-
公开(公告)号:US20060168657A1
公开(公告)日:2006-07-27
申请号:US10532195
申请日:2003-10-24
申请人: Michael Baentsch , Peter Buhler , Thomas Eirich , Frank Hoering , Thorsten Kramp , Marcus Oestreicher , Michael Osborne , Thomas Weigold
发明人: Michael Baentsch , Peter Buhler , Thomas Eirich , Frank Hoering , Thorsten Kramp , Marcus Oestreicher , Michael Osborne , Thomas Weigold
IPC分类号: G06F12/14
CPC分类号: H04L63/061 , H04L29/06 , H04L63/062
摘要: A method for providing a user device with a set of access codes comprises, in the user device, storing an encryption key and an identification code, and sending a message containing the identification code to a server via a communications network. In the server, an encryption key is stored corresponding to the key stored in the user device, allocating the set of access codes on receipt of the identification code from the user device. A look up function is performed based on the identification code received in the message to retrieve the key from storage. The set of access codes is encrypted using the retrieved key to produce an encrypted set. A message containing the encrypted set is sent to the user device via the network. In the user device, the encrypted set received from the server is decrypted using the key in storage, and storing the decrypted set of access codes for use by a user of the user device.
摘要翻译: 一种向用户设备提供一组接入码的方法,包括在用户设备中存储加密密钥和识别码,以及经由通信网络向服务器发送包含识别码的消息。 在服务器中,对应于存储在用户设备中的密钥存储加密密钥,在从用户设备接收到识别码时分配一组接入码。 基于在消息中接收到的识别码执行查找功能,以从存储中检索密钥。 使用检索到的密钥对访问代码集进行加密以产生加密集。 包含加密集的消息经由网络发送到用户设备。 在用户装置中,使用存储器中的密钥对从服务器接收到的加密集进行解密,并且存储解密的一组访问码以供用户装置的用户使用。
-
公开(公告)号:US20080226076A1
公开(公告)日:2008-09-18
申请号:US12125247
申请日:2008-05-22
申请人: Michael Baentsch , Peter Buhler , Thomas Eirich , Frank Hoering , Thorsten Kramp , Marcus Oestreicher , Michael Osborne , Thomas D. Weigold
发明人: Michael Baentsch , Peter Buhler , Thomas Eirich , Frank Hoering , Thorsten Kramp , Marcus Oestreicher , Michael Osborne , Thomas D. Weigold
CPC分类号: H04L63/061 , H04L29/06 , H04L63/062
摘要: A method for providing a user device with a set of access codes comprises, in the user device, storing an encryption key and an identification code, and sending a message containing the identification code to a server via a communications network. In the server, an encryption key is stored corresponding to the key stored in the user device, allocating the set of access codes on receipt of the identification code from the user device. A look up function is performed based on the identification code received in the message to retrieve the key from storage. The set of access codes is encrypted using the retrieved key to produce an encrypted set. A message containing the encrypted set is sent to the user device via the network. In the user device, the encrypted set received from the server is decrypted using the key in storage, and storing the decrypted set of access codes for use by a user of the user device.
摘要翻译: 一种向用户设备提供一组接入码的方法,包括在用户设备中存储加密密钥和识别码,以及经由通信网络向服务器发送包含识别码的消息。 在服务器中,对应于存储在用户设备中的密钥存储加密密钥,在从用户设备接收到识别码时分配一组接入码。 基于在消息中接收到的识别码执行查找功能,以从存储中检索密钥。 使用检索到的密钥对访问代码集进行加密以产生加密集。 包含加密集的消息经由网络发送到用户设备。 在用户装置中,使用存储器中的密钥对从服务器接收到的加密集进行解密,并且存储解密的一组访问码以供用户装置的用户使用。
-
公开(公告)号:US08302173B2
公开(公告)日:2012-10-30
申请号:US12125247
申请日:2008-05-22
申请人: Michael Baentsch , Peter Buhler , Thomas Eirich , Frank Hoering , Thorsten Kramp , Marcus Oestreicher , Michael Osborne , Thomas D. Weigold
发明人: Michael Baentsch , Peter Buhler , Thomas Eirich , Frank Hoering , Thorsten Kramp , Marcus Oestreicher , Michael Osborne , Thomas D. Weigold
CPC分类号: H04L63/061 , H04L29/06 , H04L63/062
摘要: A method for providing a user device with a set of access codes comprises, in the user device, storing an encryption key a an identification code, and sending a message containing the identification code to a server via a communications network. In the server, an encryption key is stored corresponding to the key stored in the user device, allocating the set of access codes on receipt of the identification code from the user device. A look up function is performed based on the identification code received in the message to retrieve the key from storage. The set of access codes is encrypted using the retrieved key to produce an encrypted set. A message containing the encrypted set is sent to the user device via the network. In the user device, the encrypted set received from the server is decrypted using the key in storage, and storing the decrypted set of access codes for use by a user of the user device.
