Server-enabled chip card interface tamper detection
First Claim
1. A payment reader for exchanging payment information with a chip card and having circuitry to identify an attempt to tamper with a chip card interface of the payment reader, comprising:
- a chip card interface comprising at least a voltage interface, a reset interface, a clock interface, an input/output interface, a ground interface, and a programming interface;
a plurality of chip card lines, comprising;
a voltage line coupled to the voltage interface;
a reset line coupled to the reset interface;
a clock line coupled to the clock interface;
an input/output line coupled to the input/output interface;
a ground line coupled to the ground interface; and
a programming line coupled to the programming interface; and
a communication interface;
a memory having instructions stored thereon;
a processing unit coupled to the chip card interface via the plurality of chip card lines, coupled to the communication interface, and coupled to the memory to execute instructions to;
apply a non-standard signal to one or more of the plurality of chip card lines;
measure a response value for the non-standard signal;
transmit the response value to a payment service system via the communication interface;
determine whether one or more local tamper criteria are satisfied based on the response value, wherein the one or more local tamper criteria are based on one or more communications received from the payment service system; and
identify a tamper attempt when the one or more local tamper criteria are satisfied.
2 Assignments
0 Petitions
Accused Products
Abstract
A payment processing device can implement a monitoring system to detect for tamper attempts at a physical interface such as a chip card interface. The monitoring system can establish local tamper criteria including a baseline when no chip card is present in the chip card interface, or in some embodiments, when it is known that an authentic chip card is present in the slot. During subsequent evaluations of the chip card interface by the monitoring system, a response received by the monitoring system that deviates from the local test criteria can indicate that a tamper attempt at the chip card interface may have occurred. The payment processing device may also communicate test results to a server for further testing, or for an update of the local test criteria.
-
Citations
30 Claims
-
1. A payment reader for exchanging payment information with a chip card and having circuitry to identify an attempt to tamper with a chip card interface of the payment reader, comprising:
-
a chip card interface comprising at least a voltage interface, a reset interface, a clock interface, an input/output interface, a ground interface, and a programming interface; a plurality of chip card lines, comprising; a voltage line coupled to the voltage interface; a reset line coupled to the reset interface; a clock line coupled to the clock interface; an input/output line coupled to the input/output interface; a ground line coupled to the ground interface; and a programming line coupled to the programming interface; and a communication interface; a memory having instructions stored thereon; a processing unit coupled to the chip card interface via the plurality of chip card lines, coupled to the communication interface, and coupled to the memory to execute instructions to; apply a non-standard signal to one or more of the plurality of chip card lines; measure a response value for the non-standard signal; transmit the response value to a payment service system via the communication interface; determine whether one or more local tamper criteria are satisfied based on the response value, wherein the one or more local tamper criteria are based on one or more communications received from the payment service system; and identify a tamper attempt when the one or more local tamper criteria are satisfied. - View Dependent Claims (2, 3)
-
-
4. A transaction device for exchanging information and having circuitry for detecting an attempt to tamper with a contact interface of the transaction device, comprising:
-
a contact interface comprising a plurality of pins; a plurality of contact lines coupled to the pins of the contact interface; a communication interface; a memory having instructions stored thereon; and a processing unit coupled to the contact interface via the plurality of contact lines, to the communication interface, and to the memory to execute the instructions to; apply a non-standard signal to one or more of the plurality of contact lines; measure a response value for the non-standard signal; transmit the response value to a payment service system via the communication interface; determine whether one or more local tamper criteria are satisfied based on the response value; and identify a tamper attempt when the one or more local tamper criteria are satisfied. - View Dependent Claims (5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A method of detecting an attempt to tamper with a contact interface of a transaction device, the method comprising:
-
providing a monitoring system of the transaction device coupled to a contact interface, wherein the monitoring system and the contact interface are coupled to a processing unit of the transaction device; sending, with the monitoring system, a non-standard signal to one or more components of the contact interface; measuring, by the monitoring system, a response value for the non-standard signal; transmitting, via a communication interface of the transaction device, the response value to a payment service system; determining, by the processing unit, whether one or more local tamper criteria are satisfied based on the response value; and identifying a tamper attempt when the one or more local tamper criteria are satisfied. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21)
-
-
22. A non-transitory computer-readable storage medium comprising instructions stored therein, which when executed by one or more processors of a transaction device, cause the one or more processors to perform operations comprising:
-
sending, via a monitoring system of the transaction device coupled to a contact interface, a non-standard signal to one or more components of the contact interface; measuring, via the monitoring system, a response value for the non-standard signal; transmitting, via a communication interface of the transaction device, the response value to a payment service system; determining whether one or more local tamper criteria are satisfied based on the response value; and identifying a tamper attempt when the one or more local tamper criteria are satisfied. - View Dependent Claims (23, 24, 25, 26, 27, 28, 29, 30)
-
Specification