[go: up one dir, main page]

FR2987474A1 - METHOD FOR AUTHENTICATING THE HOLDER OF A CHIP CARD - Google Patents

METHOD FOR AUTHENTICATING THE HOLDER OF A CHIP CARD Download PDF

Info

Publication number
FR2987474A1
FR2987474A1 FR1200540A FR1200540A FR2987474A1 FR 2987474 A1 FR2987474 A1 FR 2987474A1 FR 1200540 A FR1200540 A FR 1200540A FR 1200540 A FR1200540 A FR 1200540A FR 2987474 A1 FR2987474 A1 FR 2987474A1
Authority
FR
France
Prior art keywords
card
holder
photograph
biometric characteristics
person
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
FR1200540A
Other languages
French (fr)
Inventor
Jacques Salmon
Driss Naamane
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
JACQUES SALMON, FR
Original Assignee
Individual
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Individual filed Critical Individual
Priority to FR1200540A priority Critical patent/FR2987474A1/en
Priority to PCT/FR2013/000048 priority patent/WO2013124551A1/en
Publication of FR2987474A1 publication Critical patent/FR2987474A1/en
Pending legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/32User authentication using biometric data, e.g. fingerprints, iris scans or voiceprints
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/34User authentication involving the use of external additional devices, e.g. dongles or smart cards
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/40User authentication by quorum, i.e. whereby two or more security principals are required

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
  • Control Of Vending Devices And Auxiliary Devices For Vending Devices (AREA)
  • Collating Specific Patterns (AREA)

Abstract

Procédé d'identification du détenteur d'une carte à puce consistant, dans un premier temps à vérifier la concordance entre le code entré et celui porté sur la carte puis, dans un second temps et si le premier contrôle est positif, à contrôler les concordances entre les caractéristiques biométriques de la photographie introduites dans la puce lors de l'établissement de la carte et les caractéristiques biométriques de la photographie de la personne qui présente ladite carte.A method of identifying the holder of a smart card consisting, first of all, in checking the agreement between the code entered and that on the card, then, in a second step, and if the first control is positive, checking the concordances between the biometric characteristics of the photograph introduced into the chip during the establishment of the card and the biometric characteristics of the photograph of the person who presents said card.

