Personal access management system
First Claim
1. A method for coordinating the exchange of information between a user device and a provider device, comprising the steps of:
- the user device;
generating a message;
retrieving a user device file name and a set of identification information stored in the user device;
deriving a first key code;
processing said identification information using said first key code to derive a set of processed identification information;
sending said user device file name, said processed identification information, and said message to the provider device;
the provider device;
receiving said user device file name, said processed identification information, and said message;
accessing a user file stored in the provider device using said user device file name as an index, said user file containing a set of recognition parameters corresponding to the user device;
deriving a second key code using said recognition parameters;
processing said processed identification information using said second key code to derive a set of de-processed identification information;
comparing said de-processed identification information with a set of reference information stored in said user file; and
terminating communication with the user device in response to a determination that said de-processed identification information is inconsistent with said reference information.
4 Assignments
0 Petitions
Accused Products
Abstract
A multi-component system for linking a user to a product or service provider includes a user processing device, a storage device, and a provider device. The storage device stores provider-specific application software, user-specific data, and a file management program. The storage device and the processing device are coupled to each other to form a user device which communicates with the provider device. Under direction of the file management program, the processing device carries out a recognition methodology which determines whether the processing device and the storage device are authorized to operate with each other. This aspect of the system makes it possible to render the storage device operable only with a specific user processing device, referred to as the principal processing device. This, in turn, reduces the possibility of fraud since the storage device cannot be used without the principal processing device. Once it is determined that the processing and storage devices are authorized to interact with each other, the processing device executes the provider-specific application software to exchange information with the provider device. Together, the user and provider devices implement unique recognition and comprehension methodologies to ensure that the parties are authorized to communicate with each other and to ensure that the information exchanged cannot be understood by third parties. Overall, the system provides a highly secure mechanism for transferring information from one party to another.
-
Citations
92 Claims
-
1. A method for coordinating the exchange of information between a user device and a provider device, comprising the steps of:
-
the user device; generating a message; retrieving a user device file name and a set of identification information stored in the user device; deriving a first key code; processing said identification information using said first key code to derive a set of processed identification information; sending said user device file name, said processed identification information, and said message to the provider device; the provider device; receiving said user device file name, said processed identification information, and said message; accessing a user file stored in the provider device using said user device file name as an index, said user file containing a set of recognition parameters corresponding to the user device; deriving a second key code using said recognition parameters; processing said processed identification information using said second key code to derive a set of de-processed identification information; comparing said de-processed identification information with a set of reference information stored in said user file; and terminating communication with the user device in response to a determination that said de-processed identification information is inconsistent with said reference information. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. A method for coordinating the exchange of information between a user device and a provider device, comprising the steps of:
-
the user device; generating a message; retrieving a user device file name, a set of identification information, a current user key code (CUKC), and a current provider key code (CPKC) stored in the user device; deriving a current session key code (CSKC) using said CUKC and said CPKC; processing said identification information using said CSKC to derive a set of processed identification information; sending said user device file name, said processed identification information, and said message to the provider device; the provider device; receiving said user device file name, said processed identification information, and said message; accessing a user file stored in the provider device using said user device file name as an index, said user file containing a set of recognition parameters corresponding to the user device; deriving a second key code using said recognition parameters; processing said processed identification information using said second key code to derive a set of de-processed identification information; comparing said de-processed identification information with a set of reference information stored in said user file; and terminating communication with the user device in response to a determination that said de-processed identification information is inconsistent with said reference information. - View Dependent Claims (17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31)
-
-
32. A method for coordinating the exchange of information between a user device and a provider device, comprising the steps of:
-
the user device; generating a message; retrieving a user device file name, a set of identification information, and a current provider public code (CPPUC) stored in the user device; processing said identification information using said CPPUC to derive a set of processed identification information; sending said user device file name, said processed identification information, and said message to the provider device; the provider device; receiving said user device file name, said processed identification information, and said message; accessing a user file stored in the provider device using said user device file name as an index, said user file containing a set of recognition parameters corresponding to the user device; retrieving a current provider private code (CPPRC) stored in said user file; processing said processed identification information using said CPPRC to derive a set of de-processed identification information; comparing said de-processed identification information with a set of reference information stored in said user file; and terminating communication with the user device in response to a determination that said de-processed identification information is inconsistent with said reference information. - View Dependent Claims (33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48, 49)
-
-
50. A communication system, comprising:
-
a user device, comprising; a user storage for storing a user device file name and a set of identification information; means for generating a message; means for retrieving said user device file name and said identification information from said user storage; means for deriving a first key code; means for processing said identification information using said first key code to derive a set of processed identification information; and means for sending said user device file name, said processed identification information, and said message onto a communications link; and a provider device, comprising; a provider storage for storing a user file containing a set of recognition parameters corresponding to said user device, including a set of reference information;
means coupled to said communications link for receiving said user device file name, said processed identification information, and said message;means for accessing said user file using said user device file name as an index;
means for deriving a second key code using said recognition parameters;means for processing said processed identification information using said second key code to derive a set of de-processed identification information; means for comparing said de-processed identification information with said reference information stored in said user file; and means for terminating communication with said user device in response to a determination that said de-processed identification information is inconsistent with said reference information. - View Dependent Claims (51, 52, 53, 54, 55, 56, 57, 58, 59, 60, 61, 62)
-
-
63. A communication system, comprising:
- a user device, comprising;
a user storage for storing a user device file name, a set of identification information, a current user key code (CUKC), and a current provider key code (CPKC); means for generating a message; means for retrieving said user device file name and said set of identification information from said user storage; means for deriving a current session key code (CSKC) using said CUKC and said CPKC; means for processing said identification information using said CSKC to derive a set of processed identification information; and means for sending said user device file name, said processed identification information, and said message onto a communications link; and a provider device, comprising; a provider storage for storing a user file containing a set of recognition parameters corresponding to said user device, including a set of reference information; means coupled to said communications link for receiving said user device file name, said processed identification information, and said message; means for accessing said user file using said user device file name as an index;
means for deriving a second key code using said recognition parameters;means for processing said processed identification information using said second key code to derive a set of de-processed identification information; means for comparing said de-processed identification information with said reference information stored in said user file; and means for terminating communication with said user device in response to a determination that said de-processed identification information is inconsistent with said reference information. - View Dependent Claims (64, 65, 66, 67, 68, 69, 70, 71, 72, 73, 74, 75, 76)
- a user device, comprising;
-
77. A communication system, comprising:
-
a user device, comprising; a user storage for storing a user device file name, a set of identification information, and a current provider public code (CPPUC); means for generating a message; means for retrieving said user device file name and said identification information from said user storage; means for processing said identification information using said CPPUC to derive a set of processed identification information; and means for sending said user device file name, said processed identification information, and said message to said provider device; and a provider device, comprising; a provider storage for storing a user file containing a set of recognition parameters corresponding to said user device, including a current provider private code (CPPRC) and a set of reference information; means for receiving said user device file name, said processed identification information, and said message; means for accessing said user file using said user device file name as an index;
means for retrieving said CPPRC from said user file;means for processing said processed identification information using said CPPRC to derive a set of de-processed identification information; means for comparing said de-processed identification information with said set of reference information stored in said user file; and means for terminating communication with said user device in response to a determination that said de-processed identification information is inconsistent with said reference information. - View Dependent Claims (78, 79, 80, 81, 82, 83, 84, 85, 86, 87, 88, 89, 90, 91, 92)
-
Specification