BE1023561B1 - METHOD AND SYSTEM FOR SECURED ELECTRONIC TRANSACTIONS - Google Patents

Abstract

The invention relates to a method and a system for carrying out electronic transactions via asymmetric cryptography in a secure manner via the internet between multiple users and service providers with a verified identity, via an authentication authority comprising the following steps: verification authority; - management of the public keys of all logged in users by the authentication authority; - making available an application that generates key pairs on the smartphone of the user and whereby the private keys of the user are kept with the user himself.

Description

TITLE: Method and system for secure electronic transactions SITUATION OF THE INVENTION

The present invention relates to a security method for carrying out electronic transactions via the internet by making use of digital identification and authentication.

More in particular, the invention relates to a method, a system and a technology that is loaded by a user on his smartphone through an elaborate application and which in this way gives the user simplified and secure access to third-party websites the method manager, resp. the technology have been authenticated beforehand.

BACKGROUND OF THE INVENTION

It is known that to date, a user of digital information services on the worldwide web, must store numerous passwords or passwords and identification data. The user must provide a username and / or password to gain access to his personal computer, tablet or smartphone. An alternative method is that he draws a pattern to gain access, but then he must save the pattern. Often a separate password must be provided to gain access to his electronic message box, especially if it concerns a webmail application. He must identify himself and provide his password for banking transactions, to access certain sections of public websites, for example, from paying newspaper sites, or to make reservations at restaurants, or cultural shows, or to order tickets, or finally to connect to social media networks type Facebook or Linkedin. The list is almost endless.

In principle, the user could use the same password for these different applications - assuming that the password formats would be completely compatible with each other - but in practice this rarely happens. After all, if the user were to use one and the same password for all his digital applications, the problem would be difficult to oversee if this password was lost or stolen.

Hence, to limit this risk to some extent, the vast majority of users use different usernames and / or passwords for various applications that can be accessed via a web browser on the internet.

Moreover, with a reasonable number of websites, at least the password must be changed with a certain periodicity, which sometimes increases the variety of passwords.

Since, due to the large number and variation over time, remembering these passwords is virtually impossible for the user, a solution for their management is urgent.

Solutions for this are available on the market, known as password management programs. These programs manage user names and corresponding passwords for the user in one form or another, making web browsing easier and also more secure.

Examples of this are the application known under the trade name KeePass, from Dominik Reichl. This is an OSI certified Open Source Software, which is available free of charge under the GPL license conditions.

Other programs include LastPass, from the company of the same name in 8315 Lee Hwy, Suite 501, Fairfax, VA, USA, or Kaspersky Password Manager.

The program stores the user's passwords in a highly secured (encrypted) database that is either stored on the relevant device (computer or smartphone) or securely stored on the web itself.

In both cases, this data file is accessible via a single so-called "master" password, and this is then the only password to be remembered by the user. When the user then goes to a specific website that asks for his user name and / or password, the relevant password management application will look up the relevant information from its data file and - for example via a web form filier - forward it to the relevant site, allowing the user access .

In a number of cases, for example the LastPass application, the functional password manager and 'form filier' are intrinsically web-based, which has the great advantage that this can be used from any computer or smartphone of the user and always remains synchronized for each of are fixed or mobile devices. The KeePass program also supports password groups, which gives the user the option of dividing his passwords into more or less related groups.

A disadvantage of the methods described above, however, is that if the list of passwords is hacked by an unauthorized party, or if the 'master' password is hacked, the confidentiality of all the user's passwords is suddenly lost, with all the detrimental consequences. .

Moreover, such password management programs solve only part of the problems, in particular the simplification of remembering or saving passwords.

Security of electronic transactions on the internet, however, comprises substantially more aspects than merely storing or managing passwords, in particular the identity of the different actors in an electronic transaction must be authenticated, and the exchanged messages must also be protected, e.g. via encryption. 2-factor authentication related technology, e.g. e-readers from banks, RSA SecurlD, etc. and Form Autofill related technology offer unsatisfactory solutions in themselves.

The object of the invention is to prevent the disadvantages and problems described above, or to solve them.

