Credit card and a secured data activation system

The present invention relates to a credit card comprising a card body, which comprises fingerprint reading means providing fingerprint signals representative of at least one fingerprint from a card user, when at least one finger of said user is pressed against said fingerprint reading means. Said card body further comprises data carrier means holding at least card owner fingerprint data and secured data, and fingerprint authentication means for activating said secured data. The card body further comprises an electrical power supply delivering electrical current to at least said fingerprint reading means. Accordingly there is no need for an external electrical power supply, and thus the existing standard card reading systems, such as ID-card readers, money transfer machines such as ATM's and the like may be used in conjunction with said credit card. Thus, investments into new standard reader systems are not necessary in order to improve the security of the secured data carried by the credit card. A complete and self-contained automated authentication process is conducted prior to communication concerning said secured data being established between said credit card and any of the existing ATM's on the market today, irrespective of type (automated or manually operated), manufacturer, version, or geographical position of said ATM and of credit card use.

Skip to: Description  ·  Claims  · Patent History  ·  Patent History
Description

The present invention relates to a credit card comprising a card body, which comprises fingerprint reading means providing fingerprint signals representative of at least one fingerprint from a card user, when at least one finger of said user is pressed against said fingerprint reading means; data carrier means holding at least card owner fingerprint data and secured data; a readout area; fingerprint authentication means comprising a data processor, which is able to authenticate said fingerprint signals with said card owner fingerprint data; and an electrical power supply delivering electrical power to at least said fingerprint reading means, said fingerprint authentication means, and said readout area. A credit card of this type is disclosed in international patent application WO 01/52204.

Further, the present invention relates to a secured data activation system for a data carrier, such as a credit card according to the invention.

Credit cards in the terms of the present invention comprise any card provided with data carrier means carrying data to be secured intended for card owner use only. Credit cards of such type include smart cards, where said secured data is stored on a chip, and magnetic strip cards, where the secured data is stored in a magnetic strip. Such credit cards are presently used for different applications, such as ID-cards or drivers licenses for identification purposes, and credit or money transfer cards for carrying data for use in money transfers in e.g. automated teller machines (ATM's) like cash teller machines or payment installations, in which the credit card holder is required to let go of the credit card for a certain ATM insertion time, while the credit card is being read and held, or automated payment systems, either stationary or portable, e.g. reading devices for Internet commerce and the like, in which the credit card holder is required to hold on to said credit card, while performing a sweeping motion of it past a credit card reader.

These credit cards, generally called plastic cards, have gained large popularity in the last decades as a medium by which purchase money is paid and business transacted without the necessity of carrying cash or enduring a long term escrow or other means for transferring title or securing payment of cash. With the popularity and ready acceptance of credit cards in the business world, the use thereof by unscrupulous persons to make unauthorized transaction has become a serious problem costing the consumers millions of dollars annually. As the demand for such credit cards has risen amongst card thieves, counterfeiters and other illegal uses, the demand for improperly obtained cards market has skyrocketed thus creating an extremely high incentive for these individuals to succumb to temptation.

Since ID-cards may carry sensitive data concerning an individual credit card owner, these cards have also developed into carrying data to be secured from individuals having intent to misuse said data.

Such credit cards with sensitive data requiring personal identification are relatively easy to copy or misuse, especially magnetic strip credit cards have proven easy to copy. There have been many efforts in the past to deal with the problem of further securing said credit cards, including coding thereof for check at the point of purchase to determine if the credit card may be a stolen or copied credit card.

One way of securing said data has concentrated on assigning credit cards with individual multi-digit ID code numbers, e.g. Personal Identification Numbers or PIN's, which the credit card user must keep secret and use at ID-code number checking ATM's. A credit card user carrying several credit cards from different credit card providers will in such cases have to remember and learn by heart several ID-code numbers, which is often difficult, especially if the user is carrying many such credit cards. As a consequence and contrary to credit card provider advice, some users note their ID-code numbers in the vicinity of their credit cards, often being carried in pockets or in the wallet carrying the credit cards.

If a credit card thief has gained access to both a credit card and the corresponding ID-code number, e.g. by stealing a wallet containing such effects, these provide easy access to cash in ATM's or commodities in ware houses and shops, often even before the owner of the credit card have time to cancel his or hers credit cards, or they may provide the thief access to personal information and services not intended for him/her.

In another effort, EP 1 326 196 A1 discloses a smart card for use in conjunction with a security portal, such as a transit portal or parking facility for performing authentication check for authorized passage. Fingerprint pattern sensors on the card generate print pattern signals, which are checked against authentic versions stored in a memory in the card, using a processor located on the card, and the result of this is communicated with the associated external security portal.

U.S. Pat. No. 6,325,285 discloses a smart card with an integrated fingerprint reader, a CPU, and a memory in order to perform verification of the card user and based on this verification to grant access to secured data on said card.

A drawback is such credit cards requires an external system, an ATM or the like, which is specially adapted to communicate with such a credit card in order to activate it in the ATM. Moreover, such biometric credit cards with secured data stored on a magnetic strip are not suitable for automatic payment systems requiring fast transfer of the credit card through a card reader, e.g. portable devices, because there is not enough time for an authentication of the credit card during communication with the card reader.

It is therefore one object of the present invention to provide a fingerprint authenticating credit card, which improves the security of the secured data being carried by the said card by performing an of any external system independent fingerprint authentication and which credit card does not require any changes in the existing card reading devices, such as ATM's and the like, and as such may be used directly with these.

In international patent application WO 01/52204 is described a credit card comprising a communication unit for communicating with an external unit and being activatable by a fingerprint reader and a processor. In one embodiment, the processor can be instructed to generate the appropriate magnetic signal information to a magnetic strip, so that the card can be read after activation, but no information is disclosed concerning how to generate such appropriate magnetic signal information to the magnetic strip, which renders it difficult to provide a homogenous magnetic field for an effective communication of secured data to a credit card reader.

Accordingly, it is therefore another object of the present invention to provide a credit card which improves the security of said secured data by improving the data communication between said credit card and a credit card reader.

These objects are achieved in a first aspect of the invention by a credit card of the initially mentioned kind, wherein said card body comprises at least one driver circuit in communication with at least one transducer coil in said readout area comprising at least one core winding around at least one strip of electromagnetically inducible core material, each strip being individually inducible by said data processor to emit a magnetic field containing secured data signals corresponding to said secured data.

