DE10212875A1 - Production of chip card, with access key divided into two parts to be added in two independent processing steps - Google Patents

Abstract

Access key (KEYck) consists of two key parts (KEYchip,KEYkarte) stored on chip card in independent procedure steps. One part (KEYchip) is stored by semiconductor manufacturer from list of data records (DATn) with additional data (INFOchip) e.g. batch number. Other part (KEYkarte) is stored during manufacture of card, from data record list (DATj) and additional data e.g. card serial number. Cryptographic algorithm, a one way function (EWF), is used to create access key from both parts. Independent claims included for system to store secret data on chip card, chip card

Description

The present invention relates to a method for producing a chip card with a key, a method and a system for storing a Secret on a chip card using the key and a corresponding one Smart card.

Chip cards are used for a wide variety of tasks. they draw is characterized by the fact that they are small and handy and important information so that they can only be saved for authorized persons or Systems are accessible and therefore usable. Examples are money cards and Mobile phone cards.

These chip cards consist of a microchip and a card, which mostly consist of Plastic is made. The microchips are based on larger quantities a wafer manufactured by a semiconductor manufacturer. After the separation of the chips, these are made by a card maker on the card, along with a contact surface.

As part of the production of the chip card, information on the Chip card applied. A basic distinction is made between two steps: Initialization and personalization. While initializing Data is applied that is relevant system-wide, such as that Operating program, card and / or personalization personal data in the non-volatile memory of the chip on the Card saved. Personalization also includes information in inserted the chip of the card, the security-relevant in later operation Control actions or use them. The information are referred to as secrets below.

Since the secrets stored on the chip cards can also be used by non- There may be different approaches with those entitled to interest these unauthorized people try to get those stored on the smart card To get secrets or to change them. An approach to this Getting secrets is by introducing so-called Trojans Horses. This is a specially prepared chip or a special one prepared chip card in the manufacturing process, with which the subsequent reading of those stored in a memory area of the chip Secrets is possible.

In a method known in the prior art, with which the attempt is made Obtaining the secret through an unauthorized person will make it difficult by the semiconductor manufacturer a customer-specific key, which is also called Access key is referred to in the non-volatile memory of the chip brought in. All other instances involved in the production of the chip card involved, must use a comparison process or another authenticate suitable algorithms against the chip, i.e. the Authorization - knowledge of the access key - to prove data save, change or even read the chip.

A disadvantage of this procedure is that the important keys to the Semiconductor manufacturers must be passed on so that the keys are on can save the chips. This gives an unauthorized person additional Starting points to get the keys. For example, there is Possibility that an unauthorized person with the help of an employee of the Semiconductor manufacturer at the keys and this to research the Secrets used on the smart cards.

An object of the present invention is therefore a method and a Provide system with which to access the smart cards stored secrets for unauthorized persons is made significantly more difficult. In particular, the method and the system are intended to inject so-called Trojan horses in the chip card manufacturing process prevent, or at least significantly complicate, without losing financial Effort and the requirements for the chip cards and the corresponding ones Machine tools significantly increase. Another job of The present invention is to provide a method and a system with which is the number of people who know the secret that is necessary to Saving or changing data on the chip card as much as possible shorten.

According to the invention, these tasks are performed by the method, the system and solved the chip card according to the independent claims. In a process for Making a chip card with a chip is a key on the chip card saved. Only with knowledge of this key, the so-called Access key, at least one memory area of the chip can be changed and / or read. Within the scope of the method according to the invention this key consists of at least two partial keys. To continue the chip editing, for example being able to initialize and personalize this presupposes knowledge of both subkeys. So that's enough Unauthorized persons can no longer get a key, they have to know all of the at least two subkeys. The subkeys are preferably stored on the chip card in such a way that they are not readily or cannot be read at all. For that they will preferably on a non-volatile memory from the flash or EEPROM Technology saved. To protect the data stored on it also security mechanisms such as light detectors or sensors that the Detect the destruction of a passivation layer on which chips are integrated.