SUMMARY OF THE INVENTION

The present invention has for its object to provide a solution to the aforementioned and other disadvantages in that it provides a method or a method for securely conducting electronic transactions via asymmetric cryptography via the internet between one or more users and one or more a plurality of service organizations, having a verified identity, through a verification authority comprising the following steps: - registering one or more users with the verification authority; - managing the public keys of all registered users by the verification authority; - make available by the verification authority of an application in the application market of the users' smartphone operating system, whereby this application generates key pairs on the user's smartphone and where the user's private keys are retained by the user himself, preferably on his smartphone, and not be known or transmitted to the verification authority.

The above-mentioned advantages and aspects are realized by means of the method described above, and preferably by means of the preferred embodiments as shown below.

More particularly, the invention preferably comprises the specific features of embodiments of methods or methods as described in the appended dependent claims.

The invention also comprises a system for carrying out electronic transactions via at least one user and at least one service organization via asymmetric cryptography via the internet via a verification authority comprising: - a verification authority for managing the public keys of all users and service providers that are registered with the verification authority; - at least one user registered with the verification authority via his smartphone; - at least one service organization notified to the verification authority; - an application made available by the verification authority in the application market of the users' smartphone operating system, whereby this application generates key pairs on the user's smartphone. - smartphone (s) of the user (s) registered with the verification authority, whereby his private keys are stored on his smartphone for each registered user.

More particularly, the invention preferably comprises the specific features of embodiments of the system as described in the appended dependent claims.

Further advantages and embodiments of the present invention are clarified in the description below.

BRIEF DESCRIPTION OF THE DRAWINGS

With the insight to better demonstrate the features of the invention, a few preferred embodiments of an improved method according to the invention are described below as an example without any limiting character, with reference to the accompanying drawings, in which:

Figure 1 schematically represents the initial screen of the application according to the invention on a user's smartphone;

Figure 2 schematically represents a further screen of the application according to the invention on a user's smartphone.

DESCRIPTION OF THE INVENTION

A detailed description of one or more embodiments of the invention is shown below, possibly with reference to drawings illustrating the principles of the invention. The invention has been described with reference to such concrete embodiments, but the invention is not limited to such embodiments. The scope of the invention is only defined by the appended claims and the invention comprises various alternative embodiments, modified embodiments and equivalents. Various specific details are shown in the description below to show a better understanding of the invention. These details are presented by way of example and the invention according to the claims can be applied without one or more of these details. For the sake of clarity, technical concepts relating to the field of the invention have not always been described in detail because they are considered to be known to those skilled in the art. Their detailed representation would make the current description difficult to read.

The invention relates to a method or method and system for allowing users and third parties to perform electronic transactions via the internet in a simple and secure manner.

Three parties are involved: • A verification authority (hereinafter referred to as a CVA) which, by means of a management platform, for example DNSSEC, manages the public keys of users registered with it, and acts towards users and third-party service providers via a website, hereinafter referred to as the CVA website. • Users who have registered in advance on the CVA website managed by the verification authority, (this forms the so-called user base); • Third parties who have previously registered or registered on the CVA website and offer services to users, and have adapted their website for use in accordance with the CVA management system;

Verification authority for the purposes of the present invention should include an organization that either verifies the authenticity of actors in the internet or uses the authentication that has already been granted to such actors by third parties, for example verification organizations such as Verisign.

In the latter view, the verification authority acts more as an enabling authority. In that context, it is not necessary that the verification authority always need to be online when carrying out transactions between the users and the service providers as indicated above. This authority is not a point of failure.

The verification authority can be in a central or distributed form. It is preferably a central verification authority, but the verification can also be carried out in a distributed form, e.g. in the form of a so-called web or trust. This is a model in which different parties can put their signature under the attributes of a user (for example his name, address, etc.) A mailing address of a user can for example get three signatures from web shops instead of one signature from a central verification authority. These three signatures then form a web or trust as long as another third party trusts the signing party.

In the text below, the verification organization is indicated by the abbreviation CVA (as abbreviation of Central Verification Authority; this is indeed the preferred embodiment, but the verification according to the present invention can equally well take place in a distributed form and the term CVA thus covers both embodiments .)

To make this possible, one of the tasks of the (central) verification authority is to make available in the application market the current operating systems of smartphones of an application for generating key pairs on the user's smartphone.

Examples of application markets for such common operating systems include Google Play or Apple’s App Store.

Users for the purposes of the present invention should include the identities of natural persons who wish to carry out electronic transactions via the internet via their smartphones, and who wish to do so on the CVA website in the manner described below.

