WO2002011081A1 - Support de donnees a memoire optique - Google Patents

Support de donnees a memoire optique Download PDF

Info

Publication number
WO2002011081A1
WO2002011081A1 PCT/EP2001/004742 EP0104742W WO0211081A1 WO 2002011081 A1 WO2002011081 A1 WO 2002011081A1 EP 0104742 W EP0104742 W EP 0104742W WO 0211081 A1 WO0211081 A1 WO 0211081A1
Authority
WO
WIPO (PCT)
Prior art keywords
data
data carrier
memory
microprocessor
reading device
Prior art date
Application number
PCT/EP2001/004742
Other languages
German (de)
English (en)
Inventor
Frank C. Bormann
Dirk Fischer
Alfred Fiedler
Rolf WOLLSCHLÄGER
Frank Kappe
Original Assignee
Orga Kartensysteme Gmbh
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from DE2000137176 external-priority patent/DE10037176C2/de
Priority claimed from DE2000137174 external-priority patent/DE10037174C2/de
Application filed by Orga Kartensysteme Gmbh filed Critical Orga Kartensysteme Gmbh
Priority to AU2001262236A priority Critical patent/AU2001262236A1/en
Publication of WO2002011081A1 publication Critical patent/WO2002011081A1/fr

Links

Classifications

    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/10Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
    • G07F7/1008Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06KGRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
    • G06K19/00Record carriers for use with machines and with at least a part designed to carry digital markings
    • G06K19/04Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the shape
    • G06K19/041Constructional details
    • G06K19/042Constructional details the record carrier having a form factor of a credit card and including a small sized disc, e.g. a CD or DVD
    • G06K19/044Constructional details the record carrier having a form factor of a credit card and including a small sized disc, e.g. a CD or DVD comprising galvanic contacts for contacting an integrated circuit chip thereon
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06KGRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
    • G06K19/00Record carriers for use with machines and with at least a part designed to carry digital markings
    • G06K19/06Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code
    • G06K19/067Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components
    • G06K19/07Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components with integrated circuit chips
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06KGRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
    • G06K19/00Record carriers for use with machines and with at least a part designed to carry digital markings
    • G06K19/06Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code
    • G06K19/067Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components
    • G06K19/07Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components with integrated circuit chips
    • G06K19/073Special arrangements for circuits, e.g. for protecting identification code in memory
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06KGRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
    • G06K19/00Record carriers for use with machines and with at least a part designed to carry digital markings
    • G06K19/06Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code
    • G06K19/067Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components
    • G06K19/07Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components with integrated circuit chips
    • G06K19/077Constructional details, e.g. mounting of circuits in the carrier
    • G06K19/0772Physical layout of the record carrier
    • G06K19/07733Physical layout of the record carrier the record carrier containing at least one further contact interface not conform ISO-7816
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06KGRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
    • G06K19/00Record carriers for use with machines and with at least a part designed to carry digital markings
    • G06K19/06Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code
    • G06K19/08Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code using markings of different kinds or more than one marking of the same kind in the same record carrier, e.g. one marking being sensed by optical and the other by magnetic means
    • G06K19/10Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code using markings of different kinds or more than one marking of the same kind in the same record carrier, e.g. one marking being sensed by optical and the other by magnetic means at least one kind of marking being used for authentication, e.g. of credit or identity cards
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/341Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/409Device specific authentication in transaction processing
    • G06Q20/4097Device specific authentication in transaction processing using mutual authentication between devices and transaction partners
    • G06Q20/40975Device specific authentication in transaction processing using mutual authentication between devices and transaction partners using encryption therefor

