公开(公告)号：US20150281191A1

公开(公告)日：2015-10-01

申请号：US14710436

申请日：2015-05-12

Applicant: EBAY INC.

Inventor： Upendra Mardikar

IPC: H04L29/06 ,  H04W12/04 ,  H04L12/58 ,  H04W4/14

CPC classification number: H04W12/06 ,  H04L9/0643 ,  H04L9/14 ,  H04L9/302 ,  H04L9/304 ,  H04L9/3242 ,  H04L9/3249 ,  H04L9/3263 ,  H04L51/38 ,  H04L63/0464 ,  H04L63/06 ,  H04L63/083 ,  H04L63/0853 ,  H04L63/0861 ,  H04L63/0876 ,  H04L2463/082 ,  H04W4/14 ,  H04W12/02 ,  H04W12/04

Abstract: Embodiments provide secure messaging communications. In an embodiment, a method comprises receiving, by a service provider processor, an encrypted message and a key from a sender associated with a first client device that is remote from the service provider, wherein the first client device internally encrypts the message. The message also comprises verifying the received key based on at least a comparison with a pre-determined key. Once the received key is verified, the method also comprises processing one or more unique factors associated with the sender or the first client device, wherein the one or more unique factors are known by the service provider. The method further comprises decrypting the message and re-encrypting the message using a key of a receiver associated with a second client device; and sending the re-encrypted message to the receiver associated with the second client device, wherein the second client device decrypts the message.

Abstract translation: 实施例提供安全消息通信。 在一个实施例中，一种方法包括由服务提供商处理器从与服务提供商远程的第一客户端设备相关联的发送者接收加密消息和密钥，其中第一客户端设备在内部对消息进行加密。 消息还包括至少基于与预定密钥的比较来验证所接收的密钥。 一旦所接收的密钥被验证，该方法还包括处理与发送者或第一客户端设备相关联的一个或多个唯一因素，其中服务提供商已知一个或多个唯一因素。 该方法还包括使用与第二客户端设备相关联的接收器的密钥对消息进行解密并重新加密消息; 以及将所述重新加密的消息发送到与所述第二客户端设备相关联的接收者，其中所述第二客户端设备解密所述消息。

公开(公告)号：US09060271B2

公开(公告)日：2015-06-16

申请号：US14034279

申请日：2013-09-23

Applicant: EBAY INC.

Inventor： Upendra Mardikar

IPC: H04M1/66 ,  H04W12/04 ,  H04L12/58 ,  H04W4/14

CPC classification number: H04W12/06 ,  H04L9/0643 ,  H04L9/14 ,  H04L9/302 ,  H04L9/304 ,  H04L9/3242 ,  H04L9/3249 ,  H04L9/3263 ,  H04L51/38 ,  H04L63/0464 ,  H04L63/06 ,  H04L63/083 ,  H04L63/0853 ,  H04L63/0861 ,  H04L63/0876 ,  H04L2463/082 ,  H04W4/14 ,  H04W12/02 ,  H04W12/04

Abstract: Embodiments of the present disclosure provide systems and methods for secure Short Message Service (SMS) communications. According to an embodiment, a method of providing secure Short Message Service (SMS) communications comprises requesting that SMS data to be sent from a client device to a remote location be encrypted. The method also comprises encrypting the SMS data by processing the SMS data with a Message Authentication Code (MAC) and a timestamp and/or counter along with second factor authentication information. The method further comprises sending the encrypted SMS data to the remote location by a secure SMS application via a regular SMS channel of the client device.

Abstract translation: 本公开的实施例提供了用于安全短消息服务（SMS）通信的系统和方法。 根据实施例，提供安全短消息服务（SMS）通信的方法包括请求将从客户端设备发送到远程位置的SMS数据被加密。 该方法还包括通过利用消息认证码（MAC）和时间戳和/或计数器与第二因素认证信息一起处理SMS数据来加密SMS数据。 该方法还包括经由客户端设备的常规SMS信道通过安全SMS应用将加密的SMS数据发送到远程位置。

公开(公告)号：US20140325598A1

公开(公告)日：2014-10-30

申请号：US14330405

申请日：2014-07-14

Applicant: EBAY INC.