摘要翻译: 一种向用户设备提供一组接入码的方法,包括在用户设备中存储加密密钥和识别码,以及经由通信网络向服务器发送包含识别码的消息。 在服务器中,对应于存储在用户设备中的密钥存储加密密钥,在从用户设备接收到识别码时分配一组接入码。 基于在消息中接收到的识别码执行查找功能,以从存储中检索密钥。 使用检索到的密钥对访问代码集进行加密以产生加密集。 包含加密集的消息经由网络发送到用户设备。 在用户装置中,使用存储器中的密钥对从服务器接收到的加密集进行解密,并且存储解密的一组访问码以供用户装置的用户使用。
-
公开(公告)号:US20090248580A1
公开(公告)日:2009-10-01
申请号:US12060415
申请日:2008-04-01
申请人: Michael Baentsch , Peter Buhler , Thomas Eirich , Frank Hoering , Thorsten Kramp , Thomas Weigold
发明人: Michael Baentsch , Peter Buhler , Thomas Eirich , Frank Hoering , Thorsten Kramp , Thomas Weigold
CPC分类号: G06Q20/3223 , G06F21/34 , G06Q20/10 , G06Q20/3226 , G06Q20/3674 , G06Q20/382 , G06Q20/3823 , G06Q40/02 , H04L63/0853 , H04L63/18
摘要: A secure online banking transaction apparatus to communicate with a server over a non-secure connection is provided and includes a selector configured to allow for a selection of a mode of the apparatus, a processing unit coupled to the selector and including a secure communication unit, which is configured to set up a secure connection, along which a secure transaction occurs, with the server via the non-secure connection in accordance with the mode, an input unit coupled to the processing unit and configured to allow for a input of data into the apparatus, which is at least partly related to the secure transaction, and an interface coupled to the processing unit and configured to convey at least a status of the secure transaction and the contents off the inputted data.
摘要翻译: 提供了一种用于通过非安全连接与服务器进行通信的安全的网上银行交易装置,并且包括被配置为允许选择所述装置的模式的选择器,耦合到所述选择器并包括安全通信单元的处理单元, 其被配置为根据该模式经由非安全连接与服务器建立安全事务发生的安全连接,输入单元耦合到处理单元并被配置为允许数据输入 所述装置至少部分地与安全事务相关,以及耦合到所述处理单元并被配置为至少传送所述安全事务的状态和所述内容的所述输入数据的接口。
-
公开(公告)号:US08799171B2
公开(公告)日:2014-08-05
申请号:US12060415
申请日:2008-04-01
申请人: Michael Baentsch , Peter Buhler , Thomas Eirich , Frank Hoering , Thorsten Kramp , Thomas Weigold
发明人: Michael Baentsch , Peter Buhler , Thomas Eirich , Frank Hoering , Thorsten Kramp , Thomas Weigold
IPC分类号: G06Q20/00
CPC分类号: G06Q20/3223 , G06F21/34 , G06Q20/10 , G06Q20/3226 , G06Q20/3674 , G06Q20/382 , G06Q20/3823 , G06Q40/02 , H04L63/0853 , H04L63/18
摘要: A secure online banking transaction apparatus to communicate with a server over a non-secure connection is provided and includes a selector configured to allow for a selection of a mode of the apparatus, a processing unit coupled to the selector and including a secure communication unit, which is configured to set up a secure connection, along which a secure transaction occurs, with the server via the non-secure connection in accordance with the mode, an input unit coupled to the processing unit and configured to allow for a input of data into the apparatus, which is at least partly related to the secure transaction, and an interface coupled to the processing unit and configured to convey at least a status of the secure transaction and the contents off the inputted data.