A smartphone for the purposes of the present invention includes an electronic communication device for mobile use that has at least communication possibilities over the mobile telephone network, and about the advanced applications of a personal computer such as electronic mail and (high-speed) internet access, and this regardless of the physical appearance of this device.

Third parties for the purposes of the present invention include suppliers of services or products who wish to carry out electronic transactions via the internet with the recipients of their services or products, the users, in a secure manner. Such transactions may include financial transactions, but this is not necessary. An example of this is a restaurant or cinema operator, which offers reservations via a secure transaction to users previously registered on the CVA website. Other examples include booking hotel reservations, plane tickets, car rentals, or services offered through social networking sites.

The security of the electronic transactions via the internet according to the method of the present invention takes place e.g. asymmetric cryptography, more particularly e.g. RSA or DSA key pairs.

The present invention preferably makes use of the RSA technology, since it is rated higher in terms of security compared to the alternative DSA technology.

At the first registration via a user's smartphone on the CVA website, two key pairs (keypairs) are generated on the user's smartphone, whereby each time the user's public keys are stored or managed by the CVBA website itself, but the private keys remain with the user and are not passed on to the database managed by the CVA.

As stated above, a user is understood here to mean a certain identity with which a person or a physical user logs in via his smartphone on the CVA website.

The private keys are only stored on the user's smartphone, and are not passed on to the user's other mobile devices.

The method and system according to the present invention is developed exclusively for use with smartphones, not to tablets or laptops. The reason for this is that if the private key pairs of the user generated on his smartphone were copied on the other mobile devices of the user, this would entail too great a risk of losing his private keys.

A smartphone is a device that is usually carefully held by the user, which is noticeably less the case for his laptop (s) or tablet (s).

These key pairs are randomly generated on the smartphone via a CVA app that the user downloads from the application market of his smartphone's operating system. One key pair is for authentication or identification of the user (so-called digital signature).

The other key pair is to encrypt documents (transactions) yourself.

The CVA app is made available for use in combination with the usual operating systems for smartphones, in particular for Apple's IOS and Google's Android operating systems.

The CVA website distributes the public keys of the user registered in this way to all third parties registered in the CVA system via DNSSEC.

In this way an infrastructure of public keys is created.

When, subsequently, the user logs on to a website of such a participating third party, for example, to start a transaction, often by scanning the QR code of such a participating third party on his smartphone (or in another way, it really does not matter off), the communication between this participating third party and the user is established in a simple secure manner.

Secured here points to two aspects of the transaction:

On the one hand, the identity of the user is authenticated. This process proceeds as follows: the identity of the user is an attribute of the data model of the device, in this specific case, of the user's smartphone. The user himself is therefore not immediately identified by his key pair. These key pairs are linked to the device, in this specific case, the user's smartphone. The identity of the user is in this way inextricably linked to the device with which he consults for this purpose. Only when a verification party, in this specific case CVA has signed the identity in this way, is there genuine authentication of the identity.

On the other hand, the transactions themselves are encrypted via the key pair for encryption.

In a preferred embodiment of the invention, the public keys of the user are already in the possession of the participating third party, for example via the DNS caching mechanism, but this is not strictly necessary; as a result, the user himself, as well as the executed transactions, are automatically authenticated. In many situations, the keys are already in the possession of an upstream Internet Service Provider (ISP) with caching DNS resolver.

The object of the inventors of the method and system described in this application is to allow this unit to have the widest possible market acceptance, in order to allow it to grow into a de facto standard for secure electronic transactions.

The participating third parties that offer services to users must adapt their website in order to be able to co-function in the CVA system according to the invention.

Since such websites are generally modular in structure, this requires minimal effort from these participating service providers.

The complete digital signing and authentication algorithm comprises three sub-algorithms.

The first is the key generation algorithm, which generates the private and public keys as discussed above.

The second sub-algorithm is the signing algorithm that generates the digital signature itself for a specific message and a given private key.

The third part algorithm is the digital signature verification algorithm that accepts or refuses the authenticity of the message for a specific message, a public key and a digital signature.

