WO1998009256A1 - Procede de preparation d'une application de carte a puce et dispositif correspondant - Google Patents
Procede de preparation d'une application de carte a puce et dispositif correspondant Download PDFInfo
- Publication number
- WO1998009256A1 WO1998009256A1 PCT/EP1996/003840 EP9603840W WO9809256A1 WO 1998009256 A1 WO1998009256 A1 WO 1998009256A1 EP 9603840 W EP9603840 W EP 9603840W WO 9809256 A1 WO9809256 A1 WO 9809256A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- chip card
- software
- terminal
- card terminal
- application
- Prior art date
Links
Classifications
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07F—COIN-FREED OR LIKE APPARATUS
- G07F7/00—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
- G07F7/08—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
- G07F7/10—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
- G07F7/1008—Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/34—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
- G06Q20/355—Personalisation of cards for use
- G06Q20/3552—Downloading or loading of personalisation data
Definitions
- a standard GSM telephone usually only accepts a chip card for GSM (so-called Subscriber Identity Module, SIM), a public telephone often only a telephone card (of the associated network operator), a DECT telephone normally only a chip card for DECT (so-called. DECT Authentication Module), etc.
- SIM Subscriber Identity Module
- DECT DECT Authentication Module
- Further standards for special chip card applications are being prepared worldwide, e.g. the Personal Identity Card (Personal Identification Module, PIM), a chip card for UPT (Universal Personal Telecommunication).
- a chip card reader can be integrated in a terminal, but it can also be an additional device. Since this difference is not important for the invention, in the following chip card reader and terminal are collectively referred to as a chip card terminal.
- Conventional chip card terminals are practically always specific for one application or (rarely) for a few applications. New chip card applications are therefore often not used or are used only sluggishly because special end devices would be necessary for this, which would be associated with high costs.
- chip cards are standardized to the extent that the physical and logical interfaces fit in a large number of end devices. Only the application software required for communication with the network, for example with the application servers and the authentication servers, is specific to the respective application. According to some standards, there are so-called multifunctional chip cards with which several different applications can be carried out. However, this usually requires several end devices, each of which is only equipped for one application or (rarely) for a few applications.
- a chip card for UPT could also be used in a public telephone or in a DECT telephone, or if a chip card for home banking could be used in a GSM telephone. Any other combinations would also be conceivable as desirable.
- both the chip card and the end device would be multifunctional, so that even several applications could be active at the same time, e.g. GSM and home banking. So far, there are no chip card terminals that could be easily expanded to new applications. Different chip cards are only accepted by a few terminals, e.g. some public telephone devices that can be used with phone cards or credit cards.
- the present invention is therefore based on the object of specifying a technical teaching which can be implemented. enabled many of the applications described with a single (universally applicable) chip card terminal.
- This object is achieved with the aid of a chip card software server according to claim 1, with the aid of a chip card terminal according to claim 2 or with the aid of a method for preparing to carry out a chip card application with features according to claim 3.
- the software required to carry out an application is transmitted from a chip card software server to the chip card terminal via a data transmission device in order to be able to carry out different chip card applications with the aid of a chip card terminal.
- One-sided or mutual authentication methods can be used here.
- the teaching according to the invention avoids direct communication between the chip card and the network without control by an application in the terminal, which must be rejected for security reasons, since some data, such as e.g. a personal identification number (PIN), or some evaluated in the terminal
- PIN personal identification number
- Another advantage of the present invention is the possibility of extremely easy maintenance and updating of the application software in the chip card terminals. According to the present invention, this only has to be exchanged on the software server.
- the following figures are to be used to describe the invention.
- FIG. 1 schematically shows a typical, general network structure as it is based on the invention.
- FIG. 2 shows schematically the essential devices and their interaction in the implementation of the invention.
- FIG. 3 shows a typical communication protocol in connection with the present invention and the basic sequence of the method according to the invention.
- FIG. 4 schematically shows the basic architecture of the chip card software server according to the invention.
- FIG. 5 schematically shows the basic architecture of the chip card terminal according to the invention.
- the invention provides a chip card terminal (CCT) which can be connected to any chip card via any (ie at least one) data transmission device (eg a network, NW), preferably a data network, a computer network or a communication network
- NW data transmission device
- NW preferably a data network
- Software server can connect. Since many, if not most, chip card applications (applications) have a data connection anyway to one or more application servers, these are also connected in FIG. 1 via the network (NW) to the chip card terminal (potentially, temporarily or permanently).
