FR2924880A1 - METHOD AND SYSTEM FOR TRANSFERRING OBJECTS - Google Patents

Abstract

This method of transferring an object between a provider entity capable of providing an object and a user of a user entity, the transfer being performed through an intermediate entity comprises an anonymous connection (22) of the user entity with the provider entity for identifying the object, a determination (23) by the provider entity of first information corresponding to the identified object, and a transmission (24) from the provider entity to the user entity of the first information (VF) .Characterized in that the method further comprises a transmission (32) from the user entity to the intermediate entity of a second information (VU), a comparison (36) of the first information (VF) ) with the second information (VU), and, when the result of the comparison is such that the transfer is authorized a transmission (46), from the intermediate entity to the supplier entity, of a request for delivery of the object that corresponds to the first information, a transmission (48) from the provider entity to the intermediate entity, the object in a masked form and a delivery (50) of the hidden object from the entity intermediate to the user entity.

Description

METHOD AND SYSTEM FOR TRANSFERRING OBJECTS

The present invention relates to methods and systems for transferring objects between a provider and a user.

Transfer systems allow a user to purchase an item from a provider. In some existing systems, this transfer is anonymous, that is, you can not associate the user with the object. Specifically, the provider does not know who the object is supplied to. In most existing systems, this is achieved through the use of a trusted third party or certified third party that mediates between the user and the provider. A trusted intermediary or certified intermediary means an entity with which one of the parties between the user and the supplier has entered into a contract for the provision of services. This contract results, for example, in an exchange of certificates or other identification mechanisms allowing a positive identification between the two parties. The purpose of existing systems is to substitute the certified intermediary for the user. Thus, the user requests the intermediary to carry out the transaction on his behalf with the supplier, then to transmit the object of the transaction.

This poses several disadvantages. Firstly, existing systems require the creation of trust circles including trust circles between the supplier and the intermediary, so that the user is exposed to a risk of collusion between the intermediary and the supplier allowing the intermediary and / or the provider to know both the identity of the user who requested the transfer of the object and the nature of the object. In addition, in existing systems, there is always an entity that has both the identity of the user and the nature of the object to be transferred, the entity can be the provider, the intermediary, or any other device involved in the transfer of the object.

The invention proposes a solution that does not have these disadvantages.

For this purpose, the subject of the present invention is a method of transferring an object between a provider entity capable of providing an object and a user of a user entity, the transfer being carried out through an intermediate entity comprising: an anonymous connection of the user entity with the provider entity to identify the object; a determination by the supplier entity of a first piece of information corresponding to the identified object; and - a transmission from the provider entity to the user entity of the first information, characterized in that the method further comprises: - a transmission from the user entity to the intermediate entity of a second information; a comparison of the first information with the second information, and, when the result of the comparison is such that the transfer is authorized: a transmission, from the intermediate entity to the supplier entity, of a delivery request the object that corresponds to the first information; A transmission, from the provider entity to the intermediate entity, of the object in a masked form; and - delivery of the hidden object from the intermediate entity to the user entity. Thus, none of the entities simultaneously has information 25 making it possible to identify the user entity and the object of the transfer. Indeed, the supplier entity knows the object without knowing the identity of the user entity that has identified the object and the intermediate entity knows the identity of the user entity wishing to be delivered the object, but does not know the nature of the object because it is hidden. In a particular embodiment, the method further comprises a collection by the intermediate entity and from the user entity of a compensation for the object; and a transmission by the intermediate entity and to the provider entity of the compensation. The transfer becomes a transaction. However, unlike existing transactions, no entity has information to identify the object as well as the user entity because the compensation is transmitted by a mechanism similar to the object. In yet another embodiment, the method simultaneously comprises transmitting transmission information from the user entity and to the intermediate entity of said second information. This allows the user entity to connect only once to the intermediate entity. In a particular embodiment, the method comprises an identification by the user entity of the intermediate entity. This makes it possible to limit the risks of collusion between the supplier entity and the intermediate entity. For example, the identification by the user entity of the intermediate entity includes the transmission by the user entity and to the provider entity of contact information relating to the intermediate entity. In a variant, the method furthermore comprises a transmission by the supplier entity to the user entity of an anonymous purchasing identifier, a transmission by the user entity to the intermediate entity of this anonymous purchasing identifier and of identifying information relating to the provider entity, and a transmission by the intermediate entity and to the supplier entity of the anonymous purchasing identifier and contact information relating to the intermediate entity. These two variants allow the user entity to identify the intermediate entity with the provider entity, either directly or indirectly by giving the intermediate entity the means to contact the supplier entity and the object is identified. In yet another embodiment, said verification is performed by the intermediate entity. More specifically, the method comprises a transmission by the user entity and to the intermediate entity of the second piece of information, a transmission by the provider entity and to the intermediate entity of the first piece of information and said checking is carried out by the intermediate entity. Alternatively, said verification is performed by the supplier entity. More specifically, the method further comprises a transmission by the user entity and to an intermediate entity of the second information, a transmission by the intermediate entity and to the provider entity of said second information and said verification is performed by the supplier entity. In one embodiment, the object is a physical object delivered in a physically masked form.

