Method and system for managing access to protected computer resources provided via an internet protocol network
First Claim
1. A system for securing transactions between at least one client computer device and at least one server via an Internet Protocol network, wherein said transactions are authorized by at least one clearinghouse based upon authentication of identity data associated with said at least one client computer device, said system comprising:
- said at least one clearinghouse having an associated database to store said identity data;
at least one access key associated with said at least one client computer device, said identity data being derived from said at least one access key;
said at least one server adapted to receive at least a portion of said identity data from said at least one client computer device;
said at least one server adapted to forward to said at least one clearinghouse, said at least a portion of said identity data received from said at least one client computer device;
said at least one clearinghouse adapted to authenticate said at least a portion of said identity data responsive to a request by said at least one server, said authentication being based upon said identity data stored in said database; and
said at least one clearinghouse adapted to authorize said transactions based on an outcome of said authentication.
3 Assignments
0 Petitions
Accused Products
Abstract
A method and system for controlling access, by an authentication server, to protected computer resources provided via an Internet Protocol network that includes storing (i) a digital identification associated with at least one client computer device, and (ii) data associated with the protected computer resources in at least one database associated with the authentication server; authenticating, by the authentication server, the digital identification forwarded by at least one access server; authorizing, by the authentication server, the at least one client computer device to receive at least a portion of the protected computer resources requested by the at least one client computer device, based on the stored data associated with the requested protected computer resources; and permitting access, by the authentication server, to the at least the portion of the protected computer resources upon successfully authenticating the digital identification and upon successfully authorizing the at least once client computer device.
144 Citations
86 Claims
-
1. A system for securing transactions between at least one client computer device and at least one server via an Internet Protocol network, wherein said transactions are authorized by at least one clearinghouse based upon authentication of identity data associated with said at least one client computer device, said system comprising:
-
said at least one clearinghouse having an associated database to store said identity data;
at least one access key associated with said at least one client computer device, said identity data being derived from said at least one access key;
said at least one server adapted to receive at least a portion of said identity data from said at least one client computer device;
said at least one server adapted to forward to said at least one clearinghouse, said at least a portion of said identity data received from said at least one client computer device;
said at least one clearinghouse adapted to authenticate said at least a portion of said identity data responsive to a request by said at least one server, said authentication being based upon said identity data stored in said database; and
said at least one clearinghouse adapted to authorize said transactions based on an outcome of said authentication. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A method of securing a transaction between at least one client computer device and at least one server via an Internet Protocol network, the method comprising:
-
storing, by at least one clearinghouse, identity data associated with the at least one client computer device;
deriving the identity data from an access key associated with the at least one client computer device;
receiving, at the at least one server, the identity data from the at least one client computer device;
transmitting, by the at least one server to the at least one clearinghouse, a request for authorization of the transaction, the request including at least a portion of the identity data received from the at least one client computer device;
receiving, by the at least one clearinghouse, the request from the at least one server for authorization of the transaction;
authenticating, by the at least one clearinghouse, the at least a portion of the identity data transmitted by the at least one server; and
authorizing, by the at least one clearinghouse, the transaction based upon an outcome of the authentication. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20, 21)
-
-
22. A system for collection and storage of transaction data associated with transactions between at least one server and at least one client computer device via an Internet Protocol network, wherein said transactions are authorized by at least one clearinghouse based upon authentication of identity data associated with said at least one client computer device, said system comprising:
-
said at least one clearinghouse having an associated database to store (i) said identity data, and (ii) at least a portion of said transaction data;
said at least one server client computer device adapted to forward receive at least a portion of said identity data to said at least one server during said transactions from said at least one client computer device;
said at least one server adapted to forward to said at least one clearinghouse, said at least a portion of said identity data received from said at least one client computer device;
said at least one clearinghouse adapted to authenticate said at least a portion of said identity data responsive to a request by said at least one server, said authentication being based upon said identity data stored in said database;
said at least one clearinghouse further adapted to authorize said transactions based on an outcome of said authentication;
said at least one server further adapted to forward at least a portion of said transaction data to said at least one clearinghouse responsive to said authorization; and
said at least one clearinghouse further adapted to store said at least a portion of said transaction data received from said at least one server based upon said authorization. - View Dependent Claims (23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33)
-
-
34. A method for collecting and storing transaction data associated with transactions between at least one server and at least one client computer device via an Internet Protocol network, wherein said transactions are authorized by at least one clearinghouse based upon authentication of identity data associated with the at least one client computer device, the method comprising:
-
storing, by the at least one clearinghouse having an associated database (i) the identity data, and (ii) at least a portion of the transaction data;
forwarding receiving, by the at least one client computer device server, the at least a portion of the identity data to the at least one server during the transactions from the client computer device;
forwarding, by the at least one server, the at least a portion of the identity data received from the at least one client computer device to the at least one clearinghouse;
authenticating, by the at least one clearinghouse, the at least a portion of the identity data responsive to a request by the at least one server, the authentication being based upon the identity data stored in the database;
authorizing, by the at least one clearinghouse the transactions based on an outcome of the authentication;
forwarding, by the at least one server, the at least a portion of the transaction data to the at least one clearinghouse responsive to the authorization; and
