Search Images Maps Play YouTube News Gmail Drive More »
Advanced Patent Search | Web History | Sign in

Patents

A complete system for the purchasing of goods or information over a computer network is presented. Merchant computers on the network maintain databases of digital advertisements that are accessed by buyer computers. In response to user inquiries, buyer computers retrieve and display digital advertisements from merchant computers. A digital advertisement can further include a program that is interpreted by a buyer's computer. The buyer computers include a means for a user to purchase the product described by a digital advertisement. If a user has not specified a means of payment at the time of purchase, it can be requested after a purchase transaction is initiated. A network payment system performs payment order authorization in a network with untrusted switching, transmission, and host components. Payment orders are backed by accounts in an external financial system network, and the payment system obtains account authorizations from this external network in real-time. Payment orders...

InventorDavid K. Gifford
Original AssigneeOpen Market, Inc.
Primary Examiner: Susanna Meinecke-Diaz
Current U.S. Classification705/75; 705/39; 713/181
International Classification: G06F 1760

View patent at USPTO
Search USPTO Assignment Database

Citations

Cited PatentFiling dateIssue dateOriginal AssigneeTitle
US4305059Jan 3, 1980Dec 8, 1981Modular funds transfer system
US4528643Jan 10, 1983Jul 9, 1985FPDC, Inc.System for reproducing information in material objects at a point of sale location
US4529870Jun 25, 1982Jul 16, 1985Cryptographic identification, financial transaction, and credential device
US4578530Dec 7, 1983Mar 25, 1986VISA U.S.A., Inc.End-to-end encryption system and method of operation
US4734858Nov 26, 1984Mar 29, 1988Portel Services Network, Inc.Data terminal and system for placing orders
US4755940Jan 6, 1987Jul 5, 1988International Business Machines CorporationTransaction security system
US4759063Aug 22, 1983Jul 19, 1988Blind signature systems
US4759064Oct 7, 1985Jul 19, 1988Blind unanticipated signature systems
US4775935Sep 22, 1986Oct 4, 1988Westinghouse Electric Corp.Video merchandising system with variable and adoptive product sequence presentation order
US4795890Feb 2, 1987Jan 3, 1989Light Signatures, Inc.Device authentication system for on and off line use
US4799156Oct 1, 1986Jan 17, 1989Strategic Processing CorporationInteractive market management system
US4812628Mar 27, 1987Mar 14, 1989Visa International Service AssociationTransaction system with off-line risk assessment
US4827508Oct 14, 1985May 2, 1989Personal Library Software, Inc.Database usage metering and protection system and method
US4891503Mar 29, 1988Jan 2, 1990Gascard, Inc.Distributed authorization system
US4922521Mar 8, 1989May 1, 1990U.S. Philips CorporationSystem for providing secure telecommunication access to a computer
US4926480May 24, 1988May 15, 1990Card-computer moderated systems
US4935870Aug 3, 1988Jun 19, 1990Keycom Electronic PublishingApparatus for downloading macro programs and executing a downloaded macro program responding to activation of a single key
US4947028Jul 19, 1988Aug 7, 1990Arbor International, Inc.Automated order and payment system
US4947430Nov 23, 1987Aug 7, 1990Undeniable signature systems
US4949380Oct 20, 1988Aug 14, 1990Returned-value blind signature systems
US4977595Mar 28, 1990Dec 11, 1990Nippon Telegraph and Telephone CorporationMethod and apparatus for implementing electronic cash
US4982346Dec 16, 1988Jan 1, 1991Expertel Communications IncorporatedMall promotion network apparatus and method
US4987593Apr 5, 1990Jan 22, 1991One-show blind signature systems
US4991210May 4, 1989Feb 5, 1991Unpredictable blind signature systems