In another embodiment, the masked object corresponds to an encrypted electronic content by means of at least one encryption key and the method furthermore comprises a step of reception by the user entity of a decryption key capable of decrypting the encrypted object. In one embodiment, determining the first information comprises implementing a unique number generator and optionally a public key and private key system. The invention also relates to a system for transferring an object between a provider entity capable of supplying an object to a user entity with the aid of an intermediate entity, said entities being connected to one another via the intermediary of a network, characterized in that: the user entity comprises means: o able to establish an anonymous connection of the user entity with the provider entity to identify the object; and the provider entity comprises means 25 o able to determine a first piece of information corresponding to the identified object; o able to transmit to the user entity said first information; and o able to transmit to the intermediate entity the object in masked form after receipt of a delivery request; the intermediate entity comprises means: o able to issue a delivery request to the supplier entity; and o able to deliver to the user entity the object received from the provider, and in that the system comprises means able to compare the first information with a second information from the user entity, the transmission of the request for delivery depending on the result of the comparison. The invention also relates to an interface method between a user entity and a provider entity capable of providing an object to the user entity, characterized in that it comprises, at the intermediate entity level: a reception from the user entity information corresponding to an object; - a transmission of a delivery request to the supplier entity of the information received; A reception from the provider entity of the object corresponding to the information in masked form; and - delivery to the user entity of the object. Furthermore, the invention also relates to a computer program capable of being implemented on an entity, characterized in that it comprises code instructions for implementing the interface method when it is executed. by the entity. Furthermore, the invention also relates to an entity capable of acting as an intermediary between a user entity and a provider entity for the transfer of an object, characterized in that it comprises: means for receiving a information; means for transmitting a request for delivery to the supplier entity of an object corresponding to the information received; means for receiving the object in masked form and for controlling delivery of the object to the user entity. The invention also relates to a method of providing an object to a user of a user entity, characterized in that it comprises: an identification of an object to be supplied; a determination of a first piece of information corresponding to the identified object; a transmission of the first information to the user entity; 5 - receiving a request for delivery of the object of an intermediary identified by the user entity; and - delivery of the object to the intermediate entity in a masked form. Correspondingly, the invention relates to a program for an entity capable of supplying an object, characterized in that it comprises code instructions for the implementation of the supply method, when executed by the entity. Finally, the invention also relates to an entity capable of providing an object, characterized in that it comprises: means for identifying an object; Means for determining information corresponding to the identified object; means for transmitting information to a user; means for receiving a request for delivery of the object corresponding to the information transmitted from the means for controlling the delivery of the object to the intermediate entity in a masked form. The present invention will be better understood in the light of the description and the appended figures in which: FIG. 1 represents the architecture of the system used and Figures 2 and 3 show the flow charts of the method according to two different embodiments. In the embodiment described, the transaction system comprises a supplier of goods or objects, as well as a user 4, and a delivery intermediary 6. For example, the supplier 2 produces and delivers physical products. User 4 is an individual, and Intermediate 6 is a delivery company.