Accordingly, a time controllable, reliable and thus effective data communication is achieved by electromagnetic emission of secured data signals by said credit card, where the data processor causes the emission of said secured data signals from said at least one transducer coil. Thus, the secured data is only available for a credit card reader after authentication by said fingerprint authentication means and during emission of said secured data signals, resulting in a substantial improvement of the security of said secured data. By providing a credit card according to the invention, the manufacture is eased and the credit card is mass-producible in large numbers. Further, the physical and even more importantly the electro-magnetic appearance of the transducer coil is substantially like that of a conventional magnetic strip, resulting in said credit card can be utilized with presently available credit card readers for magnetic strip reading. A suitable selection of core material for the core strips strongly influences the strength and homogenous distribution of the magnetic field being produced. This provides for an enhancement of said magnetic field, resulting in a lower electrical power consumption of said credit card, when creating said magnetic field, which prolongs the life time of said credit card. Further, there is no need for an external electrical power supply, and thus the existing standard systems, such as ID-card readers and money transfer readers, may be used in conjunction with said credit card, i.e. investments in new standard reader systems are not necessary in order to improve the security of the data carried by the credit card. A major advantage of said credit card according to the present invention is accordingly the fact that a complete and self-contained automated authentication process is performed prior to communication concerning said secured data being established between said credit card and any of the existing credit card reader on the market today, irrespective of type (automated ATM or manually operated sweep type), manufacturer, version, or geographical position of said ATM, and of credit card use, i.e. type of secured data on the card, e.g. bank number, social security number, etc.

In one embodiment of said credit card, said fingerprint authentication means control activation of said secured data based on authentication of the fingerprint signals by comparing these with said card owner fingerprint data, if the comparison is a match, then said secured data is activated; else said secured data is not activated. One advantage provided by this embodiment includes a realisation of such a credit card according to the present invention may be secured without the need for an ID-code number used in conjunction with ATM's and the like. The authentication is performed on the card, independently from any external device and may provide further security to said credit card according to the present invention. Of course, combining an authentication on-the-card and an ID-code number check may further increase the security around the secured data.

In another embodiment of said credit card, said activation of said secured data is maintained over a determined activation time period. One advantage provided by this embodiment includes that the owner of the credit card is not required to press his/her fingers against the fingerprint reader during said time period, where secured data is being communicated between the credit card and the read device of an external system. This enables the card to be inserted into e.g. an ATM, which operation requires the credit card user to let go of the credit card during said communication time period. Thus, the communication between reader means and credit card is improved and the security of the secured data is increased.

In a further embodiment of said credit card, the activation of secured data is performed by emission of secured data signals one or several consecutive times by said at least one transducer coil. Thus, secured data is available for communication to any read unit only during said determined activation time period, either as one magnetic field signal being generated during the extend of said determined activation time period or for a shorter time period, or as several consecutive signals spanning the entire determined time period or segments of it. This further increases the security of the secured data upon said credit card, and enables the communication with several types of credit card readers available, such as sweep or insert-type credit card readers.

In another embodiment of said credit card, it further comprises at least one sweep detection sensor, which is able to cause said data processor to activate said secured data by emission of said secured data signals at least once by said at least one transducer coil, when said credit card is in the vicinity of a credit card reader. Accordingly, secured data signals are only emitted in the activation time period during which said credit card is in the vicinity of the credit card reader head, which further enhances the security of said secured data. The secured data is activated immediately after the sweep detection sensor has registered the presence of such a reader head, i.e. the at least one sweep detection sensor enables the activation of said secured data by said data processor. In a further embodiment two sweep detection sensors are provided, one at each end section of said at least one transducer coil in order to provide the data processor with information as to in which end the secured data signals is to begin. In yet another embodiment, said at least one sweep detection sensor is able to detect the velocity with which the credit card is swept by a credit card reader, and based on this detected velocity the data processor is able to determine the activation time period.

In a preferred embodiment said driver circuit is able to perform advanced amplification such as amplitude compensation and pulse shaping upon said secured data signals. Thus, the power consumption is reduced, the intensity of the resulting magnetic field is reduced and the direction of it is sent towards a reader head, and the secured data signal may be provided is presented to the reader head, whereby an increased secured data signal transmittal rate is achieved.

In another embodiment said driver circuit is provided integral with the data processor. This reduces assembly line time and thus production cost and provides for smaller integrated circuits being used.

In another embodiment of said credit card, said at least one strip of inducible core material is provided with at least one distributed air gap. Thus, the strength of the magnetic field being provided by a credit card according to the invention is increased, which further aids the communication between said credit card and a credit card reader, and decreases the current required, resulting in a decreased power consumption of said credit card, when inducing secured data signals to said at least one transducer coil, which prolongs the life time of the power supply provided on said credit card.

In another embodiment of said credit card, said at least one air gap is provided with distributions of material having different electromagnetical inducibility as compared to the material of said at least one strip of inducible core material. Thus, the magnetic field homogeneity is improved by the appropriate selection of air gap material, further improving said data communication.

In another embodiment of said credit card, said at least one core winding is placed substantially at one end section of said at least one strip of inducible core material. Destructive influences from the magnetic field of said core windings in relation to a reader head of a credit card reader are thus reduced considerably, while said transducer coils are still maintaining a strong and homogenous magnetic field when emitting said secured data signals.

In another embodiment of said credit card, said credit card further comprises activation indicator means for indication of the activation of said readout area. One advantage of this embodiment being the card user is given the possibility to check, whether said fingerprint authentication means provided on the credit card according to the present invention have activated said secured data, before communication is attempted to be established between the credit card and a card reader device, e.g. drawn through an automatic payment device reader. Time is not thus not wasted attempting to insert a non-activated credit card into an ATM or the like, resulting in communication failure.

In yet another embodiment of said credit card, said electrical power supply comprises at least one battery. Advantages comprise conventional flat batteries are economical in use, and simple to implement in a credit card according to the present invention. Further, using batteries limits the useable life time period, which for some uses of such a credit card is an advantage in order to control the life time period of the card or the number of card uses.

In still a further embodiment of said credit card, said electrical power supply comprises at least one rechargeable battery. One advantage includes said credit card according to the present invention being useable for an extended period of time.

In yet another further embodiment of said credit card, said electrical power supply further comprises recharging means for said rechargeable battery. One advantage being a credit card according to said embodiment is entirely power self-sufficient and may be used for an extended life time period.

