FUEL DISPENSING PAYMENT SYSTEM FOR SECURE EVALUATION OF CARDHOLDER DATA
First Claim
1. A system used in a retail environment for providing end-to-end encryption of payment cardholder data, said system comprising:
- an input device configured to receive cardholder data, said input device operative to encrypt said cardholder data according to a first encryption method to produce first encrypted cardholder data;
a cardholder data handling device in electronic communication with said input device;
a secure evaluation assembly operatively connected to said cardholder data handling device, said secure evaluation assembly comprising antitampering control electronics adapted to decrypt said first encrypted cardholder data to produce unencrypted cardholder data;
wherein said antitampering control electronics of said secure evaluation assembly evaluate said unencrypted cardholder data to determine whether said unencrypted cardholder data is payment cardholder data or nonsensitive cardholder data; and
wherein, if said unencrypted cardholder data is payment cardholder data, said antitampering control electronics of said secure evaluation assembly are adapted to encrypt said unencrypted cardholder data according to a second encryption method to produce second encrypted cardholder data.
3 Assignments
0 Petitions
Accused Products
Abstract
A system used in a retail environment for providing end-to-end encryption of payment cardholder data. An input device configured to receive cardholder data is operative to encrypt the cardholder data according to a first encryption method to produce first encrypted cardholder data. A cardholder data handling device is in electronic communication with the input device. A secure evaluation assembly (SEA) is operatively connected to the cardholder data handling device and comprises antitampering control electronics adapted to decrypt the first encrypted cardholder data to produce unencrypted cardholder data. The antitampering control electronics evaluate the unencrypted cardholder data to determine whether the unencrypted cardholder data is payment cardholder data or nonsensitive cardholder data. Finally, if the unencrypted cardholder data is payment cardholder data, the antitampering control electronics of the SEA are adapted to encrypt the unencrypted cardholder data according to a second encryption method to produce second encrypted cardholder data.
24 Citations
35 Claims
-
1. A system used in a retail environment for providing end-to-end encryption of payment cardholder data, said system comprising:
-
an input device configured to receive cardholder data, said input device operative to encrypt said cardholder data according to a first encryption method to produce first encrypted cardholder data; a cardholder data handling device in electronic communication with said input device; a secure evaluation assembly operatively connected to said cardholder data handling device, said secure evaluation assembly comprising antitampering control electronics adapted to decrypt said first encrypted cardholder data to produce unencrypted cardholder data; wherein said antitampering control electronics of said secure evaluation assembly evaluate said unencrypted cardholder data to determine whether said unencrypted cardholder data is payment cardholder data or nonsensitive cardholder data; and wherein, if said unencrypted cardholder data is payment cardholder data, said antitampering control electronics of said secure evaluation assembly are adapted to encrypt said unencrypted cardholder data according to a second encryption method to produce second encrypted cardholder data. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A secure evaluation assembly in which an encrypted communication of cardholder data from an input device to a remote host processing system may be securely evaluated, comprising:
-
secure control electronics; and a secure evaluation assembly memory, said secure evaluation assembly memory containing information needed to decrypt data encrypted according to a first encryption method and information needed to encrypt data according to a second encryption method; said secure evaluation assembly memory being encrypted according to a third encryption method; wherein said secure control electronics are adapted to decrypt said secure evaluation assembly memory; wherein said secure control electronics are further adapted to decrypt cardholder data encrypted according to said first encryption method to produce unencrypted cardholder data; wherein said secure control electronics are further adapted to evaluate said unencrypted cardholder data and encrypt said unencrypted cardholder data according to said second encryption method if said unencrypted cardholder data is payment cardholder data. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27)
-
-
28. A method for processing a transaction involving cardholder data in a retail payment system, comprising the steps of:
-
receiving cardholder data at an input device; encrypting said cardholder data according to a first encryption method to produce first encrypted cardholder data; receiving said first encrypted cardholder data at a secure evaluation assembly coupled to a cardholder data handling device; decrypting said first encrypted cardholder data to produce unencrypted cardholder data; evaluating said unencrypted cardholder data in a secure control electronics to determine whether said unencrypted cardholder data is payment cardholder data or nonsensitive cardholder data; and if said unencrypted cardholder data is payment cardholder data, encrypting said unencrypted cardholder data according to a second encryption method to produce second encrypted cardholder data. - View Dependent Claims (29, 30, 31, 32, 33, 34, 35)
-
Specification