FR2749413A1 - METHOD FOR STORING VALUE UNITS IN A SECURELY CHIP CARD AND MONETARY TRANSACTION SYSTEM WITH SUCH CARDS - Google Patents

Abstract

The invention discloses a method for storing credit units in a smart card for carrying out transactions from a terminal, the card comprising a non-volatile EEPROM type memory (103), comprising an active zone (ZA) capable of containing information items concerning the number of the card credit units for a given application and a certificate computed by the terminal, in particular based on this number, on a mathematical function and on data varying with each transaction, the memory also comprising a copy zone (ZC) for containing a backup of the active zone (ZA) information items; the recording of information items in the active zone (ZA) and in the copy zone (ZC) following a transaction executed only after carrying out a coding operation on these information items, these coded information items being then recorded in these zones. Application to electronic cash systems.

Description

PROCESS FOR STORING VALUE UNITS IN A CARD
SECURELY CHIP AND TRANSACTION SYSTEM
MONETARY WITH SUCH CARDS.

 The present invention relates to methods for securely storing units of value in a smart card and to monetary transaction systems using these cards. The invention applies more particularly to smart cards comprising an unprotected EEPROM type memory area.

 Indeed, an unprotected EEPROM area of a card is accessible by any individual having a simple card reader and read and write commands in memory. This type of memory area does not allow sensitive data to be saved since anyone can read and modify it.

 The method also applies to smart cards with protected memory in order to raise the level of security.

 Microprocessor cards are capable of containing and prohibiting access to units of value. Only the operating system of the card can access these units and increase or decrease their number. Secure commands managed by the operating system therefore allow the management of the area containing the value units, allowing the use of these value units as well as their safe reloading.

 A memory card does not include a microprocessor, let alone an operating system, but simply a few commands allowing access to the memory areas of the card. However, certain areas of the card may have characteristics allowing the secure storage of valuable units. This is the case for certain memory cards having an area protected by a secret code. Only a payment terminal with this secret code will be able to access the zone containing the value units and may modify the number of units with write commands in memory. By definition, a fraudster does not know the secret code, so he is not able to reload a card in value units. Other card-related features can allow secure storage of valuable units.

 In the known state of the art, the basic mechanisms existing are the use of an integrity certificate, a transaction counter as well as a copy area. These mechanisms will be detailed below. In the case of microprocessor cards, these basic mechanisms can be included in operating systems.

 These mechanisms can also be applied in the form of an application note or an application recommendation to microprocessor cards and to certain synchronous type memory cards.

 An application or recommendation note describes the mechanisms to be implemented at the card and terminal level and defines how the terminal must use the card.

 More specifically, the term "application note" means a particular definition of the state of the memory in the card and in the terminal, called "mapping" in English terminology, this mapping being obtained by computer software taking note of note d 'application. The mechanism to be implemented consists in including in the calculation of this certificate data varying with each transaction. By transaction is meant a change in the number of value units of a card.

Mechanism 1
A first mechanism implemented is the use of a certificate associated with the number of units. This certificate guarantees the integrity of the information to which it relates. A terminal of a payment application can read the number of value units present in a smart card. The certificate present in the card and associated with the number of value units stored must be read and verified. This certificate is calculated using a mathematical function. It is calculated from the number of units present in the card, from data identifying the card and with a secret only known by the terminal. The terminal is therefore capable of verifying or calculating such a certificate. Another solution is to share the secret between the cards and a central server. The application terminals will therefore have to connect to the server for any verification.

 If the certificate is correct, the number of value units present in the card is considered valid.

Mechanism 2
This mechanism consists in including in the calculation of this certificate data varying with each transaction.

The introduction of this data which can be a transaction counter makes it possible to guarantee that we have a different certificate each time. A card has a number of value units at a given time t. At time t + n, that is to say after a certain number n of transactions, if this card again contains the same number of value units as at time t, the associated certificate will be despite all different. Of course, the value of the transaction counter must be changed for each transaction.

Mechanism 3
This mechanism consists of duplicating sensitive information before a transaction takes place. The duplicated data is stored in the card, in the unprotected EEPROM memory.

 The unprotected EEPROM memory is therefore divided into two areas which we will call throughout the active area and copy area. These two zones contain a number of value units and the corresponding certificate.

 In the event of the card being torn off, if the data being modified in the active area is corrupted or altered, the duplicated data in the copy area will be recovered and transferred to the active area. The card thus remains in a stable state. In the event of a card being torn off, the certificate present in the copy area must correspond to the value of the card's transaction counter. This makes it possible to verify the authenticity of the certificate of the copy zone and therefore the integrity of the number of units of value of the copy zone. This is why, the card transaction counter must be modified at the end of the transaction.

