Internet third-party authentication using electronic tickets

US 7,266,684 B2
Filed: 08/08/2001
Issued: 09/04/2007
Est. Priority Date: 08/08/2000
Status: Active Grant

First Claim

Patent Images

1. A method of securely communicating confidential information among at least three consenting parties, said method comprising:

establishing a relationship among the parties;

creating a document initiated by one of the parties;

adding verifying information about at least two of the parties to said document in order to validate said document;

adding an expiration time to said document in order to validate said document;

at least one of the parties presenting said document to at least one other of the parties prior to communication of the confidential information there between; and

said other of the parties permitting said communication of the confidential information there between only if said document is valid and said expiration time has not passed,wherein at least two of the parties add respective preselected expiration times to said document in order to validate said document, said other of the parties permitting said communication of the confidential information there between only if the earliest expiration time has not passed.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method, software and apparatus facilitates one or more third-party agents to securely access a customer'"'"'s or other first party'"'"'s private personal and financial data or other such confidential information from a second party, preferably on the Internet. A security document or ticket is presented to the second party for verifying the customer'"'"'s consent to grant such access to the third party. The second party only communicates such confidential information to the third party if the security document is found to be valid. The security document, which can be at least partially encrypted, can also include a preselected expiration time, beyond which it is not valid.

118 Citations

View as Search Results

79 Claims

1. A method of securely communicating confidential information among at least three consenting parties, said method comprising:
- establishing a relationship among the parties;
  
  creating a document initiated by one of the parties;
  
  adding verifying information about at least two of the parties to said document in order to validate said document;
  
  adding an expiration time to said document in order to validate said document;
  
  at least one of the parties presenting said document to at least one other of the parties prior to communication of the confidential information there between; and
  
  said other of the parties permitting said communication of the confidential information there between only if said document is valid and said expiration time has not passed,wherein at least two of the parties add respective preselected expiration times to said document in order to validate said document, said other of the parties permitting said communication of the confidential information there between only if the earliest expiration time has not passed.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. A method according to claim 1, wherein at least a portion of said document is encrypted.
  - 3. A method according to claim 2, wherein at least a portion of said document is symmetrically encrypted.
  - 4. A method according to claim 2, wherein at least a portion of said document is asymmetrically encrypted.
  - 5. A method according to claim 2, wherein said encrypted information is capable of decryption using an encryption key.
  - 6. A method according to claim 5, wherein said encryption key is a public key.
  - 7. A method according to claim 5, wherein said encryption key is a private key.
  - 8. A method according to claim 7, wherein said private key is a multiple-use key.
  - 9. A method according to claim 7, wherein said private key is a one-time use key.
  - 10. A method according to claim 2, wherein said encrypted information is encrypted with a public key and capable of decryption using a private key.
  - 11. A method according to claim 1, wherein said document includes a digital signature of each of the parties.

12. A method of securely communicating confidential information among at least three parties, said method comprising:
- establishing an electronic communication relationship among all the parties;
  
  creating an electronic ticket initiated by a first of the parties;
  
  adding security information pertaining to said first party to said electronic ticket and then sending said electronic ticket to a second of the parties;
  
  adding security information pertaining to said second party to said electronic ticket and then sending said electronic ticket to a third of said parties;
  
  adding security information pertaining to said third party to said electronic ticket;
  
  validating said electronic ticket by verifying said security information pertaining to said at least three parties;
  
  at least one of the parties presenting said electronic ticket to another of the parties prior to communicating confidential information there between; and
  
  said other of the parties permitting said communication of confidential information there between only after said electronic ticket is validated,wherein at least two of the parties add respective preselected expiration times to said electronic ticket in order to validate said electronic ticket, said other of the parties permitting said communication of the confidential information there between only if the earliest expiration time has not passed.
- View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20, 21, 22)
- - 13. A method according to claim 12, wherein at least part of said security information pertaining to at least two of the respective parties is symmetrically encrypted.
  - 14. A method according to claim 12, wherein at least part of said security information pertaining to at least two of the respective parties is asymmetrically encrypted.
  - 15. A method according to claim 12, wherein said electronic ticket includes a digital signature of at least one of the respective parties.
  - 16. A method according to claim 12, wherein said encrypted security information pertaining to at least one of the respective parties is capable of decryption using an encryption key.
  - 17. A method according to claim 16, wherein said encryption key is a public key.
  - 18. A method according to claim 16, wherein said encryption key is a private key.
  - 19. A method according to claim 18, wherein said private key is a multiple-use key.
  - 20. A method according to claim 18, wherein said private key is a single use key.
  - 21. A method according to claim 12, wherein each of the parties has a digital certificate, said respective parties each digitally signing said electronic ticket.
  - 22. A method according to claim 12, wherein at least one of the parties adds a preselected expiration time to said electronic ticket, said other of the parties permitting said communication of confidential information there between only if said expiration time has not passed.

