公开(公告)号：WO2015071072A1

公开(公告)日：2015-05-21

申请号：PCT/EP2014/072825

申请日：2014-10-24

Applicant: GEMALTO S.A.

Inventor： GOUGET, Aline ,  GULLBERG, Peter ,  SMADJA, Philippe

IPC: H04L29/06 ,  H04W12/06

CPC classification number: H04W12/02 ,  H04L9/0869 ,  H04L9/0877 ,  H04L63/0853 ,  H04L63/0869 ,  H04L63/0876 ,  H04L63/126 ,  H04W12/04 ,  H04W12/06 ,  H04W12/10

Abstract: The present invention concerns the implementation of end-to-end security for the communication between a low cost card reader and the remote server. The purpose of the present invention is the establishment of a secure channel between the card reader and the remote server through an un-trusted communication device (e.g. a smart phone or a tablet) that is intrinsically resistant to some basic differential side-channel analysis in a context where there is no secure random number generator and no source of entropy in the card reader, while providing the following characteristics: - Mutual authentication between the card reader and the server - Secure channel based on session keys such that the keys of the secure channel related to a past transaction cannot be re-played, or the session keys of a future transaction cannot be pre-computed by the card reader and later re-use by the card reader in a legitimate transaction.

Abstract translation: 本发明涉及用于低成本读卡器和远程服务器之间的通信的端到端安全性的实现。 本发明的目的是通过不可信任的通信设备（例如，智能电话或平板电脑）在读卡器和远程服务器之间建立安全通道，其本质上抵抗一些基本的差分侧信道分析 在读卡器中没有安全随机数发生器和无熵源的上下文，同时提供以下特征： - 读卡器和服务器之间的相互认证 - 基于会话密钥的安全通道，使得安全的密钥 无法重新播放与过去交易相关的频道，或者未来交易的会话密钥不能由读卡器预先计算，并且稍后在合法交易中被读卡器重新使用。

公开(公告)号：WO2013189913A1

公开(公告)日：2013-12-27

申请号：PCT/EP2013/062586

申请日：2013-06-18

Applicant: GEMALTO S.A.

Inventor： AUSSEL, Jean-Daniel ,  GULLBERG, Peter ,  SADAGOPAN, Sridharan ,  MOCHTAR, Morenvino ,  LEROY, Pascal ,  MARSEILLE, François-Xavier

IPC: H04M1/725

CPC classification number: H04M1/72527 ,  H04M2250/14

Abstract: The A peripheral device (PD) for converting and transmitting digital data via an audio connector (J) is intended to be connected with a host device (DE2). The peripheral device (PD) comprises at least one calculator (CPU) for performing a communication between the peripheral device and a host device. The peripheral device comprises: • a digital modulator allowing modulating digital data by encoding or/and decoding digital data frames; • an audio converter (ADC, DAC) for converting an audio signal into a digital signal and vice versa; • one output audio interface (S) and one input audio interface (M) being compatible with an audio jack connector (J) and with the audio converter (ADC, DAC); • an audio jack connector (J) for connecting the peripheral device into the host device. • an audio jack connector (J) for connecting the peripheral device into the host device.

Abstract translation: 用于经由音频连接器（J）转换和传送数字数据的A外围设备（PD）旨在与主机设备（DE2）连接。 外围设备（PD）包括用于执行外围设备和主机设备之间的通信的至少一个计算器（CPU）。 外围设备包括：。 数字调制器，允许通过对数字数据帧进行编码或解码来调制数字数据; 。 用于将音频信号转换为数字信号的音频转换器（ADC，DAC），反之亦然; 。 一个输出音频接口（S）和一个输入音频接口（M）与音频插孔连接器（J）和音频转换器（ADC，DAC）兼容; 。 用于将外围设备连接到主机设备的音频插座连接器（J）。 。 用于将外围设备连接到主机设备的音频插座连接器（J）。