- NW network
- NW network
- the chip card terminal is a personal computer with e.g. Chip card reader connected in series and with a device driver for this chip card reader running on this computer
- the connection to the chip card software server could e.g. over a TCP / IP network connection (e.g. Internet).
- the chip card software server could then be any computer on the Internet.
- the personal computer is also connected to a public digital telephone network (landline) via an ISDN card.
- Various online services such as the BTX (T-Online), CompuServe, etc. are used or telephone calls are made.
- the computer's ISDN card is also connected to a telephone handset.
- a user of the computer could, for example, insert a calling card from a private telephone company into the chip card terminal.
- the device driver or other software running on the computer could now recognize that the calling card is a chip card for which no application software is currently available on the computer, similar to, for example, some operating systems for personal computers which report when a disk is inserted, that this is not readable for this operating system, or which with Select a file (eg click on it with the mouse) and report that no application software is available to edit or open this file.
- the driver or other software available on the computer could then establish a connection to a chip card software server and download a calling card application software from the latter, which enables the calling card to be used on this computer.
- the computer then becomes a calling card chip card terminal by downloading the application software of the calling card and by loading and starting this software.
- the user could now make the long-distance call he wanted via the private telephone company as usual.
- the chip card terminal could also be a set top box, which is used by its user for home banking, orders in mail order companies (teleshopping) and other interactive applications in which the user has to authenticate himself with the help of one or more chip cards. If the desired application does not clearly derive from the type of chip card inserted in each case, the user selects the desired application, for example with the aid of interactive television. If the Set Top Box (ie software running on it) detects that the chip card application software is not available for the selected application, the Set Top Box automatically loads the required chip card with the help of software running on it. Application software from a suitable chip card software server and executes it on its own processor. The The user can now run the application he wants.
- a set top box which is used by its user for home banking, orders in mail order companies (teleshopping) and other interactive applications in which the user has to authenticate himself with the help of one or more chip cards. If the desired application does not clearly derive from the type of chip card inserted in each case, the user selects the desired application, for example
- the invention further provides that means (DLM1) for transmitting the required chip card application software are available via a or the data transmission device (DTD) to the chip card terminal.
- DTD data transmission device
- These means are preferably suitable software modules; they can be integrated in the chip card terminal or in the chip card software server and each run on the processors of these devices.
- standard software is available for downloading software according to standard protocols (FTP, ZMODEM, 6 etc.).
- the chip card application software itself could be transferred, for example, as a JAVA program.
- the individual communication processes are clearly shown in Figure 2. While the communication (ComST) of the chip card terminal (CCT) with the chip card software server (CSS) is carried out via a data transmission device (DTD), which typically comprises a network (NW), the communication is running. nication (ComCT) of the chip card (CC) with the chip card terminal (CCT) via the electrical contacts of the card and the terminal into which the chip card is inserted. Depending on the type of application, in many cases the terminal communicates with application servers (AS1, AS2, AS3) via a data transmission device (DTD), which may be identical to the first data transmission device but need not be.
- DTD data transmission device
- AS1, AS2, AS3 application servers
- DTD data transmission device
- a user of the chip card terminal selects a desired application (chip card application).
- This selection process can be omitted if the type of chip card inserted in the chip card terminal already clearly shows the desired application. Otherwise, the user could select the desired application using a keyboard or menu-driven or by natural language, etc.
- the chip card terminal may determine the availability of the application (XA?), For example if the user made the selection using a keyboard. This step can be omitted for a menu-driven or similar selection. It can also consist in checking the topicality of the version of the chip card application software available on the chip card terminal.
- the chip card terminal establishes a connection (Con) to a chip card software server (CSS) via a data transmission device (DTD).
- DTD data transmission device
- the server can - for example to ensure correct cost allocation - from the chip card Terminal require authentication.
- the chip card terminal can also request authentication from the server in order to prevent the transmission of counterfeit software, which could open up opportunities for fraud to hackers.
- Known methods are available in large numbers for such authentications. You therefore do not need to be described further here.
- the chip card application software can be provided with a cryptographic checksum or a digital signature in order to detect any falsification of the chip card application software that has occurred during the transmission.
- Known methods are also available in large numbers for cryptographic checksums and digital signatures.
- the transferred chip card application software is executed on the processor of the chip card terminal and the actual application can be carried out.
- This normally consists of communication between the chip card (CC) and an application server (AS), which is mediated by the chip card terminal using the chip card application software (AppCom).
