End-to-end encryption system and method of operation

US 4,423,287 A
Filed: 06/26/1981
Issued: 12/27/1983
Est. Priority Date: 06/26/1981
Status: Expired due to Term

First Claim

Patent Images

1. A method of operating a network/interchange transaction execution system of the type comprising a plurality of transaction terminals, a plurality of acquirer stations, each being associated with one or more separate transaction terminals, a plurality of issuer stations, each of which includes a data processor which stores account information for a plurality of accounts, and a network switch which communicatively interconnects the acquirers with the issuers;

the method comprising the steps of;

(a) receiving and identifying network/interchange transaction information and a personal identification number, PINc, from a user at one of said transaction terminals, encrypting the PINc with a first session key, KS₁, transmitting to the acquirer station associated with said transaction terminal a network/interchange request message comprised of the encrypted PINc and the transaction data;

(b) at the associated acquirer station, receiving the network/interchange request message from said transaction terminal and retransmitting the network/interchange request message to the network switch along with the session key encrypted in a second master key, e[KM₂ ](KS₁),(c) at the network switch, receiving the network/interchange request message and the encrypted session key, re-encrypting the session key in a third master key, e[KM₃ ](KS₁), and retransmitting the network/interchange request message along with the third master key encrypted session key to a particular issuer station specified by data in the network/interchange request message;

(d) at the issuer station, receiving the request message and the encrypted session key, e[KM₃ ](KS₁), decrypting the session key, decrypting the encrypted PINc, accessing the data base for the account specified in the transaction data, comparing and verifying the PINc with a corresponding PIN stored in the data base for that account, specifying an authorization code in response to the transaction data, and transmitting a reply message, which includes the authorization code, to the acquirer station through the network switch,(e) at the acquirer station, relaying the reply message to said transaction terminal, and,(f) acting on the authorization code to respond to the transaction terminal user.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An efficient end-to-end encryption system including key management procedures for providing secure, financial data communication between a system user at one of a plurality of transaction terminals of one of a plurality of acquirer institutions and one of a plurality of issuer institutions, with selected elements of the data being encrypted, decrypted, and processed using a one time session key which is similarly encrypted with master keys and efficiently sent along with the specific segments of the request and response messages.

Citations

12 Claims

1. A method of operating a network/interchange transaction execution system of the type comprising a plurality of transaction terminals, a plurality of acquirer stations, each being associated with one or more separate transaction terminals, a plurality of issuer stations, each of which includes a data processor which stores account information for a plurality of accounts, and a network switch which communicatively interconnects the acquirers with the issuers;
- the method comprising the steps of;
  
  (a) receiving and identifying network/interchange transaction information and a personal identification number, PINc, from a user at one of said transaction terminals, encrypting the PINc with a first session key, KS₁, transmitting to the acquirer station associated with said transaction terminal a network/interchange request message comprised of the encrypted PINc and the transaction data;
  
  (b) at the associated acquirer station, receiving the network/interchange request message from said transaction terminal and retransmitting the network/interchange request message to the network switch along with the session key encrypted in a second master key, e[KM₂ ](KS₁),(c) at the network switch, receiving the network/interchange request message and the encrypted session key, re-encrypting the session key in a third master key, e[KM₃ ](KS₁), and retransmitting the network/interchange request message along with the third master key encrypted session key to a particular issuer station specified by data in the network/interchange request message;
  
  (d) at the issuer station, receiving the request message and the encrypted session key, e[KM₃ ](KS₁), decrypting the session key, decrypting the encrypted PINc, accessing the data base for the account specified in the transaction data, comparing and verifying the PINc with a corresponding PIN stored in the data base for that account, specifying an authorization code in response to the transaction data, and transmitting a reply message, which includes the authorization code, to the acquirer station through the network switch,(e) at the acquirer station, relaying the reply message to said transaction terminal, and,(f) acting on the authorization code to respond to the transaction terminal user.
- View Dependent Claims (2, 3, 4, 5)
- - 2. A method of operating a network/interchange transaction execution system as recited in claim 1 further comprising the steps of(a) at said transaction terminal, concatenating the PINc and selected elements of the transaction data, computing a first message authentication code, MAC1, using the concatenated data and the session key, and transmitting the MAC1 as part of the network/interchange request message to the acquirer station to be relayed through the network switch to the issuer station,(b) at said issuer station, recomputing and verifying the MAC1 using the same PINc, the selected data elements, and the decrypted session key, then computing a second message authentication code, MAC2, for the reply message using the session key, KS₁, and transmitting the MAC2 to said acquirer station and said transaction terminal through the network switch, and(c) at said transaction terminal, recomputing and verifying the MAC2 using the session key.
  - 3. A method of operating a network/interchange transaction execution system as recited in claims 1 or 2 further comprising the steps of generating, encrypting and storing, at said acquirer station, a plurality of session keys in pairs of encryptions, each key being encrypted once in a first master key and once in a second master key, and appending a different first master key encrypted session key to each reply message sent to said transaction terminal, and storing the other, second master key encrypted session key of the pairs for use with subsequent transactions.
  - 4. A method of operating a network/interchange transaction execution system as recited in claim 3, further comprising the steps of, at said transaction terminal, receiving and storing each new first master key encrypted session key and discarding the previously received such key at the conclusion of the then pending transaction.
  - 5. A method of operating a network/interchange transaction execution system as recited in claim 4 comprising the further steps of, at said acquirer station, receiving the network/interchange request message from the transaction terminal, locating in storage the second master key encrypted session key, corresponding to the session key used by said transaction terminal to encrypt the PINc, and transmitting said second master key encrypted session key to the network switch.

