Trusted agents for open electronic commerce
First Claim
1. A system for open electronic commerce where both customers and merchants can securely transact comprising:
- a customer trusted agent;
a first money module associated with said customer trusted agent, and capable of securely communicating with said customer trusted agent;
a merchant trusted agent capable of establishing a first cryptographically secure session with said customer trusted agent;
a second money module associated with said merchant trusted agent and capable of securely communicating with said merchant trusted agent, and capable of establishing a second cryptographically secure session with said first money module;
where said merchant trusted agent transfers electronic merchandise, via said first cryptographically secure session, to said customer trusted agent which provisionally retains said electronic merchandise;
where said customer trusted agent provides first payment information to said first money module and said merchant trusted agent provides second payment information to said second money module;
where said first money module transfers electronic money, in an amount consistent with said first and second payment information, to said second money module via said second cryptographically secure session;
where said first money module informs said customer trusted agent upon successful transfer of said electronic money, whereupon said retention of electronic merchandise is no longer provisional, and where said second money module informs said merchant trusted agent upon successful receipt of said electronic money.
1 Assignment
0 Petitions
Accused Products
Abstract
A system for open electronic commerce having a customer trusted agent securely communicating with a first money module, and a merchant trusted agent securely communicating with a second money module. Both trusted agents are capable of establishing a first cryptographically secure session, and both money modules are capable of establishing a second cryptographically secure session. The merchant trusted agent transfers electronic merchandise to the customer trusted agent, and the first money module transfers electronic money to the second money module. The money modules inform their trusted agents of the successful completion of payment, and the customer may use the purchased electronic merchandise.
1408 Citations
49 Claims
-
1. A system for open electronic commerce where both customers and merchants can securely transact comprising:
-
a customer trusted agent; a first money module associated with said customer trusted agent, and capable of securely communicating with said customer trusted agent; a merchant trusted agent capable of establishing a first cryptographically secure session with said customer trusted agent; a second money module associated with said merchant trusted agent and capable of securely communicating with said merchant trusted agent, and capable of establishing a second cryptographically secure session with said first money module; where said merchant trusted agent transfers electronic merchandise, via said first cryptographically secure session, to said customer trusted agent which provisionally retains said electronic merchandise; where said customer trusted agent provides first payment information to said first money module and said merchant trusted agent provides second payment information to said second money module; where said first money module transfers electronic money, in an amount consistent with said first and second payment information, to said second money module via said second cryptographically secure session; where said first money module informs said customer trusted agent upon successful transfer of said electronic money, whereupon said retention of electronic merchandise is no longer provisional, and where said second money module informs said merchant trusted agent upon successful receipt of said electronic money. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. For use in the secure purchase of electronic merchandise with the aid of a merchant trusted agent and first and second money modules capable of establishing a second cryptographically secure session, a customer trusted agent comprising:
-
a processor adapted for the following; establishing a first cryptographically secure session with said merchant trusted agent; securely communicating with said first money module associated with said customer trusted agent; receiving and provisionally retaining electronic merchandise from said merchant trusted agent via said first cryptographically secure session; and providing payment information to said first money module; where said first money module transfers electronic money, in an amount consistent with said payment information, via said second cryptographically secure session, to said second money module associated with said merchant trusted agent; and where said customer trusted agent is informed by said first money module upon successful transfer of said electronic money, whereupon said retention of said electronic merchandise is no longer provisional and said electronic merchandise may be used by the customer. - View Dependent Claims (18, 19, 20, 21, 22, 23)
-
-
24. For use in the secure sale of electronic merchandise with the aid of a customer trusted agent and first and second money modules capable of establishing a second cryptographically secure session, a merchant trusted agent comprising:
-
a processor adapted for the following; establishing a first cryptographically secure session with said customer trusted agent; securely communicating with said second money module associated with said merchant trusted agent; transferring electronic merchandise, via said first cryptographically secure session to said customer trusted agent which provisionally retains said electronic merchandise; and providing payment information to said second money module; where said second money module receives electronic money, in an amount indicated by said payment information, via said second cryptographically secure session, from said first money module associated with said customer trusted agent; and where said merchant trusted agent is informed by said second money module upon successful receipt of said electronic money whereupon the merchant'"'"'s sale is logged. - View Dependent Claims (25, 26, 27, 28, 29, 30)
-
-
31. A method for securely exchanging an electronic ticket and electronic money utilizing a customer trusted agent, a first money module, a merchant trusted agent, and a second money module, comprising the steps of:
-
(a) establishing a first cryptographically secure session between said customer trusted agent and said merchant trusted agent; (b) said merchant trusted agent transferring said electronic ticket, via said first cryptographically secure session, to said customer trusted agent which provisionally retains said electronic ticket; (c) establishing a second cryptographically secure session between said first money module and said second money module; (d) said customer trusted agent securely providing first payment information to said first money module; (e) said merchant trusted agent securely providing second payment information to said second money module; (f) said first money module transferring, via said second cryptographically secure session, said electronic money in an amount consistent with said first and second payment information, to said second money module which provisionally retains said electronic money; (g) said first money module committing and securely informing said customer trusted agent of successful electronic money transfer; (h) said second money module committing, whereupon said retention of said electronic money is no longer provisional, and securely informing said merchant trusted agent of successful electronic money receipt; (i) said customer trusted agent committing, whereupon said retention of said electronic ticket is no longer provisional; and (j) said merchant trusted agent committing. - View Dependent Claims (32, 33, 34, 35, 36, 37)
