Data network security system and method
First Claim
1. A method for communicating information, both ways between an originating server and a terminating server, where the originating server and the terminating server are connected over a data network by a first two-way communications connection that includes at least one switching or routing active node, said method comprising the steps of:
- establishing, while said first two-way communications connection continues to be active, a separate connection between said originating server and said terminating server, said separate connection being established through a network that is distinct from the network of said first two-way communications connection; and
transmitting at least some of said information via the separate connection.
1 Assignment
0 Petitions
Accused Products
Abstract
A secure communication mechanism for communicating credit card or other sensitive information between a user terminal and a server which communicate over a data network (e.g.,Internet). For secure or private communication of sensitive information over a data network, a telephone connection is established between the originating server to which the user is connected for access to the data network and the SP to which the sensitive information is directed. The method and system provide for a secure electronic commercial transaction between a user and a service provider which charges for information and/or services and/or goods, wherein sensitive information includes credit card information transmitted from the user to the service provider, and/or electronic information or services transmitted from the service provider to the user in exchange for payment received from the user.
156 Citations
36 Claims
-
1. A method for communicating information, both ways between an originating server and a terminating server, where the originating server and the terminating server are connected over a data network by a first two-way communications connection that includes at least one switching or routing active node, said method comprising the steps of:
-
establishing, while said first two-way communications connection continues to be active, a separate connection between said originating server and said terminating server, said separate connection being established through a network that is distinct from the network of said first two-way communications connection; and
transmitting at least some of said information via the separate connection. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 19)
said terminating server providing a telephone number to said originating server over the first two-way communications link;
said originating server placing a call using said telephone number; and
said terminating server receiving said call and thereby establishing said separate connection.
-
-
12. The method according to claim 11, further comprising before the step of said terminating server providing a telephone number, the step of said originating server transmitting to said terminating server information indicative of desire to establish the separate connection.
-
13. The method according to claim 1, wherein said step of establishing the separate connection includes the steps of:
-
said originating server providing a telephone number to said terminating server over the first communications link on the data network;
said terminating server placing a call using said telephone number; and
said originating server receiving said call.
-
-
14. The method according to claim 13, further comprising before the step of said originating server providing a telephone number, the step of said terminating server transmitting to said originating server information indicative of intent to establish said separate connection.
-
19. The method according to claim 13, further comprising before the step of said origination server providing a telephone number, the step of said terminating server transmitting to said originating server information indicative of establishing the separate connection.
-
15. A method for communicating information between a user and a terminating server, said user connected to said terminating server via an accessing server which is connected to said terminating server over a data network by a first communications link, said method comprising the steps of:
-
at the terminating server;
associating a telephone call with said user;
establishing, in coordination with said accessing server, a telephone connection with said accessing server;
communicating said information with said accessing server via said telephone connection while said first communication link connection continues to be active;
at the accessing server;
establishing, in coordination with said terminating server, said telephone connection;
associating said telephone connection with said user;
communicating said information with said terminating server via said telephone connection; and
communicating said information with said user. - View Dependent Claims (16, 17, 18)
said terminating server providing a telephone number to said accessing server over the first communications link on the data network;
said accessing server placing a call using said telephone number; and
said terminating server receiving said call.
-
-
17. The method according to claim 16, further comprising before the step of said terminating server providing a telephone number, the step of said accessing server transmitting to said terminating server information indicative of establishing the separate connection.
-
18. The method according to claim 15, wherein said step of establishing the separate connection includes the steps of:
-
said accessing server providing a telephone number to said terminating server over the first communications link on the data network;
said terminating server placing a call using said telephone number; and
said accessing server receiving said call.
-
-
20. A system for secure communication, comprising:
-
an originating server;
a terminating server connected to said originating server over a packet data network by a first two-way communications link that includes at least one switching or routing active node and which carries information from said originating server to said terminating server and from said terminating server to said originating server;
a dialer for establishing a secure connection between said originating server and said terminating server that is distinct from the first two-way communications link; and
means for transmitting at least some of said information via the secure connection while said first two-way communications link is active. - View Dependent Claims (21, 22, 23, 24, 36)
-
-
25. A method for communicating first sensitive information possessed by a first party to a second party, and communicating second sensitive information possessed by the second party to the first party, where said first party is connected to said second party via a first two-way communication link of a data network, where information that is not sensitive flowing from said first party to said second party, and vice versa over said first two-way communication link of said data network by means of data packets, said method comprising the steps of:
-
transmitting a phone number from said first party to said second party over said first two-way link;
placing a call over a telecommunications network that is distinct from said data network, using said phone number, from said second party to said first party;
receiving said call at said first party to provide a secure telephone connection over said telecommunications network between the first party and the second party; and
transmitting said first sensitive information and said second sensitive information over said secure telephone connection. - View Dependent Claims (26, 27)
-
-
28. A method for communicating sensitive information from a first internet service provider (ISP) server to a second ISP server, where the first ISP server and the second ISP server are connected to each other by means of a primary connection over a packet network, said method comprising the steps of:
-
While maintaining said primary connection, establishing a connection between said first ISP server and said second ISP server that is more secure than said primary connection; and
transmitting said sensitive information via the more secure connection while said primary connection is active. - View Dependent Claims (29, 30, 31, 32, 33, 34)
-
-
35. In a system where an accessing server is arranged to service a plurality of users as well as to establish a two-way connection to a terminating server over a packet routing data network, and where a user is connected to the accessing server via a telecommunications connection, a method comprising the steps of:
-
in response to action taken by said user, the accessing server initiating the establishment of a secure connection between the accessing server and the terminating server by exchanging a telephone number with the terminating server;
the accessing server participating with the terminating server in the establishment of said secure connection based on the exchanged telephone number and associating said secure connection with said user;
the accessing server participating in the exchange of information over said secure connection between said user and said terminating server; and
the accessing server participating in the dismantling of said secure connection upon completion of said exchange of information.
-
Specification