+

AU2001235765A1 - Method and apparatus for internet web site accreditation - Google Patents

Method and apparatus for internet web site accreditation

Info

Publication number
AU2001235765A1
AU2001235765A1 AU2001235765A AU3576501A AU2001235765A1 AU 2001235765 A1 AU2001235765 A1 AU 2001235765A1 AU 2001235765 A AU2001235765 A AU 2001235765A AU 3576501 A AU3576501 A AU 3576501A AU 2001235765 A1 AU2001235765 A1 AU 2001235765A1
Authority
AU
Australia
Prior art keywords
user
browser
web site
url
graphic
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Abandoned
Application number
AU2001235765A
Inventor
Michael Hawkes
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Tradesafely com Ltd
Original Assignee
Tradesafely com Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from EP00301409A external-priority patent/EP1128628A1/en
Priority claimed from GB0004304A external-priority patent/GB2359904A/en
Application filed by Tradesafely com Ltd filed Critical Tradesafely com Ltd
Publication of AU2001235765A1 publication Critical patent/AU2001235765A1/en
Abandoned legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/16Implementing security features at a particular protocol layer
    • H04L63/168Implementing security features at a particular protocol layer above the transport layer
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/90Details of database functions independent of the retrieved data types
    • G06F16/95Retrieval from the web
    • G06F16/957Browsing optimisation, e.g. caching or content distillation
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q30/00Commerce
    • G06Q30/06Buying, selling or leasing transactions
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1441Countermeasures against malicious traffic
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1441Countermeasures against malicious traffic
    • H04L63/1483Countermeasures against malicious traffic service impersonation, e.g. phishing, pharming or web spoofing
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2119Authenticating web pages, e.g. with suspicious links
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2463/00Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00
    • H04L2463/102Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00 applying security measure for e-commerce

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • General Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • Business, Economics & Management (AREA)
  • Physics & Mathematics (AREA)
  • Databases & Information Systems (AREA)
  • General Physics & Mathematics (AREA)
  • Signal Processing (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Accounting & Taxation (AREA)
  • Finance (AREA)
  • Economics (AREA)
  • General Health & Medical Sciences (AREA)
  • Strategic Management (AREA)
  • Marketing (AREA)
  • General Business, Economics & Management (AREA)
  • Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • Development Economics (AREA)
  • Software Systems (AREA)
  • Data Mining & Analysis (AREA)
  • Information Transfer Between Computers (AREA)
  • Medicines Containing Material From Animals Or Micro-Organisms (AREA)
  • Pharmaceuticals Containing Other Organic And Inorganic Compounds (AREA)
  • Diaphragms For Electromechanical Transducers (AREA)
  • Communication Control (AREA)

Abstract

To authenticate an Internet web site, the web site is verified each time it is accessed by a user browser (12). On receipt of a page request, the web site generates a web page into which is embedded a URL site address or other unique identifier. A cookie, link to an image or java applet or similar, for execution of the verification process may also be embedded or may be resident on the user browser. At the user, the browser instantiates the cookie, link to image or applet and extracts the URL site address or unique identifier which is sent, together with user ID to a verification server (16). The server performs comparison, comparing the URL address or unique identifier with a record of the correct identifier and/or URL address. Based on the comparison, an approval status is generated and sent back to the browser. This is displayed as a graphic in the browser or in any other way. The graphic includes an animated portion to increase security. The graphic also includes a user generated code or challenge which is stored on the verification server and which is sent back to the user upon successful authentication.
AU2001235765A 2000-02-23 2001-02-22 Method and apparatus for internet web site accreditation Abandoned AU2001235765A1 (en)

Applications Claiming Priority (5)

Application Number Priority Date Filing Date Title
EP00301409 2000-02-23
EP00301409A EP1128628A1 (en) 2000-02-23 2000-02-23 Method and apparatus for Internet web site authentication
GB0004304A GB2359904A (en) 2000-02-23 2000-02-23 Method and apparatus for internet web site authenication
GB0004304 2000-02-23
PCT/GB2001/000754 WO2001063878A1 (en) 2000-02-23 2001-02-22 Method and apparatus for internet web site accreditation

Publications (1)

Publication Number Publication Date
AU2001235765A1 true AU2001235765A1 (en) 2001-09-03

Family

ID=26073016

Family Applications (1)

Application Number Title Priority Date Filing Date
AU2001235765A Abandoned AU2001235765A1 (en) 2000-02-23 2001-02-22 Method and apparatus for internet web site accreditation

