JP6220011B2 - 腕時計の集積回路に銀行データをプログラミングする方法 - Google Patents
腕時計の集積回路に銀行データをプログラミングする方法 Download PDFInfo
- Publication number
- JP6220011B2 JP6220011B2 JP2016115969A JP2016115969A JP6220011B2 JP 6220011 B2 JP6220011 B2 JP 6220011B2 JP 2016115969 A JP2016115969 A JP 2016115969A JP 2016115969 A JP2016115969 A JP 2016115969A JP 6220011 B2 JP6220011 B2 JP 6220011B2
- Authority
- JP
- Japan
- Prior art keywords
- integrated circuit
- bank
- data
- portable
- public key
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3263—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/08—Payment architectures
- G06Q20/10—Payment architectures specially adapted for electronic funds transfer [EFT] systems; specially adapted for home banking systems
- G06Q20/108—Remote banking, e.g. home banking
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/32—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
- G06Q20/321—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices using wearable devices
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/32—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
- G06Q20/326—Payment applications installed on the mobile devices
- G06Q20/3265—Payment applications installed on the mobile devices characterised by personalisation for use
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/33—User authentication using certificates
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/34—User authentication involving the use of external additional devices, e.g. dongles or smart cards
- G06F21/35—User authentication involving the use of external additional devices, e.g. dongles or smart cards communicating wirelessly
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/602—Providing cryptographic facilities or services
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/02—Payment architectures, schemes or protocols involving a neutral party, e.g. certification authority, notary or trusted third party [TTP]
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/32—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
- G06Q20/322—Aspects of commerce using mobile devices [M-devices]
- G06Q20/3223—Realising banking transactions through M-devices
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/32—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
- G06Q20/322—Aspects of commerce using mobile devices [M-devices]
- G06Q20/3226—Use of secure elements separate from M-devices
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/32—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
- G06Q20/322—Aspects of commerce using mobile devices [M-devices]
- G06Q20/3227—Aspects of commerce using mobile devices [M-devices] using secure elements embedded in M-devices
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/32—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
- G06Q20/327—Short range or proximity payments by means of M-devices
- G06Q20/3278—RFID or NFC payments by means of M-devices
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/36—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes
- G06Q20/363—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes with the personal data of a user
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
- G06Q20/3821—Electronic credentials
- G06Q20/38215—Use of certificates or encrypted proofs of transaction rights
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
