WO1998009256A1 - Procede de preparation d'une application de carte a puce et dispositif correspondant - Google Patents

Procede de preparation d'une application de carte a puce et dispositif correspondant Download PDF

Info

Publication number
WO1998009256A1
WO1998009256A1 PCT/EP1996/003840 EP9603840W WO9809256A1 WO 1998009256 A1 WO1998009256 A1 WO 1998009256A1 EP 9603840 W EP9603840 W EP 9603840W WO 9809256 A1 WO9809256 A1 WO 9809256A1
Authority
WO
WIPO (PCT)
Prior art keywords
chip card
software
terminal
card terminal
application
Prior art date
Application number
PCT/EP1996/003840
Other languages
German (de)
English (en)
Inventor
Michael Gundlach
Original Assignee
Siemens Aktiengesellschaft
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Siemens Aktiengesellschaft filed Critical Siemens Aktiengesellschaft
Priority to PCT/EP1996/003840 priority Critical patent/WO1998009256A1/fr
Publication of WO1998009256A1 publication Critical patent/WO1998009256A1/fr

Links

Classifications

    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/10Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
    • G07F7/1008Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/355Personalisation of cards for use
    • G06Q20/3552Downloading or loading of personalisation data

Definitions

  • a standard GSM telephone usually only accepts a chip card for GSM (so-called Subscriber Identity Module, SIM), a public telephone often only a telephone card (of the associated network operator), a DECT telephone normally only a chip card for DECT (so-called. DECT Authentication Module), etc.
  • SIM Subscriber Identity Module
  • DECT DECT Authentication Module
  • Further standards for special chip card applications are being prepared worldwide, e.g. the Personal Identity Card (Personal Identification Module, PIM), a chip card for UPT (Universal Personal Telecommunication).
  • a chip card reader can be integrated in a terminal, but it can also be an additional device. Since this difference is not important for the invention, in the following chip card reader and terminal are collectively referred to as a chip card terminal.
  • Conventional chip card terminals are practically always specific for one application or (rarely) for a few applications. New chip card applications are therefore often not used or are used only sluggishly because special end devices would be necessary for this, which would be associated with high costs.
  • chip cards are standardized to the extent that the physical and logical interfaces fit in a large number of end devices. Only the application software required for communication with the network, for example with the application servers and the authentication servers, is specific to the respective application. According to some standards, there are so-called multifunctional chip cards with which several different applications can be carried out. However, this usually requires several end devices, each of which is only equipped for one application or (rarely) for a few applications.
  • a chip card for UPT could also be used in a public telephone or in a DECT telephone, or if a chip card for home banking could be used in a GSM telephone. Any other combinations would also be conceivable as desirable.
  • both the chip card and the end device would be multifunctional, so that even several applications could be active at the same time, e.g. GSM and home banking. So far, there are no chip card terminals that could be easily expanded to new applications. Different chip cards are only accepted by a few terminals, e.g. some public telephone devices that can be used with phone cards or credit cards.
  • the present invention is therefore based on the object of specifying a technical teaching which can be implemented. enabled many of the applications described with a single (universally applicable) chip card terminal.
  • This object is achieved with the aid of a chip card software server according to claim 1, with the aid of a chip card terminal according to claim 2 or with the aid of a method for preparing to carry out a chip card application with features according to claim 3.
  • the software required to carry out an application is transmitted from a chip card software server to the chip card terminal via a data transmission device in order to be able to carry out different chip card applications with the aid of a chip card terminal.
  • One-sided or mutual authentication methods can be used here.
  • the teaching according to the invention avoids direct communication between the chip card and the network without control by an application in the terminal, which must be rejected for security reasons, since some data, such as e.g. a personal identification number (PIN), or some evaluated in the terminal
  • PIN personal identification number
  • Another advantage of the present invention is the possibility of extremely easy maintenance and updating of the application software in the chip card terminals. According to the present invention, this only has to be exchanged on the software server.
  • the following figures are to be used to describe the invention.
  • FIG. 1 schematically shows a typical, general network structure as it is based on the invention.
  • FIG. 2 shows schematically the essential devices and their interaction in the implementation of the invention.
  • FIG. 3 shows a typical communication protocol in connection with the present invention and the basic sequence of the method according to the invention.
  • FIG. 4 schematically shows the basic architecture of the chip card software server according to the invention.
  • FIG. 5 schematically shows the basic architecture of the chip card terminal according to the invention.
  • the invention provides a chip card terminal (CCT) which can be connected to any chip card via any (ie at least one) data transmission device (eg a network, NW), preferably a data network, a computer network or a communication network
  • NW data transmission device
  • NW preferably a data network
  • Software server can connect. Since many, if not most, chip card applications (applications) have a data connection anyway to one or more application servers, these are also connected in FIG. 1 via the network (NW) to the chip card terminal (potentially, temporarily or permanently).
  • NW network
  • NW network
  • the chip card terminal is a personal computer with e.g. Chip card reader connected in series and with a device driver for this chip card reader running on this computer
  • the connection to the chip card software server could e.g. over a TCP / IP network connection (e.g. Internet).
  • the chip card software server could then be any computer on the Internet.
  • the personal computer is also connected to a public digital telephone network (landline) via an ISDN card.
  • Various online services such as the BTX (T-Online), CompuServe, etc. are used or telephone calls are made.
  • the computer's ISDN card is also connected to a telephone handset.
  • a user of the computer could, for example, insert a calling card from a private telephone company into the chip card terminal.