Country Status (9)

Country Link
US (1) US7739512B2 (en)
EP (1) EP1260079B1 (en)
AT (1) ATE272285T1 (en)
AU (1) AU2001235765A1 (en)
CA (1) CA2397934A1 (en)
DE (1) DE60104525T2 (en)
ES (1) ES2228812T3 (en)
IL (2) IL150427A0 (en)
WO (1) WO2001063878A1 (en)

Families Citing this family (68)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
GB9928722D0 (en) * 1999-12-03 2000-02-02 Pope Nicholas H Validation system for secure electronic commerce
KR101015341B1 (en) 2000-04-24 2011-02-16 비자 인터내셔날 써비스 어쏘시에이션 Online payer authentication service
GB0127509D0 (en) * 2001-11-16 2002-01-09 Comodo Res Lab Ltd Improvements in and relating to web site authentication
US7707120B2 (en) 2002-04-17 2010-04-27 Visa International Service Association Mobile account authentication service
US7100049B2 (en) * 2002-05-10 2006-08-29 Rsa Security Inc. Method and apparatus for authentication of users and web sites
US7730321B2 (en) 2003-05-09 2010-06-01 Emc Corporation System and method for authentication of users and communications received from computer systems
US7562222B2 (en) 2002-05-10 2009-07-14 Rsa Security Inc. System and method for authenticating entities to users
US7966492B1 (en) 2002-05-10 2011-06-21 Emc Corporation System and method for allowing an e-mail message recipient to authenticate the message
US7539726B1 (en) 2002-07-16 2009-05-26 Sonicwall, Inc. Message testing
US8924484B2 (en) 2002-07-16 2014-12-30 Sonicwall, Inc. Active e-mail filter with challenge-response
US8396926B1 (en) 2002-07-16 2013-03-12 Sonicwall, Inc. Message challenge response
US8019691B2 (en) 2002-09-10 2011-09-13 Visa International Service Association Profile and identity authentication service
JP4282312B2 (en) * 2002-11-27 2009-06-17 富士通株式会社 Web server, Web server having Java servlet function, and computer program
US8751801B2 (en) 2003-05-09 2014-06-10 Emc Corporation System and method for authenticating users using two or more factors
US9412123B2 (en) 2003-07-01 2016-08-09 The 41St Parameter, Inc. Keystroke analysis
US10999298B2 (en) 2004-03-02 2021-05-04 The 41St Parameter, Inc. Method and system for identifying users and detecting fraud by use of the internet
GB2412189B (en) * 2004-03-16 2007-04-04 Netcraft Ltd Security component for use with an internet browser application and method and apparatus associated therewith
US8762283B2 (en) 2004-05-03 2014-06-24 Visa International Service Association Multiple party benefit from an online authentication service
US8281401B2 (en) * 2005-01-25 2012-10-02 Whitehat Security, Inc. System for detecting vulnerabilities in web applications using client-side application interfaces
JP2006244081A (en) * 2005-03-02 2006-09-14 Fuji Xerox Co Ltd Server with authentication function and method
US7734911B2 (en) 2005-05-31 2010-06-08 Tricipher, Inc. Secure login using augmented single factor split key asymmetric cryptography
US11301585B2 (en) 2005-12-16 2022-04-12 The 41St Parameter, Inc. Methods and apparatus for securely displaying digital images
US8938671B2 (en) 2005-12-16 2015-01-20 The 41St Parameter, Inc. Methods and apparatus for securely displaying digital images
US8151327B2 (en) 2006-03-31 2012-04-03 The 41St Parameter, Inc. Systems and methods for detection of session tampering and fraud prevention
US20080072295A1 (en) * 2006-09-20 2008-03-20 Nathaniel Solomon Borenstein Method and System for Authentication
US8356333B2 (en) * 2006-12-12 2013-01-15 Bespoke Innovations Sarl System and method for verifying networked sites
US20090077373A1 (en) * 2007-09-13 2009-03-19 Columbus Venture Capital S. A. R. L. System and method for providing verified information regarding a networked site
US8683201B2 (en) * 2007-10-16 2014-03-25 D&B Business Information Solutions Limited Third-party-secured zones on web pages
US8635535B2 (en) * 2007-10-16 2014-01-21 D&B Business Information Solutions Limited Third-party-secured zones on web pages
US8353016B1 (en) 2008-02-29 2013-01-08 Adobe Systems Incorporated Secure portable store for security skins and authentication information
US8555078B2 (en) 2008-02-29 2013-10-08 Adobe Systems Incorporated Relying party specifiable format for assertion provider token
US8220035B1 (en) 2008-02-29 2012-07-10 Adobe Systems Incorporated System and method for trusted embedded user interface for authentication