Definitions

  • the invention relates to methods for storing and reading out data on a data carrier with optical memory, a corresponding data carrier and a writing and / or reading device for writing or reading data stored on the data carrier, in particular for carrying out the method according to the preamble of the relevant claims.
  • the invention relates to data carriers in the form of a conventional chip card which has a chip module implemented in it, such as, for. B. a microprocessor chip module with a non-volatile memory (e.g. EEPROM). Since today's non-volatile memories of such a chip module typically only have a memory capacity of 64 Kbytes, the use of a chip card, in particular the amount of data to be stored, is very limited.
  • a chip card in particular the amount of data to be stored, is very limited.
  • chip cards which have an optical data memory in the manner of a CD-ROM. Amounts of data of a few MByte can be stored on such an optical data storage device.
  • Such a chip card is e.g. described in DE 42 42 247 C2 and WO 99/00765 A1.
  • the CD-ROM data of the data carrier can be read out in the CD drive of a personal computer or a conventional CD player.
  • a further development of the data carrier card with CD-ROM memory is the use of an optical data memory of the DVD type. This allows the amount of data to be stored to be increased further.
  • a data carrier card is known from WO 01/04905 A1 and EP 1 043 684 A1.
  • a data carrier card with a holographic data memory is known, which consists of a polyester film and works in reflection.
  • a reflective film is applied on one side to the data carrier body and, depending on the wavelength of the laser radiation striking it, is either reflective or transmissive or transparent to laser radiation.
  • a holographic data memory in the form of a polarization-sensitive polymer film is arranged above this reflection film. Large amounts of data can also be stored on such a holographic memory.
  • Key is stored on the electronic chip of a chip card.
  • the key is first read out by an authorized writing and / or reading device.
  • the encrypted data are then read out of the optical memory and decrypted in the writing and / or reading device using the key.
  • Such a method is described in EP 1 043 684 A1 cited above.
  • a disadvantage of the method described above is the lack of data security, since the secret key is exchanged between the chip card and the writing and / or reading device and is held there at least for the duration of the decoding of the optical data.
  • the writing and / or reading device is generally not a secure environment, so that the key can possibly be spied on by third parties.
  • the object of the present invention is, in particular, to provide a secure method for confidential storage or for reading out large amounts of data on a data carrier and in the provision of a data carrier suitable for this purpose and a write and / or read device suitable for this purpose.
  • An essential aspect of the invention is to use a (data) key and an associated cryptographic method or algorithm, such as.
  • the data carrier is preferably a data carrier card, such as in particular a chip card, which has an optical data memory in addition to a conventional chip module.
  • the optical data memory is replaced by a data memory according to the CD standard (eg CD-ROM, CD-R, CD-RW) or DVD standard (eg DVD-ROM, DVD-R, DVD-RW, DVR- red, DVR-blue).
  • CD standard eg CD-ROM, CD-R, CD-RW
  • DVD standard eg DVD-ROM, DVD-R, DVD-RW, DVR- red, DVR-blue.
  • a CD or DVD data memory has a relatively high storage capacity and allows the storage of large ones
  • the optical data storage can also be implemented by a magneto-optical (MO) Data storage are formed.
  • MO magneto-optical
  • the actual MO layer is located between two protective layers and has a uniform magnetization from the day of its manufacture.
  • This storage layer is hard magnetic
  • the storage layer there briefly heats up to around 200 ° C. This leads to a local loss of magnetization. During the subsequent cooling process, the storage layer now takes on exactly the magnetization that is imparted to it by an external magnetic field.
  • the optical data memory is formed by a holographic data memory (HDS) (e.g. HoloDisk Format InPhase Corp.).
  • HDS holographic data memory
  • a holographic data memory has a high storage capacity or a high one
  • the optical memory is formed by a photorefractive crystal or a photopolymer.
  • a photopolymer is to be understood in particular as a polymer which is photosensitive to laser radiation. Such a polymer is described in EP-A1-0704513.
  • a polymer which has one or more properties of the polymer or the polymers described in EP-A1-0704513.
  • a rewritable polymer is used (e.g. photoaddressable polymer PAP, azobenzene side chain polyester).
  • a polymer is used which is compatible with one or more Polycarbonate (PC), polyvinyl chloride (PVC), acrylonitrile-butadiene-styrene (ABS), polyethylene terephthalate (PET) films can be laminated to a film composite.
  • PC Polycarbonate
  • PVC polyvinyl chloride
  • ABS acrylonitrile-butadiene-styrene
  • PET polyethylene terephthalate
  • a polymer is particularly advantageous for card applications.
  • a polymer is used which has a high diffraction efficiency and / or a high refractive index. In such a polymer, data can be stored holographically or read from it in a particularly reliable manner.
  • Data storage in particular a holographic data storage, is formed by one or more storage cells which are arranged distributed over the surface or map surface of the data carrier.
  • the memory cells are "islands" in the laminated photopolymer film or plastic film, e.g.
  • PC Polycarbonate
  • PVC polyvinyl chloride
  • ABS acrylonitrile butadiene styrene
  • PET polyethylene terephthalate
  • the memory cells for preferably holographic storage of data are provided, in particular, at locations on the data carrier or the data carrier card that are unprinted on one or both sides in order to largely avoid influencing the laser radiation when writing or reading data into the memory cells.
  • the data memory according to the invention is formed by one or more memory cells, which are memory modules.
  • the memory modules are preferably prefabricated and inserted into one or more recesses of the data carrier or the data carrier card after the completion of the data carrier or the data carrier card, in particular a aforementioned chip card.
  • the one or more holographic memory modules are inserted into a cavity of the data carrier or the data carrier card, the shape and / or dimensions of which are similar to, or even identical to, the known cavity for receiving a known chip module ,
