Opinion registering application for a universal pervasive transaction framework

US 7,877,605 B2
Filed: 01/25/2005
Issued: 01/25/2011
Est. Priority Date: 02/06/2004
Status: Expired due to Fees

First Claim

Patent Images

1. A computer-based system securely transmitting and authenticating a transaction input by a user while retaining the anonymity of the user with respect to content of the transaction, comprising:

a first device receiving the content of the transaction input at the first device and transmitting, to a second device, the transaction content including information identifying the first device and the second device;

whereinthe second device encoding the transaction content input at the first device with a code key K_VSi, sending the transaction content that is encoded with the code key K_VSito the first device,the first device generating a first message by further encoding the information identifying the first and second devices and the transaction content encoded with the code key K_VSiwith an independently generated first device changing key derived from both a user input non-transmitted parameter and a first device parameter generated for each transaction based upon a stored first device parameter, andthe second device generating a second device encoded second message by encoding the transaction content encoded with the code key K_VSiand the information identifying the first and second devices, with an independently generated second device key; and

a third devicereceiving the encoded second message from the second device and receiving the encoded first message of the first device,decoding only the encoding by the first and second device keys of the received encoded first and second messages based upon the third device independently generating the respective first and second device keys to;

authenticate an identity of the user of the first device and authenticate the first device,authenticate the second device andauthenticate an occurrence of the transaction by matching the decoded messages of the first and second devices based upon the information identifying the first and second devices for confirming input of the transaction content to involve intended first and second devices, andforwarding the encoded transaction content encoded with the code key K_VSito a fourth device;

wherein the fourth device receiving the encoded transaction content encoded with the code key K_VSiand using the code key K_VSito determine the transaction content input by the user of the first device.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A computer-based system securely transmitting and authenticating a transaction input by a user while retaining the anonymity of the user with respect to content of the transaction, including a device encoding the content of the transaction input by the user with a key known only to another device, encoding other portions of the transaction with another key known only to a secure transaction server, and sending the encoded content of the transaction and the encoded other portions of the transaction to the secure transaction server to authenticate an identity of the user of the device, wherein the secure transaction server decodes the other portions of the transaction and sends the encoded content of the transaction to the another device to be finally decoded.

Citations

25 Claims

1. A computer-based system securely transmitting and authenticating a transaction input by a user while retaining the anonymity of the user with respect to content of the transaction, comprising:
- a first device receiving the content of the transaction input at the first device and transmitting, to a second device, the transaction content including information identifying the first device and the second device;
  
  whereinthe second device encoding the transaction content input at the first device with a code key K_VSi, sending the transaction content that is encoded with the code key K_VSito the first device,the first device generating a first message by further encoding the information identifying the first and second devices and the transaction content encoded with the code key K_VSiwith an independently generated first device changing key derived from both a user input non-transmitted parameter and a first device parameter generated for each transaction based upon a stored first device parameter, andthe second device generating a second device encoded second message by encoding the transaction content encoded with the code key K_VSiand the information identifying the first and second devices, with an independently generated second device key; and
  
  a third devicereceiving the encoded second message from the second device and receiving the encoded first message of the first device,decoding only the encoding by the first and second device keys of the received encoded first and second messages based upon the third device independently generating the respective first and second device keys to;
  
  authenticate an identity of the user of the first device and authenticate the first device,authenticate the second device andauthenticate an occurrence of the transaction by matching the decoded messages of the first and second devices based upon the information identifying the first and second devices for confirming input of the transaction content to involve intended first and second devices, andforwarding the encoded transaction content encoded with the code key K_VSito a fourth device;
  
  wherein the fourth device receiving the encoded transaction content encoded with the code key K_VSiand using the code key K_VSito determine the transaction content input by the user of the first device.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The computer-based system of claim 1, wherein the second device and the fourth device agree on the code key K_VSi, or a public key cryptographic key pair, prior the transaction being transmitted in the computer-based system, andwherein the third device sends the information identifying the second device to the fourth device so that the fourth device can retrieve the code key K_VSiof the second device to decode the transaction content that is encoded with the code key K_VSi.
  - 3. The computer-based system of claim 1, wherein the second device cannot determine the identity of the user that input the content of the transaction because when the content of the transaction is input at the first device and submitted to the second device, the first device does not transmit user identifying information to the second device, and because in the first message generated by the first device, the identity of the user is encoded by the first device according to a coding technique that can only be decoded by the third device.
  - 4. The computer-based system of claim 1,wherein the fourth device cannot determine the identity of the user that input the content of the transaction since the fourth device cannot determine the first device in which the content of the transaction was input by the user.
  - 5. The computer-based system of claim 4, wherein the third device authenticates the identity of the user of the first device after successfully decoding the encoded messages of the first and second device by reconstructing the keys of each of the first and second devices since the third device knows parameters of coding algorithms used to produce the respective first and second device keys.
  - 6. The computer-based system of claim 5, wherein the user is authenticated to operate the first device according at least one biometric feature of the user or a personal identification number.
  - 7. The computer-based system of claim 5, wherein the transaction of the computer system is performed between the first and the second device, the transaction is an opinion registering application, and the content of the transaction is a ballot.
  - 8. The computer-based system of claim 1, wherein there is one or more first device and one or more second device.
  - 9. The computer-based system of claim 1, further comprising a virtual private network located between the second device and the fourth device and another virtual private network located between the third device and the fourth device.

