Claims
- 1. A transaction confidence token for use in a secure communication system, said token comprising:
an envelope comprising
transaction information; and a trust metric; and a seal comprising a digital signature of said envelope.
- 2. A token according to claim 1, wherein said envelope further comprises a time stamp.
- 3. A token according to claim 1, wherein said transaction information includes information selected from the group consisting of a web site address, a web session identifier, a monetary or exchange value, an order number, an SKU number, and a credit card number, and combinations thereof.
- 4. A token according to claim 1, wherein said trust metric is an overall trust metric indicating a combined confidence level for enrollment, storage, transmission, and authentication processes employed for authentication of a transaction.
- 5. A token according to claim 1, wherein said trust metric comprises a storage trust metric indicating a confidence level for a storage process associated with authentication of a transaction.
- 6. A token according to claim 1, wherein said trust metric comprises a transmission trust metric indicating a confidence level for a transmission process associated with authentication of a transaction.
- 7. A token according to claim 1, wherein said trust metric comprises an authentication trust metric indicating a confidence level for an authentication process associated with authentication of a transaction.
- 8. A token according to claim 1, wherein said trust metric comprises an enrollment trust metric indicating a confidence level for an enrollment process associated with authentication of a transaction.
- 9. A token according to claim 1, wherein said trust metric comprises an overall trust metric and said envelope further comprises at least one metric chosen from the group consisting of an enrollment trust metric, a storage trust metric, a transmission trust metric, an authentication trust metric, and combinations thereof.
- 10. A token according to claim 1, wherein said digital signature is signed with a private key.
- 11. A method for assuring a secure transaction comprising:
receiving a transaction confidence token comprising a trust metric associated with said transaction; determining if said trust metric indicates a sufficient trust level; and processing said transaction if said trust metric indicates or exceeds said sufficient trust level.
- 11. A method according to claim 10, further comprising:
requiring a mitigating factor if said trust metric indicates less than said sufficient trust level.
- 12. A method according to claim 11, wherein said mitigating factor is chosen based on said trust metric.
- 13. A method according to claim 11, wherein said mitigating factor is chosen from the group consisting of a fee, a waiting period, an authentication procedure, and combinations thereof.
- 14. A method according to claim 11, further comprising:
processing said transaction after receiving said mitigating factor.
- 15. A method according to claim 10, further comprising:
constructing a transaction confidence token comprising said trust metric; and transmitting said transaction confidence token to a server.
- 16. A method for assuring a secure transaction comprising:
receiving a transaction confidence token comprising a trust metric associated with said transaction; determining if said trust metric indicates an acceptable risk level; and processing said transaction if said trust metric indicates or is less than said acceptable risk level.
- 17. A method according to claim 16, further comprising:
requiring a mitigating factor if said trust metric indicates greater than said acceptable risk level.
- 18. A method according to claim 17, further comprising:
processing said transaction after receiving said mitigating factor.
RELATED APPLICATIONS
[0001] This application further relates to the following co-pending applications:
[0002] U.S. application Ser. No. ______, filed ______, entitled “BIOMETRICALLY ENHANCED DIGITAL CERTIFICATES AND SYSTEM AND METHOD FOR MAKING AND USING” (Attorney Docket No. A-70596/RMA/JML);
[0003] U.S. application Ser. No. ______, filed ______, entitled “SECURE NETWORK AND NETWORKED DEVICES USING BIOMETRICS” (Attorney Docket No. A70595/RMA/JML); and
[0004] U.S. application Ser. No. ______, filed ______, entitled “METHOD AND SYSTEM FOR BIOMETRIC IMAGE ASSEMBLY FROM MULTIPLE PARTIAL BIOMETRIC FRAME SCANS” (Attorney Docket No. A-70591/RMA/JML); all of which are hereby incorporated by reference.
Provisional Applications (1)
|
Number |
Date |
Country |
|
60305120 |
Jul 2001 |
US |
Continuation in Parts (2)
|
Number |
Date |
Country |
Parent |
10099554 |
Mar 2002 |
US |
Child |
10194959 |
Jul 2002 |
US |
Parent |
10099558 |
Mar 2002 |
US |
Child |
10194959 |
Jul 2002 |
US |