Method for securing information relevant to a transaction
DCFirst Claim
1. A method for coding clear information comprising:
- receiving a personal identification number (PIN) from an originator;
obtaining first coded authentication information by using the PIN;
generating at least two numbers using the first coded authentication information, at least one of the at least two numbers being an arbitrary number;
storing the at least two numbers in at least one storage means; and
coding the clear information using the first coded authentication information to derive coded information.
0 Assignments
Litigations
2 Petitions
Accused Products
Abstract
A transaction system is disclosed wherein, when a transaction, document or thing needs to be authenticated, information associated with one or more of the parties involved is coded together to produce a joint code. This joint code is then utilized to code information relevant to the transaction, document or record, in order to produce a variable authentication number (VAN) at the initiation of the transaction. This VAN is thereafter associated with the transaction and is recorded on the document or thing, along with the original information that was coded. During subsequent stages of the transaction, only parties capable of reconstructing the joint code will be able to uncode the VAN properly in order to re-derive the information. The joint code serves to authenticate the parties, and the comparison of the re-derived information against the information recorded on the document serves to authenticate the accuracy of that information.
-
Citations
54 Claims
-
1. A method for coding clear information comprising:
-
receiving a personal identification number (PIN) from an originator; obtaining first coded authentication information by using the PIN; generating at least two numbers using the first coded authentication information, at least one of the at least two numbers being an arbitrary number; storing the at least two numbers in at least one storage means; and coding the clear information using the first coded authentication information to derive coded information. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A method for securing the integrity of first information relevant to a transaction, and the integrity of second information associated with at least an originator party, by using a variable authentication number (VAN), the first information including a transaction sequence number which is previously stored in a storage means and is revised for each transaction, the method comprising:
-
coding the first information using at least the second information to derive the VAN; appending the VAN to the first information; retrieving the transaction sequence number from the storage means; uncoding the VAN to recover the first information including the transaction sequence number by using at least third information associated with the originator party; and authenticating the integrity of the first and second information by comparing the recovered transaction sequence number with the retrieved transaction sequence number. - View Dependent Claims (7, 8, 9, 10, 11, 12)
-
-
13. A method for authenticating the integrity of first transaction information and second transaction information, and a first party associated with the first and second transaction information, the integrity of the first and second transaction information being authenticated with a variable authentication number (VAN), the method comprising:
-
coding the first transaction information to generate a first error detection code (EDC1); coding the second transaction information to generate a second error detection code (EDC2); coding, or otherwise combining, EDC1 and EDC2 to generate a third error detection code (EDC3); coding EDC3 and first information associated with the first party to derive the variable authentication number (VAN); associating the VAN and EDC2 with the first transaction information to form a first information group; associating the VAN and EDC1 with the second transaction information to form a second information group; and subsequently authenticating the integrity of the first transaction information, and the second transaction information by; recovering the VAN from the first information group, and uncoding the recovered VAN by using second information associated with the first party to derive the third error detection code (EDC3); recovering the first transaction information from the first information group, and coding the recovered first transaction information to generate a fourth error detection code (EDC4); recovering the EDC2 from the first information group, and coding, or otherwise combining, EDC4 and the recovered EDC2 to generate a sixth error detection code (EDC6); authenticating the integrity of the first transaction information if EDC6 compares favorably with the EDC3 recovered from the VAN; recovering the VAN from the second information group, and uncoding the recovered VAN by using second information associated with the first party to derive the third error detection code (EDC3); recovering the second transaction information from the second information group, and coding the recovered second transaction information to generate a fifth error detection code (EDC5); recovering the EDC1 from the second information group, and coding, or otherwise combining, the recovered EDC1 and EDC5 to generate a seventh error detection code (EDC7); and authenticating the integrity of the second transaction information if EDC7 compares favorably with the EDC3 recovered from the VAN.
