Electrical computers and digital processing systems: support – Multiple computer communication using cryptography – Central trusted authority provides computer authentication
Reexamination Certificate
1998-03-10
2001-06-12
Millin, Vincent (Department: 2165)
Electrical computers and digital processing systems: support
Multiple computer communication using cryptography
Central trusted authority provides computer authentication
C713S150000, C713S152000
Reexamination Certificate
active
06247129
ABSTRACT:
BACKGROUND OF THE INVENTION
The present invention relates to electronic commerce and more particularly to systems and methods for using a network for electronic commerce.
The Internet is a new means by which consumers can access and purchase information, communicate and pay for services, and acquire and pay for goods. Because of the anonymous nature of communication networks, new methods and systems must be developed to substitute for existing procedures used in face-to-face or mail order/telephone order transactions. These methods and systems should provide confidential transmission, authentication of parties involved, and assurance of the integrity of payment instructions for goods and services.
To achieve these objectives and others, the Secure Electronic Transaction (SET) Specification has been developed. The SET protocol allows customers to make payment card transactions securely over the Internet. However, transactions made using this protocol generally involve an initial cardholder registration process that requires account data to be entered manually (e.g., via a keyboard at the cardholder's personal computer (PC)). The SET protocol supports several levels of security, some of which are only accessible if cardholder-related data is stored on the cardholder access device, generally limiting the availability of such security to the cardholder's own PC. The use of SET does not allow the issuer to authenticate that a card was present or that the cardholder was genuine when authorizing payment transactions.
What is needed is a system that enhances transaction security over the Internet by verifying presence of a card while providing freedom to the user to initiate transactions from multiple card access devices.
SUMMARY OF THE INVENTION
By virtue of the present invention, a system for network-based electronic commerce employing integrated circuit cards is provided. In one embodiment, cardholder authentication is provided by use of on-card symmetric cryptographic processing. The cardholder thus need not be limited to performing transactions from any particular computer system. Asymmetric cryptographic techniques are employed for communication of transaction data over the network.
According to a first embodiment of the present invention, a computer-implemented method for processing transactions over a network is provided. The method includes steps of: establishing a connection between a card access device coupled to the network and an integrated circuit card, transferring a cryptogram generation command comprising challenge data from the card access device to the integrated circuit card, in response to the cryptogram generation command, using the integrated circuit card to encrypt the challenge data to form a response, transferring the response from the integrated circuit card to the card access device, forming a payment instruction message at the card access device, the payment instruction message including the response, encrypting at least a portion of the payment instruction message using asymmetric cryptographic techniques.
A second embodiment of the present invention provides a computer program product for facilitating secure electronic commerce. The product is for use with a computer coupled to a network and a card reading device. The product includes: code for establishing a connection between the computer and an integrated circuit card in communication with the card reading device, code for transferring a cryptogram generation command comprising challenge data from the computer to the integrated circuit card, code for receiving a response to the cryptogram generation command from the integrated circuit card, code for forming a payment instruction message, the payment instruction message including the response, and a computer-readable medium for storing the codes.
A third embodiment of the present invention provides an integrated circuit card. The integrated circuit card includes: an interface for receiving external commands and data, a symmetric cryptographic processor that encrypts a challenge value received via the interface to form a response to transmit via the interface, an asymmetric cryptographic processor that encrypts a value received from the interface using a private key unique to the integrated circuit card, and a memory storing the key and a certificate including a public key matching the private key unique to the integrated circuit card, the public key being signed by a private key of a certificate authority.
A further understanding of the nature and advantages of the inventions herein may be realized by reference to the remaining portions of the specification and the attached drawings.
REFERENCES:
patent: Re. 33571 (1991-04-01), Takahashi
patent: 4186871 (1980-02-01), Anderson et al.
patent: 4197986 (1980-04-01), Nagata
patent: 4211919 (1980-07-01), Ugon
patent: 4214230 (1980-07-01), Fak et al.
patent: 4219151 (1980-08-01), Haruki
patent: 4223403 (1980-09-01), Konheim et al.
patent: 4268715 (1981-05-01), Atalla
patent: 4271482 (1981-06-01), Giraud
patent: 4283599 (1981-08-01), Atalla
patent: 4288659 (1981-09-01), Atalla
patent: 4302810 (1981-11-01), Bouricius et al.