In still a further embodiment of said credit card, said recharging means for said at least one rechargeable battery comprise a solar cell arrangement. One advantage being the solar cells may be provided on a surface of the credit card being subjected to light before and/or during the communication operation between the secured data and the external system.

In a further embodiment of said credit card, said card body further comprises power supply status indicator means. One advantage being the information of a failing power supply is available to the card user on the spot without the use of external means. Thus, the possibility of a power failure for the credit card according to the present invention to stop operating is kept to a minimum.

In a further embodiment of said credit card, said data carrier means include a first data storage for holding card owner fingerprint data, and a second data storage for holding secured data. In this way, said data is kept separated for added security and further said data storages may be conventional data storage means, keeping down production expenses.

In further embodiments of said credit card, said first and/or second data storage is an EEPROM or FLASH-type memory, or said second data storage is a magnetic strip or a smart card chip. An advantage of this being said first and/or second data storage is conventional data storage means, which keep down credit card production expenses and ease the credit card communication with existing external reading devices in an ATM or the like.

In a further embodiment of said credit card said fingerprint authentication means and said data carrier means are combined in a single integrated circuit, such as a microcontroller with a memory. Accordingly, the number of components needed for the operation of such a credit card is kept low, reducing the costs of said credit card.

In a further embodiment of said credit card said single integrated circuit is able to be put in a first state, in which said secured data and said card owner fingerprint data is temporarily available for an activation of said secured data. Accordingly, the security of said secured data is increased further, because outside said temporary period the data is not available for reading by any external reading or tapping devices, which a potential thief may have in his possession.

In a further embodiment of said credit card, said fingerprint reading means comprises at least one fingerprint reading system. Hereby is provided a possibility of selecting a specific fingerprint reading system for activation of an associated set of secured data. Also, it is possible by selecting one or a combination of fingerprints for an activation of a credit card service provided on said card in the form of a specific secured data set. In an alternative embodiment the credit card comprises credit card service selection means, such as a switch, by which a credit card owner may select a credit card service by selecting from different sets of secured data, one for each credit card service available.

In a further embodiment of said credit card, said credit card service selection means comprise one fingerprint reading system for each credit card service available on said credit card. Accordingly, several credit card services are available for a card owner to activate in the form of several secured data sets, which by selection of an appropriate fingerprint or fingerprint combination activates a given set of secured data for readout in said readout area. In an alternative embodiment said credit card service selection means comprise a single fingerprint reading system for all credit card service available, wherein said card owner fingerprint data comprises at least one fingerprint or fingerprint combination corresponding to an activation fingerprint for each credit card service, and wherein said data processor is adapted for activation of the readout area during a determined activation time period, when said activation fingerprint is pressed against said fingerprint reading system. Thus, the number of fingerprint reading systems is reduced, lowering production cost

In yet another embodiment of said credit card said fingerprint reading means are able to pre-store card owner fingerprint on said data carrier means in a one-time operation. Accordingly, personal ID-data, namely the fingerprint data of the card owner, is only stored one time and only at one location, which further improves the security of said personal ID-data. This is due to the fact that there is no need for any other or further registration in a database or carrier external to the memory provided on a credit card according to the invention, and thus no possibility is provided for neither a central registration of such personal ID-data as fingerprint data nor a potential tapping of such a central registration.

In another embodiment of said credit card, said card owner fingerprint data comprises at least one fingerprint or fingerprint combination corresponding to a deactivation fingerprint, and said data processor is adapted for deactivation of the readout area during a determined deactivation period, when said deactivation fingerprint is pressed against said fingerprint reading means. Thus, if coerced by a criminal into using the biometric credit card for e.g. cash money transfers, a credit card owner is given the opportunity to render the credit card inoperable for a longer time period, e.g. hours, days, or months, even permanently in order to discourage would-be criminals from such coercion. Thus, the services provided by said secured data has been even more safeguarded from misuse by such criminals.

It is farther also an object of the invention to provide a secured data activation system for a data carrier, such as a credit card according to the invention, which improves the security of said secured data by improving the data communication between said data carrier and a data carrier reader.

In a second aspect of the invention, the above object are achieved by a secured data activation system for a data carrier, such as a credit card according to the invention, comprising data carrier means holding at least secured data; an input device for acquiring an input; a readout area; secured data activation means comprising a data processor, which based on said input is able to submit said secured data to said readout area; and an electrical power supply delivering electrical power to at least said input data unit, said secured data activation means, and said readout area; said secured data activation system comprising at least one driver circuit in communication with at least one transducer coil upon said readout area comprising at least one core winding around at least one strip of electromagnetically inducible core material, each strip being individually inducible by said data processor to emit a magnetic field containing secured data signals corresponding to said secured data.

Thus, a data carrier is provided which is able to submit secured data to a readout area for emission of secured data signals to a data carrier reader for an improved communication between these. Such a data carrier is suitable as a substitute for any data carrier having conventional magnetic strips, and may require a data input or active input before being activated. Applicable systems, other than credit cards systems, may be automatic employee attendance systems, individualized Internet shop cards, ID-badges etc. Said input is not limited to fingerprint authentication, but may also be retina, signature, or other authentication, or may even be a simple push button input, and said input may originate from any person, not only the person or entity to which said secured data relates to.

The credit card according to the present invention will now be described, by way of example, with reference to the diagrammatic drawings, in which:

FIG. 1 is a block diagram over a credit card according to one embodiment of the present invention;

FIG. 2 shows a first credit card comprising a magnetic strip;

FIG. 3 shows a second credit card comprising a smart chip;

FIG. 4 shows the back side of a credit card according to one embodiment of the present invention;

FIG. 5 shows a credit card according to a preferred embodiment of the present invention;

FIG. 6 shows a transducer coil of a credit card according to the preferred embodiment of the present invention in the vicinity of a credit card reader, and

FIG. 7A, 7B, 7C are showing curves of magnetic field amplitude over the extent of a transducer coil without DA-conversion, a resulting DA-conversion curve, and the resulting amplitude after addition of the two curves, respectively, as a function of position on the transducer coil.

FIG. 1 shows a diagrammatic block diagram for a credit card according to the invention. Said credit card comprises a card body 1, an on-the-card electrical power supply 12, fingerprint reading means 14, fingerprint authentication means 16 comprising a data processor, and data carrier means 18.

