AT512958B8 - Verfahren zur Übertragung von Kartendaten - Google Patents

Verfahren zur Übertragung von Kartendaten Download PDF

Info

Publication number
AT512958B8
AT512958B8 ATA595/2012A AT5952012A AT512958B8 AT 512958 B8 AT512958 B8 AT 512958B8 AT 5952012 A AT5952012 A AT 5952012A AT 512958 B8 AT512958 B8 AT 512958B8
Authority
AT
Austria
Prior art keywords
cryptogram
card
card reader
random number
card data
Prior art date
Application number
ATA595/2012A
Other languages
English (en)
Other versions
AT512958B1 (de
AT512958A1 (de
Inventor
Edith Dipl Ing Gruber
Original Assignee
Card Complete Service Bank Ag
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Card Complete Service Bank Ag filed Critical Card Complete Service Bank Ag
Priority to ATA595/2012A priority Critical patent/AT512958B8/de
Publication of AT512958A1 publication Critical patent/AT512958A1/de
Application granted granted Critical
Publication of AT512958B1 publication Critical patent/AT512958B1/de
Publication of AT512958B8 publication Critical patent/AT512958B8/de

Links

Classifications

    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/10Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
    • G07F7/1008Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/346Cards serving only as information carrier of service
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • G06Q20/4014Identity check for transactions

Landscapes

  • Business, Economics & Management (AREA)
  • Engineering & Computer Science (AREA)
  • Accounting & Taxation (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Finance (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Microelectronics & Electronic Packaging (AREA)
  • Storage Device Security (AREA)

Abstract

Die Erfindung betrifft ein Verfahren zur Übertragung von auf einer Karte (1)gespeicherten Kartendaten über einen Kartenleser (2) an einen Endpunkt (3), wobei derKartenleser (2) vom Endpunkt (3) authentifiziert wird, wobei das Verfahren folgendeSchritte umfasst: der Kartenleser (2) generiert eine Zufallszahl, legt sie in einemgeschützten Speicherbereich ab und verschlüsselt sie als erstes Kryptogramm (4); daserste Kryptogramm wird gemeinsam mit einer Identifikationsnummer des Kartenlesers(2) in einer Datenbank (5) abgelegt; der Kartenleser (2) verschlüsselt die in seinemgeschützten Speicherbereich abgelegte Zufallszahl gemeinsam mit weiteren von derKarte gelesenen Kartendaten und sendet sie als zweites Kryptogramm (6) gemeinsammit seiner Identifikationsnummer an den Endpunkt (3); der Endpunkt (3) empfängt daszweite Kryptogramm (6), bezieht durch Abfrage der Datenbank (5) das ersteKryptogramm (4), entschlüsselt das erste Kryptogramm (4) und das zweiteKryptogramm (6) und vergleicht die resultierende erste Zufallszahl mit derresultierenden zweiten Zufallszahl.
ATA595/2012A 2012-05-21 2012-05-21 Verfahren zur Übertragung von Kartendaten AT512958B8 (de)

Priority Applications (1)

Application Number Priority Date Filing Date Title
ATA595/2012A AT512958B8 (de) 2012-05-21 2012-05-21 Verfahren zur Übertragung von Kartendaten

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
ATA595/2012A AT512958B8 (de) 2012-05-21 2012-05-21 Verfahren zur Übertragung von Kartendaten

Publications (3)

Publication Number Publication Date
AT512958A1 AT512958A1 (de) 2013-12-15
AT512958B1 AT512958B1 (de) 2014-07-15
AT512958B8 true AT512958B8 (de) 2014-08-15

Family

ID=49919819

Family Applications (1)

Application Number Title Priority Date Filing Date
ATA595/2012A AT512958B8 (de) 2012-05-21 2012-05-21 Verfahren zur Übertragung von Kartendaten

Country Status (1)

Country Link
AT (1) AT512958B8 (de)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US12236420B2 (en) * 2021-06-29 2025-02-25 Ncr Corporation Card reader verification

