JPS62232072A - Terminal recognition system - Google Patents

Abstract

PURPOSE:To reduce the load of security processing at a terminal equipment by loading on the terminal equipment a security card provided with an cipher calculation means, supplying an optional data from the equipment to the card in this state, and enciphering this data based on a prescribed key data. CONSTITUTION:An IC card 5 is inserted from the card port 4 of the terminal equipment main body 1, then the security card 8 is inserted from a security card port 7. Thereafter, the random number generator 17b of a main controller 17 generates an operational RAN (random number) data, and this data is enciphered by a cipher machine by using a key data stored in a data ROM, and converted to a RAN' data and transferred to the terminal-side. The RAN' data is decoded in the IC card based on a prescribed key data. The security check for the recognition of terminal is executed by the decoded result.

Description

DETAILED DESCRIPTION OF THE INVENTION [Technical Field of the Invention 1] The present invention relates to a terminal authentication method using a dedicated card for security processing.

[Prior art and its problems] In recent years, it has become known as the cashless era, and by using cards issued by credit card companies, it has become possible to purchase products without handling cash.

Conventionally, cards used include plastic cards, embossed cards, and magnetic striped cards, but these cards are easy to forge due to their structure, so unauthorized use has become a problem.

To solve this problem, so-called IC cards, which are information cards that incorporate an IC circuit that stores a PIN number inside the card so that the PIN number cannot be read easily from the outside, have been developed. There are 1,111 IC card systems that combine such an IC card and a terminal.

By the way, in conventional IC card systems, in order to prevent the terminal from being activated and used illegally by unauthorized persons, a terminal activation card is used, and this card is attached to the terminal when the terminal is activated. There is a concept of supplying data such as a part of the software (or the encryption key itself) required for execution when the power is turned on. (For example, Japanese Patent Application No. 60-43386) However, when such a card finishes supplying data to the terminal, it is ejected from the terminal and does not take any part in subsequent terminal operations.

Therefore, various security checks (such as No. 88 calculation) for IC cards and the like during subsequent system operation will all depend on the hardware and software algorithms built into the terminal in advance. However, in this case, the security processing method at the terminal becomes fixed, and the processing that the terminal must support requires advanced hardware and software to ensure stable security over the long term.

This meant that such terminals and the IC cards used in combination with these terminals were required to have complex hardware, which led to an increase in costs and an accompanying increase in processing time. .

In addition, the fixed security processing method at the terminal means that if the terminal is forged due to modification, etc., there is no way to deal with this, and unauthorized use of such a device significantly reduces the security of the IC card system. There was a drawback.

[Purpose of the Invention] This invention was made in view of the above circumstances, and it is possible to reduce the burden of security processing on the terminal related to terminal authentication, simplify the hardware and shorten the processing time, and furthermore, it is possible to reduce the burden of security processing on the terminal for terminal authentication. The purpose of the present invention is to provide a terminal authentication method that can reliably prevent forgery and improve system security.

[Summary of the Invention] The terminal authentication method according to the present invention is an IC card system having an IC card and a terminal to which the IC card is installed, in which a security card having a cryptographic calculation means is installed in the terminal, and in this state, security is transmitted from the terminal. Give arbitrary data to the card, encrypt the data based on predetermined key data, transmit this encrypted data to the IC card side, and use the IC card to transfer the encrypted data from the security card to the predetermined key data. The decryption results are used to perform a security check for terminal authentication using the decryption results.

[Embodiments of the invention] An embodiment of the present invention will be described below with reference to the drawings.

FIG. 1 shows an external view of a terminal, an IC card and a security card attached to the terminal. In the figure, reference numeral 1 denotes a terminal body, and the surface of this body 1 has a keyboard 2 with numeric keys etc., a display part 3 for displaying messages, input data, etc., and an IC card insertion slot 4 of an IC card insertion part. have.

