Method and device for making an electronic authentication

US 4,849,613 A
Filed: 05/13/1985
Issued: 07/18/1989
Est. Priority Date: 05/12/1984
Status: Expired due to Fees

First Claim

Patent Images

1. A method of remotely electronically authorizing a one time transaction, initiated by a user comprising the steps of:

inputting by the user of a PIN number to a remote device via a PIN key of the remote device;

processing the PIN number in the remote device to obtain a pseudo random SPIN number;

transmitting the SPIN number to a central checking device;

checking the SPIN number in a chip in the central checking device to identify the user and authorize the user if the user is authorized;

generating a one-time pseudo random transaction number via a TAN key of the remote device;

transmitting the one-time pseudo-random transaction number to the central checking device; and

checking the one-time pseudo-random transaction number in the chip in the central checking device to authorize the transaction if the user is identified as authorized during said step of checking the SPIN number.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Operating procedure and device for the electronically authorized determination of an individual matter and for obtaining, in a reliably differentiating manner which is secure against forgery, the remotely authorized, individual authentication of a transaction requiring an authentication from an authorized person. The entire system is composed of two hardware components, an AIDA box which can be a pocket calculator equipped with special function keys, and an AIDA module which is a dual processor system with insertable AIDA cards containing special chips. By putting a personal identification number into the AIDA box and through the intermediary physical action on the chip, an identification number is calculated with the aid of an algorithm and displayed. An electronic signature is calculated and displayed by putting in the information to be authenticated. After transmission over a communications system, the calculated values are checked in the AIDA module.

107 Citations

View as Search Results

26 Claims

1. A method of remotely electronically authorizing a one time transaction, initiated by a user comprising the steps of:
- inputting by the user of a PIN number to a remote device via a PIN key of the remote device;
  
  processing the PIN number in the remote device to obtain a pseudo random SPIN number;
  
  transmitting the SPIN number to a central checking device;
  
  checking the SPIN number in a chip in the central checking device to identify the user and authorize the user if the user is authorized;
  
  generating a one-time pseudo random transaction number via a TAN key of the remote device;
  
  transmitting the one-time pseudo-random transaction number to the central checking device; and
  
  checking the one-time pseudo-random transaction number in the chip in the central checking device to authorize the transaction if the user is identified as authorized during said step of checking the SPIN number.
- View Dependent Claims (2, 3, 4, 5)
- - 2. A method as in claim 1, wherein said step of checking the SPIN number and said step of processing respectively include decoding the SPIN number and coding the PIN number using a certain same algorithm, and said step of checking the transaction number and said step of generating the transaction number are performed by decoding and coding using said certain same algorithm.
  - 3. A method as in claim 1, wherein said step of transmitting the SPIN number includes the step of transmitting the SPIN number to a communications system connected to the central checking device via electrical contacts on the remote device.
  - 4. A method as in claim 1, wherein the central checking device includes a computer device, the SPIN number and the one-time transaction number being checked in the computer device in the steps of checking the SPIN number and the one-time transaction number.
  - 5. A method as in claim 1, further comprising;
    - the step of displaying the SPIN number on a display after said step of processing the PIN number, said step of transmitting the SPIN number including the steps of manually inputting the SPIN number displayed on the display to a communications system connected to said central checking device; and
      
      the step of displaying the one-time transaction number on the display, said step of transmitting the one-time transaction number including the steps of inputting the one-time transaction number displayed on the display to a communications system connected to said central checking device.

6. A method of remotely electronically authorizing a transaction initiated by a user, comprising the steps of:
- inputting a PIN number to a remote device via a PIN key of the remote device;
  
  processing the PIN number in the remote device to obtain a pseudo random SPIN number;
  
  transmitting the SPIN number to a central checking device;
  
  checking the SPIN number in the central checking device to identify the user and authorize the user if the user is authorized;
  
  depressing an AUT key of the remote device and inputting transaction data into the remote device;
  
  processing the transaction data in the remote device to obtain a first further pseudo random number out of the transaction data and uniquely identifying the transaction;
  
  transmitting the transaction data and first further pseudo random number to the central checking device; and
  
