WikiPatents - Community Patent Review
Create Free Account  |  License or Sell Your Patent  |  WikiPatents Marketplace  |  WikiPatents Blog
Username:  Password:  
    
Advanced Search
Trusted agents for open electronic commerce    
United States Patent5557518   
Link to this pagehttp://www.wikipatents.com/5557518.html
Inventor(s)Rosen; Sholom S. (New York, NY)
AbstractA system for open electronic commerce having a customer trusted agent securely communicating with a first money module, and a merchant trusted agent securely communicating with a second money module. Both trusted agents are capable of establishing a first cryptographically secure session, and both money modules are capable of establishing a second cryptographically secure session. The merchant trusted agent transfers electronic merchandise to the customer trusted agent, and the first money module transfers electronic money to the second money module. The money modules inform their trusted agents of the successful completion of payment, and the customer may use the purchased electronic merchandise.



 Title Information Submit all comments and votes
 
Patent Text Patent PDF Print Page Summary File History
Plain text PDF images Print Summary File History
Inventor     Rosen; Sholom S. (New York, NY)
Owner/Assignee     Citibank, N.A. (New York, NY)
Patent assignment
All assignments
Publication Date     September 17, 1996
Application Number     08/234,461
PAIR File History     Application Data   Transaction History
Image File Wrapper   Patent Term   Fees
Litigation
Filing Date     April 28, 1994
US Classification    
Int'l Classification    
Examiner     Weinhardt; Robert A.
Assistant Examiner     Tkacs; Stephen R.
Attorney/Law Firm     Morgan & Finnegan, L.L.P.
Address
Parent Case    
Priority Data    
USPTO Field of Search    
Patent Tags     trusted agents open electronic commerce
   
Enter a comma (,) or semicolon (;) between multiple tag words/phrases.
Describe this patent:
 Amusing   
 Clever   
 Complex   
 Efficient   
 Historic   
 Important   
 Innovative   
 Interesting   
 Practical   
 Simple   
[no votes]
Patent WIKI

Share information and news about this patent, including information and news about the technology, inventors, company, ligation and licensing.
 References Submit all comments and votes
 
*references marked with an asterisk below are user-added references
 U.S. References
 
Add a new US reference:  
ReferenceRelevancyCommentsReferenceRelevancyComments
5440634
Jones

Aug,1995
[0 after 0 votes]		5416840
Cane
705/52
May,1995
[0 after 0 votes]
5319705
Halter
705/54
Jun,1994
[0 after 0 votes]		5305200
Hartheimer
705/37
Apr,1994
[0 after 0 votes]
5276311
Hennige
235/380
Jan,1994
[0 after 0 votes]		5247578
Pailles
705/65
Sep,1993
[0 after 0 votes]
5221838
Gutman
235/379
Jun,1993
[0 after 0 votes]		5202921
Herzberg
713/162
Apr,1993
[0 after 0 votes]
5185717
Mori
365/52
Feb,1993
[0 after 0 votes]		5162989
Matsuda
705/1
Nov,1992
[0 after 0 votes]
5148534
Comerford
711/164
Sep,1992
[0 after 0 votes]		5144663
Kudelski
380/230
Sep,1992
[0 after 0 votes]
5131039
Chaum
705/69
Jul,1992
[0 after 0 votes]		5117457
Comerford
713/194
May,1992
[0 after 0 votes]
5109413
Comerford
705/54
Apr,1992
[0 after 0 votes]		4999806
Chernow
717/177
Mar,1991
[0 after 0 votes]
4972175
MacPherson
340/550
Nov,1990
[0 after 0 votes]		4926480
Chaum
705/69
May,1990
[0 after 0 votes]
4916738
Chandra
713/159
Apr,1990
[0 after 0 votes]		4817140
Chandra
705/55
Mar,1989
[0 after 0 votes]
4644493
Chandra
705/56
Feb,1987
[0 after 0 votes]		4634807
Chorley
705/55
Jan,1987
[0 after 0 votes]
4529870
Chaum
235/380
Jul,1985
[0 after 0 votes]		4454414
Benton
705/41
Jun,1984
[0 after 0 votes]
4443027
McNeely
283/83
Apr,1984
[0 after 0 votes]		5276736
Chaum
705/69
Dec,1969
[0 after 0 votes]
 Foreign References
 Other References
 Market Review Submit all comments and votes
   
