[go: up one dir, main page]

NO984535L - Sikker innlasting av data i et smart-kort - Google Patents

Sikker innlasting av data i et smart-kort

Info

Publication number
NO984535L
NO984535L NO984535A NO984535A NO984535L NO 984535 L NO984535 L NO 984535L NO 984535 A NO984535 A NO 984535A NO 984535 A NO984535 A NO 984535A NO 984535 L NO984535 L NO 984535L
Authority
NO
Norway
Prior art keywords
commands
key
smart card
secure data
data loading
Prior art date
Application number
NO984535A
Other languages
English (en)
Other versions
NO984535D0 (no
Inventor
Michel Marco Paul Drupsteen
Original Assignee
Koninkl Kpn Nv
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Koninkl Kpn Nv filed Critical Koninkl Kpn Nv
Publication of NO984535L publication Critical patent/NO984535L/no
Publication of NO984535D0 publication Critical patent/NO984535D0/no

Links

Classifications

    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/10Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/0806Details of the card
    • G07F7/0813Specific details related to card security
    • G07F7/082Features insuring the integrity of the data on or in the card
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/57Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
    • G06F21/572Secure firmware programming, e.g. of basic input output system [BIOS]
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/341Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/355Personalisation of cards for use
    • G06Q20/3552Downloading or loading of personalisation data
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/10Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
    • G07F7/1008Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system

Landscapes

  • Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Business, Economics & Management (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Strategic Management (AREA)
  • Accounting & Taxation (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • General Business, Economics & Management (AREA)
  • Microelectronics & Electronic Packaging (AREA)
  • Computer Hardware Design (AREA)
  • General Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • Storage Device Security (AREA)
  • Stored Programmes (AREA)
  • Electrotherapy Devices (AREA)
  • Credit Cards Or The Like (AREA)
  • Telephone Function (AREA)

Abstract

Oppfinnelse vedrører fremgangsmåte for sikker innlasting og validering av kommandoer (COM) i et smartkort (SC). Spesielt i det tilfellet der applikasjons-spesifikke kommandoer blir lastet inn av applikasjonsleverandør (AP), som er frakoblet med hensyn til kortutstederen (CI), så må det sikres at kommandoen er gyldig. Oppfinnelsen skaffer en fremgangsmåte som innbefatter beskyttelse av kommandoene (COM) ved hjelp av autentiseringskoder, idet disse koder (MAC1, MAC2) blir fremskaffet under bruk av to forskjellige nøkler: en første nøkkel (Kl) som blir lagret av kortutstederen (CI), og en andre nøkkel (K2) som blir lagret av en fortrolig tredje part (TTP). En ytterligere autentiseringskode (MAC3) som blir fremskaffet under bruk av en nøkkel fra et sett av nøkler (K3*) , kan benyttes for selektiv validering av kommandoer for individuelle applikasjoner (for eksempel AP1, AP2).
NO984535A 1996-03-29 1998-09-28 Sikker innlasting av data i et smart-kort NO984535D0 (no)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
EP96200867A EP0798673A1 (en) 1996-03-29 1996-03-29 Method of securely loading commands in a smart card
PCT/EP1997/001553 WO1997037331A1 (en) 1996-03-29 1997-03-25 Method of securely loading commands in a smart card

Publications (2)

Publication Number Publication Date
NO984535L true NO984535L (no) 1998-09-28
NO984535D0 NO984535D0 (no) 1998-09-28

Family

ID=8223834

Family Applications (1)

Application Number Title Priority Date Filing Date
NO984535A NO984535D0 (no) 1996-03-29 1998-09-28 Sikker innlasting av data i et smart-kort

Country Status (12)

Country Link
US (1) US6073238A (no)
EP (2) EP0798673A1 (no)
JP (1) JPH11506560A (no)
KR (1) KR20000005081A (no)
CN (1) CN1215489A (no)
AU (1) AU712353B2 (no)
BR (1) BR9708455A (no)
CA (1) CA2245921A1 (no)
CZ (1) CZ295698A3 (no)
NO (1) NO984535D0 (no)
NZ (1) NZ331258A (no)
WO (1) WO1997037331A1 (no)