- G06Q20/3829—Payment protocols; Details thereof insuring higher security of transaction involving key management
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
- G06Q20/401—Transaction verification
- G06Q20/4014—Identity check for transactions
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
- G06Q20/405—Establishing or using transaction specific rules
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
- G06Q20/409—Device specific authentication in transaction processing
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
- H04L63/0442—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply asymmetric encryption, i.e. different keys for encryption and decryption
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0823—Network architectures or network communication protocols for network security for authentication of entities using certificates
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/30—Public key, i.e. encryption algorithm being computationally infeasible to invert or user's encryption keys not requiring secrecy
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2211/00—Indexing scheme relating to details of data-processing equipment not covered by groups G06F3/00 - G06F13/00
- G06F2211/007—Encryption, En-/decode, En-/decipher, En-/decypher, Scramble, (De-)compress
- G06F2211/008—Public Key, Asymmetric Key, Asymmetric Encryption
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q2220/00—Business processing using cryptography
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2209/00—Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
- H04L2209/24—Key scheduling, i.e. generating round keys or sub-keys for block encryption
Landscapes
- Engineering & Computer Science (AREA)
- Business, Economics & Management (AREA)
- Accounting & Taxation (AREA)
- Theoretical Computer Science (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Computer Security & Cryptography (AREA)
- Strategic Management (AREA)
- General Business, Economics & Management (AREA)
- Computer Networks & Wireless Communication (AREA)
- Finance (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Signal Processing (AREA)
- Computing Systems (AREA)
- Software Systems (AREA)
- Development Economics (AREA)
- Economics (AREA)
- General Health & Medical Sciences (AREA)
- Bioethics (AREA)
- Health & Medical Sciences (AREA)
- Telephone Function (AREA)
- Storage Device Security (AREA)
- Credit Cards Or The Like (AREA)
Description
1’ カード
2 アンテナ
3 集積回路
4 プッシュボタン
10 カード製造者
20 銀行
30 携帯電話
100 ステップ
102 ステップ
104 ステップ
106 ステップ
108 ステップ
110 ステップ
112 ステップ
114 ステップ
116 ステップ
118 ステップ
120 ステップ
200 ステップ
202 ステップ
204 ステップ
206 ステップ
Claims (12)
- 銀行データなどの秘密または機密データを腕時計などの(1)携帯品の特定用途向け集積回路(3)にプログラミングする方法であって、データのプログラミングのために非対称暗号化/復号化アルゴリズムを用いる方法であって、
前記方法は、
−前記集積回路(3)の公開鍵(KpubIC)と、前記集積回路の公開鍵および認証局の秘密鍵(KprivAC)に基づいて前記認証局によって生成されるデジタル証明書(CertIC)とを、前記携帯品(1)から銀行(20)または金融機関または銀行機関に送信するステップと、
−前記デジタル証明書(CertIC)を前記銀行(20)または金融機関または銀行機関で前記認証局の公開鍵(KpubAC)によって検証するステップと、
−前記デジタル証明書が承認される場合は、前記携帯品(1)の所有者に個別化され、暗号化された秘密または機密データを前記銀行(20)または金融機関または銀行機関から前記携帯品(1)に送信するステップと、
−前記集積回路(3)の秘密鍵(KprivIC)によって、前記携帯品(1)の前記所有者に個別化され、前記復号化された秘密または機密データを記憶するために、前記携帯品(1)の前記特定用途向け集積回路(3)によって受信された前記暗号化されたデータを復号化するステップと、
