JPS61121169A - Recognizing system for ic card - Google Patents

Abstract

PURPOSE:To recognize an IC card by encoding a test message produced at random within a terminal with specific key codes to transmit it to the IC card, decoding the key code via the card to transmit it to a terminal and discriminating the propriety of correspondence with the data. CONSTITUTION:The prescribed key code given from a keyboard 16 is added to the signals produced at random from a random number data generator 20 within a card terminal. Then an RSA encoder 21 encodes a test message and transmits it to an IC card via a bus line 11. This test message is decoded by an RSA decoder for IC cards, and the own test message is applied to an SAN arithmetic part 34 via the line 11. Then the decoding data sent from the IC card is compared with the original test message for recognition of the propriety of the IC card.

Description

DETAILED DESCRIPTION OF THE INVENTION [Technical Field of the Invention] The present invention relates to an IC card authentication method for authenticating the validity of an IC card.

[Prior art and its problems] In recent years, it has been called the cashless era, and by using a single card issued by a credit card company, it has become possible to purchase products without handling cash. There is. At this time, the store will check whether the cardholder is the person in question.
In other words, products are sold after confirming whether the card is stolen or not, but the common method for this confirmation is to use a PIN number, and specifically, the method described below is used to confirm this. It is being done.

(a) A PIN number is recorded on the magnetic stripe of the card, and the PIN number entered by the customer via the keyboard of the authentication device installed at the store is compared with the number read from the card by the magnetic reader. A method of matching.

(b) A method in which the PIN number presented by a customer is compared with the PIN number registered at the credit card company via an online POS terminal or telephone to verify a match.

However, in method (a) above, the person who stole the card can easily read the PIN from the magnetic stripe by using a special magnetic reader, etc. There was extremely little credibility as to whether the person was the real person or not. Therefore, in recent years, so-called information cards (ICs) have been developed in which an IC that stores a PIN number etc. is built into the card so that the PIN number cannot be read easily from the outside.
cards are being developed. However, while it is certainly difficult to read out the PIN number for this type of IC card, if the card itself is forged, it is almost impossible to verify the identity of the card, and it is difficult to read the PIN number from this type of IC card. There was a problem with the authentication of the card as to whether it was a card or not.

In this regard, the confirmation method (b) described above is a highly reliable method in terms of card authentication, but since it uses a communication line, it can be intercepted during the transmission of the PIN. There was a risk that the password would be stolen, and there was still a problem with the security of the PIN number.

[Object of the Invention] The present invention has been made in view of the above points, and it is possible to use i! The purpose is to provide an IC card g-certificate system that can be used as a certificate.

[Summary of the Invention] The present invention encrypts a test message randomly generated in a terminal with a specific key code and transfers it to an IC card, and the IC card decodes the encrypted data with its own key code. After that, the terminal judges whether the data decoded from the IC card corresponds to the original test message and then sends the IC card to the terminal.
This is to authenticate the authenticity of the card.

