EP0992027A2 - Carte a puce permettant d'executer des routines de programme systeme non modifiables, routines de programme de remplacement affectees a ces dernieres et mode de fonctionnement de la carte a puce - Google Patents

Carte a puce permettant d'executer des routines de programme systeme non modifiables, routines de programme de remplacement affectees a ces dernieres et mode de fonctionnement de la carte a puce

Info

Publication number
EP0992027A2
EP0992027A2 EP98942456A EP98942456A EP0992027A2 EP 0992027 A2 EP0992027 A2 EP 0992027A2 EP 98942456 A EP98942456 A EP 98942456A EP 98942456 A EP98942456 A EP 98942456A EP 0992027 A2 EP0992027 A2 EP 0992027A2
Authority
EP
European Patent Office
Prior art keywords
routine
chip card
system program
memory
program routines
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Withdrawn
Application number
EP98942456A
Other languages
German (de)
English (en)
Inventor
Markus Weinländer
Rainer WÖRZ
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Siemens AG
Original Assignee
Siemens AG
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Siemens AG filed Critical Siemens AG
Publication of EP0992027A2 publication Critical patent/EP0992027A2/fr
Withdrawn legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/10Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
    • G07F7/1008Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/341Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/355Personalisation of cards for use
    • G06Q20/3552Downloading or loading of personalisation data
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/357Cards having a plurality of specified features
    • G06Q20/3576Multiple memory zones on card

