NO984535L - Sikker innlasting av data i et smart-kort - Google Patents
Sikker innlasting av data i et smart-kortInfo
- Publication number
- NO984535L NO984535L NO984535A NO984535A NO984535L NO 984535 L NO984535 L NO 984535L NO 984535 A NO984535 A NO 984535A NO 984535 A NO984535 A NO 984535A NO 984535 L NO984535 L NO 984535L
- Authority
- NO
- Norway
- Prior art keywords
- commands
- key
- smart card
- secure data
- data loading
- Prior art date
Links
Classifications
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07F—COIN-FREED OR LIKE APPARATUS
- G07F7/00—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
- G07F7/08—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
- G07F7/10—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07F—COIN-FREED OR LIKE APPARATUS
- G07F7/00—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
- G07F7/08—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
- G07F7/0806—Details of the card
- G07F7/0813—Specific details related to card security
- G07F7/082—Features insuring the integrity of the data on or in the card
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/57—Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
- G06F21/572—Secure firmware programming, e.g. of basic input output system [BIOS]
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/34—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
- G06Q20/341—Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/34—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
- G06Q20/355—Personalisation of cards for use
- G06Q20/3552—Downloading or loading of personalisation data
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07F—COIN-FREED OR LIKE APPARATUS
- G07F7/00—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
- G07F7/08—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
- G07F7/10—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
- G07F7/1008—Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system
Landscapes
- Engineering & Computer Science (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Computer Security & Cryptography (AREA)
- Theoretical Computer Science (AREA)
- Business, Economics & Management (AREA)
- Accounting & Taxation (AREA)
- General Business, Economics & Management (AREA)
- Strategic Management (AREA)
- Computer Networks & Wireless Communication (AREA)
- Microelectronics & Electronic Packaging (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Software Systems (AREA)
- Storage Device Security (AREA)
- Stored Programmes (AREA)
- Electrotherapy Devices (AREA)
- Credit Cards Or The Like (AREA)
- Telephone Function (AREA)
Abstract
Oppfinnelse vedrører fremgangsmåte for sikker innlasting og validering av kommandoer (COM) i et smartkort (SC). Spesielt i det tilfellet der applikasjons-spesifikke kommandoer blir lastet inn av applikasjonsleverandør (AP), som er frakoblet med hensyn til kortutstederen (CI), så må det sikres at kommandoen er gyldig. Oppfinnelsen skaffer en fremgangsmåte som innbefatter beskyttelse av kommandoene (COM) ved hjelp av autentiseringskoder, idet disse koder (MAC1, MAC2) blir fremskaffet under bruk av to forskjellige nøkler: en første nøkkel (Kl) som blir lagret av kortutstederen (CI), og en andre nøkkel (K2) som blir lagret av en fortrolig tredje part (TTP). En ytterligere autentiseringskode (MAC3) som blir fremskaffet under bruk av en nøkkel fra et sett av nøkler (K3*) , kan benyttes for selektiv validering av kommandoer for individuelle applikasjoner (for eksempel AP1, AP2).
