the wallet server, the validity check message to the security server, wherein the security server verifies a match between security token and security information accessible by the security server; and
receiving, by the wallet server, a validity acceptance from the security server, wherein a transaction associated with the transaction request proceeds, in response to the receiving the validity acceptance.
8 Assignments
0 Petitions
Accused Products
Abstract
A system and method for conducting electronic commerce are disclosed. In various embodiments, the electronic transaction is a purchase transaction. A user is provided with an intelligent token, such as a smartcard containing a digital certificate. The intelligent token suitably authenticates with a server on a network that conducts all or portions of the transaction on behalf of the user. In various embodiments a wallet server interacts with a security server to provide enhanced reliability and confidence in the transaction. In various embodiments, the wallet server includes a toolbar. In various embodiments, the digital wallet pre-fills forms. Forms may be pre-filled using an auto-remember component.
94 Citations
20 Claims
-
1. A method comprising:
-
receiving, by a wallet server comprising a processor and a memory, a transaction request from a user device; sending, by the wallet server, an authentication request to a security server, wherein the security server formats a challenge message; receiving, by the wallet server and from the security server, the challenge message; sending, by the wallet server and to the user device, a signature request based on the challenge message, wherein the user device creates a signature response message; receiving, by the wallet server, the signature response message from the user device; creating, by the wallet server, a validity check message based upon the signature response message and a security token; sending, by the wallet server, the validity check message to the security server, wherein the security server verifies a match between security token and security information accessible by the security server; and receiving, by the wallet server, a validity acceptance from the security server, wherein a transaction associated with the transaction request proceeds, in response to the receiving the validity acceptance. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. An article of manufacture including a non-transitory computer readable medium having instructions stored thereon that, in response to execution by a wallet server, cause the wallet server to perform operations comprising:
-
receiving, by the wallet server, a transaction request from a user device; sending, by the wallet server, an authentication request to a security server, wherein the security server formats a challenge message; receiving, by the wallet server and from the security server, the challenge message; sending, by the wallet server and to the user device, a signature request based on the challenge message, wherein the user device creates a signature response message; receiving, by the wallet server, the signature response message from the user device; creating, by the wallet server, a validity check message based upon the signature response message and a security token; sending, by the wallet server, the validity check message to the security server, wherein the security server verifies a match between security token and security information accessible by the security server; and receiving, by the wallet server, a validity acceptance from the security server, wherein a transaction associated with the transaction request proceeds, in response to the receiving the validity acceptance.
-
-
20. A system comprising:
-
a non-transitory memory communicating with a wallet server comprising a processor, the memory having instructions stored thereon that, in response to execution by the processor, cause the processor to perform operations comprising; receiving, by the processor, a transaction request from a user device; sending, by the processor, an authentication request to a security server, wherein the security server formats a challenge message; receiving, by the processor and from the security server, the challenge message; sending, by the processor and to the user device, a signature request based on the challenge message, wherein the user device creates a signature response message; receiving, by the processor, the signature response message from the user device; creating, by the processor, a validity check message based upon the signature response message and a security token; sending, by the processor, the validity check message to the security server, wherein the security server verifies a match between security token and security information accessible by the security server; and receiving, by the processor, a validity acceptance from the security server, wherein a transaction associated with the transaction request proceeds, in response to the receiving the validity acceptance.
-
Specification