Transaction method and system for data networks, like internet
First Claim
1. A method for sending an authenticatable message, containing message data, from a data input/output device of a first party via a data network to a data input/output device of a second party, comprising:
- providing a message having message data in the data input/output device of a first party;
providing a table of n random numbers in the data input/output device of the first party, each number having a predetermined position in the table;
splitting the message data into m digits by the input/ontput device of the first party, the splitting comprising subjecting the message data to a hashing operation to provide a hashing code, and splitting the hashing code into m digits, each digit representing a value between 1 and n, where m is smaller than n;
assembling a digital signature in the input/output device of the first party, wherein the digital signature comprises a string of the random numbers of which the position in the table is indicated by the digits, and wherein the digital signature is validatable by comparison with a registered first party reference profile;
adding the digital signature to the message to form an authenticatable message; and
sending, via a data network, the digitally signed message to an input/output device of a second party.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and a system for performing a transaction between at least one first party and at least one second party are disclosed. A data network connects data input/output terminals of the parties. In the data network, a secure and trusted transaction server is provided, in which a profile of the parties is registered, having a party identifier identifying a particular party, and authentication data for authenticating the party and data sent by the party. The parties communicate with each other through the transaction server by means of various transaction messages, which are digitally signed using a table of random numbers and a hashing operation, wherein the table of random numbers is generated by reading a token.
-
Citations
9 Claims
-
1. A method for sending an authenticatable message, containing message data, from a data input/output device of a first party via a data network to a data input/output device of a second party, comprising:
-
providing a message having message data in the data input/output device of a first party;
providing a table of n random numbers in the data input/output device of the first party, each number having a predetermined position in the table;
splitting the message data into m digits by the input/ontput device of the first party, the splitting comprising subjecting the message data to a hashing operation to provide a hashing code, and splitting the hashing code into m digits, each digit representing a value between 1 and n, where m is smaller than n;
assembling a digital signature in the input/output device of the first party, wherein the digital signature comprises a string of the random numbers of which the position in the table is indicated by the digits, and wherein the digital signature is validatable by comparison with a registered first party reference profile;
adding the digital signature to the message to form an authenticatable message; and
sending, via a data network, the digitally signed message to an input/output device of a second party. - View Dependent Claims (2, 3, 4)
-
-
5. A data processing system for generating a digital signature for a message containing message data to be sent via a data network, the system comprising:
-
a input/output device having a storage device connected thereto for storing a message having message data;
means, operative with the input/output device for providing a table of n random numbers, each having a predetermined position in the table;
means, operative with the input/output device, for splitting dividing the message data into m digits, the splitting means comprising means for subjecting the message data to a hashing operation to provide a hashing code, and means for splitting the hashing code into m digits, each digit representing a value between 1 and n, where m is smaller than n; and
means, operative with the input/output device, for assembling a digital signature comprising a string of the random numbers of which the position in the table is indicated by the digits, the signature suitable to be added to the message prior to sending the message over the network. - View Dependent Claims (6, 7)
-
-
8. A computer program, comprising program instructions for causing a data processing system to perform its function, wherein the program is stored on a computer readable medium, and wherein the data processing system comprises:
-
a input/output device having a storage device connected thereto for storing a message having message data;
means, operative with the input/output device for providing a table of n random numbers, each having a predetermined position in the table;
means, operative with the input/output device, for splitting the message data into m digits, wherein the splitting means comprises means for subjecting the message data to a hashing operation to provide a hashing code, and means for splitting the hashing code into m digits, each digit representing a value between 1 and n, where m is smaller than n; and
means, operative with the input/output device, for assembling a digital signature comprising a string of the random numbers of which the position in the table is indicated by the digits, the signature suitable to be added to the message prior to sending the message over the network. - View Dependent Claims (9)
-
Specification