These at least two partial keys are preferably in on the chip card two independent process steps are saved. Saving in this means Connects every process with which information, such as a Partial key can be communicated to the chip. So in a preferred Embodiment a partial key by the semiconductor manufacturer in the Manufacture of the chip stored on the chip. The other subkey is preferably by the card manufacturer in the manufacture of the chip card on the Chip card saved. By storing in two independent Unauthorized access to the key continues difficult because both the semiconductor manufacturer and the chip card manufacturer only have part of the necessary key for access not enough for the chip card.

In a further preferred embodiment of the present invention in addition to the two partial keys, further information on the chip or the chip card saved. This is preferably once Information located in the area of the semiconductor manufacturer and firstly, information that is located in the area of the card manufacturer. This further information preferably contains information with which the chip or chip card is assigned to a specific group or can even be clearly identified. The others are preferred Information in the area of the semiconductor manufacturer Information about the wafer and / or via the arrangement of the respective chip on the wafer. The others Information in the area of the card manufacturer is preferably that Serial numbers of the chip cards. In addition, the others Information may contain other information.

In a preferred embodiment of the present invention, a Partial key based on further information about the chip created. In a further preferred embodiment, a partial key based on more information about the smart card. An algorithm is preferably used in each case in order on the basis of the further information to create the subkeys. As an algorithm preferably a cryptographic algorithm, for example one One-way function used.

Within the scope of the present invention there is also a method for storing a secret in a memory area of a chip on a chip card described. This memory area is only in knowledge of a key accessible, the key according to the invention from at least two Partial keys exist. As part of this process, the chip or the chip card read further information, based on which an authorized person conclude the necessary subkeys and thus the access key can. The person entitled reveals to the chip or the chip card the knowledge of Access key and receives the authorization to keep the secret to save. The access key is preferably generated using an algorithm, preferably a one-way function, from the at least two partial keys created.

A storage system is also within the scope of the present invention claimed a secret on a smart card, the system Contains at least the following units: A registration unit for registration of further information, a unit for the selection and / or creation of a Partial key based on the additional information, a unit for Creation of the key based on the subkey, and a unit to transmit the key together with the secret to be saved to the chip card.

In addition, a chip card for Store a secret on the chip card using a key claimed, wherein the chip card has a chip on the chip card Key is stored and a memory area of the chip is only aware of this Key can be changed and / or read and the key is taken out there are at least two subkeys. Further information is preferred stored on the chip card.

In the following the invention is exemplified with reference to the enclosed Described drawings, wherein

Fig. 1 is a sketch of a smart card, as used in the present invention,

Fig. 2 shows the method steps of an embodiment illustrating the inventive method for storing the key on the smart card with the aid of a flow chart,

Figure 3 illustrates, the application of the secret using the at least two partial keys according to the inventive method in a flow chart, and

Fig. 4 illustrates an embodiment of the method for storing the key on the smart card using the partial key and the other information in detail.

Fig. 1 shows a schematic representation of a chip card 1 , as it can be used in the context of the present invention. Such a chip card 1 consists of a chip 2 and a carrier 3 . In addition, such a chip card 1 can also have further features. Chip cards 1 are known, for example, which additionally have a magnetic strip.

Fig. 2 shows the method using a flow chart for storing the key on the smart card 1. According to one embodiment of the method according to the invention, a chip 2 for a chip card 1 is produced in a first step 10 at a semiconductor manufacturer. In this chip 2 are stored in a second step 11 of the card manufacturer further information, including on this chip. 2 In the embodiment described here, the further information is information that specifically describes the chip 2 . An example of such information are the x coordinates and y coordinates of the chip 2 on the wafer. Further details can be an identification number of the wafer and an indication of the series, a so-called batch number. In addition, the additional information may contain other information. The semiconductor manufacturer stores the further information on chip 2 in such a way that it can be read by anyone. In a preferred embodiment, this further information can also be stored in encrypted form on the chip 2 .

In a further step 12, the semiconductor manufacturer stores a first partial key, which is on the chip 2 . The semiconductor manufacturer can select this first partial key from lists. In a preferred embodiment, the semiconductor manufacturer creates the partial key on the basis of data records from lists and the further information. However, it is important that the entity responsible for initialization and personalization has access to a corresponding list and, if necessary, also to the further information.

