Telecommunications – Radiotelephone system – Security or fraud prevention
Reexamination Certificate
2007-02-04
2010-11-16
West, Lewis G (Department: 2617)
Telecommunications
Radiotelephone system
Security or fraud prevention
C455S411000, C463S029000, C705S018000
Reexamination Certificate
active
07835723
ABSTRACT:
Systems and methods are disclosed for identifying circumstances where end-to-end security is not available to a mobile banking customer. The user may be alerted/warned or restricted from accessing some banking services through his/her WAP-enabled mobile device if the bank server determines that end-to-end security is not available. In some instances, the bank server may access a computer data file containing a list of known end-to-end secure devices and gateways to verify the integrity of the data communication. The server may verify the integrity of the data communication using loose matching.
REFERENCES:
patent: 6047268 (2000-04-01), Bartoli et al.
patent: 6430624 (2002-08-01), Jamtgaard
patent: 6477565 (2002-11-01), Daswani
patent: 6581825 (2003-06-01), Rickerson, Jr.
patent: 6772333 (2004-08-01), Brendel
patent: 6834341 (2004-12-01), Bahl et al.
patent: 6925439 (2005-08-01), Pitroda
patent: 7054637 (2006-05-01), Weigand
patent: 2003/0097592 (2003-05-01), Adusumilli
patent: 2003/0115126 (2003-06-01), Pitroda
patent: 2003/0120594 (2003-06-01), Shaginaw
patent: 2004/0005895 (2004-01-01), Rollender
patent: 2004/0024867 (2004-02-01), Kjellberg
patent: 2004/0152446 (2004-08-01), Saunders et al.
patent: 2004/0267664 (2004-12-01), Nam
patent: 2004/0267665 (2004-12-01), Nam
patent: 2005/0033991 (2005-02-01), Crane
patent: 2005/0198049 (2005-09-01), Ho et al.
patent: 2005/0220095 (2005-10-01), Narayanan et al.
patent: 2005/0247777 (2005-11-01), Pitroda
patent: 2006/0245362 (2006-11-01), Choyi
patent: 2007/0211893 (2007-09-01), Frosik et al.
patent: 2008/0046616 (2008-02-01), Verzunov et al.
patent: 1083722 (2001-03-01), None
patent: 1492068 (2004-12-01), None
patent: 1498861 (2005-01-01), None
patent: 1645149 (2006-04-01), None
patent: 1652125 (2006-05-01), None
patent: 2005122687 (2005-05-01), None
patent: 2005322196 (2005-11-01), None
patent: 2004114194 (2004-12-01), None
patent: 2004114696 (2004-12-01), None
patent: 2004114697 (2004-12-01), None
patent: 2004114698 (2004-12-01), None
“Wireless Application Protocol”; downloaded from www.tml.tkk.fi/Studies/T-110.456/2005/slides/WAP-1.pdf; Jan. 20, 2007.
“End to End Security with WAP vBulletin v3.5.6, Jelsoft, Enterprises, Ltd., Nokia Discussion Forum”; downloaded from http://discussion.forum.nokia.com/forum/archive/index.php/t-1624.html; May 16, 2002.
“State of the Art Report”; created Nov. 1, 2002; last revision Aug. 15, 2003; downloaded from http://www.health-memory.org.
H. Wang, “Secure Wireless Payment Protocol”; downloaded from http://www.scs.carleton.ca/˜kranakis/Papers/swpp.pdf; Feb. 20, 2007.
S. Itani and A. Kayssi; “Securing Mobile Banking Transactions using WAP Application-Layer Security” downloaded from; http://www.actapress.com/PaperInfo.aspx?PaperID=24837; Jan. 20, 2007.
W. Itani and A. Kayssi; “J2ME application-layer end-to-end security for m-commerce” downloaded from; http://portalacmorgcitationcfmid=972094&jmp=abstract&dl=GUIDE&dl=GUIDE&CFID=15151515&CFTOKEN=6184618#abstract; Jan. 20, 2007.
R. Crowley; “Wireless Application Protocol”; downloaded from http://misnt.indstate.edu/harper/Students/WAP/Wap.html; January 20, 2007.
D. Gavalas, et al; “Status and Trends of Wireless Web Technologies”; downloaded from http://www.actapress.com/PaperInfo.aspx?PaperID=28135; Jan. 20, 2007.