The provider, the user, and the intermediary each have a respective entity, namely a supplier entity 2, a user entity 4, an intermediate entity 6. Each of the entities 2, 4 and 6 comprises at least one interface of telecommunication and a computer or server associated with memories operating under the control of a microprocessor. The user has an identity. Entities 2, 4 and 6 communicate via a telecommunication network 8 such as the internet network. In our exemplary embodiment, the computer is associated with an IP type network address.

Furthermore, the system comprises a hardware link 10 between the supplier 2 and the intermediate 6 and a hardware link 12 between the intermediate 6 and the user 4, so as to allow the transport and delivery of the object of the transaction.

In addition, the provider 2 comprises a generator 14 of unique numbers, a system 16 of duplicate keys, private key and public key, as well as a shopping database 18. With reference to FIG. 2, we will now describe a first embodiment of the method of the invention.

This method begins with a phase of determining the object of the transaction denoted 20. This phase begins with an anonymous connection 22 between the user and the provider. This connection is said to be anonymous, in the sense that it does not allow the provider to know the identity of the user. Of course, this step 22 may require the user to be authenticated to the provider via a valid user name only in the provider environment and which does not include any user identification information. real using this username. As a variant, this connection is not associated with an account but only with a transaction.

If the network address, or IP address, of the user is accessible, it must not be possible to identify the user.

Such anonymous connections are conventional and this step 22 will not be described in more detail. During the connection step 22, the user identifies the object of the transaction, that is to say the object that he wishes to obtain for example in exchange for compensation. In response, the provider entity determines during a step 23 information corresponding to the object of the transaction. This information can be a certificate or assertion. Then, the provider entity sends the assertion to the user entity in a step 24. 10 This assertion does not identify the object of the transaction for an entity other than the provider. Indeed, the assertion is generated using the unique number generator 14 and optionally certified with the system 16 private key and public key provider. The assertion does not contain any description or information that enables a third party to identify the object of the transaction. Alternatively, the assertion includes an identifier of the object of the encrypted transaction, for example, using a password provided by the user and / or the key of the provider. Only the provider entity has in the database 18 information to match this assertion and the object 20 of the transaction. The use of the private key and public key system 16 makes it possible to avoid the falsification of the assertion and in particular the generation of assertions by other entities of the system. After receiving this assertion, the user entity identifies the intermediary, which is not necessarily certified, in a step 26. For example, this step 26 corresponds to the identification in an internet form of the server the supplier entity, the intermediate entity and the provision of corresponding contact information relating to the intermediate entity. It should be noted that this intermediary is not necessarily certified, that is to say that it does not belong to trusted circles, neither with the user nor with the supplier.

Following this step 26, the connection between the user entity and the provider entity is interrupted, ending the transaction determination phase 20. The method then comprises an intermediate verification phase 30, which starts with a transmission 32, by the user entity and to the intermediate entity of a user version of the assertion denoted VU. This user version constitutes a second piece of information corresponding to the object of the transaction. During this step 32, the user also transmits delivery information such as for example a delivery address.