  • the device driver or other software running on the computer could now recognize that the calling card is a chip card for which no application software is currently available on the computer, similar to, for example, some operating systems for personal computers which report when a disk is inserted, that this is not readable for this operating system, or which with Select a file (eg click on it with the mouse) and report that no application software is available to edit or open this file.
  • the driver or other software available on the computer could then establish a connection to a chip card software server and download a calling card application software from the latter, which enables the calling card to be used on this computer.
  • the computer then becomes a calling card chip card terminal by downloading the application software of the calling card and by loading and starting this software.
  • the user could now make the long-distance call he wanted via the private telephone company as usual.
  • the chip card terminal could also be a set top box, which is used by its user for home banking, orders in mail order companies (teleshopping) and other interactive applications in which the user has to authenticate himself with the help of one or more chip cards. If the desired application does not clearly derive from the type of chip card inserted in each case, the user selects the desired application, for example with the aid of interactive television. If the Set Top Box (ie software running on it) detects that the chip card application software is not available for the selected application, the Set Top Box automatically loads the required chip card with the help of software running on it. Application software from a suitable chip card software server and executes it on its own processor. The The user can now run the application he wants.
  • a set top box which is used by its user for home banking, orders in mail order companies (teleshopping) and other interactive applications in which the user has to authenticate himself with the help of one or more chip cards. If the desired application does not clearly derive from the type of chip card inserted in each case, the user selects the desired application, for example
  • the invention further provides that means (DLM1) for transmitting the required chip card application software are available via a or the data transmission device (DTD) to the chip card terminal.
  • DTD data transmission device
  • These means are preferably suitable software modules; they can be integrated in the chip card terminal or in the chip card software server and each run on the processors of these devices.
  • standard software is available for downloading software according to standard protocols (FTP, ZMODEM, 6 etc.).
  • the chip card application software itself could be transferred, for example, as a JAVA program.
  • the individual communication processes are clearly shown in Figure 2. While the communication (ComST) of the chip card terminal (CCT) with the chip card software server (CSS) is carried out via a data transmission device (DTD), which typically comprises a network (NW), the communication is running. nication (ComCT) of the chip card (CC) with the chip card terminal (CCT) via the electrical contacts of the card and the terminal into which the chip card is inserted. Depending on the type of application, in many cases the terminal communicates with application servers (AS1, AS2, AS3) via a data transmission device (DTD), which may be identical to the first data transmission device but need not be.
  • DTD data transmission device
  • AS1, AS2, AS3 application servers
  • DTD data transmission device
  • a user of the chip card terminal selects a desired application (chip card application).
  • This selection process can be omitted if the type of chip card inserted in the chip card terminal already clearly shows the desired application. Otherwise, the user could select the desired application using a keyboard or menu-driven or by natural language, etc.
  • the chip card terminal may determine the availability of the application (XA?), For example if the user made the selection using a keyboard. This step can be omitted for a menu-driven or similar selection. It can also consist in checking the topicality of the version of the chip card application software available on the chip card terminal.
  • the chip card terminal establishes a connection (Con) to a chip card software server (CSS) via a data transmission device (DTD).
  • DTD data transmission device
  • the server can - for example to ensure correct cost allocation - from the chip card Terminal require authentication.
  • the chip card terminal can also request authentication from the server in order to prevent the transmission of counterfeit software, which could open up opportunities for fraud to hackers.
  • Known methods are available in large numbers for such authentications. You therefore do not need to be described further here.
  • the chip card application software can be provided with a cryptographic checksum or a digital signature in order to detect any falsification of the chip card application software that has occurred during the transmission.
  • Known methods are also available in large numbers for cryptographic checksums and digital signatures.
  • the transferred chip card application software is executed on the processor of the chip card terminal and the actual application can be carried out.
  • This normally consists of communication between the chip card (CC) and an application server (AS), which is mediated by the chip card terminal using the chip card application software (AppCom).
  • the user (U), controlled by the chip card application software can also be involved in this communication, e.g. B. to enter a Personal Identification Number (PIN).
  • the invention provides a chip card software server (CSS) for carrying out the method shown in FIG. 3, which has means (SM) for storing a chip card application software (SW) and means ( DLMl) for the transmission of this software via a data transmission device (DTD) to a chip card terminal (CCT).
  • SCS chip card software server
  • DLML means for transmission can include, for example, a WWW server (software module on the CSS), which carries out the transmission of the software as soon as the Uniform Resource Locator (URL) of a corresponding HTML document on the chip card software server (CSS) ) was called (sig) by the chip card terminal (CCT).
  • a WWW server software module on the CSS
  • URL Uniform Resource Locator
  • sig chip card terminal
  • means (DLM2) for transmitting the software (SW) are also provided in the chip card terminal (CCT).
  • DLM2 means for transmitting the software (SW) are also provided in the chip card terminal (CCT).
  • CCT chip card terminal
  • These funds could e.g. be implemented by a terminal program that runs on the chip card terminal and carries out the download.
  • the person skilled in the art is familiar with many other possibilities for carrying out the transfer which are equivalent with regard to the invention.

