公开(公告)号：US09319882B2

公开(公告)日：2016-04-19

申请号：US14439167

申请日：2013-10-25

Applicant: GEMALTO SA

Inventor： Xavier Berard ,  Richard Pico ,  Frederic Faure ,  Benoit Gonzalvo

IPC: G06F7/04 ,  H04W12/06 ,  H04L29/06 ,  H04W4/00

CPC classification number: H04W12/06 ,  H04L63/0853 ,  H04L63/0869 ,  H04W4/60

Abstract: Mutual authentication between: (i) a user terminal cooperating with a security element and an application for registering with a service, and (ii) a remote server that provides the service, by means of a third-party portal, includes: i) transmitting, to the remote server by means of the portal, signed information R enabling the security element to be authenticated in the remote server; ii) authenticating the security element in the remote server; iii) transmitting a value R′ signed by the remote server to the application by means of the portal; iv) transmitting a request for verification of the signed value R′ from the application to the security element; v) verifying, in the security element, the signature of the remote server and whether the requested service has been granted by the remote server; vi) establishing a secure connection with the remote server using the security element, and requesting that the service be executed.

Abstract translation: （i）与安全元件协作的用户终端和与服务注册的应用相互认证，以及（ii）通过第三方门户提供服务的远程服务器包括：i）发送 通过门户到远程服务器，使得能够在远程服务器中验证安全元素的签名信息R; ii）验证远程服务器中的安全元素; iii）通过门户传输由远程服务器签名的值R'到应用程序; iv）从所述应用向所述安全元件发送对所述签名值R'的验证请求; v）在安全元素中验证远程服务器的签名以及所请求的服务是否已被远程服务器许可; vi）使用安全元件与远程服务器建立安全连接，并请求执行该服务。

公开(公告)号：US20150304114A1

公开(公告)日：2015-10-22

申请号：US14372799

申请日：2013-01-21

Applicant: GEMALTO SA

Inventor： Philippe PROUST ,  Claude BARRAL

IPC: H04L9/32 ,  G06K9/00

CPC classification number: H04L9/3278 ,  G06K9/00577 ,  G06K19/073 ,  G06K19/086 ,  G06K2009/0059 ,  H04L2209/122

Abstract: The invention is a method for authenticating a device which comprises a chip and a body carrying the chip. The body comprises a graphical security feature. The method comprises the steps of: running a first physical unclonable function for generating a first response representative of the chip, extracting a first reference from the graphical security feature, authenticating the device by checking that said first response and first reference are linked by a preset mathematical function. The extracting step and the authenticating step are carried out by a machine distinct from the device.

Abstract translation: 本发明是一种认证装置的方法，该装置包括一个芯片和一个承载芯片的机体。 身体包括图形安全功能。 该方法包括以下步骤：运行用于生成表示芯片的第一响应的第一物理不可克隆功能，从图形安全特征提取第一参考，通过检查所述第一响应和第一参考是否被预设链接来认证该设备 数学函数。 提取步骤和认证步骤由与装置不同的机器进行。

公开(公告)号：US20150286811A1

公开(公告)日：2015-10-08

申请号：US14438217

申请日：2013-10-18

Applicant: GEMALTO SA

Inventor： Ly-Thanh Phan ,  Denis L'Heriteau

IPC: G06F21/32 ,  H04L12/06 ,  H04L29/06

CPC classification number: G06F21/32 ,  H04L12/06 ,  H04L63/0853 ,  H04L63/0861 ,  H04W12/06

Abstract: The invention relates to a method for authenticating a user when accessing to an application securely stored on a secure element of a portable device, said method comprising a step of authenticating the user via two authentication factors. The method comprises requesting a further authentication factor to said user, in a form of challenge-response based on a randomised request associated to a biometric data of said user.

