 Information consolidation within a transaction network |
| A system for determining value in a stored value transaction system has a plurality of value ... |
|
| Context-sensitive presentation of information to call-center agents |
| This invention is directed to solving these and other problems and disadvantages of the prior art. A... |
|
| Access card for multiple accounts |
| In one form of the invention, a credit card owner carries a single card, which preferably does not ... |
|
| Programmable multiple company credit card system |
| The present invention relates to a smart universal financial data card which allows its holder to ... |
|
| Computer-printer terminal for producing composite greeting and gift certificate card |
| I claim: 1. A computer-printer Internet terminal for producing under the control of its user a ... |
|
| Card holder-type balance reader |
| The function of an electronic purse is to perform and process a variety of transactions using a ... |
|
| Method and system for providing controlled access to information stored on a portable recording medium |
| The above object is achieved and the disadvantages of the prior art are overcome in accordance with ... |
|
| Automated unmanned rental system and method |
| OF THE INVENTION FIG. 1 shows a schematic/block diagram of an embodiment of an automated unmanned ... |
|
|
Security system and method for financial institution server and client web browser
| Details |
Inventors: Chang, Sheueling; Marks, Stuart;
Assignee: Sun Microsystems, Inc. (Mountain View, CA)
Primary Examiner: Trammell; James P.
Assistant Examiner: Retta; Yehdega
Attorney, Agent or Firm: Pennie & Edmonds LLP
The financial transaction processing system includes at least one financial server connected through a public network to a number of users associated with client computers. Each user accesses the financial server through a web browser. The web browser is provided with the capabilities to generate encryption keys, to encrypt and decrypt HTML forms, and to digitally sign and timestamp HTML forms. The financial server transfers web pages including HTML forms representing financial transactions. The HTML forms contain extensions that specify the format of an incoming format and the format of a returned form. An HTML form can be transmitted in an encrypted format, in a format including a user's digital signature and timestamp, and in an encrypted format that contains the user's digital signature and timestamp. The financial server tracks each processed transaction through an audit trail including the user's account, the user's digital signature, the timestamp of the transaction, and the text of the transaction. |
|
DETAILED DESCRIPTION The present invention pertains to a system and method for providing a secure communication mechanism between a financial server and a user associated with a web browser.
The communication mechanism is used to ensure that financial transactions are securely transmitted between the user and server across a public network.
The system includes a group of users associated with client computers that are interconnected, by a computer network such as the Internet, to at least one financial server associated with a server computer.
The financial server has a web server that manages the interactions between the users, through their web browsers, and the financial server.
The web server has a repository of web pages associated with various financial services provided by the financial server.
The web pages contain HTML documents and forms representing financial transactions that are exchanged between the user and the server.
A user utilizes a web browser to access the HTML documents and to return data from HTML forms to the server.
The server then processes the transactions and updates an audit trail that tracks each transaction.
Due to the highly confidential nature of the transactions, the system and method of the present invention incorporates several security features into the web browser and web server.
The following five security features are provided: privacy, in the form of session key encryption; data integrity, through the use of data encryption; access control, via a password mechanism; user nonrepudiation, by means of digital signatures and timestamps; and a server side audit trail.
The web browser is provided with the capability to receive encrypted forms and to transmit messages containing timestamped, digitally signed, and encrypted form data.
The web browser has the ability to provide each user with a pair of encryption keys, preferably a private and public key pair.
The web browser's initialization procedure generates these keys during installation.
The keys are stored in an encrypted format and are only accessible from within the browser
|
| Related patents |
|
|
System and method for rejecting services in a information service system
OF THE INVENTION The shopping service system as an example of the preferred embodiment of the present invention will be explained with reference to FIG. 1 to FIG. 20. FI...
|
|
|
Method and apparatus for adaptively companding data packets in a data communication system
I claim: 1. A method for adaptively compressing data packets for transmission between a first communication device and a second communication device, the method ...
|
|
|
Method and system for secure lightweight transactions in wireless data networks
The present invention has been made in consideration of the above described problems. According to a preferred embodiment, the present invention is a method and system ...
|
|
|
Dynamic selection of network providers
Accordingly, it is an aspect of the present invention to present a method, apparatus and system by which two or more cooperating end-users of the Internet and/or other ...
|
|
|
System and method for providing access to the internet via a radio telecommunications network
In one aspect, the present invention is directed to a method of providing Internet access to a roaming mobile subscriber operating a mobile station in a visited service ...
|
|
|
Method and system for validating subscriber identities in a communications network
It is therefore, a feature and advantage of the instant invention to address, from a fraud perspective, the mismatch between authenticating and non-authenticating ...
|
|
|
Dynamic radio link adaptation
OF THE EMBODIMENTS FIGS. 1-a to 1-c show the OSI model and its application to this invention. FIG. 1-a show the OSI layers in general, and FIG. 1-b show the OSI layer ...
|
|
|
Portable authorization device for authorizing use of protected information and associated method
The invention provides an authorization system and associated method for selectively authorizing a host system to use one or more items of protected information ...
|
|
|
Multiple credit card system
In one embodiment, the present invention comprises a card having information concerning the cardholder's credit card accounts encoded thereon. The card is placed into a ...
|
|
|
Integrated voice and business transaction reporting for telephone call centers
What is claimed is: 1. An integrated voice and data business transaction detail reporting for a call center of a telephone system, comprising: an automatic call ...
|
|
|
Finance 
