公开(公告)号：WO2009019184A1

公开(公告)日：2009-02-12

申请号：PCT/EP2008/060016

申请日：2008-07-30

Applicant: GEMALTO SA ,  CASTILLO, Laurent ,  THILL, Michel

Inventor： CASTILLO, Laurent ,  THILL, Michel

IPC: G06K7/00 ,  G06K19/07 ,  G06F13/38

CPC classification number: G06K7/0008 ,  G06K7/10297 ,  G06K19/07 ,  G06K19/0719 ,  G06K19/07733

Abstract: A boot sequence method comprises a determination step 110 and 200, a first starting step 120, 210 or 240 for starting a first interface, a first negotiation step 140 or 220 wherein a power negotiation is performed, a second negotiation step 140 or 230 for determining the interfaces to activate simultaneously, and a second starting step 150 or 230 wherein the interfaces that can be activated simultaneously are started one after each other.

Abstract translation: 引导顺序方法包括确定步骤110和200，用于启动第一接口的第一起始步骤120,210或240，执行功率协商的第一协商步骤140或220，用于确定的第二协商步骤140或230 同时激活的接口，以及第二启动步骤150或230，其中可以同时启动的接口一个接一个地启动。

公开(公告)号：WO2012072427A1

公开(公告)日：2012-06-07

申请号：PCT/EP2011/070424

申请日：2011-11-18

Applicant: GEMALTO SA ,  DELSUC, Julien ,  CHAFER, Sylvain ,  CASTILLO, Laurent

Inventor： DELSUC, Julien ,  CHAFER, Sylvain ,  CASTILLO, Laurent

IPC: H04L29/08

CPC classification number: H04L67/141 ,  H04L67/02 ,  H04L67/14 ,  H04L67/2804

Abstract: The invention is a method for allowing a host machine to access a service embedded in a physical secure element which is connected to a portable device. The method comprises the steps of: establishing a HTTP session between the host machine and the portable device by using a profile data stored into the portable device, - providing the host machine with an access to the service via a web server embedded in the portable device.

Abstract translation: 本发明是允许主机访问嵌入在连接到便携式设备的物理安全元件中的服务的方法。 该方法包括以下步骤：通过使用存储在便携式设备中的简档数据在主机与便携式设备之间建立HTTP会话， - 通过嵌入在便携式设备中的web服务器向主机提供对服务的访问 。

公开(公告)号：WO2008149194A1

公开(公告)日：2008-12-11

申请号：PCT/IB2008/001397

申请日：2008-05-30

Applicant: GEMALTO SA ,  DEHLINGER, Franck ,  MARSEILLE, François-Xavier ,  CASTILLO, Laurent

Inventor： DEHLINGER, Franck ,  MARSEILLE, François-Xavier ,  CASTILLO, Laurent

IPC: G06F12/02

CPC classification number: G06F12/0246

Abstract: The invention is a method of managing flash memory- allocation in an electronic token. Said token has a memory comprising a list area and a managed area. Said managed area comprises allocated spaces and at least one free memory chunk. Said list area comprises at least one valid entry referencing a free memory chunk. Said valid entry comprises a state field. Said method comprises the step of selecting a free memory chunk further to an allocation request where said free memory chunk is referenced by an old entry, and the step of identifying a new allocated space in the selected free memory chunk. The state field of said valid entry is preset with a virgin state. Said method comprises the step of invalidating the old entry referencing the selected free memory chunk.

Abstract translation: 本发明是一种管理电子令牌中的闪存分配的方法。 所述令牌具有包括列表区域和管理区域的存储器。 所述管理区域包括分配的空间和至少一个空闲内存块。 所述列表区域包括引用空闲内存块的至少一个有效条目。 所述有效条目包括状态字段。 所述方法包括以下步骤：进一步选择由旧条目引用所述空闲存储器块的分配请求的空闲存储器块，以及在所选择的可用存储块中识别新分配的空间的步骤。 所述有效条目的状态字段被预处理为处女状态。 所述方法包括使引用所选择的可用存储块的旧条目无效的步骤。

公开(公告)号：WO2011141579A3

公开(公告)日：2011-11-17

申请号：PCT/EP2011/057871

申请日：2011-05-16

Applicant: GEMALTO SA ,  CASTILLO, Laurent ,  LU HONGQIAN, Karen ,  SACHDEVA, Kapil