- the user (U), controlled by the chip card application software can also be involved in this communication, e.g. B. to enter a Personal Identification Number (PIN).
- the invention provides a chip card software server (CSS) for carrying out the method shown in FIG. 3, which has means (SM) for storing a chip card application software (SW) and means ( DLMl) for the transmission of this software via a data transmission device (DTD) to a chip card terminal (CCT).
- SCS chip card software server
- DLML means for transmission can include, for example, a WWW server (software module on the CSS), which carries out the transmission of the software as soon as the Uniform Resource Locator (URL) of a corresponding HTML document on the chip card software server (CSS) ) was called (sig) by the chip card terminal (CCT).
- a WWW server software module on the CSS
- URL Uniform Resource Locator
- sig chip card terminal
- means (DLM2) for transmitting the software (SW) are also provided in the chip card terminal (CCT).
- DLM2 means for transmitting the software (SW) are also provided in the chip card terminal (CCT).
- CCT chip card terminal
- These funds could e.g. be implemented by a terminal program that runs on the chip card terminal and carries out the download.
- the person skilled in the art is familiar with many other possibilities for carrying out the transfer which are equivalent with regard to the invention.
Landscapes
- Engineering & Computer Science (AREA)
- Business, Economics & Management (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Microelectronics & Electronic Packaging (AREA)
- Computer Networks & Wireless Communication (AREA)
- Accounting & Taxation (AREA)
- Strategic Management (AREA)
- General Business, Economics & Management (AREA)
- Theoretical Computer Science (AREA)
- Stored Programmes (AREA)
Abstract
Afin de pouvoir réaliser différentes applications de carte à puce à l'aide d'un terminal de carte à puce (CCT), on transfère le logiciel (SW) nécessaire à l'exécution d'une application d'un serveur carte à puce/logiciel (CSS) au terminal de carte à puce par un dispositif de transfert de données (DTD, NW). Cela permet d'utiliser des procédures d'authentification unilatérales ou mutuelles.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
PCT/EP1996/003840 WO1998009256A1 (fr) | 1996-08-30 | 1996-08-30 | Procede de preparation d'une application de carte a puce et dispositif correspondant |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
PCT/EP1996/003840 WO1998009256A1 (fr) | 1996-08-30 | 1996-08-30 | Procede de preparation d'une application de carte a puce et dispositif correspondant |
Publications (1)
Publication Number | Publication Date |
---|---|
WO1998009256A1 true WO1998009256A1 (fr) | 1998-03-05 |
Family
ID=8166302
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/EP1996/003840 WO1998009256A1 (fr) | 1996-08-30 | 1996-08-30 | Procede de preparation d'une application de carte a puce et dispositif correspondant |
Country Status (1)
Country | Link |
---|---|
WO (1) | WO1998009256A1 (fr) |
Cited By (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
EP0887774A2 (fr) * | 1997-06-24 | 1998-12-30 | Hitachi, Ltd. | Système et méthode de traitement de cartes à puce |
WO2000011627A1 (fr) * | 1998-08-18 | 2000-03-02 | Priority Call Management, Inc. | Logique transportable pour aider un grand reseau de transactions par cartes d'appel a faire face aux changements dynamiques |
EP1033652A2 (fr) * | 1999-03-03 | 2000-09-06 | Nokia Mobile Phones Ltd. | Méthode pour télécharger logiciels de serveur à terminal |
WO2000075775A2 (fr) * | 1999-06-08 | 2000-12-14 | Thinkpulse, Inc. | Procede et systeme permettant de relier un fichier de description de dispositif intelligent a la logique d'un programme d'application |
WO2001075815A2 (fr) | 2000-03-30 | 2001-10-11 | Deutsche Telekom Ag | Terminal pour carte et procede pour actionner un terminal pour carte |
EP1205888A2 (fr) * | 2000-07-19 | 2002-05-15 | Hitachi, Ltd. | Méthode de délivrance de certificats, système et support de registrement lisible par ordinateur |
