System and method for dynamic generation of URL by smart card
First Claim
Patent Images
1. A smart card comprising:
- a substrate;
a memory embedded in the substrate, wherein the memory contains an applet, a counter, and a unique customer identifier;
a contactless communication interface embedded in the substrate; and
a microprocessor embedded in the substrate,wherein the microprocessor is in data communication with the memory and the contactless communication interface,wherein, after entry of the contactless communication interface into a communication field of a communication device, the microprocessor increments the counter and synchronizes the value of the counter with a second counter stored in the communication device,wherein the applet generates a unique one-time uniform resource locator (URL) by cryptographically hashing the incremented value of the counter and the unique customer identifier,wherein the unique one-time URL is transmitted to the communication device via the contactless communication interface, andwherein the communication device synchronizes the incremented value of the second counter value with a third counter stored in a server prior to the transmission of the unique one-time URL.
1 Assignment
0 Petitions
Accused Products
Abstract
Embodiments of a smart card and systems and methods for secure data access using a smart card are described. The smart card may be formed a substrate and may include a microprocessor, a memory containing an applet, a counter, and a unique identifier. The smart card may dynamically generate a unique uniform resource location (URL) and transmit the URL to via a contactless communication interface to securely facilitate data access from other devices.
64 Citations
19 Claims
-
1. A smart card comprising:
-
a substrate; a memory embedded in the substrate, wherein the memory contains an applet, a counter, and a unique customer identifier; a contactless communication interface embedded in the substrate; and a microprocessor embedded in the substrate, wherein the microprocessor is in data communication with the memory and the contactless communication interface, wherein, after entry of the contactless communication interface into a communication field of a communication device, the microprocessor increments the counter and synchronizes the value of the counter with a second counter stored in the communication device, wherein the applet generates a unique one-time uniform resource locator (URL) by cryptographically hashing the incremented value of the counter and the unique customer identifier, wherein the unique one-time URL is transmitted to the communication device via the contactless communication interface, and wherein the communication device synchronizes the incremented value of the second counter value with a third counter stored in a server prior to the transmission of the unique one-time URL. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A system for the secure access of information, comprising:
-
a server containing financial information; a smart card including a microprocessor, a contactless communication interface, and a memory storing an applet, a counter, and a unique customer identifier; and a client application comprising instructions for execution on a communication device having a communication field, wherein after entry of the contactless communication interface into the communication field; the microprocessor is configured to increment a value stored in the counter and synchronize the incremented counter value with the client application, the applet is configured to generate a unique one-time uniform resource locator (URL) by cryptographically hashing the incremented value of the counter and the unique customer identifier, and the contactless communication interface is configured to transmit the unique one-time URL to the client application; wherein the client application synchronizes the incremented counter value with the server prior to transmitting the unique one-time URL; wherein upon receipt of the unique one-time URL, the client application opens the unique one-time URL to display financial information received from the server, and wherein the server recreates the cryptographic hash using the incremented value of the counter value prior to the display of financial information by the client application.
-
-
14. A method of accessing of information, the method comprising:
-
bringing a smart card containing a contactless communication interface, a microprocessor, and a memory storing an applet, a counter, and a unique customer identifier, into the communication field of a communication device; incrementing a value stored in the counter and synchronizing the value with a counter contained in the communication device; synchronizing the incremented counter value with a counter contained in the server; generating a unique one-time uniform resource locator (URL) by cryptographically hashing the incremented counter value and the unique customer identifier; transmitting the unique one-time URL to a client application comprising instructions for execution on the communication device via the contactless communication interface; appending location information relating to the communication device to the unique URL; transmitting the unique one-time URL to a server containing financial information; recreating the cryptographic hash by the server using an expected counter value and the unique customer identifier; comparing the cryptographic hash recreated by the server to the unique one-time URL transmitted to the server; and transmitting financial information from the server to the client application if the recreated cryptographic hash matches the unique one-time URL. - View Dependent Claims (15, 16, 17, 18, 19)
-
Specification