IC card and an identification system thereof
First Claim
1. An IC card having an IC circuit, which comprises:
- first memory means for storing at least a plurality of personal data of a card holder;
second memory means for storing production master key (PMK) data preset at a first stage and used for checking validity of a card holder when an IC card is transferred from the first stage to a second stage, and for storing initialization personal identificaton number (IPIN) data used for checking validity of a card holder when an IC card is transferred from the second stage to a third stage;
third memory means for storing at least personal identification (PIN) data set by a card holder at the third stage for checking validity of the card holder when a future transaction is performed by the card holder by using the IC card;
interface means for controlling data which is output from the IC card and data which is input to the IC card to be compared with the data stored in at least said second and third memory means;
comparing means for comparing a PMK data input to the IC card via said interface means for checking validity of the card holder at the second stage when the IC card is transferred from the first stage to the second stage with the PMK data stored in said second memory means, and for comparing an IPIN data input to the IC card via the interface means for checking validity of a card holder when the IC card is transferred from the second stage to the card holder at the third stage with the IPIN data stored in said second memory means; and
means for permitting reading and/or writing at least one of said first to third memory means in accordance with a coincidence signal obtained from said comparing means.
1 Assignment
0 Petitions
Accused Products
Abstract
A plurality of secret data for identifying IC cards is stored in a memory which is provided in an IC circuit incorporated in the IC card. When an IC card is supplied to an issuer from a manufacturer, a sealed sheet on which a production master key (PMK) data is printed is separately sent to the issuer from the manufacturer. The PMK data printed on the sealed sheet is supplied to the IC card to be compared with a PMK data stored therein. The entrance of a primary account number (PAN) data to the IC card is allowed only when a coincidence signal is obtained. An initialization personal identification number (IPIN) data is printed on a sealed sheet which is separately sent to a card holder from the issuer. At the card holder'"'"'s stage, the IPIN data and an IPIN data stored in the IC card are compared with each other. The registration of the personal identification number to the IC card may be performed only when a coincidence signal is obtained.
109 Citations
51 Claims
-
1. An IC card having an IC circuit, which comprises:
-
first memory means for storing at least a plurality of personal data of a card holder; second memory means for storing production master key (PMK) data preset at a first stage and used for checking validity of a card holder when an IC card is transferred from the first stage to a second stage, and for storing initialization personal identificaton number (IPIN) data used for checking validity of a card holder when an IC card is transferred from the second stage to a third stage; third memory means for storing at least personal identification (PIN) data set by a card holder at the third stage for checking validity of the card holder when a future transaction is performed by the card holder by using the IC card; interface means for controlling data which is output from the IC card and data which is input to the IC card to be compared with the data stored in at least said second and third memory means; comparing means for comparing a PMK data input to the IC card via said interface means for checking validity of the card holder at the second stage when the IC card is transferred from the first stage to the second stage with the PMK data stored in said second memory means, and for comparing an IPIN data input to the IC card via the interface means for checking validity of a card holder when the IC card is transferred from the second stage to the card holder at the third stage with the IPIN data stored in said second memory means; and means for permitting reading and/or writing at least one of said first to third memory means in accordance with a coincidence signal obtained from said comparing means. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 31, 32, 37)
-
-
10. An IC card identification system comprising:
-
an IC card incorporating an IC circuit including a memory for storing a plurality of secret data, the plurality of secret data including at least production master key (PMK) data preset at a first stage and initialization personal identification number (IPIN) data; printout means for confidentially printing out the PMK data at the first stage on a first sealed sheet, said IC card and the first sealed sheet being delivered to a card holder at a second stage; means for identifying the PMK data obtained by entering the PMK data printed on said first sealed sheet with the PMK data stored in said memory of said IC card; means for storing primary account number (PAN) data in said IC card upon detection of a coincidence between the entered PMK data and the PMK data stored in said memory and for printing out the IPIN data read out from said memory on a second sealed sheet, said IC card and the second sealed sheet being delivered to a card holder at a third stage; means for identifying IPIN data entered by the IPIN data printed on said second sealed sheet with the IPIN data stored in said memory of said IC card; and means for storing personal identification number (PIN) data which is arbitrarily selected by the card holder in the IC circuit upon detection of a coincidence between the entered IPIN data and the IPIN data stored in said memory. - View Dependent Claims (11, 12, 13, 14, 15, 16, 38, 39)
-
-
17. An IC card identification system comprising:
-
an IC card incorporating an IC circuit including a memory for storing card authentication (CA) data preset by a manufacturer and given such that different CA data are assigned in units of IC cards; a host computer for reading out the different CA data from the respective IC cards and storing all the CA data in a data base; and a terminal, connected to said host computer through a data transmission means, for identifying a presented IC card, said terminal having readout means for reading out the CA data from the presented IC card, means for encrypting predetermined transaction message data in accordance with the CA data from the presented IC card, and means for transmitting encrypted predetermined transaction message data to said host computer, and said host computer having means for decrypting the encrypted transaction message data by using the CA data stored in the data base, means for discriminating whether or not the decrypted transaction message data is the predetermined transaction message data in said terminal, and means for transmitting a discriminated result to said terminal. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24, 25, 26)
-
-
27. An IC card identification system comprising:
-
an IC card incorporating an IC circuit including a memory for storing first key data; and a terminal for storing second key data and for identifying an IC card presented by a card holder, the second key data being different from the first key data but having a correlation with the first key data in a one-to-one correspondence in accordance with a predetermined function, said terminal having means for encrypting predetermined test message data in accordance with the second key data and means for transmitting encrypted test message data to said IC card, said IC card having means for receiving the encrypted test message data and decrypting the message data by the first key data stored therein and means for transmitting decrypted test message data to said terminal, and said terminal further including means for comparing the decrypted test message data from said IC card with a predetermined self test message, and means for producing an alarm of a comparison result. - View Dependent Claims (28, 29, 30, 40, 41)
-
-
33. A method for producing an IC card having a memory means therein which is accessible by a card holder for reading and/or writing operations on said IC card, comprising the steps of:
-
storing at least a plurality of personal data of a card holder; storing production master key (PMK) data preset at a first stage and used for checking validity of a card holder when an IC card is transferred from the first stage to a second stage; storing initialization personal identification number (IPIN) data used for checking validity of a card holder when an IC card is transferred from the second stage to a third stage; storing at least a personal identification number (PIN) data set by a card holder at the third stage for checking validity of the card holder when a future transaction is performed by the card holder by using the IC card; controlling data output from the IC card and data input to the IC card for comparison with data stored in said memory means; comparing a PMK data input to the IC card for checking the validity of the card holder at the second stage when the IC card is transferred from the first stage to the second stage with the PMK data stored in said memory means; comparing IPIN data input to the IC card for checking validity of a card holder when the IC card is transferred from the second stage to the card holder at the third stage with the IPIN data stored in said memory means; and permitting reading from and/or writing into said memory means in accordance with a coincidence signal obtained from said comparison step.
