WO2001005085A3 - Method and device for making secure data access and transfers in a computer system - Google Patents

Method and device for making secure data access and transfers in a computer system Download PDF

Info

Publication number
WO2001005085A3
WO2001005085A3 PCT/FR2000/001990 FR0001990W WO0105085A3 WO 2001005085 A3 WO2001005085 A3 WO 2001005085A3 FR 0001990 W FR0001990 W FR 0001990W WO 0105085 A3 WO0105085 A3 WO 0105085A3
Authority
WO
WIPO (PCT)
Prior art keywords
host
computer system
data
smart card
transferred
Prior art date
Application number
PCT/FR2000/001990
Other languages
French (fr)
Other versions
WO2001005085A2 (en
Inventor
Christophe Genevois
Philippe Guenebaud
Original Assignee
Scm Schneider Microsysteme Mic
Christophe Genevois
Philippe Guenebaud
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Scm Schneider Microsysteme Mic, Christophe Genevois, Philippe Guenebaud filed Critical Scm Schneider Microsysteme Mic
Priority to AU64518/00A priority Critical patent/AU6451800A/en
Publication of WO2001005085A2 publication Critical patent/WO2001005085A2/en
Publication of WO2001005085A3 publication Critical patent/WO2001005085A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
    • H04L9/3231Biological data, e.g. fingerprint, voice or retina
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3234Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving additional secure or trusted devices, e.g. TPM, smartcard, USB or software token

Abstract

The invention concerns a method for making secure data access and transfers in a computer system comprising at least a host and a peripheral provided with a smart card interface enabling access to the computer system while it is in use by means of smart cards. The invention also concerns a device for implementing the method. The invention is characterised in that it consists in: storing in the smart card(s) and in the host a secret key, said secret key being identical in the host and in the authorised smart cards; and during use sessions, in creating in the smart card and in the host a local session key by identical encryption of a random number using the secret key. When data are being transferred between the peripheral and the host, the method consists in: encrypting the data to be transferred by encryption means using the local session key; decrypting the transferred data symmetrically with encryption means using the other local session key; such that the transferred data are intelligible only if the same secret key is present in the host and in the smart card. The invention is applicable to a security system for authorisation and authentication.
PCT/FR2000/001990 1999-07-09 2000-07-10 Method and device for making secure data access and transfers in a computer system WO2001005085A2 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
AU64518/00A AU6451800A (en) 1999-07-09 2000-07-10 Method and device for making secure data access and transfers in a computer system

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
FR99/08908 1999-07-09
FR9908908A FR2796232B1 (en) 1999-07-09 1999-07-09 METHOD AND DEVICE FOR SECURING ACCESS AND DATA TRANSFER IN A COMPUTER SYSTEM

Publications (2)

Publication Number Publication Date
WO2001005085A2 WO2001005085A2 (en) 2001-01-18
WO2001005085A3 true WO2001005085A3 (en) 2004-05-13

Family

ID=9547912

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/FR2000/001990 WO2001005085A2 (en) 1999-07-09 2000-07-10 Method and device for making secure data access and transfers in a computer system

Country Status (3)

Country Link
AU (1) AU6451800A (en)
FR (1) FR2796232B1 (en)
WO (1) WO2001005085A2 (en)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
AT512958B8 (en) * 2012-05-21 2014-08-15 Card Complete Service Bank Ag Method for transmitting card data
US11177954B2 (en) 2016-06-20 2021-11-16 Hewlett-Packard Development Company, L.P. Firmware-inaccessible key storage

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4993068A (en) * 1989-11-27 1991-02-12 Motorola, Inc. Unforgeable personal identification system
US5204902A (en) * 1991-09-13 1993-04-20 At&T Bell Laboratories Cellular telephony authentication arrangement

Non-Patent Citations (3)

* Cited by examiner, † Cited by third party
Title
GUILLOU L C: "SMART CARDS AND CONDITIONAL ACCESS", LECTURE NOTES IN COMPUTER SCIENCE, SPRINGER VERLAG, NEW YORK, NY, US, 9 April 1984 (1984-04-09), pages 480 - 489, XP000603321, ISSN: 0302-9743 *
MENEZES , A.J., VAN OORSCHOT, P.C., VANSTONE, S.A.: "handbook of applied cryptography", 1997, CRC PRESS, US, BOCA RATON, FL, ISBN: 0-8493-8523-7, XP002274300 *
SEIFFERT H: "BIOMETRISCHE VERFAHREN", NACHRICHTENTECHNIK ELEKTRONIK, VEB VERLAG TECHNIK. BERLIN, DE, vol. 48, no. 6, November 1998 (1998-11-01), pages 13 - 15, XP000799262, ISSN: 0323-4657 *

Also Published As

Publication number Publication date
FR2796232B1 (en) 2001-09-14
FR2796232A1 (en) 2001-01-12
WO2001005085A2 (en) 2001-01-18
AU6451800A (en) 2001-01-30

Similar Documents

Publication Publication Date Title
EP2267628B1 (en) Token passing technique for media playback devices
EP0727894B1 (en) Certifying system
US7103782B1 (en) Secure memory and processing system having laser-scribed encryption key
EP0821326A3 (en) Method and system for the secure transmission and storage of protectable information
US20090083544A1 (en) Security process for private data storage and sharing
EP0809379A3 (en) Authentication apparatus according to the challenge-response principle
US20050044377A1 (en) Method of authenticating user access to network stations
CA3006804C (en) Security interface for a mobile device
JPH0524696B2 (en)
IL159295A0 (en) Authentication of a user across communication sessions
CN102831346B (en) A kind of file protecting system carries out the method for file encryption-decryption
WO2003032133A3 (en) Distributed security architecture for storage area networks (san)
WO2004040410A3 (en) Password encryption key
CN1987885A (en) Computer implemented method for securely acquiring a binding key and securely binding system
US7802109B2 (en) Trusted system for file distribution
CN101488111A (en) Identification authentication method and system
CN106650373A (en) SIM card information protection method and device
US8522351B2 (en) Production security control apparatus for software products and control method thereof
TWI256226B (en) Data processing system, method and device, computer-readable program recording medium having recorded thereon a data processing program, and recording medium in a data processing system
CN102307188A (en) Subscriber identity module (SIM)-based universal serial bus (USB) key encryption/decryption system and encryption/decryption method
CN102081713A (en) Office system for preventing data from being divulged
CN1228980C (en) Method for storing encrypted data
CN101883357A (en) Method, device and system for mutual authentication between terminal and intelligent card
WO2001005085A3 (en) Method and device for making secure data access and transfers in a computer system
Zhao et al. Card user authentication based on generalized image morphing

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AL AM AT AU AZ BA BB BG BR BY CA CH CN CR CU CZ DE DK DM EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT TZ UA UG US UZ VN YU ZA ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE BF BJ CF CG CI CM GA GN GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
REG Reference to national code

Ref country code: DE

Ref legal event code: 8642

122 Ep: pct application non-entry in european phase
NENP Non-entry into the national phase

Ref country code: JP