US4992940Mar 13, 1989Feb 12, 1991H-Renee, IncorporatedSystem and method for automated selection of equipment for purchase through input of user desired specifications
US4996711Jun 21, 1989Feb 26, 1991Selected-exponent signature systems
US5025373Jun 30, 1988Jun 18, 1991JML Communications, Inc.Portable personal-banking system
US5060153Apr 5, 1989Oct 22, 1991Sharp Kabushiki KaishaTeller machine with mode for continuously sending off-line collected transaction data to a host while ignoring incomplete data response signals
US5077607Apr 20, 1989Dec 31, 1991Scientific-Atlanta, Inc.Cable television transaction terminal
US5105184Nov 9, 1989Apr 14, 1992Methods for displaying and integrating commercial advertisements with computer software
US5220501Dec 8, 1989Jun 15, 1993Online Resources, Ltd.Method and system for remote delivery of retail banking services
US5247575Apr 24, 1992Sep 21, 1993Information distribution system
US5276736Jul 13, 1992Jan 4, 1994Optionally moderated transaction systems
US5305195Mar 25, 1992Apr 19, 1994Gerald SingerInteractive advertising system for on-line terminals
US5311594Mar 26, 1993May 10, 1994AT&T Bell LaboratoriesFraud protection for card transactions
US5321751Feb 18, 1993Jun 14, 1994Eastman Kodak CompanyMethod and apparatus for credit card verification
US5336870May 26, 1992Aug 9, 1994System for remote purchase payment transactions and remote bill payments
US5341429Dec 4, 1992Aug 23, 1994TestDrive CorporationTransformation of ephemeral material
US5347632Jul 28, 1989Sep 13, 1994Prodigy Services CompanyReception system for an interactive computer network and method of operation
US5351186Jan 16, 1991Sep 27, 1994Bullock Communications, Inc.System and method for obtaining information concerning a product or a service
US5351293Feb 1, 1993Sep 27, 1994Wave Systems Corp.System method and apparatus for authenticating an encrypted signal
US5383113Jul 25, 1991Jan 17, 1995Checkfree CorporationSystem and method for electronically providing customer services including payment of bills, financial analysis and loans
US5414833Oct 27, 1993May 9, 1995International Business Machines CorporationNetwork security system and method using a parallel finite state machine adaptive active monitor and responder
US5475585Feb 2, 1994Dec 12, 1995Transactional processing system
US5535229May 10, 1993Jul 9, 1996Global Interconnect, Corp.Digital data transfer system for use especially with advertisement insertion systems
US5557516Feb 4, 1994Sep 17, 1996MasterCard InternationalSystem and method for conducting cashless transactions
US5557518Apr 28, 1994Sep 17, 1996Citibank, N.A.Trusted agents for open electronic commerce
US5557798Dec 21, 1990Sep 17, 1996Tibco, Inc.Apparatus and method for providing decoupling of data exchange details for providing high performance communication between software processes
US5590197Apr 4, 1995Dec 31, 1996V-ONE CorporationElectronic payment system and method
US5594910Nov 26, 1993Jan 14, 1997IBM Corp.Interactive computer network and method of operation
US5596642Sep 30, 1994Jan 21, 1997Electronic Payment Services, Inc.Network settlement performed on consolidated information
US5596643Jan 3, 1996Jan 21, 1997Electronic Payment Services, Inc.Network settlement performed on consolidated information
US5604802Jul 18, 1994Feb 18, 1997International Business Machines CorporationTransaction processing system
US5621797Dec 19, 1995Apr 15, 1997Citibank, N.A.Electronic ticket presentation and transfer method
US5623547Mar 6, 1995Apr 22, 1997Jonhig LimitedValue transfer system
US5642419Dec 19, 1995Jun 24, 1997Citibank N.A.Method for acquiring and revalidating an electronic credential
US5715314Oct 24, 1994Feb 3, 1998Open Market, Inc.Network sales system
US5724424Nov 29, 1995Mar 3, 1998Open Market, Inc.Digital active advertising
US5920847Oct 7, 1996Jul 6, 1999Visa International Service AssociationElectronic bill pay system