Said electrical power supply 12 is delivering electrical current to at least fingerprint reading means 14 and in the embodiment shown in FIG. 1 also to fingerprint authentication means 16 using any conventional electrical connection (solid line). Obviously, certain or all electrical components of said credit card may be provided with electrical power from said power supply 12. Said fingerprint reading means 14 provide fingerprint signals 14s to said fingerprint authentication means 16 in order to enable a comparison between said fingerprint signals 14a and card owner fingerprint data 18fd pre-stored in said data carrier means 18 for activating secured data 18sd likewise pre-stored in said data carrier means 18.

Said electrical power supply 12 may advantageously comprise one or more rechargeable and/or non-rechargeable batteries. The power supply 12 preferably further comprise electrical connections to the various electrical components provided on the card body, and, in the case of rechargeable batteries being provided, preferably recharging means, e.g. terminals for connection to an externally provided battery charging system or, advantageously, solar cells provided on said card body, said recharging means in electrical communication with said rechargeable battery or batteries.

Present non-rechargeable batteries are compact, both in power and in size, and one or more batteries provide adequate power for several fingerprint readings and accompanying authentications for communication operations between a credit card according to the present invention and a card reader device. In some uses for such a credit card it may be preferred to limit the battery life time period in which such card may be active, e.g. limiting the use of a card to two authentications in a user test trial of such a novel card.

Fingerprint reading means 14 may comprise any available conventional device, preferably a small and flat fingerprint reading system provided on one or two sides of the card body 1, which system may comprise some or all of one or more biosensors, a fingerprint image taker, a fingerprint data storage, a fingerprint data analyzer, or the like. The fingerprint signals 14s provided to said fingerprint authentication means 16 may comprise signals encompassing several data, e.g. analyzed or raw fingerprint image data, heat sensor data, etc. Said fingerprint reading means 14 is thus able to provide fingerprint signals 14s based on one or more fingers being pressed against any biosensor provided on the card.

Data carrier means 18 comprise one or more storage devices, i.e. a first data storage comprising at least one or more memory units for storing card owner fingerprint data and a second data storage comprising one or more memory units for storing secured data. Said data storages may be one and the same unit storing all data, or two or more units storing each their type of data, or a combination of these.

Card owner fingerprint data 18fd is data concerning one or more fingers of an authorized card owner, said data preferably being pre-stored on the credit card according to the present invention. Said pre-storage may be performed in any conventional way, e.g. by a card owner fingerprint storing operation certified by the credit card provider. Memory units used for storing card owner fingerprint data may take the form of RAM, ROM, PROM's, EEPROMS, smart card chips, magnetic strips or the like.

An added security is provided by the fact that pre-storing and thus registration of card owner fingerprints may be performed only on a limited number of credit cards, preferably only one credit card. Thus it is possible to avoid having to register fingerprints outside the credit card in question, and thus the possibility of an unauthorized person stealing a set of fingerprints data to match a stolen card is virtually non-existing. Preferably, said pre-storage of the card owner fingerprints is performed on the card in a one-time only operation, where the fingerprint data is obtained by said fingerprint reading means 14 provided on said credit card. Thus, the original fingerprints of the card owner are only stored one place, i.e. on the credit card in the first data storage, and not in e.g. a central storage database. This adds to the security of said fingerprint data, as it removes the client concern of having their very personal fingerprints registered centrally. Further, this removes any possibility of illegally acquiring such centrally stored fingerprint data by a potential thief. The data processor of said credit card may be set up as to be able to hinder any further pre-storage being performed or it may be set up for allowing only one registration of one or more card owner fingerprints or fingerprint combinations, either once for each life time of said credit card, or for each provision or deletion of each credit card service on said card, which is performed by adding or deleting one or more sets of secured data in said second storage.

The term “credit card owner” denotes one or more persons, all of which have their respective fingerprint data sets pre-stored in said data carrier means of one credit card according to the invention. This allows for more than one person is able to activate the secured data held by said one credit card. The term “credit card user” denotes the person, who is attempting to activate the secured data on a credit card according to the invention.

Secured data 18sd comprises one or more sets of secured data, each set of secured data containing e.g. personal data or bank teller information, such as card number, or the like, which data is used to gain access to personal services either cash, automatic payment of commodities, or the like. Said secured data may be in the form of freely accessible readable data or alternatively encrypted data, or a combination of both, where the provision of encrypted data provides further security during a data communication transfer. Memory units used for storing secured data on the conventional credit cards often take the form of smart card chips or magnetic strips, but preferably the secured data and the card owner fingerprint data may be stored on data carrier means, such as an EEPROM or FLASH-type memory as the first and/or second data storage. Thus, the credit card according to the invention creates an effective blocking of the availability of said secured data, especially for preventing any un-lawful copying of the magnetic information provided on a conventional magnetic strip, because the secured data is only released to the readout area in a form of electromagnetically induced secured data signals from said one or more transducer coils after a card user authentication procedure has been performed.

Said fingerprint authentication means 16 comprise means for authenticating fingerprint signals 14s provided by said fingerprint reading means 14, where said authentication preferably comprise a comparison procedure using card owner data pre-stored in said data carrier means 18, and a secured data activation procedure for activating said secured data pre-stored in said data carrier means 18, but may include further or other authentication steps e.g. comprising user/card provider selection options.

Said fingerprint authentication means 16 comprises a data processor capable of performing the authentication procedures. Said data processor may be dedicated for said authentication or may also be incorporated in a smart card chip for said secured data.

Preferably, said fingerprint authentication means and data carrier means may be provided in combination as a single integrated circuit on said credit card, e.g. in the form of a microcontroller chip with an EEPROM or FLASH type memory. In order to further enhance the security of the data held in said memory, i.e. secured data and card owner fingerprint data, said single integrated circuit or even said one or more data storages may be unavailable for external reading, e.g. by short circuiting the appropriate pins of the integrated circuit, during the time period, in which said credit card is not in use. This inhibits any attempt by a potential thief, which has access to integrated circuit reading means, to read said data without a preceding fingerprint authentication. Said short circuiting of said single integrated circuit is then temporarily opened in order to make the data available for activation by the above mentioned fingerprint authentication process. This opening of the short circuiting may be initiated by performing an operation on the card, e.g. one or more fingers touching the fingerprint reading means, or by any other suited means.