For the application of the present invention, the second and third part algorithm is loaded both on the server of the participating service providers and the verification authority, as well as on the users' smartphone. DETAILED DESCRIPTION OF THE INVENTION /

Overview of terminology used, definitions:

Smartphone: By smartphone we mean a mobile phone that offers various of the advanced applications that can also be found on a personal computer, such as electronic mail communication and high-speed internet access. Preferably, but not necessarily, such a smartphone also has audio and video display capabilities, advanced interaction techniques, for example via touch screens, GPS functionality and possibly more of such services. As used in the present description, the term smartphone covers a smartphone in the strict sense of the word, regardless of its physical appearance. Other equivalent, also intemet-connected, mobile devices such as smartbooks (such as iPad), netbooks, ultrabooks, tablets are not included in the term smartphone as used for the application of the present invention. The smartphone is preferably equipped with a QR Reader for application of the present invention. QR-Code: by QR-code (the abbreviation of Quick Response Code) we mean a certain type of two-dimensional bar or barcode, as developed by the Japanese company Denso Wave. Such a code is frequently used to present a URL, the URL being coded into such a QR code, which is then printed on a poster, a package or a magazine. The user can get direct access to the relevant URL via a smartphone equipped with a QR reader, without the hassle of entering the URL on the phone.

Mobile app: by mobile app we mean an application, simply app, or application for use on a smartphone or tablet. Such an application adds extra functions to the mobile device in question, whereby it is converted into a multifunctional communication device in addition to the call and SMS functions.

It usually takes the form of a small computer program that is intended for end users and runs "on" or "under" a certain operating system. With sufficient popularity, it is usually available for more than one operating system, and is then referred to as a "multi-platform". Mobile apps are available on the different distribution platforms depending on the operating system for which they were developed, such as e.g. App Store, Google Play, Windows Phone Store and Blackberry App World.

Detailed description of the method and system of the invention:

The present invention relates to a security technology, method and system that makes a major step in the field of digital identification. This security technology and method uses a Verification Authority (shortly referred to as CVA in the text), the inventors of which intend to market them under the name MW3.

The term MW3 stands for My World Wide Web, since it is a tailored technology tailored to the user to make transactions on the worldwide internet run smoothly and securely.

The two most important advantages when applying the method according to the present invention is that: • On the one hand, logging in to most web shops of participating third parties becomes unnecessary; • On the other hand, enhanced security is offered to all parties involved in a transaction.

Three types of parties are involved in applying the method of the present invention: • The method and system provider in which the present invention is applied; this includes two aspects: on the one hand an application for application on a smartphone (hereinafter referred to as the smartphone application), and on the other hand incorporation of data in a central database (hereinafter referred to as the CVA Website); • Individual users who each have access to a smartphone, who have registered on the CVA website, whose identity has been verified, and who are registered under that identity, and subsequently have the smartphone application loaded on their smartphones; • Participating third parties, who have also registered and registered on the CVA website, and who wish to offer services to individual users using the secure technology, method and system of the present invention.

The secure transactions as described below then take place between the website of a participating third party and a registered user via the smartphone application on the user's smartphone.

The method and system developed by the present inventors therefore comprises two components: • On the one hand, server-side services, including the incorporation of data in a central database, as indicated above, the CVA website; • On the other hand a smartphone application, to be loaded on the smartphone of an individual user registered with the CVA system.

As shown below, when applying the method / system according to the present invention, an interaction will take place between the smartphone application on the smartphone of the individual user, and the CVA website.

The smartphone application developed according to the present invention can be used under the various operating systems for smartphones available on the market, for example under Apple's IOS or Google's Android, or Blackberry's operating system.

In principle, the application of the present invention is not limited to loading exclusively from the smartphone application on the smartphone of the individual user.

As soon as a user has registered on the CVA website, he can load the smartphone application on any other mobile device and enjoy the advantages of the method according to the present invention from the relevant mobile device.

However, the preferred embodiment of the invention is that the user loads the smartphone application only on his smartphone, and not on his other mobile devices, for the reasons already stated above.

The core and main purpose of the invention is to carry out transactions in the broad sense of the word, not just financial transactions. In a first phase of implementation of the present invention on the market, financial transactions will not yet be included in the method according to the invention.

In order for the parties to be able to carry out transactions among themselves in a secure and secure manner, they must have confidence in each other's data.

A transaction is expressed in the smartphone application in the form of an XML document, which follows a strict schedule. To ensure that the content of the transaction is authentic, asymmetric cryptography is used. This technology uses two separate keys, as opposed to symmetrical or normal cryptography, where the same key is used for both encryption and decryption.