Definitions

  • Chip card for executing unchangeable system program routines and associated replacement program routines, as well as methods for operating the chip card
  • the program routines in particular system program routines, which are part of an operating system for example
  • Chip cards can be stored in a non-volatile read memory of the chip card.
  • a non-volatile read-only memory is, for example, a so-called read-only memory (ROM) or a non-volatile read-only memory (EPROM) that cannot be re-stored without great technical outlay.
  • ROM read-only memory
  • EPROM non-volatile read-only memory
  • the object of the invention is to enable the adaptability of unchangeable system program routines of a chip card.
  • the object is achieved with the method according to the invention for operating a chip card and the chip card for carrying out the method according to the invention.
  • the unchangeable system program routines are selectively interchangeable with replacement program routines.
  • a check routine of the chip card can be used to determine whether a non-changeable system program routine has been assigned a replacement program routine. If this is the case, the replacement program routine is executed according to the invention, otherwise the originally stored system program routine.
  • commands from the processing unit of the chip card in particular operating system commands, which are used to call the unchangeable system program routines
  • the operating system can be developed and programmed as usual.
  • the jump addresses for calling the system program routines are replaced by new jump addresses which lead to the test routine according to the invention.
  • a code is passed to the test routine as a transfer parameter, which identifies the system program routine to be originally executed.
  • Each code is assigned to a specific system program routine. In particular, only the jump addresses for calling those system program routines that are to be replaceable with replacement program routines are changed.
  • the code characterizing a system program routine advantageously serves as a search criterion for the test routine, particularly in a pointer table.
  • the corresponding codes are assigned, for example, to the memory addresses with which the corresponding replacement program routines can be called up and executed.
  • Several linked pointer tables can advantageously be chained together.
  • the check routine advantageously uses a further, second pointer table to branch back to the original system program routines if no corresponding replacement program routine could be found.
  • the operating system is therefore advantageously fully functional even without replacement program routines using the system program routines.
  • An advantage of the chip card according to the invention is that the system program routines can be stored in a non-volatile read-only memory, such as, for example, a so-called ROM.
  • the replacement program routines are in a random access memory, such as one
  • EEPROM can be saved.
  • replacement program routines which are intended to replace specific system program routines, can advantageously be stored subsequently at any time, even when the chip card is in operation. This advantageously results in a high degree of adaptability and flexibility in the use of the chip card according to the invention. Furthermore, a faster development process of the chip card is also possible, since when the software present in the hardware, in particular the system program routines, is created, not all the details need to be finally known. For example, a system program routine can also exist only as a kind of placeholder and can later be inserted as a replacement program routine based on the application.
  • FIG. 1 shows an example of the schematic structure of a chip card according to the invention with a non-volatile read-only memory for system program routines and a read-write memory for replacement program routines, and
  • FIG. 2 shows an example of a flowchart of the method according to the invention for operating a chip card.
  • FIG. 1 shows an example of the schematic structure of a chip card CK according to the invention with an operating system H, which is used at least for the execution of unchangeable system program routines U, Ul..Un.
  • the operating system H calls a test routine OMF before executing a system program routine U and transfers to it a code ID which identifies the respective system program routine.
  • the OMF check routine can also be described as a so-called 'overload management function'.
  • the call of the test routine OMF is shown by way of example in FIG. 1 by the dashed arrow denoted by QII.
  • the operating system H checks according to the invention whether the system program routine U is assigned a corresponding replacement program routine U '. This is exemplified in FIG. 1 by the dashed arrow labeled Q12. If the current system program routine U can be assigned a replacement program routine U ', this is carried out, as is shown by the dashed arrow Q31 by way of example. Otherwise, the original system program routine U is executed, as exemplified by the dashed arrows Q32 and Q41. In particular, the system program routines U, Ul..Un are unchangeably stored in a non-volatile read memory S1 of the chip card CK for carrying out the method according to the invention.
  • the non-volatile read memory S1 is, for example, a so-called ROM.
  • the memory addresses A, AI..An of the non-volatile read memory S1 indicate the direct or indirect start addresses for calling the system program routines U, UL.Un.
  • the replacement program routines U ', Ul', U4 ' are stored in particular in a read / write memory S2 of the chip card CK according to the invention, the memory addresses A', AI ', A4' specifying the corresponding start addresses as examples.
  • the random access memory S2 is a so-called EEPROM.
  • operating system commands H1..H3 in particular are used in the operating system H to call unchangeable system program routines U.
  • this is the jump command ⁇ CALL '.
  • Such a jump instruction usually has a direct or indirect jump address JMP, which leads to a branch to a system program routine U and to its execution.
  • the jump instruction designated by the reference symbol H2 is used in the example in FIG. 2 for the direct execution of the system program routine U2.
  • the system program routine U2 can therefore not be replaced by a corresponding replacement program routine.
  • the jump commands designated by the reference symbols H1 and H3, serve to call the system program routines U1 and U3, and according to the invention it is checked before their possible execution that an appropriate replacement program routine U 'is not assigned, which are executed instead of the system program routine should.
  • the original jump addresses JMP which serve for direct branching to the memory addresses AI
  • A3 of the system program routines U1 and U3 were each replaced by a jump address press JMP, which branches to the test routine OMF.
  • the codes ID1 and ID3 shown symbolically in brackets in FIG. 1 are in particular passed as parameters to the test routine OMF so that the latter can check whether there are correspondingly assigned replacement program routines U '.
  • the codes ID of those system program routines U to which a replacement program routine U 'is assigned are each assigned a memory address A'. With the memory address A ', the operating system H branches to the corresponding replacement program routine U', as a result of which this is executed.
  • first assignment means T1 are used in particular for the assignment between the corresponding codes ID and the replacement program routines U '.
  • the first assignment means T1 are advantageously used to assign the codes ID1 to memory addresses A 'of the read-write memory S2, which branch to the corresponding replacement program routines U'.
  • the memory addresses A ' generally indicate the direct or indirect start address in the read-write memory S2 at which the corresponding replacement program routines U' are stored.
  • the system program routines U1 and U4 are assigned a replacement program routine U1 'and U4', respectively.
  • the operating program H executes the replacement program routines U1 'and U4' according to the invention.
  • the codes ID1 and ID4, which characterize the system program routines U1 and U4 are assigned by means of the first pointer table T1 the corresponding memory addresses AI 'and A4' of the read-write memory S2, which correspond to the corresponding replacement program routines Ul 'and U4.
  • U4 'branch For example, when the operating system command Hl is executed, the operating system H searches for according to the invention by means of the test function OMF in the first pointer table T1 the code IDl. In the example in FIG. 1, this is assigned the memory address AI ', through which the operating system H branches to the replacement program routine U1' stored in the read-write memory S2 and executes it.
  • the chip card CK has second allocation means T2, which are stored in the form of a second pointer table in the non-volatile memory S1. If the operating system uses the test routine OMF to determine using the first assignment means T1 that the current system program routine U is not assigned a replacement program routine U ', then the second assignment means T2 are used in particular. The second assignment means T2 are used to assign the corresponding codes ID and the original system program routines U.
  • the memory addresses A of the non-volatile read memory S1, which correspond to the corresponding system program routines U in the non-volatile read memory, are advantageously assigned to the codes ID Sl branch.
  • the operating system H uses the test function OMF and the identifying code ID3 to check whether the system program routine U3 has been assigned a corresponding replacement program routine. Since this is not the case here, for example, the second pointer table according to the invention T2 searched for the code ID3 and branched to the system program routine U3 in the non-volatile read memory S1 by means of the memory address A3 assigned there and executed it.
  • test routine OMF is advantageously stored in the non-volatile read memory S1 and is in particular part of the operating system H.
  • This also includes in particular the system program routines U and the second allocation means T2, which are preferably likewise stored in the non-volatile read memory S1.
  • a data processing unit P of the chip card CK is used in particular to execute the operating system H.
  • the data processing unit P has in particular a microprocessor.
  • FIG. 2 shows an example of a flow chart of a preferred embodiment of the method according to the invention for operating the chip card CK.
  • the reference numerals also refer to the exemplary illustration in FIG. 1. According to the method according to the invention,
  • Execution of a system program routine U that cannot be changed calls the test routine OMF and in the process transfers a code ID to it, which identifies the respective system program routine U and in particular is assigned to it.
  • the call of the test routine OMF is represented symbolically in FIG. 2 by the blocks Q1, Q2 and the arrow Qll.
  • the operating system H uses the check routine OMF and the code ID to check whether the system program routine U is assigned a replacement program routine U 'by searching for the code ID in the first pointer table T1. This is exemplified by the arrow Q12 and the diamond Q3.
  • the replacement program routine U 'stored in the read / write memory S2 is executed, as shown by the arrow Q31 and the block Q6. If, on the other hand, the code ID is not found in the first pointer table T1, it is searched for in the second pointer table T2 and the data in the non-volatile reading memory Sl executes the original system program routine U stored. This is symbolically represented in FIG. 2 by arrows Q32 and Q41 and blocks Q4 and Q5.