Market Size
Estimate the gross annual revenues of the relevant market sector:
> $10B
$5B - $10B
$2B - $5B
$500M - $2B
$100M - $500M
$10M - $100M
$1M - $10M
$500K - $1M
$100K - $500K
< $100K
[No votes]
$0
 
$0   $2.5B   $5B   $7.5B   $10B
Market Share
Estimate the percentage of the relevant market sector this invention will capture:
75% - 100%
50% - 74.99%
25% - 49.99%
10 - 24.99%
5 - 9.99%
2 - 4.99%
1 - 1.99%
< 1%
[No votes]
0.0%
 
0%   25%   50%   75%   100%
Reasonable Royalty
What percentage of gross sales should the inventor or assignee be paid?
75% - 100%
50% - 74.99%
25% - 49.99%
10 - 24.99%
5 - 9.99%
2 - 4.99%
1 - 1.99%
< 1%
[No votes]
0.0%
 
0%   25%   50%   75%   100%
Public's "Guesstimation" of Royalty Value
Market SizeN/A[No votes]
xMarket ShareN/A[No votes]
xReasonable RoyaltyN/A[No votes]
N/A
License Availablity
If you are NOT the owner or assignee, answer here:
Yes, license is available for purchase

No, license is not currently available



 [No votes]
License Availablity
If you ARE the owner or assignee, answer here:
Yes, license is available for purchase

No, license is not currently available



 [No votes]
Competitive Advantage
Does this invention have a significant competitive advantage over similar technologies?
Yes

No



 [No votes]
Most helpful competitive advantage comment
[No comments]
Commercial Alternatives
Are there viable commercial alternatives for this invention?
Yes

No



 [No votes]
Most helpful commercial alternative comment
[No comments]
 Technical Review Submit all comments and votes
 Claims Submit all comments and votes
 


I claim:

1. A system for open electronic commerce where both customers and merchants can securely transact comprising:

a customer trusted agent;

a first money module associated with said customer trusted agent, and capable of securely communicating with said customer trusted agent;

a merchant trusted agent capable of establishing a first cryptographically secure session with said customer trusted agent;

a second money module associated with said merchant trusted agent and capable of securely communicating with said merchant trusted agent, and capable of establishing a second cryptographically secure session with said first money module;

where said merchant trusted agent transfers electronic merchandise, via said first cryptographically secure session, to said customer trusted agent which provisionally retains said electronic merchandise;

where said customer trusted agent provides first payment information to said first money module and said merchant trusted agent provides second payment information to said second money module;

where said first money module transfers electronic money, in an amount consistent with said first and second payment information, to said second money module via said second cryptographically secure session;

where said first money module informs said customer trusted agent upon successful transfer of said electronic money, whereupon said retention of electronic merchandise is no longer provisional, and where said second money module informs said merchant trusted agent upon successful receipt of said electronic money.

2. The system of claim 1, wherein said first payment information includes a payment amount and said second payment information includes a verification of said payment amount.

3. The system of claim 1, wherein said second payment information includes a payment amount and said first payment information includes a verification of said payment amount.

4. The system of claim 1, wherein said electronic merchandise comprises a ticket.

5. The system of claim 1, wherein said electronic merchandise comprises an encrypted electronic object and a decryption ticket capable of decrypting said encrypted electronic object.

6. The system of claim 5, wherein said decryption ticket includes the following sections: identifier, components, issuer signature, issuer certificate, transfer history, and sender signatures.

7. The system of claim 1, wherein said ticket includes the following sections: identifier, components, issuer signature, issuer certificate, transfer history, and sender signatures.

8. The system of claim 7, wherein said ticket is a credential ticket.

9. The system of claim 7, wherein said ticket is a transportation ticket.

10. The system of claim 7, wherein said ticket is an event ticket.

11. The system of claim 7, wherein said ticket is a communications ticket.

12. The system of claim 7, wherein said ticket is a physical object ticket.

13. The system of claim 1, wherein said customer trusted agent and said first money module are part of a customer transaction device further including a first host processor and a first bus connecting said customer trusted agent, said first money module, and said first host processor.

14. The system of claim 13, wherein said merchant trusted agent and said second money module are part of a merchant transaction device further including a second host processor and a second bus connecting said merchant trusted agent, said second money module, and said second host processor.

15. The system of claim 1, wherein a trusted agent comprises application software executed on a processor, and a money module comprises application software executed on a separate processor, where said processors are tamper-proof.

