发明名称 |
Systems and methods for remote authorization of financial transactions using public key infrastructure (PKI) |
摘要 |
The invention relates to systems and methods for secure, remote, wireless submission of financial transactions. Authentication and authorization functionality are provided through use of proof of possession tests, a token service that provides a user device with a token that includes user entitlement data, and high assurance digital certificates. |
申请公布号 |
US9462473(B2) |
申请公布日期 |
2016.10.04 |
申请号 |
US201614992694 |
申请日期 |
2016.01.11 |
申请人 |
CITIGROUP GLOBAL MARKETS, INC. |
发明人 |
Ward Hilary;Greenwald Gary E.;Shanahan Francis A. |
分类号 |
H04L29/06;H04W12/06;G06F21/33;H04L9/00;H04L9/32;H04B1/3827 |
主分类号 |
H04L29/06 |
代理机构 |
Johnson, Marcou & Isaacs, LLC |
代理人 |
Johnson, Marcou & Isaacs, LLC ;Harrington, Esq. John M. |
主权项 |
1. A mobile device for submitting a transaction using a Public Key Infrastructure (PKI) system, comprising:
a wireless transceiver; an authentication device for accepting data consisting at least in part of a digital certificate provided by a first trusted third party indicative of an identity of a user of the mobile device; a special purpose processor programmed to: retrieve, based on said data accepted by the authentication device, a secure token consisting at least in part of data relating to entitlements associated with the user from a second trusted third party, wherein the secure token is digitally signed by a security token service using a private key associated with the security token service, and the second trusted third party operates independently of the token service; generate a transaction message consisting at least in part of a transaction to be submitted and the retrieved secure token; digitally sign the transaction message utilizing a private key of the user; and transmit the signed transaction message to a server via the wireless transceiver for execution. |
地址 |
New York NY US |