Landscapes

  • Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Microelectronics & Electronic Packaging (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Accounting & Taxation (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • Theoretical Computer Science (AREA)
  • Stored Programmes (AREA)

Abstract

Afin de pouvoir réaliser différentes applications de carte à puce à l'aide d'un terminal de carte à puce (CCT), on transfère le logiciel (SW) nécessaire à l'exécution d'une application d'un serveur carte à puce/logiciel (CSS) au terminal de carte à puce par un dispositif de transfert de données (DTD, NW). Cela permet d'utiliser des procédures d'authentification unilatérales ou mutuelles.
PCT/EP1996/003840 1996-08-30 1996-08-30 Procede de preparation d'une application de carte a puce et dispositif correspondant WO1998009256A1 (fr)

Priority Applications (1)

Application Number Priority Date Filing Date Title
PCT/EP1996/003840 WO1998009256A1 (fr) 1996-08-30 1996-08-30 Procede de preparation d'une application de carte a puce et dispositif correspondant

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/EP1996/003840 WO1998009256A1 (fr) 1996-08-30 1996-08-30 Procede de preparation d'une application de carte a puce et dispositif correspondant

Publications (1)

Publication Number Publication Date
WO1998009256A1 true WO1998009256A1 (fr) 1998-03-05

Family

ID=8166302

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/EP1996/003840 WO1998009256A1 (fr) 1996-08-30 1996-08-30 Procede de preparation d'une application de carte a puce et dispositif correspondant

Country Status (1)

Country Link
WO (1) WO1998009256A1 (fr)

Cited By (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0887774A2 (fr) * 1997-06-24 1998-12-30 Hitachi, Ltd. Système et méthode de traitement de cartes à puce
WO2000011627A1 (fr) * 1998-08-18 2000-03-02 Priority Call Management, Inc. Logique transportable pour aider un grand reseau de transactions par cartes d'appel a faire face aux changements dynamiques
EP1033652A2 (fr) * 1999-03-03 2000-09-06 Nokia Mobile Phones Ltd. Méthode pour télécharger logiciels de serveur à terminal
WO2000075775A2 (fr) * 1999-06-08 2000-12-14 Thinkpulse, Inc. Procede et systeme permettant de relier un fichier de description de dispositif intelligent a la logique d'un programme d'application
WO2001075815A2 (fr) 2000-03-30 2001-10-11 Deutsche Telekom Ag Terminal pour carte et procede pour actionner un terminal pour carte
EP1205888A2 (fr) * 2000-07-19 2002-05-15 Hitachi, Ltd. Méthode de délivrance de certificats, système et support de registrement lisible par ordinateur
WO2002064038A2 (fr) * 2001-02-15 2002-08-22 Siemens Aktiengesellschaft Reseau permettant d'evaluer les donnees obtenues dans un dispositif de mesure a biopuce
FR2833440A1 (fr) * 2001-12-10 2003-06-13 Sagem Systeme de controle d'acces a un reseau et procede de controle d'acces correspondant
EP1221681A3 (fr) * 2000-12-26 2004-06-02 Kabushiki Kaisha Toshiba Terminal d'application