WO2002064038A2 (fr) * | 2001-02-15 | 2002-08-22 | Siemens Aktiengesellschaft | Reseau permettant d'evaluer les donnees obtenues dans un dispositif de mesure a biopuce |
FR2833440A1 (fr) * | 2001-12-10 | 2003-06-13 | Sagem | Systeme de controle d'acces a un reseau et procede de controle d'acces correspondant |
EP1221681A3 (fr) * | 2000-12-26 | 2004-06-02 | Kabushiki Kaisha Toshiba | Terminal d'application |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
EP0193920A2 (fr) * | 1985-03-05 | 1986-09-10 | Casio Computer Company Limited | Système à carte à circuit intégré |
EP0368752A1 (fr) * | 1988-11-09 | 1990-05-16 | CP8 Transac | Système de téléchargement sécurisé d'un terminal et procédé mis en oeuvre |
FR2657445A1 (fr) * | 1990-01-25 | 1991-07-26 | Gemplus Card Int | Procede de chargement de programmes d'application dans un lecteur de carte a memoire a microprocesseur et systeme destine a sa mise en óoeuvre. |
EP0594493A1 (fr) * | 1992-10-23 | 1994-04-27 | Gemplus Card International | Procédé d'acquisition de logiciels et système informatique pour mettre en oeuvre le procedé |
WO1995004328A1 (fr) * | 1993-07-30 | 1995-02-09 | Intellect Australia Pty. Ltd. | Dispositif et procede pour cartes a circuits integres |
-
1996
- 1996-08-30 WO PCT/EP1996/003840 patent/WO1998009256A1/fr active Application Filing
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
EP0193920A2 (fr) * | 1985-03-05 | 1986-09-10 | Casio Computer Company Limited | Système à carte à circuit intégré |
EP0368752A1 (fr) * | 1988-11-09 | 1990-05-16 | CP8 Transac | Système de téléchargement sécurisé d'un terminal et procédé mis en oeuvre |
FR2657445A1 (fr) * | 1990-01-25 | 1991-07-26 | Gemplus Card Int | Procede de chargement de programmes d'application dans un lecteur de carte a memoire a microprocesseur et systeme destine a sa mise en óoeuvre. |
EP0594493A1 (fr) * | 1992-10-23 | 1994-04-27 | Gemplus Card International | Procédé d'acquisition de logiciels et système informatique pour mettre en oeuvre le procedé |
WO1995004328A1 (fr) * | 1993-07-30 | 1995-02-09 | Intellect Australia Pty. Ltd. | Dispositif et procede pour cartes a circuits integres |
Cited By (17)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
EP0887774A3 (fr) * | 1997-06-24 | 2001-08-01 | Hitachi, Ltd. | Système et méthode de traitement de cartes à puce |
US6359699B1 (en) | 1997-06-24 | 2002-03-19 | Hitachi, Ltd. | IC card processing system and processing method |
EP0887774A2 (fr) * | 1997-06-24 | 1998-12-30 | Hitachi, Ltd. | Système et méthode de traitement de cartes à puce |
WO2000011627A1 (fr) * | 1998-08-18 | 2000-03-02 | Priority Call Management, Inc. | Logique transportable pour aider un grand reseau de transactions par cartes d'appel a faire face aux changements dynamiques |
EP1033652A2 (fr) * | 1999-03-03 | 2000-09-06 | Nokia Mobile Phones Ltd. | Méthode pour télécharger logiciels de serveur à terminal |
EP1033652A3 (fr) * | 1999-03-03 | 2004-02-11 | Nokia Corporation | Méthode pour télécharger logiciels de serveur à terminal |
WO2000075775A2 (fr) * | 1999-06-08 | 2000-12-14 | Thinkpulse, Inc. | Procede et systeme permettant de relier un fichier de description de dispositif intelligent a la logique d'un programme d'application |
WO2000075775A3 (fr) * | 1999-06-08 | 2001-05-17 | Thinkpulse Inc | Procede et systeme permettant de relier un fichier de description de dispositif intelligent a la logique d'un programme d'application |
WO2001075815A3 (fr) * | 2000-03-30 | 2003-07-24 | Deutsche Telekom Ag | Terminal pour carte et procede pour actionner un terminal pour carte |
WO2001075815A2 (fr) | 2000-03-30 | 2001-10-11 | Deutsche Telekom Ag | Terminal pour carte et procede pour actionner un terminal pour carte |
EP1205888A2 (fr) * | 2000-07-19 | 2002-05-15 | Hitachi, Ltd. | Méthode de délivrance de certificats, système et support de registrement lisible par ordinateur |
EP1205888A3 (fr) * | 2000-07-19 | 2004-01-28 | Hitachi, Ltd. | Méthode de délivrance de certificats, système et support de registrement lisible par ordinateur |
EP1221681A3 (fr) * | 2000-12-26 | 2004-06-02 | Kabushiki Kaisha Toshiba | Terminal d'application |
