公开(公告)号：US20170132622A1

公开(公告)日：2017-05-11

申请号：US15347982

申请日：2016-11-10

Applicant: INGENICO GROUP

Inventor： David NACCACHE ,  Remi GERAUD ,  Hiba KOUDOUSSI

IPC: G06Q20/38

CPC classification number: G06Q20/3829 ,  G06Q20/34 ,  G06Q20/3563 ,  G06Q20/382 ,  G06Q20/3821 ,  G06Q20/38215 ,  G06Q20/3823 ,  G06Q20/4018 ,  G06Q2220/00

Abstract: A method for encrypting a piece of payment means data is disclosed. This method is implemented by a payment means having a data processor. Such a method has at least one iteration of the following steps: obtaining a current piece of payment means data from a memory of the payment means; generating a following piece of payment means data as a function of the current piece of payment means data and as a function of an encryption key of the payment means; replacing the current piece of payment means data by the following piece of payment means data within the memory of the payment means.

公开(公告)号：US20160350562A1

公开(公告)日：2016-12-01

申请号：US15113912

申请日：2015-01-23

Applicant: INGENICO GROUP

Inventor： David NACCACHE

IPC: G06K7/08

CPC classification number: G06K7/087 ,  G06K7/084

Abstract: The invention relates to a magnetic reading head to be mounted in a terminal, said head having a generally rectangular parallelepiped shape and comprising a face for reading data coming from a magnetic stripe, said face comprising at least one component for reading data coming from a magnetic stripe.According to the invention, such a magnetic reading head comprises at least one flexible printed circuit board for protection against electromagnetic disturbances, said flexible printed circuit board being positioned on at least one face different from said reading face.

Abstract translation: 根据本发明，这种磁读头包括至少一个用于防止电磁干扰的柔性印刷电路板，所述柔性印刷电路板位于与所述阅读面不同的至少一个面上。

公开(公告)号：US20170187692A1

公开(公告)日：2017-06-29

申请号：US15388411

申请日：2016-12-22

Applicant: Ingenico Group

Inventor： David NACCACHE ,  Remi GERAUD ,  Marc BEUNARDEAU

IPC: H04L29/06 ,  H04L9/14

CPC classification number: H04L63/0428 ,  H04L9/08 ,  H04L9/14 ,  H04L9/3239 ,  H04L63/06 ,  H04W12/02

Abstract: The disclosure relates to a method for transmitting data and to a corresponding method for receiving data. According to the disclosure, in the method for transmitting data, a cryptographic processing operation is performed on the data to be transmitted, after this data has been pre-subdivided into blocks of data, and a tag representing each block of encrypted data is computed. The tag is then transmitted in such a way that a hacker in not able to reproduce a correct transmission of tags. The method of reception, for its part, ensures that when an incorrect tag is received (because of a hacking attempt), the processing of the data blocks is not immediately stopped but a differential processing is implemented in order to jam an attempt to analyze the behavior of the receiver.

公开(公告)号：US20170063548A1

公开(公告)日：2017-03-02

申请号：US15248115

申请日：2016-08-26

Applicant: Ingenico Group

Inventor： David NACCACHE ,  Rémi GERAUD ,  Michel LEGER

IPC: H04L9/12

CPC classification number: H04L9/12 ,  G06F21/602 ,  G06F21/606 ,  G06F21/77

Abstract: The invention relates to a method for transmitting data implemented between a terminal and an integrated circuit, said terminal and said integrated circuit communicating by means of an interface for transmitting and receiving data. According to the invention, said method comprises at least one iteration of the following steps, implemented by the terminal, generating (10) a command intended for said integrated circuit, said command comprising a command header; encrypting (20) said command (CX), delivering an encrypted command (CC); creating (20) a second command (CY), said command comprising a command header and data, said data being constituted at least partly by said encrypted commands (CC); transmitting (40) said second command (CY) to said integrated circuit.

Abstract translation: 本发明涉及一种用于发送在终端和集成电路之间实现的数据的方法，所述终端和所述集成电路通过用于发送和接收数据的接口进行通信。 根据本发明，所述方法包括由终端实现的以下步骤的至少一次迭代，产生（10）用于所述集成电路的命令，所述命令包括命令头; 加密（20）所述命令（CX），传递加密命令（CC）; 创建（20）第二命令（CY），所述命令包括命令头和数据，所述数据至少部分地由所述加密命令（CC）构成; 将所述第二命令（CY）（40）发送（40）到所述集成电路。

公开(公告)号：US20170039401A1

公开(公告)日：2017-02-09

申请号：US15304365

申请日：2015-04-10

Applicant: INGENICO GROUP

Inventor： David NACCACHE ,  Nora DABBOUS

IPC: G06K7/08 ,  G06Q20/40

CPC classification number: G06K7/08 ,  G06Q20/352 ,  G06Q20/40 ,  G07F7/1025

Abstract: The invention relates to a device for processing data coming from a contactless memory card, said device comprising at least one contactless memory card reader. Such a device comprises:means for acquiring input data coming from an input peripheral;means for processing at least one sequence of a remote transaction initialized on the basis of data coming from a contactless card;means for selecting a mode of operation comprising at least two states: a state, called an inactivation state, in which said processing means and said at least one memory card reader are inactive; a state, called an activation state, in which said processing means are active and in which the input data entered through said input peripheral are controlled by said processing means.