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
EP96200867A EP0798673A1 (en) | 1996-03-29 | 1996-03-29 | Method of securely loading commands in a smart card |
PCT/EP1997/001553 WO1997037331A1 (en) | 1996-03-29 | 1997-03-25 | Method of securely loading commands in a smart card |
Publications (2)
Publication Number | Publication Date |
---|---|
NO984535L true NO984535L (no) | 1998-09-28 |
NO984535D0 NO984535D0 (no) | 1998-09-28 |
Family
ID=8223834
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
NO984535A NO984535D0 (no) | 1996-03-29 | 1998-09-28 | Sikker innlasting av data i et smart-kort |
Country Status (12)
Country | Link |
---|---|
US (1) | US6073238A (no) |
EP (2) | EP0798673A1 (no) |
JP (1) | JPH11506560A (no) |
KR (1) | KR20000005081A (no) |
CN (1) | CN1215489A (no) |
AU (1) | AU712353B2 (no) |
BR (1) | BR9708455A (no) |
CA (1) | CA2245921A1 (no) |
CZ (1) | CZ295698A3 (no) |
NO (1) | NO984535D0 (no) |
NZ (1) | NZ331258A (no) |
WO (1) | WO1997037331A1 (no) |
Families Citing this family (55)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US10361802B1 (en) | 1999-02-01 | 2019-07-23 | Blanding Hovenweep, Llc | Adaptive pattern recognition based control system and method |
DE19626339A1 (de) * | 1996-07-01 | 1998-01-08 | Ibm | Sicheres Laden von Anwendungen und Daten auf Chipkarten |
CA2288824A1 (en) | 1997-03-24 | 1998-10-01 | Marc B. Kekicheff | A system and method for a multi-application smart card which can facilitate a post-issuance download of an application onto the smart card |
DE19823532C2 (de) * | 1998-05-26 | 2003-08-21 | T Mobile Deutschland Gmbh | Verfahren zur Steuerung eines Teilnehmeridentitätsmoduls (SIM) in Mobilfunksystemen |
EP1125262A1 (en) * | 1998-10-27 | 2001-08-22 | Visa International Service Association | Delegated management of smart card applications |
FR2787221B1 (fr) * | 1998-12-09 | 2003-12-05 | Inside Technologies | Circuit integre a acces securise |
JP3545627B2 (ja) | 1999-02-08 | 2004-07-21 | 株式会社東芝 | 携帯可能電子装置 |
GB9903124D0 (en) * | 1999-02-11 | 1999-04-07 | Nokia Telecommunications Oy | An authentication method |
DE19911221B4 (de) * | 1999-03-12 | 2005-10-27 | T-Mobile Deutschland Gmbh | Verfahren zur Verteilung von Schlüsseln an Teilnehmer von Kommunikationsnetzen |
FI112315B (fi) * | 1999-05-11 | 2003-11-14 | Nokia Corp | Integriteetin suojausmenetelmä radioverkkosignalointia varten |
JP2001056848A (ja) * | 1999-08-19 | 2001-02-27 | Nec Corp | Icコードのコマンド実行制御方法、icカード、icカードプログラムを記録した記録媒体 |
FR2797968B1 (fr) * | 1999-08-24 | 2001-10-12 | Schlumberger Systems & Service | Dispositif et procede de chargement de commandes dans une carte a circuit integre |
JP3793377B2 (ja) * | 1999-08-30 | 2006-07-05 | 日本電信電話株式会社 | データ格納システム及びデータ格納プログラムを格納した記憶媒体 |
AUPQ487399A0 (en) * | 1999-12-24 | 2000-02-03 | Vfj Technology Pty Limited | Method and system for secure contactless card applications |
JP4501197B2 (ja) * | 2000-01-07 | 2010-07-14 | ソニー株式会社 | 情報携帯処理システム、情報携帯装置のアクセス装置及び情報携帯装置 |
JP3609003B2 (ja) * | 2000-05-02 | 2005-01-12 | シャープ株式会社 | Cmos半導体集積回路 |
US7043642B1 (en) * | 2000-05-22 | 2006-05-09 | Gemplus | Process to manage data in a chip card |
SE0002416L (sv) * | 2000-06-27 | 2001-12-28 | Tds Todos Data System Ab | Förfarande och anordning för kommunikation |
FR2816731B1 (fr) | 2000-11-14 | 2003-01-03 | Gemplus Card Int | Procede de chargement et de personnalisation des informations et programmes charges dans une carte a puce |
JP2002305250A (ja) * | 2001-02-02 | 2002-10-18 | Matsushita Electric Ind Co Ltd | 半導体集積回路および半導体集積回路に関するビジネス方法 |