An IC card is inserted through this IC card insertion slot 4. This IC card 5 has an I
It incorporates a C circuit and has a connector 6 on its surface.

On the other hand, the side surface of the terminal body 1 has a security card insertion lower for a security card attachment. A security card 8 is attached to this security card insertion lower. This security card 8 has a cryptographic calculation unit necessary for performing all security checks in the IC card system.

FIG. 2 shows the circuit configuration of such a terminal. In the figure, 11 is a system bus, and this system bus 11 includes a sound controller 12, a working RAM 13, a system program ROM 14, a terminal attribute ROM 15, and an initial parameter RAM 1.
6, main controller l-roller 17, display drive controller 18, key controller 19, reader/writer controller 20. A comparator 21, an input/output controller 22, an output buffer 24 via an output controller 23, and an input controller 26 via an input buffer 25 are connected, respectively.

A speaker 27 is connected to the sound controller 12 and outputs an alarm sound as necessary.

The working RAM 13 stores rPANJ, r'CHNJ, which will be described later, sent from the IC card side in the memory area.
rEPDJ, etc. are stored, as well as various processing data within the terminal.

The system program ROM14 is an ENQ for matching with IC cards as well as various system programs.
It has codes etc.

The terminal attribute ROM 15 stores terminal codes TC (for example, manufacturing code, origination code, store code, etc.) depending on the purpose of the terminal.

Initial parameter RAM 16 stores answer-to-reset data from IC card 5 all at once. This initial parameter RAM 16 contains the transmission line 16.
Output controller 23, input controller 2 via a
6 and Vpp level latch section 28, 2 pp timer latch sections, Ipl) level latch section 30 are connected, and these latches 28, 29, 30 are connected to the corresponding Vpp power supply 3.
1, Vpp timer 32, IDI) IJ mitter 33
is connected.

Here, the vppi source 31 is for securing the voltage Vpp used for writing data into the data memory of the IC card. Further, the Vpp timer 36 is for securing the maximum unit processing time specified by the IC card. Furthermore, the Ipp limiter 33 writes data ff1R.
This determines the permissible number of shifts.

In this case, the maximum data write voltage by the Vpp power supply 31, the Vpp application time by the Vpp timer 32, the maximum allowable data write current by the 1pp limiter 33, etc. are set based on the answer-to-reset data stored in the initial parameter RAM 16. Ru. .

An IC card operating frequency selector 34 is connected to the data transmission line 16a. An oscillation signal from an oscillator 35 is supplied to this selector 34 via a frequency divider 36.
It is output from the C1oCk terminal as a signal with the operating frequency set. In general, the main controller 17 is provided with a random number generator 17b.

A timer 37 is connected to the initial parameter RAM 16. This timer 37 is the initial parameter RA
Based on the answer-to-reset data stored in M16, the maximum response waiting time is counted from the time when an ENQ signal or other command signal is sent to the IC card side. If there is no response signal from the card side, main controller 1
7 again instructs the transmission of these signals, or the reader/writer controller 2
An instruction is given to disconnect the IC card via o.

A comparator 21 and an input/output controller 22 are connected to the system control line 17a of the main controller 17.
Control commands are sent from the main controller 17 to each circuit depending on the operating state of the system.

The display drive controller 18 is connected to the terminal 1 mentioned above.
This is to control the display on the display section 3 of.

The key controller 19 provides a key sampling signal to the keyboard 2 of the terminal 1 described above so as to detect a key input signal.

The reader/writer controller 20 drives and controls the reader/writer mechanism section 38. Here, the mechanism section 38 is equipped with a card transport motor, and transports the IC card inserted from the card insertion slot of the terminal to a predetermined position, and electrically connects the card to the terminal.
When the predetermined process is completed, the IC card is returned to the card insertion slot.