23. A method of electronically communicating secure confidential information among at least three parties, said method comprising:
- establishing an electronic communication relationship among all the parties;
  
  creating an electronic ticket initiated by a first of the parties;
  
  adding a digital signature of the first party and encrypted security information pertaining to the first party to said electronic ticket;
  
  adding a digital signature of the second party and encrypted security information pertaining to the second party to said electronic ticket;
  
  adding a digital signature of the third party and encrypted security information pertaining to the third party to said electronic ticket;
  
  validating said electronic ticket by verifying said security information pertaining to said at least three parties;
  
  at least one of the parties presenting said electronic ticket to another of the parties prior to communicating confidential information there between; and
  
  said other of the parties permitting said communication of confidential information there between only after said electronic ticket is validated, wherein at least two of the parties add respective preselected expiration times to said electronic ticket in order to validate said electronic ticket, said other of the parties permitting said communication of confidential information there between only if the earliest of said expiration times has not passed.
- View Dependent Claims (24, 25, 26)
- - 24. A method according to claim 23, wherein at least one of the parties adds a preselected expiration time to said electronic ticket in order to validate said electronic ticket, said other of the parties permitting said communication of confidential information there between only if said expiration time has not passed.
  - 25. A method according to claim 23, wherein at least part of said electronic ticket is symmetrically encrypted.
  - 26. A method according to claim 23, wherein at least part of said electronic ticket is asymmetrically encrypted.

27. A method for a first party to securely communicate confidential information of at least a second party with at least a third party, said method comprising the steps of:
- adding encrypted security information pertaining to the first party to a security document created by one of the first, second and third parties;
  
  requiring said security document to be presented to the first party by one of the second and third parties prior to permitting the communication of confidential information;
  
  determining that said security document includes encrypted security information pertaining to each of the first, second and third parties in order to verify that said security document is valid; and
  
  permitting the communication of confidential information of the second party with the third party only after verifying that said security document is valid, wherein said security document is an electronic document, said encrypted security information being added electronically, and the confidential information being communicated electronically, including the step of requiring a preselected expiration time to be added to said security document after at least one of the other parties has added another preselected expiration time, and communicating the confidential information only if the earliest expiration time has not passed.
- View Dependent Claims (28, 29, 30, 31, 32, 33, 34, 35)
- - 28. A method according to claim 27, further including the step of requiring an expiration time to be added to said security document, and permitting the communication of confidential information of the second party only if said expiration time has not passed.
  - 29. A method according to claim 28, wherein said expiration time is added electronically.
  - 30. A method according to claim 27, wherein said expiration time is added electronically.
  - 31. A method according to claim 27, wherein said at least a portion of said document is symmetrically encrypted.
  - 32. A method according to claim 27, wherein said at least a portion of said document is asymmetrically encrypted.
  - 33. A method according to claim 27, wherein said encryption information is capable of being decrypted using an encryption key.
  - 34. A method according to claim 33, wherein said encryption key is a public key.
  - 35. A method according to claim 33, wherein said encryption key is a private key.

36. A computer-readable medium for securely communicating confidential information among at least three consenting parties, the computer-readable medium having computer-executable instructions thereon for performing the steps of:
- establishing a relationship among the parties;
  
  creating a document initiated by one of the parties;
  
  receiving verifying information about at least two of the parties;
  
  adding said verifying information to said document in order to validate said document;
  
  presenting said document from at least one of the parties to at least one other of the parties prior to communication of the confidential information there between; and
  
  preventing said other of the parties from permitting said communication of the confidential information unless said document is valid, further comprising computer-executable instructions thereon for performing the steps of receiving and adding a preselected expiration time from each of at least two of the parties to said document in order to validate said document, and preventing said other of the parties from permitting said communication of the confidential information if the earliest expiration time has passed.
- View Dependent Claims (37, 38, 39, 40, 41, 42, 43, 44, 45, 46)
- - 37. A computer-readable medium according to claim 36, further comprising computer-executable instructions thereon for performing the steps of receiving and adding a preselected expiration time to said document in order to validate said document, and preventing said other of the parties from permitting said communication if said expiration time has passed.
  - 38. A computer-readable medium according to claim 36, wherein at least a portion of said document is encrypted.
  - 39. A computer-readable medium according to claim 38, wherein at least a portion of said document is symmetrically encrypted.
  - 40. A computer-readable medium according to claim 38, wherein said encrypted information is capable of decryption using an encryption key.
  - 41. A computer-readable medium according to claim 40, wherein said encryption key is a public key.
  - 42. A computer-readable medium according to claim 40, wherein said encryption key is a private key.
  - 43. A computer-readable medium according to claim 42, wherein said private key is a multiple-use key.
  - 44. A computer-readable medium method according to claim 42, wherein said private key is a one-time use key.
  - 45. A computer-readable medium according to claim 36, wherein at least a portion of said document is asymmetrically encrypted.
  - 46. A computer-readable medium according to claim 36, wherein said document includes a digital signature of each of the at least three parties.