Inventor： CASTILLO, Laurent ,  LU HONGQIAN, Karen ,  SACHDEVA, Kapil

IPC: G06F21/20 ,  G06F21/22 ,  G06F21/00

Abstract: A system, method, portable security device, and associated computer programs for secure key exchange, key storage, and key usage to secure a cloud computing system having a cloud computing service hosting computing resources and providing means for accessing the resources through a network, a host computer and a portable security device connected to the host computer. The method includes associating a first key with a first computing resource hosted on the cloud computing service and storing the first key on the portable security device. A host computer is operated to request the portable security device to sign a request to access the first computing resource using the first key. The signed request to access the first computing resource is transmitted from the host computer to the cloud computing service. The cloud computing service is operated to verify the signature on the request as corresponding to the first key.

公开(公告)号：WO2011095484A1

公开(公告)日：2011-08-11

申请号：PCT/EP2011/051402

申请日：2011-02-01

Applicant: GEMALTO SA ,  CASTILLO, Laurent ,  BOMBAY, Bart ,  ALY, Asad

Inventor： CASTILLO, Laurent ,  BOMBAY, Bart ,  ALY, Asad

IPC: G06F21/00

CPC classification number: G06F21/56

Abstract: A method of operating a secure token in conjunction with a host computer to ensure that the host computer is not infected with malware introduced from the secure token by "tearing" the secure token prior to completion of a malware scan. The method includes introducing a file-scan queue identifying files needed to be scanned for malware, with that file-scan queue persistently stored on the token. If the file-scan queue is not empty upon power-up of the secure token, that condition is taken to indicate incomplete scanning of the token and that the identified files may potentially include malware. Corrective action may then be taken.

Abstract translation: 一种与主计算机一起操作安全令牌的方法，以确保主计算机未被恶意软件引导的恶意软件感染，在恶意软件扫描完成之前，通过“撕裂”安全令牌。 该方法包括引入文件扫描队列，识别需要扫描恶意软件的文件，该文件扫描队列持续存储在令牌上。 如果安全令牌上电后文件扫描队列不为空，则表示该条件表示不完整的令牌扫描，并且所识别的文件可能包含恶意软件。 然后可采取纠正措施。

公开(公告)号：WO2009071544A1

公开(公告)日：2009-06-11

申请号：PCT/EP2008/066635

申请日：2008-12-02

Applicant: GEMALTO SA ,  DEHLINGER, Franck ,  MARSEILLE, François-Xavier ,  CASTILLO, Laurent

Inventor： DEHLINGER, Franck ,  MARSEILLE, François-Xavier ,  CASTILLO, Laurent

IPC: H04W12/06

CPC classification number: H04L63/0853 ,  H04L63/083 ,  H04W8/205 ,  H04W12/06 ,  H04W12/08 ,  H04W12/12

Abstract: The invention relates to a personal token (10) for being associated with a mobile telecommunication device (20) and for storing credentials for access to an operator's network, characterized that the personal token (10) is arranged for loading the credentials into a memory (23) of the mobile telecommunication device (20), so that the mobile telecommunication device (20) is taken away from the personal token (10) and operative for connecting to the operator's network with the credentials in its memory (23).

Abstract translation: 本发明涉及一种用于与移动电信设备（20）相关联并用于存储用于接入运营商网络的凭证的个人令牌（10），其特征在于，所述个人令牌（10）被安排用于将证书加载到存储器 23），使得移动电信设备（20）被从个人令牌（10）中取走并且可操作以用其存储器（23）中的证书连接到运营商的网络。

公开(公告)号：WO2005055019A1

公开(公告)日：2005-06-16

申请号：PCT/IB2004/003976

申请日：2004-12-01

Applicant: AXALTO SA ,  NGO, VanTai ,  BOUDOU, Alain ,  CASTILLO, Laurent

Inventor： NGO, VanTai ,  BOUDOU, Alain ,  CASTILLO, Laurent

IPC: G06F1/00

CPC classification number: G06F21/604 ,  G06F12/0246 ,  G06F12/1458 ,  G06F21/6218 ,  G06F21/79 ,  G06F2221/2141 ,  G06F2221/2143 ,  G06F2221/2149

