(12) United States Patent
`ROSen
`
`USOO6175921B1
`(10) Patent No.:
`US 6,175,921 B1
`(45) Date of Patent:
`*Jan. 16, 2001
`
`4,999,806
`5,001,752
`
`3/1991 Chernow et al. .
`3/1991 Fischer.
`(List continued on next page.)
`FOREIGN PATENT DOCUMENTS
`
`(54) TAMPER-PROOF DEVICES FOR UNIQUE
`IDENTIFICATION
`(75) Inventor: Sholom S. Rosen, New York, NY (US)
`(73) Assignee: Citibank, N.A., New York, NY (US)
`(*) Notice:
`This patent issued on a continued pros-
`ecution application filed under 37 CFR
`1.53(d), and is subject to the twenty year
`patent term provisions of 35 U.S.C.
`154(a)(2).
`Under 35 U.S.C. 154(b), the term of this
`patent shall be extended for 0 days.
`
`This patent is subject to a terminal dis-
`claimer.
`
`2/1986 (EP).
`O 172 670 A2
`8/1990 (EP).
`O 38O377 B1
`3.E. SE
`o'E'S
`O 569816 A2 11/1993 SE
`2257 55 7
`1/1993 (GB).
`4-64129
`2/1992 (JP).
`9308545
`4/1993 (WO).
`94O1825
`1/1994 (WO).
`OTHER PUBLICATIONS
`“Online Cash Checks”, Chuam, D.; Advances in Cryptology
`Eurocrypt '89 Qiusquarter & J. Vandewalle (Eds.) Spring
`er-Verlag, pp. 288-293.
`“Achieving Electronic Privacy”, Chaum D.; Scientific
`(21) Appl. No.: 08/895,395
`American, Aug. 1992, pp. 96-101.
`1-1.
`“Value Exchange Systems Enabling Security and Unobserv
`(22) Filed:
`Jul. 16, 1997
`ability’, Burk, H., et al., Computer & Security, 9 (1990), pp.
`O
`O
`715-721.
`Related U.S. Application Data
`Proxy-Based Authorization and Accounting for Distributed
`(62) Division of application No. 08/730,158, filed on Oct. 23,
`Systems”, Neuman, D. Clifford; Proceedings of the 13th
`1996, now Pat. No. 5,703,949, which is a continuation of
`International Conference On Distributed Computing Sys
`application No. 08/575,699, filed on Dec. 19, 1995, now
`tems, Pittsburgh, May 1993.
`abandoned, which is a division of application No. 08/234,
`“Le paiement électronique”, P. Rémery, J.C. Pailles and F.
`461, filed on Apr. 28, 1994, now Pat. No. 5,557,518.
`Lay, L'Echo des Recherches, No. 1344 trimester 1988 (with
`(51) Int. Cl." ............................................. H04L 9/30
`English-language translation).
`(52) U.S. Cl. .......................... 713/173; 713/156; 713/159;
`“Padlock”, D. Everett, Computer Bulletin, Mar. 1985, pp.
`713/168; 380/279; 380/283; 705/67
`(58) Field of Search .................................. 3804, 23, 279, 16.
`380/283; 713/156, 159, 168, 173; 705/67;
`ABYSS: A Trusted Architecture for Software Protection',
`235/379, 380; 340/825.3, 825.34
`S.R. White and L. Comerford, IEEE, 1987.
`References Cited
`(List continued on next page.)
`Primary Examiner Pinchus M. Laufer
`Assistant Examiner Hrayr D. Sayadian
`(74) Attorney, Agent, or Firm Morgan & Finnegan, LLP
`(57)
`ABSTRACT
`havi
`1
`f
`A
`system for open electronic commerce having a customer
`trusted agent Securely communicating with a first money
`module, and a merchant trusted agent Securely communi
`9.
`y
`cating with a Second money module. Both trusted agents are
`capable of establishing a first cryptographically Secure
`Session, and both money modules are capable of establishin
`y
`p
`9.
`a Second cryptographically Secure Session. The merchant
`trusted agent transferS electronic merchandise to the cus
`tomer trusted agent, and the first money module transfers
`electronic money to the Second money module. The money
`modules inform their trusted agents of the Successful
`completion of payment, and the customer may use the
`purchased electronic merchandise. A certificate data signed
`by a trusted authority is Stored in a tamper proof electronic
`processing device, which certificate includes a unique
`device ID and a public key of the device, in addition to
`device owner ID data. The processing device is programed
`to validate credential data received from other Such proceSS
`ing devices.
`
`(56)
`
`U.S. PATENT DOCUMENTS
`4/1984 McNeely et al..
`4,443,027
`6/1984 Weinstein.
`4,453,074
`6/1984 Benton.
`4,454,414
`7/1985 Chaum.
`4,529,870
`1/1987 Chorley et al..
`4634.807
`2/1987 Chandra et al. .
`4644493
`2 - - -2
`5/1987 Ragan et al. .
`4,663,664
`7/1987 Ragan et al. .
`4,682,223
`7/1987 Ragan et al. .
`4,682,224
`2/1988 Munck et al. .
`4,723,284
`12/1988 Philip et al.
`4,794,644
`1/1989 Shavit et al. .
`4,799,156
`St. 3.E.
`and st al
`4s68.877
`9/1989 st C a
`4876716 10/1989 Okamoto.
`4870747 11/1989 Leighton et al..
`4,888,800
`12/1989 Marshall et al..
`4,910,774
`3/1990 Barakat .................................. 380/23
`4,916.738
`4/1990 Chandra et al. .
`4,926,480
`5/1990 Chaum.
`4,933,971
`6/1990 Bestock et al. .
`3. SE Rule et al. .
`4,972.175
`11/1990 MacPherson.
`4,977,595
`12/1990 Ohta et al..
`4,993,069
`2/1991 Matyas et al..
`
`8 Claims, 91 Drawing Sheets
`
`Petitioner's Exhibit 1011, Page 1
`
`
`ROSen
`
`USOO6175921B1
`(10) Patent No.:
`US 6,175,921 B1
`(45) Date of Patent:
`*Jan. 16, 2001
`
`4,999,806
`5,001,752
`
`3/1991 Chernow et al. .
`3/1991 Fischer.
`(List continued on next page.)
`FOREIGN PATENT DOCUMENTS
`
`(54) TAMPER-PROOF DEVICES FOR UNIQUE
`IDENTIFICATION
`(75) Inventor: Sholom S. Rosen, New York, NY (US)
`(73) Assignee: Citibank, N.A., New York, NY (US)
`(*) Notice:
`This patent issued on a continued pros-
`ecution application filed under 37 CFR
`1.53(d), and is subject to the twenty year
`patent term provisions of 35 U.S.C.
`154(a)(2).
`Under 35 U.S.C. 154(b), the term of this
`patent shall be extended for 0 days.
`
`This patent is subject to a terminal dis-
`claimer.
`
`2/1986 (EP).
`O 172 670 A2
`8/1990 (EP).
`O 38O377 B1
`3.E. SE
`o'E'S
`O 569816 A2 11/1993 SE
`2257 55 7
`1/1993 (GB).
`4-64129
`2/1992 (JP).
`9308545
`4/1993 (WO).
`94O1825
`1/1994 (WO).
`OTHER PUBLICATIONS
`“Online Cash Checks”, Chuam, D.; Advances in Cryptology
`Eurocrypt '89 Qiusquarter & J. Vandewalle (Eds.) Spring
`er-Verlag, pp. 288-293.
`“Achieving Electronic Privacy”, Chaum D.; Scientific
`(21) Appl. No.: 08/895,395
`American, Aug. 1992, pp. 96-101.
`1-1.