摘要翻译: 提供了一种用于通过非安全连接与服务器进行通信的安全的网上银行交易装置,并且包括被配置为允许选择所述装置的模式的选择器,耦合到所述选择器并包括安全通信单元的处理单元, 其被配置为根据该模式经由非安全连接与服务器建立安全事务发生的安全连接,输入单元耦合到处理单元并被配置为允许数据输入 所述装置至少部分地与安全事务相关,以及耦合到所述处理单元并被配置为至少传送所述安全事务的状态和所述内容的所述输入数据的接口。
-
公开(公告)号:US20110173448A1
公开(公告)日:2011-07-14
申请号:US13063969
申请日:2009-09-17
申请人: Michael Baentsch , Peter Buhler , Thomas Eirich , Reto J. Hermann , Frank Hoering , Thorsten Kramp , Michael P. Kuyper-Hammond , Thomas D. Weigold
发明人: Michael Baentsch , Peter Buhler , Thomas Eirich , Reto J. Hermann , Frank Hoering , Thorsten Kramp , Michael P. Kuyper-Hammond , Thomas D. Weigold
IPC分类号: H04L9/00
CPC分类号: H04L63/0823 , G06F21/33 , G06F21/34
摘要: An authorization device for authorizing operations of a remote server requested from user computers via a data communications network includes a computer interface configured to connect to a local user computer for facilitating communication with the remote server via a data communications network, a user interface configured to present information to a user, and control logic. The control logic is adapted to use security data accessible to the control logic to establish, via the local user computer, a mutually-authenticated connection for encrypted end-to-end communications with the server; collect from the server, via the connection, information indicative of any operation requested via a different connection to the server and requiring authorization by the user; and present the information to the user via the user interface to prompt for authorization of the operation.
摘要翻译: 用于授权从用户计算机通过数据通信网络请求的远程服务器的操作的授权设备包括被配置为连接到本地用户计算机以便于经由数据通信网络与远程服务器通信的计算机接口,被配置为呈现 信息给用户和控制逻辑。 所述控制逻辑适于使用所述控制逻辑可访问的安全数据,以经由所述本地用户计算机建立用于与所述服务器的加密的端到端通信的相互认证的连接; 从服务器通过连接收集指示通过与服务器的不同连接请求的任何操作的信息,并且需要用户的授权; 并通过用户界面将信息呈现给用户,以提示操作的授权。
-
公开(公告)号:US08856919B2
公开(公告)日:2014-10-07
申请号:US13557468
申请日:2012-07-25
申请人: Michael Baentsch , Peter Buhler , Thomas Eirich , Reto J. Hermann , Frank Hoering , Thorsten Kramp , Michael P. Kuyper-Hammond , Thomas D. Weigold
发明人: Michael Baentsch , Peter Buhler , Thomas Eirich , Reto J. Hermann , Frank Hoering , Thorsten Kramp , Michael P. Kuyper-Hammond , Thomas D. Weigold
CPC分类号: H04L63/0823 , G06F21/33 , G06F21/34
摘要: An authorization device for authorizing operations of a remote server requested from user computers via a data communications network includes a computer interface configured to connect to a local user computer for facilitating communication with the remote server via a data communications network, a user interface configured to present information to a user, and control logic. The control logic is adapted to use security data accessible to the control logic to establish, via the local user computer, a mutually-authenticated connection for encrypted end-to-end communications with the server; collect from the server, via the connection, information indicative of any operation requested via a different connection to the server and requiring authorization by the user; and present the information to the user via the user interface to prompt for authorization of the operation.
-
公开(公告)号:US08640255B2
公开(公告)日:2014-01-28
申请号:US13063969
申请日:2009-09-17
申请人: Michael Baentsch , Peter Buhler , Thomas Eirich , Reto J. Hermann , Frank Hoering , Thorsten Kramp , Michael P. Kuyper-Hammond , Thomas D. Weigold
发明人: Michael Baentsch , Peter Buhler , Thomas Eirich , Reto J. Hermann , Frank Hoering , Thorsten Kramp , Michael P. Kuyper-Hammond , Thomas D. Weigold
CPC分类号: H04L63/0823 , G06F21/33 , G06F21/34
摘要: An authorization device for authorizing operations of a remote server requested from user computers via a data communications network includes a computer interface configured to connect to a local user computer for facilitating communication with the remote server via a data communications network, a user interface configured to present information to a user, and control logic. The control logic is adapted to use security data accessible to the control logic to establish, via the local user computer, a mutually-authenticated connection for encrypted end-to-end communications with the server; collect from the server, via the connection, information indicative of any operation requested via a different connection to the server and requiring authorization by the user; and present the information to the user via the user interface to prompt for authorization of the operation.