16. The system of claim 1, wherein a trusted agent and a money module comprise application software both executed on the same tamper-proof processor.

17. For use in the secure purchase of electronic merchandise with the aid of a merchant trusted agent and first and second money modules capable of establishing a second cryptographically secure session, a customer trusted agent comprising:

a processor adapted for the following:

establishing a first cryptographically secure session with said merchant trusted agent;

securely communicating with said first money module associated with said customer trusted agent;

receiving and provisionally retaining electronic merchandise from said merchant trusted agent via said first cryptographically secure session; and

providing payment information to said first money module;

where said first money module transfers electronic money, in an amount consistent with said payment information, via said second cryptographically secure session, to said second money module associated with said merchant trusted agent; and

where said customer trusted agent is informed by said first money module upon successful transfer of said electronic money, whereupon said retention of said electronic merchandise is no longer provisional and said electronic merchandise may be used by the customer.

18. The customer trusted agent of claim 17, wherein said payment information includes a payment amount.

19. The customer trusted agent of claim 17, wherein said payment information includes a verification of a payment amount.

20. The customer trusted agent of claim 17, wherein said electronic merchandise comprises a ticket.

21. The customer trusted agent of claim 17, wherein said electronic merchandise comprises an encrypted electronic object and a decryption ticket capable of decrypting said encrypted electronic object.

22. The apparatus of claim 17, wherein said customer trusted agent comprises application software executed on said processor, and said first money module comprises application software executed on a separate processor, where said processors are tamper-proof.

23. The apparatus of claim 17, wherein said customer trusted agent and said first money module comprise application software both executed on said processor which is tamper-proof.

24. For use in the secure sale of electronic merchandise with the aid of a customer trusted agent and first and second money modules capable of establishing a second cryptographically secure session, a merchant trusted agent comprising:

a processor adapted for the following:

establishing a first cryptographically secure session with said customer trusted agent;

securely communicating with said second money module associated with said merchant trusted agent;

transferring electronic merchandise, via said first cryptographically secure session to said customer trusted agent which provisionally retains said electronic merchandise; and

providing payment information to said second money module;

where said second money module receives electronic money, in an amount indicated by said payment information, via said second cryptographically secure session, from said first money module associated with said customer trusted agent; and

where said merchant trusted agent is informed by said second money module upon successful receipt of said electronic money whereupon the merchant's sale is logged.

25. The merchant trusted agent of claim 24, wherein said payment information includes a payment amount.

26. The merchant trusted agent of claim 24, wherein said payment information includes a verification of a payment amount.

27. The merchant trusted agent of claim 24, wherein said electronic merchandise comprises a ticket.

28. The merchant trusted agent of claim 24, wherein said electronic merchandise comprises an encrypted electronic object and a decryption ticket capable of decrypting said encrypted electronic object.

29. The apparatus of claim 24, wherein said merchant trusted agent comprises application software executed on said processor, and said second money module comprises application software executed on a separate processor, where said processors are tamper-proof.

30. The apparatus of claim 24, wherein said merchant trusted agent and said second money module comprise application software both executed on said processor which is tamper-proof.

31. A method for securely exchanging an electronic ticket and electronic money utilizing a customer trusted agent, a first money module, a merchant trusted agent, and a second money module, comprising the steps of:

(a) establishing a first cryptographically secure session between said customer trusted agent and said merchant trusted agent;

(b) said merchant trusted agent transferring said electronic ticket, via said first cryptographically secure session, to said customer trusted agent which provisionally retains said electronic ticket;

(c) establishing a second cryptographically secure session between said first money module and said second money module;

(d) said customer trusted agent securely providing first payment information to said first money module;

(e) said merchant trusted agent securely providing second payment information to said second money module;

(f) said first money module transferring, via said second cryptographically secure session, said electronic money in an amount consistent with said first and second payment information, to said second money module which provisionally retains said electronic money;

(g) said first money module committing and securely informing said customer trusted agent of successful electronic money transfer;

(h) said second money module committing, whereupon said retention of said electronic money is no longer provisional, and securely informing said merchant trusted agent of successful electronic money receipt;

(i) said customer trusted agent committing, whereupon said retention of said electronic ticket is no longer provisional; and

(j) said merchant trusted agent committing.