Families Citing this family (58)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10361802B1 (en) 1999-02-01 2019-07-23 Blanding Hovenweep, Llc Adaptive pattern recognition based control system and method
DE19626339A1 (de) * 1996-07-01 1998-01-08 Ibm Sicheres Laden von Anwendungen und Daten auf Chipkarten
AU746459B2 (en) 1997-03-24 2002-05-02 Visa International Service Association A system and method for a multi-application smart card which can facilitate a post-issuance download of an application onto the smart card
DE19823532C2 (de) * 1998-05-26 2003-08-21 T Mobile Deutschland Gmbh Verfahren zur Steuerung eines Teilnehmeridentitätsmoduls (SIM) in Mobilfunksystemen
US6481632B2 (en) 1998-10-27 2002-11-19 Visa International Service Association Delegated management of smart card applications
FR2787221B1 (fr) * 1998-12-09 2003-12-05 Inside Technologies Circuit integre a acces securise
JP3545627B2 (ja) * 1999-02-08 2004-07-21 株式会社東芝 携帯可能電子装置
GB9903124D0 (en) * 1999-02-11 1999-04-07 Nokia Telecommunications Oy An authentication method
DE19911221B4 (de) * 1999-03-12 2005-10-27 T-Mobile Deutschland Gmbh Verfahren zur Verteilung von Schlüsseln an Teilnehmer von Kommunikationsnetzen
FI112315B (fi) * 1999-05-11 2003-11-14 Nokia Corp Integriteetin suojausmenetelmä radioverkkosignalointia varten
JP2001056848A (ja) * 1999-08-19 2001-02-27 Nec Corp Icコードのコマンド実行制御方法、icカード、icカードプログラムを記録した記録媒体
FR2797968B1 (fr) * 1999-08-24 2001-10-12 Schlumberger Systems & Service Dispositif et procede de chargement de commandes dans une carte a circuit integre
JP3793377B2 (ja) * 1999-08-30 2006-07-05 日本電信電話株式会社 データ格納システム及びデータ格納プログラムを格納した記憶媒体
AUPQ487399A0 (en) * 1999-12-24 2000-02-03 Vfj Technology Pty Limited Method and system for secure contactless card applications
JP4501197B2 (ja) 2000-01-07 2010-07-14 ソニー株式会社 情報携帯処理システム、情報携帯装置のアクセス装置及び情報携帯装置
JP3609003B2 (ja) * 2000-05-02 2005-01-12 シャープ株式会社 Cmos半導体集積回路
US7043642B1 (en) * 2000-05-22 2006-05-09 Gemplus Process to manage data in a chip card
SE0002416L (sv) * 2000-06-27 2001-12-28 Tds Todos Data System Ab Förfarande och anordning för kommunikation
AU7182701A (en) 2000-07-06 2002-01-21 David Paul Felsher Information record infrastructure, system and method
FR2816731B1 (fr) 2000-11-14 2003-01-03 Gemplus Card Int Procede de chargement et de personnalisation des informations et programmes charges dans une carte a puce
JP2002305250A (ja) * 2001-02-02 2002-10-18 Matsushita Electric Ind Co Ltd 半導体集積回路および半導体集積回路に関するビジネス方法
DE10107373A1 (de) 2001-02-16 2002-08-29 Infineon Technologies Ag Sicherheitsmodul mit flüchtigem Speicher zur Speicherung eines Algorithmuscodes
GB0106082D0 (en) 2001-03-13 2001-05-02 Mat & Separations Tech Int Ltd Method and equipment for removing volatile compounds from air
US7181017B1 (en) 2001-03-23 2007-02-20 David Felsher System and method for secure three-party communications
US7418344B2 (en) * 2001-08-02 2008-08-26 Sandisk Corporation Removable computer with mass storage
JP2003168093A (ja) * 2001-11-30 2003-06-13 Hitachi Ltd カードシステム、カードへのアプリケーション搭載方法及びアプリケーション実行確認方法
US7243853B1 (en) 2001-12-04 2007-07-17 Visa U.S.A. Inc. Method and system for facilitating memory and application management on a secured token
JP2003187190A (ja) * 2001-12-19 2003-07-04 Hitachi Ltd Icカード管理システム
US8010405B1 (en) 2002-07-26 2011-08-30 Visa Usa Inc. Multi-application smart card device software solution for smart cardholder reward selection and redemption
US8015060B2 (en) 2002-09-13 2011-09-06 Visa Usa, Inc. Method and system for managing limited use coupon and coupon prioritization
US7121456B2 (en) 2002-09-13 2006-10-17 Visa U.S.A. Inc. Method and system for managing token image replacement
US8626577B2 (en) 2002-09-13 2014-01-07 Visa U.S.A Network centric loyalty system
US9852437B2 (en) 2002-09-13 2017-12-26 Visa U.S.A. Inc. Opt-in/opt-out in loyalty system
US20040139021A1 (en) 2002-10-07 2004-07-15 Visa International Service Association Method and system for facilitating data access and management on a secure token
US6920611B1 (en) 2002-11-25 2005-07-19 Visa U.S.A., Inc. Method and system for implementing a loyalty merchant component
GB2397678A (en) * 2003-01-23 2004-07-28 Sema Uk Ltd A secure terminal for use with a smart card based loyalty scheme
US9818136B1 (en) 2003-02-05 2017-11-14 Steven M. Hoffberg System and method for determining contingent relevance
US7827077B2 (en) 2003-05-02 2010-11-02 Visa U.S.A. Inc. Method and apparatus for management of electronic receipts on portable devices
US8554610B1 (en) 2003-08-29 2013-10-08 Visa U.S.A. Inc. Method and system for providing reward status
US7104446B2 (en) 2003-09-03 2006-09-12 Visa U.S.A., Inc. Method, system and portable consumer device using wildcard values
US7051923B2 (en) 2003-09-12 2006-05-30 Visa U.S.A., Inc. Method and system for providing interactive cardholder rewards image replacement
US8005763B2 (en) 2003-09-30 2011-08-23 Visa U.S.A. Inc. Method and system for providing a distributed adaptive rules based dynamic pricing system
US8407083B2 (en) 2003-09-30 2013-03-26 Visa U.S.A., Inc. Method and system for managing reward reversal after posting
US7653602B2 (en) 2003-11-06 2010-01-26 Visa U.S.A. Inc. Centralized electronic commerce card transactions
EP1761904A1 (en) 2004-05-28 2007-03-14 International Business Machines Corporation Smart card data transaction system and methods for providing storage and transmission security
US7853799B1 (en) * 2004-06-24 2010-12-14 Xilinx, Inc. Microcontroller-configurable programmable device with downloadable decryption
WO2006015617A1 (en) * 2004-08-13 2006-02-16 Telecom Italia S.P.A. Method of and system for secure management of data stored on electronic tags
DE102004039828A1 (de) * 2004-08-17 2006-02-23 Giesecke & Devrient Gmbh Verifizierung eines nativen Datenträgers
WO2006061754A1 (en) 2004-12-07 2006-06-15 Philips Intellectual Property & Standards Gmbh System and method for application management on multi-application smart cards
WO2007006798A1 (fr) * 2005-07-13 2007-01-18 Gemplus Procede et systeme d'authentification de puces electroniques
US8874477B2 (en) 2005-10-04 2014-10-28 Steven Mark Hoffberg Multifactorial optimization system and method
TWI418198B (zh) * 2006-01-24 2013-12-01 Stepnexus Holdings 使用非對稱密鑰密碼之用於個人化智慧卡的方法與系統
CN1889432B (zh) * 2006-07-13 2010-09-22 上海交通大学 基于智能卡的口令远程认证方法、智能卡、服务器和系统
JP4702628B2 (ja) * 2006-07-27 2011-06-15 ソニー株式会社 電子機器、情報処理方法、およびプログラム
ES2400398T3 (es) 2008-03-28 2013-04-09 Vodafone Holding Gmbh Procedimiento para actualizar una tarjeta inteligente y tarjeta inteligente con capacidad de actualización
CA2697921C (en) * 2009-03-27 2019-09-24 Intersections Inc. Dynamic card verification values and credit transactions
US7992781B2 (en) 2009-12-16 2011-08-09 Visa International Service Association Merchant alerts incorporating receipt data
US8429048B2 (en) 2009-12-28 2013-04-23 Visa International Service Association System and method for processing payment transaction receipts

