公开(公告)号：EP1909209A1

公开(公告)日：2008-04-09

申请号：EP07016017.1

申请日：2007-08-14

申请人： Hitachi, Ltd.

发明人： Uchiyama, Hiroki ,  Umezawa, Katsuyuki ,  Kobayashi, Ken ,  Matsumoto, Kenji

IPC分类号： G06F21/00 ,  G07F7/10 ,  H04L29/06

CPC分类号： H04L63/0853 ,  G06F21/32 ,  G06F21/34 ,  G06Q20/341 ,  G06Q20/355 ,  G06Q20/409 ,  G07F7/1008 ,  G07F7/1091

摘要： To provide a novel authentication scheme to prevent PIN information from being exposed to the outside of a data carrier, without modifying an existing application for authentication management. The data carrier includes means for generating PIN information therein; a PIN storage unit for storing the generated PIN information with respect to the use of a service application; an authentication information storage unit for storing information unique to a user; an authentication application unit for authenticating the user by referring to the authentication information stored in the authentication information storage unit; means for verifying the PIN information stored in the PIN storage unit according to the authentication result by the authentication application; and a service application unit for performing a service according to the result of the verification of the PIN information by the verification means.

摘要翻译： 提供一种新颖的认证方案，以防止PIN信息暴露于数据载体的外部，而不修改现有的用于认证管理的应用。 数据载体包括用于在其中生成PIN信息的装置; PIN存储单元，用于存储关于使用服务应用的生成的PIN信息; 验证信息存储单元，用于存储用户唯一的信息; 认证应用单元，用于通过参考存储在认证信息存储单元中的认证信息来认证用户; 用于根据认证应用的认证结果验证存储在PIN存储单元中的PIN信息的装置; 以及服务应用单元，用于根据验证装置对PIN信息的验证结果执行服务。

公开(公告)号：EP1764719A3

公开(公告)日：2013-02-20

申请号：EP06019097.2

申请日：2006-09-12

申请人： Hitachi, Ltd.

发明人： Uchiyama, Hiroki ,  Umezawa, Katsuyuki ,  Susaki, Seiichi ,  Matsumoto, Kenzi

IPC分类号： G06F21/77 ,  G06Q20/34 ,  G06F21/57 ,  G07F7/10

CPC分类号： G06F21/57 ,  G06F21/572 ,  G06F21/77 ,  G06F2221/2141 ,  G06Q20/3552 ,  G07F7/1008

摘要： A Smart card-based service providing system and method, in which a service application uses resources of a common application and which can easily cope with an addition of a service application into the Smart card and thereby efficiently utilize valuable resources of the Smart card, is provided. A management application specially designed for access control is installed in the Smart card to solely manage access management information. A management of or a decision on an access right is not performed by the service application or the common application but by the management application. When a new application is added to the Smart card, the service provider device receives a permission to update access management information beforehand from the card issuer device and, based on the permission, updates the access management information.

公开(公告)号：EP1764719A2

公开(公告)日：2007-03-21

申请号：EP06019097.2

申请日：2006-09-12

申请人： Hitachi, Ltd.

发明人： Uchiyama, Hiroki ,  Umezawa, Katsuyuki ,  Susaki, Seiichi ,  Matsumoto, Kenzi

IPC分类号： G06F21/00

CPC分类号： G06F21/57 ,  G06F21/572 ,  G06F21/77 ,  G06F2221/2141 ,  G06Q20/3552 ,  G07F7/1008

摘要： A Smart card-based service providing system and method, in which a service application uses resources of a common application and which can easily cope with an addition of a service application into the Smart card and thereby efficiently utilize valuable resources of the Smart card, is provided. A management application specially designed for access control is installed in the Smart card to solely manage access management information. A management of or a decision on an access right is not performed by the service application or the common application but by the management application. When a new application is added to the Smart card, the service provider device receives a permission to update access management information beforehand from the card issuer device and, based on the permission, updates the access management information.

摘要翻译： 一种基于智能卡的服务提供系统和方法，其中服务应用使用通用应用的资源，并且可以容易地将服务应用程序的添加应用于智能卡，从而有效地利用智能卡的有价值的资源。 提供。 智能卡中安装了专门用于访问控制的管理应用程序，用于管理访问管理信息。 访问权限的管理或决定不由服务应用程序或通用应用程序执行，而是由管理应用程序执行。 当新的应用被添加到智能卡时，服务提供商设备从卡发行者设备预先接收更新访问管理信息的权限，并且基于许可更新访问管理信息。