Centralized identification and authentication system and method
First Claim
1. A Method for positively identifying and authenticating a user in e-commerce for a transaction based on a digital identity issued by a Central-Entity with whom the user has a pre-existing relationship, the method comprising the steps of:
- a. the user communicates with an External-Entity over a communication network and needs to perform a secure transaction with the External-Entity, wherein the user does not necessarily have a pre-existing relationship with the External-Entity;
b. the External-Entity requires the user to authenticate himself by providing a valid digital identity before executing the transaction;
c. the user establishes communication with the Central-Entity over a communication network and submits a request for a dynamic, non-predictable and time-dependent SecureCode in response to the Extemal-Entity'"'"'s requirement;
d. the Central-Entity;
i. dynamically generates a dynamic, non-predictable and time-dependent SecureCode for the user in response to the user request;
ii. algorithmically combines said generated SecureCode with user-specific information before providing the SecureCode to the user;
iii. maintains a copy of said generated SecureCode in its system; and
iv. provides said generated SecureCode to the user,e. the Extemal-Entity receives a digital identity from the user, wherein the digital identity comprises a UserName and said generated SecureCode, and forwards said digital identity to the Central-Entity for positive identification, and authentication of the user;
f. the Central-Entity receives said digital identity, validates said digital identity based on said SecureCode maintained in its system and if valid;
positively identifies and authenticates the user and sends an affirmation message to the Extemal-Entity; and
g. upon receipt of an affirmation message from the Central-Entity, the Extemal-Entity executes the transaction.
2 Assignments
0 Petitions
Accused Products
Abstract
A method and system is provided by a Central-Entity, for identification and authorization of users over a communication network such as Internet. Central-Entity centralizes users personal and financial information in a secure environment in order to prevent the distribution of user'"'"'s information in e-commerce. This information is then used to create digital identity for the users. The digital identity of each user is dynamic, non predictable and time dependable, because it is a combination of user name and a dynamic, non predictable and time dependable secure code that will be provided to the user for his identification.
The user will provide his digital identity to an External-Entity such as merchant or service provider. The External-Entity is dependent on Central-Entity to identify the user based on the digital identity given by the user. The External-Entity forwards user'"'"'s digital identity to the Central-Entity for identification and authentication of the user and the transaction.
The identification and authentication system provided by the Central-Entity, determines whether the user is an authorized user by checking whether the digital identity provided by the user to the External-Entity, corresponds to the digital identity being held for the user by the authentication system. If they correspond, then the authentication system identifies the user as an authorized user, and sends an approval identification and authorization message to the External-Entity, otherwise the authentication system will not identify the user as an authorized user and sends a denial identification and authorization message to the External-Entity.
-
Citations
14 Claims
-
1. A Method for positively identifying and authenticating a user in e-commerce for a transaction based on a digital identity issued by a Central-Entity with whom the user has a pre-existing relationship, the method comprising the steps of:
-
a. the user communicates with an External-Entity over a communication network and needs to perform a secure transaction with the External-Entity, wherein the user does not necessarily have a pre-existing relationship with the External-Entity; b. the External-Entity requires the user to authenticate himself by providing a valid digital identity before executing the transaction; c. the user establishes communication with the Central-Entity over a communication network and submits a request for a dynamic, non-predictable and time-dependent SecureCode in response to the Extemal-Entity'"'"'s requirement; d. the Central-Entity; i. dynamically generates a dynamic, non-predictable and time-dependent SecureCode for the user in response to the user request; ii. algorithmically combines said generated SecureCode with user-specific information before providing the SecureCode to the user; iii. maintains a copy of said generated SecureCode in its system; and iv. provides said generated SecureCode to the user, e. the Extemal-Entity receives a digital identity from the user, wherein the digital identity comprises a UserName and said generated SecureCode, and forwards said digital identity to the Central-Entity for positive identification, and authentication of the user; f. the Central-Entity receives said digital identity, validates said digital identity based on said SecureCode maintained in its system and if valid;
positively identifies and authenticates the user and sends an affirmation message to the Extemal-Entity; andg. upon receipt of an affirmation message from the Central-Entity, the Extemal-Entity executes the transaction. - View Dependent Claims (2, 3, 4, 5, 6, 13)
-
-
7. A System for positively identifying and authenticating a user in e-commerce for a transaction based on a digital identity issued by a Central-Entity with whom the user has a pre-existing relationship, the system comprising:
-
a. the user in communication with an External-Entity over a communication network and needing to perform a secure transaction with the External-Entity, wherein the user does not necessarily have a pre-existing relationship with the External-Entity; b. the External-Entity adapted to require the user to authenticate himself by providing a valid digital identity before executing the transaction; c. the user in communication with the Central-Entity over a communication network and with a request for a dynamic, non-predictable and time-dependent SecureCode in response to the Extemal-Entity'"'"'s requirement; d. the Central-Entity adapted to; i. dynamically generate a dynamic, non-predictable and time-dependent SecureCode for the user in response to the user request; ii. algorithmically combine said generated SecureCode with user-specific information before providing the SecureCode to the user; iii. maintain a copy of said generated SecureCode in its system; and iv. provide said SecureCode to the user, e. the Extemal-Entity adapted to receive a digital identity from the user, wherein the digital identity comprises a UserName and said generated SecureCode, and to forward said digital identity to the Central-Entity to identify and authenticate the user; f. the Central-Entity further adapted to validate the received said digital identity based on said SecureCode maintained in its system, and if valid;
to positively identify and authenticate the user, and send an affirmation message to the Extemal-Entity; andg. the Extemal-Entity further adapted to execute the transaction upon receipt of an affirmation message from the Central-Entity. - View Dependent Claims (8, 9, 10, 11, 12, 14)
-
Specification
-
- Resources
-
Current AssigneeFactor2 Multimedia Systems, LLC
-
Original AssigneeKamran Asghari-Kamrani, Nader Asghari-Kamrani
-
InventorsAsghari-Kamrani, Nader, Asghari-Kamrani, Kamran
-
Primary Examiner(s)Barron, Gilberto
-
Assistant Examiner(s)Nobahar, Abdulhakim
-
Application NumberUS09/940,635Publication NumberTime in Patent Office2,414 DaysField of Search713/171, 713/172, 713/201, 713/202, 713/158, 726/5, 705/39, 705/64, 705/67US Class Current726/5CPC Class CodesG06F 21/31 User authenticationG06F 21/6245 Protecting personal data, e...G06F 2221/2115 Third partyG06Q 20/10 specially adapted for elect...G06Q 20/341 Active cards, i.e. cards in...G06Q 20/3674 involving authenticationG06Q 20/382 insuring higher security of...G06Q 20/4014 Identity check for transact...G07F 7/1008 Active credit-cards provide...H04L 63/0421 Anonymous communication, i....H04L 63/0838 using one-time-passwords
