METHOD FOR SECURE USER AND TRANSACTION AUTHENTICATION AND RISK MANAGEMENT
First Claim
1. A method of providing a user signature on a network transaction, comprising:
- receiving, by a security server directly from a network site, transaction information representing a transaction between a network user and a network site;
calculating, by the security server, a one-time-password based on (i) the received transaction information and (ii) a secret shared by the security server and the network site, but not by the user, wherein the one-time-password is independently calculable by the network site based on the shared secret and the transaction information; and
transmitting, by the security server, the calculated one-time-password for application as the user'"'"'s signature on the transaction and verification by the network site.
10 Assignments
0 Petitions
Accused Products
Abstract
To provide a user signature on a network transaction, a security server receives transaction information representing a transaction between a network user and a network site, such as a website, directly from the network site. The security server calculates a one-time-password based on the received transaction information and a secret shared by the security server and the network site, but not by the user. The security server transmits the calculated one-time-password for application as the user'"'"'s signature on the transaction. The one-time-password is independently calculable by the network site based on the shared secret.
12 Citations
19 Claims
-
1. A method of providing a user signature on a network transaction, comprising:
-
receiving, by a security server directly from a network site, transaction information representing a transaction between a network user and a network site; calculating, by the security server, a one-time-password based on (i) the received transaction information and (ii) a secret shared by the security server and the network site, but not by the user, wherein the one-time-password is independently calculable by the network site based on the shared secret and the transaction information; and transmitting, by the security server, the calculated one-time-password for application as the user'"'"'s signature on the transaction and verification by the network site. - View Dependent Claims (2, 3, 8, 9, 10, 17)
-
-
4. (canceled)
-
5. (canceled)
-
6. (canceled)
-
7. (canceled)
-
11. A method of validating a user signature on a network transaction, comprising:
-
receiving, by a network site from a user network device, transaction information representing a transaction between a user and the network site; transmitting, by the network site directly to a security server, the transaction information; receiving, by the network site from the user network device, a one-time-password as the user'"'"'s signature on the transaction; calculating, by the network site, a one-time-password based on (i) the received transaction information and (ii) a secret shared by a security server and the network site, but not by the user; and verifying, by the network site, the signature based on a comparison of the received one-time-password and the calculated one-time-password. - View Dependent Claims (18)
-
-
12. (canceled)
-
13. (canceled)
-
14. (canceled)
-
15. (canceled)
-
16. A method of authenticating a user on a network, comprising:
-
transmitting, by a network site directly to a security server, a request to have a user authenticated; receiving, by the network site from a network device of the user, a one-time-password; calculating, by the network site, a one-time-password based on a secret shared by the security server and the network site, but not by the user; and comparing, by the network site, the received one-time-password and the calculated one-time-password to authenticate the user. - View Dependent Claims (19)
-
Specification