Communications: electrical – Continuously variable indicating – With meter reading
Patent
1991-02-07
1992-10-06
Yusko, Donald J.
Communications: electrical
Continuously variable indicating
With meter reading
3408253, 34082531, H04L 900
Patent
active
051535815
DESCRIPTION:
BRIEF SUMMARY
BACKGROUND OF THE INVENTION
The relates to a method for authentication by an external medium of a portable object, such as a memory card coupled to this medium.
More particularly, the invention applies to a case where the function of the external medium is to furnish a service or authorize access to a system via a card, but where, knowing that only some cards are authorized to cooperate with this external medium, the external medium must first determine that the card coupled to it has indeed been authorized from the outset rights to access this service.
Generally, the majority of applications using portable objects such as cards take into account at least one secret key that is specific to each application. On the one hand, this key is prerecorded in all the cards that are allowed to have access to this application, and on the other hand in all the items of equipment with which these cards can be connected in order for a service to be furnished or access authorized within the context of this application. These secret keys are known only to the authorizing entities that issue the cards and oversees the equipment that cooperates with these cards. In each of these applications, the equipment must first verify that the card indeed has the same secret key as its own, without moreover divulging in any way what the value of this key is.
This verification is typically effected by an exchange of information between the card and the equipment in the form of a dialogue, such as is described in French Patent 2 469 760 and corresponding U.S. Pat. No. 4,549,075 to Saada et al, for example.
According to this patent, the dialogue comprises externally inputting a random number into the card; causing the processing circuits of the card to calculate a result which is at least a function of this random number and of a secret key prerecorded in the card; extracting this result from the card; and comparing it with a result calculated by the equipment, which is at least a function of this same random number and of a secret key prerecorded in the equipment.
This verification or authentication of the card is confirmed, if the two results agree. It is understood that this agreement cannot be obtained unless the secret keys are identical.
To prevent any defrauder from making counterfeit cards, the secret nature of the keys used must absolutely be maintained, especially in the equipment that is accessible by the public, such as terminals. Generally, these keys are recorded in a memory zone which is then locked to prevent access to it from the outside, this zone being accessible only internally, by the processing circuits connected to this memory. However, it must be acknowledged that fraud, even though limited and technically difficult, is always possible, and that a defrauder will seek to discover the secret keys by sophisticated techniques, such as laser reading of the memory containing the keys.
SUMMARY OF THE INVENTION
To overcome this disadvantage, the invention no longer provides for the presence of a secret key in the equipment and instead replaces this key with a datum that is variable over time, while allowing the equipment to authenticate the cards that are allowed to cooperate with it.
The invention accordingly affords a method for authentication by an external medium of a portable object coupled to this medium of a kind comprising causing the processing circuits of the portable object to calculate a result which is at least a function of a secret key prerecorded in a memory of the portable object and of an external variable datum furnished by the external medium, characterized in that the invention comprises analyzing the similarities of this result with at least one previous result calculated by a portable object previously coupled with this external medium, this previous result having been calculated based on the same variable datum.
In another characteristic of the invention, the variable datum used is modified in a random manner, beginning with a portable object which is to be authenticated by the external medium.
REFERENCES:
patent: 3789605 (1974-03-01), Feistel
patent: 4218738 (1980-08-01), Matyas et al.
patent: 4471216 (1984-09-01), Herve
patent: 4549075 (1985-10-01), Saada et al.
patent: 4588991 (1986-05-01), Atalla
patent: 4590470 (1986-05-01), Koenig
patent: 4596985 (1986-06-01), Bongard
patent: 4656474 (1987-04-01), Mollier et al.
patent: 4679236 (1987-07-01), Davies
patent: 4683968 (1987-08-01), Appelbaum et al.
patent: 4686529 (1987-08-01), Kleefelds
patent: 4750118 (1988-06-01), Heitschel et al.
patent: 4758835 (1988-07-01), Rathmann et al.
patent: 4799061 (1989-01-01), Abraham et al.
patent: 4885778 (1989-12-01), Weiss
patent: 4904851 (1990-02-01), Yukino
Bull S.A.
Weissman Peter S.
Yusko Donald J.
LandOfFree
Method for authentication by an external medium of a portable ob does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method for authentication by an external medium of a portable ob, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method for authentication by an external medium of a portable ob will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-1192624