Method and apparatus for improved security using access codes
First Claim
1. A method of controlling access to a credit account employing a system of the type which requires entry of an account information data block and a proper access code in order to conduct and conclude a transaction, the system having storage means for storing a plurality of access codes, each stored access code being uniquely associated with an account information data block, said method comprising the steps of:
- (a) initiating a first transaction upon receiving a user entered account information data block for identifying a user account to be accessed in said first transaction;
(b) selecting a first stored access code responsive to entry of, and corresponding to, said account information data block;
(c) receiving a first user entered access code;
(d) comparing said selected first stored access code with said user entered access code, and, upon a match therebetween, enabling access to said credit account for successfully conducting and concluding said first transaction;
(e) disabling access to said credit account after said first transaction is concluded;
(f) replacing said first access code stored in said storage means wit a second access code different from said first access code;
(g) initiating a second transaction upon receiving said user entered account information data block a second time for identifying said user account to be accessed in said second transaction;
(h) selecting said second access code responsive to entry of, and corresponding to, said account information data block;
(i) receiving a second user entered access code;
(j) comparing said selected second access code with said second user entered access code, and, upon a match therebetween, enabling access to said credit account for successfully conducting and concluding said second transaction; and
(k) disabling access to said credit account after said second transaction is concluded;
wherein;
said replacing step includes the step of altering at least part of said selected first stored access code to define said second access code;
said access codes each include a plurality of digits; and
said altering step includes altering at least one of the digits of said stored first access code in accordance with a prescribed pattern from transaction to transaction.
2 Assignments
0 Petitions
Accused Products
Abstract
An improvement in structure and credit account access security employing method and means for ensuring that repeating an exact access code which was successful in accessing the account will be unsuccessful at the next or subsequent tries. The user enters a PIN code in accordance with a prescribed, but variable, sequence, the sequence being different for each transaction from the previous transaction. The user inputs the PIN by entering a sequence of alphanumeric symbols in accordance with a prescribed "start" sequence of symbols for recognition as a proper 4-digit PIN for a first transaction. The user must enter a new PIN to access the same account on subsequent tries. Preferably, the sequence of symbols comprising the PIN has only one symbol different from the "start" sequence for recognition as a proper PIN for a second transaction and the third transaction may require yet a third sequence of alphanumeric symbols comprising a third PIN. As many different PINs as desired can be accommodated within reasonable limits.
-
Citations
19 Claims
-
1. A method of controlling access to a credit account employing a system of the type which requires entry of an account information data block and a proper access code in order to conduct and conclude a transaction, the system having storage means for storing a plurality of access codes, each stored access code being uniquely associated with an account information data block, said method comprising the steps of:
-
(a) initiating a first transaction upon receiving a user entered account information data block for identifying a user account to be accessed in said first transaction; (b) selecting a first stored access code responsive to entry of, and corresponding to, said account information data block; (c) receiving a first user entered access code; (d) comparing said selected first stored access code with said user entered access code, and, upon a match therebetween, enabling access to said credit account for successfully conducting and concluding said first transaction; (e) disabling access to said credit account after said first transaction is concluded; (f) replacing said first access code stored in said storage means wit a second access code different from said first access code; (g) initiating a second transaction upon receiving said user entered account information data block a second time for identifying said user account to be accessed in said second transaction; (h) selecting said second access code responsive to entry of, and corresponding to, said account information data block; (i) receiving a second user entered access code; (j) comparing said selected second access code with said second user entered access code, and, upon a match therebetween, enabling access to said credit account for successfully conducting and concluding said second transaction; and (k) disabling access to said credit account after said second transaction is concluded;
wherein;said replacing step includes the step of altering at least part of said selected first stored access code to define said second access code; said access codes each include a plurality of digits; and said altering step includes altering at least one of the digits of said stored first access code in accordance with a prescribed pattern from transaction to transaction. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method of controlling access to a protected unit employing a system of the type which requires entry of a proper access code in order to disable a protective device denying access to the unit and permit a user to gain access to the unit, the system having storage means for storing a plurality of access codes, each stored access code being uniquely associated with an individual user, said method comprising the steps of:
-
(a) selecting a first stored access code from said plurality of stored access codes; (b) receiving a first user entered access code; (c) comparing said selected first stored access code with said user entered access code, and, upon a match therebetween, disabling said protective device to give access to said protected unit; (d) enabling said protective device to again deny access to said protected unit; (e) replacing said first access code stored in said storage means with a second access code different from said first access code; (f) selecting said second access code; (g) receiving a second user entered access code; and (h) comparing said selected second access code with said second user entered access code, and, upon a match therebetween, disabling said protective device;
wherein;said replacing step includes the step of altering at least part of said selected first stored access code to define said second access code; and said altering step includes altering at least one of the digits of said stored first access code in accordance with a prescribed pattern from each attempt to gain access to the protected unit to the next attempt. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. An apparatus for controlling to a credit account, said apparatus being of the type which has means for recognizing valid entry of an account information data block and a proper access code in order to permit a user to conduct an conclude a transaction, the system including control means for alternately denying and authorizing access to an account, memory means for storing a plurality of access codes, each stored access code being uniquely associated with an individual user, said apparatus comprising:
-
means for receiving a user entered account information data block and identifying a user account in a first transaction and for receiving user entered access codes; means for selecting a first stored access code from said memory means responsive to entry of, and corresponding to, said account information data block; means for comparing said selected first stored access code from said memory means with a user entered access code from said receiving means, and, upon a match therebetween, generating an access authorized signal routed to said control means for authorizing access to said account; and means for replacing said first access code with a second access code different from said first access code; and
wherein;in a second transaction, said comparing means compares said second access code with a second user entered access code from said receiving means, and, upon a match therebetween, generates an access authorization signal routed to said control means for authorizing access to said account; said means for replacing includes means for altering at least part of said selected first stored access code to define said second access code; and said altering means includes means for altering at least one of the digits of said stored first access code in accordance with a prescribed pattern from transaction to transaction. - View Dependent Claims (16, 17, 18)
-
-
19. An apparatus for controlling access to a protected unit, said apparatus being of the type which has means for recognizing valid entry of a proper access code in order to disable a protective device and permit a user to gain access to the unit, the system including control means for alternately denying and authorizing access to said unit, memory means for storing a plurality of access codes, each stored access code being uniquely associated with an individual user, said apparatus comprising:
-
means for receiving user entered access codes; means for selecting a first stored access code from said memory means; means for comparing said selected first stored access code from said memory means with a user entered access code from said receiving means, and, upon a match therebetween, generating an access authorized signal routed to said control means for disabling said protective device; means for replacing said first access code with a second access code different from said first access code; and wherein, in a second transaction, said comparing means compares said second access code with a second user entered access code from said receiving means, and, upon a match therebetween, generates an access authorization signal routed to said control means for disabling said protective device;
whereinsaid means for replacing includes means for altering at least part of said selected first stored access code to define said second access code; and said means for altering includes means for altering at least one of the digits of said stored first access code in accordance with a prescribed pattern from each attempt to gain access to the protected unit to the next attempt.
-
Specification