公开(公告)号：KR20180051618A

公开(公告)日：2018-05-16

申请号：KR20187010237

申请日：2016-09-06

Applicant: GEMALTO SA

Inventor： FOKLE MILAS ,  GONZALVO BENOIT ,  HUYSMANS GUILLAUME

IPC: H04W12/02 ,  H04W4/50 ,  H04W4/60 ,  H04W12/06

CPC classification number: H04W4/50 ,  H04W4/60 ,  H04W12/02 ,  H04W12/06

Abstract: 본발명은일반부분및 추가부분을포함하는애플리케이션을관리하는방법이다. 일반부분은디바이스에미리설치된다. 디바이스는그것자체의지문을얻고사용자인증후에추가부분을얻기위해요청을서버에전송한다. 요청은사용자와연관된자격증명들또는사용자의참조, 지문및 애플리케이션의참조를포함한다. 서버는자격증명들과지문양자모두에기초하여키를사용하여추가부분의사이퍼링된부분을생성하고사이퍼링된부분을디사이퍼링하도록구성되는자동해독프로그램을구축한다. 디바이스는사이퍼링된부분및 자동해독프로그램을수신한다. 디바이스는지문및 자격증명들을얻고상기의지문및 자격증명들을입력파라미터들로서이용하여자동해독프로그램을실행하는것에의해추가부분을검색한다.

公开(公告)号：JP2013122786A

公开(公告)日：2013-06-20

申请号：JP2013025366

申请日：2013-02-13

Applicant: Gemalto Sa ,  ジェマルト エスアーGemalto S.A.

Inventor： JEAN-FRANCOIS MARTINENT ,  LAURENCE ROBLES ,  FRANCOIS ROUSSEL

IPC: G06K19/077 ,  G06K19/07

CPC classification number: H01Q1/2225 ,  G06K19/027 ,  G06K19/07749 ,  G06K19/0775 ,  H05K1/00 ,  H05K1/038 ,  H05K3/328 ,  H05K2201/029 ,  H05K2201/10628 ,  H05K2203/0278 ,  H05K2203/0285 ,  Y10T29/49002 ,  Y10T29/49016 ,  Y10T29/49018 ,  Y10T29/49124 ,  Y10T29/4913

Abstract: PROBLEM TO BE SOLVED: To provide a radio frequency electron insert which exhibits excellent communication characteristics, is thin, and has a low cost.SOLUTION: In a method for manufacturing a device comprising a transponder antenna connected to contact pads, the method comprises the steps of: providing or manufacturing an antenna comprising connection terminal parts 7b and 8b mounted on a substrate; placing the contact pads 5 and 6 on the substrate and connecting the contact pads to the connection terminal parts 7b and 8b of the antenna in a form of welding 38 produced by introducing energy between the contact pads 5 and 6 and the connection terminal parts 7b and 8b. In the method, the contact pads 5 and 6 are disposed so as to comprise one surface facing the connection terminal parts 7b and 8b of the antenna, the connection terminal parts 7b and 8b are disposed on the substrate and welding energy is directly applied to the contact pads 5 and 6.

Abstract translation: 要解决的问题：提供具有优异的通信特性的射频电子插入件，薄且成本低。 解决方案：在用于制造包括连接到接触焊盘的应答器天线的设备的方法中，该方法包括以下步骤：提供或制造包括安装在基板上的连接端子部分7b和8b的天线; 将接触垫5和6放置在基板上，并将接触焊盘连接到天线的连接端子部分7b和8b，其形式为焊接38，其通过在接触垫5和6与连接端子部分7b之间引入能量而产生， 8b。 在该方法中，接触垫5和6被设置为包括面向天线的连接端子部分7b和8b的一个表面，连接端子部分7b和8b设置在基板上，并且焊接能量直接施加到 接触垫5和6.版权所有（C）2013，JPO＆INPIT

公开(公告)号：JP2011060303A

公开(公告)日：2011-03-24

申请号：JP2010229577

申请日：2010-10-12

Applicant: Gemalto Sa ,  ゲマルト ソシエテ アノニム

Inventor： BONVALOT BEATRICE ,  SERVEL ERIC ,  LEYDIER ROBERT

IPC: B42D15/10 ,  G06F21/06 ,  G06F12/14 ,  G06F21/24 ,  G06K19/07 ,  G06K19/073 ,  G06K19/10 ,  H01L21/822 ,  H01L27/04

CPC classification number: G06K19/073 ,  G06F2207/7219 ,  G06K19/07 ,  H01L2924/0002 ,  H01L2924/00

Abstract: PROBLEM TO BE SOLVED: To prevent accessing secret data by complicating analysis of electronic signatures of a device with an integrated circuit. SOLUTION: The integrated circuit device (2) is designed so as to be incorporated in a portable memory object having a memory, particularly, of card format. The integrated circuit device (2) comprises at least one capacitor (8) for making the amplitude of current peaks (Idd) consumed by the integrated circuit device (2) attenuate. Attenuation of such current peaks is particularly useful in attenuating electrical signatures of smart cards. COPYRIGHT: (C)2011,JPO&INPIT

