|
|
|
| United States Patent | 5642419 |
| Link to this page | http://www.wikipatents.com/5642419.html |
| Inventor(s) | Rosen; Sholom S. (New York, NY) |
| Abstract | A system for open electronic commerce having a customer trusted agent
securely communicating with a first money module, and a merchant trusted
agent securely communicating with a second money module. Both trusted
agents are capable of establishing a first cryptographically secure
session, and both money modules are capable of establishing a second
cryptographically secure session. The merchant trusted agent transfers
electronic merchandise to the customer trusted agent, and the first money
module transfers electronic money to the second money module. The money
modules inform their trusted agents of the successful completion of
payment, and the customer may use the purchased electronic merchandise. |
|
|
 |
Title Information  |
|
|
|
|
|
Drawing from US Patent 5642419 |
|
|
Method for acquiring and revalidating an electronic credential |
|
|
|
|
|
| Publication Date |
June 24, 1997 |
|
|
|
|
|
| Filing Date |
December 19, 1995 |
|
|
|
|
|
|
|
|
|
|
|
| Parent Case |
FIELD OF THE INVENTION
This is a divisional of application Ser. No. 08/234,461 filed Apr. 28, 1994
now U.S. Pat. No. 5,557,518. The present invention relates to a system for
facilitating open electronic commerce. In particular, the system utilizes
tamper-proof electronic units, referred to as "trusted agents", in
combination with money modules to create a secure transaction environment
for both the buyer and seller of electronic merchandise and services. |
|
|
|
|
|
|
|
|
|
|
 |
|
 |
Title Information |
|
|
|
References |
|
|
| *references marked with an asterisk below are user-added references |
 |
U.S. References |
|
|
| Add a new US reference: |
| | Reference | Relevancy | Comments | Reference | Relevancy | Comments | 5539828
Davis
Jul,1996 |  Your vote accepted
[0 after 0 votes] | | 5511121
Yacobi
705/69
Apr,1996 | Your vote accepted
[0 after 0 votes] | | 5473692
Davis
705/59
Dec,1995 | Your vote accepted
[0 after 0 votes] | | 5453601
Rosen
705/65
Sep,1995 | Your vote accepted
[0 after 0 votes] | | 5440634
Jones
Aug,1995 | Your vote accepted
[0 after 0 votes] | | 5416840
Cane
705/52
May,1995 | Your vote accepted
[0 after 0 votes] | | 5319705
Halter
705/54
Jun,1994 | Your vote accepted
[0 after 0 votes] | | 5305200
Hartheimer
705/37
Apr,1994 | Your vote accepted
[0 after 0 votes] | | 5276311
Hennige
235/380
Jan,1994 | Your vote accepted
[0 after 0 votes] | | 5247578
Pailles
705/65
Sep,1993 | Your vote accepted
[0 after 0 votes] | | 5221838
Gutman
235/379
Jun,1993 | Your vote accepted
[0 after 0 votes] | | 5202921
Herzberg
713/162
Apr,1993 | Your vote accepted
[0 after 0 votes] | | 5185717
Mori
365/52
Feb,1993 | Your vote accepted
[0 after 0 votes] | | 5162989
Matsuda
705/1
Nov,1992 | Your vote accepted
[0 after 0 votes] | | 5148534
Comerford
711/164
Sep,1992 | Your vote accepted
[0 after 0 votes] | | 5144663
Kudelski
380/230
Sep,1992 | Your vote accepted
[0 after 0 votes] | | 5131039
Chaum
705/69
Jul,1992 | Your vote accepted
[0 after 0 votes] | | 5117457
Comerford
713/194
May,1992 | Your vote accepted
[0 after 0 votes] | | 5109413
Comerford
705/54
Apr,1992 | Your vote accepted
[0 after 0 votes] | | 5001752
Fischer
713/178
Mar,1991 | Your vote accepted
[0 after 0 votes] | | 4999806
Chernow
717/177
Mar,1991 | Your vote accepted
[0 after 0 votes] | | 4972175
MacPherson
340/550
Nov,1990 | Your vote accepted
[0 after 0 votes] | | 4926480
Chaum
705/69
May,1990 | Your vote accepted
[0 after 0 votes] | | 4916738
Chandra
713/159
Apr,1990 | Your vote accepted
[0 after 0 votes] | | 4879747
Leighton
713/186
Nov,1989 | Your vote accepted
[0 after 0 votes] | | 4868877
Fischer
713/157
Sep,1989 | Your vote accepted
[0 after 0 votes] | | 4817140
Chandra
705/55
Mar,1989 | Your vote accepted
[0 after 0 votes] | | 4723284
Munck
713/159
Feb,1988 | Your vote accepted
[0 after 0 votes] | | 4644493
Chandra
705/56
Feb,1987 | Your vote accepted
[0 after 0 votes] | | 4634807
Chorley
705/55
Jan,1987 | Your vote accepted
[0 after 0 votes] | | 4529870
Chaum
235/380
Jul,1985 | Your vote accepted
[0 after 0 votes] | | 4454414
Benton
705/41
Jun,1984 | Your vote accepted
[0 after 0 votes] | | 4443027
McNeely
283/83
Apr,1984 | Your vote accepted
[0 after 0 votes] | | 5276736
Chaum
705/69
Dec,1969 | Your vote accepted
[0 after 0 votes] | | |
|
 |
|
|
|
U.S. References |
|
|
|
Foreign References |
|
|
|
|
|
|
|
|
Foreign References |
|
|
|
Other References |
|
|
|
|
|
|
|
|
Other References |
|
|
|
|
|
|
|
References |
|
|
|
|
|
|
| Market Size |
|
Estimate the gross annual revenues of the relevant market
sector:
|
| | |
| |
|
|
| Market Share |
|
Estimate the percentage of the relevant market sector this invention will capture:
|
| | |
| |
|
|
| Reasonable Royalty |
|
What percentage of gross sales should the inventor or assignee be paid?