  • the holographic memory module If the holographic memory module is to be operated in transmission, care must be taken to ensure that transparent layers are only provided in the data carrier or in the data carrier card under the memory module for the laser radiation.
  • the holographic memory module is operated in reflection, care must be taken that a layer reflecting the laser radiation is provided under the memory module in the holographic memory module or in the data carrier or in the data carrier card.
  • the optical data storage which is preferably on a card body is arranged, medical and personal data of a patient is stored.
  • the optical data memory of such a patient data card for example, X-ray images and the patient's medical history, which can be several 10 Mbytes in size, can be optically stored.
  • the patient data card makes it easier for the attending doctor to diagnose and further treat the patient to whom the card in question is assigned.
  • data is stored in the optical data memory, which is preferably provided on a card body, the storage of which requires a storage medium with a high storage capacity (memory card).
  • data are particularly important when storing multimedia files.
  • Such data can be, for example, so-called MP3 files, such as MP3 music files in particular
  • MPEG video files that have been downloaded from the Internet, for example.
  • the files of such a memory card can then be played back, for example, by a corresponding, in particular portable, playback device.
  • a conventional SIM card for the mobile phone which has a SIM chip module, is provided with an optical data memory.
  • the data stored in the optical data memory of such a SIM card can be, for example, the data of a database and / or a geographical information system and / or (image) data of the cardholder, such as a passport photo of the authorized cardholder.
  • a data carrier according to the invention such as in particular a data carrier card with a conventional SIM module and an optical data memory according to the invention, could, for example, replace the conventional SIM card of a cell phone.
  • a location detection device such as a GPS
  • the user can then Module, a geographic information system can be made available for orientation, such as a car navigation system.
  • Another essential aspect of the invention is to store the key used to encrypt the data on the data carrier in encrypted or unencrypted form.
  • the data carrier is a conventional data carrier card with a chip module implemented in it
  • the key is stored in a non-volatile memory of the chip module.
  • the conventional chip module has a sequence-controlled microprocessor which controls access to the non-volatile memory of the chip module and, according to the invention, to the key stored in the non-volatile memory.
  • the data are read out in the optical memory in that the data stored in encrypted form in the optical memory is read out in whole or in part by an external writing and / or reading device, the writing and / or reading device read data via a contactless or contact interface to a microprocessor or an integrated circuit of the data carrier, on the microprocessor using a cryptographic method and at least one key stored there, the data is decrypted, the decrypted data via the contactless or contact interface are transmitted back to the writing and / or reading device, and the decrypted data in the Writing and / or reading device or another device are available for further use.
  • the data is written to the optical memory in the reverse order, with the data being encrypted by the microprocessor of the data carrier.
  • the complete decryption of the data by the microprocessor provides a very high level of security against spying on the secret key, since the key does not have to be read out of the microprocessor or cannot be read out at all.
  • the microprocessor represents the interface and decryption device, via which the encrypted data of the optical memory can be read out.
  • Another important aspect of the invention is that a
  • Data is exchanged between the external writing and / or reading device, such as in particular a terminal, and the data carrier, the microprocessor or integrated circuit carries out an authentication check of the external writing and / or reading device, and the integrated circuit after a positive authentication check of the
  • Writing and / or reading device enables storage and / or reading out of the encrypted data contained in the optical memory by the writing and / or reading device.
  • the storage and / or reading of the data takes place only after the correct entry of a personal identification number (PIN) of the authorized owner of the data carrier or the like, such as a biometric feature.
  • PIN personal identification number
  • the basis for a biometric method is to find a physiological or behavior-based characteristic of a person, which has a unique, individual character and can thus clearly identify the person.
  • physiological biometric methods are known among other things fingerprint, face and iris recognition.
  • signature and voice recognition are used as behavior-based methods.
  • the key with which the data stored on the optical data memory is encrypted varies from data carrier to data carrier.
  • the key can be, for example, a personal key of the authorized owner of the data carrier, such as B. the personal identification number (PIN) or the digital signature of the authorized owner.
  • the data of the optical memory are in CD / DVD / MO format, they are stored or read out by a CD / DVD / MO writing and / or reading device.
  • the data in the microprocessor of the data carrier can be stored or read in a known manner by means of a contactless or contact-type chip card reader.
  • contact-based communication between the microprocessor and a chip card reader is provided, the encrypted data in the optical memory being read out by the CD / DVD / MO reader and loaded into a buffer.
  • the rotation of the data carrier card in the CD / DVD / MO reading device is then stopped in a defined manner.
  • a contacting unit of the chip card reader in the CD / DVD / MO reading device moves onto corresponding contact surfaces of the chip card, the encrypted data in the buffer being transferred to the microprocessor via the contact-based interface, which decrypts it.
  • the decrypted data is then transferred to the buffer in the CD / DVD / MO reader via the contact interface and is available there for further use.
  • the encrypted data is read from the optical memory by the CD / DVD / MO reading device and loaded into a buffer.
  • the data card is removed from the CD / DVD / MO reading device and inserted into an external chip card reader, whereupon the cached, encrypted data are transferred from the buffer to the chip card reader and from there to the microprocessor, where they are decrypted and vice versa are transferred to the buffer for further use.
