Key loading systems and methods
First Claim
1. A terminal manager system for managing communications between a terminal and a key manager system, the terminal having an authority private key from an authority system, the key manager system having the authority public key from the authority system, one of the authority public key and the authority private key encrypting information and the other of the authority public key and the authority private key decrypting the information, the terminal manager system comprising:
- a terminal handler that receives, from the terminal, terminal information and a terminal public key encrypted with the authority private key, generates an authentication request including at least a portion of the terminal information and the terminal public key encrypted with the authority private key, and generates a key request including at least a portion of the terminal information; and
a server that sends the authentication request to the key manager system, sends the key request to the key manager system, receives from the key manager system an authentication response including terminal information and a key manager public key encrypted with the authority public key, and receives from the key manager system a key response including at least a portion of the terminal information and a key generated by the key manager system and encrypted by the key manager system with the terminal public key.
2 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods for loading a key to a terminal. The system can include a terminal manager system including a terminal handler that receives terminal information from a terminal, generates an authentication request including at least a portion of the terminal information, and generates a key request. The system can also include a server that sends the authentication request to a key manager system and sends the key request to the key manager system.
-
Citations
54 Claims
-
1. A terminal manager system for managing communications between a terminal and a key manager system, the terminal having an authority private key from an authority system, the key manager system having the authority public key from the authority system, one of the authority public key and the authority private key encrypting information and the other of the authority public key and the authority private key decrypting the information, the terminal manager system comprising:
-
a terminal handler that receives, from the terminal, terminal information and a terminal public key encrypted with the authority private key, generates an authentication request including at least a portion of the terminal information and the terminal public key encrypted with the authority private key, and generates a key request including at least a portion of the terminal information; and a server that sends the authentication request to the key manager system, sends the key request to the key manager system, receives from the key manager system an authentication response including terminal information and a key manager public key encrypted with the authority public key, and receives from the key manager system a key response including at least a portion of the terminal information and a key generated by the key manager system and encrypted by the key manager system with the terminal public key. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 49, 50)
-
-
19. A method of loading a key to a terminal from a key manager system, the terminal having an authority private key, the key manager system having the authority public key, the method comprising:
-
sending terminal information and a terminal public key encrypted with the authority private key from the terminal to a terminal handler; generating an authentication request with the terminal handler, the authentication request including at least a portion of the terminal information and including the terminal public key encrypted with the authority private key; sending the authentication request to a server and to the key manager system; at the key manager system, decrypting, with the authority public key, the terminal public key encrypted with the authority private key; generating an authentication response with the key manager system, the authentication response including a key manager public key encrypted with the authority public key; sending the authentication response to the terminal handler and to the terminal; at the terminal, decrypting, with the authority private key, the key manager public key encrypted with the authority public key; generating a key request with the terminal handler; sending the key request to the server and to the key manager system; generating, with the key manager system, a generated key and a key response, the key response including the generated key encrypted with the terminal public key; sending the key response to the terminal handler and to the terminal; and at the terminal, decrypting, with the terminal private key, the generated key encrypted with the terminal public key to obtain the generated key. - View Dependent Claims (20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 51, 52, 53, 54)
-
-
37. A method of exchanging cryptographic information used for loading keys from a key manager system to a plurality of terminals included in a financial transaction system, the key manager system having a key pair including a key manager public key and a corresponding key manager private key, wherein one of the key manager public key and the key manager private key encrypts information and the other of the key manager public key and the key manager private key decrypts the information, the method comprising:
-
at the key manager system, encrypting the key manager public key with the key manager private key; sending the key manager public key encrypted with the key manager private key and the key manager public key to an authority system; at the authority system, decrypting, with the key manager public key, the key manager public key encrypted with the key manager private key; verifying, at the authority system, the key manager public key encrypted with the key manager private key; at the authority system, encrypting, with the authority private key, the authority public key; sending the authority public key encrypted with the authority private key and the authority public key to at least one of a terminal manager system and the key manager system; and verifying, at the at least one of the terminal manager system and the key manager system, the authority public key encrypted with the authority private key. - View Dependent Claims (38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48)
-
Specification