US20140237573A1 - Method and system using a cyber id to provide secure transactions - Google Patents
Method and system using a cyber id to provide secure transactionsDownload PDFInfo
- Publication number
- US20140237573A1 US20140237573A1US14/260,342US201414260342AUS2014237573A1US 20140237573 A1US20140237573 A1US 20140237573A1US 201414260342 AUS201414260342 AUS 201414260342AUS 2014237573 A1US2014237573 A1US 2014237573A1
- Authority
- US
- United States
- Prior art keywords
- subscriber
- service provider
- transaction
- information manager
- credential information
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Classifications
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/083—Network architectures or network communication protocols for network security for authentication of entities using passwords
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0853—Network architectures or network communication protocols for network security for authentication of entities using an additional device, e.g. smartcard, SIM or a different communication terminal
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/34—User authentication involving the use of external additional devices, e.g. dongles or smart cards
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
- H04L63/102—Entity profiles
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2221/00—Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/21—Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/2115—Third party
Definitions
- the present inventiondiscloses to a new process for protecting a user's identification and confidential information during online transactions.
- the new processcreates and utilizes a third-party intermediary between the user and the service provider which prevents a hacker's ability to gain access to the user's information by not only authorizing each specific transaction but also validating the identification of the user as well as the credibility of the service provider.
- Online securityis essential for a provider when rendering a service to any subscriber.
- a subscriber login authenticationis often required in order for a subscriber to access these services.
- the providerwill ask the subscriber for a username and login password to authenticate the user in future transactions, and the subscriber must input this information before gaining access to the services requested.
- the present inventiondiscloses a new method for protecting confidential information during online transactions which aims to solve all the aforementioned dilemmas.
- the processutilizes an intermediary, called a Credential Information Manager (“CIM”), which transmits confidential information between a subscriber and internet service provider.
- the CIMprovides a CyberID to the service provider which authorizes the transaction. It uses both a transaction ID, provided by the service provider to represent that single transaction, and confidential security information, provided by the subscriber for validation of his identity. This process occurs automatically upon the subscriber's attempt to enter into a transaction with the service provider, based on a pre-existing agreement between the service provider and the CIM.
- the present inventionserves two functions: it certifies the validity of both parties to the transaction to ensure that neither the subscriber nor the service provider are fraudulent, and it also provides an added level of security to prevent hackers from gaining access to a user's login information and thus their accounts.
- the present inventioncreates an additional step which causes difficulty for a hacker to access since the transfer of information is being sent in a triangular fashion rather than back and forth between only two entities.
- a request for a transactionis sent from the SU to the TSP, which creates a transaction identifier (“TID”), stores the TID in the TSP memory, and transmits the TID to the SU.
- TIDtransaction identifier
- the SUtransmits an authentication request along with the TID and a SubscriberID to the CIM.
- the CIMauthenticates the received SubscriberID with the SubscriberID in its memory, and transmits verification request along with the TID received from the SU to the TSP.
- the TSPverifies the received TID with the TID in its memory and reports the result of the verification to the CIM.
- the CIMtransmits the CyberID and the subscriber information to the TSP, and transmits a transaction authorization to the SU.
- FIG. 1shows a traditional setup of a subscriber on an authenticated login.
- FIG. 2shows the present invention, a method for securing confidential information in an online transaction using a credential information manager.
- FIG. 3shows the step-by-step method of using the CyberID.
- FIG. 4shows a sequence diagram of the step-by-step process shown in FIG. 3 with the process beginning with the Transaction Service Provider.
- FIG. 5shows an alternate version of FIG. 4 with the process beginning with the Subscriber.
- FIG. 6shows the present invention with the subscriber unit made up of multiple units.
- FIG. 7shows the present invention with the CIM made up of multiple organizations.
- FIG. 8shows an example of the present invention using a Notebook as the subscriber unit and a USB ID as the subscriber ID.
- FIG. 9shows an example of the present invention using a Smartphone as the subscriber unit and a SIM card as subscriber ID.
- FIG. 10shows an example of the present invention using a Point of Sales Terminal as the subscriber unit and an electronic card reader as subscriber ID.
- FIG. 11shows an example of the present invention using a Mobile phone as the subscriber unit and a SIM card as the subscriber ID, and also using a Point of Sales Terminal w/out card reader.
- FIG. 12shows an example of the present invention using a Mobile phone as the subscriber unit and a SIM card as the subscriber ID, and also using a Tablet Computer.
- FIGS. 1-12Description will now be given of the invention with reference to the attached FIGS. 1-12 . It should be understood that these figures are exemplary in nature and in no way serve to limit the scope of the invention as the invention will be defined by claims, and the scope of the invention will be the scope of the claims, as interpreted by the Courts.
- the present inventiondiscloses a new method for protecting confidential information during online transactions which aims to solve all the aforementioned dilemmas.
- the processutilizes an intermediary, called a Credential Information Manager (“CIM”), which transmits confidential information between a subscriber and internet service provider.
- the CIMprovides a CyberID to the service provider which authorizes the transaction. It uses both a transaction ID, provided by the service provider to represent that single transaction, and confidential security information, provided by the subscriber for validation of his identity. This process occurs automatically upon the subscriber's attempt to enter into a transaction with the service provider, based on a pre-existing agreement between the service provider and the CIM.
- the present inventionserves two functions: it certifies the validity of both parties to the transaction to ensure that neither the subscriber nor the service provider are fraudulent, and it also provides an added level of security to prevent hackers from gaining access to a user's login information and thus their accounts.
- the present inventioncreates an additional step which causes difficulty for a hacker to access since the transfer of information is being sent in a triangular fashion rather than back and forth between only two entities.
- FIG. 1shows a traditional method of transaction between a subscriber 10 and a service provider 17 .
- a subscriberwill use his subscriber unit 15 (i.e., a computer or smart phone) to log into the service provider's site to complete a transaction.
- subscriber unit 15i.e., a computer or smart phone
- the login credentials associated with subscriber 10i.e., his username and password
- the application server 17 ais where the service provider 17 hosts an authenticating software application 17 b , which verifies the subscriber's login credentials 10 a.
- FIG. 2shows the basic model of the present invention, denoted the “CyberID Technique.”
- the present inventionassigns a unique ID to a subscriber 20 on a network, such as the Internet or a Point of Sales Network, to distinguish that subscriber and the specific transaction involved. This allows the subscriber to have access to the services requested, while incorporating a secure transaction between an information manager and the Transaction Service Provider 27 (hereinafter “TSP”) in order to share or exchange the subscriber's credential information.
- TSPTransaction Service Provider
- the credential informationis the subscriber identification.
- This inventionpresents the use of a Credential Information Manager 23 (hereinafter “CIM”), which acts as a middle-man between the subscriber of the service and the service provider.
- CIMCredential Information Manager 23
- the CIM's roleis to provide verification to both parties in the transaction that the other is who they say they are, as well as provide an additional layer of security to prevent hacking and theft of confidential information.
- the CIMwill verify to the subscriber that the online account which he is attempting to access (or log in to) actually belongs to that service provider (rather than being fraudulent).
- the CIMalso certifies to the TSP that the person attempting to log in with the subscriber's credentials is actually the subscriber. This protects the subscriber from giving away personal information and login identification to a fake site, while at the same time protects the service provider from potential liability for granting access to a user's account to a hacker.
- FIG. 3shows the step-by-step method of The CyberID technique, introducing the new component, a CIM, which acts as a proxy for the subscriber.
- a CIMwhich acts as a proxy for the subscriber.
- the TSPwill then return a TID which represents the particular transaction to the CIM.
- the subscriber unitwill send the TID and a subscriber ID (which is the equivalent of a username), via transmission 3 , to the CIM for validation.
- the CIMwill send, via transmission 4 , the subscriber information and a CyberID to the TSP.
- This processpresents an added level of security for personal information that is not found in normal online login services, and is achieved because of a variety of factors.
- the CIMcan ensure of the credibility of the service provider by negotiating an agreement with a TSP for all future transactions, thereby creating a link for the transfer of Transaction IDs and subscriber credential information.
- the information sent to the service providercan be on a special link between the CIM and the TSP, such as a VPN, Internet, Intranet, PSTN, SMS, voice call, or even encrypted data.
- a hackereven if the username and password information is lost by the TSP, a hacker still needs to get over the security barrier set up by the CIM to steal any confidential information.
- the passwordis generally the only secure element involved, whereas the ID is not. This creates the problem that a hacker who gains access to the TSP can also access any accounts connected to that TSP.
- the passwordis not the only secure element.
- a CyberIDsent from the CIM to the TSP, via transmission 4 , to activate the transaction, is another protected element, which never crosses the subscriber's path. Thus, a hacker trying to access the subscriber's account will never see the CyberID or possibly ever even know of its existence.
- the authentication between the subscriber and the CIMis one of the key factors.
- a transaction ID (“TID”)differs from a password generally used in a transaction by a user because the TID only represents a single transaction, and is unique to each transaction.
- the other key factoris the CyberID, which can indicate the name of the user and any confidential information which the subscriber provides for verification of his identity.
- the CIMpasses the CyberID to the TSP, the TSP becomes aware of not only the subscriber involved, but the specific transaction which he is looking to complete.
- a method providing additional securitywould include delaying the transmission of the CyberID by the CIM until a TID transmitted by the SU can be verified as matching a TID
- the CIMwill pass the credential information to the TSP, via transmission 4 , which will then be alerted as to the identity of the subscriber.
- the providerwill use authenticated information provided by the subscriber to the TSP to automatically login the subscriber to its own online services.
- the TSPcan require the subscriber to key in a password to the subscriber unit (such as if the TSP is a Bank) which only the TSP is aware of. This use of a password is the same as in a generic ID/password system—the previous step of authentication by a CIM is one aspect of the present invention that distinguishes it from previous methods and systems.