  • data stored on the microprocessor in particular generally accessible, unencrypted data, can be read out by a conventional card reader (downward compatibility).
  • Data on the optical memory can be accessed as far as possible using a conventional CD or DVD player be read out.
  • the entire communication and decryption of the data takes place via the microprocessor.
  • Figure 1 a data carrier card with an optical storage layer in
  • FIG. 2 flow diagram for a first method for writing or reading data into / from the data carrier card
  • FIG. 3 flow diagram for a further method for writing or
  • Storage layer - in top view; 5 shows the data carrier card of FIG. I in cross section along the line
  • FIG. 1 shows a card-shaped data carrier 1 with a microprocessor chip 2 (chip module) which has contact areas 6 which are arranged in a standardized arrangement with respect to the reference edges of the data carrier 1.
  • a microprocessor chip 2 chip module
  • the center of this memory area lies approximately in the middle in the free area of the data carrier and the edge of the optical memory 3 extends up to close to the card edges.
  • the center of the optical storage area 3 is formed by a receiving opening 5, which makes it possible to insert the data carrier into a conventional CD or DVD drive and to read data from the optical storage device.
  • the diameter of the memory area 3 is slightly smaller than the card width and is, for example, 45 mm, so that about 4 mm of free space to the adjacent card edges and to the adjacent circuit contacts 6 as usable space for the arrangement and positioning of a contact-type reading device for reading out the data in the chip module 2 remains.
  • the chip module 2 In addition to the contact-type interface formed by the contacts 6, the chip module 2 also has a contactless interface for communication with the outside world, which interface is formed by a coil or antenna arrangement 4, which allows wireless communication with a corresponding transponder (reading device).
  • Encrypted data are preferably stored in the optical storage area 3 and can only be decrypted using a corresponding cryptographic method using a secret key.
  • the key and the necessary cryptographic method are stored in the chip module 2, the decryption of the data stored in the optical memory only being possible by the chip module 2. The same applies to the encryption of data to be stored in the optical memory 3.
  • the data carrier 1 can also have a second segment, which can preferably be separated manually from the first segment, which has the optical data memory 3.
  • the chip module 2 with the microprocessor can have this second segment and can be inserted into the external card reader for decryption or encryption. In this way it is possible to opt
  • FIG. 2 shows the flow diagram for the encryption
  • the user is authenticated in a first step with respect to the microprocessor 2 (crypto processor) on the card 1.
  • the crypto processor 2 authenticates itself to the user.
  • Such a method can be carried out, for example, using the known challenge-response method. This is done using a verification device 16, which is preferably implemented as software.
  • the unencrypted data After successful authentication, the unencrypted data to be stored, for example from a personal computer 12 into a Transfer buffer 14 of the CD / DVD / MO drive 10.
  • the contactless interface 17 then sends this temporarily stored unencrypted data (or even while reading the unencrypted data) to the crypto processor 2, which then encrypts the data.
  • a symmetrical encryption method such as DES or IDEA
  • symmetrical methods allow much higher data throughput rates than asymmetrical methods.
  • the invention is not limited to the use of symmetrical methods, rather asymmetrical methods, such as. B. Use RSA and ECM procedures.
  • the now encrypted data is in turn transmitted through the transponder 17, i.e. the wireless interface, sent to a further buffer 13 in the CD / DVD / MO drive 10.
  • the optical data memory 3 of the data carrier 1 can now be written in a known manner.
  • the reading of the data from the optical data memory 3 takes place, likewise after a previous mutual authentication between the user and the crypto processor, in the reverse order.
  • the data are read from the CD / DVD / MO drive 10 in encrypted form from the optical memory 3 and stored in the intermediate memory 13. From here, the encrypted data is sent via the contactless interface 17 of the chip card reader 11 to the crypto processor 2, which receives it via the antenna 4, and is decrypted there using the existing key. The decrypted data are transferred back to the buffer memory 14 via the contactless interface 17 and can be read out there by the personal computer 12 for further use.
  • the flowchart of secure data storage with the aid of the crypto processor 2 on the chip card 1 shown in FIG. 2 presupposes that the CD / DVD / MO drive 10 must be expanded by a contactless card interface.
  • the transponder 18 can also be located outside the CD / DVD / MO drive 10 and receive the encrypted data from the output of the CD / DVD / MO drive 10. This method is shown in Figure 3.
  • a buffer 13, 14 is then also required for the external transponder 18 for the temporary storage of the data read, encrypted or decrypted by the CD / DVD / MO drive 10.
  • This buffer 13, 14 can, as shown in FIG. 3, be implemented within a personal computer 12 for further processing of the data. However, it is also conceivable that the buffer is located within the contactless card reader 11 (not shown).
  • Transponders 18 and buffers 13, 14 make it possible to ensure the secure exchange of data with the data card 1 without further interventions in the CD / DVD / MO player.
  • the contactless interface can also be replaced by a contact-based interface which is based on the
  • Data carrier 1 contacts existing contact areas 6 ( Figure 1).
  • the encryption and decryption of large amounts of data in the crypto processor 2 of a chip card 1 is limited by the contactless interface, for example in accordance with the relevant ISO / IEC series of standards 10536, 14443 and 15693.
  • the data transfer rate can be increased significantly through a contact-based interface.
  • a fast serial interface for example the well-known USB interface (Universal Serial Bus), is particularly suitable for this.
  • USB interface can be established via two unoccupied contact areas 6 on the chip module 2, which works, for example, with 40 Mbit / s data transfer.
  • the required hardware and software is contained in the microprocessor 2.
  • the encrypted data must be read out from the optical memory 3 of the data carrier 1 and loaded into a buffer. This is done using a CD / DVD / MO drive.
