WO2006053191A2 - Method and system for performing a transaction using a dynamic authorization code - Google Patents

Method and system for performing a transaction using a dynamic authorization code Download PDF

Info

Publication number
WO2006053191A2
WO2006053191A2 PCT/US2005/040882 US2005040882W WO2006053191A2 WO 2006053191 A2 WO2006053191 A2 WO 2006053191A2 US 2005040882 W US2005040882 W US 2005040882W WO 2006053191 A2 WO2006053191 A2 WO 2006053191A2
Authority
WO
WIPO (PCT)
Prior art keywords
dynamic code
transaction
data
account
message
Prior art date
Application number
PCT/US2005/040882
Other languages
French (fr)
Other versions
WO2006053191A3 (en
Inventor
John Wankmueller
Original Assignee
Mastercard International Incorporated
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Mastercard International Incorporated filed Critical Mastercard International Incorporated
Publication of WO2006053191A2 publication Critical patent/WO2006053191A2/en
Publication of WO2006053191A3 publication Critical patent/WO2006053191A3/en
Priority to US11/746,765 priority Critical patent/US8527427B2/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/56Financial cryptography, e.g. electronic payment or e-cash

Definitions

  • transaction or payment tokens such ' as a credit card, debit card, or radio frequency device
  • transaction or payment tokens is an increasingly important method for making payments, performing fund transfers, or effecting other transactions.
  • These transactions can occur face-to-face at a point of sale, over the telephone, through the mail, over the Internet, or in other contexts.
  • PIN personal identification number
  • ISO 9564 International standardized way - such as according to ISO 9564.
  • the user's transaction card is inserted or swiped in a card reader.
  • the reader extracts certain data from the card, such as an account number.
  • the card reader requests the user enter his or her PIN on a special keypad sometimes called a PinPad or PIN Entry Device (PED).
  • PED PIN Entry Device
  • the PIN is immediately encrypted and secured.
  • the secured PIN data then is transmitted through secure means to an authorization location, such as an authorization computer, where cardholder data is stored.
  • the account identification data is used to securely lookup or calculate the PIN for the account to verify that the PIN entered by the cardholder was correct. This approach minimizes fraud because the person in possession of the card must also know the secret PIN to complete the transaction.
  • the existing traditional internationally used architecture for a system for authenticating a static PIN transaction is shown in Fig. 1.
  • a cardholder or user first enters a static PIN 101 at a terminal 103 having a secure PIN Entry Device ("PED") connected to a Point of Sale (“POS”) terminal or ATM, where a payment card is accepted to perform a transaction.
  • PED secure PIN Entry Device
  • POS Point of Sale
  • ATM Point of Sale
  • the PIN is secured from the moment it is entered at the PIN pad.
  • All PIN encryption, translation and decryption are performed in physically and logically secure hardware devices or facilities, whether secure PEDs, hardware security modules ("HSMs”), or secure facilities, all of which are well-known to those of ordinary skill in the art.
  • Each node in the network such as the secure PED 103, shares an encryption key or key-pair with the node with which it communicates. These shared keys are sometimes referred to as "zone" keys, and they protect the communication link between nodes.
  • the static PIN 101 entered at PED 103 may be encrypted with the shared key (Shared Key-1) that is associated with PED 103 and the Network Switch 111.
  • the encrypted PIN 105 is placed in a PIN block portion of a traditional credit or debit network message containing other account and transaction information, formatted according to accepted standards, such as ISO 8583 or other standard format, using techniques well known to those having ordinary skill in the art.
  • the message is communicated to a Network Switch 111 having a HSM.
  • the message is first communicated from the terminal to an acquiring financial institution (not shown), such as a bank operating the ATM, in the case of an ATM transaction, or a bank where the merchant operating the terminal 103 maintains an account. That message is then routed to the network switch 111.
  • the network switch 111 receives the PIN block and uses account information, such as the account number, or a portion thereof, to identify the bank or financial institution that issued the payment card, such as Bank A 117 or Bank B 119.
  • the Network Switch 111 decrypts the PIN in the PIN Block 105 using Shared Key-1 within the HSM, so that it can change the encipherment key to be used in the next transmission.
  • the switch 111 then re-encrypts the PIN Block with Shared Key-A 113 and transmits the encrypted PIN block in the PIN block portion of a traditional credit or debit network message to Bank A 117.
  • Bank A 117 receives the message, decrypts the PIN block using Shared Key-A, and uses the account information in the message to find or calculate the PIN for the account associated with the transaction card being used, which is compared with the decrypted PIN information. If the comparison is successful, Bank A responds with a message indicating the PIN is verified, or the transaction was accepted. Otherwise, Bank A will send a message indicating the transaction is rejected.
  • a method for authorizing a transaction using a transaction network having a standardized message format having a data portion reserved for a static PIN including generating a dynamic code; preparing a transaction message in the standardized message format, the dynamic code inserted in the data portion of the message reserved for the static PIN; transmitting the transaction message to an authorization entity over a communications link; receiving a response from the authorization entity; and authorizing the transaction based on the response received from the authorization entity.
  • a method for authorizing a transaction using a transaction network having a standardized message format having a data portion reserved for a static PIN including generating a dynamic code; receiving a transaction message in the standardized message format, the message having the dynamic code inserted in the data portion reserved for the static PIN and also including account data; using at least the account data to determine an expected dynamic code; comparing the received dynamic code with the expected dynamic code; and authorizing the transaction based on the comparison.
  • a system for authorizing a transaction, including: a transaction network employing a standardized message format having a data portion reserved for a static PIN; a dynamic code generator for generating a dynamic code; an account database storing information regarding one or more accounts; a receiver for receiving a transaction message in the standardized message format ⁇ the message having said dynamic code inserted in said data portion reserved for said static PIN, and said message including account data; a processor for (a) retrieving, using the account data, account information from the account database, (b) determining an expected dynamic code based on at least the retrieved account information, (c) comparing the received dynamic code to the expected dynamic code, and (d) authorizing a transaction in response to the comparison.
  • transaction security is greatly enhanced since an account holder is authenticated using a dynamic (not static) means.
  • a dynamic code can be constructed to be a one-time-use only (one-use-PIN) providing no value to its capture by an attacker.
  • FIG. 1 is a block diagram showing a prior art transaction network architecture
  • FIG. 2 is a block diagram showing one exemplary embodiment of the present invention. DETAILED DESCRIPTION OF THE EXEMPLARY EMBODIMENTS
  • FIG. 2 One exemplary embodiment of the present invention is shown in FIG. 2.
  • techniques are permitted to use dynamic codes in place of static PINs in a transaction network employing a standardized message format with a minimum of change required to existing systems.
  • the embodiment includes placing dynamic codes (encrypted or unencrypted) in a standard PIN block typically used for communicating static PIN values across a transaction network.
  • dynamic codes Encrypted or unencrypted
  • a standard PIN block typically used for communicating static PIN values across a transaction network.
  • new fields or data messages in network messages do not need to be created or added.
  • the processing of dynamic codes by entities in the network is simplified because those entities already have hardware and software to process PIN blocks in the standardized, existing message format.
  • the transaction begins with the generation of a dynamic code 201.
  • This entails the user of a transaction or payment token or device, such as a credit card, debit card, or radio frequency device, activating a device for generating a dynamic code.
  • the code could be generated by a smart card and a smart card reader compliant with MasterCard's Chip Authentication Program (CAP) Specifications. Those specifications are available by license from MasterCard International Incorporated in Purchase, NY. Smart cards and smart card readers are well known to persons of ordinary skill in the art.
  • CAP MasterCard's Chip Authentication Program
  • CAP MasterCard's Chip Authentication Program
  • the dynamic codes may also be generated through a software application running on a mobile phone, such as described in MasterCard's co-pending patent application entitled “Method And System For Authorizing A Transaction Using A Dynamic Authorization Code," International Patent Application No. PCT/US05/29758, filed on August 18, 2005, claiming priority to provisional U.S. Patent Application Number 60/602,594, filed August 18, 2004, both of which are incorporated herein by reference in their entireties.
  • the dynamic code may be generated on any device capable of computing, including by way of examples (but not limited to) a smart card with a display, a personal digital assistant (PDA), a key fob device, a tablet personal computer (PC), a laptop PC 3 and a desktop PC.
