Enhanced security for a secure token code
First Claim
1. Apparatus for providing enhanced security for a multibit secure token code which is obtained from a token, the apparatus comprising:
- means included as part of said token for storing a multibit token secret which is related to the secure token code in a predetermined way;
a character input device on said token for inputting a multicharacter secret code known to an authorized user of the token; and
a processor in said token for generating the corresponding secure token code from the stored token secret and the inputted secret code and for storing the generated secure token code in the token.
7 Assignments
0 Petitions
Accused Products
Abstract
A method and apparatus are provided for enhancing security for a private key or other multibit secure token code stored in a token by (a) assuring that the secure token code is not stored in the token except for short intervals when the token is actually in use by an authorized user and (b) by assuring that the secure token code cannot be obtained from the token except by an authorized user. This is accomplished by algorithmically combining a PIN or other secret code memorized by the user with the secure token code, either in the token or at a suitable terminal, to generate a meaningless multibit sequence/token secret which is stored in the token. The multibit sequence stored in the token is selected such that when it is algorithmically combined with the secret memorized code known only to the user, either in the token or at a terminal, it produces the private key or other secure token code.
-
Citations
38 Claims
-
1. Apparatus for providing enhanced security for a multibit secure token code which is obtained from a token, the apparatus comprising:
-
means included as part of said token for storing a multibit token secret which is related to the secure token code in a predetermined way; a character input device on said token for inputting a multicharacter secret code known to an authorized user of the token; and a processor in said token for generating the corresponding secure token code from the stored token secret and the inputted secret code and for storing the generated secure token code in the token. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. Apparatus for providing enhanced security for a multibit secure token code which is obtained from a token, the apparatus comprising:
-
means included as part of said token for storing a predetermined multibit token secret which is related to the secure token code in a predetermined way; means for inputting a multicharacter secret code known to an authorized user of the token; and means for generating and storing the secure token code when the predetermined multibit token secret stored with the token and the inputted secret code are received. - View Dependent Claims (8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32)
-
-
33. Apparatus for providing enhanced security for a multibit secure token code which is obtained from a machine readable token, the apparatus comprising:
-
means included as part of said token for storing a multibit token secret which is related to the secure token code in a predetermined way; and a terminal having a processor, a character input device for said processor and a token reader, an authorized user utilizing said input device to input a multicharacter secret code known to such user into the processor, said token reader reading the stored multibit token secret from a token applied thereto, and said processor utilizing a combining algorithm to combine the secret code and multibit sequence applied thereto to obtain a corresponding secure token code.
-
-
34. A token having a memory element for storing a selected multibit sequence which is used under selected conditions to generate a desired multibit secure token code unique to a token user, which token is formed by the process of:
-
initially storing said multibit secure token code; inputting a secret code known to the token user; utilizing a combining algorithm to combine the secure token code and the secret code to generate the a multibit token secret, the multibit token secret when algorithmically combined with the secret code producing the secure token code; and storing the multibit token secret as the selected multibit sequence in the token memory element.
-
-
35. A method for storing in a token memory element a selected multibit token secret which is mused under selected conditions to generate a desired multibit secure token code unique to the token user, the method comprising the steps of:
-
initially storing said multibit secure token code; inputting a secret code known to the token user; utilizing a combining algorithm to combine the secure token code and the secret code to generate the multibit token secret, the multibit token secret when algorithmically combined with the secret code producing the secure token code; and storing the multibit sequence in the token memory element.
-
-
36. Apparatus for storing in a token memory element a selected multibit token secret which is used under selected conditions to generate a desired multibit secure token code unique to a token user, the apparatus comprising:
-
means for storing said multibit secure token code; means for inputting a secret code known to the token user; means for utilizing a combining algorithm to combine the secure token code and the secret code to generate the multibit token secret, the multibit token secret when algorithmically combined with the secret code producing the secure token code; and means for storing the multibit token secret in the token memory element.
-
-
37. A method for utilizing a token storing a selected multibit token secret to generate a desired multibit secure token code unique to a token user, the method comprising the steps of:
-
reading out the multibit token secret; inputting a secret code known to the token user, and utilizing a combining algorithm to combine the read-out multibit token secret and the inputted secret code to generate the multibit secure token code.
-
-
38. Apparatus for utilizing a token storing a selected multibit token secret to generate a desired multibit secure token code unique to a token user, the apparatus comprising:
-
means for reading out the multibit token secret; means for inputting a secret code known to the token user; and means for utilizing a combining algorithm to combine the read-out multibit token secret and the inputted secret code to generate the multibit secure token code.
-
Specification