Preferably, said fingerprint authenticated activation of the secured data may be maintained for a determined activation time period. Examples showing the applicability of this embodiment encompass activation of the secured data during the time period in which one or more fingers are pressed against said fingerprint reading means, e.g. during a swift passing of the credit card through a reading device in an automated payment device, or alternatively during the time period stretching itself from the moment in which the card owner has released the credit card into a ATM, and the moment, when the ATM has completed reading of the secured data provided on the credit card. A major advantage of said credit card according to the present invention is the fact that a complete and self-contained automated authentication process is performed prior to communication being established between said credit card and any of the existing ATM's on the market today, irrespective of type (automated or manually operated), manufacturer, version, or geographical position of said ATM.

Preferably, said secured data is activated for a precisely set determined time period, allowing for just enough time for communication to be established and completed. If said time period is chosen too long, this may provide a card thief ample time to perform his/her own transaction, resulting in lower security for said secured data. If the time period is set too short, there may not be enough time to complete communication between the credit card and the ATM or the like. After said time period, the secured data is not submitted by the data processor, and a new authentication is to be performed again, when needed. This procedure is preferably used, when the timing of the secured data activation start and end is not critical.

Alternatively, as will be described below, at least one sweep detection sensor 30 is provided on the credit card to activate the secured data in one or more data bursts when the sweep detection sensor registers a sweep being made past a reader head of a credit card reader.

In FIG. 2 is shown one surface of a credit card according to another embodiment of the present invention comprising a card body 1 on one side provided with a magnetic strip as data carrier means 18, and provided with an electrical power supply 12 such as a rechargeable or non-rechargeable battery.

Advantageously, a credit card according to the present invention may also comprise activation indicator means for indicating the secured data activation status, i.e. whether or not the secured data provided on such a card is in a state of activation. In FIG. 3 is shown such an activation indicator means 160 in this embodiment comprising a green or green/red LED, where green light indicates activation of the secured data pre-stored on said data carrier means and no green or red light indicates no activation of said secured data. The advantage of such means is the card user may assure him or her self of the state of activation before he or she utilises the credit card according to the present invention in a reading device in order to avoid futile attempts for the reading device to communicate with said data carrier means provided on the card, if no activation has been initiated due to fingerprint mismatch, low battery power or the like.

Said activation indication means 160 may advantageously for power consumption reasons be turned off when the card is not being used, i.e. only during a short time period after one or more fingers have been placed onto said fingerprint reading means.

FIG. 3 further shows a credit card provided with power supply status indicator means 120, in this embodiment consisting of an electrically conductive colour changing strip, the changing of the colour indicating battery power status. This is especially of use, when rechargeable batteries are provided on the credit card to indicate for a card user when it is time to charge said batteries, but may also be used to indicate card wear status for a short life time use.

FIG. 4 shows a further embodiment of the credit card according to the present invention, in which one side of the card body 1 partly is provided with solar cells 125 for recharging of rechargeable batteries being provided on said credit card. The exact type, arrangement, size, number and other characteristics of said solar cells may vary, but these preferably match the recharging need of said batteries for at least one authentication being performed by the card and for the optional associated indications to the card user. Said recharging means may of course assume other forms, e.g. recharging terminals being provided on said credit card for connection to externally provided charging means, such as corresponding charging terminals on a conventional battery charger.

In FIG. 5, a credit card according to the invention is shown in a preferred embodiment, which comprises a card body 1, comprising a rechargeable battery 12 supplying electrical current to fingerprint reading means 14, fingerprint authentication means 16 comprising an EEPROM memory 18 and a data processor such as a microcontroller, and a readout area 40. Said fingerprint authentication means 16 is able to compare fingerprint signals received from said fingerprint reading means 14 with card owner fingerprint data stored in said memory 18 in order to, during a determined time interval, submit signals corresponding to secured data also stored in said memory 18 through a driver circuit 20 also provided on said card body 1 on to a readout area 40 on said card body 1 for emission of said secured data signals. No secured data are emitted from said readout area 40 outside said determined activation time interval. The driver circuit 20 may preferably comprise amplifier electronics, such as operational amplifiers and may preferably be provided integral with the data processor, e.g. in an ASIC.

The readout area 40 comprises three transducer coils 42, of which one is shown in FIG. 6, each comprising a number of core windings 420 wound around an end section of a strip 422 of electromagnetically inducible core material. Each transducer coil 42 is individually inducible by said driver circuit 20. The number of transducer coils may be chosen to three in order to induce secured data signals corresponding to conventional magnetic strip information, which lies in magnetic strips in three tracks, but may as an alternative be provided in numbers ranging from one to more than three. For most applications, data is only to be generated in two transducer coils 42, corresponding to the first and second of said conventional magnetic strips. In conventional magnetic strips, the data is permanently magnetically presented to a credit card reader using a so-called F2F-format, or two frequency format, in which a “0” bit is formed by a magnet part of a predetermined length in said magnetic strip, and a “1” bit is two longitudinally, magnetically oppositely directed magnet parts, having a combined length equal to said length of the “0” bit magnet part. One conventional magnet track is usually provided with 1210 bits/inch. Thus, the transducer coils 42 of the credit card and secured data activation system according the present invention preferably is to emit and present said secured data signals in such F2F-format to a credit card reader, which is to read said credit card with a reader head 50.

The transducer coil 42 shall produce a homogenous and relatively strong magnetic field in order for it to be readable by a credit card reader. The nature of this magnetic field is heavily influenced by the transducer coil construction, such as choice of core material and core construction of the cores strips 422, number and position of the core windings 420 upon the core strips 422. Variations in the signals to a transducer coil 42 generates a variable magnetic field along the strip, which is identical to the magnetic field, which a reader head is influenced by, when a conventional magnetic strip credit card holding the same secured data is passed through the same reader.

The material of the core strip 422 is advantageously an electromagnetically inducible material, such as metal, preferably electromagnetic lamination, sheet iron or other sheet metal, either provided as a single or double foil on one or each side of the card body, advantageously having a width and a position corresponding to a conventional magnetic track in order to have a similar magnetic and physical appearance. The choice of core material of the core strips strongly influences the strength and distribution of the magnetic field produced, and allow for an enhancement of the magnetic field being produced, resulting in the need for lower current in the core windings, which reduces the power consumption of said credit card.