  • PDA personal digital assistant
  • PC tablet personal computer
  • laptop PC 3 a desktop PC.
  • the software application executing on the computing device need not be CAP- compliant.
  • dynamic codes may be generated by the issuing bank or other third party and supplied in hard copy form to the consumer.
  • the dynamic code may be a one-time code that is unique for each account and each authentication attempt. However, the dynamic code need not be strictly unique for each account and each authentication attempt.
  • the codes may be allowed to overlap for accounts and to repeat over time so long as it remains difficult to re-use a code in an unauthorized manner such as by predicting the dynamic code associated with a particular pending or future transaction.
  • the concept of limited-use numbers described in U.S. Patent No. 6,636,833, issued to Flitcroft et al. may be applied to dynamic codes under the present invention.
  • dynamic codes may be limited in their use based on certain conditions such as transaction value conditions (e.g., the dynamic codes are valid only for a particular one or a set of transactions or for transactions below a certain amount); time of transaction conditions (e.g., the dynamic codes are valid only for a certain time period); number of transactions conditions (e.g., the dynamic codes are valid only for a certain number of transactions); frequency of transactions conditions (e.g., the dynamic codes are valid for only a certain number of times per time period); purpose of transaction conditions; merchant type conditions, and geographical conditions.
  • transaction value conditions e.g., the dynamic codes are valid only for a particular one or a set of transactions or for transactions below a certain amount
  • time of transaction conditions e.g., the dynamic codes are valid only for a certain time period
  • number of transactions conditions e.g., the dynamic codes are valid only for a certain number of transactions
  • frequency of transactions conditions e.g., the dynamic codes are valid for only a certain number of times per time period
  • the dynamic code is generated based in part on a changing value known to the bank or financial institution that issued the card, such as Bank A 217.
  • a transaction counter may be maintained in a dynamic code generator possessed by the card holder and a copy of that counter may be maintained in a database maintained by the issuing Bank, such as in account database 223.
  • the dynamic codes may be manually entered into a terminal having a secure PED 203 by a cardholder, just as the cardholder would enter a PIN.
  • the dynamic codes may be communicated directly by the cardholder's code generating device to a PED or other system using any communication technology and/or procedure.
  • the code generating device is a smart card or keychain fob with proximity technology
  • the dynamic code may be communicated wirelessly by radio frequency (RF) communication to a PED 203 or other computer system with RF receiving capabilities.
  • RF radio frequency
  • the merchant or other payees could employ non-secure data entry devices for the dynamic code entry, because the dynamic nature of the code provides its own form of security.
  • the dynamic code could be entered at a home computer by a cardholder wishing to make a purchase. The code could be entered in the appropriate field of a merchant's online order form.
  • the dynamic code could be written on an order form, and in the case of telephone transactions the dynamic code could be communicated verbally or by touch tone signaling over the telephone.
  • a non-secure PED embodiment may allow new retail payment models, such as a "shopping buddy" model.
  • a physical shopping basket or cart may include an interactive device (such as a display with buttons) that can help the consumer shop for what he or she needs (for example, by providing a store directory or aisle information on products).
  • the interactive device can include a means for accepting a payment card (e.g., magnetic stripe reader, smart card reader, proximity card reader) and a PIN pad. It would be cost-prohibitive to include a secure PED with each shopping cart, but this would not be necessary if a dynamic code were used according to the present invention.
  • the dynamic code can be encrypted 205 using an encryption key shared (such as Shared Key-1) between the terminal 203 and the next device in the communications chain, such as network switch 211.
  • an encryption key shared such as Shared Key-1
  • the message may be encrypted as it traveled between the various nodes in a similar manner to that described herein.
  • the dynamic code information is coupled with other transaction information, such as the primary account number (PAN) associated with the cardholder, card expiration date, transaction amount, and other data regarding the transaction.
  • PAN primary account number
  • This information is formatted into a financial network message according to a message standard established by the transaction network members, the network message standard including a portion reserved for a static PEM.
  • a network message standard is ISO-8583, although other message standards that are designed to carry a static PIN could be used.
  • the dynamic code information is placed in the portion of the message reserved for the static PIN and transmitted over the communication link.
  • the switch uses certain transaction data, such as the PAN, a portion thereof, or some other transaction data, to identify the bank that issued the card being used.
  • the switch decrypts the encrypted dynamic code information using the key shared with the prior node in the network (such as Shared Key-1) in a hardware security module (not shown).
  • the dynamic code may be encrypted using a key shared between the network 211 and the destination computer, such as Bank A 217.
  • the message with the dynamic code is then forwarded 213 to the destination bank, 217, or an entity performing processing services for that bank.
  • the dynamic code may be decrypted, using the key shared with the prior node, such as Shared Key- A. This may occur in a HSM or secure application 221 at Bank A to operate with legacy systems. Alternatively, if the dynamic code was not encrypted prior to transmission to Bank A 217, the code need not be decrypted. Hardware and/or software systems at Bank A would then extract transaction data from the message to determine an expected dynamic code associated with the transaction. For example, the PAN or other identifying information may be used to look up information in an account database 223 containing data associated with the account being used to perform the requested transaction.
  • Account database 223 may include a transaction counter associated with the account, the payment token, such as a credit or debit card, or the code generator being used to perform the transaction, if separate from the payment token.
  • This counter may be synchronized with a counter maintained in the payment token or code generator device.
  • a portion of the dynamic code itself could be used to transmit information from the code generator to Bank A to maintain the synchronization of the counter.
  • This counter together with other secret data known to Bank A and securely stored on the code generator (such as an encryption key or key pair) and optionally other transaction data (such as transaction amount, transaction date/time, an unpredictable number, etc.) can be used, in conjunction with an algorithm shared between the code generator and Bank A, to calculate an expected dynamic code associated with the particular transaction.
  • Bank A may approve the > transaction, or perform further processing to verify whether or not the transaction should be approved (such as determining whether the payment token or code generator has been reported lost or stolen, determining whether credit limits have been exceeded, etc.). If the expected dynamic code does not match the received dynamic code, the transaction may be rejected. An appropriate response message would then be communicated between Bank A 217 and Terminal 203 over a communication link. A merchant can then permit or reject the transaction based on the response.
  • an issuer bank such as Bank A, wishing to issue a payment token and/or code generating device in accordance with the present invention, would reprogram its computers to perform the calculations necessary to perform authentication of the dynamic codes.
  • the issuer bank could maintain its established static PIN authentication systems and insert a new HSM or hardware/software component into its PIN processing system to handle processing of the dynamic code transactions.
  • a dynamic code HSM designed to calculate expected dynamic codes, could be integrated in series with ⁇ before or after ⁇ the process to validate static PINs.
  • the application for processing messages at Bank A 217 that include PINs will first send the PIN Block to either the static PIN HSM or the dynamic code HSM.
  • the application would then send the PIN block to the other HSM. If either the static PIN HSM or dynamic code HSM responds that the "PIN block" was valid, the PIN/dynamic code would be considered valid. If both HSMs respond that the PIN/dynamic code was invalid, the transaction would be rejected. This embodiment would entail minimum impact to existing PIN processing systems at issuer financial institutions.
  • an issuer bank such as Bank A 217, may identify whether a message contains a static PJN or a dynamic code based on some characteristic of the message. For example, the PAN or Bank Identification Number (BIN) portion of a financial message may indicate to the issuer whether the payment token/account being used to perform the transaction uses a static PIN or a dynamic code. Based on this determination, the bank would route the message to the appropriate processing operations to verify the PIN or dynamic code.
  • PAN or Bank Identification Number (BIN) portion of a financial message may indicate to the issuer whether the payment token/account being used to perform the transaction uses a static PIN or a dynamic code.