Abstract: This invention concerns a method to control the access to a sector of a Flash type memory of an electronic module which consists in checking that the owner of the data to be written has write access to a partition of said sector. The method consists in checking at least one additional rule on the sector concerned in order to allow possible erasure of the entire said sector before writing in it.The rule(s) are used to check that erasure of the sector concerned does not delete data which must be kept. This invention also concerns the electronic module in which the method is implemented

Abstract translation: 本发明涉及一种控制对电子模块的闪存型存储器的扇区的访问的方法，该方法包括检查要写入的数据的所有者是否具有对所述扇区的分区的写入权限。 该方法包括检查有关扇区上的至少一个附加规则，以便在写入之前允许整个扇区可能的擦除。该规则用于检查相关扇区的擦除是否不删除数据， 必须保存。 本发明还涉及实现该方法的电子模块

公开(公告)号：WO2008096220A3

公开(公告)日：2008-08-14

申请号：PCT/IB2008/000225

申请日：2008-02-01

Applicant: AXALTO SA ,  LU, HongQuian, Karen ,  DURAND, Stephane ,  CASTILLO, Laurent ,  ALI, Asad ,  DOLPH, Ed

Inventor： LU, HongQuian, Karen ,  DURAND, Stephane ,  CASTILLO, Laurent ,  ALI, Asad ,  DOLPH, Ed

IPC: G06F21/20 ,  G06F13/10

Abstract: A secure portable electronic device for providing secure services when used in conjunction with a host computer having a central processing unit use two hardware device protocols readily supported by computer operating systems. Other systems and methods are disclosed.

公开(公告)号：WO2008053345A1

公开(公告)日：2008-05-08

申请号：PCT/IB2007/003371

申请日：2007-10-29

Applicant: AXALTO SA ,  CASTILLO, Laurent

Inventor： CASTILLO, Laurent

IPC: G06F12/02

CPC classification number: G06F12/0246

Abstract: The invention relates to a memory index management system. The said system comprises an indexed storage memory, a memory zone containing the index and a microprocessor. The index is built in the form of a hierarchical tree structure and comprises at least two nodes. A node contains an identifier associated with a pointer that references either a node of the index or a memory zone in the storage memory. The content of a node is distributed over a first and a second memory zone that are separate in the memory zone. The first space has a first specific pointer that points to the second space and the second space has a second specific pointer whose value has a blank state.

Abstract translation: 本发明涉及一种存储器索引管理系统。 所述系统包括索引存储存储器，包含索引的存储区和微处理器。 该索引以分层树结构的形式构建并且包括至少两个节点。 节点包含与指向存储存储器中的索引节点或存储器区域的指针相关联的标识符。 节点的内容分布在在存储器区域中分离的第一和第二存储器区域中。 第一空间具有指向第二空间的第一特定指针，并且第二空间具有值具有空白状态的第二特定指针。

公开(公告)号：WO2004003927A1

公开(公告)日：2004-01-08

申请号：PCT/IB2003/002509

申请日：2003-06-27

Applicant: SCHLUMBERGER SYSTEMES ,  SCHLUMBERGER MALCO, INC. ,  SIEGELIN, Christoph ,  CASTILLO, Laurent

Inventor： SIEGELIN, Christoph ,  CASTILLO, Laurent

IPC: G11C16/10

CPC classification number: G11C16/102 ,  G11C2216/22

Abstract: This invention concerns a method to write in a Flash type memory of an electronic module. The method consists in: associating at least two physical areas of said memory, called mirror areas, with the same logical area and during a write in said logical area, in programming the content of said logical area in one of said blank mirror areas; erasing the content of all mirror areas used in a single operation at a convenient time. This invention also concerns the smart card in which the method is implemented.

Abstract translation: 本发明涉及一种写入电子模块的闪存型存储器的方法。 该方法包括：将所述存储器的称为镜像区域的至少两个物理区域与相同的逻辑区域以及在所述逻辑区域的写入期间，在所述空白镜像区域之一中对所述逻辑区域的内容进行编程; 在方便的时间擦除单次操作中使用的所有镜像区域的内容。 本发明还涉及实现该方法的智能卡。