Combination pin pad and terminal
First Claim
1. A transaction terminal comprising a tamper resistant secure module, a display, a keyboard and a non-secured portion, said tamper resistant secure module acting as an intermediary and controlling the communication of data and prompts between said keyboard, said display, and said non-secured portion of said terminal in either non-encrypted clear text mode or encrypted secure text mode, said keyboard allowing the entry of data, said non secured portion of said terminal having a predetermined group of prompts and authentication parameters where each prompt is paired with an authentication parameter and some of said paired prompts and authentication parameters are authorized for non-encrypted clear text mode and some of said paired prompt and authentication parameters are authorized for encrypted secure text mode, said tamper resistant secure module having confirmation means to independently confirm the prompt of a prompt pair received form said non-secured portion is a proper prompt for non-encrypted clear text mode prior to communication of said prompt to said display.
1 Assignment
0 Petitions
Accused Products
Abstract
A secure terminal is disclosed which has a single keypad and display which is suitable as a debit terminal, as both confidential and nonconfidential information can be entered. Confidential information is entered in secure text mode whereas nonconfidential information is entered in clear text mode. The terminal defaults to secure text mode where all information is encrypted. In clear text mode all prompts are independently authenticated by a secure module prior to displaying of the prompt. Prompts for clear text mode are preprogrammed preferably with an Authentication Parameter which is confirmed by the secure module whenever that prompt is used in clear text mode. The invention is also directed to the methods for rendering a terminal and system secure for receiving confidential and nonconfidential information.
131 Citations
14 Claims
- 1. A transaction terminal comprising a tamper resistant secure module, a display, a keyboard and a non-secured portion, said tamper resistant secure module acting as an intermediary and controlling the communication of data and prompts between said keyboard, said display, and said non-secured portion of said terminal in either non-encrypted clear text mode or encrypted secure text mode, said keyboard allowing the entry of data, said non secured portion of said terminal having a predetermined group of prompts and authentication parameters where each prompt is paired with an authentication parameter and some of said paired prompts and authentication parameters are authorized for non-encrypted clear text mode and some of said paired prompt and authentication parameters are authorized for encrypted secure text mode, said tamper resistant secure module having confirmation means to independently confirm the prompt of a prompt pair received form said non-secured portion is a proper prompt for non-encrypted clear text mode prior to communication of said prompt to said display.
- 10. A point of purchase terminal comprising a display, a tamper resistant secure module, a keypad, a non secure module, a communication port for communicating with an outside source, said terminal operating in either a non-encrypted clear text mode where data is transmitted in a non encrypted form and in an encrypted secure text mode where data is transferred in an encrypted form, said secure module including means for receiving prompts for clear text mode and means for generating an authentication parameter for each prompt and means for transmitting and storing each paired prompt and authentication parameter in said non secure module, said non secure module including means for instructing said secure module to operate in clear text mode and to provide pairs of prompts and authentication parameters to said secure module in clear text mode, said secure module when operating in clear text mode including means for confirming each prompt by regenerating the authentication parameter for the prompt and only transmitting the prompt to said display terminal if the regenerated authentication parameter corresponds to the authentication parameter provided with the pair.
-
13. A transaction terminal comprising a tamper resistant security module, a non-secured portion, a display for displaying data for a user or displaying a prompt provided by said non-secured portion to request a user to input certain data, and a keypad through which a user can input data;
- said tamper resistant security module, said display, said keypad and said non-secured portion cooperating to communicate data or prompts therebetween;
said tamper resistant security module acts as an intermediary and encrypts certain data when communicated between said keyboard, said display, and said non-secured portion of said terminal;
said non-secured portion controlling the general operation of the terminal and providing to said tamper resistant security module prompts and authentication parameters where each prompt is paired with a particular authentication parameter, said tamper resistant security module relaying data inputted at said keypad to said non-secured portion in a clear text mode where the data is not encrypted or in a secure text mode where the data is encrypted dependent upon the particular prompt and authentication parameter provided to said tamper resistant security module by said non secured portion;
said paired prompts and authentication parameters being stored in said non secured portion, and said tamper resistant security module having confirmation means which prior to any communication in clear text mode uses the provided prompt to generate an authentication parameter and operates in dear text mode if the generated authentication parameter corresponds to the authentication parameter provided with the prompt. - View Dependent Claims (14)
- said tamper resistant security module, said display, said keypad and said non-secured portion cooperating to communicate data or prompts therebetween;
Specification