Abstract

A method and apparatus for conducting a transaction involving transmission of a dynamic authentication code (201) in place of a sta PIN block using currently existing messaging standards or PIN acceptance devices (203). Minimal changes to existing processes an equipment are made while greatly improving security and fraud minimization, (fig. 2).

Description

METHOD AND SYSTEM FOR PERFORMING A TRANSACTION USING A DYNAMIC AUTHORIZATION CODE
SPECIFICATION
RELATED APPLICATION
This application claims priority from U.S. provisional application No. 60/626,649 filed November 10, 2004 entitled "Method And System for Enabling The Use Dynamic Codes For Authentication."
BACKGROUND OF INVENTION
The use of transaction or payment tokens, such' as a credit card, debit card, or radio frequency device, is an increasingly important method for making payments, performing fund transfers, or effecting other transactions. These transactions can occur face-to-face at a point of sale, over the telephone, through the mail, over the Internet, or in other contexts. Regardless of the type of transaction, it is clearly desirable for all entities associated with the transaction to reduce the chance of fraud, through the unauthorized use of the transaction token and/or the payment account associated with the transaction token.
One approach to minimizing fraud is through the use of a personal identification number, or PIN which is managed in an international standardized way - such as according to ISO 9564. In one typical implementation of this approach, at the time of the transaction, the user's transaction card is inserted or swiped in a card reader. The reader extracts certain data from the card, such as an account number. The card reader then requests the user enter his or her PIN on a special keypad sometimes called a PinPad or PIN Entry Device (PED). The PIN is immediately encrypted and secured. The secured PIN data then is transmitted through secure means to an authorization location, such as an authorization computer, where cardholder data is stored. At the authorization computer, the account identification data is used to securely lookup or calculate the PIN for the account to verify that the PIN entered by the cardholder was correct. This approach minimizes fraud because the person in possession of the card must also know the secret PIN to complete the transaction. The existing traditional internationally used architecture for a system for authenticating a static PIN transaction is shown in Fig. 1. A cardholder or user first enters a static PIN 101 at a terminal 103 having a secure PIN Entry Device ("PED") connected to a Point of Sale ("POS") terminal or ATM, where a payment card is accepted to perform a transaction. In traditional secure PEDs, the PIN is secured from the moment it is entered at the PIN pad. All PIN encryption, translation and decryption are performed in physically and logically secure hardware devices or facilities, whether secure PEDs, hardware security modules ("HSMs"), or secure facilities, all of which are well-known to those of ordinary skill in the art. Each node in the network, such as the secure PED 103, shares an encryption key or key-pair with the node with which it communicates. These shared keys are sometimes referred to as "zone" keys, and they protect the communication link between nodes. Accordingly, the static PIN 101 entered at PED 103 may be encrypted with the shared key (Shared Key-1) that is associated with PED 103 and the Network Switch 111. The encrypted PIN 105 is placed in a PIN block portion of a traditional credit or debit network message containing other account and transaction information, formatted according to accepted standards, such as ISO 8583 or other standard format, using techniques well known to those having ordinary skill in the art.
The message is communicated to a Network Switch 111 having a HSM. In other network configurations, the message is first communicated from the terminal to an acquiring financial institution (not shown), such as a bank operating the ATM, in the case of an ATM transaction, or a bank where the merchant operating the terminal 103 maintains an account. That message is then routed to the network switch 111. The network switch 111 receives the PIN block and uses account information, such as the account number, or a portion thereof, to identify the bank or financial institution that issued the payment card, such as Bank A 117 or Bank B 119. The Network Switch 111 decrypts the PIN in the PIN Block 105 using Shared Key-1 within the HSM, so that it can change the encipherment key to be used in the next transmission. The switch 111 then re-encrypts the PIN Block with Shared Key-A 113 and transmits the encrypted PIN block in the PIN block portion of a traditional credit or debit network message to Bank A 117. Bank A 117 receives the message, decrypts the PIN block using Shared Key-A, and uses the account information in the message to find or calculate the PIN for the account associated with the transaction card being used, which is compared with the decrypted PIN information. If the comparison is successful, Bank A responds with a message indicating the PIN is verified, or the transaction was accepted. Otherwise, Bank A will send a message indicating the transaction is rejected. Notably, participants in payment networks, such as merchants, acquiring financial institutions, and payment processors, have made substantial investments in the various secure computing hardware, software, communications links, secure PEDs, HSMs and other equipment associated with the static PIN messaging architecture shown in Figure 1. One disadvantage to this approach is that, because the PIN is static, a thief could capture the PIN when it is being entered through the use of a hidden camera or other methods during a legitimate transaction and reuse it in subsequent fraudulent transactions. A captured static PIN is usable by an attacker until it is discovered to be compromised.
SUMMARY OF THE INVENTION
The present invention addresses the drawback of the prior art architecture by employing a dynamic code in place of the static PIN in a financial network message with minimal changes required to existing payment systems. In one exemplary embodiment of the present invention, a method is provided for authorizing a transaction using a transaction network having a standardized message format having a data portion reserved for a static PIN, including generating a dynamic code; preparing a transaction message in the standardized message format, the dynamic code inserted in the data portion of the message reserved for the static PIN; transmitting the transaction message to an authorization entity over a communications link; receiving a response from the authorization entity; and authorizing the transaction based on the response received from the authorization entity.
