Internet server access control and monitoring systems

US 9,917,827 B2
Filed: 01/09/2008
Issued: 03/13/2018
Est. Priority Date: 01/12/1998
Status: Expired due to Fees

First Claim

Patent Images

1. A secure electronic shopping method, comprising:

receiving an initial link message from a client computer at a merchant server using a transfer format suitable for communication over the Internet;

transmitting a session link message in response to the initial link message back to the client computer via the Internet, the session link message comprising a session identifier used to maintain session state data with respect to an electronic shopping session between the client computer and the merchant server, wherein the session identifier is distinct from identification of the client computer or a user of the client computer, and wherein the initial link message does not include the session identifier;

causing the client computer to store the session state data at the client computer; and

completing the electronic shopping session between the client computer and the merchant server using the session identifier to identify a series of related requests corresponding to the electronic shopping session made by the client computer to the merchant server, and communicating with a payment server to authorize a purchase associated with the shopping session.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

This invention relates to methods for controlling and monitoring access to network servers. In particular, the process described in the invention includes client-server sessions over the Internet. In this environment, when the user attempts to access an access-controlled file, the server subjects the request to a secondary server which determines whether the client has an authorization or valid account. Upon such verification, the user is provided with a session identification which allows the user to access to the requested file as well as any other files within the present protection domain.

Citations

114 Claims

1. A secure electronic shopping method, comprising:
- receiving an initial link message from a client computer at a merchant server using a transfer format suitable for communication over the Internet;
  
  transmitting a session link message in response to the initial link message back to the client computer via the Internet, the session link message comprising a session identifier used to maintain session state data with respect to an electronic shopping session between the client computer and the merchant server, wherein the session identifier is distinct from identification of the client computer or a user of the client computer, and wherein the initial link message does not include the session identifier;
  
  causing the client computer to store the session state data at the client computer; and
  
  completing the electronic shopping session between the client computer and the merchant server using the session identifier to identify a series of related requests corresponding to the electronic shopping session made by the client computer to the merchant server, and communicating with a payment server to authorize a purchase associated with the shopping session.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31)
- - 2. The method of claim 1, further comprising:
    - transmitting data associated with the shopping session to the payment server;
      
      the payment server using the data associated with the shopping session to authorize the purchase associated with the shopping session.
  - 3. The method of claim 2, further comprising:
    - storing a user account at the payment server associated with a user of the client computer;
      
      the payment server comparing the data associated with the shopping session to information stored in the user account in order to determine whether to authorize the purchase associated with the shopping session.
  - 4. The method of claim 3, wherein the information stored in the user account includes credit card information for the user of the client computer.
  - 5. The method of claim 1, further comprising:
    - the merchant server authorizing the download of the purchased product by the client computer in response to the payment server authorizing the purchase associated with the shopping session.
  - 6. The method of claim 5, wherein the purchased product is selected from the group consisting of an electronic document, a multimedia data file, an audio data file, and a video data file.
  - 7. The method of claim 2, further comprising:
    - associating the payment server with a plurality of merchant servers;
      
      wherein the data associated with a shopping session includes data identifying a particular merchant server; and
      
      wherein the data transmitted to the payment server includes the merchant identifying data.
  - 8. The method of claim 1, further comprising:
    - updating the session state data and causing the client computer to re-store at least a portion of the session state data during the shopping session between the client computer and the merchant server.
  - 9. The method of claim 1, wherein at least a portion of the stored session state data includes encrypted data.
  - 10. The method of claim 1, wherein at least a portion of the stored session state data is digitally signed.
  - 11. The method of claim 2, farther comprising:
    - associating a domain with the merchant server;
      
      encoding the domain of the merchant server into the session state data; and
      
      transmitting the domain of the merchant server to the payment server in order to authorize the purchase associated with the shopping session.
  - 12. The method of claim 1, further comprising:
    - the merchant server receiving one or more requests to purchase products from the client computer;
      
      in response to each request to purchase a product, storing a product identifier in a shopping cart record associated with a user of the client computer; and
      