- This extra stepcreates a secured transaction between the subscriber and TSP, saving the login credentials of the subscriber and making them free from hacking
- a hackerwho is able to determine the password of a user, can input it and freely have access to that user's account.
- the hackermay be able to uncover a username, and maybe even a password, but he will not be able to overcome the security procedure set up such as the authenticating information required with the CIM, or the CyberID itself.
- the login credentials associated with subscriber 20i.e., his username and password
- 20 athe login credentials associated with subscriber 20 (i.e., his username and password) are illustrated as 20 a .
- CIM application server 23 ahosts a subscriber authenticating software application illustrated as 23 e.
- CIM database server 23 bhandles and CIM database 23 c stores, the subscribers' CyberIDs, which are illustrated as 23 d.
- FIG. 3shows TSP application server 27 a that hosts a CyberID authenticating software application 27 c.
- TSP application server 27 bhosts the services that are to be provided to the subscriber.
- the method discussed in this disclosureuses a triangular relationship between the Subscriber, the Transaction Service Provider, and the Credential Information Manager to overcome security concerns that are common in online transactions.
- the communication technology between the CIM and the SUis a secure and authenticated communication channel, including, but not limited to, a VPN, audio or visual signalling, secure tunnelling, or any encrypted communication infrastructure or technology, such as a SIM card.
- the communication link 81 between the SU and the CIMis for a secure data transfer, where the CIM acts as a liaison for the subscriber and distributes the subscriber's confidential credential information to the TSP.
- Examples of a Subscriber Unitinclude a computer 25 a (such as a notebook computer or tablet), a PDA, a smartphone 25 b, and/or POS terminal 25 d. These different examples can be seen in FIGS. 8-12 , each showing the same triangular transaction, but utilizing different subscriber units.
- the subscriberis a member of a network 29 managing the transaction between the TSP and the CIM.
- Such management of the transactionoccurs from a pre-arranged agreement between the TSP and a CIM, which distributes TIDs to the proper TSP for verification.
- a subscribermay then enter into a transaction with the TSP.
- FIGS. 4 and 5disclose two separate flowcharts illustrating the steps which the present invention undergoes.
- FIG. 4discloses the first step in the process starting with the TSP
- FIG. 5discloses the first step in the process starting with the subscriber.
- the TSPprovides a session to the SU via transmission 1 .
- the TSPresponds by sending a TID to the SU.
- a subscriberrequests authentication from the CIM via his SU. The authentication can be done by a method such as, for example, ID challenge, Password, or Voice call.
- Authenticationis done by the CIM who receives the TID and Subscriber ID via transmission 3 transmitted on a trusted (or secure) channel 81 between SU and CIM.
- a subscriberwill need to be aware of the existence of a CIM connected to their network, such as via an app on a smart-phone or a website link on a computer, for the process to begin.
- the trusted channelis uniquely set up for the Subscriber, it may not be necessary for the Subscriber ID to be sent over to the CIM.
- a trusted channel 81to be set up, such as by a computer application that setup a VPN, a data-encrypted TID sent to the CIM, or a secure phone line, and secure links 82 (between the TSP and SU) and 83 (between the TSP and CIM) may be similarly constituted.
- the CIMwill verify the TID with the TSP. After confirming that the TID (and thus also the TSP) is valid, the CIM sends a Cyber ID which represent the subscriber and some subscriber information (such as Name, Gender, birth date, address, and other information that the subscriber can use to verify itself), to the TSP.
- the TSPUpon receipt of this information, the TSP updates the subscriber information to the SU, via transmission 5 , in a similar way that any internet webpage is updated.
- the Cyber IDmay or may not be displayed on the SU. The subscriber then completes the transaction with the TSP.
- the CIMUpon confirming credibility of both parties, the CIM will send subscriber information to the TSP, along with a CyberID.
- the information provided by the CIM to the TSPincludes some information that subscriber can use to verify itself. Together with the Cyber ID, this represents the subscriber.
- the CyberIDis similar in use to a username, but is provided by the CIM instead of the user, thereby diminishing the opportunity for the information to be hacked and stolen. If the subscriber is a member of the CIM's network, all transactions will go through the CIM to ensure safety and protection of the information. All parties (Subscriber, CIM and TSP) enjoy benefits from this CyberID system by avoiding the need for, and downfalls of, an ID and Password system.
- the subscriber informationOnce the subscriber information has been acquired by the TSP, it will be displayed on the subscriber device when a subscriber attempts to use the online service. The subscriber can verify his own information with the information given previously to the CIM, and then confirm the transaction. Once the transaction is confirmed, the TSP may provide the CIM with updated details of the transaction.
- the Subscriber Unitcan be one single unit with multiple software applications running on it, or a combination of two units or two or more hardware devices.
- device Awhich may be a mobile phone 25 b
- device Binterfaces with the TSP 27 .
- An example of device “B” in this scenariois a Point of Sale (“POS”) terminal 25 c (such as a user-operated register or an ATM).
- POSPoint of Sale
- the POSis capable of being part of the transaction network, but is not necessarily connected to the Internet.
- Passing on the TID between device A and Bcan be automatic via link 110 (via communication technology such as Wi-Fi, Bluetooth, and other communication protocol) or manual, where the subscriber directly transfers, via link 111 , the information from Device B to Device A.
- devices A and Bcan be any suitable communication device, including a phone (smart phone or general phone), PDA, notebook, PC, tablet, modem, fax machine, display/input terminal, and POS/ATM.
- the CIMmay have a single identity or consist of multiple identities, as shown in FIG. 7 .
- Organization Xwhich is a Certified CIM (“CCIM”)
- CCIMCertified CIM
- Organizations Y and Zwhich are called Authentication/Secure Link Service Providers (“ASLSPs”).
- ASLSPseach have subscribers (i.e. subscriber 70 a and SU 73 a associated with Organization Z, and subscriber 70 b and SU 73 b associated with Organization Y) and can do authentication of their respective subscribers.
- the ASLSPpasses the subscriber ID and TID to the CCIM, which interfaces with the TSP.
- a CCIMis a CIM that does not perform the subscriber authentication function, but the CCIM connects to TSP and performs the interface functions with the TSP.
- Communication channel 71 a from Organization X to Organization Z and communication channel 71 b from Organization Y to Organization Zare considered secured.
- AT&Tis an ASLSP having the role of Organization Y
- Verizonis an ASLSP having the role of Organization Z, each have a pool of subscribers, such as mobile phone users.
- the role of the CCIMmay be performed by another company, or may be one or more of Organizations Y or Z.
- Organization Xthe CCIM connects to the TSP.
- Organizations X, Y and Zthey perform the function of CIM. It is possible for multiple companies performing role of Y and Z to connect to X. A company Y or Z can connect to multiple X.
- a subscriberuses a PC to go to the Amazon web site. While on the site, he decides to select a book and adds it to his cart. After he finishes the selection, the subscriber clicks “proceed to checkout.”
- the present inventiondiffers from a traditional online transaction by involving a CIM, whereas the traditional method allowed for only direct transfer of information between the SU and TSP.
- Amazonis the TSP and AT&T is the CIM.
- AmazonAfter the subscriber clicks “proceed to checkout,” Amazon returns a Transaction ID (TID) to the subscriber, and Amazon's web page would include, for example, a message saying “AT&T member click here.” At this point, Amazon does not know who the subscriber is, but only knows that the subscriber is an AT&T member (assuming that the subscriber has clicked on this link to activate the CIM).
- TIDTransaction ID
- the method of passing the TID to the CIMcan be manual or automatic.
- softwarecan be run in the background, pick up the TID, and send it immediately and directly to the CIM.
- FIG. 9is one such automatic method.
- the subscribersends the verification to the CIM.
- the subscriber unitwhich stores the subscriber identity, will initialize an authentication communication with the CIM. Once authenticated, the subscriber unit passes the TID to the CIM. In this example, the CIM at this point knows the identification of the subscriber, knows that Amazon is the TSP.
- AT&Tverifies and confirms the existence of the TID with Amazon. Then AT&T sends the “Cyber ID” and some subscriber information, which may include a subscriber's name and some numeric characters, such as “Benjamin Fang 2001.” At this point in the example, Amazon knows who the subscriber is by identifying the Cyber ID attached to the subscriber unit. Next, Amazon would display “Benjamin Fang 2001,” after the subscriber clicks the “AT&T Member click here.” The authentication procedure between the SU and CIM happens instantaneously and thus verifies both the CyberID and the TID by the time the subscriber connects to the aforementioned link.
- the subscribermay see the CyberID on the screen (where he would normally be required to put in a username), or other information that the subscriber can use to confirm that the account is correct, in this case “Benjamin Fang 2001,” and can then verify that his own identity is correct.
- the account identification(such as “Benjamin Fang 2001”) will be designed to let the subscriber decide what to use and can be changed over time.
- the CIMissues a unique CyberID that representing the CIM's subscriber to a TSP.
- the CyberID issued to a specific TSPmay always be fixed for the CIM's subscriber.
- the CyberIDwill remain fixed for the CIM's subscriber.
- This CyberID techniquegives an advantage to the CIM's subscriber, who may stay anonymous to the TSP, but for enforcement requirements, may still be able to trace to the subscriber identity via the CIM.
- a subscriberwants to do online banking using a smartphone.
- the subscriberuses the browser (or application) running on the smartphone and browses the bank's site or downloaded app.
- the bankis the TSP.
- the subscriber clicks the “AT&T member click here” linkthe same link as in the previous example
- the bankwill provide a TID to the user's smartphone.
- Another application on the phone(which the subscriber will have been prompted to download the first time he uses this online service on his smart phone) will start the authentication process with the CIM using the SIM card 95 on the smartphone.
