公开(公告)号：US10037426B2

公开(公告)日：2018-07-31

申请号：US14932347

申请日：2015-11-04

Applicant: Oberthur Technologies

Inventor： Axel Francois ,  Michele Sartori

IPC: G06F21/00 ,  G06F21/57 ,  G06F21/62 ,  G06F21/74

CPC classification number: G06F21/57 ,  G06F21/6218 ,  G06F21/74 ,  G06F2221/034

Abstract: In an electronic device designed to function in a trusted execution environment (TEE), because of the execution of a trusted operating system by a processor of the electronic device, or in a rich execution environment (REE), a method of loading files into random access memory includes the following steps: reception (E10) by the trusted operating system of information (L1) identifying at least one file; verification (E11) by the trusted operating system of the conformance of the identified file to at least one given criterion; in the event of conformance, loading (E13) the identified file into an area (Z2) of random access memory accessible in read only mode when functioning in the rich execution environment (REE). An associated electronic device is also proposed.

公开(公告)号：USD813303S1

公开(公告)日：2018-03-20

申请号：US29544509

申请日：2015-11-04

Applicant: OBERTHUR TECHNOLOGIES

Designer： Benoit Berthe ,  Coralie Vandroux

公开(公告)号：US20170351849A1

公开(公告)日：2017-12-07

申请号：US15538841

申请日：2015-12-17

Applicant: OBERTHUR TECHNOLOGIES

Inventor： Emmanuelle DOTTAX ,  Philippe MURESIANU ,  Michele SARTORI ,  Fabien CORDIER

IPC: G06F21/32 ,  H04L29/06 ,  H04L9/32 ,  H04W12/06

CPC classification number: G06F21/32 ,  G06F21/83 ,  G06F2221/2103 ,  H04L9/3231 ,  H04L63/0861 ,  H04W12/06

Abstract: Disclosed is a method for authenticating a user by using an electronic apparatus including an authentication module and a secure module, which includes the following steps: the authentication module transmits a recognition result to the secure module according to a process that allows the authentication module to be authenticated by the secure module; the secure module generates an authentication token by signing, with a private key stored in the secure module, data including data representing at least one feature of the authentication module; and transmitting the generated authentication token. Also disclosed is an associated secure module, electronic apparatus and system.

公开(公告)号：US09779246B2

公开(公告)日：2017-10-03

申请号：US13946681

申请日：2013-07-19

Applicant: OBERTHUR TECHNOLOGIES

Inventor： Christophe Giraud ,  Olivier Chamley ,  Gregoire Godel

IPC: G06F21/57 ,  G06F21/51

CPC classification number: G06F21/575 ,  G06F21/51 ,  G06F21/57

Abstract: A secure element includes a boot program comprises instructions for the execution a startup step to determine if a non-volatile memory stores an active operating system, and, in the affirmative, to launch execution of the operating system, an authentication step of a updater device, as a function of first authentication data determined by a secure element and second authentication data received from the updater device, and, in response to the authentication step, a storage step of a new operating system received from the update, device in the non-volatile memory and an activation step of the new operating system, when said instructions are executed by a microprocessor.

公开(公告)号：US09767286B2

公开(公告)日：2017-09-19

申请号：US14089914

申请日：2013-11-26

Applicant: OBERTHUR TECHNOLOGIES

Inventor： Nicolas Bousquet

IPC: G06F21/57 ,  H04W4/00 ,  H04W12/08

CPC classification number: G06F21/57 ,  H04W4/60 ,  H04W12/08

Abstract: An electronic module that includes means for determining an operating system targeted by a message received by a transmitter-receiver of an electronic device, from among at least a Rich-OS operating system and a trusted operating system executed on a chipset of the electronic device, so that the message becomes accessible to the targeted operating system. The determining means may be set in operation in response to receipt of the message by the transmitter-receiver.

公开(公告)号：US20170265059A1

公开(公告)日：2017-09-14

申请号：US15511091

申请日：2015-09-14

Applicant: OBERTHUR TECHNOLOGIES

Inventor： Tomasz WOZNIAK ,  Jérôme DUMOULIN

IPC: H04W8/18 ,  H04B1/3816 ,  H04W60/00

CPC classification number: H04W8/183 ,  H04B1/3816 ,  H04W60/005

Abstract: A method for administering life cycles of communication profiles that are managed by a subscriber identity module (100) embedded in a telecommunications terminal (110) may be performed by the module (100), which is suitable for using at least one process for administering the life cycles of communication profiles. The process uses a set of at least one command and/or of at least one rule. The method includes operations for receiving (B610) a message (M610) issued by the terminal (110) and representative of the capabilities of the terminal (110); selecting or not selecting (B615) the set used by the process as a function of the capabilities of the terminal (110); and if the set is selected, administering at least one life cycle of at least one of the profiles by using the set of at least one command and/or of at least one rule.

