Method and system for rendering secure pin entry

US 20030088794A1
Filed: 11/05/2002
Published: 05/08/2003
Est. Priority Date: 11/05/2001
Status: Abandoned Application

First Claim

Patent Images

1. A method for securely providing a PIN to a security token being separated from a host system, comprising:

(a) providing means for rendering said PIN, said means being separate to said host system;

(b) rendering said PIN by said means; and

(c) providing the rendered PIN to said security token;

thereby securely providing said PIN to said security token.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present invention is related to Secure PIN Entry in conjunction with security tokens. In one aspect, the present invention is directed to a method for securely providing a PIN to a security token. In another aspect, the present invention is directed to a method for securely providing a PIN by a security token to a host system. The PIN is rendered separately from the host, thereby the provision of the PIN is carried out in a secure manner, therefore cannot be “hacked”.

Citations

16 Claims

1. A method for securely providing a PIN to a security token being separated from a host system, comprising:
- (a) providing means for rendering said PIN, said means being separate to said host system;
  
  (b) rendering said PIN by said means; and
  
  (c) providing the rendered PIN to said security token;
  
  thereby securely providing said PIN to said security token.
- View Dependent Claims (2, 3, 4, 5)
- - 2. A method according to claim 1, wherein said means for rendering said PIN being also separated from said security token and conveyed to said security token via data communication means.
  - 3. A method according to claim 1, wherein said rendering said PIN is carried out by one or more operations selected from a group comprising retrieving said PIN from a pre-stored memory, inputting said PIN by a user, inputting a biometric input and converting said input to a PIN, generating said PIN by processing.
  - 4. A method according to claim 3, wherein said inputting said PIN is carried out by the means selected from a group comprising a keyboard, a remote keyboard, a personal handheld device, and biometric input means.
  - 5. A method according to claim 2, wherein said communication means are selected from a group comprising wired communication means, and wireless communication means.

6. A method for securely providing a PIN by a security token to a host system, comprising the steps of a) providing authenticating means separated from said host system, for authenticating users;
- b) authenticating a user by said authenticating means;
  
  c) in response to positively authenticating said user, providing said PIN by said security token to said host system; and
  
  /or d) in response to failing to authenticate said user, sending by said security token to said host system a corresponding failure notice;
  
  thereby securely providing said PIN to said host system.
- View Dependent Claims (7, 8, 9, 10)
- - 7. A method according to claim 6, wherein said authenticating a user is carried out by:
    - inputting an authenticating signal from said user; and
      
      testing if said authenticating signal corresponds to a signal expected from an authentic user.
  - 8. A method according to claim 6, wherein said authenticating a user is fully carried out by said security token.
  - 9. A method according to claim 6, wherein said authenticating a user is partly carried out by said security token, and partly carried out by a separate device to said security token and to said host system.
  - 10. A method according to claim 6, wherein said authenticating a user is carried out by one or more separate devices to said security token

11. A system for securely providing a PIN to a host system through a security token, comprising:
- input means, for inputting an authenticating signal from a user to be authenticated; and
  
  /or testing means, for testing the correspondence of said authenticating signal to a signal expected from an authentic user;
  
  said input means and/or said testing means being separate to said host system, thereby securely providing said PIN to said host system.
- View Dependent Claims (12, 13, 14, 15, 16)
- - 12. A system according to claim 11, further comprising:
    - a separate device to said security token, for hosting said input means and/or for hosting said testing means, and communication means for communicating with said security token;
      
      communication means on said security token, for communicating with said separate device.
  - 13. A system according to claim 11, wherein said security token is used as the platform to said input means and/or said testing means
  - 14. A system according to claim 11, wherein said testing means is in the form of an executable computer code.
  - 15. A system according to claim 11, wherein said input means is selected from a group comprising a keyboard, a remote keyboard, a personal handheld device, and biometric input means.
  - 16. A system according to claim 15, wherein said biometric input is selected from a group comprising voice, fingerprint, image, and retina.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Aladdin Knowledge Systems Limited (Thales SA)
Original Assignee
Aladdin Knowledge Systems Limited (Thales SA)
Inventors
Agam, Leedor, Margalit, Yanki, Margalit, Dany

Application Number

US10/287,689
Publication Number

US 20030088794A1
Time in Patent Office

Days
Field of Search
US Class Current

713/202
CPC Class Codes

H04L 63/0853 using an additional device,...

H04L 63/18 using different networks or...

Method and system for rendering secure pin entry

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

Citations

16 Claims

Specification

Solutions

Use Cases

Quick Links

Method and system for rendering secure pin entry

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

16 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links