Card activated cash dispensing automated banking machine system and method
First Claim
1. A method comprising:
- a) receiving with an automated banking machine at least one first message from a host banking system, wherein the automated banking machine includes a card reader, a cash dispenser, and an encrypting pin pad (EPP), wherein the EPP includes an original public key of an initial certificate authority (CA) and at least one original public key of the host banking system, wherein the at least one first message includes a new certificate of a new CA, wherein the new certificate of the new CA includes a new public key of the new CA, wherein the new certificate of the new CA is signed by the initial CA, wherein new certificate of the new CA is further signed by the host banking system;
b) validating a digital signature of the initial CA included with the new certificate of the new CA using the original public key of the initial CA;
c) validating a digital signature of the host banking system included with the new certificate of the new CA using the at least one original public key of the host banking system; and
d) storing the new public key of the new CA in the EPP.
10 Assignments
0 Petitions
Accused Products
Abstract
A cash dispensing automated banking machine that operates in response to data read from user cards includes a cash dispenser, keypad, and a card reader. The card reader is operative to read data bearing records such as user cards that include financial account information. The machine may include an encrypting pin pad (EPP) that is operative to remotely receive an encrypted terminal master key from a host banking system. The machine may authenticate and decrypt the terminal master key prior to accepting the terminal master key using a public key of a certificate authority. The machine may further receive and authenticate a new public for a new certificate authority for use with authenticating further terminal master keys.
50 Citations
34 Claims
-
1. A method comprising:
-
a) receiving with an automated banking machine at least one first message from a host banking system, wherein the automated banking machine includes a card reader, a cash dispenser, and an encrypting pin pad (EPP), wherein the EPP includes an original public key of an initial certificate authority (CA) and at least one original public key of the host banking system, wherein the at least one first message includes a new certificate of a new CA, wherein the new certificate of the new CA includes a new public key of the new CA, wherein the new certificate of the new CA is signed by the initial CA, wherein new certificate of the new CA is further signed by the host banking system; b) validating a digital signature of the initial CA included with the new certificate of the new CA using the original public key of the initial CA; c) validating a digital signature of the host banking system included with the new certificate of the new CA using the at least one original public key of the host banking system; and d) storing the new public key of the new CA in the EPP. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 31)
-
-
24. A method comprising:
-
a) receiving with an automated banking machine at least one first message from a host banking system, wherein the automated banking machine includes a card reader, a cash dispenser, and an encrypting pin pad (EPP), wherein the EPP includes an original public key of an initial certificate authority (CA) and at least one original public key of the host banking system, wherein the at least one first message includes a new certificate of a new CA, wherein the new certificate of the new CA includes a new public key of the new CA, wherein the new certificate of the new CA is signed by the initial CA, wherein new certificate of the new CA is further signed by the host banking system; b) validating a digital signature of the initial CA included with the new certificate of the new CA using the original public key of the initial CA; c) validating a digital signature of the host banking system included with the new certificate of the new CA using the at least one original public key of the host banking system; d) storing the new public key of the new CA in the EPP; wherein prior to step (c) further comprising; e) receiving with the automated banking machine at least one second message from the host banking system, wherein the at least one second message includes the at least one original public key of the host banking system; f) calculating at least one one-way hash of the at least one original public key of the host banking system; g) outputting through a display device of the automated banking machine the at least one one-way hash; and h) receiving at least one first input through the at least one input device of the machine that is representative of a command to accept the at least one original public key of the host banking system. - View Dependent Claims (25, 26, 27, 28, 29, 30)
-
-
32. Non-transitory computer readable media bearing computer executable instructions operative to cause at least one computer in an automated banking machine to cause the automated banking machine to carry out a method comprising:
-
a) receiving with the automated banking machine at least one first message from a host banking system, wherein the automated banking machine includes a card reader, a cash dispenser, and an encrypting pin pad (EPP), wherein the EPP includes an original public key of an initial certificate authority (CA) and at least one original public key of the host banking system, wherein the at least one first message includes a new certificate of a new CA, wherein the new certificate of the new CA includes a new public key of the new CA, wherein the new certificate of the new CA is signed by the initial CA, wherein new certificate of the new CA is further signed by the host banking system; b) validating a digital signature of the initial CA included with the new certificate of the new CA using the original public key of the initial CA; c) validating a digital signature of the host banking system included with the new certificate of the new CA using the at least one original public key of the host banking system; and d) storing the new public key of the new CA in the EPP.
-
-
33. Apparatus comprising:
a card activated cash dispensing automated banking machine, wherein the automated banking machine includes at least one card reader device operative to read a card provided by a user of the machine, wherein the automated banking machine includes a cash dispenser, wherein the automated banking machine includes an encrypting pin pad (EPP), wherein the EPP includes an original public key of an initial certificate authority (CA) and at least one original public key of a host banking system, wherein the automated banking machine is operative to receive at least one first message from the host banking system, wherein the at least one first message includes a new certificate of a new CA, wherein the new certificate of the new CA includes a new public key of the new CA, wherein the new certificate of the new CA is signed by the initial CA, wherein new certificate of the new CA is further signed by the host banking system, wherein the EPP is operative to validate the digital signature of the initial CA included with the new certificate of the new CA using the original public key of the initial CA, wherein the EPP is operative to validate a digital signature of the host banking system included with the new certificate of the new CA using the at least one original public key of the host banking system, wherein the EPP is operative to store the new public key of the new CA in the EPP. - View Dependent Claims (34)
Specification