Security method and device for communicating confidential data via an intermediate stage
First Claim
1. A security method for confidential digital data communication via an intermediate stage in a system which allows the exchange of transaction data in a transaction between bearers of crediting means (1) and centralized processing machines (3) via non-supervised specific terminal units (2) in which method any communication between a bearer and a processing machine entails communication of the identity of the crediting means used by the bearer to the centralized processing machine by connection of said crediting means to a specific terminal unit and the communication of the holder'"'"'s specific confidential code to the system by manual insertion of said code by the bearer where the crediting means is linked to the terminal unit, said method further including the following steps:
- determining via the crediting means a first code number for identifying the holder and approving the transaction by combining the transaction data relating to the bearer by means of an individualization code supplied by the crediting means on receiving the holder'"'"'s confidential code; and
communicating the first code number, the transaction data and identity of the specific terminal unit to the centralized processing machine by said specific terminal unit on the basis of the data received from the crediting means and of data which is inherent to said specific terminal unit.
2 Assignments
0 Petitions
Accused Products
Abstract
The invention relates to a method and devices allowing exchange of data between authorized bearers of crediting means (1) to be identified, approved and possibly coded and to remote centralized processing machines (3) via specific terminal units (2). The data produced by a bearer of a crediting means (1) after connection of said means (1) to a terminal unit (2) and sending of the identity of said means (1) are approved by a logic generation unit (15) of the means (1) from an individualization code and from transaction data. The invention applies to the exchange of data in an insecure environment and more particularly to bank credit card systems.
105 Citations
8 Claims
-
1. A security method for confidential digital data communication via an intermediate stage in a system which allows the exchange of transaction data in a transaction between bearers of crediting means (1) and centralized processing machines (3) via non-supervised specific terminal units (2) in which method any communication between a bearer and a processing machine entails communication of the identity of the crediting means used by the bearer to the centralized processing machine by connection of said crediting means to a specific terminal unit and the communication of the holder'"'"'s specific confidential code to the system by manual insertion of said code by the bearer where the crediting means is linked to the terminal unit, said method further including the following steps:
-
determining via the crediting means a first code number for identifying the holder and approving the transaction by combining the transaction data relating to the bearer by means of an individualization code supplied by the crediting means on receiving the holder'"'"'s confidential code; and communicating the first code number, the transaction data and identity of the specific terminal unit to the centralized processing machine by said specific terminal unit on the basis of the data received from the crediting means and of data which is inherent to said specific terminal unit. - View Dependent Claims (2, 3, 4)
-
-
5. A crediting means for confidential digital data communication via an intermediate stage in a system which allows the exchange of transaction data in a transaction between bearers of crediting means (1) and centralized processing machines (3) via non-supervised specific terminal units (2) wherein any communication between a bearer and a processing machine entails communication of the identity of the crediting means used by the bearer to the centralized processing machine by connection of the crediting means to a specific terminal unit and the communication of the holder'"'"'s specific confidential code to the system by manual insertion of the code by the bearer where the crediting means is linked to the terminal unit, and which involves determining via the crediting means a first code number for identifying the holder and approving the transaction by combining the transaction data related to the bearer by means of an individualization code supplied by the crediting means upon receiving the holder'"'"'s confidential code;
- and communicating said first code number, the transaction data and identity of the specific terminal unit to the centralized processing machine by said specific terminal unit on the basis of the data received from the crediting means and the data which is inherent to said specific terminal unit, and wherein said individualization code supplied by a crediting means is obtained by combining the confidential code inserted in the crediting means when the latter is connected in a specific terminal with a code base permanently stored in said crediting means, and wherein said crediting means includes;
a permanent memory of the indentity data (10) which can be read out from a specific terminal unit (2) after connection thereto; a permanent code signal base memory (17) which is inaccessible to units outside said crediting means (1); a code generation logic unit (14) connected to an output of a keyboard (11) and of a code signal base memory (17); and a code number generation logic unit (15) which combines the individualization code with the transaction data inserted by the keyboard, the inputs of said code number generation unit being connected to the output of the keyboard (11) and of the individualization code logic unit (14) and by its output to at least one outer connection terminal (B15) for terminal unit (2) with a view to the transmissions of the generated first code number to a centralized processing machine (3). - View Dependent Claims (6)
- and communicating said first code number, the transaction data and identity of the specific terminal unit to the centralized processing machine by said specific terminal unit on the basis of the data received from the crediting means and the data which is inherent to said specific terminal unit, and wherein said individualization code supplied by a crediting means is obtained by combining the confidential code inserted in the crediting means when the latter is connected in a specific terminal with a code base permanently stored in said crediting means, and wherein said crediting means includes;
-
7. A crediting means for confidential digital data communication via an intermediate stage in a system which allows the exchange of transaction data in a transaction between bearers of crediting means (1) and centralized processing machines (3) via non-supervised specific terminal units (2) wherein any communication between a bearer and a processing machine entails communication of the identity of the crediting means used by the bearer to the centralized processing machine by connection of the crediting means to a specific terminal unit and the communication of the holder'"'"'s specific confidential code to the system by manual insertion of the code by the bearer where the crediting means is linked to the terminal unit, and further including determining via the crediting means a first code number for identifying the holder and approving the transaction by combining the transaction data related to the bearer by means of an individualization code supplied by the crediting means upon receiving the holder'"'"'s confidential code;
- and communicating the first code number, the transaction data and identity of the specific terminal unit to the centralized processing machine by said specific terminal unit on the basis of the data received from the crediting means and the data which is inherent to said specific terminal unit, and wherein the confidential code inserted by the bearer when the crediting means is connected to be used by the bearer in a specific terminal is compared with the confidential code permanently stored in the card, and wherein the first code number is obtained by combining an individualization code permanently stored in the card with a transaction data inserted by the bearer if the confidential code inserted corresponds to the stored confidential code, and wherein said crediting means is conventionally provided with memories (10, 18,
19) for identifying said means, the confidential code and the transaction as well as logic units (15B, 14A) for managing the transactions and for comparing the confidential code stored with the confidential code inserted in each transaction, said crediting means further including;a memory (17) for permanently storing the individualization code which is inaccessible from outside the crediting means; a code number generation logic unit (15A) which combines the individualization code of the crediting means (1) with the data inserted by the keyboard (11) and the transaction number, the inputs of said generation logic unit being connected for said purpose to the outputs of the logic unit (15B) which manages the transactions and of the individualization code memory (17) and its output being connected to at least one outside connection terminal (B15) with a view to transmitting the first code number thereby generated to the specific terminal unit (2) to which said crediting means (1) is connected. - View Dependent Claims (8)
- and communicating the first code number, the transaction data and identity of the specific terminal unit to the centralized processing machine by said specific terminal unit on the basis of the data received from the crediting means and the data which is inherent to said specific terminal unit, and wherein the confidential code inserted by the bearer when the crediting means is connected to be used by the bearer in a specific terminal is compared with the confidential code permanently stored in the card, and wherein the first code number is obtained by combining an individualization code permanently stored in the card with a transaction data inserted by the bearer if the confidential code inserted corresponds to the stored confidential code, and wherein said crediting means is conventionally provided with memories (10, 18,
Specification