Inventor： Rasta A. Mansour ,  Upendra Mardikar

IPC: H04L29/06

CPC classification number: H04L63/0876 ,  G06F21/34 ,  G06F21/44 ,  G06F21/725 ,  G06F2221/2111 ,  G06F2221/2129 ,  G06F2221/2151 ,  G06Q20/20 ,  G06Q20/3255 ,  G06Q20/3278 ,  G06Q20/40 ,  H04L43/08 ,  H04L43/0858 ,  H04L63/08 ,  H04L67/18

Abstract: Methods and systems for authenticating a user device employ a database of global network latencies categorized and searchable by location and calendar date-time of day usage, providing network latency by geography and by time. The database is constructed using voluminous daily data collected from a world-wide clientele of users who sign in to a particular website. Accuracy of the latency data and clock skew machine identification is made practical and useful for authentications using a service provider-proprietary, stable reference clock, such as an atomic clock, so that internal clock jitter of a service provider performing authentications does not affect the network latency time and clock skew identification of user devices. Increased authentication confidence results from using the database for correcting network latency times and user device signatures generated from the clock skew identifications and for cross checking the authentication using comparisons of initial registration to current sign in data.

Abstract translation: 用于认证用户设备的方法和系统使用通过位置和日历日期日期时间分类和可搜索的全球网络延迟的数据库，通过地理和时间提供网络延迟。 数据库是使用从登录到特定网站的全球用户的大量日常数据构建的。 延迟数据和时钟偏移机器识别的准确性对于使用服务提供商专有的稳定的参考时钟（例如原子钟）进行认证是实用和有用的，使得执行认证的服务提供商的内部时钟抖动不会影响网络 用户设备的延迟时间和时钟偏差识别。 通过使用数据库来校正网络延迟时间和从时钟偏差标识生成的用户设备签名以及通过初始注册与当前登录数据的比较来交叉检查认证，增加了认证信度。

公开(公告)号：US20140258010A1

公开(公告)日：2014-09-11

申请号：US13904910

申请日：2013-05-29

Applicant: EBAY INC.

Inventor： Upendra Mardikar ,  Attaullah Baig

IPC: G06Q20/20

CPC classification number: G06Q20/202

Abstract: A user who is authorizing a delegate to make a purchase using funds from an account of the user sends information to a payment provider. The information includes a picture of the delegate, along with information such as a merchant name, a maximum amount, a type of purchase, item information, and/or any other transaction limitations/restrictions. The payment provider then transmits this information to the merchant. A one-time code or number may be communicated to the delegate. When the delegate is ready to make a payment with the user account, the delegate gives the delegate's name and/or other identifying information to the merchant, along with the payment code. The merchant enters the information and is shown a picture of the delegate. If there is a match, the payment may be submitted for processing. In one embodiment, a photo of the delegate may be taken by the merchant and the image transmitted to the user. The user may then be requested to confirm the delegate as an authorized delegate.

Abstract translation: 授权代表使用来自用户的帐户的资金进行购买的用户将信息发送给支付提供商。 信息包括代表的图片，以及诸如商家名称，最大数量，购买类型，项目信息和/或任何其他交易限制/限制的信息。 然后，支付提供商将该信息发送给商家。 一次性代码或号码可能会传达给代表。 代表准备使用用户帐户进行付款时，委托人将代理人的姓名和/或其他身份信息与付款代码一起提供给商家。 商家输入信息，并显示代表的图片。 如果有比赛，付款可能会被提交处理。 在一个实施例中，委托人的照片可以由商家和发送给用户的图像拍摄。 然后可以请求用户将代理确认为授权代表。

公开(公告)号：US20140122265A1

公开(公告)日：2014-05-01

申请号：US14146854

申请日：2014-01-03

Applicant: eBay Inc.

Inventor： Upendra Mardikar ,  Rene Aeberhard

IPC: G06Q20/20 ,  G06Q20/38

CPC classification number: G06Q20/20 ,  G06F17/30879 ,  G06K19/0723 ,  G06Q20/10 ,  G06Q20/202 ,  G06Q20/204 ,  G06Q20/206 ,  G06Q20/382 ,  G06Q20/385 ,  G06Q20/40 ,  G06Q20/401 ,  G06Q20/4016 ,  H04L9/3228 ,  H04L9/3247 ,  H04L2209/56 ,  H04L2209/805

Abstract: Systems and methods are provided for secure transactions according to one or more embodiments. According to an embodiment, a method for providing secure transactions comprises initiating a transaction via a point of sale device having a one time password generator. The method also comprises generating at least one password by the point of sale device. The method further comprises associating the at least one password with account information. The method further comprises transmitting the password associated with the account information to a remote location. If the transmitted password matches predetermined associated information at the remote location, the method further comprises confirming the transaction.