`“Value Exchange Systems Enabling Security and Unobserv
`(22) Filed:
`Jul. 16, 1997
`ability’, Burk, H., et al., Computer & Security, 9 (1990), pp.
`O
`O
`715-721.
`Related U.S. Application Data
`Proxy-Based Authorization and Accounting for Distributed
`(62) Division of application No. 08/730,158, filed on Oct. 23,
`Systems”, Neuman, D. Clifford; Proceedings of the 13th
`1996, now Pat. No. 5,703,949, which is a continuation of
`International Conference On Distributed Computing Sys
`application No. 08/575,699, filed on Dec. 19, 1995, now
`tems, Pittsburgh, May 1993.
`abandoned, which is a division of application No. 08/234,
`“Le paiement électronique”, P. Rémery, J.C. Pailles and F.
`461, filed on Apr. 28, 1994, now Pat. No. 5,557,518.
`Lay, L'Echo des Recherches, No. 1344 trimester 1988 (with
`(51) Int. Cl." ............................................. H04L 9/30
`English-language translation).
`(52) U.S. Cl. .......................... 713/173; 713/156; 713/159;
`“Padlock”, D. Everett, Computer Bulletin, Mar. 1985, pp.
`713/168; 380/279; 380/283; 705/67
`(58) Field of Search .................................. 3804, 23, 279, 16.
`380/283; 713/156, 159, 168, 173; 705/67;
`ABYSS: A Trusted Architecture for Software Protection',
`235/379, 380; 340/825.3, 825.34
`S.R. White and L. Comerford, IEEE, 1987.
`References Cited
`(List continued on next page.)
`Primary Examiner Pinchus M. Laufer
`Assistant Examiner Hrayr D. Sayadian
`(74) Attorney, Agent, or Firm Morgan & Finnegan, LLP
`(57)
`ABSTRACT
`havi
`1
`f
`A
`system for open electronic commerce having a customer
`trusted agent Securely communicating with a first money
`module, and a merchant trusted agent Securely communi
`9.
`y
`cating with a Second money module. Both trusted agents are
`capable of establishing a first cryptographically Secure
`Session, and both money modules are capable of establishin
`y
`p
`9.
`a Second cryptographically Secure Session. The merchant
`trusted agent transferS electronic merchandise to the cus
`tomer trusted agent, and the first money module transfers
`electronic money to the Second money module. The money
`modules inform their trusted agents of the Successful
`completion of payment, and the customer may use the
`purchased electronic merchandise. A certificate data signed
`by a trusted authority is Stored in a tamper proof electronic
`processing device, which certificate includes a unique
`device ID and a public key of the device, in addition to
`device owner ID data. The processing device is programed
`to validate credential data received from other Such proceSS
`ing devices.
`
`(56)
`
`U.S. PATENT DOCUMENTS
`4/1984 McNeely et al..
`4,443,027
`6/1984 Weinstein.
`4,453,074
`6/1984 Benton.
`4,454,414
`7/1985 Chaum.
`4,529,870
`1/1987 Chorley et al..
`4634.807
`2/1987 Chandra et al. .
`4644493
`2 - - -2
`5/1987 Ragan et al. .
`4,663,664
`7/1987 Ragan et al. .
`4,682,223
`7/1987 Ragan et al. .
`4,682,224
`2/1988 Munck et al. .
`4,723,284
`12/1988 Philip et al.
`4,794,644
`1/1989 Shavit et al. .
`4,799,156
`St. 3.E.
`and st al
`4s68.877
`9/1989 st C a
`4876716 10/1989 Okamoto.
`4870747 11/1989 Leighton et al..
`4,888,800
`12/1989 Marshall et al..
`4,910,774
`3/1990 Barakat .................................. 380/23
`4,916.738
`4/1990 Chandra et al. .
`4,926,480
`5/1990 Chaum.
`4,933,971
`6/1990 Bestock et al. .
`3. SE Rule et al. .
`4,972.175
`11/1990 MacPherson.
`4,977,595
`12/1990 Ohta et al..
`4,993,069
`2/1991 Matyas et al..
`
`8 Claims, 91 Drawing Sheets
`
`Petitioner's Exhibit 1011, Page 1
`
`
`
`US 6,175,921 B1
`Page 2
`
`U.S. PATENT DOCUMENTS
`
`4/1991 Fischer.
`5,005,200
`1/1992 Kaufman et al. .
`5,081,678
`4/1992 Comerford et al. .
`5,109,413
`5/1992 Comerford et al. .
`5,117,457
`7/1992 Chaum.
`5,131,039
`9/1992 Kudelski et al. .
`5,144,663
`9/1992 Comerford.
`5,148,534
`11/1992 Matsuda.
`5,162.989
`1/1993 Yeh et al. .
`5,177,791
`2/1993 Mori.
`5,185,717
`5,200,999 * 4/1993 Matyas et al. ......................... 380/25
`5,202.921
`4/1993 Herzberg et al..
`5,221,838
`6/1993 Gutman et al. .
`5,247,576
`9/1993 Bright.
`5,247,578
`9/1993 Pailles et al. .
`5,265,164 * 11/1993 Matyas et al. ......................... 380/30
`5,276,311
`1/1994 Hennige.
`5,276,736
`1/1994 Chaum.
`5,282,248
`1/1994 Dejoy.
`5,301.247
`4/1994 Rasmussen et al. .
`5,305,200
`4/1994 Hartheimer et al. .
`5,319,705
`6/1994 Halter et al. .
`5,389,738 * 2/1995 Piosenka et al. ................... 174/52.4
`5,396.558 * 3/1995 Ishiguro et al. ....................... 380/25
`5,416,840
`5/1995 Cane et al. .
`5,440,634
`8/1995 Jones et al. .
`5,448,638
`9/1995 Johnson et al. .
`5,453,601
`9/1995 Rosen.
`5,473,692
`12/1995 Davis.
`5,481,715
`1/1996 Hamilton et al. .
`5,490,251
`2/1996 Clark et al. .
`5,511,121
`4/1996 Yacobi.
`5,519,778
`5/1996 Leighton.
`5,539,828
`7/1996 Davis.
`5,557,518
`9/1996 Rosen ................................... 364/408
`5,568,552
`10/1996 Davis.
`5,621,797
`4/1997 Rosen.
`5,642,419
`6/1997 Rosen.
`5,703,949
`12/1997 Rosen.
`5,878,139
`3/1999 Rosen.
`OTHER PUBLICATIONS
`“Public Protection of Software”, A. Herzberg and S.S.
`Pinter, ACM Transactions on Computer Systems, vol. 5, No.
`4, Nov. 1987, pp. 371-393.
`“Security Without Identification: Card Computers To Make
`Big Brother Obsolete", D. Chaum, 1987.
`“Internet Billing Service Design and Prototype Implemen
`tation”, Marvin A Sirbu, IMA Intellectual Property Project
`Proceedings, vol. 1, Issue, Jan. 1994.
`
`“Dyad: A System for Using Physically Secure Coproces
`sors”, J.D. Tygar and B. Yee, School of Computer Science,
`Carnegie Mellon Univ., Pittsburgh, PA.
`“Trusted Devices as applied to Corporate Key Escrow”, F.
`Sudia, Jan. 14, 1994, Bankers Trust Co.
`“Wavemeter Chip Provides Digital Money”, M. Slater,
`Microprocessor Report, vol. 8, No. 5, Apr. 18, 1994.
`“Data Networks and Open System Communications Direc
`tory/Information Technology-Open Systems Interconnec
`tion- The
`Directory:
`Authentication
`Framework.”
`ITU-Recommendation X.509, Nov. 1993.
