WO2010129946A1 - Token authentication using spatial characteristics - Google Patents

Token authentication using spatial characteristics Download PDF

Info

Publication number
WO2010129946A1
WO2010129946A1 PCT/US2010/034219 US2010034219W WO2010129946A1 WO 2010129946 A1 WO2010129946 A1 WO 2010129946A1 US 2010034219 W US2010034219 W US 2010034219W WO 2010129946 A1 WO2010129946 A1 WO 2010129946A1
Authority
WO
WIPO (PCT)
Prior art keywords
card
signature
magnetic stripe
data
computer program
Prior art date
Application number
PCT/US2010/034219
Other languages
French (fr)
Inventor
Kirkpatrick W. Norton
Original Assignee
Semtek Innovative Solutions Corporation
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Semtek Innovative Solutions Corporation filed Critical Semtek Innovative Solutions Corporation
Publication of WO2010129946A1 publication Critical patent/WO2010129946A1/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06KGRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
    • G06K7/00Methods or arrangements for sensing record carriers, e.g. for reading patterns
    • G06K7/08Methods or arrangements for sensing record carriers, e.g. for reading patterns by means detecting the change of an electrostatic or magnetic field, e.g. by detecting change of capacitance between electrodes
    • G06K7/082Methods or arrangements for sensing record carriers, e.g. for reading patterns by means detecting the change of an electrostatic or magnetic field, e.g. by detecting change of capacitance between electrodes using inductive or magnetic sensors
    • G06K7/083Methods or arrangements for sensing record carriers, e.g. for reading patterns by means detecting the change of an electrostatic or magnetic field, e.g. by detecting change of capacitance between electrodes using inductive or magnetic sensors inductive
    • G06K7/084Methods or arrangements for sensing record carriers, e.g. for reading patterns by means detecting the change of an electrostatic or magnetic field, e.g. by detecting change of capacitance between electrodes using inductive or magnetic sensors inductive sensing magnetic material by relative movement detecting flux changes without altering its magnetised state
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06KGRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
    • G06K19/00Record carriers for use with machines and with at least a part designed to carry digital markings
    • G06K19/06Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code
    • G06K19/06187Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code with magnetically detectable marking

