Securing a transaction between a transponder and a reader
Abstract
A transponder-reader payment system includes a fob including a transponder, and a RFID reader for interrogating the transponder. The system may further include a personalization system for populating onto the fob and RFID reader identifying information and security and authentication keys which may be used during mutual authentication of the fob and the reader and for completing a transaction. In exemplary operation, the fob and RFID reader may be personalized, the fob may be presented to the RFID reader for interrogation, the fob and reader may engage in mutual authentication, and fob identifying information may be provided to the reader for transaction completion. In another exemplary embodiment, operation of the transponder-reader payment system may be controlled by an activation circuit. Further, the fob may be responsive to multiple interrogation signals.
Claims
exact text as granted — not AI-modifiedWe claim:
1 . A method to process a transaction via a radio frequency (RF) reader, the method comprising:
providing a RF interrogation signal to a transponder device; authenticating the transponder device in mutual authentication with the transponder device; receiving an encrypted account number from the transponder device; decrypting the encrypted account number and providing the decrypted account number to a Point of Sale (POS) device to facilitate the transaction; receiving a verification Personal Identification Number (PIN) in response to a first purchase restriction associated with the decrypted account number; authorizing the verification PIN by matching the verification PIN to a corroborating PIN; and transmitting a first transaction authorized signal to the POS device to process the transaction.
2 . The method of claim 1 , further comprising transmitting a second transaction authorized signal in response to an authentication of biometric data.
3 . The method of claim 2 , wherein the biometric data is associated with a second purchase restriction associated with the decrypted account number.
4 . The method of claim 2 , wherein the transaction is processed by the POS device responsive to receiving at least one of the first or second transaction authorized signal.
5 . The method of claim 1 , further comprising receiving an optical or audible transaction status message from the POS device in response to providing the decrypted account number.
6 . The method of claim 1 , wherein the providing the decrypted account number to a Point of Sale (POS) device comprises providing the decrypted account number in a magnetic stripe format to the POS device.
7 . The method of claim 1 , wherein the first purchase restriction, associated with the decrypted account number, includes a spending limit per a transaction, a time of day for use, a day of week for use, or a specific merchant for use.
8 . The method of claim 1 , wherein the corroborating PIN is stored at the RF reader or a database maintained by an account provider.
9 . The method of claim 2 , wherein the biometric data is obtained via a biometric sensor of a biometric security system coupled to the transponder device.
10 . The method of claim 2 , wherein the biometric data includes a fingerprint.
11 . A radio frequency (RF) reader, comprising:
an interrogator configured to provide a RF interrogation signal to a transponder device; authentication circuitry configured to authenticate the transponder device in mutual authentication with the transponder device; decryption circuitry configured to decrypt an encrypted account number received from the transponder device; a protocol/sequence controller configured to provide the decrypted account number to a Point of Sale (POS) device to facilitate a transaction; and a RF keypad configured to receive a verification Personal Identification Number (PIN) in response to a first purchase restriction associated with the decrypted account number, wherein the authentication circuitry is further configured to authorize the verification PIN by matching the verification PIN to a corroborating PIN, and wherein the protocol/sequence controller is further configured to transmit a first transaction authorized signal to the POS device to process the transaction.
12 . The RF reader of claim 11 , wherein the protocol/sequence controller is further configured to transmit a second transaction authorized signal in response to an authentication of biometric data.
13 . The RF reader of claim 12 , wherein the biometric data is associated with a second purchase restriction associated with the decrypted account number.
14 . The RF reader of claim 12 , wherein the transaction is processed by the POS device responsive to receiving at least one of the first or second transaction authorized signal.
15 . The RF reader of claim 11 , wherein the protocol/sequence controller is further configured to receive an optical or audible transaction status message from the POS device in response to providing the decrypted account number.
16 . The RF reader of claim 11 , wherein the protocol/sequence controller is configured to provide the decrypted account number to a Point of Sale (POS) device by providing the decrypted account number in a magnetic stripe format to the POS device.
17 . The RF reader of claim 11 , wherein the first purchase restriction, associated with the decrypted account number, includes a spending limit per a transaction, a time of day for use, a day of week for use, or a specific merchant for use.
18 . The RF reader of claim 13 , wherein the second purchase restriction, associated with the decrypted account number, includes a spending limit per a transaction, a time of day for use, a day of week for use, or a specific merchant for use.
19 . A non-transitory computer-readable medium storing executable instructions that, when executed, cause a radio frequency (RF) reader to perform operations comprising:
providing a RF interrogation signal to a transponder device; authenticating the transponder device in mutual authentication with the transponder device; receiving an encrypted account number from the transponder device; decrypting the encrypted account number and providing the decrypted account number to a Point of Sale (POS) device to facilitate a transaction; receiving a verification Personal Identification Number (PIN) in response to a first purchase restriction associated with the decrypted account number; authorizing the verification PIN by matching the verification PIN to a corroborating PIN; and transmitting a first transaction authorized signal to the POS device to process the transaction.
20 . The non-transitory computer-readable medium of claim 19 , further comprising transmitting a second transaction authorized signal in response to an authentication of biometric data.Cited by (0)
No later patents cite this yet.
References (0)
No backward citations on record.