In another exemplary embodiment of the present invention, a method is provided for authorizing a transaction using a transaction network having a standardized message format having a data portion reserved for a static PIN, including generating a dynamic code; receiving a transaction message in the standardized message format, the message having the dynamic code inserted in the data portion reserved for the static PIN and also including account data; using at least the account data to determine an expected dynamic code; comparing the received dynamic code with the expected dynamic code; and authorizing the transaction based on the comparison. In yet another exemplary embodiment of the present invention, a system is provided for authorizing a transaction, including: a transaction network employing a standardized message format having a data portion reserved for a static PIN; a dynamic code generator for generating a dynamic code; an account database storing information regarding one or more accounts; a receiver for receiving a transaction message in the standardized message format ~ the message having said dynamic code inserted in said data portion reserved for said static PIN, and said message including account data; a processor for (a) retrieving, using the account data, account information from the account database, (b) determining an expected dynamic code based on at least the retrieved account information, (c) comparing the received dynamic code to the expected dynamic code, and (d) authorizing a transaction in response to the comparison.
Advantageously, with the present invention, transaction security is greatly enhanced since an account holder is authenticated using a dynamic (not static) means. A dynamic code can be constructed to be a one-time-use only (one-use-PIN) providing no value to its capture by an attacker.
Also notable is that if dynamic codes or one-use-PINs of this present invention become ubiquitous, it eliminates the requirement to deploy secure PEDs for consumers and eliminate costly HSMs in back end systems to protect PINs. Therefore, the security costs to an overall PIN system could be drastically reduced.
BRIEF DESCRIPTION OF THE DRAWINGS
For a more complete understanding of the present invention, reference is made to the following detailed description of exemplary embodiments with reference to the accompanying drawings in which: FIG. 1 is a block diagram showing a prior art transaction network architecture; and
FIG. 2 is a block diagram showing one exemplary embodiment of the present invention. DETAILED DESCRIPTION OF THE EXEMPLARY EMBODIMENTS
One exemplary embodiment of the present invention is shown in FIG. 2. In this embodiment, techniques are permitted to use dynamic codes in place of static PINs in a transaction network employing a standardized message format with a minimum of change required to existing systems. The embodiment includes placing dynamic codes (encrypted or unencrypted) in a standard PIN block typically used for communicating static PIN values across a transaction network. By using existing, standard PIN blocks in the standardized message format for the transmission of the dynamic codes, new fields or data messages in network messages do not need to be created or added. The processing of dynamic codes by entities in the network is simplified because those entities already have hardware and software to process PIN blocks in the standardized, existing message format.
As shown in Fig. 2, the transaction begins with the generation of a dynamic code 201. This entails the user of a transaction or payment token or device, such as a credit card, debit card, or radio frequency device, activating a device for generating a dynamic code. The code could be generated by a smart card and a smart card reader compliant with MasterCard's Chip Authentication Program (CAP) Specifications. Those specifications are available by license from MasterCard International Incorporated in Purchase, NY. Smart cards and smart card readers are well known to persons of ordinary skill in the art. Various companies currently provide smart cards that support CAP functionality, including: Austria Card, Axalto, DNP, G&D, Gemplus, Orga, STM, Sagem, Setec, Toppan, and Winter AG. The following companies currently provide smart card readers that support CAP functionality: VASCO, Xiring, TODOS, ActivCard, AOS Hagenuk, and SCM Microsystems.
The dynamic codes may also be generated through a software application running on a mobile phone, such as described in MasterCard's co-pending patent application entitled "Method And System For Authorizing A Transaction Using A Dynamic Authorization Code," International Patent Application No. PCT/US05/29758, filed on August 18, 2005, claiming priority to provisional U.S. Patent Application Number 60/602,594, filed August 18, 2004, both of which are incorporated herein by reference in their entireties. Alternatively, the dynamic code may be generated on any device capable of computing, including by way of examples (but not limited to) a smart card with a display, a personal digital assistant (PDA), a key fob device, a tablet personal computer (PC), a laptop PC3 and a desktop PC. Of course, the software application executing on the computing device need not be CAP- compliant. Finally, dynamic codes may be generated by the issuing bank or other third party and supplied in hard copy form to the consumer.
The dynamic code may be a one-time code that is unique for each account and each authentication attempt. However, the dynamic code need not be strictly unique for each account and each authentication attempt. The codes may be allowed to overlap for accounts and to repeat over time so long as it remains difficult to re-use a code in an unauthorized manner such as by predicting the dynamic code associated with a particular pending or future transaction. In this context, the concept of limited-use numbers described in U.S. Patent No. 6,636,833, issued to Flitcroft et al., may be applied to dynamic codes under the present invention. Accordingly, dynamic codes may be limited in their use based on certain conditions such as transaction value conditions (e.g., the dynamic codes are valid only for a particular one or a set of transactions or for transactions below a certain amount); time of transaction conditions (e.g., the dynamic codes are valid only for a certain time period); number of transactions conditions (e.g., the dynamic codes are valid only for a certain number of transactions); frequency of transactions conditions (e.g., the dynamic codes are valid for only a certain number of times per time period); purpose of transaction conditions; merchant type conditions, and geographical conditions.
In one exemplary embodiment, the dynamic code is generated based in part on a changing value known to the bank or financial institution that issued the card, such as Bank A 217. For example, a transaction counter may be maintained in a dynamic code generator possessed by the card holder and a copy of that counter may be maintained in a database maintained by the issuing Bank, such as in account database 223.
The dynamic codes may be manually entered into a terminal having a secure PED 203 by a cardholder, just as the cardholder would enter a PIN. Alternatively, the dynamic codes may be communicated directly by the cardholder's code generating device to a PED or other system using any communication technology and/or procedure. For example, if the code generating device is a smart card or keychain fob with proximity technology, the dynamic code may be communicated wirelessly by radio frequency (RF) communication to a PED 203 or other computer system with RF receiving capabilities.
In another exemplary embodiment, instead of a secure PED 203 as shown in Fig. 2, the merchant or other payees could employ non-secure data entry devices for the dynamic code entry, because the dynamic nature of the code provides its own form of security. For example, in the case of an e-commerce transaction, the dynamic code could be entered at a home computer by a cardholder wishing to make a purchase. The code could be entered in the appropriate field of a merchant's online order form. In the case of mail transactions, the dynamic code could be written on an order form, and in the case of telephone transactions the dynamic code could be communicated verbally or by touch tone signaling over the telephone.