R. Howell; “WAP Security”; downloaded from http://www.perfectxml.com/Conf/Wrox/Files/howell1text.pdf; Feb. 20, 2007.
O. Kalu; Making the mobile internet: An Assessment of Two Alternative Technologies for Developing Wireless Applications; University of Luton; Sep. 2002; downloaded from http://64.233.167.104/search?q=cache:T—76m5-g2hcJ:wwwgeocities.com/obkalu/downloads/MScThesisReport.doc, Jan. 21, 2007.
WAP Forum, Wireless Application Protocol: WAP 2.0 Technical White Paper; Jan. 2002; downloaded from http://www.wapforum.org/what/WAPWhite—Paper1.pdf.
Telus Mobility; “Wireless Security Primer”; Aug. 2002: downloaded from http://www.telusmobility.com/pdf/business—solutions/security—primer.pdf.
The Wireless FAQ: “How secure is WAP with SSL and WTLS”; Last modified: Oct. 9, 2006; downloaded from http://www.thewirelessfaq.com/how—secure—is—wap—with—ssl—and—wtls, Jan. 21, 2007.
“Introduction to User Agent Profile”; version 1.1; Aug. 25, 2003; downloaded from http://sw.nokia.com/id/e6d9c5ab-8fb7-4612-9914-a92c6e194373/Introduction—to—User—Agent—Profile—v1—1—en.pdf.
“User Agent Detection and Client Device Capabilities Detection”; downloaded from http://www.developershome.com/wap/detection/detection.asp?page=intro, Jan. 21, 2007.
“Using UAProf (User Agent Profile) to Detect User Agent Types and Device Capabilities”; downloaded from www.developershome.com/wap/dectection.asp?page=uaprof. Jan. 21, 2007.
M. Toivanen, “User Agent Profiling in WAP 1.2”; Research Seminar on WAP, Department of Computer Science, University of Helsinki, Mar. 17, 2000; downloaded from http://www.cs.helsinki.fi/u/kraatika/Courses/wap00s/uaprofile.pdf.
“WAP User Agents”; downloaded from webcab.de/wapua.htm; Jan. 21, 2007.
“WAG UAProf”; Wireless Application Protocol; WAP-248-UAPROF-20011020-a; WAP Forum; Oct. 20, 2001; downloaded from http://www.wapforum.org/wap-248-uaprof-20011020-a.pdf.
“What is the difference between WAP 1.1 and WAP 1.2”; last modified Dec. 16, 2006, by atrasatti; downloaded from http://www.thewirelessfaq.com/what—is—the—difference—between—wap—1.1—and—wap—1.2, Jan. 21, 2007.
“UAProf/User Agent Profile Reference”; downloaded from http://www.developershome.com/wap/uaprofRef, Jan. 21, 2007.
“Tutorial about Detecting User Agent Types and Client Device Capabilities”; downloaded from http://www. developershome.com/wap/detection, Jan. 21, 2007.
“Multimedia Messaging Service Client Transactions; Open Mobile Alliance; OMA-WAP-MMS-CTR-V1—1-20040715-A; Continues the Technical Activities Originated in the WAP Forum”; Approved version 1.1, Jul. 15, 2004.
WebSphere Everyplace Connection Manager; Administrator's Guide, Version 5.0; (First edition Jun. 2003), International Business Machines (IBM).
HTTP/1.1: Header Field Definitions; downloaded from http://www.w3.org/Protocols/rfc2616/rfc2616-sec14.html, Jan. 25, 2007.
Bank Systems and Technology, Wachovia Offers Mobile Banking Product; downloaded from http://www.banktech.com/printableArticle.jhtml?articleID=197000238, Feb. 28, 2007.
PCT International Preliminary Report on Patentability, PCT/US2008/052802, mailed Aug. 13, 2009, 7 pages.
PCT International Search Report mailed Nov. 28, 2008, PCT/US2008/052802, 8 pages.
Bjugan Ketil
Brown Douglas Gerard
Buchhop Peter K
Bank of America Corporation
Banner & Witcoff Ltd
Shen Qun
Springs Michael
West Lewis G
LandOfFree
Mobile banking does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Mobile banking, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Mobile banking will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4183718