を含み、前記携帯品の所有者が少なくとも1つの銀行口座を持っている銀行(20)または金融機関または銀行機関と前記携帯品との間で接続を確立することを特徴とする、方法。 - 請求項1に記載のプログラミング方法であって、前記集積回路(3)は、前記携帯品所有者の銀行(20)または金融機関または銀行機関とデータ信号を送受信するために前記携帯品(1)のアンテナ(2)に接続し、前記集積回路(3)の前記公開鍵(KpubIC)および前記デジタル証明書(CertIC)の前記送信は通信端末(30)によって実現され、前記暗号化された秘密または機密データの前記銀行(20)または金融機関または銀行機関からの前記受信は、前記携帯品(1)の前記集積回路(3)に接続する前記アンテナ(2)によって前記通信端末(30)経由で実現されることを特徴とする、方法。
- 請求項2に記載のプログラミング方法であって、NFCプロトコルを用いる短距離通信は前記携帯品(1)と前記通信端末の間で確立され、前記通信端末は通信トンネルとして機能する携帯電話(30)である、方法。
- 請求項1に記載のプログラミング方法であって、前記集積回路の前記秘密鍵(KprivIC)および公開鍵(KpubIC)、ならびに前記デジタル証明書(CertIC)は、前記公開鍵(KpubIC)および前記デジタル証明書(CertIC)を送信する前記ステップの前に、一時的に前記集積回路の不揮発性メモリ(3)に記憶され、受信された前記暗号化データが復号化されて前記集積回路メモリに記憶されると、前記集積回路の前記秘密鍵(KprivIC)および公開鍵(KpubIC)、ならびに前記デジタル証明書(CertIC)は前記メモリから削除されることを特徴とする、方法。
- 請求項1に記載のプログラミング方法であって、前記デジタル証明書の検証後に、前記銀行(20)または金融機関または銀行機関は前記携帯品の前記所有者の銀行口座に関する銀行データを暗号化する、方法。
- 請求項1に記載のプログラミング方法であって、前記方法は、
−前記集積回路(3)に特有の秘密鍵(KprivIC)および公開鍵(KpubIC)を前記集積回路の製造中または前記携帯品(1)の製造施設において生成する予備ステップと、
−前記集積回路(3)の公開鍵(KpubIC)を前記認証局に送信して、前記デジタル証明書(CertIC)を前記認証局の秘密鍵(KprivAC)に基づいて算出する予備ステップと、
−前記デジタル証明書(CertIC)を前記集積回路(3)または前記携帯品(1)の前記製造者に送信し、前記特定用途向け集積回路を前記秘密および公開鍵ならびに前記デジタル証明書などの一時的なデータで個別化し、その後前記集積回路(3)の前記公開鍵(KpubIC)および前記デジタル証明書(CertIC)を前記銀行(20)または金融機関または銀行機関に送信する予備ステップと、
を含む、方法。 - 請求項1に記載のプログラミング方法であって、前記方法は、
−前記認証局の秘密鍵(KprivAC)および公開鍵(KpubAC)を生成する予備ステップと、
−前記認証局の前記公開鍵(KpubAC)を銀行(20)または金融機関または銀行機関に送信する予備ステップと、
−前記認証局の前記秘密鍵(KprivAC)および公開鍵(KpubAC)を安全ユニットに記憶する予備ステップと、
を含む、方法。 - 銀行データなどの秘密または機密データ用の特定用途向け集積回路(3)を備える携帯品(1)であって、請求項1〜7のいずれか1つに記載のプログラミング方法にしたがって個別化およびプログラミングされる前記携帯品はまた、前記集積回路(3)に接続するアンテナ(2)を備え、前記アンテナ(2)は前記データ信号の送受信のための通信インタフェースを備え、前記集積回路(3)はプロセッサ演算装置と、オペレーティングシステムと、前記携帯品の前記所有者に特有の秘密および機密データを記憶するためのメモリとを備えることを特徴とする、携帯品。
- 請求項8に記載の携帯品(1)であって、携帯品は腕時計ケース内部にアンテナを備える腕時計であり、前記アンテナは前記集積回路(3)の前記通信インタフェースに接続することを特徴とする、携帯品(1)。
- 請求項8に記載の携帯品(1)であって、前記集積回路(3)の前記通信インタフェースは、通信端末(30)を通じ、銀行(20)または金融機関または銀行機関までの通信を確立するために、短距離通信インタフェース(NFC)であることを特徴とする、携帯品(1)。
- 請求項8に記載の携帯品(1)であって、前記集積回路(3)はメモリに前記集積回路の前記秘密鍵(KprivIC)および公開鍵(KpubIC)と、前記集積回路のデジタル証明書(CertIC)とを一時的に記憶するように構成され、プログラミング後に、前記秘密または機密データは前記不揮発性メモリにロックされることを特徴とする、携帯品(1)。
- 請求項10に記載の携帯品(1)であって、前記携帯品(1)は時間および日付の従来の設定用の少なくとも1つのプッシュボタン(4)、または短距離通信(NFC)のための前記集積回路を起動するために用いられる少なくとも1つのプッシュボタン(4)を含むことを特徴とする、携帯品(1)。
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
EP15171811.1 | 2015-06-12 | ||
EP15171811.1A EP3104320B1 (fr) | 2015-06-12 | 2015-06-12 | Procédé de programmation de données bancaires dans un circuit intégré d'une montre |
Publications (2)
Publication Number | Publication Date |
---|---|
JP2017005712A JP2017005712A (ja) | 2017-01-05 |
JP6220011B2 true JP6220011B2 (ja) | 2017-10-25 |
Family
ID=53442536
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
JP2016115969A Active JP6220011B2 (ja) | 2015-06-12 | 2016-06-10 | 腕時計の集積回路に銀行データをプログラミングする方法 |
Country Status (6)
Country | Link |
---|---|
US (1) | US11308465B2 (ja) |
EP (1) | EP3104320B1 (ja) |
JP (1) | JP6220011B2 (ja) |
KR (2) | KR102004589B1 (ja) |
CN (1) | CN106254076B (ja) |
TW (1) | TWI727953B (ja) |
Families Citing this family (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US9953479B1 (en) * | 2017-03-17 | 2018-04-24 | Ca, Inc. | Controlling access to physical compartment using mobile device and transaction authentication system |
JP2019125132A (ja) * | 2018-01-16 | 2019-07-25 | 株式会社デンソー | パスコード管理プログラム、パスコード管理方法 |
EP3640878B1 (fr) * | 2018-10-17 | 2023-06-21 | Swatch Ag | Procede et systeme d'activation d'un objet portable de paiement sans contact |
