System and method for user confirmation of online transactions
First Claim
1. A method for remote user confirmation of online transaction with a relying party, the method comprising:
- detecting, via a secure transaction server of the relying party, a transaction between a first user and the relying party triggered by the first user of a first client device over a network, and performing one or more authentication techniques, via authentication engine circuitry on the first client device, to authenticate the first user to the relying party over the network;
identifying, via database querying circuitry, one or more other users who are required to confirm the transaction before allowing the transaction to be performed, the one or more other users previously registered with the relying party as approvers for the first user and are users other than the first user;
transmitting notifications, via notification generation logic circuitry, to the one or more other users or a subset thereof indicating that a transaction has been triggered by the first user, the notifications comprising a link which, upon selection by the one or more other users or subset thereof, provides details of the transaction being attempted by the first user;
the one or more other users or subset thereof confirming the transaction by performing remote authentication via secure transaction program code executed on a respective remote client device of the one or more other users or subset thereof with the relying party over the network, wherein the secure transaction program code executed on the respective remote client device of the one or more other users or subset thereof is to generate and transmit a token to the relying party responsive to a successful authentication, the token comprising a signature over the transaction details and a nonce provided by the relying party; and
permitting the transaction between the first user and the relying party responsive to receiving the token from the remote client device of each of the one or more other users or subset thereof.
3 Assignments
0 Petitions
Accused Products
Abstract
A system, apparatus, method, and machine readable medium are described for confirming a user transaction. For example, one embodiment of a method comprises: detecting at a relying party a transaction triggered by a first user over a network and performing one or more authentication techniques to authenticate the first user to the relying party over the network; identifying one or more other users who are required to confirm the transaction before allowing the transaction to be performed, the one or more other users being registered with the relying party; transmitting notifications to the one or more other users or a subset thereof indicating that a transaction has been triggered by the first user; and the one or more other users or subset thereof confirming the transaction by performing remote authentication with the relying party over the network.
445 Citations
27 Claims
-
1. A method for remote user confirmation of online transaction with a relying party, the method comprising:
-
detecting, via a secure transaction server of the relying party, a transaction between a first user and the relying party triggered by the first user of a first client device over a network, and performing one or more authentication techniques, via authentication engine circuitry on the first client device, to authenticate the first user to the relying party over the network; identifying, via database querying circuitry, one or more other users who are required to confirm the transaction before allowing the transaction to be performed, the one or more other users previously registered with the relying party as approvers for the first user and are users other than the first user; transmitting notifications, via notification generation logic circuitry, to the one or more other users or a subset thereof indicating that a transaction has been triggered by the first user, the notifications comprising a link which, upon selection by the one or more other users or subset thereof, provides details of the transaction being attempted by the first user; the one or more other users or subset thereof confirming the transaction by performing remote authentication via secure transaction program code executed on a respective remote client device of the one or more other users or subset thereof with the relying party over the network, wherein the secure transaction program code executed on the respective remote client device of the one or more other users or subset thereof is to generate and transmit a token to the relying party responsive to a successful authentication, the token comprising a signature over the transaction details and a nonce provided by the relying party; and permitting the transaction between the first user and the relying party responsive to receiving the token from the remote client device of each of the one or more other users or subset thereof. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 21, 24, 25, 26, 27)
-
-
14. A system for remote user confirmation of online transaction with a relying party, the system comprising:
-
a secure transaction server of the relying party to detect a transaction triggered by a first user of a first client device over a network and to responsively perform one or more authentication techniques, via authentication engine circuitry on the first client device, to authenticate the first user over the network; a database to store user data, wherein the relying party is to query the database to identify one or more other users who are required to confirm the transaction before allowing the transaction to be performed, the one or more other users previously registered with the relying party as approvers for the first user and are users other than the first user; notification generation logic circuitry of the relying party to transmit notifications to the one or more other users or a subset thereof indicating that a transaction has been triggered by the first user, the notifications comprising a link which, upon selection by the one or more other users or subset thereof, provides details of the transaction being attempted by the first user; and secure transaction program code executed on a respective remote client device of the one or more other users or subset thereof to confirm the transaction by performing remote authentication with the relying party over the network, the secure transaction program code executed on the respective remote client device of the one or more other users or subset thereof further to generate and transmit a token to the relying party responsive to a successful authentication, the token comprising a signature over the transaction details and a nonce provided by the relying party; wherein there relying party is to permit the transaction triggered by the first user responsive to receiving the token from the remote client device of each of the one or more other users or subset thereof. - View Dependent Claims (15, 16, 17, 18, 19, 20, 22, 23)
-
Specification