US 9,811,827 B2
System and method for providing transaction verification
Nayer Naguib, Dublin (IE)
Assigned to GOOGLE INC., Mountain View, CA (US)
Filed by GOOGLE INC., Mountain View, CA (US)
Filed on Jan. 25, 2013, as Appl. No. 13/750,143.
Claims priority of provisional application 61/604,171, filed on Feb. 28, 2012.
Prior Publication US 2016/0140547 A1, May 19, 2016
Int. Cl. G06Q 20/38 (2012.01); G06Q 20/40 (2012.01)
CPC G06Q 20/3825 (2013.01) [G06Q 20/401 (2013.01)] 17 Claims
OG exemplary drawing
 
1. A computer-implemented method to provide secure online transactions, comprising:
receiving, by a transaction network server, a set of transaction details from a service provider, the transaction details comprising at least a user identifier and identifying a transaction initiated by a client device associated with the user identifier and registered with the transaction network server;
communicating, by the transaction network server, a transaction verification message to the client device for digital signature by the client device, wherein receipt of the transaction verification message for digital signature causes a user of the client device to switch operation of the client device to a secure operating mode;
generating, by the client device, a digital signature that verifies the transaction, wherein the digital signature is generated by a cryptographic module on the client device only when the client device is operating in the secure operating mode, and wherein the digital signature is not provided to the service provider;
communicating, by the client device, to the transaction network server the digital signature that verified the transaction;
receiving, by the transaction network server, the digital signature communicated from the client device;
verifying, by the transaction network server, the digital signature used by the client device to verify the transaction by comparing the digital signature to a previously registered digital signature stored on the transaction network server and associated with the cryptographic module on the client device; and
instructing the service provider, by the transaction network server, that the secure transaction is approved in response to successful verification of the digital signature by the transaction network server.