-
-
14. In a multi-party transaction system, a method for securing information relevant to a transaction by using information associated with a present party and information associated with an absent party, wherein a credential is previously issued to at least one of the present party and the absent party by an entity authorized to issue a credential, the credential including a variable authentication number (VAN), the method comprising:
-
creating the VAN by coding credential information with a secret key of the credential issuing entity; authenticating at least one of the present party and the absent party by using the VAN; and coding the information relevant to the transaction using the information associated with the present party, and then coding the result using the information associated with the absent party. - View Dependent Claims (15, 16, 17, 18, 19)
-
-
20. In a multi-party transaction system, a method for securing information relevant to a transaction by using information associated with at least two parties, wherein a credential is previously issued to at least one of the parties by an entity authorized to issue a credential, the credential including a variable authentication number (VAN), the method comprising:
-
creating the VAN by coding credential information with a secret key of the credential issuing entity; authenticating at least one of the parties by using the VAN; coding information associated with the at least two parties to generate a joint code; and coding the information relevant to the transaction with the joint code to generate coded information relevant to the transaction. - View Dependent Claims (21, 22, 23, 24, 25, 26, 27, 29)
-
-
28. In a transaction system, a method for securing information relevant to a transaction, the transaction including at least one party, wherein a credential is previously issued to the at least one party by an entity authorized to issue a credential, the credential including a variable authentication number (VAN), the method comprising:
-
creating the VAN by coding credential information with a secret key of the credential issuing entity; authenticating the at least one of the party by using the VAN; generating a joint code by coding first information accessed from a first one or more data storage means with second information associated with the at least one party to the transaction; and coding the information relevant to the transaction with the joint code to generate coded information relevant to the transaction. - View Dependent Claims (30, 31)
-
-
32. A method for coding clear information by using information associated with at least one party, wherein a credential is previously issued to the at least one party by an entity authorized to issue a credential, the credential including a variable authentication number (VAN), the method comprising:
-
creating the VAN by coding credential information with a secret key of the credential issuing entity; authenticating the at least one of the party by using the VAN; coding a first information group with a second information group to generate a third information group, at least one of the first and second information groups being associated with the at least one party; and coding the clear information with the third information group to generate coded information. - View Dependent Claims (33, 34)
-
-
35. In a multi-party transaction system, a method for securing information relevant to a transaction, the transaction including a first party and a second party, wherein a credential is previously issued to at least one of the first party and the second party by an entity authorized to issue a credential, the credential including a variable authentication number (VAN), the method comprising:
-
creating the VAN by coding credential information with a secret key of the credential issuing entity; authenticating at least one of the first and second parties by using the VAN; coding the information relevant to the transaction with first information associated with the first party to derive first coded information; and coding the first coded information with first information associated with the second party to derive second coded information relevant to the transaction. - View Dependent Claims (36, 37)
-
-
38. In a transaction system, a method for securing information relevant to a transaction, the transaction including at least one party, wherein a credential is previously issued to the at least one party by an entity authorized to issue a credential, the credential including a variable authentication number (VAN), the method comprising:
-
creating the VAN by coding credential information with a secret key of the credential issuing entity; authenticating the at least one of the party by using the VAN; coding information relevant to the transaction using information accessed from one or more data storage means to derive first coded information; and coding the first coded information using information associated with the at least one party to the transaction to derive second coded information relevant to the transaction. - View Dependent Claims (39, 40)
-
-
41. A method for coding clear information by using information associated with at least one party, wherein a credential is previously issued to the at least one party by an entity authorized to issue a credential, the credential including a variable authentication number (VAN), the method comprising:
-
creating the VAN by coding credential information with a secret key of the credential issuing entity; authenticating the at least one of the party by using the VAN; coding clear information with a first information group to generate a second information group, wherein the first information group is secret; and coding the second information group with a third information group to generate a fourth information group, wherein the third information group is non-secret, at least the first or third information groups being associated with the at least one party. - View Dependent Claims (42, 43, 44, 45)
-
-
46. In a multi-party transaction system, a method for securing information relevant to a transaction, the transaction including a first party and a second party, wherein a credential is previously issued to at least one of the first party and the second party by an entity authorized to issue a credential, the credential including a variable authentication number (VAN), the method comprising:
-
creating the VAN by coding credential information with a secret key of the credential issuing entity; authenticating at least one of the first and second parties by using the VAN; and coding the information relevant to the transaction with information associated with the first party to derive coded information relevant to the transaction, wherein the information relevant to the transaction includes information associated with the second party. - View Dependent Claims (47, 48, 49, 50)
-
-
51. In a multi-party transaction system, a method for securing information relevant to a transaction, wherein coded information relevant to the transaction is transmitted from a first party at a first site to a second party at a second site, and a credential is previously issued to at least one of the first party and the second party by an entity authorized to issue a credential, the credential including a variable authentication number (VAN), the method comprising:
-
creating the VAN by coding credential information with a secret key of the credential issuing entity; authenticating at least one of the first and second parties by using the VAN; the first party using first information associated with a second party to code the information relevant to the transaction to derive the coded information relevant to the transaction; and uncoding the coded information relevant to the transaction by the second party by using second information associated with the second party to recover the information relevant to the transaction. - View Dependent Claims (52, 53, 54)
-
Specification