CO2018002528A2 - Método y sistema para la autorización de transacciones basado en un canal autónomo paralelo multiusuario y autenticación multifactor - Google Patents

Método y sistema para la autorización de transacciones basado en un canal autónomo paralelo multiusuario y autenticación multifactor

Info

Publication number
CO2018002528A2
CO2018002528A2 CONC2018/0002528A CO2018002528A CO2018002528A2 CO 2018002528 A2 CO2018002528 A2 CO 2018002528A2 CO 2018002528 A CO2018002528 A CO 2018002528A CO 2018002528 A2 CO2018002528 A2 CO 2018002528A2
Authority
CO
Colombia
Prior art keywords
factor authentication
transaction authorization
authorization based
autonomous channel
user parallel
Prior art date
Application number
CONC2018/0002528A
Other languages
English (en)
Inventor
Thomas Szoke
Maxim Umarov
Original Assignee
Ipsidy Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Ipsidy Inc filed Critical Ipsidy Inc
Publication of CO2018002528A2 publication Critical patent/CO2018002528A2/es

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/42Confirmation, e.g. check or permission by the legal debtor of payment
    • G06Q20/425Confirmation, e.g. check or permission by the legal debtor of payment using two different networks, one for transaction and one for security confirmation
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • G06Q20/4014Identity check for transactions
    • G06Q20/40145Biometric identity checks
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/36Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes
    • G06Q20/367Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes involving electronic purses or money safes
    • G06Q20/3674Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes involving electronic purses or money safes involving authentication
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3823Payment protocols; Details thereof insuring higher security of transaction combining multiple encryption tools for a transaction
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3825Use of electronic signatures
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/385Payment protocols; Details thereof using an alias or single-use codes
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/321Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving a third party or a trusted authority
    • H04L9/3213Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving a third party or a trusted authority using tickets or tokens, e.g. Kerberos
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3215Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a plurality of channels
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3234Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving additional secure or trusted devices, e.g. TPM, smartcard, USB or software token
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3247Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2463/00Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00
    • H04L2463/082Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00 applying multi-factor authentication

Landscapes

  • Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Physics & Mathematics (AREA)
  • Strategic Management (AREA)
  • Finance (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Microelectronics & Electronic Packaging (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)
  • Computer And Data Communications (AREA)

Abstract

Un sistema para autorizar transacciones electrónicas usando una forma de token físico que posee las credenciales del titular de una cuenta, en donde el sistema transmite un mensaje de verificación a un terminal donde este terminal es diferente al terminal donde se realiza la transacción electrónica, y mediante esta combinación el sistema verificará que la transacción se realice por el propietario autorizado del token utilizado.
CONC2018/0002528A 2015-08-10 2018-03-09 Método y sistema para la autorización de transacciones basado en un canal autónomo paralelo multiusuario y autenticación multifactor CO2018002528A2 (es)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US201562203024P 2015-08-10 2015-08-10
PCT/US2016/046332 WO2017027580A1 (en) 2015-08-10 2016-08-10 A method and system for transaction authorization basd on a parallel autonomous channel multi-user and multi-factor authentication

Publications (1)

Publication Number Publication Date
CO2018002528A2 true CO2018002528A2 (es) 2018-07-19

Family

ID=57983625

Family Applications (1)

Application Number Title Priority Date Filing Date
CONC2018/0002528A CO2018002528A2 (es) 2015-08-10 2018-03-09 Método y sistema para la autorización de transacciones basado en un canal autónomo paralelo multiusuario y autenticación multifactor

Country Status (11)

Country Link
US (1) US11328299B2 (es)
EP (1) EP3335371A4 (es)
JP (1) JP2018533144A (es)
KR (1) KR102658597B1 (es)
CN (1) CN108352987A (es)
AU (1) AU2016304860A1 (es)
BR (1) BR112018002841A8 (es)
CA (1) CA2995379C (es)
CO (1) CO2018002528A2 (es)
MX (1) MX2018001763A (es)
WO (1) WO2017027580A1 (es)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20220005645A (ko) * 2019-06-04 2022-01-13 디지털 에셋 (스위츠랜드) 게엠베하 다중 사용자 데이터베이스 시스템 및 방법
CN111027977A (zh) * 2019-11-22 2020-04-17 中汇信息技术(上海)有限公司 一种数据验证的方法、装置及电子设备

