WO2001095074A3 - A method and system for securely displaying and confirming request to perform operation on host - Google Patents

A method and system for securely displaying and confirming request to perform operation on host Download PDF

Info

Publication number
WO2001095074A3
WO2001095074A3 PCT/US2001/040827 US0140827W WO0195074A3 WO 2001095074 A3 WO2001095074 A3 WO 2001095074A3 US 0140827 W US0140827 W US 0140827W WO 0195074 A3 WO0195074 A3 WO 0195074A3
Authority
WO
WIPO (PCT)
Prior art keywords
client
resource
client user
securely
access
Prior art date
Application number
PCT/US2001/040827
Other languages
French (fr)
Other versions
WO2001095074A2 (en
WO2001095074A8 (en
Inventor
Neil R Fraser
Original Assignee
Curriculum Corp
Neil R Fraser
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from US09/590,239 external-priority patent/US6330198B1/en
Application filed by Curriculum Corp, Neil R Fraser filed Critical Curriculum Corp
Priority to AU2001275506A priority Critical patent/AU2001275506A1/en
Publication of WO2001095074A2 publication Critical patent/WO2001095074A2/en
Publication of WO2001095074A3 publication Critical patent/WO2001095074A3/en
Publication of WO2001095074A8 publication Critical patent/WO2001095074A8/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2103Challenge-response
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2153Using hardware token as a secondary aspect

Abstract

A method and system for a client user remotely connected to a server computer by a client workstation such as a client personal computer to have securely displayed and to securely confirm that a request to access a resource on the server computer was actually requested by the client user, even if the security of the client computer has been compromised. This method and system can use conventional intelligent security tokens such as smart cards and associated smart card readers as a more secure environment to prompt for, and determine, the client user's intent to access the requested resource. A display securely accessible from the reader, smart card or both displays the resource (or resources) apparently being requested by client user. The client user is prompted to indicate whether it was their intention to access a resource by an input device associated with the reader or smart card.
PCT/US2001/040827 2000-06-08 2001-06-04 A method and system for securely displaying and confirming request to perform operation on host WO2001095074A2 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
AU2001275506A AU2001275506A1 (en) 2000-06-08 2001-06-04 A method and system for securely displaying and confirming request to perform operation on host

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US09/590,239 US6330198B1 (en) 1999-06-09 2000-06-08 Semiconductor storage device
US09/590,239 2000-06-08

Publications (3)

Publication Number Publication Date
WO2001095074A2 WO2001095074A2 (en) 2001-12-13
WO2001095074A3 true WO2001095074A3 (en) 2003-03-20
WO2001095074A8 WO2001095074A8 (en) 2003-08-21

Family

ID=24361428

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2001/040827 WO2001095074A2 (en) 2000-06-08 2001-06-04 A method and system for securely displaying and confirming request to perform operation on host

Country Status (2)

Country Link
AU (1) AU2001275506A1 (en)
WO (1) WO2001095074A2 (en)

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6892308B1 (en) * 1999-04-09 2005-05-10 General Instrument Corporation Internet protocol telephony security architecture
WO2003012671A1 (en) 2001-07-31 2003-02-13 Mobile-Mind, Inc. Communications network with smart card
CN103365675A (en) * 2012-04-02 2013-10-23 鸿富锦精密工业(深圳)有限公司 Demoware processing system and method
WO2014153728A1 (en) * 2013-03-27 2014-10-02 Irdeto B.V. A challenge-response method and associated client device
CN106796624B (en) 2014-09-26 2021-05-04 爱迪德技术有限公司 Challenge-response method, associated computing device and associated computer-readable medium