`“Anonymous Internet Mercantile Protocol', AT&T Bell
`Laboratories, Draft: Mar. 17, 1994, pp. 1-16, David M.
`Kristol, Steven H. Low, Nicholas F. Maxemchunk.
`Literature of Microcomputer II, edited by Nihon Denshi
`Kogyo Sinko Kyokai (Mar., 1988), pp. 190–217 (Japanese
`Language).
`“Universal Electronic Cash', Tatsuaki Okamoto and Kazuo
`Ohta, CRYPTO 91, (Sessions 8: Applications and Imple
`mentations; pp. 8-7 through 8-13).
`“Limitations of the Kerberos Authentication System”,
`Steven M. Bellovin and Michael Merritt, USENIX-Winter
`'91 (1–15).
`"Applied Cryptography: Protocols, Algorithms, and Source
`Code in C, Bruce Schneier, John Wiley & Sons, Inc.
`(417-429) ISBN 0-471-59756–2; QA76.9.A25S35 1993.
`“An Architecture for Practical Delegation in a Distributed
`System, Morrie Gasser, Ellen McDermott, IEEE Computer
`Society Press, IEEE Computer Society Symposium on
`Research in Security and Privacy, May 7-9, 1990.
`“Practical Uses of Synchronized Clocks in Distributed Sys
`tems”, Barbara Liskov, ACM Press, 10" Annual ACM
`Symposium on Principles of Distributed Computing, Aug.
`19-21, 1991, ISBN 0-89791-439-2.
`“SPX: Global Authentication Using Public Key Certifi
`cates”, Joseph J. Tardo and Kannan Alagappan, IEEE 1991
`(CH2986–8/91/0000/0232).
`“The Digital Distributed System Security Architecture',
`Morrie Gasser, et al., Natl. Inst. of Standards and Tech./
`Natl Computer Security Ctr., 12" National Computer Secu
`rity Conferences, Baltimore, MD Oct. 10–13, 1989.
`U.S. application No. 09/138,107 Rosen filed Aug. 21, 1998.
`* cited by examiner
`
`Petitioner's Exhibit 1011, Page 2
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 1 of 91
`
`US 6,175,921 B1
`
`2
`
`
`
`CUSTOMER
`TRUSTED AGENT
`
`MERCHANDSE:
`TICKETOR
`TICKET & OBJECT
`
`4.
`
`MERCHANT
`TRUSTED AGENT
`
`Figure 1
`
`Petitioner's Exhibit 1011, Page 3
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 2 of 91
`
`US 6,175,921 B1
`
`IDENTIFIER COMPONENTS
`
`ISSUER
`ISSUER
`SGNATURE CERT FCATE
`
`TRANSFER
`HISTORY
`
`SENDER
`SIGNATURES
`
`MERCHANT/
`AUTHORITY
`
`TICKET
`RECEIVER TYPE
`
`as a
`
`a
`
`as
`
`-
`
`a
`
`36
`
`OBJECT
`IDENTFER
`
`DECRYPTION
`KEY
`
`PURCHASE
`PRICE
`
`DATE OF
`PURCHASE
`
`OBJECT
`SIGNATURE
`
`Driver's License
`
`38
`
`40
`
`42
`
`44
`
`46
`
`48
`
`NAME
`
`ADDRESS
`
`PICTURE AND
`PHYSICAL
`DESCRIPTION
`
`SIGNATURE EXPRATION
`OF DRIVER
`
`STATUS
`
`NUSE
`
`Corporate Seal
`
`50
`
`52
`
`54
`
`56
`
`58
`
`60
`
`62
`
`CORPORATE
`NAME
`
`ADDRESS
`
`TAXPAYER
`
`EXPRATION
`DATE
`
`(NUSE
`
`Transportation
`
`64
`
`66
`
`68
`
`70
`
`72
`
`CARRIER
`
`TRIP
`NUMBER DEPARTURE ARRIVAL
`
`PURCHASE
`PRICE
`
`
`
`DATE OF
`PURCHASE
`
`STATUS
`
`IN USE
`
`Event
`
`74
`
`76
`
`78
`
`80
`
`82
`
`84
`
`86
`
`88
`
`EVENT
`ENy LOCATION
`
`SEAT
`NUMBER
`
`PURCHASE DATE OF
`PURCHASE
`
`STATUS
`
`NUSE
`
`Communications
`
`90
`
`92
`
`94
`
`96
`
`98
`
`100
`
`102
`
`104
`
`DATE
`CHANNEL/ PURCHASE
`CARRIER
`OF
`IDENTITY PURCHASED FREOUENCY
`PURCHASE
`
`
`
`DECRYPTION
`KEYS
`
`TIME
`AVAILABLE
`
`
`
`
`106
`
`108
`
`1 TO
`Figure2
`
`12
`
`1 4
`
`1 16
`
`118
`
`Petitioner's Exhibit 1011, Page 4
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 3 of 91
`
`US 6,175,921 B1
`
`
`
`122
`
`Transaction Transaction
`Application Application
`
`Transaction
`Application
`
`Human
`Machine
`Interface
`
`Message
`Manager
`
`Date/Time
`
`Figure 3
`
`Petitioner's Exhibit 1011, Page 5
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 4 of 91
`
`US 6,175,921 B1
`
`
`
`146
`
`52
`
`
`
`
`
`
`
`
`
`
`
`138
`
`EXTERNAL INTERFACE
`
`MESSAGE INTERFACE
`
`SESSION MANAGER
`
`SECURITY MANAGER
`
`140
`
`142
`
`44
`
`TRANSACTOR
`
`TICKETHOLDER
`
`TOMONEY MODULE 150
`
`CRYPTOGRAPHY
`
`SYMMERIC KEY
`
`PUBLIC KEY
`
`DATETTIME
`
`RANDOM NUMBER
`GENERATOR
`
`154
`
`156
`
`Figure 4A
`
`158
`
`
`
`160
`
`162
`
`
`
`170
`
`TO
`HOS
`
`TRAN
`LOG
`
`172
`
`TO
`HOS
`
`
`
`
`
`174
`
`TRAN
`LOG
`
`PRESENT
`TICKET
`
`NITATE
`ACOUIRE
`CREDENTIAL OSPUTE
`
`RESOLVE
`ACOURE
`RECEIVE
`TCKET ICREDENTAL DISPUTE
`
`164
`
`166
`Figure 4B
`
`168
`
`176
`
`177
`Figure 4C
`
`178
`
`18O
`
`182
`
`183
`
`CREATE
`CREDENTAL
`RECEIVE
`TICKET
`
`184
`
`TO HOST