All of these safeguards do not unfortunately prevent certain frauds which we will explain in the following
the case of fraud
In the case of value units present in a memory area not protected by the card chip, fraud consists in modifying the number of units present in the card and trying different certificate values.

 A fraudster with a small number of units present in the card will therefore replace it with the maximum number of units that his card can contain.

In this specific case, there is no mechanism preventing the content of the card's memory zone from being modified, the card having no protected zone. Then the fraudster will write in the card, instead of the previous certificate a random value. Due to the low memory capacities of the components used, the certificates are saved on a few bits.

 The probability of finding the certificate corresponding to the number of card units by chance is high. The card cannot be considered from a cryptographic point of view as a secure value unit holder. This fraud makes it possible to illegally reload a card in value units.

2nd fraud case
In the case of a debit of value units in the card, and in the event of tearing, the card is left with an active zone possibly corrupted and a copy zone containing a certain number of value units. In addition, the copy area contains the number of value units preceding the debit.

 Since this is a transaction interrupt, the transaction counter may not have been changed yet. Since the memory area containing the units of value is not protected against modifications, a fraudster can transfer the content of the copy area to the active area. The content of the copy area is valid since its certificate always corresponds to the value of the transaction counter. This fraud makes it possible to recover the units of value used.

3rd case of fraud
A fraudster can also read the contents of his card before a transaction. He writes the content of the active area on a sheet of paper without even understanding its meaning. Then it executes a transaction. In the event of a card being torn off, the transaction will not be completed. The value of the card transaction counter will not be changed. The fraudster can simply rewrite the data written on his sheet of paper in the active area of his card. This fraud also makes it possible to recover the value units used.

 The present invention overcomes these problems.

The subject of the present invention is a method of storing value units in a smart card for carrying out transactions from a terminal, the card comprising a non-volatile memory of EEPROM type comprising, an active area capable of containing information relating to the number of value units of the card for a given application and a certificate calculated, in particular from this number, of a mathematical function and of a data item which varies with each transaction, and also comprising a zone copy intended to contain backup information of the active area, mainly characterized in that the recording of the information in the active area and in the copy area following a transaction is only carried out after having carried out an encryption operation on this information, the encrypted information then being recorded in these zones.

 According to another characteristic, the encryption operation is carried out by means of an encryption algorithm EK and a secret key K by the transaction terminal.

 According to another characteristic, the information representative of the number of value units and the information of the balance of value units corresponds to a coding on a first variable number of bits, and the information representative of the certificate is coded on a second variable number of bits, the total number of bits of the two codings being constant.

 Thus, the coding consists in taking as value for the number of value units of the card, a maximum number of value units defined for the given application, minus the number of value units of the card, the terminal transaction capable of determining the number of value units of the card by subtracting the code read from the card from the maximum number.

 According to another characteristic, the method generally consists in calculating a certificate in an active area using a first function, and in calculating the certificate in a copy area, using another function. Thus, in the case where the certificate of the copy zone is copied in the active zone, it will no longer be valid.

More specifically, the method consists of
- calculate from a first mathematical function FA, a first certificate CA stored in the active area and guaranteeing the integrity of the points in this area;
- calculate from a second mathematical function FB, a second certificate CB stored in the copy area and guaranteeing the integrity of this area.

Preferably, the method further includes the steps of
- perform a first encryption operation of a data item formed by the number of value units and the first corresponding certificate CA,
- perform a second encryption operation of a data item formed by the number of value units and the corresponding second certificate CB,
- Save the result of the first encryption operation in the active area of the memory and the result of the second encryption operation in the copy area.

 In order to avoid that the content of the active area cannot be used in the event of being torn away, according to another characteristic of the invention, the calculation of a first certificate is carried out from the number of units of value, but also the value of a transaction counter. At the start of a transaction, a certificate is calculated from the number of value units present in the active area and from a value of the transaction counter incremented to its next value, the data obtained is encrypted and recorded in the area of copy, the transaction counter is then incremented to this new value so that at this instant, the certificate of the active area is no longer in agreement with the value of the counter, only the backup data being correct. In this way, the terminal marks without the card the start of a transaction.

 The invention also relates to a money transaction system using smart cards comprising an unprotected memory with an active area for containing data relating to the balance of the card and a copy area for containing backup data; the active zone and backup data being stored securely.