Family Cites Families (18)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0218176B1 (en) * 1985-10-07 1991-11-13 Kabushiki Kaisha Toshiba Portable electronic device
US4879747A (en) * 1988-03-21 1989-11-07 Leighton Frank T Method and system for personal identification
US5120939A (en) * 1989-11-09 1992-06-09 At&T Bell Laboratories Databaseless security system
US5719560A (en) * 1989-12-08 1998-02-17 Watkins; Christopher John Cornish Hellaby Method of automatic verification of personal identity
US5007089A (en) * 1990-04-09 1991-04-09 International Business Machines Corporation Secure key management using programable control vector checking
DE4119924C3 (de) * 1991-06-17 1996-06-20 Siemens Ag Verfahren zur Sicherung von ladbaren Guthaben in Chipkarten
EP0525895B1 (en) * 1991-08-01 1995-10-04 Koninklijke Philips Electronics N.V. Security system for an apparatus
US5508691A (en) * 1992-06-22 1996-04-16 Lynx Systems, Inc. Self-contained electronic lock with changeable master and slave codes
US5313639A (en) * 1992-06-26 1994-05-17 George Chao Computer with security device for controlling access thereto
US5644354A (en) * 1992-10-09 1997-07-01 Prevue Interactive, Inc. Interactive video system
US5544246A (en) * 1993-09-17 1996-08-06 At&T Corp. Smartcard adapted for a plurality of service providers and for remote installation of same
US5343529A (en) * 1993-09-28 1994-08-30 Milton Goldfine Transaction authentication using a centrally generated transaction identifier
AU1265195A (en) * 1993-12-06 1995-06-27 Telequip Corporation Secure computer memory card
US5461217A (en) * 1994-02-08 1995-10-24 At&T Ipm Corp. Secure money transfer techniques using smart cards
US5537474A (en) * 1994-07-29 1996-07-16 Motorola, Inc. Method and apparatus for authentication in a communication system
NL9401406A (nl) * 1994-08-31 1996-04-01 Nederland Ptt Betaalsysteem met verbeterde integriteit.
FR2731536B1 (fr) * 1995-03-10 1997-04-18 Schlumberger Ind Sa Procede d'inscription securisee d'informations dans un support portable
US5671283A (en) * 1995-06-08 1997-09-23 Wave Systems Corp. Secure communication system with cross linked cryptographic codes