- a SIM cardis unique to the subscriber.
- the applicationsets up a secure channel from smartphone to the CIM, which allows for safe passage of the TID from the smartphone to the CIM.
- the CIMAfter the CIM successfully verifies the TID with the bank, through the same pre-agreement as described above, the CIM passes the Cyber ID and the subscriber's credential information to the bank. At this point the bank knows the identity of the subscriber that received the TID. When this occurs, the bank will update its web page on the subscriber's smartphone and display the subscriber's name on the page. Then, the bank simply requests a password from the subscriber.
- This method of getting the TSP to show the subscriber's accountis also applicable for when the TSP is an organization such as enterprise, school, union, or any other of which the subscriber is a member of the organization.
- the subscribercomes to a point of sale terminal, such as a shopping mall cash register or vending machine, and decides to use the Cyber ID method to do the transaction.
- the subscriberwill inform the counter that he is an AT&T member.
- the point of sales terminalwill generate a TID. If the point of sales counter has an ID reader, then that allows the subscriber to do the authentication with the CIM.
- the subscriberwill tap or insert an electronic subscriber ID card 105 (provided by the CIM, in this case AT&T) at the ID reader and authenticate with the CIM.
- the subscribercan use his AT&T mobile phone, send a text message or use an application on the mobile phone to send the TID to the CIM.
- the authenticationis done by using the SIM card on the mobile phone.
- the CIMAfter the CIM successfully authenticates the subscriber and gets the TID, the CIM will verify the TID with the TSP. After verification, the CIM will send the Cyber ID and the subscriber credential information (such as credit card information) to the TSP. The TSP will then update the POS terminal with the subscriber credential information (in this case, the credit card information) and the subscriber can complete the transaction.
- the CIMAfter the CIM successfully authenticates the subscriber and gets the TID, the CIM will verify the TID with the TSP. After verification, the CIM will send the Cyber ID and the subscriber credential information (such as credit card information) to the TSP. The TSP will then update the POS terminal with the subscriber credential information (in this case, the credit card information) and the subscriber can complete the transaction.
- the subscriber credential informationin this case, the credit card information
- This triangular processdoes not have to be sequential, as is shown in FIGS. 3-5 .
- the authentication between the Subscriber and the CIMcan be done in different sequence in different situation. For example, if the SU is a Mobile Phone, the authentication is always done once the mobile phone is connected to a network. However, when done in sequential order, a subscriber clicks on a TSP web page, and then the TSP will send a TID to a subscriber unit.
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- General Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Signal Processing (AREA)
- Computer Networks & Wireless Communication (AREA)
- Computing Systems (AREA)
- Theoretical Computer Science (AREA)
- Software Systems (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Telephonic Communication Services (AREA)
- Mobile Radio Communication Systems (AREA)
- Exchange Systems With Centralized Control (AREA)
Abstract
Description
- The present invention discloses to a new process for protecting a user's identification and confidential information during online transactions. The new process creates and utilizes a third-party intermediary between the user and the service provider which prevents a hacker's ability to gain access to the user's information by not only authorizing each specific transaction but also validating the identification of the user as well as the credibility of the service provider.
- Online security is essential for a provider when rendering a service to any subscriber. As a common security feature, a subscriber login authentication is often required in order for a subscriber to access these services. Normally the provider will ask the subscriber for a username and login password to authenticate the user in future transactions, and the subscriber must input this information before gaining access to the services requested.
- Common security issues are found during the process of logging in or keying in a user's credentials, such as his username and password. In order for a subscriber to log on to any service, the username and login password are requested is in one process, usually one right after the other. If the security protecting this login process is compromised, a hacker can get into the user's account because the username and login password are inputted simultaneously, thus providing access to both. In the alternative to when a hacker accesses a user's account by “stealing” their username and password, a security breach is also possible when a hacker either imitates the service provider or steals credential information directly from the service provider. When this happens, the provider's services can be illegally duplicated by a bogus site. Once the subscriber's username and password are inputted into a phony site, a hacker is able to steal subscriber credentials through phishing, and in turn access any information connected to that username. Hackers can also compromise the security of online services by accessing the information stored in the subscriber unit (hereinafter “SU”) whenever a subscriber uses the “auto login feature.” All of these scenarios present issues that require a secure method of user login to prevent theft of authentication information, either from the subscriber or the service provider.
- The present invention discloses a new method for protecting confidential information during online transactions which aims to solve all the aforementioned dilemmas. The process utilizes an intermediary, called a Credential Information Manager (“CIM”), which transmits confidential information between a subscriber and internet service provider. The CIM provides a CyberID to the service provider which authorizes the transaction. It uses both a transaction ID, provided by the service provider to represent that single transaction, and confidential security information, provided by the subscriber for validation of his identity. This process occurs automatically upon the subscriber's attempt to enter into a transaction with the service provider, based on a pre-existing agreement between the service provider and the CIM. The present invention serves two functions: it certifies the validity of both parties to the transaction to ensure that neither the subscriber nor the service provider are fraudulent, and it also provides an added level of security to prevent hackers from gaining access to a user's login information and thus their accounts. The present invention creates an additional step which causes difficulty for a hacker to access since the transfer of information is being sent in a triangular fashion rather than back and forth between only two entities.
- A method and system for securing a transaction by a user involving a subscriber unit (“SU”) (having a processor, a memory, and a display and configured to accept user input), a credential information manager (“CIM”) (having a processor and a memory), and a transaction service provider (“TSP”) (having a processor and a memory). A cyber identifier (“CyberID”), a subscriber identifier (“SubscriberID”), and subscriber information, each associated with the user, is stored in the CIM memory. A request for a transaction is sent from the SU to the TSP, which creates a transaction identifier (“TID”), stores the TID in the TSP memory, and transmits the TID to the SU. The SU transmits an authentication request along with the TID and a SubscriberID to the CIM. The CIM authenticates the received SubscriberID with the SubscriberID in its memory, and transmits verification request along with the TID received from the SU to the TSP. The TSP verifies the received TID with the TID in its memory and reports the result of the verification to the CIM. The CIM transmits the CyberID and the subscriber information to the TSP, and transmits a transaction authorization to the SU.
FIG. 1 shows a traditional setup of a subscriber on an authenticated login.FIG. 2 shows the present invention, a method for securing confidential information in an online transaction using a credential information manager.FIG. 3 shows the step-by-step method of using the CyberID.FIG. 4 shows a sequence diagram of the step-by-step process shown inFIG. 3 with the process beginning with the Transaction Service Provider.FIG. 5 shows an alternate version ofFIG. 4 with the process beginning with the Subscriber.FIG. 6 shows the present invention with the subscriber unit made up of multiple units.FIG. 7 shows the present invention with the CIM made up of multiple organizations.FIG. 8 shows an example of the present invention using a Notebook as the subscriber unit and a USB ID as the subscriber ID.FIG. 9 shows an example of the present invention using a Smartphone as the subscriber unit and a SIM card as subscriber ID.FIG. 10 shows an example of the present invention using a Point of Sales Terminal as the subscriber unit and an electronic card reader as subscriber ID.FIG. 11 shows an example of the present invention using a Mobile phone as the subscriber unit and a SIM card as the subscriber ID, and also using a Point of Sales Terminal w/out card reader.FIG. 12 shows an example of the present invention using a Mobile phone as the subscriber unit and a SIM card as the subscriber ID, and also using a Tablet Computer.- Description will now be given of the invention with reference to the attached
FIGS. 1-12 . It should be understood that these figures are exemplary in nature and in no way serve to limit the scope of the invention as the invention will be defined by claims, and the scope of the invention will be the scope of the claims, as interpreted by the Courts. - The present invention discloses a new method for protecting confidential information during online transactions which aims to solve all the aforementioned dilemmas. The process utilizes an intermediary, called a Credential Information Manager (“CIM”), which transmits confidential information between a subscriber and internet service provider. The CIM provides a CyberID to the service provider which authorizes the transaction. It uses both a transaction ID, provided by the service provider to represent that single transaction, and confidential security information, provided by the subscriber for validation of his identity. This process occurs automatically upon the subscriber's attempt to enter into a transaction with the service provider, based on a pre-existing agreement between the service provider and the CIM. The present invention serves two functions: it certifies the validity of both parties to the transaction to ensure that neither the subscriber nor the service provider are fraudulent, and it also provides an added level of security to prevent hackers from gaining access to a user's login information and thus their accounts. The present invention creates an additional step which causes difficulty for a hacker to access since the transfer of information is being sent in a triangular fashion rather than back and forth between only two entities.
- The present invention discloses and new method for securing confidential information during online transactions.
FIG. 1 shows a traditional method of transaction between asubscriber 10 and aservice provider 17. Under this method, a subscriber will use his subscriber unit15 (i.e., a computer or smart phone) to log into the service provider's site to complete a transaction. There is no other party or entity involved in the transaction, and there is no added level of security between the transfers of information between the two. InFIG. 1 , the login credentials associated with subscriber10 (i.e., his username and password) are illustrated as10a. Theapplication server 17ais where theservice provider 17 hosts anauthenticating software application 17b, which verifies the subscriber'slogin credentials 10a. FIG. 2 shows the basic model of the present invention, denoted the “CyberID Technique.” The present invention assigns a unique ID to asubscriber 20 on a network, such as the Internet or a Point of Sales Network, to distinguish that subscriber and the specific transaction involved. This allows the subscriber to have access to the services requested, while incorporating a secure transaction between an information manager and the Transaction Service Provider27 (hereinafter “TSP”) in order to share or exchange the subscriber's credential information. In this case, the credential information is the subscriber identification.- This invention presents the use of a Credential Information Manager23 (hereinafter “CIM”), which acts as a middle-man between the subscriber of the service and the service provider. The CIM's role is to provide verification to both parties in the transaction that the other is who they say they are, as well as provide an additional layer of security to prevent hacking and theft of confidential information. The CIM will verify to the subscriber that the online account which he is attempting to access (or log in to) actually belongs to that service provider (rather than being fraudulent). At the same time, the CIM also certifies to the TSP that the person attempting to log in with the subscriber's credentials is actually the subscriber. This protects the subscriber from giving away personal information and login identification to a fake site, while at the same time protects the service provider from potential liability for granting access to a user's account to a hacker.
