WO2004084487A1 - Personal network identification method using a cd-card - Google Patents

Personal network identification method using a cd-card Download PDF

Info

Publication number
WO2004084487A1
WO2004084487A1 PCT/ES2004/000122 ES2004000122W WO2004084487A1 WO 2004084487 A1 WO2004084487 A1 WO 2004084487A1 ES 2004000122 W ES2004000122 W ES 2004000122W WO 2004084487 A1 WO2004084487 A1 WO 2004084487A1
Authority
WO
WIPO (PCT)
Prior art keywords
card
errors
procedure
server
identification method
Prior art date
Application number
PCT/ES2004/000122
Other languages
Spanish (es)
French (fr)
Inventor
Pedro Gallego Rubio
Original Assignee
Pedro Gallego Rubio
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Pedro Gallego Rubio filed Critical Pedro Gallego Rubio
Publication of WO2004084487A1 publication Critical patent/WO2004084487A1/en

Links

Classifications

    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/10Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
    • G07F7/1008Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/34User authentication involving the use of external additional devices, e.g. dongles or smart cards
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/341Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • G06Q20/4014Identity check for transactions
    • G06Q20/40145Biometric identity checks
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/086Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means by passive credit-cards adapted therefor, e.g. constructive particularities to avoid counterfeiting, e.g. by inclusion of a physical or chemical security-layer
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/12Card verification
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials

Definitions

  • the invention falls within the technical sector of the system or method for verifying the authenticity of a signature or particularity, using a digital support type CD-card, DVD-card, DVD or CD-Room through the network.
  • the present invention comprises a new form of authentication and network management verification.
  • the area to sign, grate, puncture, mark etc. can be any printed area of the card, (outer area) we will describe an example:

Abstract

The invention relates to a personal network identification method using a CD-card. The inventive method consists in using a CD- or DVD-type digital medium or card comprising a zone in which a series of grooves, writing entries or marks have been made, which the reader interprets as errors and which are recorded in the database of the server. In this way, when a verification operation (payment, etc.) is to be performed using the Internet (network), the card is inserted into the CD reader and information is exchanged between the CD and the server in order to verify that the determined number of errors correspond with those in the database, thereby authenticating that the person performing the operation is the card owner.

