Bio-metric smart card, bio-metric smart card reader, and method of use

US 20020180584A1
Filed: 12/19/2001
Published: 12/05/2002
Est. Priority Date: 04/26/2001
Status: Active Grant

First Claim

Patent Images

1. A device for preventing the unauthorized use of proprietary data, the apparatus comprising:

a user authentication device configured to provide the user an authentication data input for proving the user is authorized to use the account number;

a transaction counting mechanism configured to track authorized device access events;

a processor device in electrical communication with the user authenticator and counter, the processor being programmed to generate a security key in response to authentication data received via the user authenticator, the security key being derived at least in part from the contents of the counter; and

a display unit configured to display the security key on the apparatus.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system for increasing transaction security across existing infrastructure is provided. An activation mechanism sends an activation signal or a signal providing a PIN and/or other data to a processing device. If the data is verifiable, the processing device performs verification. A display unit provides a key, preferably encrypted, upon successful utilization of the sensor device. Included in the key generation mechanism is an indicator of the transaction number or other sequential count indicative of card use. An authorization service reads the key from a transaction communication PIN field and decrypts based on a second sequential count maintained in sync with the first count to determine whether the use is authorized. In one embodiment a clocking mechanism is also utilized in encrypting and decrypting the key. A separate reader may be similarly configured to read existing smart cards utilizing the process of the present invention.

166 Citations

36 Claims

1. A device for preventing the unauthorized use of proprietary data, the apparatus comprising:
- a user authentication device configured to provide the user an authentication data input for proving the user is authorized to use the account number;
  
  a transaction counting mechanism configured to track authorized device access events;
  
  a processor device in electrical communication with the user authenticator and counter, the processor being programmed to generate a security key in response to authentication data received via the user authenticator, the security key being derived at least in part from the contents of the counter; and
  
  a display unit configured to display the security key on the apparatus.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The device of claim 1, wherein the security key is derived from the contents of the counter and a user'"'"'s PIN.
  - 3. The device of claim 2, wherein the security key is encrypted before being displayed.
  - 4. The device of claim 2, further comprising a wireless transmitter to transmit the security key to a network device.
  - 5. The device of claim 4, further comprising a smart card reader, wherein the apparatus can be used with existing smart cards to provide a security key for transactions.
  - 6. The device of claim 2, wherein the apparatus is connected to a computer to authorize transactions on a network.
  - 7. The device of claim 2, wherein the user authenticator is a PIN entry system.
  - 8. The device of claim 1, further comprising a clocking mechanism having an output coupled to the processor device, wherein said processing device also uses the clocking mechanism output to derive the security key.

9. A system for securely processing transactions, the system comprising:
- a security key device, comprising, a user authenticator configured to provide a user an authentication data input for proving the user is authorized to use an account associated with the security device, a first counter in communication with the user authenticator, a key generator in communication with the user authenticator and first counter, the key generator being programmed to generate a security key in response to authentication data received via the user authenticator, the security key being derived at least in part from contents of the first counter, and an electronic display in electrical communication with the key generator, for displaying the security key in a manner visible upon the structure; and
  
  an authorization device, comprising, a second counter, and a key confirmation processor programmed to confirm an authenticity of the security key in a manner at least partially dependent upon the contents of the second counter.
- View Dependent Claims (10, 11, 12, 13, 14, 15, 16, 17, 19, 20, 21, 22, 23, 24, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35)
- - 10. The system of claim 9, wherein the security key is derived at least partially from the contents of the first counter.
  - 11. The system of claim 9, wherein the security key is derived at least partially from the contents of the first counter and a user PIN.
  - 12. The system of claim 10, wherein the key confirmation processor approves a transaction if the contents of the first counter matches contents of the second counter within a predetermined range.
  - 13. The system of claim 10, wherein the security key is encrypted before being displayed and the key confirmation processor decrypts the key in order to authenticate a transaction.
  - 14. The system according to claim 9, wherein:
    - the security key device further comprises a first clocking mechanism having an output coupled to the key generator, and the key generator programming includes use of the clocking mechanism output to generate the security key;
      
