Systems and methods for cryptographic authentication of contactless cards

US 10,581,611 B1
Filed: 11/29/2018
Issued: 03/03/2020
Est. Priority Date: 10/02/2018
Status: Active Grant

First Claim

Patent Images

1. A data transmission system comprising:

a transmitting device having a processor and memory, the memory of the transmitting device containing a diversified master key, transmission data and a counter value;

an authentication server having a processor and memory, the memory of the authentication server containing a master key;

wherein the transmitting device is configured to;

generate a diversified key using the diversified master key, one or more cryptographic algorithms, and the counter value, and store the diversified key in the memory of the transmitting device,generate a cryptographic result including the counter value using one or more cryptographic algorithms and the diversified key,encrypt the transmission data using the one or more cryptographic algorithms and the diversified key to yield encrypted transmission data, andtransmit the cryptographic result and encrypted transmission data to the authentication server via one or more intermediary devices; and

wherein the authentication server is configured to;

generate an authentication diversified key based on the master key and a unique identifier, and store the authentication diversified key in the memory of the authentication server,generate a session key based on the authentication diversified key and the cryptographic result, anddecrypt the encrypted transmission data and validate the cryptographic result using the one or more cryptographic algorithms and the session key,wherein the counter value is independently updated by the transmitting device and the authentication server for each transmission between the transmitting device and the authentication server.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Example embodiments of systems and methods for data transmission system between transmitting and receiving devices are provided. In an embodiment, each of the transmitting and receiving devices can contain a master key. The transmitting device can generate a diversified key using the master key, protect a counter value and encrypt data prior to transmitting to the receiving device, which can generate the diversified key based on the master key and can decrypt the data and validate the protected counter value using the diversified key.

Citations

20 Claims

1. A data transmission system comprising:
- a transmitting device having a processor and memory, the memory of the transmitting device containing a diversified master key, transmission data and a counter value;
  
  an authentication server having a processor and memory, the memory of the authentication server containing a master key;
  
  wherein the transmitting device is configured to;
  
  generate a diversified key using the diversified master key, one or more cryptographic algorithms, and the counter value, and store the diversified key in the memory of the transmitting device,generate a cryptographic result including the counter value using one or more cryptographic algorithms and the diversified key,encrypt the transmission data using the one or more cryptographic algorithms and the diversified key to yield encrypted transmission data, andtransmit the cryptographic result and encrypted transmission data to the authentication server via one or more intermediary devices; and
  
  wherein the authentication server is configured to;
  
  generate an authentication diversified key based on the master key and a unique identifier, and store the authentication diversified key in the memory of the authentication server,generate a session key based on the authentication diversified key and the cryptographic result, anddecrypt the encrypted transmission data and validate the cryptographic result using the one or more cryptographic algorithms and the session key,wherein the counter value is independently updated by the transmitting device and the authentication server for each transmission between the transmitting device and the authentication server.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The data transmission system of claim 1, wherein the one or more cryptographic algorithms comprises at least one selected from the group of a symmetric encryption algorithm, an HMAC algorithm, and a CMAC algorithm.
  - 3. The data transmission system of claim 1, wherein the counter value comprises a one-time passcode.
  - 4. The data transmission system of claim 1, wherein the one or more cryptographic algorithms used to generate the cryptographic result include a cryptographic MAC function.
  - 5. The data transmission system of claim 1, wherein a unique diversified session key is generated for each transmission between the transmitting device and the authentication server.
  - 6. The data transmission system of claim 5, wherein the unique diversified session key is generated using a portion of the counter value.
  - 7. The data transmission system of claim 5, wherein the unique diversified session key is generated utilizing a different counter value.
  - 8. The data transmission system of claim 1, wherein the master key is limited to a predetermined number of uses.
  - 9. The data transmission system of claim 1, wherein the master key is limited to use during a predetermined time period.
  - 10. The data transmission system of claim 1, wherein the transmitting device comprises a payment card and the transmission data comprises activation data for the payment card.

11. A method for transmitting data by a contactless card having a processor and a memory, the memory containing a master key, an identification number, and a counter, the method comprising:
- generating a card key using the master key and the identification number;
  
  generating a first session key using the card key and a first portion of the counter and a second session key using the card key and a second portion of the counter, wherein the first portion of the counter is different than the second portion of the counter;
  
  generating a cryptographic result including the counter using one or more cryptographic algorithms and the card key;
  
  generating a cryptogram using the first session key, the cryptogram including the cryptographic result and the identification number;
  
  encrypting the cryptogram using the second session key; and
  
  transmitting the encrypted cryptogram and the cryptographic result.
- View Dependent Claims (12, 13, 14, 15, 16, 17, 18)
- - 12. The method for transmitting data of claim 11, wherein the contactless card comprises a payment card and the cryptogram includes activation data for the payment card.
  - 13. The method for transmitting data of claim 11, wherein a version number is stored in the memory and the version number is associated with a set of rules for interpreting the cryptogram.
  - 14. The method for transmitting data of claim 11, wherein the cryptogram includes a shared secret comprising a random number.
  - 15. The method for transmitting data of claim 11, wherein the counter is updated each time the first and second session keys are generated.
  - 16. The method for transmitting data of claim 13, further comprising transmitting the version number, the identification number, and the counter to an authentication server for validation of the cryptogram.
  - 17. The method for transmitting data of claim 16, wherein the contactless card includes a communication chip and transmits at least one of the version number, the identification number, and the counter via near field communication.
  - 18. The method for transmitting data of claim 11, wherein the master key is generated using a network profile record identifier and a derivation key index.

