System and method for revaluation of stored tokens in IC cards

US 5,917,168 A
Filed: 04/18/1996
Issued: 06/29/1999
Est. Priority Date: 06/02/1993
Status: Expired due to Fees

First Claim

Patent Images

1. A private terminal for carrying out at a private location a transaction consisting of alteration of a token value stored in an IC card issued to a cardholder, this token value altering transaction being carried out by using said private terminal and said IC card at said private location and also employing an operatively compatible terminal to carry out certain functions at a remote location,said IC card having a microcontroller and associated microcontroller program memory, security protected memory locations for token value data and card security data, a data communication interface, and prearranged card security programs stored in said program memory for managing security of cardholder access and security of terminal access to security protected memory locations for transaction related data reading and writing operations;

said operatively compatible terminal at said remote location including a data communication interface and prearranged transaction security programs compatible with said prearranged card security programs;

said private terminal comprising;

means for establishing a card data link to said data communication interface in said IC card;

means responsive to said cardholder initiating a token change transaction on said private terminal for establishing a terminal data link to said operatively compatible terminal at said remote location;

means for enabling said cardholder to initiate said token value change transaction including means for accepting cardholder entry of a token change vector;

means for accepting cardholder entry of a security data item and for communicating a representation of said security data item to said IC card via said card data link to enable said card security programs to prepare and return cardholder and card authentication data items;

means for communicating prearranged messages between said IC card and said operatively compatible terminal at said remote location via said card data link and said terminal data link includingsecure authentication messages to enable said IC card and said operatively compatible terminal to execute respective terminal authentication and IC card authentication programs; and

secure transaction messages, including said token change vector, and cardholder authentication data to enable said operatively compatible terminal to verify cardholder identity and to enable said IC card and said operatively compatible terminal to execute a secure token value change transaction; and

means operative after said IC card and said operatively compatible terminal have succeeded in executing said secure token value change transaction for reading a revised token value stored in said IC card via said card data link and for communicating said revised token value to said cardholder.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A terminal for carrying out at a private location a transaction consisting of alteration of a token value stored in an IC card issued to a cardholder via an on-line transaction session with an operatively compatible terminal at a remote location. The private terminal establishes data links with the IC card and the remote terminal and passes secure authentication and transaction messages between them via these data links, relying on the IC card and the remote terminal for message security.

292 Citations

9 Claims

1. A private terminal for carrying out at a private location a transaction consisting of alteration of a token value stored in an IC card issued to a cardholder, this token value altering transaction being carried out by using said private terminal and said IC card at said private location and also employing an operatively compatible terminal to carry out certain functions at a remote location,said IC card having a microcontroller and associated microcontroller program memory, security protected memory locations for token value data and card security data, a data communication interface, and prearranged card security programs stored in said program memory for managing security of cardholder access and security of terminal access to security protected memory locations for transaction related data reading and writing operations;
- said operatively compatible terminal at said remote location including a data communication interface and prearranged transaction security programs compatible with said prearranged card security programs;
  
  said private terminal comprising;
  
  means for establishing a card data link to said data communication interface in said IC card;
  
  means responsive to said cardholder initiating a token change transaction on said private terminal for establishing a terminal data link to said operatively compatible terminal at said remote location;
  
  means for enabling said cardholder to initiate said token value change transaction including means for accepting cardholder entry of a token change vector;
  
  means for accepting cardholder entry of a security data item and for communicating a representation of said security data item to said IC card via said card data link to enable said card security programs to prepare and return cardholder and card authentication data items;
  
  means for communicating prearranged messages between said IC card and said operatively compatible terminal at said remote location via said card data link and said terminal data link includingsecure authentication messages to enable said IC card and said operatively compatible terminal to execute respective terminal authentication and IC card authentication programs; and
  
  secure transaction messages, including said token change vector, and cardholder authentication data to enable said operatively compatible terminal to verify cardholder identity and to enable said IC card and said operatively compatible terminal to execute a secure token value change transaction; and
  
  means operative after said IC card and said operatively compatible terminal have succeeded in executing said secure token value change transaction for reading a revised token value stored in said IC card via said card data link and for communicating said revised token value to said cardholder.
- View Dependent Claims (2, 3, 4)
- - 2. The terminal of claim 1 further comprisingmeans for reading a current token value stored in said IC card immediately after said card data link is established;
    - and means for communicating said current token value to said cardholder.
  - 3. The terminal of claim 1, whereinsaid token value stored in said IC card is an electronic cash token;
    - andsaid terminal is adapted for carrying out at said private location a cardholder purchase transaction initiated via a voice telephone call to a delivery service business having an associated operatively compatible terminal, and said means responsive to cardholder initiating a token change transaction includes means from for switching between a voice phone link and a terminal data link.
  - 4. The terminal of claim 1, whereinsaid IC card includes security protected memory locations for a plurality of token value data items each associated with one of a plurality of service providers and a prearranged token value initialization program stored in said program memory which is compatible with a corresponding prearranged token value initialization program included in said operatively compatible terminal at said remote location;
    - and said terminal further comprises;
      
      means for accepting cardholder entry of a token initiate request and an associated token change vector; and
      
      wherein said means for communicating a series of secure messages includes communicating secure transaction messages, including said a token initiate request and said associated token change vector, required by said token value initialization programs in said IC card and said remote terminal.