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0193920A2 (fr) * 1985-03-05 1986-09-10 Casio Computer Company Limited Système à carte à circuit intégré
EP0368752A1 (fr) * 1988-11-09 1990-05-16 CP8 Transac Système de téléchargement sécurisé d'un terminal et procédé mis en oeuvre
FR2657445A1 (fr) * 1990-01-25 1991-07-26 Gemplus Card Int Procede de chargement de programmes d'application dans un lecteur de carte a memoire a microprocesseur et systeme destine a sa mise en óoeuvre.
EP0594493A1 (fr) * 1992-10-23 1994-04-27 Gemplus Card International Procédé d'acquisition de logiciels et système informatique pour mettre en oeuvre le procedé
WO1995004328A1 (fr) * 1993-07-30 1995-02-09 Intellect Australia Pty. Ltd. Dispositif et procede pour cartes a circuits integres

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0193920A2 (fr) * 1985-03-05 1986-09-10 Casio Computer Company Limited Système à carte à circuit intégré
EP0368752A1 (fr) * 1988-11-09 1990-05-16 CP8 Transac Système de téléchargement sécurisé d'un terminal et procédé mis en oeuvre
FR2657445A1 (fr) * 1990-01-25 1991-07-26 Gemplus Card Int Procede de chargement de programmes d'application dans un lecteur de carte a memoire a microprocesseur et systeme destine a sa mise en óoeuvre.
EP0594493A1 (fr) * 1992-10-23 1994-04-27 Gemplus Card International Procédé d'acquisition de logiciels et système informatique pour mettre en oeuvre le procedé
WO1995004328A1 (fr) * 1993-07-30 1995-02-09 Intellect Australia Pty. Ltd. Dispositif et procede pour cartes a circuits integres

Cited By (17)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0887774A3 (fr) * 1997-06-24 2001-08-01 Hitachi, Ltd. Système et méthode de traitement de cartes à puce
US6359699B1 (en) 1997-06-24 2002-03-19 Hitachi, Ltd. IC card processing system and processing method
EP0887774A2 (fr) * 1997-06-24 1998-12-30 Hitachi, Ltd. Système et méthode de traitement de cartes à puce
WO2000011627A1 (fr) * 1998-08-18 2000-03-02 Priority Call Management, Inc. Logique transportable pour aider un grand reseau de transactions par cartes d'appel a faire face aux changements dynamiques
EP1033652A2 (fr) * 1999-03-03 2000-09-06 Nokia Mobile Phones Ltd. Méthode pour télécharger logiciels de serveur à terminal
EP1033652A3 (fr) * 1999-03-03 2004-02-11 Nokia Corporation Méthode pour télécharger logiciels de serveur à terminal
WO2000075775A2 (fr) * 1999-06-08 2000-12-14 Thinkpulse, Inc. Procede et systeme permettant de relier un fichier de description de dispositif intelligent a la logique d'un programme d'application
WO2000075775A3 (fr) * 1999-06-08 2001-05-17 Thinkpulse Inc Procede et systeme permettant de relier un fichier de description de dispositif intelligent a la logique d'un programme d'application
WO2001075815A3 (fr) * 2000-03-30 2003-07-24 Deutsche Telekom Ag Terminal pour carte et procede pour actionner un terminal pour carte
WO2001075815A2 (fr) 2000-03-30 2001-10-11 Deutsche Telekom Ag Terminal pour carte et procede pour actionner un terminal pour carte
EP1205888A2 (fr) * 2000-07-19 2002-05-15 Hitachi, Ltd. Méthode de délivrance de certificats, système et support de registrement lisible par ordinateur
EP1205888A3 (fr) * 2000-07-19 2004-01-28 Hitachi, Ltd. Méthode de délivrance de certificats, système et support de registrement lisible par ordinateur
EP1221681A3 (fr) * 2000-12-26 2004-06-02 Kabushiki Kaisha Toshiba Terminal d'application
WO2002064038A3 (fr) * 2001-02-15 2003-02-13 Siemens Ag Reseau permettant d'evaluer les donnees obtenues dans un dispositif de mesure a biopuce
WO2002064038A2 (fr) * 2001-02-15 2002-08-22 Siemens Aktiengesellschaft Reseau permettant d'evaluer les donnees obtenues dans un dispositif de mesure a biopuce
FR2833440A1 (fr) * 2001-12-10 2003-06-13 Sagem Systeme de controle d'acces a un reseau et procede de controle d'acces correspondant
WO2003050776A1 (fr) * 2001-12-10 2003-06-19 Sagem Sa Systeme de controle d'acces a un reseau et procede de controle d'acces correspondant