The reader/writer 8 section 38 has an output buffer 2.
4, reset controller 39, Ipl) level latch section 30. An operating frequency selector 34 and a VCC voltage vA40 are connected. Then, I10 terminals and Re5 terminals are connected to the above-mentioned IC card 5 side in correspondence with these output buffers 24, three reset controllers, Ipp level latch unit 30, operating frequency selector 34, and vcCTt source 40.
It has an et terminal, a Vpp terminal, a C1ock terminal, and a VCC terminal, among which the I10 terminal, Re5et terminal, and C1o
Security card 8 for ck terminal and VCC terminal
It can be connected to the side. In this case, the connection of the I/○ terminal to the IC card 5 or the security card 8 can be switched via the transfer gate 41 controlled by the main controller 17.

The input controller 26 and the output controller 23 control the exchange of data with the IC card in accordance with commands from the main controller 17 via the initial parameter RAtV116. Among these, the input controller (~ roller 26) outputs the data sent from the IC card to the working RAM 13 etc. via the input buffer 25 and also provides it to the comparison section 21, and provides the comparison output here to the main controller 17. Further, the output controller 23 sends data provided from the terminal attribute ROM 15 or the like to the IC card 5 or security card 8 side via the output buffer 24.

The input/output controller 22 sends and receives encrypted data when a database, ie, a host computer, is connected online.

Next, Figure 3 shows an IC that is connected to such a terminal.
This shows the circuit configuration of the card.

In the figure, 51 is a system bus, and this system bus 51 includes a data ROM 52 and an application ROM 5.
3. System program ROM54, working RAM
55, system controller 56, encoder 57, read/write controller 58, card status buffer 5
9. Input controller I/roller 61 via input buffer 60
, and an output controller 63 via an output buffer 762. Further, a data input/output terminal I10 is connected to the input controller 61 and the output controller 63.

Here, the data ROM 52 stores all operating conditions for the IC card itself (for example, data writing, applied voltage, current permissible value and maximum applied voltage, maximum data transmission time, maximum response time, etc.), and these condition data are stored in the data ROM 52. When the card's internal initialization is completed, it is sent to the terminal side as answer-to-reset data in a predetermined format.

The data ROM 52 also stores key data used for 11N encoding or decryption of data in an encoder 57, which will be described later.

The application ROM 53 stores card type data rAPNJ indicating what type of IC card this card is, and this card type data is the attribute of the terminal side after initial parameter setting based on the above answer-to-reset data. At the time of exchange, it is placed in a predetermined format and sent.

The system program ROM 54 contains various system programs as well as a code signal rACKJ or rNAc indicating whether the signals transmitted and supplied from the terminal side are correct or not.
Equipped with J.

The working RAM 55 stores various processing data within the card.

The system controller 56 outputs operation commands to each circuit according to the data reception signal transmitted and supplied via the input buffer 60 and the operation state.

The read/write controller 58 controls the writing and reading of data in the data memory 64 in response to commands from the system controller 56.

For example, an EEP-ROM is used as the data memory 64. In this case, such data memory 64 has a transaction storage area and rlPINJ, r
It stores information such as PANJ, rcHNJ, rEPDJ codes and status data rsTJ. Here, rIPINJ (Initialization Pe
rsonal identification
Number) is a random code, for example, 6 bits, and is a number until the own verification number rPINj is used. l”PANJ (Primary Acc
.

Unt NLJmber) represents the account number. rcHNJ <Card holder'sNam
e) represents the cardholder's name.

rEPDJ (Expiration Date) represents the expiration date. rsTJ is used to represent the current card status and is sent to the terminal side in data format.

The encoder 57 uses key data stored in the data ROM 52 to perform encryption based on a predetermined algorithm, and also decrypts the encrypted data.

The card status buffer 59 is used to set a flag when the card is invalid and to disable the card from being used thereafter.

The contents of the data memory read by the read/write controller 58 are sent to one input terminal of the comparator 65 and the system bus 5.
1 or card status buff 159.

