×

Establishing direct, secure transaction channels between a device and a plurality of service providers via personalized tokens

  • US 9,870,559 B2
  • Filed: 06/24/2011
  • Issued: 01/16/2018
  • Est. Priority Date: 01/19/2001
  • Status: Expired due to Term
0
Associated Cases
0
Associated Defendants
0
Product Citations
0
Petitions
8
Forward Citations
2
Assignments
First Claim
Patent Images

1. A method of electronic transaction between a user and a plurality of service providers, comprising:

  • authenticating a user of an electronic transaction device according to a first protocol through an interaction between a server of a secure electronic transaction platform and the user via an electronic transaction facility executing on the electronic transaction device, the first protocol comprising receiving an activation code stored on the server, delivered to the user, input by the user to the electronic transaction facility, and used to authenticate the user, the electronic transaction facility, and relate the electronic transaction facility to the user;

    authenticating the electronic transaction device according to a second protocol through an interaction between the server and the device, the second protocol comprising registering the electronic device with the server through a registration process that includes the server certifying keys generated by the electronic transaction facility, the electronic transaction facility encrypting a user name and the activation code with the server'"'"'s public encryption key and sending the encryption to the server that verifies the activation code, the electronic transaction facility and the server exchanging encryption and signing keys, wherein the keys generated by the electronic transaction facility comprise electronic transaction facility identification information;

    transmitting a certificate representing the electronic transaction facility'"'"'s security credentials to one of the plurality of service providers and providing a certificate representing the one of the plurality of service providers'"'"' security credentials to the electronic transaction facility;

    procuring a token that is personalized as an official electronic identifier of the user from one of the plurality of service providers;

    in response to a user opting to avail a service of one of the plurality of service providers;

    updating with the transaction service facility server at least the one of the plurality of service providers with security credentials of the electronic transaction facility configured on the handheld device; and

    updating with the transaction service facility server the electronic transaction facility configured on the handheld device with service provider credentials for the at least one of the plurality of service providers; and

    securing a transaction conducted between the one of the plurality of service providers and the electronic transaction facility by the one of the plurality of service providers verifying a one-time activation code delivered to the user over at least one of e-mail and courier, the one-time activation code being provided to the one of the plurality of service providers when the electronic transaction facility contacts the one of the plurality of service providers for the first time, verifying the user of the electronic transaction facility via the first protocol, verifying the electronic transaction facility of the transaction via the second protocol, verifying the electronic transaction facility via the certificate representing the electronic transaction facility'"'"'s security credentials and verifying the one of the plurality of service providers using the certificate representing the service provider'"'"'s security credentials, wherein the transaction comprises verification of the personalized token.

View all claims
  • 2 Assignments
Timeline View
Assignment View
    ×
    ×