      the authorization device further comprises a second clocking mechanism synchronized to the first clocking mechanism, and a second counter; and
      
      the key confirmation processor is programmed to confirm an authenticity of the key in a manner at least partially dependent upon the contents of the second counter and an output of the second clocking mechanism.
  - 15. The device according to claim 14, wherein the clocking mechanisms are based on a time variant device.
  - 16. The device according to claim 14, wherein said clocking mechanisms are based on actual time.
  - 17. The device according to claim 9, wherein the authorization device is configured to retrieve the security key from a PIN field of a received transaction communication.
  - 19. The method of claim 18, wherein the PIN is input by a keypad.
  - 20. The method of claim 18, wherein the security key is generated using an encryption algorithm to process a card key and the first count.
  - 21. The method of claim 20, wherein the transaction is authorized if the first count is within a predefined number of the second count.
  - 22. The method of claim 21, wherein the card key is generated from a master key provided by the account provider and from a user'"'"'s bio-metric data.
  - 23. The method according to claim 21, further comprising the step of:
    - maintaining first and second clocking devices configured to respectively produce first and second clock signals;
      
      wherein;
      
      said step of generating a security key comprises generating a security key in a manner at least partially dependent upon the count and the first clocking device; and
      
      said step of confirming the security key comprises confirming that the security key was generated by an authorized user at least in part through use of the second count and the second clock signal.
  - 24. The method of claim 18, wherein said step of transmitting the security key comprises transmitting the security key in a PIN field of a transaction communication to the authorizing authority.
  - 26. The smart card according to claim 25, wherein:
    - said smart card comprises a credit card sized enclosure;
      
      said display mechanism is disposed on a face of the credit card sized enclosure; and
      
      said programming is stored on a computer readable media disposed on or within the credit card sized enclosure.
  - 27. The smart card according to claim 26, wherein said credit card sized enclosure in a solid flexible material.
  - 28. The smart card according to claim 26, wherein said activation device is a numeric entry system disposed on a face of the credit card sized enclosure.
  - 29. The smart card according to claim 25, wherein said activation device is a button.
  - 30. The smart card according to claim 25, wherein said activation device is a ten key type entry system and said user action is entry of a PIN .
  - 31. The smart card according to claim 25, wherein:
    - said programming is further configured to verify said user action prior to displaying the encrypted key; and
      
      if said programming is unable to verify said user action, then, displaying one of an error message and a non-authentic value.
  - 32. The smart card according to claim 25, further comprising:
    - a bio-metric sensing device coupled to said processing device;
      
      wherein;
      
      said programming is further configured to, retrieve a bio-metric input from said bio-metric sensing device and compare the bio-metric input to a stored bio-metric value prior to one of calculating and displaying the encrypted key, and verify said user action prior to displaying the encrypted key prior to one of calculating and displaying the encrypted key; and
      
      if said comparison of the bio-metric input does not match the bio-metric value, or, if the user action is not verified, then, displaying one of an error message and a non-authentic value instead of the encrypted key.
  - 33. The smart card according to claim 32, wherein said bio-metric sensing device is a fingerprint scanner.
  - 34. The smart card according to claim 25, further comprising:
    - a clocking mechanism configured to produce a time variant clock value;
      
      wherein said programming is further configured to utilize the clock value in producing the encrypted key.
  - 35. The smart card according to claim 34, further comprising:
    - a transaction counter configured to produce a transaction count based on a number of transactions performed utilizing the smart card;
      
      wherein said programming is further configured to utilize the transaction count in producing the encrypted key.