At the same time, and during a step 34, the supplier also sends the intermediary a supplier version of the assertion denoted VF. At this point, the intermediate third party 6 has a version of the assertion from the provider and a version of the assertion from the user. The intermediary then verifies the identity of the two versions of the assertion. As indicated above, the assertions do not contain an identifier of the object of the transaction or else in encrypted form, so that this step 36 does not allow the intermediary to know the object of the transaction. Advantageously, the assertion includes information corresponding to the nature of the compensation of the transaction, that is to say for example a monetary value. Once this verification 36 is made, and in the case where it is positive, the intermediate phase is completed, and a delivery phase 40 begins. In our example, this delivery phase comprises firstly a payment request 42 issued by the intermediate entity to the attention of the user entity, and the return transmission of a compensation 44, by the entity user and to the intermediate entity. Advantageously, this compensation transmitted during step 44 corresponds to the compensation for the object of the transaction as well as to additional compensation for the intermediate entity. Such a mode of compensation of the services of the intermediary makes it possible to avoid the instigation of a customer / supplier relationship between the supplier 2 and the intermediary 6, thus reducing the risks of collusion between these two entities. After receiving the compensation, the intermediate entity transmits the compensation corresponding to the object of the transaction to the supplier entity during a step 46. In the embodiment described, the compensation is transmitted simultaneously with the supplier version. the assertion that is returned to the provider entity to allow it to retrieve, in its internal database 18, the object of the transaction. The provider entity then transmits, in a step 48, the object of the transaction to the intermediate entity. This object is transmitted in a masked form, so that the intermediary can not have access to the object and can not identify its nature. On receipt of the object of the transaction in masked form, the intermediate entity delivers it to the user entity during a step 50. Thus, the method of the invention makes it possible to carry out a transaction in a completely anonymous manner. since none of the entities has both information enabling the identification of the user and information allowing the identification of the object of the transaction. With reference to FIG. 3, another embodiment of the invention will now be described. In this embodiment, step 24 of assertion transmission by the provider entity to the user entity is followed by transmission of an anonymous purchase identifier. In this embodiment, the step 26 of identifying the intermediate 25 by the user entity and to the provider entity is not performed. During the intermediate phase 30, the user entity transmits to the intermediate entity the anonymous purchase identifier received from the supplier entity, in a step 31. This purchase identifier comprises identification information. the provider entity and allows the intermediate entity to contact the provider entity. Thus, the intermediate entity transmits the purchase identifier during a step 33 at the same time as information enabling the supplier entity to identify it, that is to say to identify the intermediary . With the aid of this anonymous purchasing identifier and the contact information of the intermediate entity, the provider entity transmits the provider version of the assertion to the intermediary and the method resumes at step 34 , as described previously with reference to FIG. 2. As in the previous embodiment, none of the entities simultaneously has information identifying the user and information identifying the object of the transaction. In addition, the intermediary does not need to be part of a circle of trust and is chosen by the user. Of course, other embodiments are possible. In particular, in a variant applicable to one or other of the embodiments described above, verification of the identity of the user version of the assertion and the provider version is implemented at level 15 of the supplier entity. In another embodiment, the provider entity 2 provides objects including hardware, software, digital content such as a movie, encryption keys, and so on. In this embodiment, the intermediate entity 6 is a network connection platform, and the system makes it possible to transfer objects anonymously. In such an embodiment, the transferred content should be encrypted so that the intermediary can not access it. In this embodiment, the method comprises an additional step of transmission by the provider entity and to the user entity of a decryption key, for example during the transmission of the assertion. In a particular embodiment, the assertion is time stamped and its lifetime is time limited so that the transaction is lapsed if it is not performed in a given period of time and the assertion can not be made. not be reused later by the user entity or the intermediate entity. In a variant, the object is not compensated. In this case the invention relates to a method and a transfer system.

In one embodiment, the invention is implemented by various programs executed by the microprocessors of the elements of the system and in particular by an interface program executed at a server of the intermediate entity. Finally, it will be understood that the transfer of an object can naturally concern one or more objects.