  • an integrated contact-type chip card terminal is provided in the CD / DVD / MO drive. After reading out the data from the optical storage area 3 of the card 1, the rotation of the data carrier card in the CD / DVD / MO drive is stopped in a defined manner.
  • a contacting unit of the chip card reader drives in the CD / DVD / MO drive on the contact surfaces 6 of the chip card 1.
  • the data is now transferred, for example via USB, to the crypto processor 2 on the card 1, which transfers it at a high data rate, eg 6.4 Mbit s (Hardware DES), decrypted.
  • the decrypted data is in turn transferred via USB to the buffer in the CD / DVD / MO drive and is available there for further use, for example in a personal computer.
  • a chip card terminal with USB connection external to the CD / DVD / MO drive is provided.
  • the encrypted data are read from the optical memory 3 of the card 1 in the CD / DVD / MO drive and e.g. transferred to a personal computer, where they are cached. It is important that no changes to the CD / DVD / MO drive are necessary, but that a commercially available CD / DVD / MO drive can be used.
  • the data card 1 can now be removed from the CD / DVD / MO drive and inserted into the external chip card terminal.
  • the temporarily stored, encrypted data are transferred from the PC to the chip card terminal and from there to the crypto processor 2 of card 1. There the data is decrypted and transferred back to the PC in the opposite way for further use.
  • the data carrier card 1 does not necessarily require a contactless interface for data transmission between the writing and / or reading device and the microprocessor, which means a cost saving.
  • a simple embodiment provides that a counterweight in the form of a clip is attached to the short side of the card in order to increase the weight there.
  • Another possibility is to position the receiving opening in the card for engaging the spindle of the CD / DVD / MO drive so that the corners of the card opposite the opening with the outer edge of the CD / DVD / MO receiving opening to match. This means that the card always lies on the outer edge of the receiving opening, at least at the corners.
  • an adapter which in addition to the center of gravity of the card also has a thickness of 0.76 mm to the standard thickness. Adapted 1.2 mm for DVD or CD. Such an adapter is known from WO 01/04905 A1.
  • FIG. 4 shows a top view of a data carrier card 100 with holographic memory 103.
  • the data carrier card 100 has a card body 101, a chip module 102 and one or more holographic memory cells 103, of which only a single memory cell 103 is shown in FIG. 4 for the sake of clarity.
  • holographic memory cells 103 these can be provided, for example, regularly or irregularly over the card surface, preferably in unprinted areas of the card surface.
  • the chip module 102 can in particular be a conventional chip module that is implemented in a card body.
  • a conventional one is preferred in the data carrier card 100 according to the invention
  • the microprocessor chip module has, in particular, a sequence-controlled microprocessor and a non-volatile memory, in which the (data) key with which the data stored in encrypted form in the holographic memory cell 103 has been encrypted is stored.
  • the key is preferably accessed under the (sole) control of the sequence-controlled microprocessor.
  • the microprocessor preferably causes the key to be transmitted to a writing and / or reading device after it has been released by the microprocessor during a
  • the writing and / or reading device can be, for example, a terminal. It can further be provided that the microprocessor only initiates the transmission of the key to the writing and / or reading device when the microprocessor has the correct personal identification number (PIN) of the authorized cardholder or the like, e.g. B. after an input via the writing and / or reading device has been transmitted.
  • PIN personal identification number
  • FIG. 5 shows the data carrier card 100 in cross section along the line A - A.
  • the data carrier card 100 consists at least along the line A - A of a transparent, largely scratch-resistant film or coating 104, preferably of PMMA, a first transparent film of polycarbonate 105 located above it , a second transparent film made of polycarbonate 105, a plastic film 106 above, which is coated with a photopolymer 107, and a further transparent, largely scratch-resistant film or coating 104, preferably again made of PMMA.
  • the largely scratch-resistant film 104 preferably has a thickness of approximately 100 ⁇ m, the transparent films made of polycarbonate 105 each have a thickness of approximately 200 ⁇ m and the plastic film 106 coated with a photopolymer 107 has a thickness of approximately 300 to 500 ⁇ m. It goes without saying that this is only an example of a possible design.
  • Data is stored with the aid of a suitable writing device which uses laser radiation to insert data into the photopolymer 107.
  • a suitable writing device which uses laser radiation to insert data into the photopolymer 107.
  • a major difference to CD, DVD or MO memories is that the data carrier does not have to be rotated to save and read out the data.
  • the writing device uses a laser beam to store the data, which is divided into a signal beam 108 and a reference beam 109.
  • the data to be stored are impressed on the signal beam 108 in the form of a pattern by a suitable modulator (not shown). If the reference beam and the signal beam strike the holographic storage layer or the photopolymer 107 and are superimposed there, they generate an interference pattern (not shown) representing the data to be stored there.
  • the alignment of the molecular dipoles in the storage layer 107 changes their refractive index, and an optical grating is formed in the storage layer which reproduces the interference pattern and thus ultimately the data to be stored. If such an optical grating is irradiated with the above-mentioned 10 reference steel 108, the bit pattern of the data 110 to be stored and thus the stored data stored in the optical grating can be reconstructed and made available in electronic form.
  • Storage layer 107 store data and read it from it via a corresponding laser reference beam 109.
  • the holographic storage layers shown in FIGS. 4 and 5 are operated in transmission. It goes without saying that the embodiments of the invention shown in FIGS. 1 to 4 can be modified such that a reflective layer is provided under the holographic memory layer if the holographic memory layers shown are to be operated in reflection.
  • transparent, largely scratch-resistant film or coating 105 transparent film made of plastic e.g. B.PC, PET, PVC or ABS