Definitions

  • the present invention relates to token systems in general, and more particularly, some embodiments relate to spatial analysis of token data.
  • T oken systems have been in use in modern civilization m various implementations to provide and control many forms of access Access that can be and often times is controlled by tokens can include physical access to rooms, buildings, areas and so on; electronic access to servers and data files; electronic account access, and so on
  • Another form of access controlled by tokens is the ability to conduct transactions such as, for example, credit, debit and other financial transactions
  • Credit cards, charge cards, debit cards, loyalty cards and other purchase-related tokens are used to provide the consumers with ready access to funds. Such transactions can enhance convenience of purchases, extend credit to customers, and so on
  • token was a physical object, such as a coin, that a locomotive engineer was required to have before entering a particular section of the railway When the train reached the end of the section, the driver left the token at a drop point so it could be to be used by the nexl train going the other way Because there was only one token for a given section of railway, the token system helped to ensure that only one train would be on that section of the track at a given time
  • the railway token system minimized the likelihood of head on collisions, but this simple token also limited the ability for trains to follow one another along a given section.
  • the system evolved into a token and ticket system. In this system, if a train reached a checkpoint and the token was present, the dnver was given a ticket to pass, leaving the token in place in case another train approached that section traveling in the same direction. Safeguards were implemented to ensure that tickets were correctly issued.
  • the physical token and ticket system evolved to include electronic signaling to control access to sections ot the railway
  • tokens to grant access includes charge cards, credit cards and debit cards.
  • Some att ⁇ b ⁇ te the 'invention' of credit cards to Edward Bellamy, who described them in his 19th century novel Looking Backward Fdriy cards were reportedly used in the early 20th century United States by fuel companies and by Western Union By mid century, Dmers C!ub produced a charge card for merchant purchases, which was followed shortly thereafter by American Express These cards, now ubiquitous in our society, allow customers to make purchases and conduct transactions with relative ease Early cards were embossed with a customer account number, which was manually transferred to a receipt via a carbon transfer process Modern cards, or tokens, have evolved to use electronic mechanisms of storing data including, for example, magnetic stripes, RFlD tags, and smart card and chip card technologies
  • tokens include government issued IDs such as driver's licenses and passports Such tokens can also be used to control access in various Forms
  • a passport can be used to control access to countries and regions
  • Passports can also be used to access employment and licensing opportunities as a document to prove the holder's citizenship
  • a d ⁇ ver's license is another form of token, allowing access to driving privileges, and to establishments requiring proof of identity, residency or age
  • tokens can include bank drafts, stock certificates, currency and other token items relating to finance
  • token examples can include tokens for physical access and security such as keys, card keys, RF or LC cards, RFID tokens, toll road transponders, and the like
  • Tokens can be static tokens, where the token data docs not change, or dynamic tokens, where the data changes over time or with each token use
  • An example of a static token is a magnetic stripe bankcard whose data remains the same with each swipe
  • An example ot a dynamic token is a garage door opener employing rolling codes, wherein the code changes with each use
  • Dynamic tokens are generally thought to be more secure than static tokens because with dynamic tokens, although data might copy from a gsven use, that data is not valid for subsequent uses
  • One downstdc of token access is the opportunity to defraud the system.
  • systems and methods for token authentication analyze token data over a plurality of read operations to compute a characteristic master signature for the token. This can be accomplished, for example by analyzing the token data statistically over a period of reads to compute a characteristic signature for the token. Similar techniques can be used to generate a subsequent signature that can be verified against the original characteristic signature to authenticate the token. For example, a signature can be generated on a per use basis and that signature verified against the characteristic signature to validate the token upon use. In other embodiments, the original characteristic signature can be generated in as few as a single swipe. Even in embodiments where the master signature is generated using a single read operation, that signature can be refined using data from one or more subsequent read operations.
  • a spatial frequency domain algorithm is used to extract a characteristic signature from variations in data encoding.
  • the systems and methods are configured to analyze periodic variations in the physical width of bits encoded on the token (such as bits magnetically encoded on a magnetic stripe of bankcard token) to generate a characteristic signature for that token or set of the token data. For example, in the case of a bankcard or other magnetic stripe card, the waveform representing some or all of the bits encoded on a track of the card can be analyzed to determine the approximate physical bit widths. The spatial frequency spectrum of the bit width profile can then be computed and the spatial spectral components can be computed and analyzed. For each spectral component, the total magnitude, vector component magnitudes, phase or any combination thereof can be used to create a signature for the track data.
  • the signature includes the series of numbers derived from these spectra! characteristics, and it is these numbers that are utilized as the characteristic signature for the token data.
  • the widths do not necessarily need to be spectrally analyzed directly, but that various functions can be applied before or after computation of the spectrum to generate the signature. Processing functions such as frequency transformations, statistical analysis and other processing techniques can be used to generate a signature from the data. For example, spectral-component magnitude information could be used to determine which phases of which components arc used as part of a signature because higher magnitude components are more likely to have more consistent phase values.
  • a hybrid approach can be used wherein the component phase values are sent as part of the signature only when a component has a magnitude greater than some minimum threshold.
  • the process includes the operations of using a magnetic stripe reader to read data encoded on the magnetic stripe of the card; calculating spatial characteristics of the data encoded on the card; and determining a characterization signature of the magnetic stripe card using the spatial characteristics, wherein the signature characterizes the magnetic stripe card.
  • the step of calculating the spatial characteristics comprises identifying relative associations or correlations of spatial characteristics of the data encoded on the magnetic stripe card.
  • the step of calculating the spatial characteristics can include calculating spatial characteristics of the bit waveform of the encoded data in a segment of the data, and computing a function of the bit spatial characteristics for the bits in the segment.
  • a bit width can be compared to other bit widths or to an average of bit widths, a ratio of bit widths can be computed, bit averages can be compared to other bit averages, median bit widths can be compared to average bit widths, or ratios of bit widths to can be compared to peck widths.
  • bit spatial characteristic comprises bit width, a peak shape, a rise time, or a fall time
  • calculating spatial characteristics of the data encoded on the card can include steps of parameterizing the waveform of the data encoded on the card to determine spatial features of the waveform and characterizing a subset of the spatial features of the waveform to determine spatial characteristics of the waveform.
  • calculating the spatial characteristics can include calculating an average bit width for a segment of the data, determining a deviation between individual bits in the segment and the average bit wjdth calculated for the segment; and averaging the deviations determined for the individual ones of the bits in the segment to determine an average deviation for the segment
  • a segment can be all or a part of the data encoded on the magnetic stripe card. Further, the steps of calculating, determining and averaging are performed for a plurality of segments of data encoded on the magnetic stnpe, and wherein the fingerprint comprises the average deviations for some or all of the plurality of the segments.
  • the segments can be made up of portions of the data comprising a consecutive plurality of bits, or a plurality of non- consecutive individual bits of the encoded data
  • the steps of calculating, determining and averaging performed for the plurality of segments are performed for a plurality of read operations and wherein the method further compnses the step of determining the consistency of results obtained for each segment across the multiple read operations. Accordingly, the fingerprint can be further determined based on the consistency of the results across the multiple read operations
  • calculating the spatial characteristics includes the operations of calculating the bit width for bits of data in a segment of the data, and performing a Fou ⁇ er transform of the bit widths calculated in the segment
  • the process can further include a step of discarding unreliable spectral components
  • the step of calculating the spatial characteristics can include measuring a spatial parameter of data bits encoded on the magnetic stnpe for multiple read operations; identifying consistent variations across ail bits; and disregarding inconsistent variations for purposes of authenticating the magnetic stripe card.
  • the steps of calculating the spatial characteristics arc performed for a plurality of read operations to determine a master characterization based on a plurality of data sets.
  • Figure 1 is a diagram illustrating one example of a transaction network with which the present invention can be implemented.
  • Figure 2 is a diagram illustrating an example process for generating a signature in accordance with one embodiment of the invention.
  • Figure 3 is an operational flow diagram illustrating an example process for gathering token data for signature generation or verification in accordance to one embodiment of the invention.
  • Figure 4 is a diagram illustrating another sample process for signature generation in accordance with one embodiment of the invention.
  • Figure 5 is a diagram illustrating an example process for removing obscuring characteristics from the data set in accordance with one embodiment of the invention.
  • Figure 6 is a diagram illustrating an example computing module including an example processing device in accordance with one embodiment of the invention
  • FIG. 1 is a diagram illustrating one example of a transaction network within which the present invention can be implemented
  • an example of transaction network is a token network that can be used to autho ⁇ ze and settle purchases of various goods and services
  • Illustrative examples of implementations of such a transaction network are the charge card, credit card and debit card transaction networks used to facilitate purchase transactions and banking transactions by and among merchants and other businesses, banks and other financial institutions and individuals
  • the customer utilises a charge card, credit card, debit card or other token as a symbol of his or her identity, or as an identification ol the account he or she would like to have charged tor the transaction
  • a token 101 can be used by the customer to facilitate the transaction
  • examples of token 101 can include a charge card, debit card, credit card, loyalty card, or other token that can be used to identify such items as the customers, their account, and other relevant information
  • a card such as a credit or debit card can include various forms of technology to store data such as a magnetic stripe technology, processor or smart card technologv, bar code technology or other technology used to encode account number or other identification or information onto the token
  • a properly encoded token can include various forms of information relating to the purchaser such as, for example, the identity ot the purchaser, information associated with the purchaser's account, the issuing bank or other financial institution, the expiration date, and so on
  • a credit card can be used with a conventional magnetic st ⁇ pe included on one side thereof
  • Conventional magnetic stripes can include three tracks of data I urther to this example, the ISO/IEC standard 781 1 , which is used by banks, specifies that track one ts 210 bits per inch (bpi), and holds 79 six-bit plus parity bit read-only characters, track two is 75 bpi, and holds 40 four-bit plus parity bit characters, and track three ts 210 bpi, and holds 107 four-bit plus parity bit characters
  • Most conventional credit cards use tracks one and two for financial transactions frack three ts a read/write track (that includes an encrypted PIN, country code, currency units, amount authorized), but its usage is not standardized among banks
  • the information on track one is contained m two formats Format A, is reserved lor proprietary use of the card issuer Format B includes the following
  • LRC Longitudinal Redundancy Check
  • a merchant may ask the customer to present his or her form of payment, which in this example is the credit card.
  • the customer presents the token 101 (e.g., credit card) to the merchant for use in the transaction terminal 104.
  • the credit card can be swiped by a magnetic stripe reader or otherwise placed to be read by the data capture device 103.
  • data capture device 103 can include any of a variety of forms of magnetic stripe readers to extract the data from the credit card.
  • Other forms of data capture devices ! 03. or readers may also be used to obtain the information from token 10! , For example, bar code scanners, smart card readers, RFlD readers, near-field devices, and other mechanisms can be used to obtain some or all of the data associated with token 101 and used for the transaction.
  • the data capture device is in communicative contact with a terminal 104, which can include any of a number of terminals including, for example, a point of sale terminal, point of access terminal, an authorization station, automated teller machine, computer terminal, personal computer, work stations, cell phone, PDA, handheld computing device and other data entry devices.
  • a terminal 104 can include any of a number of terminals including, for example, a point of sale terminal, point of access terminal, an authorization station, automated teller machine, computer terminal, personal computer, work stations, cell phone, PDA, handheld computing device and other data entry devices.
  • the data capture device 103 is physically separated, but in communicative contact with, the terminal 104, in other environments these items can be in the same housing or in integrated housings.
  • the customer or cashier can swipe the customer's credit card using the card-swipe device, which reads the card data and forwards it to the cashier's cash register or other terminal 104
  • the magnetic stripe reader or other data capture device 103 is physically separated, but in communicative contact with, the termina! 104
  • these items can be in the same housing or in integrated housings
  • a magnetic stripe reader may be placed on a counter in proximity to a customer, and electronically coupled to the cash register terminal.
  • the cash register terminal may also have a magnetic stripe reader for the sales clerk's use.
  • the customer may be asked to present a form of ID to verify his or her identity as imprinted on the token 101
  • the user may be required to key in a PfN or other authentication entry
  • the terminal 104 can be configured to print out a receipt (or may display a signature page on a display screen) and the customer may be required to sign ior his or her purchases, thus providing another level of authentication for the purchase
  • terminal 104 can be configured to store a record of the transaction for recordkeepmg and reporting purposes Further, in some environments, a record ol the transaction may be kept for later account settlement
  • terminal 104 seeks authorization from one or more entities in a transaction processing network 123
  • the merchant may seek approval from, the acquiring bank, the issuing bank, a clearing house, or other entity that may be used to approve such transactions
  • the transaction processing network 123 can be a single entity or institution, or it can be a plurality of entities or institutions
  • transaction processing network may include one or more processors or clearing houses to clear transactions on behalf of issuing banks and acquiring banks.
  • the transaction processing network also include those issuing banks and acquiring banks
  • one or more entities such as Global Payments, Visa, American Express, and so on, might be a part of transaction processing network.
  • Each of these entities may have one or more processing servers to handle transactions
  • a gateway 120 can be included to facilitate routing of transactions, authorizations and settlements to and from the appropriate entity or entities within the transaction processing network 123.
  • the gateway can use the BIN (Bank Identification Number) obtained from token 101 and passed to gateway 120 to route the transaction to the ⁇ nstitution(s) associated with the given BIN
  • BIN Bank Identification Number
  • not all transactions are necessarily routed through a gateway 120 fransactions may take other paths to the appropriate entity or entities in the transaction processing network ⁇ 2 ⁇
  • the term gateway as used herein is not restricted to conventional gateway applications, but is broad enough to encompass any server or computing system configured to perform any or all of the described functionality The term gateway is used tor convenience only
  • transaction-processing network 123 is illustrated using only one block in the example block diagram environment of Figure 1 , this block can represent a single entity to which the transaction is routed for authorization or settlement, or a network of entities that may be involved with authorization and settlement Communications among the various components in the example environment can be wired or wireless transmissions using a variety of communication technologies formats and protocols as may be deemed appropriate for the given environment
  • the currently available credit card processing network and protocol structure can be utilized as the environment with which embodiments of the invention can be implemented
  • Various features and functions of the invention can be implemented within current or legacy transaction processing networks to provide enhanced security
  • a system and method for token authentication analyzes token data over one or more read operations and analyzes the token data to compute a characteristic signature for the token Spatial characteristics of the token data can be used to generate a signature that characterizes the token Bit widths, rise times, bit profiles and other characteristics can be measured to generate a signature
  • a frequency domain algorithm is used to extract a characteristic signature from variations in data encoding
  • the system and method can be configured to analyze pe ⁇ odic variations in the physical width of bits encoded on the token (such as bits encoded on a magnetic stripe of the token) to generate a characteristic signature for that token or set of the token data
  • a characteristic signature for that token or set of the token data For example, in the case of a bdiikcard or other magnetic stnpe card, some or al! of the bits encoded on a track of the magnetic stripe card can be analyzed to determine the approximate physical widths fhe spatial frequency spectrum of the bit width profile can then be computed and the spectral components can be analyzed For each component, the total magnitude, vector component magnitudes, phase or any combination thereof can be used to create a signature for the track data
  • the signature includes the series of numbers derived from these spectral characteristics It should be noted that the widths or other spatial characteristics do not necessarily need to be spectrally analy7ed directly, but that pre-processing functions can be applied before the spectrum is computed Spectral magnitude information could be used to determine which phases of which spectra! components are used as part of a signature because higher magnitude spectral components are more likely to have more consistent phase values A hybrid approach can be used wherein the phase values are sent as part of the signature only when a spectral component has a magnitude greater than some minimum threshold In addition to or in place of frequency transformations, statistical analysis and other processing techniques can be used to generate a signature from the data
  • bit widths of the data are analyzed to compute the spectrum
  • these bit widths do not need to be analyzed in sequence or in groups of sequential bits
  • the ordering of the bits can be arbitrary, but it is preferable that the ordering is the same each time the signature is generated such that the signatures can be expected to be consistent
  • spectral components in the spatial frequency spectrum may be used in any order to generate the signature 1 he raw magnitude, phase or other parameter values of one or more spectral components may be passed as a signature or further processing of the spectral components may be performed in an attempt to include more useful information into smaller packets of data.
  • the master signature is generated using data from a plurality of read operations
  • the level of correlation or consistency of the data elements from one read operation to the next can be used as a factor in weighting the data elements used to generate a composite signature or to determine whether to discard any data elements when generating the composite signature
  • the spatial characteristics can be measured and the measurement repeated multiple times to determine consistency.
  • the consistency can be used to generate a weighting factor for each element and the weighting factor assigned to its corresponding element for the authentication operations. Accordingly, in one embodiment less consistent elements can be given less weight as they are applied to the authentication process and more consistent elements can be given greater weight.
  • the master characterization can be generated in a single swipe, or read operation, without regard to consistency or correlation among multiple data read events.
  • subsequent read operations can be used to update the originally generated signature regardless of whether the originally generated signature was generated using a single data set or multiple data sets from multiple read operations.
  • a bankcard can be issued without an initial master characterization generated in advance of issuance. Then, when the card is swiped during use (for example, at the first use or during subsequent uses), the data gathered from that swipe is used to generate the master signature. Accordingly, the token need not be characterized as part of the manufacturing process and can be characterized to obtain a master signature once it is put into use.
  • a signature can be generated based on the second swipe and that signature compared to signature generated on the first swipe to validate the card. Additionally, if the card is validated, data from the first and second swipes can be used to generate the master signature. This process can continue as the card is swiped such that a master signature for a given swipe can be derived from all of the previous swipes of the card, or from a subset of those previous swipes.
  • the confidence in the master signature can also increase statistically such that the comparison is theoretically more stringent with each new swipe.
  • the multiple data sets for each element can be averaged together to generate a single factor for each clement and, in some environments, the averaging over multiple reads can cancel out the effects of noise, environment or other phenomenon.
  • the inclusion of a weighting factor based on consistency can strengthen the characterization and authentication by diminishing the effect of less reliable data elements while placing greater emphasis on the more reliable ones.
  • FIG. 2 is a diagram illustrating an example process for generating a signature in accordance with one embodiment of the invention.
  • this and other embodiments described herein are described in terms of the example environment of a magnetic stripe card. It will become apparent to one of ordinary skill in the art after reading this description how these embodiments extend to other forms of token and token data.
  • the token data is read.
  • a magnetic stripe reader is used to read the card.
  • the token data is read and stored across multiple read operations such that statistical analysis such as that described crizow can be perfo ⁇ ned. This can be implemented to allow the consistency of the data parameters to be evaluated and considered across multiple uses of the token.
  • the token data is read multiple times and the strength of one or more parameters of the token data is determined to evaluate the veracity of the data parameters.
  • variations across multiple reads of the token data are identified and analyzed.
  • various parameters of the token data are analyzed and consistency of the data across multiple read operations is used as a metric to determine whether or not to use that data in generating the token signature or to determine weighting factors to assign to data elements used in the characterization. Accordingly, for data that is used, a weighting factor can also be assigned to that data, which, in one embodiment, can be performed in step 147,
  • the bit widths of the data bits in the token data set are compared or statistically analyzed across the multiple sets of data.
  • the multiple data sets can be done using the same token reader or using multiple different token readers to allow effects of instrument variations to be averaged out of the characterization.
  • the systems and methods described herein can be implemented to look at the level of correlation of the data from swipe to swipe of the magnetic stripe data. For example, data sets from multiple swipes having high levels of correlation amongst one another can be retained, while data sets from one or more swipes having a lower level of correlation with the other swipes can be discarded or ignored. Accordingly, such embodiments can pay more attention or give greater weight to consistent or highly correlated data and ignore or give lesser weight to uncorrelated, less reliable, data.
  • the data set is built to include the elements regardless of their weight or consistency, and that metric is applied at the authentication stage. In other embodiments, the consistency or reliability can be used to discard data elements for signature generation.
  • bit widths of the data bits in the card track data can be measured across multiple swipes, and the consistency of the measured bit width can be used to determine whether the system is obtaining valid data lor each bit Ln cases where the bit-width measurement might be faulty - for example, masked by noise ⁇ the bit width measurement for that bit from one swipe to the next will nave high levels ot va ⁇ ation or inconsistency In other words, the standard deviation of the dataset might be high.
  • the bit width information itself is collected from the presented token and the measured bit width compared against the expected value or average value to determine the signature or authenticity of the card
  • peak rise/fall times, bit slopes or other wavelorm characteristics can be measured and used to toon the signature
  • the systems and methods are not limited to measuring and comparing bit widths but can rely on or utih/e other data parameters to characterize the token data
  • step 143 if the level of correlation of an investigated parameter across the multiple data sets is below a predetermined threshold, that parameter can be discarded However, where there is a sufficiently high degree of correlation, that parameter is valid data 145 and can be used to build the signature for the token in step 152
  • the unreliable elements can actually be discarded, and the characterization assembled using the remaining elements
  • all the elements can be retained and weighting factors, semaphores or other techniques can be used to affect the utilization of those elements in the authentication process
  • the process can be repeated for a plurality of data parameters to build the signature using a sufficiently large data set
  • the systems and methods described herein do not require selection of a particular threshold of correlation of a parameter among the data sets or a minimum number of parameters
  • These met ⁇ cs can vary from application to application and can be chosen tor a particular application based on the realities oi application such as, for example, the repeatability of the measurements of token data, the amount of data to be authenticated, and the quality of the signature desired by the system implementer
  • the data can be checked for consistency and then threshold checked to determine a weighting or to determine whether U is reliable enough to be used as a component for the signature
  • the threshold check is done at step 143 and then a weighting factor is created for the valid data elements at step 147
  • the weighting could be performed based on consistency and the threshold check (i e , step 141) could be performed based on the weighting
  • the example of Figure 2 depicts an embodiment in which the signature can be built on the fly while the algorithm returns via step 150 to obtain additional parameters.
  • the signature can be computed after all the parameters are obtained. Again, data elements need not actually be discarded as this example illustrates, but can be weighted or flagged for the authentication process.
  • the example embodiments described herein are merely examples, and variations to those examples are within the spirit and scope of the embodiments described herein.
  • those spectral components that arc returning inconsistent or uncorrelated data can be discarded or assigned low or zero weights, and the more highly correlated spectral components assigned higher weights for the signature. For example, where the Fourier transform indicates that the magnitude level for a given spectral component is so small that noise is basically dominating, making the phase look random, that component can be deemed to be uncorrelated, and of insufficient strength to be used in reliably authenticating a token.
  • Another example evaluates the magnitude of various spectral components, and determines whether to use the phase measurements based on the magnitudes. If the magnitude level is high enough, the phase can be deemed to be reliable. In this and other embodiments, determination can be done using even as few as a single swipe. An exception to this can be in situations where the magnitude of the spectral component is very small, because small spectral components typically require higher accuracy.
  • phase of most spectral components tends to be somewhat repeatable from one swipe to another swipe of the same card. Swipes of different cards generally produce significantly different results. An exception to this can be where the magnitude of the spectral component is very small because the spectral components require higher accuracy and less noise to produce repeatable results. Accordingly, one approach either passes the phase of only the highest magnitude spectral components or passes the magnitude instead of the phase for low magnitude spectra! components or does some combination of both.