In addition, a non-secure PED embodiment may allow new retail payment models, such as a "shopping buddy" model. In the shopping buddy model, a physical shopping basket or cart may include an interactive device (such as a display with buttons) that can help the consumer shop for what he or she needs (for example, by providing a store directory or aisle information on products). In addition, the interactive device (shopping buddy) can include a means for accepting a payment card (e.g., magnetic stripe reader, smart card reader, proximity card reader) and a PIN pad. It would be cost-prohibitive to include a secure PED with each shopping cart, but this would not be necessary if a dynamic code were used according to the present invention.
Once the code is either entered or conveyed to a merchant terminal or computer, such as terminal 203, the dynamic code can be encrypted 205 using an encryption key shared (such as Shared Key-1) between the terminal 203 and the next device in the communications chain, such as network switch 211. There may be one or more intermediary nodes between terminal 203 and network switch 211, such as an acquiring financial institution computer (not shown). In such a case, the message may be encrypted as it traveled between the various nodes in a similar manner to that described herein. The dynamic code information is coupled with other transaction information, such as the primary account number (PAN) associated with the cardholder, card expiration date, transaction amount, and other data regarding the transaction. This information is formatted into a financial network message according to a message standard established by the transaction network members, the network message standard including a portion reserved for a static PEM. One example of such a network message standard is ISO-8583, although other message standards that are designed to carry a static PIN could be used. The dynamic code information is placed in the portion of the message reserved for the static PIN and transmitted over the communication link.
Once the message is received at the network switch 211, the switch uses certain transaction data, such as the PAN, a portion thereof, or some other transaction data, to identify the bank that issued the card being used. In one exemplary embodiment, the switch decrypts the encrypted dynamic code information using the key shared with the prior node in the network (such as Shared Key-1) in a hardware security module (not shown). Alternatively, it may not be necessary to encrypt the dynamic code, as discussed previously. The dynamic code may be encrypted using a key shared between the network 211 and the destination computer, such as Bank A 217. The message with the dynamic code is then forwarded 213 to the destination bank, 217, or an entity performing processing services for that bank.
Once the message is received at the destination bank, such as Bank A 217, the dynamic code may be decrypted, using the key shared with the prior node, such as Shared Key- A. This may occur in a HSM or secure application 221 at Bank A to operate with legacy systems. Alternatively, if the dynamic code was not encrypted prior to transmission to Bank A 217, the code need not be decrypted. Hardware and/or software systems at Bank A would then extract transaction data from the message to determine an expected dynamic code associated with the transaction. For example, the PAN or other identifying information may be used to look up information in an account database 223 containing data associated with the account being used to perform the requested transaction. Account database 223 may include a transaction counter associated with the account, the payment token, such as a credit or debit card, or the code generator being used to perform the transaction, if separate from the payment token. This counter may be synchronized with a counter maintained in the payment token or code generator device. A portion of the dynamic code itself could be used to transmit information from the code generator to Bank A to maintain the synchronization of the counter. This counter together with other secret data known to Bank A and securely stored on the code generator (such as an encryption key or key pair) and optionally other transaction data (such as transaction amount, transaction date/time, an unpredictable number, etc.) can be used, in conjunction with an algorithm shared between the code generator and Bank A, to calculate an expected dynamic code associated with the particular transaction. If the expected dynamic code matches the dynamic code received in the financial message, Bank A may approve the > transaction, or perform further processing to verify whether or not the transaction should be approved (such as determining whether the payment token or code generator has been reported lost or stolen, determining whether credit limits have been exceeded, etc.). If the expected dynamic code does not match the received dynamic code, the transaction may be rejected. An appropriate response message would then be communicated between Bank A 217 and Terminal 203 over a communication link. A merchant can then permit or reject the transaction based on the response.
In one exemplary embodiment, an issuer bank, such as Bank A, wishing to issue a payment token and/or code generating device in accordance with the present invention, would reprogram its computers to perform the calculations necessary to perform authentication of the dynamic codes. In another exemplary embodiment, the issuer bank could maintain its established static PIN authentication systems and insert a new HSM or hardware/software component into its PIN processing system to handle processing of the dynamic code transactions. For example, a dynamic code HSM, designed to calculate expected dynamic codes, could be integrated in series with ~ before or after ~ the process to validate static PINs. In other words, the application for processing messages at Bank A 217 that include PINs will first send the PIN Block to either the static PIN HSM or the dynamic code HSM. If the first HSM replies with a negative response (i.e. rejects the PIN in the message), the application would then send the PIN block to the other HSM. If either the static PIN HSM or dynamic code HSM responds that the "PIN block" was valid, the PIN/dynamic code would be considered valid. If both HSMs respond that the PIN/dynamic code was invalid, the transaction would be rejected. This embodiment would entail minimum impact to existing PIN processing systems at issuer financial institutions.
In one exemplary embodiment, an issuer bank, such as Bank A 217, may identify whether a message contains a static PJN or a dynamic code based on some characteristic of the message. For example, the PAN or Bank Identification Number (BIN) portion of a financial message may indicate to the issuer whether the payment token/account being used to perform the transaction uses a static PIN or a dynamic code. Based on this determination, the bank would route the message to the appropriate processing operations to verify the PIN or dynamic code.
Although the present invention has been described with reference to certain preferred embodiments, various modifications, alterations, and substitutions will be known or obvious to those having ordinary skill in the art without departing from the spirit and scope of the invention. Numerous other applications of the present ' invention will be apparent to one of ordinary skill in the art.