WO2002064038A3 (fr) * | 2001-02-15 | 2003-02-13 | Siemens Ag | Reseau permettant d'evaluer les donnees obtenues dans un dispositif de mesure a biopuce |
WO2002064038A2 (fr) * | 2001-02-15 | 2002-08-22 | Siemens Aktiengesellschaft | Reseau permettant d'evaluer les donnees obtenues dans un dispositif de mesure a biopuce |
FR2833440A1 (fr) * | 2001-12-10 | 2003-06-13 | Sagem | Systeme de controle d'acces a un reseau et procede de controle d'acces correspondant |
WO2003050776A1 (fr) * | 2001-12-10 | 2003-06-19 | Sagem Sa | Systeme de controle d'acces a un reseau et procede de controle d'acces correspondant |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
EP1240631B1 (fr) | Procede et systeme de transaction de paiement | |
DE69829642T2 (de) | Authentifizierungssystem mit chipkarte | |
DE60218873T2 (de) | Verkaufsstellentransaktionssystem mit sprach-authentifizierung | |
DE19722424C5 (de) | Verfahren zum Sichern eines Zugreifens auf ein fernab gelegenes System | |
DE69729008T2 (de) | Verfahren zum senden von steuerbefehlen für eine sim-karte von einer externen vorrichtung an eine sim-karte | |
EP2417550A1 (fr) | Procédé d'exécution d'une application au moyen d'un support de données portable | |
EP1145200A1 (fr) | Systeme et procede de transaction de paiement | |
WO2008098839A1 (fr) | Procédé et agencement numériques pour authentification d'un utilisateur d'un réseau de télécommunications ou de données | |
EP1264490A2 (fr) | Procede permettant de verifier l'authenticite de l'identite d'un utilisateur de services et dispositif permettant de mettre en oeuvre ce procede | |
EP2393032A1 (fr) | Procédé de sortie d'une application à l'aide d'un support de données portatif | |
DE69723882T2 (de) | Verfahren und einrichtung zur sicherung der dienstleistungen welche über ein computernetz vom internet-typ angeboten werden | |
DE102005017374A1 (de) | Verfahren zur Bestätigung einer Dienstleistungsanforderung | |
DE69906206T2 (de) | Chipkarte mit Zugriff auf eine entfernte Anwendung, Endgerät und zugehöriges Übertragungssystem und Verfahren zum Zugriff auf die entfernte Anwendung mittels dieser Chipkarte | |
WO1998009256A1 (fr) | Procede de preparation d'une application de carte a puce et dispositif correspondant | |
EP1075161B1 (fr) | Procédé et appareils pour le contrôle d'accès d'un utilisateur à partir de son ordinateur vers un ordinateur d'accès | |
DE69716548T2 (de) | Verfahren und Anordnung zur Übertragung von elektrischen Datensignalen | |
DE60206592T2 (de) | Offset Sicherheitsverfahren zum Datenaustausch | |
WO2001039464A1 (fr) | Carte a puce adaptable | |
EP3428866A2 (fr) | Dispositif de transmission et de traitement de données et procédé de transmission et de traitement de données destinés au paiement d'une marchandise ou d'un service | |
DE10054633C2 (de) | Verfahren und System zum Kontrollieren des Zugangs zu Waren und Dienstleistungen | |
EP1407577B1 (fr) | Procede de verification d'informations de rappel telephonique pour des rappels declenches via internet | |
DE19809043A1 (de) | Verfahren und Vorrichtung zum universellen und gesicherten Zugang zu Telefonnetzen | |
EP0907925A1 (fr) | Systeme de communication utilise pour transmettre des ordres comptables | |
WO2001039463A1 (fr) | Interface logique entre deux applications | |
WO2000057597A2 (fr) | Procede permettant de verifier l'authentification d'une application de gestion d'un systeme de commande de reseau de gestion des telecommunications par un element reseau et element reseau adapte |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
AK | Designated states |
Kind code of ref document: A1 Designated state(s): JP US |
|
AL | Designated countries for regional patents |
Kind code of ref document: A1 Designated state(s): AT BE CH DE DK ES FI FR GB GR IE IT LU MC NL PT SE |
|
DFPE | Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101) | ||
121 | Ep: the epo has been informed by wipo that ep was designated in this application | ||
NENP | Non-entry into the national phase |
Ref country code: JP Ref document number: 1998511197 Format of ref document f/p: F |
|
122 | Ep: pct application non-entry in european phase |