Description

PROCEDIMIENTO DE IDENTIFICACIÓN PERSONAL A TRAVÉS DE RED MEDIANTE UNA TARJETA-CD.PROCEDURE OF PERSONAL IDENTIFICATION THROUGH NETWORK THROUGH A CARD-CD.
Sector de la técnica.Sector of the technique.
La invención se encuadra en el sector técnico de sistema o 5 procedimiento de verificación de autenticidad de una firma o particularidad, utilizando un soporte digital tipo cd-card, dvd-card, DVD o CD-Room a través de red.The invention falls within the technical sector of the system or method for verifying the authenticity of a signature or particularity, using a digital support type CD-card, DVD-card, DVD or CD-Room through the network.
Estado de la técnica.State of the art
No conozco ningún sistema como el que aquí se describe o similar. 10 Actualmente el sistema de pago por red (internet) está basado en unas claves que se aportan en un formulario (nombre, usuario, número de tarjeta, fecha de caducidad, etc., en todos los casos la información viaja por la red, casi siempre encriptada y el protocolo de seguridad la valida. 15 Es por esto que la presente invención viene a añadir a todo el procedimiento de nombre, contraseña, etc., una nueva forma de verificar la autentificación de quién realiza la gestión.I do not know any system like the one described here or similar. 10 Currently, the system of payment by network (internet) is based on some keys that are provided in a form (name, user, card number, expiration date, etc., in all cases the information travels through the network, almost always encrypted and the security protocol validates it.This is why the present invention adds to the whole procedure of name, password, etc., a new way of verifying the authentication of who performs the management.
Descripción detallada de la invención.Detailed description of the invention.
La presente invención comprende una nueva forma de autentificación 20 y verificación de gestión por red.The present invention comprises a new form of authentication and network management verification.
Aunque el procedimiento es posible hacerlo con fistintos soportes digitales tipo CD o DVD, haremos mención desde ahora a una tarjeta cd-card. El procedimiento sería el siguiente: utilizando la tarjeta cd-card, encontraremos una zona en dicha tarjeta, donde haremos una serie de ralladuras, escrituras o marcas, que el lector interpretaría como errores, estos errores, los grabará en su base de datos el servidor, así, cuando se quiera hacer una verificación (pago, etc.,) por internet (Red), procederemos a introducir nuestra tarjeta en el lector de CD, intercambiándose información nuestro CD con el servidor y verificando que un número determinado de errores coinciden con los de la base de datos y autentificando que la persona que hace la gestión es quién posee la tarjeta; evitando así la posible ingerencia de personas que quieran apropiarse de las claves y/o contraseñas para usarlas posteriormente con fines ilícitos. Modo de la realización de la invención. La presente invención se ilustra adicionalmente mediante los siguiente ejemplos, los cuales no pretenden ser limitativos de su alcance. Ejemplo 1Although the procedure is possible to do with different CD or DVD digital media, we will mention now a CD-card. The procedure would be the following: using the cd-card, we will find an area on said card, where we will make a series of scratches, scripts or marks, which the reader would interpret as errors, these errors will be recorded in the server's database , so, when you want to do a verification (payment, etc.,) online (Network), we will introduce our card in the CD reader, exchanging information with the server CD and verifying that a certain number of errors coincide with those of the database and authenticating that the person doing the management is who owns the card; thus avoiding the possible interference of people who want to appropriate the passwords and / or passwords to later use them for illicit purposes. Mode of the embodiment of the invention. The present invention is further illustrated by the following examples, which are not intended to be limiting in scope. Example 1
Cuando recogemos la tarjeta en nuestro banco nos indican la zona donde debemos hacer la firma, a continuación el banco grabará en su base de datos todos los errores que se han cometido al rayar la superficie de la cd-card. Se verificará para protegerla, y el cliente ya podrá hacer uso de ella.When we collect the card in our bank they indicate the area where we must make the signature, then the bank will record in its database all the errors that have been committed when scratching the surface of the CD-card. It will be verified to protect it, and the client can already use it.
En su ordenador, al hacer un pago por internet, habrá seguido el proceso habitual de rellenar un formulario y poner número de tarjeta, etc.,. También deberá autorizar el intercambio de información y/o comprobación de firma electrónica de su tarjeta o bien el servidor pedirá verificación de sectores deteriorados por la firma o bien será la tarjeta quien envíe información de errores, estos deberán coincidir y así autentificar la transacción. Descripción de las figuras.On your computer, when making an online payment, you will have followed the usual process of filling out a form and putting a card number, etc.,. You must also authorize the exchange of information and / or verification of the electronic signature of your card or the server will ask for verification of sectors damaged by the signature or else the card will send error information, these must coincide and thus authenticate the transaction. Description of the figures.
Aunque la zona a firmar, rallar, punzar, marcar etc. puede ser cualquier zona impresa de la tarjeta, (zona exterior) describiremos un ejemplo:Although the area to sign, grate, puncture, mark etc. can be any printed area of the card, (outer area) we will describe an example:
Sobre la zona exterior de una cd-card (zona donde llevaría impreso, texto, logotipo, etc.) escribiremos, rallaremos, punzaremos, etc, su estructura para generar errores. On the outer area of a CD-card (area where it would be printed, text, logo, etc.) we will write, shred, puncture, etc., its structure to generate errors.

Claims

REIVINDICACIONES
1.- Procedimiento para personalizar una tarjeta cd-card u otros soportes digitales creando errores en la zona de lectura y poder realizar la autentiflcación segura por red. 1.- Procedure to personalize a cd-card or other digital media creating errors in the reading area and to be able to perform secure authentication over the network.
2 - Procedimiento para diferenciar los soportes anteriormente descritos y sus contenidos.2 - Procedure to differentiate the previously described supports and their contents.
3.- Procedimiento que está caracterizado por la detección de un número de errores en distintos sectores del soporte que la hacen diferente. 3.- Procedure that is characterized by the detection of a number of errors in different sectors of the support that make it different.
4.- Procedimiento por el cual se identifica una información contenida en nuestra tarjeta, por un servidor. 4.- Procedure by which information contained in our card is identified, by a server.
PCT/ES2004/000122 2003-03-17 2004-03-16 Personal network identification method using a cd-card WO2004084487A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
ES200300689A ES2224841B1 (en) 2003-03-17 2003-03-17 NETWORK USER IDENTIFICATION SYSTEM.
ESP200300689 2003-03-17