Claims

I claim:
1. A method for authorizing a transaction over a transaction network employing a standardized message format having a data portion reserved for a static PIN, comprising: receiving dynamic code data based on a dynamic code; preparing a transaction message in said standardized message format, said dynamic code data inserted in said data portion reserved for said static PIN; transmitting said transaction message to an authorization entity over a communications link; receiving a response from said authorization entity; and authorizing a transaction in response to said receiving step.
2. The method of claim 1, wherein said dynamic code is generated based at least in part on a counter value that changes before each new transaction.
3. The method of claim 1 , wherein said dynamic code is encrypted before said transmitting step.
4. The method of claim 1 wherein said dynamic code is entered on a non- secure PIN entry device before said receiving step.
5. The method of claim 1 wherein said dynamic code is entered on an online order form using a web browser.
6. A method for authorizing a transaction over a transaction network employing a standardized message format having a data portion reserved for a static PIN, comprising: making available to an account holder a code generating device; receiving a transaction message in said standardized message format, said message including dynamic code data based on a dynamic code provided by said code generating device, said dynamic code data inserted in said data portion reserved for said static PIN, and said message including account data; using at least said received account data to determine expected dynamic code data; comparing said received dynamic code data to said expected dynamic code data; and authorizing a transaction in response to said comparing step.
7. The method of claim 6 wherein said dynamic code is generated based at least in part on a counter value that changes before each new transaction.
8. The method of claim 6 wherein said using at least said received account data includes the step of retrieving from an account database information associated with said code generating device.
9. The method of 8 wherein said retrieving from an account database includes retrieving a counter value associated with said code generating device.
10. The method of claim 6 wherein said dynamic code is encrypted before said receiving step, further comprising: decrypting said dynamic code data to recover said dynamic code
11. A system for authorizing a transaction, comprising: a transaction network employing a standardized message format having a data portion reserved for a static PIN; a dynamic code generator for generating a dynamic code; an account database storing information regarding one or more account; a receiver for receiving a transaction message in said standardized message format, said message having said dynamic code inserted in said data portion reserved for said static PIN, and said message including account data; and a processor for (a) retrieving, using said account data, account information from said account database, (b) determining an expected dynamic code based on at least said retrieved account information, (c) comparing said received dynamic code to said expected dynamic code, and (d) authorizing a transaction in response to said comparing.
12. The system of claim 11, wherein said dynamic code generator includes a stored counter value that changes before each new transaction.
PCT/US2005/040882 2004-11-10 2005-11-10 Method and system for performing a transaction using a dynamic authorization code WO2006053191A2 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
US11/746,765 US8527427B2 (en) 2004-11-10 2007-05-10 Method and system for performing a transaction using a dynamic authorization code

