Method for secure user and transaction authentication and risk management
First Claim
Patent Images
1. A method of providing a user signature on a network transaction, comprising:
- receiving, by a security server, transaction information representing a transaction between a network user and a network site;
calculating, by the security server, a one-time-password based on (i) the received transaction information and (ii) a secret shared by the security server and the network site, but not by the user, wherein the one-time-password is independently calculable by the network site based on the shared secret and the transaction information; and
transmitting, by the security server, the calculated one-time-password for application as the user'"'"'s signature on the transaction and verification by the network site;
wherein the calculated one-time-password is transmitted, by the security server to one user network device, for presentation on a window displayed by that user network device and entry by the user onto a network page associated with the network site and displayed on another user network device.
11 Assignments
0 Petitions
Accused Products
Abstract
To provide a user signature on a network transaction, a security server receives transaction information representing a transaction between a network user and a network site, such as a website. The security server calculates a one-time-password based on the received transaction information and a secret shared by the security server and the network site, but not by the user. The security server transmits the calculated one-time-password for application as the user'"'"'s signature on the transaction. The one-time-password is independently calculable by the network site based on the shared secret.
103 Citations
16 Claims
-
1. A method of providing a user signature on a network transaction, comprising:
-
receiving, by a security server, transaction information representing a transaction between a network user and a network site; calculating, by the security server, a one-time-password based on (i) the received transaction information and (ii) a secret shared by the security server and the network site, but not by the user, wherein the one-time-password is independently calculable by the network site based on the shared secret and the transaction information; and transmitting, by the security server, the calculated one-time-password for application as the user'"'"'s signature on the transaction and verification by the network site; wherein the calculated one-time-password is transmitted, by the security server to one user network device, for presentation on a window displayed by that user network device and entry by the user onto a network page associated with the network site and displayed on another user network device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method of providing a user signature on a network transaction, comprising:
-
receiving, by one user agent on a user network device from a security server, a one-time-password corresponding to (i) transaction information representing a transaction between a user and a network site and (ii) a secret shared by the security server and the network site, but not by the user, wherein the one-time-password is independently calculable by the network site based on the shared secret and the transaction related information; transferring the one time password from the one user agent to another user agent on another different user network device; and transmitting, by the other user agent to the network site, the calculated one-time-password as the user'"'"'s signature on the transaction for verification by the network site. - View Dependent Claims (10)
-
-
11. A method of authenticating a user on a network, comprising:
-
receiving, by a security server, a request of a network site to have a user authenticated; calculating, by the security server, a one-time-password based on a secret shared by the security server and the network site, but not by the user, wherein the one-time-password is independently calculable by the network site based on the shared secret; and transmitting, by the security server to a window displayed on a network device of the user, the calculated one-time-password for entry by the user onto a network page associated with the network site and displayed on another network device of the user, and for subsequent verification by the network site to thereby authenticate the user. - View Dependent Claims (12, 13, 14)
-
-
15. A method of authenticating a user on a network, comprising:
-
receiving, by a user agent on a network device of a user, a one-time-password corresponding to a secret shared by a security server and a network site, but not by the user; transferring, by the user, the received one-time-password from the user agent on the network device to another user agent on another network device; and transmitting, by the other user agent to the network site, the transferred one-time-password for subsequent verification by the network site to thereby authenticate the user; wherein the one-time-password is independently calculable by the network site based on the shared secret. - View Dependent Claims (16)
-
Specification