公开(公告)号：US07346718B2

公开(公告)日：2008-03-18

申请号：US10457512

申请日：2003-06-10

申请人： Ken Sakamura ,  Noboru Koshizuka ,  Kazuhiko Ishii ,  Kensaku Mori ,  Hiroshi Aono ,  Sadayuki Hongo

发明人： Ken Sakamura ,  Noboru Koshizuka ,  Kazuhiko Ishii ,  Kensaku Mori ,  Hiroshi Aono ,  Sadayuki Hongo

IPC分类号： G06F13/42

CPC分类号： G07F7/1008 ,  G06K7/00 ,  G06K19/07 ,  G06K19/073 ,  G06Q20/341 ,  G06Q20/40975 ,  G07F7/084

摘要： An autonomous integrated circuit card includes a logic external communication interface which directly communicates with a communication device connected to an integrated circuit card terminal main body via a network, in addition to a host device interface connected to an integrated card reader/writer via a physical layer. A communication control unit includes a software module which directly communicates with the communication device via the external communication interface. A central processing unit performs authentication via the communication control unit and reads value information stored in a nonvolatile memory. Further, the central processing unit encrypts the read value information by use of an encryption processing unit and directly transmits the encrypted value information to the communication device via the communication control unit and the external communication interface.

摘要翻译： 自主的集成电路卡除了通过物理层连接到集成读卡器/写入器的主机设备接口之外还包括一个逻辑外部通信接口，该逻辑外部通信接口通过网络直接与连接到集成电路卡终端主体的通信设备通信 。 通信控制单元包括经由外部通信接口与通信设备直接通信的软件模块。 中央处理单元经由通信控制单元执行认证，并读取存储在非易失性存储器中的值信息。 此外，中央处理单元通过使用加密处理单元对读取值信息进行加密，并且经由通信控制单元和外部通信接口将经加密的值信息直接发送到通信设备。

公开(公告)号：US07340243B2

公开(公告)日：2008-03-04

申请号：US10457521

申请日：2003-06-10

申请人： Ken Sakamura ,  Noboru Koshizuka ,  Kazuhiko Ishii ,  Kensaku Mori ,  Hiroshi Aono ,  Sadayuki Hongo

发明人： Ken Sakamura ,  Noboru Koshizuka ,  Kazuhiko Ishii ,  Kensaku Mori ,  Hiroshi Aono ,  Sadayuki Hongo

IPC分类号： H04M1/66 ,  H04M1/68 ,  H04M3/16

CPC分类号： H04L63/0869 ,  G06Q20/32 ,  G06Q20/341 ,  G06Q20/4097 ,  G07F7/1008 ,  H04L63/0853

摘要： Each IC card 1 notifies a server 3 of the ID of the IC card and the connection information of a terminal device to which the IC card is connected. The server 3 stores the ID and the connection information in a database 4 while associating the ID and the connection information with each other. When an IC card 1 communicates with another IC card, the IC card 1 requests the connection information concerning the destination IC card from the server 3 while specifying the ID of this IC card. The server 3 searches the database 4 for the connection information corresponding to the ID specified by the request, and notifies the requesting IC card 1 of the acquired connection information. This enables communications between IC cards even if the terminal device to which a destination IC card is connected has been changed in the past.

摘要翻译： 每个IC卡1向服务器3通知IC卡的ID和连接有IC卡的终端设备的连接信息。 服务器3将ID和连接信息存储在数据库4中，同时使ID和连接信息相互关联。 当IC卡1与另一IC卡通信时，IC卡1在指定该IC卡的ID的同时从服务器3请求有关目的IC卡的连接信息。 服务器3在数据库4中搜索与该请求规定的ID对应的连接信息，向请求IC卡1通知所获取的连接信息。 即使连接了目的地IC卡的终端装置过去已经改变，也能够进行IC卡之间的通信。

公开(公告)号：US20060259430A1

公开(公告)日：2006-11-16

申请号：US11371106

申请日：2006-03-09

申请人： Masayuki Terada ,  Kensaku Mori ,  Kazuhiko Ishii ,  Sadayuki Hongo

发明人： Masayuki Terada ,  Kensaku Mori ,  Kazuhiko Ishii ,  Sadayuki Hongo

IPC分类号： G06Q99/00

CPC分类号： G06Q20/02 ,  G06Q20/04 ,  G06Q20/105 ,  G06Q20/3825 ,  G06Q20/40 ,  G06Q20/407

摘要： A user device uses, instead of agreement information, only second session information contained in the agreement information, to generate an electronic signature for information containing the session information and information indicating an abort request, and outputs abort request information containing the session information, the information indicating the abort request, and the electronic signature, whereby transmission/reception can be performed without unnecessary information. Similarly, it may be configured to use only the second session information to generate an electronic signature for information containing the session information and information indicating a commitment request, and to output commitment request information containing the electronic signature. Since a third-party device defines a third session state as abort in correspondence to the second session information, it is able to manage states while appropriately discriminating a plurality of concurrent electronic value exchanges.

