Pay at pump encryption device

US 7,966,262 B2
Filed: 10/31/2006
Issued: 06/21/2011
Est. Priority Date: 10/31/2006
Status: Active Grant

First Claim

Patent Images

1. A method for securing information using cryptographically keyed units, comprising the steps of:

a. receiving at a first cryptographically keyed unit (“

CKU”

) consumer information from a fuel pump device over a first connection, said first CKU comprising a first processor, said consumer information comprising at least one of consumer payment information or consumer identity information;

b. encrypting the consumer information by the first processor;

c. transmitting the encrypted consumer information from the first CKU to a second CKU over a second connection, said second CKU comprising a second processor, wherein the second connection is unsecured;

d. receiving and decrypting the encrypted consumer information by the second processor to produce the consumer information; and

e. communicating the consumer information from the second CKU to a remote device.

View all claims

10 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Embodiments of the present invention are drawn to systems and methods for securing information using cryptographically keyed units. Specifically, in one embodiment of the present invention, a system is provided for securing information that uses two cryptographically keyed units to encrypt information flowing between a fuel pump device and a remote device. Thus, even if the information is intercepted, it could not be used to perpetrate fraud.

Citations

32 Claims

1. A method for securing information using cryptographically keyed units, comprising the steps of:
- a. receiving at a first cryptographically keyed unit (“
  
  CKU”
  
  ) consumer information from a fuel pump device over a first connection, said first CKU comprising a first processor, said consumer information comprising at least one of consumer payment information or consumer identity information;
  
  b. encrypting the consumer information by the first processor;
  
  c. transmitting the encrypted consumer information from the first CKU to a second CKU over a second connection, said second CKU comprising a second processor, wherein the second connection is unsecured;
  
  d. receiving and decrypting the encrypted consumer information by the second processor to produce the consumer information; and
  
  e. communicating the consumer information from the second CKU to a remote device.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
- - 2. The method of claim 1, wherein the receiving at a first CKU step comprises:
    - a. receiving at a first CKU consumer information from a plurality of fuel pump devices over at least a first connection; and
      
      b. combining the consumer information received from the plurality of fuel pump devices.
  - 3. The method of claim 2, wherein the combining step comprises multiplexing the consumer information from a plurality of fuel pump devices.
  - 4. The method of claim 1, wherein the first connection and the second connection each use at least one of a current loop, RS485, RS422, RS232, or LON communications protocol.
  - 5. The method of claim 4, wherein the fuel pump device is at least one of a fuel dispenser, pay-at-pump terminal, fuel controller, electronic payment controller, magnetic card reader, bar code reader, biometric reader, radio frequency reader, or smartcard reader.
  - 6. The method of claim 1, wherein the encrypting step comprises encrypting the consumer information using one of a symmetric or asymmetric encryption algorithm.
  - 7. The method of claim 1, wherein the remote device is at least one of another CKU, a point-of-sale terminal, a fuel pump device, or a site controller.
  - 8. The method of claim 1, wherein the first CKU is installed in a fuel pump housing that contains the fuel pump device.
  - 9. The method of claim 8, wherein the first CKU further comprises a memory.
  - 10. The method of claim 9, further comprising the step of monitoring by the first CKU one or more sensors for an indication that there has been tampering with at least one of the fuel pump device or the fuel pump housing.
  - 11. The method of claim 10, wherein a sensor is at least one of an open door sensor, motion sensor, echo-cavitation sensor, or light sensor.
  - 12. The method of claim 11, further comprising the steps of:
    - a. determining by at least one of the one or more sensors that at least one of the fuel pump device or the fuel pump housing has been tampered with; and
      
      b. sending a message to the second CKU that tampering has occurred.
  - 13. The method of claim 12, further comprising the step of disabling operation of one or more fuel pump devices until a command is received to resume operation.
  - 14. The method of claim 10, further comprising the step of logging sensor information.
  - 15. The method of claim 1, wherein the second CKU further comprises one or more software modules.
  - 16. The method of claim 1, wherein the first CKU and the second CKU each comprise a secure authentication module for performing encryption and decryption.