FIG. 3 shows the step-by-step method of The CyberID technique, introducing the new component, a CIM, which acts as a proxy for the subscriber. When a subscriber attempts to log onto a service provider's site online, he will be instructed, viatransmission 1, to enter the site or click on a link which signifies, viatransaction 2, to the service provider that the subscriber is requesting to enter into a transaction. The TSP will then return a TID which represents the particular transaction to the CIM. The subscriber unit will send the TID and a subscriber ID (which is the equivalent of a username), viatransmission 3, to the CIM for validation. Once the identity of both the subscriber and TSP are validated, the CIM will send, viatransmission 4, the subscriber information and a CyberID to the TSP.- This process presents an added level of security for personal information that is not found in normal online login services, and is achieved because of a variety of factors. First, the CIM can ensure of the credibility of the service provider by negotiating an agreement with a TSP for all future transactions, thereby creating a link for the transfer of Transaction IDs and subscriber credential information. Second, the information sent to the service provider can be on a special link between the CIM and the TSP, such as a VPN, Internet, Intranet, PSTN, SMS, voice call, or even encrypted data. And third, even if the username and password information is lost by the TSP, a hacker still needs to get over the security barrier set up by the CIM to steal any confidential information.
- In a traditional ID/Password method, where a subscriber keys into the TSP's web page, the password is generally the only secure element involved, whereas the ID is not. This creates the problem that a hacker who gains access to the TSP can also access any accounts connected to that TSP. In the present invention, the password is not the only secure element. A CyberID, sent from the CIM to the TSP, via
transmission 4, to activate the transaction, is another protected element, which never crosses the subscriber's path. Thus, a hacker trying to access the subscriber's account will never see the CyberID or possibly ever even know of its existence. - In the present invention, the authentication between the subscriber and the CIM, known as the transaction ID, is one of the key factors. A transaction ID (“TID”) differs from a password generally used in a transaction by a user because the TID only represents a single transaction, and is unique to each transaction. The other key factor is the CyberID, which can indicate the name of the user and any confidential information which the subscriber provides for verification of his identity. When the CIM passes the CyberID to the TSP, the TSP becomes aware of not only the subscriber involved, but the specific transaction which he is looking to complete.
- In the case where there may be multiple CIMs, as discussed below, a method providing additional security would include delaying the transmission of the CyberID by the CIM until a TID transmitted by the SU can be verified as matching a TID
- The CIM will pass the credential information to the TSP, via
transmission 4, which will then be alerted as to the identity of the subscriber. When the credential information is exchanged between an information manager and the service provider, the provider will use authenticated information provided by the subscriber to the TSP to automatically login the subscriber to its own online services. In some cases, the TSP can require the subscriber to key in a password to the subscriber unit (such as if the TSP is a Bank) which only the TSP is aware of. This use of a password is the same as in a generic ID/password system—the previous step of authentication by a CIM is one aspect of the present invention that distinguishes it from previous methods and systems. This extra step creates a secured transaction between the subscriber and TSP, saving the login credentials of the subscriber and making them free from hacking This is a different process from the procedure normally taken by a subscriber, who would input his own credentials for authentication and use of an online service. There, a hacker who is able to determine the password of a user, can input it and freely have access to that user's account. In the present invention, the hacker may be able to uncover a username, and maybe even a password, but he will not be able to overcome the security procedure set up such as the authenticating information required with the CIM, or the CyberID itself. InFIG. 3 , the login credentials associated with subscriber20 (i.e., his username and password) are illustrated as20a.CIM application server 23ahosts a subscriber authenticating software application illustrated as23e.CIM database server 23bhandles andCIM database 23cstores, the subscribers' CyberIDs, which are illustrated as23d.AndFIG. 3 showsTSP application server 27athat hosts a CyberIDauthenticating software application 27c.TSP application server 27bhosts the services that are to be provided to the subscriber. - The method discussed in this disclosure uses a triangular relationship between the Subscriber, the Transaction Service Provider, and the Credential Information Manager to overcome security concerns that are common in online transactions. The communication technology between the CIM and the SU is a secure and authenticated communication channel, including, but not limited to, a VPN, audio or visual signalling, secure tunnelling, or any encrypted communication infrastructure or technology, such as a SIM card. The
communication link 81 between the SU and the CIM is for a secure data transfer, where the CIM acts as a liaison for the subscriber and distributes the subscriber's confidential credential information to the TSP. Examples of a Subscriber Unit include acomputer 25a(such as a notebook computer or tablet), a PDA, asmartphone 25b,and/or POS terminal25d.These different examples can be seen inFIGS. 8-12 , each showing the same triangular transaction, but utilizing different subscriber units. - In a preferred embodiment, for this process to be triggered, the subscriber is a member of a
network 29 managing the transaction between the TSP and the CIM. Such management of the transaction occurs from a pre-arranged agreement between the TSP and a CIM, which distributes TIDs to the proper TSP for verification. With this pre-agreement between the CIM and the TSP in place, a subscriber may then enter into a transaction with the TSP. FIGS. 4 and 5 disclose two separate flowcharts illustrating the steps which the present invention undergoes.FIG. 4 discloses the first step in the process starting with the TSP, whileFIG. 5 discloses the first step in the process starting with the subscriber. As shown inFIG. 4 , the TSP provides a session to the SU viatransmission 1. On a triggered event by the SU (such as when the subscriber clicks on “pay,” “join,” “start,” “member log-in,” or other online services on a browser, application or other running services of the SU via transmission2), the TSP responds by sending a TID to the SU. A subscriber requests authentication from the CIM via his SU. The authentication can be done by a method such as, for example, ID challenge, Password, or Voice call.- Authentication is done by the CIM who receives the TID and Subscriber ID via
transmission 3 transmitted on a trusted (or secure)channel 81 between SU and CIM. In a preferred embodiment, a subscriber will need to be aware of the existence of a CIM connected to their network, such as via an app on a smart-phone or a website link on a computer, for the process to begin. In the situation that the trusted channel is uniquely set up for the Subscriber, it may not be necessary for the Subscriber ID to be sent over to the CIM. There are various ways for a trustedchannel 81 to be set up, such as by a computer application that setup a VPN, a data-encrypted TID sent to the CIM, or a secure phone line, and secure links82 (between the TSP and SU) and83 (between the TSP and CIM) may be similarly constituted. The CIM will verify the TID with the TSP. After confirming that the TID (and thus also the TSP) is valid, the CIM sends a Cyber ID which represent the subscriber and some subscriber information (such as Name, Gender, birth date, address, and other information that the subscriber can use to verify itself), to the TSP. Upon receipt of this information, the TSP updates the subscriber information to the SU, viatransmission 5, in a similar way that any internet webpage is updated. The Cyber ID may or may not be displayed on the SU. The subscriber then completes the transaction with the TSP. - Upon confirming credibility of both parties, the CIM will send subscriber information to the TSP, along with a CyberID. The information provided by the CIM to the TSP includes some information that subscriber can use to verify itself. Together with the Cyber ID, this represents the subscriber. The CyberID is similar in use to a username, but is provided by the CIM instead of the user, thereby diminishing the opportunity for the information to be hacked and stolen. If the subscriber is a member of the CIM's network, all transactions will go through the CIM to ensure safety and protection of the information. All parties (Subscriber, CIM and TSP) enjoy benefits from this CyberID system by avoiding the need for, and downfalls of, an ID and Password system.
- Once the subscriber information has been acquired by the TSP, it will be displayed on the subscriber device when a subscriber attempts to use the online service. The subscriber can verify his own information with the information given previously to the CIM, and then confirm the transaction. Once the transaction is confirmed, the TSP may provide the CIM with updated details of the transaction.
- The Subscriber Unit can be one single unit with multiple software applications running on it, or a combination of two units or two or more hardware devices. In the case where the subscriber unit comprises a two device scenario, as shown in
FIGS. 6 and 12 , device A, which may be amobile phone 25b,interfaces with theCIM 23 while device B interfaces with theTSP 27. An example of device “B” in this scenario is a Point of Sale (“POS”) terminal25c(such as a user-operated register or an ATM). The POS is capable of being part of the transaction network, but is not necessarily connected to the Internet. Passing on the TID between device A and B can be automatic via link110 (via communication technology such as Wi-Fi, Bluetooth, and other communication protocol) or manual, where the subscriber directly transfers, vialink 111, the information from Device B to Device A. As shown inFIG. 8-12 , devices A and B can be any suitable communication device, including a phone (smart phone or general phone), PDA, notebook, PC, tablet, modem, fax machine, display/input terminal, and POS/ATM. - Like the subscriber unit, the CIM may have a single identity or consist of multiple identities, as shown in
FIG. 7 . Organization X, which is a Certified CIM (“CCIM”), interfaces with the TSP as well as with Organizations Y and Z, which are called Authentication/Secure Link Service Providers (“ASLSPs”). These ASLSPs each have subscribers (i.e.subscriber 70aandSU 73aassociated with Organization Z, andsubscriber 70bandSU 73bassociated with Organization Y) and can do authentication of their respective subscribers. In operation, the ASLSP passes the subscriber ID and TID to the CCIM, which interfaces with the TSP. A CCIM is a CIM that does not perform the subscriber authentication function, but the CCIM connects to TSP and performs the interface functions with the TSP.Communication channel 71afrom Organization X to Organization Z andcommunication channel 71bfrom Organization Y to Organization Z are considered secured. Once a subscriber is authenticated by Organizations Y or Z, the subscriber ID plus the TID will pass to CCIM, and the remaining steps will be performed as described above. - In an example embodiment of this scenario, AT&T is an ASLSP having the role of Organization Y and Verizon is an ASLSP having the role of Organization Z, each have a pool of subscribers, such as mobile phone users. The role of the CCIM (Organization X) may be performed by another company, or may be one or more of Organizations Y or Z.
