Consumer oriented smart card system and authentication techniques

US 5,193,114 A
Filed: 08/08/1991
Issued: 03/09/1993
Est. Priority Date: 08/08/1991
Status: Expired due to Fees

First Claim

Patent Images

1. A method of authenticating a person'"'"'s identity who claims authority to use a device as a part of a closed system comprising the steps of:

A. Having said person enter an identification code on a plurality of electric switches andB. Measuring the amount of time each individual switch is activated andC. Measuring the amount of time between deactivation of each switch and activation of the following switchD. Measuring the cadence of code entry and,E. Comparing said measurements to counterpart measurements taken on previous code entries made by the known authorized person to determine if a predetermined positive correlation exists to authenticate the claiming person.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A consumer oriented secure smart card with various accounts which are accessible only through proper use of security measures. Security measures consist of encryption with described automatic key generation and management technique and a technique to authenticate the individual presenting the card.

The encryption key generation and management technique involves having a secret constant or several secret constants programmed into the card and reader, having a secret mathematical function (algorithm) programmed into the card and reader and having both units generate a group of random characters or bits which are used locally and transmitted to the counterpart unit to generate a set of session encryption keys. The random bits and the constants undergo the algorithm in order to produce a unique transmit and receive key for each session.

The method of authenticating an individual as authorized to present the card involves the individual'"'"'s entering a password or personal identification number and having the equipment measure the time of each key depression, the time from release of one key to depression of the next, comparing these measurements and other derivative measurements to previously stored counterparts in order to determine if sufficient positive correlation exists to authenticate the presentor.

264 Citations

8 Claims

1. A method of authenticating a person'"'"'s identity who claims authority to use a device as a part of a closed system comprising the steps of:
- A. Having said person enter an identification code on a plurality of electric switches andB. Measuring the amount of time each individual switch is activated andC. Measuring the amount of time between deactivation of each switch and activation of the following switchD. Measuring the cadence of code entry and,E. Comparing said measurements to counterpart measurements taken on previous code entries made by the known authorized person to determine if a predetermined positive correlation exists to authenticate the claiming person.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. A method of authenticating the user of a rotary combination lock comprising:
    - A. tumbler switches which measures the time the combination dial is at rest at each tumbler position and the amount of time required to move said dial from one rest position to the next rest position andB. a means to make and compare said measurements as described in claim 1.
  - 3. A method of authenticating the user of a push button combination lock comprising:
    - A. A set of push switches which measures the time of activation of each switch and the time between deactivation of one switch and activation of the next switch andB. A means to make and compare said measurements as described in claim 1.
  - 4. A method of authenticating the user of a computer terminal comprising:
    - A. A set of push switches chosen from a group of sets of push switches comprised of the terminal'"'"'s own keyboard means and a seperately provided keyboard means which measures the time of switch activation and the time between deactivation of one switch and activation of the next switch andB. A means to make and compare said measurements as described in claim 1.
  - 5. A method according to claim 1, further including a portable memory device segmented into portions which are individually accessable only by use of the proper combination of secret constant, random bits, relational means, encryption means, code entry and cadence of code entry.
  - 6. A system comprisingA. A portable memory device as described in claim 5 andB. A means for accessing and reading/writing said portable memory device andC. A means for communicating with auxiliary equipment.
  - 7. A method according to claim 1 further including automatically generating secret encryption keys among the various members of a group of equipment operating as a closed secure system and excluding nonmembers fro listening or participating in intergroup communication comprising:
    - A;
      
      Selecting at least one secret constant from the groups of alpha characters, numeric characters and control characters andB;
      
      Loading a memory means with said constant and an encryption process andC;
      
      Randomly generating a group of binary bit which are transmitted from one group member and received by at least one other group member andD;
      
      Combining by means of said encryption process said constant and said random binary bits to generate an encryption key at both the transmitting group member and the receiving group member.
  - 8. A method according to claim 7 further including a series of devices which permits two or more entities to influence the generating of said encryption key to the exclusion of other combination of related entities comprising:
    - A;
      
      Segmenting said constant into a plurality of predetermined portions to permit each entity to contribute a predetermined portion of said constant andB;
      
      Loading said predetermined portions into said memory means.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Donald R. Moseley
Original Assignee
Donald R. Moseley
Inventors
Moseley, Donald R.
Primary Examiner(s)
CANGIALOSI, SALVATORE A

Application Number

US07/742,314
Time in Patent Office

579 Days
Field of Search

380/23, 380/25, 380/28, 380/46, 380/47, 380/49, 340/825.31, 340/825.34
US Class Current

713/183
CPC Class Codes

G06Q 20/341   Active cards, i.e. cards in...

G06Q 20/367   involving electronic purses...

G06Q 20/4012   Verifying personal identifi...

G06Q 20/40145   Biometric identity checks

G06Q 20/40975   using encryption therefor

G07C 9/23   by means of a password

G07C 9/37   using biometric data, e.g. ...

G07F 7/1008   Active credit-cards provide...

H04L 2209/56   Financial cryptography, e.g...

H04L 9/085   Secret sharing or secret sp...

H04L 9/0869   involving random numbers or...

H04L 9/3226   using a predetermined code,...

Consumer oriented smart card system and authentication techniques

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

264 Citations

8 Claims

Specification

Use Cases

Quick Links

Others

Consumer oriented smart card system and authentication techniques

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

264 Citations

8 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others