-
公开(公告)号:US10007904B2
公开(公告)日:2018-06-26
申请号:US13806451
申请日:2010-06-29
申请人: Mattias Eld , Petter Arvidsson , Goran Selander
发明人: Mattias Eld , Petter Arvidsson , Goran Selander
CPC分类号: G06Q20/3227 , G06Q20/3229 , G06Q20/40 , H04L63/0823
摘要: It is presented a security server arranged to set up communication between a merchant device and a customer payment application. The security server comprises: a receiver arranged to receive a first message comprising a customer identifier, an application identifier and a security token; a determiner arranged to determine whether the merchant device is authorized; a transmitter arranged to send a second message to the merchant device, the second message indicating that the merchant device is authorized to effect payment; and a channel establisher arranged to set up a secure channel between the merchant device and the customer payment application in a secure element being adapted to be comprised in a mobile communication terminal, wherein all communication between the merchant device and the customer payment application is controlled by the security server. Corresponding methods, merchant device, computer programs and computer program products are also presented.
-
公开(公告)号:US20130019323A1
公开(公告)日:2013-01-17
申请号:US13512814
申请日:2009-12-04
申请人: Petter Arvidsson , Mattias Eld
发明人: Petter Arvidsson , Mattias Eld
IPC分类号: G06F21/24
CPC分类号: H04L67/10 , G06F21/77 , G06Q20/3278 , H04L63/0492 , H04L2209/56 , H04W4/60 , H04W12/06
摘要: It presented a method, performed in a secure element, the secure element being arranged to enable user applications of the secure element to verify authenticity of incoming user application commands. The method comprises the steps of: receiving a command from a secure element reader for a user application on the secure element, the command comprising an application identifier of the user application; determining whether there is a matching user application in the secure element; invoking the matching user application; and establishing, when there is an absence of any matching user applications, a communication channel with a remote application manager server and sending an absent user application message to the application manager server indicating that the user application has been requested on the secure element. A corresponding secure element, method for an application manager server and application manager server are also presented.
-
公开(公告)号:US09332060B2
公开(公告)日:2016-05-03
申请号:US13512814
申请日:2009-12-04
申请人: Petter Arvidsson , Mattias Eld
发明人: Petter Arvidsson , Mattias Eld
CPC分类号: H04L67/10 , G06F21/77 , G06Q20/3278 , H04L63/0492 , H04L2209/56 , H04W4/60 , H04W12/06
摘要: It presented a method, performed in a secure element, the secure element being arranged to enable user applications of the secure element to verify authenticity of incoming user application commands. The method comprises the steps of: receiving a command from a secure element reader for a user application on the secure element, the command comprising an application identifier of the user application; determining whether there is a matching user application in the secure element; invoking the matching user application; and establishing, when there is an absence of any matching user applications, a communication channel with a remote application manager server and sending an absent user application message to the application manager server indicating that the user application has been requested on the secure element. A corresponding secure element, method for an application manager server and application manager server are also presented.
-
4.发明申请Method, Server, Computer Program and Computer Program Product for Communicating with Secure Element 有权方法,服务器,计算机程序和计算机程序产品与安全元素通信公开(公告)号:US20120047237A1
公开(公告)日:2012-02-23
申请号:US13264226
申请日:2009-05-08
申请人: Petter Arvidsson , Mattias Eld , Sebastien Pierrel
发明人: Petter Arvidsson , Mattias Eld , Sebastien Pierrel
IPC分类号: G06F15/16
CPC分类号: H04W12/02 , G06Q20/32 , G06Q20/3227 , G06Q20/425 , H04W12/10
摘要: It presented a method for sending a message to a secure element connected to a mobile equipment, wherein the secure element is coupled to a user of the mobile equipment. The method comprises the steps, performed in an application manager server of: receiving, from an application server, an application message and an identifier of a destination secure element; generating a secure element message from the application message; from a plurality of connectivity providers, selecting a connectivity provider capable of communicating with the destination secure element; and sending the secure element message to the selected connectivity provider for forwarding to the destination secure element. A corresponding application manager server, computer program and computer program product are also presented.
摘要翻译: 它提供了一种将消息发送到连接到移动设备的安全元件的方法,其中安全元件耦合到移动设备的用户。 该方法包括以下步骤:在应用管理服务器中执行以下步骤:从应用服务器接收应用消息和目的地安全元件的标识符; 从所述应用消息生成安全元素消息; 从多个连接提供者中选择能够与目的地安全元件通信的连接提供者; 以及将安全元素消息发送到所选择的连接提供商以转发到目的地安全元件。 还提供了相应的应用程序管理器服务器,计算机程序和计算机程序产品。
-
5.发明授权Method, server, computer program and computer program product for communicating with secure element 有权方法,服务器,计算机程序和用于与安全元件通信的计算机程序产品公开(公告)号:US09572025B2
公开(公告)日:2017-02-14
申请号:US13264226
申请日:2009-05-08
申请人: Petter Arvidsson , Mattias Eld , Sébastien Pierrel
发明人: Petter Arvidsson , Mattias Eld , Sébastien Pierrel
CPC分类号: H04W12/02 , G06Q20/32 , G06Q20/3227 , G06Q20/425 , H04W12/10
摘要: A method is presented for sending a message to a secure element connected to a mobile equipment, wherein the secure element is coupled to a user of the mobile equipment. The method comprises the steps, performed in an application manager server of: receiving, from an application server, an application message and an identifier of a destination secure element; generating a secure element message from the application message; from a plurality of connectivity providers, selecting a connectivity provider capable of communicating with the destination secure element; and sending the secure element message to the selected connectivity provider for forwarding to the destination secure element. A corresponding application manager server, computer program and computer program product are also presented.
