FINANCIAL TRANSACTIONS WITH DYNAMIC PERSONAL ACCOUNT NUMBERS
First Claim
1. A system for securing financial transactions with payment cards, comprising:
- a payment card for use at least in card-not-present financial transactions with a merchant;
a variable part of a personal account number (PAN) disposed electronically in the payment card;
a user display for visually presenting said PAN on the payment card;
means for starting an electronic generation of a next version of the variable part of said PAN according to a cryptographic process, and for causing said PAN to be visually presented on the user display;
a timer connected to the means for starting, and providing a limit on the frequency at which a new next variable part of said PAN can be generated or retrieved; and
a payment infrastructure connected through said merchant and providing for financial transaction authorizations based at least on the validity of said current and next variable parts of said PAN according to said cryptographic process.
3 Assignments
0 Petitions
Accused Products
Abstract
A method for securing financial transactions involving payment cards includes associating a sixteen-digit personal account number (PAN) with a particular payment card and user, wherein are included fields for a system number, a bank/product number, a user account number, and a check digit. A four-digit expiration date (MMYY) associated with the PAN. A magnetic stripe on the payment card is encoded with the PAN for periodic reading by a magnetic card reader during a financial transaction. A table of cryptographic values associated with the PAN and the MMYY is stored on each user'"'"'s payment card during personalization by an issuing bank. A next financial transaction being commenced with the payment card is sensed. A cryptographic value from the table of cryptographic values is selected for inclusion as a dynamic portion of the user account number with the PAN when a next financial transaction is sensed. Any cryptographic value from the table of cryptographic values will not be used again in another financial transaction after being used once. The issuing bank authorizes the next financial transaction only if the PAN includes a correct cryptographic value in the user account number field.
400 Citations
14 Claims
-
1. A system for securing financial transactions with payment cards, comprising:
-
a payment card for use at least in card-not-present financial transactions with a merchant;
a variable part of a personal account number (PAN) disposed electronically in the payment card;
a user display for visually presenting said PAN on the payment card;
means for starting an electronic generation of a next version of the variable part of said PAN according to a cryptographic process, and for causing said PAN to be visually presented on the user display;
a timer connected to the means for starting, and providing a limit on the frequency at which a new next variable part of said PAN can be generated or retrieved; and
a payment infrastructure connected through said merchant and providing for financial transaction authorizations based at least on the validity of said current and next variable parts of said PAN according to said cryptographic process. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A method for securing payment card financial transactions, comprising:
-
associating a personal account number (PAN) with a particular payment card and user, wherein are included fields for a system number, a bank/product number, a user account number, and a check digit;
associating a four-digit expiration date (MMYY) with said PAN;
encoding a magnetic stripe on said payment card with said PAN for periodic reading by a magnetic card reader during a card-present financial transaction with a merchant;
storing a table of cryptographic values associated with said PAN on each user'"'"'s payment card during personalization;
sensing a financial transaction being commenced with the payment card;
separating a current financial transaction from a next, new financial transaction with a timer disposed in the payment card, and triggered by a user input;
presenting a current variable part of said PAN on the user display only during a current financial transaction;
presenting a new, next variable part of said PAN on the user of said PAN can be electronically generated and presented on the user display;
selecting a cryptographic value from a table of cryptographic values for inclusion as a dynamic portion of said PAN when a next, new financial transaction is sensed;
repeating the use of any cryptographic value from said table of cryptographic values in another financial transaction after being used once; and
authorizing said next financial transaction only if said PAN includes a correct cryptographic value in said user account number field. - View Dependent Claims (11)
-
-
12. A secure financial transaction network for payment cards, comprising:
-
means for associating a personal account number (PAN) with a particular payment card and user, wherein are included fields for a system number, a bank/product number, a user account number, and a check digit;
means for encoding a magnetic stripe on said payment card with said PAN for periodic reading by a magnetic card reader during a financial transaction, wherein said PAN does not necessarily match another PAN presented on a user display disposed on the same payment card;
means for storing a table of cryptographic values associated with said PAN on each user'"'"'s payment card during personalization;
means for sensing a next financial transaction being commenced with said payment card;
means for selecting a cryptographic value from said table of cryptographic values for inclusion as a dynamic portion of said user account number with said PAN when a next financial transaction is sensed;
means for not repeating the use of any cryptographic value from said table of cryptographic values in another financial transaction after being used once; and
means for authorizing by said issuing bank said next financial transaction only if said PAN includes a correct cryptographic value in said user account number field. - View Dependent Claims (13)
-
-
14. A secure payment card, comprising:
-
a particular payment card for use in financial transactions with merchants;
a personal account number (PAN) associated with the particular payment card and user, wherein are included fields for a system number, a bank/product number, a user account number, and a check digit;
a magnetic stripe disposed on the particular payment card with the PAN, and providing for periodic reading by a magnetic card reader during a financial transaction, wherein the PAN does not necessarily match another PAN presented on a user display that may be disposed on the same particular payment card;
a table of cryptographic values associated with the PAN on the particular payment card during its personalization;
a detector for sensing a next, new financial transaction being commenced with the particular payment card;
a cryptographic value selectable from the table of cryptographic values for inclusion as a dynamic portion of said user account number with said PAN when a next financial transaction is sensed in the preceding step;
means for not repeating the use of any cryptographic value from the table of cryptographic values in another financial transaction after being used once; and
means for proceeding with a next, new financial transaction only if the PAN includes a verified cryptographic value in said user account number field.
-
Specification