Similar Documents

Publication Publication Date Title
EP1240631B1 (fr) Procede et systeme de transaction de paiement
DE69829642T2 (de) Authentifizierungssystem mit chipkarte
DE60218873T2 (de) Verkaufsstellentransaktionssystem mit sprach-authentifizierung
DE19722424C5 (de) Verfahren zum Sichern eines Zugreifens auf ein fernab gelegenes System
DE69729008T2 (de) Verfahren zum senden von steuerbefehlen für eine sim-karte von einer externen vorrichtung an eine sim-karte
EP2417550A1 (fr) Procédé d'exécution d'une application au moyen d'un support de données portable
EP1145200A1 (fr) Systeme et procede de transaction de paiement
WO2008098839A1 (fr) Procédé et agencement numériques pour authentification d'un utilisateur d'un réseau de télécommunications ou de données
EP1264490A2 (fr) Procede permettant de verifier l'authenticite de l'identite d'un utilisateur de services et dispositif permettant de mettre en oeuvre ce procede
EP2393032A1 (fr) Procédé de sortie d'une application à l'aide d'un support de données portatif
DE69723882T2 (de) Verfahren und einrichtung zur sicherung der dienstleistungen welche über ein computernetz vom internet-typ angeboten werden
DE102005017374A1 (de) Verfahren zur Bestätigung einer Dienstleistungsanforderung
DE69906206T2 (de) Chipkarte mit Zugriff auf eine entfernte Anwendung, Endgerät und zugehöriges Übertragungssystem und Verfahren zum Zugriff auf die entfernte Anwendung mittels dieser Chipkarte
WO1998009256A1 (fr) Procede de preparation d'une application de carte a puce et dispositif correspondant
EP1075161B1 (fr) Procédé et appareils pour le contrôle d'accès d'un utilisateur à partir de son ordinateur vers un ordinateur d'accès
DE69716548T2 (de) Verfahren und Anordnung zur Übertragung von elektrischen Datensignalen
DE60206592T2 (de) Offset Sicherheitsverfahren zum Datenaustausch
WO2001039464A1 (fr) Carte a puce adaptable
EP3428866A2 (fr) Dispositif de transmission et de traitement de données et procédé de transmission et de traitement de données destinés au paiement d'une marchandise ou d'un service
DE10054633C2 (de) Verfahren und System zum Kontrollieren des Zugangs zu Waren und Dienstleistungen
EP1407577B1 (fr) Procede de verification d'informations de rappel telephonique pour des rappels declenches via internet
DE19809043A1 (de) Verfahren und Vorrichtung zum universellen und gesicherten Zugang zu Telefonnetzen
EP0907925A1 (fr) Systeme de communication utilise pour transmettre des ordres comptables
WO2001039463A1 (fr) Interface logique entre deux applications
WO2000057597A2 (fr) Procede permettant de verifier l'authentification d'une application de gestion d'un systeme de commande de reseau de gestion des telecommunications par un element reseau et element reseau adapte

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A1

Designated state(s): JP US

AL Designated countries for regional patents

Kind code of ref document: A1

Designated state(s): AT BE CH DE DK ES FI FR GB GR IE IT LU MC NL PT SE

DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
121 Ep: the epo has been informed by wipo that ep was designated in this application
NENP Non-entry into the national phase

Ref country code: JP

Ref document number: 1998511197

Format of ref document f/p: F

122 Ep: pct application non-entry in european phase