The comparator 65 receives data encrypted or decoded by the encoder 57 or a specific code stored in the data ROM 52 at the other input terminal. The comparison output of this comparison section 65 is supplied to the system controller 56 via the system control line 56a.

When the IC card thus constructed is attached to a terminal (not shown), a reset signal is supplied from the terminal side to the Re5e terminal, a system clock is supplied to the Clock terminal, and V is supplied to the Vcc terminal and the VpDD8 terminal.
cc power supply and vppNg are connected. Here, VCC power supply is a system driving power supply, vpplfai is a built-in power supply for the data memory 64, and the power supply voltage is set on the terminal side based on answer-to-reset data stored in the data ROM 52. . On the other hand, C
The system operation signal from the l0Ck terminal is supplied to each circuit via a frequency divider 66.

Next, FIG. 4 shows the circuit configuration of the security card installed in the terminal.

In the figure, 71 is a system bus, and an input control circuit 72, an output control circuit 73, a working RAM 74, a data ROM 75, and a main controller 76 are connected to this system bus 71.

Here, the input control circuit 72 and the output control circuit 73 are I10
This is for exchanging data with the above-mentioned terminal 1 via the terminal.

The working RAM 74 stores various processing data within the card.

The data ROM 75 stores key data for encryption or decoding.

The main controller 76 operates according to the operating state of the system.
Control commands are issued to each circuit via the control bus 76a.

One input terminal of each of three arithmetic units 77, 78, and 79 is connected to the system bus 71. These computing units 77.
A distributor 80 is connected to the other input terminals of 78.7. Further, the outputs of these computing units 77, 78, and 79 are sent to the system bus 71 via the selector 81.

Here, the arithmetic units 77, 78, and 79 are independent cryptographic arithmetic circuits, and are capable of performing arithmetic operations based on mutually different algorithms.

Plain text data to be encrypted or cipher text data to be decoded is given to the input terminals connected to the system bus 71 of the computing units 77, 78, 79, and the other input terminals connected to the distributor 80 , key data for encryption or decryption is given by the distributor 80 to the specific arithmetic unit that is currently about to start calculation.

Note that here, the computing unit 77 is used for encryption or decryption for IC card authentication or terminal authentication, the computing unit 78 is used for encryption or decoding in transactions, and the computing unit 79 is used for encryption when online. used.

When the security card is installed in the terminal, a reset signal is supplied from the terminal to the Re5et terminal, a system clock is supplied to the Clock terminal, and Vcc? is supplied to the VCC terminal. The source is connected. Here, the Vcc power supply is a system driving power supply. On the other hand, the clock signal from the CI OCk Q,v+'' child is supplied as a timing signal to the timing bus 76b via the frequency divider 82.

Next, the operation of the embodiment configured as described above will be explained.

First, in FIG. 1, the IC card 5 is inserted through the card insertion slot 4 of the terminal body 1, and then the security card 8 is inserted through the security card insertion lower.

The case where the IC card 5 is authenticated in this state will be explained according to the flowchart of FIG.

First, in the terminal, in step A1, an arbitrary RAN (
random number) data is generated and sent to the IC card. In this case, in the terminal the main controller 17
RAN data is created according to the command, and is sent to the IC card side from the I10 terminal via the output controller 23 and output buffer 24. In this case, the output buffer 24 is connected to the I10 terminal on the IC card side by the transfer gate 41 according to a command from the main controller 1 to the roller 17.

The IC card receives RAN data in step B1. That is, the RAN data input to the I10 terminal is temporarily stored in the working RAM 55 via the input controller 61 and the input buffer 60.

Next, proceed to step B2. In this step B2, the RAN data stored in the working RAM 55 is read out and given to the digital circuit 57. Then, encryption is performed in this encoder 57 based on a predetermined algorithm using the key data stored in the data ROM 52, and the RAN
The data is converted to RAN-data. Then, in step B3, this encrypted RAN-data is sent to the I10 via the output buffer 762 and the output controller 63.
Sent from the terminal to the terminal side.

