Electronic transfer system and method
First Claim
1. A method for securely communicating in a communication system, wherein the communication system comprises a first device at a first party'"'"'s location, a second device at a second party'"'"'s location, and a server in communication therewith, wherein the method comprises:
- (a) creating a first session associated with the first party, wherein said first session has first use parameters for limiting the duration that said first session can be used and a first set of data, wherein said first use parameters and said first set of data are identifiable by the server;
(b) creating a second session associated with the second party, wherein said second session has second use parameters for limiting the duration that said second session can be used and a second set of data, wherein said second use parameters and said second set of data are identifiable by the server; and
(c) linking a portion of said first session with a portion of said second session in the communication system, wherein said portion of said first session includes said first set of data and said first use parameters and said portion of said second session includes said second set of data and said second use parameters;
(d) verifying the first and second parties based upon at least portions of said first and second sets of data by the server; and
(e) determining whether said first and second sessions can be used based upon said first and second use parameters by the serverso that when the server verifies the first and second parties and determines that said first and second sessions can be used, the first and second parties are assured of communicating securely in the communication system.
3 Assignments
0 Petitions
Accused Products
Abstract
A system and method relating to secure communications in a communication network is disclosed. The invention uses sessions having limited duration to enable parties to communicate securely in the communication network. The session of one party is independent from the session of another party. The sessions are linked at a server which confirms that the sessions are valid.
In a preferred embodiment, the secure communications occur in an electronic transfer system. In the electronic transfer system, a customer and a merchant can conduct a transaction wherein the customer can purchase a product from the merchant and pay for the product using electronic funds.
423 Citations
25 Claims
-
1. A method for securely communicating in a communication system, wherein the communication system comprises a first device at a first party'"'"'s location, a second device at a second party'"'"'s location, and a server in communication therewith, wherein the method comprises:
-
(a) creating a first session associated with the first party, wherein said first session has first use parameters for limiting the duration that said first session can be used and a first set of data, wherein said first use parameters and said first set of data are identifiable by the server; (b) creating a second session associated with the second party, wherein said second session has second use parameters for limiting the duration that said second session can be used and a second set of data, wherein said second use parameters and said second set of data are identifiable by the server; and (c) linking a portion of said first session with a portion of said second session in the communication system, wherein said portion of said first session includes said first set of data and said first use parameters and said portion of said second session includes said second set of data and said second use parameters; (d) verifying the first and second parties based upon at least portions of said first and second sets of data by the server; and (e) determining whether said first and second sessions can be used based upon said first and second use parameters by the server so that when the server verifies the first and second parties and determines that said first and second sessions can be used, the first and second parties are assured of communicating securely in the communication system. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method for securely communicating in a communication system, wherein the communication system has a device at a user'"'"'s location and a server in communication therewith, wherein the method comprises:
-
a. transmitting a request from the device to the server for creating a session having use parameters associated therewith; b. encrypting a first key with a second key by the server; c. transmitting said encrypted first key and said use parameters associated with said session from the server to the device; d. receiving said encrypted first key and said use parameters by the device and decrypting said encrypted first key so that the device can communicate securely in the communication system by using said decrypted first key according to said use parameters. - View Dependent Claims (9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. An electronic transfer system in a communication network for processing a transaction between a customer having a customer device, a merchant having a merchant device, and a server connected therewith, wherein the transaction has terms associated therewith and wherein the server transfers electronic funds from the customer to the merchant so that the merchant can provide a product to the customer, wherein the electronic transfer system comprises:
-
a. the merchant device for (1) obtaining a first session from the server, (2) transmitting an invoice including at least a portion of the terms of the transaction to the customer device, (3) receiving a customer response to said invoice from the customer device and transmitting a first set of data representing the transaction to the server, wherein said first set of data includes at least a portion of said customer response, (4) receiving a second set of data from the server indicating whether the transaction has been approved by the server, wherein said second set of data includes a merchant part and a customer part, wherein said merchant part and said customer part of said second set of data include at least a portion of said first set of data; and (5) transmitting said customer part of said second set of data to the customer device; b. the customer device for (1) obtaining a second session from the server, (2) receiving said invoice including said portion of the terms of the transaction from said merchant device and transmitting said portion of said customer response to the merchant device, and (3) receiving said customer part of said second set of data from the merchant device; c. the server having a merchant persona and customer persona stored therein, wherein said merchant persona represents the merchant and said customer persona represents the customer, wherein said merchant persona has a merchant electronic funds storage structure associated therewith for storing electronic funds received by the merchant and said customer persona has a customer electronic funds storage structure associated therewith for storing electronic funds of the customer, wherein the server is for (1) providing said first session to said merchant device and said second session to said customer device, (2) receiving said first set of data representing the transaction from the merchant device and processing said first set of data to determine whether the transaction has been approved, (3) transferring electronic funds from said customer electronic funds storage structure to said merchant electronic funds storage structure if the transaction has been approved, and (4) transmitting said second set of data to the merchant device indicating whether the transaction has been approved so that if the transaction has been approved, the merchant can provide the product to the customer. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24, 25)
-
Specification