公开(公告)号：WO2006024924A1

公开(公告)日：2006-03-09

申请号：PCT/IB2005/002564

申请日：2005-08-30

Applicant: AXALTO SA ,  MAHALAL, Ilan ,  TALES, Alain

Inventor： MAHALAL, Ilan ,  TALES, Alain

IPC: G06F1/00

CPC classification number: G06F21/10 ,  G06F2221/0711

Abstract: Access of a first device, communicating with a second, portable device, to digital content is controlled by authentication of the first device by a remote server; upon successful authentication of the first device by the remote server, securely providing by the remote server credentials to the portable device, the credentials enabling the portable device to authenticate the first device; securely providing by the remote server rights objects to the portable device, the rights objects comprising usage rights and information which is necessary to access the content; authentication of the first device by the portable device using the credentials received from the remote server; and, upon successful authentication of the first device by the portable device, delivering by the portable device to the first device the information which is necessary to access the content.

Abstract translation: 通过远程服务器对第一设备的认证来控制与第二便携式设备通信的第一设备到数字内容的访问; 在由远程服务器对第一设备进行成功认证之后，由远程服务器凭证安全地提供给便携式设备，该凭证使便携式设备能够认证第一设备; 由所述远程服务器权限对象安全地提供给所述便携式设备，所述权限对象包括访问内容所需的使用权限和信息; 便携式设备使用从远程服务器接收到的凭证对第一设备进行认证; 并且在便携式设备成功认证第一设备之后，由便携式设备向第一设备传送访问内容所必需的信息。

公开(公告)号：WO2006024903A1

公开(公告)日：2006-03-09

申请号：PCT/IB2005/002136

申请日：2005-07-22

Applicant: AXALTO SA

Inventor： SACHDEVA, Kapil ,  PREVOST, Sylvain

IPC: G06F1/00

CPC classification number: G06F21/54

Abstract: Protecting an application of a multi-application smart card against unauthorized manipulations. A system and method for guarding against unauthorized modifications includes partitioning the application into a plurality of basic blocks. Basic blocks are programming atomic units that have one entry point and one exit point and comprises a set of data units. For each basic block a check value associated with a basic block is computed wherein the check value is a function of the data units of the basic block. This check value is some how remembered and later recalled and checked either during execution of the corresponding basic block of the application program or prior to execution of the application program. During or prior to execution of the basic block the re-computed check value is verified to be the same as the remembered check value. If not, an error condition is indicated and a corrective action may be taken.

Abstract translation: 保护多应用智能卡的应用免受未经授权的操纵。 用于防止未经授权的修改的系统和方法包括将应用程序划分为多个基本块。 基本块是具有一个入口点和一个出口点并且包括一组数据单元的编程原子单元。 对于每个基本块，计算与基本块相关联的校验值，其中校验值是基本块的数据单元的函数。 该检查值是在应用程序的相应基本块的执行期间之前或在执行应用程序之前的一些如何被记住并且随后被调用和检查。 在执行基本块期间或之前，重新计算的检查值被验证为与记住的检查值相同。 如果没有，则指示错误状况并且可以采取纠正措施。

公开(公告)号：WO2006021841A2

公开(公告)日：2006-03-02

申请号：PCT/IB2005/002128

申请日：2005-07-21

Applicant: AXALTO SA ,  LI, Feng ,  LI, Ruifeng ,  LUO, Hong ,  PAN, Peter ,  OUYANG, Jing ,  ZHAO, Chang

Inventor： LI, Feng ,  LI, Ruifeng ,  LUO, Hong ,  PAN, Peter ,  OUYANG, Jing ,  ZHAO, Chang

CPC classification number: G07F7/1008 ,  G06Q20/341 ,  G06Q20/3552 ,  G06Q20/35765 ,  H04M1/274508 ,  H04M1/274516 ,  H04M1/72519 ,  H04M2250/14

Abstract: Data which is stored on a smart card is sent to a device external to the smart card. The data is stored on the smart card in a field of entries, the field of entries on the smart card is indexed and a flag is associated with each field index, indicating whether the entry belonging to the index has changed or not. The external device has an indexed field of entries which matches the field of entries on the smart card. To the external device only those entries are sent, together with their index value, where the flag associated with the index indicates a change. The flags associated with the indices whose entries were sent to the smart card are cleared. The entries are received on the external device external to the smart card, together with their index values and each of the received entries is stored in the field on the external device at the position indicated by the index value received together with the entry.