10. A computer-based system securely transmitting and authenticating content input by a user while retaining the anonymity of the user with respect to the user input content, comprising:
- a first device independently generating an encoded first message, including the user input content and information identifying the first device, according to a first device changing key derived from both a user input non-transmitted parameter and a first device parameter generated for each first message based upon a stored first device parameter;
  
  a second device further encoding the user input content of the encoded first message with a code key K_VSiand independently generating a second device encoded second message by encoding the user input content encoded with the code key K_VSiand information identifying the first and second devices, with a generated second device key;
  
  a third devicereceiving the encoded first and second messages,decoding only the encoding by the first and second device keys of the encoded first and second messages based upon the third device independently generating the respective first and second device keys to;
  
  authenticate an identity of the user of the first device and authenticate the first device,authenticate the second device,authenticate the first and second messages by matching the decoded messages of the first and second devices based upon the information identifying the first and second devices for confirming input of the content to involve intended first and second devices, andforwarding the user input content encoded with the code key K_VSi; and
  
  a fourth device receiving the user input content encoded with the code key K_VSiand using the code key K_VSito determine the content input by the user of the first device.
- View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
- - 11. The computer-based system of claim 10, wherein coding algorithm used for further encoding the user input content of the encoded message with the code key K_VSiis commutative with the algorithm used by the first device to generate the encoded message.
  - 12. The computer-based system of claim 10, wherein the second device message does not include the user input content.
  - 13. The computer-based system of claim 10, wherein the second device and the fourth device agree on the code key K_VSi, or a public key cryptographic key pair, prior the transaction being transmitted in the computer-based system, andwherein the third device sends the information identifying the second device to the fourth device so that the fourth device can retrieve the code key K_VSiof the second device to decode the user input content of the encoded message encoded with the coding key K_VSi.
  - 14. The computer-based system of claim 10, wherein the third device cannot determine the user input content encoded with the coding key K_VSi, and the fourth device cannot determine the identity of the user that input the user input content because the fourth device only receives the user input content.
  - 15. The computer-based system of claim 10, wherein the third device authenticates the identity of the user of the first device after successfully decoding the encoded messages of the first and second device by reconstructing the keys of each of the first and second devices since the third device knows parameters of coding algorithms used to produce the respective first and second device keys.
  - 16. The computer-based system of claim 10, wherein the user input content is a ballot.
  - 17. The computer-based system of claim 10, wherein there is more than one first device and more than one second device.
  - 18. The computer-based system of claim 10, further comprising a virtual private network located between the second device and the fourth device and another virtual private network located between the third device and the fourth device.

19. A computer-based system securely transmitting and authenticating content input by a user while retaining the anonymity of the user with respect to the content, comprising:
- a first devicereceiving from a second device a reference number, which relates to content to be input by the user,generating a first encoded message after content is input by the user at the first device, such that the first encoded message includes the user input content that is encoded with a random code key K_V, the first device generating a second encoded message including the random code key K_V, information identifying the first and second devices, and the reference number with an independently generated first device changing key derived from both a user input non-transmitted parameter and a generated first device parameter generated for each first message based upon a stored first device parameter, andsending the first and second encoded messages to the second device;
  
  the second device;
  
  forwarding the first encoded message to a fourth device,forwarding the second encoded message to a third device,generating a third encoded message without the user input content and including the random code key K_V, the information identifying the first and second devices, and the reference number with an independently generated second device key, andforwarding the third encoded message to the third device;
  
  the third device;
  
  receiving the second and third encoded messages from the second device, which do not have the user input content,decoding only the encoding by the first and second device keys of the second and third messages based upon the third device independently generating the respective first and second device keys to;
  
  authenticate an identity of the user of the first device and authenticate the first device,authenticate the second device,authenticate the second and third messages by matching the decoded messages of the first and second devices based upon the information indicating identifying the first and second devices and the reference number for confirming input of the content to involve intended first and second devices, andforwarding the code key K_Vand the reference number to the fourth device; and
  
  the fourth devicereceiving from the second device the first encoded message and the reference number,receiving from the third device the random code key K_Vand the reference number, anddetermining from the received information the user input content.
- View Dependent Claims (20, 21, 22, 23, 24, 25)
- - 20. The computer-based system of claim 19, wherein the first encoded message is stored in a database of the second device and is not sent to the fourth device to be decoded until the third device has verified the identity of the user and the first and second messages are authenticated.
  - 21. The computer-based system of claim 19, wherein the third device never receives the user input content, and the fourth device cannot determine the identity of the user that input the user input content because the fourth device does not receive identifying information of the user.
  - 22. The computer-based system of claim 19, wherein the user input content is a ballot.
  - 23. The computer-based system of claim 19, wherein there is more than one first device and more than one second device.
  - 24. The computer-based system of claim 19, further comprising a virtual private network located between the second device and the fourth device and another virtual private network located between the third device and the fourth device.
  - 25. The computer-based system of claim 19, wherein the user input content is encoded whenever sent from the first device to any other device in the computer-based system, wherein the third device never receives the user input content, and wherein there is an accounting for the user input content so that errors are located.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
PCMS Holdings Incorporated (InterDigital, Inc.)
Original Assignee
Fujitsu Limited
Inventors
Labrou, Yannis, Terriza, Jesus Molina, Agre, Jonathan Russell, Ji, Lusheng
Primary Examiner(s)
Vu; Kimyen
Assistant Examiner(s)
SCHWARTZ, DARREN B

Application Number

US11/041,223
Publication Number

US 20050203966A1
Time in Patent Office

2,191 Days
Field of Search

713150-153, 713/155, 713160-161, 713168-171, 726 2- 3, 726 16- 18, 726/21, 380/255, 380/259, 380/270, 380/273, 380277-278, 380 44- 47, 705/50, 705 57- 58, 705/64, 705/72, 705 74- 75, 709227-229
US Class Current

713/168
CPC Class Codes

G06Q 10/10 Office automation; Time man...

Opinion registering application for a universal pervasive transaction framework

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

25 Claims

Specification

Solutions

Use Cases

Quick Links

Opinion registering application for a universal pervasive transaction framework

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

25 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links