Identity verification method and apparatus

US 4,123,747 A
Filed: 05/20/1977
Issued: 10/31/1978
Est. Priority Date: 05/20/1977
Status: Expired due to Term

First Claim

Patent Images

1. A method of using a secure identification card comprising the steps of:

reading a personal encryption key and a partial result from said card;

receiving characteristic characters related to a prospective user of said card;

encrypting said characteristic characters with said key to obtain a result;

comparing a first part of said result with said partial result read from said card to verify a first level of correspondence between said characteristic character and said card;

denying use of said card by said prospective user if said first part compares unfavorably with said partial result;

comparing a second part of said result with a second partial result stored at a central data base for said card, if said first part compares favorably with said partial result to verify a second level of correspondence between said characteristic characters and said card;

denying use of said card by said prospective user if said second part compares unfavorably with said second partial result.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An improved method for verifying the identity of a prospective terminal user presenting an identification card or a credit card and a memorized personal identification number. Only part of the information necessary to correlate an account number to a personal identification number is available at any accessible place in the operating system. Neither the credit card, the host computer, nor the transmission link will ever have sufficient information to completely correlate an account number to a personal identification number.

167 Citations

6 Claims

1. A method of using a secure identification card comprising the steps of:
- reading a personal encryption key and a partial result from said card;
  
  receiving characteristic characters related to a prospective user of said card;
  
  encrypting said characteristic characters with said key to obtain a result;
  
  comparing a first part of said result with said partial result read from said card to verify a first level of correspondence between said characteristic character and said card;
  
  denying use of said card by said prospective user if said first part compares unfavorably with said partial result;
  
  comparing a second part of said result with a second partial result stored at a central data base for said card, if said first part compares favorably with said partial result to verify a second level of correspondence between said characteristic characters and said card;
  
  denying use of said card by said prospective user if said second part compares unfavorably with said second partial result.

2. A method of using a secure identification card comprising the steps of:
- reading a key and a partial result from said card;
  
  receiving characteristic characters related to a prospective user of said card;
  
  calculating a result using said key and said characteristic characters;
  
  comparing a first part of said result with said partial result read from said card to verify a first level of correspondence between said characteristic character and said card;
  
  denying use of said card by said prospective user if said first part compares unfavorably with said partial result;
  
  comparing a second part of said result with a second partial result stored at a central data base for said card, if said first part compares favorably with said partial result to verify a second level of correspondence between said characteristic characters and said card;
  
  denying use of said card by said prospective user if said second part compares unfavorably with said second partial result;
  
  calculating a new result using said characteristic characters and a newly generated key if said second part compares favorably with said second partial result;
  
  writing said newly generated key and a first part of said new result on said card in place of said key and said partial result on said card;
  
  storing a second part of said new result at a central data base in place of said second partial result.

3. An improved identification card including human readable information fields and machine readable and writeable information fields wherein the improvement comprises:
- a partial result field for storing part of encrypted characteristic information related to the authorized user of said card;
  
  a personal encryption key field for storing the unique personal encryption key under which said characteristic information is encrypted.

4. An identity verification terminal for verifying the identity of person presenting an identification card of the type capable of receiving characteristic information related to a prospective terminal user and an identification card having machine readable and writeable information storage media, the improvement comprising:
- means for reading a personal encryption key and a partial result from said card;
  
  means for encrypting said characteristic information under said key to obtain a calculated result;
  
  means for comparing said partial result with a first part of said calculated result;
  
  means for indicating the result of the comparison of said partial result with said first part of said calculated result;
  
  means responsive to said means for comparing, for transmitting a second part of said calculated result to a central location for comparison with a second partial result related to said identification card and stored at said central location;
  
  means for receiving a response from said central location and indicating the result of said comparison with said second partial result.
- View Dependent Claims (5)
- - 5. The identity verification terminal of claim 4 further comprising:
    - means for generating a new personal encryption key;
      
      means within said means for encrypting said characteristic information under said new personal encryption key to obtain a new calculated result;
      
      means for writing a first part of said new calculated result and said new personal encryption key onto said identification card in place of said partial result and said personal encryption key;
      
      means for transmitting a second part of said new calculated result to said central location for storage in place of said second partial result.

6. An identity verification system for verifying the identity of a prospective terminal user comprising:
- a terminal having a keyboard for receiving characteristic characters related to a person presenting an identification card;
  
  reading means at said terminal for reading a partial result and a personal encryption key from said identification card;
  
  encrypting means at said terminal for encrypting said characteristic characters under said personal encryption key to obtain a calculated result;
  
  means at said terminal for comparing said partial result with a first part of said calculated result; and
  
  indicating means for indicating the result of comparing said partial result; and
  
  transmitting means within said terminal for transmitting a second part of said calculated result to programmed computing means at a central location;
  
  a program controlling said computing means at said central location to compare said second part of said calculated result received from said terminal with a second partial result related to said identification card and stored at said central location, said program responding to said terminal with an indication of the result of said comparison with said second partial result.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
International Business Machines Corporation
Original Assignee
International Business Machines Corporation
Inventors
Shuck, Robert E., Lancto, Donald C.
Primary Examiner(s)
Yusko, Donald J.

Application Number

US05/799,050
Time in Patent Office

529 Days
Field of Search

340/149 A, 340/149 R, 235/61.7 B
US Class Current

713/185
CPC Class Codes

G06Q 20/341   Active cards, i.e. cards in...

G06Q 20/4012   Verifying personal identifi...

G06Q 20/4014   Identity check for transact...

G07F 7/1008   Active credit-cards provide...

G07F 7/1016   Devices or methods for secu...

Identity verification method and apparatus

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

167 Citations

6 Claims

Specification

Solutions

Use Cases

Quick Links

Identity verification method and apparatus

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

167 Citations

6 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links