WO2004102860A3 - Cryptographically secure transactions with optical cards - Google Patents

Cryptographically secure transactions with optical cards Download PDF

Info

Publication number
WO2004102860A3
WO2004102860A3 PCT/US2004/015374 US2004015374W WO2004102860A3 WO 2004102860 A3 WO2004102860 A3 WO 2004102860A3 US 2004015374 W US2004015374 W US 2004015374W WO 2004102860 A3 WO2004102860 A3 WO 2004102860A3
Authority
WO
WIPO (PCT)
Prior art keywords
key
encrypted
optical cards
secure transactions
cryptographically secure
Prior art date
Application number
PCT/US2004/015374
Other languages
French (fr)
Other versions
WO2004102860A2 (en
Inventor
W Jack Harper
Original Assignee
Bsi2000 Inc
W Jack Harper
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from US10/844,963 external-priority patent/US20050005156A1/en
Priority claimed from US10/844,967 external-priority patent/US20040267847A1/en
Priority claimed from US10/844,960 external-priority patent/US20050005108A1/en
Application filed by Bsi2000 Inc, W Jack Harper filed Critical Bsi2000 Inc
Publication of WO2004102860A2 publication Critical patent/WO2004102860A2/en
Publication of WO2004102860A3 publication Critical patent/WO2004102860A3/en

Links

Classifications

    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/10Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
    • G07F7/1008Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/341Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3823Payment protocols; Details thereof insuring higher security of transaction combining multiple encryption tools for a transaction
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/409Device specific authentication in transaction processing
    • G06Q20/4097Device specific authentication in transaction processing using mutual authentication between devices and transaction partners
    • G06Q20/40975Device specific authentication in transaction processing using mutual authentication between devices and transaction partners using encryption therefor
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/10Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
    • G07F7/1016Devices or methods for securing the PIN and other transaction-data, e.g. by encryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/06Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
    • H04L9/065Encryption by serially and continuously modifying data stream elements, e.g. stream cipher systems, RC4, SEAL or A5/3
    • H04L9/0656Pseudorandom key sequence combined element-for-element with data sequence, e.g. one-time-pad [OTP] or Vernam's cipher
    • H04L9/0662Pseudorandom key sequence combined element-for-element with data sequence, e.g. one-time-pad [OTP] or Vernam's cipher with particular pseudorandom sequence generator
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0852Quantum cryptography
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3234Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving additional secure or trusted devices, e.g. TPM, smartcard, USB or software token
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3247Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3297Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving time stamps, e.g. generation of time stamps
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/56Financial cryptography, e.g. electronic payment or e-cash
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/80Wireless
    • H04L2209/805Lightweight hardware, e.g. radio-frequency identification [RFID] or sensor

Abstract

A method is provided for writing a record to an optical card. A session key is generated randomly. The session key is encrypted using a private key of a public/private key pair associated with a particular cryptographic-key management device. The record is encrypted using the session key. A serial number for the particular cryptographic-key management device, the encrypted private key, and the encrypted record are optically written to the optical card.
PCT/US2004/015374 2003-05-13 2004-05-13 Cryptographically secure transactions with optical cards WO2004102860A2 (en)

Applications Claiming Priority (14)

Application Number Priority Date Filing Date Title
US47047903P 2003-05-13 2003-05-13
US60/470,479 2003-05-13
US54359604P 2004-02-10 2004-02-10
US54379704P 2004-02-10 2004-02-10
US54359504P 2004-02-10 2004-02-10
US60/543,595 2004-02-10
US60/543,596 2004-02-10
US60/543,797 2004-02-10
US10/844,963 US20050005156A1 (en) 2003-05-13 2004-05-12 Cryptographic-key management device
US10/844,967 US20040267847A1 (en) 2003-05-13 2004-05-12 Hardware random-number generator
US10/844,960 2004-05-12
US10/844,960 US20050005108A1 (en) 2003-05-13 2004-05-12 Cryptographically secure transactions with optical cards
US10/844,963 2004-05-12
US10/844,967 2004-05-12

Publications (2)

Publication Number Publication Date
WO2004102860A2 WO2004102860A2 (en) 2004-11-25
WO2004102860A3 true WO2004102860A3 (en) 2005-01-20

Family

ID=33459439

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2004/015374 WO2004102860A2 (en) 2003-05-13 2004-05-13 Cryptographically secure transactions with optical cards

Country Status (1)

Country Link
WO (1) WO2004102860A2 (en)

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106357649B (en) * 2016-09-23 2020-06-16 浙江神州量子网络科技有限公司 User identity authentication system and method
CN109660338B (en) * 2018-11-19 2021-07-27 如般量子科技有限公司 Anti-quantum computation digital signature method and system based on symmetric key pool
CN117834137A (en) * 2024-03-04 2024-04-05 深圳市纽创信安科技开发有限公司 Password card switching method, device, computer equipment and storage medium

Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6031910A (en) * 1996-07-24 2000-02-29 International Business Machines, Corp. Method and system for the secure transmission and storage of protectable information

Patent Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6031910A (en) * 1996-07-24 2000-02-29 International Business Machines, Corp. Method and system for the secure transmission and storage of protectable information

Also Published As

Publication number Publication date
WO2004102860A2 (en) 2004-11-25

Similar Documents

Publication Publication Date Title
WO2004040410A3 (en) Password encryption key
ATE443384T1 (en) DEVICE KEY
IN2012DN01977A (en)
TW200627393A (en) Data processing method, information recording medium manufacture management system, record data generation device and method, and computer program
WO2008121157A3 (en) Cryptographic key management system facilitating secure access of data portions to corresponding groups of users
WO2005045550A3 (en) Password recovery system and method
AU2003222104A1 (en) Validation of inclusion of a platform within a data center
GB2440854A (en) System and method for key recovery
EA200001151A1 (en) SYSTEM AND METHOD FOR ELECTRONIC TRANSFER, STORAGE AND EXTRACTION OF AUTHENTICATED DOCUMENTS
WO2007012814A3 (en) Signature for access tokens
GB2423854B (en) Portable security transaction protocol
GB2473566A (en) Systems and method for data security
WO2003073386A3 (en) Player authentication for cashless gaming machine instruments
WO2007046843A3 (en) Method and apparatus for managing personal medical information in a secure manner
CN104200363B (en) A kind of method of payment of the electronic purse system based on encrypting fingerprint
ATE514271T1 (en) ARRANGEMENT AND METHOD FOR SECURE DATA TRANSMISSION
WO2008049032A3 (en) System and method for secure transaction
WO2009137371A3 (en) Enterprise device recovery
EP1624609A3 (en) Encryption data processing apparatus and method
WO2006015182A3 (en) Object access level
CA2440546A1 (en) Cryptographic authentication with ephemeral modules
ES2196156T3 (en) PROCEDURE FOR THE EXCHANGE OF CLIPTOGRAPHIC KEYS, ASSISTED BY COMPUTER, BETWEEN A FIRST COMPUTER UNIT AND A SECOND COMPUTER UNIT.
WO2007139706A3 (en) Authenticating a tamper-resistant module in a base station router
ATE281739T1 (en) METHOD FOR CONDITIONAL ACCESS TO USEFUL DATA TO SUPPORT ADVERTISING FINANCING OF MULTIMEDIA CONTENT
EP1480411A3 (en) An IC card with cipher key conversion function

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BW BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE EG ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NA NI NO NZ OM PG PH PL PT RO RU SC SD SE SG SK SL SY TJ TM TN TR TT TZ UA UG US UZ VC VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): BW GH GM KE LS MW MZ NA SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IT LU MC NL PL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
122 Ep: pct application non-entry in european phase