公开(公告)号：US20180012037A1

公开(公告)日：2018-01-11

申请号：US15202060

申请日：2016-07-05

Applicant: NXP B.V.

Inventor： Dimitri Warnez ,  Thierry Gouraud

IPC: G06F21/62 ,  G06F21/60

CPC classification number: G06F21/6245 ,  G06F21/602 ,  G06F21/604

Abstract: As may be implemented in accordance with one or more embodiments, and apparatus and/or method may involve a first circuit that initiates secure operations by interfacing with a user and providing operation trigger data that is signed cryptographically and secured from alteration, based on the interfacing. A second circuit, including a secure element, stores data secured from access by the first circuit, and executes secure operations separately from operations executed by the first circuit based on one or more commands provided by the first circuit. Validation circuitry validates and controls accesses to the second circuit by verifying a characteristic of the operation trigger data by executing stored validation instructions with the operation trigger data, and communicating information to the second circuit based on the verifying. The second circuit is responsive to the communicated information by initiating execution of the secure operations.

公开(公告)号：US20150172255A1

公开(公告)日：2015-06-18

申请号：US14569588

申请日：2014-12-12

Applicant: NXP B.V.

Inventor： Dimitri Warnez ,  Thierry Gouraud ,  Rafael Jan Josef Meeusen ,  Andreas Lessiak ,  Frank Siedel ,  Ernst Haselsteiner ,  Bruce Murray

IPC: H04L29/06 ,  G06F9/445

CPC classification number: H04L63/0428 ,  G06F8/65 ,  G06F21/572 ,  H04L9/32 ,  H04L9/3247 ,  H04L67/34 ,  H04L2463/062 ,  H04W4/50 ,  H04W8/205 ,  H04W12/02 ,  H04W12/04

Abstract: There is disclosed a method of providing a software update to a secure element comprised in a host device, comprising converting the software update into a sequence of ciphertext blocks using a chained encryption scheme, and transmitting said sequence of ciphertext blocks to the host device. Furthermore, there is disclosed a method of installing a software update on a secure element comprised in a host device, comprising receiving, by the host device, a sequence of ciphertext blocks generated by a method of providing a software update of the kind set forth, converting said sequence of ciphertext blocks into the software update, and installing the software update on the secure element. Furthermore, corresponding computer program products and a corresponding host device are disclosed.

Abstract translation: 公开了一种向包含在主机设备中的安全元件提供软件更新的方法，包括使用链接加密方案将软件更新转换成密码块序列，并将所述密文块序列发送到主机设备。 此外，公开了一种在包含在主机设备中的安全元件上安装软件更新的方法，包括由主机设备接收通过提供所述类型的软件更新的方法生成的密码块序列， 将所述密文块序列转换成软件更新，以及将所述软件更新安装在所述安全元件上。 此外，公开了相应的计算机程序产品和相应的主机设备。

公开(公告)号：US20160218876A1

公开(公告)日：2016-07-28

申请号：US15001074

申请日：2016-01-19

Applicant: NXP B.V.

Inventor： Dimitri Warnez ,  Thierry Gouraud

IPC: H04L9/32

CPC classification number: H04L9/3234 ,  G06F21/77 ,  G06F2221/2141 ,  G06Q20/3227 ,  G06Q20/3825 ,  G06Q20/40 ,  H04L9/3263 ,  H04L63/0823 ,  H04L63/12 ,  H04L63/123 ,  H04L67/34 ,  H04W12/0023 ,  H04W12/0806 ,  H04W12/10

Abstract: There is disclosed a method for managing content, comprising: generating, by a service provider, an authenticable management script configured to manage content comprised in a secure element; providing, by said service provider, the authenticable management script to the secure element. Furthermore, there is disclosed a method for managing content, comprising: receiving, by a secure element, an authenticable management script for managing content comprised in said secure element; authenticating, by said secure element, said authenticable management script; executing, by said secure element, the management script if the management script is authentic. Furthermore, there are disclosed corresponding computer program products and a corresponding secure element.