- Organization X, the CCIM, connects to the TSP. Organizations X, Y and Z, they perform the function of CIM. It is possible for multiple companies performing role of Y and Z to connect to X. A company Y or Z can connect to multiple X.
- As an example of the implementation of the preferred embodiment, a subscriber uses a PC to go to the Amazon web site. While on the site, he decides to select a book and adds it to his cart. After he finishes the selection, the subscriber clicks “proceed to checkout.” At this point, the present invention differs from a traditional online transaction by involving a CIM, whereas the traditional method allowed for only direct transfer of information between the SU and TSP. In this example, Amazon is the TSP and AT&T is the CIM.
- After the subscriber clicks “proceed to checkout,” Amazon returns a Transaction ID (TID) to the subscriber, and Amazon's web page would include, for example, a message saying “AT&T member click here.” At this point, Amazon does not know who the subscriber is, but only knows that the subscriber is an AT&T member (assuming that the subscriber has clicked on this link to activate the CIM).
- After the subscriber clicks the “AT&T member click here” button, other technologies may come in to play. The method of passing the TID to the CIM can be manual or automatic. In cases where the transaction is done on a smart phone with a
SIM card 95 associated with the CIM (in this example, AT&T), software can be run in the background, pick up the TID, and send it immediately and directly to the CIM. This example, illustrated inFIG. 9 , is one such automatic method. Alternatively, as illustrated inFIG. 8 , there could be a token that carries the subscriber ID which connects to a USB port on a computer, which will automatically run in the background and then send the TID to the CIM. In the case of manual method, once the TID is shown on the display, the subscriber sends the verification to the CIM. - In this example, the subscriber unit, which stores the subscriber identity, will initialize an authentication communication with the CIM. Once authenticated, the subscriber unit passes the TID to the CIM. In this example, the CIM at this point knows the identification of the subscriber, knows that Amazon is the TSP.
- In this example, AT&T verifies and confirms the existence of the TID with Amazon. Then AT&T sends the “Cyber ID” and some subscriber information, which may include a subscriber's name and some numeric characters, such as “Benjamin Fang 2001.” At this point in the example, Amazon knows who the subscriber is by identifying the Cyber ID attached to the subscriber unit. Next, Amazon would display “Benjamin Fang 2001,” after the subscriber clicks the “AT&T Member click here.” The authentication procedure between the SU and CIM happens instantaneously and thus verifies both the CyberID and the TID by the time the subscriber connects to the aforementioned link. The subscriber may see the CyberID on the screen (where he would normally be required to put in a username), or other information that the subscriber can use to confirm that the account is correct, in this case “Benjamin Fang 2001,” and can then verify that his own identity is correct.
- For security protection of the subscriber's identity, the account identification (such as “Benjamin Fang 2001”) will be designed to let the subscriber decide what to use and can be changed over time. The CIM issues a unique CyberID that representing the CIM's subscriber to a TSP. In some cases, the CyberID issued to a specific TSP may always be fixed for the CIM's subscriber. For example, when the CyberID is used as subscriber account identity to the TSP, the CyberID will remain fixed for the CIM's subscriber. However, even if the CyberID is fixed for a certain TSP, different TSPs can get different CyberID for the same subscriber to a CIM. This CyberID technique gives an advantage to the CIM's subscriber, who may stay anonymous to the TSP, but for enforcement requirements, may still be able to trace to the subscriber identity via the CIM.
- As an example of internet banking on a smartphone, using the situation above where AT&T is the CIM, a subscriber (who owns a bank account) wants to do online banking using a smartphone. The subscriber uses the browser (or application) running on the smartphone and browses the bank's site or downloaded app. The bank is the TSP. After the subscriber clicks the “AT&T member click here” link (the same link as in the previous example), the bank will provide a TID to the user's smartphone. Another application on the phone (which the subscriber will have been prompted to download the first time he uses this online service on his smart phone) will start the authentication process with the CIM using the
SIM card 95 on the smartphone. A SIM card is unique to the subscriber. After successful authentication, the application sets up a secure channel from smartphone to the CIM, which allows for safe passage of the TID from the smartphone to the CIM. - After the CIM successfully verifies the TID with the bank, through the same pre-agreement as described above, the CIM passes the Cyber ID and the subscriber's credential information to the bank. At this point the bank knows the identity of the subscriber that received the TID. When this occurs, the bank will update its web page on the subscriber's smartphone and display the subscriber's name on the page. Then, the bank simply requests a password from the subscriber. This method of getting the TSP to show the subscriber's account is also applicable for when the TSP is an organization such as enterprise, school, union, or any other of which the subscriber is a member of the organization.
- As an alternative example25cof an application using a Point of Sale Terminal, illustrated in
FIG. 10 , the subscriber comes to a point of sale terminal, such as a shopping mall cash register or vending machine, and decides to use the Cyber ID method to do the transaction. The subscriber will inform the counter that he is an AT&T member. The point of sales terminal will generate a TID. If the point of sales counter has an ID reader, then that allows the subscriber to do the authentication with the CIM. The subscriber will tap or insert an electronic subscriber ID card105 (provided by the CIM, in this case AT&T) at the ID reader and authenticate with the CIM. Alternatively, the subscriber can use his AT&T mobile phone, send a text message or use an application on the mobile phone to send the TID to the CIM. The authentication is done by using the SIM card on the mobile phone. - After the CIM successfully authenticates the subscriber and gets the TID, the CIM will verify the TID with the TSP. After verification, the CIM will send the Cyber ID and the subscriber credential information (such as credit card information) to the TSP. The TSP will then update the POS terminal with the subscriber credential information (in this case, the credit card information) and the subscriber can complete the transaction.
- This triangular process does not have to be sequential, as is shown in
FIGS. 3-5 . Instead, the authentication between the Subscriber and the CIM can be done in different sequence in different situation. For example, if the SU is a Mobile Phone, the authentication is always done once the mobile phone is connected to a network. However, when done in sequential order, a subscriber clicks on a TSP web page, and then the TSP will send a TID to a subscriber unit. - While the method and system of the present invention has been described with reference to various embodiments, those skilled in the art will understand that various changes may be made and equivalents may be substituted for the disclosed elements without departing from the scope and essence of the disclosed invention. Additionally, many modifications may be made to adapt a particular situation or structure to the teachings of the disclosure without departing from its essential scope. Accordingly, the invention is not limited to the particular embodiments disclosed, but rather includes all embodiments falling within the scope of the appended claims.
Claims (58)
1-68. (canceled)
69. A method for securing a transaction among a user, a transaction service provider having a processor and a memory, and a credential information manager having a memory and a processor, the credential information manager configured to store a cyber identifier associated with the user, store and authenticate a subscriber identifier associated with the user, store subscriber information associated with the user, transmit a request for verification to the transaction service provider, transmit a transaction identifier to the transaction service provider for verification, receive a verification request result message from the transaction service provider, and transmit the cyber identifier, the subscriber information, and the transaction authorization to the transaction service provider, the method comprising:
providing a subscriber unit having a processor, a memory, and a display, wherein said subscriber unit is configured to accept user input,
transmitting a request for a transaction from said subscriber unit to the transaction service provider;
receiving, by said subscriber unit, a transaction identifier transmitted from the transaction service provider;
transmitting a request for authentication from said subscriber unit to the credential information manager;
transmitting said transaction identifier from said subscriber unit to the credential information manager;
transmitting a subscriber identifier and a cyber identifier associated with the user from said subscriber unit to the credential information manager, wherein said cyber identifier comprises a username and subscriber information; and
transmitting a password from said subscriber unit to the transaction service provider;
wherein said password is never transmitted to the credential information manager and wherein said cyber identifier is never transmitted to said subscriber unit; and
wherein said subscriber information is never transmitted to the transaction service provider by said subscriber unit.
70. The method ofclaim 69 further including receiving, by said subscriber unit, an authentication failure message from the credential information manager to said subscriber unit, wherein said authentication failure message indicates that said subscriber identifier transmitted to the credential information manager by said subscriber unit does not match a subscriber identifier stored in a memory of the credential information manager.
71. The method ofclaim 70 further including displaying a visual authentication failure message on said subscriber unit display based on said authentication failure message received from the credential information manager by said subscriber unit.
72. The method ofclaim 69 further including receiving, by said subscriber unit, a verification failure message from the credential information manager, wherein said verification failure message indicates that a transaction identifier received by the transaction service provider from the credential information manager does not match with a transaction identifier stored in said transaction service provider memory.
73. The method ofclaim 72 further including displaying a visual verification failure message on said subscriber unit display based on said verification failure message transmitted from the credential information manager to said subscriber unit.
74. The method ofclaim 69 wherein said subscriber unit is made up of one or more mobile phones, smart phones, PDAs, computers, or POS terminals, modems, fax machines, or display/input terminals.
75. The method ofclaim 74 wherein said subscriber unit is made of a phone in wireless communication with a POS terminal.
76. The method ofclaim 69 where one or more of the transmissions received or transmitted by said subscriber unit are made via a secure telecommunications link.
77. The method ofclaim 69 where one or more of the transmissions received or transmitted by said subscriber unit are made via a wireless telecommunications link.