CH715678B1 (fr) * | 2018-12-20 | 2022-09-30 | Boninchi Sa | Dispositif de communication comprenant une montre munie d'une puce radiofréquence. |
Family Cites Families (53)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
AU1265195A (en) * | 1993-12-06 | 1995-06-27 | Telequip Corporation | Secure computer memory card |
DE69534490T2 (de) * | 1994-07-19 | 2006-06-29 | Certco, Llc | Verfahren zur sicheren anwendung digitaler unterschriften in einem kommerziellen verschlüsselungssystem |
IL113259A (en) * | 1995-04-05 | 2001-03-19 | Diversinet Corp | A device and method for a secure interface for secure communication and data transfer |
US5677955A (en) * | 1995-04-07 | 1997-10-14 | Financial Services Technology Consortium | Electronic funds transfer instruments |
US5745574A (en) * | 1995-12-15 | 1998-04-28 | Entegrity Solutions Corporation | Security infrastructure for electronic transactions |
US6038551A (en) * | 1996-03-11 | 2000-03-14 | Microsoft Corporation | System and method for configuring and managing resources on a multi-purpose integrated circuit card using a personal computer |
US6085320A (en) * | 1996-05-15 | 2000-07-04 | Rsa Security Inc. | Client/server protocol for proving authenticity |
US7287271B1 (en) * | 1997-04-08 | 2007-10-23 | Visto Corporation | System and method for enabling secure access to services in a computer network |
KR100358426B1 (ko) * | 1998-08-18 | 2003-01-29 | 한국전자통신연구원 | 전자현금거래방법 |
JP2000113085A (ja) * | 1998-10-08 | 2000-04-21 | Sony Corp | 電子現金システム |
US6820202B1 (en) * | 1998-11-09 | 2004-11-16 | First Data Corporation | Account authority digital signature (AADS) system |
JP2000184085A (ja) * | 1998-12-18 | 2000-06-30 | Fujitsu Ltd | 携帯機器、携帯端末用アタッチメント及び携帯機器を用いたシステム |
JP2000311196A (ja) * | 1999-04-28 | 2000-11-07 | Toshiba Corp | 申請手続処理システム及びそれに使用されるicカード |
EP1056014A1 (en) * | 1999-05-28 | 2000-11-29 | Hewlett-Packard Company | System for providing a trustworthy user interface |
AU762560B2 (en) * | 1999-06-30 | 2003-06-26 | Silverbrook Research Pty Ltd | Method and system for banking |
US6842863B1 (en) * | 1999-11-23 | 2005-01-11 | Microsoft Corporation | Certificate reissuance for checking the status of a certificate in financial transactions |
CA2305249A1 (en) * | 2000-04-14 | 2001-10-14 | Branko Sarcanin | Virtual safe |
JP2001344537A (ja) * | 2000-05-31 | 2001-12-14 | Ntt Docomo Inc | 電子バリューシステム、通信端末及びサーバ |
JP2002073568A (ja) * | 2000-08-31 | 2002-03-12 | Sony Corp | 個人認証システムおよび個人認証方法、並びにプログラム提供媒体 |
US7356690B2 (en) * | 2000-12-11 | 2008-04-08 | International Business Machines Corporation | Method and system for managing a distributed trust path locator for public key certificates relating to the trust path of an X.509 attribute certificate |
JP2002207427A (ja) * | 2001-01-10 | 2002-07-26 | Sony Corp | 公開鍵証明書発行システム、公開鍵証明書発行方法、および情報処理装置、情報記録媒体、並びにプログラム記憶媒体 |
US6983381B2 (en) * | 2001-01-17 | 2006-01-03 | Arcot Systems, Inc. | Methods for pre-authentication of users using one-time passwords |
US7366905B2 (en) * | 2002-02-28 | 2008-04-29 | Nokia Corporation | Method and system for user generated keys and certificates |
US20040030887A1 (en) * | 2002-08-07 | 2004-02-12 | Harrisville-Wolff Carol L. | System and method for providing secure communications between clients and service providers |
CN1708942B (zh) * | 2002-10-31 | 2010-11-03 | 艾利森电话股份有限公司 | 设备特定安全性数据的安全实现及利用 |
US7533012B2 (en) * | 2002-12-13 | 2009-05-12 | Sun Microsystems, Inc. | Multi-user web simulator |
