Securing a transaction between a transponder and a reader
First Claim
1. A transponder device, comprising:
- encryption circuitry configured to;
encrypt, with a transponder device authentication key, a transponder device authentication signal received from a reader to create an encrypted transponder device authentication signal,encrypt an account code with an account code key to create an encrypted account code, anddecrypt, with a reader authentication key, an encrypted reader authentication signal received from the reader to create a decrypted reader authentication signal;
a protocol/sequence controller configured to;
transmit the encrypted transponder device authentication signal to the reader, andtransmit the encrypted account code to the reader to facilitate a payment transaction responsive to the decrypted reader authentication signal matching a reader authentication signal; and
authentication circuitry configured for mutual two-way authentication with the reader via the transponder device authentication signal and the reader authentication signal, including authenticating the reader responsive to the decrypted reader authentication signal matching the reader authentication signal transmitted from the transponder device to the reader.
7 Assignments
0 Petitions
Accused Products
Abstract
A transponder-reader payment system includes a fob including a transponder, and a RFID reader for interrogating the transponder. The system may further include a personalization system for populating onto the fob and RFID reader identifying information and security and authentication keys which may be used during mutual authentication of the fob and the reader and for completing a transaction. In exemplary operation, the fob and RFID reader may be personalized, the fob may be presented to the RFID reader for interrogation, the fob and reader may engage in mutual authentication, and fob identifying information may be provided to the reader for transaction completion. In another exemplary embodiment, operation of the transponder-reader payment system may be controlled by an activation circuit. Further, the fob may be responsive to multiple interrogation signals.
742 Citations
28 Claims
-
1. A transponder device, comprising:
-
encryption circuitry configured to; encrypt, with a transponder device authentication key, a transponder device authentication signal received from a reader to create an encrypted transponder device authentication signal, encrypt an account code with an account code key to create an encrypted account code, and decrypt, with a reader authentication key, an encrypted reader authentication signal received from the reader to create a decrypted reader authentication signal; a protocol/sequence controller configured to; transmit the encrypted transponder device authentication signal to the reader, and transmit the encrypted account code to the reader to facilitate a payment transaction responsive to the decrypted reader authentication signal matching a reader authentication signal; and authentication circuitry configured for mutual two-way authentication with the reader via the transponder device authentication signal and the reader authentication signal, including authenticating the reader responsive to the decrypted reader authentication signal matching the reader authentication signal transmitted from the transponder device to the reader. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19)
-
-
20. A tangible computer-readable medium having instructions stored thereon that, in response to being executed by a computing device, cause the computing device to perform operations comprising:
-
encrypting, with a transponder device authentication key, a transponder device authentication signal received from a reader to create an encrypted transponder device authentication signal; encrypting an account code with an account code key to create an encrypted account code; transmitting the encrypted transponder device authentication signal to the reader for authentication of the transponder device by the reader; transmitting the encrypted account code to the reader to facilitate a payment transaction responsive to the decrypted reader authentication signal matching the reader authentication signal; decrypting, with a reader authentication key, an encrypted reader authentication signal received from the reader to create a decrypted reader authentication signal; and authenticating the reader in mutual two-way authentication with the reader via the transponder device authentication signal and reader authentication signal, including authenticating the reader responsive to the decrypted reader authentication signal matching a reader authentication signal transmitted from the transponder device to the reader.
