Method and system for secure, authorized e-mail based transactions
First Claim
1. A method of conducting a secure transaction with an on-line service while offline comprising the steps of:
- issuing a transaction authorization token to a user from an application server for the on-line service while the user is online with the on-line service;
preparing an off-line transaction object containing data to specify and request the secure transaction;
sending a message to the on-line service, said message containing the off-line transaction object and the transaction authorization token;
upon receipt of said message, the application server validating the transaction authorization token to authenticate the user and to authorize the secure transaction, wherein the application server performs said validating while the user is offline from the on-line service; and
executing the off-line transaction object if the secure transaction is authorized.
12 Assignments
0 Petitions
Accused Products
Abstract
Method and system for secure off-line transactions using a security access token for authentication and authorization of transactions. The user requests and receives the token from an application server of a desired service while on-line, logs off, prepares a transaction for entry into the system, and sends a message to the application server. The message contains a transaction object, such as a transaction, a query, an entry, an update, a revision, or the like combined with transaction data and the token previously supplied by the server. The server validates the token and executes the transaction object if the user is authorized for the transaction.
32 Citations
31 Claims
-
1. A method of conducting a secure transaction with an on-line service while offline comprising the steps of:
-
issuing a transaction authorization token to a user from an application server for the on-line service while the user is online with the on-line service; preparing an off-line transaction object containing data to specify and request the secure transaction; sending a message to the on-line service, said message containing the off-line transaction object and the transaction authorization token; upon receipt of said message, the application server validating the transaction authorization token to authenticate the user and to authorize the secure transaction, wherein the application server performs said validating while the user is offline from the on-line service; and executing the off-line transaction object if the secure transaction is authorized. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30)
-
-
31. A method of conducting a secure transaction with an on-line service while offline comprising the steps of:
-
issuing a transaction authorization token to a user from an application server for the on-line service while the user is online with the on-line service; preparing an off-line transaction object containing data to specify and request the secure transaction; sending a message to the on-line service, said message containing the off-line transaction object and the transaction authorization token; receiving said message, and upon receipt of said message, the application server for the on-line service validating the transaction authorization token to authenticate the user and to authorize the secure transaction; and executing the off-line transaction object upon validation of the transaction authorization token, wherein the user is not required to be online with the on-line service for any one or more of the group comprising;
said preparing, said sending, said receiving, or said executing.
-
Specification