Abstract translation:

存储在智能卡上的数据被发送到智能卡外部的设备。 数据被存储在智能卡上的条目字段中，智能卡上的条目字段被索引并且标志与每个字段索引相关联，指示属于索引的条目是否已经改变。 外部设备具有与智能卡上的条目字段匹配的条目的索引字段。 对于外部设备，只有那些条目连同它们的索引值一起被发送，其中与索引相关联的标志指示改变。 与条目被发送到智能卡的索引关联的标志被清除。 这些条目在智能卡外部的外部设备上与它们的索引值一起被接收，并且每个接收到的条目被存储在外部设备的字段中的由与该条目一起收到的索引值指示的位置处。 p>

公开(公告)号：WO2006011013A3

公开(公告)日：2006-02-02

申请号：PCT/IB2005/001951

申请日：2005-07-11

Applicant: AXALTO SA ,  COMMISSARIAT ENERGIE ATOMIQUE ,  BONVALOT, Béatrice ,  FERMON, Claude ,  PANNETIER, Myriam

Inventor： BONVALOT, Béatrice ,  FERMON, Claude ,  PANNETIER, Myriam

IPC: H01L23/58 ,  G06K19/073 ,  G11C7/24

Abstract: For protecting a circuit (1) against a mechanical or electromagnetic attack, an active protection device attached to the circuit comprises: - at least one generator (13, 14) for generating a magnetic field, - at least one magnetic sensor S1, S2, S3, S4 for measuring a value of the magnetic field, - an integrity circuit connected to the at least one magnetic sensor S1, S2, S3, S4 and to the circuit (1). The integrity circuit activates a reaction procedure in the circuit if the measured value of the magnetic field made by the magnetic sensor is out of a values domain, the values domain being correlated to the generated magnetic field.

公开(公告)号：WO2005086000A2

公开(公告)日：2005-09-15

申请号：PCT/IB2005/000559

申请日：2005-03-02

Applicant: AXALTO SA ,  MAHALAL, Ilan ,  RHELIMI, Alain

Inventor： MAHALAL, Ilan ,  RHELIMI, Alain

IPC: G06F9/46

CPC classification number: G07F7/1008 ,  G06F21/6218 ,  G06F21/6281 ,  G06Q20/341 ,  G06Q20/4097

Abstract: The invention relates to an authentication and/or rights containing retrievable token such as an IC card comprising at least one physical channel of communication to at least one apparatus and at least two logical channels of communication with said at least one apparatus wherein each logical channel of communication is associated with a different execution environment.

Abstract translation: 本发明涉及包含可检索令牌的认证和/或权利，例如IC卡，其包括至少一个与至少一个设备的通信物理信道和至少两个与所述至少一个设备的通信逻辑信道，其中每个逻辑信道 通信与不同的执行环境相关联。

公开(公告)号：WO2005062266A1

公开(公告)日：2005-07-07

申请号：PCT/IB2004/004160

申请日：2004-12-16

Applicant: AXALTO SA ,  LEGER, Michel ,  RHELIMI, Alain

Inventor： LEGER, Michel ,  RHELIMI, Alain

IPC: G07F19/00

CPC classification number: G07F19/201 ,  G06Q20/1085 ,  G07F7/08 ,  G07F7/0833 ,  G07F19/20 ,  G07F19/206

Abstract: Un terminal sécurisé comporte : - des moyens principaux constitués de moyens de traitement, de moyens de mémorisation de données et de programmes, de moyens de sécurité et de moyens de saisie de données, ces éléments constitutifs des moyens principaux étant reliés entre eux par un premier bus de données, - des moyens périphériques constitués de moyens d'impression, de moyens de lecture/écriture d'une carte et de moyens d'accès à un réseau de télécommunication, ces éléments constitutifs des moyens périphériques étant reliés entre eux par un second bus de données, - des moyens d'alimentation reliés aux moyens principaux et périphériques. Les moyens principaux sont regroupés dans un boîtier principal indémontable sans détérioration d'au moins un élément constitutif des moyens principaux, et les moyens d'alimentation et les moyens périphériques sont regroupés dans au moins un boîtier apte à être connecté au boîtier principal.

Abstract translation: 安全终端包括：由处理装置，数据和程序存储装置，安全装置和数据输入装置组成的主要装置，其中主装置的部件通过第一数据总线互连; 由打印装置组成的外围装置，用于从卡读取/写入的装置和用于访问电信网络的装置，其中外围装置的组件通过第二数据总线相互连接; 以及连接到主要和外围装置的电源装置。 主要装置被分组在主壳体中，其不会在不破坏主要装置的至少一个部件的情况下被拆卸，并且外围装置被分组在能够连接到主壳体的至少一个壳体中。

公开(公告)号：WO2005062246A1

公开(公告)日：2005-07-07

申请号：PCT/IB2004/004202

申请日：2004-12-20

Applicant: AXALTO SA ,  REIGNOUX, Yves ,  CHERAMY, Séverine ,  THEVENOT, Benoît ,  LEIBENGUTH, Joseph ,  GROENINCK, Denis ,  LAFON, Jean-Pierre

Inventor： REIGNOUX, Yves ,  CHERAMY, Séverine ,  THEVENOT, Benoît ,  LEIBENGUTH, Joseph ,  GROENINCK, Denis ,  LAFON, Jean-Pierre

IPC: G06K19/077

CPC classification number: G06K19/07749 ,  G06K19/025 ,  G06K19/07722 ,  H01L2224/16 ,  H01L2224/48091 ,  H01L2224/48227 ,  H01L2224/48228 ,  H01L2224/73265 ,  H01L2924/01077 ,  H01L2924/3025 ,  H01L2924/00014

Abstract: The invention relates to an identification document (21) and a method for making such a document. According to the invention, the identification document (21) comprises at least one flexible cover layer (25), at least one flexible internal page (22) and an electronic module (26) including a flexible support layer, an antenna positioned onto said flexible support layer and an electronic radio frequency microcontroller storing identification data, said microcontroller being affixed to said flexible support layer and electrically connected to said antenna, said module (26) being affixed to said flexible layer cover layer (25) or to said flexible internal page (22). The invention relates more particularly to electronic passports and visas.

