Protection system for intelligent cards

US 4,453,074 A
Filed: 10/19/1981
Issued: 06/05/1984
Est. Priority Date: 10/19/1981
Status: Expired due to Term

First Claim

Patent Images

1. A system for allowing authorized users of portable intelligent cards to effect transactions via at least one transaction terminal comprising a plurality of user intelligent cards each having stored therein a code which is the encryption of a combination of a password associated with the respective user and a reference text which is common to all users, the codes stored in all of said cards having been encrypted with the same private key which is associated with the public key of a public-key cryptosystem pair;

and at least one transaction terminal having means for allowing a card user to inut a password, and means for controlling (1) the retrieval of the code stored in an inserted card, (2) the decryption of the retrieved code with the use of said public key to derive a password part and a text part, (3) the comparisons of the derived password part with the inputted password, and the text part with said common reference text, and (4) the effecting of a transaction only if both of said comparisons are successful.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

There is disclosed a protection system for intelligent cards. Each card has stored in it a code which is the encryption of a concatenation of a user secret password and a common reference text. The encryption is derived by an initialization terminal which uses the private key associated with the public key of a public-key cryptosystem key pair. Each transaction terminal with which a card is used decrypts the stored code in accordance with the public key. A transaction is effected only if the stored code decrypts into the user password which is inputted on a keyboard and the common reference text.

498 Citations

19 Claims

1. A system for allowing authorized users of portable intelligent cards to effect transactions via at least one transaction terminal comprising a plurality of user intelligent cards each having stored therein a code which is the encryption of a combination of a password associated with the respective user and a reference text which is common to all users, the codes stored in all of said cards having been encrypted with the same private key which is associated with the public key of a public-key cryptosystem pair;
- and at least one transaction terminal having means for allowing a card user to inut a password, and means for controlling (1) the retrieval of the code stored in an inserted card, (2) the decryption of the retrieved code with the use of said public key to derive a password part and a text part, (3) the comparisons of the derived password part with the inputted password, and the text part with said common reference text, and (4) the effecting of a transaction only if both of said comparisons are successful.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. A system in accordance with claim 1 wherein each of said cards further includes means for storing the respective password by itself;
    - and means for accepting a password furnished by said at least one terminal, and for comparing the furnished password with the stored password;
      
      said terminal controlling means controlling the retrieval of the code stored in an inserted card only in the event the password comparison is successful.
  - 3. A system in accordance with claim 2 having a plurality of transaction terminals, at least one of which is unattended.
  - 4. A system in accordance with claim 3 further including at least one terminal for initializing a user intelligent card, said initializing terminal having means for assigning a password to a user whose card is to be initialized, means for deriving a code by encrypting with said private key the combination of the assigned password and said common reference text, and means for controlling the storage in said card of said derived code.
  - 5. A system in accordance with claim 2 further including at least one terminal for initializing a user intelligent card, said initializing terminal having means for assigning a password to a user whose card is to be initialized, means for deriving a code by encrypting with said private key the combination of the assigned password and said common reference text, and means for controlling the storage in said card of said derived code.
  - 6. A system in accordance with claim 1 having a plurality of transaction terminals, at least one of which is unattended.
  - 7. A system in accordance with claim 6 further including at least one terminal for initializing a user intelligent card, said initializing terminal having means for assigning a password to a user whose card is to be initialized, means for deriving a code by encrypting with said private key the combination of the assigned password and said common reference text, and means for controlling the storage in said card of said derived code.
  - 8. A system in accordance with claim 1 further including at least one terminal for initializing a user intelligent card, said initializing terminal having means for assigning a password to a user whose card is to be initialized, means for deriving a code by encrypting with said private key the combination of the assigned password and said common reference text, and means for controlling the storage in said card of said derived code.
  - 9. A system in accordance with claim 8 wherein said initializing terminal further controls the separate storage in said card of the assigned password.

10. A terminal for initializing portable intelligent cards to be used with at least one transaction terminal, each intelligent card having a memory therein, comprising means for assigning a password to a user whose card is to be initialized, means for deriving a code which is the encryption of a combination of the assigned password and a reference text which is common to all users, the code for each user being derived with use of the same private key which is associated with the public key of a public-key cryptosystem pair, and means for controlling the storage in a user card of the respective derived code.
- View Dependent Claims (11)
- - 11. An initializing terminal in accordance with claim 10 further including means for controlling the separate storage in a user card of the respective assigned password.

12. A portable intelligent card for use in effecting transactions via at least one transaction terminal comprising a housing, a memory within said housing for storing a code, said code being the encryption of a combination of a password associated with the respective card user and a reference text which is common to all other users of like cards, said code having been encrypted with the private key which is associated with the public key of a public key cryptosystem pair, and means for allowing said stored code to be accessed externally of the card.
- View Dependent Claims (13, 14, 15, 16, 17, 18, 19)
- - 13. A portable intelligent card in accordance with claim 12 wherein said memory further separately stores said password.
  - 14. A portable intelligent card in accordance with claim 13 further including means for accepting a password to be compared with the stored password and for comparing them.
  - 15. A portable intelligent card in accordance with claim 14 further including means for controlling the outputting of said stored code.
  - 16. A portable intelligent card in accordance with claim 15 wherein said stored code is outputted only if said comparison is successful.
  - 17. A portable intelligent card in accordance with claim 12 further including means for controlling the outputting of said stored code.
  - 18. A portable intelligent card in accordance with claim 12 wherein said memory stores a plurality of codes each associated with a different service provider.
  - 19. A portable intelligent card in accordance with claim 18 wherein said memory stores associated with each of said plurality of codes an identification of the respective service provider.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
American Express Company
Original Assignee
American Express Company
Inventors
Weinstein, Stephen B.
Primary Examiner(s)
Pitts, Harold I.

Application Number

US06/312,705
Time in Patent Office

960 Days
Field of Search

235/379, 235/380, 235/381, 235/382, 178/22.08, 340/825.32
US Class Current

705/66
CPC Class Codes

G06F 21/34   involving the use of extern...

G06Q 20/341   Active cards, i.e. cards in...

G06Q 20/347   Passive cards

G06Q 20/355   Personalisation of cards fo...

G06Q 20/3672   initialising or reloading t...

G06Q 20/40975   using encryption therefor

G07F 7/10   together with a coded signa...

G07F 7/1008   Active credit-cards provide...

G07F 7/1066   PIN data being compared to ...

H04L 2463/102   applying security measure f...

H04L 63/0442   wherein the sending and rec...

H04L 63/0853   using an additional device,...

Protection system for intelligent cards

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

498 Citations

19 Claims

Specification

Solutions

Use Cases

Quick Links

Protection system for intelligent cards

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

498 Citations

19 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links