Method and system for identifying and handling critical chip card commands
First Claim
1. A method for identifying and handling critical card commands of a chip card application, comprising the steps of:
- a) transmitting a card command to be executed to a comparison device prior to its execution;
b) comparing the card command to be executed to defined comparison samples to identify critical card commands, said critical card commands comprising commands for at least one of monetary instructions and digital signature;
c) executing the card command if the card command to be executed is not identified as a critical card command by said comparing;
d) delaying of the card command to be executed if it corresponds to a comparison sample in the comparison device; and
e) executing the card command to be executed which is identified as a critical card command by said comparing only if a pre-defined event occurs, said predefined event comprising execution of at least one user-defined user confirmation condition.
1 Assignment
0 Petitions
Accused Products
Abstract
A device and method for identifying critical card commands and their execution on the chip card. Each card command to be executed is supplied prior to its execution to a comparison device, which can either be a component of the chip card reader or a component independent of this. The comparison device checks with reference to filed comparison samples whether a critical card command is involved. A special comparison process is used for this. If the card command to be executed is a critical card command, it must be additionally confirmed by the user for it to be executed. A particular form of execution consists in comparison samples for identifying critical card commands being deposited during manufacture of the chip card and these being loaded into the working memory of the chip card reader or the comparison device on initialisation of the chip card in the chip card reader.
14 Citations
28 Claims
-
1. A method for identifying and handling critical card commands of a chip card application, comprising the steps of:
-
a) transmitting a card command to be executed to a comparison device prior to its execution;
b) comparing the card command to be executed to defined comparison samples to identify critical card commands, said critical card commands comprising commands for at least one of monetary instructions and digital signature;
c) executing the card command if the card command to be executed is not identified as a critical card command by said comparing;
d) delaying of the card command to be executed if it corresponds to a comparison sample in the comparison device; and
e) executing the card command to be executed which is identified as a critical card command by said comparing only if a pre-defined event occurs, said predefined event comprising execution of at least one user-defined user confirmation condition. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21)
-
-
22. A device for identifying and handling defined card commands, containing at least
a) a non-volatile memory unit; -
b) a list of critical card commands, which can be filed in the non-volatile memory unit, said critical card commands comprising commands for at least one of monetary instructions and digital signature;
c) a comparison device for identifying the critical card commands from the card commands to be executed with reference to the list;
d) a confirmation device for releasing execution of an identified critical card command; and
e) a communications device for producing and implementing communication between a chip card application and a chip card. - View Dependent Claims (23, 24, 25, 26, 27)
-
-
28. A program storage device readable by machine, tangibly embodying a program of instructions executable by the machine to perform method steps for identifying and handling critical card commands of a chip card application, said method comprising the steps of:
-
a) transmitting a card command to be executed to a comparison device prior to its execution;
b) comparing the card command to be executed to defined comparison samples to identify critical card commands, said critical card commands comprising commands for at least one of monetary instructions and digital signature;
c) executing the card command if the card command to be executed is not identified as a critical card command by said comparing;
d) delaying of the card command to be executed if it corresponds to a comparison sample in the comparison device; and
e) executing the card command to be executed which is identified as a critical card command by said comparing only if a pre-defined event occurs, said predefined event comprising execution of at least one user-defined user confirmation condition.
-
Specification