Asymmetric cryptography uses one key to encrypt (encrypt) or sign the information, and a second key to decrypt (decrypt) the information or verify the identity of the sender. The big advantage of using two different keys is that one key can be disclosed, so that everyone can use this key to process data. This is called the public key, as opposed to the private, private or secret key that is not disclosed.

The invention preferably uses a specific implementation form of the asymmetric cryptography for encrypting the content of transactions, in particular of Digital Signature Algorithm, abbreviated DSA. DSA is a standard of the US federal government for digital signatures. DSA is described, inter alia, in US patents 5,231,668 and 4,995,082.

Encrypted data

If data is sent to a single third party, the data is encrypted. This encryption means that the data in question can only be read by the party for whom the data is intended. This is the standard situation for most communications.

The technique for encrypting the data is again asymmetric cryptography, and preferably as implemented in the asymmetric encryption algorithm known as RSA. Originally this algorithm was designed in 1977 by Ron Rivest, Adi Shamir and Len Adleman, hence the abbreviation RSA.

When data is sent to multiple parties, the data cannot be encrypted because party C adds data that must be read by party A.

To make this possible via encryption via the RSA method, the public key of the party that must be able to read the data must be known. For this purpose DNSSEC is designated for application in the present invention: after all, each party can reliably look up the RSA public keys of any other party by using a DNS client that supports the DNSSEC extension.

The next step is to request all the public RSA keys and to verify the keys themselves (this is done by the DNSSEC technology).

It should be noted that the signature is applied to the encrypted data, such that the document can be passed on to a subsequent party, but still needs to be checked for validity.

The latter aspect is discussed below.

Document verification:

As stated above, a transaction is expressed as an XML document, and follows a strict schedule.

Three steps are necessary before a document is validated.

In a first step, the document must be decrypted, or at least those parts of the document that have previously been encrypted. This takes place by means of the private RSA key.

In a second step for the validation of the XML transaction document, use is made of a so-called XML validator; Here it is checked whether the XML document meets the pre-defined scheme. This scheme also describes the structure of the attributes, for example a postal address has a different structure than credit card data. The XML scheme is also used by the smartphone application to determine how the attributes are displayed.

To check the RSA signatures, we must have the public keys of all parties that have signed. Each party has an associated domain name. Each party can find traceable RSA public keys of every other party by using a DNS client that supports the DNSSEC extension.

The third step is to look up all public RSA keys and verify the keys themselves (this is the task of DNSSEC).

The third step is to verify all RSA signatures in the document, to ensure that there is no single step or element in the entire chain that could be falsified.

Compare with other security technologies:

The method and system according to the present invention differs from the state of the art currently known in, among other things, the aspects listed below: • In contrast to the SecurlD and other ownership tokens, in which a shared-secret is used, when applying the present invention use is made of a public key (public key) technology. This means that the CV A website itself will not be in possession of the user's secret key. Therefore, even in the event of an (unlikely) database break-in on the CVA website by a hacker, no confidential or secret data will be lost. • The present invention uses a public key (public-key) infrastructure over DNS. This is a distributed approach, with no single point of failure. This is a different PKI data structure than, for example, the trusted-third-party approach, such as with SSL certificates. • All data is saved by the user and is carried with him on his smartphone. This data is heavily encrypted. This has the direct consequence - as stated above - that in the event of a database break-in on the CVA website this will not have any adverse consequences for the user. • The end user signs transactions. This is verifiable by every recipient. • It is possible to perform transactions between more than 2 parties; it is also possible to have a sub-transaction executed.

Security of the user's smartphone:

In most practical situations, the user's smartphone is protected via a PIN code, or via a so-called "gesture" or pattern. Pattern-based security (Gesture-based password entry) means, in short, that a finger is traversed on a touch screen to arrive at a series of characters that form the password.

Pattern-based security for the user's smartphone on which the smartphone application according to the invention is loaded can be applied in combination with the present invention, but this is not necessary and other more common security techniques for a smartphone can also be used.

This application, respectively this website, is characterized by the following functionalities: during initialization, two (randomized) key pairs (via RSA or DSA technology, but preferably via RSA) are created within the operating system of the user's smartphone, for example IOS or Android App.