  • the Fourier transform can be used to look for and identify periodic characteristics in the data such as bit widths, bit width variations, and so on.
  • the Fourier transform can be used to process token data and to compute a corresponding spatial Fourier spectrum, where each bin of the spectrum corresponds to elements of the signature. For example, the phase or magnitude of the various spectra! components can make up elements of the signature. As such, periodic characteristics in the bit-width profile can be evaluated.
  • the Fourier transform is described in this document as one example of spectral analysis, any type of frequency domain analysis (Fourier transform, DCT, wavelet, filter banks, autocorrelation, etc.) could be used to obtain a signature based on the spatial frequency characteristics of the encoded data.
  • a hybrid approach can be implemented that uses both a frequency transformation and statistical analysis to characterize both the spectral and spatial properties of the encoded data.
  • the multiple read operations are performed using the same token with the same token reader. In other embodiments, multiple read operations can be performed across a plurality of different token readers.
  • the analysis can be across an entire track of data (or other unit of data, depending on the token-type), or the track data can be broken up into smaller segments for analysis and comparison. For example, track data can be broken into segments of one or more bits in length. The segments need not be analyzed in any particular order, but for valid correlations, it is desirable that the same segment delineations be used across multiple read operations and the each segment be correlated against its corresponding segment in the other data sets.
  • methodologies for generating a master signature can be done initially when the bankcard or other token is created. For example, upon creation of a bankcard, one or more swipes can be made using one or more card reader terminals and the data analyzed to generate an initial characteristic signature, or master signature, for the token. This initial signature can be used as the baseline or master signature against which the card is authenticated for subsequent read operations. Accordingly, a bankcard can be created by the manufacturer, the data encoded thereon, and a master signature generated based on one or more swipes of the card.
  • the width of the bits or other spatial characteristics or metrics are used to generate a usage signature, which is compared against the master signature to authenticate or check the authenticity of the card. If the per-us ⁇ signature of the presented token satisfies the signature correlation criteria, the master signature stored for the original token, the presented token can be said to be authentic.
  • systems and methods described herein can be used to generate a usage or per-use signature to authenticate a subsequent use of a token against its master signature.
  • systems and methods described herein can be used to generate a master signature for a bankcard, and this generation can occur upon manufacture or otherwise prior to initial use of the card, or it can be created or be updated during card usage.
  • the systems and methods described herein can be applied upon card usage, such as at the point-of-sale, and the signature generated at that time of use can be presented to authenticate the card to determine its authenticity.
  • a token writer used to create the tokens can be characterized to generate a master signature. Then, every token created by that writer should possess similar encoding characteristics, at least within the range of variation allowed by the physical characteristics of the token. These characteristics can include bit width errors, inter-symbot modulation, or any other non-ideality in the writer that could manifest itself as identifiable signature on cards created by that writer.
  • the master signature can be stored in a centralized or otherwise accessible location, such as in the transaction processing network.
  • a fraud detection module or system can be implemented in gateways or other shared locations in the network, or individual entities such as issuing banks can implement a fraud detection system to authenticate the cards.
  • the per-use generated signature can be compared (for example, by the fraud detection module) against the master signature as part of the transaction process.
  • the per-use signature generated at the time of sale can be generated at the point-of-sale terminal and the signature itself sent to the transaction processing network for authentication.
  • the raw data used to generate the per-use authenticating signature can be sent to the transaction network for signature generation and authentication against the master signature.
  • the characteristic master signature can be generated or updated across multiple reads that are performed as a bankcard or other token is applied in normal use.
  • the token data metrics for example the bit widths
  • This data can be sent to a fraud detection facility or other location (for example, in the transaction network) to be useci to generate or update the official signature.
  • the token signature can be updated and change over time For example, environmental conditions such as changes in temperature can cause the width of the bits encoded on the card to change. Likewise, mechanical interaction ot the magnetic stripe with the read head across multiple operations can cause some displacement of the magnetic particles sufficient to change the signature of the card to a certain degree In addition, variations that occur over the life of the card may change the level of correlation in the parameters used to generate the signature.
  • the components that make up the signature may change over time
  • highly correlated component may become uncorrelated in a previously uncorrelated component may become highly correlated
  • the master signature can be maintained and updated using data from multiple swipes over the life of the token.
  • systems and methods described herein for generating and authenticating a signature can be applied or reapplied over the lifetime of token usage Accordingly, the master signature against which the token is authenticated can be recalculated from time to time and indeed may change over time.
  • FIG. 3 is an operational flow diagram illustrating an example process for gathering and operating on token data for signature generation or verification in accordance to one embodiment of the invention.
  • the token data is read.
  • the card can be read using a magnetic-stripe reader.
  • the data that is read is segmented into a plurality of data strings.
  • a given track or tracks of data can be broken up into a number of segments such as 4. 6, 8 or other quantity of segments of one or more bits in length.
  • the data can be processed on a segment- by-segment basis as described below.
  • the waveform of the data encoded on the card can be parameterized to determine spatial features of the waveform and a subset of some or all of the spatial features can be characterized to determine spatia! characteristics of the waveform.
  • bit-width information is calculated for a first segment.
  • the width of each bit in the data segment is measured and these measurements are used to calculate the average bit width for that segment.
  • a peak detector can be used to detect bit width and then the average of the bit widths is determined.
  • each bit width for the data bits in the segment are compared to the average width for that segment computed in step 177 to determine the deviation or absolute distance of each bit from the average.
  • the deviation can be computed as a physical distance such as, for example, the absolute value of the difference in bit width.
  • the deviation can be determined as simply greater than or less than the average bit width.
  • the deviation can be computed and used as a percentage of or a ratio to the average bit width (e.g., x.x% deviation from the average).
  • the deviations can be quantized into buckets such as, for example within 10%, between 10% and 20%, and so on.
  • Computing the deviation as a percentage of the average can be used in some embodiments to allow, for example, effects of thermal expansion or contraction to be canceled out. This can be used to help eliminate false negatives when the bit widths of an authentic card change across the card or segment such as might result from thermal variations.
  • the master signature might be generated using a higher resolution mode, and the ongoing per-use signatures generated and sent using the tower resolution mode Accordingly, in such an implementation, for ongoing uses, the lower resolution data set can be transmitted to a server tor authentication
  • bit width deviation can be used for the signature elements
  • the deviations computed for each bit in step 180 are averaged This yields the average deviation from the average bit width tor that segment This average value becomes the first component of the signature tor the token
  • step 187 this process of determining an average bit width tor a segment, determining the deviations for the individual bits in that segment from the average, and determining the average of deviations is repeated tor each segment used, and the result for each segment becomes part ot the signature for the token
  • a segment can theoretically be as small as a single bit, this illustrates that either a segment-by-segment approach or a bit-by-bit approach can be implemented
  • the process of determine spatial features of the waveform and characterizing a subset of some or all ot the spatial features of the waveform to determine spatial characteristics of the waveform can be done on a segment-by- segment basts for multiple segments of magnetic stnpe data
  • the average deviations are collected and used as the card signature in instances where an initial card signature is being generated against which subsequent signatures will be authenticated, it may be desirable to generate this initial card signature over multiple data sets such as, for example, described above wsth reference to Figure 2 Accordingly, the process described respect to Figure 3 can, in some embodiments, be repeated over multiple card swipes (or token reads)
  • correlation or consistency of the individual data sets among multiple read operations can be used as a basis for assigning a weighting to the data elements or for keeping or discarding various data elements For e ⁇ am ⁇ !e, where the average of the deviations computed for a given segment is inconsistent for that segment across multiple reads, that average might be discarded or it might be given a lesser weight in the overall signature Accordingly, if a segment is not used in generating the master signature tor a token, that segment does not need to be computed to authenticate subsequent token uses In instances where data from a particular segment is not used in the signature or flagged for
  • threshold generally speaking, the greater level of certainty can be gained in token authentication.
  • too high a threshold can result in not enough data points for full signature data set. Therefore, noise and other factors that can result in inconsistency in the system should be considered when setting the threshold.
  • Statistical analysis can be used to determine threshold settings that can be used to achieve desired fraud detection capabilities.
  • weightings can be assigned based on the statistical consistency of the value for a given segment. For example, weightings can be assigned in a manner proportional to the level of consistency among the datasets such that data segments that have higher levels of consistency or correlation from one data set to the next are given a higher rating and data segments have lower levels of consistency are given a lower rating.
  • the proportionality between the rating and consistency can be linear or nonlinear and a threshold algorithm could be used to discard data sets below a certain level of consistency.
  • the weighting is assigned based on statistical consistency of the data across the data sets obtained. For example, in a frequency domain or spectral analysis, the phase components can be weighted based on their magnitudes. In another example, where the data measurements are returning data sets with a small standard deviation, this indicates a high level of consistency. In other words, if the results are consistent among the multiple swipes, this gives a higher level of certainty that the data used to generate the signature, or this element of the signature, is valid data and is data that should be highly repeatable and therefore expected upon subsequent uses of the card when it is validated at the point-of-salc. Accordingly, a high level of repeatability even where the deviation is higher than expected can lead to higher levels of certainty in the authentication process.
  • a scaling factor can be applied to the data set before the signature is transferred.
  • a scaling factor can be applied to normalize the data set to the maximum average deviation thereby making more efficient use of the bandwidth used to transmit the signature from a source to its ultimate destination. This can be implemented to allow the system to utilize the full range of the data size.
  • Data can be collected to indicate which spectra! components are used to generate the signature so that verification can be performed using the same spectra! components.
  • a value can be used to represent an index into a lookup table containing spectral component groupings. This index can be used to tei! a fraud detection system for authentication system which spectra! components were used in the signature so that that system can use only those spectra! components when authenticating the comparison signature.
  • Another technique for specifying which spectral components are used in a signature is to encode a delta value into the signature indicating how far away the next spectral component is.
  • the fraud detection system can keep a database of components that are received during use.
  • a list of spectral components used to generate a signature can also be used by a fraud detection system to determine the likelihood of certain spectral components being used such that the receipt of unlikely or unused spectra! components might indicate an attempt at fraud.
  • Figure 4 is a diagram illustrating another sample process for signature generation in accordance with one embodiment of the invention.
  • Figure 4 is similar to Figure 3, however, whereas Figure 3 presents an embodiment wherein deviations from an average bit widths are calculated, Figure 4 presents an embodiment where a Fourier transform of the spatial features is used to determine characteristics for signature generation.
  • step 205 the token data is read and, in the illustrated example, the data stream is segmented into a plurality of segments at step 206.
  • the spatial characteristics for a first segment are extracted at step 212. Note that as mentioned below, the data does not need to be divided and the process can be performed for an entire collected data set.
  • a Fourier transform of the bit widths measured for that segment is calculated. This recasts the bit width information into the frequency domain to enable spectral characterization of the data in that segment.
  • the DC component of the resulting spectrum can be discarded in one embodiment.
  • the bit widths themselves are collected and used in the Fourier transform.
  • the error in the bit widths i.e. the deviation from the measured bit widths as compared to the ideal bit widths
  • the error or deviation which is 0.001 inches would be used for the Fourier transform. Accordingly, the errors in bit width are calculated rather than the actual bit widths themselves
  • ihe bit-width information using this process can be either relative or absolute
  • the spectral components are analyzed and unwanted spectral components arc discarded or given a Sower weight Spectral components that are deemed to be unreliable - for example spectra! components that indicate that data is not repeatable from swipe to swipe - are spectral components that are considered unwanted
  • the relevant spectral components are evaluated to generate the signature
  • the process of Figure 4 can be use across multiple swipes or token reads Indeed, these multiple reads are what allow the system in step 217 to determine which data are the unwanted or nou- informative data items fe g , which are uncorrelated or varying to the extent that it is unreliable)
  • the data stream ts broken into segments before the Fourier transform is computed
  • the data can be segmented into a base 2 number (e g , 64) lor a more efficient Fourier transform
  • a discrete time Fourier transform can be computed on the entire swipe of the card data, and diflerent components of the Fourier spectrum, whether the magnitude or phase of the spectral component, can be utilized for the signature
  • the process can be implemented to take one large high-resolution Fourier transform or multiple lower-resolution Fourier transforms
  • One advantage of implementing the process to utilize a large Fourier transform is that low frequency characteristics ol the bit-width variations can be captured across the entire swipe
  • the segment can be larger to facilitate capture oi tower frequency characteristics, and tn other embodiments, the entire data set can be used and the segmentation step 206 avoided
  • the segments can but need not be segments ot contiguous bits For example, every nth bit or other nonsequential selection of bits can be chosen for the data segments 1 he bit order can be chosen differently for different tokens or token types
  • a pseudorandom generator can be used to define the bit order
  • a credit card number or other seed can be used to seed the pseudorandom generator to provide some level of randomness to the sequence from card to card before computing the signature
  • Using a card or token feature such as the credit card number to seed the pseudorandom generator can provide a mechanism to ensure that the same order is used across multiple swipes Utilizing such mechanisms to change the order of data bits in the segment can be implemented in some embodiments to make the system more difficult to hack or reverse engineer the signature generation.
  • Figure 5 is a diagram illustrating an example process for removing obscuring characteristics from the data set m accordance with one embodiment of the invention
  • data that can obscure signature data can be discarded or given lesser weight in the signature process This can include things such as such as bad or weak data that might be caused by card anomalies, manufacturing tolerances on the card or reader, environmental factors, anomalies on the card, or other weak or obscured data that might not be consistent from swipe to swipe
  • a se ⁇ es of one or more spatial characteristics of the token data are determined
  • the average bit width or the Fourier transform of the data can be computed to reveal the spatial characteristics of the data
  • obscuring characteristics are determined and removed from the data set as illustrated at steps 31 1 and 315
  • averaging btt widths m a segment and comparing a measured bit width to the average can be a technique for minimizing, reducing or removing obscuring characteristics For example, it the temperature of the card rises, causing expansion m the card, the bit widths could rise as well In such a circumstance, comparing an obtained bit- width to a stored bit width could yield a false positive However, if the obtained bit width is compared to the average, and this deviation compared to the master deviation, external factors that might affect most of or all of the bits can be accounted for
  • the DC component or average of the data set is discarded This can be useful, for example, to factor out environmental conditions from the signature or authentication process Io illustrate this consider the example scenario where a credit card is presented for authentication in an extreme temperature environment This environment can cause the physical embodiment of the track data to expand or contract affecting the average bit width. Therefore, if the DC component of the Fourier transform or the average bit width is used to authenticate the card, this environmental condition could increase the likelihood of an authentic card being falsely identified as a fraudulent card Therefore, discarding this component can help remove obscuring characteristics from the data set
  • the methodologies for building a data set and removing obscuring variations or characteristics from the data set can be used not only to build the master signature for the token, but also to generate a subsequent signature for a presented token to compare to the master signature
  • a signature generated is compared to a known vaiid master signature and if the comparison is valid (step 332) the token is authenticated 301 In the comparison is not valid, this is an indication of an invalid token 303
  • systems and methods described herein can be used to build a master signature for a token and also to generate an authenticating signature to validate the authenticity of the token
  • the master signature can be generated over time or over a plurality of data sets to increase the level of confidence tn the signature.
  • the more a card is swiped the more data in the data set, and the greater the statistical confidence in the signature
  • Data parameters or characteristics that are shown to be more consistent over a large number of samplings tend to be more reliable parameters or characteristics for signature comparison
  • more recent data sets are weighted more heavily than older data sets.
  • data sets beyond a certain age can be discarded.
  • a FIFO or other iike scenario can be utih/ed such that every time (or every x times) a card is swiped, the oldest data set can be thrown away and the signature recomputed with the newest data set added into the computation
  • a weighted averaging filter equation can be used to make the effect ot the old swipes decay away as new swipes come in Accordingly, the data set can be limited for the master signature to a predetermined number ot previous swipes.
  • a time factor can be applied to loosen the signature matching requirements based on how long it has been since the token was last read. Even it the card has not been swiped in a while, its characteristics can change over time simply, for example, by being carried in a wallet or purse or the iike. Accordingly, in one embodiment, if a card is swiped for the first time in a long period of time in the authentication requirements can be loosened, and likewise, the master signature can be regenerated based on the new swiped data if the card is indeed authenticated.
  • weighting can be used for components of the signature, and various methodologies can be used to assign weightings to the components.
  • the weightings are assigned such that the sum of all the weightings adds up to 1. Accordingly, each weight can be a number less than 1.
  • the comparison for each segment can be computed such that the result of the comparison is a number between 0 and L For example, the per use value for a segment can be subtracted from the master value for that segment and the result divided by the master value, resulting in a number whose absolute value is between 0 and 1.
  • the comparison result for each of the 8 components from a single swipe is as follows: ( 1) 0,90; (2) 0.71 ; (3) 0.96; (4) 0.88; (5) 0.93; (6) 0.72; (7) 0.97; (8) 0.70.
  • the valid signature threshold is set below 0.8386 then this would be identified as a valid card, otherwise it would be flagged as a fraud.
  • this score can be used in a plurality of different ways.
  • the repeatability of the final signature comparison value i.e. the score
  • this method could be used instead of using the variability of each component in the signature then all weights would most likely be set to the same value (probably 1/8 01 in the above example) so that each comparison would contribute the same amount to the final score. Of course this would be less accurate than using the repeatability of each component.
  • a combination of both methods could also be used (i.e. statistically-based weights and a statistically-based scoring threshold), but testing would probably be required to see if this works any better than just using individual component weightings.
  • Signature data can be quantized or scaled to fit into a predefined pay load package for communication. For example, if a maximum space of 10 8-bit values is available to transfer the signature then, the signature can include 10 signature components quantized into 8-bit values, 20 signature components quantized into 4-bit values, and so on. These methods would generate an 80-bit signature to take advantage of the available 80-bit payload space Each of these could also use one or more bits to generate each component Furthermore, the payload could contain multiple types of signature data. For example, the 1 st few bits of the character could contain the magnitude data and the next tew bits could contain the phase data. As another example, a portion of the word could contain spectral data and another portion the average deviations
  • module might describe a given unit of functionality that can be performed in accordance with one or more embodiments of the present invention
  • a module might be implemented utilizing any form of hardware, software, or a combination thereof.
  • processors, control iers, ASICs, PLAs, logical components, software routines or other mechanisms might be implemented to make up a moduie.
  • the various modules described herein might be implemented as discrete modules or the functions and features described can be shared in part or in total among one or more modules.
  • va ⁇ ous features and functionality described herein may be implemented in any given application and can be implemented in one or more separate or shared modules in various combinations and permutations Even though various features or elements of functionality may be individually described or claimed as separate modules, one of ordinary skill in the art will understand that these features and functionality can be shared among one or more common software and hardware elements, and such description shall not require or imply that separate hardware or software components are used to implement such features or functionality.
  • computing module 600 may represent, for example, computing or processing capabilities found within desktop, laptop and notebook computers; hand-held computing devices (PDA's, smart phones, cell phones, palmtops, etc.); mainframes, supercomputers, workstations or servers; or any other type of special-purpose or general-purpose computing devices as may be desirable or appropriate for a given application or environment.
  • Computing module 600 might also represent computing capabilities embedded within or otherwise available to a given device.
  • a computing module might be found in other electronic devices such as, for example, digital cameras, navigation systems, cellular telephones, portable computing devices, modems, routers, W ⁇ Ps, terminals and other electronic devices that might include some form of processing capability.
  • Computing module 600 might include, for example, one or more processors, controllers, control modules, or other processing devices, such as a processor 604.
  • Processor 604 might be implemented using a general-purpose or special-purpose processing engine such as, for example, a microprocessor, controller, or other control logic.
  • processor 6(M) is connected to a bus 602, although any communication medium can be used to facilitate interaction with other components of computing module 600 or to communicate externally.
  • Computing module 600 might also include one or more memory modules, simply referred to herein as main memory 608. For example, preferably random access memory (RAM) or other dynamic memory, might be used for storing information and instructions to be executed by processor 604. Main memory 608 might also be used for storing temporary variables or other intermediate information during execution of instructions to be executed by processor 604. Computing module 600 might likewise include a read only memory (“ROM”) or other static storage device coupled to bus 602 for storing static information and instructions for processor 604.
  • ROM read only memory
  • the computing module 600 might also include one or more various forms of information storage mechanism 610, which might include, for example, a media drive 612 and a storage unit interface 620.
  • the media drive 612 might include a drive or other mechanism to support fixed or removable storage media 614.
  • storage media 614 might include, for example, a hard disk, a floppy disk, magnetic tape, cartridge, optical disk, a CD or DVD, or other fixed or removable medium that is read by, written to or accessed by media dnve 612
  • the storage media 614 can include a computer usable storage medium having stored therein computer software or data
  • information storage mechanism 610 might include other similar instrumentalities for allowing computer programs or other instructions or data to be loaded into computing module 600
  • Such instrumentalities might include, for example, a fixed or removable storage unit 622 and an interface 620.
  • Such storage units 622 and interfaces 620 can include a program cartridge and cartridge interface, a removable memory (for example, a flash memory or other removable memory module) and memory slot, a PCMCIA slot and card, and other fixed or removable storage units 622 and interfaces 620 that allow software and data to be transferred from the storage unit 622 to computing module 600 5
  • Computing module 600 might also include a communications interface 624
  • Communications interface 624 might be used to allow software and data to be transferred between computing module 600 and external devices
  • communications interface 624 might include a modem or soltmodem, a network interface (such as an Ethernet, network interface card, WiMedia, IFFF 802 XX or other interface), a communications port (such as for0 example, a USB port, IR port, RS232 port Bluetooth ⁇ interface, or other port), or other communications interface
  • Software and data transferred via communications interface 624 might typically be carried on signals, which can be electronic, electromagnetic (which includes optical) or other signals capable of being exchanged by a given communications interface 624
  • signals might be provided to communications interface 624 via a channel 628 lhis5 channel 628 might carry signals and might be implemented using a wired or wireless communication medium
  • These signals can deliver the software and data from memory or other storage medium in one computing system to memory or other storage medium in computing system 600
  • Some examples of a channel might include a phone line, a cellular link, an RF link, an optical link, a network interface
  • computer program medium and “computer usable medium” are used to generally refer to physical storage media such as, for example memory 608, storage unit 620, and media 614. I hese and other va ⁇ ous forms of computer program media or computer usable media may be involved in storing one or more sequences of one or more instructions to a processing device for execution. Such instructions embodied on the medium, are generally referred to as “computer program code” or a “computer program product” (which may be grouped in the form of computer programs or other groupings) When executed, such instructions might enable the computing module 600 to perform features or functions of the present invention as discussed he ⁇ e ⁇ i
  • die invention is described above in terms of various exemplary embodiments and implementations, it should be understood that the various features, aspects and functionality described in one or more of the individual embodiments are not limited in their applicability to the particular embodiment with which they arc described, but instead can be applied, alone or in va ⁇ ous combinations, to one or more of the other embodiments of the invention, whether or not such embodiments are described and whether or not such features are presented as being a part of a described embodiment Thus, the breadth and scope of the present invention should not be limited by any of the above-described exemplary embodiments.