`REVALIDATE
`CREDENTIAL
`
`RAN LOG
`ACOUIRE
`CREDENTIAL
`
`786
`Figure 4D
`
`185
`
`Petitioner's Exhibit 1011, Page 6
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 5 of 91
`
`US 6,175,921 B1
`
`Customer
`Transaction
`Device
`
`188
`
`
`
`
`
`
`
`
`
`Gateway
`Network
`
`WO
`
`Merchant
`Server
`
`194
`
`200
`
`Merchant
`Transaction
`Device
`
`798
`Merchandise
`Server
`
`796
`
`Authority
`Transaction-206
`Device
`
`
`
`202
`
`
`
`
`
`identification
`Authority
`Network
`
`190
`
`Gateway
`Network
`
`
`
`
`
`
`
`
`
`2O8
`
`Trusted
`Agency
`Network
`
`
`
`
`
`200
`
`Trusted
`Server
`
`
`
`210
`
`Primary
`Trusted
`Server
`
`Authority
`Server
`
`204
`
`Trusted
`Server
`
`2OO
`
`Figure 5
`
`Petitioner's Exhibit 1011, Page 7
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 6 of 91
`
`US 6,175,921 B1
`
`
`
`
`
`Primary
`Trusted
`Server
`Certificate (TS)
`
`210
`
`Trusted
`Server
`
`
`
`Certificate (TA)
`Customer
`Trusted
`Agent
`
`
`
`
`
`
`
`Certificate (TA)
`
`Certificate (TA)
`Authority
`Trusted
`Agent
`
`212
`
`
`
`Figure 6A
`
`214
`216
`
`
`
`Communications
`Session Manager
`220
`Untrusted
`218- Security
`List
`Manager
`Manager
`
`Resolve
`O Dispute
`
`228----------------------------------------------------------------
`Symmetric Key
`Public Key
`
`Figure 6B
`
`Petitioner's Exhibit 1011, Page 8
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 7 of 91
`
`US 6,175,921 B1
`
`
`
`
`
`
`
`
`
`TRAN LOGX
`UPDATE TRAN LOG
`
`
`
`
`
`TO HOSTX
`NOTFY END OF TRANSACTION
`
`SESSION MANAGERX
`NOTE END OF SESSION
`
`
`
`Figure 7A
`
`234
`
`
`
`
`
`
`
`
`
`SESSION MANAGERX
`ROLLBACK CHANGES AND
`NOTEAGENTABORTED
`
`TO HOSTX
`SEND MESSAGETO HOST
`TRANSACTION ABORTED
`
`
`
`Figure 7B
`
`Petitioner's Exhibit 1011, Page 9
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 8 of 91
`
`US 6,175,921 B1
`
`OWNER OF TRUSTED AGENT
`A DECDESTO RECERTIFY
`AGENT
`
`
`
`240
`
`HOST TRANSACTION
`APPLICATION CONNECTS TO 242
`TRUSTED SERVER B
`
`ESTABLISH SESSION
`A --> B
`
`SECURITY MANAGERA
`REOUEST NEW PUBLIC AND
`PRIVATE KEY
`w
`PUBLICKEY A
`GENERATE NEW KEYS AND
`SIGN NEW PUBLICKEY WITH
`OLD PRIVATE KEY
`
`248
`
`SECURITY MANAGER A H250
`ASSEMBLE NEW PUBLICKEY
`WITH SIGNATURE AND
`VERSION NUMBER OF
`UNTRUSTED ST IN
`MESSAGE TO B
`
`
`
`SEND MESSAGE
`A --> B
`
`TRUSTED SERVERB
`RECEIVE AS NEW PUBLICKEY
`WITH SIGNATURE AND
`UNTRUSTED LS
`VERSION NUMBER
`
`252
`
`254
`
`TRUSTED SERVER B
`VALIDATESIGNATURE
`
`256
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`R
`Figure 8A
`
`Petitioner's Exhibit 1011, Page 10
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 9 of 91
`
`US 6,175,921 B1
`
`G.)
`
`258
`
`SIGNATURE
`VALD2
`
`- G YES
`
`TRUSTED SERVER B
`CREATE NEW CERTIFICATE
`AND SEND TO AWITH
`UNTRUSTED LIST UPDATE
`AND PRIMARY TRUSTED
`SERVER LIST UPDATE
`
`NO
`
`260
`
`ABORT TRANSACTION
`B --> A
`
`262
`
`SEND MESSAGE
`B --> A
`
`264
`
`SECURITY MANAGER A H.266
`RECEIVE MESSAGE
`
`G)
`
`
`
`
`
`
`
`
`
`PUBLIC KEYA
`VALIDATE CERTIFICATE
`
`
`
`
`
`SECURITY MANAGERA
`UPDATE CERTIFICATE,
`UNTRUSTEDLIST AND
`PRIMARY TRUSTED
`SERVER LIST
`
`SECURITY MANAGERA
`CHECK IF> 3 TIMES
`
`
`
`Figure 8B
`
`Petitioner's Exhibit 1011, Page 11
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 10 of 91
`
`US 6,175,921 B1
`
`W
`COMMIA
`W
`SECURITY MANAGERA
`SEND MESSAGE
`CERTIFICATE UPDATED
`
`288
`
`
`
`
`
`292
`
`SEND MESSAGE
`A --> B
`w
`TRUSTED SERVER B H294
`RECEIVE MESSAGE AND NOTE
`A RECERT FED
`
`
`
`
`
`
`
`276
`TRAN LOGA
`RECORD FALLED TO
`RECERTFY
`
`274
`
`/ 280
`NO
`SECURITY MANAGERA
`SEND MESSAGE
`SIGNATURE NVALID
`W
`
`
`
`
`
`
`
`282
`
`
`
`
`
`SEND MESSAGE
`A --> B
`
`TRUSTED SERVER B
`RECEIVE MESSAGE
`
`Figure 8C
`
`Petitioner's Exhibit 1011, Page 12
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 11 of 91
`
`US 6,175,921 B1
`
`SESSION MANAGERX H296
`REOUEST CERTIFICATE
`
`SECURITY MANAGERX -298
`SEND CERTIFICATE TO
`SESSION MANAGER
`
`SESSION MANAGERX H3OO
`SEND CERTIFICATE TO Y
`
`SESSION MANAGERY 302
`RECEIVE CERTIFICATE
`
`SECURITY MANAGERY H3O4
`RECEIVE CERTIFICATE FROM
`SESSION MANAGER
`
`PUBLICKEYY
`VERIFYX'S CERTIFICATE
`
`306
`
`NO
`
`308
`
`CERTIFICATE
`VALID?