5. A method for carrying out, at a private location, an alteration of a token value stored in an IC card issued to a cardholder via an on-line transaction session utilizing said IC card, a private terminal at said private location, and an operatively compatible terminal at a remote location,said IC card having a microcontroller and associated microcontroller program memory, security protected memory locations for token value data and card security data, a data communication interface, and prearranged card security programs stored in said program memory for managing security of cardholder access and security of terminal access to security protected memory locations for transaction related data reading and writing operations, including token value reading and writing operations;
- said operatively compatible terminal including prearranged transaction security programs compatible with said prearranged card security programs;
  
  said method comprising the steps of;
  
  a. establishing a card data link between said private terminal and said data communication interface in said IC card;
  
  b. accepting input of a cardholder data security item and token change vector data from said cardholder;
  
  c. communicating a cardholder data security message, including said cardholder data security item, to said IC card via said card data link to enable said card security programs to produce secure cardholder identification data;
  
  d. establishing a terminal data link between said private terminal and said operatively compatible terminal;
  
  e. communicating secure transaction messages between said IC card and said external terminal via said card data link and said terminal data link, including said token change vector data from said cardholder and said secure cardholder identification data, to enable said IC card and said external terminal to perform mutual authentication functions and to execute a secure transaction comprising writing an altered token value into one of said security protected memory locations in said IC card;
  
  f. reading said altered token value stored in said IC card via said card data link; and
  
  g. communicating said altered token value to said cardholder.
- View Dependent Claims (6, 7, 8, 9)
- - 6. The method of claim 5, further comprising the steps of:
    - a.1. reading a current token value stored in said IC card immediately after said step a.; and
      
      a.2. communicating said current token value to said cardholder.
  - 7. The method of claim 5, wherein said token value stored in said IC card is an electronic cash token and said method is adapted for carrying out at said private location a cardholder purchase transaction initiated via a voice telephone call to a delivery service business having an associated operatively compatible terminal, and whereinsaid step a. is carried out after said cardholder has communicated a voice purchase order to an operator associated with said delivery service business, andsaid step c. is carried out by said cardholder and said operator respectively switching from a voice phone link to a terminal data link to complete the balance of said method steps.
  - 8. The method of claim 5, wherein said IC card includes security protected memory locations for a plurality of token value data items each associated with one of a plurality of service providers and a prearranged token value initialization program stored in said program memory which is compatible with a corresponding prearranged token value initialization program included in said operatively compatible terminal at said remote location;
    - and whereinsaid step e. includese.1. communicating to said IC card and said external terminal a token initiate request from said cardholder along with a token change vector containing the amount of initial token value requested by said cardholder; and
      
      e.2. communicating secure transaction data messages between said IC card and said external terminal via said card data link and said terminal data link as required for said respectively token value initialization programs in said IC card and said external terminal.
  - 9. The method of claim 5, adapted for also carrying out at said private location a plurality of automated banking transactions, and whereinsaid IC card further includes security protected memory locations for a plurality of bank account data items, including one or more of savings, checking, credit, and loan account data items;
    - andsaid operatively compatible terminal has secure data and program links to a host computer associated with said cardholder'"'"'s bank,said step e. comprises communicating secure transaction messages between said IC card and said operatively compatible terminal via said card data link and said terminal data link, including transaction messages associated with one or more of a series of said token value alteration and said automated banking transactions as selected by said cardholder.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Hewlett-Packard Company (HP Inc.)
Original Assignee
Hewlett-Packard Company (HP Inc.)
Inventors
Sheets, John F., Roberts, Alan B., Nakamura, Lance S.
Primary Examiner(s)
Hajec, Donald
Assistant Examiner(s)
Frech, Karl D.

Application Number

US08/578,718
Time in Patent Office

1,167 Days
Field of Search

235/379, 235/380, 235/381, 235/382, 902/22
US Class Current

235/379
CPC Class Codes

G06Q 20/3572   Multiple accounts on card

G06Q 20/363   with the personal data of a...

G07F 7/0866   by active credit-cards adap...

G07F 9/002   Vending machines being part...

System and method for revaluation of stored tokens in IC cards

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

292 Citations

9 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for revaluation of stored tokens in IC cards

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

292 Citations

9 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links