WO2009027209A1 - Procédé et dispositif comportemental, destines a prévenir l'utilisation d'un objet portable sans contact a l'insu de son porteur - Google Patents
Procédé et dispositif comportemental, destines a prévenir l'utilisation d'un objet portable sans contact a l'insu de son porteur Download PDFInfo
- Publication number
- WO2009027209A1 WO2009027209A1 PCT/EP2008/060489 EP2008060489W WO2009027209A1 WO 2009027209 A1 WO2009027209 A1 WO 2009027209A1 EP 2008060489 W EP2008060489 W EP 2008060489W WO 2009027209 A1 WO2009027209 A1 WO 2009027209A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- portable object
- behavior
- sensor
- contact
- card
- Prior art date
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06K—GRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
- G06K19/00—Record carriers for use with machines and with at least a part designed to carry digital markings
- G06K19/06—Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code
- G06K19/067—Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components
- G06K19/07—Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components with integrated circuit chips
- G06K19/073—Special arrangements for circuits, e.g. for protecting identification code in memory
- G06K19/07309—Means for preventing undesired reading or writing from or onto record carriers
- G06K19/07345—Means for preventing undesired reading or writing from or onto record carriers by activating or deactivating at least a part of the circuit on the record carrier, e.g. ON/OFF switches
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06K—GRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
- G06K19/00—Record carriers for use with machines and with at least a part designed to carry digital markings
- G06K19/06—Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code
- G06K19/067—Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components
- G06K19/07—Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components with integrated circuit chips
- G06K19/0716—Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components with integrated circuit chips at least one of the integrated circuit chips comprising a sensor or an interface to a sensor
Definitions
- the invention relates to a method and a behavioral device for preventing the use of a portable object without contact without the knowledge of its wearer.
- the invention relates to a method and a device for preventing the establishment of communication (radiofrequency) between a first contactless portable object and a second contactless object, without the knowledge of the carrier of this portable object.
- Some non-contact portable objects such as smart cards, operate by remote power. These media draw the energy necessary for their operation from an electromagnetic field produced and sent by the card reader with which they must interact. Moreover, this electromagnetic field conveys the data exchanged between the card and the reader during a so-called radiofrequency communication.
- This electromagnetic field is therefore necessary and sufficient for both the power supply of the smart card and for the establishment of a communication between the reader and the card.
- the contactless portable objects function without any link or physical contact with the non-contact object that acts as a reader. These two objects may not be in direct view of each other.
- This problem exposes non-contact portable objects to two major attacks: - invasion of privacy - fraud.
- Fraud involves making a transaction to the electronic portable object without the knowledge of its owner. For example an electronic signature or an authentication, or even a payment.
- non-contact portable object for example a card
- a non-contact portable object for example a card
- relays forming a communication bridge between the card and the card. the reader.
- a person is in possession of a contactless payment card
- the attacker will take advantage of the proximity of a subway station, to try to make him pay a transaction without his knowledge. For this, he can approach the card an object that will act as a player from the point of view of the card (eg a personal electronic diary (PDA) modified). From a distance, another attacker will approach the official player
- PDA personal electronic diary
- PDA personal electronic diary
- PDA via Bluetooth, WIFI or Internet for example, it is possible to transmit to the reader the real communications from the card, and the card the true communications from the reader.
- the transaction must be completed in less than 250 milliseconds.
- the transaction must be in contactless mode so that the user can use his card through a card holder, a bag or a pocket, but especially that the user does not have to insert his card in a reader.
- the present invention provides an alternative solution, solving the disadvantages mentioned above and having advantages of its own.
- the invention relates to a method and a device for preventing the establishment of a radio frequency communication between a non-contact portable object and another non-contact object if the user of the first contactless portable object does not vary the the state of at least one onboard sensor on the non-contact portable object in an agreed manner and in agreed proportions.
- state to designate one or more physical values measurable by one or more sensors present on or in the card body.
- state of an object can designate its position in space, and consequently its displacement, its temperature, its physical structure
- the claimed invention proposes a method for preventing the establishment of the radio-frequency communication of a first portable object without contact with a second object without contact, without the knowledge of the carrier of the first portable object, this method comprising the steps of: - capture, which consists in capturing a variation of the state of the portable object, called behavior,
- verification which consists in verifying the capture at the sight of a reference value of the behavior, stored in a memory of the portable object, and the production of a similarity index
- the invention makes it possible to verify that, when establishing a radio-frequency communication involving a portable object, the bearer of this object is consenting. For that, it is necessary to define a behavior that will have to reproduce the carrier to prove his assent.