-
-
38. A method for securely exchanging an electronic ticket and electronic money utilizing a customer trusted agent, a first money module, a merchant trusted agent, and a second money module, comprising the steps of:
-
establishing a first cryptographically secure session between said customer trusted agent and said merchant trusted agent; establishing a second cryptographically secure session between said first money module and said second money module; said customer trusted agent securely providing first payment information to said first money module; said merchant trusted agent securely providing second payment information to said second money module; said first money module transferring, via said second cryptographically secure session, said electronic money in an amount consistent with said first and second payment information, to said second money module which provisionally retains said electronic money; said merchant trusted agent transferring said electronic ticket, via said first cryptographically secure session, to said customer trusted agent which provisionally retains said electronic ticket; said customer trusted agent securely instructing said first money module to commit; said first money module committing and securely informing said customer trusted agent of successful electronic money transfer; said second money module committing, whereupon said retention of said electronic money is no longer provisional, and securely informing said merchant trusted agent of successful electronic money receipt; said customer trusted agent committing, whereupon said retention of said electronic ticket is no longer provisional; and said merchant trusted agent committing.
-
-
39. A method utilizing a tamper-proof customer trusted agent and a tamper-proof merchant trusted agent to perform an authorization-based payment transaction, comprising:
-
(a) establishing a cryptographically secure session between said customer trusted agent and said merchant trusted agent, wherein said customer trusted agent and said merchant trusted agent exchange digitally signed trusted agent certificates that each include a trusted agent identifier; (b) transferring electronic merchandise from said merchant trusted agent to said customer trusted agent, via said cryptographically secure session, where said customer trusted agent provisionally retains said electronic merchandise; (c) said customer trusted agent validating said electronic merchandise; (d) said customer trusted agent transferring a payment credential to said merchant trusted agent via said cryptographically secure session, wherein said payment credential includes a receiver trusted agent identifier; (e) said merchant trusted agent validating said payment credential, wherein said trusted agent identifier from said customer trusted agent'"'"'s certificate is compared to said receiver trusted agent identifier; (f) said merchant trusted agent sending said payment credential and a price corresponding to said electronic merchandise to an authorization network for payment authorization; (g) said merchant trusted agent receiving a payment authorization; (h) said merchant trusted agent sending a payment authorized message to said customer trusted agent via said cryptographically secure session and committing to said authorization-based payment transaction; and (i) said customer trusted agent committing to said authorization-based payment transaction, whereupon said retention of said electronic merchandise is no longer provisional. - View Dependent Claims (40, 41, 42, 43, 44, 45)
-
-
46. A method for an identity-based money module payment utilizing tamper-proof devices including a first trusted agent, a first money module, a second trusted agent, and a second money module, comprising the steps
establishing a first cryptographically secure session between said first trusted agent and said second trusted agent; -
said second trusted agent sending a second trusted agent credential to said first trusted agent, via said first cryptographically secure session; said first trusted agent validating said second trusted agent credential and provisionally retaining said credential; said first trusted agent sending payment information to said second trusted agent, via said first cryptographically secure session; and said first trusted agent initiating an electronic money payment from said first money module to said second money module, in an amount consistent with said payment information and via a second cryptographically secure session between said first and second money modules; said first trusted agent committing after receiving payment successful information from said first money module, whereupon said first trusted agent non-provisionally maintains log information including said second trusted agent credential and data corresponding to said payment information; and said second trusted agent committing after receiving payment successful information from said second money module. - View Dependent Claims (47)
-
-
48. A system for securing simultaneous payment of electronic money to delivery of electronic merchandise over a communication network, comprising:
-
a tamper-proof first electronic agent having a first processor; a tamper-proof first money module associated with and capable of securely communicating with said first electronic agent, and having a second processor; a tamper-proof second electronic agent capable of establishing a first cryptographically secure session with said first electronic agent over said communications network, and having a third processor; a tamper-proof second money module associated with and capable of securely communicating with said second electronic agent, and capable of establishing a second cryptographically secure session with said first money module, and having a fourth processor; where said first electronic agent and said first money module are remotely located from said second electronic agent and said second money module; where said third processor is adapted to transfer electronic merchandise, via said first cryptographically secure session, to said first electronic agent; where said first processor is adapted to receive said electronic merchandise and not permit free external access to said electronic merchandise pending receipt of a message indicative of successful payment from said first money module; where said second processor is adapted to transfer electronic money, via said second cryptographically secure session, to said second money module, and to subsequently send said message indicative of successful payment to said first processor; and where said fourth processor is adapted to receive said electronic money. - View Dependent Claims (49)
-
Specification