DE10107373A1 (de) * | 2001-02-16 | 2002-08-29 | Infineon Technologies Ag | Sicherheitsmodul mit flüchtigem Speicher zur Speicherung eines Algorithmuscodes |
US7181017B1 (en) | 2001-03-23 | 2007-02-20 | David Felsher | System and method for secure three-party communications |
US7418344B2 (en) * | 2001-08-02 | 2008-08-26 | Sandisk Corporation | Removable computer with mass storage |
JP2003168093A (ja) * | 2001-11-30 | 2003-06-13 | Hitachi Ltd | カードシステム、カードへのアプリケーション搭載方法及びアプリケーション実行確認方法 |
US7243853B1 (en) | 2001-12-04 | 2007-07-17 | Visa U.S.A. Inc. | Method and system for facilitating memory and application management on a secured token |
JP2003187190A (ja) * | 2001-12-19 | 2003-07-04 | Hitachi Ltd | Icカード管理システム |
US8010405B1 (en) | 2002-07-26 | 2011-08-30 | Visa Usa Inc. | Multi-application smart card device software solution for smart cardholder reward selection and redemption |
US8015060B2 (en) | 2002-09-13 | 2011-09-06 | Visa Usa, Inc. | Method and system for managing limited use coupon and coupon prioritization |
US7121456B2 (en) | 2002-09-13 | 2006-10-17 | Visa U.S.A. Inc. | Method and system for managing token image replacement |
US9852437B2 (en) | 2002-09-13 | 2017-12-26 | Visa U.S.A. Inc. | Opt-in/opt-out in loyalty system |
US8626577B2 (en) | 2002-09-13 | 2014-01-07 | Visa U.S.A | Network centric loyalty system |
US20040139021A1 (en) | 2002-10-07 | 2004-07-15 | Visa International Service Association | Method and system for facilitating data access and management on a secure token |
GB2397678A (en) * | 2003-01-23 | 2004-07-28 | Sema Uk Ltd | A secure terminal for use with a smart card based loyalty scheme |
US9818136B1 (en) | 2003-02-05 | 2017-11-14 | Steven M. Hoffberg | System and method for determining contingent relevance |
US7827077B2 (en) | 2003-05-02 | 2010-11-02 | Visa U.S.A. Inc. | Method and apparatus for management of electronic receipts on portable devices |
US8554610B1 (en) | 2003-08-29 | 2013-10-08 | Visa U.S.A. Inc. | Method and system for providing reward status |
US7104446B2 (en) | 2003-09-03 | 2006-09-12 | Visa U.S.A., Inc. | Method, system and portable consumer device using wildcard values |
US7051923B2 (en) | 2003-09-12 | 2006-05-30 | Visa U.S.A., Inc. | Method and system for providing interactive cardholder rewards image replacement |
US8407083B2 (en) | 2003-09-30 | 2013-03-26 | Visa U.S.A., Inc. | Method and system for managing reward reversal after posting |
US8005763B2 (en) | 2003-09-30 | 2011-08-23 | Visa U.S.A. Inc. | Method and system for providing a distributed adaptive rules based dynamic pricing system |
US7653602B2 (en) | 2003-11-06 | 2010-01-26 | Visa U.S.A. Inc. | Centralized electronic commerce card transactions |
EP1761904A1 (en) | 2004-05-28 | 2007-03-14 | International Business Machines Corporation | Smart card data transaction system and methods for providing storage and transmission security |
US7853799B1 (en) * | 2004-06-24 | 2010-12-14 | Xilinx, Inc. | Microcontroller-configurable programmable device with downloadable decryption |
CN100562902C (zh) * | 2004-08-13 | 2009-11-25 | 意大利电信股份公司 | 用于安全管理存储在电子标签上的数据的方法和系统 |
DE102004039828A1 (de) * | 2004-08-17 | 2006-02-23 | Giesecke & Devrient Gmbh | Verifizierung eines nativen Datenträgers |
US20090235352A1 (en) | 2004-12-07 | 2009-09-17 | Koninklijke Philips Electronics N.V. | System and method for application management on multi-application smart cards |
WO2007006798A1 (fr) * | 2005-07-13 | 2007-01-18 | Gemplus | Procede et systeme d'authentification de puces electroniques |