- the portable object may contain a simple position sensor falling if the object is in a vertical or horizontal position.
- the expected behavior can be for example a "passage in vertical position". So any variation of the sensor stabilizing in the vertical position will be a behavior considered as expected.
- Measuring a state variation and not just a state avoids the case where the object is in a correct state by accident. Indeed, if one was content to look at the position of the object in space, if the object is horizontal (because placed on a table for example), it would accept all communications without the approval of its owner. Instead of searching for the position of the object in space, an embodiment consists of an analysis of the sudden movements of the object. In this case, it is necessary that the object is equipped with suitable sensors, and that the object makes a determined movement to allow the establishment of the communication. In this case, it will be better to choose a relatively complex movement to prevent it from being done by accident. In the same way, it is possible to measure the temperature of the object.
- the portable object is a smart card, holding it naturally involves thumb pressure on its surface.
- the temperature will vary to approach the body temperature of the finger.
- the object has a well calibrated temperature sensor, a change in the temperature of the surface of the object (tending for example towards a stabilization around 35 degrees Celsius) can be a good indication of certainty that the wearer holds the card in hand is that he is willing to make a transaction with his card.
- the body of the object may comprise a plurality of temperature sensors, and thus the expected behavior may be a variation tending towards a stabilization around 35 degrees Celsius, but only of a precise zone of the surface.
- Another embodiment can be based on a twist of all or part of the body of the portable object.
- the body, or at least one determined area comprises one or more sensors capable of detecting a twist.
- the expected behavior could for example be a twist of a given angle, in a given direction.
- this reference behavior can be recorded in advance, and stored. However, it is conceivable, in another implementation of the invention that this reference behavior is not recorded, but calculated.
- a screen will describe a behavior to adopt, and check its validity. It is conceivable, for example, if the portable object is an electronic organizer, when requesting it for a radio frequency communication, the screen describes a series of movements to reproduce. In the presence of a touch screen, it can be envisaged that the screen displays a path to follow to authorize the transaction.
- the comparison methods depend on the values that make up the behaviors. For example, concerning movements, it is possible to measure the positions of the object, its speed, range of motion, etc.
- the object will produce a similarity index, representing the "quality" of the candidate behavior vis-à-vis the reference behavior. If this index reaches a threshold then the communication will be allowed.
- the acceptance threshold may not be predefined but calculated.
- the card when trying to connect the reader, the card will apply a calculation function.
- This function may for example take into account information from the connection attempt.
- the function may take into account the intensity of the signal, its amplitude, information possibly sent in the connection attempt.
- the threshold may be very high, while when trying to connect with a strong signal, stable, the acceptance threshold may be lower.
- An additional advantage of the invention is that the behavior expected by the card can be secret.
- the invention provides a higher level of security. Indeed, depending on the complexity of the behavior, the invention allows to recreate, in contact, a system close to that of the identification code (called PIN code) commonly used in contact mode.
- PIN code the identification code
- Another advantage of the invention is the possibility of combining the behaviors, and thus to further increase the level of security.
- Another advantage of the invention is to be able to adapt the behavior to the user. Indeed, according to the users, it will be possible to adapt the reference behavior so that it is the least annoying possible.
- a natural movement in a person of fifteen is very different from a natural movement in a person aged eighty-five.
- FIG. 1 represents a system in which a portable object without contact is able to perceive a variation of its state
- FIG. 2 represents a flowchart of the implementation of the method according to the invention
- FIG. 1 shows a non-contact portable object 11 comprising a sensor 14, a memory 15 and a processor 16. This figure also shows a contactless object 12 which will be more precisely described later.
- the sensor 14 of the non-contact object 11 is capable of measuring a variation of the state of the object 11. This variation is called in the present description behavior.
- the contactless object 11 will agree to establish a connection 13 only if the processor 16 considers that the value read by the sensor, and the stored reference value in the memory 15 are sufficiently similar.
- the contactless portable object is an electronic identity card, and this card is in the pocket of a jacket, in a purse, or in a wallet.
- the card has several accelerometers / inclinometers, forming the sensor 14.
- the reference behavior stored in the memory 15 is a horizontal displacement of the card from left to right, immediately followed by a horizontal movement of the right card to left.
- the acceptance threshold is calibrated to an S value.
- the behavior comparison function takes into account the angles recorded by the sensors, the amplitude of the movements, the average speed and the instantaneous speeds at specific moments.
- the processor will compare the readings of the sensors with the reference.
