公开(公告)号：JPS62120564A

公开(公告)日：1987-06-01

申请号：JP24222786

申请日：1986-10-14

Applicant: IBM

Inventor： ABRAHAM DENNIS GEORGE ,  DOUBLE GLEN PAUL ,  NECKYFAROW STEVEN WILLIAM

IPC: G06F21/20 ,  G06F13/14 ,  G06F21/22 ,  G06K17/00 ,  H04L9/32

公开(公告)号：CA2026739C

公开(公告)日：1996-06-04

申请号：CA2026739

申请日：1990-10-02

Applicant: IBM

Inventor： ABRAHAM DENNIS GEORGE ,  ADEN STEVEN GEORGE ,  ARNOLD TODD WESTON ,  NECKYFAROW STEVEN WILLIAM ,  ROHLAND WILLIAM STANLEY

IPC: G06K19/073 ,  G06F12/12 ,  G06F21/00 ,  G06K17/00 ,  G07F7/10 ,  G11C5/00 ,  H04L9/32 ,  H04L29/06 ,  G06F12/00

Abstract: An improved security system is disclosed which uses an IC card to enhance the security functions involving component authentication, user verification, user authorization and access control, protection of message secrecy and integrity, management of cryptographic keys, and auditablity. Both the security method and the apparatus for embodying these functions across a total system or network using a common cryptographic architecture are disclosed. Authorization to perform these functions in the various security component device nodes in the network can be distributed to the various nodes at which they will be executed in order to personalize the use of the components.

公开(公告)号：DE3688316D1

公开(公告)日：1993-05-27

申请号：DE3688316

申请日：1986-10-28

Applicant: IBM

Inventor： ABRAHAM DENNIS GEORGE ,  DOUBLE GLEN PAUL ,  NECKYFAROW STEVEN WILLIAM

IPC: G06F21/20 ,  G06F13/14 ,  G06F21/22 ,  G06K17/00 ,  H04L9/32 ,  H04L9/00

公开(公告)号：DE3688316T2

公开(公告)日：1993-10-28

申请号：DE3688316

申请日：1986-10-28

Applicant: IBM

Inventor： ABRAHAM DENNIS GEORGE ,  DOUBLE GLEN PAUL ,  NECKYFAROW STEVEN WILLIAM

IPC: G06F21/20 ,  G06F13/14 ,  G06F21/22 ,  G06K17/00 ,  H04L9/32 ,  H04L9/00

公开(公告)号：DE3782328T2

公开(公告)日：1993-04-22

申请号：DE3782328

申请日：1987-12-18

Applicant: IBM

Inventor： ABRAHAM DENNIS GEORGE ,  DOUBLE GLEN PAUL ,  NECKYFAROW STEVEN WILLIAM ,  ROHLAND WILLIAM STANLEY ,  TUNG MIN-HSIUNG GEORGE

IPC: G06K19/07 ,  B42D15/10 ,  G06F9/445 ,  G06K17/00 ,  G07F7/10

Abstract: A smart card (10) which has a instruction processor (12) which is connected to a changeable memory (16) in which application programs are stored. The card is manufactured partially blank, or without an application program stored thereon, and an application program is then loaded into the changeable memory, i.e., by downloading it from a mainframe computer. In this manner, the application program in a smart card may be changes by an authorized party. Further, a flag (22) indicates whether a program has been loaded on a smart card. Also disclosed is a method of securing the program from tampering by unauthorized parties where, in response to certain instructions (such as a dump of the application program), key portions are erased prior to execution. Application programs are loaded onto the card through the use of a double timed reset, the first of which writes a predetermined sequence on the card for a set time interval. The second reset before the end of the set time interval then indicates that a program load function is to occur and causes key selected portions of the memory to be overwritten and erased to protect key data from the previous program from being maintained or used later.

公开(公告)号：DE3782328D1

公开(公告)日：1992-11-26

申请号：DE3782328

申请日：1987-12-18

Applicant: IBM

Inventor： ABRAHAM DENNIS GEORGE ,  DOUBLE GLEN PAUL ,  NECKYFAROW STEVEN WILLIAM ,  ROHLAND WILLIAM STANLEY ,  TUNG MIN-HSIUNG GEORGE

IPC: G06K19/07 ,  B42D15/10 ,  G06F9/445 ,  G06K17/00 ,  G07F7/10

Abstract: A smart card (10) which has a instruction processor (12) which is connected to a changeable memory (16) in which application programs are stored. The card is manufactured partially blank, or without an application program stored thereon, and an application program is then loaded into the changeable memory, i.e., by downloading it from a mainframe computer. In this manner, the application program in a smart card may be changes by an authorized party. Further, a flag (22) indicates whether a program has been loaded on a smart card. Also disclosed is a method of securing the program from tampering by unauthorized parties where, in response to certain instructions (such as a dump of the application program), key portions are erased prior to execution. Application programs are loaded onto the card through the use of a double timed reset, the first of which writes a predetermined sequence on the card for a set time interval. The second reset before the end of the set time interval then indicates that a program load function is to occur and causes key selected portions of the memory to be overwritten and erased to protect key data from the previous program from being maintained or used later.