US8874477B2 (en) | 2005-10-04 | 2014-10-28 | Steven Mark Hoffberg | Multifactorial optimization system and method |
US20080005567A1 (en) * | 2006-01-24 | 2008-01-03 | Stepnexus, Inc. | Method and system for personalizing smart cards using asymmetric key cryptography |
CN1889432B (zh) * | 2006-07-13 | 2010-09-22 | 上海交通大学 | 基于智能卡的口令远程认证方法、智能卡、服务器和系统 |
JP4702628B2 (ja) * | 2006-07-27 | 2011-06-15 | ソニー株式会社 | 電子機器、情報処理方法、およびプログラム |
ES2400398T3 (es) | 2008-03-28 | 2013-04-09 | Vodafone Holding Gmbh | Procedimiento para actualizar una tarjeta inteligente y tarjeta inteligente con capacidad de actualización |
US8567670B2 (en) | 2009-03-27 | 2013-10-29 | Intersections Inc. | Dynamic card verification values and credit transactions |
US20110145082A1 (en) | 2009-12-16 | 2011-06-16 | Ayman Hammad | Merchant alerts incorporating receipt data |
US8429048B2 (en) | 2009-12-28 | 2013-04-23 | Visa International Service Association | System and method for processing payment transaction receipts |
Family Cites Families (18)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
DE3682476D1 (de) * | 1985-10-07 | 1991-12-19 | Toshiba Kawasaki Kk | Tragbares elektronisches geraet. |
US4879747A (en) * | 1988-03-21 | 1989-11-07 | Leighton Frank T | Method and system for personal identification |
US5120939A (en) * | 1989-11-09 | 1992-06-09 | At&T Bell Laboratories | Databaseless security system |
US5719560A (en) * | 1989-12-08 | 1998-02-17 | Watkins; Christopher John Cornish Hellaby | Method of automatic verification of personal identity |
US5007089A (en) * | 1990-04-09 | 1991-04-09 | International Business Machines Corporation | Secure key management using programable control vector checking |
DE4119924C3 (de) * | 1991-06-17 | 1996-06-20 | Siemens Ag | Verfahren zur Sicherung von ladbaren Guthaben in Chipkarten |
EP0525895B1 (en) * | 1991-08-01 | 1995-10-04 | Koninklijke Philips Electronics N.V. | Security system for an apparatus |
US5508691A (en) * | 1992-06-22 | 1996-04-16 | Lynx Systems, Inc. | Self-contained electronic lock with changeable master and slave codes |
US5313639A (en) * | 1992-06-26 | 1994-05-17 | George Chao | Computer with security device for controlling access thereto |
US5644354A (en) * | 1992-10-09 | 1997-07-01 | Prevue Interactive, Inc. | Interactive video system |
US5544246A (en) * | 1993-09-17 | 1996-08-06 | At&T Corp. | Smartcard adapted for a plurality of service providers and for remote installation of same |
US5343529A (en) * | 1993-09-28 | 1994-08-30 | Milton Goldfine | Transaction authentication using a centrally generated transaction identifier |
AU1265195A (en) * | 1993-12-06 | 1995-06-27 | Telequip Corporation | Secure computer memory card |
US5461217A (en) * | 1994-02-08 | 1995-10-24 | At&T Ipm Corp. | Secure money transfer techniques using smart cards |
US5537474A (en) * | 1994-07-29 | 1996-07-16 | Motorola, Inc. | Method and apparatus for authentication in a communication system |
NL9401406A (nl) * | 1994-08-31 | 1996-04-01 | Nederland Ptt | Betaalsysteem met verbeterde integriteit. |
FR2731536B1 (fr) * | 1995-03-10 | 1997-04-18 | Schlumberger Ind Sa | Procede d'inscription securisee d'informations dans un support portable |
US5671283A (en) * | 1995-06-08 | 1997-09-23 | Wave Systems Corp. | Secure communication system with cross linked cryptographic codes |
-
1996
- 1996-03-29 EP EP96200867A patent/EP0798673A1/en not_active Ceased
-
1997
- 1997-03-25 CN CN97193502A patent/CN1215489A/zh active Pending