|
| | |
| |
|
|
|
Public's "Guesstimation" of Royalty Value
|
| Market Size | N/A | [No votes] | | x | Market Share | N/A | [No votes] | | x | Reasonable Royalty | N/A | [No votes] |
| | N/A | |
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Market Review |
|
|
|
Technical Review |
|
|
|
Claims |
|
|
I claim:
1. A method for acquiring an electronic credential utilizing a customer
trusted agent, an authority trusted agent, and a host processor,
comprising the steps of:
establishing a cryptographically secure session between said customer
trusted agent and said authority trusted agent, wherein said customer and
authority trusted agents are tamper-proofed processing devices;
said host processor sending credential information to said authority
trusted agent;
said authority trusted agent assembling said electronic credential
including said credential information, a device identifier uniquely
designating the trusted agent that will receive said electronic
credential, a digital signature of said authority trusted agent, and a
certificate of said authority trusted agent;
sending said electronic credential to said customer trusted agent, via said
cryptographically secure session;
said customer trusted agent validating said electronic credential;
said customer trusted agent committing;
said authority trusted agent committing; and
when said electronic credential is sent to another device and is checked,
said other device verifying that said device identifier in said electronic
credential matches a device identifier of said customer trusted agent.
2. The method of claim 1, wherein said electronic credential is a driver's
license.
3. The method of claim 1, wherein said electronic credential is a corporate
seal.
4. The method of claim 1, wherein said electronic credential is a credit or
debit card.
5. The method of claim 1, wherein said electronic credential is a passport.
6. The method of claim 1, wherein said electronic credential is a social
security card.
7. The method of claim 1, further including the steps of:
sending a payment amount to said customer trusted agent via said
cryptographically secure session;
establishing a second cryptographically secure session between a first
money module associated with said customer trusted agent and a second
money module associated with said authority trusted agent; and
said first money module transferring electronic money to said second money
module in an amount consistent with said payment amount.
8. The method of claim 1, further including the steps of:
sending a payment amount to said customer trusted agent via said
cryptographically secure session;
said customer trusted agent sending a payment credential to said authority
trusted agent via said cryptographically secure session;
said authority trusted agent validating said payment credential;
sending said payment amount and said payment credential to a card
authorization network;
said authority trusted agent receiving notification that payment is
authorized; and
said authority trusted agent sending a payment authorized message to said
customer trusted agent.
9. The method of claim 1, wherein said trusted agents record log
information which after said committing step is nonprovisionally
maintained by said trusted agents.
10. The method of claim 9, wherein said customer trusted agent's log
information includes said credential information.
11. A method for remotely revalidating an electronic credential utilizing a
customer trusted agent and an authority trusted agent, comprising the
steps of:
(a) establishing a cryptographically secure session between said customer
trusted agent and said authority trusted agent, wherein said customer and
authority trusted agents are tamper-proofed processing devices;
(b) said customer trusted agent sending said electronic credential to said
authority trusted agent, via said cryptographically secure session, for
remote revalidation, wherein said electronic credential includes a device
identifier uniquely designating the trusted agent that had received said
electronic credential;
(c) said authority trusted agent validating said electronic credential,
including verifying that said device identifier in said electronic
credential matches a device identifier of said customer trusted agent;
(d) said authority trusted agent assembling an updated electronic
credential including updated credential information, said device
identifier of said customer trusted agent, a digital signature of said
authority trusted agent, and a certificate of said authority trusted
agent;
(e) sending said updated electronic credential to said customer trusted
agent, via said cryptographically secure session;
(f) said customer trusted agent validating said updated electronic
credential;
(g) said customer trusted agent committing; and
(h) said authority trusted agent committing.
