WO2006015573A1 - Support de données pour la transmission sans contact de signaux de données cryptés - Google Patents

Support de données pour la transmission sans contact de signaux de données cryptés Download PDF

Info

Publication number
WO2006015573A1
WO2006015573A1 PCT/DE2005/001293 DE2005001293W WO2006015573A1 WO 2006015573 A1 WO2006015573 A1 WO 2006015573A1 DE 2005001293 W DE2005001293 W DE 2005001293W WO 2006015573 A1 WO2006015573 A1 WO 2006015573A1
Authority
WO
WIPO (PCT)
Prior art keywords
data
data carrier
input
reading
encrypted
Prior art date
Application number
PCT/DE2005/001293
Other languages
German (de)
English (en)
Inventor
Anneliese Hassenbuerger
Bernd Reimer
Original Assignee
Wincor Nixdorf International Gmbh
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Wincor Nixdorf International Gmbh filed Critical Wincor Nixdorf International Gmbh
Publication of WO2006015573A1 publication Critical patent/WO2006015573A1/fr

Links

Classifications

    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/10Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
    • G07F7/1008Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06KGRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
    • G06K19/00Record carriers for use with machines and with at least a part designed to carry digital markings
    • G06K19/06Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code
    • G06K19/067Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components
    • G06K19/07Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components with integrated circuit chips
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/341Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • G06Q20/4014Identity check for transactions
    • G06Q20/40145Biometric identity checks
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07CTIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
    • G07C9/00Individual registration on entry or exit
    • G07C9/20Individual registration on entry or exit involving the use of a pass
    • G07C9/28Individual registration on entry or exit involving the use of a pass the pass enabling tracking or indicating presence
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F19/00Complete banking systems; Coded card-freed arrangements adapted for dispensing or receiving monies or the like and posting such transactions to existing accounts, e.g. automatic teller machines
    • G07F19/20Automatic teller machines [ATMs]
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F19/00Complete banking systems; Coded card-freed arrangements adapted for dispensing or receiving monies or the like and posting such transactions to existing accounts, e.g. automatic teller machines
    • G07F19/20Automatic teller machines [ATMs]
    • G07F19/201Accessories of ATMs
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07CTIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
    • G07C9/00Individual registration on entry or exit
    • G07C9/20Individual registration on entry or exit involving the use of a pass
    • G07C9/22Individual registration on entry or exit involving the use of a pass in combination with an identity check of the pass holder
    • G07C9/25Individual registration on entry or exit involving the use of a pass in combination with an identity check of the pass holder using biometric data, e.g. fingerprints, iris scans or voice recognition
    • G07C9/257Individual registration on entry or exit involving the use of a pass in combination with an identity check of the pass holder using biometric data, e.g. fingerprints, iris scans or voice recognition electronically

