Centralized identification and authentication system and method
DCFirst Claim
1. An authentication computer system to enhance computer network security by authenticating a plurality of users during electronic transactions that are engaged in between the plurality of users and a transaction computer system, the authentication computer system comprising:
- a dynamic-code generator to generate a plurality of substantially non-predictable digital codes;
a computer-readable memory to store the generated digital codes;
a timer to generate an electronic timer signal;
a network receiver to receive digital requests from the transaction computer system or the plurality of users;
a network transmitter to transmit digital message to the transaction computer system and one or more electronic devices of the plurality of users, the users and their one or more electronic devices being located physically remote from the authentication computer system; and
a computer processor electronically coupled to the timer, the computer-readable memory, the network receiver, and the network transmitter to;
during an electronic transaction that is engaged in between one of the users and the transaction computer system, receive a digital request for a digital code for authenticating the user via the network receiver,during the electronic transaction and in response to the digital request, transmit one of the generated digital codes for the user to one of the electronic devices of the user via the network transmitter, wherein the digital code received by the user is only valid for one authentication and only valid for authentication of the user,during the electronic transaction, receive a digital authentication request for authenticating the user from the transaction computer system via the network receiver, the digital authentication request comprising a digital identity corresponding to the user, the digital identity including the digital code,receive the electronic timer signal to evaluate a validity of one or more of the digital codes, andduring the electronic transaction, determine if there is a match between the received digital code and one of the generated digital codes and the received digital code is valid to authenticate the user, and, if there is a match and the received digital code is valid, (i) transmit a digital authentication approval message to the transaction computer system via the network transmitter wherein the digital authentication approval message indicates to the transaction computer system that the user is authentic and (ii) prevent multiple uses of the digital code.
2 Assignments
Litigations
0 Petitions
Accused Products
Abstract
A Central-Entity centralizes users'"'"' personal and financial information in a secure environment in order to prevent the distribution of user'"'"'s information in e-commerce. This information is then used to create digital identity for the users. The digital identity of each user is dynamic, non-predictable and time dependent, because it is a combination of a user name and a dynamic, non-predictable and time dependent secure code that will be provided to the user for his identification. The user provides his digital identity to an External-Entity such as merchant or service provider. The External-Entity is dependent on Central-Entity to identify the user based on the digital identity given by the user. The External-Entity forwards the user'"'"'s digital identity to the Central-Entity for identification and authentication of the user and the transaction.
102 Citations
15 Claims
-
1. An authentication computer system to enhance computer network security by authenticating a plurality of users during electronic transactions that are engaged in between the plurality of users and a transaction computer system, the authentication computer system comprising:
-
a dynamic-code generator to generate a plurality of substantially non-predictable digital codes; a computer-readable memory to store the generated digital codes; a timer to generate an electronic timer signal; a network receiver to receive digital requests from the transaction computer system or the plurality of users; a network transmitter to transmit digital message to the transaction computer system and one or more electronic devices of the plurality of users, the users and their one or more electronic devices being located physically remote from the authentication computer system; and a computer processor electronically coupled to the timer, the computer-readable memory, the network receiver, and the network transmitter to; during an electronic transaction that is engaged in between one of the users and the transaction computer system, receive a digital request for a digital code for authenticating the user via the network receiver, during the electronic transaction and in response to the digital request, transmit one of the generated digital codes for the user to one of the electronic devices of the user via the network transmitter, wherein the digital code received by the user is only valid for one authentication and only valid for authentication of the user, during the electronic transaction, receive a digital authentication request for authenticating the user from the transaction computer system via the network receiver, the digital authentication request comprising a digital identity corresponding to the user, the digital identity including the digital code, receive the electronic timer signal to evaluate a validity of one or more of the digital codes, and during the electronic transaction, determine if there is a match between the received digital code and one of the generated digital codes and the received digital code is valid to authenticate the user, and, if there is a match and the received digital code is valid, (i) transmit a digital authentication approval message to the transaction computer system via the network transmitter wherein the digital authentication approval message indicates to the transaction computer system that the user is authentic and (ii) prevent multiple uses of the digital code. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. An authentication computer system to enhance computer network security by authenticating a user during an electronic transaction that is engaged in between the user and a transaction computer system, the authentication computer system comprising:
-
a dynamic-code generator to generate a substantially non-predictable digital code; a computer-readable memory to store the generated digital code; a timer to generate an electronic timer signal; a network receiver to receive digital requests from the transaction computer system or the user; a network transmitter to transmit digital message to the transaction computer system and an electronic device of the user, the user and its electronic device being located physically remote from the authentication computer system; and a computer processor electronically coupled to the timer, the computer-readable memory, the network receiver, and the network transmitter to; during an electronic transaction that is engaged in between the user and the transaction computer system, receive a digital request for a digital code for authenticating the user via the network receiver, during the electronic transaction and in response to the digital request, transmit the generated digital code to the electronic device of the user via the network transmitter, wherein the digital code received by the user is only valid for one authentication and only valid for authentication of the user, during the electronic transaction, receive a digital authentication request for authenticating the user from the transaction computer system via the network receiver, the digital authentication request comprising a digital identity corresponding to the user, the digital identity including the digital code, receive the electronic timer signal to evaluate a validity of the digital code, and during the electronic transaction, determine if there is a match between the received digital code and the generated digital code and the received digital code is valid to authenticate the user, and, if there is a match and the received digital code is valid, (i) transmit a digital authentication approval message to the transaction computer system via the network transmitter wherein the digital authentication approval message indicates to the transaction computer system that the user is authentic and (ii) prevent multiple uses of the digital code. - View Dependent Claims (9, 10, 11, 12, 13, 14, 15)
-
Specification