Systems and methods for identity verification for secure transactions

US 7,392,388 B2
Filed: 07/27/2001
Issued: 06/24/2008
Est. Priority Date: 09/07/2000
Status: Expired due to Term

First Claim

Patent Images

1. An identity verification secure transaction system comprising:

a host computer for storing a user code associated with a user, for supplying a pseudo-random security string for a transaction, wherein said host computer determines a one time transaction code by selecting characters from said pseudo-random security string on a positional basis determined by the value of each digit of the user code; and

at least one electronic device in electronic communication with said host computer for administering said transaction by receiving said pseudo-random security string and for transmitting a user generated transaction input code to the host computer, wherein said user generated transaction input code is determined by selecting characters from said pseudo-random security string on a positional basis determined by each digit of the user code, wherein said user generated transaction input code is sent to said host computer; and

wherein said host computer verifies that said user generated input code matches said one time transaction code.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Secure identification of a user in an electronic communications environment, wherein a host computer communicates with a plurality of electronic devices operated by the user. The user is issued a user code, known only to the user and stored in the host computer. User identification involves the host computer generating a pseudo-random security string and applying the user code to the pseudo-random security string to generate a transaction code. The host computer also transmits the pseudo-random security string to one of the electronic devices which displays the pseudo-random security string to the user. The user generates the transaction code by applying their known user code to the displayed pseudo-random security string. The user enerated transaction code is entered into an electronic device, then transmitted back to the host computer. Positive identification is achieved when the host computer determined transaction code matches the user generated transaction code.

183 Citations

25 Claims

1. An identity verification secure transaction system comprising:
- a host computer for storing a user code associated with a user, for supplying a pseudo-random security string for a transaction, wherein said host computer determines a one time transaction code by selecting characters from said pseudo-random security string on a positional basis determined by the value of each digit of the user code; and
  
  at least one electronic device in electronic communication with said host computer for administering said transaction by receiving said pseudo-random security string and for transmitting a user generated transaction input code to the host computer, wherein said user generated transaction input code is determined by selecting characters from said pseudo-random security string on a positional basis determined by each digit of the user code, wherein said user generated transaction input code is sent to said host computer; and
  
  wherein said host computer verifies that said user generated input code matches said one time transaction code.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
- - 2. The system of claim 1, wherein said at least one electronic device is an Electronic Funds Transfer Point of Sale (EFT/POS) device.
  - 3. The system of claim 1, wherein said at least one electronic device is comprised of an Electronic Funds Transfer Point of Sale (EFT/POS) device for administering said transaction and receiving said user generated transaction input code and a wireless device associated with said user for receiving and displaying said pseudo-random security string.
  - 4. The system of claim 3, where said one time transaction code is received and displayed by said wireless device instead of said pseudo-random security string.
  - 5. The system of claim 1, wherein said at least one electronic device is a wireless device associated with said user.
  - 6. The system of claim 5, wherein said one time transaction code is sent to said wireless device instead of said pseudo-random security string.
  - 7. The system of claim 1, wherein said at least one electronic device is comprised of:
    - a user computer, in electronic communication with said host computer, for receiving and displaying said pseudo-random security string and receiving said user generated transaction input code; and
      
      a merchant computer, in electronic communication with said user computer and said host computer, for administering said transaction, wherein one of said at least one electronic device relays said user generated transaction input code to said host computer for user identity verification.
  - 8. The system of claim 7, wherein said user computer and said merchant computer communicate via the Internet.
  - 9. The system of claim 7, wherein said one time transaction code is received and displayed by said user computer instead of said pseudo-random security string.
  - 10. The system of claim 1, wherein said at least one electronic device is comprised of:
    - a wireless device associated with said user for receiving and displaying said pseudo-random security string, a user computer, in electronic communication with said host computer, for receiving said user generated transaction input code; and
      