Abstract translation: 公开了一种用于管理内容的方法，包括：由服务提供商生成被配置为管理包含在安全元件中的内容的可认证管理脚本; 由所述服务提供商将可认证的管理脚本提供给安全元件。 此外，公开了一种用于管理内容的方法，包括：由安全元件接收用于管理包含在所述安全元件中的内容的可认证管理脚本; 通过所述安全元件认证所述可认证的管理脚本; 如果管理脚本是真实的，则由所述安全元件执行管理脚本。 此外，公开了相应的计算机程序产品和相应的安全元件。

公开(公告)号：US20150365231A1

公开(公告)日：2015-12-17

申请号：US14730178

申请日：2015-06-03

Applicant: NXP B.V.

Inventor： Dimitri Warnez ,  Thierry Gouraud

IPC: H04L9/08

CPC classification number: H04L9/0866 ,  H04L9/0877 ,  H04L2209/805 ,  H04L2463/061 ,  H04W12/04

Abstract: There is disclosed a method for configuring a secure element, the method comprising: storing an application in the secure element; storing a master key in the secure element; storing a key derivation program in the secure element; generating, by the key derivation program, at least one application key for use by the application, wherein said generating comprises deriving the application key from the master key and an identifier of the secure element. Furthermore, a corresponding key derivation program, computer program product and configurable secure element are disclosed.

Abstract translation: 公开了一种用于配置安全元件的方法，所述方法包括：将应用存储在所述安全元件中; 将主密钥存储在所述安全元件中; 将密钥导出程序存储在所述安全元件中; 通过密钥导出程序生成至少一个应用程序使用的应用密钥，其中所述生成包括从主密钥导出应用密钥和安全元素的标识符。 此外，公开了相应的密钥导出程序，计算机程序产品和可配置的安全元件。

公开(公告)号：US10367644B2

公开(公告)日：2019-07-30

申请号：US15001074

申请日：2016-01-19

Applicant: NXP B.V.

Inventor： Dimitri Warnez ,  Thierry Gouraud

IPC: H04L29/06 ,  H04L9/32 ,  H04L29/08 ,  G06F21/77 ,  G06Q20/32 ,  G06Q20/38 ,  G06Q20/40 ,  H04W12/10

Abstract: There is disclosed a method for managing content, including generating, by a service provider, an authenticable management script configured to manage content comprised in a secure element; providing, by the service provider, the authenticable management script to the secure element. Furthermore, there is disclosed a method for managing content, comprising: receiving, by a secure element, an authenticable management script for managing content comprised in the secure element; authenticating, by the secure element, the authenticable management script; executing, by the secure element, the management script if the management script is authentic. Furthermore, there are disclosed corresponding computer program products and a corresponding secure element.

公开(公告)号：US09979703B2

公开(公告)日：2018-05-22

申请号：US14569588

申请日：2014-12-12

Applicant: NXP B.V.

Inventor： Dimitri Warnez ,  Thierry Gouraud ,  Rafael Jan Josef Meeusen ,  Andreas Lessiak ,  Frank Siedel ,  Ernst Haselsteiner ,  Bruce Murray

IPC: H04L29/06 ,  H04L29/08 ,  H04L9/32 ,  G06F9/445 ,  H04W12/02 ,  H04W12/04 ,  G06F21/57 ,  H04W4/00 ,  H04W8/20

CPC classification number: H04L63/0428 ,  G06F8/65 ,  G06F21/572 ,  H04L9/32 ,  H04L9/3247 ,  H04L67/34 ,  H04L2463/062 ,  H04W4/50 ,  H04W8/205 ,  H04W12/02 ,  H04W12/04

Abstract: There is disclosed a method of providing a software update to a secure element comprised in a host device, comprising converting the software update into a sequence of ciphertext blocks using a chained encryption scheme, and transmitting said sequence of ciphertext blocks to the host device. Furthermore, there is disclosed a method of installing a software update on a secure element comprised in a host device, comprising receiving, by the host device, a sequence of ciphertext blocks generated by a method of providing a software update of the kind set forth, converting said sequence of ciphertext blocks into the software update, and installing the software update on the secure element. Furthermore, corresponding computer program products and a corresponding host device are disclosed.