In the terminal, the RAN-data inputted to the I10 terminal in step A2 is received via the input controller 26 and the input buffer 25, and is stored in the working RAM 13.
is memorized. Then, the process advances to step A3. In this step A3, the RA is
N' data is read from the working RAM 13, and I
An identification code indicating C-card authentication is added, and then sent to the security card side from the I10 terminal via the output controller 23 and output buffer 24.

In this case, the output buffer 24 is connected to the I10 terminal on the security card side by the transfer gate 41 according to a command from the main controller 17.

In the security card, RAN-
Receive data. That is, the RAN-data input to the I/Om child is normalized by the input control circuit 72 and temporarily stored in the working RAM 74.

In this state, the process proceeds to step C2. In step C2, the main controller 76 analyzes the contents of the working RAM 74 and determines the arithmetic unit and key data to be used. In this case, since it is IC card authentication, the computing unit 77 is designated. In this state, predetermined key data for decoding is read from the data ROM 75, and is given to the processor 77 via the distributor 80. At the same time, the RAN'-data stored in the working RAM 74 is read out and sent to the arithmetic unit 77 via the system bus 71.
given to. As a result, the arithmetic unit 77 performs an arithmetic operation using predetermined key data, and the RAN-data is decoded and converted into [RANl data. And this [R
AN'] data is written to the buffer area of working RAM 74.

In this state, the process proceeds to step C3, where the decrypted [RAN'
] The data is sent back to the terminal side from the I10 terminal via the output control circuit 73.

On the terminal side, the [RAN-] data input to the I/'0 terminal in step A4 is sent to the input controller 26.
, received via the input buffer 25 and working RA
It is stored in M13. Then, the process advances to step A5.

In this step A5, the RAN sent to the IC card in step A1 according to a command from the main controller 17 is
[RANi] stored in the data and working RAM 13
The data is provided to comparator 21 where it is compared. Then, the process proceeds to step 86, where the authenticity of the IC card is determined based on the comparison result of the comparator 21.

In this case, if the RAN data and [RAN=] data match, the IC card at this time is determined to be genuine, and this fact is displayed on the display unit 3 via the display drive controller 18, and the next process is performed. is permitted to migrate to. On the other hand, if the RAN data and [RAN -] data do not match, the IC card is considered to be in danger of being C'A3'tx, and a message to that effect is displayed on the display unit 3 via the display drive controller 18, and a warning is displayed. This will encourage

Next, the case of authenticating the terminal 1 will be explained according to the flowchart of FIG. First, in the terminal, in step A11, the terminal-specific TCN code (
It can be any random number. ) is generated and sent to the security card. In this case, the terminal uses the terminal-specific TC according to the instructions from the main controller 17.
The N code is taken out and sent to the security card side from the I10 terminal via the output controller 23 and output buffer 24. In this case, main controller 1
7, the output buffer 24 is connected to the I10 terminal on the security card side by the transfer gate 41.

In the security card, TCN is sent in step C11.
Receive code. In other words, the T input to the I10 terminal
The CN code is normalized by input control circuit 72 and stored in working RAM 74.

In this state, the process advances to step C12. This step CI2
Then, the main controller 76 controls the working RAM 7.
The contents of 4 are analyzed and the arithmetic unit and key data to be used are determined. In this case, since it is terminal authentication, the calculator 7
7 is specified. In this state, the data ROM 75
Then, predetermined key data for encryption is read out and given to the encryptor 77 via the distributor 80. Also,
At the same time, the TCN stored in the working RAM 74
The code is read out and sent to the arithmetic unit 7 via the system bus 71.
7 is given. As a result, the arithmetic unit 77 performs a calculation using predetermined key data, and the TCN code is I! 8
The code is changed to @ and converted into a TCN'' code. This TCN'' code is then written to the buffer area of the working RAM 74.

