FR2812486B1 - Securisation de session avec un moyen de traitement de donnees sous la commande de entites - Google Patents

Securisation de session avec un moyen de traitement de donnees sous la commande de entites

Info

Publication number
FR2812486B1
FR2812486B1 FR0010025A FR0010025A FR2812486B1 FR 2812486 B1 FR2812486 B1 FR 2812486B1 FR 0010025 A FR0010025 A FR 0010025A FR 0010025 A FR0010025 A FR 0010025A FR 2812486 B1 FR2812486 B1 FR 2812486B1
Authority
FR
France
Prior art keywords
session
entities
securing
data processing
control
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Fee Related
Application number
FR0010025A
Other languages
English (en)
Other versions
FR2812486A1 (fr
Inventor
Pierre Girard
Jean Luc Giraud
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Gemplus SA
Original Assignee
Gemplus Card International SA
Gemplus SA
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Gemplus Card International SA, Gemplus SA filed Critical Gemplus Card International SA
Priority to FR0010025A priority Critical patent/FR2812486B1/fr
Priority to US10/343,112 priority patent/US7434049B2/en
Priority to EP01956645A priority patent/EP1307997A1/fr
Priority to PCT/FR2001/002454 priority patent/WO2002011363A1/fr
Priority to AU7856901A priority patent/AU7856901A/xx
Priority to CN01815902.8A priority patent/CN1294721C/zh
Publication of FR2812486A1 publication Critical patent/FR2812486A1/fr
Application granted granted Critical
Publication of FR2812486B1 publication Critical patent/FR2812486B1/fr
Anticipated expiration legal-status Critical
Expired - Fee Related legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • H04L63/0442Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply asymmetric encryption, i.e. different keys for encryption and decryption
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/341Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/36Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes
    • G06Q20/363Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes with the personal data of a user
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/409Device specific authentication in transaction processing
    • G06Q20/4097Device specific authentication in transaction processing using mutual authentication between devices and transaction partners
    • G06Q20/40975Device specific authentication in transaction processing using mutual authentication between devices and transaction partners using encryption therefor
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/0866Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means by active credit-cards adapted therefor
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/10Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
    • G07F7/1008Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • H04L63/062Network architectures or network communication protocols for network security for supporting key management in a packet data network for key distribution, e.g. centrally by trusted party
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0853Network architectures or network communication protocols for network security for authentication of entities using an additional device, e.g. smartcard, SIM or a different communication terminal
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/12Applying verification of the received information
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3234Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving additional secure or trusted devices, e.g. TPM, smartcard, USB or software token
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3247Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3271Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using challenge-response
    • H04L9/3273Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using challenge-response for mutual authentication

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Business, Economics & Management (AREA)
  • Signal Processing (AREA)
  • General Physics & Mathematics (AREA)
  • Physics & Mathematics (AREA)
  • Accounting & Taxation (AREA)
  • General Engineering & Computer Science (AREA)
  • Computing Systems (AREA)
  • Computer Hardware Design (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • Theoretical Computer Science (AREA)
  • Finance (AREA)
  • Microelectronics & Electronic Packaging (AREA)
  • Computer And Data Communications (AREA)
FR0010025A 2000-07-28 2000-07-28 Securisation de session avec un moyen de traitement de donnees sous la commande de entites Expired - Fee Related FR2812486B1 (fr)

Priority Applications (6)

Application Number Priority Date Filing Date Title
FR0010025A FR2812486B1 (fr) 2000-07-28 2000-07-28 Securisation de session avec un moyen de traitement de donnees sous la commande de entites
US10/343,112 US7434049B2 (en) 2000-07-28 2001-07-26 Method for making secure a session with data processing means under the control of several entities
EP01956645A EP1307997A1 (fr) 2000-07-28 2001-07-26 Securisation de session avec un moyen de traitement de donnees sous la commande de plusieurs entites
PCT/FR2001/002454 WO2002011363A1 (fr) 2000-07-28 2001-07-26 Securisation de session avec un moyen de traitement de donnees sous la commande de plusieurs entites
AU7856901A AU7856901A (en) 2000-07-28 2001-07-26 Method for making secure a session with data processing means under the control of several entities
CN01815902.8A CN1294721C (zh) 2000-07-28 2001-07-26 用于使在几个实体的控制下利用数据处理装置的会话安全的方法

