Card-type storage medium protecting data stored in its memory by interrupting an existing transaction after a predetermined permissible number of accesses
First Claim
1. A method for managing security for a card-type storage medium having a storage unit keeping a data file therein, comprising the steps of:
- setting beforehand a permissible number of file accesses in one transaction for said data file;
counting a number of file accesses to said data file after an authentication process and after a start of a transaction when said transaction is started between said card-type storage medium and a transaction apparatus accessing said card-type storage medium to execute said transaction, comparing the number of file accesses counted with said permissible number of file accesses set beforehand, determining that an error has occurred if said number of file accesses exceeds said permissible number of file accesses, and interrupting said transaction.
0 Assignments
0 Petitions
Accused Products
Abstract
An apparatus and method for managing security of an IC card such as a cashless payment card, an ID card, a medical health management card, a local government service card, etc. in each transaction with an object to improve a level of the security. The permissible number of accesses to a data file in each transaction is beforehand set. When a transaction is started between a card-type storage medium and a transaction apparatus, the number of accesses to the data file after the start of the transaction is counted and the counted number of accesses is compared with the permissible number of accesses. If the number of accesses exceeds the permissible number of accesses, it is judged that an error has occurred so as to interrupt the transaction.
-
Citations
32 Claims
-
1. A method for managing security for a card-type storage medium having a storage unit keeping a data file therein, comprising the steps of:
-
setting beforehand a permissible number of file accesses in one transaction for said data file; counting a number of file accesses to said data file after an authentication process and after a start of a transaction when said transaction is started between said card-type storage medium and a transaction apparatus accessing said card-type storage medium to execute said transaction, comparing the number of file accesses counted with said permissible number of file accesses set beforehand, determining that an error has occurred if said number of file accesses exceeds said permissible number of file accesses, and interrupting said transaction. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A method of managing security for a card-type storage medium having a storage unit keeping a data file therein comprising the steps of:
-
setting beforehand a permissible file access period to said data file in one transaction; measuring a file access period to said data file after an authentication process and after a start of a transaction when said transaction is started between said card-type storage medium and a transaction apparatus accessing said card-type storage medium to execute said transaction therewith, comparing the file access period measured with said permissible file access period set beforehand, determining that an error has occurred if said file access period exceeds said permissible file access period, and interrupting said transaction. - View Dependent Claims (8, 9, 10)
-
-
11. A method for managing security for a card-type storage medium having a storage unit keeping a data file therein comprising the steps of:
-
setting beforehand a permissible number of file accesses and a permissible file access period for said data file in one transaction, counting a number of file accesses and measuring a file access period to said data file after an authentication process and after a start of a transaction when said transaction is started between said card-type storage medium and a transaction apparatus accessing said card-type storage medium to execute the transaction therewith, comparing the number of file accesses counted with said permissible number of file accesses set beforehand and comparing the file access period measured with said permissible file access period, determining that an error has occurred if said number of file accesses exceeds said permissible number of file accesses or if said file access period exceeds said permissible file access period, and interrupting said transaction. - View Dependent Claims (12, 13, 14, 15, 16)
-
-
17. In a card-type storage medium having a storage unit having a data area keeping a data file therein and a directory area keeping control information about the data file in said data area therein and a control unit managing the data file in said data area in said storage unit on the basis of the control information in said directory area in said storage unit, the improvement comprising:
-
said directory area in said storage unit being set beforehand with a permissible number of file accesses for said data file in one transaction; said control unit comprising; a counting means for counting a number of file accesses to said data file after an authentication process and after a start of a transaction when said transaction is started with an external apparatus; a comparing means for comparing the number of file accesses counted by said counting means with said permissible number of file accesses set beforehand in said directory area in said storage unit; and an error judging means for determining that an error has occurred if said number of file accesses exceeds said permissible number of file accesses as a result of comparison by said comparing means, and for interrupting said transaction. - View Dependent Claims (18, 19, 20, 21, 22)
-
-
23. In a card-type storage medium having a storage unit having a data area keeping a data file therein and a directory area keeping control information about the data file in said data area therein and a control unit managing the data file in said data area in said storage unit on the basis of the control information in said directory area in said storage unit, the improvement comprising:
-
said directory area in said storage unit being beforehand set with a permissible file access period for said data file in each transaction; said control unit comprising; a timer means for measuring a file access period to said data file after an authentication process and after a start of a transaction when said transaction is started with an external apparatus; a comparing means for comparing the file access period measured by said timer means with said permissible file access period set beforehand in said directory area in said storage unit; and an error judging means for determining that an error has occurred if said file access period exceeds said permissible file access period as a result of comparison by said comparing means, and for interrupting said transaction. - View Dependent Claims (24, 25, 26)
-
-
27. In a card-type storage medium having a storage unit having a data area keeping a data file therein and a directory area keeping control information about the data file in said data area therein and a control unit managing the data file in said data area in said storage unit on the basis of the control information in said directory area in said storage unit, the improvement comprising:
-
said directory area in said storage unit being beforehand set with a permissible number of file accesses and a permissible file access period for said data file in one transaction; said control unit comprising; a counting means for counting a number of file accesses to said data file after an authentication process and after a start of a transaction when said transaction is started with an external apparatus; a timer means for measuring a file access period to said data file after the authentication process and after the start of said transaction; a first comparing means for comparing the number of file accesses counted by said counting means with said permissible number of file accesses set beforehand in said directory area in said storage unit; a second comparing means for comparing the file access period measured by said timer means with said permissible file access period set beforehand in said directory area in said storage unit; and an error judging means for determining that an error has occurred if said number of file accesses exceeds said permissible number of file accesses as a result of comparison by said first comparing means or if said file access period exceeds said permissible file access period as a result of comparison by said second comparing means, and for interrupting said transaction. - View Dependent Claims (28, 29, 30, 31, 32)
-
Specification