Methods and systems for authentication and authorization
First Claim
1. A method for ensuring non-repudiation of a payment request obtained from a first party to have a payment made to a second party, the method comprising:
- receiving, at the one or more computer systems, a payment request from the first party identifying the second party as at least one payee together with a digital certificate having a first portion comprising information identifying the first party as having originated the payment request and a second portion comprising a first list of specific payees to which to first party is authorized to request payment and a first maximum payment amount that the first party can request;
performing, with one or more processors associated with the one or more computer systems, an authentication of the first party using the first portion of the digital certificate;
retrieving, with the one or more processors associated with the one or more computer systems, stored authority information from a store of authority information maintained by a financial services provider in response to performing the authentication of the first party using the first portion of the digital certificate, the authority information in the store of authority information including a second list of specific payees that have been registered with the financial services provider to whom the first party can request payment and a second maximum payment amount registered with the financial services provider that the first party can request;
validating, with the one or more processors associated with the one or more computer systems, whether the digital certificate comprises valid authority information based on a comparison between first list of specific payees and the first maximum payment amount presented in the digital certificate and the second list of specific payees and the second maximum payment amount in the authority information retrieved from the store of authority information maintained by the financial services provider; and
generating, with the one or more processors associated with the one or more computer systems, information authorizing the payment request in response to the first party being authenticated by the financial service provider and possessing valid authority to issue the payment request to the second party.
1 Assignment
0 Petitions
Accused Products
Abstract
A computer-implemented method for ensuring non-repudiation of a payment request and/or other action may include a step of receiving, over a network, the payment request together with a digital certificate identifying a user having caused the payment request to be generated. The certificate may include certificate-identifying information, user-identifying information, authority information that defines and delimits the authority of the user to make the payment request. The certificate-identifying information and the user-identifying information included within the received certificate may be validated. The authority information included within the received certificate may then be validated. The payment request and/or other action is then only executed when the certificate-identifying information, the user-identifying information and the authority information within the received certificate are successfully validated.
-
Citations
15 Claims
-
1. A method for ensuring non-repudiation of a payment request obtained from a first party to have a payment made to a second party, the method comprising:
-
receiving, at the one or more computer systems, a payment request from the first party identifying the second party as at least one payee together with a digital certificate having a first portion comprising information identifying the first party as having originated the payment request and a second portion comprising a first list of specific payees to which to first party is authorized to request payment and a first maximum payment amount that the first party can request; performing, with one or more processors associated with the one or more computer systems, an authentication of the first party using the first portion of the digital certificate; retrieving, with the one or more processors associated with the one or more computer systems, stored authority information from a store of authority information maintained by a financial services provider in response to performing the authentication of the first party using the first portion of the digital certificate, the authority information in the store of authority information including a second list of specific payees that have been registered with the financial services provider to whom the first party can request payment and a second maximum payment amount registered with the financial services provider that the first party can request; validating, with the one or more processors associated with the one or more computer systems, whether the digital certificate comprises valid authority information based on a comparison between first list of specific payees and the first maximum payment amount presented in the digital certificate and the second list of specific payees and the second maximum payment amount in the authority information retrieved from the store of authority information maintained by the financial services provider; and generating, with the one or more processors associated with the one or more computer systems, information authorizing the payment request in response to the first party being authenticated by the financial service provider and possessing valid authority to issue the payment request to the second party. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A non-transitory computer-readable medium storing code for ensuring non-repudiation of a payment request obtained from a first party to have a payment made to a second party that when executed by a processor of a computer system causes the processor to perform the steps comprising:
-
receiving a payment request from the first party identifying the second party as at least one payee together with a digital certificate having a first portion comprising information identifying the first party as having originated the payment request and a second portion comprising a first list of specific payees to which to first party is authorized to request payment and a first maximum payment amount that the first party can request; performing an authentication of the first party using the first portion of the digital certificate; retrieving stored authority information from a store of authority information maintained by a financial services provider in response to performing the authentication of the first party using the first portion of the digital certificate, the authority information in the store of authority information including a second list of specific payees that have been registered with the financial services provider to whom the first party can request payment and a second maximum payment amount registered with the financial services provider that the first party can request; validating whether the digital certificate comprises valid authority information based on a comparison between first list of specific payees and the first maximum payment amount presented in the digital certificate and the second list of specific payees and the second maximum payment amount in the authority information retrieved from the store of authority information maintained by the financial services provider; and generating information authorizing the payment request in response to the first party being authenticated by the financial service provider and possessing valid authority to issue the payment request to the second party. - View Dependent Claims (7, 8, 9, 10)
-
-
11. A system for ensuring non-repudiation of a payment request obtained from a first party to have a payment made to a second party, the system comprising:
-
a processor; and a memory, in communication with the processor, and storing a set of computer-executable instructions that when executed by the processor cause the processor to perform the steps comprising; receiving a payment request from the first party identifying the second party as at least one payee together with a digital certificate having a first portion comprising information identifying the first party as having originated the payment request and a second portion comprising a first list of specific payees to which to first party is authorized to request payment and a first maximum payment amount that the first party can request; performing an authentication of the first party using the first portion of the digital certificate; retrieving stored authority information from a store of authority information maintained by a financial services provider in response to performing the authentication of the first party using the first portion of the digital certificate, the authority information in the store of authority information including a second list of specific payees that have been registered with the financial services provider to whom the first party can request payment and a second maximum payment amount registered with the financial services provider that the first party can request; validating whether the digital certificate comprises valid authority information based on a comparison between first list of specific payees and the first maximum payment amount presented in the digital certificate and the second list of specific payees and the second maximum payment amount in the authority information retrieved from the store of authority information maintained by the financial services provider; and generating information authorizing the payment request in response to the first party being authenticated by the financial service provider and possessing valid authority to issue the payment request to the second party. - View Dependent Claims (12, 13, 14, 15)
-
Specification