Referenced by

Citing PatentFiling dateIssue dateOriginal AssigneeTitle
US6557054Apr 20, 2000Apr 29, 2003Method and system for distributing updates by presenting directory of software available for user installation that is not already installed on user station
US6594692Apr 29, 1996Jul 15, 2003Methods for transacting electronic commerce
US6601759Oct 4, 2001Aug 5, 2003American Express Travel Related ServicesSystem and method for providing feedback in an interactive payment system
US6611862Apr 20, 2000Aug 26, 2003User station software that controls transport and presentation of content from a remote source
US6658464Apr 20, 2000Dec 2, 2003User station software that controls transport, storage, and presentation of content from a remote source
US6769009Apr 20, 2000Jul 27, 2004Method and system for selecting a personalized set of information channels
US6944632Apr 21, 2003Sep 13, 2005PRN CorporationMethod and apparatus for gathering statistical information about in-store content distribution
US7069274Apr 21, 2003Jun 27, 2006PRN CorporationMethod and apparatus for cataloguing and scripting the display of informational content
US7249069Aug 27, 2001Jul 24, 2007United Parcel Service of America, Inc.International cash-on-delivery system and method
US7272639Jan 12, 1998Sep 18, 2007Soverain Software LLCInternet server access control and monitoring systems
US7613633Sep 27, 2000Nov 3, 2009eBay Inc.Method for facilitating commerce at an internet-based auction
US7653687Jun 8, 2007Jan 26, 2010Method for distributing content to a user station
US7702540Feb 19, 1999Apr 20, 2010eBay Inc.Computer-implement method and system for conducting auctions on the internet
US7761348Dec 30, 2004Jul 20, 2010United Parcel Service of America, Inc.Systems and methods for consolidated global shipping
US7814020Aug 28, 2001Oct 12, 2010NVIDIA International, Inc.System, method and computer program product for the recording and playback of transaction macros
US7853536Dec 30, 2004Dec 14, 2010United Parcel Service of America, Inc.Systems and methods for virtual inventory management
US7895092Jul 21, 2009Feb 22, 2011United Parcel Service of America, Inc.Systems and methods for integrated global shipping and visibility
US7970652Apr 25, 2000Jun 28, 2011eBay Inc.Apparatus and method for remote sellers to initiate auction instances at an auction facilitator system and receive or make payment for items bought and sold with the system by book entry accounting between participant accounts accessible to the system
US7970722Nov 9, 2009Jun 28, 2011Aloft Media, LLCSystem, method and computer program product for a collaborative decision platform
US8005777Jul 27, 2010Aug 23, 2011Aloft Media, LLCSystem, method and computer program product for a collaborative decision platform
US8024399Aug 31, 2006Sep 20, 2011Twintech E.U., Limited Liability CompanySoftware distribution over a network
US8069204Aug 31, 2006Nov 29, 2011Twintech E.U., Limited Liability CompanyProviding and receiving content over a wireless communication system
US8131883Apr 20, 2000Mar 6, 2012Intellectual Ventures I, Limited Liability CompanyMethod for distributing content to a user station
US8160968Jun 20, 2008Apr 17, 2012Digimarc CorporationDigital media methods
US8160988Jul 27, 2010Apr 17, 2012Aloft Media, LLCSystem, method and computer program product for a collaborative decision platform
US8190513Oct 22, 2008May 29, 2012Fraud Control Systems.com CorporationMethod of billing a purchase made over a computer network
US8229844Oct 22, 2008Jul 24, 2012Fraud Control Systems.com CorporationMethod of billing a purchase made over a computer network
USRE42892Oct 17, 2002Nov 1, 2011Netscape Communications CorporationMethod and apparatus for maintaining state information on an HTTP client system in relation to server domain and path attributes

Claims

1. An open network payment system for providing for real time authorization of payment transactions, comprising:

a plurality of client computers; and
a payment computer;
the client computers and the payment computer being interconnected by a public packet switched communications network;
each one of the client computers being programmed to construct a payment request message specifying a payment amount to be transferred from a sender to a beneficiary, and to cause the payment request message to be transmitted to the payment computer over the public packet switched communications network;
the payment computer being programmed to verify that the sender has adequate funds or credit having real monetary value, and to transmit an authorization message to the client computer over the public packet switched communications network, conditioned on at least one message transmitted over the public packet switched communications network in connection with the real-time authorization not being a replay of a message previously transmitted over the public packet switched communications network;
at least one of the payment request message and the authorization message comprising at least one digital signature of components that include components derived from the at least one message, at least one of which digital signatures protects the at least one message from forgery, including authenticating an identity of one of a plurality of principals as an originator of the at least one message, at least one of which digital signatures protects the at least one message from all replay attacks that result in loss of value, and at least one of which digital signatures is verified based on a principal-specific or source-specific public key.

2. The network payment system of claim 1 wherein the authorization message comprises an authenticator proving that the payment computer originated the authorization message and is capable of validation without use of a secret key.

3. The network payment system of claim 1 wherein the at least one signature comprises one signature that protects the at least one message from forgery, including authenticating an identity of one of a plurality of principals as an originator of the at least one message, protects the at least one message from replay attack, and is computed based on a principal-specific or source-specific secret key.

4. The network payment system of claim 1 wherein the payment computer is programmed to cause information pertaining to the payment request message and authorization to be recorded.