In this state, the process proceeds to step C13, where the encrypted TCN
The = code is sent back to the terminal side from the /10 terminal via the output control circuit 73.

On the terminal side, Ilo OR in step A12
The TCN-code input to the child is input to the input controller 26.
, received via the input buffer 25 and working RA
Temporarily stored in M13. Then, the process advances to step A13.

In this step A13, the TCN code sent to the security card and the TCN-code stored in the working RAM 13 are retrieved according to the command from the main controller 17, and these are sent to the IC card from the I10 terminal via the output controller 23 and output buffer 24. sent to the side.

For IC cards, enter the TCN code and TC in step B11.
Receive N-code. In other words, the TCN code and TCN = code input to the I10 terminal are sent to the working RAM via the input controller 61 and the input buffer 60.
55 is temporarily stored.

Next, the process advances to step B12. In this step B12, the TCN-code stored in the working RAM 55 is read out and given to the encoder 57. This encoder 57 is given predetermined key data from the data ROM 52, and in this state the TCN-code is decoded and [TCN
-] code.

The process then proceeds to step 813, where the TCN code stored in the working RAM 55 and the [TCN
'] code is given to the comparing section 65 and compared there. Then, the comparison result in this comparison section 65 is determined in step 81.
4, it is sent to the terminal side from the I10 terminal via the output buffer 62 and output controller 63.

In the terminal, the comparison result inputted to the I10 terminal in step A14 is received via the input controller 26 and input buffer 25, and is temporarily stored in the working RAM 13.

The contents of this working RAM 13 are then read out by the main controller 17, but here, T
If a result in which the CN code and [TCN-] code match is obtained, the terminal at this time is determined to be legitimate, and a message to that effect is displayed on the drive controller 1.
8 on the display unit 3, and the transition to the next process is permitted.

On the other hand, if a result is obtained in which the TON code and [TCN-] code do not match, the terminal is considered to be a counterfeit, and a message to that effect is displayed on the display unit 3 via the display drive controller 18. It starts to call for attention.

Next, the case of an actual transaction will be explained. First, data related to transactions is transferred to an IC.
The case of writing to a card will be explained according to the flowchart shown in FIG. First, in the terminal, step A2
1, data relating to the actual transaction, such as AMT (transaction amount) data, is input using the numerical keys of the keyboard 2.

Then, in step A22, the AMT data is sent to the security card from the I10 terminal via the output controller 23 and output buffer 24. In this case, the output buffer 24 is connected to the I10 terminal on the security card side by the transfer gate 41 according to a command from the main controller 17.

In the security card, in step C21, AMT
Receive data. In other words, the A input to the I10 terminal
The MT data is normalized by the input control circuit 72 and stored in the working RAM 74.

In this state, the process advances to step C22. This step C22
Then, the main controller 76 controls the working RAM 7.
The contents of 4 are analyzed and the arithmetic unit and key data to be used are determined. In this case, since it is a transaction, the arithmetic unit 78 is specified.

Then, in this state, predetermined key data for encryption is read from the data ROM 75 and provided to the arithmetic unit 78 via the distributor 80. At the same time, the AMT data stored in the working RAM 74 is read out and provided to the arithmetic unit 78 via the system bus 71. As a result, the arithmetic unit 78 performs an arithmetic operation using predetermined key data, and the AMT data is encrypted and converted to AMT'' data. This AMT' data is then written to the buffer area of the working RAM 74. be included.

In this state, the process proceeds to step C23, where the encrypted AMT
- The data is added with a cryptographic identification code to the output control circuit 7
3 is sent back to the terminal side via the I10 terminal.

On the terminal side, the AMT" data input to the I10 terminal in step A23 and the cryptographic identification code added to it are sent to the input controller 26 and the input buffer 2.
5 and is temporarily stored in the working RAM 13. Then, the process advances to step A24.