Abstract translation: 要解决的问题：通过使具有集成电路的设备的电子签名的复杂化分析来防止访问秘密数据。 解决方案：集成电路器件（2）被设计成结合在具有特别是卡格式的存储器的便携式存储器对象中。 集成电路器件（2）包括用于使集成电路器件（2）消耗的电流峰值（Idd）的振幅衰减的至少一个电容器（8）。 这种电流峰值的衰减对于衰减智能卡的电特征特别有用。 版权所有（C）2011，JPO＆INPIT

公开(公告)号：KR20180021838A

公开(公告)日：2018-03-05

申请号：KR20187002311

申请日：2016-06-23

Applicant: GEMALTO SA

Inventor： AMIEL PATRICE ,  ENDRUSCHAT MICHEL ,  PONARD SEBASTIEN ,  PEREIRA GABRIEL ,  FINE JEAN YVES ,  ZANNIN FRANCOIS ,  MARTIN MICHEL ,  DURANT DINET CAROLINE ,  BERARD XAVIER

IPC: H04W12/06 ,  H04W12/04

CPC classification number: H04W12/06 ,  H04W12/04

Abstract: 본발명은단말기와협력하는보안요소를인증하기위한적어도하나의인증파라미터를교체하는방법에관한것으로, 이인증파라미터는모바일네트워크의인증시스템이보안요소를인증할수 있게하고, 모바일네트워크는모바일네트워크운영자에의해운영되고, 이방법은: A - 엔티티로하여금보안요소에제1 인증파라미터를저장하게하는단계; B - 이엔티티로하여금모바일네트워크운영자에제1 인증파라미터를송신하게하여운영자가그것을보안요소를인증하기위한그의인증시스템에기록할수 있게하는단계; C - 이벤트의발생시, 원격플랫폼으로하여금, 다음번에보안요소가모바일네트워크에연결하려고시도할때 인증시스템에대해그의인증이실패할경우제1 인증파라미터를제2 인증파라미터로교체할권한이있음을보안요소에알려주는표시자를보안요소에송신하게하는단계; D - 이벤트의발생시, 엔티티로하여금운영자에제2 인증파라미터를송신하게하여운영자가그의인증시스템에서제1 인증파라미터를제2 인증파라미터로교체할수 있게하는단계; E - 그이후에보안요소가모바일네트워크에연결하는데 실패하는경우그리고표시자가보안요소에존재하는경우, 보안요소가제2 인증파라미터를이용하여모바일네트워크에대해자신을인증할수 있도록, 보안요소에서제1 인증파라미터를제2 인증파라미터로교체하는단계로구성된다.

Abstract translation: 本发明涉及一种用于替换至少一个认证参数以用于认证与终端协作的安全元件的方法，其中认证参数使得移动网络的认证系统能够认证安全元件， 该方法包括：A-使实体将第一认证参数存储在安全元件中; 允许B实体将第一认证参数传送给移动网络运营商，使得运营商可以将其记录在其认证系统中以认证安全元件; C-在发生事件时，如果下一次安全元件尝试连接到移动网络时，远程平台被授权用第二认证参数替换第一认证参数，如果其对认证系统的认证失败 向安全元件发送指示符以通知安全元件; 允许实体在发生D事件时将第二认证参数发送给运营商，由此允许运营商用其认证系统中的第二认证参数替换第一认证参数; E - 如果安全元件随后未能连接到移动网络，并且如果指示符存在于安全元件中，则安全元件可能能够使用第二验证参数向移动网络验证其自身， 1认证参数与第二个认证参数。

公开(公告)号：US11463251B2

公开(公告)日：2022-10-04

申请号：US16470358

申请日：2017-12-14

Applicant: GEMALTO SA

Inventor： Dominique Lacouture ,  Patrick Lambert ,  Daniel Rocha Furtado

IPC: H04L9/08

Abstract: The present invention relates to a method of securely using a first tenant secret key stored under an encrypted form in a first token (TKA) of a first tenant (A) identified by a first tenant identifier (UIDA) and having said first tenant secret key, wherein: each tenant identifier (UIDT) for a tenant (T) comprises a first value and, when said tenant (T) is allowed to use a secret key of a parent tenant (Tp) identified by a parent tenant identifier (UIDTP), said parent tenant identifier, appended before said first value, and said first token (TKA) has been generated from said first tenant identifier (UIDA) and a first tenant secret key encrypted with said first tenant identifier (UIDA) and with a first tenant customer master key (CMKA), said first tenant customer master key (CMKA) having been derived from said first tenant identifier (UIDA) and a secure domain master key (SDMK), said method comprising the following steps performed by a secure device storing said secure domain master key (SDMK), on request of a second tenant (B) identified by a second tenant identifier (UIDB): —getting a first tenant identifier (UIDA) of said first tenant (A) from said first token (TKA), —checking if the first tenant identifier (UIDA) is a prefix of or is equal to said second tenant identifier (UIDB), —when said first tenant identifier (UIDA) is a prefix of or is equal to said second tenant identifier (UIDB), recovering said first tenant secret key stored in said first token (TKA) and using it for the second tenant (B).