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US62664904P 2004-11-10 2004-11-10
US60/626,649 2004-11-10

Related Child Applications (1)

Application Number Title Priority Date Filing Date
US11/746,765 Continuation US8527427B2 (en) 2004-11-10 2007-05-10 Method and system for performing a transaction using a dynamic authorization code

Publications (2)

Publication Number Publication Date
WO2006053191A2 true WO2006053191A2 (en) 2006-05-18
WO2006053191A3 WO2006053191A3 (en) 2007-02-22

Family

ID=36337243

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2005/040882 WO2006053191A2 (en) 2004-11-10 2005-11-10 Method and system for performing a transaction using a dynamic authorization code

Country Status (2)

Country Link
US (1) US8527427B2 (en)
WO (1) WO2006053191A2 (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2008041980A2 (en) 2006-10-03 2008-04-10 Mastercard International Incorporated Proxy authentication methods and apparatus
EP3203428A1 (en) * 2016-02-05 2017-08-09 InnoTech Group Inc. Transaction processing system and process

Families Citing this family (32)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7761374B2 (en) 2003-08-18 2010-07-20 Visa International Service Association Method and system for generating a dynamic verification value
US7740168B2 (en) 2003-08-18 2010-06-22 Visa U.S.A. Inc. Method and system for generating a dynamic verification value
AT503263A2 (en) * 2006-02-27 2007-09-15 Bdc Edv Consulting Gmbh DEVICE FOR CREATING DIGITAL SIGNATURES
US7818264B2 (en) 2006-06-19 2010-10-19 Visa U.S.A. Inc. Track data encryption
US9065643B2 (en) 2006-04-05 2015-06-23 Visa U.S.A. Inc. System and method for account identifier obfuscation
US8959596B2 (en) * 2006-06-15 2015-02-17 Microsoft Technology Licensing, Llc One-time password validation in a multi-entity environment
US20080005039A1 (en) * 2006-06-20 2008-01-03 Utstarcom, Inc. Decryption of Personal Identification Number & Forwarding Method and Apparatus
US8190746B2 (en) * 2006-11-30 2012-05-29 Red Hat, Inc. Explicit casualty control in a client/server system
GB2442249B (en) * 2007-02-20 2008-09-10 Cryptomathic As Authentication device and method
US9846866B2 (en) * 2007-02-22 2017-12-19 First Data Corporation Processing of financial transactions using debit networks
US7849014B2 (en) 2007-08-29 2010-12-07 American Express Travel Related Services Company, Inc. System and method for facilitating a financial transaction with a dynamically generated identifier
US9747598B2 (en) * 2007-10-02 2017-08-29 Iii Holdings 1, Llc Dynamic security code push
US20100051686A1 (en) * 2008-08-29 2010-03-04 Covenant Visions International Limited System and method for authenticating a transaction using a one-time pass code (OTPK)
US20100217708A1 (en) * 2009-02-26 2010-08-26 Arthur Vanmoor Superior identification system using numbers
US8965811B2 (en) * 2008-10-04 2015-02-24 Mastercard International Incorporated Methods and systems for using physical payment cards in secure E-commerce transactions
CA2818958A1 (en) * 2009-11-18 2011-05-26 Magid Joseph Mina Anonymous transaction payment systems and methods
CN103201758A (en) 2010-11-10 2013-07-10 斯玛特哈伯私人有限公司 Method of performing a financial transaction via unsecured public telecommunication infrastructure and an apparatus for same
US20120233004A1 (en) * 2011-03-11 2012-09-13 James Bercaw System for mobile electronic commerce
CN103493457B (en) * 2011-04-28 2016-05-11 瑞典爱立信有限公司 Machine is to the account link in machine situation
US20120303534A1 (en) * 2011-05-27 2012-11-29 Tomaxx Gmbh System and method for a secure transaction
US20130054461A1 (en) * 2011-08-23 2013-02-28 Infosys Limited Methods, systems, and computer-readable media for electronic financial transfers
US9727862B2 (en) 2012-05-08 2017-08-08 Visa International Service Association System and method for authentication using payment protocol
US8639619B1 (en) 2012-07-13 2014-01-28 Scvngr, Inc. Secure payment method and system
US10043181B2 (en) * 2013-01-15 2018-08-07 Mastercard International Incorporated Systems and methods for processing off-network transaction messages
US20140279554A1 (en) * 2013-03-12 2014-09-18 Seth Priebatsch Distributed authenticity verification for consumer payment transactions
US8770478B2 (en) 2013-07-11 2014-07-08 Scvngr, Inc. Payment processing with automatic no-touch mode selection
US10489779B2 (en) * 2013-10-21 2019-11-26 Visa International Service Association Multi-network token bin routing with defined verification parameters
DE102013019870B4 (en) 2013-11-28 2019-08-08 Friedrich Kisters Authentication and / or identification method in a communication network
US10311434B2 (en) * 2014-05-29 2019-06-04 Paypal, Inc. Systems and methods for reporting compromised card accounts
US10360558B2 (en) * 2015-03-17 2019-07-23 Ca, Inc. Simplified two factor authentication for mobile payments
US10235674B2 (en) 2016-08-08 2019-03-19 Ellipse World, Inc. Method for a prepaid, debit and credit card security code generation system
US10032169B2 (en) 2016-08-08 2018-07-24 Ellipse World, Inc. Prepaid, debit and credit card security code generation system