Claims (14)

1. Method for transferring an object between a provider entity (2) capable of providing an object and a user of a user entity (4), the transfer being performed through an intermediate entity comprising: anonymous connection (22) the user entity with the provider entity to identify the object; a determination (23) by the supplier entity of a first piece of information corresponding to the identified object; and a transmission (24) from the provider entity to the user entity of the first information item (VF), characterized in that the method further comprises: a transmission (32) from the user entity to the entity intermediate of a second piece of information (VU); - a comparison (36) of the first information (VF) with the second information (VU); and, when the result of the comparison is such that the transfer is authorized: - a transmission (46), from the intermediate entity to the supplier entity, of a request for delivery of the object that corresponds to the first information a transmission (48) from the provider entity to the intermediate entity of the object in masked form; and delivery (50) of the masked object from the intermediate entity to the user entity. 2. Method according to claim 1, characterized in that it further comprises: a collection (42, 44) by the intermediate entity and from the user entity of a compensation for the object; and- a transmission (46) by the intermediate entity and to the provider entity of the compensation. 3. Method according to any one of claims 1 and 2, characterized in that it simultaneously comprises the transmission from the user entity and to the intermediate entity of said second information, the transmission of delivery information. 4. Method according to any one of claims 1 to 3, characterized in that said verification (36) is performed by the intermediate entity 5. Method according to any one of claims 1 to 3, characterized in that said verification is performed by the supplier entity. 15 6. Method according to any one of claims 1 to 5, characterized in that the masked object corresponds to an encrypted electronic content by means of at least one encryption key and in that the method further comprises a step of reception by the user entity of a decryption key able to decrypt the encrypted object. 20 7. Method according to any one of claims 1 to 6, characterized in that the determination (23) of the first information comprises the implementation of a generator (14) of unique numbers. 25 8. A system for transferring an object between a provider entity (2) able to provide an object to a user entity (4) using an intermediate entity, said entities being interconnected through one another. a network (8, 10, 12), characterized in that: the user entity comprises means capable of establishing an anonymous connection (22) of the user entity with the provider entity to identify the object; andthe supplier entity comprises means: o able to determine a first piece of information corresponding to the identified object; o able to transmit (24) to the user entity said first information; and o able to transmit (48) to the intermediate entity the object in masked form after receiving a delivery request; the intermediate entity comprises means: o able to issue (46) a delivery request to the supplier entity; and o able to deliver (50) to the user entity the object received from the provider entity, and in that the system comprises means able to compare the first information with a second information (VU) coming from the entity user, the issue of the delivery request depending on the result of the comparison. 9. An interface method between a user entity and a provider entity capable of providing an object to the user entity, characterized in that it comprises, at an intermediate entity: a reception (32) from the user entity of information corresponding to an object (VU); - a transmission (46) of a delivery request to the supplier entity of the information received; a reception (48) from the provider entity of the object corresponding to the information in masked form; and - a delivery (50) to the user entity of the object. 10. A computer program capable of being implemented on an entity characterized in that it comprises code instructions for the implementation of a method according to claim 9 when it is executed by the entity. 11. Entity capable of acting as an intermediary between a user entity (4) and a provider entity (2) for the transfer of an object, characterized in that it comprises: means for receiving an item of information (VU); means for transmitting (46) a request for delivery to the provider entity of an object corresponding to the information received; means for receiving (48) the object in masked form and for controlling a delivery (50) of the object to the user entity. 12. A method of providing an object to a user of a user entity, characterized in that it comprises: an identification of an object to be supplied; a determination of a first piece of information corresponding to the identified object; a transmission of the first information to the user entity; receiving an item delivery request from an intermediary identified by the user entity; and - delivery of the object to the intermediate entity in a masked form. 20 13. Program for an entity capable of providing an object, characterized in that it comprises code instructions for the implementation of a supply method according to claim 12 when it is executed by the entity. 25 14. Entity capable of providing an object, characterized in that it comprises: means for identifying an object; means for determining information corresponding to the identified object; means for transmitting information to a user; Means for receiving a request for delivery of the object corresponding to the information sent from the control means of the delivery of the object to the intermediate entity in a masked form.