[Embodiment of the Invention] Hereinafter, an embodiment of the present invention will be described with reference to the drawings. First, the circuit configuration of the card terminal 10 will be explained with reference to FIG. In FIG. 1, reference numeral 11 indicates a pass line, and this pass line 11 includes a clock circuit 12, a calculation section 13, a system program ROM 14, a control circuit 15, a key controller 17 that controls a key human power section 16, and a display section 18. Display controller 19, random number data generator 20
is connected. The key manual section 16 is operated by a cashier or the like of a store where the card terminal 10 is installed, and is provided with numeric keys, date setting keys, total keys, collation keys, clear keys, input designation keys, etc. ing. The clock circuit 12 includes a date register 121 in which 8-digit date data for the year, month, and day is set.
The calculation unit 13 has a RAM 13 that stores calculation data.
1. In addition, the pass line 11 includes R3
An R8A II encoder 21 that stores a predetermined encryption algorithm based on the A encryption method is connected, and a contact terminal 23 is connected to the IC card interface controller 22.
An IC card is connected via the . Details of this IC card will be described later. The R3A encoder 21 is connected to the pass line 11 via an A register 24, and MPUK (manufacturer) via a B register 25.
MPUK memory 26 or IPU that stores the urer Public Key Code) code
K (Issure pubzc Key Co
de): Connected to the IPUK memory 27 which stores the ID. The above MPLIKI code is ManufaC
t,urer (manufacturer of card terminal 10) independently set it, IPUK) - Manufacturer
er is set based on instructions from l5sure (for example, a credit card company that issues IC cards). One of the MPUK memory 26 and IPtJK memory 27 is designated according to a control command sent via the pass line 11, and its stored code is sequentially output to the B register 25. The R8A encoder 21 encrypts the data set in the A register 24 according to the key code read out to the B register 25 and outputs it to the pass line 11 and the IC card interface controller 22. The pass line 11 and the IC card interface controller 22 are connected to a comparator 30 via a C register 28 and a D register 29, respectively. The comparison unit 30 compares whether the encrypted data set in the registers 28 and 29 match, and outputs the comparison result to the control circuit 15. In addition, on the pass line 11, there is a 5AN (Sales Approval Number) that creates an approval number via registers 31, 32, and 33 of E, F, and G.
er) The arithmetic unit 34 is connected, and the data ring driver 35 is also connected. The SAN calculation unit 34
It includes an AN algorithm program storage section 341 and an arithmetic circuit 342. Further, the data ring driver 35 includes a ring C register 351, a ring C register 3
52, a ring C register 353, and the register 3
Motor 3 according to the set data of 51.352.353
6a, 36b, and 36c, and the ring 3
Set desired values in 7a, 37b, and 37c. The rings 37a, 37b, and 37c are rings for printing the total amount, date, and approval number.

Further, an input device 42 is connected to the pass line 11 via a cord 41. This input bag @ 42 is for the owner of the IC card to input a PIN number, including a key human power section 421, a key controller 422 that controls this key human power section 421, and a password input from the key human power section 421. Display section 423 that displays the number, this display section 423
It consists of a display controller 424 that controls the.

Next, the configuration of the circuit 1 of the IC card 50 will be explained with reference to FIG. In FIG. 2, reference numeral 51 denotes a connector section, which is connected to the pass line 49 via an interface section 52. This pass line 49 includes a calculation unit 53, a calculation RAM 54, a system program ROM 55, and an RTR memory 56.0A that stores the number of data re-inputs RTR.
A CA memory 57 storing a (Card Authentcator) code is connected. The OA code is, for example, a 64-bit code that is different for each IC card in order to identify each IC card. This code is set at the time of card manufacture and is used to encrypt and decode messages. Additionally, the pass line 49 has MPRK (
Manufacturer Pr1vateKey
A memory 581 for storing the code). IPRK(
Issue Pr1vate KeyCode)
Based on the I PRK memory 59 that stores the PIN, the PIN memory 60 that stores the PIN, the C register 61, the B register 62, and the encrypted data encrypted by the R8A encoder 21 shown in FIG. Decipher R8
A decoder 63 is connected.

The MPRK code written in the MPRK memory 58 is a decryption code set by the manufacturer side kj5, and is written in the MPUK memory 2 in FIG.
There is a one-to-one correspondence with the MPUK code set to 6. Also, I PUK:l- written in the IPRK memory 59
There is a decryption code set in l5SLJre, which corresponds one-to-one with the IPUK code set in the tpuK memory 21 in FIG. And P.I.
The personal identification number PIN stored in the N memory 60 is set to an arbitrary number by the card user. Thus, the PIN number sent from the card terminal is written into the C register 61, and the held data is sent to the comparison section 64 together with the setting contents of the PIN memory 60.

This comparison section 64 includes a PIN memory 60 and a C register 6.
The meat input data from No. 1 is compared for consistency, and the comparison result is output to the control circuit 65. This control circuit 65 includes a comparator 6
MPRK memory 58 and IPRK
In addition to controlling the selection of the memory 59, the R3A decoder 6
Give the operation command to 3. The code read from the MPRK memory 58 or IPRK memory 59 is sent to the R8AMI8A63 via the C register 66. or,
Data from the card terminal is input to this R3A decoder 63 via the b register 62. Above R8A
The 11i unit 63 decodes the data held in the b register 62 according to the code read into the C register 66 from the MPRK memory 58 or IPRK memory 59.