12. The method of claim 11, wherein said electronic credential is a
driver's license.
13. The method of claim 11, wherein said electronic credential is a
corporate seal.
14. The method of claim 11, wherein said electronic credential is a credit
or debit card.
15. The method of claim 11, wherein said electronic credential is a
passport.
16. The method of claim 11, wherein said electronic credential is a social
security card.
17. The method of claim 11, further including the steps of:
sending a payment amount to said customer trusted agent via said
cryptographically secure session;
establishing a second cryptographically secure session between a first
money module associated with said customer trusted agent and a second
money module associated with said authority trusted agent; and
said first money module transferring electronic money to said second money
module in an amount consistent with said payment amount.
18. The method of claim 11, further including the steps of:
sending a payment amount to said customer trusted agent via said
cryptographically secure session;
said customer trusted agent sending a payment credential to said authority
trusted agent via said cryptographically secure session;
said authority trusted agent validating said payment credential;
sending said payment amount and said payment credential to a card
authorization network;
said authority trusted agent receiving notification that payment is
authorized; and
said authority trusted agent sending a payment authorized message to said
customer trusted agent.
19. The method of claim 11, wherein said trusted agent's record log
information which after said committing step is nonprovisionally
maintained by said trusted agents.
20. The method of claim 11, further including the steps of said authority
trusted agent determining if said electronic credential should be
revalidated in person.
21. The method of claim 11, further including the steps of:
after step (a), said authority trusted agent sending an authority
credential to said customer trusted agent, via said cryptographically
secure session;
said customer trusted agent validating said authority credential.
22. The method of claim 1, wherein said device identifier of said customer
trusted agent is part of a certificate of said customer trusted agent, and
is sent to said other device.
23. The method of claim 11, wherein said device identifier of said customer
trusted agent is part of a certificate of said customer trusted agent, and
is sent to said authority trusted agent when establishing said session. |
|
|
|
|
|
|
Claims |
|
|
|
Description |
|
|
BACKGROUND OF THE INVENTION
Electronic commerce today is comprised of a collection of closed
communities. Examples of such communities include local and long distance
telephone companies, cable companies, cellular telephone companies, E-mail
services, and electronic service providers such as Prodigy and CompuServe.
Customers must enroll in each community in order to use the products and
services provided. Thus, prior identification of the payer is required
before electronic delivery of merchandise or services. The operator of the
service can then either bill the customer, credit his/her loan account, or
debit his/her deposit account.
With the advent of high-speed networks delivering entertainment and
information on demand, the current billing and payment systems will be
flooded with transactions. Consequently, the customer will be bombarded by
invoices with numerous items for each billing period. Moreover, the
customer's lifestyle will be exposed to each system operator due to the
non-anonymous nature of the transactions.
One method of anonymous payment is described in my PCT patent application
WO 93/10503 entitled "Electronic-Monetary System" published May 27, 1993,
the disclosure of which is incorporated herein by reference. That
application discloses an electronic monetary system for implementing
electronic money payments as an alternative medium of exchange to cash,
checks, credit cards, debit cards, and electronic funds transfers. In
particular, the described system uses money modules packaged in
tamper-proof housings to store and transfer electronic notes. Money module
payments may be either real-time, off-line payments between money modules
(e.g., between a money module contained within a customer's "electronic
wallet" and a money module contained within a merchant's point-of-sale
terminal), or on-line payments for network services such as information
retrieval and telephone calls, or for purchasing airline tickets, theater
tickets, etc.
However, a serious problem with remote, anonymous purchase is the security
of payment and delivery. If one wants to purchase a movie over the
telephone anonymously, then how can the buyer be assured he will receive
the movie if he pays first, or the seller be assured that he will be paid
if he delivers the movie first? Thus, when purchasing anything from a
remote location, it is customary today for the buyer and seller to first
identify themselves, leading to a consequent loss of privacy.
SUMMARY OF THE INVENTION
Accordingly, it is an object of the invention to provide a system which
will allow customers to buy electronic merchandise or services on demand
without enrolling in an electronic community.
It is another object of the present invention to enable remote delivery of
electronic merchandise or services with real-time anonymous payment or
real-time authorization-based payment where neither the customer nor the
merchant can interfere with the payment and delivery process once they
have agreed to the transaction.
It is another object of the present invention to use trusted agents and
money modules to create a system for open electronic commerce where both
customers and merchants can securely transact remotely over electronic
networks without prior knowledge of each other.
It is another object of the present invention to provide a secure
electronic real-time purchase transaction between buyer and seller without
third-party intervention.