Also Published As

Publication number Publication date
NZ331258A (en) 1999-10-28
CA2245921A1 (en) 1997-10-09
EP0798673A1 (en) 1997-10-01
AU2506297A (en) 1997-10-22
CN1215489A (zh) 1999-04-28
AU712353B2 (en) 1999-11-04
US6073238A (en) 2000-06-06
BR9708455A (pt) 2000-01-04
WO1997037331A1 (en) 1997-10-09
KR20000005081A (ko) 2000-01-25
JPH11506560A (ja) 1999-06-08
CZ295698A3 (cs) 1999-02-17
NO984535D0 (no) 1998-09-28
EP0960404A1 (en) 1999-12-01

Similar Documents

Publication Publication Date Title
NO984535L (no) Sikker innlasting av data i et smart-kort
US8052060B2 (en) Physical access control system with smartcard and methods of operating
US5856659A (en) Method of securely modifying data on a smart card
JP6818679B2 (ja) セキュアホストカードエミュレーションクレデンシャル
CN101796859B (zh) 服务提供商激活
CN106778329A (zh) 一种区块链智能合约模板动态更新方法、装置及系统
US20110276807A1 (en) Remote update method for firmware
EP0855815B1 (en) Certification of cryptographic keys for chipcards
DK1190289T3 (da) Anordning til bekræftelse af en programkode, der er gemt i en hukommelsesanordning til at afpröve bekræftelsen og gyldigheden af software i et kommunikationssystems mobilstation
SE9700587L (sv) Förfarande för behörighetskontroll med SIM-kort
CN103646455A (zh) 一种智能锁装置及其使用方法、电子钥匙的配制方法
US11546163B2 (en) System for performing service by using biometric information, and control method therefor
DK1151625T3 (da) Fremgangsmåde til udnyttelse af applikationer, der er lagret på et abonnent-identitetsmodul (SIM), og til sikker behandling af information, som er knyttet dertil
US10069820B2 (en) Linked registration
CN106251442B (zh) 一种智能锁的临时密码的设置及其验证方法
NO996488L (no) Betalingsprosess og -system
AU2002333726B2 (en) Initialization of a chip card
DK0990226T3 (da) System til sikret læsning og bearbejdning af data på intelligente databærere
KR101667005B1 (ko) 가입자 정보 및 가입자 식별 모듈을 이용한 전자결제 제공 방법과 그를 위한 시스템, 단말기 및 통신 관리 장치
FR2800220B1 (fr) Procede de transaction electronique securisee
KR101905655B1 (ko) 전자결제 제공 방법과 그를 위한 시스템, 단말기 및 통신 관리 장치
US7698703B2 (en) Imparting digital uniqueness to the types of a programming language using a unique digital sequence
JP2017139698A (ja) 情報処理システムおよび暗号通信方法
KR101786941B1 (ko) 가입자 정보 및 가입자 식별 모듈을 이용한 전자결제 제공 방법과 그를 위한 시스템, 단말기 및 통신 관리 장치
CN109977660A (zh) 一种虚位密码安全处理方法及系统

Legal Events

Date Code Title Description
FC2A Withdrawal, rejection or dismissal of laid open patent application