The public keys are (freely) distributed among the participating websites of third party participating service providers;

The private keys are used for the secure confirmation of transactions and the signing thereof with a digital signature.

The application for smartphones that operate under either the IOS or the Android operating system will support the following functions: • Activation (initialization), creation of the two key pairs; • Transaction verification, verifying the executed transactions; • Verification of identity. Owning the private key and activating it (by means of a secret code) verifies the identity of the user (a knowledge and a possession factor) • Logging transactions carried out (transactions are both logos, attempts to do this as well as actions on 3rd party websites)

The application offers, independently of the CVA website, a platform for committing logos and other transactions on third-party websites - in a decentralized manner.

According to a preferred embodiment, the method according to the present invention therefore comprises the following steps: • The CVA website forwards the public key (RSA key) to the website of the third party; • the third party website uses this public key (RSA key) to encrypt a message to the smartphone application on the user's smartphone; • the application decrypts this message with its private key (Private RSA key) and authenticates itself with it; • the handshaking process takes place through direct data communication between the application and the website of the third party; such direct data communication preferably takes place via the application read in by the application on the smartphone of a QR code made available by the website of the third party.

The application of the present invention offers the following practical advantages and results: • The user does not have to remember user names (UserIDs) and passwords from the websites of participating third parties; • The user can use his smartphone application to register on websites of participating third parties on any workstation (including the Smartphone itself); • The websites of participating third parties do not have the private key (Private Key) data of any user (which would allow them to log in to other 3rd party sites); • Hacking websites in order to gain access to other websites is useless; • As soon as the identity of an individual user has been verified by the CVA website, which takes place when the user logs on to the CVA website, this user will be accepted by the website of the participating third party as the person he claims to be to be.

The CVA website takes care of the general management of the public keys of the registered users. Every public key has an identity that is unknown to the CVA website.

Preferred embodiments of the software modules:

For the implementation of the method according to the invention as shown above, use is preferably made of software modules available on the market. The modules described below are preferably incorporated in the method and system according to the invention.

Secure database storage:

The absolute requirement for the validation application storage according to the invention is that it is secure. For this, data is stored in an SQlite data file, which is protected with SQLCipher, a known technique for securing the data file. SQLCipher can be downloaded and used freely from the internet. SQLCipher protects data at the page (disk) level, so at the lowest level of the information chain. When this is installed, the user will hardly notice it. Possibly a difference in speed up to a maximum of 10%, which is acceptable for the applications according to the invention.

The data files are protected by using the pattern PIN of the user and by the application-generated sait, or in another equivalent manner. A sait is an addition of a random sequence of characters generated by the application to the pattern PIN or password of the user. This makes a possibly weak password of the user strong enough, so that the backup of the database can never be decrypted. QR Code reader:

Preferably, the application according to the invention as implemented on a user's smartphone uses a QR code reader based on the software module available from sXing lib. The output of this QR code reader is provided in the form of an XML document that initiates a transaction.

Generation of key pairs:

If the smartphone application according to the invention is on the smartphone in activation mode, two key pairs must be generated. For this, use is made of

OpenS SL 0.98+, due to security issues with earlier versions of this software. The library API equivalent of the following commands is then executed: 1. openssl genpkey - algorithm RSA - keyopt rsa keygen bits: 2048 2. openssl genpkey - algorithm DSA - keyopt dsakeygenbits: 2048 There is no secret on both key pairs, and the key comprises 2048 bits in length.

As soon as these public keys are generated, they must be communicated to the CVA server / website.

This will be the postback URL in the transaction for the activation of the smartphone. Pattern security:

As an alternative to PIN codes, it is possible to work with pattern security (gestures).

This is a known method for the person skilled in the art in this sector.

The technique is based on drawing lines, circles or points over a photo displayed on the touch screen of, for example, a tablet or smartphone.

The intention is to create a 32 Byte password. DNSsec:

The method according to the invention preferably does not use normal DNS, but the DNSsec protocol. This is similar to the DNS protocol, but with secure connections and certificates on both sides with which the data transfer can be secured.

The public keys used in the method according to the invention are stored as DNSsec files. The key can be downloaded from the DNSsec server.

Log :

All transactions of an individual user are stored in a database on the user's smartphone, in a separate logbook.