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5892900A (en) * 1996-08-30 1999-04-06 Intertrust Technologies Corp. Systems and methods for secure transaction management and electronic rights protection
US20040022444A1 (en) * 1993-11-18 2004-02-05 Rhoads Geoffrey B. Authentication using a digital watermark
US6957185B1 (en) * 1999-02-25 2005-10-18 Enco-Tone, Ltd. Method and apparatus for the secure identification of the owner of a portable device
US20060016606A1 (en) * 2004-07-22 2006-01-26 Tubel Paulo S Methods and apparatus for in situ generation of power for devices deployed in a tubular

Family Cites Families (14)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5168446A (en) * 1989-05-23 1992-12-01 Telerate Systems Incorporated System for conducting and processing spot commodity transactions
GB2304944A (en) * 1995-09-12 1997-03-26 Ibm Support for application programs in a distributed environment
US5988497A (en) * 1996-05-30 1999-11-23 Mci Communications Corporation Method for authenticating credit transactions to prevent fraudulent charges
US6000832A (en) * 1997-09-24 1999-12-14 Microsoft Corporation Electronic online commerce card with customer generated transaction proxy number for online transactions
US6606387B1 (en) * 1998-03-20 2003-08-12 Trusted Security Solutions, Inc. Secure establishment of cryptographic keys
US20020043566A1 (en) * 2000-07-14 2002-04-18 Alan Goodman Transaction card and method for reducing frauds
US7774502B2 (en) * 2000-10-25 2010-08-10 Vikas Sanathana Murthy Determining an international destination address
FR2821225B1 (en) * 2001-02-20 2005-02-04 Mobileway REMOTE ELECTRONIC PAYMENT SYSTEM
US7203658B1 (en) * 2001-03-19 2007-04-10 Cisco Technology, Inc. Methods and apparatus for processing order related messages
US7127619B2 (en) * 2001-06-06 2006-10-24 Sony Corporation Decoding and decryption of partially encrypted information
US20060237528A1 (en) * 2001-07-10 2006-10-26 Fred Bishop Systems and methods for non-traditional payment
US7103576B2 (en) * 2001-09-21 2006-09-05 First Usa Bank, Na System for providing cardless payment
US7526652B2 (en) * 2003-09-04 2009-04-28 Accullink, Inc. Secure PIN management
US8186586B2 (en) * 2009-06-05 2012-05-29 Datacard Corporation System, method, and apparatus for smart card pin management via an unconnected reader

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040022444A1 (en) * 1993-11-18 2004-02-05 Rhoads Geoffrey B. Authentication using a digital watermark
US5892900A (en) * 1996-08-30 1999-04-06 Intertrust Technologies Corp. Systems and methods for secure transaction management and electronic rights protection
US6957185B1 (en) * 1999-02-25 2005-10-18 Enco-Tone, Ltd. Method and apparatus for the secure identification of the owner of a portable device
US20060016606A1 (en) * 2004-07-22 2006-01-26 Tubel Paulo S Methods and apparatus for in situ generation of power for devices deployed in a tubular

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2008041980A2 (en) 2006-10-03 2008-04-10 Mastercard International Incorporated Proxy authentication methods and apparatus
EP3203428A1 (en) * 2016-02-05 2017-08-09 InnoTech Group Inc. Transaction processing system and process

Also Published As

Publication number Publication date
US8527427B2 (en) 2013-09-03
WO2006053191A3 (en) 2007-02-22
US20070260544A1 (en) 2007-11-08

Similar Documents

Publication Publication Date Title
US8527427B2 (en) Method and system for performing a transaction using a dynamic authorization code
CN112602300B (en) System and method for password authentication of contactless cards
KR101815430B1 (en) Methods, devices, and systems for secure provisioning, transmission, and authentication of payment data
KR101150241B1 (en) Method and system for authorizing a transaction using a dynamic authorization code
US7357309B2 (en) EMV transactions in mobile terminals
JP6401278B2 (en) How to authenticate a transaction
RU2518680C2 (en) Verification of portable consumer devices
US9065643B2 (en) System and method for account identifier obfuscation
US20110103586A1 (en) System, Method and Device To Authenticate Relationships By Electronic Means
CN113168635A (en) System and method for password authentication of contactless cards
AU2010204732B2 (en) Secure remote authentication through an untrusted network
US20140143155A1 (en) Electronic payment method, system and device for securely exchanging payment information
US20160239835A1 (en) Method for End to End Encryption of Payment Terms for Secure Financial Transactions
WO2003044710A1 (en) Apparatus, method and system for payment using a mobile device
US8620824B2 (en) Pin protection for portable payment devices
CN107111694A (en) Software tampering detection and reporting process
HU231086B1 (en) Procedure to secure and initiate identified bankcard payment transaction, software for the said purpose and communication equipment containing such software
US20020164031A1 (en) Devices
CN107636664A (en) For to the method and system of mobile device supply access data
KR20060131322A (en) System and method for payment, payment devices and recording medium and information storing medium
WO2002041565A1 (en) Method, system and devices for authenticating transactions using verification codes

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BW BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE EG ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KM KN KP KR KZ LC LK LR LS LT LU LV LY MA MD MG MK MN MW MX MZ NA NG NI NO NZ OM PG PH PL PT RO RU SC SD SE SG SK SL SM SY TJ TM TN TR TT TZ UA UG US UZ VC VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): BW GH GM KE LS MW MZ NA SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IS IT LT LU LV MC NL PL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

WWE Wipo information: entry into national phase

Ref document number: 11746765

Country of ref document: US

WWP Wipo information: published in national office

Ref document number: 11746765

Country of ref document: US

122 Ep: pct application non-entry in european phase

Ref document number: 05825418

Country of ref document: EP

Kind code of ref document: A2