In this step A24, the AMT-data and code identification code stored in the working RAM 13 are retrieved according to a command from the main controller 17, and these are sent to the IC card side from the I10 terminal via the output controller 23 and output buffer 24. .

In the case of an IC card, AMT-data and 1 are sent in step B21.
Receive the No. 1 identification code. In other words, the A~IT-data and cryptographic identification code input to the I10 terminal are sent to the working RA via the input controller 61 and the input buffer 60.
Temporarily stored in M55.

Next, the process advances to step B22. In step B22, the working RA is
The AMT-data and cryptographic identification code stored in the M55 are read and written as transaction data to the transaction area of the data memory 64 via the read/write controller 58.

Next, the case where data related to a transaction is read from an IC card will be explained according to the flowchart shown in FIG. First, in step B31, the IC card performs read/write operations according to a command from the system controller 56.
Predetermined AMT" data is read out from the transaction area of the data memory 64 via the write controller 58 with the cryptographic identification code added. Then, these
M T =data and cryptographic identification code are temporarily stored in working RAM 55. In this state, step 8
Proceed to step 32.

In this step B32, the A, MT-data and cryptographic identification code stored in the working RAM 55 are taken out and sent to the terminal side from the I10 terminal via the output buffer 62 and output controller 63.

On the terminal side, the AMT' data and cryptographic identification code input to the I10 terminal in step A31 are received via the input controller 26 and input buffer 25, and are temporarily stored in the working RAM 13. and,
Proceed to step A32.

In this step A32, AMT stored in the working RAM 13 according to a command from the main controller 17
'The data and cryptographic identification code are extracted and sent to I1 via the output controller 23 and output buffer 24.
It is sent from the 0 terminal to the security card side. In this case, the output buffer 24 is connected to the I10 terminal on the security card side by the transfer gate 41 according to a command from the main controller 17.

In the security card, AMT in step C31
”Receive data and cryptographic identification code, i.e.
AMT" data and code identification code inputted to the terminal 10 are sent to the working RAM 74 via the input sub-circuit 72.
is memorized.

In this state, the process advances to step C32. This step C32
Then, the main controller 76 controls the working RAM.
, 74 is analyzed to determine which unit to use. In this case, since it is a transaction, the arithmetic unit 78
is specified. From this state, the code identification code is first read out from the working RAM 74 and given to the 11XILII 78 via the distributor 80. At the same time, the AMT' data stored in the working RAM 74 is read out and sent via the system path 71. and is applied to the arithmetic unit 78. As a result, the arithmetic unit 78 performs a calculation using the encrypted identification code, and the AMT' data is decoded.
[AMT'] data. And this [Al
vlTi data is written to the buffer area of working RAM 74.

In this state, the process advances to step C33, where the decrypted [AMT
”] The data is sent back to the terminal side from the I10 terminal via the output control circuit 73.

On the terminal side, the CAMTi data input to the I10 terminal in step A33 is input to the input controller 26,
received via the input buffer 25 and stored in the working RAM.
13 is temporarily stored.

Then, the process advances to step A34.

In step A34, the [AMT
” data is retrieved and used as transaction data during the transaction.

Next, the case of transmitting data online will be explained according to the flowchart of FIG. 9.

First, in the IC card, predetermined data is read from the data memory 64 via the read/write controller 58 in accordance with a command from the system controller 56 in step 841 . Then, this data is temporarily stored in working RAM.
55.

In this state, the process advances to step B42.

In this step B42, the data stored in the working RAM 55 is taken out and sent to the terminal side from the I10 terminal via the output buffer 762 and the output controller 63.

On the terminal side, data input to the I10 terminal in step A41 is received via the input controller 26 and input buffer 25, and is temporarily stored in the working RAM 13. Then, the process advances to step A42.

In step A42, the data stored in the working RAM 13 is retrieved according to a command from the main controller 17, and sent from the I/OOB child to the security card via the output controller 23 and output buffer 24. In this case, the output buffer 24 is connected to the I10 terminal on the security card side by the transfer gate 41 according to a command from the main controller 17.