The following fields should preferably be used herein: ID (to generate a unique ID);

Time stamp (Time stamp) (to the millisecond);

Title of the event with sequence number;

Description: the event that gives success or error message;

Optional, if available: the identity that executes the transaction.

Events: • start of the transaction; • validation of the XML.

Backup of the database:

After starting the smartphone application, it is checked whether the most recent backup of the database is current. With changes to the database, the revision number of the database is increased, and a backup is initiated. This means that an archive (a ZIP file or any other binary data repository) is sent to the CVA website / server. This forwarding is a transaction initiated from the application. This synchronization is not per se visible to the user, but is mentioned in the log. The revision number of the backup is used to detect duplicates of the application. In the case of a duplicate of a smartphone application, a duplicate must first make a change to the database. By first starting the application, the CVA can now register that one of the revision numbers is behind, and conclude that a duplicate is in use.

Description of the smartphone application:

Below is a detailed description of the smartphone application as displayed on a user's smartphone.

A distinction must be made between different situations.

The first phase that every user must implement on his smartphone is loading and activating the smartphone application on his smartphone.

Figure 1 schematically shows the initial screen for loading and activating the smartphone application according to the invention on a user's smartphone.

In a first step, the user must indeed load the application onto the smartphone by entering the relevant application, e.g. Google Play.

In one possible embodiment of the invention, the opening screen of the smartphone application then asks the user whether he has received a letter from the CVA organization.

If this is the case, the user confirms this and proceeds to the next screen. If this is not the case, and the user wishes to receive such a letter, the user confirms this by activating the relevant 'Request it' button.

The user is then directed to a predetermined URL.

The following describes the situation in which the user has confirmed that he has received the relevant letter from the CVA Organization.

The user then reads the QR code that appears on the letter from the CVA organization as follows: the user activates the camera of the smartphone by clicking on the camera icon as shown on this screen, or alternatively by clicking on the application from the smartphone for reading QR codes (for example the Barcode Scan application in Google Play, formerly Android Market).

On this the smartphone camera reads the QR code as it appears on the letter from the CVA organization.

Once the QR code has been recognized, the following screen will open, to select an image for creating a pattern pin code on this image.

In an alternative, preferred embodiment, letters are no longer sent by the CVA organization to the users. The user can then activate the CV A application online, via the CVA website.

An image is shown that originates from the CVA website. There is no interactivity available on this image, and the image is reformatted to a smaller "thumb image". Optionally the user can select another image from the image database of the CVA website.

As soon as a certain image has been selected, this is visualized on the full screen of the smartphone, and the user is asked to generate a pattern (pin) code over this image.

A help button is provided both for this operation and for the previous screen images as well as the screen images described below.

When activating this help button, the user receives relevant help information about the relevant step in this procedure.

As soon as a pattern on the image has been generated by the user, the user is asked, for the purposes of consistency, to repeat this pattern. If this consistency check is found to be positive, the user is informed that he has created a valid pattern pin.

A screen appears in which the user is notified that he is ready to activate this application for a named identity, eg Jan @ Jan.

To this end, the relevant identity of the user is entered as variable info in the text of the application.

The user is then asked to activate the "activation" button on the screen.

As soon as this has taken place, a transaction is started and a private key is generated.

The following screen is then started.

The description given above of loading and activating the smartphone application mentions the drawing of a pattern on an image of the smartphone for pattern pin authentication.

The drawing of an image pattern by the user is one possibility for this, but the invention can just as well be applied by using other authentication methods, such as entering a numeric or alphanumeric pin code.

The following describes the procedure applied in the smartphone application to the user's smartphone when initiating or executing a new transaction.

The user activates the "Start a transaction" button from the main menu.

If the relevant user has specified multiple identities on the CVA website, then these different identities are shown in a first screen and the user is requested to indicate the identity he has chosen for the intended transaction. This indication can for instance take place by checking the chosen identity on the touch screen of the smartphone.

The user then activates the "next" button.

The user scans for this with the QR reader of the smartphone the QR code of the participating third party with whom the user wishes to carry out a transaction. This QR code is then converted into a URL by the QR reader of the smartphone. A screen appears on this screen, entitled "Request for Transaction", in which the user is informed that he wishes to carry out a transaction with the relevant website.

He is informed that, for example, the following data will be transmitted to the relevant website: his name, his address and his age.

