FINANCIAL TRANSACTION NETWORK SECURITY
First Claim
1. A business model for the manufacture, security, and control of payment cards used in consumer financial transactions, comprising:
- circulating a population of payments cards with user identification and account access codes, wherein each use of an individual card produces a variation of its user access code according to an encryption program seeded with encryption keys or initialization vectors;
outsourcing the job of personalizing payment cards with said user identification and account access codes to a personalization company;
keeping said encryption keys and initialization vectors private from said personalization company by using said encryption program to generate tables of computed results;
sending respective ones of said tables of computed results for loading by said personalization company into new members of said population of payments cards; and
manufacturing and distributing said new members of the population of payments cards to include and operate with said tables of computed results.
3 Assignments
0 Petitions
Accused Products
Abstract
A business model for the manufacture and control of payment cards used in consumer financial transactions circulates a population of payments cards with user identification and account access codes. Each use of an individual card produces a variation of its user access code according to an encryption program seeded with encryption keys or initialization vectors. A portion of the magnetic stripe is made dynamic with a Q-Chip magnetic MEMS device. The job of personalizing payment cards with the user identification and account access codes is outsourced to a personalization company. The encryption keys and initialization vectors are kept private from the personalization company by using the encryption program to generate tables of computed results. Respective ones of the tables of computed results are sent for loading by the personalization company into new members of the population of payments cards. New payment cards are manufactured and distributed that include and operate with the tables of computed results.
-
Citations
14 Claims
-
1. A business model for the manufacture, security, and control of payment cards used in consumer financial transactions, comprising:
-
circulating a population of payments cards with user identification and account access codes, wherein each use of an individual card produces a variation of its user access code according to an encryption program seeded with encryption keys or initialization vectors;
outsourcing the job of personalizing payment cards with said user identification and account access codes to a personalization company;
keeping said encryption keys and initialization vectors private from said personalization company by using said encryption program to generate tables of computed results;
sending respective ones of said tables of computed results for loading by said personalization company into new members of said population of payments cards; and
manufacturing and distributing said new members of the population of payments cards to include and operate with said tables of computed results. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A financial transaction network with improved security, wherein the network comprises a population of payments cards with user identification and account access codes, in part produced by an outsourced personalization company, the improved security realized by including:
-
a dynamic part in said account access codes loaded by said personalization company into each of said payment cards;
a set of encryption keys and initialization vectors kept private from said personalization company by using an encryption program to generate tables of computed results;
a transmission of respective ones of said tables of computed results for loading by said personalization company into new members of said population of payments cards; and
means for manufacturing and distributing said new members of the population of payments cards to include and operate with said tables of computed results.
-
-
7. A secure financial transaction network, comprising:
-
a plurality of payment cards for circulation in the commercial market and providing for the initiation of a financial transaction with a merchant, wherein payment card includes a magnetic device readable by a legacy card reader that presents dynamic magnetic data such tha each use of an individual card produces a cryptographic series of variations of a respective user access code according to an encryption program seeded with secret encryption keys or initialization vectors; and
data processing means for a payment-card issuing bank to generate said cryptographic series of variations of respective user access codes for each and all of the plurality of payment cards, to transmit to third parties for payment card manufacturing only tables of said cryptographic series of variations of respective user access code and not said secret encryption keys or initialization vectors, and to authorize financial transaction requests from a payments processor if a user access code it receives in a transaction request is a member of said cryptographic series of variations of respective user access codes for the particular one of the plurality of payment cards;
wherein, legacy magnetic card readers at merchant locations are supported, and each transaction with a particular payment card requires a unique personal account number (PAN) that will not enable subsequent fraud. - View Dependent Claims (8)
-
-
9. A method of making secure payment cards for financial transactions over networks, comprising:
-
building payment card blanks by integrating plastic, circuit, battery, semiconductor chips, magnetic strips, magnetic MEMS device, and other components into a debit/credit card format conforming to ISO industry standards, all in response to an order from an issuing bank;
personalizing each payment card blank with at least a personal account number (PAN) of which a portion is variable according to an encryption processor and secret encryption key kept by said issuing bank, and only computed results are loaded in embedded crypto-tables for presentation during financial transactions by said magnetic MEMS device;
wherein a population of secure payment cards is produced and can be circulated for use in the commercial markets. - View Dependent Claims (10, 11, 12, 13, 14)
-
Specification