- 1997-03-25 CA CA002245921A patent/CA2245921A1/en not_active Abandoned
- 1997-03-25 AU AU25062/97A patent/AU712353B2/en not_active Ceased
- 1997-03-25 BR BR9708455-7A patent/BR9708455A/pt not_active Application Discontinuation
- 1997-03-25 CZ CZ982956A patent/CZ295698A3/cs unknown
- 1997-03-25 KR KR1019980707711A patent/KR20000005081A/ko active IP Right Grant
- 1997-03-25 EP EP97916401A patent/EP0960404A1/en not_active Withdrawn
- 1997-03-25 NZ NZ331258A patent/NZ331258A/en unknown
- 1997-03-25 WO PCT/EP1997/001553 patent/WO1997037331A1/en not_active Application Discontinuation
- 1997-03-25 JP JP9534918A patent/JPH11506560A/ja active Pending
- 1997-03-28 US US08/828,350 patent/US6073238A/en not_active Expired - Fee Related
-
1998
- 1998-09-28 NO NO984535A patent/NO984535D0/no not_active Application Discontinuation
Also Published As
Publication number | Publication date |
---|---|
US6073238A (en) | 2000-06-06 |
AU2506297A (en) | 1997-10-22 |
EP0798673A1 (en) | 1997-10-01 |
EP0960404A1 (en) | 1999-12-01 |
NZ331258A (en) | 1999-10-28 |
AU712353B2 (en) | 1999-11-04 |
JPH11506560A (ja) | 1999-06-08 |
WO1997037331A1 (en) | 1997-10-09 |
BR9708455A (pt) | 2000-01-04 |
CA2245921A1 (en) | 1997-10-09 |
KR20000005081A (ko) | 2000-01-25 |
CZ295698A3 (cs) | 1999-02-17 |
NO984535D0 (no) | 1998-09-28 |
CN1215489A (zh) | 1999-04-28 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
NO984535L (no) | Sikker innlasting av data i et smart-kort | |
GB2551907B (en) | Method and system for providing a symmetric keypair with a master key and a transient derived key | |
US5856659A (en) | Method of securely modifying data on a smart card | |
CN106778329A (zh) | 一种区块链智能合约模板动态更新方法、装置及系统 | |
CN103189877B (zh) | 软件认证 | |
US20110276807A1 (en) | Remote update method for firmware | |
DK1190289T3 (da) | Anordning til bekræftelse af en programkode, der er gemt i en hukommelsesanordning til at afpröve bekræftelsen og gyldigheden af software i et kommunikationssystems mobilstation | |
SE9700587L (sv) | Förfarande för behörighetskontroll med SIM-kort | |
KR101509043B1 (ko) | 범용 카드 시스템의 실현 방법과 시스템 및 스마트 카드 | |
US11546163B2 (en) | System for performing service by using biometric information, and control method therefor | |
US10069820B2 (en) | Linked registration | |
US6076162A (en) | Certification of cryptographic keys for chipcards | |
CN104657636B (zh) | 产生包括至少一个虚拟机ovm结构的方法和相应的结构 | |
CN106815517A (zh) | 一种密码验证方法及装置 | |
CN106251442B (zh) | 一种智能锁的临时密码的设置及其验证方法 | |
FI113146B (fi) | Menetelmä autentikointiviestin käsittelemiseksi, puhelinjärjestelmä, autentikointikeskus, tilaajalaite ja SIM-kortti | |
NO996488L (no) | Betalingsprosess og -system | |
US7698703B2 (en) | Imparting digital uniqueness to the types of a programming language using a unique digital sequence | |
AU2002333726B2 (en) | Initialization of a chip card | |
US20030188170A1 (en) | Access control to data processing means | |
DK0990226T3 (da) | System til sikret læsning og bearbejdning af data på intelligente databærere | |
FR2800220B1 (fr) | Procede de transaction electronique securisee | |
DK1411674T3 (da) | System og fremgangsmåde til indstilling af krypteringsnögler, adgangspunkt, og system til indstilling af en autentificeringskode | |
KR101905655B1 (ko) | 전자결제 제공 방법과 그를 위한 시스템, 단말기 및 통신 관리 장치 | |
KR20120076589A (ko) | 가입자 정보 및 가입자 식별 모듈을 이용한 전자결제 제공 방법과 그를 위한 시스템, 단말기 및 통신 관리 장치 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
FC2A | Withdrawal, rejection or dismissal of laid open patent application |