US20050021975A1 (en) * | 2003-06-16 | 2005-01-27 | Gouping Liu | Proxy based adaptive two factor authentication having automated enrollment |
CA2529800A1 (en) * | 2003-06-17 | 2004-12-29 | Visa International Service Association | Method and systems for securely exchanging data in an electronic transaction |
EP1687931B1 (en) * | 2003-10-28 | 2021-12-29 | BlackBerry Limited | Method and apparatus for verifiable generation of public keys |
US20050177518A1 (en) * | 2004-02-10 | 2005-08-11 | Brown Collie D. | Electronic funds transfer and electronic bill receipt and payment system |
JP4652842B2 (ja) * | 2005-02-21 | 2011-03-16 | 株式会社エヌ・ティ・ティ・ドコモ | Icカード |
TW200704044A (en) * | 2005-03-31 | 2007-01-16 | Willrich Innovations Inc | Cellular data communication core |
EP2667344A3 (en) * | 2005-10-06 | 2014-08-27 | C-Sam, Inc. | Transactional services |
FR2897222A1 (fr) * | 2006-02-03 | 2007-08-10 | Gemplus Sa | Acces a distance a une memoire de masse et une memoire de securite dans un objet communicant portable |
WO2007094036A1 (ja) * | 2006-02-13 | 2007-08-23 | Seiko Instruments Inc. | 情報処理システム |
JP2007251437A (ja) * | 2006-03-14 | 2007-09-27 | Fuji Electric Holdings Co Ltd | 認証方法及び安全な通信制御方法 |
WO2008112048A1 (en) * | 2007-02-02 | 2008-09-18 | Tecordia Technologies, Inc. | Method and system to authorize and assign digital certificates without loss of privacy |
US8041338B2 (en) * | 2007-09-10 | 2011-10-18 | Microsoft Corporation | Mobile wallet and digital payment |
US20090143104A1 (en) * | 2007-09-21 | 2009-06-04 | Michael Loh | Wireless smart card and integrated personal area network, near field communication and contactless payment system |
JP2009118110A (ja) * | 2007-11-06 | 2009-05-28 | Nippon Telegr & Teleph Corp <Ntt> | 認証システムのメタデータプロビジョニング方法、システム、そのプログラムおよび記録媒体 |
CN101471867A (zh) * | 2007-12-27 | 2009-07-01 | 深圳华为通信技术有限公司 | 网络访问权限控制方法及系统、接入终端、运营支撑系统 |
US20090198618A1 (en) * | 2008-01-15 | 2009-08-06 | Yuen Wah Eva Chan | Device and method for loading managing and using smartcard authentication token and digital certificates in e-commerce |
CH699083B1 (fr) | 2008-07-28 | 2013-10-15 | Wisekey Sa | Procédé pour la certification numérique d'authenticité d'un objet physique et support d'enregistrement pour la mise en œuvre d'un tel procédé |
CN101777978B (zh) * | 2008-11-24 | 2012-05-30 | 华为终端有限公司 | 一种基于无线终端的数字证书申请方法、系统及无线终端 |
US20120101951A1 (en) * | 2010-10-22 | 2012-04-26 | Michael Li | Method and System for Secure Financial Transactions Using Mobile Communications Devices |
KR20120108599A (ko) * | 2011-03-25 | 2012-10-05 | 주식회사 스마트솔루션 | 온라인 신용카드 결제 단말기를 활용한 신용카드 결제 서비스 |
CN103167491B (zh) * | 2011-12-15 | 2016-03-02 | 上海格尔软件股份有限公司 | 一种基于软件数字证书的移动终端唯一性认证方法 |
KR101428865B1 (ko) * | 2012-10-25 | 2014-08-12 | 순천향대학교 산학협력단 | Nfc 모바일 결제정보보호를 위한 ntru 암호체계 기반 영지식 증명 시스템 및 방법 |
US20140237256A1 (en) * | 2013-02-17 | 2014-08-21 | Mourad Ben Ayed | Method for securing data using a disposable private key |
KR101565566B1 (ko) * | 2013-02-22 | 2015-11-03 | 서울시립대학교 산학협력단 | 휴대용 단말기와 액세서리를 이용하는 안전결제 시스템 및 방법 |
US20140379584A1 (en) * | 2013-06-25 | 2014-12-25 | FraudFree Finance, LLC | Anti-fraud financial transaction method |
KR20150026233A (ko) * | 2013-09-02 | 2015-03-11 | 삼성에스디에스 주식회사 | 디지털 카드 기반의 결제 시스템 및 방법 |
CN104243484B (zh) * | 2014-09-25 | 2016-04-13 | 小米科技有限责任公司 | 信息交互方法及装置、电子设备 |
-
2015
