×

Secure PIN management

  • US 7,526,652 B2
  • Filed: 01/26/2004
  • Issued: 04/28/2009
  • Est. Priority Date: 09/04/2003
  • Status: Active Grant
First Claim
Patent Images

1. A method of secure PIN processing in a network transaction between a terminal and a merchant server, wherein the merchant server establishes a network connection between the terminal and a transaction manager, such that the merchant server is not privy to data exchanged between the terminal and the transaction manager, the transaction manager performing the method comprising the steps of:

  • generating terminal data defining an unshared secret;

    generating hardware security module (HSM) data defining an unshared secret;

    sending the terminal data to the terminal, wherein the terminal generates corollary data relating to a PIN using the terminal data and user input data, the user input data based on user inputs received by the terminal;

    receiving the corollary data from said terminal;

    sending the corollary data and the HSM data to a hardware security module, wherein the hardware security module calculates the PIN based on the corollary data and the HSM data, and wherein the hardware security module encrypts the PIN and generates a PIN block that includes the encrypted PIN;

    receiving the PIN block from said hardware security module, generating a transaction request including said PIN block and transmitting said transaction request for authentication of the PIN and the transaction;

    determining whether a financial institution has authenticated the transaction; and

    notifying the merchant server whether the transaction has been authenticated based on the determining step.

View all claims
  • 14 Assignments
Timeline View
Assignment View
    ×
    ×