System and method for encrypted authentication of contactless cards
The cryptographic authentication system for contactless cards addresses data security and authentication issues by using a contactless card, client application, and server to verify transactions securely, reducing vulnerabilities and side-channel attacks through key diversification.
Patent Information
- Authority / Receiving Office
- JP · JP
- Patent Type
- Patents
- Current Assignee / Owner
- CAPITAL ONE SERVICES LLC
- Filing Date
- 2024-04-03
- Publication Date
- 2026-06-26
AI Technical Summary
Existing contactless cards face challenges in data security and authentication, with vulnerabilities in email and SMS verification, and reliance on login credentials compromising account access, necessitating improved methods for activation and authentication.
A cryptographic authentication system for contactless cards involving an authentication server, client application, and contactless card with a processor and memory, where transactions exceeding a predetermined value require authentication via a ciphertext generated by the card within the communication range of the client device, verified by the client application and approved by the server.
Enhances data security and transaction integrity by ensuring secure authentication without revealing the master symmetric key, reducing exposure to side-channel attacks through key diversification and periodic key changes.
Smart Images

Figure 0007880911000004 
Figure 0007880911000005 
Figure 0007880911000006