Methods and apparatus for conducting electronic transactions
First Claim
1. A computer-implemented method comprising:
- receiving, by a first server from a user device, a request for a transaction;
receiving, by the first server from a second server, an authentication request associated with the transaction and the user device, wherein the user device is allowed to proceed with the transaction in response to the user device providing an authentication of credentials based on the authentication request;
receiving, by the first server, transaction data associated with the transaction, the transaction data comprising executable commands associated with a programming language;
scanning, by the first server, the transaction data to identify the executable commands in the transaction data;
rendering, by the first server, the executable commands in the transaction data unexecutable by a network client by removing a character from the executable commands or replacing particular characters within the executable commands; and
sending, from the first server to the user device, the transaction data comprising the executable commands rendered unexecutable by the network client, wherein the transaction data sent to the user device is usable by the user device to conduct an electronic transaction.
8 Assignments
0 Petitions
Accused Products
Abstract
A system and method for conducting electronic commerce are disclosed. In various embodiments, the electronic transaction is a purchase transaction. A user is provided with an intelligent token, such as a smartcard containing a digital certificate. The intelligent token suitably authenticates with a server on a network that conducts all or portions of the transaction on behalf of the user. In various embodiments a wallet server interacts with a security server to provide enhanced reliability and confidence in the transaction. In various embodiments, the wallet server includes a toolbar. In various embodiments, the digital wallet pre-fills forms. Forms may be pre-filled using an auto-remember component.
340 Citations
19 Claims
-
1. A computer-implemented method comprising:
-
receiving, by a first server from a user device, a request for a transaction; receiving, by the first server from a second server, an authentication request associated with the transaction and the user device, wherein the user device is allowed to proceed with the transaction in response to the user device providing an authentication of credentials based on the authentication request; receiving, by the first server, transaction data associated with the transaction, the transaction data comprising executable commands associated with a programming language; scanning, by the first server, the transaction data to identify the executable commands in the transaction data; rendering, by the first server, the executable commands in the transaction data unexecutable by a network client by removing a character from the executable commands or replacing particular characters within the executable commands; and sending, from the first server to the user device, the transaction data comprising the executable commands rendered unexecutable by the network client, wherein the transaction data sent to the user device is usable by the user device to conduct an electronic transaction. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17)
-
-
18. A non-transitory computer-readable storage medium having instructions stored thereon that, in response to execution by a computer-based system, cause the computer-based system to perform operations comprising:
-
receiving, by a first server from a user device, a request for a transaction; receiving, by the first server from a second server, an authentication request associated with the transaction and the user device, wherein the user device is allowed to proceed with the transaction in response to the user device providing an authentication of credentials based on the authentication request; receiving, by the first server, a third party transaction data associated with the transaction, the third party transaction data comprising executable commands associated with a programming language; scanning the third party transaction data to identify the executable commands, at least one of editing or removing, by the computer-based system, at least a portion of the executable commands in the third party transaction data, wherein the at least one of editing or removing comprises at least one of; rendering the executable commands in the third party transaction data unexecutable by a network client by removing a character of the executable commands, or rendering the executable commands in the third party transaction data unexecutable by the network client by replacing particular characters within the executable commands; and sending, from the first server to the user device, the third party transaction data comprising the executable commands rendered unexecutable by the network client, wherein the third party transaction data sent to the user device is usable by the user device to conduct an electronic transaction.
-
-
19. A system comprising:
-
a memory communicatively coupled to a server, the memory having instructions stored thereon that, in response to execution by the server, at least cause the server to perform operations comprising; receiving, by a first server from a user device, a request for a transaction; receiving, by the first server from a second server, an authentication request associated with the transaction and the user device, wherein the user device is allowed to proceed with the transaction in response to the user device providing an authentication of credentials based on the authentication request; receiving, by the first server, transaction data associated with the transaction, the transaction data comprising executable commands associated with a programming language; scanning, by the server, the transaction data to identify the executable commands in the transaction data; editing, by the server, at least a portion of the executable commands in the transaction data so that the executable commands are unexecutable by a computing device; and sending, from the first server to the user device, the transaction data comprising the executable commands rendered unexecutable by the computing device, wherein the transaction data sent to the user device is usable by the user device to conduct an electronic transaction.
-
Specification