`
`YES
`
`
`
`SECURITY MANAGERY
`CHECK FX IS ON
`UNTRUSTED LIST
`
`314
`
`316
`
`
`
`
`
`Q)
`
`Figure 9A
`
`
`
`SESSION MANAGERY
`NOTESESSION TERMINATED,
`SEND MESSAGE TRANSAC
`TION DENIED TO X
`
`310
`
`Petitioner's Exhibit 1011, Page 13
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 12 of 91
`
`US 6,175,921 B1
`
`
`
`
`
`SESSION MANAGERX
`NOTESESSION
`TERMINATED
`
`RANDOMNUMBER
`GENERATORY
`CREATE RANDOM
`NUMBER R(Y) AND
`Y VERIFICATION MESSAGE
`
`-
`
`
`
`
`
`
`
`
`
`SECURITY MANAGERY
`)
`ASSEMBLE R(Y), Y
`VERIFICATION MESSAGE, AND
`CERT FICATE Y IN MESSAGE TO X
`
`
`
`
`
`
`
`
`
`SESSION MANAGERY
`SEND ENCRYPTED
`MESSAGE TO X
`
`326
`
`PUBLICKEYX
`DECRYPT MESSAGE AND
`VERIFY Y'S CERTIFICATE
`
`330
`
`CERTIFICATE
`WALD2
`
`
`
`NO
`
`Figure 9B
`
`Petitioner's Exhibit 1011, Page 14
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 13 Of 91
`
`US 6,175,921 B1
`
`SESSION MANAGERX 332
`NOTESESSION TERMINATED
`AND SEND MESSAGE
`TRANSACTION DENED TO Y
`
`
`
`
`
`SESSIONMANAGERY H334
`NOTESESS
`59
`
`SECURITY MANAGERX
`CHECKFYIS ON
`UNTRUSTED LIST
`
`NO
`RANDOM NUMBER
`GENERATORX
`CREATE RANDOM NUMBER
`R(X) ANDX VERIFICATION
`MESSAGE
`
`
`
`
`
`
`
`
`
`
`
`
`
`340
`
`342
`
`DATE/TIME X
`PASS CURRENT TIME TO
`SECURITY MANAGER
`
`
`
`
`
`
`
`SECURITY MANAGERX
`FORMSESSION KEY (TA/TA)
`R(X) XOR R(Y) AND ASSEMBLE
`X AND Y VERIFICATION MES
`SAGES, DATE/TIME, AND R(X)
`INA MESSAGE
`
`346
`
`348
`
`
`
`PUBLIC KEYX
`ENCRYPT THE MESSAGE WITH
`Y'S PUBLICKEY
`
`SESSION MANAGERX
`SENDENCRYPTED
`MESSAGETOY
`
`
`
`350
`
`SESSION MANAGERY
`RECEIVE MESSAGE
`
`Figure 9C
`
`Petitioner's Exhibit 1011, Page 15
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 14 of 91
`
`US 6,175,921 B1
`
`
`
`
`
`3.54
`
`PUBLICKEY Y
`DECRYPT MESSAGE
`
`SECURITY MANAGERY
`CHECKY VERIFICATION
`MESSAGE
`356
`
`
`
`
`
`YES
`SESSION MANAGERY
`NOTE START OF SESSION
`
`SECURITY MANAGERY
`FORMSESSION KEY (TA/TA)
`R(X)XOR R(Y)
`
`
`
`
`
`DATETTIME Y
`SEND CURRENTDATE/TIME TO
`SECURITY MANAGER
`
`SECURITY MANAGERY
`ASSEMBLE ACKNOWLEDGE
`MENTX VERIFICATION
`MESSAGE, AND Y'S DATE/
`TIME N A MESSAGE TO X
`
`SEND MESSAGE
`Y--> X
`
`SECURITY MANAGERX
`RECEIVE ACKNOWLEDGE
`MENTX VERIFICATION
`MESSAGE AND Y'S DATE/TIME
`
`
`
`358
`
`
`
`362
`
`364
`
`
`
`366
`
`368
`
`
`
`
`
`
`
`Qs)
`Figure 9D
`
`Petitioner's Exhibit 1011, Page 16
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 15 0f 91
`
`US 6,175,921 B1
`
`SECURITY MANAGERX
`CHECKX VERIFICATION
`MESSAGE
`
`372
`
`
`
`
`
`
`
`374
`
`
`
`SESSION MANAGERX
`NOTESTART OF SESSION
`
`
`
`Figure 9E
`
`Petitioner's Exhibit 1011, Page 17
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 16 0f 91
`
`US 6,175,921 B1
`
`SYMMETRIC KEY X
`ENCRYPT MESSAGE WITH
`SESSION KEY (TA/TA)
`
`MESSAGE INTERFACE X
`FORMAT MESSAGE AND SEND
`TO HOST MESSAGE MANAGER
`
`HOST MESSAGE
`MANAGERX
`ROUTE MESSAGETO
`COMMUNICATIONS
`
`380
`
`
`
`HOST MESSAGE
`MANAGERY
`RECEIVE MESSAGE AND SEND
`TO MESSAGE INTERFACEY
`
`382
`
`MESSAGE INTERFACE Y
`STRIP OUT THE MESSAGE
`
`SYMMETRICKEY Y
`DECRYPT MESSAGE WITH
`SESSION KEY (TA/TA)
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`Figure 10
`
`Petitioner's Exhibit 1011, Page 18
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 17 of 91
`
`US 6,175,921 B1
`
`
`
`
`
`
`
`
`
`
`
`ABORTX
`
`SESSION MANAGERX
`SEND MESSAGE
`TRANSACTION ABORTED
`
`SEND MESSAGE
`X --> Y
`
`
`
`
`
`392
`
`SESSION MANAGERY
`RECEIVE MESSAGE
`
`394
`
`ABORT Y
`
`396
`
`Figure 11
`
`Petitioner's Exhibit 1011, Page 19
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 18 of 91
`
`US 6,175,921 B1
`
`
`
`
`
`
`
`
`
`BUYER TRANSACTION
`APPLICATION (BTA) OF
`CUSTOMER TRANSACTION
`DEVICE CONNECTS TO
`MERCHANTSERVER (MS)
`
`398
`
`CUSTOMERCHOOSES
`MERCHANOISE
`
`400
`
`404
`
`BTA SENDSMS DENTITY OF
`MERCHANDSETO PURCHASE
`
`402
`
`406
`
`
`
`
`
`
`
`BTA SENDS MESSAGE
`TO TRUSTED AGENT A OF
`CUSTOMER TRANSACTION
`DEVICE TO BUY WITH IDENTITY
`OF MERCHANOISE
`
`
`
`
`
`
`
`
`MS SENDS MESSAGETO
`TRUSTED AGENT BOF
`MERCHANT TRANSACTION
`DEVICE TO SELL WITH IDENTITY
`OF MERCHANDSE
`
`
`
`
`
`G
`
`ESTABLISH SESSION
`A --> B
`
`CHECK CREDENTAL
`A --> B
`PURCHASEB
`REOUEST MERCHANDISE
`FROM
`MERCHANDSE SERVER
`
`
`
`
`
`
`
`
`
`
`
`410
`
`412
`
`MERCHANDSE SERVER
`RETRIEVE MERCHANDSE AND
`SEND TO B
`
`474
`
`
`
`PURCHASE 3
`RECEIVE MERCHANDSE AND
`VALIDATE DENTITY
`
`Figure 12A
`
`Petitioner's Exhibit 1011, Page 20
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 19 of 91
`
`US 6,175,921 B1
`
`ABORT TRANSACTION
`B--> A
`
`AUTHORIZATION-BASED
`PAYMENTIREFUND
`A --> B
`
`432
`
`424
`
`
`
`426
`
`
`
`
`
`SEND MESSAGE TO HOST
`TRANSACTION APPLICATION
`REOUESTING PAYMENT
`METHOD
`
`428
`
`ANONYMOUS
`PAYMENT
`
`NO
`
`YES
`MONEY MODULE PAYMENT
`A --> B
`
`430
`
`434
`
`OPEN MERCHAND SE
`
`Figure 12B
`
`Petitioner's Exhibit 1011, Page 21
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 20 of 91
`
`US 6,175,921 B1
`
`
`
`Trusted
`
`Figure 13
`
`Petitioner's Exhibit 1011, Page 22
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 21 of 91
`
`US 6,175,921 B1
`
`RECUEST CREDENTIAL FROM Y
`
`
`
`SEND MESSAGE
`X --> Y
`
`PURCHASEY
`RECEIVE MESSAGE
`
`TICKET HOLDERY
`RETRIEVE CREDENTIAL AND
`SEND TO X
`
`448
`
`450
`
`SEND MESSAGE
`Y --> X
`
`452
`
`SECURITY MANAGERX H454
`VALIDATE CREDENTIAL
`456
`
`NO
`
`
`
`CREDENTIAL
`VALID?
`
`(A)
`
`458
`
`ABORT TRANSACTION
`
`YES
`TO HOSTX
`SEND CREDENTIAL
`INFORMATION TO HTA FOR
`CONFIRMATION
`
`462
`
`YES
`
`4. 6 O
`
`GEND
`
`-->
`
`Figure 14
`
`Petitioner's Exhibit 1011, Page 23
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 22 of 91
`
`US 6,175,921 B1
`
`PURCHASEB
`CHECK F MERCHANDSES
`ONLY ATICKET
`
`
`
`466
`
`
`
`YES
`TICKET HOLDER B
`CREATE TICKET
`
`
`
`
`
`
`
`
`
`
`
`468
`
`470
`
`
`
`
`
`
`
`
`
`PURCHASE A
`RECEIVE MESSAGE AND CHECK
`FTICKET IS CORRECT
`
`476
`
`is <OS YES
`
`PURCHASEA
`SEND TCKET INFORMATION
`TO HOST TRANSACTION
`APPLICATION FOR PURCHASER
`CONFIRMATON
`
`
`
`
`
`
`
`RANDOM NUMBER
`GENERATOR B
`CREATE RANDOM KEY
`
`
`
`494
`
`SYMMETRIC KEY B
`ENCRYPTELECTRONIC OBJECT
`(EO) WITH RANDOM KEY
`
`496
`
`PUBLICKEY B
`SIGN THE ENCRYPTED EO
`
`
`
`
`
`
`
`TCKET HOLDER B
`CREATE DECRYPTION TICKET
`CONTAINING OBJECTDENTIFIER,
`RANDOM KEY, PRICE, SIGNATURE,
`ISSUER CERTIFICATE, ETC.