      completing a shopping session between the client computer and the merchant server and communicating with the payment server to authorize a purchase associated with any products identified in the shopping cart record.
  - 13. The method of claim 12, further comprising:
    - associating a shopping cart identifier with the shopping cart record; and
      
      transmitting the shopping cart identifier to the payment server to authorize the purchase associated with any products identified in the shopping cart record.
  - 14. The method of claim 12, further comprising:
    - retrieving product identification data from the shopping cart record; and
      
      causing the client computer to display the product identification data.
  - 15. The method of claim 1, further comprising:
    - receiving a plurality of requests to purchase products from the client computer at a plurality of merchant servers;
      
      in response to each request to purchase a product, storing a product identifier and a merchant identifier in a shopping cart record associated with a user of the client computer; and
      
      completing a shopping session between the client computer and the merchant servers and communicating with the payment server to authorize a purchase associated with any products identified in the shopping cart record.
  - 16. The method of claim 1, wherein the transfer format suitable for communication over the Internet is the hypertext transfer protocol.
  - 17. The method of claim 1, wherein the session link message includes user identification data.
  - 18. The method of claim 1, wherein the session link message includes authentication data.
  - 19. The method of claim 1, further comprising:
    - the merchant server accessing an authentication server to obtain the session link message.
  - 20. The method of claim 19, further comprising:
    - causing the client computer to prompt a user of the client computer to provide credentials to the authentication server; and
      
      the authentication server processing the provided credentials and generating the session link message.
  - 21. The method of claim 20, further comprising:
    - storing a user account profile associated with the user of the client computer; and
      
      the authentication server accessing the user account profile and comparing data stored therein with the provided credentials before generating the session link message.
  - 22. The method of claim 1, further comprising:
    - maintaining a transaction log at the merchant server, the transaction log including session state data associated with an electronic shopping session between the client computer and the merchant server.
  - 23. The method of claim 1, wherein the session link message includes information from a user account profile stored in an account database, the method further comprising:
    - the merchant server using the information from the user account profile to customize communications to the client computer.
  - 24. The method of claim 23, wherein the customized communications include advertisements.
  - 25. The method of claim 1, further comprising:
    - for each completed shopping session between the client computer and the merchant computer, storing a purchase transaction record in a transaction database.
  - 26. The method of claim 25, further comprising:
    - transmitting an electronic statement to the client computer, the electronic statement including links to the purchase transaction records stored in the transaction database.
  - 27. The method of claim 26, further comprising:
    - selecting one of the links on the electronic statement at the client computer; and
      
      in response thereto, obtaining the purchase transaction record from the transaction database.
  - 28. The method of claim 26, wherein the electronic statement includes links to purchase transaction records that have occurred in a current month.
  - 29. The method of claim 28, wherein the electronic statement includes at least one link to purchase transaction records that have occurred in a prior month.
  - 30. The method of claim 26, wherein the electronic statement is a web page.
  - 31. The method of claim 26, wherein the electronic statement is transmitted to the client computer by e-mail.

32. A secure electronic shopping method in a network having a plurality of merchant servers and a payment server, the payment server including a plurality of user accounts for use in authorizing purchase transactions between users and the plurality of merchant servers, comprising:
- conducting an electronic shopping session between a user computer system and one of the plurality of merchant servers, the merchant server and the user computer system exchanging one or more session link messages comprising a session identifier used to maintain session state data with respect to the electronic shopping session, wherein the session identifier is first transmitted to the user computer system in response to an initial request received from the user computer system, wherein the session identifier is distinct from identification of the user computer system or a user of the user computer system, and wherein the initial link message does not include the session identifier;
  
  causing the user computer system to store the session state data;
  
  completing the electronic shopping session between the user computer system and the merchant server using the session identifier to identify a series of related requests corresponding to the electronic shopping session made by the user computer system to the merchant server, and communicating with a payment server accessing one of the plurality of user accounts in order to authorize a purchase associated with the shopping session; and
  
  receiving purchase authorization data at the merchant server and enabling the user computer system to download the purchased product.
- View Dependent Claims (33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48, 49, 50, 51, 52, 53, 54, 55, 56, 57, 58)
- - 33. The method of claim 32, further comprising:
    - transmitting at least a portion of the session state data to the payment server;
      