US8171533B2 (en) * 2008-09-29 2012-05-01 International Business Machines Corporation Managing web single sign-on applications
US20100125738A1 (en) * 2008-11-14 2010-05-20 Industrial Technology Research Institute Systems and methods for transferring information
US9112850B1 (en) 2009-03-25 2015-08-18 The 41St Parameter, Inc. Systems and methods of sharing information through a tag-based consortium
US20120059712A1 (en) * 2009-12-11 2012-03-08 Stalker James R Web enhancing systems and methods
KR20120024315A (en) * 2010-09-06 2012-03-14 삼성전자주식회사 Display system and method for ui framework
EP2619669B1 (en) 2010-09-22 2023-11-01 The Nielsen Company (US), LLC Methods and apparatus to determine impressions using distributed demographic information
US9361597B2 (en) 2010-10-19 2016-06-07 The 41St Parameter, Inc. Variable risk engine
US9628875B1 (en) 2011-06-14 2017-04-18 Amazon Technologies, Inc. Provisioning a device to be an authentication device
US9639825B1 (en) * 2011-06-14 2017-05-02 Amazon Technologies, Inc. Securing multifactor authentication
KR101086451B1 (en) * 2011-08-30 2011-11-25 한국전자통신연구원 Client screen tamper defense device and method
US10754913B2 (en) 2011-11-15 2020-08-25 Tapad, Inc. System and method for analyzing user device information
CN103220259B (en) * 2012-01-20 2016-06-08 华为技术有限公司 The use of Oauth API, call method, equipment and system
US9633201B1 (en) 2012-03-01 2017-04-25 The 41St Parameter, Inc. Methods and systems for fraud containment
US9047456B2 (en) 2012-03-20 2015-06-02 Canon Information And Imaging Solutions, Inc. System and method for controlling access to a resource
US9521551B2 (en) 2012-03-22 2016-12-13 The 41St Parameter, Inc. Methods and systems for persistent cross-application mobile device identification
CA2870166C (en) 2012-04-13 2020-07-21 Ologn Technologies Ag Secure zone for digital communications
TW201403375A (en) 2012-04-20 2014-01-16 歐樂岡科技公司 Safe area for safe purchase
EP2880619A1 (en) 2012-08-02 2015-06-10 The 41st Parameter, Inc. Systems and methods for accessing records via derivative locators
WO2014078569A1 (en) 2012-11-14 2014-05-22 The 41St Parameter, Inc. Systems and methods of global identification
EP2760183A1 (en) * 2013-01-28 2014-07-30 British Telecommunications public limited company System for detecting hyperlink faults
US11176546B2 (en) 2013-03-15 2021-11-16 Ologn Technologies Ag Systems, methods and apparatuses for securely storing and providing payment information
KR101321721B1 (en) * 2013-03-20 2013-10-28 주식회사 시큐브 System and method for identifying legitimate authentication message
US10902327B1 (en) 2013-08-30 2021-01-26 The 41St Parameter, Inc. System and method for device identification and uniqueness
US10956947B2 (en) 2013-12-23 2021-03-23 The Nielsen Company (Us), Llc Methods and apparatus to measure media using media object characteristics
US10091312B1 (en) 2014-10-14 2018-10-02 The 41St Parameter, Inc. Data structures for intelligently resolving deterministic and probabilistic device identifiers to device profiles and/or groups
MX2017007253A (en) 2014-12-05 2017-10-16 Wal Mart Stores Inc System and method for generating globally-unique identifiers.
WO2016114822A1 (en) * 2015-01-16 2016-07-21 Cyph Inc. A system and method of cryprographically signing web applications
US9954837B2 (en) 2015-01-07 2018-04-24 Cyph, Inc. Method of multi-factor authenication during encrypted communications
KR101686181B1 (en) * 2015-01-12 2016-12-28 주식회사 엔터플 Method and apparatus for secured communication using predefined url
WO2017058823A1 (en) 2015-09-28 2017-04-06 Wal-Mart Stores, Inc. Cloud based session management system
US10404778B2 (en) 2015-12-09 2019-09-03 Walmart Apollo, Llc Session hand-off for mobile applications
US20180322465A1 (en) * 2017-05-05 2018-11-08 A Resume Company Inc. Embeddable web-authenticated instant job integration system and method
US10860703B1 (en) * 2017-08-17 2020-12-08 Walgreen Co. Online authentication and security management using device-based identification
US11164206B2 (en) * 2018-11-16 2021-11-02 Comenity Llc Automatically aggregating, evaluating, and providing a contextually relevant offer
US10880331B2 (en) * 2019-11-15 2020-12-29 Cheman Shaik Defeating solution to phishing attacks through counter challenge authentication
CN112037332B (en) * 2020-09-28 2023-09-05 北京百度网讯科技有限公司 Browser display verification method, device, computer equipment and storage medium