公开(公告)号：US09680645B2

公开(公告)日：2017-06-13

申请号：US14572233

申请日：2014-12-16

Applicant: OBERTHUR TECHNOLOGIES

Inventor： Alberto Battistello ,  Christophe Giraud ,  Guillaume Dabosville ,  Laurie Genelle

IPC: H04L9/00 ,  H04L9/14 ,  H04L9/30

CPC classification number: H04L9/14 ,  H04L9/002 ,  H04L9/30 ,  H04L9/302 ,  H04L2209/24 ,  H04L2209/26

Abstract: Method of integrity verification of cryptographic key pairs, the method including an integrity test with: at least one first step implementing one of the private and public keys and an initial test datum, the first step making it possible to generate a first result, at least one second step implementing at least the first result and the key not used during the at least one first step, the second step making it possible to generate a second result, and a comparison of the second result and of the initial test datum, characterized in that the test is re-executed upon each positive comparison, and in that the test is executed at least 2 times.

公开(公告)号：US20170154335A1

公开(公告)日：2017-06-01

申请号：US15429647

申请日：2017-02-10

Applicant: OBERTHUR TECHNOLOGIES

Inventor： Hervé GOUESSANT

IPC: G06Q20/40 ,  G06Q20/32 ,  G06Q20/34 ,  G06K5/00 ,  G06K19/06

Abstract: The invention relates to a bank card (100) comprising a presentation surface of a pictogram (120) coding at least one item of information for executing a transaction.

公开(公告)号：US20170085423A1

公开(公告)日：2017-03-23

申请号：US15310932

申请日：2015-05-18

Applicant: OBERTHUR TECHNOLOGIES

Inventor： Tomasz WOZNIAK ,  Jerome DUMOULIN ,  Alexis MICHEL ,  Arnaud DANREE

IPC: H04L12/24 ,  H04M3/51 ,  H04L29/08

CPC classification number: H04L41/0813 ,  H04L67/306 ,  H04M3/5116 ,  H04M2242/04 ,  H04W8/183 ,  H04W76/50 ,  H04W88/02

Abstract: A method for modifying the profile in a device (D) including a communication module for communicating on a communication network, the device (D) being provided with a microcircuit storing connection data used by the communication module and associated with a profile, the method including the following steps: reception, by the microcircuit and via the communication module, of a request to deactivate (E6) the profile; transmission, by the microcircuit, of a first message (E10) to the device; transmission, by the device and to the microcircuit, of a response (E14) indicative of the existence of a critical situation; following the receipt of the response (E14) by the microcircuit, implementation of a time delay mechanism (E18); upon expiry of the time delay (E18), transmission, by the microcircuit and to the device, of a second message (E22) resulting in the deactivation of the profile. An associated device and microcircuit are also described.

公开(公告)号：US09578019B2

公开(公告)日：2017-02-21

申请号：US14100307

申请日：2013-12-09

Applicant: OBERTHUR TECHNOLOGIES

Inventor： Arnaud Danree ,  Guillaume Larignon

IPC: H04L29/00 ,  H04L29/06 ,  H04W12/04 ,  H04L9/32 ,  H04W4/00

CPC classification number: H04L63/0853 ,  H04L9/3271 ,  H04L63/04 ,  H04L63/062 ,  H04L2209/805 ,  H04W4/60 ,  H04W12/04

Abstract: A method and system for managing an embedded secure element (50) accessible as a slave of the resident applications (App1-3) of a host device of the eSE. The eSE includes an issuer security domain (51), ISD, with which cryptographic keys are associated. The method includes, in an application agent embedded in an OS of the host device: sending (420) the ISD a random value; receiving (435) a cryptogram corresponding to the random value encrypted using a key associated with the ISD; sending (440, 450) the random value and the cryptogram to a first extern entity entered in the application agent. The method includes: sending (455, 4555) the random value and the cryptogram from the first entity to a second external entity; verifying (4556) that the second entity possesses keys associated with the ISD from the cryptogram and the random value.

Abstract translation: 一种用于管理作为eSE的主机设备的驻留应用（App1-3）的从站可访问的嵌入式安全元件（50）的方法和系统。 eSE包括与密码密钥相关联的发行者安全域（51），ISD。 该方法包括：嵌入在主机设备的OS中的应用代理：发送（420）ISD随机值; 接收（435）与使用与所述ISD相关联的密钥加密的随机值对应的密码; 将随机值和密码发送（440,450）到在应用代理中输入的第一个外部实体。 该方法包括：从第一实体向第二外部实体发送（455,4555）随机值和密码; 验证（4556）第二实体具有与密码相关联的密钥和随机值。