摘要翻译： 用户设备使用协议信息中仅包含协议信息的第二会话信息来生成包含会话信息的信息和指示中止请求的信息的电子签名，并输出包含会话信息的中止请求信息，信息 指示中止请求和电子签名，从而可以在不需要的信息的情况下执行发送/接收。 类似地，它可以被配置为仅使用第二会话信息来生成用于包含会话信息的信息的电子签名和指示承诺请求的信息，并且输出包含电子签名的承诺请求信息。 由于第三方设备将第三会话状态定义为与第二会话信息相对应的中止，所以能够在适当地区分多个并行电子价值交换的同时管理状态。

公开(公告)号：US20060214006A1

公开(公告)日：2006-09-28

申请号：US11377257

申请日：2006-03-17

申请人： Kensaku Mori ,  Masayuki Terada ,  Kazuhiko Ishii ,  Sadayuki Hongo

发明人： Kensaku Mori ,  Masayuki Terada ,  Kazuhiko Ishii ,  Sadayuki Hongo

IPC分类号： G06K19/06

CPC分类号： G06Q20/322 ,  G06F21/62 ,  G06F21/78 ,  G06Q20/045 ,  G06Q20/1235 ,  G06Q20/32 ,  G07F17/42

摘要： It is an object to provide a tamper resistant device and a file generation method which can store right value information such as a ticket information, and guarantee validity of the right value information without executing a digital signature processing. An IC card 102 attached to a portable terminal 100 receives, from an application 101, right value information representing a right value and a file generation message instructing generation of a rights-file. The right value information includes file data representing the right value, data size and the like. Upon determining that a file generation message is received, the IC card 102 generates a rights-file including the IC card identification ID and right value information which are previously stored in the IC card 102.

公开(公告)号：US20060208067A1

公开(公告)日：2006-09-21

申请号：US11377360

申请日：2006-03-17

申请人： Ken Sakamura ,  Noboru Koshizuka ,  Kensaku Mori ,  Masayuki Terada ,  Kazuhiko Ishii ,  Sadayuki Hongo

发明人： Ken Sakamura ,  Noboru Koshizuka ,  Kensaku Mori ,  Masayuki Terada ,  Kazuhiko Ishii ,  Sadayuki Hongo

IPC分类号： G06K5/00

CPC分类号： G06Q20/06 ,  G06Q20/26

摘要： The present invention is directed to avoidance of inconvenience arising from application program's incapability of recognizing processing executed on the IC card side, interruption of communication between IC cards, and so on on the occasion of an exchange of electronic values between the IC cards. A portable terminal 20, when receiving an exchange offer message of electronic values from a portable terminal 10, notifies an application program 21 of an exchange offer content based on a listener corresponding to the message. When the application program 21 accepts this offer content and when electronic values V1, V2 are determined as exchange objects, the portable terminal 20 returns an exchange confirmation message of the electronic values. When the portable terminal 10 receives the exchange confirmation message, it notifies an application program 11 of an exchange content based on a listener corresponding to the message. When the application program 11 accepts the exchange content, the exchange transaction of electronic values V1, V2 is started.

摘要翻译： 本发明旨在避免在IC卡之间交换电子值时应用程序不能识别在IC卡侧执行的处理，IC卡之间的通信中断等引起的不方便。 便携式终端20在从便携式终端10接收到电子值的交换报价消息时，基于与消息对应的收听者向应用程序21通知交换提供内容。 当应用程序21接受该提议内容，并且当电子值V 1，V 2被确定为交换对象时，便携式终端20返回电子值的交换确认消息。 当便携式终端10接收到交换确认消息时，它基于与该消息对应的收听者向应用程序11通知交换内容。 当应用程序11接受交换内容时，开始电子值V 1，V 2的交换交易。

