摘要:
An electronic commerce server connected to a network has access to user data, device data and public key data. The server receives transaction details including a digital signature from a mobile device, the digital signature generated using a first private key associated with a first public key. The server generates a challenge based on the transaction details and transmits the challenge to at least one computing device according to device data associated with the mobile device or user data associated with the user of the mobile device. The server may then receive a response to the challenge from the at least one computing device, the response including a digital signature generated using a second private key associated with a second public key. The server authorizes the transaction based on reading the first digital signature using the first public key and reading the second digital signature using the second public key.
展开