Landscapes

  • Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Microelectronics & Electronic Packaging (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Accounting & Taxation (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • Theoretical Computer Science (AREA)
  • Stored Programmes (AREA)
  • Storage Device Security (AREA)

Abstract

L'invention concerne une carte à puce (CK) possédant un système d'exploitation (H) destiné à l'exécution de routines de programme système (U) non modifiables. Ce système d'exploitation appelle une routine de vérification (OMF) avant l'exécution d'une routine de programme système (U) et lui attribue un code ID qui caractérise (Q11) la routine de programme système (U) en question. A l'aide de la routine de vérification OMF et du code ID, le système d'exploitation (H) vérifie si une routine de programme de remplacement (U') est affectée à la routine de programme système (U) (Q12). Si c'est le cas (Q31), il exécute la routine de programme de remplacement (U'). Dans le cas contraire (Q32), c'est la routine de programme système (U) qui est exécutée (Q41). Les routines de programme système (U) non modifiables sont mémorisées notamment dans une mémoire morte non volatile (S1, ROM) et la routine de programme de remplacement (U') est mémorisée notamment dans une mémoire à lecture-écriture (S2, EEPROM) de la carte à puce (CK).
EP98942456A 1997-06-23 1998-06-23 Carte a puce permettant d'executer des routines de programme systeme non modifiables, routines de programme de remplacement affectees a ces dernieres et mode de fonctionnement de la carte a puce Withdrawn EP0992027A2 (fr)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
DE19726584 1997-06-23
DE19726584 1997-06-23
PCT/DE1998/001719 WO1998059325A2 (fr) 1997-06-23 1998-06-23 Carte a puce permettant d'executer des routines de programme systeme non modifiables, routines de programme de remplacement affectees a ces dernieres et mode de fonctionnement de la carte a puce

Publications (1)

Publication Number Publication Date
EP0992027A2 true EP0992027A2 (fr) 2000-04-12

Family

ID=7833367

Family Applications (1)

Application Number Title Priority Date Filing Date
EP98942456A Withdrawn EP0992027A2 (fr) 1997-06-23 1998-06-23 Carte a puce permettant d'executer des routines de programme systeme non modifiables, routines de programme de remplacement affectees a ces dernieres et mode de fonctionnement de la carte a puce

Country Status (3)

Country Link
EP (1) EP0992027A2 (fr)
CA (1) CA2294469A1 (fr)
WO (1) WO1998059325A2 (fr)

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2001056848A (ja) * 1999-08-19 2001-02-27 Nec Corp Icコードのコマンド実行制御方法、icカード、icカードプログラムを記録した記録媒体
DE10336568B4 (de) * 2003-08-08 2019-06-19 Giesecke+Devrient Mobile Security Gmbh Betriebssystem für einen tragbaren Datenträger
DE102006051336A1 (de) 2006-10-31 2008-05-08 Giesecke & Devrient Gmbh Kompatibilitätsprüfung in einem portablen Datenträger
JP5795921B2 (ja) * 2011-09-21 2015-10-14 株式会社東芝 Icカード、携帯可能電子装置、icカードの制御方法

