Method and apparatus for authorizing the holder of a portable object such as a card to gain access to at least one service provided by at least one authorizing entity
First Claim
1. A method of authorizing the holder of a portable card to gain access with the card to services provided by different authorizing entities, each authorizing entity providing a different service, and the card having data storing means, the method comprising preliminarily defining the different authorizing entities to which the holder of the card can gain access to obtain services;
- chaining the different authorizing entities in a predetermined order of dependency beginning with a first one of the authorizing entities such that each authorizing entity, except said first one, depends in said predetermined order from at least one other authorizing entity;
identifying each authorizing entity by an authorizing datum of a predetermined format which includes at least a first datum identifying such authorizing entity and a second datum which identifies the authorizing entity from which such authorizing entity depends in the chained order of dependency; and
verifying, upon the holder requesting access to services provided by one of said authorizing entities which were previously unauthorized to the holder, that the authorizing datum of the authorizing entity from which the one requested authorizing entity depends has previously been written in the data storing means of the card.
3 Assignments
0 Petitions
Accused Products
Abstract
The invention relates to a method and an apparatus for authorizing the holder of a portable object such as a card to gain access with this card to at least one service provided by at least one authorizing entity. According to the invention, the method enables the holder of a card C to become authorized to have access to a particular service by causing an authorizing datum to be written on his card C by an authorizing system T, causing the calculation by both the card C and the system of a result taking into account at least one secret datum S, comparing in a comparator CC of the card the results calculated, and validating the authorizing datum if the results are identical.
-
Citations
15 Claims
-
1. A method of authorizing the holder of a portable card to gain access with the card to services provided by different authorizing entities, each authorizing entity providing a different service, and the card having data storing means, the method comprising preliminarily defining the different authorizing entities to which the holder of the card can gain access to obtain services;
- chaining the different authorizing entities in a predetermined order of dependency beginning with a first one of the authorizing entities such that each authorizing entity, except said first one, depends in said predetermined order from at least one other authorizing entity;
identifying each authorizing entity by an authorizing datum of a predetermined format which includes at least a first datum identifying such authorizing entity and a second datum which identifies the authorizing entity from which such authorizing entity depends in the chained order of dependency; and
verifying, upon the holder requesting access to services provided by one of said authorizing entities which were previously unauthorized to the holder, that the authorizing datum of the authorizing entity from which the one requested authorizing entity depends has previously been written in the data storing means of the card. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
- chaining the different authorizing entities in a predetermined order of dependency beginning with a first one of the authorizing entities such that each authorizing entity, except said first one, depends in said predetermined order from at least one other authorizing entity;
-
15. A system for authorizing the holder of a portable card access with the card to services provided by different authorizing entities, the different authorizing entities being chained together in a predetermined order of dependency beginning with a first one of the authorizing entities such that to gain access to the services of any particular authorizing entity it is necessary to have access to the services of the authorizing entity from which said particular authorizing entity depends in said predetermined order, the card including first memory means in which are recorded a secret code (S), a program (P) defining a predetermined algorithm, and authorizing data identifying the authorizing entities to which the holder of the card has access to obtain services provided by such authorizing entities;
- an authorizing system specific to a desired one of said authorizing entities to which the card holder desires access, the authorizing system including second memory means in which are recorded said secret code and said program;
means for connecting the card to the authorizing system;
means for calculating in both the card and the authorizing system a result (R) by execution of said program and taking into account said secret code and said authorizing data;
comparison means in the card for comparing the results calculated by the card and by the authorizing system; and
means responsive to the comparing means for writing in the first memory means an authorizing datum which authorizes access to the requested authorizing entity upon the comparison of the results satisfying a predetermined condition.
- an authorizing system specific to a desired one of said authorizing entities to which the card holder desires access, the authorizing system including second memory means in which are recorded said secret code and said program;
Specification