Invention Application
WO2016193072A1 METHOD FOR MANAGING A SECURE CHANNEL BETWEEN A SERVER AND A SECURE ELEMENT
审中-公开
用于管理服务器和安全元件之间的安全通道的方法
- Patent Title: METHOD FOR MANAGING A SECURE CHANNEL BETWEEN A SERVER AND A SECURE ELEMENT
- Patent Title (中): 用于管理服务器和安全元件之间的安全通道的方法
-
Application No.: PCT/EP2016/061716Application Date: 2016-05-24
-
Publication No.: WO2016193072A1Publication Date: 2016-12-08
- Inventor: POTONNIEE, Olivier , BERNABEU, Gil , LU, HongQian Karen
- Applicant: GEMALTO SA
- Applicant Address: 6, Rue de La Verrerie 92190 Meudon FR
- Assignee: GEMALTO SA
- Current Assignee: GEMALTO SA
- Current Assignee Address: 6, Rue de La Verrerie 92190 Meudon FR
- Priority: EP15305845.8 20150602
- Main IPC: H04L29/06
- IPC: H04L29/06 ; H04W12/06
Abstract:
The invention is a method for managing a secure channel between a server and a secure element embedded in a first device, wherein a user agent embedded in a second device establishes a HTTPS session with the serverand retrievesa web application from theserver, themethod comprising the steps: -the server sends to the web applicationan application certificate which is linked to a specific data reflecting the identity of the server, -the secure element gets the application certificate and the specific data, -the secure element checks the validity of the application certificate and that the application certificate is consistently linked to the specific data, -in case of successful checks, the secure element and the server generate an ephemeral session key and use it for opening a secure channel.
Information query
