Protecting data stored in a chip card interface device in the event of compromise
First Claim
1. A chip card interface device (CCID) configured for protecting data stored at the CCID in the event of a compromise, the CCID comprising:
- a housing;
a memory device disposed within the housing, the memory for storing data, the data comprising sensitive data and non-sensitive data, and wherein the sensitive data is stored in a sensitive data location that is separate and distinct from a non-sensitive data location in which the sensitive data is stored;
a compromise detection system, the compromise detection system comprising;
one or more detection devices configured for detecting a compromise of the housing, the compromise detection system configured for continuously or periodically generating a detection signal that, when a compromise of the housing is detected, indicates the detected compromise, the one or more detection devices comprising one or more motion sensors configured to measure acceleration of the CCID; and
a data protection system coupled with the compromise detection system, the data protection system configured for;
receiving the detection signal indicating the compromise; and
protecting the data stored in the memory based at least in part on the received detection signal indicating the compromise of the housing, the protecting comprising;
erasing the sensitive data; and
retaining the non-sensitive data;
a personal identification number (PIN) entry device (PED) configured for receiving a cardholder current PIN and a cardholder desired new PIN from a cardholder;
a chip card input/output device configured for communicating a verify command to a chip card of the CCID including data corresponding to the received cardholder current PIN, the chip card input/output device also configured for receiving a verification message from the chip card, wherein the chip card generates the verification message by validating the received cardholder current PIN by comparing it with the current PIN stored on the chip card; and
a processing device for determining that the verification message from the chip card indicates that authentication of the cardholder current PIN was successful.
1 Assignment
0 Petitions
Accused Products
Abstract
A chip card interface device (CCID) is configured for protecting data stored at the CCID in the event of a compromise. The CCID has a housing and a compromise detection system including one or more detection devices configured for detecting a compromise of the housing. The compromise detection system is configured for generating a detection signal indicating the detected compromise. A data protection system is coupled with the compromise detection system and includes a memory device and a processing device coupled with the compromise detection system. The processing device is for receiving the detection signal and erasing data stored on the memory device based on the detection signal in some embodiments. In some embodiments, the processing device also activates a locking function for rendering itself inoperable based on the detection signal.
20 Citations
46 Claims
-
1. A chip card interface device (CCID) configured for protecting data stored at the CCID in the event of a compromise, the CCID comprising:
-
a housing; a memory device disposed within the housing, the memory for storing data, the data comprising sensitive data and non-sensitive data, and wherein the sensitive data is stored in a sensitive data location that is separate and distinct from a non-sensitive data location in which the sensitive data is stored; a compromise detection system, the compromise detection system comprising; one or more detection devices configured for detecting a compromise of the housing, the compromise detection system configured for continuously or periodically generating a detection signal that, when a compromise of the housing is detected, indicates the detected compromise, the one or more detection devices comprising one or more motion sensors configured to measure acceleration of the CCID; and a data protection system coupled with the compromise detection system, the data protection system configured for; receiving the detection signal indicating the compromise; and protecting the data stored in the memory based at least in part on the received detection signal indicating the compromise of the housing, the protecting comprising; erasing the sensitive data; and retaining the non-sensitive data; a personal identification number (PIN) entry device (PED) configured for receiving a cardholder current PIN and a cardholder desired new PIN from a cardholder; a chip card input/output device configured for communicating a verify command to a chip card of the CCID including data corresponding to the received cardholder current PIN, the chip card input/output device also configured for receiving a verification message from the chip card, wherein the chip card generates the verification message by validating the received cardholder current PIN by comparing it with the current PIN stored on the chip card; and a processing device for determining that the verification message from the chip card indicates that authentication of the cardholder current PIN was successful. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17)
-
-
18. A method for protecting data stored at a chip card interface device (CCID) in the event of a compromise, the method comprising:
-