      the payment server using the portion of the session state data to authorize the purchase associated with the shopping session.
  - 34. The method of claim 32, wherein the session state data identifies the merchant server associated with the shopping session.
  - 35. The method of claim 32, wherein the purchased product is selected from the group consisting of an electronic document, a multimedia data file, an audio data file, and a video data file.
  - 36. The method of claim 32, wherein the session link message does not include the user'"'"'s credit card data, such credit card data being stored in the user account at the payment server.
  - 37. The method of claim 33, wherein the session state data includes data identifying a particular merchant server, and wherein the data transmitted to the payment server includes the merchant identifying data.
  - 38. The method of claim 32, further comprising:
    - updating the session state data and re-storing at least a portion of the session state data at the user computer system during the shopping session between the user computer system and the merchant server.
  - 39. The method of claim 32, wherein at least a portion of the stored session state data includes encrypted data.
  - 40. The method of claim 32, wherein at least a portion of the stored session state data is digitally signed.
  - 41. The method of claim 33, further comprising:
    - associating a domain with at least one of the merchant servers;
      
      encoding the domain of the at least one merchant server into the session state data; and
      
      transmitting the domain of the at least one merchant server to the payment server in order to authorize the purchase associated with the shopping session.
  - 42. The method of claim 32, further comprising:
    - receiving one or more requests to purchase products from the user computer system at the merchant server;
      
      in response to each request to purchase a product, storing a product identifier in a shopping cart record associated with user computer system; and
      
      completing a shopping session between the user computer system and the merchant server and communicating with the payment server to authorize a purchase associated with any products identified in the shopping cart record.
  - 43. The method of claim 42, further comprising:
    - associating a shopping cart identifier with the shopping cart record; and
      
      transmitting the shopping cart identifier to the payment server to authorize the purchase associated with any products identified in the shopping cart record.
  - 44. The method of claim 42, further comprising:
    - retrieving product identification data from the shopping cart record; and
      
      causing the user computer system to display the product identification data.
  - 45. The method of claim 32, further comprising:
    - receiving a plurality of requests to purchase products from the user computer system to a plurality of merchant servers;
      
      in response to each request to purchase a product, storing a product identifier and a merchant identifier in a shopping cart record associated with the user computer system; and
      
      completing a shopping session between the user computer system and the merchant servers and communicating with the payment server to authorize a purchase associated with any products identified in the shopping cart record.
  - 46. The method of claim 32, further comprising:
    - the merchant server accessing an authentication server to obtain the session link message.
  - 47. The method of claim 46, further comprising:
    - causing the user computer system to prompt a user of the user computer system to provide credentials to the authentication server; and
      
      the authentication server processing the provided credentials and generating the session link message.
  - 48. The method of claim 47, further comprising:
    - the authentication server accessing a user account and comparing data stored therein with the provided credentials before generating the session link message.
  - 49. The method of claim 32, further comprising:
    - maintaining a transaction log at the merchant server, the transaction log including session state data associated with an electronic shopping session between the user computer system and the merchant server.
  - 50. The method of claim 32, wherein the session link message includes information from a user account associated with the user computer system, the method further comprising:
    - the merchant server using the information from the user account to customize communications to the user computer system.
  - 51. The method of claim 50, wherein the customized communications include advertisements.
  - 52. The method of claim 32, further comprising:
    - for each completed shopping session between the user computer system and the merchant computer, storing a purchase transaction record in a transaction database.
  - 53. The method of claim 52, further comprising:
    - transmitting an electronic statement to the user computer system, the electronic statement including links to the purchase transaction records stored in the transaction. database.
  - 54. The method of claim 53, further comprising:
    - selecting one of the links on the electronic statement at the user computer system; and
      
      in response thereto, obtaining the purchase transaction record from the transaction database.
  - 55. The method of claim 53, wherein the electronic statement includes links to purchase transaction records that have occurred in a current month.
  - 56. The method of claim 55, wherein the electronic statement includes at least one link to purchase transaction records that have occurred in a prior month.
  - 57. The method of claim 53, wherein the electronic statement is a web page.
  - 58. The method of claim 53, wherein the electronic statement is transmitted to the client computer by e-mail.