Definitions

  • the invention relates to a data carrier for contactless transmission of encrypted data signals to a reading device, a method for operating the data carrier and a self-service device with a reading device for the data carrier.
  • Attempts to tamper with will attempt to copy the data carrier inserted by the user on the self-service device and spy on the corresponding PIN number.
  • the copying of the magnetic or chip card is preferably carried out by stems on the card reader.
  • the spying of the PIN number as it is entered, for example, by using a miniature camera installed on the keyboard of the terminal with transmission device.
  • the invention therefore has the task of creating a self-service device that offers increased security against manipulation.
  • the object is achieved by the subject matter of claim 1 and by the method according to claim 9.
  • the invention provides a data carrier for inputting and transmitting encrypted data signals to a reading device with an RFID tag.
  • Transponder for storing and transmitting data signals
  • Input device for inputting data, one
  • Encryption device for encrypting data
  • Control device for processing data, as well as with at least one switching device for influencing the RFID
  • a data carrier with an RFID transponder is a contactless transmission of data signals between the disk and the reader, which is preferably installed in a self-service device, possible.
  • the data signals between the data carrier and the reading device are transmitted encrypted by means of secret cryptographic keys. Manipulation attempts as on conventional card readers can thus no longer occur.
  • the data carrier contains an input device for inputting alphanumeric characters, such as a PIN, to ensure authorized use of the data carrier only by the authorized person.
  • the data carrier has an encryption device in order to encrypt the entered secret number.
  • an activation of the RFID transponder and thus the transmission of the stored data can be effected.
  • the user can thus activate the data carrier in front of a self-service device. It can be provided that the input of the PIN is already sufficient for an authorization of the desired transaction, since in the data carrier, the entered PIN or the entered code is compared with a previously stored code and only when a match of the RFID transponder is activated.
  • the PIN be sent encrypted separately from the data of the RFID transponder to the reader of Disbedienungs ⁇ device and the self-service device, the authorization of the disk is made. If a valid authorization can not be determined, the communication between the data medium and the reader is aborted.
  • control device has at least one processor, a memory and an encryption device, so that processing and processing of the entered data can take place as on a self-service device.
  • the data carrier according to the invention has a sensor system for sampling biometric data.
  • the RFID transponder is designed for reading in and out and thus for a two-sided data exchange with the reading device.
  • the data carrier according to the invention is designed as a chip card with the features of at least claim 1.
  • the device is finally provided with a display device for displaying data and / or an energy store for self-sufficient operation.
  • the invention also provides a method for transmitting encrypted data signals with the data carrier according to the invention to a reading device with the following method steps:
  • Encryption means and storing the encrypted data
  • This method can advantageously be carried out in the control device of the device according to the invention by a suitable software program by the processor. It is also of great advantage, if in a preferred embodiment in method step (a) a predetermined password or a secret number is entered and / or biometric data of the user are read by means of a sensor, and that at false input values after a predetermined number of repetitions the device is deactivated.
  • the input of data for a complete operation process for a self-service device can be carried out in method step (a), in particular also the input of the amount of money to be withdrawn.
  • the security of the method is given overall by cryptographic keys and cryptographic methods and the use of RFID transponders.
  • Figure 1 is a perspective view of a
  • Figure 2 is an exemplary block diagram of a data carrier according to the invention in the form of a chip card.
  • An ATM 1 is shown in Figure 1 as an example of a self-service device.
  • a smart card 2 data carrier during a data transfer to the ATM 1 is shown.
  • an ATM with a desired transaction initially has a contact-type chip card with a chip and / or a magnetic strip inserted into a card reader of the device.
  • On the chip and / or the magnetic strip are data of the user as his name and his account number.
  • the connection to a host is recorded, which compares the read data with stored data and allows authorization of the desired transaction.
  • a password or a secret number a so-called PIN code is entered via a keyboard 3, so that a specific process, such as a payment, can be made.
  • This additional PIN serves as security, so that third parties can not carry out transactions at the ATM without knowing the PIN.
  • the prompts and responses of the self-service device are displayed on an operator prompt screen 4. In the payout process, the corresponding money is output via an input / output device 5 in a known manner.
  • a data carrier is provided, which is advantageously designed as a chip card 2.
  • the chip card 2 is provided with an RFID transponder 7 consisting of a coil and an integrated microchip as a data memory, wherein the transponder 7 is readable and writable.
  • the data of the RFID transponder 7 can be read out by an RFID reader 8 of the ATM 1.
  • the RFI D reader 8 can send new data to the transponder 7.
  • the reader 8 transmits data in addition to energy through inductive coupling to the chip card 2.
  • the data stored in the RFID transponder 7 data via a transmission path to the RFID
  • the ATM 1 is advantageously provided with a tray or other storage facilities, so that the customer can take them out of hand and store them during the transaction.
  • RFID transponders 7 are used, which have a range of 10 - 20 cm, so that a readout of the RFID transponder 7 can only take place in the immediate vicinity of the reading device 8.
  • the data carrier 2 contains an input device 9 for inputting alphanumeric characters such as a PIN in order to ensure authorized use of the data carrier only by the authorized person.
  • cryptographic keys between the smart card 2 and the reader 8 are exchanged or checked whether cryptographic keys are stored in the smart card 2 and the reader 8.
  • the following after authorization data exchange between the smart card 2 and the reader 8 is also encrypted to prevent spying the transmitted data by listening to the radio connection between the smart card 2 and the reader 8.
  • the reader 8 is provided with anti-collision software to ensure targeted communication with a smart card 2.
  • the structure of the chip card 2 will be described in more detail with reference to FIG. Since conventional RFID transponders are formed passively and are read as soon as they come within the range of an RFI D reader, the chip card 2 is provided with an input device 9 for inputting an activation signal to the transmission of the data from the RFID transponder 7 enable the reader 8 and thus prevent accidental transmission of data to the RFID reader 8.
  • the input device 9 is preferably designed as an input keyboard for entering a secret number such as, in particular, a PIN or a code.
  • the input keyboard is provided with key elements 10 for the input of alphanumeric characters as well as other control characters. It is connected to a control device 11.
  • the operator guidance of the user for the correct input into the input keyboard 9 can take place via a display device 12.
  • the display device 12 is connected in this embodiment to the control device 11. However, it can also have its own processor or its own control device.
  • a switching device 13 activates the RFID transponder 7 for transmitting the stored data to the ATM 1.
  • the control device 11 is an encryption device 14, a processor 15 and a memory, not shown.
  • the encryption device 14 and the memory may also be arranged outside the control device 11.
  • the chip card 2 has a sensor system 16 with a contact field 17, which is provided for the scanning of biometric data, such as, for example, a fingerprint sensor.
  • This sensor 16 can be used in addition to or instead of a PIN input for the authorization of the user.
  • the chip card is provided with an energy store 18 which provides the necessary electrical energy for operating the chip card. It is preferably a rechargeable battery. The recharging can be done by induction wireless or wired via contact fields in a corresponding, not shown device. Since the operation of the chip card 2 takes place only for a short time, the energy requirement is extremely low.
  • the chip card 2 is turned on via the input device 9.
  • the control device 11 predefines the input procedure via the display device 12 to the user.
  • the user is prompted to enter his PIN number and / or password, which is compared to a stored reference value.
  • This stored reference value can be stored by the bank issuing the smart card 2. It can be provided that the input of the PIN is already sufficient for an authorization of the desired transaction, since in the data carrier 2, the entered PIN or the entered code is compared with a previously stored code and only when a match of the RFID transponder 7 is activated ,
  • the PIN is sent encrypted separately from the data of the RFID transponder 7 to the reader 8 of the self-service device and the self-service device, the authorization of the data carrier 2 is made. If no valid authorization can be determined, the communication between the data carrier 2 and the reader 8 is aborted.
  • a further transmission device which is designed for example as a local radio link such as Bluetooth.
  • the data value thus checked or entered is stored by means of the control device 11 and encrypted with the encryption device 14 and stored. The first saving can also be omitted.
  • the chip card 2 is unlocked by means of the switching device 13 and the data can be read out from the RFID transponder 7. This transfer process takes place automatically after entering the PIN or by the user activating the chip card 2 at the location of the self-service device 1 by a key combination on the input device 9.
  • the user first activates the smart card 2 and first data is transmitted and the user is then requested by the self-service device 1 to enter his PIN number. The user then enters a corresponding key combination on the chip card 2 and then brings the chip card 2 into the reception area of the reading device 8 of the self-service device 1.
  • control device 11 of the chip card 2 can have such software, with which the entire user guidance process of the self-service device 1 can be carried out beforehand in a location that is safe for the user. This means that the user at the location of the self-service device 1 only has to activate this, transmits the encrypted data with his smart card 2 and so the entire process, such as the data input for cash dispensing, is taken over by the data transfer of the smart card 2.