Abstract

Systems and methods for token authentication analyze token data over one or more read operations to compute a characteristic master Signature for the token. This can be accomplished, for example by analyzing the token data statistically to compute a characteristic signature for the token. Similar techniques can be used to generate a subsequent signature that can be verified against the original characteristic signature to authenticate the token. For example, a signature can be generated on a per use basis and that signature verified against the characteristic signature to validate the token upon use.

Description

TOKEN AUTHENTICATION USING SPATIAL CHARACTERISTICS
Technical Field
The present invention relates to token systems in general, and more particularly, some embodiments relate to spatial analysis of token data.
Description of the Related Art
T oken systems have been in use in modern civilization m various implementations to provide and control many forms of access Access that can be and often times is controlled by tokens can include physical access to rooms, buildings, areas and so on; electronic access to servers and data files; electronic account access, and so on Another form of access controlled by tokens is the ability to conduct transactions such as, for example, credit, debit and other financial transactions Credit cards, charge cards, debit cards, loyalty cards and other purchase- related tokens are used to provide the consumers with ready access to funds. Such transactions can enhance convenience of purchases, extend credit to customers, and so on
As modern society has evolved, so have our tokens Early tokens included physical objects such as coins, documents, and other physical objects One example of a simple physical object token is the subway token made famous by the New York subway system This simple token resembled a coin and could be purchased at kiosks and were used to control access to the subway system. Another example of simple physical token for granting access was the early railway token developed in the 19th century for the British railway system Thus token was a physical object, such as a coin, that a locomotive engineer was required to have before entering a particular section of the railway When the train reached the end of the section, the driver left the token at a drop point so it could be to be used by the nexl train going the other way Because there was only one token for a given section of railway, the token system helped to ensure that only one train would be on that section of the track at a given time
The railway token system minimized the likelihood of head on collisions, but this simple token also limited the ability for trains to follow one another along a given section. As such, the system evolved into a token and ticket system. In this system, if a train reached a checkpoint and the token was present, the dnver was given a ticket to pass, leaving the token in place in case another train approached that section traveling in the same direction. Safeguards were implemented to ensure that tickets were correctly issued. As technology evolved, the physical token and ticket system evolved to include electronic signaling to control access to sections ot the railway
Another example of tokens to grant access includes charge cards, credit cards and debit cards. Some attπbυte the 'invention' of credit cards to Edward Bellamy, who described them in his 19th century novel Looking Backward Fdriy cards were reportedly used in the early 20th century United States by fuel companies and by Western Union By mid century, Dmers C!ub produced a charge card for merchant purchases, which was followed shortly thereafter by American Express These cards, now ubiquitous in our society, allow customers to make purchases and conduct transactions with relative ease Early cards were embossed with a customer account number, which was manually transferred to a receipt via a carbon transfer process Modern cards, or tokens, have evolved to use electronic mechanisms of storing data including, for example, magnetic stripes, RFlD tags, and smart card and chip card technologies
Other examples of tokens include government issued IDs such as driver's licenses and passports Such tokens can also be used to control access in various Forms For example, a passport can be used to control access to countries and regions Passports can also be used to access employment and licensing opportunities as a document to prove the holder's citizenship A dπver's license is another form of token, allowing access to driving privileges, and to establishments requiring proof of identity, residency or age Still other examples of tokens can include bank drafts, stock certificates, currency and other token items relating to finance Still further token examples can include tokens for physical access and security such as keys, card keys, RF or LC cards, RFID tokens, toll road transponders, and the like
As these examples illustrate, the use αf tokens for vaπous forms of access has gamed popularity in various business and industries and has evolved to embrace newly developed technologies 'Tokens are not limited to these examples, but can take on vaπous forms and use vaπous instrumentalities and control, govern or arbitrate vaπous foπns ot access in a variety of different ways Tokens can be static tokens, where the token data docs not change, or dynamic tokens, where the data changes over time or with each token use An example of a static token is a magnetic stripe bankcard whose data remains the same with each swipe An example ot a dynamic token is a garage door opener employing rolling codes, wherein the code changes with each use Dynamic tokens are generally thought to be more secure than static tokens because with dynamic tokens, although data might copy from a gsven use, that data is not valid for subsequent uses One downstdc of token access, however, is the opportunity to defraud the system. For example, stolen or counterfeited tokens are often used to gain unauthorized access, In fact, the Federal Trade Commission reports that credit and charge card fraud costs cardholders and issuers hundreds of millions of dollars each year. As the importance of token access has grown so has the ability of those seeking to defraud the system. These attackers often seek to gain access to valuable data through multiple means including operating system and application security weaknesses and often use sophisticated computer algorithms to attack token security. Such attacks may take the form of repetitive attempts to access the protected system, with each attempt providing additional information. The security of the data is improved when an attacker must make a tremendous number of encryption queries or invest an unreasonable amount of computation πme to gain access to encrypted information.
However, simple static tokens such as bankcards for example, typically do not require sophisticated algorithms for attack. Because these tokens are static and the data does not change from use to use, the token can be compromised simply by copying the token data to another token. Indeed, bankcard data is often copied or skimmed by attackers who gain access to the cards and perfonn an authorized swipe using a card reader that stores information. Cards can also be skimmed by attackers who attach their own counterfeit card reader to a legitimate card reader (such as at an ATM terminal) to skim the data from an unwitting user when he or she uses the ATM terminal.
Brief Summary of Embodiments of the Invention
According to varioαs embodiments of the invention, systems and methods for token authentication analyze token data over a plurality of read operations to compute a characteristic master signature for the token. This can be accomplished, for example by analyzing the token data statistically over a period of reads to compute a characteristic signature for the token. Similar techniques can be used to generate a subsequent signature that can be verified against the original characteristic signature to authenticate the token. For example, a signature can be generated on a per use basis and that signature verified against the characteristic signature to validate the token upon use. In other embodiments, the original characteristic signature can be generated in as few as a single swipe. Even in embodiments where the master signature is generated using a single read operation, that signature can be refined using data from one or more subsequent read operations. In one embodiment, a spatial frequency domain algorithm is used to extract a characteristic signature from variations in data encoding. In some embodiments, the systems and methods are configured to analyze periodic variations in the physical width of bits encoded on the token (such as bits magnetically encoded on a magnetic stripe of bankcard token) to generate a characteristic signature for that token or set of the token data. For example, in the case of a bankcard or other magnetic stripe card, the waveform representing some or all of the bits encoded on a track of the card can be analyzed to determine the approximate physical bit widths. The spatial frequency spectrum of the bit width profile can then be computed and the spatial spectral components can be computed and analyzed. For each spectral component, the total magnitude, vector component magnitudes, phase or any combination thereof can be used to create a signature for the track data.
In one embodiment, the signature includes the series of numbers derived from these spectra! characteristics, and it is these numbers that are utilized as the characteristic signature for the token data. It should be noted that the widths do not necessarily need to be spectrally analyzed directly, but that various functions can be applied before or after computation of the spectrum to generate the signature. Processing functions such as frequency transformations, statistical analysis and other processing techniques can be used to generate a signature from the data. For example, spectral-component magnitude information could be used to determine which phases of which components arc used as part of a signature because higher magnitude components are more likely to have more consistent phase values. A hybrid approach can be used wherein the component phase values are sent as part of the signature only when a component has a magnitude greater than some minimum threshold.
Systems, methods and apparatus are presented that perform or are configured to perform operations for characterizing a magnetic stripe card based on spatial characteristics of data encoded on the magnetic stripe of the card. In one embodiment, the process includes the operations of using a magnetic stripe reader to read data encoded on the magnetic stripe of the card; calculating spatial characteristics of the data encoded on the card; and determining a characterization signature of the magnetic stripe card using the spatial characteristics, wherein the signature characterizes the magnetic stripe card. In some embodiments, the step of calculating the spatial characteristics comprises identifying relative associations or correlations of spatial characteristics of the data encoded on the magnetic stripe card. For example, the step of calculating the spatial characteristics can include calculating spatial characteristics of the bit waveform of the encoded data in a segment of the data, and computing a function of the bit spatial characteristics for the bits in the segment As an example, a bit width can be compared to other bit widths or to an average of bit widths, a ratio of bit widths can be computed, bit averages can be compared to other bit averages, median bit widths can be compared to average bit widths, or ratios of bit widths to can be compared to peck widths. In addition, the bit spatial characteristic comprises bit width, a peak shape, a rise time, or a fall time As another example, calculating spatial characteristics of the data encoded on the card can include steps of parameterizing the waveform of the data encoded on the card to determine spatial features of the waveform and characterizing a subset of the spatial features of the waveform to determine spatial characteristics of the waveform.
In a further embodiment, calculating the spatial characteristics can include calculating an average bit width for a segment of the data, determining a deviation between individual bits in the segment and the average bit wjdth calculated for the segment; and averaging the deviations determined for the individual ones of the bits in the segment to determine an average deviation for the segment A segment can be all or a part of the data encoded on the magnetic stripe card. Further, the steps of calculating, determining and averaging are performed for a plurality of segments of data encoded on the magnetic stnpe, and wherein the fingerprint comprises the average deviations for some or all of the plurality of the segments. The segments can be made up of portions of the data comprising a consecutive plurality of bits, or a plurality of non- consecutive individual bits of the encoded data
In another embodiment, the steps of calculating, determining and averaging performed for the plurality of segments are performed for a plurality of read operations and wherein the method further compnses the step of determining the consistency of results obtained for each segment across the multiple read operations. Accordingly, the fingerprint can be further determined based on the consistency of the results across the multiple read operations
In yet another embodiment, calculating the spatial characteristics includes the operations of calculating the bit width for bits of data in a segment of the data, and performing a Fouπer transform of the bit widths calculated in the segment The process can further include a step of discarding unreliable spectral components
In still another embodiment, the step of calculating the spatial characteristics can include measuring a spatial parameter of data bits encoded on the magnetic stnpe for multiple read operations; identifying consistent variations across ail bits; and disregarding inconsistent variations for purposes of authenticating the magnetic stripe card. The steps of calculating the spatial characteristics arc performed for a plurality of read operations to determine a master characterization based on a plurality of data sets.
Other features and aspects of the invention will become apparent from the following detailed description, taken in conjunction with the accompanying drawings, which illustrate, by way of example, the features in accordance with embodiments of the invention. The summary is not intended to limit the scope of the invention, which is defined solely by the claims attached hereto,
Brief Description of the Drawings
The present invention, in accordance with one or more various embodiments, is described in detail with reference to the following figures. The drawings are provided for purposes of illustration only and merely depict typical or example embodiments of the invention. These drawings are provided to facilitate the reader's understanding of the invention and shall not be considered limiting of the breadth, scope, or applicability of the invention. It should be noted that for clarity and ease of illustration these drawings are not necessarily made to scale.
Figure 1 is a diagram illustrating one example of a transaction network with which the present invention can be implemented.
Figure 2 is a diagram illustrating an example process for generating a signature in accordance with one embodiment of the invention.
Figure 3 is an operational flow diagram illustrating an example process for gathering token data for signature generation or verification in accordance to one embodiment of the invention.
Figure 4 is a diagram illustrating another sample process for signature generation in accordance with one embodiment of the invention.
Figure 5 is a diagram illustrating an example process for removing obscuring characteristics from the data set in accordance with one embodiment of the invention. Figure 6 is a diagram illustrating an example computing module including an example processing device in accordance with one embodiment of the invention
! he figures are not intended to be exhaustive or to limit the invention to the precise form disclosed It should be understood that the invention can be practiced with modification and alteration, and that the invention be limited only by the claims and the equivalents thereof
Detailed Description p. f the Embodiments of the Invention
Various embodiments described herein are directed toward systems and methods for providing token authentication, and systems and methods for generating signatures that can be used for token validation or authentication Befoτe describing the invention in detail, it is useful to describe an example environment with which the invention can be implemented One such example is that of a transaction card network including a token used to facilitate purchases or other transactions Figure 1 is a diagram illustrating one example of a transaction network within which the present invention can be implemented Referring now to Figure 1 , an example of transaction network is a token network that can be used to authoπze and settle purchases of various goods and services Illustrative examples of implementations of such a transaction network are the charge card, credit card and debit card transaction networks used to facilitate purchase transactions and banking transactions by and among merchants and other businesses, banks and other financial institutions and individuals Generally, in such a transaction network, the customer utilises a charge card, credit card, debit card or other token as a symbol of his or her identity, or as an identification ol the account he or she would like to have charged tor the transaction The token is typically accepted by the merchant, the account information read, and used to credit the transaction Merchants may ask for a driver's license or other form of identification to verify the identity of the purchaser in conjunction with the token issued
The token data is then sent to the appropriate financial institution or institutions, or other entities for processing Processing can include, in one or more steps, authorization approval and settlement of the account As the example in Figure 1 illustrates, a token 101 can be used by the customer to facilitate the transaction As stated, in this example environment, examples of token 101 can include a charge card, debit card, credit card, loyalty card, or other token that can be used to identify such items as the customers, their account, and other relevant information As a further example, a card such as a credit or debit card can include various forms of technology to store data such as a magnetic stripe technology, processor or smart card technologv, bar code technology or other technology used to encode account number or other identification or information onto the token As such, a properly encoded token can include various forms of information relating to the purchaser such as, for example, the identity ot the purchaser, information associated with the purchaser's account, the issuing bank or other financial institution, the expiration date, and so on
As only one example of a token 101 , a credit card can be used with a conventional magnetic stπpe included on one side thereof Conventional magnetic stripes can include three tracks of data I urther to this example, the ISO/IEC standard 781 1 , which is used by banks, specifies that track one ts 210 bits per inch (bpi), and holds 79 six-bit plus parity bit read-only characters, track two is 75 bpi, and holds 40 four-bit plus parity bit characters, and track three ts 210 bpi, and holds 107 four-bit plus parity bit characters Most conventional credit cards use tracks one and two for financial transactions frack three ts a read/write track (that includes an encrypted PIN, country code, currency units, amount authorized), but its usage is not standardized among banks
In a conventional credit card token, the information on track one is contained m two formats Format A, is reserved lor proprietary use of the card issuer Format B includes the following
Start sentinel — 1 character I ormat code~"B" — 1 character (alpha only) ■ Primary account number - up to 19 characters
Separator — 1 character
• Country code - 3 characters
• Name — 2-26 characters
• Separator — I character * Expiration date or separator — 4 characters or 1 character
• Discretionary data — enough characters to fill up to the maximum record length (79 characters total)
End sentinel — 1 character
Longitudinal Redundancy Check (LRC), a form of computed check character — I character The format for track two can be implemented as follows:
• Start sentinel — 1 character
Primary account number - up to 19 characters Separator -- 1 character • Country code — 3 characters
• Expiration date or separator — 4 characters or 1 character Discretionary data - enough characters to fill up to the maximum record length (40 characters tola!)
LRC — 1 character
Although a credit card with magnetic stripe data is only one example of a token that can be used in this and other environments, this example environment is often described herein in terms of a credit card implementation for clarity and for ease of discussion.
Upon entering into a transaction, a merchant may ask the customer to present his or her form of payment, which in this example is the credit card. The customer presents the token 101 (e.g., credit card) to the merchant for use in the transaction terminal 104. In one embodiment, the credit card can be swiped by a magnetic stripe reader or otherwise placed to be read by the data capture device 103. In the current example where a credit card utilizing a magnetic stripe is the token 101, data capture device 103 can include any of a variety of forms of magnetic stripe readers to extract the data from the credit card. Other forms of data capture devices ! 03. or readers, may also be used to obtain the information from token 10! , For example, bar code scanners, smart card readers, RFlD readers, near-field devices, and other mechanisms can be used to obtain some or all of the data associated with token 101 and used for the transaction.
The data capture device is in communicative contact with a terminal 104, which can include any of a number of terminals including, for example, a point of sale terminal, point of access terminal, an authorization station, automated teller machine, computer terminal, personal computer, work stations, cell phone, PDA, handheld computing device and other data entry devices. Although in many applications the data capture device 103 is physically separated, but in communicative contact with, the terminal 104, in other environments these items can be in the same housing or in integrated housings.
Continuing with the credit card example, the customer or cashier can swipe the customer's credit card using the card-swipe device, which reads the card data and forwards it to the cashier's cash register or other terminal 104 In one embodi merit, the magnetic stripe reader or other data capture device 103 is physically separated, but in communicative contact with, the termina! 104 In other environments, these items can be in the same housing or in integrated housings For example, in current implementations in retail centers, a magnetic stripe reader may be placed on a counter in proximity to a customer, and electronically coupled to the cash register terminal. The cash register terminal may also have a magnetic stripe reader for the sales clerk's use.
The customer may be asked to present a form of ID to verify his or her identity as imprinted on the token 101 For other transactions such as debit card transactions, the user may be required to key in a PfN or other authentication entry
Continuing with the current credit card example, the terminal 104 can be configured to print out a receipt (or may display a signature page on a display screen) and the customer may be required to sign ior his or her purchases, thus providing another level of authentication for the purchase In some environments, terminal 104 can be configured to store a record of the transaction for recordkeepmg and reporting purposes Further, in some environments, a record ol the transaction may be kept for later account settlement
Typically, before the transaction is approved, terminal 104 seeks authorization from one or more entities in a transaction processing network 123 For example, the merchant may seek approval from, the acquiring bank, the issuing bank, a clearing house, or other entity that may be used to approve such transactions Thus, depending on the token type, institutions involved and other factors, the transaction processing network 123 can be a single entity or institution, or it can be a plurality of entities or institutions As a further example, in one embodiment, transaction processing network may include one or more processors or clearing houses to clear transactions on behalf of issuing banks and acquiring banks. The transaction processing network also include those issuing banks and acquiring banks For example, one or more entities such as Global Payments, Visa, American Express, and so on, might be a part of transaction processing network. Each of these entities may have one or more processing servers to handle transactions
As illustrated in Figure 1 , a gateway 120 can be included to facilitate routing of transactions, authorizations and settlements to and from the appropriate entity or entities within the transaction processing network 123. For example, where a merchant accepts credit cards from numerous different institutions, the gateway can use the BIN (Bank Identification Number) obtained from token 101 and passed to gateway 120 to route the transaction to the ιnstitution(s) associated with the given BIN As iuustrated by flow arrow 122, not all transactions are necessarily routed through a gateway 120 fransactions may take other paths to the appropriate entity or entities in the transaction processing network \ 2~\ Additionally, the term gateway as used herein is not restricted to conventional gateway applications, but is broad enough to encompass any server or computing system configured to perform any or all of the described functionality The term gateway is used tor convenience only
Although transaction-processing network 123 is illustrated using only one block in the example block diagram environment of Figure 1 , this block can represent a single entity to which the transaction is routed for authorization or settlement, or a network of entities that may be involved with authorization and settlement Communications among the various components in the example environment can be wired or wireless transmissions using a variety of communication technologies formats and protocols as may be deemed appropriate for the given environment Ai one example, the currently available credit card processing network and protocol structure can be utilized as the environment with which embodiments of the invention can be implemented Various features and functions of the invention can be implemented within current or legacy transaction processing networks to provide enhanced security
Having thus described an example environment, the present invention is from time-to- time described herein in terms of this example environment Description m terms of this environment is provided to allow the various features and embodiments of the invention to be portrayed in the context of an exemplary .application After reading this description, it will become apparent to one of ordinary skill m the art how the invention can be implemented in different and alternative environments, including environments where it is necessary or desirable to encrypt data for transmission or storage
In various embodiments of the invention, a system and method for token authentication analyzes token data over one or more read operations and analyzes the token data to compute a characteristic signature for the token Spatial characteristics of the token data can be used to generate a signature that characterizes the token Bit widths, rise times, bit profiles and other characteristics can be measured to generate a signature In one embodiment, a frequency domain algorithm is used to extract a characteristic signature from variations in data encoding