detecting, by one or more detection devices of a compromise detection system, a compromise of a housing of the CCID, the compromise detection system comprising one or more motion sensors configured to measure acceleration of the CCID; continuously or periodically generating, by the compromise detection system, a detection signal that, when a compromise of the housing is detected, indicates the detected compromise; receiving, at a data protection system, the detection signal indicating the compromise; and protecting, by the data protection system, data stored in a memory device disposed within the housing based at least in part on the received detection signal indicating the compromise of the housing, the protecting comprising; erasing sensitive data stored in a sensitive data memory location; and retaining non-sensitive data that is stored in a non-sensitive data memory location, wherein the non-sensitive data memory location is separate and distinct from the sensitive data memory location; receiving, at a personal identification number (PIN) entry device (PED), a cardholder current PIN and a cardholder desired new PIN from a cardholder; communicating, by a chip card input/output device, a verify command to a chip card of the CCID including data corresponding to the received cardholder current PIN, the chip card input/output device also being configured for receiving a verification message from the chip card, wherein the chip card generates the verification message by validating the received cardholder current PIN by comparing it with the current PIN stored on the chip card; and determining, by a processing device of the data protection system, that the verification message from the chip card indicates that authentication of the cardholder current PIN was successful. - View Dependent Claims (19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34)
-
-
35. A computer program product comprising a non-transitory computer-readable medium comprising computer-readable instructions for execution by a chip card interface device (CCID), the instructions configured for protecting data stored in the CCID in the event of a compromise, the instructions comprising:
-
instructions for detecting, by one or more detection devices of a compromise detection system, a compromise of a housing of the CCID, the compromise detection system comprising one or more motion sensors configured to measure acceleration of the CCID; instructions for generating, continuously or periodically and by the compromise detection system, a detection signal that, when a compromise of the housing is detected, indicates the detected compromise; instructions for receiving, at a data protection system, the detection signal indicating the compromise; and instructions for protecting, by the data protection system, data stored in a memory device disposed within the housing based at least in part on the received detection signal indicating the compromise of the housing, the protecting comprising; erasing sensitive data stored in a sensitive data memory location; and retaining non-sensitive data that is stored in a non-sensitive data memory location, wherein the non-sensitive data memory location is separate and distinct from the sensitive data memory location; instructions for receiving, at a personal identification number (PIN) entry device (PED), a cardholder current PIN and a cardholder desired new PIN from a cardholder; instructions for communicating, by a chip card input/output device, a verify command to a chip card of the CCID including data corresponding to the received cardholder current PIN, the chip card input/output device also being configured for receiving a verification message from the chip card, wherein the chip card generates the verification message by validating the received cardholder current PIN by comparing it with the current PIN stored on the chip card; and instructions for determining, by a processing device of the data protection system, that the verification message from the chip card indicates that authentication of the cardholder current PIN was successful. - View Dependent Claims (36, 37, 38, 39, 40, 41, 42, 43, 44, 45)
-
-
46. A chip card interface device (CCID) configured for protecting data stored at the CCID in the event of a compromise, the CCID comprising:
-
a housing; a compromise detection system, the compromise detection system comprising; one or more detection devices configured for detecting a compromise of the housing, the compromise detection system configured for continuously or periodically generating a detection signal that, when a compromise of the housing is detected, indicates the detected compromise of the housing, and the one or more detection devices comprising one or more motion sensors configured to measure acceleration of the CCID; and a data protection system coupled with the compromise detection system, the data protection system comprising; a processing device coupled with the compromise detection system, the processing device configured for; receiving the detection signal indicating the compromise; and activating a locking function configured for rendering the processing device inoperable, based at least in part on the received detection signal indicating the compromise of the housing; and a memory device disposed within the housing configured for; storing some or all the data, the data comprising sensitive data and non-sensitive data, and wherein the sensitive data is stored in a sensitive data location that is separate and distinct from a non-sensitive data location in which the sensitive data is stored; erasing the sensitive data based at least in part on the received detection signal indicating the compromise of the housing; and retaining the non-sensitive data based at least in part on the received detection signal indicating the compromise of the housing; a personal identification number (PIN) entry device (PED) configured for receiving a cardholder current PIN and a cardholder desired new PIN from a cardholder; a chip card input/output device configured for communicating a verify command to a chip card of the CCID including data corresponding to the received cardholder current PIN, the chip card input/output device also configured for receiving a verification message from the chip card, wherein the chip card generates the verification message by validating the received cardholder current PIN by comparing it with the current PIN stored on the chip card; and a processing device for determining that the verification message from the chip card indicates that authentication of the cardholder current PIN was successful.
-
Specification