- the processor will not find the horizontal position of the card, and only the left-right movement will be raised, not the right-left movement.
- the verification step produced in our example, a similarity index IS1.
- the decision step will compare this similarity index IS1 with the predefined threshold S. In our example, the threshold is not reached, the processor will not allow the establishment of communication with the reader.
- the processor will compare the readings of the sensors with the reference, and establish a similarity index.
- the sensors have recognized the horizontal position of the map, and the successive movements left-right and right-left.
- the verification step produces, in our example, a similarity index IS2.
- FIG. 2 represents a flowchart of the implementation, in the non-contact portable object, of the method according to the invention. This figure shows a resting step 21, a step 22 for capturing external information, a verification step 23, a decision step 24 depending on the result of the verification, and a step 25 for producing a radio frequency communication. .
- the portable object When receiving an attempt at radio frequency communication, the portable object will exit the idle state 21 to enter a state 22, in which state it will capture, via an onboard sensor, a state variation called behaviour.
- This behavior can be a movement, a position, a twist, or any other information that can be measured on a portable object, and that the user can vary voluntarily.
- this capture step may have a defined duration, or may end when the sensor or sensors have raised a minimum amount of information.
- the portable object will go into a state 23, during which it will compare the information recorded by the sensor with a reference value. The result of this comparison will be called the similarity index. In a preferred embodiment of the invention, this similarity index is a percentage.
- the portable object will go into a step 24 called the decision step. During this step, the portable object will check if the similarity index reaches a threshold S. If the threshold is reached, then the portable object goes into state 25. In this state, the portable object will accept Communication radio frequency, and perform the transaction requested normally.
- the card can make one or more decisions, for example: it can record this attempt. - it may decide to accept the communication, but in a mode voluntarily protected. For example by sending only very little information, and in no way confidential, or by sending only erroneous information. - it may decide to erase all or part of the information it contains. or any other reaction.
Landscapes
- Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Microelectronics & Electronic Packaging (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Theoretical Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- General Engineering & Computer Science (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
Description
Claims
Priority Applications (4)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US12/675,028 US20100207730A1 (en) | 2007-08-27 | 2008-08-08 | Behavioural method and device for preventing the use of a contactless portable device without the bearer's authorization |
CN200880113339A CN101836223A (zh) | 2007-08-27 | 2008-08-08 | 用于防止在没有持有人的授权的情况下使用非接触便携式设备的行为方法和设备 |
EP08802990A EP2186042A1 (fr) | 2007-08-27 | 2008-08-08 | Procédé et dispositif comportemental, destines a prévenir l'utilisation d'un objet portable sans contact a l'insu de son porteur |
JP2010522296A JP2010537334A (ja) | 2007-08-27 | 2008-08-08 | 非接触型携帯装置の所持者無許可使用を防止する動作態様を利用した方法及び装置 |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
EP07301326A EP2031548A1 (fr) | 2007-08-27 | 2007-08-27 | Procédé et dispositif comportemental, destinés à prévenir l'utilisation d'un objet portable sans contact à l'insu de son porteur |
EP07301326.0 | 2007-08-27 |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2009027209A1 true WO2009027209A1 (fr) | 2009-03-05 |
Family
ID=39156516
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/EP2008/060489 WO2009027209A1 (fr) | 2007-08-27 | 2008-08-08 | Procédé et dispositif comportemental, destines a prévenir l'utilisation d'un objet portable sans contact a l'insu de son porteur |
Country Status (5)