Abstract

La présente invention concerne un support de données pour la transmission sure de signaux de données. Ledit support comporte un transpondeur RFID (7) pour la mise en mémoire et la transmission de données à un appareil de lecture, un dispositif d'entrée (9) pour l'entrée de données, au moins un dispositif de cryptage (14) pour le cryptage de données, un dispositif de commande (11) pour le traitement de données et au moins un dispositif de commutation (13) destiné à influencer le transpondeur RFID (7) et / ou des données entrées et mises en mémoire de manière cryptée.
PCT/DE2005/001293 2004-08-12 2005-07-22 Support de données pour la transmission sans contact de signaux de données cryptés WO2006015573A1 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
DE102004039365.6 2004-08-12
DE102004039365A DE102004039365A1 (de) 2004-08-12 2004-08-12 Datenträger zur kontaktlosen Übertragung von verschlüsselten Datensignalen

Publications (1)

Publication Number Publication Date
WO2006015573A1 true WO2006015573A1 (fr) 2006-02-16

Family

ID=34979302

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/DE2005/001293 WO2006015573A1 (fr) 2004-08-12 2005-07-22 Support de données pour la transmission sans contact de signaux de données cryptés

Country Status (2)

Country Link
DE (1) DE102004039365A1 (fr)
WO (1) WO2006015573A1 (fr)

Families Citing this family (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8094021B2 (en) 2008-06-16 2012-01-10 Bank Of America Corporation Monetary package security during transport through cash supply chain
US7982604B2 (en) 2008-06-16 2011-07-19 Bank Of America Tamper-indicating monetary package
US9024722B2 (en) * 2008-06-16 2015-05-05 Bank Of America Corporation Remote identification equipped self-service monetary item handling device
US8210429B1 (en) 2008-10-31 2012-07-03 Bank Of America Corporation On demand transportation for cash handling device
EP2782073B1 (fr) * 2013-03-19 2019-11-20 Nxp B.V. Carte à puce comprenant une interface utilisateur à détection tactile
EP2782074B1 (fr) * 2013-03-19 2019-06-26 Nxp B.V. Système de commande ayant un jeton de sécurité et procédé de commande
US10217084B2 (en) 2017-05-18 2019-02-26 Bank Of America Corporation System for processing resource deposits
US10515518B2 (en) 2017-05-18 2019-12-24 Bank Of America Corporation System for providing on-demand resource delivery to resource dispensers
US10275972B2 (en) 2017-05-18 2019-04-30 Bank Of America Corporation System for generating and providing sealed containers of traceable resources