公开(公告)号：US07031695B2

公开(公告)日：2006-04-18

申请号：US10420844

申请日：2003-04-23

申请人： Hiroshi Aono ,  Kazuhiko Ishii ,  Kensaku Mori ,  Sadayuki Hongo

发明人： Hiroshi Aono ,  Kazuhiko Ishii ,  Kensaku Mori ,  Sadayuki Hongo

IPC分类号： H04M1/66

CPC分类号： H04M1/667

摘要： A portable terminal 10 according to the present invention is provided with a request acquiring means, a verifying means, and an output means. The request acquiring means acquires an access right authentication request from a display application 153 to a telephone directory management application 152 managing telephone directory data stored in a telephone directory database 151, along with application authentication information held by the display application 153. The verifying means determines the validity of the application authentication information in accordance with the access right authentication request. When it is determined that the application authentication information is valid, the output means permits the access right authentication request and outputs the telephone directory data to the display application 153 in accordance with an access request to the telephone directory data.

摘要翻译： 根据本发明的便携式终端10具有请求获取装置，验证装置和输出装置。 请求获取装置从存储应用程序153获取访问权认证请求，以及管理存储在电话号码簿数据库151中的电话号码簿数据的电话簿管理应用程序152以及由显示应用程序153保持的应用认证信息。 验证装置根据访问权认证请求确定应用认证信息的有效性。 当确定应用认证信息有效时，输出装置允许访问权认证请求，并且根据对电话号码数据的访问请求将电话号码数据输出到显示应用程序153。

公开(公告)号：US08161499B2

公开(公告)日：2012-04-17

申请号：US11587096

申请日：2005-04-21

申请人： Ken Sakamura ,  Noboru Koshizuka ,  Masayuki Terada ,  Kensaku Mori ,  Kazuhiko Ishii ,  Sadayuki Hongo

发明人： Ken Sakamura ,  Noboru Koshizuka ,  Masayuki Terada ,  Kensaku Mori ,  Kazuhiko Ishii ,  Sadayuki Hongo

IPC分类号： G06F3/00 ,  G06F9/44 ,  G06F12/00 ,  G06F13/00 ,  G06F13/28 ,  G06F9/26 ,  G06F15/16 ,  G06F15/167 ,  G06F15/177

CPC分类号： G06F21/64 ,  G06F9/4484 ,  G06F9/544 ,  G06F9/545

摘要： A data processing method using a data processing apparatus on a transmitting side having an application for performing processing using an internal device set in the data processing apparatus, a driver that accepts an access request to the internal device from the application, a handler that performs access processing to the internal device and transmitting a message to an external device set outside the data processing apparatus, and a storage device that stores a device ID as a transmission destination for specifying the internal or external device and the handler in association with each other, and a data processing apparatus on a receiving side that receives the message transmitted from the data processing apparatus on the transmitting side.

摘要翻译： 一种数据处理方法，使用在发送侧的数据处理装置，该数据处理装置具有使用在数据处理装置中设置的内部装置进行处理的应用程序，从应用程序接受对内部装置的访问请求的驱动程序，执行访问的处理程序 对内部设备进行处理并将消息发送到在数据处理设备外部设置的外部设备;以及存储设备，其将设备ID存储为用于指定内部或外部设备和处理程序的发送目的地，并且彼此相关联;以及 接收侧的数据处理装置，其接收从发送侧的数据处理装置发送的消息。

公开(公告)号：US07814557B2

公开(公告)日：2010-10-12

申请号：US11578974

申请日：2005-04-21

申请人： Ken Sakamura ,  Noboru Koshizuka ,  Kazuhiko Ishii ,  Masayuki Terada ,  Kensaku Mori ,  Sadayuki Hongo

发明人： Ken Sakamura ,  Noboru Koshizuka ,  Kazuhiko Ishii ,  Masayuki Terada ,  Kensaku Mori ,  Sadayuki Hongo

IPC分类号： G06F7/04 ,  G06F17/30

CPC分类号： G06Q20/388 ,  G06F21/6218 ,  G06F21/77 ,  G06F2221/2141 ,  G06F2221/2153 ,  G06Q20/341 ,  G06Q20/35765 ,  G07F7/1008

摘要： A folder containing at least one file can be created in a file storage (17) in response to a folder creation request from an owner (30) of an IC card (10), and an access authority to the folder can be set as an access control list (18A) of the folder in response to an access authority setting request from the owner (30). Then access to the file is controlled not only on the basis of the access authority to the file set by an issuer of a voucher (issuer of the file), but also on the basis of the access authority to the folder set by the owner (30).

