-
1.发明授权System and method for providing trusted brokering services over a distributed network 失效通过分布式网络提供可信代理服务的系统和方法
公开(公告)号:US5815665A
公开(公告)日:1998-09-29
申请号:US626460
申请日:1996-04-03
申请人: Jeffrey A. Teper , Sudheer Koneru , Gordon Mangione , Rudolph Balaz , Aaron M. Contorer , Lucy Chao
发明人: Jeffrey A. Teper , Sudheer Koneru , Gordon Mangione , Rudolph Balaz , Aaron M. Contorer , Lucy Chao
CPC分类号: G06Q20/00 , G06Q20/02 , G06Q20/14 , G06Q30/0609 , H04L63/08
摘要: An Online Brokering Service provides user authentication and billing services to allow users to anonymously and securely purchase online services from Service Providers (SP) sites (e.g., World Wide Web sites) over a distributed public network, which may be an untrusted public network such as the Internet. Users and SP sites initially register with the Brokering Service, and are provided with respective client and server software components for using the Brokering Service. In one embodiment, when a user initially connects to an SP site, the SP site transmits a challenge message over the public network to the user computer, and the user computer generates and returns and cryptographic response message (preferably generated using a password of the user). The SP site then passes the response message to the Brokering Service, which in-turn looks up the user's password and authenticates the response message. If the response message is authentic, the Online Brokering Service transmits an anonymous ID to the SP site, which can be used for subsequently billing the user. In addition, the Online Brokering Service transmits user-specific access rights data to the SP site, allowing the SP site to customize its services for the particular user. Billing events generated by the SP sites are transmitted to the Brokering Service, which maintains a user-viewable bill that shows all charges from all SP sites accessed by the user. Advantageously, the payment information (e.g., credit card number) and other personal information of users are not exposed to the SP sites, and are not transmitted over the distributed network.
摘要翻译: 在线经纪服务提供用户认证和计费服务,允许用户通过分布式公共网络从服务提供商(SP)网站(例如万维网站点)匿名和安全地购买在线服务,分布式公共网络可能是不受信任的公共网络,如 互联网。 用户和SP站点首先向代理服务注册,并提供相应的客户端和服务器软件组件以使用代理服务。 在一个实施例中,当用户最初连接到SP站点时,SP站点通过公共网络向用户计算机发送质询消息,并且用户计算机生成并返回并加密响应消息(优选地,使用用户的密码生成 )。 然后,SP站点将响应消息传递给代理服务,代理服务会反过来查找用户的密码并验证响应消息。 如果响应消息是真实的,则在线代理服务将一个匿名ID发送到SP站点,这可以用于随后对用户进行计费。 此外,在线代理服务将用户特定的访问权限数据传输到SP站点,允许SP站点为特定用户定制其服务。 由SP站点生成的计费事件将传输到代理服务,Brokering Service维护用户可查看的帐单,显示用户访问的所有SP站点的所有费用。 有利地,支付信息(例如,信用卡号码)和用户的其他个人信息不暴露给SP站点,并且不通过分布式网络传输。
搜索结果
1 条记录 (耗时 0.015 秒)