Abstract translation: 本发明涉及一种用于处理来自非接触式智能卡的数据的设备（1），所述设备包括至少一个非接触式智能卡读卡器。 这种装置包括：用于从输入外设获取输入数据的装置（2）; 用于处理基于来自非接触式卡的数据发起的交易的至少一个序列的装置; 用于选择具有处理装置和至少一个智能卡读取器不活动的至少两种状态即灭活状态的操作模式的装置（3），以及处理装置是活动的激活状态， 其中通过输入外围设备输入的输入数据由处理装置检查。

公开(公告)号：US20170255787A1

公开(公告)日：2017-09-07

申请号：US15437697

申请日：2017-02-21

Applicant: INGENICO GROUP

Inventor： Remi GERAUD ,  David NACCACHE

IPC: G06F21/60 ,  H04L29/06

CPC classification number: G06F21/604 ,  G06F21/53 ,  G06F21/556 ,  G06F21/602 ,  G06F21/6281 ,  H04L63/0414 ,  H04L63/0428 ,  H04L63/10 ,  H04L63/1408 ,  H04L63/1441

Abstract: A method for controlling access to preliminarily identified resources is disclosed. The method is implemented by an electronic device having means of access to said resources to be controlled. The method has: a step for receiving a request, coming from a program, for access to a current resource; a step for obtaining at least one access parameter for access to said current resource within a resource-characterizing data structure; and a step for modulating access to said current resource as a function of said at least one preliminarily obtained access parameter.

公开(公告)号：US20170004330A1

公开(公告)日：2017-01-05

申请号：US15201549

申请日：2016-07-04

Applicant: INGENICO GROUP

Inventor： Remi GERAUD ,  Hiba KOUDOUSSI ,  David NACCACHE

IPC: G06F21/62 ,  G06Q20/20 ,  G06Q20/34 ,  G06F21/55

CPC classification number: G06F21/6245 ,  G06F21/31 ,  G06F21/55 ,  G06F21/85 ,  G06F2221/031 ,  G06F2221/034 ,  G06F2221/2137 ,  G06F2221/2143 ,  G06Q20/206 ,  G06Q20/34

Abstract: The proposed technique relates to a method for securing a confirmation of a sequence of characters (SEQ) entered by a user on an electronic data entry device comprising an unsecured processor and a secured processor. This method, implemented in the secured processor, comprises determining a processing operation to be applied to said sequence of characters (SEQ), as a function of a signal (SIG_V) representing a confirmation, by the user, of the sequence of characters (SEQ), the signal (SIG_V) representing a confirmation being delivered by a confirmation means belonging to a set comprising at least two distinct confirmation means.

Abstract translation: 所提出的技术涉及一种用于确保用户在包括不安全处理器和安全处理器的电子数据输入设备上输入的字符序列（SEQ）的确认的方法。 在安全处理器中实施的该方法包括确定要应用于所述字符序列（SEQ）的处理操作，作为表示用户对字符序列（SEQ）的确认的信号（SIG_V）的函数 ），表示由属于包括至少两个不同确认装置的集合的确认装置传送的确认信号（SIG_V）。

公开(公告)号：US20160380980A1

公开(公告)日：2016-12-29

申请号：US15111069

申请日：2015-01-16

Applicant: INGENICO GROUP

Inventor： David NACCACHE

IPC: H04L29/06 ,  G06Q20/32 ,  H04W12/04 ,  H04L9/14

CPC classification number: H04L63/0428 ,  G06Q20/327 ,  G06Q20/3278 ,  G06Q20/382 ,  H04L9/002 ,  H04L9/12 ,  H04L9/14 ,  H04L63/061 ,  H04L63/0869 ,  H04L63/12 ,  H04L63/1441 ,  H04L2463/121 ,  H04W12/00502 ,  H04W12/02 ,  H04W12/04 ,  H04W12/10 ,  H04W12/12

Abstract: The invention relates to a method for transmitting data from a first terminal, called a sender terminal (TermE), to a second terminal, called a receiver terminal (TermR), the method being characterized in that it comprises: a step (100) for obtaining a piece of current time data (DTC); a step (110) for determining a piece of transmission time data (DTC) as a function of the piece of current time data (DTC) and at least one predetermined parameter; a step (120) for obtaining a piece of data to be encrypted (DaCh) from at least one piece of data to be transmitted (DaTr) and from at least one piece of current time data (DTC); a step (130) for encrypting, by means of an encryption key (KeyC), said preliminarily obtained piece of data to be encrypted (DaCh), this step delivering a piece of encrypted data (DCh); a step for transmitting said piece of encrypted data (DCh) as a function of said piece of transmission time data (DTT).

Abstract translation: 本发明涉及一种从被称为发送方终端（TermE）的第一终端向被称为接收终端（TermR）的第二终端发送数据的方法，其特征在于包括： - 获取（100） 当前时间基准（DTC）; •确定（110）作为当前时间数据（DTC）和至少一个预定参数的函数的时间传输数据（DTT）的步骤; - 基于要发送的至少一个数据（DaTr）和所述至少一个时间传输数据（DTT）获得（120）要加密的数据（DaCh）的步骤; • - 借助加密密钥（KeyC），先前获得的要加密的数据（DaCh）加密（130）的步骤，传递加密的数据（DCh）; • - 作为所述时间传输数据（DTT）的函数发送所述加密数据（DCh）的步骤。