Landscapes

  • Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Microelectronics & Electronic Packaging (AREA)
  • Computer Hardware Design (AREA)
  • Accounting & Taxation (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Finance (AREA)
  • General Engineering & Computer Science (AREA)
  • Optical Record Carriers And Manufacture Thereof (AREA)

Abstract

Procédé de mise en mémoire et de lecture de données sur un support de données, ainsi que support de données et dispositif d'écriture et / ou lecture, en particulier pour la mise en oeuvre dudit procédé. Les données sont codées à l'aide d'une clé (de données) et d'un procédé ou algorithme cryptographique correspondant. Les données codées sont mises en mémoire dans une mémoire de données optique du support de données qui peut par exemple être conçu au format CD/DVD/MO ou sous forme d'élément de mémoire cryptographique. Ledit support de données est de préférence une carte à puce qui comporte, outre un module de puce classique, un mémoire de données optique. La communication avec le module de puce s'effectue, selon la présente invention, par l'intermédiaire d'une interface sans contact et / ou avec contact. Le codage et le décodage complets des données de la mémoire optique sont effectués par un microprocesseur. Cela produit une grande sécurité contre les tentatives d'espionnage de la clé secrète étant donné que ladite clé ne doit pas être extraite du microprocesseur, et même ne peut absolument pas être extraite dudit microprocesseur. Le microprocesseur représente l'interface, le dispositif de codage et le dispositif de décodage par l'intermédiaire duquel les données codées de la mémoire optique peuvent être lues.
PCT/EP2001/004742 2000-07-31 2001-04-26 Support de donnees a memoire optique WO2002011081A1 (fr)

Priority Applications (1)

Application Number Priority Date Filing Date Title
AU2001262236A AU2001262236A1 (en) 2000-07-31 2001-04-26 Data carrier comprising an optical memory

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
DE10037174.4 2000-07-31
DE2000137176 DE10037176C2 (de) 2000-07-31 2000-07-31 Datenträger mit verschlüsselten personalisierten Daten
DE10037176.0 2000-07-31
DE2000137174 DE10037174C2 (de) 2000-07-31 2000-07-31 Datenträger, insbesondere mit holographischem Speicher

Publications (1)

