Registers – Systems controlled by data bearing records – Credit or identification card systems
Patent
1979-12-03
1981-10-13
Kilgore, Robert M.
Registers
Systems controlled by data bearing records
Credit or identification card systems
235492, 235379, 340149A, 364900, G06K 500, G06K 1906, H04Q 900, G06F 700
Patent
active
042950392
ABSTRACT:
A method and apparatus for identifying an individual holder (person) of an unalterable charge card-like device (CARD) at a utilization terminal (U/I Terminal) wherein a unique user entered key (asserted key K.sub.A) is handled in a highly secure manner. The holder of the CARD causes same to be placed in a data coupling mode with the U/I Terminal. At this point, the person enters asserted key (K.sub.A) via a keyboard associated with said system. A random word is generated by at least one random word generator located in said CARD and this random word is encrypted utilizing the asserted key K.sub.A entered by the holder at the keyboard and also encrypted under a true key K.sub.T stored in said CARD. The random word encrypted under the asserted key K.sub.A is stored in said U/I Terminal and the random word encrypted under the true key K.sub.T is stored in the CARD. The U/I Terminal then causes the encrypted word stored in the CARD to be transferred to the U/I Terminal and the two encrypted words are compared for identity.
If the comparison is true, the holder of the card has entered the correct asserted key K.sub.A into the system, and his identity is presumed to be true.
According to a first embodiment of the invention, the keyboard is actually located in the U/I Terminal, sacrificing some security for the person's asserted key K.sub.A.
According to a further embodiment of the system, the CARD is inserted into a personal portable transaction terminal (XATR) which is then inserted into the U/I terminal. Said XATR in the possession of the holder of the CARD contains a keyboard for entering the individual's asserted key K.sub.A. Additional means are provided when the two encrypted random words are to be transferred between the U/I Terminal and the CARD for comparison so that the transfer occurs simulataneously in bit serial mode and in the opposite order of bit significance, and whereby any attempt to subvert the data flow path within the XATR will be impossible.
REFERENCES:
patent: 3594727 (1971-07-01), Braun
patent: 3806874 (1974-04-01), Ehrat
patent: 3906460 (1975-09-01), Halpern
patent: 3971916 (1976-07-01), Moreno
patent: 3978320 (1976-08-01), McBride
patent: 4007355 (1977-02-01), Moreno
patent: 4023013 (1977-05-01), Kinker
patent: 4123747 (1978-10-01), Lancto
patent: 4234932 (1980-11-01), Gorgens
International Business Machines - Corporation
Kilgore Robert M.
Schlemmer, Jr. Roy R.
LandOfFree
Method and apparatus for achieving secure password verification does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method and apparatus for achieving secure password verification, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method and apparatus for achieving secure password verification will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-932646