摘要翻译: 用于授权从用户计算机通过数据通信网络请求的远程服务器的操作的授权设备包括被配置为连接到本地用户计算机以便于经由数据通信网络与远程服务器通信的计算机接口,被配置为呈现 信息给用户和控制逻辑。 所述控制逻辑适于使用所述控制逻辑可访问的安全数据,以经由所述本地用户计算机建立用于与所述服务器的加密的端到端通信的相互认证的连接; 从服务器通过连接收集指示通过与服务器的不同连接请求的任何操作的信息,并且需要用户的授权; 并通过用户界面将信息呈现给用户,以提示操作的授权。
-
公开(公告)号:US20120291105A1
公开(公告)日:2012-11-15
申请号:US13557468
申请日:2012-07-25
申请人: Michael Baentsch , Peter Buhler , Thomas Eirich , Reto J. Hermann , Frank Hoering , Thorsten Kramp , Michael P. Kuyper-Hammond , Thomas D. Weigold
发明人: Michael Baentsch , Peter Buhler , Thomas Eirich , Reto J. Hermann , Frank Hoering , Thorsten Kramp , Michael P. Kuyper-Hammond , Thomas D. Weigold
IPC分类号: G06F21/00
CPC分类号: H04L63/0823 , G06F21/33 , G06F21/34
摘要: An authorization device for authorizing operations of a remote server requested from user computers via a data communications network includes a computer interface configured to connect to a local user computer for facilitating communication with the remote server via a data communications network, a user interface configured to present information to a user, and control logic. The control logic is adapted to use security data accessible to the control logic to establish, via the local user computer, a mutually-authenticated connection for encrypted end-to-end communications with the server; collect from the server, via the connection, information indicative of any operation requested via a different connection to the server and requiring authorization by the user; and present the information to the user via the user interface to prompt for authorization of the operation.
摘要翻译: 用于授权从用户计算机通过数据通信网络请求的远程服务器的操作的授权设备包括被配置为连接到本地用户计算机以便于经由数据通信网络与远程服务器通信的计算机接口,被配置为呈现 信息给用户和控制逻辑。 所述控制逻辑适于使用所述控制逻辑可访问的安全数据,以经由所述本地用户计算机建立用于与所述服务器的加密的端到端通信的相互认证的连接; 从服务器通过连接收集指示通过与服务器的不同连接请求的任何操作的信息,并且需要用户的授权; 并通过用户界面将信息呈现给用户,以提示操作的授权。
-
公开(公告)号:US20090132808A1
公开(公告)日:2009-05-21
申请号:US12274100
申请日:2008-11-19
申请人: Michael Baentsch , Peter Buhler , Thomas Eirich , Reto Josef Hermann , Thorsten Kramp , Tamas Visegrady , Thomas Weigold
发明人: Michael Baentsch , Peter Buhler , Thomas Eirich , Reto Josef Hermann , Thorsten Kramp , Tamas Visegrady , Thomas Weigold
CPC分类号: H04L63/0869 , G06Q20/08 , G06Q20/42 , H04L63/0471 , H04L63/0823 , H04L63/0853 , H04L63/166 , H04L67/42 , H04L2463/102
摘要: A system and method of performing electronic transactions between a server computer and a client computer. The method implements a communication protocol with encrypted data transmission and mutual authentication between a server and a hardware device via a network, performs a decryption of encrypted server responses, forwards the decrypted server responses from the hardware device to the client computer, displays the decrypted server responses on a client display, receives requests to be sent from the client computer to the server, parses the client requests for predefined transaction information by the hardware device, encrypts and forwards client requests, displays the predefined transaction information upon detection, forwards and encrypts the client request containing the predefined transaction information to the server if a user confirmation is received, and cancels the transaction if no user confirmation is received.
摘要翻译: 在服务器计算机和客户端计算机之间执行电子交易的系统和方法。 该方法通过网络实现具有加密数据传输和服务器与硬件设备之间的相互认证的通信协议,执行加密服务器响应的解密,将解密的服务器响应从硬件设备转发到客户端计算机,显示解密的服务器 在客户端显示器上的响应,接收从客户端计算机发送到服务器的请求,通过硬件设备解析客户端对预定义交易信息的请求,对客户端请求进行加密和转发,检测到显示预定义的事务信息,转发和加密 如果接收到用户确认,则将包含预定义交易信息的客户端请求发送到服务器,如果没有接收到用户确认,则取消该交易。
-
-
-
-
-
-
-
-
-
搜索结果
30 条记录 (耗时 0.028 秒)