storing, by the at least one clearinghouse, the at least a portion of the transaction data received from the at least one server based upon the authorization. - View Dependent Claims (35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45)
-
-
46. A system for processing an application from at least one client computer device for access to transaction services provided by at least one server, said access provided via an Internet Protocol network, the system comprising:
-
at least one clearinghouse having an associated database to store (i) at least one verification criteria, and (ii) application data associated with said application, and (iii) identity data associated with said application, said identity data being derived from an access key associated with said at least one client computer device;
said at least one server adapted to receive said application data from at least one applicant applying for access to said transaction services, said at least one application being associated with said at least one client computer device;
said at least one server adapted to forward said application data to said at least one clearinghouse;
said at least one clearinghouse adapted to verify said application data received from said server, said verification being based upon said verification criteria stored in said database;
said at least one clearinghouse adapted to forward the a result of said verification to at least one of (i) said at least one server, and (ii) said at least one client computer device, and (iii) said at least one applicant associated with said application; and
said at least one clearinghouse adapted to forward at least one of (i) said identity data, and (ii) said access key, to at least one of (i) said at least one server, and (ii) said at least one client computer device, and (iii) said at least one applicant, upon a successful outcome of said verification. - View Dependent Claims (47, 48, 49, 50, 51, 52, 53)
-
-
54. A method of processing an application from at least one client computer device for access to transaction services provided by at least one server, the access provided via an Internet Protocol network, the method comprising:
-
storing, by at least one clearinghouse, (i) at least one verification criteria, and (ii) application data associated with the said application, and (iii) identity data associated the application, the identity data being derived from an access key associated with the at least one client computer device;
receiving, by the at least one server, the application data from at least one applicant applying for access to said transaction services, the at least one applicant being associated with the at least one client computer device;
forwarding, by the at least one server, the application data to the at least one clearinghouse;
verifying, by the at least one clearinghouse, the application data received from the server, the verification being based upon the verification criteria stored by the at least one clearinghouse;
forwarding, by the at least one clearinghouse, the a result of the verification to at least one of (i) the at least one server, and (ii) the at least one client computer device, and (iii) the at least one applicant; and
forwarding, by the at least one clearinghouse, at least one of (i) the identity data, and (ii) the access key, to at least one of (i) the at least one server, and (ii) the at least one client computer device, and (iii) the at least one applicant, upon a successful outcome of said verification. - View Dependent Claims (55, 56, 57, 58, 59, 60, 61)
-
-
62. A system for activating an account in response to a request by at least one client computer device for access to transaction services provided by at least one server, said access provided via an Internet Protocol network, the system comprising:
-
at least one clearinghouse having an associated database to store (i) activation data associated with said account, and (ii) identity data associated with said account, said identity data being derived from an access key associated with said at least one client computer device;
said at least one clearinghouse adapted to receive from said at least one server, said identity data and said activation data;
said at least one clearinghouse adapted to compare at least a portion of (i) said identity data, and (ii) said activation data, received from said at least one server, with said activation data and said identity data stored by said at least one clearinghouse; and
said at least one clearinghouse adapted to activate said account based upon an outcome of the comparison, said activation allowing said at least one client computer device to access said transaction services. - View Dependent Claims (63, 64, 65, 66, 67, 68, 69)
-
-
70. A method of activating an account in response to a request by at least one client computer device for access to transaction services provided by at least one server, the access provided via an Internet Protocol network, the method comprising:
-
storing, by at least one clearinghouse, (i) activation data associated with the account, and (ii) identity data associated with the account, the identity data being derived from an access key associated with the at least one client computer device;
receiving, by the at least one clearinghouse from the at least one server, the identity data and the activation data;
comparing, by the at least one clearinghouse, at least a portion of (i) the identity data, and (ii) the activation data, received from the at least one server, with the activation data and the identity data stored by the at least one clearinghouse; and
activating, by the at least one clearinghouse, the account based upon an outcome of the comparison, the activation allowing the at least one client computer device to access the transaction services. - View Dependent Claims (71, 72, 73, 74, 75, 76, 77)
-
-
78. A system for activating an account in response to a request by at least one client computer device for access to transaction services provided by at least one server, said access provided via an Internet Protocol network, the system comprising:
-
at least one clearinghouse having an associated database to store an activation code associated with (i) activation data associated with said account, and (ii) identity data associated with said account, said identity data being derived from an access key associated with said at least one client computer device;
said at least one clearinghouse adapted to receive said activation code from at least one of (i) said at least one server, and (ii) said at least one client computer device, responsive to a request by said at least one client computer device for access to said transaction services;
said at least one clearinghouse adapted to compare said activation code received with said activation code stored by said at least one clearinghouse; and
said at least one clearinghouse adapted to activate said account based upon an outcome of the comparison, said activation allowing said at least one client computer device to access said transaction services. - View Dependent Claims (79, 80, 81)
-
-
82. A method of activating an account in response to a request by at least one client computer device for access to transaction services provided by at least one server, the access provided via an Internet Protocol network, the method comprising:
-
storing, by at least one clearinghouse, an activation code associated with (i) account data associated with the account, and (ii) identity data associated with the account, the identity data being derived from an access key associated with the at least one client computer device;
receiving, by the at least one clearinghouse from at least one of (i) the at least one server, and (ii) the at least one subscriber client computer, the activation code;
comparing, by the at least one clearinghouse, the activation code, received with the activation code stored by the at least one clearinghouse; and
activating, by the at least one clearinghouse, the account based upon an outcome of the comparison, the activation allowing the at least one client computer device to access the transaction services. - View Dependent Claims (83, 84, 85, 86)
-
Specification