公开(公告)号：US06742120B1

公开(公告)日：2004-05-25

申请号：US09212105

申请日：1998-12-15

申请人： Dimitrios Markakis ,  Barry Hochfield ,  John Beric ,  David Anthony Roberts

发明人： Dimitrios Markakis ,  Barry Hochfield ,  John Beric ,  David Anthony Roberts

IPC分类号： H04L900

CPC分类号： G07F7/1008 ,  G06Q20/341 ,  G06Q20/35765

摘要： In a multiple application card system including an IC card comprising a microprocessor, a read-only memory, a random access memory and an electronically erasable programmable read only memory, a system for controlling access to one or more sets of programming instructions embedded in said read-only memory comprising means for storing on said IC card for at least one application loaded onto said card at least one access flag having a value indicating whether or not access by the at least one application to the at least one set of programming instructions shall be granted and means dependent on said value for allowing access to one or more sets of programming instructions.

摘要翻译： 在包括一个包括微处理器，只读存储器，随机存取存储器和电可擦除可编程只读存储器的IC卡的多应用卡系统中，一个系统，用于控制访问嵌入在所述读取中的一组或多组编程指令 - 仅存储器包括用于在所述IC卡上存储加载到所述卡上的至少一个应用的装置，所述至少一个访问标志具有指示所述至少一个应用对所述至少一组编程指令的访问是否应为 授权和取决于所述值的装置，以允许访问一组或多组编程指令。

公开(公告)号：US08909557B2

公开(公告)日：2014-12-09

申请号：US12584704

申请日：2009-09-09

申请人： Mehdi Collinge ,  Jean-Paul Edmond Rans ,  Paul Vanneste ,  John Beric ,  Dave Roberts ,  Thomas Tan ,  Fikret Ates ,  Jonathan Grossar

发明人： Mehdi Collinge ,  Jean-Paul Edmond Rans ,  Paul Vanneste ,  John Beric ,  Dave Roberts ,  Thomas Tan ,  Fikret Ates ,  Jonathan Grossar

IPC分类号： G06Q99/00 ,  G06Q20/36 ,  G06Q20/34 ,  G06Q20/04 ,  G06Q20/40 ,  G07F7/10 ,  G06Q20/12 ,  G06Q20/38

CPC分类号： G07F7/1008 ,  G06Q20/04 ,  G06Q20/12 ,  G06Q20/341 ,  G06Q20/3674 ,  G06Q20/388 ,  G06Q20/40975 ,  G07F7/1025

摘要： A system and method for generating an authentication token which is used by an issuer associated with a integrated circuit card to authenticate a transaction. A personal card reader receives data, including an authentication cryptogram, from the integrated circuit card. The personal card reader uses the data received from the integrated circuit card to select one of at least two default bitmaps stored in a memory portion of the personal card reader. The personal card reader uses the selected default bitmap and the authentication cryptogram to build the authentication token.

摘要翻译： 一种用于产生认证令牌的系统和方法，所述认证令牌由与集成电路卡相关联的发行者用于认证交易。 个人读卡器从集成电路卡接收包括认证密码的数据。 个人读卡器使用从集成电路卡接收的数据来选择存储在个人读卡器的存储器部分中的至少两个默认位图中的一个。 个人读卡器使用所选的默认位图和身份验证密码来构建身份验证令牌。

公开(公告)号：US20110022521A1

公开(公告)日：2011-01-27

申请号：US12584704

申请日：2009-09-09

申请人： Mehdi Collinge ,  Jean-Paul Edmond Rans ,  Paul Vanneste ,  John Beric ,  Dave Roberts ,  Thomas Tan ,  Fikret Ates ,  Jonathan Grossar

发明人： Mehdi Collinge ,  Jean-Paul Edmond Rans ,  Paul Vanneste ,  John Beric ,  Dave Roberts ,  Thomas Tan ,  Fikret Ates ,  Jonathan Grossar

IPC分类号： G06Q20/00

CPC分类号： G07F7/1008 ,  G06Q20/04 ,  G06Q20/12 ,  G06Q20/341 ,  G06Q20/3674 ,  G06Q20/388 ,  G06Q20/40975 ,  G07F7/1025

摘要： A system and method for generating an authentication token which is used by an issuer associated with a integrated circuit card to authenticate a transaction. A personal card reader receives data, including an authentication cryptogram, from the integrated circuit card. The personal card reader uses the data received from the integrated circuit card to select one of at least two default bitmaps stored in a memory portion of the personal card reader. The personal card reader uses the selected default bitmap and the authentication cryptogram to build the authentication token.

摘要翻译： 一种用于产生认证令牌的系统和方法，所述认证令牌由与集成电路卡相关联的发行者用于认证交易。 个人读卡器从集成电路卡接收包括认证密码的数据。 个人读卡器使用从集成电路卡接收的数据来选择存储在个人读卡器的存储器部分中的至少两个默认位图中的一个。 个人读卡器使用所选的默认位图和身份验证密码来构建身份验证令牌。

公开(公告)号：US20090103730A1

公开(公告)日：2009-04-23

申请号：US11875026

申请日：2007-10-19

申请人： Michael C. Ward ,  Patrik Smets ,  David A. Roberts ,  Duncan Garrett ,  John Beric ,  Stuart Miller

发明人： Michael C. Ward ,  Patrik Smets ,  David A. Roberts ,  Duncan Garrett ,  John Beric ,  Stuart Miller

IPC分类号： H04L9/32 ,  H04L9/30 ,  H04L9/16 ,  H04L9/28

CPC分类号： G06Q20/3829 ,  G06Q20/02 ,  G06Q20/341 ,  G06Q20/40975 ,  G07B15/00 ,  G07F7/10 ,  G07F7/1008

摘要： Secure establishment of a key associated with a first facility identifier is facilitated. The key is shared between a device and an operator of a first facility, via a public key management infrastructure of a payment system operating according to the payment standard, during a first transaction, substantially in accordance with the payment standard, between the device and the first facility. Controlling access to a first facility is facilitated, via the device, using the key associated with the first facility identifier, substantially without reference to an issuer of the device and substantially without use of asymmetric keys of the device, during a plurality of subsequent transactions, substantially in accordance with the payment standard, between the device and the first facility. The steps can be repeated for a number of different facilities, such as different transit systems, with appropriate rules to address a situation where the device has a limited storage capacity for keys of different transit operators.

摘要翻译： 与第一设施标识符相关联的密钥的安全建立便利。 通过基本上按照支付标准操作的支付系统的公共密钥管理基础设施，第一设施的设备和操作者之间的密钥在基本上按照支付标准在第一交易期间在设备和 第一个设施。 在多个后续交易期间，基本上不参照设备的发行者并且基本上不使用设备的非对称密钥，通过该设备便于使用与第一设施标识符相关联的密钥来控制对第一设施的访问， 基本上按照支付标准，在设备和第一设施之间。 可以针对多个不同的设施（例如不同的运输系统）重复这些步骤，具有适当的规则以解决设备对于不同运输运营商的密钥的存储容量有限的情况。