Transaction processing system
First Claim
Patent Images
1. A transaction processing system comprising:
- a data processing system (14) and at least one transaction terminal (10, 11,
12) for use at a remote location by a user, the transaction terminal comprising;
means to receive characteristic data (517a) from the user, which characteristic data is required to generate a characteristic image (521) associated with the user from user data (523) stored in the data processing system;
logic for generating a transaction message (520) by combining data relating to a transaction (514) with the characteristic data (517a) in such a way that the transaction data (514) is required to recover the characteristic data (517a) from the transaction message (520); and
means connectable to a data communications network for transmitting the transaction message (520) to the data processing system, and the data processing system comprising;
means to store the user data (523);
means to receive from the network and store the transaction message (520);
logic for recovering the characteristic data (517b) from the stored transaction message (520) using the transaction data (514); and
logic for reconstructing the characteristic image (512b,
521) from the user data (523) using the characteristic data (523, 517b) for use in establishing that the transaction was valid by associating the characteristic image with the transaction data.
1 Assignment
0 Petitions
Accused Products
Abstract
A transaction processing system comprises at least one transaction terminal (10, 11, 12) having means to receive characteristic data from a user, which characteristic data is required to generate a characteristic image associated with the user, such as an image of the user'"'"'s signature, from data stored in a data processing system (14); and logic for generating a transaction message by combining transaction data with the characteristic data in such a way that the transaction data is required to recover the characteristic data from the message. The data processing system (14) comprises means to store the user data, to receive and store the message, to recover the characteristic data from the message using the transaction data, and to reconstruct the characteristic image from the user data using the characteristic data to establish that the transaction was valid by associating the characteristic image with the transaction data.
337 Citations
21 Claims
-
1. A transaction processing system comprising:
-
a data processing system (14) and at least one transaction terminal (10, 11,
12) for use at a remote location by a user, the transaction terminal comprising;means to receive characteristic data (517a) from the user, which characteristic data is required to generate a characteristic image (521) associated with the user from user data (523) stored in the data processing system; logic for generating a transaction message (520) by combining data relating to a transaction (514) with the characteristic data (517a) in such a way that the transaction data (514) is required to recover the characteristic data (517a) from the transaction message (520); and means connectable to a data communications network for transmitting the transaction message (520) to the data processing system, and the data processing system comprising; means to store the user data (523); means to receive from the network and store the transaction message (520); logic for recovering the characteristic data (517b) from the stored transaction message (520) using the transaction data (514); and logic for reconstructing the characteristic image (512b,
521) from the user data (523) using the characteristic data (523, 517b) for use in establishing that the transaction was valid by associating the characteristic image with the transaction data. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A transaction processing system processing system comprises:
-
a first data processing facility (13) for use by a verifier, the first data processing facility comprising; means to receive from the network and store the transaction message (520) and means to effect the transaction using the transaction data; a second data processing facility (14) for use by an arbiter, the second data processing facility comprising means to store the user data; logic for recovering the characteristic data (517b) from the stored transaction message (520) using the transaction data (514); and logic for reconstructing the characteristic image (512b,
521) from the characteristic data (523, 517b) using the user data for use in establishing that the transaction was valid by associating the characteristic image with the transaction data. - View Dependent Claims (8, 9, 10, 11, 12, 13)
-
-
14. A process for providing security in transaction processing systems comprising the steps of:
-
creating a seal key and storing the key in a verifier storage and in a smart card containing user identification data; creating a user electronic signature and combining the signature with an input from a random number generator to form an electronic signature record (ESR); hashing the ESR to form a hashed ESR (HESR); enciphering the ESR using the HESR and the seal key to form an enciphered ESR for storage in the verifier storage; generating a transaction message using the smart card; hashing the transaction message to form a MASH; combining the HESR with the user identification information in the smart card to form a +HESR+; enciphering the message using the MASH, the seal key and the +HESR+ to form a sealed message; and validating the transaction message comprising the steps of; deciphering the sealed message to reform the +HESR+; deciphering the ESR from the verifier storage and hashing the ESR to form the HESR, and comparing the +HESR+ to the HESR to form a verdict. - View Dependent Claims (15)
-
-
16. A process for providing security in a transaction processing system comprising the steps of:
-
enrolling a user in the transaction processing system, the user being identified by an enciphered electronic signature record (ESR) stored in the system; conducting a transaction in the system, the user using a card containing the user identity, a seal and a hashed ESR (HESR), a card initiating an enciphered transaction message, an enciphered message description of the transaction data, and accompanying the transaction data with an enciphered hashed ESR (+HESR+); and verifying the transaction by comparing the deciphered stored ESR, after hashing, to the +HESR+ accompanying the transaction data. - View Dependent Claims (17, 18)
-
-
19. A smart card adapted for providing security in a transaction system said smart comprising:
-
a seal key stored in a memory; a smart card specific data stored in the memory; a hashed electronic signature record (HESR) stored in the memory; and a logic means for receiving a message, generating a seal and outputting the seal with the smart card specific data, wherein said seal is generated by hashing the message and combining the hashed message with the seal key to then encipher the HESR to form said seal. - View Dependent Claims (20, 21)
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeInternational Business Machines Corporation
-
Original AssigneeInternational Business Machines Corporation
-
InventorsHolloway, Christopher J.
-
Primary Examiner(s)Cain, David C.
-
Application NumberUS08/276,138Time in Patent Office946 DaysField of Search380/23, 380/24, 380/25, 380/3, 380/4, 380/49US Class Current705/66CPC Class CodesG06Q 20/341 Active cards, i.e. cards in...G06Q 20/3672 initialising or reloading t...G06Q 20/401 Transaction verificationG06Q 20/40145 Biometric identity checksG07C 9/247 electronically, e.g. by com...G07F 7/1008 Active credit-cards provide...G07F 7/1016 Devices or methods for secu...