78. The method ofclaim 69 where one or more of the transmissions received or transmitted by said subscriber unit are made via the internet.
79. The method ofclaim 76 wherein said secure telecommunications link includes one or more of a VPN, audio or visual signaling, secure tunneling, or an encrypted communication infrastructure.
80. The method ofclaim 69 wherein, before said subscriber identifier is transmitted from said subscriber unit to the credential information manager, said subscriber identifier is received as input to the subscriber unit and stored in said subscriber unit memory.
81. The method ofclaim 69 wherein said subscriber unit memory includes a removable memory, and before said subscriber identifier is transmitted from said subscriber unit to the credential information manager, said subscriber identifier is stored in said subscriber unit memory.
82. The method ofclaim 81 wherein said removable memory includes a SIM card.
83. The method ofclaim 81 wherein said removable memory includes an electronic card.
84. The method ofclaim 69 further including receiving, by said subscriber unit, subscriber information from the transaction service provider.
85. The method ofclaim 84 further including displaying visual subscriber information on said subscriber unit display based on said subscriber information transmitted from the transaction service provider to said subscriber unit.
86. A method for securing a transaction among a user, a subscriber unit having a memory and a processor and configured to accept a user input, and a transaction service provider having a memory and a processor, the transaction service provider configured to receive a request for a transaction from the subscriber unit, transmit a transaction identifier created based on the transaction request to the subscriber unit, store the transaction identifier, verify the transaction identifier, and receive a password transmitted from the subscriber unit, the method comprising:
providing a credential information manager having a processor and a memory,
storing a cyber identifier associated with the user in said credential information manager memory, wherein said cyber identifier comprises a username and subscriber information;
storing a subscriber identifier associated with the user in said credential information manager memory;
storing said subscriber information associated with the user in said credential information manager memory;
receiving, by said credential information manager, a request for authentication from the subscriber unit;
receiving, by said credential information manager, said transaction identifier from the subscriber unit;
receiving, by said credential information manager, a subscriber identifier from the subscriber unit;
authenticating, by said credential information manager, said subscriber identifier received by said credential information manager from the subscriber unit with said subscriber identifier stored in said credential information manager memory;
transmitting, from said credential information manager to the transaction service provider, a request for verification;
transmitting, from said credential information manager to the transaction service provider, said transaction identifier received from the subscriber unit;
receiving, by said credential information manager, a verification request result message from the transaction service provider;
transmitting, from said credential information manager to the transaction service provider, said cyber identifier stored in said credential information manager memory;
transmitting, from said credential information manager to the transaction service provider, said subscriber information stored in said credential information manager memory; and
transmitting, from said credential information manager to the transaction service provider, a transaction authorization;
wherein the password is never transmitted to said credential information manager and wherein said cyber identifier is never transmitted to the subscriber unit; and
wherein said subscriber information is never transmitted to the transaction service provider by the subscriber unit.
87. The method ofclaim 86 wherein said authentication further includes comparing, by said credential information manager processor, said subscriber identifier received by said credential information manager from the subscriber unit with said subscriber identifier stored in said credential information manager memory.
88. The method ofclaim 87 wherein said verification request is sent as a result of said comparison indicating that said subscriber identifier received by said credential information manager from the subscriber unit matches said subscriber identifier stored in said credential information manager memory.
89. The method ofclaim 88 further including transmitting an authentication failure message from said credential information manager to the subscriber unit, wherein said authentication failure message is sent as a result of said comparison indicating that said subscriber identifier received by said credential information manager from the subscriber unit does not match said subscriber identifier stored in said credential information manager memory.
90. The method ofclaim 86 wherein said transmission of said cyber identifier is sent as a result of said verification result request message indicating that said transaction identifier transmitted to the transaction service provider by said credential information manager matches with a transaction identifier stored in the transaction service provider memory.
91. The method ofclaim 86 further including transmitting a verification failure message from said credential information manager to the subscriber unit, wherein said verification failure message is sent as a result of said verification result request message indicating that said transaction identifier transmitted to the transaction service provider by said credential information manager does not match with said transaction identifier stored in the transaction service provider memory.
92. The method ofclaim 86 where one or more of the transmissions received or transmitted by said credential information manager are made via a secure telecommunications link.
93. The method ofclaim 86 where one or more of the transmissions received or transmitted by said credential information manager are made via a wireless telecommunications link.
94. The method ofclaim 86 where one or more of the transmissions received or transmitted by said credential information manager are made via the internet.
95. The method ofclaim 92 wherein said secure telecommunications link includes one or more of a VPN, audio or visual signaling, secure tunneling, or an encrypted communication infrastructure.
96. A method for securing a transaction among a user, a subscriber unit having a memory and a processor and configured to accept a user input, and a credential information manager having a memory and a processor, the credential information manager configured to store a cyber identifier associated with the user, store and authenticate a subscriber identifier associated with the user, store subscriber information associated with the user, receive a request for authentication, a transaction identifier, and a subscriber identifier from the subscriber unit, and authenticate the subscriber identifier, the method comprising:
providing a transaction service provider having a processor and a memory,
receiving by said transaction service provider a request for a transaction from the subscriber unit;
transmitting a transaction identifier, created by said transaction service provider based on said transaction request, from said transaction service provider to the subscriber unit;
storing said transaction identifier in said transaction service provider memory;
receiving, by said transaction service provider, a request for verification from the credential information manager;
receiving a transaction identifier, by the transaction service provider, from the credential information manager;
verifying, by said transaction service provider, said transaction identifier received by said transaction service provider from the credential information manager with said transaction identifier stored in said transaction service provider memory;
transmitting, from said transaction service provider to the credential information manager, a verification request result message;
receiving, by said transaction service provider from the credential information manager, a cyber identifier, wherein said cyber identifier comprises a username and subscriber information;
receiving, by said transaction service provider from the credential information manager, said subscriber information associated with the user;
receiving, by said transaction service provider from the credential information manager, a transaction authorization; and
receiving, by said transaction service provider from the subscriber unit, a password;
wherein said password is never transmitted to the credential information manager and wherein said cyber identifier is never transmitted to the subscriber unit; and
wherein said subscriber information is never transmitted to said transaction service provider by the subscriber unit.
97. The method ofclaim 96 wherein said verification further includes comparing, by said transaction service provider processor, said transaction identifier received by said transaction service provider from the credential information manager with said transaction identifier stored in said transaction service provider memory, wherein said verification result request message includes a result of said comparison.
98. The method ofclaim 96 where one or more of the transmissions received or transmitted by said transaction service provider are made via a secure telecommunications link.
99. The method ofclaim 96 where one or more of the transmissions received or transmitted by said transaction service provider are made via a wireless telecommunications link.
100. The method ofclaim 96 where one or more of the transmissions received or transmitted by said transaction service provider are made via the internet.
101. The method ofclaim 98 wherein said secure telecommunications link includes one or more of a VPN, audio or visual signaling, secure tunneling, or an encrypted communication infrastructure.
102. The method ofclaim 96 further including storing said subscriber information, received by said transaction service provider from the credential information manager, in said transaction service provider memory.
103. The method ofclaim 96 further including transmitting said subscriber information, received by said transaction service provider from the credential information manager, from said transaction service provider to the subscriber unit.
104. A system for securing a transaction among a user, a transaction service provider having a processor and a memory, and a credential information manager having a memory and a processor, the credential information manager configured to store a cyber identifier associated with the user, store and authenticate a subscriber identifier associated with the user, store subscriber information associated with the user, transmit a request for verification to the transaction service provider, transmit a transaction identifier to the transaction service provider for verification, receive a verification request result message from the transaction service provider, and transmit the cyber identifier, the subscriber information, and the transaction authorization to the transaction service provider, the system comprising:
a subscriber unit having a processor, a memory, and a display;
wherein said subscriber unit is configured to accept user input;
a transaction request configured to be transmitted by a communication path from said subscriber unit to the transaction service provider;
a computer program stored in said memory of said transaction service provider for creating, based on said transaction request, a transaction identifier;
said transaction identifier configured to be transmitted by a communication path from said transaction service provider to said subscriber unit;
said transaction identifier stored in said transaction service provider memory;
a request for authentication configured to be transmitted by a communication path from said subscriber unit to said credential information manager;
said transaction identifier configured to be transmitted by a communication path from said subscriber unit to said credential information manager;
a subscriber identifier configured to be transmitted by a communication path from said subscriber unit to said credential information manager;
a password configured to be transmitted by a communication path from said subscriber unit to said transaction service provider;
wherein said password is never transmitted to said credential information manager and wherein said cyber identifier is never transmitted to said subscriber unit; and
wherein said subscriber information is never transmitted to said transaction service provider by said subscriber unit.
105. The system ofclaim 104 wherein said subscriber unit memory includes a removable memory, and before said subscriber identifier is transmitted from said subscriber unit to said credential information manager, said subscriber identifier is stored in said subscriber unit memory.
106. The system ofclaim 105 wherein said removable memory includes a SIM card.
107. The system ofclaim 105 wherein said removable memory includes an electronic card.
108. The system ofclaim 104 wherein said subscriber unit is made up of one or more mobile phones, smart phones, PDAs, computers, or POS terminals, modems, fax machines, or display/input terminals.
109. The system ofclaim 108 wherein said subscriber unit is made of a phone in wireless communication with a POS terminal.
109. The system ofclaim 104 where one or more of the communication paths include a secure telecommunications link.
110. The system ofclaim 104 where one or more of the communication paths include a wireless telecommunications link.
111. The system ofclaim 104 where one or more of the communication paths include the internet.
112. The system ofclaim 109 wherein said secure telecommunications link includes one or more of a VPN, audio or visual signaling, secure tunneling, or an encrypted communication infrastructure.
