Self-service terminal

US 20060020788A1
Filed: 06/22/2005
Published: 01/26/2006
Est. Priority Date: 07/02/2004
Status: Abandoned Application

First Claim

Patent Images

1. A self-service terminal comprising:

a core unit including a processor;

one or more peripheral devices operable to communicate with the core; and

means for encrypting signals for sending between the core and the one or more peripheral devices.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A self-service terminal comprising a core unit (10) that includes a processor and one or more peripheral devices (14) operable to communicate with the core (10). Included in each of the core (10) and the peripheral devices (14) are means for encrypting messages (20, 22) using key based encryption, so that messages can be securely sent between them. The key based encryption uses a session key for encrypting messages and public/private key based encryption, such as RSA, for key management purposes. An initial session key is generated in the peripheral device in response to the detection of a pre-determined act or event. Once a suitable session key is created, it is encrypted using the public key of the public/private key pair and sent to the core (10), where it is decrypted using the private key to expose the session key. This session key is then used to encrypt/decrypt all messages sent between the core (10) and the peripheral device (14).

42 Citations

View as Search Results

20 Claims

1. A self-service terminal comprising:
- a core unit including a processor;
  
  one or more peripheral devices operable to communicate with the core; and
  
  means for encrypting signals for sending between the core and the one or more peripheral devices.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
- - 2. A self-service terminal as claimed in claim 1, wherein the peripheral device is operable to generate a session key, and use the session key to encrypt messages for sending to the core.
  - 3. A self-service terminal as claimed in claim 2, wherein the peripheral device is operable to generate the session key using a random or pseudo-random key generation process.
  - 4. A self-service terminal as claimed in claim 3, wherein the peripheral device is operable to encrypt the session key and send the encrypted key to the core.
  - 5. A self-service terminal as claimed in claim 4, wherein the peripheral device is operable to encrypt the session key using a public key of a public/private key pair, and the core is operable to decrypt the session key using the private key of the public/private key pair.
  - 6. A self-service terminal as claimed in claim 2, wherein the peripheral device is operable to generate an initial session key in response to detection or sensing of a pre-determined act or event.
  - 7. A self-service terminal as claimed in claim 6, wherein a sensor is provided in the peripheral device for directly or indirectly sensing the pre-determined act or event.
  - 8. A self-service terminal as claimed in claim 7, wherein the pre-determined act is a pre-determined physical or mechanical act.
  - 9. A self-service terminal as claimed in claim 8, wherein the peripheral device is a cash dispenser, and the pre-determined act is opening of a safe door or activation/de-activation of a lock mechanism associated with the safe.
  - 10. A self-service terminal as claimed in claim 2, wherein the peripheral device is operable to change the current session key with a new session key.
  - 11. A self-service terminal as claimed in claim 10, wherein the peripheral device is operable to encrypt the new session key using the current session key and additionally a public key of a public/private key pair and send the encrypted session key to the core.
  - 12. A self-service terminal as claimed in claim 11, wherein the peripheral device is operable to change the session key after expiry of a pre-determined time.
  - 13. A self-service terminal as claimed in claim 11, wherein the peripheral device is operable to include in each message a unique number or other identifier, and encrypt at least the part of the message that includes the number.
  - 14. A self-service terminal as claimed in claim 13, wherein the core is operable to monitor the number or identifier in each message received and use this to identify replay messages.
  - 15. A self service terminal as claimed in claim 14, further comprising a plurality of peripheral devices, each operable to generate its own unique session key.

16. A method of initializing a secure communication process in a self-service terminal comprising a core, and one or more peripheral devices operable to send messages to the core, the method comprising:
- sensing a pre-determined act or event at the peripheral device;
  
  in response to sensing of the pre-determined act, generating within the peripheral device a session key;
  
  encrypting the session key;
  
  sending the encrypted session key to the core;
  
  decrypting the session key; and
  
  storing the session key in a secure area.
- View Dependent Claims (17)
- - 17. A method as claimed in claim 16, wherein encrypting the session key involves using an asymmetric encryption process.

18. A peripheral device for use in a self-service terminal, the peripheral device comprising:
- a core;
  
  means for sensing a pre-determined act or event at the peripheral device;
  
  in response to sensing of the pre-determined act, means for generating within the peripheral device a session key;
  
  means for encrypting the session key; and
  
  means for sending the encrypted session key to the core.
- View Dependent Claims (19, 20)
- - 19. A device as claimed in claim 18, wherein the pre-determined act or event is a pre-determined mechanical or physical act or event.
  - 20. A device as claimed in claim 19, further comprising a sensor for sensing the pre-determined act or event.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
NCR Corporation
Original Assignee
NCR Corporation
Inventors
Han, Richard A., Monaghan, Andrew

Application Number

US11/159,083
Publication Number

US 20060020788A1
Time in Patent Office

Days
Field of Search
US Class Current

713/165
CPC Class Codes

G07F 19/20   Automatic teller machines [...

G07F 19/207   Surveillance aspects at ATMs

G07F 9/026   for alarm, monitoring and a...

Self-service terminal

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

42 Citations

20 Claims

Specification

Use Cases

Quick Links

Others

Self-service terminal

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

42 Citations

20 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others