公开(公告)号：US20140150104A1

公开(公告)日：2014-05-29

申请号：US14089283

申请日：2013-11-25

Applicant: OBERTHUR TECHNOLOGIES

Inventor： Nicolas Bousquet ,  Yannick Sierra

IPC: G06F21/57 ,  G06F21/55

CPC classification number: G06F21/56 ,  G06F11/28 ,  G06F21/55 ,  G06F21/57 ,  G06F21/629 ,  H04W12/0802 ,  H04W12/12

Abstract: An electronic assembly for an electronic device may include a detection module to detect a security anomaly of a Rich-OS operating system and a disabling module to disable at least one secure function of the electronic device in response to the detection. The disablement nevertheless allows use of the electronic device in fail-soft mode. The electronic assembly may be implemented such that these two modules are dependent on a trusted operating system, and the trusted operating system and the Rich-OS operating system may be stored in a memory of the electronic assembly and executed on the electronic assembly.

Abstract translation: 用于电子设备的电子组件可以包括检测模块，用于检测Rich-OS操作系统的安全异常，以及禁用模块，以响应于该检测来禁用电子设备的至少一个安全功能。 然而，禁用允许在故障软件模式下使用电子设备。 可以实现电子组件，使得这两个模块依赖于可信操作系统，并且可信操作系统和Rich-OS操作系统可以存储在电子组件的存储器中并在电子组件上执行。

公开(公告)号：US20140119617A1

公开(公告)日：2014-05-01

申请号：US14064352

申请日：2013-10-28

Applicant: OBERTHUR TECHNOLOGIES

Inventor： Marc Bertin

IPC: G06K9/00

CPC classification number: G06K9/00892 ,  G06F21/32

Abstract: A system for biometrically authenticating a user includes: elements for obtaining image data that are representative of at least one user-associated biometric feature and at least one user-associated identifier, elements for extracting the at least one biometric feature in the image data, elements for extracting the at least one identifier in the image data, elements for performing a search for a reference biometric feature associated with the at least one identifier, elements for comparing the extracted biometric feature with the reference biometric feature, and elements for authenticating the user in accordance with a result of the comparison.

Abstract translation: 用于对用户进行生物计量认证的系统包括：用于获得表示至少一个用户相关联的生物特征特征的图像数据的元件和至少一个与用户相关的标识符，用于提取图像数据中的至少一个生物特征的元素，元素 用于提取所述图像数据中的所述至少一个标识符，用于执行与所述至少一个标识符相关联的参考生物特征的搜索的元素，用于将所提取的生物特征与所述参考生物特征进行比较的元素，以及用于认证所述用户的元素 按照比较的结果。

公开(公告)号：US20140075203A1

公开(公告)日：2014-03-13

申请号：US14021868

申请日：2013-09-09

Applicant: OBERTHUR TECHNOLOGIES

Inventor： Guillaume Barbu ,  Alberto Batistello ,  Christophe Giraud ,  Soline Renner

IPC: G06F21/57

CPC classification number: G06F21/577 ,  G06F7/723 ,  G06F2207/7271

Abstract: A method of testing security of an electronic device against a combination of a side-channel attack and a fault-injection attack implemented during a method of cryptographic processing that includes: delivering a message signature based on a secret parameter and implementing a recombination of at least two intermediate values according to the Chinese remainder theorem; and verifying the signature on the basis of at least one public exponent. The method of testing includes: transmitting a plurality of messages to be signed by said electronic device; disturbing each message, including modifying the message by inserting an identical error for each message, before executing a step of determining one of the intermediate values; and analyzing physical measurements, obtained during the step of verifying the signature as a function of the message to be signed, the identical error for each message, and an assumption of a value of part of the secret parameter.