Abstract translation: 本发明涉及一种用于在访问安全地存储在便携式设备的安全元件上的应用时认证用户的方法，所述方法包括通过两个认证因素认证用户的步骤。 该方法包括基于与所述用户的生物特征数据相关联的随机化请求，以询问 - 响应的形式向所述用户请求另外的认证因子。

公开(公告)号：US09152906B2

公开(公告)日：2015-10-06

申请号：US14483286

申请日：2014-09-11

Applicant: Gemalto SA

Inventor： Theirry Deffontaines ,  Philippe Rincel ,  Nathalie Caye

IPC: G06K19/06 ,  G06K17/00 ,  G06K19/07 ,  G06K19/077 ,  H04B5/00 ,  H02J5/00 ,  H02M7/04

CPC classification number: G06K19/0709 ,  G06K19/0723 ,  G06K19/0727 ,  G06K19/0775 ,  G06K19/07754 ,  G06K19/07762 ,  H02J7/02 ,  H02M7/04 ,  H04B5/00 ,  H04B5/0056 ,  H04B5/0081

Abstract: A device having a card (40) and a support (PC). The card has (a) no internal battery, (b) a single antenna (10) that receives electromagnetically data and power, (c) a data processor, (d) rectifying and filtering circuitry receiving the electromagnetic input and supplying at output terminals (A, B) a voltage to the processor. and (e) two terminals (36, 38) on an external surface of the card which are connected to the output terminals (A, B). The support is mechanically and electrically connectable to the card. It has (a) a power source that may be a battery, (b) surface terminals that mate with the card's external terminals, (c) a switch for connecting the power source to the surface terminals, and (d) a mechanism for holding together the card and support with the card's and the support terminal's electrically engaged to one another.

Abstract translation: 具有卡（40）和支撑（PC）的装置。 该卡具有（a）没有内部电池，（b）接收电磁数据和电力的单个天线（10），（c）数据处理器，（d）整流和滤波接收电磁输入的电路并在输出端提供 A，B）处理器的电压。 和（e）在卡的外表面上连接到输出端（A，B）的两个端子（36,38）。 支架机械和电连接到卡上。 它具有（a）可以是电池的电源，（b）与卡的外部端子配合的表面端子，（c）用于将电源连接到表面端子的开关，以及（d） 将卡片和支架与卡片和支撑终端电连接在一起。

公开(公告)号：US20150254669A1

公开(公告)日：2015-09-10

申请号：US14438647

申请日：2013-10-18

Applicant: GEMALTO SA

Inventor： Lorenzo Gaston ,  Aline Gouget

IPC: G06Q20/40 ,  G06Q20/38

CPC classification number: G06Q20/4016 ,  G06Q20/0655 ,  G06Q20/38215

Abstract: The invention relates to a system (1) for issuing electonic money, transfering said money from an e-Money sender (30) to an e-Money receiver (40) and compensating said money, said system comprising an issuer (10) or e-Money Issuer for issuing said electonic money, characterized in that it comprises at least one regulated entity (60), so that the issuance of the electonic money is regulated, and the transfer and subsequent usage or misuse of the e-money is monitored.

Abstract translation: 本发明涉及一种用于发行电子货币的系统（1），将所述货币从电子货币发送者（30）转移到电子货币接收器（40）并补偿所述货币，所述系统包括发行人（10）或e - 发行人发行所述电子钱，其特征在于，它包括至少一个受管制实体（60），从而监管电子金钱的发行，并监督电子货币的转移和随后的使用或滥用。

公开(公告)号：US20150134958A1

公开(公告)日：2015-05-14

申请号：US14603889

申请日：2015-01-23

Applicant: GEMALTO SA

Inventor： Lionel MERRIEN ,  Xavier BERARD ,  Pierre GIRARD ,  Philippe PROUST ,  Fabrice VERGNES ,  Frédéric FARIA ,  Franck IMOUCHA

IPC: H04L29/06 ,  H04W12/06 ,  H04W12/04

CPC classification number: G06F21/6218 ,  G06F8/61 ,  H04B1/3816 ,  H04L9/0825 ,  H04L63/0428 ,  H04L63/08 ,  H04L63/083 ,  H04L63/123 ,  H04L67/34 ,  H04W4/50 ,  H04W4/60 ,  H04W4/70 ,  H04W8/18 ,  H04W8/183 ,  H04W8/205 ,  H04W8/22 ,  H04W8/245 ,  H04W12/04 ,  H04W12/06 ,  H04W12/08 ,  H04W12/10 ,  H04W84/04

Abstract: The invention proposes several improvements related to the management of secure elements, like UICCs embedding Sim applications, these secure elements being installed, fixedly or not, in terminals, like for example mobile phones. In some cases, the terminals are constituted by machines that communicate with other machines for M2M (Machine to Machine) applications.