Abstract translation: 根据一个或多个实施例，为安全事务提供系统和方法。 根据一个实施例，一种用于提供安全交易的方法包括经由具有一次密码生成器的销售点设备启动交易。 该方法还包括通过销售点设备生成至少一个密码。 该方法还包括将至少一个密码与帐户信息相关联。 该方法还包括将与帐户信息相关联的密码发送到远程位置。 如果发送的密码与远程位置处的预定关联信息匹配，则该方法还包括确认交易。

公开(公告)号：US20150220985A1

公开(公告)日：2015-08-06

申请号：US14685557

申请日：2015-04-13

Applicant: EBAY INC.

Inventor： Upendra Mardikar

IPC: G06Q30/02

CPC classification number: G06Q30/0255 ,  G06Q30/0269

Abstract: A system and method for facilitating electronic commerce over a network, according to one or more embodiments, includes communicating with a user via a user device and a business entity via a business entity device over the network, monitoring user navigation events over the network, determining a mood of the user based on user navigation behavior, marketing to the user based on the mood of the user, and storing user information related to the user navigation events and the mood of the user.

Abstract translation: 根据一个或多个实施例的用于促进网络上的电子商务的系统和方法包括经由网络经由企业实体设备经由用户设备和业务实体与用户通信，监视网络上的用户导航事件，确定 基于用户导航行为的用户心情，基于用户的情绪向用户进行营销，以及存储与用户导航事件和用户心情相关的用户信息。

公开(公告)号：US20140324637A1

公开(公告)日：2014-10-30

申请号：US14324998

申请日：2014-07-07

Applicant: eBay Inc.

Inventor： Matthew Mengerink ,  Upendra Mardikar ,  David Gausebeck

IPC: G06Q30/06 ,  G06Q20/12 ,  G06Q30/04

CPC classification number: G06Q30/0635 ,  G06Q20/10 ,  G06Q20/102 ,  G06Q20/12 ,  G06Q20/40 ,  G06Q30/04 ,  G06Q30/0601 ,  G06Q30/0603 ,  G06Q30/0613 ,  G06Q30/0633 ,  G06Q40/00

Abstract: Systems and methods for facilitating financial transactions over a network include a merchant device, a client device and a payment processing device. The merchant device is adapted to allow a merchant to provide items for purchase via the network. The client device is adapted to allow a user to access the merchant device via the network and view the items for purchase. The client device is adapted to provide a payment mechanism to the user. The user generates a purchase request for an item by selecting the one item, dragging the item to the payment mechanism, and dropping the item over the payment mechanism. The payment processing device is adapted to receive the purchase request from the client device via the network and authorize the user to purchase the item from the merchant based on information passed with the purchase request.

Abstract translation: 用于促进通过网络的金融交易的系统和方法包括商家设备，客户端设备和支付处理设备。 商户设备适于允许商家通过网络提供购买物品。 客户端设备适于允许用户经由网络访问商家设备并查看要购买的项目。 客户端设备适于向用户提供支付机制。 用户通过选择一个项目，将项目拖动到支付机制，并通过支付机制丢弃物品来生成对物品的购买请求。 支付处理设备适于经由网络从客户端设备接收购买请求，并根据购买请求传递的信息授权用户从商家购买该商品。

公开(公告)号：US09197624B2

公开(公告)日：2015-11-24

申请号：US14330405

申请日：2014-07-14

Applicant: EBAY INC.

Inventor： Rasta A. Mansour ,  Upendra Mardikar

IPC: H04L29/06 ,  G06F21/34 ,  G06F21/44 ,  G06F21/72

CPC classification number: H04L63/0876 ,  G06F21/34 ,  G06F21/44 ,  G06F21/725 ,  G06F2221/2111 ,  G06F2221/2129 ,  G06F2221/2151 ,  G06Q20/20 ,  G06Q20/3255 ,  G06Q20/3278 ,  G06Q20/40 ,  H04L43/08 ,  H04L43/0858 ,  H04L63/08 ,  H04L67/18

Abstract: Methods and systems for authenticating a user device employ a database of global network latencies categorized and searchable by location and calendar date-time of day usage, providing network latency by geography and by time. The database is constructed using voluminous daily data collected from a world-wide clientele of users who sign in to a particular website. Accuracy of the latency data and clock skew machine identification is made practical and useful for authentications using a service provider-proprietary, stable reference clock, such as an atomic clock, so that internal clock jitter of a service provider performing authentications does not affect the network latency time and clock skew identification of user devices. Increased authentication confidence results from using the database for correcting network latency times and user device signatures generated from the clock skew identifications and for cross checking the authentication using comparisons of initial registration to current sign in data.