The core strip 422 may preferably be provided with distributed air gaps (not shown), or contaminations of another less or more electromagnetically inducible material, such as plastic or paper, either provided along the extend of the core material or inside the card body in order for the transducer coil to produce several small magnetic fields along the core material to provide a homogenous magnetic field distribution for facilitating improved readability by a read gap of a credit card reader being used on the credit card according to the invention. Without such air gaps, the strongest part of the magnetic field has a tendency to flow from one end of the core strip to the other end thereof and accordingly away from a read gap of a magnetic reader head of a credit card reader.

The term “core strip” is to be understood as indicating substantially elongated parts of core material, thus also comprising several successively positioned relatively small or large core material sections and/or one integral core material section, having a relatively small or large thickness of material layer and having suitably dimensioned widths and heights for producing a magnetic field of a desired strength, homogeneity and extent.

It has been found that providing the core windings 420 of the transducer coil 42 on an end section of the electromagnetically inducible core strip 422 is able to provide a homogenous magnetic field being emitted by the entire readout area 40. Providing said core windings 420 on one end section of said core strips 422 as seen if FIGS. 5 and 6 also helps to reduce magnetic interferences between the core windings 420 provided on said credit card and the reader head 50 of a credit card reader. Thus, the provision of the core windings 420 of the respective three transducer coils 42 may alternatively advantageously be provided consecutively in opposite end sections. Obviously, the core windings of said transducer coil may also alternatively be provided evenly distributed along the core strip extension, or may be distributed in one or more sections of said core strip or sections thereof. The core windings 420 are preferably provided around the short side of the core strip 422 and may be provided in any appropriate number relating to desired magnetic field strength, current load of the core windings, magnetic appearance, etc. Obviously, the core windings are of a material, which is able to induce a magnetic field into said inducible core strips, e.g. a metal like iron or another suitable conducting material.

By the invention it has been realized that such an “activatable magnetic strip” in the readout area may be useful for other applications, in which secured data from a magnetic strip requires an input before being activated, e.g. automatic employee attendance systems, individualized Internet shop cards, ID-badges etc. Said input is not limited to fingerprint authentication, but may also be retina, signature, or other authentication, or may even be a simple push button input, and may be from any person, not only the person or entity to which said secured data relates to. A secured data activation system is therefore also disclosed herein, shown as an example being such a credit card with fingerprint authentication.

In FIG. 5, the credit card shown is further comprising a sweep detection sensor 30, which is positioned at one of said transducer coils 42 for the detection of a credit card reader 50, when the credit card according to the invention is in the vicinity of such a reader, i.e. when said sensor 30 is adjacent to a pick-up reader head 50 of a credit card reader. Such a sweep detection sensor 30 may comprise at least one sensor winding (not shown) provided around one of said core strips 422. In use, the sweeping of the credit card through a credit card reader will induce a current in said at least one sensor winding, because said pick-up head 50 is magnetic and the card or head is moving, which is sensed by the sweep detection sensor 30. Other sweep detection sensors, which may alternatively be used comprise: A) a switch, which is closed, when a reader head of a credit card reader is in the vicinity of said sensor, or B) two conductors, which short circuit when the reader head of a credit card reader is passed by in the vicinity of said sensor, or any other suitable sweep detection sensor means. The advantage of a sweep detector sensor being present is that at least the beginning of the activation time period and also the duration of said time period can be determined based on the input from said sensor.

As an alternative, more than one sweep detection sensor may be provided, e.g. one at each end section of a transducer coil or alternatively at each end section of the readout area, as to feed the data processor with information as to at which end of the transducer coil the secure data set is to begin based on said reader head vicinity detection.

In another embodiment, the sweep detection sensor or sensors detect the velocity with which it or they pass the pick-up head, and this information is fed to the data processor, which in turn determines the onset and duration of the activation time period necessary to communicate the secured data signals to the credit card reader. This is especially advantageous when using the credit card according to the invention in ATM-type machines, because the duration of the emission of the secured data signals is reduced to the communication time period only and the read velocity in a conventional ATM is often preset to a constant or well defined system preset velocity

When card owner fingerprints are registered by said fingerprint reading means 14 the submittal of secured data to said transducer coils 42 may be enabled for a determined time period. During said time period, the secured data signals are only emitted from the readout area, when and if the sweep detection sensor 30 detects such a vicinity to a credit card reader head 50, immediately after which preferably only one emission of the secured data signals is provided by said readout area 40. This is useful when sweeping said credit card through a credit card reader with a relatively quick movement of said credit card. Alternatively, several emissions may be performed during said time period. This may be useful when said credit card is left inside said credit card reader for a longer lasting communication period.

In FIG. 6 is shown a conventional credit card reader head 50 reading one transducer coil 42 from a credit card according to the present invention (not shown). The credit card reader decodes the data being emitted by a credit card, upon which the coil is situated, preferably according to certain standards of presenting credit card data known to the skilled person, such as the ISO 7811 standard. In said standard, a protocol is used comprising a start sentinel, 76 alphanumeric characters comprising an initial format code and field separators between data parts, an end sentinel, and a longitudinal redundancy check character. The coils of the credit card may preferably generate secured data as described above in order to comply with such given standards.

In a preferred embodiment, the driver circuit 20 is able to perform advanced amplification comprising amplitude compensation, which may be performed with DA-conversion technology or even an analogue timing determined circuit, and pulse shaping, which may be performed by DA-conversion or analogue filtering of the secured data to or secured data signals over said transducer coil by either active or passive filtering. These technologies are well known to a person skilled in the art

Pulse shaping (fast compensation) is the activity of adjusting the pulse shape of the secured data signals transmitted to the reader head in such a way, that an improved transmittal characteristic is achieved, allowing an increased secured data signal transmittal rate.

