公开(公告)号：US10608826B2

公开(公告)日：2020-03-31

申请号：US15536387

申请日：2015-12-09

申请人： GEMALTO SA

发明人： Alain Rhelimi

IPC分类号： H04L9/00 ,  H04L9/32 ,  H04L29/06 ,  H04L9/06

摘要： The present invention relates to a method, for a provider entity belonging to a provider group, to authenticate its belonging to an attribute provider group to a verification entity in a non-traceable manner without necessitating to share secret or large constants compromising privacy. Both entities comprise at least one attribute group arborescence, this attribute group arborescence being shared by the provider entity and the verification entity when the provider entity has the attribute. According to the invention, when a verification is triggered, the verification entity calculates a certificate from the attribute group arborescence, said certificate being calculated from the authentication tokens of the groups along the arborescence from the attribute verification group's token to the consumer group's token.

公开(公告)号：US10116654B2

公开(公告)日：2018-10-30

申请号：US14424234

申请日：2013-09-03

申请人： GEMALTO SA

发明人： Alain Rhelimi

IPC分类号： H04L29/06 ,  H04W12/06 ,  H04W12/04 ,  G06F21/32 ,  G06F21/34 ,  G06F21/44

摘要： The invention proposes a method for cloning a first secure element from a backup secure element of a user, said backup secure element comprising at least credentials of said user. The method comprises a preliminary phase of checking the authenticity of the first secure element using a second secure element, said second secure element being able to be paired with a third secure element.

公开(公告)号：US11481523B2

公开(公告)日：2022-10-25

申请号：US15541000

申请日：2015-12-16

申请人： GEMALTO SA

发明人： Alain Rhelimi

IPC分类号： G06F21/77 ,  G06F21/57 ,  G06F21/71 ,  G06F21/44 ,  G06F21/60

摘要： The invention relates to a secure element device comprising at least one processor, at least one communication interface, at least one memory RAM and NVM and at least one bus access controller, wherein the bus access controller defines at least a first area PBL, a second area SBL and a secure area MZ. The first area comprises a first loader program capable of loading a program package in the second area. The secure area comprises an authentication key capable of authenticating the program package loaded in the second area. After authentication of the program package loaded in the second area, the access right of the first loader program is changed in such a way that a program in the first area can no more access the second area.

公开(公告)号：US10915634B2

公开(公告)日：2021-02-09

申请号：US15572118

申请日：2016-04-18

申请人： GEMALTO SA

发明人： Alain Rhelimi ,  Serge Barbe

IPC分类号： G06F12/00 ,  G06F21/57 ,  G06F21/77 ,  G06F9/4401 ,  G06F21/76

摘要： A secure element equips a device usable by N image owners, and comprises a first non-volatile memory divided into N parts storing image owner data, a second non-volatile memory storing a primary boot loader, a third non-volatile memory divided into N parts storing image owner session private data, a first random access memory divided into N parts associated to the N first non-volatile memory parts, a second random access memory for temporarily storing image owner data during an access session, and a controller activated by the primary boot loader when the device starts an access session, and then controlling accesses to the non-volatile memories and random access memories according to rules, and erasing the second random access memory each time the device starts an access session.

公开(公告)号：US20150215311A1

公开(公告)日：2015-07-30

申请号：US14424234

申请日：2013-09-03

申请人： GEMALTO SA

发明人： Alain Rhelimi

IPC分类号： H04L29/06 ,  G06F21/44 ,  G06F21/32 ,  H04W12/06 ,  G06F21/34

CPC分类号： H04L63/0853 ,  G06F21/32 ,  G06F21/34 ,  G06F21/44 ,  G06F21/445 ,  G06F2221/2115 ,  H04L63/0861 ,  H04W12/04 ,  H04W12/06

摘要： The invention proposes a method for cloning a first secure element from a backup secure element of a user, said backup secure element comprising at least credentials of said user. The method comprises a preliminary phase of checking the authenticity of the first secure element using a second secure element, said second secure element being able to be paired with a third secure element.

