×

Authentication system and method for smart card transactions

  • US 5,721,781 A
  • Filed: 09/13/1995
  • Issued: 02/24/1998
  • Est. Priority Date: 09/13/1995
  • Status: Expired due to Term
First Claim
Patent Images

1. A method for authenticating a transaction between a portable information device and a terminal, the portable information device storing a device-related certificate unique to the device and the terminal storing a terminal-related certificate unique to the terminal which includes information regarding a type of terminal, the method comprising the following steps:

  • exchanging the device-related and terminal-related certificates between the portable information device and the terminal during a transaction;

    authenticating the portable information device and the terminal to each other using the exchanged device-related and terminal-related certificates;

    determining, at the portable information device, a security level for the terminal based on the terminal type information contained in the terminal-related certificate received from the terminal, the security level having an associated value limit for a value of the transaction conducted during the transactional session; and

    restricting the value of the transaction to the value limit associated with the determined security level.

View all claims
  • 2 Assignments
Timeline View
Assignment View
    ×
    ×