32. The method of claim 31, wherein said first payment information includes a payment amount and said second payment information includes a verification of said payment amount, further including between steps (d) and (e) the steps of:

said first money module transferring, via said second cryptographically secure session, said payment amount to said second money module; and

said second money module securely informing said merchant trusted agent of said payment amount.

33. The method of claim 31, wherein said second payment information includes a payment amount and said first payment information includes a verification of said payment amount, further including between steps (d) and (e) the steps of:

said second money module transferring, via said second cryptographically secure session, said payment amount to said first money module; and

said first money module securely informing said customer trusted agent of said payment amount.

34. The method of claim 31, further including the step of:

after step (b), said customer trusted agent processing said electronic ticket to verify the correctness of said electronic ticket.

35. The method of claim 31, wherein said electronic ticket is a decryption ticket used for decrypting an encrypted electronic object.

36. The method of claim 31, wherein steps (g) and (h) comprise the substeps of:

said second money module sending a Ready-To-Commit message to said first money module via said second cryptographically secure session;

said first money module updating a first transaction log and informing said customer trusted agent of successful electronic money transfer; and

said second money module updating a second transaction log and securely informing said merchant trusted agent of successful electronic money receipt.

37. The method of claim 31, wherein the steps of committing by said customer trusted agent, said merchant trusted agent, said first money module, and said second money module include logging a transaction wherein it can no longer abort said transaction by rolling-back its state.

38. A method for securely exchanging an electronic ticket and electronic money utilizing a customer trusted agent, a first money module, a merchant trusted agent, and a second money module, comprising the steps of:

establishing a first cryptographically secure session between said customer trusted agent and said merchant trusted agent;

establishing a second cryptographically secure session between said first money module and said second money module;

said customer trusted agent securely providing first payment information to said first money module;

said merchant trusted agent securely providing second payment information to said second money module;

said first money module transferring, via said second cryptographically secure session, said electronic money in an amount consistent with said first and second payment information, to said second money module which provisionally retains said electronic money;

said merchant trusted agent transferring said electronic ticket, via said first cryptographically secure session, to said customer trusted agent which provisionally retains said electronic ticket;

said customer trusted agent securely instructing said first money module to commit;

said first money module committing and securely informing said customer trusted agent of successful electronic money transfer;

said second money module committing, whereupon said retention of said electronic money is no longer provisional, and securely informing said merchant trusted agent of successful electronic money receipt;

said customer trusted agent committing, whereupon said retention of said electronic ticket is no longer provisional; and

said merchant trusted agent committing.

39. A method utilizing a tamper-proof customer trusted agent and a tamper-proof merchant trusted agent to perform an authorization-based payment transaction, comprising:

(a) establishing a cryptographically secure session between said customer trusted agent and said merchant trusted agent, wherein said customer trusted agent and said merchant trusted agent exchange digitally signed trusted agent certificates that each include a trusted agent identifier;

(b) transferring electronic merchandise from said merchant trusted agent to said customer trusted agent, via said cryptographically secure session, where said customer trusted agent provisionally retains said electronic merchandise;

(c) said customer trusted agent validating said electronic merchandise;

(d) said customer trusted agent transferring a payment credential to said merchant trusted agent via said cryptographically secure session, wherein said payment credential includes a receiver trusted agent identifier;

(e) said merchant trusted agent validating said payment credential, wherein said trusted agent identifier from said customer trusted agent's certificate is compared to said receiver trusted agent identifier;

(f) said merchant trusted agent sending said payment credential and a price corresponding to said electronic merchandise to an authorization network for payment authorization;

(g) said merchant trusted agent receiving a payment authorization;

(h) said merchant trusted agent sending a payment authorized message to said customer trusted agent via said cryptographically secure session and committing to said authorization-based payment transaction; and

(i) said customer trusted agent committing to said authorization-based payment transaction, whereupon said retention of said electronic merchandise is no longer provisional.

40. The method of claim 39, wherein said customer and merchant trusted agents record log information of said transaction, where said log information is non-provisionally maintained following said committing steps.

41. The method of claim 40, wherein said electronic merchandise comprises a ticket.

42. The method of claim 41, wherein said customer trusted agent's log information includes ticket information and payment data.

43. The method of claim 39, wherein said electronic merchandise comprises a decryption ticket provisionally retained by said customer trusted agent upon transfer, and an encrypted electronic object that may be stored separately from said merchant trusted agent and decrypted by said decryption ticket.