Other advantages and characteristics of the invention will appear on reading the following description which is given by way of illustration and not limitation and with reference to the drawings in which
FIG. 1 represents the diagram of a transaction system,
FIG. 2 represents a structure of the data of the memory 103 of the smart card according to an exemplary embodiment,
FIG. 3 represents the steps relating to a transaction implemented by a terminal,
FIG. 4 represents the steps implemented during the verification of the integrity of the data of the active area or of the copy area,
FIG. 5 represents the steps prior to a transaction described in FIG. 3,
- Figure 6 shows the steps for updating the balance after a transaction and the end of the transaction.

 Thus, according to a first characteristic of the invention, the content of the active zone ZA and copy zone ZC of the unprotected EEPROM memory 103 represented in FIG. 1 is encrypted.

 This encryption is carried out by a terminal 100 of the application using the cards, using an EK encryption algorithm and a key of the terminal K. This encryption key is known by the terminals accepting the cards of the 'application. A terminal that knows how to encrypt will also be able to decrypt the content of the card using a DK decryption algorithm.

 A fraudster knowing the principles of the invention detailed below and who attempts to increase the number of value units of a card will no longer be able to fix the maximum number of value units. He can only try to reload his card randomly. He will therefore enter random data in the active area of his card. There is a probability that, by deciphering the active area of a randomly modified card, a terminal will obtain a number of value units and the corresponding certificate. However, the number of value units obtained may be less than the number of value units previously contained in the card. The greater the number of value units initially present in the card, the greater the number of value units initially present in the card.

 In order to make fraud even more difficult consisting in randomly finding a certificate corresponding to a large number of value units, the method provides for increasing the size of the certificate. The larger the size of the certificate, the more difficult it is to find the right value. However, as the memory sizes are relatively small in a smart card, it is not possible to have both a large number of units and a large certificate.

 To solve this problem, it is proposed according to a characteristic of the invention, that the number of value units recorded in the card does not correspond to the number of value units for the application, but to the number of value units which have not been the subject of a transaction (zero for a card full of units).

 This number is therefore zero as long as no transaction has taken place. Thus, a zero number of value units in the card corresponds to the maximum value unit value for the application. And conversely, the maximum value of value units in the card corresponds to a zero value of value units for the application.

 A terminal of the application reading the contents of a card obtains the number of value units by subtracting from the maximum number of value units of the application the number of value units contained in the card.

 In this way, when the card contains a zero, it will correspond to the maximum value. A zero in the card is coded on a single bit. Thus, the remaining bits of the coding area for the number of value units can be used to contain the certificate.

 The greater the number of value units, the lower the value encoded in the card, therefore the greater the memory size allocated to the certificate.

 It is necessary to indicate to the terminals the memory size allocated to the certificate for each card.

For this, this size is indicated in the unprotected EEPROM memory area of the card, with the number of value units and the certificate. This indication is present in the active area and in the copy area.

 According to another characteristic of the invention, the calculation of the certificate of the active area is carried out differently from the calculation of the certificate of the copy area.

 It is then no longer possible to transfer the content of the active zone into the copy zone. A terminal verifying a card whose content from the copy area has been transferred to the active area will be able to detect fraud. The certificate that the terminal will read in the active area will not correspond to the calculation made in the case of the active area, and will correspond to the calculation made for the copy area.

 According to another characteristic of the invention, so that the content of the active area of a card cannot be reused in the event of the card being torn off, the card transaction counter is also modified at the very beginning of the transaction. The copy zone is initialized with the number of value units contained in the active zone and with a certificate taking into account the next value of the transaction counter. Then, the transaction counter is changed to this new value. At this precise moment, the content of the active area is no longer reusable, the transaction counter no longer corresponds to its certificate. However, the copy area is valid.

 The transaction counter is again modified at the end of the transaction to prevent this transaction from being able to be redone, as indicated above.

 The invention will now be described in the case of application to a monetary transaction system, the terminal 100 being a monetary terminal and the card 103, an electronic purse card.

 According to a preferred embodiment, the data structure of the memory 103 is as shown in FIG. 2. This structure or organization is of course given by way of example.

Other organizations can be adapted while remaining in the spirit of the invention.

The memory includes identification data including
- a circuit identification value (circuit
silicon) in the circuit Id area,
- a customer code in the sender reference area
card (banking organization),
- data identifying the application in
the Id Card area (given by the issuer),
- a CSN serial number of the card (given by
example by the manufacturer).

The memory includes a counter area with the following fields
- a fraud counter incremented at each
verification of a certificate proving to be bad.