Accordingly, the system and method can be configured to analyze peπodic variations in the physical width of bits encoded on the token (such as bits encoded on a magnetic stripe of the token) to generate a characteristic signature for that token or set of the token data For example, in the case of a bdiikcard or other magnetic stnpe card, some or al! of the bits encoded on a track of the magnetic stripe card can be analyzed to determine the approximate physical widths fhe spatial frequency spectrum of the bit width profile can then be computed and the spectral components can be analyzed For each component, the total magnitude, vector component magnitudes, phase or any combination thereof can be used to create a signature for the track data
In one embodiment, the signature includes the series of numbers derived from these spectral characteristics It should be noted that the widths or other spatial characteristics do not necessarily need to be spectrally analy7ed directly, but that pre-processing functions can be applied before the spectrum is computed Spectral magnitude information could be used to determine which phases of which spectra! components are used as part of a signature because higher magnitude spectral components are more likely to have more consistent phase values A hybrid approach can be used wherein the phase values are sent as part of the signature only when a spectral component has a magnitude greater than some minimum threshold In addition to or in place of frequency transformations, statistical analysis and other processing techniques can be used to generate a signature from the data
As noted above, in one embodiment the bit widths of the data are analyzed to compute the spectrum However, these bit widths do not need to be analyzed in sequence or in groups of sequential bits In some embodiments, the ordering of the bits can be arbitrary, but it is preferable that the ordering is the same each time the signature is generated such that the signatures can be expected to be consistent ϊn addition, spectral components in the spatial frequency spectrum may be used in any order to generate the signature 1 he raw magnitude, phase or other parameter values of one or more spectral components may be passed as a signature or further processing of the spectral components may be performed in an attempt to include more useful information into smaller packets of data.
As also noted above, in some embodiments, the master signature is generated using data from a plurality of read operations When multiple data gathering events are used to generate a composite signature, the level of correlation or consistency of the data elements from one read operation to the next can be used as a factor in weighting the data elements used to generate a composite signature or to determine whether to discard any data elements when generating the composite signature Voτ example, in one embodiment, the spatial characteristics can be measured and the measurement repeated multiple times to determine consistency. The consistency can be used to generate a weighting factor for each element and the weighting factor assigned to its corresponding element for the authentication operations. Accordingly, in one embodiment less consistent elements can be given less weight as they are applied to the authentication process and more consistent elements can be given greater weight.
In additional embodiments, the master characterization can be generated in a single swipe, or read operation, without regard to consistency or correlation among multiple data read events. In addition, subsequent read operations can be used to update the originally generated signature regardless of whether the originally generated signature was generated using a single data set or multiple data sets from multiple read operations. Foτ example, in one application a bankcard can be issued without an initial master characterization generated in advance of issuance. Then, when the card is swiped during use (for example, at the first use or during subsequent uses), the data gathered from that swipe is used to generate the master signature. Accordingly, the token need not be characterized as part of the manufacturing process and can be characterized to obtain a master signature once it is put into use. Further to this example, upon a second use of the bankcard, a signature can be generated based on the second swipe and that signature compared to signature generated on the first swipe to validate the card. Additionally, if the card is validated, data from the first and second swipes can be used to generate the master signature. This process can continue as the card is swiped such that a master signature for a given swipe can be derived from all of the previous swipes of the card, or from a subset of those previous swipes.
As the number of swipes increases, the confidence in the master signature can also increase statistically such that the comparison is theoretically more stringent with each new swipe. For example, the multiple data sets for each element can be averaged together to generate a single factor for each clement and, in some environments, the averaging over multiple reads can cancel out the effects of noise, environment or other phenomenon. Additionally, the inclusion of a weighting factor based on consistency can strengthen the characterization and authentication by diminishing the effect of less reliable data elements while placing greater emphasis on the more reliable ones.
Figure 2 is a diagram illustrating an example process for generating a signature in accordance with one embodiment of the invention. For ease of description, this and other embodiments described herein are described in terms of the example environment of a magnetic stripe card. It will become apparent to one of ordinary skill in the art after reading this description how these embodiments extend to other forms of token and token data. Referring now to Figure 2, in step 135 the token data is read. For example, in the case of a magnetic-stripe card, a magnetic stripe reader is used to read the card. Preferably, for generation of the original characteristic signature, the token data is read and stored across multiple read operations such that statistical analysis such as that described beiow can be perfoπned. This can be implemented to allow the consistency of the data parameters to be evaluated and considered across multiple uses of the token.
In step 138 and 141 of this example embodiment, the token data is read multiple times and the strength of one or more parameters of the token data is determined to evaluate the veracity of the data parameters. In one embodiment, variations across multiple reads of the token data are identified and analyzed. For example, various parameters of the token data are analyzed and consistency of the data across multiple read operations is used as a metric to determine whether or not to use that data in generating the token signature or to determine weighting factors to assign to data elements used in the characterization. Accordingly, for data that is used, a weighting factor can also be assigned to that data, which, in one embodiment, can be performed in step 147,
As stated above, in one implementation, the bit widths of the data bits in the token data set are compared or statistically analyzed across the multiple sets of data. The multiple data sets can be done using the same token reader or using multiple different token readers to allow effects of instrument variations to be averaged out of the characterization. The systems and methods described herein can be implemented to look at the level of correlation of the data from swipe to swipe of the magnetic stripe data. For example, data sets from multiple swipes having high levels of correlation amongst one another can be retained, while data sets from one or more swipes having a lower level of correlation with the other swipes can be discarded or ignored. Accordingly, such embodiments can pay more attention or give greater weight to consistent or highly correlated data and ignore or give lesser weight to uncorrelated, less reliable, data. In one embodiment, the data set is built to include the elements regardless of their weight or consistency, and that metric is applied at the authentication stage. In other embodiments, the consistency or reliability can be used to discard data elements for signature generation.
As a further example, the bit widths of the data bits in the card track data can be measured across multiple swipes, and the consistency of the measured bit width can be used to determine whether the system is obtaining valid data lor each bit Ln cases where the bit-width measurement might be faulty - for example, masked by noise ~ the bit width measurement for that bit from one swipe to the next will nave high levels ot vaπation or inconsistency In other words, the standard deviation of the dataset might be high Then, for authentication process, the bit width information itself is collected from the presented token and the measured bit width compared against the expected value or average value to determine the signature or authenticity of the card In yet a further example, peak rise/fall times, bit slopes or other wavelorm characteristics can be measured and used to toon the signature As these and the further examples described below illustrate, the systems and methods are not limited to measuring and comparing bit widths but can rely on or utih/e other data parameters to characterize the token data
Therefore, in step 143 if the level of correlation of an investigated parameter across the multiple data sets is below a predetermined threshold, that parameter can be discarded However, where there is a sufficiently high degree of correlation, that parameter is valid data 145 and can be used to build the signature for the token in step 152 In some embodiments, the unreliable elements can actually be discarded, and the characterization assembled using the remaining elements In other embodiments, all the elements can be retained and weighting factors, semaphores or other techniques can be used to affect the utilization of those elements in the authentication process
As indicated at step 150, the process can be repeated for a plurality of data parameters to build the signature using a sufficiently large data set The systems and methods described herein do not require selection of a particular threshold of correlation of a parameter among the data sets or a minimum number of parameters These metπcs can vary from application to application and can be chosen tor a particular application based on the realities oi application such as, for example, the repeatability of the measurements of token data, the amount of data to be authenticated, and the quality of the signature desired by the system implementer
As the example of Figure 2 illustrates, the data can be checked for consistency and then threshold checked to determine a weighting or to determine whether U is reliable enough to be used as a component for the signature In the example of Figure 2, the threshold check is done at step 143 and then a weighting factor is created for the valid data elements at step 147 In another example, the weighting could be performed based on consistency and the threshold check (i e , step 141) could be performed based on the weighting The example of Figure 2 depicts an embodiment in which the signature can be built on the fly while the algorithm returns via step 150 to obtain additional parameters. In another embodiment, the signature can be computed after all the parameters are obtained. Again, data elements need not actually be discarded as this example illustrates, but can be weighted or flagged for the authentication process. As these alternatives serve to illustrate, the example embodiments described herein are merely examples, and variations to those examples are within the spirit and scope of the embodiments described herein.
To help explain the above-described process further, consider another example in which data is gathered from a plurality of card swipes from a magnetic stripe reader, and a Fourier transform is performed on the data so that the data can be analyzed in the frequency domain. For example, in one application, the data from a plurality of card swipes is analyzed in the frequency domain and, in particular, the phase of each spectral component of the data is compared with the phase of the corresponding component in the other data sets. If, for example, after ten or twenty card swipes (or other quantity of swipes) all of the spectral components are consistent except for a few (for example, the fifth and twelfth spectral components), those spectral components that arc returning inconsistent or uncorrelated data can be discarded or assigned low or zero weights, and the more highly correlated spectral components assigned higher weights for the signature. For example, where the Fourier transform indicates that the magnitude level for a given spectral component is so small that noise is basically dominating, making the phase look random, that component can be deemed to be uncorrelated, and of insufficient strength to be used in reliably authenticating a token.
Another example evaluates the magnitude of various spectral components, and determines whether to use the phase measurements based on the magnitudes. If the magnitude level is high enough, the phase can be deemed to be reliable. In this and other embodiments, determination can be done using even as few as a single swipe. An exception to this can be in situations where the magnitude of the spectral component is very small, because small spectral components typically require higher accuracy.
With magnetic stripe data, the phase of most spectral components tends to be somewhat repeatable from one swipe to another swipe of the same card. Swipes of different cards generally produce significantly different results. An exception to this can be where the magnitude of the spectral component is very small because the spectral components require higher accuracy and less noise to produce repeatable results. Accordingly, one approach either passes the phase of only the highest magnitude spectral components or passes the magnitude instead of the phase for low magnitude spectra! components or does some combination of both.
It should be noted that the Fourier transform can be used to look for and identify periodic characteristics in the data such as bit widths, bit width variations, and so on. The Fourier transform can be used to process token data and to compute a corresponding spatial Fourier spectrum, where each bin of the spectrum corresponds to elements of the signature. For example, the phase or magnitude of the various spectra! components can make up elements of the signature. As such, periodic characteristics in the bit-width profile can be evaluated. Although the Fourier transform is described in this document as one example of spectral analysis, any type of frequency domain analysis (Fourier transform, DCT, wavelet, filter banks, autocorrelation, etc.) could be used to obtain a signature based on the spatial frequency characteristics of the encoded data. In addition, a hybrid approach can be implemented that uses both a frequency transformation and statistical analysis to characterize both the spectral and spatial properties of the encoded data.
In some embodiments, the multiple read operations are performed using the same token with the same token reader. In other embodiments, multiple read operations can be performed across a plurality of different token readers. In addition, the analysis can be across an entire track of data (or other unit of data, depending on the token-type), or the track data can be broken up into smaller segments for analysis and comparison. For example, track data can be broken into segments of one or more bits in length. The segments need not be analyzed in any particular order, but for valid correlations, it is desirable that the same segment delineations be used across multiple read operations and the each segment be correlated against its corresponding segment in the other data sets.
In some embodiments, methodologies for generating a master signature can be done initially when the bankcard or other token is created. For example, upon creation of a bankcard, one or more swipes can be made using one or more card reader terminals and the data analyzed to generate an initial characteristic signature, or master signature, for the token. This initial signature can be used as the baseline or master signature against which the card is authenticated for subsequent read operations. Accordingly, a bankcard can be created by the manufacturer, the data encoded thereon, and a master signature generated based on one or more swipes of the card. When the cardholder uses the card, for example, in a point-of-sale transaction, the width of the bits or other spatial characteristics or metrics are used to generate a usage signature, which is compared against the master signature to authenticate or check the authenticity of the card. If the per-usε signature of the presented token satisfies the signature correlation criteria, the master signature stored for the original token, the presented token can be said to be authentic.
As this illustrates, in addition to generating a master signature for the token, systems and methods described herein can be used to generate a usage or per-use signature to authenticate a subsequent use of a token against its master signature. For example, systems and methods described herein can be used to generate a master signature for a bankcard, and this generation can occur upon manufacture or otherwise prior to initial use of the card, or it can be created or be updated during card usage. Likewise, the systems and methods described herein can be applied upon card usage, such as at the point-of-sale, and the signature generated at that time of use can be presented to authenticate the card to determine its authenticity.
In embodiments, a token writer used to create the tokens can be characterized to generate a master signature. Then, every token created by that writer should possess similar encoding characteristics, at least within the range of variation allowed by the physical characteristics of the token. These characteristics can include bit width errors, inter-symbot modulation, or any other non-ideality in the writer that could manifest itself as identifiable signature on cards created by that writer.
Accordingly, in some embodiments, the master signature can be stored in a centralized or otherwise accessible location, such as in the transaction processing network. As a further example, a fraud detection module or system can be implemented in gateways or other shared locations in the network, or individual entities such as issuing banks can implement a fraud detection system to authenticate the cards. For transactions, the per-use generated signature can be compared (for example, by the fraud detection module) against the master signature as part of the transaction process. The per-use signature generated at the time of sale can be generated at the point-of-sale terminal and the signature itself sent to the transaction processing network for authentication. Alternatively, the raw data used to generate the per-use authenticating signature can be sent to the transaction network for signature generation and authentication against the master signature.
In another embodiment as indicated above, the characteristic master signature can be generated or updated across multiple reads that are performed as a bankcard or other token is applied in normal use. For example, as a cardholder uses his or her bankcard for multiple point- of-sale transactions, the token data metrics (for example the bit widths) can be collected across these multiple transactions and used to generate a signature in accordance with the systems and methods described herein This data can be sent to a fraud detection facility or other location (for example, in the transaction network) to be useci to generate or update the official signature.
Regardless of whether the master signature is generated through plurality of read operations at the time of manufacture or across multiple read operations during use, the token signature can be updated and change over time For example, environmental conditions such as changes in temperature can cause the width of the bits encoded on the card to change. Likewise, mechanical interaction ot the magnetic stripe with the read head across multiple operations can cause some displacement of the magnetic particles sufficient to change the signature of the card to a certain degree In addition, variations that occur over the life of the card may change the level of correlation in the parameters used to generate the signature. As such, the components that make up the signature may change over time For example, in an embodiment that uses a Fourier transform to look at the phase of the spectral components, over time highly correlated component may become uncorrelated in a previously uncorrelated component may become highly correlated Accordingly, the master signature can be maintained and updated using data from multiple swipes over the life of the token.
As these examples illustrate, in some applications, systems and methods described herein for generating and authenticating a signature can be applied or reapplied over the lifetime of token usage Accordingly, the master signature against which the token is authenticated can be recalculated from time to time and indeed may change over time.
Ideally, it would be ideal to have a system where swipes of the same card always reproduce exactly the same signature values, and swipes of different cards produce values that are random relative to each other. Likewise, a system that has these values bounded to a finite range by maximum and minimum values and values uniformly distnbuted across a range can be advantageous. Having a finite range can also be beneficial in that the values can be quantified into a predetermined number of levels within that range In a frequency domain embodiment using the phase, for example, the phase can help to meet this criteria because the phase is bounded to a finite range between -180° and +180°. In addition, tow magnitude spectral components can be managed (either using selective spectral components or using a phase/magnitude approach) helping to meet the reproducibility requirement. Figure 3 is an operational flow diagram illustrating an example process for gathering and operating on token data for signature generation or verification in accordance to one embodiment of the invention. Referring now to Figure 3, in step 172, the token data is read. For example, in the case of a bankcard or other magnetic stripe card, the card can be read using a magnetic-stripe reader. In step 175, the data that is read is segmented into a plurality of data strings. For example, in the case of the bankcard, a given track or tracks of data can be broken up into a number of segments such as 4. 6, 8 or other quantity of segments of one or more bits in length. In cases where the data is broken up into the segments, the data can be processed on a segment- by-segment basis as described below.
After the data is read, the waveform of the data encoded on the card can be parameterized to determine spatial features of the waveform and a subset of some or all of the spatial features can be characterized to determine spatia! characteristics of the waveform. In step 177, bit-width information is calculated for a first segment. In one embodiment, the width of each bit in the data segment is measured and these measurements are used to calculate the average bit width for that segment. For example, in the case of a magnetic stripe card, a peak detector can be used to detect bit width and then the average of the bit widths is determined.
In step 180, each bit width for the data bits in the segment are compared to the average width for that segment computed in step 177 to determine the deviation or absolute distance of each bit from the average. In one embodiment, the deviation can be computed as a physical distance such as, for example, the absolute value of the difference in bit width. In another embodiment, the deviation can be determined as simply greater than or less than the average bit width. In a further embodiment, the deviation can be computed and used as a percentage of or a ratio to the average bit width (e.g., x.x% deviation from the average). In yet another embodiment, the deviations can be quantized into buckets such as, for example within 10%, between 10% and 20%, and so on. Computing the deviation as a percentage of the average can be used in some embodiments to allow, for example, effects of thermal expansion or contraction to be canceled out. This can be used to help eliminate false negatives when the bit widths of an authentic card change across the card or segment such as might result from thermal variations.
Note that in embodiments that use an over/under approach such as to simply note whether a bit width is greater than or less than the average, less bandwidth can be consumed than embodiments that use a finer resolution such as x.xx% greater than or less than the average - or even x.xx% from average. Therefore, this can be a consideration in system implementation. Also, it is possible to use a hybnd approach in vaπous implementations For example, in one implementation, the master signature might be generated using a higher resolution mode, and the ongoing per-use signatures generated and sent using the tower resolution mode Accordingly, in such an implementation, for ongoing uses, the lower resolution data set can be transmitted to a server tor authentication
In some embodiments, the bit width deviation can be used for the signature elements However, in another embodiment, as shown in the example of Figure 3, at step 183, the deviations computed for each bit in step 180 are averaged This yields the average deviation from the average bit width tor that segment This average value becomes the first component of the signature tor the token
As illustrated by step 187, this process of determining an average bit width tor a segment, determining the deviations for the individual bits in that segment from the average, and determining the average of deviations is repeated tor each segment used, and the result for each segment becomes part ot the signature for the token Although a segment can theoretically be as small as a single bit, this illustrates that either a segment-by-segment approach or a bit-by-bit approach can be implemented In more general terms, the process of determine spatial features of the waveform and characterizing a subset of some or all ot the spatial features of the waveform to determine spatial characteristics of the waveform, can be done on a segment-by- segment basts for multiple segments of magnetic stnpe data
In the example process described with reference to Figure 3, the average deviations are collected and used as the card signature in instances where an initial card signature is being generated against which subsequent signatures will be authenticated, it may be desirable to generate this initial card signature over multiple data sets such as, for example, described above wsth reference to Figure 2 Accordingly, the process described respect to Figure 3 can, in some embodiments, be repeated over multiple card swipes (or token reads) As also described above, correlation or consistency of the individual data sets among multiple read operations can be used as a basis for assigning a weighting to the data elements or for keeping or discarding various data elements For eκamρ!e, where the average of the deviations computed for a given segment is inconsistent for that segment across multiple reads, that average might be discarded or it might be given a lesser weight in the overall signature Accordingly, if a segment is not used in generating the master signature tor a token, that segment does not need to be computed to authenticate subsequent token uses In instances where data from a particular segment is not used in the signature or flagged for non-use in authentication, a threshold of correlation or consistency can be established as a metric for determining whether the data should be used. The higher the threshold, generally speaking, the greater level of certainty can be gained in token authentication. However, too high a threshold can result in not enough data points for full signature data set. Therefore, noise and other factors that can result in inconsistency in the system should be considered when setting the threshold. Statistical analysis can be used to determine threshold settings that can be used to achieve desired fraud detection capabilities.