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
FR0010025A FR2812486B1 (fr) 2000-07-28 2000-07-28 Securisation de session avec un moyen de traitement de donnees sous la commande de entites

Publications (2)

Publication Number Publication Date
FR2812486A1 FR2812486A1 (fr) 2002-02-01
FR2812486B1 true FR2812486B1 (fr) 2002-12-27

Family

ID=8853100

Family Applications (1)

Application Number Title Priority Date Filing Date
FR0010025A Expired - Fee Related FR2812486B1 (fr) 2000-07-28 2000-07-28 Securisation de session avec un moyen de traitement de donnees sous la commande de entites

Country Status (6)

Country Link
US (1) US7434049B2 (fr)
EP (1) EP1307997A1 (fr)
CN (1) CN1294721C (fr)
AU (1) AU7856901A (fr)
FR (1) FR2812486B1 (fr)
WO (1) WO2002011363A1 (fr)

Families Citing this family (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20030182559A1 (en) * 2002-03-22 2003-09-25 Ian Curry Secure communication apparatus and method for facilitating recipient and sender activity delegation
JP2004112461A (ja) 2002-09-19 2004-04-08 Sony Corp データ処理方法、そのプログラムおよびその装置
GB2410658B (en) * 2002-10-14 2006-03-01 Toshiba Res Europ Ltd Methods and systems for flexible delegation
EP2262164A1 (fr) * 2008-02-18 2010-12-15 Microelectronica Española, S.A.U. Transfert sécurisé de données
US9276910B2 (en) * 2013-11-19 2016-03-01 Wayne Fueling Systems Llc Systems and methods for convenient and secure mobile transactions
WO2016064362A1 (fr) * 2014-10-20 2016-04-28 Netaş Telekomüni̇kasyon Anoni̇m Şi̇rketi̇ Procédé de messagerie chiffrée sur les cartes intelligentes

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH09128507A (ja) * 1995-11-02 1997-05-16 Oki Electric Ind Co Ltd 相互認証方法
JP3595109B2 (ja) * 1997-05-28 2004-12-02 日本ユニシス株式会社 認証装置、端末装置、および、それら装置における認証方法、並びに、記憶媒体
US7096494B1 (en) * 1998-05-05 2006-08-22 Chen Jay C Cryptographic system and method for electronic transactions

Also Published As

Publication number Publication date
FR2812486A1 (fr) 2002-02-01
WO2002011363A1 (fr) 2002-02-07
CN1294721C (zh) 2007-01-10
US7434049B2 (en) 2008-10-07
EP1307997A1 (fr) 2003-05-07
AU7856901A (en) 2002-02-13
CN1460343A (zh) 2003-12-03
US20030169884A1 (en) 2003-09-11

Similar Documents

Publication Publication Date Title
HK1043330A1 (en) Fish game device.
AP2004002996A0 (en) An aquaculture system.
MXPA03004710A (es) Dispositivo de percolacion.
HK1034478A1 (en) Game system.
AP2003002865A0 (en) Chronotherapeutic dosage forms.
ZA200209650B (en) Gaming machine-membership reward system.
MXPA03003543A (es) Dispositivo para el tratamiento de agua.
HK1037268A1 (en) Multidirectional input device.
FR2711708B1 (fr) Dispositif submersible de nettoyage de piscine.
HK1038324A1 (en) Game system.
HK1046959A1 (en) Thermostat.
IT1318616B1 (it) Spray scintillante per biancheria.
FR2812486B1 (fr) Securisation de session avec un moyen de traitement de donnees sous la commande de entites
ITTO20010454A0 (it) Dispositivo di respirazione subacqueo.
FR2799088B3 (fr) Portable anatomique video (p.a.v)
ITGE20000054A0 (it) Computer per immersioni.
ITVI990053V0 (it) Dispositivo multiuso per apparecchi termoidraulici.
IT1313302B1 (it) Sella regolabile particolarmente studiata per cicli.
ZA200204398B (en) "An agitating device".
IT1302408B1 (it) Dispositivo per ginnastica acquatica.
ZA200101493B (en) Water control apparatus.
ZA200006462B (en) Pool cleaner.
ZA200301827B (en) "Washing line apparatus".
ES1042013Y (es) Un juego.
IT1310490B1 (it) Apparato per livellare lo stucco sulle pareti murarie.

Legal Events

Date Code Title Description
ST Notification of lapse

Effective date: 20100331