Apparatus and method for granting access to network-based services based upon existing bank account information

US 6,910,020 B2
Filed: 03/31/1997
Issued: 06/21/2005
Est. Priority Date: 10/16/1996
Status: Expired due to Fees

First Claim

Patent Images

1. A network transaction system in which a customer'"'"'s terminal station is connected to a first bank system via an open network and the first bank system is connected to a second bank system via an inter-network, the customer having an existing bank account in the second bank system and attempting to newly open a bank account in the first bank system, the network transaction system comprising:

customer processing means disposed at the terminal station and coupled to the open network, said customer processing means for applying for a new bank account by supplying via the open network the first bank system with existing account information descriptive of the existing bank account owned by the customer in the second bank system;

first bank processing means disposed at the first bank system and coupled to the open network and inter-networks, said first bank processing means for requesting via the inter-networks the second bank system to make a confirmation of the existing bank account while forwarding the existing account information received from the customer processing means to the second bank system over the inter-network, and for opening the applied new bank account based on a confirmation response message received via the inter-network from the second bank system describing a result of the confirmation of the existing bank account, wherein the first bank processing means authenticates the customer based on the confirmation; and

second bank processing means disposed at the second bank system and coupled to the inter-network, said second bank processing means for confirming validity of the existing bank account upon request from said first bank processing means, and for returning the confirmation response message to said first bank processing means to report the result of the confirmation of the existing bank account, wherein said customer processing means comprises;

(a1) customer key generation means for generating a customer secret key and a customer public key, (a2) customer encryption means for assembling an account application message to be sent to said first bank processing means by;

encrypting account application information necessary for opening the new bank account by using the customer secret key and further by using a first bank public key, encrypting the customer public key and a second bank identification code by using the first bank public key, encrypting the existing account information by using the customer secret key and further by using a second bank public key, and combining the encrypted account application information, the encrypted customer public key, the encrypted second bank identification code, and the encrypted existing account information, and (a3) customer decryption means for obtaining new account acknowledgment information by decrypting an application response message received from said first bank processing means by using the customer secret key and further by using the first bank public key.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A network transaction system applicable to cyberspace banking services using an open network, which allows customers to authenticate themselves through a simplified procedure. A customer'"'"'s terminal station and a plurality of bank systems are interconnected via networks, and it is assumed that the customer wishes to newly open a bank account in a bank system among them, or a target bank system, and that the customer has an existing bank account in a different bank system, or an cooperative bank system. Using his/her terminal station, the customer applies for a new bank account by supplying the target bank system with a ciphertext message containing existing account information descriptive of the customer'"'"'s bank account in the cooperative bank system. The target bank system requests the cooperative bank system to confirm the customer'"'"'s existing bank account, while forwarding thereto a part of the ciphertext message containing the existing account information. The cooperative bank system decrypts the received message and confirms the validity of the account that the customer claims to own. It then returns a response message to the target bank system to report the result of the account confirmation. The target bank system decides whether to accept or to reject the application for a new account based on the response message from the cooperative bank system.

Citations

6 Claims

1. A network transaction system in which a customer'"'"'s terminal station is connected to a first bank system via an open network and the first bank system is connected to a second bank system via an inter-network, the customer having an existing bank account in the second bank system and attempting to newly open a bank account in the first bank system, the network transaction system comprising:
- customer processing means disposed at the terminal station and coupled to the open network, said customer processing means for applying for a new bank account by supplying via the open network the first bank system with existing account information descriptive of the existing bank account owned by the customer in the second bank system;
  
  first bank processing means disposed at the first bank system and coupled to the open network and inter-networks, said first bank processing means for requesting via the inter-networks the second bank system to make a confirmation of the existing bank account while forwarding the existing account information received from the customer processing means to the second bank system over the inter-network, and for opening the applied new bank account based on a confirmation response message received via the inter-network from the second bank system describing a result of the confirmation of the existing bank account, wherein the first bank processing means authenticates the customer based on the confirmation; and
  
  second bank processing means disposed at the second bank system and coupled to the inter-network, said second bank processing means for confirming validity of the existing bank account upon request from said first bank processing means, and for returning the confirmation response message to said first bank processing means to report the result of the confirmation of the existing bank account, wherein said customer processing means comprises;
  
  (a1) customer key generation means for generating a customer secret key and a customer public key, (a2) customer encryption means for assembling an account application message to be sent to said first bank processing means by;
  
  encrypting account application information necessary for opening the new bank account by using the customer secret key and further by using a first bank public key, encrypting the customer public key and a second bank identification code by using the first bank public key, encrypting the existing account information by using the customer secret key and further by using a second bank public key, and combining the encrypted account application information, the encrypted customer public key, the encrypted second bank identification code, and the encrypted existing account information, and (a3) customer decryption means for obtaining new account acknowledgment information by decrypting an application response message received from said first bank processing means by using the customer secret key and further by using the first bank public key.
- View Dependent Claims (2, 3)
- - 2. A network transaction system according to claim 1, wherein said first bank processing means comprises:
    - (b1) first bank key generation means for generating a first bank secret key and the first bank public key, (b2) first bank decryption means for;
      
      obtaining the customer public key and the second bank identification code by decrypting the encrypted customer public key and the encrypted second bank identification code, as part of the account application message received from said customer processing means, by using the first bank public key, obtaining the account application information by decrypting the encrypted account application information, as part of the account application message received from said customer processing means, by using the first bank secret key and further by using the obtained customer public key, and obtaining the result of the confirmation of the existing bank account by decrypting the confirmation response message from the second bank processing means by using the second bank public key, and (b3) first bank encryption means for;
      