Next, the operation of the above embodiment will be explained. First, the general operation of product sales processing in a store will be explained. 1st above
The card terminal 10 shown in the figure is installed in a store or the like. When a customer purchases a product, the clerk sets the customer's IC card 50 and slip paper on the card terminal 10, and then operates the collation key in the key operator section 16.

When the IC card 50 is set in the card terminal 10, the connector portion 51 of the IC card 50 is connected to the connection terminal 23 of the card terminal 10. Then, by operating the collation key, the cardholder's checking operation is started. In this case, the customer inputs his or her personal identification number PIN from the input device 42. The card terminal 10 sends the PIN number input from the input device 42 to the IC card 50 via the IC card interface controller 22 to check whether the PIN number is correct. When the IC card 50 receives the PIN number from the card terminal 10, it checks whether the input PIN number is correct by comparing it with the PIN number stored in advance. If not, a BAD message is output to the card terminal 10.

The card terminal 10 receives the BAD from the t'c card 50.
If a message is sent, the transaction will be canceled, but O
When the K message is sent, it is checked whether the IC card 50 is valid or invalid. And I
If the C card 50 is determined to be invalid, the transaction is canceled, but if it is determined to be valid, an OK message is displayed on the display section 18. When the OK message is displayed on the display section 18, the clerk inputs the total amount from the key personnel section 16. When the total amount is input from the key human power unit 16, the card terminal 10 stores the total amount in the RAM 13 of the calculation unit 13.
1 and displayed on the display unit 18 via the display controller 19.
to be displayed.

Further, the card terminal 10 sends the total amount stored in the RAM 131 to the data ring driver 35 and writes it in the ring C register 351, and also sends the date data held in the date register 121 of the clock circuit 12 to the data ring driver 35. Write to ring C register 352.

Further, the SAN calculation unit 34 calculates an approval number according to a predetermined encryption algorithm, and the data ring driver 3
Write to the ring C register 353 of No. 5. The data ring driver 35 operates the motors 36a, 36b, and 36b according to the data written in each register 351.352.353.
Drive 36c, rings 37a, 37
Set the total amount, date, and approval number in b and 37c.

By displaying the total amount on the display section 18 as described above, the customer is asked to confirm whether or not the total amount is correct. After confirming the amount, the clerk will put the IC card on the slip.
Data embossed on the card 50 For example, the account number PAN for each customer set by the credit company when issuing the card
(Primary Account Number
In addition to imprinting data such as er), ring 3
The total amount, date, and approval number set in 7a, 37b, and 37c are printed. Then, ask the customer to check the contents of the sales slip imprinted and printed on this slip paper, and if there are no mistakes, a copy of the slip paper, an I
The C card 50 and the product are handed over to the customer to complete the product sales process.

Next, details of the processing operation of the card terminal 10 and the internal processing operation of the IC card 50 will be explained with reference to the flowcharts of FIGS. 3 and 4.

After the IC card 50 is set, the card terminal 10 operates until the verification key in the key input unit 16 is operated and the password PIN is input from the key input unit 42 as shown in step A1 in FIG. I will continue to attend the ceremony.

When the personal identification number PIN is input from the key input unit 42, the card terminal 10 sends the personal identification number PIN to the IC card 50 via the IC card interface controller 22 as shown in step A2, and then the Stellar 1 OK from IC card 50 as shown in block A3
It is in a standby state until a message or a BAD message is sent.

On the other hand, when the IC card 50 receives the PIN number from the card terminal 10, it sets the PIN number in the a register 61 as shown in step B1 of FIG. Next, as shown in step B2, the number of data re-inputs RTR stored in the RTR memory 56 becomes "5".
” is reached. Data re-input count RTR
has reached "5", as shown in step B3, B
The AD message is sent to the card terminal 10 and the process ends. At the beginning, the content of the RTR memory 56 is "0", and the result of the determination in step B2 is NO, and the process proceeds to step B4. In this step B4, the password PIN set in the a register 61 from the card terminal 10 is compared with the password PIN preset in the PIN memory 60, and it is determined in step B5 whether or not they match. As a result of this judgment, if they do not match, the process proceeds to step B6, where the content of the RTR memory 56 is incremented by "+1", and then a No message is sent to the card terminal 10 as shown in step B7. If it is determined in step B5 that the PIN numbers match, the process proceeds to step B8 to clear the contents of the RTR memory 56, and then, as shown in step B9, the OK message and the CA memory 51 are saved. The stored OA code is sent to the card terminal 10.