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5815577A (en) * 1994-03-18 1998-09-29 Innovonics, Inc. Methods and apparatus for securely encrypting data in conjunction with a personal computer
WO1998047116A1 (en) * 1997-04-15 1998-10-22 Telefonaktiebolaget Lm Ericsson (Publ) Tele/datacommunications payment method and apparatus
WO1999044114A1 (en) * 1998-02-25 1999-09-02 Telefonaktiebolaget Lm Ericsson Method, arrangement and apparatus for authentication through a communications network
US5974143A (en) * 1997-09-30 1999-10-26 Intel Corporation Virus-resistent mechanism for transaction verification to confirming user
WO1999061989A1 (en) * 1998-05-22 1999-12-02 Wave Systems Corporation Method and system for secure transactions in a computer system
WO2001092982A2 (en) * 2000-05-30 2001-12-06 Moshe Caspi System and method for secure transactions via a communications network

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5815577A (en) * 1994-03-18 1998-09-29 Innovonics, Inc. Methods and apparatus for securely encrypting data in conjunction with a personal computer
WO1998047116A1 (en) * 1997-04-15 1998-10-22 Telefonaktiebolaget Lm Ericsson (Publ) Tele/datacommunications payment method and apparatus
US5974143A (en) * 1997-09-30 1999-10-26 Intel Corporation Virus-resistent mechanism for transaction verification to confirming user
WO1999044114A1 (en) * 1998-02-25 1999-09-02 Telefonaktiebolaget Lm Ericsson Method, arrangement and apparatus for authentication through a communications network
WO1999061989A1 (en) * 1998-05-22 1999-12-02 Wave Systems Corporation Method and system for secure transactions in a computer system
WO2001092982A2 (en) * 2000-05-30 2001-12-06 Moshe Caspi System and method for secure transactions via a communications network

Also Published As

Publication number Publication date
AU2001275506A1 (en) 2001-12-17
WO2001095074A2 (en) 2001-12-13
WO2001095074A8 (en) 2003-08-21

Similar Documents

Publication Publication Date Title
US8152057B2 (en) Method of authorising a transaction between a computer and a remote server and communications system, with improved security
WO2007000652A3 (en) System and method of secure online transactions using portable secure network devices
WO2001069443A3 (en) System, method and apparatus for utilizing transaction databases in a client - server environment
WO2004066110A3 (en) Authentication device, system and methods
WO2003079249A3 (en) A tax refund system
WO2011051757A1 (en) Transactor for use in connection with transactions involving secure and non-secure information
EP1028401A3 (en) Method and system for performing a bankcard transaction
WO2002075478A3 (en) Method for performing secure online payment transactions
EP1492068A3 (en) Method for providing banking services by use of mobile communication system
PL350335A1 (en) Credit card system and method
WO2008104788A3 (en) Authorisation system
CN108475376A (en) The system and method for certification user in equipment
GB2377806B (en) Secure electronic commerce system
WO2016014346A1 (en) Point of sale system with secure and unsecure modes
EP2052370B1 (en) Reader for a document, method for reading a data object, and a computer program product
CN104504820A (en) Method for processing data and VTM (virtual teller machine)
US8671454B2 (en) System for secure web-prompt processing on point of sale devices
EP1326217A3 (en) Memory rental service system in intelligent authentication unit
CA2395381A1 (en) Computerised device for accrediting data application to a software or a service
WO2001095074A8 (en) A method and system for securely displaying and confirming request to perform operation on host
EP1188104A1 (en) Identification device for authenticating a user
US10146966B2 (en) Device for processing data from a contactless smart card, method and corresponding computer program
WO2003017029A3 (en) Method and system for communicating using a user defined alias representing confidential data
WO2007017500A1 (en) Method and apparatus for secure insertion of an access code using an eye-tracking device
JP3704318B2 (en) User authentication system using portable device having internet access function and user authentication device thereof

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT TZ UA UG US UZ VN YU ZA ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE TR BF BJ CF CG CI CM GA GN GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
REG Reference to national code

Ref country code: DE

Ref legal event code: 8642

122 Ep: pct application non-entry in european phase
WR Later publication of a revised version of an international search report
NENP Non-entry into the national phase

Ref country code: JP