Multi-purpose transaction card system
First Claim
1. A method for conducting financial transactions using a card, a terminal, and an issuer substantially according to EMV specification, the method comprising:
- generating variable transaction data;
constructing a message block having a value dependent on at least some of said variable transaction data;
generating, by the card, an authentication of the message block;
sending said authentication to the terminal; and
verifying, by said terminal, the authentication.
12 Assignments
0 Petitions
Accused Products
Abstract
Disclosed is a multi-purpose transaction card system comprising an issuer, one or more cards, one or more terminals, and optionally one or more acquires, communicating using a variety of cryptographic confidentiality and authentication methods. Cards authenticate messages using public key based cryptographic without themselves performing the extensive computations usually associated with such cryptography. Integrity of complex transaction sequences and plural card storage updates are maintained, even under intentionally generated interruptions and/or modifications of data transmitted between card and terminal. Cards do not reveal any information to the terminal which is not directly necessary for the transaction or any information to which the terminal should not have access, though externally measurable aspects of its behavior. Transaction types supported include those suitable for off-line credit cards, in which the “open to buy” is maintained on the card.
248 Citations
10 Claims
-
1. A method for conducting financial transactions using a card, a terminal, and an issuer substantially according to EMV specification, the method comprising:
-
generating variable transaction data;
constructing a message block having a value dependent on at least some of said variable transaction data;
generating, by the card, an authentication of the message block;
sending said authentication to the terminal; and
verifying, by said terminal, the authentication. - View Dependent Claims (2, 3)
-
-
4. An apparatus for conducting financial transactions using a card, a terminal, and an issuer substantially according to EMV specification, the method comprising:
-
means for generating variable transaction data;
means for constructing a message block having a value dependent on at least some of said variable transaction data;
means for generating, by the card, an authentication of the message block;
means for sending said authentication to the terminal; and
means for verifying, by said terminal, the authentication. - View Dependent Claims (5, 6)
-
-
7. A method for conducting financial transactions using a card, a terminal, and an issuer substantially according to EMV specification, the method comprising:
-
maintaining a balance value in the card for financial transaction applications;
changing the balance value by an amount of each transaction; and
refusing to carry out an off-line transaction if the amount of the transaction exceeds the balance value. - View Dependent Claims (8, 9, 10)
the issuer storing information relating to the card and on-line transactions performed by the card;
the issuer detecting a failure to execute a first script, as issued by the issuer, during an on-line transaction;
creating a second script;
sending the second script to the terminal; and
the terminal executing the second script with the card.
-
-
10. The method of claim 9, further comprising:
-
the issuer detecting, after a predetermined period of time, off-line transactions performed with said card but not presented to the issuer for clearing;
estimating a total amount of said off-line transactions; and
adding substantially the total amount to the balance value using a script.
-
Specification