 This counter is formed by 3 bits according to the practical embodiment which has been made.

 - a CTC transaction counter.

In an exemplary embodiment, this CTC counter is divided into 5 8-bit sub-counters (five counting stages) with an abacus type operation as described for example in patent FR 93 10477 published on March 10, 1995 under NO 2 709 582. The five sub-counters are referenced Cl, C8, C64, C512,
C4096. The memory cells of counting stage C1 have a weight of 1, ... and those of stage C8 have a weight of 4096 = 84).

 The first four stages are of the erasable type, that is to say that it is possible to erase bits written thereon and then rewrite in the same locations. The fifth stage C4096, however, is write only. Only 4 bits of this last stage are used for counting. Among the remaining 4 bits, 1 bit is used as a fuse and the other three bits as the fraud counter.

 Two bits are toasted per transaction.

 Thus, this type of counter will allow to count 10239 transactions [7 + 7x8 + 7x82 + 7x83 + 4x84l / 2.

The memory also includes
- a certificate area.

 This zone cannot be erased and is used for the CER certification record allowing the authentication of the card. The authentication certificate is saved after the configuration of the circuit for the end user and is verified by the terminal each time the card is used.

It is calculated for example from an identification data ID, a one-way function fop and a secret key according to the formula
CER = fop (ID, K)
ID is for example the content of the zones
card identification, identification of
transmitter reference circuit u.

 - a user area.

 This is the active electronic wallet area and the copy area for backups.

 The active area contains, according to a characteristic of the invention, an encrypted datum of the balance Bal and the corresponding certificate Cert. The information on the balance of value units corresponds to a coding on a first variable number of bits, and the information representative of the certificate is coded on a second variable number of bits, the total number of bits of the two codings being constant.

The encrypted data corresponding to one of the two areas of the unit carrier can be written as follows
<Bal, Cert> = EK (Bal, Cert)
Bal being the number of value units and
Cert the corresponding certificate
K being the secret key of the terminal
<data> the encrypted value
(given) the unencrypted value
EK the encryption algorithm.

 The calculation of the certificate ensures the integrity of the data in the electronic purse.

The following data are used in the calculation
- the value of the balance, which makes the certificate
unique for a given balance,
- permanent card data, i.e.
identification data (card and issuer),
- the CTC transaction counter. Every
transaction two bits are toasted in this
CTC counter and the counter can only be
incremented or only decremented. A bit is
grilled at the start of a transaction, a second
bit is toasted at the end of the transaction.

According to one of the characteristics of the invention, the certificates corresponding to a balance are calculated for the terminal as follows
Cert A = FA (Bal, CSN, CTC)
for the active wallet area
and
Cert B = FB (Bal, CSN, CTC)
for the wallet copy area.

 FA and FB being different functions held by the terminal. We could for example take as a function a DES algorithm using a secret key k held by the terminal.

During a transaction, the recording of information relating to the balance and the certificate in the copy area and in the backup area is done as follows
- recording of the balance and its certificate
(present in the active area) in the area of
copy,
- deletion of the active area,
- write the new balance in the active area and
his certificate,
- deletion of the copy area (deletion of the
backup data).

 This sequence makes it possible to avoid any loss of information in the event of the card being torn off or a power failure.

 The different steps implemented by the terminal during a transaction are represented by the functional blocks of FIG. 3.

 The terminal reads the content of the active area of the card (electronic purse PM) 150, which includes the data <Ball, CertlA>. Ball is the number of value units initially stored in the card, and CertlA is the certificate initially stored in the card.

 The terminal checks the integrity of this data 201.

For this, it decrypts this data according to steps 20 to 22 detailed in FIG. 4. If the certificate that it calculated corresponds to the certificate of the card, then the verification has succeeded. The transaction continues 201, 202, 300.

 The terminal updates the balance in the card and calculates new encrypted data 301 and 302. The update is carried out according to steps 30 to 35 illustrated in FIG. 6.

 In the event that the integrity of the data in the active area is not checked, the terminal reads the copy area which contains <Ball, Certlg> 203.

 The terminal verifies the integrity of the backup data 204 by decrypting this data by carrying out steps 20, 21 and 22 of FIG. 4 on this data.

 If the calculated certificate is equal to the certificate of this zone Certl'B == Certlb, then the data is intact, the terminal restores this backup data in the active zone which contained nothing or an erroneous data 205.

 If the data contained in the copy zone is not intact, then the terminal writes a bit in the fraud zone 206.