47. A computer-readable medium for electronically communicating secure confidential information among at least three consenting parties, the computer-readable medium having computer-executable instructions thereon for performing the steps of:
- establishing an electronic communication relationship among all the parties;
  
  creating an electronic ticket initiated by a first of the parties;
  
  adding a digital signature of the first party and encrypted security information pertaining to the first party to said electronic ticket;
  
  adding a digital signature of the second party and encrypted security information pertaining to the second party to said electronic ticket;
  
  adding a digital signature of the third party and encrypted security information pertaining to the third party to said electronic ticket;
  
  validating said electronic ticket by verifying said security information pertaining to said at least three parties;
  
  presenting said electronic ticket from at least one of the parties to another of the parties prior to communicating confidential information there between;
  
  and preventing said other of the parties from permitting said communication of confidential information there between if said electronic ticket is not validated, further comprising computer-executable instructions thereon for performing the steps of adding a preselected expiration time from each of at least two of the parties to said electronic ticket in order to validate said electronic ticket, and preventing said other of the parties from permitting said communication of confidential information there between if the earliest of said expiration times has passed.
- View Dependent Claims (48, 49, 50)
- - 48. A computer-readable medium according to claim 47, further comprising computer-executable instructions thereon for performing the steps of adding a preselected expiration time from at least one of the parties to said electronic ticket in order to validate said electronic ticket, and preventing said other of the parties from permitting said communication of confidential information if said expiration time has passed.
  - 49. A computer-readable medium according to claim 47, wherein at least part of said electronic ticket is symmetrically encrypted.
  - 50. A computer-readable medium according to claim 47, wherein at least part of said electronic ticket is asymmetrically encrypted.

51. An apparatus for electronically communicating secure confidential information among at least three parties, said apparatus comprising:
- means for establishing an electronic communication relationship among all the parties;
  
  means for creating an electronic ticket initiated by a first of the parties;
  
  means for adding a digital signature of the first party and encrypted security information pertaining to the first party to said electronic ticket;
  
  means for adding a digital signature of the second party and encrypted security information pertaining to the second party to said electronic ticket;
  
  means for adding a digital signature of the third party and encrypted security information pertaining to the third party to said electronic ticket;
  
  means for validating said electronic ticket by verifying said security information pertaining to said at least three parties;
  
  means for presenting said electronic ticket from at least one of the parties to another of the parties prior to communicating confidential information there between; and
  
  means for preventing said other of the parties from permitting said communication of confidential information there between if said electronic ticket is not validated, further comprising means for adding a preselected expiration time from each of at least two of the parties to said electronic ticket in order to validate said electronic ticket, and preventing said other of the parties from permitting said communication of confidential information there between if the earliest of said expiration times has passed.
- View Dependent Claims (52, 53, 54, 55, 56, 57, 58, 59)
- - 52. An apparatus according to claim 51, further comprising means for adding a preselected expiration time from at least one of the parties to said electronic ticket in order to validate said electronic ticket, and preventing said other of the parties from permitting said communication of confidential information if said expiration time has passed.
  - 53. An apparatus according to claim 51, wherein at least part of said encrypted security information is symmetrically encrypted.
  - 54. An apparatus according to claim 51, wherein at least part of said encrypted security information is asymmetrically encrypted.
  - 55. A method according to claim 51, wherein said encrypted security information is capable of decryption using an encryption key.
  - 56. A method according to claim 55, wherein said encryption key is a public key.
  - 57. A method according to claim 55, wherein said encryption key is a private key.
  - 58. A method according to claim 57, wherein said private key is a multiple-use key.
  - 59. A method according to claim 57, wherein said private key is a one-time use key.