Publication Number Publication Date
WO2002011081A1 true WO2002011081A1 (fr) 2002-02-07

Family

ID=26006565

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/EP2001/004742 WO2002011081A1 (fr) 2000-07-31 2001-04-26 Support de donnees a memoire optique

Country Status (2)

Country Link
AU (1) AU2001262236A1 (fr)
WO (1) WO2002011081A1 (fr)

Cited By (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
FR2849945A1 (fr) * 2003-01-10 2004-07-16 Atmel Corp Moyens pour la communication des cartes a puces usb utilisant des transferts a vitesse maximale ou elevee
EP1564680A1 (fr) * 2004-02-12 2005-08-17 Axalto S.A. Carte comportant une puce et un élément de sécurité physique logiquement lié à la puce
EP1576589A2 (fr) * 2002-11-18 2005-09-21 StorCard, Inc. Carte de transaction securisee a grand volume de stockage
WO2006021383A1 (fr) * 2004-08-20 2006-03-02 Giesecke & Devrient Gmbh Acces securise par authentification a un support de donnees presentant une memoire de masse et une puce
WO2006021382A1 (fr) * 2004-08-20 2006-03-02 Giesecke & Devrient Gmbh Protection de donnees d'un support de donnees presentant une memoire de masse et une puce contre une utilisation frauduleuse
DE102006023949A1 (de) * 2006-05-17 2007-11-22 Winrich Hoseit Memmory-Sim-Card
US7430294B2 (en) 2001-10-09 2008-09-30 Bayer Innovation Gmbh Method and apparatus for the encryption of data
CN109993013A (zh) * 2019-04-08 2019-07-09 深圳市德卡科技股份有限公司 双芯片智能ic卡读卡器及ic卡读卡方法

Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4672182A (en) * 1983-10-17 1987-06-09 Kabushiki Kaisha Toshiba Memory card
EP0330404A2 (fr) * 1988-02-20 1989-08-30 Fujitsu Limited Cartes à circuit intégré
US4960982A (en) * 1987-04-09 1990-10-02 Mitsubishi Denki Kabushiki Kaisha IC card with secure mass storage memory
EP0393784A1 (fr) * 1989-04-17 1990-10-24 N.V. Nederlandsche Apparatenfabriek NEDAP Carte d'identification et d'information multifonctionnelle
DE4242247A1 (de) * 1992-12-15 1994-06-16 Orga Kartensysteme Gmbh Ausweiskarte mit optischem Datenträger
EP0945834A2 (fr) * 1998-03-18 1999-09-29 Citicorp Development Center, Inc. Dispositif et système améliorés pour la lecture des cartes optiques et méthode d'usage
EP0961241A2 (fr) * 1998-03-30 1999-12-01 Citicorp Development Center, Inc. Système bancaire personel à l'aide de cartes à puce à mémoires multiples
WO2000016255A1 (fr) * 1998-09-11 2000-03-23 Schlumberger Systemes Procede de transmission de donnees et carte pour une telle transmission
EP1043684A1 (fr) * 1999-03-29 2000-10-11 OMD Productions AG Support d'informations

Patent Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4672182A (en) * 1983-10-17 1987-06-09 Kabushiki Kaisha Toshiba Memory card
US4960982A (en) * 1987-04-09 1990-10-02 Mitsubishi Denki Kabushiki Kaisha IC card with secure mass storage memory
EP0330404A2 (fr) * 1988-02-20 1989-08-30 Fujitsu Limited Cartes à circuit intégré
EP0393784A1 (fr) * 1989-04-17 1990-10-24 N.V. Nederlandsche Apparatenfabriek NEDAP Carte d'identification et d'information multifonctionnelle
DE4242247A1 (de) * 1992-12-15 1994-06-16 Orga Kartensysteme Gmbh Ausweiskarte mit optischem Datenträger
EP0945834A2 (fr) * 1998-03-18 1999-09-29 Citicorp Development Center, Inc. Dispositif et système améliorés pour la lecture des cartes optiques et méthode d'usage
EP0961241A2 (fr) * 1998-03-30 1999-12-01 Citicorp Development Center, Inc. Système bancaire personel à l'aide de cartes à puce à mémoires multiples
WO2000016255A1 (fr) * 1998-09-11 2000-03-23 Schlumberger Systemes Procede de transmission de donnees et carte pour une telle transmission
EP1043684A1 (fr) * 1999-03-29 2000-10-11 OMD Productions AG Support d'informations