摘要翻译： 响应于来自IC卡（10）的所有者（30）的文件夹创建请求，可以在文件存储器（17）中创建包含至少一个文件的文件夹，并且可以将文件夹的访问权限设置为 响应于来自所有者（30）的访问权限设置请求的文件夹的访问控制列表（18A）。 然后，对文件的访问不仅基于由凭证的发行者（文件的发行者）设置的文件的访问权限，而且还基于由所有者设置的文件夹的访问权限（ 30）。

公开(公告)号：US20090158296A1

公开(公告)日：2009-06-18

申请号：US11587096

申请日：2005-04-21

申请人： Ken Sakamura ,  Noboru Koshizuka ,  Masayuki Terada ,  Kensaku Mori ,  Kazuhiko Ishii ,  Sadayuki Hongo

发明人： Ken Sakamura ,  Noboru Koshizuka ,  Masayuki Terada ,  Kensaku Mori ,  Kazuhiko Ishii ,  Sadayuki Hongo

IPC分类号： G06F9/46

CPC分类号： G06F21/64 ,  G06F9/4484 ,  G06F9/544 ,  G06F9/545

摘要： When an application issues an access request to a device via a driver, the application can immediately perform other processing.An IC memory 12 for performing predetermined processing such as encryption processing and decryption processing, an application for performing processing using the IC memory 12, an IC memory handler 14 for performing access processing to the IC memory 12, and a driver 12 that invokes the IC memory handler 14 according to an instruction from the application and returns a response to the effect that the instruction has been accepted to the application, are provided.

摘要翻译： 当应用程序通过驱动程序向设备发出访问请求时，应用程序可以立即执行其他处理。 用于执行诸如加密处理和解密处理的预定处理的IC存储器12，使用IC存储器12进行处理的应用程序，用于对IC存储器12执行访问处理的IC存储器处理器14以及调用IC 存储器处理器14根据来自应用的指令返回响应，指示已经被应用接受的结果。

公开(公告)号：US20080109371A1

公开(公告)日：2008-05-08

申请号：US11957558

申请日：2007-12-17

申请人： Ken Sakamura ,  Noboru Koshizuka ,  Hiroshi Aono ,  Kazuhiko Ishii ,  Kensaku Mori ,  Sadayuki Hongo

发明人： Ken Sakamura ,  Noboru Koshizuka ,  Hiroshi Aono ,  Kazuhiko Ishii ,  Kensaku Mori ,  Sadayuki Hongo

IPC分类号： G06Q20/00 ,  H04L9/32 ,  G06K19/00

CPC分类号： G07F7/1008 ,  G06Q10/02 ,  G06Q20/105 ,  G06Q20/341 ,  G06Q20/367 ,  G06Q20/3674 ,  G06Q20/3678 ,  G06Q20/382 ,  G06Q20/4097 ,  G07B15/00 ,  G07C9/00007

摘要： Between an IC card (1) and a electronic ticket server (2), upon purchasing an electronic ticket a public key cryptosystem is employed for a mutual authentication to keep a strict security, and a shared secret between the electronic ticket and a ticket collecting machine is sent on a secure channel as well as the electronic ticket. Upon usage of the electronic ticket, the IC card (1) and the ticket collecting machine (6) mutually judge whether they carry out the mutual authentication by using a public key cryptosystem or a symmetric key cryptosystem. When they determine to use the symmetric key cryptosystem, they carry out the mutual authentication by using the shared secret exchanged beforehand. When they determine to use the public key cryptosystem, they carry out the mutual authentication by using the same method as that used upon purchasing the electronic ticket. This method of mutual authentication can dynamically switch cryptosystems for cryptographic communication between the IC cards or between the IC card and a tamper resistant device having an equivalent function to an IC card installed in related servers or the ticket collecting machine, based on their judgment of the types of bearers, the required degree of security and the required processing speed.

摘要翻译： 在IC卡（1）和电子票务服务器（2）之间，购买电子票时，使用公共密钥密码系统进行相互认证，以保证严格的安全性，并且在电子票和收票机之间共享秘密 发送在安全的频道以及电子票。 在使用电子票时，IC卡（1）和票收集机（6）相互判断是否通过使用公钥密码系统或对称密钥密码系统进行相互认证。 当他们确定使用对称密钥密码系统时，它们通过使用事先交换的共享密钥来执行相互认证。 当他们确定使用公共密钥密码系统时，它们使用与购买电子机票时相同的方法进行相互认证。 这种相互认证方法可以动态地切换用于IC卡之间或IC卡与具有与安装在相关服务器或收票机中的IC卡具有相同功能的防篡改设备之间的加密通信的密码系统， 承载类型，所需的安全程度和所需的处理速度。