`
`500
`
`
`
`
`
`
`
`SEND ENCRYPTED OBJECT
`AND DECRYPTIONTICKET TO A
`
`
`
`
`
`
`
`
`
`
`
`SEND MESSAGE
`B --> A
`
`
`
`PURCHASE A
`RECEIVE MESSAGE AND
`PASSENCRYPTED EOTO HOST
`AND RETAIN HEADER
`NFORMATION
`
`504
`
`506
`
`PUBLIC KEY A
`VERIFYENCRYPTEDEO
`SIGNATURE
`
`508
`
`Figure 15A
`
`Petitioner's Exhibit 1011, Page 24
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 23 of 91
`
`US 6,175,921 B1
`
`510
`
`512
`
`YES
`SYMMETRIC KEYA
`DECRYPT HEADER WITH
`RANDOM KEY
`
`
`
`
`
`PURCHASEA
`CHECKDENTITY OF EO AND
`DECRYPTION TICKET
`
`
`
`
`
`IDENTITY
`CORRECT?
`
`518
`
`YES
`PURCHASEA
`SEND DECRYPTED HEADER AND
`PRICE TO HOST TRANSACTION
`APPLICATION FOR PURCHASER
`CONFIRMATION
`
`
`
`
`
`
`
`
`
`
`
`PURCHASEA
`PURCHASE TRANSACTION?
`
`478
`
`YES
`PURCHASEA
`SENDTICKETOTICKET HOLDER
`
`
`
`480
`
`PURCHASE7
`
`484
`
`PAYDSPUTE
`
`492
`
`TICKET HOLDERA
`RECEIVE TICKET
`
`
`
`ABORTRANSACTION
`A --> B
`
`482
`
`Figure 15B
`
`Petitioner's Exhibit 1011, Page 25
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 24 of 91
`
`US 6,175,921 B1
`
`
`
`RANDOM NUMBER
`GENERATOR X
`CREATE RANDOM R(1)
`
`520
`
`SEND MESSAGE MONEY
`MODULE PAYMENT AND R(1)
`
`SEND MESSAGE
`X --> Y
`
`PURCHASE Y
`RECEIVE MESSAGE
`
`SECURITY MANAGERY
`RECEIVER(1)
`
`RANDOM NUMBER
`GENERATORY
`CREATE RANDOM R(2) AND
`SEND TOX
`
`524
`
`526
`
`528
`
`530
`
`SEND MESSAGE
`Y--> X
`
`532
`
`
`
`
`
`
`
`
`
`
`
`
`
`SECURITY MANAGERX
`RECEIVER(2), FORMSESSION
`KEY (TA/MM) R(1) XOR R(2)
`
`SECURITY MANAGERY
`FORMSESSION KEY (TA/MM)
`R(1) XOR R(2)
`
`536
`
`
`
`
`
`
`
`534
`
`Figure 16A
`
`Petitioner's Exhibit 1011, Page 26
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 25 of 91
`
`US 6,175,921 B1
`
`538
`
`
`
`542
`
`NEY MODULE X
`TO MO
`SEND "MAKE PAYMENT." AND
`R(1) TO MONEY MODULE X
`
`
`
`TO MONEY MODULEY
`SEND "RECEIVE PAYMENT." AND
`R(2) TO MONEY MODULEY
`
`540
`
`MONEY MODULE X
`RECEIVE "MAKE PAYMENT"
`AND R(1)
`
`
`
`MONEY MODULEY
`RECEIVE "RECEIVE PAYMENT"
`AND R(2)
`
`544
`
`
`
`
`
`
`
`
`
`ESTABLISHSESSION
`MONEY MODULES
`MMX --> MMY
`VIA SESSION OF TRUSTED
`AGENTS X AND Y
`
`546
`
`M MANTAIN SECURITY XH548
`SEND R(1) TO MMY
`
`SEND ROUTED MESSAGE
`MMX --> MMY
`
`550
`
`MM MANTAIN SECURITY Y-552
`FORM R(1) XOR R(2) SESSION
`KEY (TA/MM) AND SEND
`R(2) TO MMX
`
`
`
`
`
`
`SEND ROUTED MESSAGE
`MM Y-> MMX
`
`554
`
`MMMAINTAIN SECURITYX-.556
`FORM R(1) XOR R(2)
`SESSION KEY (TA/MM)
`
`Figure 16B
`
`Petitioner's Exhibit 1011, Page 27
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 26 of 91
`
`US 6,175,921 B1
`
`
`
`MMTO SUBSCRIBERX
`PROMPT FOR AMOUNT OF
`PAYMENT BYTYPE OF NOTE
`
`560
`
`562
`
`
`
`SEND AMOUNT BYTYPE OF
`NOTE TO MONEY MODULE
`
`
`
`
`
`MMNOTE DIRECTORYX
`CHECKSUFFICIENT FUNDS
`
`
`
`SEND MESSAGE FOR
`SAME AMOUNT BY
`TYPE OF NOTE
`
`
`
`MM PAYEXCHANGE X
`SEND MESSAGE OF AMOUNT
`BYTYPE OF NOTE TO MMY
`
`602
`
`604
`
`
`
`MM TO SUBSCRIBERY
`PROMPT TOVERIFY
`AMOUNT BY
`TYPE OF NOTE
`
`NO
`MMABORT TRANSACTION
`MMX --> MMY
`(E-ROUTED MESSAGES)
`
`
`
`582
`
`Figure 16C
`
`Petitioner's Exhibit 1011, Page 28
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 27 of 91
`
`US 6,175,921 B1
`
`
`
`
`
`
`
`
`
`
`
`61.2
`PURCHASEY
`SEND MESSAGE
`CORRECT AMOUNT
`
`620
`
`MMPAY|EXCHANGEY
`SEND MESSAGE
`AMOUNT BYTYPE
`OF NOTE INCORRECT
`
`SEND E-ROUTED MESSAGE
`
`606 SEND MMITAMEssage Y
`
`608
`
`PURCHASEY
`VERIFY FAMOUNTIS CORRECT
`
`610
`
`YES
`
`
`
`CORRECT
`AMOUNT2
`
`
`
`
`
`NO
`PURCHASE Y
`SEND MESSAGE
`NCORRECT AMOUNT
`y
`616- SEND TA/MM MESSAGE Y
`678
`
`
`
`NO
`
`
`
`CORRECT
`AMOUNT2
`
`
`
`624
`
`YES
`MMPAYEXCHANGE Y
`SEND ACKNOWLEDGEMENT
`
`
`
`626
`
`SEND E-ROUTED MESSAGE
`MMY --> MMX
`
`628
`
`
`
`MM PAYNEXCHANGE X
`RECEIVE ACKNOWLEDGEMENT,
`PASS AMOUNT TO
`MONEY HOLDER
`
`
`
`Qs
`
`Figure 16D
`
`Petitioner's Exhibit 1011, Page 29
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 28 of 91
`
`US 6,175,921 B1
`
`()
`
`MMTRANSFER NOTES
`MMX --> MMY
`(E-ROUTED MESSAGES)
`
`
`
`
`
`
`
`MM. COMMIT
`MMY --> MMX
`(E-ROUTED MESSAGES)
