Abstract: A method of doing business is disclosed that transforms a biometric used by a user in a transaction. The transformation creates a distorted biometric. The distorted biometric is used to identify the user to another party without requiring the user to provide actual physical or behavioral characteristics about himself to the other party.

Abstract: The present invention relates to a system wherein each of a reservation server that makes reservations of sales and purchases, a portable terminal owned by a user who makes a reservation, and a shop terminal provided in stores where goods are sold, and a service or entertainment is provided, is connected to a communication network whereby the user makes a reservation for sales or purchase by accessing the reservation server, the reservation server encrypts contents of the sales/purchase reservation and transmits the encrypted reservation information to the aforementioned portable terminal, the user presents the transmitted encrypted reservation information to the shop terminal, visiting the shop terminal, and the shop terminal accesses the reservation server to confirm whether the presented encrypted reservation information is legitimate or not and admits the presenter of the encrypted reservation information if the reservation information is legitimate.

Abstract: A multimedia network (1) with connected customer stations (2), merchant servers (3), and a payment server (5). Secure electronic transactions are performed using a secure electronic transactions protocol (SET), including exchange of digital certificates, managed by a Trusted Third Party Server (9). The customer stations comprise transactions management means (10), fit for performing said SET protocol and for managing said certificates for the customer station. A remote customer agent (13) represents the customer station in the negotiation and payment process. The customer station (2) comprises an agent interface (12), fit for transmission of codes, parameters and certificates between the customer agent (13) and the transactions management means (10). A remote merchant agent (14) represents the merchant station (3) in the negotiation and payment process with the customer agent (13) or the customer station (3), to have paid for the selected products in a secure way, under control of SET protocol.

Abstract: Content revocation is achieved by disabling licenses issued to a computing device for the content. A content revocation is delivered within a license to the computing device. Upon license storage the content revocation is recognized, validated, and stored in a secure state store under the public key of the content server (PU-CS) that issued the content. Each license has a (PU-CS) therein, and each license evaluation considers each content revocation stored in the state store and having the same (PU-CS). The license is disabled or otherwise affected based on the considered content revocation. A content revocation is one form of a license modification that may be delivered within a license.

Abstract: A mobile communication device, such as a mobile phone, which comprises a processor which is configured to process requests for authorisation of use of a credential, such as a credit card, and the processor causes the device to emit a signal, such as an audible intermittent tone, the characteristics of which are indicative of the deemed importance of a particular use of the credential. Advantageously the owner of the device is alerted to the deemed importance of a use of a credential. For example, an intermittent tone of characteristic frequency is emitted by a mobile phone in relation to the monetary value of a transaction using a credit card.

Abstract: A system, method and computer program for ordering, paying for and delivering goods and services through the use of certificates. These certificates insure that the buyer is only billed once for the good or service purchased and only for the correct amount. This system, method and computer program employs the authentication center used to enable access to a telecommunication infrastructure to bootstrap a public-key infrastructure. This system, method and computer program will validate the identity of the mobile station being used utilizing long term keys stored in the mobile station and an authentication center. The system, method and computer program will then utilize these keys and variables to generate digital certificates and signatures which enable the purchase of goods and services using a mobile station. The gateway will then verify the authenticity of any charges made based on the digital certificates and signatures received.

Abstract: A method of brokering a transaction between a consumer and a vendor by a broker, wherein the consumer, the broker and the vendor are all attached to a public network, the consumer having a secure token containing a true consumer identity. The method comprising the steps of: the consumer obtaining a temporary identity from the broker by using the true consumer identity from the secure token; the consumer selecting a purchase to be made from the vendor; the consumer requesting the purchase from the vendor and providing the temporary identity to the vendor; the vendor requesting transaction authorisation from the broker by forwarding the request and the temporary identity to the broker; the broker matching the temporary identity to a current list of temporary identities, and obtaining the true consumer identity; the broker providing authorisation for the transaction based on transaction details and true consumer identity.

Abstract: A mechanism is provided for storing user identifications and passwords in a mobile device, such as a personal digital assistant. A modified keyboard device driver may be installed on each platform the user accesses. When the user is prompted for a password from a functioning terminal, the user may select the appropriate account on the mobile device. The mobile device then may send the user identification and password for the account to the terminal. The modified keyboard device driver receives the user identification and password from the mobile device and converts it into keyed text. The accounts with user identifications and passwords may be protected by a password. Thus, the user must only remember the one mobile device password to access a plurality of resources and computer systems. Furthermore, the communications between the mobile device and terminal may be encrypted to prevent snooping.

Abstract: The present invention involves the creation of a website-specific electronic signature containing a personalized logo via a mechanism for on-line assembly of image parts to obtain personalized image. The present invention provides two applications of the website-specific electronic signature containing a personalized logo, a virtual payment card and an on-line binding purchase order. The present invention further provides two methods and a system for e-commerce use of the virtual payment card and the on-line binding purchase order. The safer and less costly on-line transaction methods and the more trustable on-line seller-buyer agreements offered by the present invention can help promote the trustworthiness and the brand value of an e-store or a payment institution.

