Method and apparatus for secure PIN entry
First Claim
1. A method for authenticating a multi-digit personal identification number (PIN) having a plurality of digits using a digit-by-digit dialogue via electromagnetic communication, comprising the steps of:
- (A) generating a random number;
(B) providing a user with a first value that is a function of the random number, wherein the first value is provided to the user via an electronic device;
(C) prompting the user to encode a selected PIN digit, wherein the user calculates a second value that is the result of a mathematical operation involving, as operands, the selected PIN digit and the first value;
(D) receiving the second value from the user via electromagnetic communication;
(E) authenticating the selected PIN digit using the second value and a third value that is a function of the first value; and
(F) repeating steps (A) thru (E) for each of the plurality of digits of the multi-digit PIN.
2 Assignments
0 Petitions
Accused Products
Abstract
A method and apparatus for secure entry and authentication of a multi-digit personal identification number (PIN) is described. An authenticator generates a random number, and provides that number, or a function thereof, to a user. The user is prompted to encode each digit of the PIN number, one digit at a time, by performing a mathematical operation on the digit using the number provided by the authenticator. The encoded PIN digit is provided to the authenticator which reverses the steps performed by the user to regenerate and verify the user'"'"'s PIN. The user is prompted to encode subsequent digits of the PIN only after (1) a previous digit is encoded, (2) the encoded digit is provided to an input device for the authenticator, (3) and a new random number is generated and that random number, or a function thereeof, is provided to the user for encoding a subsequent PIN digit.
65 Citations
6 Claims
-
1. A method for authenticating a multi-digit personal identification number (PIN) having a plurality of digits using a digit-by-digit dialogue via electromagnetic communication, comprising the steps of:
-
(A) generating a random number; (B) providing a user with a first value that is a function of the random number, wherein the first value is provided to the user via an electronic device; (C) prompting the user to encode a selected PIN digit, wherein the user calculates a second value that is the result of a mathematical operation involving, as operands, the selected PIN digit and the first value; (D) receiving the second value from the user via electromagnetic communication; (E) authenticating the selected PIN digit using the second value and a third value that is a function of the first value; and (F) repeating steps (A) thru (E) for each of the plurality of digits of the multi-digit PIN. - View Dependent Claims (2, 3, 4)
-
-
5. An apparatus for authenticating a personal identification number (PIN) having a plurality of digits, comprising:
-
a central processing unit (CPU) configured to cause a random number generator to generate a random number for each of the plural digits in the PIN and further configured to calculate a plurality of values, one for each random number, wherein each value is a function of one of the random numbers; and a prompter for prompting the user to encode one of the PIN digits at a time using one of the calculated values, and for prompting the user to provide the encoded PIN digit to an input device; and an authenticator that receives the encoded digit from the input device and authenticates the PIN digit; wherein the CPU is further configured to cause the prompter to prompt the user to encode each PIN digit in the PIN after the previously-encoded digit is provided to the input device.
-
-
6. An apparatus for authenticating a multi-digit personal identification number (PIN), comprising:
-
a processor; and a computer readable medium having program code embodied therein for causing the processor to perform at least a first, second, third, fourth and fifth function, the program code comprising; code segment for causing performance of the first function wherein the processor generates a random number; code segment for causing performance of the second function wherein the processor generates a first value that is a function of the random number and causes the first value to be provided, via electronic means, to a user; code segment for causing performance of the third function wherein the processor receives a second value from the user, said second value being representative of an encoded selected PIN digit, said encoding resulting from a mathematical operation involving, as operands, the selected PIN digit and the first value; code segment for causing performance of the fourth function wherein the processor authenticates the selected PIN digit using the second value and a third value that is a function of the first value; and code segment for causing performance of the fifth function wherein the processor authenticates each PIN digit in the multi-digit PIN on a digit-by-digit basis, such that a new first value is provided to the user for encoding a new selected PIN digit after the second value representative of the previously-encoded selected PIN digit is received by the processor.
-
Specification