Publications (1)

Publication Number Publication Date
WO2004084487A1 true WO2004084487A1 (en) 2004-09-30

Family

ID=33017090

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/ES2004/000122 WO2004084487A1 (en) 2003-03-17 2004-03-16 Personal network identification method using a cd-card

Country Status (2)

Country Link
ES (1) ES2224841B1 (en)
WO (1) WO2004084487A1 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
FR2890509A1 (en) * 2005-09-07 2007-03-09 Mediscs Sarl METHOD FOR AUTHENTICATING A USER AND DEVICE FOR IMPLEMENTING THE SAME

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2001059547A2 (en) * 2000-02-14 2001-08-16 Pnc Global Inc. System and method for providing services to a remote user through a network
GB2373091A (en) * 2002-05-29 2002-09-11 Donald Eric Butterfield Copy protection

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2001059547A2 (en) * 2000-02-14 2001-08-16 Pnc Global Inc. System and method for providing services to a remote user through a network
GB2373091A (en) * 2002-05-29 2002-09-11 Donald Eric Butterfield Copy protection

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
FR2890509A1 (en) * 2005-09-07 2007-03-09 Mediscs Sarl METHOD FOR AUTHENTICATING A USER AND DEVICE FOR IMPLEMENTING THE SAME
WO2007028925A2 (en) * 2005-09-07 2007-03-15 Mediscs Sarl Method for authenticating a user and device therefor
WO2007028925A3 (en) * 2005-09-07 2007-05-24 Mediscs Sarl Method for authenticating a user and device therefor

Also Published As

Publication number Publication date
ES2224841A1 (en) 2005-03-01
ES2224841B1 (en) 2006-06-16

Similar Documents

Publication Publication Date Title
US20020138765A1 (en) System, process and article for conducting authenticated transactions
US6363483B1 (en) Methods and systems for performing article authentication
TW487859B (en) Writeable medium access control using a medium writeable area
TW476038B (en) Electronic data management system
TW201544984A (en) Self-authenticating chips
WO2006010019A3 (en) Systems and methods for document verification
WO2005045550A3 (en) Password recovery system and method
CN103310254B (en) A kind of safety anti-fake voucher and preparation method thereof
CN101596820B (en) Method for making fingerprint encryption certificates and cards
CN103310141A (en) Method and system for monitoring of certificate information security
CN101017563A (en) Method for fixing and saving evidence of computer crime and device therefor
US20050005137A1 (en) System and method for individualizing installation media
WO2020142635A1 (en) Embedded variable curved spiral patterns
KR970705106A (en) Authentication Technique
WO2004084487A1 (en) Personal network identification method using a cd-card
CN1321507C (en) Soft certification anti-false method based on graphic code primary and secondary signet series information association mechanism
JP4104801B2 (en) IC card reader and IC card system
US20100019031A1 (en) Forged Card Discrimination System
TWI352290B (en) The optical storage media and the corresponding cr
Liersch Electronic passports–from secure specifications to secure implementations
WO1998039745A3 (en) Portable data carrier and method for cryptographically secure use thereof with interchangeable keys
JP4747250B2 (en) Agent terminal device and control program for agent terminal device
CN103905199B (en) Digital certificate storage method applied to RFID card
US20070107045A1 (en) Security system for transactions
CN103273760B (en) Safety and anti-fake property ownership certificate and manufacturing method thereof

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A1

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BW BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE EG ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NA NI NO NZ OM PG PH PL PT RO RU SC SD SE SG SK SL SY TJ TM TN TR TT TZ UA UG US UZ VC VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A1

Designated state(s): BW GH GM KE LS MW MZ SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IT LU MC NL PL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
122 Ep: pct application non-entry in european phase