  checking the first further pseudo random number in the central checking device by calculating a second further pseudo random number out of the transaction data and comparing the first and second further pseudo random numbers to authorize the transaction if the user is identified as authorized during said step of checking the SPIN number.
- View Dependent Claims (7, 8, 9, 10)
- - 7. A method as in claim 6, wherein said step of checking the SPIN number and said step of processing the personal identification number respectively include decoding the SPIN number and coding the personal identification number using a certain same algorithm, and said step of checking the further pseudo random number and said step of generating the further pseudo random number are performed by decoding and encoding using said certain same algorithm.
  - 8. A method as in claim 7, wherein said steps of transmitting the SPIN number and the further pseudo random number include the steps of transmitting the SPIN number and transmitting the further pseudo random number to a computer device via a communications system.
  - 9. A method as in claim 6, wherein said steps of transmitting the SPIN number and the further pseudo random number include the steps of transmitting the SPIN number and transmitting the further pseudo random number to a computer device via a communications system.
  - 10. A method as in claim 6, further comprising the steps of:
    - displaying the SPIN number on a display after said step of processing the PIN number, said step of transmitting the SPIN number including the steps of manually inputting the SPIN number displayed on the display to a communications system connected to said central checking device, anddisplaying the further pseudo random number on the display, said step of transmitting the further pseudo random number including the steps of manually inputting the further pseudo random number displayed on the display to a communications system connected to said central checking device.

11. A method of identifying a user of a terminal with respect to a central unit having a computer and a data memory, including the steps ofinputting a PIN to a calculator device which is independent of the terminal;
- encoding the PIN in the calculator device according to a certain algorithm to obtain a pseudo random SPIN unique to the particular user of the terminal;
  
  feeding the SPIN into the terminal;
  
  transmitting the SPIN from the terminal to the central unit;
  
  decoding the SPIN in the central unit according the certain algorithm;
  
  checking the decoded SPIN in a module associated with the central unit to identify the user;
  
  granting access to the identified user of the central unit if the central unit identifies the user as being authorized during said step of checking;
  
  replacing the PIN by a new PIN by inputting the new PIN into the calculator device following the step of granting access;
  
  encoding the new PIN in the calculator device to obtain a new SPIN;
  
  feeding the new SPIN into the terminal;
  
  transmitting the new SPIN from the terminal to the central unit;
  
  decoding the new SPIN in the central unit; and
  
  recording the decoded SPIN and thereby the new PIN in a module in the central unit.
- View Dependent Claims (12, 13)
- - 12. A method as in claim 11, further comprising the steps of display the SPIN on a display, said step of feeding the SPIN to the terminal including the step of reading the SPIN from the display and manually feeding the SPIN to the terminal.
  - 13. A method as in claim 11, wherein said step of feeding the SPIN into the terminal includes the step of feeding the SPIN into the terminal manually.

14. A method of performing a transaction, comprising the steps of:
- inputting a PIN to a calculator device which is independent of the terminal;
  
  encoding the PIN in the calculator device according to a certain algorithm to obtain a pseudo random SPIN unique to the particular user of the terminal;
  
  feeding the SPIN into the terminal;
  
  transmitting the SPIN from the terminal to the central unit;
  
  decoding the SPIN in the central unit according the certain algorithm;
  
  checking the decoded SPIN in a module associated with the central unit to identify the user;
  
  granting access to the identified user of the central unit if the central unit identifies the user as being authorized during said step of checking;
  
  after the step of granting access to the identified user of the central unit, generating a number in the calculator device which includes the SPIN; and
  
  inputting the number into the terminal, the number being employed as a transaction number.
- View Dependent Claims (15)
- - 15. A method as in claim 14, further comprising the steps of displaying the SPIN on a display, said step of inputting the number into the terminal including the step of reading the number from the display and manually inputting the number to the terminal.