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH03240127A (ja) * 1990-02-17 1991-10-25 Hitachi Maxell Ltd プログラム制御システム
FR2667417B1 (fr) * 1990-10-02 1992-11-27 Gemplus Card Int Carte a microprocesseur concue pour recevoir des programmes multiples en memoire programmable.
FR2683357A1 (fr) * 1991-10-30 1993-05-07 Philips Composants Microcircuit pour carte a puce a memoire programmable protegee.
EP0583006B2 (fr) * 1992-08-13 2006-11-29 Matsushita Electric Industrial Co., Ltd. Carte IC avec structure de fichier hiérarchique

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
See references of WO9859325A2 *

Also Published As

Publication number Publication date
WO1998059325A3 (fr) 1999-04-22
CA2294469A1 (fr) 1998-12-30
WO1998059325A2 (fr) 1998-12-30

Similar Documents

Publication Publication Date Title
DE60010420T2 (de) Automatisches Regressionstesten von Arbeitsplatz-Software
DE19633466C2 (de) Nachinitialisierung von Chipkarten
DE69814174T2 (de) Java laufzeitsystem mit veränderter sammlung von konstanten
DE19536548A1 (de) Vorrichtung und Verfahren zur vereinfachten Erzeugung von Werkzeugen zur Initialisierung und Personalisierung von und zur Kommunikation mit einer Chipkarte
DE102006029690A1 (de) Beibehaltung einer Identifikation einer elektronischen Steuereinheit bei Umprogrammierungsereignissen
DE60224937T2 (de) Verfahren und anordnung zum verknüpfen von verwandelten appletdateien
DE69837376T2 (de) Verfahren und System zur Zusammenführung von Vermittlungsstellen-Datenbanken
DE19840029C1 (de) Verfahren zum Linken von in einen Arbeitsspeicher eines Prozessors nachgeladenen Programmodulen auf einer Chipkarte
WO2002019264A1 (fr) Procede permettant l'augmentation virtuelle de la taille de la memoire en pile d'un support de donnees portatif
EP1352318B1 (fr) Circuit integre a microprocesseur pour support de donnees portatif
EP0992027A2 (fr) Carte a puce permettant d'executer des routines de programme systeme non modifiables, routines de programme de remplacement affectees a ces dernieres et mode de fonctionnement de la carte a puce
WO2005055052A2 (fr) Puce de carte intelligente java comportant une zone de memoire reservee a des variables globales
EP1021791B1 (fr) Carte a puce dotee d'une memoire destinee a un programme chargeable ulterieurement en fonction de l'application
EP2284809A2 (fr) Carte à puce et procédé de modification logicielle d'une carte à puce
WO2004100090A1 (fr) Gestion de memoire pour un support de donnees portatif
EP1709534B1 (fr) Execution d'un programme par une machine virtuelle
WO2001006347A1 (fr) Pile d'operandes et procede de mise en oeuvre d'une pile d'operande
DE10324384B3 (de) Behandlung eines Fehlerereignisses bei der Installation eines Anwendungsprogramms in einem tragbaren Datenträger
EP1656803B1 (fr) Procede pour faire fonctionner une carte a puce sur laquelle plusieurs applications sont mises en oeuvre
DE102004006308B4 (de) Verfahren zum Verändern von Programmcode eines tragbaren Datenträgers mittels Patchdaten
DE102008044808B4 (de) Verfahren zur Generierung von Programmcode in einem Betriebssystemspeicher und einem Applikationsspeicher eines Datenträgers
DE4102197A1 (de) Ein system und verfahren zur kontrolle einer gemeinsam verwendeten datenstation durch verwendung einer speicherkarte
EP3132346A1 (fr) Procédé d'exécution d'une série de codes sur un module de sécurité
WO2002099650A2 (fr) Procede destine a gerer la memoire d'une carte a puce
WO2003025753A2 (fr) Production d'un message de detection d'erreur dans un support de donnees portable

Legal Events

Date Code Title Description
PUAI Public reference made under article 153(3) epc to a published international application that has entered the european phase

Free format text: ORIGINAL CODE: 0009012

17P Request for examination filed

Effective date: 19991217

AK Designated contracting states

Kind code of ref document: A2

Designated state(s): AT CH DE DK ES FR GB IT LI NL PT SE

17Q First examination report despatched

Effective date: 20010528

STAA Information on the status of an ep patent application or granted ep patent

Free format text: STATUS: THE APPLICATION IS DEEMED TO BE WITHDRAWN

18D Application deemed to be withdrawn

Effective date: 20011208