patent: 4304990 (1981-12-01), Atalla
patent: 4309569 (1982-01-01), Merkle
patent: 4317957 (1982-03-01), Sendrow
patent: 4326098 (1982-04-01), Bouricius et al.
patent: 4357529 (1982-11-01), Atalla
patent: 4386233 (1983-05-01), Smid et al.
patent: 4386266 (1983-05-01), Chesarek
patent: 4408203 (1983-10-01), Campbell
patent: 4423287 (1983-12-01), Zeidler
patent: 4438824 (1984-03-01), Mueller-Schloer
patent: 4467139 (1984-08-01), Mollier
patent: 4471216 (1984-09-01), Herve
patent: 4498000 (1985-02-01), Decavele et al.
patent: 4529870 (1985-07-01), Chaum
patent: 4536647 (1985-08-01), Atalla et al.
patent: 4544833 (1985-10-01), Ugon
patent: 4549075 (1985-10-01), Saada et al.
patent: 4594663 (1986-06-01), Nagata et al.
patent: 4612413 (1986-09-01), Robert et al.
patent: 4629874 (1986-12-01), Pugsley et al.
patent: 4630201 (1986-12-01), White
patent: 4638120 (1987-01-01), Herve
patent: 4652698 (1987-03-01), Hale et al.
patent: 4656474 (1987-04-01), Mollier et al.
patent: 4661658 (1987-04-01), Matyas
patent: 4672182 (1987-06-01), Hirokawa
patent: 4679236 (1987-07-01), Davies
patent: 4700055 (1987-10-01), Kashkashian, Jr.
patent: 4720859 (1988-01-01), Aaro et al.
patent: 4723284 (1988-02-01), Munck et al.
patent: 4725719 (1988-02-01), Oncken et al.
patent: 5225664 (1993-07-01), Iijima
patent: 5227613 (1993-07-01), Takagi et al.
patent: 5239166 (1993-08-01), Graves
patent: 5247578 (1993-09-01), Pailles et al.
patent: 5276736 (1994-01-01), Chaum
patent: 5285200 (1994-02-01), Kuriyama
patent: 5293029 (1994-03-01), Iijima
patent: 5293424 (1994-03-01), Holtey et al.
patent: 5299263 (1994-03-01), Beller et al.
patent: 5317636 (1994-05-01), Vizcaino
patent: 5319710 (1994-06-01), Atalla et al.
patent: 5323465 (1994-06-01), Avarne
patent: 5337358 (1994-08-01), Axelrod et al.
patent: 5341426 (1994-08-01), Barney et al.
patent: 5343529 (1994-08-01), Goldfine et al.
patent: 5347580 (1994-09-01), Molva et al.
patent: 5355413 (1994-10-01), Ohno
patent: 5371797 (1994-12-01), Bocinsky, Jr.
patent: 5375169 (1994-12-01), Scheidt et al.
patent: 5379344 (1995-01-01), Larsson et al.
patent: 5396558 (1995-03-01), Ishiguro et al.
patent: 5401950 (1995-03-01), Yoshida
patent: 5402490 (1995-03-01), Mihm, Jr.
patent: 5412726 (1995-05-01), Nevoux et al.
patent: 5420926 (1995-05-01), Low et al.
patent: 5422953 (1995-06-01), Fischer
patent: 5428684 (1995-06-01), Akiyama et al.
patent: 5434919 (1995-07-01), Chaum
patent: 5440635 (1995-08-01), Bellovin et al.
patent: 5446796 (1995-08-01), Ishiguro et al.
patent: 5461217 (1995-10-01), Claus
patent: 5473689 (1995-12-01), Eberhard
patent: 5475763 (1995-12-01), Kaufman et al.
patent: 5481611 (1996-01-01), Owens et al.
patent: 5493613 (1996-02-01), Denno et al.
patent: 5502765 (1996-03-01), Ishiguro et al.
patent: 5559887 (1996-09-01), Davis et al.
patent: 5602915 (1997-02-01), Campana et al.
patent: 5602917 (1997-02-01), Mueller
patent: 5604801 (1997-02-01), Dolan et al.
pa
Chen Ann-Pin
Keathley Kimberly Ann
McCusker Nancy
Millin Vincent
Nguyen Cuong H.
Townsend and Townsend / and Crew LLP
Visa International Service Association
LandOfFree
Secure electronic commerce employing integrated circuit cards does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Secure electronic commerce employing integrated circuit cards, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Secure electronic commerce employing integrated circuit cards will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2527780