-
-
34. A method for providing an IC card identification comprising the steps of:
-
storing in a memory carried on said IC card a plurality of secret data, the plurality of secret data including at least production master key (PMK) preset at a first stage and initialization personal identification number (IPIN) data; printing out the PMK data in the memory on a first sealed sheet at the first stage; delivering the IC card and the first sealed sheet to a card holder at a second stage; identifying the PMK data obtained by entering the PMK data printed on the first sealed sheet with the PMK data stored in the memory of said IC card; storing primary account number (PAN) data in the memory upon detection of a coincidence between the entered PMK data and the PMK data stored in said memory and for printing out the IPIN data read out from said memory onto a second sealed sheet; delivering the IC card and said second sealed sheet to a card holder at a third stage; identifying IPIN data entered by the IPIN data printed on said second sealed sheet with the IPIN data stored in said memory of said IC card; and storing personal identification number (PIN) data which is arbitrarily selected by the card holder in the memory upon detection of a coincidence between the entered IPIN data and the IPIN data stored in said memory.
-
-
35. A method for providing an IC card identification, comprising the steps of:
-
incorporating an IC circuit including a memory into an IC card for storing card authentication (CA) data preset by a manufacturer and given such that different CA data are assigned in units of IC cards; reading out the different CA data from the respective IC cards and storing all the CA data in a data base in a host computer; reading out the CA data from the presented IC card with a terminal having readout means; encrypting a predetermined transaction message data in accordance with the CA data from the presented IC card; transmitting encrypted predetermined transaction message data to said host computer; decrypting with said host computer the encrypted transaction message data by using the CA data stored in the data base; discriminating whether or not the decrypted transaction message data is the predetermined transaction message date in said terminal; and transmitting a discriminated result to the terminal.
-
-
36. A method for providing an IC card identification, comrpising the steps of:
-
incorporating into an IC card an IC circuit including a memory for storing first key data; storing the second key data in a terminal; identifying an IC card presented by a card holder to said terminal; setting the second key data to be different from the first key data but having a correlation with the first key data in a one-to-one correspondence in accordance with a predetermined function; encrypting predetermined test message data in accordance with the second key data and transmitting encrypted test message data to the IC card; receiving the encrypted test message and decrypting the message data by the first key data stored therein, and transmitting decrypted test message data to said terminal; and comparing the decrypted test message data from said IC card with a predetermined self test message; and producing an alarm of a comparison result.
-
-
42. A method for identifying an IC card, comprising the steps of:
-
(a) storing production master key (PMK) data in a memory means of the IC card at a first stage to check the validity of a card holder, and then delivering the IC card to a second stage; (b) comparing, in said IC card at the second stage, the PMK data stored in said memory means with PMK data input to said IC card, and delivering the IC card to a third stage when the compared PMK data stored in the card and input to the card are identical; and (c) comparing, in said IC card at a third stage, initialization personal identification number (IPIN) data stored in the IC card with IPIN data which is input to said IC card, and storing personal identification (PIN) data in the memory means of the IC card when the compared IPIN data stored in the card and input to it are identical. - View Dependent Claims (43, 44, 45)
-
-
46. An IC card system comprising:
-
an IC card; and a terminal provided at a manufacturer for communicating with the IC card, said terminal including means for generating a signal to start a test on an internal circuit of the IC card, said IC card including testing means having a testing program for testing the internal circuit of the IC card and being responsive to the signal from said terminal for starting the test. - View Dependent Claims (47, 48, 49, 50)
-
-
51. An IC card system comprising:
-
an IC card having an IC circuit; and a terminal for transmitting data to said IC card and/or a host compoter and receiving data from said IC card and/or the host computer; said terminal including memory means for storing a flag representing whether said terminal is set in a first mode or a second mode, whereby the terminal communicates with the host computer when said flag is set in the first mode, and is inhibited from communicating with the host computer when said flag is set in the second mode; said IC card further including means for checking authenticity of at least one of said IC card and said terminal, and wherein after at least one of said IC card and terminal is found to be authentic, the data stored in said memory means is checked to confirm whether data should be transmitted between said IC card and said terminal in the first mode or the second mode.
-
Specification