Country | Link |
---|---|
US (1) | US20100207730A1 (fr) |
EP (2) | EP2031548A1 (fr) |
JP (1) | JP2010537334A (fr) |
CN (1) | CN101836223A (fr) |
WO (1) | WO2009027209A1 (fr) |
Cited By (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US8232879B2 (en) | 2008-08-08 | 2012-07-31 | Assa Abloy Ab | Directional sensing mechanism and communications authentication |
CN102804209A (zh) * | 2009-06-25 | 2012-11-28 | 德国捷德有限公司 | 用于允许交易的方法、便携式数据载体、允许装置和系统 |
US9176750B2 (en) | 2008-10-30 | 2015-11-03 | Oberthur Technologies | Telephone network subscriber identification card and method of controlling an electronic device adapted to interact with such a card |
US9208306B2 (en) | 2008-08-08 | 2015-12-08 | Assa Abloy Ab | Directional sensing mechanism and communications authentication |
US9773362B2 (en) | 2008-08-08 | 2017-09-26 | Assa Abloy Ab | Directional sensing mechanism and communications authentication |
Families Citing this family (13)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CH713463B1 (fr) | 2008-05-29 | 2018-08-15 | Em Microelectronic Marin Sa | Carte à puce comprenant un circuit de mesure à capteur. |
FR2942060B1 (fr) * | 2009-02-11 | 2016-02-12 | Oberthur Technologies | Entite electronique apte a communiquer avec un lecteur et procede mis en oeuvre au sein d'une telle entite electronique |
DE102009031385A1 (de) | 2009-07-01 | 2011-01-05 | Giesecke & Devrient Gmbh | Verfahren, tragbarer Datenträger und System zum Freigeben einer Transaktion |
FR2952365B1 (fr) * | 2009-11-06 | 2011-12-09 | Oberthur Technologies | Procede de fabrication d'entites electroniques de poche ou portables a capteurs mems |
DE102011118374A1 (de) * | 2011-11-11 | 2013-05-16 | Giesecke & Devrient Gmbh | Sichere Drahtlos-Transaktion |
FR2996028B1 (fr) * | 2012-09-21 | 2015-08-07 | Inside Secure | Dispositif portatif protege contre une attaque |
EP2717552A1 (fr) * | 2012-10-04 | 2014-04-09 | Nagravision S.A. | Dispositif de communication sans fil de proximité portatif |
US9285470B2 (en) * | 2013-05-23 | 2016-03-15 | Trimble Navigation Limited | RFID tag distance measurer |
KR101433633B1 (ko) | 2013-06-05 | 2014-09-23 | 주식회사 에스원 | 카드를 이용한 비접촉식 인터페이스 시스템 및 이를 이용한 대상 기기 조작 방법 |
CN103489029B (zh) * | 2013-09-26 | 2017-02-08 | 中国联合网络通信集团有限公司 | 一种射频卡 |
CN107251056A (zh) * | 2015-02-27 | 2017-10-13 | 株式会社村田制作所 | Rf模块以及rf系统 |
US10055738B2 (en) | 2016-11-04 | 2018-08-21 | BBPOS Limited | System and methods to prevent unauthorized usage of card readers |
GB2571301B (en) * | 2018-02-23 | 2020-07-22 | Equinox Card Ltd | Security of data tags |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
FR2728710A1 (fr) * | 1994-12-23 | 1996-06-28 | Solaic Sa | Carte electronique comportant un element fonctionnel activable manuellement |
DE19947180A1 (de) * | 1999-10-01 | 2001-04-05 | Philips Corp Intellectual Pty | Chipkarte |
DE10248389A1 (de) * | 2002-10-17 | 2004-08-05 | Giesecke & Devrient Gmbh | Sicherheitstoken |
-
2007
- 2007-08-27 EP EP07301326A patent/EP2031548A1/fr not_active Withdrawn
-
2008
- 2008-08-08 EP EP08802990A patent/EP2186042A1/fr not_active Withdrawn
- 2008-08-08 JP JP2010522296A patent/JP2010537334A/ja not_active Withdrawn
- 2008-08-08 CN CN200880113339A patent/CN101836223A/zh active Pending
- 2008-08-08 US US12/675,028 patent/US20100207730A1/en not_active Abandoned
- 2008-08-08 WO PCT/EP2008/060489 patent/WO2009027209A1/fr active Application Filing
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
FR2728710A1 (fr) * | 1994-12-23 | 1996-06-28 | Solaic Sa | Carte electronique comportant un element fonctionnel activable manuellement |
DE19947180A1 (de) * | 1999-10-01 | 2001-04-05 | Philips Corp Intellectual Pty | Chipkarte |
DE10248389A1 (de) * | 2002-10-17 | 2004-08-05 | Giesecke & Devrient Gmbh | Sicherheitstoken |
Cited By (10)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US8232879B2 (en) | 2008-08-08 | 2012-07-31 | Assa Abloy Ab | Directional sensing mechanism and communications authentication |
US8427320B2 (en) | 2008-08-08 | 2013-04-23 | Assa Abloy Ab | Directional sensing mechanism and communications authentication |
US9208306B2 (en) | 2008-08-08 | 2015-12-08 | Assa Abloy Ab | Directional sensing mechanism and communications authentication |
US9524383B2 (en) | 2008-08-08 | 2016-12-20 | Assa Abloy Ab | Directional sensing mechanism and communications authentication |
