公开(公告)号：WO2023073124A1

公开(公告)日：2023-05-04

申请号：PCT/EP2022/080122

申请日：2022-10-27

Applicant: THALES DIS FRANCE SAS

Inventor： FOKLE KOKOU, Milas ,  HUYSMANS, Guillaume ,  TEGLIA, Yannick

IPC: G06F21/51 ,  G06F21/57

Abstract: The present invention relates to a method for securely executing an application on a second device, wherein a memory space of said application comprises an execution enclave configured to access a memory of the second device storing sealed data obtained by a sealing enclave by sealing on a first device a predetermined message with a first hardware key associated to said first device based on a value depending on an identity of said sealing enclave, and comprising, performed by said execution enclave to verify that the second device is authorized to execute the application, − a) retrieving (E1) said sealed data in said memory, − b) retrieving (E2) an enclave identity of said execution enclave, − c) based on said retrieved enclave identity, obtaining a second hardware key associated to said second device and verifying that the second device is authorized to execute the application using said obtained second hardware key and said retrieved sealed data (E3), − d) if verification is successful, continuing (E4) said application's execution on said second device.

公开(公告)号：WO2023072750A1

公开(公告)日：2023-05-04

申请号：PCT/EP2022/079367

申请日：2022-10-21

Applicant: THALES DIS FRANCE SAS

Inventor： BYRNE, David ,  DOSSETTO, Lucile ,  OTTOBON, Stéphane ,  SEBAN, Frédérick

IPC: G06K19/077 ,  G06K19/02

Abstract: A contactless electronic module (1) for a data carrier (2) comprises a substrate (3), at least one electronic chip (4), and at least one electrical connector (5). The electronic chip (4) is arranged on the substrate (3), and the electrical connector (5) is in connection with the electronic chip (4). The substrate (3) is electrically non-conductive.

公开(公告)号：WO2023067136A1

公开(公告)日：2023-04-27

申请号：PCT/EP2022/079370

申请日：2022-10-21

Applicant: THALES DIS FRANCE SAS

Inventor： SYRJANEN, Taru ,  LAPPALAINEN, Kristian ,  MAKINEN, Kai ,  WADELL, Daniel

IPC: B42D25/24 ,  B42D25/305

Abstract: A security device (1) for securing a substrate (2) comprises at least one connection device (3), and at least one output device (4). The security device (1) is configured to be connected to the substrate (2) via the connection device (3). The output device (4) is configured to emit at least one output signal. The connection device (3) and the output device (4) are configured to be coupled to one another. The security device (1) is configured such, that the output signal is outputted to an outside of the security device (1) when the connection device (3) and the output device (4) are coupled to one another. A change in the coupling between the connection device (3) and the output device (4) results in a change in the output signal or in an absence of the output signal, and wherein the change in the output signal or the absence of the output signal is indicative of a manipulation of the security device (1) and/or of the substrate (2).

公开(公告)号：WO2023025640A1

公开(公告)日：2023-03-02

申请号：PCT/EP2022/073015

申请日：2022-08-17

Applicant: THALES DIS FRANCE SAS

Inventor： GRIGORESCU, Sorin ,  BON, Thierry ,  SCHOENENBERGER, Ivo ,  SAILER, Christian

IPC: B42D25/24 ,  B42D25/41

Abstract: A secure device (1) for securing an article (2) comprises at least one connection element (3), at least one data carrier (4), and at least one security element (5). The connection element (3) is configured to be connected to the article (2), and the data carrier (4) is in connection with the connection element (3) and is configured to be connected to the article (2) via the connection element (3). The connection element (3) is configured to interact with impinging electromagnetic radiation such, that at least one marking element (6) is generated in the connection element (3) upon the impingement of the electromagnetic radiation. The data carrier (4) is configured to interact with impinging electromagnetic radiation such, that at least one further marking element (7) is generated in the data carrier (4) upon the impingement of the electromagnetic radiation. The security element (5) comprises or consists of the marking element (6) of the connection element (3) and of the further marking element (7) of the data carrier (4).

公开(公告)号：WO2023016781A1

公开(公告)日：2023-02-16

申请号：PCT/EP2022/070706

申请日：2022-07-22

Applicant: THALES DIS FRANCE SAS

Inventor： LARINA, Nina ,  SUBRA, Sebastien ,  GOURDEN, Yannick ,  ANDRIEUX, David ,  RENOUARD, Jérémy

IPC: B41F15/04 ,  B41M3/00 ,  B41M3/14 ,  B41M5/00 ,  B42D25/23 ,  B42D25/26 ,  B41J2/01

Abstract: A data carrier (1) extends along an extension direction (E) and comprises at least one carrier body (2) and at least one processing layer (3). The processing layer (3), at least in an unprocessed state of the processing layer (3), comprises one or more reactive elements (4) and one or more unreactive elements (5). The reactive elements (4) are configured to interact with impinging electromagnetic radiation (R) upon a processing of the processing layer (3). The processing layer (3), in a processed state of the processing layer (3), comprises one or more reacted elements (6) being generated from the reactive elements (4). The processing layer (3) in the processed state furthermore comprises one or more further reacted elements (7) being generated from one or more of the unreactive elements (5) upon the interaction of the reactive elements (4) with the impinging electromagnetic radiation (R) and furthermore comprises one or more unreactive elements (5) remaining non-interacting. The processing layer (3) in the processed state furthermore comprises at least one personalization element (100), which personalization element (100) comprises or consists of the non-interacting unreactive elements (8).

