Secure content transfer using dynamically generated optical machine readable codes

US 9,210,146 B2
Filed: 02/05/2013
Issued: 12/08/2015
Est. Priority Date: 02/18/2012
Status: Active Grant

First Claim

Patent Images

1. A method for a proximity based secure transaction initiation, the method comprising:

generating a unique text temporary token;

registering the temporary token with a server, wherein the temporary token includes encrypted content and is subject to an expiration rule;

generating an optically readable code based on the temporary token;

presenting the optically readable code to a user through a display of one or more of a mobile device, a computer monitor, a public monitor, a website, and a physical material;

enabling the user to access a data exchange transaction by scanning the optically readable code through a camera of another mobile device, whereinthe data exchange transaction provides access to the encrypted content,the optically readable code includes a decryption key for decrypting the encrypted content, andaccess to the data exchange transaction is restricted to the other mobile device within a visibility area of the display presenting the optically readable code; and

enabling an entity that generates the optically readable code to further restrict access to the data exchange transaction based on the expiration rule, wherein the expiration rule includes a number of allowable scans of the optically readable code.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Technologies are generally described for peer-to-peer or peer-to-server-to-peer communication systems based on mobile devices, servers, and personal computers, which utilize proximity communication and optical codes such as two-dimensional barcodes, in order to securely initiate and authorize digital data, file, and multimedia transfers, as well as digital financial transactions.

46 Citations

View as Search Results

11 Claims

1. A method for a proximity based secure transaction initiation, the method comprising:
- generating a unique text temporary token;
  
  registering the temporary token with a server, wherein the temporary token includes encrypted content and is subject to an expiration rule;
  
  generating an optically readable code based on the temporary token;
  
  presenting the optically readable code to a user through a display of one or more of a mobile device, a computer monitor, a public monitor, a website, and a physical material;
  
  enabling the user to access a data exchange transaction by scanning the optically readable code through a camera of another mobile device, whereinthe data exchange transaction provides access to the encrypted content,the optically readable code includes a decryption key for decrypting the encrypted content, andaccess to the data exchange transaction is restricted to the other mobile device within a visibility area of the display presenting the optically readable code; and
  
  enabling an entity that generates the optically readable code to further restrict access to the data exchange transaction based on the expiration rule, wherein the expiration rule includes a number of allowable scans of the optically readable code.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The method of claim 1, further comprising:
    - authenticating the user by having scanned the optically readable code.
  - 3. The method of claim 1, wherein registering the temporary token includes providing the temporary token and one or more content decryption keys.
  - 4. The method of claim 1, further comprising:
    - rendering encrypted content available to the user until a latest of expiration dates of any token associated with the encrypted content and that of one or more decryption content keys.
  - 5. The method of claim 4, further comprising:
    - providing a storage location to the server.
  - 6. The method of claim 4, further comprising:
    - assigning the encrypted content a validity expiration rule that includes one or more of a date/time and a number of downloads.
  - 7. The method of claim 4, further comprising:
    - enabling the user to download the encrypted content from the server and decrypt using the scanned decryption key, wherein the content is encrypted prior to registration with the server.
  - 8. The method of claim 7, wherein the decryption key is configured to be a one-time-use key.
  - 9. The method of claim 1, wherein the physical material is a label, a product, and a wall display.

10. A non-transitory computer-readable storage medium with instructions stored thereon for a proximity based secure transaction initiation, the instructions comprising:
- generating a unique text temporary token;
  
  registering the temporary token with a server, wherein the temporary token includes encrypted content and is subject to an expiration rule;
  
  generating an optically readable code based on the temporary token;
  
  presenting the optically readable code to a user on a display of one or more of a mobile device, a computer monitor, a public monitor, a website, and a physical material;
  
  enabling the user to access a data exchange transaction by scanning the optically readable code through a camera of another mobile device, whereinthe data exchange transaction provides access to the encrypted content,the optically readable code includes a decryption key for decrypting the encrypted content, andaccess to the data exchange transaction is restricted to the other mobile device within a visibility area of the display presenting the optically readable code;
  
  authenticating the user by having scanned the optically readable code; and
  
  enabling an entity that generates the optically readable code to further restrict access to the data exchange transaction based on the expiration rule, wherein the expiration rule includes a number of allowable scans of the optically readable code.
- View Dependent Claims (11)
- - 11. The non-transitory computer-readable storage medium of claim 10, wherein the instructions further comprise:
    - enabling one of;
      
      the user and another user to access the data exchange transaction and terminate the access to the data exchange transaction at one or more of;
      
      discretion of the user and discretion of the other user.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Daniel S. Shimshoni
Original Assignee
Daniel S. Shimshoni
Inventors
Shimshoni, Daniel S.
Primary Examiner(s)
THIAW, CATHERINE B

Application Number

US13/759,702
Publication Number

US 20130219516A1
Time in Patent Office

1,036 Days
Field of Search

726 6- 9, 726 26- 29, 713170-172
US Class Current

1/1
CPC Class Codes

H04L 63/08   for authentication of entit...

H04L 63/083   using passwords cryptograph...

H04W 12/06   Authentication

H04W 12/77   Graphical identity

Secure content transfer using dynamically generated optical machine readable codes

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

46 Citations

11 Claims

Specification

Solutions

Use Cases

Quick Links

Secure content transfer using dynamically generated optical machine readable codes

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

46 Citations

11 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links