59. An electronic payment authorization method for processing purchase transactions between user computers and a plurality of merchant servers using a transfer format suitable for communication over the Internet, wherein the user computers and merchant servers are programmed to exchange session state data associated with an electronic shopping session, comprising:
- receiving session state data comprising a session identifier and associated with an electronic shopping session between a user computer and a merchant server at a payment server, wherein the session identifier is first transmitted to the user computer in response to an initial request received from the user computer, wherein the session identifier is distinct from identification of the user computer or a user of the user computer, and wherein the initial link message does not include the session identifier;
  
  accessing a user account at the payment server associated with a user computer; and
  
  processing the session state data and the user account in order to authorize a purchase associated with the electronic shopping session using the session identifier to identify a series of related requests corresponding to the electronic shopping session made by the user computer to the merchant server.
- View Dependent Claims (60, 61, 62, 63, 64, 65, 66, 67, 68, 69, 70, 71, 72, 73, 74)
- - 60. The electronic payment authorization method of claim 59, further comprising:
    - accessing credit card data associated with the user account in order to authorize the purchase.
  - 61. The electronic payment authorization method of claim 59, further comprising:
    - transmitting payment authorization data from the payment server to the merchant server in order to cause the merchant server to deliver a purchased product to the user computer.
  - 62. The electronic payment authorization method of claim 61, wherein the purchased product is selected from the group consisting of an electronic document, a multimedia data file, an audio data file, and a video data file.
  - 63. The electronic payment authorization method of claim 59, wherein the user account includes credit card information associated with a user of the user computer.
  - 64. The electronic payment authorization method of claim 59, wherein the session state data includes data identifying a particular merchant server, and wherein the session state data received at the payment server includes the merchant identifying data.
  - 65. The electronic payment authorization method of claim 59, further comprising:
    - receiving a shopping cart identifier at the payment server, the payment server accessing an electronic shopping cart of identified products and authorizing the purchase of the identified products in the electronic shopping cart.
  - 66. The electronic payment authorization method of claim 59, wherein the transfer format suitable for communication over the Internet is the hypertext transfer protocol.
  - 67. The electronic payment authorization method of claim 59, wherein the session state data includes encrypted information.
  - 68. The electronic payment authorization method of claim 59, further comprising:
    - for each completed shopping session between a user computer and a merchant server, storing a purchase transaction record in a transaction database.
  - 69. The electronic payment authorization method of claim 68, further comprising:
    - transmitting an electronic statement from the payment server to the user computer, the electronic statement including links to the purchase transaction records stored in the transaction database.
  - 70. The electronic payment authorization method of claim 69, further comprising:
    - receiving a request for a purchase transaction record from the user computer in response to the user computer selecting one of the links on the electronic statement; and
      
      in response thereto, obtaining the purchase transaction record from the transaction database and transmitting it to the user computer.
  - 71. The electronic payment authorization method of claim 69, wherein the electronic statement includes links to purchase transaction records that have occurred in a current month.
  - 72. The electronic payment authorization method of claim 71, wherein the electronic statement includes at least one link to purchase transaction records that have occurred in a prior month.
  - 73. The electronic payment authorization method of claim 69, wherein the electronic statement is a web page.
  - 74. The electronic payment authorization method of claim 69, wherein the electronic statement is transmitted to the user computer by e-mail.

75. A payment server for receiving and authorizing purchase authorization requests across multiple merchant domains using a transfer format suitable for communication over the Internet,the purchase authorization requests including session state data comprising a session identifier associated with electronic shopping sessions carried out between user computer systems and merchant servers via the Internet, wherein the session identifier is first transmitted to the user computer systems in response to an initial request received from the user computer systems, wherein the session identifier is distinct from identification of the user computer systems or users of the user computer systems, and wherein the initial link message does not include the session identifier, comprising:
- a network interface for enabling the payment server to communicate with merchant servers and user computer systems via the Internet;
  
  a user account database for storing user identification for a plurality of users associated with the user computer systems; and
  
