Method of providing assured transactions using secure transaction appliance and watermark verification
First Claim
1. A method comprising:
- receiving from a transaction server at a secure transaction device electronic content and a tag relating to a known portion of the electronic content, wherein the tag comprises a hypertext markup of the electronic content;
associating with the tag first electronic data for use in verifying the known portion of the electronic content;
establishing a first communication path between the secure transaction device and a security module comprising at least one of a removable peripheral memory storage device and a wireless device connected to a user system associated with a user, said secure transaction device being separate from said user system, the first communication path including the secure transaction device disposed between the transaction server and the user system;
establishing a second communication path between the secure transaction device and the user system; and
initiating an authorization process for being performed in conjunction with the security module, the authorization process comprising;
providing the known portion of the electronic content via the user system for presentation to the user;
providing the first electronic data to the user via the security module for authorizing the electronic content, wherein the known portion of the electronic content is verified by the user;
receiving from the user an indication that the known portion of the electronic content is authorized, wherein receiving the indication comprises receiving via the security module a user input; and
digitally authorizing the electronic content in response to the indication.
3 Assignments
0 Petitions
Accused Products
Abstract
Disclosed is a method of improving electronic security by establishing a path between a user and a secure transaction appliance. The secure transaction appliance receiving information destined for the user which includes a tagged portion, said tagged portion triggering the secure transaction appliance to forward the information to the computer from which the request was issued, and to seeking an electronic signature to verify the content or transaction by transmitting a watermark, tagged portion of the content, or similar electronic content. The secure trusted path providing the user with the tagged portion incorporating additional elements such as a watermark, or in some embodiments only the additional elements, upon a personalized security device associated with the user making interception or manipulation more complex and difficult.
67 Citations
14 Claims
-
1. A method comprising:
-
receiving from a transaction server at a secure transaction device electronic content and a tag relating to a known portion of the electronic content, wherein the tag comprises a hypertext markup of the electronic content; associating with the tag first electronic data for use in verifying the known portion of the electronic content; establishing a first communication path between the secure transaction device and a security module comprising at least one of a removable peripheral memory storage device and a wireless device connected to a user system associated with a user, said secure transaction device being separate from said user system, the first communication path including the secure transaction device disposed between the transaction server and the user system; establishing a second communication path between the secure transaction device and the user system; and initiating an authorization process for being performed in conjunction with the security module, the authorization process comprising; providing the known portion of the electronic content via the user system for presentation to the user; providing the first electronic data to the user via the security module for authorizing the electronic content, wherein the known portion of the electronic content is verified by the user; receiving from the user an indication that the known portion of the electronic content is authorized, wherein receiving the indication comprises receiving via the security module a user input; and digitally authorizing the electronic content in response to the indication. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method comprising:
-
receiving from a transactor at a secure transaction device electronic content and a tag associated with a known portion of the electronic content, the electronic content for transmission to a user system associated with a user, wherein the tag comprises a hypertext markup of the electronic content; associating with the tag first electronic data for use in verifying the known portion of the electronic content; communicating between said secure transaction device and said transactor using a secure communication channel, said secure transaction device being separate from said user system, the secure communication path including the secure transaction device disposed between the transaction server and the user system; modifying, by said secure transaction device, at least the known portion of the electronic content in response to at least one of the transactor, the user, the tag, and the electronic content; associating with the tag second electronic data, the second electronic data providing the user an association with the first electronic data; storing within a memory of the secure transaction device the modified electronic content and second electronic data; establishing a first communication path between the secure transaction device and a user security module comprising at least one of a removable peripheral memory storage device and a wireless device coupled to the user system; transmitting the modified electronic content for display to the user on the user system; transmitting the second electronic data to the user via the user security module; and verifying authenticity of the modified electronic content in dependence upon the second electronic data, wherein the known portion of the electronic content is verified by the user; receiving from the user an indication that the known portion of the electronic content is authorized, wherein receiving the indication comprises receiving via the security module a user input; and digitally authorizing the electronic content in response to the indication. - View Dependent Claims (12, 13, 14)
-
Specification