Abstract: Media content is associated with households using smart cards. The media content is encrypted and/or decrypted based on a household identifier corresponding to a smart card. Media content is encrypted such that it can only be decrypted with the same (or similar) smart card. Thus, the encrypted media content can be safely transferred within a computing device, stored, transferred to other computing devices, etc. because it cannot be decrypted without the smart card.

Abstract: Content revocation is achieved by disabling licenses issued to a computing device for the content. A content revocation is delivered within a license to the computing device. Upon license storage the content revocation is recognized, validated, and stored in a secure state store under the public key of the content server (PU-CS) that issued the content. Each license has a (PU-CS) therein, and each license evaluation considers each content revocation stored in the state store and having the same (PU-CS). The license is disabled or otherwise affected based on the considered content revocation. A content revocation is one form of a license modification that may be delivered within a license.

Abstract: In a digital content distribution method to distribute digital contents via a network, distribution of a digital content is instructed according to a distribution schedule, the digital content is distributed according to the distribution schedule indicated, and a particular digital content is selected from the digital contents distributed and is then sold, thereby conducting the distribution of digital contents at a high speed.

Abstract: An authentication value is provided in a magnetic-ink field of a negotiable instrument. The authentication value is derived from application of an encryption algorithm defined by a secure key. The authentication value may be used to authenticate the instrument through reapplication of the encryption algorithm and comparing the result with the authentication value. The instrument is authenticated if there is a match between the two.

Abstract: A method authenticates at least one of a media and data stored on said media in order to prevent at least one of piracy, unauthorized access and unauthorized copying of the data stored on said media. At least one predetermined error is introduced with the data resulting in mixed data. The mixed data is optionally stored on the media. The at least one predetermined error includes at least one authentication key or component thereof, for authenticating whether the media and/or data is authorized. The method includes the following sequential, non-sequential and/or sequence independent steps: reading the mixed data from the media, detecting the at least one predetermined error from the mixed data, and comparing the at least one predetermined error to the at least one authentication key or component thereof.

Abstract: Fee imposition system and method for application software, in which a software providing corporation can collect the fee without fail and charge a fair fee to a customer, and thereby the customer can use the application software with a paying method easy to estimate. The fee imposition system includes a server machine installed in a management center for managing the software, a client machine installed in a customer's office and connected with the server machine through a communication means, a ticket issue unit for issuing a ticket file on the basis of a predetermined fee schedule, and a data copy/writing unit for copying data corresponding to the information designated by the ticket file from a data source memory unit and recording the copied data on a data target memory unit.

Abstract: Parties involved in a particular transaction in an E-marketplace each identify and submit to the E-marketplace relevant characteristics related to that transaction. The identification of the party is not revealed with this submission. To achieve this, an attribute certificate is created which contains attributes related to a buyer or seller's potential participation in a transaction. The attributes that are selected pertain to specifics of the transaction and not to the certificate holder. Each of the attributes are verified by a trusted authority (e.g., the E-marketplace acting as an intermediary for the transaction) so that when the attribute certificate is supplied to a party, the party is assured that the information it contains is accurate. In this manner, parties to a negotiation in a particular transaction are able to know immediately and with a high level of assurance that certain critical elements to the proposed transaction are met (or are capable of being met).

Abstract: An effective electronic settlement system in which the number of checks is small. The electronic settlement system includes a data storage device such as an IC card in which value information is stored, a client device provided with an information input/output function to the data storage device, a store device for providing commodities or services, a settlement management device for managing settlement between the data storage device and the store device, and a communication system for connecting the client device, the store device, and the settlement management device so as to enable bidirectional communication.

Abstract: A method for proof of the time and content of transactions in a digital network is described. A digital form is requested by a customer's computer (1) and is transmitted from a bid server (3) to the customer's computer (1) and such contains the network address of a transaction proof server (4). Form data in the form, includes the data required for acceptance of the bid, and are sent to an order acceptance server. The form data are sent from the customer's computer (1) to the transaction proof server (4), and are provided with a digital time specification. A check digit code is generated for the form data and the digital time specification, and this check digit code is encoded with a key to form a time signature. The form data are transmitted from the transaction proof server (4) with the digital time specification and the time signature to the order acceptance server.

Abstract: The present invention relates to electronic purse systems, and in particular it relates to the improved management of multiple money flows in such systems. According to the basic principles of the present invention it is proposed that the secure access modules (SAMs) of a purse provider support multiple user groups or environments in the system while still requiring only one system key. The user groups or environments are identified by a so-called float ID tag which is advantageously added to each set of data involved in a load or purchase process performed by the user of the electronic purse system.

Abstract: A content receiver is compatible with a plurality of rights management and protection methods (RMP) devised for each content distribution system. Only the format which specifies the specification of the RMP formed of information such as content billing, security, and copyright protection, is standardized. Each content provider inputs encrypted content and rights processing information to content in a form conforming to the standardized specification. For content users, by merely being provided with functions corresponding to each RMP method in advance, even if the content is based on any RMP method, the content can be decrypted and used in the same content receiver.