  a data processor for receiving purchase authorization requests, wherein the data processor authorizes product purchases between the user computer systems and the merchant servers based upon the session state data and the user identification information stored in the user account database using the session identifier to identify a series of related requests corresponding to the electronic shopping session made by the user computer systems to the merchant servers.
- View Dependent Claims (76, 77, 78, 79, 80, 81, 82, 83, 84, 85, 86, 87, 88, 89)
- - 76. The payment server of claim 75, wherein the data processor accesses credit card data associated with the user account in order to authorize the purchase.
  - 77. The payment server of claim 75, wherein the data processor causes payment authorization data to be transmitted from the payment server to the merchant server via the Internet in order to cause the merchant server to deliver a purchased product to the user computer.
  - 78. The payment server of claim 77, wherein the purchased product is selected from the group consisting of an electronic document, a multimedia data file, an audio data file, and a video data file.
  - 79. The payment server of claim 75, wherein the user account includes credit card information associated with a user of the user computer.
  - 80. The payment server of claim 75, wherein the session state data includes data identifying a particular merchant server, and wherein the purchase authorization requests received at the payment server include the merchant identifying data.
  - 81. The payment server of claim 75, wherein the data processor receives a shopping cart identifier that enables it to access an electronic shopping cart of identified products, and authorizes the purchase of the identified products in the electronic shopping cart.
  - 82. The payment server of claim 75, wherein the transfer format suitable for communication over the Internet is the hypertext transfer protocol.
  - 83. The payment server of claim 75, wherein the session state data includes encrypted information.
  - 84. The payment server of claim 75, further comprising:
    - a transaction database for storing purchase transaction records associated with an electronic shopping session between a user computer and a merchant server.
  - 85. The payment server of claim 84, wherein the data processor causes an electronic statement to be transmitted to the user computer, the electronic statement including links to the purchase transaction records stored in the transaction database.
  - 86. The payment server of claim 85, wherein the electronic statement includes links to purchase transaction records that have occurred in a current month.
  - 87. The payment server of claim 86, wherein the electronic statement includes at least one link to purchase transaction records that have occurred in a prior month.
  - 88. The payment server of claim 85, wherein the electronic statement is a web page.
  - 89. The payment server of claim 85, wherein the electronic statement is transmitted to the user computer by e-mail.

90. A method of purchasing access-controlled data files stored within a content server domain, comprising:
- exchanging session data, comprising a session identifier, between a user computer system and a content server associated with the content server domain using a transfer format suitable for communication over the Internet and storing the session data at the user computer system, wherein the session identifier is first transmitted to the user computer system in response to an initial request received from the user computer system, wherein the session identifier is distinct from identification of the user computer system or a user of the user computer system, and wherein the initial link message does not include the session identifier, the session data relating to a purchase of an access-controlled data file stored within the content server domain using the session identifier to identify a series of related requests corresponding to the electronic shopping session made by the user computer system to the content server; and
  
  transmitting at least a portion of the stored session data to a payment sever, the payment server accessing a user account associated with the user computer system in order to authorize the purchase of the access-controlled data file.
- View Dependent Claims (91, 92, 93, 94, 95, 96, 97, 98, 99, 100, 101, 102, 103, 104, 105, 106, 107, 108, 109, 110, 111, 112, 113, 114)
- - 91. The method of claim 90, further comprising:
    - the payment server prompting the user computer system to provide credentials for purchasing the access-controlled data file; and
      
      comparing the user supplied credentials to information stored in the user account associated with the user computer system in order to authorize the purchase of the access-controlled data file.
  - 92. The method of claim 90, wherein the access-controlled data file is selected from the group consisting of an electronic document, a multimedia data file, an audio data file and a video data file.
  - 93. The method of claim 90, further comprising:
    - transmitting a purchase authorization message to the content server in order to access the access-controlled data file stored within the content server domain.
  - 94. The method of claim 90, wherein the session data includes a user identification associated with the user computer system and a domain identification associated with the content server domain, the payment server processing the user identification and the domain identification in order to authorize the purchase of the access-controlled data file.
  - 95. The method of claim 90, further comprising:
    - determining an access level of the access-controlled data file; and
      
