System and method of bootstrapping a temporary public-key infrastructure from a cellular telecommunication authentication and billing infrastructure
First Claim
1. A method for ordering, authorizing, and delivering goods and services using a mobile station, comprising:
- accessing a gateway by the mobile station and transmitting an identification code for mobile station to the gateway;
verifying the identity of the mobile station by the gateway by accessing an authentication center of a cellular network and comparing mobile station generated variables computed by the mobile station with gateway generated variables computed by the gateway;
verifying the legitimacy of the gateway by the mobile station by comparing the variables computed by the gateway with the variables computed by the mobile station;
requesting a digital certificate by the mobile station from the gateway used to order and authorize a product or service from a service provider;
delivering a digital certificate to the mobile station by the gateway when the identity of the mobile station have been verified;
requesting a product or service from the service provider; and
transmitting a digital signature by the mobile station accompanied by the digital certificate for a signature verification key as authorization to said service provider.
5 Assignments
0 Petitions
Accused Products
Abstract
A system, method and computer program for ordering, paying for and delivering goods and services through the use of certificates. These certificates insure that the buyer is only billed once for the good or service purchased and only for the correct amount. This system, method and computer program employs the authentication center used to enable access to a telecommunication infrastructure to bootstrap a public-key infrastructure. This system, method and computer program will validate the identity of the mobile station being used utilizing long term keys stored in the mobile station and an authentication center. The system, method and computer program will then utilize these keys and variables to generate digital certificates and signatures which enable the purchase of goods and services using a mobile station. The gateway will then verify the authenticity of any charges made based on the digital certificates and signatures received. Thus, a user of this system, method and computer program can purchase goods and services without fear of fraud or errors. This mobile station may be a cellular phone and when used with this system, method and computer program the cellular phone may be used similarly to a credit card but with the advantage of little possibility of fraud or error.
-
Citations
22 Claims
-
1. A method for ordering, authorizing, and delivering goods and services using a mobile station, comprising:
-
accessing a gateway by the mobile station and transmitting an identification code for mobile station to the gateway; verifying the identity of the mobile station by the gateway by accessing an authentication center of a cellular network and comparing mobile station generated variables computed by the mobile station with gateway generated variables computed by the gateway; verifying the legitimacy of the gateway by the mobile station by comparing the variables computed by the gateway with the variables computed by the mobile station; requesting a digital certificate by the mobile station from the gateway used to order and authorize a product or service from a service provider; delivering a digital certificate to the mobile station by the gateway when the identity of the mobile station have been verified; requesting a product or service from the service provider; and transmitting a digital signature by the mobile station accompanied by the digital certificate for a signature verification key as authorization to said service provider. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A system for ordering, authorizing and delivering goods and services using a mobile station, comprising:
-
a cellular network authentication module to verify that the mobile station is permitted to access a telecom infrastructure; a mobile station certificate acquisition module to request a digital certificate for the mobile station from a gateway; and a gateway certificate generation module to verify that the mobile station is authorized to receive the digital certificate by transmitting a mobile subscriber identifier received from the mobile station to an authentication center, calculate variables based on information received from the authentication center and compare them to variables computed by the mobile station, and issue the digital certificate to the mobile station when the variables match, wherein the mobile station verifies the legitimacy of the gateway by comparing the variables calculated by the gateway with the variables computed by the mobile station, the mobile station requesting a product or service from a service provider and transmitting a digital signature accompanied by the digital certificate for a signature verification key as authorization to the service provider. - View Dependent Claims (13, 14, 15, 16)
-
-
17. A computer program embodied on a computer readable medium and executable by a computer for ordering, authorizing and delivering goods and services using a mobile station, comprising:
-
a cellular network authentication code segment to verify that the mobile station is permitted to access a telecom infrastructure; a mobile station certificate acquisition code segment to request a digital certificate for the mobile station from a gateway; and a gateway certificate generation code segment to verify that the mobile station is authorized to receive the digital certificate by transmitting a mobile subscriber identifier received from the mobile station to an authentication center, calculate variables based on information received from the authentication center and compare them to variables computed by the mobile station, and issue the digital certificate to the mobile station when the variables match; wherein the mobile station verifies the legitimacy of the gateway by comparing the variables calculated by the gateway with the variables computed by the mobile station, the mobile station requesting a product or service from a service provider and transmitting a digital signature accompanied by the digital certificate for a signature verification key as authorization to the service provider. - View Dependent Claims (18, 19, 20, 21)
-
-
22. A system for ordering, authorizing and delivering goods and services using a mobile station, comprising:
-
a mobile station; a gateway, the mobile station accessing the gateway and transmitting an identification code for the mobile station to the gateway; an authentication center, the authentication center being part of a cellular network, the gateway verifying the identity of the mobile station by accessing the authentication center and comparing mobile station generated variables computed by the mobile station with gateway generated variables computed by the gateway, wherein the gateway delivers a digital certificate to the mobile station when the identity of the mobile station has been verified, the mobile station verifying the legitimacy of the gateway by comparing the variables computed by the gateway with the variables computed by the mobile station and requesting a digital certificate from the gateway to be used to order and authorize a product or service from a service provider, the mobile station requesting a product or service from the service provider and transmitting a digital signature and the digital certificate for a signature verification key as authorization to the service provider.
-
Specification