18. A method of securely authorizing a transaction utilizing an account, the method comprising:
- confirming an authorized use of an account card via a PIN provided by a user;
  
  maintaining a first count indicative of a number of instances of such authorized uses;
  
  generating a security key in a manner at least partially dependent upon the count;
  
  transmitting the security key to an authorizing authority;
  
  processing the security key at the authorizing authority;
  
  maintaining a second count indicative of a number of transmissions received by the authorizing authority for the account;
  
  confirming that the security key was generated by an authorized user at least in part through use of the second count; and
  
  authorizing the transaction if the security key was generated by an authorized user.

25. A smart card, comprising, an activation device configured to produce a signal in response to a user action;
- a display mechanism;
  
  a processing device coupled to the display device and configured to receive said signal; and
  
  programming executed by the processing device, said programming configured to produce an encrypted key and display the encrypted key on the display mechanism.

36. A smart card, comprising, an activation device configured to produce a signal in response to a user action;
- a display mechanism;
  
  a processing device coupled to the display device and configured to receive said signal; and
  
  programming executable by the processing device upon receipt of said signal and configured to produce an encrypted key and display the encrypted key on the display mechanism;
  
  wherein;
  
  said smart card comprises a credit card sized enclosure;
  
  said display mechanism is disposed on a face of the credit card sized enclosure;
  
  said programming is stored on a computer readable media disposed on or within the credit card sized enclosure;
  
  said credit card sized enclosure in a solid flexible material;
  
  said activation device is a numeric entry system disposed on a face of the credit card sized enclosure;
  
  said numeric entry system includes a ten key type entry system and said user action is entry of a PIN via the numeric entry system;
  
  said programming is further configured to verify said user action prior to displaying the encrypted key;
  
  if said programming is unable to verify said user action, then, displaying one of an error message and a non-authentic value on the display mechanism;
  
  said smart card further comprises a bio-metric sensing device coupled to said processing device;
  
  said programming is further configured to retrieve a bio-metric input from said bio-metric sensing device and compare the bio-metric input to a stored bio-metric value prior to one of calculating and displaying the encrypted key, said bio-metric sensing device is a fingerprint scanner;
  
  said smart card further comprises a transaction counter configured to track authorized transactions associated with the smart card and a clocking mechanism configured to produce a time varying clock value;
  
  said encrypted key is derived, at least in part, based on the transaction counter and time varying clock value; and
  
  said smart card is capable of communicating with an authorization device that, retrieves the encrypted key from a PIN field of a transaction communication, decrypts the encrypted key using a count from a second transaction counter and a second time varying clock value from a second clocking mechanism synchronized with the first clocking mechanism, and authorizes a transaction if the decrypted key is valid;
  
  the decrypted key being valid if produced by the smart card with a valid PIN and the first and second transaction counters are synchronized within a predetermined number of transactions.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Christopher M. Mcgregor, Mcgregor D. Scott, Travis M. Mcgregor
Original Assignee
Audlem Limited
Inventors
McGregor, D. Scott, McGregor, Christopher M., McGregor, Travis M.

Granted Patent

US 6,954,133 B2
Time in Patent Office

Days
Field of Search
US Class Current

340/5.26
CPC Class Codes

G05B 19/0425   Safety, monitoring

G05B 2219/23342   Pluggable rom, smart card

G05B 2219/24162   Biometric sensor, fingerpri...

G05B 2219/24167   Encryption, password, user ...

G05B 2219/25192   Infrared

G06Q 20/341   Active cards, i.e. cards in...

G06Q 20/3415   Cards acting autonomously a...

G06Q 20/385   using an alias or single-us...

G06Q 20/40145   Biometric identity checks

G06Q 20/4097   using mutual authentication...

G07C 9/257   electronically G07C9/26 tak...

G07C 9/26   using a biometric sensor in...

G07F 7/0886   the card reader being porta...

G07F 7/1008   Active credit-cards provide...

H04L 9/0866   involving user or device id...

Y04S 40/20   Information technology spec...

Bio-metric smart card, bio-metric smart card reader, and method of use

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

166 Citations

36 Claims

Specification

Use Cases

Quick Links

Others

Bio-metric smart card, bio-metric smart card reader, and method of use

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

166 Citations

36 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others