As described above, the IC card 50 checks the card owner and sends the message to the card terminal 10.
Once sent, the process advances to step 310 and waits until encrypted data is sent from the card terminal 10.

However, as mentioned above, the card terminal 10
In step 83 of the figure, the IC card 50 waits until a message is sent.
When a message is sent from 0, it is determined whether it is an OK message or not. If it is not an OK message, step A.
Proceed to step 4 to determine whether it is a BAD message. BAD
If the message is not τ, it is a No message, so a message instructing to re-enter the personal identification number PIN is displayed on the display unit 18 as shown in step A5. If the password PIN does not match even after inputting the password rsJ times according to this re-input instruction, a BAD message is output from the IC card 50, and the process proceeds from step A4 to step 80 to perform a transaction stop process.

If it is determined in step A3 that there is an OK message, the process proceeds to step A1, where the CA code from the IC card 50 is set in the E register 31. Then, as shown in step 88, the random number data generator 2
A random number is generated from 0, and the random number is set in the A register 24 and the C register 28 in step A9. After that, step A101: j5, the control circuit 15
The MPtJK memory 26 is selected and the MPUK code is read into the 8 register 25. And step A1
As shown in 1, the random number set in the A register 24 is set to 8.
It is encrypted using the MPtJK code set in the register 25, and the encrypted data is set in the A register 24 as shown in step A12. Next, in step A13, the IPUK code is read from the PtJK memory 27 and set in the B register 25. And step A1
As shown in FIG. 4, the A register 2 is
I read the data set to 4 to the B register 25.
It is encrypted again using the PUK code, and the encrypted data is sent to the IC card 50 in step A15. After sending the encrypted data to the IC card 50 as described above, the card terminal 10 waits in step A16 until decrypted data is sent from the IC card 50.

The encrypted data is sent from the card terminal 10 to the IC card 50.
When the IC card 50 is sent to step B1 in FIG.
0, the encrypted data is detected and the encrypted data is set in the b register 62 as shown in step B11.

Then, as shown in step 312, the IPRK memory 59
Read the IPRK code from R3 to C register G6.
In the A decoder 63, as shown in step 313, b
The encrypted data held in the register 62 is decoded using the IPRK code. Next, as shown in step B14, the decoded data is written to the b register 62, and then, in step B15, the MPRK code stored in the MPRK memory 58 is read to the C register 66. and,
Step 81GIC as shown ICR8AWIII63
The data held in the GCJ5 r, b register 62 is decoded using the MPRK code, and the decoded data is sent to the card terminal 10 in step B1γ. This completes the processing on the IC card 50 side.

When the decoded data is sent from the IC card 50 to the card terminal 10 as described above, the card terminal 10
detects the decrypted data from the IC card 50 at step A16 in FIG. After that, the process proceeds to step A18, and in step A9, the C register 28 is
The random number set in C register 29 is compared with the decoded data set in C register 29, and it is determined in step A19 whether or not they match. If there is a mismatch, this means that the data encrypted by the card terminal 10 is transferred to the IC card 5.
This is a case where an accurate solution is not achieved due to 0. In other words, this means that the IC card 50 does not store the correct MPRK or IPRK, or that the IC card 50 does not store the correct MPRK or IPRK, or
It shows that it does not have the 8A decoder 63, and it is a regular M
It is determined that the card is not a legitimate card issued through anUfaCtLIrer and l5suer, and the transaction is stopped as shown in step 80. Above MPU
The key code stored in K memory 26 and IPUK memory 21 is Manufacturer or l5su.
In re, the MPRK memory 58 of the IC card 50,
Each of these keys has a one-to-one correspondence with the key code written in the IPRK memory 59, and is a key code for encryption based on the R8A algorithm. On the other hand, the above MP
The key codes stored in the RK memory 58 and IPRK memory 59 are key codes for decoding based on the R8A algorithm. That is, rPUKJ (Pu
blic Key Code) and rPRKJ (P
rivate Key Code) is a key code selected to have a one-to-one correspondence using an i-directional function based on the R8A algorithm. This R8
According to the encryption method based on the A algorithm, rPtJ
The data encrypted by KJ is the same rPtJK
It is extremely difficult to decipher it in J, and it is possible only in rPRKJ, which has the correspondence relationship based on the above function. The encryption method based on this R8A algorithm is based on Cael H, Meyer and 5t
Authored by efhen M, Matyas, 198
2 years, John Wiley & 3ons, Inc.
“CRYP 0GRAOHYJ” published by
Details Ll'. If the result of the determination in step A19 is YES, the card is valid, so the process advances to step A20 and an OK message is displayed on the display section 18. Upon display of this OK message, the store clerk inputs the total amount of sales from the key human power section 16 and operates the total key.