The user is asked to confirm that he wishes to continue with this transaction. (If required, the user can request to provide the complete transaction details, which will then be displayed in an HTML format in the next screen).

If the user confirms this, a following screen appears, asking the user to enter his pattern pin (or a corresponding non-pattern pin). On the following screen the user is informed that his requested transaction is taking place. He can follow the further course of the transaction in the transaction overview screen. He can also request the details of the relevant transaction by activating the "details" button.

Figure 2 gives a picture of such an overview of transactions.

The name and time stamp are displayed for each transaction. This shows when the transaction was requested or resp. is finished. Different icons can be used to indicate the status of the different transactions in the overview. This can vary from "pending", to "successfully completed," to "pending" or an "error" code.

As indicated above, a user can assume different identities. Identities for the purposes of the present invention are to be understood as a collection of attributes. Identities cannot be created from the smartphone application on the user's smartphone. They must be created via the CVA website or server. For example, different identities for the same person can be useful for switching between data files.

For example when ordering a product or service it can be useful to act from the identity linked to the private, or to the business address.

On the CVA server or website, every identity is linked to a unique name and ID. The user can change the screen name of any identity if desired.

As stated above, every identity has a list of attributes. These attributes are predefined and can be retrieved from the CVA website or server. Each attribute is provided with a key element and a value. For example, jan @ mobileagency can serve as key elements: age, religion, children, health care, with the corresponding value elements: 18, Mormons, 3 and Zilveren Kruis.

Claims (13)

CONCLUSIONS Method for carrying out electronic transactions over the internet between one or more users and one or more service organizations, who have a verified identity, via a verification authority comprising the following steps: - registration via asymmetric cryptography of one or more users at the verification authority; - managing the public keys of all registered users by the verification authority; - make available by the verification authority of an application in the application market of the users' smartphone operating system, whereby this application generates key pairs on the user's smartphone and where the user's private keys are retained by the user himself, preferably on his smartphone, and not be known or transmitted to the verification authority. Method according to claim 1, wherein the management of the public keys by the verification authority takes place by means of a management platform, for example DNSSEC. Method according to claim 1 or 2, wherein the protection of the electronic transactions takes place via asymmetric cryptography using the RSA technology. Method as claimed in any of the foregoing claims, wherein when a user logs in to the verification authority, two key pairs are generated, and wherein preferably one key pair serves to authenticate the user, and the second key pair serves to encrypt the electronic transactions. The method of claim 4, wherein the key pairs of the logged-in user are generated on a smartphone of the user, preferably via a randomized algorithm of an application downloaded from the application market of the operating system of the smartphone of the user. Method according to claim 5, comprising the following steps: - download by the user of the application made available by the verification organization on the application market of the operating system of the user's smartphone; - initializing the application with generation of two key pairs; - entering the user's personal data in the application; - registration by the user at the verification organization for linking his identity to the generated key pair; - authentication of the user's identity by the verification organization. Method according to one of the preceding claims, wherein the user initiates communication with the service provider via an asymmetrical cryptography session either directly via the website of the service provider or via reading in a code, for example a bar or QR code, from a participating service provider. Method according to one of the preceding claims, wherein the participating service organizations have a verified identity by means of a digital certificate issued by a verification authority. The method of any one of the preceding claims, wherein a user is a natural person acting under an identity associated with a private key associated with the smartphone used by him. Method according to one of the preceding claims, wherein the smartphone is a mobile device that at least has communication possibilities over the mobile telephone network, and about the advanced applications of a personal computer such as electronic mail and (high-speed) internet access. 11. System for securely performing electronic transactions via asymmetric cryptography via the internet between at least one user and at least one service organization through the intermediary of a verification authority comprising: - a verification authority for the management of the public keys of all users and service providers that are registered with the verification authority; - at least one user registered with the verification authority via his smartphone; - at least one service organization notified to the verification authority; - an application made available by the verification authority in the application market of the users' smartphone operating system, whereby this application generates key pairs on the user's smartphone. - smartphone (s) of the user (s) registered with the verification authority, whereby his private keys are stored on his smartphone for each registered user. The system of claim 11, wherein the verification authority comprises a management system for managing the public keys, e.g. DNSSEC. The system according to claim 11 or 12, wherein the application made available by the verification authority for generating the key pairs of the users comprises a randomized algorithm.