19. A contactless card comprising:
- a substrate;
  
  a memory containing one or more applets, a counter value, and at least one key;
  
  a communication interface; and
  
  one or more processors in communication with the memory and communication interface,wherein;
  
  the contactless card is configured to update the counter value after a first near-field communication (NFC) read of a NFC data exchange format (NDEF) tag via the communication interface,upon updating the counter value, the contactless card is configured to create a first key using the at least one key and a first portion of the updated counter value, and create a second key using the at least one key and a second portion of the updated counter value, wherein the first portion of the updated counter value is different than the second portion of the updated counter value,the contactless card is configured to create a cryptogram using the first key, concatenate the cryptogram with a random number, and encrypt the cryptogram and random number concatenated thereto using the second key, andthe encrypted cryptogram and the updated counter value are transmitted from the contactless card, via a second NFC read of the NDEF tag via the communication interface.
- View Dependent Claims (20)
- - 20. The contactless card of claim 19, wherein the contactless card comprises a payment card and the cryptogram includes activation data for the payment card.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Capital One Services LLC (Capital One Financial Corporation)
Original Assignee
Capital One Services LLC (Capital One Financial Corporation)
Inventors
Osborn, Kevin, Rule, Jeffrey, Moreton, Paul, Duane, William, Hart, Colin, Newman, Kaitlin, Mossler, Lara, Herrington, Daniel, Chigurupati, Srinivasa, Prince, Ian, Lutz, Wayne
Primary Examiner(s)
Korsak, Oleg

Application Number

US16/205,119
Time in Patent Office

460 Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/35   communicating wirelessly

G06F 21/602   Providing cryptographic fac...

G06F 21/606   by securing the transmissio...

G06F 21/6245   Protecting personal data, e...

G06F 21/77   in smart cards

G06K 19/07309   Means for preventing undesi...

G06K 7/10297   arrangements for handling p...

G06Q 10/087   Inventory or stock manageme...

G06Q 20/108   Remote banking, e.g. home b...

G06Q 20/12   specially adapted for elect...

G06Q 20/204   comprising interface for re...

G06Q 20/227   characterised in that multi...

G06Q 20/32   using wireless devices

G06Q 20/3226   Use of secure elements sepa...

G06Q 20/3278   RFID or NFC payments by mea...

G06Q 20/34   using cards, e.g. integrate...

G06Q 20/352   Contactless payments by cards

G06Q 20/354   Card activation or deactiva...

G06Q 20/3552   Downloading or loading of p...

G06Q 20/3563   Software being resident on ...

G06Q 20/36 : using electronic wallets or...

G06Q 20/3674 : involving authentication

G06Q 20/382 : insuring higher security of...

G06Q 20/3823 : combining multiple encrypti...

G06Q 20/3825 : Use of electronic signatures

G06Q 20/3829 : involving key management

G06Q 20/40 : Authorisation, e.g. identif...

G06Q 20/401 : Transaction verification

G06Q 20/4014 : Identity check for transact...

G06Q 20/409 : Device specific authenticat...

G06Q 20/4097 : using mutual authentication...

G06Q 20/40975 : using encryption therefor

G07F 7/0893 : the card reader reading the...

G07F 7/122 : Online card verification

G07F 9/001 : Interfacing with vending ma...

H04B 5/24 : Inductive coupling

H04B 5/43 : Antennas

H04B 5/77 : for interrogation

H04L 2209/56 : Financial cryptography, e.g...

H04L 2209/805 : Lightweight hardware, e.g. ...

H04L 2463/102 : applying security measure f...

H04L 63/0428 : wherein the data content is...

H04L 63/068 : using time-dependent keys, ...

H04L 63/08 : for authentication of entit...

H04L 63/0807 : using tickets, e.g. Kerbero...

H04L 63/0853 : using an additional device,...

H04L 63/1441 : Countermeasures against mal...

H04L 9/002 : Countermeasures against att...

H04L 9/0625 : with splitting of the data ...

H04L 9/0631 : Substitution permutation ne...

H04L 9/0637 : Modes of operation, e.g. ci...

H04L 9/0643 : Hash functions, e.g. MD5, S...

H04L 9/0822 : using key encryption key

H04L 9/0825 : using asymmetric-key encryp...

H04L 9/0861 : Generation of secret inform...

H04L 9/0863 : involving passwords or one-...

H04L 9/0866 : involving user or device id...

H04L 9/0891 : Revocation or update of sec...

H04L 9/0897 : involving additional device...

H04L 9/14 : using a plurality of keys o...

H04L 9/3228 : One-time or temporary data,...

H04L 9/3234 : involving additional secure...

H04L 9/3242 : involving keyed hash functi...

H04L 9/3271 : using challenge-response

H04W 12/041 : Key generation or derivation

H04W 12/108 : Source integrity

H04W 12/47 : using near field communicat...

H04W 4/80 : Services using short range ...

View All

Systems and methods for cryptographic authentication of contactless cards

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Systems and methods for cryptographic authentication of contactless cards

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links