Home server including a proxy facility, for executing an authentication and an encryption process instead of a user terminal, in an electronic commercial transaction
First Claim
1. A proxy server, provided between a user terminal and an electronic market server, including a proxy facility for executing authentication and encryption to the electronic market server, instead of the user terminal, in an electronic commercial transaction, comprising:
- an establishing means for establishing an encrypted communication session between the user terminal and the proxy server, using public and secret keys of the user terminal and an electronic signature both transmitted from the user terminal;
a proxy means for executing authentication of a certificate and exchanging a common key X between the proxy server and the electronic market server, using public and secret keys of the electronic market server;
an informing means for informing the common key X to the user terminal through the encrypted communication session, which common key X is encrypted by using a common key X′
that is exchanged between the user terminal and the proxy server; and
a home card including an encryption managing means for executing the electronic signature and authentication of the certificate in order to execute authentication and exchange of the common key to the electronic market server, said home card cooperating with an access card connected to said user terminal to establish said encrypted communication session and to exchange said common key X′
,wherein the home card further includes a logic circuit which enables an access by using a first password input from the user terminal; and
a security releasing means for releasing the security for the proxy means by using a second password input from the user terminal, after establishment of the encrypted communication session to the user terminal in which an access was permitted,whereby an encrypted communication is executed directly between the user terminal and the electronic market server by using the common key X that is exchanged between the proxy server and the electronic market server.
1 Assignment
0 Petitions
Accused Products
Abstract
A home server includes a proxy facility and is provided between a user terminal and an electronic market server for executing authentication and encryption to the electronic market server, instead of the user terminal, in an electronic commercial transaction. The proxy facility includes: an establishing unit for establishing an encrypted communication session between the user terminal and the home server, using public/secret keys of the user terminal and an electronic signature both transmitted from the user terminal; a proxy unit for executing authentication of a certificate and exchanging a common key between the home server and the electronic market server, using public/secret keys of the electronic market server; and an information unit for informing the common key to the user terminal through the encrypted communication session; wherein an encrypted communication is executed between the user terminal and the electronic market server by using the common key that was exchanged between the home server and the electronic market server.
32 Citations
8 Claims
-
1. A proxy server, provided between a user terminal and an electronic market server, including a proxy facility for executing authentication and encryption to the electronic market server, instead of the user terminal, in an electronic commercial transaction, comprising:
-
an establishing means for establishing an encrypted communication session between the user terminal and the proxy server, using public and secret keys of the user terminal and an electronic signature both transmitted from the user terminal; a proxy means for executing authentication of a certificate and exchanging a common key X between the proxy server and the electronic market server, using public and secret keys of the electronic market server; an informing means for informing the common key X to the user terminal through the encrypted communication session, which common key X is encrypted by using a common key X′
that is exchanged between the user terminal and the proxy server; anda home card including an encryption managing means for executing the electronic signature and authentication of the certificate in order to execute authentication and exchange of the common key to the electronic market server, said home card cooperating with an access card connected to said user terminal to establish said encrypted communication session and to exchange said common key X′
,wherein the home card further includes a logic circuit which enables an access by using a first password input from the user terminal; and
a security releasing means for releasing the security for the proxy means by using a second password input from the user terminal, after establishment of the encrypted communication session to the user terminal in which an access was permitted,whereby an encrypted communication is executed directly between the user terminal and the electronic market server by using the common key X that is exchanged between the proxy server and the electronic market server. - View Dependent Claims (2, 3, 4)
-
-
5. An access card used in an electronic commercial transaction constituted by a user terminal, a proxy server and an electronic market server;
- the access card being connected to the user terminal; and
the proxy server including a proxy facility being provided between the user terminal and the electronic market server for executing authentication and encryption to the electronic market server, instead of the user terminal;
the access card comprising;an establishment means for establishing an encrypted communication session between the user terminal and the proxy server including the proxy facility; and an encrypted communication means far receiving a common key X, which is exchanged between the proxy server and the electronic market server after an authentication process for the electronic market server and is encrypted by using a common key X′
that is exchanged between the user terminal and the proxy server, from the proxy server trough the encrypted communication session, and for executing the encrypted communication with the electronic market server directly by using the common key X, whereinsaid proxy server comprises a home card including an encryption managing means for executing the electronic signature and authentication of the certificate in order to execute authentication and exchange of the common key to the electronic market server, said home card cooperating with the access card connected to said user terminal to establish said encrypted communication session and to exchange said common key X′
, wherein the home card further includes a logic circuit which enables an access by using a first password input from the user terminal; and
a security releasing means for releasing the security for the proxy means by using a second password input from the user terminal, after establishment of the encrypted communication session to the user terminal in which an access was permitted.
