Private information exchange in smart card commerce
First Claim
1. A method for performing private information exchange in smart card commerce, said method comprising:
- in response to determining that biometric data received on a biometric reader corresponds to an authorized user, unlocking a communication channel on a communication port of a smart card and exchanging public keys;
in response to determining that a valid information request from an external point of sale machine has been received across said communication channel, the smart card decrypting said information request;
in response to determining that private data in the smart card has been requested in said information request, the smart card prompting for authorization to release said private data; and
performing private information exchange in smart card commerce by, in response to receiving authorization for release of the private data via at least one user input device on said smart card, the smart card permitting communication of an encrypted copy of said private data via said communication channel to said external point of sale machine.
2 Assignments
0 Petitions
Accused Products
Abstract
A method, system and computer program product for private information exchange in smart card commerce is disclosed. The method includes, in response to determining that an item of biometric data received on a biometric reader corresponds to an authorized user, unlocking a communication channel on a communication port, exchanging public keys between the user and authorized point of sale, receiving an information request from an external point of sale machine across the communication channel, decrypting an information request and parsing a data token. In response to determining that private data has been requested in the information request, a user is prompted for authorization to release the private information, and private information exchange in smart card commerce is performed by, in response to the user pressing a yes button on the smart card, placing an encrypted copy of the private data in the public area of the smart card for transmission across the communication channel to the external point of sale machine.
-
Citations
19 Claims
-
1. A method for performing private information exchange in smart card commerce, said method comprising:
-
in response to determining that biometric data received on a biometric reader corresponds to an authorized user, unlocking a communication channel on a communication port of a smart card and exchanging public keys; in response to determining that a valid information request from an external point of sale machine has been received across said communication channel, the smart card decrypting said information request; in response to determining that private data in the smart card has been requested in said information request, the smart card prompting for authorization to release said private data; and performing private information exchange in smart card commerce by, in response to receiving authorization for release of the private data via at least one user input device on said smart card, the smart card permitting communication of an encrypted copy of said private data via said communication channel to said external point of sale machine. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A smart card, comprising:
-
a communication port; a memory including private data; at least one user input device; and a processor that; in response to determining that biometric data received on the biometric reader corresponds to an authorized user, unlocks a communication channel on the communication port and exchanges public keys; in response to determining that a valid information request from an external point of sale machine has been received across said communication channel, decrypts said information request; in response to determining that the information request requests the private data, prompts for authorization to release said private data; and in response to receiving authorization for release of the private data via the at least one user input device on said smart card, permits communication of an encrypted copy of said private data via said communication channel to said external point of sale machine. - View Dependent Claims (9, 10, 11, 12, 13)
-
-
14. A machine-readable storage medium having a plurality of instructions processable by a machine stored therein, wherein said plurality of instructions, when processed by said machine, causes said machine to perform:
-
in response to determining that biometric data received on a biometric reader corresponds to an authorized user, unlocking a communication channel on a communication port of the smart card and exchanging public keys; in response to determining that a valid information request from an external point of sale machine has been received across said communication channel, decrypting said information request; in response to determining that private data in the smart card has been requested in said information request, prompting for authorization to release said private data; and performing private information exchange in smart card commerce by, in response to receiving authorization for release of the private data via at least one user input device on said smart card, permitting communication of an encrypted copy of said private data via said communication channel to said external point of sale machine. - View Dependent Claims (15, 16, 17, 18, 19)
-
Specification