-
-
21. A reader, comprising:
-
encryption circuitry configured to; encrypt, with a reader authentication key, a reader authentication signal received from a transponder device to create an encrypted reader authentication signal, decrypt, with a transponder device authentication key, an encrypted transponder device authentication signal received from the transponder device to create a decrypted transponder device authentication signal, and decrypt an encrypted account code to facilitate a payment transaction responsive to a decrypted reader authentication signal matching the reader authentication signal; a protocol/sequence controller configured to transmit the encrypted reader authentication signal to the transponder device for authentication of the reader by the transponder device; and authentication circuitry configured for mutual two-way authentication with the transponder device via a transponder device authentication signal and the reader authentication signal, including authenticating the transponder device responsive to the decrypted transponder device authentication signal matching the transponder device authentication signal transmitted from the reader to the transponder device. - View Dependent Claims (22, 23, 24, 25)
-
-
26. A method for securing a transaction between a transponder device and a reader, comprising:
-
encrypting, with a reader authentication key, a reader authentication signal received from a transponder device to create an encrypted reader authentication signal; transmitting the encrypted reader authentication signal to the transponder device for authentication of the reader by the transponder device; decrypting, with a transponder device authentication key, an encrypted transponder device authentication signal received from the transponder device to create a decrypted transponder device authentication signal; decrypting an encrypted account code to facilitate a payment transaction responsive to a decrypted reader authentication signal matching the reader authentication signal; and authenticating the transponder device in mutual two-way authentication with the transponder device via a transponder device authentication signal and the reader authentication signal, including authenticating the transponder device responsive to the decrypted transponder device authentication signal matching the transponder device authentication signal transmitted from the reader to the transponder device.
-
-
27. A tangible computer-readable medium having instructions stored thereon that, in response to being executed by a computing device, cause the computing device to perform operations comprising:
-
encrypting, with a reader authentication key, a reader authentication signal received from a transponder device to create an encrypted reader authentication signal; transmitting the encrypted reader authentication signal to the transponder device for authentication of the reader by the transponder device; decrypting, with a transponder device authentication key, an encrypted transponder device authentication signal received from the transponder device to create a decrypted transponder device authentication signal; decrypting an encrypted account code to facilitate a payment transaction responsive to a decrypted reader authentication signal matching the reader authentication signal; and authenticating the transponder device in mutual two-way authentication with the transponder device via a transponder device authentication signal and the reader authentication signal, including authenticating the transponder device responsive to the decrypted transponder device authentication signal matching the transponder device authentication signal transmitted from the reader to the transponder device.
-
-
28. A Radio Frequency Identification (RFID) reader configured to provide a first radio frequency (RF) interrogation signal to a transponder device, to receive a transponder device RF signal comprising an encrypted transponder device authentication code, and to communicate transponder device account data related to the transponder device RF signal for processing of a transaction, the RFID reader comprising:
-
a communications interface configured to communicate with a transaction processing entity, wherein the communications interface is configured to provide the transponder device account data to the transaction processing entity for processing of the transaction; a first interrogator configured to provide the first RF interrogation signal comprising a transponder device authentication code, wherein the first RF interrogation signal is configured to activate a transponder device authentication circuit; an RFID reader authentication circuit in communication with the first interrogator, wherein the RFID authentication circuit is configured for mutual two-way authentication with the transponder device via the transponder device authentication code, including authenticating the transponder device RF signal and to compare a decrypted transponder device authentication code to the transponder device authentication code to determine whether a match exists; a database configured to store RFID reader data, wherein the database is configured to communicate with the RFID reader authentication circuit, and wherein the database is configured to provide a transponder device decryption security key to the RFID reader authentication circuit in response to the encrypted transponder device authentication code, wherein the transponder device decryption security key is configured to be provided to the RFID reader authentication circuit based on a unique transponder device identification code; encryption circuitry configured to; encrypt, with a reader authentication key, a reader authentication code received from the transponder device to create an encrypted reader authentication code, decrypt, with a transponder device decryption security key, the encrypted transponder device authentication code received from the transponder device to create a decrypted transponder device authentication code, and decrypt an encrypted account code to facilitate a payment transaction responsive to a decrypted reader authentication signal matching the reader authentication signal; and a protocol/sequence controller configured to activate the RFID reader authentication circuit in response to the encrypted transponder device authentication code, wherein the protocol sequence controller is configured to activate the communications interface responsive to the RFID reader authentication circuit matching the decrypted transponder device authentication code and the transponder device authentication code.
-
Specification