Description

La présente invention est relative à un procédé d'authentification du détenteur d'une carte à puce. L'exemple le plus connu d'usage de cartes à puce est celui constitué 5 par les cartes bancaires qui permettent, notamment, d'effectuer des paiements ou de retirer de l'argent auprès des distributeurs automatiques de billets (dénommés DAB). Lors de l'utilisation d'une carte à puce, il faut justifier que la personne 10 qui la présente est bien la détentrice de la carte. Ainsi, chaque carte est délivrée avec un code qui est inscrit sur la puce et communiqué de façon secrète au détenteur. 15 Pour utiliser la carte, le détenteur doit entrer son code dans le terminal qui le compare à celui inscrit dans la puce. S'il n'y a pas concordance la transaction est refusée. Avec la généralisation de ces cartes, les fraudes se sont multipliées, la 20 plus fréquente consistant, après le vol de la carte, à obtenir le code soit par ruse soit par violence. L'objet de l'invention consiste à prévoir un second système d'authentification dont la mise en oeuvre est totalement indépendante de la 25 volonté de la personne qui présente la carte. Le procédé d'authentification du détenteur d'une carte à puce consiste, dans un premier temps à vérifier la concordance entre le code entré et celui porté sur la carte puis, dans un second temps et si le premier contrôle est positif, à contrôler les concordances entre les caractéristiques biométriques de la photographie introduites dans la puce lors de l'établissement de la carte et les caractéristiques biométriques de la photographie de la personne qui présente ladite carte. L'authentification s'effectue, donc, en deux temps, dans un premier temps, le terminal compare le code inscrit et celui entré, s'il n'y a pas concordance la transaction est refusée, dans un second temps et si il y a concordance le terminal effectue le contrôle biométrique. Dans le cas où la carte devrait être utilisée par plusieurs personnes, la carte comportera les caractéristiques biométriques de la photographie de chacune des personnes autorisées. 15 La mise en oeuvre du procédé de l'invention ne posera pas de problème car, à l'heure actuelle, la plupart des DAB comporte une caméra qui vise la fente d'introduction de la carte pour s'assurer que la personne située devant ladite fente ne tente pas des manoeuvres délictueuses. Pour la mise en oeuvre du procédé de l'invention, il suffira de réorienter la caméra existante. 20 Cette caméra pourra donc être avantageusement utilisée pour photographier la personne qui présente la carte. Dans le cas de l'utilisation de la carte avec un ordinateur personnel ou 25 un téléphone mobile, c'est la caméra frontale de l'ordinateur ou du téléphone qui sera utilisée. 10 Pour les terminaux, utilisés par les commerçants, qui comportent une caméra embarquée, le procédé de l'invention prévoit d'utiliser le même procédé d'identification que celui décrit ci-dessus. The present invention relates to a method of authentication of the holder of a smart card. The best-known example of smart card use is that constituted by bank cards which make it possible, in particular, to make payments or to withdraw money from ATMs (called ATMs). When using a smart card, it must be justified that the person who presents it is indeed the card holder. Thus, each card is issued with a code that is written on the chip and secretly communicated to the cardholder. To use the card, the cardholder must enter his code in the terminal which compares it with the one entered in the chip. If there is no match, the transaction is refused. With the generalization of these cards, frauds have multiplied, the most frequent consisting, after the theft of the card, to obtain the code either by trick or by violence. The object of the invention is to provide a second authentication system whose implementation is completely independent of the will of the person presenting the card. The authentication process of the holder of a smart card consists, first of all, in checking the correspondence between the code entered and the one carried on the card, then, in a second step and if the first control is positive, in controlling the concordances between the biometric characteristics of the photograph introduced into the chip during the establishment of the card and the biometric characteristics of the photograph of the person presenting the card. The authentication is done, therefore, in two stages, at first, the terminal compares the code entered and that entered, if there is no agreement the transaction is refused, in a second time and if there concordance the terminal carries out the biometric check. In the case where the card should be used by more than one person, the card will include the biometric features of the photograph of each authorized person. The implementation of the method of the invention will not be a problem since, at present, most DABs include a camera which aims at the slot for introducing the card to ensure that the person in front said slot does not attempt criminal maneuvers. For the implementation of the method of the invention, it will be sufficient to reorient the existing camera. This camera can therefore be advantageously used to photograph the person presenting the card. In the case of using the card with a personal computer or a mobile phone, the front camera of the computer or telephone will be used. For terminals, used by merchants, which include an on-board camera, the method of the invention provides for using the same identification method as that described above.

De cette façon, le commerçant n'aura pas à intervenir. In this way, the trader will not have to intervene.

Claims (1)

REVENDICATIONS1- Procédé d'identification du détenteur d'une carte à puce consistant, dans un premier temps à vérifier la concordance entre le code entré et celui porté sur la carte puis, dans un second temps et si le premier contrôle est positif, à contrôler les concordances entre les caractéristiques biométriques de la photographie introduites dans la puce lors de l'établissement de la carte et les caractéristiques biométriques de la photographie de la personne qui présente ladite carte. CLAIMS1- A method of identification of the holder of a smart card consisting, in a first time to check the agreement between the entered code and that carried on the card then, in a second time and if the first control is positive, to control the concordances between the biometric characteristics of the photograph introduced into the chip during the establishment of the card and the biometric characteristics of the photograph of the person who presents said card. 2-Procédé selon la revendication 1, consistant à introduire dans la puce les caractéristiques biométriques des photographies des personnes autorisées à utiliser la carte. 2-Process according to claim 1, of introducing into the chip the biometric characteristics of photographs of persons authorized to use the card.
FR1200540A 2012-02-24 2012-02-24 METHOD FOR AUTHENTICATING THE HOLDER OF A CHIP CARD Pending FR2987474A1 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
FR1200540A FR2987474A1 (en) 2012-02-24 2012-02-24 METHOD FOR AUTHENTICATING THE HOLDER OF A CHIP CARD
PCT/FR2013/000048 WO2013124551A1 (en) 2012-02-24 2013-02-21 Method of authenticating the holder of a chip card