44. The method of claim 39, further including the steps of:

after step (a), said merchant trusted agent sending a merchant credential to said customer trusted agent via said cryptographically secure session; and

said customer trusted agent processing said merchant credential to validate said merchant credential.

45. The method of claim 39, wherein the steps of committing by said customer trusted agent and said merchant trusted agent include logging a transaction wherein it can no longer abort said transaction by rolling-back its state.

46. A method for an identity-based money module payment utilizing tamper-proof devices including a first trusted agent, a first money module, a second trusted agent, and a second money module, comprising the steps

establishing a first cryptographically secure session between said first trusted agent and said second trusted agent;

said second trusted agent sending a second trusted agent credential to said first trusted agent, via said first cryptographically secure session;

said first trusted agent validating said second trusted agent credential and provisionally retaining said credential;

said first trusted agent sending payment information to said second trusted agent, via said first cryptographically secure session; and

said first trusted agent initiating an electronic money payment from said first money module to said second money module, in an amount consistent with said payment information and via a second cryptographically secure session between said first and second money modules;

said first trusted agent committing after receiving payment successful information from said first money module, whereupon said first trusted agent non-provisionally maintains log information including said second trusted agent credential and data corresponding to said payment information; and

said second trusted agent committing after receiving payment successful information from said second money module.

47. The method of claim 46, further comprising the steps of said first trusted agent sending a message to said second trusted agent inquiring whether a first trusted agent credential is requested;

said first trusted agent sending a first trusted agent credential to said second trusted agent, via said first cryptographically secure session; and

said second trusted agent validating said first trusted agent credential.

48. A system for securing simultaneous payment of electronic money to delivery of electronic merchandise over a communication network, comprising:

a tamper-proof first electronic agent having a first processor;

a tamper-proof first money module associated with and capable of securely communicating with said first electronic agent, and having a second processor;

a tamper-proof second electronic agent capable of establishing a first cryptographically secure session with said first electronic agent over said communications network, and having a third processor;

a tamper-proof second money module associated with and capable of securely communicating with said second electronic agent, and capable of establishing a second cryptographically secure session with said first money module, and having a fourth processor;

where said first electronic agent and said first money module are remotely located from said second electronic agent and said second money module;

where said third processor is adapted to transfer electronic merchandise, via said first cryptographically secure session, to said first electronic agent;

where said first processor is adapted to receive said electronic merchandise and not permit free external access to said electronic merchandise pending receipt of a message indicative of successful payment from said first money module;

where said second processor is adapted to transfer electronic money, via said second cryptographically secure session, to said second money module, and to subsequently send said message indicative of successful payment to said first processor; and

where said fourth processor is adapted to receive said electronic money.

49. The method of claim 48, wherein said first electronic agent does not provide any information identifying its owner to said second electronic agent during a remote purchase transaction over said communications network.
 Description Submit all comments and votes
 


FIELD OF THE INVENTION

The present invention relates to a system for facilitating open electronic commerce. In particular, the system utilizes tamper-proof electronic units, referred to as "trusted agents" in combination with money modules to create a secure transaction environment for both the buyer and seller of electronic merchandise and services.

BACKGROUND OF THE INVENTION

Electronic commerce today is comprised of a collection of closed communities. Examples of such communities include local and long distance telephone companies, cable companies, cellular telephone companies, E-mail services, and electronic service providers such as Prodigy and CompuServe. Customers must enroll in each community in order to use the products and services provided. Thus, prior identification of the payer is required before electronic delivery of merchandise or services. The operator of the service can then either bill the customer, credit his/her loan account, or debit his/her deposit account.

With the advent of high-speed networks delivering entertainment and information on demand, the current billing and payment systems will be flooded with transactions. Consequently, the customer will be bombarded by invoices with numerous items for each billing period. Moreover, the customer's lifestyle will be exposed to each system operator due to the non-anonymous nature of the transactions.

One method of anonymous payment is described in U.S. Pat. No. 5,453,601 entitled "Electronic-Monetary System" issued Sep. 26, 1995, the disclosure of which is incorporated herein by reference. That application discloses an electronic monetary system for implementing electronic money payments as an alternative medium of exchange to cash, checks, credit cards, debit cards, and electronic funds transfers. In particular, the described system uses money modules packaged in tamper-proof housings to store and transfer electronic notes. Money module payments may be either real-time, off-line payments between money modules (e.g., between a money module contained within a customer's "electronic wallet" and a money module contained within a merchant's point-of-sale terminal), or on-line payments for network services such as information retrieval and telephone calls, or for purchasing airline tickets, theater tickets, etc.