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5748737A (en) * 1994-11-14 1998-05-05 Daggar; Robert N. Multimedia electronic wallet with generic card
US6257486B1 (en) * 1998-11-23 2001-07-10 Cardis Research & Development Ltd. Smart card pin system, card, and reader
US20030167207A1 (en) * 2001-07-10 2003-09-04 Berardi Michael J. System and method for incenting payment using radio frequency identification in contact and contactless transactions

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5748737A (en) * 1994-11-14 1998-05-05 Daggar; Robert N. Multimedia electronic wallet with generic card
US6257486B1 (en) * 1998-11-23 2001-07-10 Cardis Research & Development Ltd. Smart card pin system, card, and reader
US20030167207A1 (en) * 2001-07-10 2003-09-04 Berardi Michael J. System and method for incenting payment using radio frequency identification in contact and contactless transactions

Also Published As

Publication number Publication date
DE102004039365A1 (de) 2006-02-23

Similar Documents

Publication Publication Date Title
WO2006015573A1 (fr) Support de données pour la transmission sans contact de signaux de données cryptés
DE3809170C2 (fr)
DE2760486C2 (fr)
DE602004003478T2 (de) Virtuelle tastatur
DE19860177C2 (de) Verfahren und Vorrichtung zur benutzerkontrollierten Freischaltung von Chipkartenfunktionen
DE2738113A1 (de) Vorrichtung zur durchfuehrung von bearbeitungsvorgaengen mit einem in eine aufnahmeeinrichtung der vorrichtung eingebbaren identifikanden
DE102005005378A1 (de) Vorrichtung zur Eingabe und Übertragung von verschlüsselten Signalen
WO2013056783A1 (fr) Terminal mobile, terminal de transactions et procédé de réalisation d'une transaction à partir d'un terminal de transactions en utilisant un terminal mobile
AT401205B (de) System zur identifizierung eines kartenbenutzers
DE19718547C2 (de) System zum gesicherten Lesen und Ändern von Daten auf intelligenten Datenträgern
EP1185960A2 (fr) Procede et dispositif servant a sauvegarder et a retrouver des codes pin
DE2245027A1 (de) Geldausgabe-vorrichtung
WO2013120473A1 (fr) Carte universelle destinée à simplifier l'utilisation d'une pluralité de cartes
DE4441413C2 (de) Datenaustauschsystem
EP1635302A1 (fr) Carte à mémoire et procédé d'interrogation des informations d'une carte à mémoire
DE19856362C2 (de) Datenaustauschsystem
WO2007062888A1 (fr) Dispositif à carte à puce mobile et procédé d’authentification au moyen d’une carte à puce par rapport à au moins un dispositif
DE19723862C2 (de) Mobiler Datenträger für Sicherheitsmodule
DE102004026933B4 (de) System und Verfahren zur Authentifizierung eines Benutzers
DE19545020A1 (de) Verfahren zum Freigeben von Identifikationsgegenständen
EP0971324A1 (fr) Méthode pour la protection de données sur un support de données et carte à puce, lecteur et ensemble de puces configurés selon cette méthode
EP1152377B1 (fr) Procédé et terminal pour mettre en oeuvre des transactions en utilisant un support de données portatif
DE102016205553A1 (de) Spiel- und/oder Unterhaltungsautomat sowie Verfahren zum Betreiben zumindest eines solchen Spiel- und/oder Unterhaltungsautomaten
DE102012025418A1 (de) Verfahren, portabler Datenträger und Terminaleinrichtung zum Durchführen einer kontaktlosen Transaktion
EP2707839B1 (fr) Procédé d'activation et de désactivation de la piste magnétique d'une carte a puce

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A1

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BW BY BZ CA CH CN CO CR CU CZ DK DM DZ EC EE EG ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KM KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NA NG NI NO NZ OM PG PH PL PT RO RU SC SD SE SG SK SL SM SY TJ TM TN TR TT TZ UA UG US UZ VC VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A1

Designated state(s): BW GH GM KE LS MW MZ NA SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IS IT LT LU LV MC NL PL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
122 Ep: pct application non-entry in european phase