公开(公告)号：US11146653B2

公开(公告)日：2021-10-12

申请号：US16338595

申请日：2017-10-02

Applicant: GEMALTO SA

Inventor： Frédéric Dao ,  Frédéric Clement-Gonzales ,  David Halle ,  Jérôme Duprez ,  David Huguenin ,  Sébastien Schmitt ,  Christine Nersessian ,  Philippe Allouche ,  Thomas Dandelot

IPC: H04L29/08 ,  H04L29/06 ,  H04W8/20 ,  H04W12/088

Abstract: The invention relates to a method for sending data to at least one device. According to the invention, a data sending control server sends to at least one data storage server at least one predetermined rule or a first request for sending data to at least one data processing server. The data storage server sends, based upon the at least one predetermined rule or the first request for sending data, data to the data processing server. The data sending control server sends to the data processing server a second request for sending to the device the data received or to be received by the data processing server. The data processing server sends, based upon the second request for sending the data, the received data to the at least one device.

公开(公告)号：US11019672B2

公开(公告)日：2021-05-25

申请号：US16305306

申请日：2016-05-31

Applicant: GEMALTO SA

Inventor： Andrei Marian Hagiu

IPC: H04W76/18 ,  H04W76/12 ,  H04W8/20 ,  H04W8/24 ,  H04W92/08

Abstract: The invention relates to a method for detecting a failure in a PDP context or an EPS PDN connection. A chip incorporated within or coupled to a device receives from the device a call control PDP context activation type event or a call control EPS PDN connection activation type event. The chip receives from the device an updated value relating to an HFN start PS. The chip compares the last updated value relating to the HFN start PS to a predetermined value relating to the HFN start PS. If the last updated value relating to the HFN start PS is greater than or is less than/equal to the predetermined value relating to the HFN start PS, then the chip detects that the PDP context or the EPS PDN connection has been successfully or unsuccessfully activated respectively.

公开(公告)号：US11019054B2

公开(公告)日：2021-05-25

申请号：US15569481

申请日：2016-04-28

Applicant: GEMALTO SA

Inventor： John Philip Wilson

IPC: H04L29/06 ,  H04W12/02 ,  H04W12/033 ,  H04W12/06 ,  H04L9/32

Abstract: A method and system for providing proof of personal information includes a first device sending a request to a server for proving user information and data identifying a requester. The server generates (i) requester authentication data and associated data identifying a transaction, and (ii) a proof of user information using the user information and the requester authentication data. The server then sends the proof of user information and the associated data identifying the transaction to the first device. A second device sends to the server a request for getting authentication data associated with data identifying a transaction and the associated data identifying the transaction. In response to the request, the server sends authentication data associated with the data identifying the transaction to the second device. The second device or a verifier may then authenticate the user information only if the received authentication data matches the requester authentication data.

公开(公告)号：US10963167B2

公开(公告)日：2021-03-30

申请号：US15858882

申请日：2017-12-29

Applicant: GEMALTO SA ,  SafeNet Inc.

Inventor： Didier Hugot ,  Asad Ali ,  Gorav Arora

IPC: G06F21/79 ,  G06F3/06 ,  G06F21/62 ,  G06F21/60 ,  H04L29/06 ,  G06F21/44 ,  G06F21/31

Abstract: The invention relates to a method for managing data access. The method includes receiving at least one request for accessing data; capturing data relating to at least one current context signal during each data access request; comparing, as a current authorization step, the data relating to at least one captured current context signal to predetermined reference data relating to at least one corresponding context signal according to at least one corresponding predetermined authorization policy; determining, based upon the current authorization result and at least one predetermined dynamic data access policy, whether the data access is or is not authorized, as a data access decision; and issuing the data access decision. The invention also relates to corresponding first device, second device and system.

公开(公告)号：US10957398B2

公开(公告)日：2021-03-23

申请号：US15779311

申请日：2016-11-25

Applicant: GEMALTO SA

Inventor： Frederic Gallas ,  Rudy Yanto ,  Vincent Dumas ,  Fabrice Vergnes

IPC: G11C16/16 ,  G11C16/04 ,  G11C16/32 ,  G06F3/06

Abstract: The invention relates to a method for managing an memory LNVM erasable by block. The method comprises an index management of the memory blocks wherein the index indicates if a block is erased (Erased) or to be erased (TBE). A memory manager performs a block erasing when the memory is not in use and a block is to be erased and when the number of erased blocks is lower than a predetermined number.