Secure use of externally stored data
First Claim
Patent Images
1. At a smart card reader, a method of making secure use of authentication data stored on a smart card read by said smart card reader, said method comprising:
- receiving a response Application Protocol Data Unit (APDU) from said smart card, said response APDU including authentication data from said smart card, said response APDU indicating a destination;
extracting said authentication data from said response APDU;
storing said authentication data;
generating a filtered response APDU, wherein the filtered response APDU includes a portion of the response APDU received from the smart card and said filtered response APDU does not include said authentication data included in the response APDU received from said smart card; and
transmitting said filtered response APDU toward said destination.
4 Assignments
0 Petitions
Accused Products
Abstract
A smart card reader is adapted to extract and store authentication data from a response APDU received from a smart card before generating a filtered response APDU, wherein the filtered response APDU does not include the authentication data. Beneficially, when the smart card reader transmits the filtered response APDU toward a destination, the biometric template data is less susceptible to interception, thereby providing a more secure solution.
15 Citations
26 Claims
-
1. At a smart card reader, a method of making secure use of authentication data stored on a smart card read by said smart card reader, said method comprising:
-
receiving a response Application Protocol Data Unit (APDU) from said smart card, said response APDU including authentication data from said smart card, said response APDU indicating a destination; extracting said authentication data from said response APDU; storing said authentication data; generating a filtered response APDU, wherein the filtered response APDU includes a portion of the response APDU received from the smart card and said filtered response APDU does not include said authentication data included in the response APDU received from said smart card; and transmitting said filtered response APDU toward said destination. - View Dependent Claims (2, 3, 4, 5, 6, 7, 21, 22)
-
-
8. A smart card reader comprising:
-
a storage component interface adapted to communicate with a smart card to receive a response Application Protocol Data Unit (APDU) from the smart card, the response APDU including authentication data from the smart card, the response APDU indicating a destination; a processor for executing a filter to extract the authentication data from the response APDU and generate a filtered response APDU, wherein the filtered response APDU includes a portion of the response APDU received from the smart card and the filtered response APDU does not include the authentication data included in the response APDU received from the smart card; a memory adapted to store the authentication data from the smart card; and a short range communication subsystem adapted to transmit the filtered response APDU toward the destination. - View Dependent Claims (9, 10, 11, 12, 13, 14, 23, 24)
-
-
15. A computer-readable medium containing computer-executable instructions that, when performed by processor in a smart card reader, cause the processor to:
-
receive a response Application Protocol Data Unit (APDU) from a smart card, the response APDU including authentication data from the smart card, the response APDU indicating a destination; extract the authentication data from the response APDU; store the authentication data; generate a filtered response APDU, wherein the filtered response APDU includes a portion of the response APDU received from the smart card and the filtered response APDU does not include the authentication data included in the response APDU received from the smart card; and transmit the filtered response APDU toward the destination. - View Dependent Claims (16, 17, 18, 19, 20, 25, 26)
-
Specification