US9773362B2 (en) | 2008-08-08 | 2017-09-26 | Assa Abloy Ab | Directional sensing mechanism and communications authentication |
US9998454B2 (en) | 2008-08-08 | 2018-06-12 | Assa Abloy Ab | Directional sensing mechanism and communications authentication |
US10554650B2 (en) | 2008-08-08 | 2020-02-04 | Assa Abloy Ab | Directional sensing mechanism and communications authentication |
US9176750B2 (en) | 2008-10-30 | 2015-11-03 | Oberthur Technologies | Telephone network subscriber identification card and method of controlling an electronic device adapted to interact with such a card |
CN102804209A (zh) * | 2009-06-25 | 2012-11-28 | 德国捷德有限公司 | 用于允许交易的方法、便携式数据载体、允许装置和系统 |
CN102804209B (zh) * | 2009-06-25 | 2016-03-30 | 德国捷德有限公司 | 用于允许交易的方法、便携式数据载体、允许装置和系统 |
Also Published As
Publication number | Publication date |
---|---|
US20100207730A1 (en) | 2010-08-19 |
EP2031548A1 (fr) | 2009-03-04 |
EP2186042A1 (fr) | 2010-05-19 |
CN101836223A (zh) | 2010-09-15 |
JP2010537334A (ja) | 2010-12-02 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
EP2186042A1 (fr) | Procédé et dispositif comportemental, destines a prévenir l'utilisation d'un objet portable sans contact a l'insu de son porteur | |
CA2784739C (fr) | Carte a puce multi-applicatifs avec validation biometrique | |
EP3373254B1 (fr) | Procédé de contrôle d'accès sécurisé avec lecteur et terminal mobile, notamment du type terminal téléphonique | |
US11171951B2 (en) | Device interface output based on biometric input orientation and captured proximate data | |
EP2267647B1 (fr) | Authentification d'un terminal par un transpondeur électromagnétique | |
FR3071987A1 (fr) | Procede et systeme de reconnaissance d'un utilisateur lors d'une communication radio via le corps humain | |
FR2997533A1 (fr) | Interface de carte de paiement securise | |
WO1999003070A1 (fr) | Terminal informatique individuel susceptible de communiquer avec un equipement informatique d'une façon securisee, ainsi qu'un procede d'authentification mis en oeuvre par ledit terminal | |
FR3030825A1 (fr) | Procede d'envoi d'une information de securite et dispositif electronique apte a mettre en oeuvre un tel procede | |
CA2973836A1 (fr) | Procede de traitement de donnees par un dispositif electronique d'acquisition de donnees, dispositif et programme correspondant | |
EP2867837B1 (fr) | Système de transmission sécurisée de données numériques | |
EP3900228B1 (fr) | Procédé et dispositif de reconnaissance d'un utilisateur | |
WO2004109585A1 (fr) | Procede et dispositif d’identification biometrique adaptes a la verification sur cartes a puce | |
FR2980012A1 (fr) | Systeme et procede d'authentification par code personnel | |
BISWAS et al. | ENHANCED SECURE ATM AUTHENTICATION USING NFC TECHNOLOGY AND IRIS VERIFICATION | |
EP1930838A1 (fr) | Procédé et dispositifs destinés à empêcher l'utilisation d'un objet portable sans contact à l'insu de son porteur | |
CA3161315A1 (fr) | Procede et systeme, dispositif et terminal de paiement utilisant des donnees personnelles | |
WO2006030108A1 (fr) | Terminal de communication qui s'identifie a l’operateur et authentifie ses elements amovibles | |
WO2018024980A1 (fr) | Procédé de mise en œuvre d'une transaction depuis un moyen de transaction électronique | |
Bothma | A smart card based student card system | |
WO2012101389A1 (fr) | Systeme biometrique de verification de l'identite avec un signal de reussite, cooperant avec un objet portatif | |
FR2967801A1 (fr) | Systeme biometrique d'acces securise utilisant une carte a microcircuit(s) et antenne | |
FR2986630A1 (fr) | Dispositif d'authentification d'utilisateur |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
WWE | Wipo information: entry into national phase |
Ref document number: 200880113339.5 Country of ref document: CN |
|
121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 08802990 Country of ref document: EP Kind code of ref document: A1 |
|
WWE | Wipo information: entry into national phase |
Ref document number: 2008802990 Country of ref document: EP |
|
ENP | Entry into the national phase |
Ref document number: 2010522296 Country of ref document: JP Kind code of ref document: A |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
WWE | Wipo information: entry into national phase |
Ref document number: 12675028 Country of ref document: US |