16. A method of performing a transaction resulting in a transfer of funds, comprising the steps of:
- inputting a PIN to a calculator device which is independent of the terminal;
  
  encoding the PIN in the calculator device according to a certain algorithm to obtain a pseudo random SPIN unique to the particular user of the terminal;
  
  feeding the SPIN into the terminal;
  
  transmitting the SPIN from the terminal to the central unit;
  
  decoding the SPIN in the central unit according the certain algorithm;
  
  checking the decoded SPIN in a module associated with the central unit to identify the user;
  
  granting access to the identified user of the central unit if the central unit identifies the user as being authorized during said step of checking;
  
  calculating an authenticator from a receiver'"'"'s account number and an amount of funds to be transferred, in the calculator device;
  
  inputting the authenticator, account number and amount into the terminal;
  
  transmitting the authenticator, account number and amount from the terminal to the central unit;
  
  checking the authenticator in a module associated with the central unit to authenticate the transaction;
  
  transferring the funds if the transaction is authenticated during the step of checking.
- View Dependent Claims (17, 18)
- - 17. A method as in claim 16, further comprising the step of displaying the authenticator on a display, said step of inputting the account number and amount into the terminal including the step of reading the authenticator from the display and manually inputting the authenticator into the terminal.
  - 18. An apparatus as in claim 17, wherein said pocket calculator further comprises a display and means for displaying the SPIN, the AUT number and the TAN number thereon, said terminal having means for manually inputting the SPIN, the AUT number and the TAN number thereinto.

19. A system for performing a transaction, the system comprising:
- a terminal;
  
  a central unit, connected with said terminal and including a computer and an associated module having a data memory; and
  
  a pocket calculator, independent of said terminal, for use by a user, said calculator including means for inputting thereinto a PIN and transaction data to be transmitted, for encoding the PIN to obtain a SPIN, for processing the transaction data therein to obtain a AUT number encoding the transaction data and uniquely identifying the transaction, and for generating a one-time TAN number, according to a certain algorithm;
  
  said terminal having means for inputting thereto and transmitting to the central unit the SPIN, the TAN number, the transaction data and the AUT number;
  
  said central unit having central means for decoding the SPIN and checking the decoded SPIN against PIN numbers stored therein to authorize the user, and for decoding and checking a selected one of the TAN number and the AUT number, after the decoded SPIN has been checked and the user authorized;
  
  decoding of the AUT number serving to check the transaction data and authorize the transaction, checking of the TAN number authorizing a transaction to follow, said central means performing the decoding according to an algorithm the same as the certain algorithm performed in said pocket calculator.

20. A system for remotely electronically authorizing a transaction, comprising:
- a portable calculator device having a numerical field, a display, a plurality of numerical keys associated with the numerical field, additional function keys including a PIN key, a TAN key, means for inputting a PIN number into said calculator device via said numerical keys upon contacting said PIN key, means for encoding the PIN number in calculator device to obtain a pseudo random SPIN number according to a certain algorithm, means, responsive to contacting said TAN key for generating a pseudo-random one-time transaction number according to the certain algorithm, means for displaying the SPIN number and the transaction number on said display, and electrical contacts;
  
  a module device disposable at a central checking location, including central means for checking the SPIN number when received thereby to authenticate the PIN number, for checking the transaction number when received thereby to authenticate a transaction to follow, and for granting access to a central computer device at the location when the PIN number and the transaction number have been authenticated, said central means including means for decoding the SPIN number according to the certain algorithm and processing the transaction number according to the certain algorithm; and
  
  means, connectable to said calculator device at said electrical contacts to receive numerical data, including the SPIN number and the transaction number, from the calculator device, for transmitting the numerical data to said module device, said transmitting means having means for manually inputting the numerical data thereinto for transmission to said module device.
- View Dependent Claims (21)
- - 21. A system as in claim 20, wherein said function keys further includes an AUT key, said calculator device having means, responsive to contact of said AUT key and inputting to said remote device of transaction data to be transmitted into the remote device through said numerical keys, for encoding the transaction data in said calculator device according to the certain algorithm to obtain a further pseudo random number encoding the transaction data and uniquely identifying a transaction defined by said data;
    - said module device having means, responsive to receipt of the further pseudo random number and transaction data via said transmitting means, for checking the further pseudo random number by encoding the transaction data according to the certain algorithm.