This first partial key is stored on the chip 2 in such a way that it cannot be easily read from the chip 2 . In a preferred embodiment, the first partial key cannot be read from chip 2 or changed by anyone.

Then chip 2 is handed over to the card manufacturer. This card manufacturer attaches the chip 2 to the carrier 3 in step 13 . In the context of the present invention, the card manufacturer stores further information, preferably chip card-specific information, on the chip card 1 in step 14 and a second partial key in step 15 . In the present example, the chip card-specific information is a serial number of the chip card 1 . In the context of the present invention, however, other further information can also be stored on the chip card 1 . The other information is stored so that it can be read by everyone. However, encrypted storage of the serial number is also possible within the scope of the invention. The second partial key is preferably stored in step 15 by the card manufacturer on the chip 2 such that this partial key cannot be read out or changed.

The card manufacturer can select the second partial key from lists, or based on records from lists and other information create. However, it is also important here that the for the initialization and Personalization competent authority a list access to an appropriate List and possibly also for further information.

In a preferred embodiment of the present invention, the access key is then created in step 16 in the chip card 1 from the partial keys. This access key is preferably created using a one-way function.

Fig. 3, the method, such as a secret stored on a smart card 1 by means of the partial keys of an initialization and personalization instance shows. In a first step 20, the initialization and personalization instance reads the further information from the chip 2 on the chip card 1 and then selects from a list or a database in step 21 or creates the associated partial key with the aid of the database and the further information. In addition, the initialization and personalization instance reads the further information from the chip card 1 in step 22 and selects from a list or a database in step 23 or creates the associated partial key with the aid of the database and the further information. With the help of these two partial keys, possibly using a one-way function, the key is formed in step 24 which is necessary for access to the chip card 1 . In step 25 , the initialization and personalization instance can then transmit the key as authentication and the secret to be stored to the chip card 1 .

In FIG. 4, the method of storing the access key is illustrated in the smart card 1 in the context of an embodiment.

The semiconductor manufacturer has a list of data records DAT _n and associated indices I _n . The semiconductor manufacturer can obtain this list from the client, or have created it himself. In addition, in the present exemplary embodiment the semiconductor manufacturer has further information about the INFO _CHIP chip with which the chip 2 can be clearly defined. In the present exemplary embodiment, this further information about the chip 2 is its batch number, its wafer number, and the X and Y coordinates on the wafer. This can also be, for example, a serial number or other suitable aids for describing the chip 2 .

In the course of the production of the chip 2 , the semiconductor manufacturer selects a data record DAT _i from the list and forms a first partial key KEY _CHIP with this data record and the further information about the chip INFO _CHIP , preferably with the aid of a one-way function EWF. The semiconductor manufacturer stores this partial key KEY _CHIP together with the further information on the INFO _CHIP chip and further information on the data record DAT _{i used} - the associated index I _i - on the chip 2 .

The chip card manufacturer also has a list of data records DAT _m and associated indices I _m . The chip card manufacturer can also receive this list from the client, or create it himself. In the present _{exemplary embodiment} , the chip card manufacturer also has further information about the chip card INFO _CARD , with which the chip card 1 can be clearly defined. In the present exemplary embodiment, this further information is the serial number of the chip card 1 . Other suitable information about the chip card 1 can also be used here.

To produce another part key KEY _CARD smart card manufacturer selects from the list a record DAT _j and forms with this record and further information on the smart card INFO _CARD, preferably with the aid of a disposable EWF to another part key KEY _CARD. The chip card _manufacturer stores this partial _key KEY _CARD on the chip card 1 in such a way that the chip card 1 _forms an access _key KEY _CK from the first partial _key KEY _CHIP and the further partial _key KEY _CK using an algorithm, preferably a one-way function EWF, and stores it on the chip card 1 , In addition, the chip card _{manufacturer stores} the further information on the chip card INFO _CARD and further information on the data record DAT _{j used} - the associated index I _j - on the chip 2 .

The KEY _CK access key thus formed can only be formed on the basis of the present method by persons who have the list with the data records of the semiconductor manufacturer, the list with the data records of the chip card manufacturer and the one-way functions used, and thus grant access to the chip card and the chip card initialized and personalized.

