Smart card pin system, card, and reader
First Claim
1. A system for authenticating a user, the system comprising:
- (a) a smart card for presentation by the user, said smart card being associated with a secret personal identification number and including an authentication module having a smart card keypad for receiving an entry of a sequence of symbols from the user, said authentication module also having an authentication unit for determining whether said sequence of symbols corresponds to said secret personal identification number, said authentication module being normally disabled, and wherein said smart card keypad excludes identifying indicia; and
(b) a reader operative to accepting smart cards and exchanging data therewith, the reader being operative to enable said authentication module upon receiving said smart card, said reader including identifying indicia to enable said entry of a sequence of symbols by said user upon said smart card being received by said reader.
2 Assignments
0 Petitions
Accused Products
Abstract
A smart card, smart card reader, and system for secure entry of a secret personal identification number (PIN) directly into the smart card while the card is presented to the reader. Because the user'"'"'s PIN is entered directly into the smart card, authenticated directly by the smart card itself, and not propagated outside the smart card, the PIN cannot be covertly obtained through the use of a compromised reader or other device in the system. A PIN keypad on the smart card allows user entry of the PIN, and an authentication unit within the smart card verifies that the PIN is correct. The reader merely supplies electrical power for the smart card to take the PIN entry and perform the authentication, but does not handle the PIN itself in any way. The reader, however, is designed to allow access to the keypad on the smart card while the smart card is being presented. The smart card keypad may have identifying indicia, or alternatively may be not visible, so that photographs, logos, etc., placed on the smart card will not be obscured. In this case, the reader has an overlaying surface with the identifying indicia for the keypad. The reader may also have a separate keypad of its own for use with conventional smart cards that lack a keypad.
-
Citations
26 Claims
-
1. A system for authenticating a user, the system comprising:
-
(a) a smart card for presentation by the user, said smart card being associated with a secret personal identification number and including an authentication module having a smart card keypad for receiving an entry of a sequence of symbols from the user, said authentication module also having an authentication unit for determining whether said sequence of symbols corresponds to said secret personal identification number, said authentication module being normally disabled, and wherein said smart card keypad excludes identifying indicia; and
(b) a reader operative to accepting smart cards and exchanging data therewith, the reader being operative to enable said authentication module upon receiving said smart card, said reader including identifying indicia to enable said entry of a sequence of symbols by said user upon said smart card being received by said reader. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
(i) light-emitting means operative to illuminating said smart card keypad while an entry is being made into said smart card keypad; and
(ii) conditionally visible identifying indicia which are visible when illuminated by said light-emitting means.
-
-
8. The system as in claim 1, wherein said user access area further comprises an overlaying surface above said smart card keypad when said smart card is presented to said reader, and which permits the user to make said entry into said smart card keypad through said overlaying surface, said overlaying surface having identifying indicia thereon.
-
9. The system as in claim 8, further comprising a plurality of readers, wherein, for each of said plurality of readers, said overlaying surface is mapped into said user access area by a transformation function which is preselected from a plurality of transformation functions and having a physical template preselected from a plurality of physical templates, wherein said reader is operative to communicating said transformation function to said smart card when said smart card is presented to said reader, and wherein said smart card is operative to receiving said entry of said secret personal identification number transformed in accordance with said transformation function.
-
10. The system as in claim 9, wherein said transformation function is a translation specified by an offset vector.
-
11. The system as in claim 8, wherein said overlaying surface is deformable, permitting the user to make said entry into said smart card keypad through said overlaying surface by deforming said overlaying surface.
-
12. The system as in claim 8, wherein said overlaying surface is perforated by at least one hole, permitting the user to make said entry into said smart card keypad through said at least one hole.
-
13. A reader for accepting and exchanging data with a smart card associated with a secret personal identification number, the smart card including a smart card keypad for making an entry of the secret personal identification number, wherein the smart card keypad excludes identifying indicia, the reader comprising:
-
(a) a user access area whereby the secret personal identification number can be entered into the smart card keypad while the smart card is presented to the reader, and (b) an overlaying surface above the smart card keypad when the smart card is presented to the reader, and which permits the user to make the entry of the secret personal identification number into the smart card keypad through said overlaying surface, said overlaying surface having identifying indicia thereon. - View Dependent Claims (14, 15, 16, 17, 18)
-
- 19. A smart card for presentation to, acceptance by, and exchanging data with a reader, the smart card being associated with a secret personal identification number, the smart card comprising an authentication module including a smart card keypad for receiving an entry of a sequence of symbols while the smart card is presented to the reader and an authentication unit for determining whether said sequence of symbols corresponds to said secret personal identification number, said authentication module being normally disabled and being enabled when the smart card is presented to the reader, and wherein said smart card keypad excludes identifying indicia.
-
24. A method for authenticating the user of a smart card, the smart card being associated with a secret personal identification number and including a smart card authentication module having a smart card keypad wherein said smart card keypad excludes identifying indicia, the method comprising the steps of:
-
(a) normally disabling the smart card authentication module;
(b) providing at least one reader operative to accepting the smart card;
(c) having the user present the smart card to said at least one reader;
(d) enabling the smart card authentication module while the smart card is presented to said at least one reader;
(e) providing identifying indicia for use with said smart card keypad;
(f) challenging the user to enter the secret personal identification number into the smart card keypad while the smart card is presented to said at least one reader;
(g) receiving a sequence of symbols via the smart card keypad;
(h) determining the user to be an authorized user only if said sequence of symbols corresponds to the secret personal identification number; and
(i) rejecting attempts by the user to perform an authentication when the smart card is not presented to said at least one reader. - View Dependent Claims (25, 26)
-
Specification