摘要翻译: 呈现一种将消息发送到连接到移动设备的安全元件的方法,其中安全元件耦合到移动设备的用户。 该方法包括以下步骤:在应用管理服务器中执行以下步骤:从应用服务器接收应用消息和目的地安全元件的标识符; 从所述应用消息生成安全元素消息; 从多个连接提供者中选择能够与目的地安全元件通信的连接提供者; 以及将安全元素消息发送到所选择的连接提供商以转发到目的地安全元件。 还提供了相应的应用程序管理器服务器,计算机程序和计算机程序产品。
-
公开(公告)号:US20120040657A1
公开(公告)日:2012-02-16
申请号:US13140243
申请日:2008-12-18
申请人: Srdjan Krco , Mattias Eld
发明人: Srdjan Krco , Mattias Eld
摘要: A network node comprising an input, a processor and an output, the processor being coupled to the input and the output; the input and output both being connected to at least one network; in which the processor is arranged so as to receive from the input an executable application and an associated set of requirements for the application, in which the processor is arranged to determine, on receipt of an application and the associated set of requirements, a set of destination network nodes which are reachable through at least one network, to which the output is connected based upon the requirements and to send the application to the destination nodes through the output. Thus, an application can be distributed through a telecommunications network specifying only the requirements that a destination network must satisfy, rather than the addresses of the destination network nodes. Furthermore, the application can be transferred between network nodes should user equipment move through the network.
摘要翻译: 包括输入,处理器和输出的网络节点,所述处理器耦合到所述输入和所述输出; 输入和输出都连接到至少一个网络; 其中所述处理器被布置成从所述输入接收可执行应用程序和所述应用程序的相关联的一组要求,其中所述处理器被布置为在接收到应用程序和所述相关联的一组要求时确定一组 可通过至少一个网络到达的目的网络节点,输出根据需求连接到该网络,并通过输出将应用程序发送到目标节点。 因此,可以通过指定目的地网络必须满足的要求而不是目的地网络节点的地址的电信网络来分发应用。 此外,如果用户设备通过网络移动,应用程序可以在网络节点之间传输。
-
7.发明授权Method, apparatus and computer program product for invoking local communication application services 有权用于调用本地通信应用服务的方法,设备和计算机程序产品公开(公告)号:US08890661B2
公开(公告)日:2014-11-18
申请号:US13265700
申请日:2009-04-24
申请人: Jakob Saros , Mattias Eld
发明人: Jakob Saros , Mattias Eld
CPC分类号: H04L67/10 , H04L67/16 , H04L67/18 , H04L67/20 , H04L67/2809 , H04L67/30 , H04M1/72525 , H04M2250/04 , H04W4/02 , H04W4/18 , H04W4/80
摘要: It is presented a method for invoking an application service in response to a tag reading by a mobile terminal. The method comprises the steps of: receiving an input message, the input message comprising data being associated with a tag read by the mobile terminal using local communication, the input message further comprising a recipient identifier linked to the mobile terminal; determining, using a plurality of parameters associated with the tag reading, a plurality of matching application servers, wherein conditions of a tag reading subscription for each of the matching application servers matches the plurality of parameters; and sending an invocation message to each of the matching application servers to invoke a respective application service of each of the matching application servers, the invocation message comprising the recipient identifier enabling each of the application services to send content to the user equipment and the tag data.
摘要翻译: 提出了一种响应于移动终端的标签读取来调用应用服务的方法。 该方法包括以下步骤:接收输入消息,所述输入消息包括与由所述移动终端使用本地通信读取的标签相关联的数据,所述输入消息还包括链接到所述移动终端的接收者标识符; 使用与所述标签读取相关联的多个参数来确定多个匹配应用服务器,其中所述匹配应用服务器中的每一个的标签读取订阅的条件与所述多个参数匹配; 以及向每个匹配的应用服务器发送调用消息以调用每个匹配的应用服务器的相应应用服务,所述调用消息包括使所述应用服务中的每一个向所述用户设备发送内容的所述接收者标识符以及所述标签数据 。
-
公开(公告)号:US09531836B2
公开(公告)日:2016-12-27
申请号:US13140243
申请日:2008-12-18
申请人: Srdjan Krco , Mattias Eld
发明人: Srdjan Krco , Mattias Eld
摘要: A network node comprising an input, a processor and an output, the processor being coupled to the input and the output; the input and output both being connected to at least one network; in which the processor is arranged so as to receive from the input an executable application and an associated set of requirements for the application, in which the processor is arranged to determine, on receipt of an application and the associated set of requirements, a set of destination network nodes which are reachable through at least one network, to which the output is connected based upon the requirements and to send the application to the destination nodes through the output. Thus, an application can be distributed through a telecommunications network specifying only the requirements that a destination network must satisfy, rather than the addresses of the destination network nodes. Furthermore, the application can be transferred between network nodes should user equipment move through the network.