Abstract translation: 本发明涉及一种识别文件（21）及其制作方法。 根据本发明，识别文件（21）包括至少一个柔性覆盖层（25），至少一个柔性内部页面（22）和包括柔性支撑层的电子模块（26），位于所述柔性覆盖层 支撑层和存储识别数据的电子射频微控制器，所述微控制器固定到所述柔性支撑层并电连接到所述天线，所述模块（26）固定到所述柔性层覆盖层（25）或所述柔性内部页面 （22）。 本发明更具体地涉及电子护照和签证。

公开(公告)号：WO2005055021A1

公开(公告)日：2005-06-16

申请号：PCT/IB2004/004030

申请日：2004-12-06

Applicant: AXALTO SA ,  GIRAUD, Nicolas ,  RAINSARD, Stéphane

Inventor： GIRAUD, Nicolas ,  RAINSARD, Stéphane

IPC: G06F1/00

CPC classification number: G06F21/75 ,  G06F21/54 ,  G06Q40/00

Abstract: The method according to this invention concerns a method to secure the execution of a program stored in an electronic assembly comprising information processing means and information storage means. The method consists in checking the execution of each instruction of at least a portion of said program by performing during the execution of said portion a calculation using predetermined values, depending on or associated with each of said instructions and by comparing the result obtained with a precalculated value. This invention also concerns the electronic module in which said method is implemented and the card comprising said module.

Abstract translation: 根据本发明的方法涉及一种确保存储在包括信息处理装置和信息存储装置的电子组件中的程序的执行的方法。 该方法包括：根据或与每个所述指令相关联，通过在执行所述部分执行所述部分期间使用预定值的计算来检查所述程序的至少一部分的每个指令的执行，并且通过将获得的结果与预先计算的 值。 本发明还涉及其中实现所述方法的电子模块，并且包括所述模块的卡。

公开(公告)号：WO2005055020A1

公开(公告)日：2005-06-16

申请号：PCT/IB2004/003984

申请日：2004-12-02

Applicant: AXALTO SA ,  PEPIN, Cyrille ,  RAINSARD, Stéphane

Inventor： PEPIN, Cyrille ,  RAINSARD, Stéphane

IPC: G06F1/00

CPC classification number: G06F21/62 ,  G06F21/77 ,  G06F2221/2107 ,  H04L9/002 ,  H04L9/0618 ,  H04L63/0428 ,  H04L2209/20

Abstract: This invention concerns a method to ensure the security of encrypted data transmitted in blocks to an electronic assembly in several steps. The method consists, when said assembly receives a block, in decrypting the block received, processing the information contained in said block and in encrypting the processed information.

Abstract translation: 本发明涉及一种确保以多个步骤将块传送到电子组件的加密数据的安全性的方法。 该方法包括：当所述组件接收到一个块时，对接收到的块进行解密，处理包含在所述块中的信息并加密处理的信息。

公开(公告)号：WO2005055019A1

公开(公告)日：2005-06-16

申请号：PCT/IB2004/003976

申请日：2004-12-01

Applicant: AXALTO SA ,  NGO, VanTai ,  BOUDOU, Alain ,  CASTILLO, Laurent

Inventor： NGO, VanTai ,  BOUDOU, Alain ,  CASTILLO, Laurent

IPC: G06F1/00

CPC classification number: G06F21/604 ,  G06F12/0246 ,  G06F12/1458 ,  G06F21/6218 ,  G06F21/79 ,  G06F2221/2141 ,  G06F2221/2143 ,  G06F2221/2149

Abstract: This invention concerns a method to control the access to a sector of a Flash type memory of an electronic module which consists in checking that the owner of the data to be written has write access to a partition of said sector. The method consists in checking at least one additional rule on the sector concerned in order to allow possible erasure of the entire said sector before writing in it.The rule(s) are used to check that erasure of the sector concerned does not delete data which must be kept. This invention also concerns the electronic module in which the method is implemented

Abstract translation: 本发明涉及一种控制对电子模块的闪存型存储器的扇区的访问的方法，该方法包括检查要写入的数据的所有者是否具有对所述扇区的分区的写入权限。 该方法包括检查有关扇区上的至少一个附加规则，以便在写入之前允许整个扇区可能的擦除。该规则用于检查相关扇区的擦除是否不删除数据， 必须保存。 本发明还涉及实现该方法的电子模块