- the access card being connected to the user terminal; and
-
6. A server being able to communicate with a user terminal and the opposing server having an authentication facility to authenticate the user terminal in accordance with predetermined procedures in an electronic commercial transaction to perform encrypted communication with the user terminal directly, comprising:
-
a reception unit to receive an identification information and a request for executing an authentication process, from an access card connected to the user terminal; a decision means for determining whether or not the identification information is stored in an internal or external memory; a proxy means for executing a part, or all, communication in accordance with the predetermined procedures when the identification information is stored in the memory; an informing means for informing a common key X to the user terminal through the encrypted communication session, which common key X is encrypted by using a common key X′
that is exchanged between the user terminal and the server; anda home card including an encryption managing means for executing the electronic signature and authentication of the certificate in order to execute authentication and exchange of the common key to the electronic market server, said home card cooperating with said access card to establish an encrypted communication session, to receive said request, and to exchange said common key X′
, wherein the home card further includes a logic circuit which enables an access by using a first password input from the user terminal; and
a security releasing means for releasing the security for the proxy means by using a second password input from the user terminal, after establishment of the encrypted communication session to the user terminal in which an access was permitted.
-
-
7. A storage media storing a predetermined program used in a first server being able to communicate with a user terminal and a second server having an authentication facility to authenticate the user terminal in accordance with predetermined procedures in an electronic commercial transaction to perform encrypted communication with the user terminal directly, comprising:
-
a first step of receiving an identification information and a request for executing an authentication process, from an access card connected to the user terminal; a second step of determining whether or not the identification information is stored in an internal or external memory; a third step of executing a part, or all, communication in accordance with the predetermined procedures when the identification information is stored in the memory; and a fourth step of informing a common key X to the user terminal through an encrypted communication session, which common key X is encrypted by using a common key X′
that is exchanged between the user terminal and the first server, whereinsaid first server comprises a home card including an encryption managing means for executing the electronic signature and authentication of the certificate in order to execute authentication and exchange of the common key to the electronic market server, said home card cooperating with said access card to establish said encrypted communication session, to receive said request, and to exchange said common key X′
, wherein the home card further includes a logic circuit which enables an access by using a first password input from the user terminal; and
a security releasing means for releasing the security for the proxy means by using a second password input from the user terminal, after establishment of the encrypted communication session to the user terminal in which an access was permitted.
-
-
8. A user terminal being able to communicate with a first server and a second server;
-
wherein the first server includes a proxy facility for executing authentication with the second server instead of the user terminal, when receiving an identification information and a request for executing an authentication process from an access card connected to the user terminal; and
the second server has an authentication facility to authenticate the user terminal in accordance with predetermined procedures and to provide a secret key X for an authorized destination as a result of authentication to perform encrypted communication with the user terminal directly;wherein the user terminal comprises a transmitting unit to transmit the identification information used for identifying its own terminal and the request for executing the authentication process, to the first server, and a receiving unit to receive the secret key X from the first server, which secret key X is encrypted by using a common key X′
that is exchanged between the user terminal and the first server; andwherein said first server comprises a home card including an encryption managing means for executing the electronic signature and authentication of the certificate in order to execute authentication and exchange of the common key to the electronic market server, said home card cooperating with said access card to establish an encrypted communication session, receive said request, and exchange said common key X′
, wherein the home card further includes a logic circuit which enables an access by using a first password input from the user terminal; and
a security releasing means for releasing the security for the proxy means by using a second password input from the user terminal, after establishment of the encrypted communication session to the user terminal in which an access was permitted.
-
Specification