Method and apparatus for protecting against side channel attacks against personal identification numbers
First Claim
Patent Images
1. A method for private personal identification number (PIN) management, the method comprising:
- receiving a first PIN;
receiving a first key used to scramble a second PIN that has been validated;
receiving a first scrambled PIN comprising said second PIN scrambled with said first key;
scrambling said first PIN with said first key to create a second scrambled PIN; and
validating said first PIN based at least in part on whether said first scrambled PIN matches said second scrambled PIN.
2 Assignments
0 Petitions
Accused Products
Abstract
A method for private personal identification number (PIN) management includes receiving a first PIN, receiving a first key used to scramble a second PIN that has been validated, receiving a first scrambled PIN comprising the second PIN scrambled with the first key, scrambling the first PIN with the first key to create a second scrambled PIN and validating the first PIN based at least in part on whether the first scrambled PIN matches the second scrambled PIN.
-
Citations
82 Claims
-
1. A method for private personal identification number (PIN) management, the method comprising:
-
receiving a first PIN;
receiving a first key used to scramble a second PIN that has been validated;
receiving a first scrambled PIN comprising said second PIN scrambled with said first key;
scrambling said first PIN with said first key to create a second scrambled PIN; and
validating said first PIN based at least in part on whether said first scrambled PIN matches said second scrambled PIN. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method for private personal identification number (PIN) management, the method comprising:
-
receiving a first PIN;
receiving a first key used to scramble a second PIN that has been validated;
receiving a first scrambled PIN comprising said second PIN scrambled with said first key;
scrambling said first PIN with a second key to create a second scrambled PIN;
marking said second scrambled PIN as untested;
scrambling said first PIN with said first key to create a third scrambled PIN; and
marking said second scrambled PIN based at least in part on comparing said first scrambled PIN with said third scrambled PIN. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
-
17. A program storage device readable by a machine, embodying a program of instructions executable by the machine to perform a method for private personal identification number (PIN) management, the method comprising:
-
receiving a first PIN;
receiving a first key used to scramble a second PIN that has been validated;
receiving a first scrambled PIN comprising said second PIN scrambled with said first key;
scrambling said first PIN with said first key to create a second scrambled PIN; and
validating said first PIN based at least in part on whether said first scrambled PIN matches said second scrambled PIN. - View Dependent Claims (18, 19, 20, 21, 22, 23)
-
-
24. A program storage device readable by a machine, embodying a program of instructions executable by the machine to perform a method for private personal identification number (PIN) management, the method comprising:
-
receiving a first PIN;
receiving a first key used to scramble a second PIN that has been validated;
receiving a first scrambled PIN comprising said second PIN scrambled with said first key;
scrambling said first PIN with a second key to create a second scrambled PIN;
marking said second scrambled PIN as untested;
scrambling said first PIN with said first key to create a third scrambled PIN; and
marking said second scrambled PIN based at least in part on comparing said first scrambled PIN with said third scrambled PIN. - View Dependent Claims (25, 26, 27, 28, 29, 30, 31)
-
-
32. An apparatus for private personal identification number (PIN) management, the apparatus comprising:
-
means for receiving a first PIN;
means for receiving a first key used to scramble a second PIN that has been validated;
means for receiving a first scrambled PIN comprising said second PIN scrambled with said first key;
means for scrambling said first PIN with said first key to create a second scrambled PIN; and
means for validating said first PIN based at least in part on whether said first scrambled PIN matches said second scrambled PIN. - View Dependent Claims (33, 34, 35, 36, 37, 38, 39)
-
-
40. An apparatus for private personal identification number (PIN) management, the apparatus comprising:
-
means for receiving a first PIN;
means for receiving a first key used to scramble a second PIN that has been validated;
means for receiving a first scrambled PIN comprising said second PIN scrambled with said first key;
means for scrambling said first PIN with a second key to create a second scrambled PIN;
means for marking said second scrambled PIN as untested;
means for scrambling said first PIN with said first key to create a third scrambled PIN; and
means for marking said second scrambled PIN based at least in part on comparing said first scrambled PIN with said third scrambled PIN. - View Dependent Claims (41, 42, 43, 44, 45, 46, 47)
-
-
48. An apparatus for private personal identification number (PIN) management, the apparatus comprising:
-
a memory for storing at least one key, at least one scrambled PIN, and at least one validity indication, said at least one scrambled PIN comprising said at least one PIN scrambled with said at least one key, said at least one validity indication indicating whether said at least one scrambled PIN been tested; and
a PIN comparator coupled to said memory and configured to receive a first PIN;
receive a first key used to scramble a second PIN that has been validated;
receive a first scrambled PIN comprising said second PIN scrambled with said first key;
scramble said first PIN with said first key to create a second scrambled PIN; and
validate said first PIN based at least in part on whether said first scrambled PIN matches said second scrambled PIN. - View Dependent Claims (49, 50, 51, 52, 53, 54, 55, 56, 57, 58, 59, 60, 61, 62, 63, 64)
-
-
65. An apparatus for private personal identification number (PIN) management, the apparatus comprising:
-
a memory for storing at least one key, at least one scrambled PIN, and at least one validity indication, said at least one scrambled PIN comprising said at least one PIN scrambled with said at least one key, said at least one validity indication indicating whether said at least one scrambled PIN been tested; and
a PIN comparator coupled to said memory and configured to receive a first PIN;
receive a first key used to scramble a second PIN that has been validated;
receive a first scrambled PIN comprising said second PIN scrambled with said first key;
scramble said first PIN with a second key to create a second scrambled PIN;
mark said second scrambled PIN as untested;
scramble said first PIN with said first key to create a third scrambled PIN; and
mark said second scrambled PIN based at least in part on comparing said first scrambled PIN with said third scrambled PIN. - View Dependent Claims (66, 67, 68, 69, 70, 71, 72, 73, 74, 75, 76, 77, 78, 79, 80, 81)
-
-
82. A memory for storing data for access by an application program being executed on a data processing system, comprising:
a data structure stored in said memory, said data structure including information used by said program to determine whether a PIN is valid, said data structure comprising at least one key, at least one scrambled PIN, and at least one validity indication, said at least one scrambled PIN comprising said at least one PIN scrambled with said at least one key, said at least one validity indication indicating whether said at least one scrambled PIN has been tested.
Specification