5. A method of providing for real-time authorization of purchase transactions in a public packet switched communications network interconnecting a plurality of client computers and a payment computer, and comprising the steps of:

constructing a payment request message at one of the client computers specifying a payment amount to be transferred from a sender to a beneficiary, and causing the payment request message to be transmitted to the payment computer over the public packet switched communications network; and
verifying, at the payment computer, that the sender has adequate funds or credit having real monetary value, and transmitting an authorization message from the payment computer to the client computer over the public packet switched communications network, conditioned on at least one message transmitted over the public packet switched communications network in connection with the real-time authorization not being a replay of a message previously transmitted over the public packet switched communications network;
at least one of the payment request message and the authorization message comprising at least one digital signature of components that include components derived from the at least one message, at least one of which digital signatures protects the at least one message from forgery, including authenticating an identity of one of a plurality of principals as an originator of the at least one message, at least one of which digital signatures protects the at least one message from all replay attacks that result in loss of value, and at least one of which digital signatures is verified based on a principal-specific or source-specific public key.

6. The method of claim 5 wherein the authorization message comprises an authenticator proving that the payment computer originated the authorization message and is capable of validation without use of a secret key.

7. A payment computer for use in providing real-time authorization of payment transactions, the payment computer being programmed to receive, over a public packet switched communications network, a payment request message specifying a payment amount to be transferred from the sender to the beneficiary, the payment computer further being programmed to authenticate the payment request message, to verify that the sender has adequate funds or credit having real monetary value, and to transmit an authorization message over the public packet switched communications network, the authorization message comprising an authenticator proving that the payment computer originated the authorization message, conditioned on at least one message transmitted over the public packet switched communications network in connection with the real-time authorization not being a replay of a message previously transmitted over the public packet switched communications network;

at least one of the payment request message and the authorization message comprising at least one digital signature of components that include components derived from the at least one message, at least one of which digital signatures protects the at least one message from forgery, including authenticating an identity of one of a plurality of principals as an originator of the at least one message, at least one of which digital signatures protects the at least one message from all replay attacks that result in loss of value, and at least one of which digital signatures is verified based on a principal-specific or source-specific public key.

8. The payment computer of claim 7 wherein the authorization message comprises an authenticator proving that the payment computer originated the authorization message and is capable of validation without use of a secret key.

9. The method of claim 5 further comprising the step of causing information pertaining to the payment request message and authorization to be recorded.

10. An open network payment system for providing for real-time authorization of payment transactions, comprising:

a plurality of client computers; and
a payment computer;
the client computers and the payment computer being interconnected by a public packet switched communications network;
each one of the client computers being programmed to construct a payment request message specifying a payment amount to be transferred from a sender to a beneficiary, and to cause the payment request message to be transmitted to the payment computer over the public packet switched communications network;
the payment computer being programmed to verify that the sender has adequate funds or credit having real monetary value, and to transmit an authorization message to the client computer over the public packet switched communications network, conditioned on at least one message transmitted over the public packet switched communications network in connection with the real-time authorization not being a replay of a message previously transmitted over the public packet switched communications network;
the authorization message comprising at least one digital signature of components that include components derived from the authorization message, at least one of which digital signatures protects the authorization message from forgery, at least one of which digital signatures protects the authorization message from all replay attacks that result in loss of value; and
the authorization message comprising an authenticator proving that the payment computer originated the authorization message and being capable of validation without use of a secret key.

11. The network payment system of claim 10 wherein the authenticator is a digital signature.

12. The network payment system of claim 10 wherein the payment computer is programmed to cause information pertaining to the payment request message and authorization to be recorded.

13. A method of providing for real-time authorization of purchase transactions in a public packet switched communications network interconnecting a plurality of client computers and a payment computer, and comprising the steps of:

constructing a payment request message at one of the client computers specifying a payment amount to be transferred from a sender to a beneficiary, and causing the payment request message to be transmitted to the payment computer over the public packet switched communications network; and
verifying, at the payment computer, that the sender has adequate funds or credit having real monetary value, and transmitting an authorization message from the payment computer to the client computer over the public packet switched communications network, conditioned on at least one message transmitted over the public packet switched communications network in connection with the real-time authorization not being a replay of a message previously transmitted over the public packet switched communications network;
the authorization message comprising at least one digital signature of components that include components derived from the authorization message, at least one of which digital signatures protects the authorization message from forgery, and at least one of which digital signatures protects the authorization message from all replay attacks that result in loss of value; and
the authorization message comprising an authenticator proving that the payment computer originated the authorization message and being capable of validation without use of a secret key.

