Hardware-Based Zero-Knowledge Strong Authentication (H0KSA)

a technology of strong authentication and zero-knowledge, applied in the field of secure financial transactions, to achieve the effect of reducing the risk of fraudulent purchases
US20100306531A1Inactive Publication Date: 2010-12-02PAYPAL INC
19 Cites 97 Cited by

Patent Information

Authority / Receiving Office
US Ā· United States
Current Assignee / Owner
PAYPAL INC
Publication Date
2010-12-02
Estimated Expiration
Not applicable Ā· inactive patent

Smart Images

  • Figure 1
    Figure 1
  • Figure 2
    Figure 2
  • Figure 3
    Figure 3
Patent Text Reader

Abstract

Systems and methods are provided for a device to engage in a zero-knowledge proof with an entity requiring authentication either of secret material or of the device itself. The device may provide protection of the secret material or its private key for device authentication using a hardware security module (HSM) of the device, which may include, for example, a read-only memory (ROM) accessible or programmable only by the device manufacturer. In the case of authenticating the device itself a zero-knowledge proof of knowledge may be used. The zero-knowledge proof or zero-knowledge proof of knowledge may be conducted via a communication channel on which an end-to-end (e.g., the device at one end and entity requiring authentication at the other end) unbroken chain of trust is established, unbroken chain of trust referring to a communication channel for which endpoints of each link in the communication channel mutually authenticate each other prior to conducting the zero-knowledge proof of knowledge and for which each link of the communication channel is protected by at least one of hardware protection and encryption.
Need to check novelty before this filing date? Find Prior Art

Description

CROSS REFERENCE TO RELATED APPLICATIONS

[0001] This application is a continuation-in-part of U.S. patent application Ser. No. 12 / 643,972, filed Dec. 21, 2009, which claims the benefit of U.S. Provisional Application No. 61 / 182,623, filed May 29, 2009, and both of which are hereby incorporated by reference.BACKGROUND

[0002] 1. Technical Field

[0003] Embodiments of the present invention generally relate to secure financial transactions initiated from an electronic device and, more particularly, to the ability to use the phone function (e.g., of a mobile handset) to feed data back to a Trusted Integrity Manager as part of a Mobile Embedded Payment program in the financial industry to authenticate users (e.g., a consumer).

[0004] 2. Related Art

[0005] In direct (face-to-face) or online financial transactions customers may search for and purchase products and / or services from a merchant. In the case of online shopping, transactions are conducted through electronic communications with online mercha...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More