113. A system for securing a transaction among a user, a subscriber unit having a memory and a processor and configured to accept a user input, and a transaction service provider having a memory and a processor, the transaction service provider configured to receive a request for a transaction from the subscriber unit, transmit a transaction identifier created based on the transaction request to the subscriber unit, store the transaction identifier, verify the transaction identifier, and receive a password transmitted from the subscriber unit, the system comprising:
a credential information manager having a processor and a memory,
a cyber identifier associated with the user stored in said credential information manager memory, wherein said cyber identifier comprises a username and subscriber information;
a subscriber identifier associated with the user stored in said credential information manager memory;
said subscriber information associated with the user stored in said credential information manager memory;
a request for authentication configured to be transmitted by a communication path from said subscriber unit to said credential information manager;
said transaction identifier configured to be transmitted by a communication path from said subscriber unit to said credential information manager;
a subscriber identifier configured to be transmitted by a communication path from said subscriber unit to said credential information manager;
a computer program stored in said memory of said credential information manager for authenticating, by said credential information manager, said subscriber identifier received by said credential information manager from said subscriber unit with said subscriber identifier stored in said credential information manager memory;
a request for verification configured to be transmitted by a communication path from said credential information manager to said transaction service provider;
said transaction identifier, received from said subscriber unit, configured to be transmitted by a communication path from said credential information manager to said transaction service provider;
a verification request result message configured to be transmitted by a communication path from said transaction service provider to said credential information manager;
said cyber identifier, stored in said credential information manager memory, configured to be transmitted by a communication path from said credential information manager to said transaction service provider;
said subscriber information, stored in said credential information manager memory, configured to be transmitted by a communication path from said credential information manager to said transaction service provider;
a transaction authorization configured to be transmitted by a communication path from said credential information manager to said transaction service provider; and
wherein said password is never transmitted to said credential information manager and wherein said cyber identifier is never transmitted to said subscriber unit; and
wherein said subscriber information is never transmitted to said transaction service provider by said subscriber unit.
114. The system ofclaim 113 wherein said credential information manager further includes:
a certified credential information manager having a processor and a memory;
a authentication/secure link service provider having a processor and a memory;
said authentication request, received from said subscriber unit by said credential information manager, configured to be transmitted by a communication path from said certified credential information manager to said authentication/secure link service provider;
said subscriber identifier, received from said subscriber unit by said credential information manager, configured to be transmitted by a communication path from said certified credential information manager to said authentication/secure link service provider;
wherein said authentication computer program is stored in said authentication/secure link service provider memory; and
wherein said subscriber identifier stored in said credential information manager memory is stored in said authentication/secure link service provider memory.
115. The system ofclaim 113 where one or more of the communication paths include a secure telecommunications link.
116. The system ofclaim 113 where one or more of the communication paths include a wireless telecommunications link.
117. The system ofclaim 113 where one or more of the communication paths include the internet.
118. The system ofclaim 115 wherein said secure telecommunications link includes one or more of a VPN, audio or visual signaling, secure tunneling, or an encrypted communication infrastructure.
119. A system for securing a transaction among a user, a subscriber unit having a memory and a processor and configured to accept a user input, and a credential information manager having a memory and a processor, the credential information manager configured to store a cyber identifier associated with the user, store and authenticate a subscriber identifier associated with the user, store subscriber information associated with the user, receive a request for authentication, a transaction identifier, and a subscriber identifier from the subscriber unit, and authenticate the subscriber identifier, the system comprising:
a transaction service provider having a processor and a memory,
a transaction request configured to be transmitted by a communication path from said subscriber unit to said transaction service provider;
a computer program stored in said memory of said transaction service provider for creating, based on said transaction request, a transaction identifier;
said transaction identifier configured to be transmitted by a communication path from said transaction service provider to said subscriber unit;
said transaction identifier stored in said transaction service provider memory;
a request for verification configured to be transmitted by a communication path from said credential information manager to said transaction service provider;
said transaction identifier, received from said subscriber unit, configured to be transmitted by a communication path from said credential information manager to said transaction service provider;
a computer program stored in said memory of said transaction service provider for verifying, by transaction service provider, said transaction identifier received by transaction service provider from said credential information manager with said transaction identifier stored in said transaction service provider memory;
a verification request result message configured to be transmitted by a communication path from said transaction service provider to said credential information manager;
said cyber identifier, stored in said credential information manager memory, configured to be transmitted by a communication path from said credential information manager to said transaction service provider;
said subscriber information, stored in said credential information manager memory, configured to be transmitted by a communication path from said credential information manager to said transaction service provider;
a transaction authorization configured to be transmitted by a communication path from said credential information manager to said transaction service provider; and
a password configured to be transmitted by a communication path from said subscriber unit to said transaction service provider;
wherein said password is never transmitted to said credential information manager and wherein said cyber identifier is never transmitted to said subscriber unit; and
wherein said subscriber information is never transmitted to said transaction service provider by said subscriber unit.
120. The system ofclaim 119 , wherein said transaction service provider is configured to verify said password transmitted from said subscriber unit.
121. The system ofclaim 119 where one or more of the communication paths include a secure telecommunications link.
122. The system ofclaim 119 where one or more of the communication paths include a wireless telecommunications link.
123. The system ofclaim 119 where one or more of the communication paths include the internet.
124. The system ofclaim 121 wherein said secure telecommunications link includes one or more of a VPN, audio or visual signaling, secure tunneling, or an encrypted communication infrastructure.
Priority Applications (3)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| US14/260,342US8826401B1 (en) | 2012-04-09 | 2014-04-24 | Method and system using a cyber ID to provide secure transactions |
| US14/326,523US9137241B2 (en) | 2012-04-09 | 2014-07-09 | Method and system using a cyber ID to provide secure transactions |
| US14/605,274US9137242B2 (en) | 2012-04-09 | 2015-01-26 | Method and system using a cyber ID to provide secure transactions |
Applications Claiming Priority (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| US13/442,019US8732807B2 (en) | 2012-04-09 | 2012-04-09 | Method and system using a cyber ID to provide secure transactions |
| US14/260,342US8826401B1 (en) | 2012-04-09 | 2014-04-24 | Method and system using a cyber ID to provide secure transactions |
Related Parent Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| US13/442,019ContinuationUS8732807B2 (en) | 2012-04-09 | 2012-04-09 | Method and system using a cyber ID to provide secure transactions |
Related Child Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| US14/326,523ContinuationUS9137241B2 (en) | 2012-04-09 | 2014-07-09 | Method and system using a cyber ID to provide secure transactions |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| US20140237573A1true US20140237573A1 (en) | 2014-08-21 |
| US8826401B1 US8826401B1 (en) | 2014-09-02 |
Family
ID=49293369
Family Applications (3)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| US13/442,019Expired - Fee RelatedUS8732807B2 (en) | 2012-04-09 | 2012-04-09 | Method and system using a cyber ID to provide secure transactions |
| US14/260,342Expired - Fee RelatedUS8826401B1 (en) | 2012-04-09 | 2014-04-24 | Method and system using a cyber ID to provide secure transactions |
| US14/326,523Expired - Fee RelatedUS9137241B2 (en) | 2012-04-09 | 2014-07-09 | Method and system using a cyber ID to provide secure transactions |
Family Applications Before (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| US13/442,019Expired - Fee RelatedUS8732807B2 (en) | 2012-04-09 | 2012-04-09 | Method and system using a cyber ID to provide secure transactions |
