What technology area does this patent fall under?

Primary CPC classification G06F21/572. Mapped technology areas include Physics.

When was this patent published?

Publication date Thu Oct 20 2016 00:00:00 GMT+0000 (Coordinated Universal Time) (A1). Legal status and post-grant events are not shown on this page.

What related patents are in patentsdb?

We list 2 related publications on this page (citations in our corpus or others sharing the same primary CPC).

System and methods for secure firmware validation

US2016306977A1 · US · A1

Patent metadata
Field	Value
Publication number	US-2016306977-A1
Application number	US-201615099048-A
Country	US
Kind code	A1
Filing date	Apr 14, 2016
Priority date	Dec 22, 2014
Publication date	Oct 20, 2016
Grant date	—

How to read this patent

A practical reading order for non-experts. Skip the full description unless you need deep technical detail.

Title
What the patent document calls the invention.
Abstract
A short plain-language summary of the technical disclosure.
Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
Key dates
Filing, priority, publication, and grant dates set the timeline.
First independent claim
The legal scope of protection — read this for what is actually claimed.
CPC / IPC classifications
Technology tags used to group this patent with similar filings.
Citations and related patents
Prior art links and similar publications in this corpus.

Abstract

Official abstract text for this publication.

An electronic device, such as a dynamic transaction card having an EMV chip, that acts as a TPM having a memory, an applet, and a cryptographic coprocessor performs secure firmware and/or software updates, and performs firmware and/or software validation for firmware and/or software that is stored on the electronic device. Validation may compare a calculated checksum with a checksum stored in EMV chip memory. If a checksum calculated for firmware and/or a software application matches a checksum stored in EMV chip memory of the transaction card, the transaction card may operate normally. If a checksum calculated for firmware and/or a software application does not match a checksum stored in EMV chip memory of the transaction card, the transaction card may freeze all capabilities, erase the memory of the transaction card, display data indicative of a fraudulent or inactive transaction card, and/or the like.

First claim

Opening claim text (preview).

