Home | Links | Contact Us | More About Intellectual Property | Bookmark

Search patents:

Home

Finance

Method-and-system-for-secure-lightweight-transactions-in-wireless-data-networks

Programmable multiple company credit card system

The present invention relates to a smart universal financial data card which allows its holder to ...

Computer-printer terminal for producing composite greeting and gift certificate card

I claim: 1. A computer-printer Internet terminal for producing under the control of its user a ...

Card holder-type balance reader

The function of an electronic purse is to perform and process a variety of transactions using a ...

Method and system for providing controlled access to information stored on a portable recording medium

The above object is achieved and the disadvantages of the prior art are overcome in accordance with ...

Application package and system for permitting a user to use distributed application package on the term of the use thereof

OF THE PREFERRED EMBODIMENTS For the sake of better understanding of the following description, it ...

Automated unmanned rental system and method

OF THE INVENTION FIG. 1 shows a schematic/block diagram of an embodiment of an automated unmanned ...

System and method of secure electronic commerce transactions including tracking and recording the distribution and usage of assets

The present invention relates to electronic commerce transactions. In particular, the invention ...

Method, apparatus and system for directing access to content on a computer network

OF PREFERRED EMBODIMENTS Preferred embodiments of the instant invention employ a network of ...

Flexible computer resource manager

The subject invention improves upon existing resource management techniques by providing an ...

Dynamic modification of multimedia content

FIG. 1 depicts an example of an Internet environment having features of the present invention. As ...

Method and system for secure lightweight transactions in wireless data networks

Details

Inventors: Liao, Hanqing; Boyle, Stephen S.; King, Peter F.; Schwartz, Bruce V.;
Assignee: Phone.com, Inc. (Redwood City, CA)
Primary Examiner: Peeso; Thomas R.
Assistant Examiner:
Attorney, Agent or Firm: Minsk; Alan D., Zheng; Joe

The present invention is a method and system for establishing an authenticated and secure communication session for transactions between a server and a client in a wireless data network that generally comprises an airnet, a landline network and a link server therebetween. The client having limited computing resources is remotely located with respect to the server and communicates to the server through the wireless data network. To authenticate each other, the client and the server conduct two rounds of authentication, the client authentication and the server authentication, independently and respectively, each of the authentication processes is based on a shared secret encrypt key and challenge/response mechanism. To reach for a mutually accepted cipher in the subsequent transactions, the server looks up for a commonly used cipher and forwards the cipher along with a session key to the client. The subsequent transactions between the client and the server are then proceeded in the authenticated and secure communication session and further each transaction secured by the session key is labeled by a transaction ID that is examined before a transaction thereof takes place.

DETAILED DESCRIPTION The present invention has been made in consideration of the above described problems.
According to a preferred embodiment, the present invention is a method and system for establishing an authenticated and secure communication session for transactions between a server and a client in a wireless data network that generally comprises an airnet, a landline network and a link server therebetween.
The client is remotely located with respect to the server and communicates to the server through the wireless data network.
The method comprises the steps of: (a) the client sending a session-request signal to the server for creating the session therebetween, the session-request signal comprising at least one client message encrypted according to a shared secret encrypt key; (b) the server conducting a first client authentication by decrypting the encrypted client message according to the shared secret encrypt key upon receiving the session-request signal; (c) the server generating a session key for the session in creation, a first derivative from the decrypted client message and generating a server message; (d) the server sending a session-reply signal comprising the session key, the first derivative and the server message; the session key, the first derivative and the server message being encrypted according to the shared secret encrypt key; (e) the client conducting a first server authentication by decrypting the first derivative and the server message being encrypted according to the shared secret encrypt key; (f) the client conducting a second server authentication by validating the first derivative with the client message; (g) the client generating a second derivative from the server message if the step (f) of the second server authentication succeeds; (h) the server conducting a second client authentication by decrypting the second derivative and verifying the second derivative with the server message upon receiving; thereby the authenticated and secure communication session is established between the client and the server after the first and the second client authentication as well as the first and the second server authentication are all successful

Related patents

	Dynamic selection of network providers Accordingly, it is an aspect of the present invention to present a method, apparatus and system by which two or more cooperating end-users of the Internet and/or other ...
	System and method for providing access to the internet via a radio telecommunications network In one aspect, the present invention is directed to a method of providing Internet access to a roaming mobile subscriber operating a mobile station in a visited service ...
	Method and system for validating subscriber identities in a communications network It is therefore, a feature and advantage of the instant invention to address, from a fraud perspective, the mismatch between authenticating and non-authenticating ...
	Dynamic radio link adaptation OF THE EMBODIMENTS FIGS. 1-a to 1-c show the OSI model and its application to this invention. FIG. 1-a show the OSI layers in general, and FIG. 1-b show the OSI layer ...
	Portable authorization device for authorizing use of protected information and associated method The invention provides an authorization system and associated method for selectively authorizing a host system to use one or more items of protected information ...
	Multiple credit card system In one embodiment, the present invention comprises a card having information concerning the cardholder's credit card accounts encoded thereon. The card is placed into a ...
	Integrated voice and business transaction reporting for telephone call centers What is claimed is: 1. An integrated voice and data business transaction detail reporting for a call center of a telephone system, comprising: an automatic call ...
	Information consolidation within a transaction network A system for determining value in a stored value transaction system has a plurality of value transferring devices including a local device, a collection device, a ...
	Context-sensitive presentation of information to call-center agents This invention is directed to solving these and other problems and disadvantages of the prior art. Applicant has realized that a key to making the call center agents' ...
	Access card for multiple accounts In one form of the invention, a credit card owner carries a single card, which preferably does not identify the owner by name. The card bears a code, which is used by a ...

0.014
Archive: All patents - Links Copyright (c)2006 Eipa-patents.org - All rights reserved