14. The method of claim 13 wherein the authenticator is a digital signature.

15. The method of claim 13 further comprising the step of causing information pertaining to the payment request message and authorization to be recorded.

16. The network payment system of claim 4 wherein the payment computer is programmed to cause the information pertaining to the payment request message and authorization to be recorded in a settlement database.

17. The method of claim 9 wherein the information pertaining to the payment request message and authorization is recorded in a settlement database.

18. The network payment system of claim 12 wherein the payment computer is programmed to cause the information pertaining to the payment request message and authorization to be recorded in a settlement database.

19. The method of claim 15 wherein the information pertaining to the payment request message and authorization is recorded in a settlement database.

20. The open network payment system of claim 1 wherein the payment request message comprises the at least one digital signature of components that include components derived from the at least one message.

21. The method of claim 5 wherein the payment request message comprises the at least one digital signature of components that include components derived from the at least one message.

22. The payment computer of claim 7 wherein the payment request message comprises the at least one digital signature of components that include components derived from the at least one message.

23. An open network payment system for providing for real-time authorization of payment transactions, comprising:

a plurality of client computers; and
a payment computer;
the client computers and the payment computer being interconnected by a public packet switched communications network;
each one of the client computers being programmed to construct a payment request message specifying a payment amount to be transferred from a sender to a beneficiary, and to cause the payment request message to be transmitted to the payment computer over the public packet switched communications network;
the payment computer being programmed to verify that the sender has adequate funds or credit having real monetary value, and to transmit an authorization message to the client computer over the public packet switched communications network, conditioned on at least one message transmitted over the public packet switched communications network in connection with the real-time authorization not being a replay of a message previously transmitted over the public packet switched communications network;
at least one of the payment request message and the authorization message comprising at least one digital signature of components that include components derived from the at least one message, at least one of which digital signatures protects the at least one message from forgery, including authenticating an identity of one of a plurality of principals as an originator of the at least one message, at least one of which digital signatures protects the at least one message from all replay attacks that result in loss of value, and at least one of which digital signatures is computed based on a principal-specific or source-specific secret key.

24. The open network payment system of claim 23 wherein the payment request message comprises the at least one digital signature of components that include components derived from the at least one message.

25. A method of providing for real-time authorization of purchase transactions in a public packet switched communications network interconnecting a plurality of client computers and a payment computer, and comprising the steps of:

constructing a payment request message at one of the client computers specifying a payment amount to be transferred from a sender to a beneficiary, and causing the payment request message to be transmitted to the payment computer over the public packet switched communications network; and
verifying, at the payment computer, that the sender has adequate funds or credit having real monetary value, and transmitting an authorization message from the payment computer to the client computer over the public packet switched communications network, conditioned on at least one message transmitted over the public packet switched communications network in connection with the real-time authorization not being a replay of a message previously transmitted over the public packet switched communications network;
at least one of the payment request message and the authorization message comprising at least one digital signature of components that include components derived from the at least one message, at least one of which digital signatures protects the at least one message from forgery, including authenticating an identity of one of a plurality of principals as an originator of the at least one message, at least one of which digital signatures protects the at least one message from all replay attacks that result in loss of value, and at least one of which digital signatures is computed based on a principal-specific or source-specific secret key.

26. The method of claim 25 wherein the payment request message comprises the at least one digital signature of components that include components derived from the at least one message.

27. A payment computer for use in providing real-time authorization of payment transactions, the payment computer being programmed to receive, over a public packet switched communications network, a payment request message specifying a payment amount to be transferred from the sender to the beneficiary, the payment computer further being programmed to authenticate the payment request message, to verify that the sender has adequate funds or credit having real monetary value, and to transmit an authorization message over the public packet switched communications network, the authorization message comprising an authenticator proving that the payment computer originated the authorization message, conditioned on at least one message transmitted over the public packet switched communications network in connection with the real-time authorization not being a replay of a message previously transmitted over the public packet switched communications network;

at least one of the payment request message and the authorization message comprising at least one digital signature of components that include components derived from the at least one message, at least one of which digital signatures protects the at least one message from forgery, including authenticating an identity of one of a plurality of principals as an originator of the at least one message, at least one of which digital signatures protects the at least one message from all replay attacks that result in loss of value, and at least one of which digital signatures is computed based on a principal-specific or source-specific secret key.

28. The payment computer of claim 27 wherein the payment request message comprises the at least one digital signature of components that include components derived from the at least one message.

Drawings