In FIGS. 7A, 7B, and 7C is illustrated an example of amplitude compensation of the field being distributed by the transducer coil 42. The amplitude compensation (slow compensation) is regulating the magnetic field intensity, which is a function of the current through the core windings of the transducer coil in order to keep the magnetic field amplitude-stable along the extend of the transducer coil 42 and a portion beyond the edge of this. FIG. 7A shows a amplitude characteristic over the extent of a core strip without amplitude compensation, in which it is seen, that the magnetic field intensity B, which is a function of the core winding current I, is not constant along the extent of a transducer coil 42, especially not at the end portions, where the amplitude tend to increase. The disadvantage of this is the fact that a large amount of the electrical power is used outside the read area, reducing the effectiveness of the signal transfer. Further, this effect provides for secured data signals of a relatively high intensity extending away from said credit card, even beyond the ATM and/or the credit card holder, thus adding a risk that a malicious person having intentions of copying the secured data signals may be able to “tap” the secured data signals during emission thereof. In FIG. 7B is shown an example of an amplitude compensation signal provided by DA-conversion in the driver circuit, which by a further DA-conversion is added to the amplitude characteristic of FIG. 7A. In FIG. 7C is shown the resulting magnetic field amplitude compensated by DA-conversion, in which a substantially constant amplitude is seen to be the result over the extent of the transducer coil 42. Two advantages of this is the result. Firstly, the amplitude of the secured data signals may be kept to a constant minimum for the reader head to be able to read the secured data signals, reducing the risk of copying by malicious persons, also because the magnetic field thus may be compensated for a direction towards the reader head. Secondly, the resulting power consumption through the core windings is reduced significantly, which in turn extends the life time of the electrical power supply provided on the card body. Preferably, the intensity of the magnetic field during emission of the secured data signals corresponds to the intensity presently available from conventional magnetic strips.

In use, an owner of a credit card according to the present invention takes hold of said credit card, presses one or more fingers against said fingerprint reading means, and fingerprint authentication means provided on the credit card activate secured data provided on said credit card only if the fingerprint authentication performed on the card matches against card owner fingerprint data also provided on the credit card. If a fingerprint match is established, secured data pre-stored on the card is activated by said fingerprint authentication means and said secured data may be read from any reading device of an ATM or the like.

An advantageous function being provided by said credit card according to the invention is the provision of the storage in said data carrier means 18 of at least one fingerprint or fingerprint combination corresponding to deactivation fingerprints of said card owner. If a criminal is trying to coerce a card owner into activating the secured data in order to e.g. provide cash money for said criminal, such attempt may be neutralized or even avoided. This is due to the fact that the criminal is not aware of which fingerprint or fingerprints can activate or deactivate the secured data. Accordingly, the card owner is availed the opportunity to select an authentication finger or combination of fingers, which on said credit card are stored as deactivation fingerprints, and thus deactivate the secured data for a appropriately long deactivation time period, which may be selected to be hours, days, or longer, even permanently. The deactivation fingerprint is authenticated by the data processor, which based on the positive authentication with a stored deactivation fingerprint renders said secured data inaccessible for a pre-selected deactivation time period, which may be stored in said data carrier means 18 or programmed into said fingerprint authentication means 16 comprising a data processor.

The data processor or microcontroller is able to be programmed for a registration of which specific fingerprints from different fingers or combinations of fingerprints are to be used for long term credit card deactivation or for activation of the respective secured data sets for each credit card function available on one credit card according to the invention. Preferably, said data processor or microcontroller is set up in such a way that such programming is only to be performed once, e.g. once for the life time of said credit card or once for each addition or removal of different credit card functionality, i.e. credit card service being provided by said credit card.

The authentication procedure being done on the card and independently of any reading device or other external apparatus is possible only because the power supply for this procedure is provided on the credit card itself. An independent, on-the-card, and substantially self contained power supply is provided with a credit card according to the present invention.

The exact configuration on the credit card of the different components provided on said card is not important and is only shown in the figures as way of example. One may prefer an integration of all components, ultimately into one fingerprint reading, authenticating, data carrying, power supplying device, such as an integrated circuit provided on said card, said integration being advantageous for cost and miniaturization reasons.

By the invention it is realised that a multi-function card is enabled by providing the credit card with credit card services selection means for a card owner to select different credit card services in the form of different sets of secured data, e.g. a social security number, a bank ID-number, and a credit provider ID-number. This may be done either by providing a conventional switch on said credit card for selecting between these or by providing at least one fingerprint reading system. A card owner may select one system amongst a plurality of fingerprint reading systems by pressing one or more fingers against said selected system. The selection thus activates an associated set of secured data, which optionally may be provided from the same provider, or different card providers. As an example, selection of a first fingerprint reading system may e.g. activate a first set of secured data concerning bank ID-number; selection of a second fingerprint reading system may activate a second set of secured data concerning social security number. Alternatively, said credit card service selection means comprise a single fingerprint reading system for all credit card service available, wherein said card owner fingerprint data comprises at least one fingerprint or fingerprint combination corresponding to an activation fingerprint for each credit card service, and wherein said data processor is adapted for activation of the readout area during a determined activation time period, when said activation fingerprint is pressed against said fingerprint reading system. The advantage of such credit card service selection means comprises as noted above optionally dispensing with a dedicated ID code number for each secured data set to be activated, which mitigates the need for a card user to remember several ID code numbers, one for each card in possession.

Claims

1. A credit card comprising a card body, which comprises

fingerprint reading means providing fingerprint signals representative of at least one fingerprint from a card user, when at least one finger of said user is pressed against said fingerprint reading means;
data carrier means holding at least card owner fingerprint data and secured data;
a readout area;
fingerprint authentication means comprising a data processor, which is able to authenticate said fingerprint signals with said card owner fingerprint data; and
an electrical power supply delivering electrical power to at least said fingerprint reading means, said fingerprint authentication means, and said readout area;
characterized in that
said card body comprises at least one driver circuit in communication with at least one transducer coil in said readout area comprising at least one core winding around at least one strip of electromagnetically inducible core material, each strip being individually inducible by said data processor to emit a magnetic field containing secured data signals corresponding to said secured data.

2. A credit card according to claim 1, in which said fingerprint authentication means control activation of said secured data based on authentication of the fingerprint signals by comparing these with said card owner fingerprint data, if the comparison is a match, then said secured data is activated, else said secured data is not activated.

3. A credit card according to claim 1, where activation of said secured data is maintained over a determined activation time period.

4. A credit card according to claim 3, where said activation of secured data is performed by emission of secured data signals one or several consecutive times by said at least one transducer coil.

5. A credit card according to claim 1, further comprising at least one sweep detection sensor, which is able to cause said data processor to activate said secured data by emission of said secured data signals at least once by said at least one transducer coil, when said credit card is in the vicinity of a credit card reader.

6. A credit card according to claim 5, wherein two sweep detection sensors are provided, one at each end section of said at least one transducer coil in order to provide the data processor with information as to in which end the secured data signals is to begin.