However, a serious problem with remote, anonymous purchase is the security of payment and delivery. If one wants to purchase a movie over the telephone anonymously, then how can the buyer be assured he will receive the movie if he pays first, or the seller be assured that he will be paid if he delivers the movie first? Thus, when purchasing anything from a remote location, it is customary today for the buyer and seller to first identify themselves, leading to a consequent loss of privacy.

SUMMARY OF THE INVENTION

Accordingly, it is an object of the invention to provide a system which will allow customers to buy electronic merchandise or services on demand without enrolling in an electronic community.

It is another object of the present invention to enable remote delivery of electronic merchandise or services with real-time anonymous payment or real-time authorization-based payment where neither the customer nor the merchant can interfere with the payment and delivery process once they have agreed to the transaction.

It is another object of the present invention to use trusted agents and money modules to create a system for open electronic commerce where both customers and merchants can securely transact remotely over electronic networks without prior knowledge of each other.

It is another object of the present invention to provide a secure electronic real-time purchase transaction between buyer and seller without third-party intervention.

According to one aspect of the invention, a customer trusted agent establishes a cryptographically secure session with a merchant trusted agent. The customer trusted agent securely communicates with a first money module, and the merchant trusted agent securely communicates with a second money module. The merchant trusted agent delivers electronic merchandise that is provisionally retained by the customer trusted agent. The trusted agents participate in a secure dialogue and mutually agree on the payment terms. The first money module transmits electronic money to the second money module. Upon successful completion of the money module payment, the first money module informs the customer trusted agent, and the second money module informs the merchant trusted agent. The merchant then logs the sale and the customer may use the purchased electronic merchandise.

According to a second aspect of the invention, the customer may pay for the electronic merchandise by presenting a credential representing a credit or debit card.

According to a third aspect of the invention, electronic tickets may be presented to other trusted agents in order to obtain services.

According to a fourth aspect of the invention, the trusted agents may be used for performing a secure identity-based payment.

According to a fifth aspect of the invention, the trusted agents may be used to resolve a dispute over purchased electronic merchandise.

DESCRIPTION OF THE DRAWINGS

The invention will be described in greater detail below with reference to the attached drawings, of which:

FIG. 1 is a diagram showing the trusted agent/money module interaction.

FIG. 2 illustrates the sections and fields of various tickets.

FIG. 3 illustrates the components of a transaction device.

FIGS. 4A-4D illustrate the functional components of trusted agents.

FIG. 5 is a diagram showing the network structure of a system for open electronic commerce.

FIG. 6A is a diagram showing the security hierarchy for the trusted agents.

FIG. 6B illustrates the functional components of a (primary) trusted server.

FIG. 7A illustrates a Commit protocol.

FIG. 7B illustrates an Abort protocol.

FIGS. 8A-8C illustrate a Recertify Trusted Agent protocol.

FIGS. 9A-9E illustrate an Establish Session protocol.

FIG. 10 illustrates a Send Message protocol.

FIG. 11 illustrates an Abort Transaction protocol.

FIG. 12A-12B illustrates a Purchase of Electronic Merchandise protocol.

FIG. 13 shows the various message encryption layers established among trusted agents and money modules.

FIG. 14 illustrates a Check Credential protocol.

FIGS. 15A-15B illustrate a Deliver Merchandise protocol.

FIGS. 16A-16E illustrate a Money Module Payment protocol.

FIG. 17 illustrates a Send Routed Message protocol.

FIG. 18 illustrates a Send MM/TA Message protocol.

FIG. 19 illustrates a Send TA/MM Message protocol.

FIG. 20 illustrates a Send E-Routed Message protocol.

FIGS. 21A-21B illustrate an Authorization-Based Payment/Refund protocol.

FIG. 22 illustrates an Open Merchandise protocol.

FIGS. 23A-23D illustrate a Present Electronic Ticket for Services protocol.

FIG. 24 illustrates a Commit Ticket protocol.

FIGS. 25A-25C illustrate a Transfer Tickets protocol.

FIG. 26 illustrates an Acquire Credential protocol.

FIGS. 27A-27B illustrate a Deliver Credential protocol.

FIGS. 28A-28B illustrate a Revalidate Credential Remotely protocol.

FIGS. 29A-29B illustrate an Identity-Based Money