Where a weighting scheme is used, weightings can be assigned based on the statistical consistency of the value for a given segment. For example, weightings can be assigned in a manner proportional to the level of consistency among the datasets such that data segments that have higher levels of consistency or correlation from one data set to the next are given a higher rating and data segments have lower levels of consistency are given a lower rating. The proportionality between the rating and consistency can be linear or nonlinear and a threshold algorithm could be used to discard data sets below a certain level of consistency.
Note that in one embodiment, the weighting is assigned based on statistical consistency of the data across the data sets obtained. For example, in a frequency domain or spectral analysis, the phase components can be weighted based on their magnitudes. In another example, where the data measurements are returning data sets with a small standard deviation, this indicates a high level of consistency. In other words, if the results are consistent among the multiple swipes, this gives a higher level of certainty that the data used to generate the signature, or this element of the signature, is valid data and is data that should be highly repeatable and therefore expected upon subsequent uses of the card when it is validated at the point-of-salc. Accordingly, a high level of repeatability even where the deviation is higher than expected can lead to higher levels of certainty in the authentication process.
Although not illustrated in Figure 3, a scaling factor can be applied to the data set before the signature is transferred. For example, in embodiments where average deviations are used to generate the signature, a scaling factor can be applied to normalize the data set to the maximum average deviation thereby making more efficient use of the bandwidth used to transmit the signature from a source to its ultimate destination. This can be implemented to allow the system to utilize the full range of the data size. Data can be collected to indicate which spectra! components are used to generate the signature so that verification can be performed using the same spectra! components. For example, in one embodiment, a value can be used to represent an index into a lookup table containing spectral component groupings. This index can be used to tei! a fraud detection system for authentication system which spectra! components were used in the signature so that that system can use only those spectra! components when authenticating the comparison signature.
Another technique for specifying which spectral components are used in a signature is to encode a delta value into the signature indicating how far away the next spectral component is. As with the previous method, the fraud detection system can keep a database of components that are received during use. In addition, a list of spectral components used to generate a signature can also be used by a fraud detection system to determine the likelihood of certain spectral components being used such that the receipt of unlikely or unused spectra! components might indicate an attempt at fraud.
Figure 4 is a diagram illustrating another sample process for signature generation in accordance with one embodiment of the invention. Figure 4 is similar to Figure 3, however, whereas Figure 3 presents an embodiment wherein deviations from an average bit widths are calculated, Figure 4 presents an embodiment where a Fourier transform of the spatial features is used to determine characteristics for signature generation. Referring now to Figure 4, in step 205, the token data is read and, in the illustrated example, the data stream is segmented into a plurality of segments at step 206. The spatial characteristics for a first segment are extracted at step 212. Note that as mentioned below, the data does not need to be divided and the process can be performed for an entire collected data set.
In step 215, a Fourier transform of the bit widths measured for that segment is calculated. This recasts the bit width information into the frequency domain to enable spectral characterization of the data in that segment. The DC component of the resulting spectrum can be discarded in one embodiment. In some embodiments, the bit widths themselves are collected and used in the Fourier transform. In an alternative embodiment, the error in the bit widths (i.e. the deviation from the measured bit widths as compared to the ideal bit widths) can be used with a Fourier transform. For example, assume a token where the bit with supposed to be 0.014 inches wide, but the measured bit widths is 0.015 inches. In this example, the error or deviation, which is 0.001 inches would be used for the Fourier transform. Accordingly, the errors in bit width are calculated rather than the actual bit widths themselves In other words, ihe bit-width information using this process can be either relative or absolute
At step 217 the spectral components are analyzed and unwanted spectral components arc discarded or given a Sower weight Spectral components that are deemed to be unreliable - for example spectra! components that indicate that data is not repeatable from swipe to swipe - are spectral components that are considered unwanted At step 220, the relevant spectral components are evaluated to generate the signature As with the embodiments described above, the process of Figure 4 can be use across multiple swipes or token reads Indeed, these multiple reads are what allow the system in step 217 to determine which data are the unwanted or nou- informative data items fe g , which are uncorrelated or varying to the extent that it is unreliable)
En the embodiment illustrated in figure 4, the data stream ts broken into segments before the Fourier transform is computed For example, in one embodiment, the data can be segmented into a base 2 number (e g , 64) lor a more efficient Fourier transform However, in another embodiment a discrete time Fourier transform can be computed on the entire swipe of the card data, and diflerent components of the Fourier spectrum, whether the magnitude or phase of the spectral component, can be utilized for the signature Accordingly, the process can be implemented to take one large high-resolution Fourier transform or multiple lower-resolution Fourier transforms One advantage of implementing the process to utilize a large Fourier transform is that low frequency characteristics ol the bit-width variations can be captured across the entire swipe Accordingly, in some embodiments, the segment can be larger to facilitate capture oi tower frequency characteristics, and tn other embodiments, the entire data set can be used and the segmentation step 206 avoided
In embodiments where it is broken into segments, the segments can but need not be segments ot contiguous bits For example, every nth bit or other nonsequential selection of bits can be chosen for the data segments 1 he bit order can be chosen differently for different tokens or token types In some embodiments, a pseudorandom generator can be used to define the bit order For example, a credit card number or other seed can be used to seed the pseudorandom generator to provide some level of randomness to the sequence from card to card before computing the signature Using a card or token feature such as the credit card number to seed the pseudorandom generator can provide a mechanism to ensure that the same order is used across multiple swipes Utilizing such mechanisms to change the order of data bits in the segment can be implemented in some embodiments to make the system more difficult to hack or reverse engineer the signature generation.
Figure 5 is a diagram illustrating an example process for removing obscuring characteristics from the data set m accordance with one embodiment of the invention In one embodiment, data that can obscure signature data can be discarded or given lesser weight in the signature process This can include things such as such as bad or weak data that might be caused by card anomalies, manufacturing tolerances on the card or reader, environmental factors, anomalies on the card, or other weak or obscured data that might not be consistent from swipe to swipe
Referring now to Figure 5, in step 302 the token data is read In step 306, a seπes of one or more spatial characteristics of the token data are determined For example, in accordance with embodiments described above, the average bit width or the Fourier transform of the data can be computed to reveal the spatial characteristics of the data From this data set, obscuring characteristics are determined and removed from the data set as illustrated at steps 31 1 and 315 In terms of examples described above, averaging btt widths m a segment and comparing a measured bit width to the average can be a technique for minimizing, reducing or removing obscuring characteristics For example, it the temperature of the card rises, causing expansion m the card, the bit widths could rise as weil In such a circumstance, comparing an obtained bit- width to a stored bit width could yield a false positive However, if the obtained bit width is compared to the average, and this deviation compared to the master deviation, external factors that might affect most of or all of the bits can be accounted for
As another example, in one embodiment the DC component or average of the data set is discarded This can be useful, for example, to factor out environmental conditions from the signature or authentication process Io illustrate this consider the example scenario where a credit card is presented for authentication in an extreme temperature environment This environment can cause the physical embodiment of the track data to expand or contract affecting the average bit width. Therefore, if the DC component of the Fourier transform or the average bit width is used to authenticate the card, this environmental condition could increase the likelihood of an authentic card being falsely identified as a fraudulent card Therefore, discarding this component can help remove obscuring characteristics from the data set
Likewise, embodiments described above where variations of individual bits from the average can also have the same effect. In addition, uncorrelatcd or inconsistent data points as described above can also have the effect of obscuring valid data.
As also described above, the methodologies for building a data set and removing obscuring variations or characteristics from the data set can be used not only to build the master signature for the token, but also to generate a subsequent signature for a presented token to compare to the master signature In the case of this latter scenario, at step 320, a signature generated is compared to a known vaiid master signature and if the comparison is valid (step 332) the token is authenticated 301 In the comparison is not valid, this is an indication of an invalid token 303
Λs the above examples illustrate, systems and methods described herein can be used to build a master signature for a token and also to generate an authenticating signature to validate the authenticity of the token, As these examples further illustrate, the master signature can be generated over time or over a plurality of data sets to increase the level of confidence tn the signature. Generally speaking, the more a card is swiped, the more data in the data set, and the greater the statistical confidence in the signature Data parameters or characteristics that are shown to be more consistent over a large number of samplings tend to be more reliable parameters or characteristics for signature comparison
Also, because physical characteristics can change over time, more recent data can tend to be better data for authentication purposes. Therefore, in some embodiments, more recent data sets are weighted more heavily than older data sets. In addition, data sets beyond a certain age can be discarded. For example, a FIFO or other iike scenario can be utih/ed such that every time (or every x times) a card is swiped, the oldest data set can be thrown away and the signature recomputed with the newest data set added into the computation As another example, a weighted averaging filter equation can be used to make the effect ot the old swipes decay away as new swipes come in Accordingly, the data set can be limited for the master signature to a predetermined number ot previous swipes.
In yet another embodiment, a time factor can be applied to loosen the signature matching requirements based on how long it has been since the token was last read. Even it the card has not been swiped in a while, its characteristics can change over time simply, for example, by being carried in a wallet or purse or the iike. Accordingly, in one embodiment, if a card is swiped for the first time in a long period of time in the authentication requirements can be loosened, and likewise, the master signature can be regenerated based on the new swiped data if the card is indeed authenticated.
As described above, in various embodiments weighting can be used for components of the signature, and various methodologies can be used to assign weightings to the components. In one embodiment, the weightings are assigned such that the sum of all the weightings adds up to 1. Accordingly, each weight can be a number less than 1. Likewise, the comparison for each segment can be computed such that the result of the comparison is a number between 0 and L For example, the per use value for a segment can be subtracted from the master value for that segment and the result divided by the master value, resulting in a number whose absolute value is between 0 and 1.
To illustrate, consider an example in which there are a components to each signature. With the above assumptions, a perfect match between components results in a score of 1 for that component, and a non-match results in a score of 0 (or significantly less than 1) for that component. Further to this illustration, assume a system has calculated the following weightings based on the repeatability of each component over several swipes: (1) 0.1 ; (2) 0,03; (3) 0.22; (4) 0.13; (5) 0.09; (6) 0.04; (7) 0.36; and (8) 0.03. In this example, all the weights add up to 1.0. To continue the illustration, assume that the comparison result for each of the 8 components from a single swipe (when compared to the master signature using the component comparison function) is as follows: ( 1) 0,90; (2) 0.71 ; (3) 0.96; (4) 0.88; (5) 0.93; (6) 0.72; (7) 0.97; (8) 0.70. In this example the resulting weighted signature score would be: 0.1 *0.09 + 0.03*0.71 + 0.22*0.96 + 0.13*0.88 + 0.09*0.93 + 0.04*0.72 + 0.36*0.97 + 0.03*0.70 = 0.8386, which is a number less than one. In this example, if the valid signature threshold is set below 0.8386 then this would be identified as a valid card, otherwise it would be flagged as a fraud.
As one of ordinary skill will appreciate after reading this description, this score can be used in a plurality of different ways. For example, the repeatability of the final signature comparison value (i.e. the score) could be used to determine where to set the threshold for the next comparison. If this method were used instead of using the variability of each component in the signature then all weights would most likely be set to the same value (probably 1/801 in the above example) so that each comparison would contribute the same amount to the final score. Of course this would be less accurate than using the repeatability of each component. In addition, a combination of both methods could also be used (i.e. statistically-based weights and a statistically-based scoring threshold), but testing would probably be required to see if this works any better than just using individual component weightings.
Signature data can be quantized or scaled to fit into a predefined pay load package for communication. For example, if a maximum space of 10 8-bit values is available to transfer the signature then, the signature can include 10 signature components quantized into 8-bit values, 20 signature components quantized into 4-bit values, and so on. These methods would generate an 80-bit signature to take advantage of the available 80-bit payload space Each of these could also use one or more bits to generate each component Furthermore, the payload could contain multiple types of signature data. For example, the 1 st few bits of the character could contain the magnitude data and the next tew bits could contain the phase data. As another example, a portion of the word could contain spectral data and another portion the average deviations
As used herein, the term module might describe a given unit of functionality that can be performed in accordance with one or more embodiments of the present invention As used herein, a module might be implemented utilizing any form of hardware, software, or a combination thereof. For example, one or more processors, control iers, ASICs, PLAs, logical components, software routines or other mechanisms might be implemented to make up a moduie. In implementation, the various modules described herein might be implemented as discrete modules or the functions and features described can be shared in part or in total among one or more modules. In other words, as would be apparent to one of ordinary skill in the art after reading this description, the vaπous features and functionality described herein may be implemented in any given application and can be implemented in one or more separate or shared modules in various combinations and permutations Even though various features or elements of functionality may be individually described or claimed as separate modules, one of ordinary skill in the art will understand that these features and functionality can be shared among one or more common software and hardware elements, and such description shall not require or imply that separate hardware or software components are used to implement such features or functionality.
Where components or modules of the invention are implemented m whole or in part using software, in one embodiment, these software elements can be implemented to operate with a computing or processing module capable of carrying out the functionality described with respect thereto. One such example -computing module is shown in Figure 6. Various embodiments are described in terms of this example-computing module 600, After reading this description, it will become apparent to a person skilled in the relevant art how to impiement the invention using other computing modules or architectures.
Referring now to Figure 6, computing module 600 may represent, for example, computing or processing capabilities found within desktop, laptop and notebook computers; hand-held computing devices (PDA's, smart phones, cell phones, palmtops, etc.); mainframes, supercomputers, workstations or servers; or any other type of special-purpose or general-purpose computing devices as may be desirable or appropriate for a given application or environment. Computing module 600 might also represent computing capabilities embedded within or otherwise available to a given device. For example, a computing module might be found in other electronic devices such as, for example, digital cameras, navigation systems, cellular telephones, portable computing devices, modems, routers, WΛPs, terminals and other electronic devices that might include some form of processing capability.
Computing module 600 might include, for example, one or more processors, controllers, control modules, or other processing devices, such as a processor 604. Processor 604 might be implemented using a general-purpose or special-purpose processing engine such as, for example, a microprocessor, controller, or other control logic. In the example illustrated in Figure 6, processor 6(M is connected to a bus 602, although any communication medium can be used to facilitate interaction with other components of computing module 600 or to communicate externally.
Computing module 600 might also include one or more memory modules, simply referred to herein as main memory 608. For example, preferably random access memory (RAM) or other dynamic memory, might be used for storing information and instructions to be executed by processor 604. Main memory 608 might also be used for storing temporary variables or other intermediate information during execution of instructions to be executed by processor 604. Computing module 600 might likewise include a read only memory ("ROM") or other static storage device coupled to bus 602 for storing static information and instructions for processor 604.
The computing module 600 might also include one or more various forms of information storage mechanism 610, which might include, for example, a media drive 612 and a storage unit interface 620. The media drive 612 might include a drive or other mechanism to support fixed or removable storage media 614. For example, a hard disk drive, a floppy disk drive, a magnetic tape dnve, an optical disk drive, a CD or DVD drive (R or RW), or other removable or fixed media drive might be provided Accordingly, storage media 614, might include, for example, a hard disk, a floppy disk, magnetic tape, cartridge, optical disk, a CD or DVD, or other fixed or removable medium that is read by, written to or accessed by media dnve 612 As these 1^ examples illustrate, the storage media 614 can include a computer usable storage medium having stored therein computer software or data
Jn alternative embodiments, information storage mechanism 610 might include other similar instrumentalities for allowing computer programs or other instructions or data to be loaded into computing module 600 Such instrumentalities might include, for example, a fixed or removable storage unit 622 and an interface 620. Examples ol such storage units 622 and interfaces 620 can include a program cartridge and cartridge interface, a removable memory (for example, a flash memory or other removable memory module) and memory slot, a PCMCIA slot and card, and other fixed or removable storage units 622 and interfaces 620 that allow software and data to be transferred from the storage unit 622 to computing module 600 5 Computing module 600 might also include a communications interface 624
Communications interface 624 might be used to allow software and data to be transferred between computing module 600 and external devices Examples of communications interface 624 might include a modem or soltmodem, a network interface (such as an Ethernet, network interface card, WiMedia, IFFF 802 XX or other interface), a communications port (such as for0 example, a USB port, IR port, RS232 port BluetoothΦ interface, or other port), or other communications interface Software and data transferred via communications interface 624 might typically be carried on signals, which can be electronic, electromagnetic (which includes optical) or other signals capable of being exchanged by a given communications interface 624 These signals might be provided to communications interface 624 via a channel 628 lhis5 channel 628 might carry signals and might be implemented using a wired or wireless communication medium These signals can deliver the software and data from memory or other storage medium in one computing system to memory or other storage medium in computing system 600 Some examples of a channel might include a phone line, a cellular link, an RF link, an optical link, a network interface, a local or wide area network, and other wired or wireless0 communications channels
In this document, the terms "computer program medium" and "computer usable medium" are used to generally refer to physical storage media such as, for example memory 608, storage unit 620, and media 614. I hese and other vaπous forms of computer program media or computer usable media may be involved in storing one or more sequences of one or more instructions to a processing device for execution. Such instructions embodied on the medium, are generally referred to as "computer program code" or a "computer program product" (which may be grouped in the form of computer programs or other groupings) When executed, such instructions might enable the computing module 600 to perform features or functions of the present invention as discussed heτeπi
While various embodiments of the present invention have been described above, it should be understood that they have been presented by way of example only, and not of limitation Likewise, the various diagrams may depict an example architectural or other configuration for the invention, which is done to aid in understanding the features and functionality that can be included in the invention The invention ts not restricted to the illustrated example architectures or configurations, but the desired features can be implemented using a variety of alternative architectures and configurations Indeed, it will be apparent to one of skill in the art how alternative functional, logical or physical partitioning and configurations can be implemented to implement the desired features of the present invention Also, a multitude of different constituent module names other than those depicted herein can be applied to the various partitions Additionally, with regard to flow diagrams, operational descriptions and method claims, the order in which the steps are presented herein shall not mandate that various embodiments be implemented to perform the recited functionality in the same order unless the context dictates otherwise.
Although die invention is described above in terms of various exemplary embodiments and implementations, it should be understood that the various features, aspects and functionality described in one or more of the individual embodiments are not limited in their applicability to the particular embodiment with which they arc described, but instead can be applied, alone or in vaπous combinations, to one or more of the other embodiments of the invention, whether or not such embodiments are described and whether or not such features are presented as being a part of a described embodiment Thus, the breadth and scope of the present invention should not be limited by any of the above-described exemplary embodiments.
Terms and phrases used in this document, and variations thereof, unless otherwise expressly stated, should be construed as open ended as opposed to limiting As examples of the foregoing the term "including" should be read as meaning "including, without limitation" or the like, the term "example" is used to provide exemplary instances of the item in discussion, not an exhaustive or limiting list thereof, the terms "a" or "an" should be read as meaning "at least one," "one or more" or the like, and adjectives such as "conventional," "traditional," "normal," "standard," "known" and terms of similar meaning should not be construed as limiting the item described to a given tune period or to an item available as of a givers time, but instead should be read to encompass conventional, traditional, normal, or standard technologies that may be available or known now or at any time in the future Likewise, where this document refers to technologies that would be apparent or known to one of ordinary skill in the art, such technologies encompass those apparent or known to the skilled artisan now or at any time in the future
Hie presence of broadening words and phrases such as "one or more," "at least," "but not limited to" or other like phrases m some instances shall not be read to mean that the narrower case is intended αr required in instances where such broadening phrases may be absent The use of the term 'module" does not imply that the components or functionality described or claimed as part of the module arc all configured m a common package Indeed, any or alt of the various components of a module, whether control logic or other components, can be combined in a single package or separately maintained and can further be distributed in multiple groupings or packages or across multiple locations
Additionally, the various embodiments set forth herein are described in terms of exemplary block diagrams, flow charts and other illustrations As will become apparent to one of ordinary skill in the art after reading this document, the illustrated embodiments and their various alternatives can be implemented without confinement to the illustrated examples For example, block diagrams and their accompanying description should not be construed as mandating a particular architecture or configuration

