PORTABLE CONSUMER DEVICE CONFIGURED TO GENERATE DYNAMIC AUTHENTICATION DATA

US 20080034221A1
Filed: 06/18/2007
Published: 02/07/2008
Est. Priority Date: 06/19/2006
Status: Active Grant

First Claim

Patent Images

1. A portable consumer device comprising:

a memory on which dynamic authentication data is stored;

a processor configured to update the dynamic authentication data;

a read-write device configured to read data from the memory and write data onto the memory; and

an interface for transmitting data from the portable consumer device and receiving power from an external device, wherein each time power is received from the external device the portable consumer device is configured to read the dynamic authentication data from the memory, update the dynamic authentication data, and transmit the updated dynamic authentication data from the portable consumer device, and wherein power for operating the processor and the read-write device is received exclusively from the external device.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Embodiments of the invention provide a portable consumer device configured to store dynamic authentication data in memory. The portable consumer device also includes an interface for transmitting data to and receiving power from an external device. The dynamic authentication data is read from the memory by a read-write device located on the portable consumer device. The authentication data is updated and the updated data may be written into memory using the read-write device. In some embodiments, an authentication value read from the memory may be used to generate another authentication value based on an algorithm. The portable consumer device is further configured to transmit authentication data to an external device. The process of reading, updating, generating, transmitting, and rewriting the authentication data may occur each time external power is provided to the portable consumer device via the interface. The power for operating the components of the portable consumer device may be drawn exclusively from the power received from the external device (i.e., the external power). In some embodiments, a portion of the external power may be temporarily stored on an energy storage means of the portable consumer device.

Citations

31 Claims

1. A portable consumer device comprising:
- a memory on which dynamic authentication data is stored;
  
  a processor configured to update the dynamic authentication data;
  
  a read-write device configured to read data from the memory and write data onto the memory; and
  
  an interface for transmitting data from the portable consumer device and receiving power from an external device, wherein each time power is received from the external device the portable consumer device is configured to read the dynamic authentication data from the memory, update the dynamic authentication data, and transmit the updated dynamic authentication data from the portable consumer device, and wherein power for operating the processor and the read-write device is received exclusively from the external device.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 29, 30, 31)
- - 2. The device of claim 1 wherein the memory further comprises an algorithm for updating the dynamic authentication data.
  - 3. The device of claim 1 wherein each time power is received from the external device the portable consumer device is further configured to write the updated dynamic authentication data onto the memory.
  - 4. The device of claim 1 further comprising a capacitor for storing a portion of the power received from the external device.
  - 5. The device of claim 1 wherein the interface comprises a contactless antenna.
  - 6. The device of claim 1 wherein the interface comprises an electrical contact.
  - 7. The device of claim 1 further comprising a display for displaying the updated dynamic authentication data.
  - 8. The device of claim 1 wherein the dynamic authentication data comprises at least one of an automatic transaction counter and a dynamic card verification value.
  - 9. The device of claim 1 wherein the portable consumer device is configured to receive power from the external device when the portable consumer device is positioned within or adjacent the external device.
  - 10. The device of claim 1 wherein the portable consumer device is configured to transmit the updated dynamic authentication data to the external device each time power is provided to the portable consumer device.
  - 11. The device of claim 8 further comprising a body comprising an embossed regions wherein the processor is coupled to the body.
  - 12. A system comprising:
    - the external device; and
      
      the portable consumer device of claim 1 in communication with the external device.
  - 13. The system of claim 12 wherein the external device comprises a security device, a POS terminal, and an ATM machine.
  - 14. A method of using the portable consumer device of claim 1, the method comprising:
    - obtaining the portable consumer device; and
      
      placing the portable consumer device near the external device.
  - 29. The portable consumer device of claim 1 wherein the portable consumer device comprises a body, wherein the microprocessor is coupled to the body, and wherein the body comprises an embossed region, wherein the embossed region comprises a name and an expiration date.
  - 30. The portable consumer device of claim 1 further comprising a magnetic stripe on the body.
  - 31. The portable consumer device of claim 1 wherein the memory stores a primary account number and an expiration date.

15. (canceled)

16. A portable consumer device comprising:
- a memory on which a counter value is stored;
  
  a processor configured to update the counter value;
  
  a read-write device configured to read data from the memory and write data onto the memory; and
  
  an interface for transmitting data from the portable consumer device and receiving power from an external device, wherein each time power is received from the external device the portable consumer device is configured to read the counter value from the memory and update the counter value, and wherein power for operating the processor and the read-write device is received exclusively from the external device.
- View Dependent Claims (17, 18, 19, 20, 21)
- - 17. The device of claim 16 wherein each time power is received from the external device the portable consumer device is further configured to transmit the updated counter value from the portable consumer device to the external device.
  - 18. The device of claim 17 wherein the portable consumer device is in the form of a payment card and comprises a capacitor coupled to the processor.
  - 19. The device of claim 16 wherein each time power is received from the external device the portable consumer device is further configured to generate a verification value based on the updated counter value.
  - 20. The device of claim 19 wherein each time power is received from the external device the portable consumer device is further configured to transmit the verification value to the external device.
  - 21. The device of claim 16 wherein the memory comprises a computer readable medium for generating a verification value from the updated counter value, and wherein the read-write device comprises a coil.

22. A method for authenticating a transaction, comprising:
- providing external power to a portable consumer device; and
  
  reading a counter value stored on the portable consumer device and updating the counter value each time external power is provided to the portable consumer device, wherein power for said reading and updating is sourced exclusively from the external power.

23-27. -27. (canceled)

28. A phone comprising:
- a housing;
  
  a processor within the housing;
  
  a memory coupled to the processor; and
  
  an antenna coupled to the processor, wherein the phone is configured to generate dynamic authentication data, wherein the dynamic authentication data are used to authenticate the phone in a transaction.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Visa USA, Inc. (Visa, Inc.)
Original Assignee
Visa USA, Inc. (Visa, Inc.)
Inventors
Faith, Patrick, Hammad, Ayman

Granted Patent

US 7,810,165 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/190
CPC Class Codes

G06Q 20/085   involving remote charge det...

G06Q 20/105   involving programming of a ...

G06Q 20/20   Point-of-sale [POS] network...

G06Q 20/204   comprising interface for re...

G06Q 20/367   involving electronic purses...

G06Q 20/3672   initialising or reloading t...

G06Q 20/3674   involving authentication

G06Q 20/382   insuring higher security of...

G06Q 20/3821   Electronic credentials

G06Q 20/3829   involving key management

G06Q 20/385   using an alias or single-us...

G06Q 20/40   Authorisation, e.g. identif...

G06Q 20/401   Transaction verification

G06Q 2220/00   Business processing using c...

G06Q 30/06   Buying, selling or leasing ...

G06Q 40/00   Finance; Insurance; Tax str...

H04L 2209/56   Financial cryptography, e.g...

H04L 9/3271   using challenge-response

PORTABLE CONSUMER DEVICE CONFIGURED TO GENERATE DYNAMIC AUTHENTICATION DATA

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

31 Claims

Specification

Solutions

Use Cases

Quick Links

PORTABLE CONSUMER DEVICE CONFIGURED TO GENERATE DYNAMIC AUTHENTICATION DATA

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

31 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links