摘要翻译： 本发明提出了一种用于从用户的备份安全元件克隆第一安全元件的方法，所述备份安全元件至少包括所述用户的凭证。 该方法包括使用第二安全元件检查第一安全元件的真实性的初步阶段，所述第二安全元件能够与第三安全元件配对。

公开(公告)号：US10693842B2

公开(公告)日：2020-06-23

申请号：US15567346

申请日：2016-04-13

申请人： GEMALTO SA

发明人： Alain Rhelimi

IPC分类号： G06F12/14 ,  H04L9/00 ,  H04L9/08 ,  H04L29/06 ,  G06F21/79 ,  G09C1/00 ,  H04L9/06 ,  G06F21/74 ,  G06F21/85

摘要： A device for managing multiple accesses to a secure module of a system on chip of an apparatus, and comprises a stream ciphering means arranged for computing on the fly and in a single pass an integrity check for data to be transferred between secure and non secure modules of the system on chip with a seed and an encryption key, and for encrypting/decrypting on the fly and in this single pass these data with the encryption key, and a control means for providing the encryption key and seed to the stream ciphering means and for requesting data transfer and retrieving status to the secure and non secure modules for allowing the transfer of encrypted/decrypted data between the secure and non secure modules.

公开(公告)号：US10298394B2

公开(公告)日：2019-05-21

申请号：US15121910

申请日：2015-02-20

申请人： GEMALTO SA

发明人： Alain Rhelimi

IPC分类号： H04L9/32 ,  H04L9/08 ,  H04L29/06

摘要： The present invention relates to a method to authenticate two devices to establish a secure channel, one belonging to a first group of devices, the second belonging to a second group of devices, in a non-traceable manner without the need to share a secret, each group being authenticated by an authority that stores a group secret key into the devices under its authority. The method uses a set of authentication tokens, one for each of the other groups with which the device is intended to communicate, said authentication token comprising at least a random number and a cipher of at least this random number by the secret key of each of these other groups, said authentication tokens being further renewed at each communication with a device from another group.

公开(公告)号：US20140325614A1

公开(公告)日：2014-10-30

申请号：US14361073

申请日：2012-11-29

申请人： GEMALTO SA

发明人： Alain Rhelimi

IPC分类号： H04W12/06 ,  H04M1/725

CPC分类号： H04M1/7253 ,  G07C9/00087 ,  H04B13/005 ,  H04W12/003 ,  H04W12/00508 ,  H04W12/06 ,  H04W92/08

摘要： The invention relates to a system for pairing a terminal with an element worn on the wrist or hand of a user, the element comprising a secure element for communicating with the terminal. According to the invention: the element contains an accelerometer; the terminal includes a means for recording the movements of the element; the system comprises a means for comparing the signature of the accelerometer with that of the recording means of the terminal in order to authorize, if the signatures are similar, the pairing of the terminal with the secure element.

摘要翻译： 本发明涉及一种用于将终端与佩戴在用户的手腕或手上的元件配对的系统，该元件包括用于与终端通信的安全元件。 根据本发明：元件包含加速度计; 终端包括用于记录元素的移动的装置; 系统包括用于将加速度计的签名与终端的记录装置的签名进行比较的装置，以便如果签名相似，则授权终端与安全元件的配对。

公开(公告)号：US09325486B2

公开(公告)日：2016-04-26

申请号：US14454625

申请日：2014-08-07

申请人： GEMALTO SA

发明人： Alain Rhelimi ,  Robert Leydier

IPC分类号： H04J7/00 ,  H04L5/14 ,  H04L25/02 ,  H04L25/49

CPC分类号： H04L5/14 ,  H04L5/1423 ,  H04L25/02 ,  H04L25/4902 ,  H04L25/4906

摘要： A two-way communication device has a master transmitter connected to at least one slave transmitter by an active connection wire. The master transmitter and the slave transmitter have a common reference. The master transmitter can transmit a master signal to the slave transmitter and the slave transmitter can transmit a slave signal to the master transmitter. The master signal is a digital modulation in voltage. The slave signal is a digital modulation in current.

摘要翻译： 双向通信设备具有通过主动连接线连接到至少一个从发射机的主发射机。 主发送器和从发送器具有公共参考。 主发送器可以将主信号发送到从发送器，从发送器可以向主发送器发送从信号。 主信号是电压中的数字调制。 从机信号是电流中的数字调制。