6. A method of operating a network/interchange transaction execution system of the type which includes a plurality of issuer stations, each having a separate data processor which stores account information for a plurality of accounts, a plurality of transaction terminals for input and output processing of user initiated transactions, including network/interchange transactions, a plurality of acquirer stations, each connected to a plurality of separate transaction terminals, and a network switch which communicatively interconnects the acquirer stations with the issuer stations, the method comprising the steps of:
- (a) at an acquirer station, batch generating and storing a plurality of session keys, each key being encrypted in a first master key and in a second master key to form session key encryption pairs,(b) at one of the transaction terminals, receiving the transaction data and a personal identification number. PINc, from a user, encrypting the PINc with a session key, KS₁, received by said transaction terminal from said acquirer station during the immediately preceding network/interchange transaction, concatenating the PINc and selected elements of the transaction data and computing a first message authentication code, MAC1, using the concatenated data and the session key, and transmitting a network/interchange request message comprised of the encrypted PIN, the MAC1 and the transaction data, to said acquirer station,(c) at said acquirer station, receiving the network/interchange request message from said transaction terminal, locating the corresponding session key, KS₁, of the encryption pair which is encrypted in the second master key and relaying it along with the message to the network switch,(d) at the network switch, translating the session key from second master key encryption to encryption in a third master key and relaying it along with the network/interchange request message to a particular issuer as specified by data in the network/interchange request message,(e) at said issuer, receiving the network/interchange request message, decrypting the encrypted session key, KS₁, recomputing and verifying the MAC1 using the decrypted session key, KS₁, accessing the data base for the account specified by data in the network/interchange request message, translating the session key encrypted PINc into a data base encrypted PINc and comparing and verifying it with a data base encrypted PIN stored in association with the specified account in the data base, then generating an authorization code, recomputing a second message authentication code MAC2 using the session key, and transmitting a response message, including the authorization code and the MAC2 via the network switch to said acquirer station,(f) at said acquirer station, receiving the response message with the authorization code and the MAC2, retrieving the first master key encrypted session key e[KM₁ ](KS₂) of a new session key encryption pair, and relaying the response message, including the authorization code, the MAC2 and e[KM₁ ](KS₂) to said transaction terminal, and(g) at said transaction terminal, receiving the response message, including the authorization code, the MAC2 and e[KM₁ ](KS₂), recomputing and verifying the MAC2 using the previous session key, KS₁, acting on the authorization code to carry out the transaction, and replacing the old encrypted session key e[KM₁ ](KS₁) with the new encrypted session key e[KM₁ ](KS₂).

7. Improved network/interchange transaction execution apparatus of the type comprising a plurality of issuer stations, each having a host data processor which stores account information for a plurality of accounts, a plurality of transaction terminals, a plurality of acquirer stations, each being connected to at least one, separate transaction terminal, and a network switch station communicatively interconnected between the acquirer stations and the issuer stations, and further comprising:
- (a) means at each transaction terminal for receiving the transaction data and a personal identification number, PINc, from a user, for encrypting the PINc with a first session key, KS₁, and for transmitting to the acquirer station connected to said transaction terminal, a network/interchange request message comprised of the encrypted PINc and the transaction data,(b) means at said acquirer station for receiving the network/interchange request message from said transaction terminal and for retransmitting the network/interchange request message, including the session key encrypted in a second master key, e[KM₂ ](KS₁), to the network switch,(c) means at the network switch for retransmitting the network/interchange request message to a particular issuer station as specified in transaction data of the network/interchange request message and for re-encrypting the session key from second master key encryption to encryption in a third master key, e[KM₃ ](KS₁),(d) means at said issuer station for receiving the network/interchange request message, including the encrypted session key, e[KM₃ ](KS₁), for decrypting the session key, for decrypting the encrypted PINc, for accessing the data base for the account specified in the transaction data, for comparing and verifying the PINc with the corresponding PIN stored in the data base for that account for specifying the authorization code in response to the transaction data, and for transmitting the authorization code to the network switch for relay to said acquirer station,(e) means at said acquirer station for relaying the authorization code to said transaction terminal, and(f) means at said transaction terminal for acting on the authorization code to respond to the transaction terminal user.
- View Dependent Claims (8, 9, 10, 11)
- - 8. Transaction execution apparatus as recited in claim 7 further comprising:
    - (a) means at said transaction terminal for concatenating the PIN and selected elements of the transaction data, for computing a first message authentication code, MAC1, using the concatenated data and the session key KS₁, and for transmitting the MAC1 as part of the network/interchange request message to said acquirer station,(b) means at said issuer station for recomputing and verifying the MAC1 using the same PINc and selected elements, for computing a second message authentication code, MAC2, using the session key KS₁, and for transmitting a response message including the MAC2 to said transaction terminal via the network switch and said acquirer station, and(c) means at said transaction terminal, for recomputing and verifying the MAC2 using the session key KS1.
  - 9. Transaction execution apparatus as recited in claims 7 or 8 further comprising means for generating, encrypting and storing, at said acquirer station, a plurality of session keys, each key being encrypted once in a first master key, KM₁, and once in a second master key, KM₂, to form session key encryption pairs and for appending a different first master key encrypted session key to each response message to the transaction terminal, and for storing the other, second master key encrypted session key of the encryption pair for subsequent use.
  - 10. Transaction execution apparatus as recited in claim 9, further comprising means at said transaction terminal for receiving and storing each new first master key encrypted session key and for discarding the previously received such key at the conclusion of the then pending transaction.
  - 11. Transaction execution apparatus as recited in claim 10 further comprising means at said acquired station for receiving the network/interchange request message from said transaction terminal, for locating in storage the corresponding second master key encrypted session key which is the same session key used to encrypt the PINc at the transaction terminal, and for transmitting the second master key encrypted session key to the network switch.