      a merchant computer, in electronic communication with said user computer and said host computer, for administering said transaction, wherein one of said at least one electronic device relays said user generated transaction input code to said host computer for user identity verification.
  - 11. The system of claim 10, wherein said one time transaction code is received and displayed by said wireless device instead of said pseudo-random security string.
  - 12. The system of claim 1, wherein said host computer upon verification allows completion of said transaction.
  - 13. The system of claim 1, wherein said host computer upon verification allows access to a database.
  - 14. The system of claim 1, wherein said host computer upon verification allows access to account information.
  - 15. The identity verification secure transaction system of claim 1, wherein said user interaction input code is entered through any area of a touch sensitive display.
  - 16. The identity verification secure transaction system of claim 1, wherein said user generated transaction input code is determined by the user.

17. A method of verifying an identity for conducting secure transactions comprising the steps of:
- storing information about a user code associated with a host computer;
  
  generating a pseudo-random security string by said host computer;
  
  determining a transaction code by selecting characters from said pseudo-random security string on a positional basis determined by the value of each digit of the user code;
  
  transmitting said pseudo-random security string to at least one electronic device;
  
  displaying said pseudo-random security string on said at least one electronic device for use by said user;
  
  receiving from the user said user generated transaction input code on said at least one electronic device, wherein said user generated transaction input code is determined by the user selecting characters from said pseudo-random security string on a positional basis determined by each digit of the user code;
  
  wherein said at least one electronic device transmits said user generated transaction input code to said host computer; and
  
  said host computer determines whether said transaction code and said user generated transaction input code match.
- View Dependent Claims (18, 19, 20, 21, 22, 23, 24, 25)
- - 18. The method of claim 17, further comprising the step of completing a transaction when said transaction code and said user generated transaction input code match.
  - 19. The method of claim 18, further comprising the step of providing access to a database when said transaction code and said user generated transaction input code match.
  - 20. The method of claim 18, further comprising the step of providing access to account information when said transaction code and said user generated transaction input code match.
  - 21. The method of claim 17, further comprising the step of transmitting and displaying said pseudo-random security string on an Electronic Funds Transfer Point of Sale (EFT/POS) device.
  - 22. The method of claim 17, further comprising the step of transmitting and displaying said pseudo-random security string on a wireless device associated with said user.
  - 23. The method of claim 17, further comprising the step of transmitting and displaying said pseudo-random security string on a user computer wherein said user computer is in electronic communication with said host computer.
  - 24. The method of claim 23, further comprising the step of communicating between the said host computer and said user computer via the Internet.
  - 25. The method of claim 17, further comprising the step of transmitting and display said transaction code to said at least one electronic device.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
swivel secure Ltd. (Marr Group Holdings Ltd.)
Original Assignee
swivel secure Ltd. (Marr Group Holdings Ltd.)
Inventors
Keech, Winston Donald
Primary Examiner(s)
Moazzami; Nasser
Assistant Examiner(s)
Cervetti; David Garcia

Application Number

US09/915,271
Publication Number

US 20020029342A1
Time in Patent Office

2,524 Days
Field of Search

713/168, 713/184, 713/169, 713/170, 705/64, 705/72, 705/75
US Class Current

713/170
CPC Class Codes

G06Q 20/02   involving a neutral party, ...

G06Q 20/04   Payment circuits

G06Q 20/10   specially adapted for elect...

G06Q 20/12   specially adapted for elect...

G06Q 20/32   using wireless devices

G06Q 20/322   Aspects of commerce using m...

G06Q 20/347   Passive cards

G06Q 20/382   insuring higher security of...

G06Q 20/385   using an alias or single-us...

G06Q 20/388   using mutual authentication...

G06Q 20/4014   Identity check for transact...

G06Q 20/425   using two different network...

G07F 7/10   together with a coded signa...

G07F 7/1075   PIN is checked remotely

Systems and methods for identity verification for secure transactions

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

183 Citations

25 Claims

Specification

Solutions

Use Cases

Quick Links

Systems and methods for identity verification for secure transactions

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

183 Citations

25 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links