      prompting the user computer system to provide credentials for purchasing the access-controlled data file.
  - 96. The method of claim 90, further comprising:
    - determining an access level of the access-controlled data file; and
      
      accessing the user account associated with the user computer system in order to determine whether to authorize the purchase of the access-controlled data file.
  - 97. The method of claim 90, wherein the user account includes credit card information for the user of the user computer system.
  - 98. The method of claim 90, further comprising:
    - the content server authorizing the download of the purchased access-controlled data file by the user computer in response to the payment server authorizing the purchase.
  - 99. The method of claim 90, further comprising:
    - associating the payment server with a plurality of content servers, each content server being associated with a content server domain;
      
      wherein the session data includes data identifying a particular content server domain; and
      
      wherein the data transmitted to the payment server includes the content server domain identifying data.
  - 100. The method of claim 90, wherein at least a portion of the stored session data includes encrypted data.
  - 101. The method of claim 90, wherein at least a portion of the stored session data is digitally signed.
  - 102. The method of claim 90, further comprising:
    - transmitting one or more requests to purchase access-controlled data files from the user computer system to the content server;
      
      in response to each request to purchase an access-controlled data file, storing a data file identifier in a shopping cart record associated with a user of the user computer system; and
      
      transmitting a shopping cart identifier associated with the shopping cart record to the payment server to authorize the purchase of the access-controlled data files identified in the shopping cart record.
  - 103. The method of claim 102, further comprising:
    - retrieving data file identification data from the shopping cart record; and
      
      displaying the data file identification data at the user computer system.
  - 104. The method of claim 90, wherein the transfer format suitable for communication over the Internet is the hypertext transfer protocol.
  - 105. The method of claim 90, further comprising:
    - maintaining a transaction log at the content server, the transaction log including session data associated with the purchase of an access-controlled data file stored within the content server domain.
  - 106. The method of claim 90, wherein the session data includes information from a user account profile stored in an account database, the method further comprising:
    - the content server using the information from the user account profile to customize communications to the user computer system.
  - 107. The method of claim 106, wherein the customized communications include advertisements.
  - 108. The method of claim 90, further comprising:
    - for each completed purchase of an access-controlled data file between the user computer system and the content server, storing a purchase transaction record in a transaction database.
  - 109. The method of claim 108, further comprising:
    - transmitting an electronic statement to the user computer system, the electronic statement including links to the purchase transaction records stored in the transaction database.
  - 110. The method of claim 109, further comprising:
    - selecting one of the links on the electronic statement at the user computer system; and
      
      in response thereto, obtaining the purchase transaction record from the transaction server.
  - 111. The method of claim 109, wherein the electronic statement includes links to purchase transaction records that have occurred in a current month.
  - 112. The method of claim 111, wherein the electronic statement includes at least one link to purchase transaction records that have occurred in a prior month.
  - 113. The method of claim 109, wherein the electronic statement is a web page.
  - 114. The method of claim 109, wherein the electronic statement is transmitted to the user computer system by e-mail.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Soverain IP, LLC
Original Assignee
Soverain IP, LLC
Inventors
Levergood, Thomas Mark, Stewart, Lawrence C., Morris, Stephen Jeffrey, Payne, Andrew C., Treese, George Winfield
Primary Examiner(s)
WINDER, PATRICE L

Application Number

US11/971,361
Publication Number

US 20080109374A1
Time in Patent Office

3,716 Days
Field of Search

709217-219, 709225, 709229, 705 53, 705 76
US Class Current
CPC Class Codes

G06Q 20/10   specially adapted for elect...

G06Q 20/102   Bill distribution or payments

G06Q 30/02   Marketing; Price estimation...

G06Q 30/0209   Incentive being awarded or ...

G06Q 30/06   Buying, selling or leasing ...

G06Q 30/0601   Electronic shopping [e-shop...

H04L 63/0807   using tickets, e.g. Kerbero...

H04L 63/083   using passwords cryptograph...

Internet server access control and monitoring systems

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

Citations

114 Claims

Specification

Solutions

Use Cases

Quick Links

Internet server access control and monitoring systems

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

114 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links