12. Network/interchange transaction execution apparatus comprising a plurality of issuer stations each of which includes a data processor for storing account information for a plurality of accounts, a plurality of transaction terminals, a plurality of acquirer stations, each being connected to at least one, separate transaction terminal, and a network switch communicatively connected between the acquirer stations and the issuer stations, and further including:
- (a) means at the acquirer stations for batch generating, encrypting and storing a plurality of session keys, each session key being encrypted once in a first master key, KM₁, and once in a second master key, KM₂,(b) means at an originating transaction terminal for receiving and identifying network/interchange transaction data and a personal identification number, PINc, from a user, for encrypting the PINc with a session key, KS₁, received by the originating transaction terminal from the acquirer station during the immediately preceding transaction at said transaction terminal, for concatenating the PINc and selected elements of the transaction data, computing a first message authentication code, MAC1, using the concatenated data and KS₁ and for transmitting a network/interchange request message comprised of the encrypted PINc, the MAC1 and the transaction data, to the acquirer station connected to said transaction station,(c) means at said acquirer station for receiving the network/interchange request message from the originating transaction terminal, for locating the same session key which is encrypted in the second master key, e[KM₂ ](KS₁), and for relaying it along with the network/interchange request message to the network switch,(d) means at the network switch for receiving the network/interchange request message and the encrypted session key, re-encrypting the session key in a third master key, e[KM₃ ](KS₁), and retransmitting the network/interchange request message along with e[KM₃ ](KS₁) to a particular issuer station specified in the transaction data included in the network/interchange request message,(e) means at said issuer station, for receiving the network/interchange request message, for decrypting the session key, KS₁, for recomputing and verifying the MAC1 using the decrypted KS₁, for accessing the data base for the account specified in the network/interchange request message, for translating the session key encrypted PINc into a data base encrypted PINc and comparing and verifying it with a data base encrypted PIN stored in association with the specified account in the data base, for thereafter generating an authorization code, for recomputing a second message authentication code, MAC2, using KS₁, and for transmitting a response message, including the authorization code and the MAC2 to said acquirer station,(f) means at said acquirer station, for receiving the response message, including the authorization code and the MAC2, for retrieving the first master key encrypted session key e[KM₁ ](KS₂) of a new pair of session key encryptions, and relaying the response message, including the authorization code, the MAC2 and the e[KM₁ ](KS₂) to said originating transaction terminal, and,(g) means at said originating transaction terminal for receiving the response message, including the authorization code, the MAC2 and the e[KM₁ ](KS₂), for recomputing and verifying the MAC2 using the previous session key KS₁, for acting on the authorization code to carry out the transaction, and for replacing the old encrypted session key e[KM₁ ](KS₁) with the new encrypted session key e[KM₁ ](KS₂).

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Visa USA, Inc. (Visa, Inc.)
Original Assignee
Visa USA, Inc. (Visa, Inc.)
Inventors
Zeidler, Howard M.
Primary Examiner(s)
Cangialosi, Sal

Application Number

US06/278,001
Time in Patent Office

914 Days
Field of Search

375/2.1, 375/2, 178/22.01, 178/22.09, 178/22.16, 178/22.13, 178/22.08, 340/825.34, 235/379, 235/382, 235/380
US Class Current

705/71
CPC Class Codes

G06Q 20/02   involving a neutral party, ...

G06Q 20/3829   involving key management

G06Q 20/401   Transaction verification

G06Q 20/4012   Verifying personal identifi...

G07F 7/1016   Devices or methods for secu...

End-to-end encryption system and method of operation

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

12 Claims

Specification

Solutions

Use Cases

Quick Links

End-to-end encryption system and method of operation

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

12 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links