Family Cites Families (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP3361661B2 (en) 1995-09-08 2003-01-07 株式会社キャディックス Authentication method on the network
US5892904A (en) 1996-12-06 1999-04-06 Microsoft Corporation Code certification for network transmission
US5968119A (en) 1996-12-09 1999-10-19 Wall Data Incorporated Method of accessing information of an SNA host computer from a client computer using a specific terminal emulation
US6029245A (en) 1997-03-25 2000-02-22 International Business Machines Corporation Dynamic assignment of security parameters to web pages
US6018724A (en) 1997-06-30 2000-01-25 Sun Micorsystems, Inc. Method and apparatus for authenticating on-line transaction data
US6023764A (en) 1997-10-20 2000-02-08 International Business Machines Corporation Method and apparatus for providing security certificate management for Java Applets
JPH11175474A (en) 1997-12-10 1999-07-02 Machine Contorol System Kk Login manager for wave server
JPH11232286A (en) * 1998-02-12 1999-08-27 Hitachi Ltd Information retrieval system
US6018801A (en) * 1998-02-23 2000-01-25 Palage; Michael D. Method for authenticating electronic documents on a computer network

Also Published As

Publication number Publication date
US7739512B2 (en) 2010-06-15
DE60104525D1 (en) 2004-09-02
CA2397934A1 (en) 2001-08-30
DE60104525T2 (en) 2005-09-01
US20080196084A1 (en) 2008-08-14
EP1260079B1 (en) 2004-07-28
ATE272285T1 (en) 2004-08-15
WO2001063878A1 (en) 2001-08-30
EP1260079A1 (en) 2002-11-27
IL150427A0 (en) 2002-12-01
IL150427A (en) 2007-07-04
ES2228812T3 (en) 2005-04-16

Similar Documents

Publication Publication Date Title
AU2001235765A1 (en) Method and apparatus for internet web site accreditation
CN102300182B (en) Short-message-based authentication method, system and device
US6226750B1 (en) Secure session tracking method and system for client-server environment
US7251827B1 (en) In-line sign in
CN100559321C (en) Content distribution site spoofing detects
ATE524897T1 (en) METHOD AND SYSTEM FOR AUTHENTICATING A USER USING A MOBILE TELEPHONE DEVICE
US20030163691A1 (en) System and method for authenticating sessions and other transactions
US20030079143A1 (en) One pass security
PL363770A1 (en) Method and system designed to authenticate user for sub-location of network location
EP1345386A3 (en) Method of controlling network access in wireless environment and recording medium therefor
KR20050058296A (en) Method and system for monitoring user interaction with a computer
NZ541711A (en) Human factors authentication using abstract definitions of viewable or audible objects
CA2620785A1 (en) Method, system and apparatus for game data transmission
CN101150407A (en) Network identity verification method based on fingerprint
US7555655B2 (en) Apparatus, system, and method for generating and authenticating a computer password
WO2002065258A3 (en) Method and apparatus for authenticating embedded software in a remote unit over a communications channel
EP1046976A3 (en) Method and apparatus for enabling a user to authenticate a system prior to providing any user-privileged information
CN101170408A (en) Method and system for realizing agent certification based on identity authentication mode including random information
US20030065789A1 (en) Seamless and authenticated transfer of a user from an e-business website to an affiliated e-business website
CN101072443B (en) Identity authenticating information generating method, and automatic identity authenticating method and device
US20040267946A1 (en) Server access control
CN104301285B (en) Login method for web system
EP1128628A1 (en) Method and apparatus for Internet web site authentication
JP2000276443A5 (en)
JP2002198955A (en) Weighted security system for network communication
点击 这是indexloc提供的php浏览器服务,不要输入任何密码和下载