      encrypting confirmation request information by using the second bank public key, and assembling a confirmation request message to be sent to said second bank processing means by combining the encrypted confirmation request information and the encrypted existing account information received from the customer processing means, wherein the confirmation request information includes a first bank identification code, the customer public key, and a confirmation request number.
  - 3. A network transaction system according to claim 2, wherein said second bank processing means comprises:
    - (c1) second bank key generation means for generating a second bank secret key and the second bank public key, (c2) second bank decryption means for;
      
      obtaining the first bank identification code, the customer public key, and the confirmation request number by decrypting the encrypted confirmation request information by using the second bank secret key and further by using the first bank public key, and obtaining the existing account information by decrypting twice the encrypted existing account information by using the second bank secret key and further by using the above-obtained customer public key, and (c3) second bank encryption means for encrypting the result of the confirmation of the existing bank account, the second bank identification code, and the confirmation request number by using the second bank secret key, and thereby assembling the confirmation response message to be sent to said first bank processing means.

4. A user authentication method for cyberspace banking services of an open network, which banking services are provided by a plurality of banks interconnected via an inter-bank network, the plurality of banks including a first bank and a second bank, a customer having an existing bank account in the second bank and newly issuing an account application for a bank account in the first bank, the user authentication method comprising:
- (a) being supplied by the customer via the open network with first information which is obtained by encrypting account application information necessary for opening a new bank account by using a customer secret key and further by a first bank public key;
  
  (b) being supplied by the customer via the open network with second information which is obtained by encrypting a customer public key and a second bank identification code by using the first bank public key;
  
  (c) being supplied by the customer via the open network with third information which is obtained by encrypting existing account information by using the customer secret key and further by using a second bank public key, wherein the existing account information is descriptive of the existing bank account owned by the customer in the second bank;
  
  (d) decrypting the second information by using the first bank secret key to obtain the customer public key and the second bank identification code;
  
  (e) decrypting the first information by using the first bank secret key and further by using the decrypted customer public key to obtain the account application information;
  
  (f) encrypting the second bank identification code, the customer public key, and confirmation request information by using the second bank public key to obtain fourth information;
  
  (g) sending via the inter-bank network the third information and the fourth information to the second bank, thereby requesting via the inter-bank network the second bank to authenticate the customer based on the existing account information contained in the third information;
  
  (h) receiving via the inter-bank network a response from the second bank that reports the result of the authentication; and
  
  (i) deciding whether to accept or to reject the account application from the customer.

5. A user authentication method for cyberspace banking services of an open network, which are provided by a bank where customer has an existing bank account, the user authentication method comprising:
- (a) being supplied by the customer via the open network with first information which is produced by encrypting account application information and existing account information by using a customer secret key and further by a bank public key, wherein the account application information is information necessary for opening a new bank account and the existing account information is descriptive of the existing bank account owned by the customer in the bank;
  
  (b) being supplied by the customer via the open network with second information which is produced by encrypting a customer public key by using the bank public key;
  
  (c) decrypting the second information by using the bank secret key, thereby obtaining the customer public key;
  
  (d) decrypting the first information by using the bank secret key and further by using the customer public key obtained in the step (c), thereby extracting the account application information and the existing account information;
  
  (e) authenticating by an account information verification unit of the bank the customer'"'"'s identity, based on the existing account information extracted in the step (d); and
  
  (f) deciding by an account opening decision unit of the bank whether to accept or to reject the account application from the customer, based on the result of the authentication performed in the step (e).

6. A user authentication method for cyberspace banking services of an open network, which are provided by a bank where customer has an existing bank account, the user authentication method comprising:
- (a) being supplied by the customer via the open network with first information which is produced by encrypting service request information and existing account information by using a customer secret key and further by a bank public key, wherein the service request information specifies service contents pertaining to the existing bank account and the existing account information is descriptive of the existing bank account owned by the customer in the bank;
  
  (b) being supplied by the customer via the open network with second information which is produced by encrypting a customer public key by using the bank public key;
  
  (c) decrypting the second information by using the bank secret key to obtain the customer public key;
  
  (d) decrypting the first information by using the bank secret key and further by using the customer public key obtained in the step (c) so as to extract the service request information and the existing account information;
  
  (e) authenticating by an account information verification unit of the bank the customer'"'"'s identity, based on the existing account information extracted in the step (d); and
  
  (f) deciding by an account opening decision unit of the bank whether to provide or not the service contents to the customer, based on the result of the authentication performed in the step (e).

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Fujitsu Limited
Original Assignee
Fujitsu Limited
Inventors
Oyama, Shuji, Sato, Akira
Primary Examiner(s)
Backer, Firmin

Application Number

US08/825,565
Publication Number

US 20020007343A1
Time in Patent Office

3,004 Days
Field of Search

705/35, 705/38, 705/42, 705/44, 705/64, 705/74, 705/76, 705/39, 705/70, 705/71, 235/379, 235/380, 380/24, 380/25, 380/49
US Class Current

705/38
CPC Class Codes

G06F 21/33   using certificates

G06Q 20/04   Payment circuits

G06Q 20/10   specially adapted for elect...

G06Q 20/102   Bill distribution or payments

G06Q 20/108   Remote banking, e.g. home b...

G06Q 20/3821   Electronic credentials

G06Q 20/3829   involving key management

G06Q 20/4014   Identity check for transact...

G06Q 40/02   Banking, e.g. interest calc...

G06Q 40/03   Credit; Loans; Processing t...

Apparatus and method for granting access to network-based services based upon existing bank account information

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

6 Claims

Specification

Solutions

Use Cases

Quick Links

Apparatus and method for granting access to network-based services based upon existing bank account information

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

6 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links