Family Applications After (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| US14/326,523Expired - Fee RelatedUS9137241B2 (en) | 2012-04-09 | 2014-07-09 | Method and system using a cyber ID to provide secure transactions |
Country Status (11)
| Country | Link |
|---|---|
| US (3) | US8732807B2 (en) |
| EP (1) | EP2865131B1 (en) |
| JP (1) | JP6370771B2 (en) |
| KR (1) | KR102116587B1 (en) |
| CN (1) | CN104584479B (en) |
| IN (1) | IN2014DN09301A (en) |
| MY (1) | MY167673A (en) |
| PH (1) | PH12014502072B1 (en) |
| RU (1) | RU2625949C2 (en) |
| SG (1) | SG11201405898VA (en) |
| WO (1) | WO2013153431A1 (en) |
Families Citing this family (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US8732807B2 (en) | 2012-04-09 | 2014-05-20 | Medium Access Systems Private Ltd. | Method and system using a cyber ID to provide secure transactions |
| US11197331B2 (en)* | 2016-06-10 | 2021-12-07 | Apple Inc. | Zero-round-trip-time connectivity over the wider area network |
| US10542018B1 (en) | 2016-12-27 | 2020-01-21 | Wells Fargo Bank, N.A. | Security breach notification |
| US10713647B2 (en) | 2017-01-19 | 2020-07-14 | International Business Machines Corporation | Securing online transactions via hardware identification |
| CN110275886B (en)* | 2019-06-18 | 2021-09-07 | 北京字节跳动网络技术有限公司 | Account management method, device, readable medium and system of information display system |
| CN114731211B (en)* | 2020-10-14 | 2024-02-13 | 北京小米移动软件有限公司 | A data transmission method, device, communication equipment and storage medium |
| US12423687B1 (en) | 2022-02-18 | 2025-09-23 | Halborn Inc. | Automated rule-based smart contract approval via blockchain cybersecurity authentication services |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20020059146A1 (en)* | 2000-09-07 | 2002-05-16 | Swivel Technologies Limited | Systems and methods for identity verification for secure transactions |
| US20050256806A1 (en)* | 2004-05-12 | 2005-11-17 | Alan Tien | Method and system to facilitate securely processing a payment for an online transaction |
| US20070260555A1 (en)* | 2005-08-03 | 2007-11-08 | Tp Lab | System, method and apparatus for conducting a secure transaction over a call |
| US20090132381A1 (en)* | 1998-05-29 | 2009-05-21 | E-Micro Corporation | Retail Point-of-Sale System To Provide A Customized Set of Identification Data To Facilitate A Retail Sales Point-of-Sale Transaction |
Family Cites Families (24)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US7024377B1 (en) | 1997-09-30 | 2006-04-04 | Intel Corporation | Method and apparatus for managing electronic commerce |
| US7043635B1 (en) | 2000-09-15 | 2006-05-09 | Swivel Secure Limited | Embedded synchronous random disposable code identification method and system |
| GB2366966B (en) | 2000-09-07 | 2002-08-07 | Swivel Technologies Ltd | Embedded synchronous random disposable code identification method and system |
| AU2003200600B2 (en) | 2000-09-07 | 2007-04-26 | Swivel Secure Limited | Code identification method and system |
| WO2003012755A1 (en) | 2001-07-27 | 2003-02-13 | Swivel Technologies Limited | Code identification method and system |
| US20030074317A1 (en) | 2001-10-15 | 2003-04-17 | Eyal Hofi | Device, method and system for authorizing transactions |
| US20060095369A1 (en) | 2001-10-15 | 2006-05-04 | Eyal Hofi | Device, method and system for authorizing transactions |
| US7085840B2 (en)* | 2001-10-29 | 2006-08-01 | Sun Microsystems, Inc. | Enhanced quality of identification in a data communications network |
| RU2376635C2 (en)* | 2002-10-23 | 2009-12-20 | Закрытое акционерное общество "МедиаЛингва" | Method and system for carrying out transactions in network using network identifiers |
| JP4299621B2 (en)* | 2003-09-24 | 2009-07-22 | 日本電信電話株式会社 | Service providing method, service providing program, host device, and service providing device |
| US20050114265A1 (en)* | 2003-11-26 | 2005-05-26 | Lingan Satkunanathan | Real-time license enforcement system and method |
| JP4558387B2 (en)* | 2004-06-17 | 2010-10-06 | Kddi株式会社 | User authentication system and method |
| KR100930457B1 (en)* | 2004-08-25 | 2009-12-08 | 에스케이 텔레콤주식회사 | Authentication and payment system and method using mobile communication terminal |
| US7613919B2 (en)* | 2004-10-12 | 2009-11-03 | Bagley Brian B | Single-use password authentication |
| US8934865B2 (en)* | 2006-02-02 | 2015-01-13 | Alcatel Lucent | Authentication and verification services for third party vendors using mobile devices |
| US20080141352A1 (en)* | 2006-12-11 | 2008-06-12 | Motorola, Inc. | Secure password distribution to a client device of a network |
| JP4989996B2 (en)* | 2007-03-26 | 2012-08-01 | 株式会社Kddi研究所 | Service use identification information generation apparatus, service use identification information generation system, service use identification information generation method, and program |
| JP2008310409A (en)* | 2007-06-12 | 2008-12-25 | Fuji Xerox Co Ltd | Information processing system, authentication device, and program |
| JP5289104B2 (en)* | 2009-03-05 | 2013-09-11 | 三菱電機株式会社 | Authentication destination selection system |
| JP5425496B2 (en)* | 2009-03-19 | 2014-02-26 | 日立公共システムエンジニアリング株式会社 | Communication system, certificate verification apparatus, and service providing method |
| NO2257096T3 (en) | 2009-05-28 | 2018-08-11 | ||
| US8380177B2 (en)* | 2010-04-09 | 2013-02-19 | Paydiant, Inc. | Mobile phone payment processing methods and systems |
| JP5538132B2 (en)* | 2010-08-11 | 2014-07-02 | 株式会社日立製作所 | Terminal system for guaranteeing authenticity, terminal and terminal management server |
| US8732807B2 (en) | 2012-04-09 | 2014-05-20 | Medium Access Systems Private Ltd. | Method and system using a cyber ID to provide secure transactions |
- 2012
- 2012-04-09USUS13/442,019patent/US8732807B2/ennot_activeExpired - Fee Related
- 2013
- 2013-04-08KRKR1020147031434Apatent/KR102116587B1/ennot_activeExpired - Fee Related
- 2013-04-08EPEP13775649.0Apatent/EP2865131B1/ennot_activeNot-in-force
- 2013-04-08CNCN201380019115.9Apatent/CN104584479B/ennot_activeExpired - Fee Related
- 2013-04-08JPJP2015505027Apatent/JP6370771B2/ennot_activeExpired - Fee Related
- 2013-04-08ININ9301DEN2014patent/IN2014DN09301A/enunknown
- 2013-04-08MYMYPI2014002879Apatent/MY167673A/enunknown
- 2013-04-08WOPCT/IB2013/000634patent/WO2013153431A1/enactiveApplication Filing
- 2013-04-08RURU2014143939Apatent/RU2625949C2/enactive
- 2013-04-08SGSG11201405898VApatent/SG11201405898VA/enunknown
- 2014
- 2014-04-24USUS14/260,342patent/US8826401B1/ennot_activeExpired - Fee Related
- 2014-07-09USUS14/326,523patent/US9137241B2/ennot_activeExpired - Fee Related
- 2014-09-18PHPH12014502072Apatent/PH12014502072B1/enunknown
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20090132381A1 (en)* | 1998-05-29 | 2009-05-21 | E-Micro Corporation | Retail Point-of-Sale System To Provide A Customized Set of Identification Data To Facilitate A Retail Sales Point-of-Sale Transaction |
| US20020059146A1 (en)* | 2000-09-07 | 2002-05-16 | Swivel Technologies Limited | Systems and methods for identity verification for secure transactions |
| US20050256806A1 (en)* | 2004-05-12 | 2005-11-17 | Alan Tien | Method and system to facilitate securely processing a payment for an online transaction |
| US20070260555A1 (en)* | 2005-08-03 | 2007-11-08 | Tp Lab | System, method and apparatus for conducting a secure transaction over a call |
Also Published As
| Publication number | Publication date |
|---|---|
| CN104584479B (en) | 2017-10-10 |
| SG11201405898VA (en) | 2014-11-27 |
| CN104584479A (en) | 2015-04-29 |
| JP2015519636A (en) | 2015-07-09 |
| KR20150003297A (en) | 2015-01-08 |
| KR102116587B1 (en) | 2020-05-28 |
| PH12014502072A1 (en) | 2014-12-10 |
| EP2865131B1 (en) | 2017-11-08 |
| RU2014143939A (en) | 2016-05-27 |
| JP6370771B2 (en) | 2018-08-08 |
| IN2014DN09301A (en) | 2015-07-10 |
| US8826401B1 (en) | 2014-09-02 |
| US8732807B2 (en) | 2014-05-20 |
| WO2013153431A4 (en) | 2013-12-12 |
| HK1209934A1 (en) | 2016-04-08 |
| US9137241B2 (en) | 2015-09-15 |
| MY167673A (en) | 2018-09-21 |
| US20130269009A1 (en) | 2013-10-10 |
| RU2625949C2 (en) | 2017-07-19 |
| US20140325626A1 (en) | 2014-10-30 |
| EP2865131A4 (en) | 2016-09-21 |
| PH12014502072B1 (en) | 2014-12-10 |
| EP2865131A1 (en) | 2015-04-29 |
| WO2013153431A1 (en) | 2013-10-17 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US9137242B2 (en) | Method and system using a cyber ID to provide secure transactions | |
| EP2859488B1 (en) | Enterprise triggered 2chk association | |
| CA2875563C (en) | Enchanced 2chk authentication security with query transactions | |
| US9137241B2 (en) | Method and system using a cyber ID to provide secure transactions | |
| US20140075525A1 (en) | Strong authentication by presentation of the number | |
| WO2012167941A1 (en) | Method to validate a transaction between a user and a service provider | |
| WO2009101549A2 (en) | Method and mobile device for registering and authenticating a user at a service provider | |
| KR101294805B1 (en) | 2-channel authentication method and system based on authentication application | |
| HK1209934B (en) | Method and system using a cyber id to provide secure transactions | |
| KR101571199B1 (en) | Login processing system based on inputting telephone number and control method thereof | |
| HK1207713B (en) | Enterprise triggered 2chk association | |
| HK1207714B (en) | Enhanced 2chk authentication security with query transactions |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| STCF | Information on status: patent grant | Free format text:PATENTED CASE | |
| FEPP | Fee payment procedure | Free format text:MAINTENANCE FEE REMINDER MAILED (ORIGINAL EVENT CODE: REM.) | |
| FEPP | Fee payment procedure | Free format text:SURCHARGE FOR LATE PAYMENT, SMALL ENTITY (ORIGINAL EVENT CODE: M2554); ENTITY STATUS OF PATENT OWNER: SMALL ENTITY | |
| MAFP | Maintenance fee payment | Free format text:PAYMENT OF MAINTENANCE FEE, 4TH YR, SMALL ENTITY (ORIGINAL EVENT CODE: M2551); ENTITY STATUS OF PATENT OWNER: SMALL ENTITY Year of fee payment:4 | |
| FEPP | Fee payment procedure | Free format text:MAINTENANCE FEE REMINDER MAILED (ORIGINAL EVENT CODE: REM.); ENTITY STATUS OF PATENT OWNER: SMALL ENTITY | |
| LAPS | Lapse for failure to pay maintenance fees | Free format text:PATENT EXPIRED FOR FAILURE TO PAY MAINTENANCE FEES (ORIGINAL EVENT CODE: EXP.); ENTITY STATUS OF PATENT OWNER: SMALL ENTITY | |
| STCH | Information on status: patent discontinuation | Free format text:PATENT EXPIRED DUE TO NONPAYMENT OF MAINTENANCE FEES UNDER 37 CFR 1.362 | |
| FP | Lapsed due to failure to pay maintenance fee | Effective date:20220902 |