Claims

Claims
1. A method for characterizing a magnetic stripe card based on spatial characteristics of data encoded on a magnetic stripe of the card, the method comprising the steps of using a magnetic stnpe reader to read a waveform of data encoded on the magnetic stπpe of the card,
S parameterizing the waveform of the data encoded on the card to determine spatial features of the waveform; characterizing a subset of the spatial features of the waveform to determine spatial characteristics of the waveform; and determining a characterization signature of the magnetic stπpe card using the spatial0 characteristics, wherein the characterization signature characteri7.es the magnetic stripe card.
1. The method of claim 1, wherein the step of characterizing a subset of the spatial features of the waveform to determine spatial characteristics comprises identifying relative associations or correlations of spatial features of the data encoded on the magnetic stripe card.
3. The method of claim 1, wherein the step of characterizing a subset of the spatial features of the waveiorm to determine spatial characteristics comprises computing a function of the spatial parameters for the bits in the segment.
4. rhe method of claim 3, wherein the function comprises comparing a bit width to other bit widths, comparing a bit width to an average of bit widths, computing a ratio of bit widths, comparing bit averages to other bit averages, comparing median bit widths to average bit widths, or comparing ratios of bit widths to peak widths. 5 1 he method of claim 1, wherein the spatial features comprise a bit width, a peak shape, a peak width, a rise time, or a fall time
6 The method of claim 1 , wherein the step of characterizing a subset of the spatial features of the waveform to determine spatial characteristics comprises calculating an average bit width for a segment ot the data, determining a deviation between individual bits tn the segment and the average bit width calculated tor the segment, and averaging the deviations determined for the individual ones of the bits in the segment to determine an average deviation for the segment
7 The method of claim 6, wherein the segment comprises all or a part of the data encoded on the magnetic stripe card
8 The method of claim 6, wherein the steps of calculating, determining and averaging are performed for a plurality of segments of data encoded on the magnetic stripe, and wherein the fingerprint comprises the average deviations for some or all of the plurality of the segments
9 The method ot claim 8, wherein a segment comprises a single bit or a consecutive plurality of bits
10 fhe method ot claim 8, wherein a segment comprises a plurality of non-consecutive individual bits of the encoded data
1 1 The method of claim 8, wherein the steps of calculating, determining and averaging performed for the plurality of segments are performed for a plurality of read operations and wherein the method further comprises the step of determining the consistency of results obtained tor each segment across the multiple read operations
12. The method of claim 8, wherein the fingerprint is further determined based on the consistency of the results across the multiple read operations.
13. The method of claim 6, wherein the difference between individual ones of the bits and the average bit width is determined as a percentage of the average bit width.
14. The method of claim 1 , wherein the steps of reading, parameterizing, and characterizing are performed a plurality of times for the magnetic stripe card to determine the characteristic signature based on a plurality of read operations,
15. The method of claim 1 , wherein the step of characterizing a subset of the spatial features of the waveform to determine spatial characteristics comprises performing a spectra! analysis of the spatial features of the waveform.
16. The method of claim 15, further comprising the step of discarding unreliable spectral components.
17. The method of claim 1 , wherein the step of parameterizing the waveform is performed for multiple read operations; and wherein characterizing a subset of the spatial features of the waveform to determine spatial characteristics comprises: identifying consistent variations across all bits of the waveform; and disregarding inconsistent variations for purposes of authenticating the magnetic stripe card.
18. The method of claim 1, wherein the steps of parameterizing and characterizing are performed for a plurality of read operations to determine a master characterization based on a plurality of data sets.
19. The method of claim 1 , wherein the characterization signature defines a master characterization signature for the magnetic stripe card.
20. The method of claim 19, further comprising, for a magnetic stripe card presented for a transaction, performing the steps of: using a magnetic stripe reader to read a waveform of data encoded on the magnetic stripe of the card presented for the transaction; parameterizing the waveform of the data encoded on the card presented for the transaction to determine spatiai features of the waveform of the card presented for the transaction; characterizing a subset of the spatial features of the waveform of the card presented for the transaction to determine spatial characteristics of the waveform; and determining a transaction characterization signature for the magnetic-stripe card presented for the transaction; and further comprising comparing the transaction characterization signature characterization to the master characterization to determine whether the magnetic-stripe-card is authentic.
21. A method for authenticating a magnetic stripe card based on spatial characteristics of data encoded on the magnetic stripe of the card, the method comprising the steps of: receiving data encoded on a presented magnetic stripe card; calculating spatiai characteristics of the data encoded on the card; determining a characterization signature of the magnetic stripe card using the spatial characteristics, wherein the signature characterizes the magnetic stripe card; and comparing the characterization signature of the presented magnetic stripe card with a master characterization signature for a known authentic magnetic stripe card to determine whether the presented magnetic stripe is the known authentic magnetic stripe card. 22 The method of claim 22, wherein calculating spatial characteristics of the data encoded on the card comprises parameterizing a waveform of the data encoded on the card to determine spatial features of the waveform; and characterizing a subset of the spatial features of the wavetorm to determine spatial characteristics of the waveform
23. A computer program product comprising a computer useable storage medium having computer program code embodied therein for enabling a processing device to characterize a magnetic stripe card based on spatiai characteristics of data encoded on the magnetic stripe of the card, the computer-readable program code comprising. a computer program code portion for reading data encoded on the magnetic stripe of the card, a computer program code portion for calculating spatial characteristics of the data encoded on the card; a computer program code portion for determining a charactenzation signature of the magnetic stripe card using the spatial characteristics, wherein the signature characterizes the magnetic stnpe card.
24 The computer program product of claim 23, wherein a computer program code portion for calculating spatial characteristics of the data encoded on the card comprises a computer program code portion for parameterizing a waveform of the data encoded on the card to determine spatial features of the waveform, and a computer program code portion for characterizing a subset of the spatial features of the waveform to determine spatial characteristics of the waveform
25. The computer program product of claim 23, wherein the computer program code portion for calculating the spatiai characteristics comprises a computer program code portion for identifying relative associations or correlations of spatial characteristics of the data encoded on the magnetic stripe card.
26. The computer program product of claim 23, wherein the computer program code portion for calculating the spatiai characteristics comprises: a computer program code portion for calculating spatial characteristics of a bit waveform of the encoded data in a segment of the data; and a computer program code portion for computing a function of bit spatial characteristics for bits in the segment.
27. The computer program product of claim 26, wherein the function comprises comparing a bit width to other bit widths, comparing a bit width to an average of bit widths, computing a ratio of bit widths, comparing bit averages to other bit averages, comparing median bit widths to average bit widths, or comparing ratios of bit widths to peak widths.
28. The computer program product of claim 26, wherein the spatial characteristic comprises bit width, a peak shape, a rise time, or a fall time.
29. The computer program product of claim 26, wherein the calculating the spatial characteristics comprises: calculating an average bit width for a segment of the data; determining a deviation between individual bits in the segment and the average bit width calculated for the segment; and averaging the deviations determined for the individual ones of the bits in the segment to determine an average deviation lor the segment
30 The computer program product ot claim 29, wherein the segment comprises all or a part of the data encoded on the magnetic stnpe card
31 Fhe computer program product of claim 29, wherein the computer program code portion lor calculating, determining and averaging is configured to perform these operations for a plurality of segments of data encoded on the magnetic stripe, and wherein the fingerprint comprises the average deviations, for some or all of the plurality of the segments
32 The computer program product of claim 31, wherein the segments comprise portions of the data comprising a consecutive plurality of bits
33 Fhe computer program product ot claim 31, wherem the segments comprise a plurality of individual bits of the encoded data
34 The computer program product of claim 31, wherein the computer program code portion for calculating, determining and averaging ss configured to perform these operations tor a plurality ot read operations and further comprising a computer program code portion for determining the consistency of results obtained for each segment across the multiple read operations
35 The computer program product of claim 31 , wherein the computer program code is further configured to determine the fingerprint based on the consistency of the results across the multiple read operations 36 The computer program product of ciaim 29, wherein the computer program code is further configured to determine difference between individual ones of the bits and the average bit width as a percentage of the average bit width
37 The computer program product of claim 23, wherein the calculating the spatial characteristics comprises calculating spatial characteristics ot the bit waveform of the encoded data for a segment of the data, and performing a spectral analysis of the bit widths calculated in the segment
38 1 he computer program product of claim 37, further comprising a computer program code portion for discarding unreliable spectral components
39 The computer program product of claim 23, wherein calculating the spatial characteristics comprises measuring a spatial parameter of data bits encoded on the magnetic strtpe for multiple read operations, identifying consistent variations across all bits, and disregarding inconsistent variations for purposes of authenticating the magnetic stripe card
40 ϊ he computer program product of claim 23, wherein the computer program code is configured to calculate the spatial characteπstics for a plurality of read operations to determine a master characterization based on a plurality ol data sets
41 The computer program product of claim 23, wherein the characteπzation signature defines a master characterization signature for the magnetic stripe card
42. A computer program product comprising a computer useable storage medium having computer program code embodied therein for enabling a processing device to authenticate a presented magnetic stripe card having a signature based on spatial characteristics of data encoded on the magnetic stπpc of the card, the computer-readable program code comprising a computer program code portion for comparing the signature of the magnetic stripe card with a master signature for an authentic magnetic stripe card, wherein the master signature and the signature of the presented card are created using the operations of reading data encoded on the magnetic stripe of a card presented for authentication; calculating spatial characteristics of the data encoded on the card presented for authentication; and determining a characterization signature of the magnetic stripe card using the spatial characteristics.
43 A magnetic stripe terminal, comprising- a magnetic read head; a processing device communicatively coupled to the read head and configured to characterize a magnetic stripe card based on spatial characteristics of data encoded on the magnetic stripe of the card, wherein the characterization comprises calculating spatial characteristics of the data encoded on the card and determining a characterization signature of the magnetic stripe card using the spatial characteristics, wherein the signature characterizes the magnetic stripe card.
44. A transaction processing network for processing magnetic stnpe card transactions, comprising' a plurality of magnetic stripe terminals configured to read data encoded on a magnetic stripe of a magnetic stripe card presented for a transaction; a server, communicatively coupled to the magnetic stripe terminals and configured to receive transaction data from the plurality of magnetic stripe terminals and including a processing device configured to compare a signature of a magnetic stnpe card presented at one of the plurality of magnetic stripe terminals with a known master signature, wherein the master signature is created by calculating spatial characteristics of the data encoded on the card and determining a characterization signature of the magnetic stripe card uiing the spatial characteristics, wherein the signature characterizes the magnetic stnpe card
PCT/US2010/034219 2009-05-08 2010-05-10 Token authentication using spatial characteristics WO2010129946A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US12/437,801 2009-05-08
US12/437,801 US8251283B1 (en) 2009-05-08 2009-05-08 Token authentication using spatial characteristics

Publications (1)

Publication Number Publication Date
WO2010129946A1 true WO2010129946A1 (en) 2010-11-11

Family

ID=42455332

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2010/034219 WO2010129946A1 (en) 2009-05-08 2010-05-10 Token authentication using spatial characteristics

Country Status (2)

Country Link
US (1) US8251283B1 (en)
WO (1) WO2010129946A1 (en)

Families Citing this family (24)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9361617B2 (en) * 2008-06-17 2016-06-07 Verifone, Inc. Variable-length cipher system and method
WO2013098477A1 (en) * 2011-12-29 2013-07-04 P2S Media Group Oy Method and apparatus for approving multimedia data
US20130168450A1 (en) * 2011-12-30 2013-07-04 Clay W. von Mueller Format preserving cipher system and method
US10084818B1 (en) 2012-06-07 2018-09-25 Amazon Technologies, Inc. Flexibly configurable data modification services
US10075471B2 (en) 2012-06-07 2018-09-11 Amazon Technologies, Inc. Data loss prevention techniques
US9590959B2 (en) 2013-02-12 2017-03-07 Amazon Technologies, Inc. Data security service
US9286491B2 (en) 2012-06-07 2016-03-15 Amazon Technologies, Inc. Virtual service provider zones
US20140136410A1 (en) * 2012-11-09 2014-05-15 Jeremiah Joseph Akin Credit Card Fraud Detection
US9367697B1 (en) 2013-02-12 2016-06-14 Amazon Technologies, Inc. Data security with a security module
US10211977B1 (en) 2013-02-12 2019-02-19 Amazon Technologies, Inc. Secure management of information using a security module
US9300464B1 (en) 2013-02-12 2016-03-29 Amazon Technologies, Inc. Probabilistic key rotation
US9705674B2 (en) 2013-02-12 2017-07-11 Amazon Technologies, Inc. Federated key management
US10210341B2 (en) 2013-02-12 2019-02-19 Amazon Technologies, Inc. Delayed data access
US10467422B1 (en) 2013-02-12 2019-11-05 Amazon Technologies, Inc. Automatic key rotation
US9832171B1 (en) * 2013-06-13 2017-11-28 Amazon Technologies, Inc. Negotiating a session with a cryptographic domain
FR3015168A1 (en) 2013-12-12 2015-06-19 Orange TOKEN AUTHENTICATION METHOD
US9397835B1 (en) 2014-05-21 2016-07-19 Amazon Technologies, Inc. Web of trust management in a distributed system
US9438421B1 (en) 2014-06-27 2016-09-06 Amazon Technologies, Inc. Supporting a fixed transaction rate with a variably-backed logical cryptographic key
US9866392B1 (en) 2014-09-15 2018-01-09 Amazon Technologies, Inc. Distributed system web of trust provisioning
US10671980B2 (en) 2014-10-20 2020-06-02 Mastercard International Incorporated Systems and methods for detecting potentially compromised payment cards
US11526885B2 (en) 2015-03-04 2022-12-13 Trusona, Inc. Systems and methods for user identification using graphical barcode and payment card authentication read data
JP2018508907A (en) * 2015-03-04 2018-03-29 トゥルソナ,インコーポレイテッド System and method for user identification using payment card authentication read data
WO2016141356A1 (en) * 2015-03-04 2016-09-09 Trusona, Inc. Systems and methods for performing card authentication reads
US11522717B2 (en) * 2019-07-23 2022-12-06 Signa Tech Llc Signature token system

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0696779A1 (en) * 1994-07-11 1996-02-14 Toppan Printing Co., Ltd. Data recording medium
WO2001080189A2 (en) * 2000-04-14 2001-10-25 Mag-Tek, Inc. Magnetic stripe card verification system
DE10212786A1 (en) * 2002-03-22 2003-10-02 Daniel Muessli Method for producing fraud-proof magnetic strips assigns a once-through serial number to magnetic particles deposited on a carrier to be correlated with an encrypted stored measuring graph.