This total key operation is detected in step A21, and the process proceeds to step A22. In this step A22, the total amount is set in the ring C register 351 in the data ring driver 35, and then in step A23, the date data counted by the date register 121 of the clock circuit 12 is set in the ring C register 352. Subsequently, the total amount is set in the F register 32 in step A24, and the date data held in the date register 121 is set in the G register 33 in step A25.

Thereafter, the process proceeds to step A26, where the SAN calculation unit 34 calculates the approval number SAN based on the data held in the E register 31, F register 32, and G register 33 according to a predetermined encryption algorithm. Then, this approval number SAN is sent to the data ring driver 35 and set in the ring C register 353 as shown in step A27. After that, the process advances to step A28, and each register 351, 352, 3 in the data ring driver 35
Based on the set data of 53, the motor 36a136b,
36c, rings 37a, 37b, 37
Set the print data to c. With the above ring 37a, 3
After completing the process of setting print data for 7b and 37C, predetermined data can be printed on the slip paper. As described above, the validity of the IC card 50 is confirmed, and thereafter, the sale of the product is processed and a slip is issued.

[Effects of the Invention] As detailed above, according to the present invention, a test message randomly generated in a card terminal is encrypted with a specific key code and transferred to an IC card, and the IC card receives the encrypted data. is decoded using its own key code and transferred to the card terminal, and then the terminal determines whether the decoded data from the IC card corresponds to the original test message to authenticate the validity of the IC card. As a result, it is possible to check the IC card using random test messages, and IC card authentication can reliably authenticate that a legitimate card transaction has been made at the time of card transaction even when offline. method can be provided.

[Brief explanation of drawings]

The drawings show one embodiment of the present invention, and FIG. is a block diagram showing the circuit configuration of the card terminal;
FIG. 3 is a block diagram showing the circuit configuration of the IC card, FIG. 3 is a flowchart showing the processing operation of the card terminal when the collation key is operated, and FIG. 4 is a flowchart showing the internal processing operation of the EC card. 10...Card terminal, 11...Pass line,
12... Clock circuit, 13... Arithmetic unit, 14... System program ROM, 15... Control circuit, 16...
...Key human power department, 17...Key controller, 18.
...Display section, 19...Display controller, 20...
Random number data generator, 21...R8A encoder, 22...
・IC card interface controller, 24.2
5.28.29.31.32.33...Register, 3
4... SAN calculation section, 35... Data ring driver, 368-36G... Motor, 49... Pass line, 50... IC card, 51... Connector section, 5
2... Interface section, 56... RTR memory, 57... CA memory, 58... MPRK memory,
59...IPRK memory, 60...PIN memory,
61.62.66...Register, 63...R3A decoder.

Claims (1)

[Claims] (1) A means of encrypting test messages randomly generated within the card terminal with a specific key code,
means for transmitting the encrypted data to the IC card; means for decoding the encrypted data sent from the card terminal to the IC card using its own key code; and transmitting the decrypted data to the card terminal; An IC card authentication method comprising means for comparing decrypted data transferred from the IC card with an original test message to authenticate the validity of the IC card.