System and method for binding a smartcard and a smartcard reader
First Claim
1. A method for binding a smartcard having a plurality of credentials to a smartcard reader associated with a secure processor, comprising:
- (a) registering the smartcard reader with a smartcard issuer server, wherein the registration includes cryptographically authenticating the secure processor to the smartcard issuer server;
(b) receiving a first set of private keys associated with a set of credentials stored on the smartcard, one private key per credential, stored on the smartcard if the authentication of the secure processor was successful;
(c) requesting access to a service provided via a service provider server;
(d) receiving a request for authentication, wherein the authentication request includes a request for a first credential in the set of credentials;
(e) cryptographically authenticating the smartcard reader to the smartcard using the private key associated with the first credential; and
(f) receiving the first credential from the smartcard if the authentication of the smartcard reader is successful.
3 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods for binding a smartcard and a smartcard reader are provided. A smartcard is provision to store a first set of credentials for use in traditional transactions such as at a brick and mortar retail store and a second set of credentials for use when performing a transaction using a smartcard reader associated with a user such as an on-line transaction. The user smartcard reader registers with a smartcard issuer server by cryptographically authenticating a secure processor associated with the smartcard reader. As a result of the registration, the secure processor obtains a set of private keys associated with the second set of credentials. When a request for a authorizing a transaction via the user'"'"'s smartcard reader is received, the smartcard reader cryptographically authenticates itself to the smartcard using a private key associated with a credential to be used to authorize the transaction.
-
Citations
20 Claims
-
1. A method for binding a smartcard having a plurality of credentials to a smartcard reader associated with a secure processor, comprising:
-
(a) registering the smartcard reader with a smartcard issuer server, wherein the registration includes cryptographically authenticating the secure processor to the smartcard issuer server;
(b) receiving a first set of private keys associated with a set of credentials stored on the smartcard, one private key per credential, stored on the smartcard if the authentication of the secure processor was successful;
(c) requesting access to a service provided via a service provider server;
(d) receiving a request for authentication, wherein the authentication request includes a request for a first credential in the set of credentials;
(e) cryptographically authenticating the smartcard reader to the smartcard using the private key associated with the first credential; and
(f) receiving the first credential from the smartcard if the authentication of the smartcard reader is successful. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A secure processor for binding a smartcard reader to a smartcard, the secure processor comprising:
-
means for registering the smartcard reader with a smartcard issuer server to obtain a first set of private keys associated with a set of credentials stored on the smartcard, one private, key per credential, wherein the means for registering includes means for cryptographically authenticating the secure processor to the smartcard issuer server; and
means for cryptographically authenticating the smartcard reader to the smartcard using a private key associated with a credential in the set of credentials. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
Specification