WO2003017031A3 - System, method, and article of manufacture for providing security and verification services in an online networks - Google Patents

System, method, and article of manufacture for providing security and verification services in an online networks Download PDF

Info

Publication number
WO2003017031A3
WO2003017031A3 PCT/US2002/024993 US0224993W WO03017031A3 WO 2003017031 A3 WO2003017031 A3 WO 2003017031A3 US 0224993 W US0224993 W US 0224993W WO 03017031 A3 WO03017031 A3 WO 03017031A3
Authority
WO
WIPO (PCT)
Prior art keywords
verification
article
manufacture
response
providing security
Prior art date
Application number
PCT/US2002/024993
Other languages
French (fr)
Other versions
WO2003017031A2 (en
Inventor
Paul D Barrett
Andrew Ryan
Original Assignee
Real User Corp
Paul D Barrett
Andrew Ryan
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Real User Corp, Paul D Barrett, Andrew Ryan filed Critical Real User Corp
Priority to AU2002331004A priority Critical patent/AU2002331004A1/en
Publication of WO2003017031A2 publication Critical patent/WO2003017031A2/en
Publication of WO2003017031A3 publication Critical patent/WO2003017031A3/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/41User authentication where a single sign-on provides access to a plurality of computers
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • G06F21/6245Protecting personal data, e.g. for financial or medical purposes
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/04Payment circuits
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/12Payment architectures specially adapted for electronic shopping systems
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3821Electronic credentials
    • G06Q20/38215Use of certificates or encrypted proofs of transaction rights
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • H04L63/0442Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply asymmetric encryption, i.e. different keys for encryption and decryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0823Network architectures or network communication protocols for network security for authentication of entities using certificates
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2115Third party
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2463/00Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00
    • H04L2463/102Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00 applying security measure for e-commerce

Abstract

Methods and systems consistent with the present invention provide security and verification services in an online network (110) ( e.g., the Internet). In one embodiment, a user may establish an account at a logon server (104). Then, a verification request that requests verification of user information is received from a requestor. A response is then sent to the requestor by retrieving the requested information from the account on the logon server. Alternatively, a response may also be sent from the verification server (106). The response may include a digital certificate or a message verifying the user's information.
PCT/US2002/024993 2001-08-20 2002-08-08 System, method, and article of manufacture for providing security and verification services in an online networks WO2003017031A2 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
AU2002331004A AU2002331004A1 (en) 2001-08-20 2002-08-08 System, method, and article of manufacture for providing security and verification services in an online networks

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US31299801P 2001-08-20 2001-08-20
US60/312,998 2001-08-20

Publications (2)

Publication Number Publication Date
WO2003017031A2 WO2003017031A2 (en) 2003-02-27
WO2003017031A3 true WO2003017031A3 (en) 2003-11-06

Family

ID=23213923

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2002/024993 WO2003017031A2 (en) 2001-08-20 2002-08-08 System, method, and article of manufacture for providing security and verification services in an online networks

Country Status (2)

Country Link
AU (1) AU2002331004A1 (en)
WO (1) WO2003017031A2 (en)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
FR2889388A1 (en) * 2005-07-26 2007-02-02 France Telecom METHOD AND SYSTEM FOR SECURE DATA MANAGEMENT BETWEEN A SERVER AND A CUSTOMER
US10210507B2 (en) 2014-05-23 2019-02-19 Alibaba Group Holding Limited Performing transactions using virtual card values

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6292904B1 (en) * 1998-12-16 2001-09-18 International Business Machines Corporation Client account generation and authentication system for a network server
US6385730B2 (en) * 1998-09-03 2002-05-07 Fiware, Inc. System and method for restricting unauthorized access to a database
US6449599B1 (en) * 1994-10-24 2002-09-10 Open Market, Inc. Network sales system

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6449599B1 (en) * 1994-10-24 2002-09-10 Open Market, Inc. Network sales system
US6385730B2 (en) * 1998-09-03 2002-05-07 Fiware, Inc. System and method for restricting unauthorized access to a database
US6292904B1 (en) * 1998-12-16 2001-09-18 International Business Machines Corporation Client account generation and authentication system for a network server

Also Published As

Publication number Publication date
AU2002331004A1 (en) 2003-03-03
WO2003017031A2 (en) 2003-02-27

Similar Documents

Publication Publication Date Title
WO2006057852A3 (en) Caching content and state data at a network element
JP4221286B2 (en) System and method for managing access to digital content and streaming data
KR100745438B1 (en) Stateless methods for resource hiding and access control support based on uri encryption
WO2004023716A3 (en) Secure content delivery system
WO2003067905A3 (en) Method and system for providing third party authentification of authorization
US20040117486A1 (en) Secure cache of web session information using web browser cookies
US7512973B1 (en) Wireless-access-provider intermediation to facilliate digital rights management for third party hosted content
US20070056022A1 (en) Two-factor authentication employing a user's IP address
EP1175038A3 (en) Technique for obtaining a sign-on certificate from a foreign PKI system using an existing strong authentication PKI system
US8813185B2 (en) Ad-hoc user account creation
EP1357458A3 (en) Ad hoc secure access to documents and services
JP2002314528A (en) Method and apparatus for on demand certificate revocation updates
KR960035299A (en) A method for managing communication between a remote user and an application server, a subject authentication method for a remote user, a network and a program storage device providing a distributed computer environment
EP1241826A3 (en) Cryptographic key management method
CN101399724B (en) Disposal authentication method for network access and service application oriented to user
WO2001074137A3 (en) System and method for managing excess capacity for events of natural expiration via wireless devices
WO2004051425A3 (en) Continuous biometric authentication using frames containing biometric data
CN101076033B (en) Method and system for storing authentication certificate
CA2307051A1 (en) Method and apparatus to determine user identity and limit access to a communications network
WO2006118829A3 (en) Preventing fraudulent internet account access
WO2004071103A3 (en) Method and system for authorizing access to user information in a network
DE69835416D1 (en) METHOD FOR SAFELY CARRYING OUT A TELECOMMUNICATION COMMAND
MY180568A (en) System and method for managing account of instant messenger
WO2007015254A3 (en) Security server in a cloud
WO2002041575A3 (en) Systems and method for managing differentiated service in inform ation management environments

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ OM PH PL PT RO RU SD SE SG SI SK SL TJ TM TN TR TT TZ UA UG US UZ VC VN YU ZA ZM ZW

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BY BZ CA CH CN CO CR CU CZ DE DM DZ EC EE ES FI GB GD GE GH HR HU ID IL IN IS JP KE KG KP KR LC LK LR LS LT LU LV MA MD MG MN MW MX MZ NO NZ OM PH PL PT RU SD SE SG SI SK SL TJ TM TN TR TZ UA UG US UZ VC VN YU ZA ZM

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR IE IT LU MC NL PT SE SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

Kind code of ref document: A2

Designated state(s): GH GM KE LS MW MZ SD SL SZ UG ZM ZW AM AZ BY KG KZ RU TJ TM AT BE BG CH CY CZ DK EE ES FI FR GB GR IE IT LU MC PT SE SK TR BF BJ CF CG CI GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
122 Ep: pct application non-entry in european phase
NENP Non-entry into the national phase

Ref country code: JP

WWW Wipo information: withdrawn in national office

Country of ref document: JP