`
`630
`
`632
`
`
`
`584
`
`588
`
`
`
`
`
`
`
`596
`
`ABORTX
`
`
`
`
`
`
`
`SEND MMITA MESSAGE X SEND MMITA MESSAGE Y H586
`
`
`
`SESSION MANAGERX
`CHECK IF PAYMENT
`SUCCESSFUL
`
`SESSION MANAGERY
`CHECK IF PAYMENT
`SUCCESSFUL
`
`590
`
`598
`
`ABORT Y
`
`592
`
`594
`
`PAYMENT
`SUCCESSFUL2
`
`NO
`
`COMMIT Y
`
`
`
`TICKET HOLDERX
`UPDATE TICKET WITH
`PAYMENT INFORMATION
`
`COMMIT X
`
`Figure 16E
`
`Petitioner's Exhibit 1011, Page 30
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 29 of 91
`
`US 6,175,921 B1
`
`MMSYMMETRICKEY X
`ENCRYPT MESSAGE WITH
`SESSION KEY (MM/MM)
`
`MMSESSION MANAGERX
`SEND MESSAGE TO HOST
`MESSAGE MANAGERX
`
`
`
`
`
`
`
`HOST MESSAGE MANAGERX
`SEND MESSAGE TO MESSAGE
`NTERFACE X
`
`MESSAGE INTERFACE X
`SEND MESSAGE TO MESSAGE
`INTERFACEY
`
`
`
`
`
`
`
`
`
`SEND MESSAGE
`X --> Y
`
`648
`
`
`
`MESSAGE INTERFACEY
`SEND MESSAGE TO HOST
`MESSAGE MANAGERY
`
`HOST MESSAGE MANAGERY
`SEND MESSAGE TO MONEY
`MODULEY
`
`MMSESSION MANAGERY
`RECEIVE MESSAGE
`
`
`
`
`
`
`
`
`
`
`MMSYMMETRICKEY Y
`DECRYPT MESSAGE WITH
`SESSION KEY (MM/MM)
`
`
`
`Figure 17
`
`Petitioner's Exhibit 1011, Page 31
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 30 of 91
`
`US 6,175,921 B1
`
`
`
`
`
`MMSYMMETRIC KEY X
`ENCRYPT WITH
`SESSION KEY (TA/MM)
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`MMSESSION MANAGERX
`SEND MESSAGE TO HOST
`
`HOST MESSAGE
`MANAGERX
`SEND MESSAGE TO MESSAGE
`INTERFACE X
`
`662
`
`MESSAGE INTERFACE X
`RECEIVE MESSAGE
`
`
`
`
`
`
`
`SYMMETRIC KEY X
`DECRYPT WITH SESSION KEY
`(TA/MM)
`W
`
`Figure 18
`
`Petitioner's Exhibit 1011, Page 32
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 31 of 91
`
`US 6,175,921 B1
`
`
`
`
`
`SYMMETRIC KEY X
`ENCRYPT WITH SESSION KEY
`(TA/MM)
`
`MESSAGE INTERFACE X
`SEND MESSAGE TO HOST
`
`
`
`
`
`
`
`HOST MESSAGE
`MANAGERX
`SEND MESSAGE TO MM
`SESSION MANAGERX
`
`672
`
`MMSESSION MANAGERX
`RECEIVE MESSAGE
`
`DECRYPT with SESSION KEY
`(TA/MM)
`
`676
`
`
`
`
`
`
`
`
`
`Figure 19
`
`Petitioner's Exhibit 1011, Page 33
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 32 of 91
`
`US 6,175,921 B1
`
`MMSYMMETRIC KEY X
`ENCRYPT MESSAGE WITH
`SESSION KEY (MM/MM)
`
`SEND MIMITA MESSAGE X
`
`
`
`MESSAGE INTERFACE X
`SEND MESSAGE TO MESSAGE
`INTERFACEY
`
`
`
`SEND MESSAGE
`X --> Y
`
`684
`
`MESSAGE INTERFACEY
`RECEIVE MESSAGE
`
`
`
`
`
`
`
`MMSYMMETRICKEY Y
`DECRYPT MESSAGE WITH
`SESSION KEY (MM/MM)
`
`
`
`690
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`Figure20
`
`Petitioner's Exhibit 1011, Page 34
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 33 of 91
`
`US 6,175,921 B1
`
`ABORT TRANSACTION
`Y--> X
`
`
`
`
`
`694
`
`
`
`696
`
`698
`
`TICKETHOLDERX
`RETRIEVE CREDIT CARD OR
`DEBT CARD CREDENTIAL
`
`SEND MESSAGE: CREDENTIAL
`PAYMENT AND CREDENTIAL
`
`SEND MESSAGE
`X--> Y
`
`PURCHASEY
`VALIDATE CREDENTIAL
`
`700
`
`
`
`CREDENTIAL
`VALID?
`
`NO
`
`
`
`704
`
`PURCHASE Y
`CHECKFREFUND
`706
`
`
`
`726
`
`YES
`TO HOST Y
`SEND MESSAGE WITH
`AMOUNT AND CREDENTIAL
`FOR REFUND
`
`
`
`
`
`Figure 21A
`
`Petitioner's Exhibit 1011, Page 35
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 34 of 91
`
`US 6,175,921 B1
`
`CARD AUTHORIZATION
`PROCESS
`
`728
`
`
`
`
`
`
`
`
`
`PURCHASE Y
`CHECK FREFUND AUTHORIZED
`
`730
`
`
`
`
`
`AUTHORIZED?
`
`
`
`PURCHASE Y
`SEND MESSAGE REFUND
`AUTHORIZED
`
`734
`
`
`
`
`
`
`
`
`
`TO HOST Y
`SEND PRICE AND CREDENTIAL
`TO CARD AUTHORIZATION
`NETWORK FOR PAYMENT
`AUTHORIZATION
`
`708
`
`PURCHASE Y
`CHECK F PAYMENT
`AUTHORIZED
`71.4
`
`AUTHORIZED2
`
`710
`
`772
`
`-->
`
`Ge)
`
`
`
`
`
`
`
`720
`
`COMMT Y
`
`PURCHASE Y
`SEND MESSAGE PAYMENT
`AUTHORIZED
`SEND MESSAGE
`Y--> X
`
`716
`
`718
`
`
`
`
`
`722
`
`TICKET HOLDERX
`UPDATE TICKET WITH
`PAYMENT/REFUND
`NFORMATION
`
`724
`
`
`
`COMMIT X
`
`Figure 21B
`
`Petitioner's Exhibit 1011, Page 36
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 35 of 91
`
`US 6,175,921 B1
`
`PURCHASE A
`CHECK F MERCHANDSE IS EO
`738
`
`
`
`
`
`
`
`COMMUNICATIONS
`TICKET WITH
`DECRYPTION KEY?