7. A credit card according to claim 5, wherein said at least one sweep detection sensor is able to detect the velocity with which the credit card is swept by a credit card reader, and based on this detected velocity the data processor is able to determine the activation time period.

8. A credit card according to claim 1, in which said driver circuit further is able to perform advanced amplification such as amplitude compensation and pulse shaping upon said secured data signals.

9. A credit card according to claim 1, in which said driver circuit is provided integral with the data processor.

10. A credit card according to claim 1, where said at least one strip of inducible core material is provided with at least one distributed air gap.

11. A credit card according to claim 10, where said at least one air gap is provided with distributions of material having different electromagnetical inducibility as compared to the material of said at least one strip of inducible core material.

12. A credit card according to claim 1, in which said at least one core winding is placed substantially at one end section of said at least one strip of inducible core material.

13. A credit card according to claim 1, further comprising activation indicator means for indication of the activation of said readout area.

14. A credit card according to claim 1, in which said electrical power supply comprises at least one battery.

15. A credit card according to claim 1, in which said electrical power supply comprises at least one rechargeable battery.

16. A credit card according to claim 1, in which said electrical power supply further comprises recharging means for said rechargeable battery.

17. A credit card according to claim 16, in which said recharging means for said at least one rechargeable battery comprise a solar cell arrangement.

18. A credit card according to claim 1, in which said card body further comprises power supply status indicator means.

19. A credit card according to claim 1, in which said data carrier means include a first data storage for holding card owner fingerprint data, and a second data storage for holding secured data.

20. A credit card according to claim 19, in which said first and/or second data storage is an EEPROM or FLASH-type memory.

21. A credit card according to claim 19, in which said second data storage is a smart card chip or a magnetic strip.

22. A credit card according to claim 1, in which said fingerprint authentication means and said data carrier means are combined in a single integrated circuit, such as a microcontroller with a memory.

23. A credit card according to claim 22, in which said single integrated circuit is able to be put in a first state, in which said secured data and said card owner fingerprint data is temporarily available for an activation of said secured data.

24. A credit card according to claim 1, wherein said fingerprint reading means comprise at least one fingerprint reading system.

25. A credit card according to claim 1, further comprising credit card service selection means, such as a switch, by which a credit card owner may select a credit card service by selecting from different sets of secured data, one for each credit card service available.

26. A credit card according to claim 25, wherein said credit card service selection means comprise one fingerprint reading system for each credit card service available.

27. A credit card according to claim 25, wherein said credit card service selection means comprise a single fingerprint reading system for all credit card service available, wherein said card owner fingerprint data comprises at least one fingerprint or fingerprint combination corresponding to an activation fingerprint for each credit card service, and wherein said data processor is adapted for activation of the readout area during a determined activation time period, when said activation fingerprint is pressed against said fingerprint reading system.

28. A credit card according to claim 1, where said fingerprint reading means by means of said data processor is able to pre-store card owner fingerprint on said data carrier means in a one-time operation.

29. A credit card according to claim 1, wherein said card owner fingerprint data comprises at least one fingerprint or fingerprint combination corresponding to a deactivation fingerprint, and wherein said data processor is adapted for deactivation of the readout area during a determined deactivation period, when said deactivation fingerprint is pressed against said fingerprint reading means.

30. A secured data activation system for a data carrier, such as a credit card according to claim 1, comprising

data carrier means holding at least secured data;
an input device for acquiring an input;
a readout area;
secured data activation means comprising a data processor, which based on said input is able to submit said secured data to said readout area;
an electrical power supply delivering electrical power to at least said input data unit, said secured data activation means, and said readout area; and
at least one driver circuit in communication with at least one transducer coil in said readout area comprising at least one core winding around at least one strip of electromagnetically inducible core material, each strip being individually inducible by said data processor to emit a magnetic field containing secured data signals corresponding to said secured data.

31. A secured data activation system according to claim 30, where activation of said secured data is maintained over a determined activation time period.

32. A secured data activation system according to claim 30, where said activation of secured data is performed by emission of secured data signals one or several consecutive times by said at least one transducer coil.

33. A secured data activation system according to claim 30, further comprising at least one sweep detection sensor, which is able to cause said data processor to activate said readout area by emission of said secured data signals one or several consecutive times by said at least one transducer coil, when said credit card is in the vicinity of a credit card reader.

34. A secured data activation system according to claim 33, wherein two sweep detection sensors are provided, one at each end section of said at least one transducer coil in order to provide the data processor with information in which end the secured data signals is to start.

35. A secured data activation system according to claim 33, wherein said at least one sweep detection sensor is able to detect the velocity with which the credit card is swept by a credit card reader, and based on this detected velocity the data processor is able to determine the activation time period.

36. A secured data activation system according to claim 30, in which said driver circuit further is able to perform advanced amplification such as amplitude compensation and pulse shaping upon said secured data signals.

37. A secured data activation system according to claim 30, in which said driver circuit is provided integral with the data processor.

38. A secured data activation system according to claim 30, where said input device is a credit card user verification device.

39. A secured data activation system according to claim 30, said at least one strip of inducible core material is provided with one or more distributed air gaps.

40. A secured data activation system according to claim 39, said where said one or more air gaps are provided with distributions of material having different electromagnetical inducibility as compared to the material of said at least one strip.

41. A secured data activation system according to claim 30, in which said at least one core winding is placed substantially at one end section of said at least one strip of inducible core material.

42. A secured data activation system according to claim 30, further comprising activation indicator means for indication of the activation of said readout area.

43. A secured data activation system according to claim 30, in which said electrical power supply comprises at least one battery.

44. A secured data activation system according to claim 30, in which said electrical power supply comprises at least one rechargeable battery.

45. A secured data activation system according to claim 44, in which said electrical power supply further comprises recharging means for said rechargeable battery.

46. A secured data activation system according to claim 45, in which said recharging means for said at least one rechargeable battery comprise a solar cell arrangement.

47. A secured data activation system according to claim 30, in which said card body further comprises power supply status indicator means.

Patent History
Publication number: 20070189581
Type: Application
Filed: Mar 7, 2005
Publication Date: Aug 16, 2007
Inventors: Torsten Nordentoft (Speracedes), Bjorn Skern (Paris), Per Andersen (Paris), Susanne Lastein (Paris)
Application Number: 10/592,052
Classifications
Current U.S. Class: 382/115.000; 235/380.000
International Classification: G06K 9/00 (20060101); G06K 5/00 (20060101);