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
DE19641776A1 (de) * 1996-09-04 1997-03-13 Telecash Kommunikations Servic Computerprogrammgesteuertes Verfahren zum gesicherten Aufbau einer Wähl-Leitungsverbindung und zur gesicherten Datenübertragung zwischen einem Chipkarten-Terminal und einer zentralen Datenverarbeitungsanlage
JPH11282998A (ja) * 1998-03-31 1999-10-15 Oki Electric Ind Co Ltd 利用者カード、通信端末機、通信サーバ、通信システム、および、通信システムの利用者認証方法
FR2796232A1 (fr) * 1999-07-09 2001-01-12 Scm Schneider Microsysteme Mic Procede et dispositif de securisation de l'acces et des transferts de donnees dans un systeme informatique
EP1701312A1 (de) * 2005-03-11 2006-09-13 NTT DoCoMo Inc. Authentifizierungsvorrichtung, mobiles Endgerät und Authentifizierungsverfahren
US20070168674A1 (en) * 2003-12-09 2007-07-19 Masao Nonaka Authentication system, authentication apparatus, and recording medium

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
DE19641776A1 (de) * 1996-09-04 1997-03-13 Telecash Kommunikations Servic Computerprogrammgesteuertes Verfahren zum gesicherten Aufbau einer Wähl-Leitungsverbindung und zur gesicherten Datenübertragung zwischen einem Chipkarten-Terminal und einer zentralen Datenverarbeitungsanlage
JPH11282998A (ja) * 1998-03-31 1999-10-15 Oki Electric Ind Co Ltd 利用者カード、通信端末機、通信サーバ、通信システム、および、通信システムの利用者認証方法
FR2796232A1 (fr) * 1999-07-09 2001-01-12 Scm Schneider Microsysteme Mic Procede et dispositif de securisation de l'acces et des transferts de donnees dans un systeme informatique
US20070168674A1 (en) * 2003-12-09 2007-07-19 Masao Nonaka Authentication system, authentication apparatus, and recording medium
EP1701312A1 (de) * 2005-03-11 2006-09-13 NTT DoCoMo Inc. Authentifizierungsvorrichtung, mobiles Endgerät und Authentifizierungsverfahren

Also Published As

Publication number Publication date
AT512958B1 (de) 2014-07-15
AT512958A1 (de) 2013-12-15

Similar Documents

Publication Publication Date Title
Vorbrink Financial markets with volatility uncertainty
WO2016011445A3 (en) System and method for verifying non-human traffic
MX2017001114A (es) Procedimiento de gestion de transaccion mediante reconocimiento de matricula de un vehiculo.
WO2013045743A3 (en) Payment system
WO2017091730A3 (en) Automated health data acquisition, processing and communication system and method
PH12015501673A1 (en) Smart card and smart card system with enhanced security features
EA201890924A1 (ru) Сеть обработки информации на основе выпуска единого кода, способ обработки информации и устройство распознавания для доступа
EP2602738A3 (de) Vorrichtung zum Schutz von Sicherheitstoken gegen Malware
Mouselli et al. Accruals quality, stock returns and asset pricing: Evidence from the UK
EP2579116A3 (de) Verfahren zur Sicherstellung des autorisierten Zugriffs auf ein Feldgerät der Automatisierungstechnik
PH12017500902A1 (en) A dynamic multiple- application systematic framework for integrated circuit card and information processing methods based on the framework
PH12016502598B1 (en) Security control system for granting access and security control method thereof
WO2017081603A3 (en) Method and system for protecting and utilizing internet identity, using smartphone
EP3550448A4 (de) Kartenanzeigeverfahren und system, endgerät und kartenserver
KR20180084356A (ko) 보험설계사를 위한 고객 관리 및 웹페이지와 연동된 정보 제공 시스템
SG10201902412QA (en) Password protection question setting method and device
PH12019500429A1 (en) Verification method and device
Chen et al. On an optimization problem related to static super-replicating strategies
AT512958B8 (de) Verfahren zur Übertragung von Kartendaten
Filipova et al. Monetary policy regimes: Implications for the yield curve and bond pricing
HK1193001A2 (en) A portable payment device
Yang Default probability of American lookback option in a mixed jump-diffusion model
Blaszczok et al. Algebraic independence of elements in immediate extensions of valued fields
MY180416A (en) Method for generating and displaying a security code for a payment card, payment card
Fontana et al. Information, no-arbitrage and completeness for asset price models with a change point