- 2015-06-12 EP EP15171811.1A patent/EP3104320B1/fr active Active
-
2016
- 2016-06-03 TW TW105117643A patent/TWI727953B/zh active
- 2016-06-07 US US15/175,628 patent/US11308465B2/en active Active
- 2016-06-08 CN CN201610405987.4A patent/CN106254076B/zh active Active
- 2016-06-10 JP JP2016115969A patent/JP6220011B2/ja active Active
- 2016-06-10 KR KR1020160072232A patent/KR102004589B1/ko active IP Right Grant
-
2017
- 2017-09-22 KR KR1020170122379A patent/KR20170115015A/ko active Application Filing
Also Published As
Publication number | Publication date |
---|---|
US11308465B2 (en) | 2022-04-19 |
KR20160146562A (ko) | 2016-12-21 |
EP3104320A1 (fr) | 2016-12-14 |
KR20170115015A (ko) | 2017-10-16 |
KR102004589B1 (ko) | 2019-07-26 |
TWI727953B (zh) | 2021-05-21 |
CN106254076B (zh) | 2019-06-25 |
CN106254076A (zh) | 2016-12-21 |
EP3104320B1 (fr) | 2018-08-15 |
JP2017005712A (ja) | 2017-01-05 |
TW201717138A (zh) | 2017-05-16 |
US20160364704A1 (en) | 2016-12-15 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US8627080B2 (en) | Systems and methods for mutual authentication using one time codes | |
ES2498893T3 (es) | Dispositivo autónomo de entrada segura de PIN para habilitar transacciones con tarjeta EMV con lector de tarjetas separado | |
Ceipidor et al. | KerNeeS: A protocol for mutual authentication between NFC phones and POS terminals for secure payment transactions | |
EP3895462B1 (en) | Provisioning initiated from a contactless device | |
JP6220011B2 (ja) | 腕時計の集積回路に銀行データをプログラミングする方法 | |
US11750368B2 (en) | Provisioning method and system with message conversion | |
AU2022291589A1 (en) | Limited operational life password for digital transactions | |
AU2023200044A1 (en) | System and method for updating firmware | |
TWI794155B (zh) | 與數位交易處理單元通信的裝置與方法 | |
TWI795351B (zh) | 外部控制數位交換處理單元的裝置與方法 | |
AU2022271408A1 (en) | Cryptographic data transfer | |
KR101710950B1 (ko) | 암호키 배포 방법, 그를 이용한 카드리더 모듈 및 암호키 배포 시스템 | |
TWI819998B (zh) | 以數位交易處理單元直接通信的裝置與方法 | |
CH711182A2 (fr) | Procédé de programmation de données bancaires dans un circuit intégré d'un objet portable, p.ex. une montre. |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
A977 | Report on retrieval |
Free format text: JAPANESE INTERMEDIATE CODE: A971007 Effective date: 20170411 |
|
A131 | Notification of reasons for refusal |
Free format text: JAPANESE INTERMEDIATE CODE: A131 Effective date: 20170523 |
|
A521 | Request for written amendment filed |
Free format text: JAPANESE INTERMEDIATE CODE: A523 Effective date: 20170823 |
|
TRDD | Decision of grant or rejection written | ||
A01 | Written decision to grant a patent or to grant a registration (utility model) |
Free format text: JAPANESE INTERMEDIATE CODE: A01 Effective date: 20170912 |
|
A61 | First payment of annual fees (during grant procedure) |
Free format text: JAPANESE INTERMEDIATE CODE: A61 Effective date: 20170928 |
|
R150 | Certificate of patent or registration of utility model |
Ref document number: 6220011 Country of ref document: JP Free format text: JAPANESE INTERMEDIATE CODE: R150 |
|
R250 | Receipt of annual fees |
Free format text: JAPANESE INTERMEDIATE CODE: R250 |
|
R250 | Receipt of annual fees |
Free format text: JAPANESE INTERMEDIATE CODE: R250 |
|
R250 | Receipt of annual fees |
Free format text: JAPANESE INTERMEDIATE CODE: R250 |
|
R250 | Receipt of annual fees |
Free format text: JAPANESE INTERMEDIATE CODE: R250 |