1 . A dynamic transaction card comprising: A EuroPay-MasterCard-Visa (EMV) processor storing existing firmware and version data associated with the existing firmware; an EMV plate connectively coupled to the EMV processor; a bootloader; and an input/output interface that receives an updated firmware program from a firmware provider system; wherein the EMV processor receives, via contacts on the EMV plate, an update component associated with the updated firmware program transmitted from the firmware provider system during a secure communication with the firmware provider system via a secure terminal, wherein the update component is used to validate the received updated firmware program; wherein, in response to the validation of the updated firmware program, the bootloader loads the updated firmware on the dynamic transaction card, executes the updated firmware program, which overwrites the existing firmware; and wherein, in response to the bootloader loading and executing the updated firmware program, the EMV processor stores and uses the updated firmware program. 2 . The dynamic transaction card of claim 1 , further comprising: an applet comprising instructions that when executed, cause the EMV chip to perform a checksum validation; and data storage storing a first checksum calculated using the stored firmware upon loading of the firmware, herein firmware is validated on the dynamic transaction card by performing the following: receiving at the EMV processor, a trigger that triggers checksum validation via the applet; reading, via the applet, the firmware to determine data comprising the first checksum; receiving at the EMV coprocessor, the data comprising the first checksum; calculating, using the EMV coprocessor, a second checksum associated with the firmware; comparing, using the EMV coprocessor, the first checksum and the second checksum; validating the updated firmware upon determining that the received checksum and the calculated checksum are equal; and deleting at least a portion of data in the data storage and the EMV processor upon determining that the first checksum and the second checksum are not equal. 3 . The dynamic transaction card of claim 1 , wherein the EMV processor comprises a cryptographic coprocessor 4 . The dynamic transaction card of claim 1 , wherein the updated firmware program is transmitted during and/or at the end of an EMV transaction. 5 . The dynamic transaction card of claim 1 , wherein the updated firmware program is transmitted via secure transaction tokens. 6 . The dynamic transaction card of claim 1 , wherein the updated firmware program comprises a cryptographic key to decrypt the updated firmware. 7 . The dynamic transaction card of claim 1 , wherein the updated firmware program comprises a checksum associated with the updated firmware. 8 . The dynamic transaction card of claim 1 , further comprising data storage for cryptographic keys, checksums, and/or validation data associated with the firmware stored on the dynamic transaction card. 9 . The dynamic transaction card of claim 1 , wherein upon determining that the updated firmware validation failed, the EMV processor executes an erase script to erase at least a portion of memory of the dynamic transaction card and/or deactivates the card. 10 . The dynamic transaction card of claim 1 , further comprising at least one plastic jumper which connects electrical components of the dynamic transaction card, wherein upon tampering with the dynamic transaction card, the at least one plastic jumper dissolves to break the connection between the electrical components. 11 . The dynamic transaction card of claim 2 , wherein upon determining that the updated firmware validation failed, the EMV processor transmits a notification to the firmware provider system, a mobile device paired with the dynamic transaction card, and/or a third party system. 12 . The dynamic transaction card of claim 2 , wherein upon determining that the first checksum and the second checksum are not equal, the EMV processor executes an erase script to erase at least a portion of memory of the dynamic transaction card and/or deactivates the card. 13 . The dynamic transaction card of claim 2 , wherein upon determining that the first checksum and the second checksum are not equal, the EMV processor transmits a notification to the firmware provider system, a mobile device paired with the dynamic transaction card, and/or a third party system. 14 . The dynamic transaction card of claim 2 , further comprising at least one plastic jumper which connects electrical components of the dynamic transaction card, wherein upon tampering with the dynamic transaction card, the at least one plastic jumper dissolves to break the connection between the electrical components. 15 . The dynamic transaction card of claim 2 , wherein the cryptographic coprocessor comprises a random number generator, a key generator, a hash generator, and/or an encryption/decryption engine. 16 . A method for updating firmware on a dynamic transaction card comprising: storing existing firmware and version data associated with the existing firmware in a EuroPay-MasterCard-Visa (EMV) processor contained within the dynamic transaction card; receiving, at the EMV processor via an input/output interface connectively coupled to the EMV processor, an updated firmware program transmitted from a firmware provider system; receiving, at the EMV processor via an EMV plate connectively coupled to the EMV processor, an update component associated with the updated firmware program from the firmware provider system during a secure communication with the firmware provider system via a secure terminal; validating, using the EMV processor, the received updated firmware program an EMV processor storing existing firmware and version data associated with the existing firmware; loading, via a bootloader, the updated firmware, in response to validating the updated firmware; executing the updated firmware; overwriting the existing firmware; and storing and using the updated firmware in response to the bootloader loading and executing the updated firmware. 17 . The method for updating firmware on a dynamic transaction card of claim 16 , further comprising: upon loading the firmware, calculating a first checksum using the stored firmware; storing the first checksum in data storage; receiving at the EMV processor, a trigger that triggers checksum validation via an applet; reading, via the applet, the firmware to determine data comprising the first checksum; receiving at the EMV processor, the data comprising the first checksum; calculating, using the EMV processor, a second checksum associated with the firmware; comparing using the EMV processor, the first checksum and the second checksum; validating the updated firmware upon determining that the received checksum and the calculated checksum are equal; and deleting at least a portion of data in the data storage and the EMV processor upon determining that the first checksum and the second checksum are not equal. 18 . The method for updating firmware on a dynamic transaction card of claim 16 , wherein the EMV processor comprises a cryptographic coprocessor. 19 . The method for updating firmware on a dynamic transaction card of claim 16 , further comprising transmitting the updated firmware program during and/or at the end of an EMV transaction. 20 . The method for updating firmware on a dynamic transaction card of claim 16 , furt

Assignees

Capital One Services Llc

Inventors

Classifications

G06F8/654
using techniques specially adapted for alterable solid state memories, e.g. for EEPROM or flash memories · CPC title
G06F2221/2153
Using hardware token as a secondary aspect · CPC title
G06F2221/2143
Clearing memory, e.g. to prevent the data from being stolen · CPC title
G06F21/77
in smart cards · CPC title
G06F21/72
in cryptographic circuits · CPC title

Patent family

Related publications grouped by family.

View patent family 57128853

External sources

Frequently asked questions

Answers are generated from the same data shown on this page.

What does patent US2016306977A1 cover?: An electronic device, such as a dynamic transaction card having an EMV chip, that acts as a TPM having a memory, an applet, and a cryptographic coprocessor performs secure firmware and/or software updates, and performs firmware and/or software validation for firmware and/or software that is stored on the electronic device. Validation may compare a calculated checksum with a checksum stored in E…
Who is the assignee on this patent?: Capital One Services Llc
What technology area does this patent fall under?: Primary CPC classification G06F21/572. Mapped technology areas include Physics.
When was this patent published?: Publication date Thu Oct 20 2016 00:00:00 GMT+0000 (Coordinated Universal Time) (A1). Legal status and post-grant events are not shown on this page.
What related patents are in patentsdb?: We list 2 related publications on this page (citations in our corpus or others sharing the same primary CPC).