Integrated circuit card with situation dependent identity authentication
First Claim
1. An integrated circuit (IC) device comprising:
- a memory;
a processor coupled to access the memory;
an authentication vector stored in the memory to track identities that are authenticated; and
a mask stored in the memory and combinable with the authentication vector to change the identities that are authenticated.
2 Assignments
0 Petitions
Accused Products
Abstract
This invention concerns an integrated circuit (IC) device, such as smart cards, electronic wallets, PC cards, and the like, and various methods, for authenticating identities and authorizing transactions based on the authenticated identities in a situation-dependent manner. The IC device has a memory and a processor. The IC device maintains an identity authentication table in the memory to hold an arbitrary number of identities. The identity authentication table correlates identities with authentication protocols, so that different protocols can be used to authenticate associated identities. The identity authentication table also correlates counts with the identities. Individual counts specify a number of uses of the IC device for a corresponding identity without requiring the IC device to authenticate the identity for each use. The IC device also maintains an authentication vector in memory. The authentication vector tracks identities in the identity authentication table that are currently authenticated by the IC device. The IC device also maintains one or more masks that can be used to modify the authentication vector in a situation-dependent manner. The IC device further maintains authorization tables in the memory and in association with particular files used in transactions. Each authorization table defines authorization for a particular transaction as a Boolean expression of the identities listed in the identity authentication table.
100 Citations
40 Claims
-
1. An integrated circuit (IC) device comprising:
-
a memory;
a processor coupled to access the memory;
an authentication vector stored in the memory to track identities that are authenticated; and
a mask stored in the memory and combinable with the authentication vector to change the identities that are authenticated. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. An integrated circuit (IC) device comprising:
-
a memory;
a processor coupled to access the memory;
an authentication vector stored in the memory to track identities that are authenticated;
a mask stored in the memory and combinable with the authentication vector to change the identities that are authenticated; and
an authorization table stored in the memory that defines authorization for a particular transaction as a Boolean expression of authenticatable identities. - View Dependent Claims (10, 11, 12, 13, 14, 15)
a plurality of masks stored in the memory, each mask being configured to either extend or restrict the identities that are authenticated by the authentication vector; and
a plurality of files in the memory, individual files having at least one mask associated therewith.
-
-
15. The integrated circuit card of claim 9 embodied as a smart card.
-
16. An integrated circuit (IC) device embodied as a smart card comprising:
-
a memory;
a processor coupled to access the memory; and
a plurality of masks stored in the memory, each mask being usable by the processor to change authenticated identities for a particular smart card transaction. - View Dependent Claims (17, 18, 19, 20, 21, 22)
-
-
23. An integrated circuit (IC) device embodied as a smart card comprising:
-
a memory;
one or more executable programs stored in memory; and
one or more masks operably associated with one or more programs, the masks being configured to temporarily modify authenticated identities when a program with which they are associated executes. - View Dependent Claims (24)
-
-
25. A storage medium embodied in an integrated circuit (IC) device comprising:
-
one or more executable programs; and
one or more masks operably associated with one or more programs, the masks being configured to temporarily modify authenticated identities when a program with which they are associated executes. - View Dependent Claims (26)
-
-
27. A storage medium embodied in an integrated circuit device smart card comprising:
-
an authentication vector to track identities that are authenticated;
a mask to change identities that are authenticated; and
code for combining the mask with the authentication vector to change the identities that are tracked by the authentication vector. - View Dependent Claims (28, 29, 30)
-
-
31. A method of authenticating entities using an integrated circuit device comprising:
-
defining an authentication vector that tracks identities that are authenticated;
temporarily modifying the authentication vector for one transaction to change the identities and provide a modified authentication vector for the one transaction;
evaluating an expression with the modified authentication vector, the expression defining authorization for the particular transaction; and
changing the modified authentication vector back to an authentication vector that was defined prior to said modifying. - View Dependent Claims (32, 33, 34, 35, 36, 37)
-
-
38. A method of authenticating entities using an integrated circuit device comprising:
-
defining an authorization table that defines authorization for a particular transaction as a Boolean expression of authenticatable identities;
maintaining an authentication vector that tracks identities that are authenticated;
combining a mask with the authentication vector to change the identities that are authenticated; and
evaluating a Boolean expression in the authorization table using the changed identities. - View Dependent Claims (39, 40)
-
Specification