For this purpose, the initialization and personalization _entity reads the further information I _i , I _j , INFO _CHIP and INFO _CARD from the chip card 1 . With the help of the indices, the instance selects the data records DAT _i and DAT _{j used} from the lists and first forms the subkeys KEY _CHIP and KEY with these data records DAT _i and DAT _j , the further information INFO _CHIP and INFO _CARD read out and the one-way functions EWF _CARD and then the access key KEY _CK from the two partial keys with the help of a one-way function EWF.

Claims (15)

1. A method for producing a chip card ( 1 ) with a chip ( 2 ), wherein at least one memory area of the chip ( 2 ) can only be changed and / or read with knowledge of a key (KEY _CK ), and this key (KEY _CK ) is stored on the chip card ( 1 ), characterized in that the key (KEY _CK ) consists of at least two partial keys (KEY _CHIP , KEY _CARD ). 2. The method according to claim 1, characterized in that the partial keys (KEY _CHIP , KEY _CARD ) are stored in independent method _steps on the chip card ( 1 ). 3. The method according to any one of claims 1 or 2, characterized in that a partial key (KEY _CHIP, KEY _MAP) is stored in the production of the chip (2) on the chip (2). 4. The method according to any one of claims 1 to 3, characterized in that a partial _key (KEY _CHIP , KEY _CARD ) is stored on the chip card ( 1 ) in the manufacture of the chip card ( 1 ). 5. The method according to any one of claims 1 to 4, characterized in that with each partial _key (KEY _CHIP , KEY _CARD ) further information (INFO _CHIP , INFO _CARD , I _i , I _j ) are stored on the chip card ( 1 ). 6. The method according to any one of claims 1 to S. characterized in that a partial _key (KEY _CHIP , KEY _CARD ) using an algorithm based on further information (INFO _CHIP , INFO _CARD , I _i , I _j ) on the chip ( 2 ) is created. 7. The method according to any one of claims 1 to 6, characterized in that a partial _key (KEY _CHIP , KEY _CARD ) using an algorithm on the basis of further information (INFO _CHIP , INFO _CARD , I _i , I _j ) on the chip card ( 1 ) is created. 8. The method according to any one of claims 6 or 7, characterized in that a cryptographic algorithm is used as the algorithm. 9. The method according to claim 8, characterized in that as cryptographic algorithm uses a one-way function (EWF). 10. A method for storing a secret in a memory area of a chip ( 2 ) on a chip card ( 1 ), wherein the memory area can only be changed and / or read with knowledge of a key (KEY _CK ), characterized in that the key (KEY _CK ) consists of at least two partial keys (KEY _CHIP , KEY _CARD ). 11. The method according to claim 10, characterized in that the key (KEY _CK ) is formed from the partial keys (KEY _CHIP , KEY _CARD ) with the help of an algorithm. 12. The method according to claim 11, characterized in that it is the Algorithm is a one-way function (EWF). 13. System for storing a secret on a chip card ( 1 ), the system containing at least the following units: - an acquisition unit for _acquiring further information (INFO _CHIP , INFO _CARD , I _i , I _j ), - a unit for selecting and / or creating a partial _key (KEY _CHIP , KEY _CARD ) based on the additional information (INFO _CHIP , INFO _CARD , I _i , I _j ), - a key generation unit (KEY _CK ) based on the subkeys (KEY _CHIP , KEY _CARD ), and - A unit for transmitting the key (KEY _CK ) together with the secret to be stored to the chip card ( 1 ). 14. Chip card ( 1 ) for storing a secret on the chip card ( 1 ) with the aid of a key (KEY _CK ), the chip card ( 1 ) having a chip ( 2 ) and the key (KEY _CK ) on the chip card ( 1 ) is stored and a memory area of the chip ( 2 ) can only be changed and / or read with knowledge of this key (KEY _CK ), characterized in that the key (KEY _CK ) consists of at least two subkeys (KEY _CHIP , KEY _CARD ) , 15. Chip card ( 1 ) according to claim 14, characterized in that further information (INFO _CHIP , INFO _CARD , I _i , I _j ) is stored on the chip card ( 1 ).