22. An apparatus for remotely electronically authorizing a one-time transaction initiated by a user, comprising:
- a remote device having means, including a PIN key for inputting by the user of PIN number via the PIN key to the remote device, said remote device including means for processing the PIN number to obtain a pseudo random SPIN number;
  
  a central checking device; and
  
  means for transmitting the SPIN number to said central checking device, said central checking device including a chip and means for checking the SPIN in said chip to identify the user and authorize the user if the user is authorized;
  
  said remote device including a TAN key and means for generating a one-time pseudo random transaction number via said TAN key;
  
  said transmitting means including means for transmitting the one-time pseudo-random transaction number to said central checking device; and
  
  said central checking device including means for checking the one-time pseudo-random transaction number in said chip to authorize the transaction if the user is identified as authorized by said checking device.
- View Dependent Claims (23, 24, 25)
- - 23. A system as in claim 22 wherein said remote device is a pocket calculator having a numerical field, a display, a plurality of keys associated with the numerical field and additional function keys.
  - 24. A system as in claim 22, wherein said remote device is a calculator device having a plurality of keys including function keys, said function keys including the PIN key, the TAN key and an AUT key, said remote device having means, responsive to depression of said AUT key and inputting to said remote device transaction data also to be transmitted to the central checking device, for processing the transaction data in said remote device to obtain a first further pseudo random number encoding the transaction data and uniquely identifying the transaction;
    - the central checking device having means for checking the first further pseudo random number in the central checking device by encoding the transaction data to obtain a second further pseudo random number, comparing the first and second further pseudo random numbers and authenticating and releasing the transaction data for further processing if the first and second further pseudo random numbers are identical.
  - 25. A system as in claim 22, wherein said remote device has a numerical field, a display, a plurality of keys associated with the numerical field and additional function keys, the function keys including a Kto key, and means, responsive to depression of said Kto key for deplaying an account number on said display.

26. A system for remotely electronically authorizing a transaction initiated by a user, comprising:
- a remote device having a PIN key, means for inputting a PIN number via said PIN key, and means for processing the PIN number in said remote device to obtain a pseudo-random SPIN number;
  
  a central checking device having means for checking the SPIN number to identify the user and authorize the user if the user is authorized; and
  
  means for transmitting the SPIN number to said central checking device;
  
  said remote device further comprising means for inputting transaction data thereto, an AUT key, and means responsive to depression of the AUT key and inputting of the transaction data for processing the transaction data to obtain a first further pseudo-random number out of the transaction data and uniquely identify the transaction;
  
  said transmitting means including means for transmitting the transaction data and the first further pseudo-random number to said central checking device;
  
  said central checking device further comprising means for checking the first further pseudo-random number by calculating a second further pseudo-random number out of the transaction data and comparing the first and second pseudo-random numbers to authorize the transaction if the user is identified as authorized upon checking of the SPIN number by said central checking device;
  
  said remote device having a numerical field, a display, a plurality of keys associated with the numerical field and additional functional keys, the additional function keys including a Kto key, and means, responsive to depression of said Kto key for displaying an account number on said display.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Betriebswirtschaftliches Institut Der Deutschen Kreditgenossenschaft BIK GmbH, Raymund H. Eisele
Original Assignee
Betriebswirtschaftliches Institut Der Deutschen Kreditgenossenschaft BIK GmbH
Inventors
Eisele, Raymund H.
Primary Examiner(s)
Faber, Alain
Assistant Examiner(s)
Weinhardt, Robert A.

Application Number

US06/733,589
Time in Patent Office

1,527 Days
Field of Search

235/379, 235/380, 235/492, 235/382, 235/382.5, 364/705, 364/408, 340/825.31, 340/825.33, 340/825.34, 380/23, 380/24, 380/25, 902/1, 902/2
US Class Current

235/379
CPC Class Codes

G06Q 20/341   Active cards, i.e. cards in...

G06Q 20/40   Authorisation, e.g. identif...

G06Q 20/4012   Verifying personal identifi...

G06Q 20/4093   Monitoring of device authen...

G06Q 20/40975   using encryption therefor

G07C 9/33   by means of a password

G07F 7/1008   Active credit-cards provide...

G07F 7/1016   Devices or methods for secu...

Method and device for making an electronic authentication

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

107 Citations

26 Claims

Specification

Use Cases

Quick Links

Others

Method and device for making an electronic authentication

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

107 Citations

26 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others