Cited By (13)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7430294B2 (en) 2001-10-09 2008-09-30 Bayer Innovation Gmbh Method and apparatus for the encryption of data
EP1576589A2 (fr) * 2002-11-18 2005-09-21 StorCard, Inc. Carte de transaction securisee a grand volume de stockage
EP1576589A4 (fr) * 2002-11-18 2006-06-07 Storcard Inc Carte de transaction securisee a grand volume de stockage
EP1584065A4 (fr) * 2003-01-10 2007-04-11 Atmel Corp Moyens de communication avec des cartes intelligentes usb par transferts a pleine vitesse ou grande vitesse
US6793144B2 (en) 2003-01-10 2004-09-21 Atmel Corporation Means for communicating with USB smart cards using full-speed or high-speed transfers
EP1584065A2 (fr) * 2003-01-10 2005-10-12 Atmel Corporation Moyens de communication avec des cartes intelligentes usb par transferts a pleine vitesse ou grande vitesse
FR2849945A1 (fr) * 2003-01-10 2004-07-16 Atmel Corp Moyens pour la communication des cartes a puces usb utilisant des transferts a vitesse maximale ou elevee
EP1564680A1 (fr) * 2004-02-12 2005-08-17 Axalto S.A. Carte comportant une puce et un élément de sécurité physique logiquement lié à la puce
WO2006021382A1 (fr) * 2004-08-20 2006-03-02 Giesecke & Devrient Gmbh Protection de donnees d'un support de donnees presentant une memoire de masse et une puce contre une utilisation frauduleuse
WO2006021383A1 (fr) * 2004-08-20 2006-03-02 Giesecke & Devrient Gmbh Acces securise par authentification a un support de donnees presentant une memoire de masse et une puce
US8689009B2 (en) 2004-08-20 2014-04-01 Giesecke & Devrient Gmbh Authentication-secured access to a data carrier comprising a mass storage device and chip
DE102006023949A1 (de) * 2006-05-17 2007-11-22 Winrich Hoseit Memmory-Sim-Card
CN109993013A (zh) * 2019-04-08 2019-07-09 深圳市德卡科技股份有限公司 双芯片智能ic卡读卡器及ic卡读卡方法

Also Published As

Publication number Publication date
AU2001262236A1 (en) 2002-02-13

Similar Documents

Publication Publication Date Title
DE3811378C3 (de) Informationsaufzeichnungssystem
DE60117598T2 (de) Sichere transaktionen mit passiven speichermedien
US6473861B1 (en) Magnetic optical encryption/decryption disk drive arrangement
DE69702135T2 (de) System zur sicheren speicherung von daten auf einer cd-rom
EP1043684A1 (fr) Support d'informations
EP0713197A1 (fr) Porteur d'informations et lecteur/enregistreur correspondant
EP2038811A1 (fr) Document de valeur ou de sécurité avec au moins deux dispositifs indicateurs
DE29821644U1 (de) Authentifikationssystem für PC-Cards
WO2007028510A1 (fr) Support d'enregistrement destine a des informations confidentielles
WO2002011081A1 (fr) Support de donnees a memoire optique
EP2203901B1 (fr) Document avec un dispositif d'affichage
WO1998057299A1 (fr) Document a caracteristique d'authenticite
WO2007104423A1 (fr) Procédé et appareillage permettant de traiter en toute sécurité des informations sensibles
EP0990226B1 (fr) Systeme permettant une lecture et un traitement proteges de donnees sur des supports de donnees intelligents
DE69937581T2 (de) Computerlesbares medium mit mikroprozessor zur lesesteuerung und computeranordnung zur kommunikation mit einem derartigen medium
EP1782153B1 (fr) Acces securise par authentification a un support de donnees presentant une memoire de masse et une puce
WO1996029699A1 (fr) Dispositif de protection de supports de donnees et dispositif interactif cooperant avec le dispositif de protection pour empecher toute utilisation non autorisee
DE60016383T2 (de) Geschützte optische platte und verfahren zur sicherung einer optischen platte
DE10037174C2 (de) Datenträger, insbesondere mit holographischem Speicher
CN1152968A (zh) 鉴别技术
DE10037176C2 (de) Datenträger mit verschlüsselten personalisierten Daten
WO2002041236A9 (fr) Carte de donnees haute securite
DE19806295A1 (de) Zugangsberechtigungs- oder Identifikationsmedium und Verfahren zu seiner Herstellung
EP1479049B1 (fr) Procede pour constater le droit d'une personne a utiliser un support de donnees portatif
EP1980977B1 (fr) Etiquette authentifiable et dispositif d'authentification d'une étiquette authentifiable

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A1

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DK DM DZ EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT TZ UA UG US UZ VN YU ZA ZW

AL Designated countries for regional patents

Kind code of ref document: A1

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE TR BF BJ CF CG CI CM GA GN GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
122 Ep: pct application non-entry in european phase
NENP Non-entry into the national phase

Ref country code: JP