Method and system for controlling certificate based open payment transactions
First Claim
1. A method comprising:
- unlocking, by a computer, a programmable memory device with a user'"'"'s predetermined personal identification number;
wherein the programmable memory device is configured to formulate payment instructions, andthe programmable memory device comprising network address instructions for an issuer of the programmable memory device, a user'"'"'s financial account information, and an encryption program;
generating, by the computer, a private/public key pair using a software module of a service provider server;
generating, by the computer, an identification profile that is encrypted with a digital signature based on the private key;
transmitting, by the computer, the encrypted identification profile to the service provider server along with the attached public key for formation of a service provider-backed certificate;
loading, by the computer, the service provider-backed certificate onto the programmable memory device;
attaching, by the computer, the service provider-backed certificate from the programmable memory device to payment information using at least one of the user'"'"'s financial accounts;
encrypting, by the computer, the payment information and the attached service provider-backed certificate using the software module; and
receiving, by the computer, information from the service provider server authorizing payment using the programmable memory device from at least one of the user'"'"'s financial accounts.
2 Assignments
0 Petitions
Accused Products
Abstract
Methods and systems for controlling certificate-based open payment transactions involving a merchant and a customer utilizing various types of networks and terminals. Prior to accessing a merchant POS terminal or, for example, a merchant website, a customer obtains a certificate from a service provider (SP), such as a bank, certifying his identification (ID) and his relevant financial information, in a form that is understandable by the SP. The SP is capable of performing multiple functions. For example, the SP is capable of acting as a certificate authority when it issues the customer'"'"'s certificates, an authenticator when it receives private-key encrypted certificates from the customers to be decrypted using the corresponding public-key, and an authorizing authority when it checks the value available in a customer'"'"' chosen payment account against the requested purchase or transfer amount.
24 Citations
20 Claims
-
1. A method comprising:
-
unlocking, by a computer, a programmable memory device with a user'"'"'s predetermined personal identification number; wherein the programmable memory device is configured to formulate payment instructions, and the programmable memory device comprising network address instructions for an issuer of the programmable memory device, a user'"'"'s financial account information, and an encryption program; generating, by the computer, a private/public key pair using a software module of a service provider server; generating, by the computer, an identification profile that is encrypted with a digital signature based on the private key; transmitting, by the computer, the encrypted identification profile to the service provider server along with the attached public key for formation of a service provider-backed certificate; loading, by the computer, the service provider-backed certificate onto the programmable memory device; attaching, by the computer, the service provider-backed certificate from the programmable memory device to payment information using at least one of the user'"'"'s financial accounts; encrypting, by the computer, the payment information and the attached service provider-backed certificate using the software module; and receiving, by the computer, information from the service provider server authorizing payment using the programmable memory device from at least one of the user'"'"'s financial accounts. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A system for facilitating a financial transaction comprising:
-
a programmable memory device comprising at least one processor, the user'"'"'s financial account information, network addressing instructions for at least the issuer of the programmable memory device, and an encryption program, the programmable memory device configured to unlock with a user'"'"'s predetermined personal identification number; a private/public key pair generated using a software provided by a service provider; an identification profile that is encrypted with a digital signature based on the private key, wherein the encrypted identification profile is transmitted to the service provider along with the attached public key for formation of a service provider-backed certificate, and wherein the service provider-backed certificate is loaded onto the programmable memory device; a terminal configured for reading information from the programmable memory device to facilitate a payment from at least one of a user'"'"'s financial accounts; and a server configured for receiving information from the terminal read from the programmable memory device and authorizing payment from at least one of the user'"'"'s financial accounts. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
Specification