 Depending on the application, one or more fraud attempts may be accepted before definitively refusing the card.

 When the fraud zone is full, the card is swallowed. The fraud zone is checked during a step prior to the transaction at the very start of the initialization of the transaction 50, 51, 52.

 FIG. 5 illustrates the preliminary steps 200, 201 and 202 to the implementation of a transaction. Preferably, different FA and FB functions can be used for calculating certificates.

 In step 200 (or 204), the terminal performs the operations developed in FIG. 4.

The terminal operates the decryption of the content of the active area (or of copy). (20)
It then calculates the CertlA certificate corresponding to the balance (Ball) for this zone. (21)
It operates the integrity check. (22)
At step 201
- the terminal calculates the certificate (CertlB) for the backup area; (23)
it encrypts the data (Ball, CertlB); (24)
it saves the encrypted value in the card's copy area. (25)
At step 202
- the terminal increments the CTC counter; (26)
- it erases the content of the active area. (27)
FIG. 6 illustrates the steps for updating the balance after the balance after a transaction (301) and the end of the transaction (302).

The old Ball balance is modified by a value x (more or less depending on the transaction made) to give the new Bal2 balance such that
Bal2 = Ball + x (30), x being the value of the transaction.

The terminal calculates a new certificate taking into account this new balance, and the new value of the transaction counter CTC + l
Cert2A = FA (Bal2, Card Id, CTC + 1) (31)
The terminal encrypts this new data
<Bal2, Cert2A> = EK (Bal2, Cert2A) (32)
The terminal records this new encrypted data in the active area of the card. (33)
The card copy area contains the old data, i.e. <Ball, CertlB>. The terminal increments the card's CTC transaction counter by toasting a second bit to validate the transaction. (34)
The terminal clears the copy area (35) and controls the ejection of the card.

Claims (9)

 1. Method for storing value units in a smart card for carrying out transactions from a terminal, the card comprising a non-volatile memory of EEPROM type (103), comprising an active area (ZA) capable of contain information relating to the number of value units of the card for a given application and a certificate calculated by the terminal, in particular from this number, a mathematical function and a data which varies with each transaction, the memory also comprising a copy zone (ZC) intended to contain information for saving the active zone, characterized in that the recording of the information in the active zone (ZA) and in the copy zone (ZC) as a result a transaction is only carried out after having performed an encryption operation on this information, the encrypted information then being recorded in these zones.  2. A storage method according to claim 1, characterized in that the encryption operation is carried out by means of an encryption algorithm EK and a secret key K for the transaction terminal.  3. Storage method according to claim 1 or 2, characterized in that the information representative of the number of value units and the information of the balance of value units corresponds to coding on a first variable number of bits, and the information representing the certificate is coded on a second variable number of bits, the total number of bits of the two codings being constant.  4. Storage method according to claim 3, characterized in that the coding consists in taking as value for the number of value units of the card, a maximum number of value units defined for the given application, minus the number of value units of the card, the transaction terminal being able to determine the number of value units of the card by subtracting the code read from the card from the maximum number.  5. Storage method according to any one of the preceding claims, characterized in that it consists in calculating a certificate in an active area using a first function (FA), and in calculating the certificate in a copy area, using another function (FB).  6. Storage method according to claim 5, characterized in that it comprises the steps consisting in:  - calculate from a first mathematical function FA, a first certificate CA stored in the active area and guaranteeing the integrity of the points in this area,  - calculate from a second mathematical function FB, a second certificate CB stored in the copy area and guaranteeing the integrity of this area.  7. Storage method according to claim 6, characterized in that it further comprises the steps consisting in  - perform a first encryption operation of a data item formed by the number of value units and the first corresponding certificate CA,  - perform a second encryption operation of a data item formed by the number of value units and corresponding second certificate CB,  - Save the result of the first encryption operation in the active area of the memory and the result of the second encryption operation in the copy area.  8. Method according to any one of the preceding claims, in which the calculation of a first certificate is carried out from the number of value units, but also from the value of a transaction counter, characterized in that, at start of a transaction, a certificate is calculated from the number of value units present in the active area and from a value of the transaction counter incremented to its next value, the data obtained is encrypted and saved in the copy area , the transaction counter is then incremented to this new value so that at this instant, the certificate of the active area is no longer in agreement with the value of the counter, only the backup data being correct.  9. Monetary transaction system using smart cards comprising an unprotected memory with an active area for containing data relating to the balance of the card and a copy area for containing backup data, characterized in that the area data Active and backup are securely stored according to any one of the preceding claims.