17. A method for securing information using cryptographically keyed units, comprising the steps of:
- a. receiving over a first connection at a first cryptographically keyed unit (“
  
  CKU”
  
  ) payment information from a fuel pump device located within a fuel pump housing, wherein the first CKU comprises a first processor and is located in an enclosure installed in the fuel pump housing;
  
  b. encrypting the payment information by the first processor to create encrypted information;
  
  c. transmitting the encrypted information from the first CKU to a second CKU over a second connection, said second CKU comprising a second processor;
  
  d. receiving and decrypting the encrypted information by the second processor to produce the payment information;
  
  e. communicating the payment information from the second CKU to a remote device;
  
  f. monitoring by the first CKU one or more sensors for an indication that at least one of the fuel pump device, the fuel pump housing, or the enclosure has been tampered with, wherein a sensor is at least one of an open door sensor, motion sensor, echo-cavitation sensor, or light sensor; and
  
  g. disabling operation of one or more fuel pump devices upon determining by the one or more sensors that there has been tampering with at least one of the fuel pump device, the fuel pump housing, or the enclosure.
- View Dependent Claims (18, 19, 20, 21, 22)
- - 18. The method of claim 17, wherein the first connection and the second connection each use at least one of a current loop, RS485, RS422, RS232, or LON communications protocol.
  - 19. The method of claim 18, wherein the fuel pump device is at least one of a fuel dispenser, pay-at-pump terminal, fuel controller, electronic payment controller, magnetic card reader, bar code reader, biometric reader, radio frequency reader, or smartcard reader.
  - 20. The method of claim 19, wherein the encrypting step comprises encrypting the payment information using one of a symmetric or asymmetric encryption algorithm.
  - 21. The method of claim 20, wherein the remote device is at least one of another CKU, a point-of-sale terminal, a fuel pump device, or a site controller.
  - 22. The method of claim 17, further comprising the step of logging sensor information.

23. A method for retrofitting a fuel pump to provide for secure communications, the method comprising the steps of:
- a. mounting a first encryption device in a housing of the fuel pump, wherein the fuel pump comprises a fuel pump device that communicates with a remote device through a communications channel;
  
  b. inserting the first encryption device in the communications channel between the fuel pump device and the remote device, wherein the first encryption device encrypts consumer information being sent over the communications channel from the fuel pump device to the remote device, said consumer information comprising at least one of consumer payment information or consumer identity information; and
  
  c. inserting a second encryption device in the communications channel between the first encryption device and the remote device, wherein the second encryption device decrypts consumer information received from the first encryption device and communicates the decrypted information to the remove device.
- View Dependent Claims (24, 25, 26, 27, 28, 29, 30, 31, 32)
- - 24. The method of claim 23, further comprising the steps of:
    - d. installing a tamper sensor within the fuel pump housing; and
      
      e. connecting the tamper sensor to the first encryption device so that the tamper sensor can be monitored.
  - 25. The method of claim 24, wherein a sensor is at least one of an open door sensor, motion sensor, echo-cavitation sensor, or light sensor.
  - 26. The method of claim 25, further comprising the step of configuring the first encryption device to disable one or more fuel pump devices upon receiving an indication from the sensor that there has been tampering.
  - 27. The method of claim 23, further comprising the step of encasing the first encryption device in an enclosure.
  - 28. The method of claim 23, further comprising the step of configuring the first encryption device to receive information from a second fuel pump device.
  - 29. The method of claim 23, wherein the fuel pump device and the remote device communicate using at least one of a current loop, RS485, RS422, RS232, or LON communications protocol.
  - 30. The method of claim 23, wherein the second encryption device comprises one or more software modules.
  - 31. The method of claim 23, wherein the remote device is at least one of another encryption device, a point-of-sale terminal, a fuel pump device, or a site controller.
  - 32. The method of claim 23, wherein the fuel pump device is at least one of a fuel dispenser, pay-at-pump terminal, fuel controller, electronic payment controller, magnetic card reader, bar code reader, biometric reader, radio frequency reader, or smartcard reader.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
NCR Voyix Corporation
Original Assignee
Radiant Systems Incorporated (NCR Voyix Corporation)
Inventors
Fortuna, James, Hervey, James, Finley, Michael C.
Primary Examiner(s)
Elisca; Pierre E

Application Number

US11/590,152
Publication Number

US 20080103980A1
Time in Patent Office

1,694 Days
Field of Search

705/64, 705/67, 713/193
US Class Current

705/64
CPC Class Codes

G06Q 20/18   involving self-service term...

G06Q 20/24   Credit schemes, i.e. "pay a...

G06Q 20/3674   involving authentication

G06Q 20/382   insuring higher security of...

G06Q 20/3823   combining multiple encrypti...

G06Q 20/40   Authorisation, e.g. identif...

G07F 13/025   wherein the volume is deter...

G07F 7/1016   Devices or methods for secu...

H04L 2209/56   Financial cryptography, e.g...

H04L 2209/805   Lightweight hardware, e.g. ...

H04L 9/08   Key distribution or managem...

H04L 9/3234   involving additional secure...

Pay at pump encryption device

First Claim

10 Assignments

0 Petitions

Accused Products

Abstract

Citations

32 Claims

Specification

Solutions

Use Cases

Quick Links

Pay at pump encryption device

First Claim

10 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

32 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links