System and method for securing data through a PDA portal

US 8,738,532 B2
Filed: 07/13/2011
Issued: 05/27/2014
Est. Priority Date: 02/26/2001
Status: Expired due to Fees

First Claim

Patent Images

1. A hardware portal, comprising:

at least one processor; and

memory having program instructions stored thereon that, responsive to execution by the at least one processor, cause the hardware portal to;

receive, from a mobile computing device, a request for content, wherein the request includes an original version of session information identifying a user of the mobile computing device;

transmit an encrypted version, but not the original version, of the session information to a content server;

receive, based at least in part on the encrypted version of the session information, the requested content from the content server; and

transmit the received content to the mobile computing device.

View all claims

5 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Consumers may utilize computing devices to assist in the purchase and/or loyalty process, and in particular, the consumer may utilize a PDA to facilitate the purchase and/or loyalty process. During the purchase and/or loyalty process, the consumer may need to insure that any content downloaded or used in association with the PDA is secure in how it is collected, assembled, and delivered to the PDA device. This system and method secures the data from its source to when it is actually viewed or used by the authorized user. The exemplary system and method may establish a PDA portal link to the web site for collecting specified information for a user and transmitting the information to the remote device. To receive the information, the PDA contacts the portal and establishes a connection, authenticates itself to the network and allows the user to complete secured transactions or transmissions over the network.

Citations

20 Claims

1. A hardware portal, comprising:
- at least one processor; and
  
  memory having program instructions stored thereon that, responsive to execution by the at least one processor, cause the hardware portal to;
  
  receive, from a mobile computing device, a request for content, wherein the request includes an original version of session information identifying a user of the mobile computing device;
  
  transmit an encrypted version, but not the original version, of the session information to a content server;
  
  receive, based at least in part on the encrypted version of the session information, the requested content from the content server; and
  
  transmit the received content to the mobile computing device.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The hardware portal of claim 1, wherein the request further includes an embedded link, wherein the embedded link includes navigational information for retrieving the requested content.
  - 3. The hardware portal of claim 1, wherein the content server is operable to receive the requested content from a remote content source.
  - 4. The hardware portal of claim 1, wherein the received content is encrypted, and wherein the instructions further cause the hardware portal to decrypt the received content before transmitting the received content to the mobile computing device.
  - 5. The hardware portal of claim 1, wherein the content includes content which is refreshed and downloaded to the mobile computing device.
  - 6. The hardware portal of claim 1, wherein the instructions further cause the hardware portal to transmit the encrypted version of the session information to the mobile computing device.
  - 7. The hardware portal of claim 6, wherein the instructions further cause the hardware portal to retrieve an embedded link prior to transmitting the encrypted version of the session information to the mobile computing device.
  - 8. The hardware portal of claim 7, wherein the instructions further cause the hardware portal to transmit the embedded link to the mobile computing device.
  - 9. The hardware portal of claim 6, wherein the instructions further cause the hardware portal to encrypt the received content prior to transmitting the received content to the mobile computing device.
  - 10. The hardware portal of claim 9, wherein the requested content is encrypted using ECC (elliptic curve cryptography).
  - 11. The hardware portal of claim 1, wherein the instructions further cause the hardware portal to connect to an encryption device to establish a secure connection to the content server using a negotiated encryption key.

12. A method, comprising:
- receiving, by a content server, a request for content, wherein the request includes an encrypted version, but not an original version, of session information, the original version of session information usable by a hardware portal to identify a user of a mobile computing device; and
  
  sending, by the content server, the requested content to the mobile computing device via the hardware portal.
- View Dependent Claims (13, 14, 15, 16, 17, 18)
- - 13. The method of claim 12, wherein the original version, but not the encrypted version, of the session information is stored by the hardware portal.
  - 14. The method of claim 12, further comprising:
    - encrypting the requested content, using the encrypted version of session information.
  - 15. The method of claim 12, further comprising:
    - receiving, by the content server, user information including a user account number corresponding to an account for a content provider, wherein the user information is usable by the content server to access the requested content.
  - 16. The method of claim 12, further comprising:
    - participating in a security key exchange with the hardware portal.
  - 17. The method of claim 12, further comprising:
    - sending an encrypted session cookie, via the hardware portal, to the mobile computing device, wherein the encrypted session cookie is usable by the mobile computing device to establish a secure session with the content server.
  - 18. The method of claim 17, wherein the encrypted session cookie is based at least in part on a received user ID and a received user password, wherein the user ID and password correspond to a user account.

19. A non-transitory computer-readable medium having program instructions stored thereon, wherein the program instructions are executable by a hardware portal to cause the hardware portal to perform operations comprising:
- receiving, from a mobile computing device, a request for content at a content server, wherein the request includes an original version of session information associated with a user of the mobile computing device;
  
  transmitting an encrypted version, but not the original version, of the session information to the content server;
  
  receiving the content from the content server; and
  
  transmitting, based at least in part on the original version of the session information, the received content to the mobile computing device.
- View Dependent Claims (20)
- - 20. The non-transitory computer-readable medium of claim 19, wherein the transmitting includes:
    - receiving, from the mobile computing device, a password; and
      
      comparing the password to the original version of the session information, wherein the original version, but not the encrypted version, of the session information is stored by the hardware portal.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Liberty Peak Ventures, LLC (Dominion Harbor Enterprises, LLC)
Original Assignee
Propulsion Remote Holdings LLC (Intellectual Ventures LLC)
Inventors
Ariff, Fauziah B., Voltmer, Theodore S., Neemann, Trey, Bishop, Fred
Primary Examiner(s)
Colbert, Ella

Application Number

US13/181,883
Publication Number

US 20110271098A1
Time in Patent Office

1,049 Days
Field of Search

705/51, 713/168, 709/203, 726/5
US Class Current

705/50
CPC Class Codes

G06Q 20/20   Point-of-sale [POS] network...

G06Q 20/322   Aspects of commerce using m...

G06Q 20/387   Payment using discounts or ...

G06Q 30/02   Marketing; Price estimation...

G06Q 30/0226   Incentive systems for frequ...

G06Q 30/06   Buying, selling or leasing ...

G06Q 40/02   Banking, e.g. interest calc...

System and method for securing data through a PDA portal

First Claim

5 Assignments

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for securing data through a PDA portal

First Claim

5 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links