System, method and article of manufacture for secure digital certification of electronic commerce

US 5,996,076 A
Filed: 02/19/1997
Issued: 11/30/1999
Est. Priority Date: 02/19/1997
Status: Expired due to Term

First Claim

Patent Images

1. A method for certifying a party in communication with an application resident on a first computer, said first computer in communication with a second computer with a certification authority resident thereon, said first and second computers coupled by a network, comprising the steps of:

(a) creating a name-value pair for certification processing on said first computer;

(b) transmitting a message containing said name-value pair to said certification authority on said second computer;

(c) transmitting other certification information, including identity information, from said first computer to said certification authority on said second computer; and

(d) creating a certificate comprising said name-value pair and said other certification information by said certification authority on said second computer.

View all claims

11 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Secure transmission of data is provided between a plurality of computer systems over a public communication system, such as the Internet. Secure transmission of data is provided from a party in communication with a first application resident on a first computer which is in communication with a second computer with a certification authority application resident thereon. The second computer is in communication with a third computer utilizing an administrative function resident thereon. The first, second and third computers are connected by a network, such as the Internet. A name-value pair for certification processing is created on said first computer and transmitted to an administrative function on the third computer. Then, the name-value pair is routed to the appropriate certification authority on the second computer. The administrative function also transmits other certification information from said administrative function to said certification authority on the second computer. Until, finally, a certificate is created comprising the name-value pair and the other certification information on the second computer. The certificate is utilized for authenticating identity of the party.

572 Citations

21 Claims

1. A method for certifying a party in communication with an application resident on a first computer, said first computer in communication with a second computer with a certification authority resident thereon, said first and second computers coupled by a network, comprising the steps of:
- (a) creating a name-value pair for certification processing on said first computer;
  
  (b) transmitting a message containing said name-value pair to said certification authority on said second computer;
  
  (c) transmitting other certification information, including identity information, from said first computer to said certification authority on said second computer; and
  
  (d) creating a certificate comprising said name-value pair and said other certification information by said certification authority on said second computer.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method as recited in claim 1, in which said certification information is formatted in conformance with a Public-Key Cryptography Standard.
  - 3. The method as recited in claim 1, wherein a browser is used to transmit and receive messages from said network.
  - 4. The method as recited in claim 1, including the step of storing said name-value pair in a secure storage at said first computer.
  - 5. The method as recited in claim 1, including the step of transmitting said certificate to said application resident on said first computer utilizing said network.
  - 6. The method as recited in claim 1, wherein said network is a public network.
  - 7. The method as recited in claim 1, including the step of storing certification authority rules at said second computer and tailoring said certification authority rules based on said other certification information transmitted by an administrative function resident on a third computer.

8. Apparatus for certifying a party in communication with an application resident on a first computer, said first computer in communication with a second computer with a certification authority resident thereon, said second computer in communication with a third computer utilizing an administrative function resident thereon, said first, second and third computers connected by a network, comprising:
- (a) first computer software that is resident in said first computer and creates a name-value pair for certification processing on said first computer;
  
  (b) second computer software that is resident in said first computer and transmits said name-value pair to said administrative function on said third computer for routing to said certification authority on said second computer;
  
  (c) third computer software that is resident in said third computer and transmits other certification information from said administrative function to said certification authority on said second computer; and
  
  (d) fourth computer software that is resident in said second computer and creates a certificate comprising said name-value pair and said other certification information by said certification authority on said second computer.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The apparatus as recited in claim 8, in which said certification information is formatted in conformance with a Public-Key Cryptography Standard.
  - 10. The apparatus as recited in claim 8, wherein a browser is used to transmit and receive messages from said network.
  - 11. The apparatus as recited in claim 8, including a storage in which said name-value pair is securely deposited at said first computer.
  - 12. The apparatus as recited in claim 8, including communication software that transmits said certificate to said application resident on said first computer utilizing said network.
  - 13. The apparatus as recited in claim 8, wherein said network is a public network.
  - 14. The apparatus as recited in claim 8, including certification authority rules stored at said second computer and tailored based on said certification information transmitted by said administrative function resident on said third computer.

15. A computer program embodied on a computer-readable medium for certifying a party in communication with an application resident on a first computer, said first computer in communication with a second computer with a certification authority resident thereon, said second computer in communication with a third computer utilizing an administrative function resident thereon, said first, second and third computers connected by a network, comprising:
- (a) first computer software that is resident in said first computer and creates a name-value pair for certification processing on said first computer;
  
  (b) second computer software that is resident in said first computer and transmits said name-value pair to said administrative function on said third computer for routing to said certification authority on said second computer;
  
  (c) third computer software that is resident in said third computer and transmits other certification information from said administrative function to said certification authority on said second computer; and
  
  (d) fourth computer software that is resident in said second computer and creates a certificate comprising said name-value pair and said other certification information by said certification authority on said second computer.
- View Dependent Claims (16, 17, 18, 19, 20, 21)
- - 16. The computer program as recited in claim 15, in which said certification information if formatted in conformance with a Public-Key Cryptography Standard.
  - 17. The computer program as recited in claim 15, wherein a browser is used to transmit and receive messages from said network.
  - 18. The computer program as recited in claim 15, including a storage in which said name-value pair is securely deposited at said first computer.
  - 19. The computer program as recited in claim 15, including communication software that transmits said certificate to said application resident on said first computer utilizing said network.
  - 20. The computer program as recited in claim 15, wherein said network is a public network.
  - 21. The computer program as recited in claim 15, including certification authority rules stored at said second computer and tailored based on said certification information transmitted by said administrative function resident on said third computer.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Ent Services Development Corporation LP (DXC Technology Company)
Original Assignee
Verifone, Inc. (Verifone Systems, Inc.)
Inventors
Chen, Yuhua, Rowney, Kevin T. B.
Primary Examiner(s)
Beausoliel, Jr., Robert W.
Assistant Examiner(s)
Elisca, Pierre E.

Application Number

US08/801,026
Time in Patent Office

1,014 Days
Field of Search

395/186, 395/187.01, 395/200.59, 395/200.62, 395/200.68, 395/200.79, 395/188.01, 395/831, 380/25, 380/4, 380/30
US Class Current

713/156
CPC Class Codes

G06F 21/445   by mutual authentication, e...

G06Q 20/02   involving a neutral party, ...

G06Q 20/04   Payment circuits

G06Q 20/0855   involving a third party

G06Q 20/12   specially adapted for elect...

G06Q 20/3821   Electronic credentials

G06Q 20/38215   Use of certificates or encr...

G06Q 20/40   Authorisation, e.g. identif...

G06Q 30/06   Buying, selling or leasing ...

H04L 2463/102   applying security measure f...

H04L 63/0442   wherein the sending and rec...

H04L 63/0823   using certificates cryptogr...

H04L 67/01   Protocols

System, method and article of manufacture for secure digital certification of electronic commerce

First Claim

11 Assignments

0 Petitions

Accused Products

Abstract

572 Citations

21 Claims

Specification

Solutions

Use Cases

Quick Links

System, method and article of manufacture for secure digital certification of electronic commerce

First Claim

11 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

572 Citations

21 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links