Family Cites Families (142)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US754862A (en) 1903-10-26 1904-03-15 George Fuller Oil-burning branding implement.
US3953887A (en) 1974-11-15 1976-04-27 Burroughs Corporation Spring driven velocity controlled magnetic stripe reader
US3962726A (en) 1975-02-21 1976-06-08 Mag-Tek, Inc. Self-clocking magnetic record sensing system
US4028734A (en) 1975-05-19 1977-06-07 American Magnetics Corporation Plural magnetic head assembly with independently supporting structure
US4297735A (en) 1979-07-26 1981-10-27 Ebco Industries, Ltd. Manually operable magnetic card reader and magnetic head assembly therefor
US4319131A (en) 1979-12-05 1982-03-09 Mcgeary Thomas C Score record processing system
US5126990A (en) 1982-01-12 1992-06-30 Discovision Associates Method of evaluating a storage medium by recirculating a test sample of a signal
US5257320A (en) 1983-05-31 1993-10-26 Rocc Computers Limited Signature verification system
US4628195A (en) 1984-03-09 1986-12-09 American Magnetics Corporation Credit card security system
US4705939A (en) 1984-09-28 1987-11-10 Rjs Enterprises, Inc. Apparatus and method for optically measuring bar code dimensions
US4650978A (en) 1985-01-23 1987-03-17 Rmh Systems, Inc. Off line cash card system and method
US4949192A (en) 1985-01-28 1990-08-14 Mag-Tek, Inc. Magnetic card transducing system
FR2596177B1 (en) 1986-03-19 1992-01-17 Infoscript METHOD AND DEVICE FOR QUALITATIVE BACKUP OF DIGITAL DATA
GB2190996B (en) * 1986-05-23 1990-07-18 Michael Anthony West Article verification
US4837426A (en) 1987-01-16 1989-06-06 Rand, Mcnally & Company Object verification apparatus and method
US4906988A (en) 1987-01-27 1990-03-06 Rand Mcnally & Co. Object verification system and method
JPS63306067A (en) 1987-06-08 1988-12-14 スター精密株式会社 Heat transfer printer
US5010240A (en) 1989-04-11 1991-04-23 Mag-Tek, Inc. Composite ticket processing unit
US5101097A (en) 1990-06-07 1992-03-31 American Magnetics Corporation Hand swipe magnetic stripe encoder
NL9001368A (en) 1990-06-15 1992-01-02 Tel Developments B V SECURITY OF OBJECTS OR DOCUMENTS.
US5461525A (en) 1990-09-14 1995-10-24 Hutchinson Technology Incorporated Load beam having areas of varying thickness in the spring region formed by varying numbers of lamina
US5235166A (en) 1991-02-14 1993-08-10 Xtec Incorporated Data verification method and magnetic media therefor
US5254843A (en) 1991-08-07 1993-10-19 Hynes John E Securing magnetically encoded data using timing variations in encoded data
US5233169A (en) 1991-10-31 1993-08-03 Psc, Inc. Uniport interface for a bar code reading instrument
JP3161733B2 (en) 1991-11-13 2001-04-25 シチズン時計株式会社 Composite magnetic head
US5214409A (en) 1991-12-03 1993-05-25 Avid Corporation Multi-memory electronic identification tag
US5270523A (en) 1992-01-30 1993-12-14 Uniform Industrial Corp. Plate spring for mounting a magnetic stripe card reader's magnetic head
US5336871A (en) 1992-02-07 1994-08-09 American Bank Note Holographics, Incorporated Holographic enhancement of card security
FR2695499B1 (en) 1992-09-08 1997-04-30 Int Jeux DEVICE FOR READING MAGNETIC CODES AND OPTICAL CODES.
US5358088A (en) 1992-11-25 1994-10-25 Mars Incorporated Horizontal magnetoresistive head apparatus and method for detecting magnetic data
US6335799B1 (en) 1993-01-21 2002-01-01 Efunds Corporation Plastic card personalizer system
US5367581A (en) 1993-03-31 1994-11-22 Direct Data Systems Magnetic reader with read head biased against document by resilient deflection of circuit board
FR2703800B1 (en) 1993-04-06 1995-05-24 Bull Cp8 Method for signing a computer file, and device for implementing it.
US5365586A (en) 1993-04-09 1994-11-15 Washington University Method and apparatus for fingerprinting magnetic media
US5408505A (en) 1993-04-09 1995-04-18 Washington University Method and apparatus for process control, tension control, and testing of magnetic media
US5959794A (en) 1993-04-09 1999-09-28 Washington University Method for precompensating signals for magnetic media noise
US5587654A (en) 1993-04-09 1996-12-24 Washington University Method and apparatus for noise reduction in magnetic media recordings
US5625689A (en) 1993-04-09 1997-04-29 Washington University Method and apparatus for secure data storage and manipulation using magnetic media
US5546462A (en) 1993-04-09 1996-08-13 Washington University Method and apparatus for fingerprinting and authenticating various magnetic media
JP2776209B2 (en) 1993-07-22 1998-07-16 日本ビクター株式会社 Optical disc and information recording / reproducing device
US5396369A (en) 1993-08-24 1995-03-07 Debitek, Inc. Degausser for magnetic stripe card transducing system
US5412718A (en) 1993-09-13 1995-05-02 Institute Of Systems Science Method for utilizing medium nonuniformities to minimize unauthorized duplication of digital information
JPH07140539A (en) 1993-11-16 1995-06-02 Konica Corp Magnetic head supporting device
TW309612B (en) 1994-09-22 1997-07-01 Nippon Bickter Kk
US7152045B2 (en) 1994-11-28 2006-12-19 Indivos Corporation Tokenless identification system for authorization of electronic transactions and electronic transmissions
US5644636A (en) 1994-12-30 1997-07-01 Xtec, Incorporated Method and apparatus for securing data stored in semiconductor memory cells
US5657389A (en) 1995-05-08 1997-08-12 Image Data, Llc Positive identification system and method
US5708422A (en) 1995-05-31 1998-01-13 At&T Transaction authorization and alert system
US5691526A (en) 1995-06-07 1997-11-25 U.S. Order, Inc. Magnetic card reader assembly having a first member that has a first leg integrally connected to a side wall of the guide slot
US5569898A (en) 1995-06-07 1996-10-29 Mag-Tek, Inc. Selective card entry gate with ridged profile
US5603078A (en) 1995-09-15 1997-02-11 Spectravision, Inc. Remote control device with credit card reading and transmission capabilities having multiple IR LEDs
US6308886B1 (en) 1996-01-31 2001-10-30 Magtek, Inc. Terminal for issuing and processing data-bearing documents
US5814796A (en) 1996-01-31 1998-09-29 Mag-Tek, Inc. Terminal for issuing and processing data-bearing documents
US5770846A (en) 1996-02-15 1998-06-23 Mos; Robert Method and apparatus for securing and authenticating encoded data and documents containing such data
US5780828A (en) 1996-02-15 1998-07-14 Dh Technology, Inc. Interactive video systems
US7171560B2 (en) 1998-06-22 2007-01-30 Semtek Solutions, Inc. Method and apparatus for securing and authenticating encoded data and documents containing such data
US5829743A (en) 1996-02-27 1998-11-03 Mag-Tek, Inc. Gear-driven card transport device
US6053406A (en) 1996-05-17 2000-04-25 Aveka, Inc. Antiforgery security system
US5685657A (en) 1996-07-23 1997-11-11 Mag-Tek, Inc. Printer belt drive for moving a card
US5767495A (en) 1996-07-29 1998-06-16 Mag-Tek, Inc. Reduced-power magnetic transducer system utilizing a magnetoresistive head
JP3086887B2 (en) 1996-08-08 2000-09-11 株式会社ローレルインテリジェントシステムズ Information transmission method, information transmission method, information reproduction method, and communication device
US5930794A (en) 1996-10-18 1999-07-27 Sagent Technologies, Inc. Database repository with deferred transactions
US8225089B2 (en) 1996-12-04 2012-07-17 Otomaku Properties Ltd., L.L.C. Electronic transaction systems utilizing a PEAD and a private key
US5932869A (en) 1996-12-27 1999-08-03 Graphic Technology, Inc. Promotional system with magnetic stripe and visual thermo-reversible print surfaced medium
US5920628A (en) 1997-01-09 1999-07-06 Washington University Method and apparatus for fingerprinting and authenticating various magnetic media
US6837435B2 (en) 1997-06-26 2005-01-04 Symbol Technologies, Inc. Adapter unit having a handle grip for a personal digital assistant
US6266647B1 (en) 1997-11-03 2001-07-24 Xtec, Incorporated Methods and apparatus for electronically storing and retrieving value information on a portable card
US6105011A (en) 1998-03-19 2000-08-15 First Union Corporation Security system and method for business transactions with customers
US6636833B1 (en) 1998-03-25 2003-10-21 Obis Patents Ltd. Credit card system and method
US6123259A (en) 1998-04-30 2000-09-26 Fujitsu Limited Electronic shopping system including customer relocation recognition
US7478751B2 (en) 1998-07-22 2009-01-20 Magtek, Inc. Method and apparatus for authenticating a magnetic fingerprint signal using a filter capable of isolating a remanent noise related signal component
US6098881A (en) 1998-07-22 2000-08-08 Mag-Tek, Inc. Magnetic stripe card verification system
US7210627B2 (en) 1998-07-22 2007-05-01 Morley Jr Robert E Method and apparatus for authenticating a magnetic fingerprint signal using an adaptive analog to digital converter
US7377433B2 (en) 1998-07-22 2008-05-27 Washington University In St. Louis Method and apparatus for authenticating a magnetic fingerprint signal using compressive amplification
US6899269B1 (en) 1998-07-22 2005-05-31 Mag-Tek, Inc. Magnetic stripe authentication and verification system
US7068787B1 (en) 1998-10-23 2006-06-27 Contentguard Holdings, Inc. System and method for protection of digital works
US6781781B2 (en) 1999-03-01 2004-08-24 Axiohm Transaction Solutions, Inc. Magnetic read head having decode circuitry
US20020152180A1 (en) 1999-09-10 2002-10-17 Paul Turgeon System and method for performing secure remote real-time financial transactions over a public communications infrastructure with strong authentication
US7080037B2 (en) 1999-09-28 2006-07-18 Chameleon Network Inc. Portable electronic authorization system and method
US6885748B1 (en) 1999-10-23 2005-04-26 Contentguard Holdings, Inc. System and method for protection of digital works
SE9904094D0 (en) 1999-11-12 1999-11-12 Protegrity Research & Dev Method for reencryption of a database
KR100414050B1 (en) 1999-12-21 2004-01-07 바로닷컴 주식회사 BAROH credit card settlement system for the member store and method thereof
US7013393B1 (en) 1999-12-21 2006-03-14 Pierre Stevens Universal intelligent card for secure access to system functions
US6993130B1 (en) 2000-02-04 2006-01-31 Xtec, Incorporated Methods and apparatus for mediametric data cryptoprocessing
AU2001245801A1 (en) 2000-03-16 2001-09-24 Poly Vista, Inc. A system and method for analyzing a query and generating results and related questions
US6644547B1 (en) 2000-03-28 2003-11-11 Ncr Corporation Customer workstation intelligently connectable to a legacy retail system and providing supplemental functionality thereto
US6430008B1 (en) 2000-03-30 2002-08-06 Storage Technology Corporation Measurement of tape position error
CA2305249A1 (en) 2000-04-14 2001-10-14 Branko Sarcanin Virtual safe
US6476991B1 (en) 2000-05-01 2002-11-05 Xtec Incorporated Methods and apparatus for increased magnetic coding density by precise placement of magnetic transitions
US6678823B1 (en) 2000-05-01 2004-01-13 Xtec, Incorporated Methods and apparatus for authenticating data stored in semiconductor memory cells
US6760841B1 (en) 2000-05-01 2004-07-06 Xtec, Incorporated Methods and apparatus for securely conducting and authenticating transactions over unsecured communication channels
US10521782B2 (en) 2000-05-15 2019-12-31 Efunds Corporation System for and method of effecting an electronic transaction
US6480356B1 (en) 2000-05-15 2002-11-12 Semtek Innovative Solutions, Inc. Magnetic head transducer spring assembly and method of making same
JP4039001B2 (en) 2000-05-30 2008-01-30 ソニー株式会社 Electronics
US7103575B1 (en) 2000-08-31 2006-09-05 International Business Machines Corporation Enabling use of smart cards by consumer devices for internet commerce
US20020046338A1 (en) 2000-10-16 2002-04-18 Masaaki Ueda Electronic authentication system, URL input system, URL input device, and data recording system
US7325129B1 (en) 2000-11-16 2008-01-29 Protegrity Corporation Method for altering encryption status in a relational database in a continuous process
US6963980B1 (en) 2000-11-16 2005-11-08 Protegrity Corporation Combined hardware and software based encryption of databases
US7418098B1 (en) 2000-11-27 2008-08-26 Protegrity Corporation Data type preserving encryption
US20020066038A1 (en) 2000-11-29 2002-05-30 Ulf Mattsson Method and a system for preventing impersonation of a database user
GB2372616A (en) 2001-02-23 2002-08-28 Hewlett Packard Co Transaction method and apparatus using two part tokens
US7313822B2 (en) 2001-03-16 2007-12-25 Protegrity Corporation Application-layer security method and system
US6601771B2 (en) 2001-04-09 2003-08-05 Smart Card Integrators, Inc. Combined smartcard and magnetic-stripe card and reader and associated method
JP2002324349A (en) 2001-04-26 2002-11-08 Sony Corp Information distributing method, information distributing system and information distributing device
US6543689B2 (en) 2001-05-17 2003-04-08 Comstar Interactive Corp. Credit card and bar code reader module
US20060046842A1 (en) 2001-08-10 2006-03-02 Igt Ticket redemption using encrypted biometric data
WO2003017181A2 (en) 2001-08-15 2003-02-27 Mag-Tek, Inc. Apparatus and method for reading magnetic stripes
US7090130B2 (en) 2001-10-09 2006-08-15 Mag-Tek, Inc. Method and apparatus for generating images of magnetic fields in at least two dimensions
US6641050B2 (en) 2001-11-06 2003-11-04 International Business Machines Corporation Secure credit card
DE60130902T2 (en) 2001-11-23 2008-07-17 Protegrity Research & Development Method for detecting intrusion into a database system
KR100445406B1 (en) 2001-11-30 2004-08-25 주식회사 하이닉스반도체 Apparatus for encrypting the data and method therefor
US6944782B2 (en) 2002-02-12 2005-09-13 Semtek Innovative Solutions, Inc. Magnetic strip reader with power management control for attachment to a PDA device
US7430674B2 (en) 2002-02-12 2008-09-30 Semtek Innovative Solutions, Inc. Magnetic stripe reader with power management control for attachment to a PDA device
US7509499B2 (en) 2002-02-12 2009-03-24 Semtek Innovative Solutions Corporation Secure token access distributed database system
US20050228688A1 (en) 2002-02-14 2005-10-13 Beyond Compliance Inc. A compliance management system
JP2003317202A (en) 2002-04-11 2003-11-07 Cis Electronica Industria & Comercio Ltda Magnetic head for magnetic reader
EP1363226B1 (en) 2002-05-16 2006-04-19 Compagnie Industrielle et Financiere d'Ingenierie Ingenico Card reader
US6712278B2 (en) 2002-05-17 2004-03-30 Long Range Systems, Inc. On-premises restaurant communication system and method
EP1398966A1 (en) 2002-09-05 2004-03-17 Irdeto Access B.V. Transaction system
US7116993B2 (en) 2002-09-27 2006-10-03 Rockwell Automation Technologies, Inc. System and method for providing location based information
FR2852717B1 (en) 2003-03-18 2005-06-03 Ingenico Sa SECURE PAYMENT TERMINAL
US7077332B2 (en) * 2003-03-19 2006-07-18 Translucent Technologies, Llc Media verification system
US7702916B2 (en) 2003-03-31 2010-04-20 Visa U.S.A. Inc. Method and system for secure authentication
US7156292B2 (en) 2003-04-07 2007-01-02 Silverbrook Research Pty Ltd Validating competition entry
US6830183B2 (en) 2003-05-01 2004-12-14 Semtek Innovative Solutions, Inc. Device for secure read, write and read/modify/write operation with divided track transducer head
US20050198318A1 (en) 2003-05-06 2005-09-08 Clay Von Mueller Wireless/wired token access distributed network and system for using same
US7543739B2 (en) 2003-12-17 2009-06-09 Qsecure, Inc. Automated payment card fraud detection and location
US7140549B2 (en) 2004-02-24 2006-11-28 Sun Microsystems, Inc. Method and apparatus for selecting a desired application on a smart card
CN1744128A (en) 2004-08-31 2006-03-08 中国银联股份有限公司 Bank card transaction exchange system
US7506812B2 (en) 2004-09-07 2009-03-24 Semtek Innovative Solutions Corporation Transparently securing data for transmission on financial networks
US7309012B2 (en) 2004-09-07 2007-12-18 Semtek Innovative Solutions, Inc. Secure magnetic stripe reader for handheld computing and method of using same
WO2006044798A2 (en) 2004-10-15 2006-04-27 Protegrity Corporation Cooperative processing and escalation in a multi-node application-layer security system and method
US20080022136A1 (en) 2005-02-18 2008-01-24 Protegrity Corporation Encryption load balancing and distributed policy enforcement
US20060259950A1 (en) 2005-02-18 2006-11-16 Ulf Mattsson Multi-layer system for privacy enforcement and monitoring of suspicious data access behavior
US8165302B2 (en) 2005-06-07 2012-04-24 Sony Corporation Key table and authorization table management
US8108317B2 (en) 2005-08-31 2012-01-31 Hand Held Products, Inc. System and method for restricting access to a terminal
US8826449B2 (en) 2007-09-27 2014-09-02 Protegrity Corporation Data security in a disconnected environment
US8661263B2 (en) 2006-09-29 2014-02-25 Protegrity Corporation Meta-complete data storage
US20080084995A1 (en) 2006-10-06 2008-04-10 Stephane Rodgers Method and system for variable and changing keys in a code encryption system
US20080165973A1 (en) 2007-01-09 2008-07-10 Miranda Gavillan Jose G Retrieval and Display of Encryption Labels From an Encryption Key Manager
US8958562B2 (en) 2007-01-16 2015-02-17 Voltage Security, Inc. Format-preserving cryptographic systems
US9027831B2 (en) * 2008-11-21 2015-05-12 Visa International Service Association Updating of reference magnetic signature for authenticating a document with a magnetic stripe

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0696779A1 (en) * 1994-07-11 1996-02-14 Toppan Printing Co., Ltd. Data recording medium
WO2001080189A2 (en) * 2000-04-14 2001-10-25 Mag-Tek, Inc. Magnetic stripe card verification system
DE10212786A1 (en) * 2002-03-22 2003-10-02 Daniel Muessli Method for producing fraud-proof magnetic strips assigns a once-through serial number to magnetic particles deposited on a carrier to be correlated with an encrypted stored measuring graph.

Also Published As

Publication number Publication date
US8251283B1 (en) 2012-08-28

Similar Documents

Publication Publication Date Title
US8251283B1 (en) Token authentication using spatial characteristics
US9679290B2 (en) Personal token read system and method
EP0836160B1 (en) Method and means for limiting adverse use of counterfeit credit cards, access badges, electronic accounts or the like
KR101103202B1 (en) Methods and systems for encoding a magnetic stripe
US8712892B2 (en) Verification of a portable consumer device in an offline environment
AU2007261082B2 (en) Portable consumer device verification system
US8144940B2 (en) System and method for authentication of data
US20130254117A1 (en) Secured transaction system and method
US8010428B2 (en) Form factor identification
US20070174208A1 (en) System and Method for Global Automated Address Verification
US20100169223A1 (en) Payment System and Method Using an IC Identification Card
US20070078780A1 (en) Bio-conversion system for banking and merchant markets
US7967203B2 (en) Authenticating a document with a magnetic stripe
US9027831B2 (en) Updating of reference magnetic signature for authenticating a document with a magnetic stripe
WO2008032351A1 (en) Counterfeit card detecting system, authentication judgment information writing device, and counterfeit card detecting device
CA2744535A1 (en) Authentication of documents having a magnetic stripe
US8118220B2 (en) Verifying cardholder identity using signature of the card
US20080290166A1 (en) Multi dimensional read head array
US8104677B2 (en) Authentication of documents having magnetic stripe
US20080290167A1 (en) Multi dimensional read head array
KR20070026735A (en) Management terminal for paper-base(or valuable papers)
KR20070026733A (en) Management method for paper-base(or valuable papers)

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 10729737

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 10729737

Country of ref document: EP

Kind code of ref document: A1