Abstract translation: 用于认证用户设备的方法和系统使用通过位置和日历日期日期时间分类和可搜索的全球网络延迟的数据库，通过地理和时间提供网络延迟。 数据库是使用从登录到特定网站的全球用户的大量日常数据构建的。 延迟数据和时钟偏移机器识别的准确性对于使用服务提供商专有的稳定的参考时钟（例如原子钟）进行认证是实用和有用的，使得执行认证的服务提供商的内部时钟抖动不会影响网络 用户设备的延迟时间和时钟偏差识别。 通过使用数据库来校正网络延迟时间和从时钟偏差标识生成的用户设备签名以及通过初始注册与当前登录数据的比较来交叉检查认证，增加了认证信度。

公开(公告)号：US20140185806A1

公开(公告)日：2014-07-03

申请号：US14034279

申请日：2013-09-23

Applicant: EBAY INC.

Inventor： Upendra Mardikar

IPC: H04W12/04 ,  H04W4/14

CPC classification number: H04W12/06 ,  H04L9/0643 ,  H04L9/14 ,  H04L9/302 ,  H04L9/304 ,  H04L9/3242 ,  H04L9/3249 ,  H04L9/3263 ,  H04L51/38 ,  H04L63/0464 ,  H04L63/06 ,  H04L63/083 ,  H04L63/0853 ,  H04L63/0861 ,  H04L63/0876 ,  H04L2463/082 ,  H04W4/14 ,  H04W12/02 ,  H04W12/04

Abstract: Embodiments of the present disclosure provide systems and methods for secure Short Message Service (SMS) communications. According to an embodiment, a method of providing secure Short Message Service (SMS) communications comprises requesting that SMS data to be sent from a client device to a remote location be encrypted. The method also comprises encrypting the SMS data by processing the SMS data with a Message Authentication Code (MAC) and a timestamp and/or counter along with second factor authentication information. The method further comprises sending the encrypted SMS data to the remote location by a secure SMS application via a regular SMS channel of the client device.

Abstract translation: 本公开的实施例提供了用于安全短消息服务（SMS）通信的系统和方法。 根据实施例，提供安全短消息服务（SMS）通信的方法包括请求将从客户端设备发送到远程位置的SMS数据被加密。 该方法还包括通过利用消息认证码（MAC）和时间戳和/或计数器与第二因素认证信息一起处理SMS数据来加密SMS数据。 该方法还包括经由客户端设备的常规SMS信道通过安全SMS应用将加密的SMS数据发送到远程位置。

公开(公告)号：US20140157389A1

公开(公告)日：2014-06-05

申请号：US14175115

申请日：2014-02-07

Applicant: eBay Inc.

Inventor： Upendra Mardikar ,  Kent Griffin ,  Allison Elizabeth Miller ,  Amol Patel

IPC: H04L29/06

CPC classification number: H04L63/0846 ,  H04L9/3228 ,  H04L63/083 ,  H04L63/0838 ,  H04L63/0876 ,  H04L63/1466 ,  H04L63/1483 ,  H04L2209/80 ,  H04W12/06 ,  H04W12/12

Abstract: Embodiments of systems and methods for client and/or server authentication are provided. In one embodiment, a method includes sending information from a mobile network device to a server, wherein the information comprises a seed that is used by both the mobile network device and the server to compute a series of one time passwords. The method also includes receiving, by the mobile network device, a succession of one time passwords generated by the server throughout a session. And the method further includes comparing the received one time passwords generated by the server throughout the session to corresponding one time passwords generated at the mobile network device. In this manner, the server can be authenticated. In various embodiments, the process may be reversed to facilitate client, e.g., mobile network device, authentication

Abstract translation: 提供了用于客户机和/或服务器认证的系统和方法的实施例。 在一个实施例中，一种方法包括从移动网络设备向服务器发送信息，其中所述信息包括由移动网络设备和服务器两者使用以计算一系列一次密码的种子。 该方法还包括由移动网络设备在整个会话期间由服务器生成一连串的一次密码。 并且该方法还包括将由服务器在整个会话中生成的接收到的一次密码与在移动网络设备处生成的相应的一次密码进行比较。 以这种方式，可以认证服务器。 在各种实施例中，可以颠倒该过程以促进客户端，例如移动网络设备认证