Expiration mechanism for chipcards
Original Publication Date: 2001-Oct-12
Included in the Prior Art Database: 2003-Jun-20
Mechanism to support chipcard expiration Idea of the disclosure Today’s chipcard’s allow protection of data by a PIN in a time-insensitive manner, i.e., the PIN does never expire. The invention enables a PIN to expire after a specified time period given in days. When the PIN is expired, the user is requested to change the PIN before he can proceed to access protected content on the chipcard. The advantage is that the use of the card is constrained not only to persons who know the PIN, but also to a time period after which the PIN is invalidated, forcing the Card Holder to re-identify himself as the legitimate person. The forced renewal of PIN is widely practised in environments where the PIN is stored and processed in a terminal or a host application. However, those environments do not benefit from the secure and tamper-proof storage of sensitive data on a chipcard.