`
`740
`
`TICKET HOLDERA
`SEND DECRYPTION KEY AND EO
`IDENTIFIER TOHTA
`
`TICKET HOLDERA
`SEND DECRYPTION KEY TO HTA
`
`
`
`
`
`RECEIVE DECRYPTION KEY
`ANDEO DENTFER FOR
`DECRYPTION OF EO
`
`
`
`
`
`RECEIVE DECRYPTION KEY FOR
`DECRYPTION OF COMMUNICATION
`
`
`
`
`
`Figure 22
`
`Petitioner's Exhibit 1011, Page 37
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 36 of 91
`
`US 6,175,921 B1
`
`
`
`
`
`
`
`
`
`
`
`
`
`OWNER OF CUSTOMER
`TRUSTED AGENT AWANTS TO
`RECEIVE SERVICE FROM
`OWNER OF MERCHANT
`TRUSTED AGENT B
`
`750
`
`HOST TRANSACTION
`APPLICATIONA (HTA)
`CONNECTS TO
`HOST TRANSACTION
`APPLICATIONB (HTB)
`
`752
`
`SEND MESSAGE TO TRUSTED
`AGENT ATO PRESENTTICKET
`
`SEND MESSAGE TO TRUSTED
`AGENTBTO RECEIVETICKET
`
`GA)
`
`ESTABLISHSESSION
`
`A --> B
`
`CHECK CREDENTIAL
`
`TICKET HOLDERA
`REOUEST TICKETD FROM
`HOST AND PRESENT LIST
`
`7.58
`
`760
`
`
`
`762
`
`TO HOSTA
`SEND MESSAGE TO TAWITH
`TICKET LIST NORDER TO
`CHOOSETICKET
`
`HTA
`SENDTICKETD TORUSTED
`AGENT A
`
`766
`
`TO HOSTA
`RECEIVE MESSAGE
`
`768
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`Figure 23A
`
`Petitioner's Exhibit 1011, Page 38
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 37 of 91
`
`US 6,175,921 B1
`
`774
`To HOST A
`TO HOSTA
`SEND MESSAGE
`TICKET INACTIVE
`
`
`
`
`
`ABORT TRANSACTION
`A --> B
`
`786
`
`
`
`
`
`
`
`TICKET HOLDERA
`RETRIEVETICKET AND
`CHECK FACTIVE
`772
`
`NO
`
`
`
`
`
`
`
`YES
`
`PRESENT TICKETA
`SEND COPY OF TICKET TO B
`
`
`
`SEND MESSAGE
`A --> B
`
`782
`
`RECEIVE TICKETB
`RECEIVETICKE AND CHECKF
`VALID AND ACTIVE
`784
`
`
`
`
`
`TICKET
`VALID AND
`ACTIVE2
`
`
`
`
`
`TO HOSTB
`NOTIFY HTBTO DELIVER SER
`WICE TO HTA AND VALUE OF
`ASTICKET
`
`790
`
`RECEIVETICKETB
`SEND MESSAGE TO ATHAT
`TICKET IS NUSE
`
`
`
`792
`
`SEND MESSAGE
`B --> A
`
`Figure 23B
`
`Petitioner's Exhibit 1011, Page 39
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 38 of 91
`
`US 6,175,921 B1
`
`
`
`
`
`TICKET HOLDERA
`MARKTICKET IN USE
`
`794
`
`HTANTERACTS WITH HB
`
`
`
`812
`
`
`
`CHECK FOWNER OF HTA. HAS
`COMPLETED TRANSACTION
`
`TRANSACTION
`COMPLETE
`
`
`
`SEND MESSAGE TO HTB
`TRANSACTION COMPLETE
`
`
`
`
`
`SEND MESSAGE TO B
`TRANSACTION COMPLETE AND
`VALUE OF TRANSACTION
`
`COMMITTICKET
`B --> A
`
`820
`
`Figure 23C
`
`Petitioner's Exhibit 1011, Page 40
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 39 of 91
`
`US 6,175,921 B1
`
`
`
`
`
`
`
`
`
`
`
`NOTIFY HTA OF
`INSUFFICIENT VALUE AND
`SEND MESSAGE TO TRUSTED
`AGENT BTHAT TICKET
`|SWALUELESS
`
`
`
`COMMITTICKET
`B --> A
`
`|NOURE IF CUSTOMER
`WISHES TO CONTINUE
`
`804
`
`806
`
`808
`
`
`
`810
`
`YES
`
`PURCHASE OF
`ELECTRONIC MERCHAND SE
`
`Figure 23D
`
`Petitioner's Exhibit 1011, Page 41
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 40 0f 91
`
`US 6,175,921 B1
`
`824
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`RECEIVE TICKETB
`SEND NEWVALUE TO A
`
`SEND MESSAGE
`B --> A
`
`PRESENTTICKETA
`RECEIVE MESSAGE
`
`TICKET HOLDERA
`MARKTICKET NOT IN USE,
`UPDATE VALUE
`
`
`
`
`
`
`
`
`
`
`
`COMMITA
`
`SESSION MANAGERA
`SEND MESSAGE TO BTHAT
`TICKET IS UPDATED
`
`COMMIT B
`
`834
`
`
`
`Figure24
`
`Petitioner's Exhibit 1011, Page 42
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 41 of 91
`
`US 6,175,921 B1
`
`OWNER OF TRUSTED AGENTA
`WANTS TO TRANSFERTICKETS836
`TO TRUSTED AGENTB
`
`
`
`
`
`
`
`HOST TRANSACTION
`APPLICATIONA (HTA)
`CONNECTS TO
`HOST TRANSACTION
`APPLICATIONB (HTB)
`
`838
`
`840
`
`HTA
`SEND MESSAGE TO TRUSTED
`AGENTA TO TRANSFERTICKETS
`
`-842
`HTB
`SEND MESSAGE O TRUSTED
`AGENTBTO RECEIVE TICKETS
`
`ESTABLISH SESSION
`A --> B
`
`TO HOSTA
`SEND MESSAGE TO HOST
`REOUESTING CREDENTIAL
`CHECK
`
`844
`
`846
`
`HTA
`REOUEST OWNER WHETHER
`TO CHECK CREDENTIAL
`
`848
`
`850
`
`RECEIVE REPLY
`852
`
`
`
`CHECK
`CREDENTIAL
`
`
`
`854
`
`- YES
`
`CHECKCREDENTIAL
`A --> B
`
`856
`
`NO
`TCKET HOLDERA
`REOUESTICKETD'S FROM
`HOST AND PRESENT LIST
`
`Figure 25A
`
`Petitioner's Exhibit 1011, Page 43
`
`
`
`U.S. Patent
`
`Jan. 16, 2001
`
`Sheet 42 of 91
`
`US 6,175,921 B1
`
`TO HOST A
`SEND MESSAGE TO HTA WITH
`TICKET LST IN ORDERTO
`CHOOSETICKETS
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`
`SENDTICKETD'STO
`TRUSTE
Accessing this document will incur an additional charge of $.
After purchase, you can access this document again without charge.
Accept $ Charge
Still Working On It
This document is taking longer than usual to download. This can happen if we need to contact the court directly to obtain the document and their servers are running slowly.
Give it another minute or two to complete, and then try the refresh button.
A few More Minutes ... Still Working
It can take up to 5 minutes for us to download a document if the court servers are running slowly.
Thank you for your continued patience.
This document could not be displayed.
We could not find this document within its docket. Please go back to the docket page and check the link. If that does not work, go back to the docket and refresh it to pull the newest information.
Your account does not support viewing this document.
You need a Paid Account to view this document. Click here to change your account type.
Your account does not support viewing this document.
Set your membership
status to view this document.
With a Docket Alarm membership, you'll
get a whole lot more, including:
- Up-to-date information for this case.
- Email alerts whenever there is an update.
- Full text search for other cases.
- Get email alerts whenever a new case matches your search.
One Moment Please
The filing “” is large (MB) and is being downloaded.
Please refresh this page in a few minutes to see if the filing has been downloaded. The filing will also be emailed to you when the download completes.
Your document is on its way!
If you do not receive the document in five minutes, contact support at support@docketalarm.com.
Sealed Document
We are unable to display this document, it may be under a court ordered seal.
If you have proper credentials to access the file, you may proceed directly to the court's system using your government issued username and password.
Access Government Site