60. An apparatus for electronically communicating secure confidential information among at least three parties, said apparatus comprising:
- at least one computer having at least one processor that processes data and executes instructions, at least one data storage device that stores data, and at least one memory device that stores instructions and other data, said instructions in said memory device causing said processor to;
  
  establish an electronic communication relationship among all the parties;
  
  create an electronic ticket initiated by a first of the parties;
  
  add a digital signature of the first party and encrypted security information pertaining to the first party to said electronic ticket;
  
  add a digital signature of the second party and encrypted security information pertaining to the second party to said electronic ticket;
  
  add a digital signature of the third party and encrypted security information pertaining to the third party to said electronic ticket;
  
  validate said electronic ticket by verifying said security information pertaining to said at least three parties;
  
  present said electronic ticket from at least one of the parties to another of the parties prior to communicating confidential information there between; and
  
  prevent said other of the parties from permitting said communication of confidential information there between if said electronic ticket is not validated, wherein said instructions in said memory device further cause to add a preselected expiration time from each of at least two of the parties to said electronic ticket in order to validate said electronic ticket, and to prevent said other of the parties from permitting said communication of confidential information there between if the earliest of said expiration times has passed.
- View Dependent Claims (61, 62, 63, 64, 65, 66, 67, 68)
- - 61. An apparatus according to claim 60, wherein said instructions in said memory device further cause to add a preselected expiration time from at least one of the parties to said electronic ticket in order to validate said electronic ticket, and to prevent said other of the parties from permitting said communication of confidential information if said expiration time has passed.
  - 62. An apparatus according to claim 60, wherein at least part of said encrypted security information is symmetrically encrypted.
  - 63. An apparatus according to claim 60, wherein at least part of said encrypted security information is asymmetrically encrypted.
  - 64. A method according to claim 60, wherein said encrypted security information is capable of decryption using an encryption key.
  - 65. A method according to claim 64, wherein said encryption key is a public key.
  - 66. A method according to claim 64, wherein said encryption key is a private key.
  - 67. A method according to claim 66, wherein said private key is a multiple-use key.
  - 68. A method according to claim 66, wherein said private key is a one-time use key.

69. A method of securely communicating confidential information among at least three consenting parties, said method comprising:
- establishing a relationship among the parties;
  
  creating a document initiated by one of the parties;
  
  adding verifying information about at least two of the parties to said document in order to validate said document, at least a portion of said document being encrypted;
  
  at least one of the parties presenting said document to at least one other of the parties prior to communication of the confidential information there between; and
  
  said other of the parties permitting said communication of the confidential information there between only if said document is valid, wherein at least two of the parties add respective preselected expiration times to said document in order to validate said document, said other of the parties permitting said communication of the confidential information there between only if the earliest expiration time has not passed.
- View Dependent Claims (70, 71, 72, 73, 74, 75, 76, 77, 78, 79)
- - 70. A method according to claim 69, further comprising adding an expiration time to said document in order to validate said document, said other of the parties permitting said communication there between only if said expiration time has not passed.
  - 71. A method according to claim 69, wherein at least a portion of said document is symmetrically encrypted.
  - 72. A method according to claim 69, wherein at least a portion of said document is asymmetrically encrypted.
  - 73. A method according to claim 69, wherein said document includes a digital signature of each of the parties.
  - 74. A method according to claim 69, wherein said encrypted information is capable of decryption using an encryption key.
  - 75. A method according to claim 74, wherein said encryption key is a public key.
  - 76. A method according to claim 74, wherein said encryption key is a private key.
  - 77. A method according to claim 76, wherein said private key is a multiple-use key.
  - 78. A method according to claim 76, wherein said private key is a one-time use key.
  - 79. A method according to claim 69, wherein said encrypted information is encrypted with a public key and capable of decryption using a private key.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Wells Fargo Bank NA (Wells Fargo & Company)
Original Assignee
Wachovia Corporation (Wells Fargo & Company)
Inventors
Jancula, Jeffrey John
Primary Examiner(s)
Moise; Emmanuel L.
Assistant Examiner(s)
NGUYEN, MINH DIEU T

Application Number

US09/924,712
Publication Number

US 20020023208A1
Time in Patent Office

2,218 Days
Field of Search

713/200, 713/176, 713/156, 705 75- 76, 705/80, 726 2- 5
US Class Current

713/156
CPC Class Codes

G06F 21/33   using certificates

G06F 21/6209   to a single file or object,...

G06Q 20/3821   Electronic credentials

G06Q 20/401   Transaction verification

G06Q 30/06   Buying, selling or leasing ...

G06Q 50/188   Electronic negotiation

H04L 63/0807   using tickets, e.g. Kerbero...

H04L 63/126   the source of the received ...

Internet third-party authentication using electronic tickets

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

118 Citations

79 Claims

Specification

Solutions

Use Cases

Quick Links

Internet third-party authentication using electronic tickets

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

118 Citations

79 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links