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
FR1200540A FR2987474A1 (en) 2012-02-24 2012-02-24 METHOD FOR AUTHENTICATING THE HOLDER OF A CHIP CARD

Publications (1)

Publication Number Publication Date
FR2987474A1 true FR2987474A1 (en) 2013-08-30

Family

ID=48083443

Family Applications (1)

Application Number Title Priority Date Filing Date
FR1200540A Pending FR2987474A1 (en) 2012-02-24 2012-02-24 METHOD FOR AUTHENTICATING THE HOLDER OF A CHIP CARD

Country Status (2)

Country Link
FR (1) FR2987474A1 (en)
WO (1) WO2013124551A1 (en)

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4993068A (en) * 1989-11-27 1991-02-12 Motorola, Inc. Unforgeable personal identification system
US20070241861A1 (en) * 2006-04-18 2007-10-18 Venkatanna Kumar B Methods and systems for secured access to devices and systems

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7634662B2 (en) * 2002-11-21 2009-12-15 Monroe David A Method for incorporating facial recognition technology in a multimedia surveillance system

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4993068A (en) * 1989-11-27 1991-02-12 Motorola, Inc. Unforgeable personal identification system
US20070241861A1 (en) * 2006-04-18 2007-10-18 Venkatanna Kumar B Methods and systems for secured access to devices and systems

Also Published As

Publication number Publication date
WO2013124551A1 (en) 2013-08-29

Similar Documents

Publication Publication Date Title
US7287165B2 (en) IC card, portable terminal, and access control method
US20020163421A1 (en) Personal fingerprint authentication method of bank card and credit card
CN111275411B (en) Off-line transaction method and system for digital currency wallet and user identity identification card
US10970376B2 (en) Method and system to validate identity without putting privacy at risk
US20160283944A1 (en) Method and apparatus for personal virtual authentication and authorization using digital devices and as an alternative for chip card or smart card
CN105975838A (en) Secure chip, biological feature identification method and biological feature template registration method
EP0606792B1 (en) Procedure for authentication of an information unit by another
JP7619428B2 (en) Accounting system, information processing device, information display device, accounting processing method, and information display method
CN114743033B (en) IDENTITY VERIFICATION METHOD, DEVICE AND APPARATUS - 特許庁
CA2451034C (en) Cryptographic method of protecting an electronic chip against fraud
FR2987474A1 (en) METHOD FOR AUTHENTICATING THE HOLDER OF A CHIP CARD
Alhothaily et al. Towards more secure cardholder verification in payment systems
CN107657533B (en) Self-service transaction reminding method and device and terminal equipment
CN105354471A (en) Financial transaction security control method
FR2855889A1 (en) BIOMETRIC IDENTIFICATION METHOD AND DEVICE SUITABLE FOR CHECKING ON CHIP CARDS
CN111340497A (en) Palm vein financial payment management and control system based on multi-mode biological characteristics
CN110889685A (en) Service execution method and device based on signature recognition
FR2980012A1 (en) Method for authenticating user to access bank payment terminal, involves authorizing realization of function if result of comparison of symbols of secret codes provided by user and by secure terminal is positive
FR2861482A1 (en) Authentication biometric data securing method, involves personalizing stored general transformation function with user parameter, and applying personalized transformation function to authentication biometric data of user
US8881976B1 (en) Method for obtaining a balance and withdrawing funds from a prepaid access device by law enforcement
Awodele et al. Combating automated teller machine frauds through biometrics
KR20040076962A (en) sampling system for extracting a living body code from features and the iris of the eye
US20220092600A1 (en) System for Credit Card, Debit Card, and Voting Fraud Prevention
FR3060168B1 (en) BIOMETRIC IDENTIFICATION METHOD AND SYSTEM
CN206696888U (en) Bank card security uses system

Legal Events

Date Code Title Description
AU Other action affecting the ownership or exploitation of an industrial property right

Effective date: 20131119

TP Transmission of property

Owner name: JACQUES SALMON, FR

Effective date: 20131119

PLFP Fee payment

Year of fee payment: 4