公开(公告)号：WO2022263413A1

公开(公告)日：2022-12-22

申请号：PCT/EP2022/066115

申请日：2022-06-14

Applicant: THALES DIS FRANCE SAS

Inventor： GOUGET, Aline ,  MARTINENT, Frédéric

IPC: G06F21/62 ,  G06Q30/02

Abstract: The present invention relates to a method for privacy preserving retargeting of a user (Uk) among a plurality of users in a digital advertising system comprising at least one publisher (Pi, P2,... ), at least one advertiser (Al,A2.... ) and a matching server configured to be connected to the publishers and advertisers using a network, wherein the method comprises an enrollment phase and an online phase. During the enrollment phase publishers and advertisers create identifiers for users based on a common first identifier using the publisher's and advertiser's secret key, respectively. A new identifier is created based on these identifiers such that during the online phase a matching can take place without the exchange of the original user identifier.

公开(公告)号：WO2022242991A1

公开(公告)日：2022-11-24

申请号：PCT/EP2022/061022

申请日：2022-04-26

Applicant: THALES DIS FRANCE SAS

Inventor： FAVREAU, Valentin ,  CHAFER, Sylvain ,  LELOUP, Laurent

IPC: H04W4/80 ,  G06Q20/00 ,  H04W12/06

Abstract: The invention is a method for controlling an apparatus configured to perform a plurality of actions. The method comprises a step of establishing a communication session between the apparatus and a card complying with ID-1, ID-2 or ID-3 format as defined by ISO/ IEC7810 : 2019, a step of sending a command from the apparatus to the card, and a step in which once the card received the command and until the end of the communication session, the card fully controls the behavior of the apparatus by sending a series of requests, each request of said series being interpreted by the apparatus to identify a corresponding action from the plurality of actions.

公开(公告)号：WO2022228837A1

公开(公告)日：2022-11-03

申请号：PCT/EP2022/059026

申请日：2022-04-05

Applicant: THALES DIS FRANCE SAS

Inventor： LEROY, Pascal ,  ZEAMARI, Ali

IPC: G06F21/12 ,  G06F21/77 ,  G06Q20/34 ,  G06Q20/40 ,  G06Q20/32 ,  G06F21/31 ,  G06F21/62 ,  H04L9/40 ,  H04W12/06 ,  H04W12/08

Abstract: The invention is a method for controlling a smart card (10) allocated to a user (50) comprising the steps of establishing a wireless communication channel (40) between the smart card and a portable apparatus (20); determining by the smart card that control of authentication of said user depends on the portable apparatus and requesting accordingly a permission data (24) reflecting a specific right allocated to a function provided by the smart card; capturing an input data (22) from a user through an interface (26) embedded in the portable apparatus; performing, by the portable apparatus, an authentication of the user based on said input data; depending on a result of said authentication, identifying said permission data by the portable apparatus and sending the permission data to the smart card; and activating or deactivating said specific right in the smart card according to the permission data.

公开(公告)号：WO2022189133A1

公开(公告)日：2022-09-15

申请号：PCT/EP2022/054330

申请日：2022-02-22

Applicant: THALES DIS FRANCE SAS

Inventor： OHANIAN, Henri ,  JOUBERT, Nicolas ,  BARRAS, Cyril ,  BOUZAYANE, Oussama

IPC: H04W12/03 ,  H04W12/047 ,  H04W12/069 ,  H04W12/30

Abstract: The invention concerns a method of replacing a current key (KEY_1) in a security element co- operating with a terminal in a network operated by a network operator, the method comprising: A – When receiving an encrypted message from a distant platform, trying to decrypt the encrypted message by using the current key (KEY_1); B – If the current key (KEY_1) is not the key used by the distant platform to encrypt the message, selecting in a table stored in the secure element another key and try to decrypt the encrypted message by using the other key, the other key being: - a key called rescue key (RESCUE_KEYS) and being part of a window (30) of the table, the window (30) comprising n rescue keys, with n being >=0, or - a key called blocking key (31) if n=0 or if the blocking key has a higher priority than the rescue keys (RESCUE_KEYS), the blocking key (31) being stored outside the window (30), C – If n>0 and the rescue key permits to decrypt the encrypted message, replacing atomically the current key (KEY_1) by the rescue key and do not use the current key (KEY_1) anymore, the rescue key replacing the current key (KEY_1) and, otherwise, try to decrypt the encrypted message by using another rescue key of the window (30) if such another rescue key exists, until all rescue keys have been selected and used for decrypting the encrypted message and, if none of the rescue keys permit to decrypt the encrypted message, select the blocking key (31), D – If the blocking key (31) permits to decrypt the encrypted message, block the corresponding functionality of the security element.

公开(公告)号：WO2022184385A1

公开(公告)日：2022-09-09

申请号：PCT/EP2022/052956

申请日：2022-02-08

Applicant: THALES DIS FRANCE SAS

Inventor： FAVREAU, Valentin ,  PENALVER, Olivier ,  BOURG, Anne-Laure

IPC: G06Q20/34 ,  G06Q20/32 ,  G07F19/00 ,  G06K19/07 ,  G06K19/077

Abstract: A method for managing a transaction with a card (10) allocated to a user. The method comprises the following steps: - Establishing a first communication link (61) between the card and a terminal (20), - Receiving by the card, a transaction command (41) comprising a parameter (45) specific to the transaction, - In response to detecting a preset event, turning on an internal battery (16) embedded in the card, using power provided by said internal battery to send the parameter to a portable apparatus (30) distinct from the terminal through a wireless communication channel (63), then turning off the internal battery, and - In response to receipt of the parameter, providing the user with the parameter by the portable apparatus.