The security card receives data from the terminal in step C41. That is, the data input to the I10 terminal is normalized by the input control circuit 72 and stored in the working RAM 74.

In this state, the process advances to step C42. This step C42
Then, the main controller 76 controls the working RAM 7.
The contents of 4 are analyzed and the arithmetic unit and key data to be used are determined. In this case, since it is online, the arithmetic unit 79 is designated. From this state, predetermined key data for encryption is read from the data ROM 75, and is given to the seven computing units via the distributor 8o. At the same time, the data stored in the working RAM 74 is read out and applied to seven computing units via the system path 71. As a result, the arithmetic unit 77 performs a calculation using predetermined key data, and the data is encrypted. This abbreviated data is then written to the buffer area of the working RAM 74.

In this state, the process proceeds to step C43, and the encrypted data is sent back to the terminal side from the I10 terminal via the output control circuit 73.

On the terminal side, the encrypted data input to the 110 terminal in step A43 is received via the input controller 26 and input buffer 25, and is stored in the working RAM 13.
is temporarily stored. Then, the process advances to step A44.

In step A44, the encrypted data stored in the working RAM 13 is read out according to a command from the main controller 17, and is sent online to the outside.

Therefore, by doing this, a security card is installed in the terminal, and any data given from the terminal is encrypted using this security card, and this encrypted data is given to the IC card side.
I read the Wi-Fi here and used the decryption results to perform a security check for terminal authentication, which reduces the burden of security processing on the terminal compared to conventional methods where the terminal was responsible for all security checks. can be reduced. This results in
Terminals and ICs used in combination with security processing that do not require sophisticated hardware and software to ensure security.
The card hardware can be simplified, reducing costs and processing time. Also, since the security card is replaceable, it can be used for security checks for IC card authentication. It is also possible to change the algorithm as appropriate, which can prevent unauthorized use such as by forging terminals and improve the security of the entire system.

It should be noted that the present invention is not limited only to the above embodiments, but can be implemented with appropriate modifications within the scope without changing the gist.

[Effects of the Invention] According to the present invention, the security check for terminal authentication is placed on the security card attached to the terminal, which reduces the burden of security processing on the terminal.

This simplifies the hardware of the terminal and the IC card associated with the terminal related to the security processing of terminal authentication, thereby reducing costs and processing time accordingly.

In addition, the algorithm for the security check of terminal authentication can be changed as appropriate by simply replacing the security card, so it is possible to prevent unauthorized use due to forgery of the terminal, etc., and improve the security of the entire system.

[Brief explanation of drawings]

FIG. 1 is an external view showing an embodiment of the present invention, FIG. 2 is a block diagram showing the circuit configuration of the terminal of the same embodiment, and FIG.
The figure is a block diagram showing the circuit configuration of the IC card of the same embodiment, FIG. 4 is a block diagram showing the circuit configuration of the security card of the same embodiment, and FIGS. 5 to 9 explain the operation of the same embodiment. This is a flowchart for 1... Terminal body, 2... Keyboard, 3...
・Display section, 5... IC card, 8... Security card, 13... Working RAM, 17... Main controller, 21... Comparator, 52... Data ROM, 55... Working RAM, 56... System controller, 57... Encryptor, 64... Data memory, 65... Comparison section, 74... Working R
AM, 75...Data ROM, 76...Main controller, 77-7...Arithmetic unit, 80...Distributor, 81...Selector.

Claims (1)

[Claims] In an IC card system having an IC card and a terminal to which the IC card is attached, a security card having a cryptographic operation means is attached to the terminal, arbitrary data is given from the terminal to the security card, and the data is converted into predetermined key data. This encrypted data is given to the above IC card and the I
A terminal authentication method characterized in that a C card is decrypted based on predetermined key data, and a security check for terminal authentication is performed using the decryption result.