Security file system for a portable data carrier
First Claim
1. In a portable data carrier, a security file system comprising both a file header region and a file data segment region, the file header region including a first password for verifying the identity of an individual attempting to access the data in the portable data carrier, and the file data segment region including a plurality of files for storing alterable data, each of the plurality of files having alterable data associated therewith for storage in any of multiple locations throughout the file data segment region, the alterable data for each file being allocatable to any of the available multiple locations throughout the file data segment region for storage in response to a change in the amount of data associated with the file, the file data segment region further including at least a second password for verifying the identity of an individual attempting to access the data in at least one of the plurality of files, access to each file in the file data segment region for a desired transaction being controlled by a corresponding password assigned to an individual authorized to conduct transactions within the portable data carrier.
6 Assignments
0 Petitions
Accused Products
Abstract
A file system for a portable data carrier provides improved security for files which support multiple applications, from custom repertory dialing to storage of individual medical and/or banking records. Although the portable data carrier looks and feels much like an ordinary credit card, it includes a computer and an electrically erasable programmable read-only memory. Power for operation of the portable data carrier is provided from an associated station via a reader/writer. The reader/writer also couples data between the data carrier and the associated station. The applications reside in multiple files in memory on the portable data carrier. Appropriate application software residing in the station, when accompanied by an appropriate password, enables the retrieval and modification of these files. A separate password is required for gaining access to each of designated levels of interaction between the portable data carrier and the associated station. Additional restrictions such as requiring an additional password for writing to a file and also allowing a user logged in at a particular security level to only append information to a file may be imposed in accordance with file security on the portable data carrier. And since each of the files may have its own security requirements, multiple applications may exist on the portable data carrier without conflict or confusion.
242 Citations
12 Claims
- 1. In a portable data carrier, a security file system comprising both a file header region and a file data segment region, the file header region including a first password for verifying the identity of an individual attempting to access the data in the portable data carrier, and the file data segment region including a plurality of files for storing alterable data, each of the plurality of files having alterable data associated therewith for storage in any of multiple locations throughout the file data segment region, the alterable data for each file being allocatable to any of the available multiple locations throughout the file data segment region for storage in response to a change in the amount of data associated with the file, the file data segment region further including at least a second password for verifying the identity of an individual attempting to access the data in at least one of the plurality of files, access to each file in the file data segment region for a desired transaction being controlled by a corresponding password assigned to an individual authorized to conduct transactions within the portable data carrier.
-
7. A method of securing files for multiple applications in a portable data carrier comprising both a file header region and a file data segment region, the method comprising the steps of:
-
providing a first password in the file header region for insuring only appropriate access to the data in the portable data carrier; arranging a plurality of files in the file data segment region for storing alterable data, each one of the plurality of files containing data representative of one type of application, and having alterable data associated therewith for storage in any of multiple locations throughout the file data segment region, the alterable data for each file being allocatable to any of the available multiple locations throughout the file data segment region for storage in response to a change in the amount of data associated with that file; and providing at least a second password in the file data segment region for insuring only appropriate access to the data in each one of the plurality of files, access to each file in the file data segment region being controlled by assigning a corresponding password in the file data segment region for each type of application. - View Dependent Claims (8, 9, 10, 11, 12)
-
Specification