| CPC G06Q 20/38215 (2013.01) [G06Q 20/26 (2013.01); G06Q 20/3829 (2013.01); G06Q 20/4014 (2013.01); H04L 67/562 (2022.05)] | 20 Claims |
|
1. A method comprising:
storing, in a memory of a service provider computer of a service provider, a first public key of the service provider, a second public key of the service provider, a first private key of the service provider, and a second private key of the service provider;
receiving, by the service provider computer, a first data record from a customer computer of a customer, wherein the first data record comprises a first data buffer signed by a private key of the customer and having a public key of the customer associated with the signed first data buffer, wherein the first data buffer includes a first set of parameters specified by the customer;
creating, by the service provider computer, a second data buffer including a second set of parameters specified by the service provider;
signing, by the service provider computer, the second data buffer with the first private key of the service provider;
associating the first public key of the service provider with the signed second data buffer to create a second data record;
combining, by the service provider computer, the first data record and the second data record to create a combined data record;
signing, by the service provider computer, the combined data record with the second private key of the service provider;
associating the second public key of the service provider with the signed combined data record to create a payment token;
further storing, in the memory, the public key of the customer, the first data record comprising the first data buffer, the second data buffer, the second data record, the combined data record, and the payment token;
sending, from the service provider computer to the customer computer, the payment token;
providing, by the service provider to the customer computer, a software service or a hardware service;
receiving, at the service provider computer from the customer computer, the payment token in association with a utilization of the software service or the hardware service by the customer computer;
decrypting, by the service provider computer, the received payment token at the service provider computer using the second public key of the service provider, the decrypting of the received payment token extracting the combined data record;
separating, by the service provider computer, the extracted combined data record into the first data record and the second data record;
decrypting, by the service provider computer, the first data buffer in the first data record of the extracted combined data record using the public key of the customer;
decrypting, by the service provider computer, the second data buffer in the second data record of the extracted combined data record using the first public key of the service provider;
extracting, by the service provider computer, the first set of parameters from the decrypted first data buffer and the second set of parameters from the decrypted second data buffer to obtain payment information for the utilization of the software service or the hardware service by the customer computer;
receiving, at the service provider computer from the customer computer, a revocation of the public key of the customer, wherein the revocation of the public key of the customer comprises a publication of a replacement public key of the customer to a management service of the service provider; and
revoking, by the service provider computer, the payment token responsive to the revocation of the public key of the customer.
|