Family Cites Families (17)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7231068B2 (en) * 1998-06-19 2007-06-12 Solidus Networks, Inc. Electronic transaction verification system
US20030163739A1 (en) * 2002-02-28 2003-08-28 Armington John Phillip Robust multi-factor authentication for secure application environments
US7707120B2 (en) * 2002-04-17 2010-04-27 Visa International Service Association Mobile account authentication service
JP2004164597A (ja) * 2002-08-08 2004-06-10 Fujitsu Ltd 商品及びサービスを購入する方法
US7349871B2 (en) * 2002-08-08 2008-03-25 Fujitsu Limited Methods for purchasing of goods and services
US7264154B2 (en) * 2004-07-12 2007-09-04 Harris David N System and method for securing a credit account
US20060173776A1 (en) * 2005-01-28 2006-08-03 Barry Shalley A Method of Authentication
US8996423B2 (en) * 2005-04-19 2015-03-31 Microsoft Corporation Authentication for a commercial transaction using a mobile module
EP2667345A3 (en) * 2005-10-06 2014-08-27 C-Sam, Inc. Transactional services
US7783564B2 (en) * 2006-07-25 2010-08-24 Visa U.S.A. Inc. Compliance control in a card based program
CA2701055C (en) * 2007-10-19 2016-10-04 Memory Experts International Inc. Method of providing assured transactions using secure transaction appliance and watermark verification
US8380177B2 (en) * 2010-04-09 2013-02-19 Paydiant, Inc. Mobile phone payment processing methods and systems
RU2595885C2 (ru) * 2010-09-24 2016-08-27 Виза Интернэшнл Сервис Ассосиэйшн Способ и система, использующие универсальный идентификатор и биометрические данные
US20130346294A1 (en) * 2012-03-21 2013-12-26 Patrick Faith Risk manager optimizer
US20140095404A1 (en) * 2012-05-17 2014-04-03 Daniel Emanuel Hines System and Method for Social Giving
US9098687B2 (en) * 2013-05-03 2015-08-04 Citrix Systems, Inc. User and device authentication in enterprise systems
US20150161596A1 (en) * 2013-12-05 2015-06-11 Alliance Messaging Limited Token used in lieu of account identifier

Also Published As

Publication number Publication date
EP3335371A1 (en) 2018-06-20
JP2018533144A (ja) 2018-11-08
KR102658597B1 (ko) 2024-04-17
BR112018002841A8 (pt) 2020-11-17
EP3335371A4 (en) 2019-02-06
BR112018002841A2 (pt) 2019-04-30
CA2995379A1 (en) 2017-02-16
AU2016304860A1 (en) 2018-03-29
KR20180073550A (ko) 2018-07-02
CN108352987A (zh) 2018-07-31
WO2017027580A1 (en) 2017-02-16
US11328299B2 (en) 2022-05-10
CA2995379C (en) 2023-11-14
MX2018001763A (es) 2019-01-31
US20180240121A1 (en) 2018-08-23

Similar Documents

Publication Publication Date Title
CY1122570T1 (el) Ταυτοποιηση και επαληθευση ταυτοτητας συσκευων στο νεφος
EP3685335A4 (en) TRANSACTION AUTHORIZATION AND VALIDATION TOKEN GENERATION SYSTEM AND PROCESS
SG11202008451RA (en) Secure remote token release with online authentication
SG11202005964QA (en) Identity verification methods, systems, apparatuses, and devices
BR112018067885A8 (pt) Método e sistema para distribuição eletrônica de tokens controlados
WO2016175914A3 (en) Transaction signing utilizing asymmetric cryptography
MX2017008651A (es) Metodo y aparato de aseguramiento de aplicacion movil.
DK3381172T3 (da) Fremgangsmåde og system til at fordele kryptografisk nøglefrembringelse og -lagring ved hjælp af elliptisk kurvekryptografi
MX361152B (es) Aprovisionamiento de licencias de gestión de derechos digitales (drm) en un dispositivo cliente que utiliza un servidor de actualizaciones.
PL3350953T3 (pl) Przekazywanie kluczy szyfrujących walutę cyfrową poprzez proces wydawania, zatwierdzania i dewaluacji nośnika fizycznego z autoryzacją wieloskładnikową, oraz nośnik fizyczny kluczy szyfrujących dla waluty cyfrowej do realizacji tej technologii przekazywania
EP3486817A4 (en) BLOCKCHAIN-BASED IDENTITY AUTHENTICATION PROCESS, DEVICE, NODE AND SYSTEM
SG11201702919UA (en) Voiceprint information management method and apparatus, and identity authentication method and system
PH12016501866A1 (en) Systems and methods for identity validation and verification
HK1208971A1 (en) Method, device and system for verifying client device identity by using social relationship data
WO2016140724A3 (en) Short-duration digital certificate issuance based on long-duration digital certificate validation
PH12018502584A1 (en) Method and device for identity authentication
EP3316544A4 (en) Token generation and authentication method, and authentication server
PL3262552T3 (pl) Sposoby, urządzenie i układy do uwierzytelniania tożsamości
PH12017500926A1 (en) Transaction system and method
AR103383A1 (es) Sistema y método para comunicar credenciales
PH12016502164A1 (en) System and method for facilitating electronic transaction
MX2017015311A (es) Combinacion de un anticuerpo anti-il-10 y un oligonucleotido tipo cpg-c para tratar cancer.
EA201590133A1 (ru) Система и способ для мобильного приложения
CO2018002528A2 (es) Método y sistema para la autorización de transacciones basado en un canal autónomo paralelo multiusuario y autenticación multifactor
CL2018001102A1 (es) Sistema y método de autenticación y encriptación a prueba de intercepciones