Abstract translation: 一种针对在密码处理方法期间实现的侧信道攻击和故障注入攻击的组合来测试电子设备的安全性的方法，包括：基于秘密参数传递消息签名并实现至少 根据中国剩余定理的两个中间值; 以及基于至少一个公共指数验证签名。 测试方法包括：发送要由所述电子设备签名的多个消息; 干扰每个消息，包括在执行确定中间值之一的步骤之前对每个消息插入相同的错误来修改消息; 以及分析在根据要签名的消息的函数验证签名的步骤期间获得的物理测量，每个消息的相同误差以及秘密参数的一部分的值的假设。

公开(公告)号：US20130130713A1

公开(公告)日：2013-05-23

申请号：US13681128

申请日：2012-11-19

Applicant: Oberthur Technologies

Inventor： Philippe LEDRU ,  Amaud DANREE

IPC: H04W4/02

CPC classification number: H04W4/02 ,  G06Q20/3224 ,  G06Q20/3227 ,  G06Q20/3229 ,  G06Q20/3278 ,  G06Q20/341 ,  G06Q20/352 ,  G06Q20/3574 ,  G06Q20/38 ,  H04M1/7253 ,  H04M1/72572 ,  H04M2250/04 ,  H04W4/50 ,  H04W4/60 ,  H04W4/80

Abstract: The process according to various aspects can be executed by a terminal for selecting an application executable at least in part by a secure module incorporated into the terminal, and may include a step for obtaining location information of the terminal, from a memory of the secure module, and a selection step of an application from the obtained location information.

Abstract translation: 根据各方面的处理可以由终端执行，用于至少部分地由并入终端中的安全模块来选择可执行的应用，并且可以包括从安全模块的存储器获取终端的位置信息的步骤 以及来自所获得的位置信息的应用的选择步骤。

公开(公告)号：US10715527B2

公开(公告)日：2020-07-14

申请号：US15740377

申请日：2016-06-28

Applicant: OBERTHUR TECHNOLOGIES

Inventor： Jerome Dumoulin ,  Alexis Michel

IPC: H04L29/06 ,  G06F21/31 ,  H04L9/32 ,  H04L29/08

Abstract: A method of managing profiles in a secure element where the secure element includes an active first profile associated with a first communication network and a second profile associated with a second communication network. The method includes deactivating the first profile and activating the second profile, where the deactivation and the activation are implemented following detection of a failure during a local verification pertaining to the first profile for the use of this the first profile. A local verification may be a verification in the secure element of the authorization of access of a user to the first profile, for example three failures of PIN or PUK code or of biometric authentication data, the local verification being performed in the secure element, and the failure being relative to a security failure of the first profile or to an operating failure of the first profile.

公开(公告)号：US10581589B2

公开(公告)日：2020-03-03

申请号：US15316374

申请日：2015-05-29

Applicant: OBERTHUR TECHNOLOGIES

Inventor： Emmanuelle Dottax ,  Florian Galdo ,  Jean-Philippe Vallieres

IPC: H04L9/06 ,  H04L29/06 ,  H04L9/00 ,  H04L9/32 ,  H04L9/08 ,  G07F7/08 ,  G06Q20/34 ,  H04W12/06 ,  G06F7/58

Abstract: A method for the authentication of a first electronic entity (C) by a second electronic entity (H), wherein the first electronic entity (C) implements the following steps: reception of a challenge (HCH) from the second electronic entity (H); generation of a number (CCH) according to a current value of a counter (SQC) and a first secret key (K-ENC); generation of a cryptogram (CAC) according to the challenge (HCH) and a second secret key (S-MAC); and transmission of a response including the cryptogram (CAC) to the second electronic entity (H), without transmission of the number (CCH).