摘要翻译: 包括输入,处理器和输出的网络节点,所述处理器耦合到所述输入和所述输出; 输入和输出都连接到至少一个网络; 其中所述处理器被布置成从所述输入接收可执行应用程序和所述应用程序的相关联的一组要求,其中所述处理器被布置为在接收到应用程序和所述相关联的一组要求时确定一组 可通过至少一个网络到达的目的网络节点,输出根据需求连接到该网络,并通过输出将应用程序发送到目标节点。 因此,可以通过指定目的地网络必须满足的要求而不是目的地网络节点的地址的电信网络来分发应用。 此外,如果用户设备通过网络移动,应用程序可以在网络节点之间传输。
-
公开(公告)号:US08516133B2
公开(公告)日:2013-08-20
申请号:US12256908
申请日:2008-10-23
IPC分类号: G06F15/16
CPC分类号: G06F21/445 , G06F2221/2129 , H04L9/321 , H04L9/3263 , H04L63/062 , H04L2209/56 , H04L2209/80 , H04W12/04
摘要: Methods and systems taught herein allow communication device manufacturers to preconfigure communication devices to use preliminary access credentials to gain temporary network access for downloading subscription credentials, and particularly allow the network operator issuing the subscription credentials to verify that individual devices requesting credentials are trusted. In one or more embodiments, a credentialing server is owned or controlled by the network operator, and is used by the network operator to verify that subscription credentials are issued only to trusted communication devices, even though such devices may be referred to the credentialing server by an external registration server and may be provisioned by an external provisioning server. Particularly, the credentialing server interrogates requesting devices for their device certificates and submits these device certificates to an external authorization server, e.g., an independent OCSP server, for verification. A common Public Key Infrastructure (PKI) may be used for operator and device certificates.
摘要翻译: 本文教导的方法和系统允许通信设备制造商预先配置通信设备以使用初步访问凭证来获得用于下载订阅凭证的临时网络访问,并且特别地允许网络运营商发布预订凭证来验证请求凭证的各个设备是否被信任。 在一个或多个实施例中,凭证服务器由网络运营商拥有或控制,并且被网络运营商用于验证订阅凭证仅被发送到受信任的通信设备,即使这些设备可以被引用到凭证服务器 外部注册服务器,并且可以由外部配置服务器提供。 特别地,凭证服务器询问请求设备的设备证书,并将这些设备证书提交给外部授权服务器,例如独立的OCSP服务器,以进行验证。 通用公钥基础设施(PKI)可用于运营商和设备证书。
-
公开(公告)号:US08738910B2
公开(公告)日:2014-05-27
申请号:US13514100
申请日:2009-12-07
申请人: Göran Selander , Yi Cheng , Mattias Eld , Frank Hartung , Michael Liljenstam , Mats Näslund
发明人: Göran Selander , Yi Cheng , Mattias Eld , Frank Hartung , Michael Liljenstam , Mats Näslund
IPC分类号: H04L9/32
CPC分类号: H04N7/17318 , H04L9/0844 , H04L12/282 , H04L63/18 , H04L65/4076 , H04L65/4084 , H04L67/10 , H04L2012/2849 , H04L2209/60 , H04N7/162 , H04N21/25816 , H04N21/42204 , H04N21/4227 , H04N21/43637 , H04N21/4405 , H04N21/63345
摘要: Methods and arrangements for enabling the use of a first device (300) for controlling transfer of media content from a content provider (306) to a second device (302). The first device has a pre-established security association with the communications network. When the network detects a request made by the first device for delivery of media content to the second device, key information is established which enables determination of one or more media keys for encryption of the media content. The network sends key information to the content provider and to the first device. The content provider then delivers media content encrypted by the media key(s) to the second device. Further, the first device forward the media key(s) over a local communication link to the second device for decryption of media content encrypted by the media key(s) when delivered by the content provider.
摘要翻译: 允许使用第一设备(300)来控制媒体内容从内容提供商(306)传送到第二设备(302)的方法和装置。 第一个设备与通信网络有预先建立的安全关联。 当网络检测到由第一设备发送用于向第二设备传送媒体内容的请求时,建立了能够确定用于加密媒体内容的一个或多个媒体密钥的密钥信息。 网络向内容提供商和第一个设备发送密钥信息。 然后,内容提供商将由媒体密钥加密的媒体内容传送到第二设备。 此外,当由内容提供商递送时,第一设备通过本地通信链路将媒体密钥转发到第二设备以解密由媒体密钥加密的媒体内容。
-
-
-
-
-
-
-
-
-
搜索结果
11 条记录 (耗时 0.015 秒)