According to one aspect of the invention, a customer trusted agent
establishes a cryptographically secure session with a merchant trusted
agent. The customer trusted agent securely communicates with a first money
module, and the merchant trusted agent securely communicates with a second
money module. The merchant trusted agent delivers electronic merchandise
that is provisionally retained by the customer trusted agent. The trusted
agents participate in a secure dialogue and mutually agree on the payment
terms. The first money module transmits electronic money to the second
money module. Upon successful completion of the money module payment, the
first money module informs the customer trusted agent, and the second
money module informs the merchant trusted agent. The merchant then logs
the sale and the customer may use the purchased electronic merchandise.
According to a second aspect of the invention, the customer may pay for the
electronic merchandise by presenting a credential representing a credit or
debit card.
According to a third aspect of the invention, electronic tickets may be
presented to other trusted agents in order to obtain services.
According to a fourth aspect of the invention, the trusted agents may be
used for performing a secure identity-based payment.
According to a fifth aspect of the invention, the trusted agents may be
used to resolve a dispute over purchased electronic merchandise.
DESCRIPTION OF THE DRAWINGS
The invention will be described in greater detail below with reference to
the attached drawings, of which:
FIG. 1 is a diagram showing the trusted agent/money module interaction.
FIG. 2 illustrates the sections and fields of various tickets.
FIG. 3 illustrates the components of a transaction device.
FIGS. 4A-4D illustrate the functional components of trusted agents.
FIG. 5 is a diagram showing the network structure of a system for open
electronic commerce.
FIG. 6A is a diagram showing the security hierarchy for the trusted agents.
FIG. 6B illustrates the functional components of a (primary) trusted
server.
FIG. 7A illustrates a Commit protocol.
FIG. 7B illustrates an Abort protocol.
FIGS. 8A-8C illustrate a Recertify Trusted Agent protocol.
FIGS. 9A-9E illustrate an Establish Session protocol.
FIG. 10 illustrates a Send Message protocol.
FIG. 11 illustrates an Abort Transaction protocol.
FIG. 12A-12B illustrates a Purchase of Electronic Merchandise protocol.
FIG. 13 shows the various message encryption layers established among
trusted agents and money modules.
FIG. 14 illustrates a Check Credential protocol.
FIGS. 15A-15B illustrate a Deliver Merchandise protocol.
FIGS. 16A-16E illustrate a Money Module Payment protocol.
FIG. 17 illustrates a Send Routed Message protocol.
FIG. 18 illustrates a Send MM/TA Message protocol.
FIG. 19 illustrates a Send TA/MM Message protocol.
FIG. 20 illustrates a Send E-Routed Message protocol.
FIGS. 21A-21B illustrate an Authorization-Based Payment/Refund protocol.
FIG. 22 illustrates an Open Merchandise protocol.
FIGS. 23A-23D illustrate a Present Electronic Ticket for Services protocol.
FIG. 24 illustrates a Commit Ticket protocol.
FIGS. 25A-25C illustrate a Transfer Tickets protocol.
FIG. 26 illustrates an Acquire Credential protocol.
FIGS. 27A-27B illustrate a Deliver Credential protocol.
FIGS. 28A-28B illustrate a Revalidate Credential Remotely protocol.
FIGS. 29A-29B illustrate an Identity-Based Money Module Payment protocol.
FIGS. 30A-30E illustrate a Dispute Over Electronic Merchandise protocol.
FIG. 31 illustrates a Commit Dispute protocol.
FIG. 32 illustrates a Pay Dispute protocol.
FIG. 33A is a diagram showing the EMS Security Hierarchy.
FIG. 33B is a diagram showing the security network messaging between a
primary security server and an ordinary security server.
FIG. 34 is a diagram showing the security network structure for the EMS.
FIG. 35A illustrates the functional components of a security server.
FIG. 35B illustrates the functional components of a network server.
FIG. 36 shows an overview of the network sign-on procedure.
FIGS. 37A-37K illustrate a Network Sign-On protocol.
FIGS. 38A-38E illustrate an Establish Session protocol in the EMS.
FIGS. 39A-39B illustrate a Transfer Notes protocol.
FIGS. 40A-40D illustrate a Foreign Exchange protocol.
FIG. 41 illustrates a Commit protocol for modules in the EMS.
FIGS. 42A-42B illustrate an Abort Transaction protocol for modules in the
EMS.
FIGS. 43A-43C illustrates a Point of Sale (POS) Payment protocol.
FIGS. 44A-44B illustrate a Link Accounts protocol.
DESCRIPTION OF THE PREFERRED EMBODIMENT
The present invention contemplates a system for enabling the secure
delivery of electronic merchandise with real-time anonymous payment or
authorization-based payment. The system allows both the customer and
merchant to feel secure that their interests are being served.
Referring to FIG. 1, there is shown the basic interaction between system
components during an anonymous payment transaction. To achieve the secure
exchange of payment for electronic merchandise when buyer and seller are
transacting electronically, the present invention introduces trusted
agents 2, 4 for both the customer and merchant. A trusted agent is a
| | |
