WO2014140922A3 - Secure key distribution for multi-application tokens - Google Patents

Secure key distribution for multi-application tokens Download PDF

Info

Publication number
WO2014140922A3
WO2014140922A3 PCT/IB2014/001207 IB2014001207W WO2014140922A3 WO 2014140922 A3 WO2014140922 A3 WO 2014140922A3 IB 2014001207 W IB2014001207 W IB 2014001207W WO 2014140922 A3 WO2014140922 A3 WO 2014140922A3
Authority
WO
WIPO (PCT)
Prior art keywords
key
token
secure key
load
secure
Prior art date
Application number
PCT/IB2014/001207
Other languages
French (fr)
Other versions
WO2014140922A2 (en
Inventor
Gunther WELLER
Original Assignee
Assa Abloy Ab
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Assa Abloy Ab filed Critical Assa Abloy Ab
Publication of WO2014140922A2 publication Critical patent/WO2014140922A2/en
Publication of WO2014140922A3 publication Critical patent/WO2014140922A3/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/604Tools and structures for managing or administering access control systems
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • G06F21/6272Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database by registering files or documents with a third party
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/355Personalisation of cards for use
    • G06Q20/3552Downloading or loading of personalisation data
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/357Cards having a plurality of specified features
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • H04W12/068Authentication using credential vaults, e.g. password manager applications or one time password [OTP] applications
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/30Security of mobile devices; Security of mobile applications
    • H04W12/35Protecting application or service provisioning, e.g. securing SIM application provisioning

Abstract

Provisioning a token includes providing at least one key to a secure key vault, determining an available slot on the token, transferring the at least one key to a key load SAM, and transferring at least one of: the at least one key and/or other application data from the key load SAM to the available slot on the token. A token issuer may use the key load SAM to load the at least one key onto the token. A service provider may provide the at least one key to the secure key vault. The at least one key may allow an end user to use the token to access a service provided by the service provider. The token may be a cell phone or a smart card. The secure key vault may be implemented using cloud storage.
PCT/IB2014/001207 2013-03-15 2014-03-14 Secure key distribution for multi-application tokens WO2014140922A2 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US201361791612P 2013-03-15 2013-03-15
US61/791,612 2013-03-15

Publications (2)

Publication Number Publication Date
WO2014140922A2 WO2014140922A2 (en) 2014-09-18
WO2014140922A3 true WO2014140922A3 (en) 2014-12-04

Family

ID=51300790

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/IB2014/001207 WO2014140922A2 (en) 2013-03-15 2014-03-14 Secure key distribution for multi-application tokens

Country Status (1)

Country Link
WO (1) WO2014140922A2 (en)

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CA3040171A1 (en) 2016-10-19 2018-04-26 Dormakaba Usa Inc. Electro-mechanical lock core
EP3679207B1 (en) 2017-09-08 2022-08-03 Dormakaba USA Inc. Electro-mechanical lock core
WO2019200257A1 (en) 2018-04-13 2019-10-17 Dormakaba Usa Inc. Electro-mechanical lock core
US11466473B2 (en) 2018-04-13 2022-10-11 Dormakaba Usa Inc Electro-mechanical lock core

Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0818761A1 (en) * 1996-07-12 1998-01-14 Koninklijke KPN N.V. Integrated circuit card, secure application module, system comprising a secure application module and a terminal and a method for controlling service actions to be carried out by the secure application module on the integrated circuit card

Patent Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0818761A1 (en) * 1996-07-12 1998-01-14 Koninklijke KPN N.V. Integrated circuit card, secure application module, system comprising a secure application module and a terminal and a method for controlling service actions to be carried out by the secure application module on the integrated circuit card

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
HUSEMANN D ED - STERBENZ JAMES PG HUTCHISON DAVID MÜLLER PAUL ELLIOTT CHIP: "Standards in the smart card world", COMPUTER NETWORKS, ELSEVIER SCIENCE PUBLISHERS B.V., AMSTERDAM, NL, vol. 36, no. 4, 16 July 2001 (2001-07-16), pages 473 - 487, XP004304910, ISSN: 1389-1286, DOI: 10.1016/S1389-1286(01)00167-0 *

Also Published As

Publication number Publication date
WO2014140922A2 (en) 2014-09-18

Similar Documents

Publication Publication Date Title
WO2013188179A3 (en) Efficient data transfer for cloud storage
WO2013103986A3 (en) Systems and methods for accessing digital content using electronic tickets and ticket tokens
MX2018003007A (en) Proxy device for representing multiple credentials.
WO2012003504A3 (en) A system and method for cloud file management
WO2014124395A3 (en) Consumer device payment token management
WO2013048084A3 (en) Profile management method, embedded uicc, and device provided with the embedded uicc
PH12017500902A1 (en) A dynamic multiple- application systematic framework for integrated circuit card and information processing methods based on the framework
WO2014149498A3 (en) Remote secure transactions
WO2012068024A3 (en) Media file access
WO2013106306A3 (en) Prepaid card for services related to personal health records
WO2013032515A3 (en) Systems and methods for application identification
WO2012065031A3 (en) Animal data management
PE20130629A1 (en) SYSTEM AND METHOD FOR CARRYING OUT FINANCIAL TRANSACTIONS
GB2466725B (en) Determining prescence status of end user associated with multiple access terminals
WO2014071367A3 (en) Systems and methods for providing financial service extensions
MY183363A (en) Controlling usage of acquirer tokens stored within a merchant system
WO2014122451A3 (en) System and method for mobile wallet data access
WO2012112460A3 (en) Offer insertion system
WO2014140922A3 (en) Secure key distribution for multi-application tokens
WO2013173515A3 (en) Rolling settlement for tri party transactions
PH12016501377B1 (en) Method of and system for gaming
WO2014145392A3 (en) Alphanumeric keypad for fuel dispenser system architecture
WO2014202970A3 (en) Money box
GB2545841A (en) Systems and methods for providing payment hotspots
GB201201026D0 (en) System and method for enabling network access to mass storage devices connected to multi-function devices

Legal Events

Date Code Title Description
122 Ep: pct application non-entry in european phase

Ref document number: 14750002

Country of ref document: EP

Kind code of ref document: A2