公开(公告)号：US10242183B2

公开(公告)日：2019-03-26

申请号：US14965203

申请日：2015-12-10

Applicant: OBERTHUR TECHNOLOGIES

Inventor： Olivier Chamley ,  Christophe Giraud

IPC: G06F21/54 ,  G06F21/55 ,  G06F21/62

Abstract: A method of executing a program by a processor, and an electronic entity including such a processor, the method includes the following steps: a calling program calling a subprogram and passing at least one parameter; the subprogram determining a return status indicator; the subprogram determining a return word by using a predetermined function to combine at least the return status indicator and the parameter; returning to the calling program with the determined return word as a result; and the calling program comparing the return word and a determined word determined by using the predetermined function to combine at least one possible value of the return status indicator and the parameter passed when calling the subprogram.

公开(公告)号：US10157328B2

公开(公告)日：2018-12-18

申请号：US14946083

申请日：2015-11-19

Applicant: OBERTHUR TECHNOLOGIES

Inventor： Cedric Barreau ,  Bruno Javary

IPC: G06K9/00 ,  G06K9/60 ,  G06F21/32 ,  G06K9/78 ,  G06K9/32 ,  H04W12/06 ,  H04L29/06 ,  H04W88/02

Abstract: Method of authentication of a user via a terminal including acquisition elements for performing a biometric acquisition, includes: presentation to the acquisition elements by the user of a member to be verified by biometric comparison and triggering by the user a biometric acquisition to obtain an acquisition datum; biometric comparison of the acquisition datum with a prestored reference datum, the user being authenticated if the biometric comparison is positive and not authenticated otherwise, the method further including the following steps: providing the user with elements indicative of a first angle, the user applying a corrective rotation by a second angle so as to match an acquisition datum with the second angle, and in the biometric comparison step the reference datum is matched with the first angle, the biometric comparison being positive if the second angle is substantially equal to the first angle. Device adapted to implement such a method.

公开(公告)号：US20180189625A1

公开(公告)日：2018-07-05

申请号：US15740745

申请日：2016-06-28

Applicant: OBERTHUR TECHNOLOGIES

Inventor： Elodie GRAGNIC ,  Olivier BOSQUET

IPC: G06K19/077 ,  H01L23/00

CPC classification number: G06K19/07754 ,  H01L24/31 ,  H01L2224/48091 ,  H01L2224/48227 ,  H01L2924/181 ,  H01L2924/00014 ,  H01L2924/00012

Abstract: The fabrication of an electronic document includes the following steps: —obtaining of a flat body in which is made a cavity of globally rectangular shape including a deep portion surrounded by a countersink and which contains an electronic component having connection terminals situated on this countersink while having the shape of meanders 5A, 5B, —obtaining of a module including a support furnished on a so-called external face with a plurality of external contact zones and on a so-called internal face with a printed circuit including connection pads 4A, 4B of hefty form while being connected to certain at least of the external contact zones, the support being furthermore furnished, on this internal face, with a microcircuit connected to this printed circuit, this module being encased in the cavity by an anisotropic conducting adhesive whose overlap coefficient lies between 5 and 8%.

公开(公告)号：US09992016B2

公开(公告)日：2018-06-05

申请号：US15122822

申请日：2015-03-03

Applicant: OBERTHUR TECHNOLOGIES

Inventor： Alberto Battistello ,  Christophe Giraud ,  Guillaume Dabosville ,  Laurie Genelle

IPC: H04L9/14 ,  H04L9/08 ,  H04L9/00 ,  H04L9/30

CPC classification number: H04L9/08 ,  G06F7/72 ,  G06F2207/7204 ,  H04L9/004 ,  H04L9/302

Abstract: Generation of a message m of order λ(n) for a test of the integrity of the generation of a pair of cryptographic keys within the multiplicative group of integers modulo n=p·q, including: —key pair generation including, to generate p and q: a random selection of candidate integers; and a primality test; —a first search of the multiplicative group of integers modulo p for a generator a; —a second search of the multiplicative group of integers modulo q for a generator b; —a third search for a number y, as message m, verifying: 1≤γ≤n−1, where γ=a mod p and γ=b mod q, the first or second search being performed during the primality test.