SYSTEM AND METHOD FOR SELECTIVE ENCRYPTION OF INPUT DATA DURING A RETAIL TRANSACTION
First Claim
1. A method of collecting information at a retail terminal having a display and at least one input device, the method comprising:
- executing an application on the retail terminal, wherein the application comprises a flag and content to be presented on the display, wherein a value of the flag is representative of whether the content requests confidential information, and wherein the value of the flag is set prior to installation of the application on the retail terminal;
determining whether the content requests confidential information based on the value of the flag;
authenticating the content to be presented on the display;
presenting the content on the display if the content is authenticated; and
if the content requests confidential information, encrypting data received from the at least one input device for transmission to a location separate from the retail terminal.
0 Assignments
0 Petitions
Accused Products
Abstract
A retail environment having retail terminals with data entry point devices selectively encrypts input received by the data entry point devices and passes the encrypted data to a security module. The selective encryption is based on whether or not sensitive or confidential information, such as a personal identification number (PIN) associated with a debit card, is being input. To prevent hacking of the software of the retail terminal, content destined for display on the retail terminal is authenticated prior to display. In this manner, the retail terminal may be assured that confidential information is input only when desired, and thus may be encrypted only as needed.
-
Citations
16 Claims
-
1. A method of collecting information at a retail terminal having a display and at least one input device, the method comprising:
-
executing an application on the retail terminal, wherein the application comprises a flag and content to be presented on the display, wherein a value of the flag is representative of whether the content requests confidential information, and wherein the value of the flag is set prior to installation of the application on the retail terminal; determining whether the content requests confidential information based on the value of the flag; authenticating the content to be presented on the display; presenting the content on the display if the content is authenticated; and if the content requests confidential information, encrypting data received from the at least one input device for transmission to a location separate from the retail terminal. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A fuel dispenser, comprising:
-
a user interface comprising a display and one or more data entry point devices adapted to receive information from a user; and a control system adapted to; determine whether content to be presented on the display of the fuel dispenser requests confidential information; authenticate the content to be presented on the display during execution of the content but before being displayed by comparing indicia associated with the content to a secure copy of the indicia; present the content on the display if the content is authenticated; and if the content requests confidential information, encrypt data received from one or more data entry point devices for transmission to a location separate from the fuel dispenser. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
Specification