Abstract translation: 本发明提出了与安全元件的管理相关的若干改进，例如嵌入SIM应用的UICC，这些安全元件被固定地或不固定地安装在诸如移动电话的终端中。 在某些情况下，终端由与M2M（机器到机器）应用的其他机器通信的机器构成。

公开(公告)号：US20150086008A1

公开(公告)日：2015-03-26

申请号：US14395859

申请日：2013-06-05

Applicant: GEMALTO SA

Inventor： Philippe Loubet Moundi

IPC: H04L9/32

CPC classification number: H04L9/3242 ,  G01R31/31719 ,  G01R31/318588 ,  G06F21/73 ,  G06F21/74 ,  G06F21/75 ,  G06F21/77 ,  G06F2221/2105 ,  G11C17/14 ,  H01L23/525 ,  H04L9/3236 ,  H04L2209/12

Abstract: A method is intended for transforming a secure electronic device, associated to a first identifier and having a sensitive mode disabled after production, for a new sensitive use. This method comprises the steps of: (i) externally computing a cipher of the first identifier with a predetermined function fed with this first identifier and a predetermined secret key; (ii) transforming an accessible metal layer of the electronic device to form an activation pattern representing this externally computed cipher of the first identifier; (iii) getting a value representative of this activation pattern into the electronic device; and (iv) computing a second identifier with this transformed electronic device by feeding a reverse function of the predetermined function with this value and this secret key, to trigger a comeback to the sensitive mode if this second identifier is equal to the first identifier.

Abstract translation: 一种方法用于转换与第一标识符相关联的安全电子设备，并且在生产之后具有禁用敏感模式，以用于新的敏感用途。 该方法包括以下步骤：（i）用馈送有该第一标识符和预定秘密密钥的预定功能外部计算第一标识符的密码; （ii）转换电子设备的可触及的金属层以形成表示该外部计算的第一标识符的密码的激活模式; （iii）将代表该激活模式的值代入电子设备; 以及（iv）通过用该值和该秘密密钥馈送预定函数的反向函数来计算第二标识符，以便如果该第二标识符等于第一标识符则触发回到敏感模式。

公开(公告)号：US20150052359A1

公开(公告)日：2015-02-19

申请号：US13969903

申请日：2013-08-19

Applicant: Gemalto SA

Inventor： Laurent CASTILLO ,  HongQian Karen Lu ,  Asad Ali

IPC: H04L29/06

CPC classification number: H04L63/061 ,  H04L9/0822 ,  H04L9/0825 ,  H04L63/062 ,  H04L63/0853 ,  H04L2463/062

Abstract: The present invention relates to a method to securely and asynchronously provisioning keys from one source secure device to a target secure device through a key provisioning server for which the keys to be provisioned through the method remain unknown.

Abstract translation: 本发明涉及一种通过密钥提供服务器将密钥从一个源安全设备安全地和异步地提供给目标安全设备的方法，密钥提供服务器将通过该方法提供的密钥是未知的。

公开(公告)号：US20140375136A1

公开(公告)日：2014-12-25

申请号：US14289346

申请日：2014-05-28

Applicant: GEMALTO SA

Inventor： Thierry Desfontaines ,  Philippe Rincel ,  Nathalie Caye

IPC: H02J5/00 ,  H02M7/04

CPC classification number: G06K19/0709 ,  G06K19/0723 ,  G06K19/0727 ,  G06K19/0775 ,  G06K19/07754 ,  G06K19/07762 ,  H02J7/02 ,  H02M7/04 ,  H04B5/00 ,  H04B5/0056 ,  H04B5/0081

Abstract: A device having a card (40) and a support (PC). The card has (a) no internal battery, (b) a single antenna (10) that receives electromagnetically data and power, (c) a data processor, (d) rectifying and filtering circuitry receiving the electromagnetic input and supplying at output terminals (A, B) a voltage to the processor. and (e) two terminals (36, 38) on an external surface of the card which are connected to the output terminals (A, B). The support is mechanically and electrically connectable to the card. It has (a) a power source that may be a battery, (b) surface terminals that mate with the card's external terminals, (c) a switch for connecting the power source to the surface terminals, and (d) a mechanism for holding together the card and support with the card's and the support terminal's electrically engaged to one another.

Abstract translation: 具有卡（40）和支撑（PC）的装置。 该卡具有（a）没有内部电池，（b）接收电磁数据和电力的单个天线（10），（c）数据处理器，（d）整流和滤波接收电磁输入的电路并在输出端提供 A，B）处理器的电压。 和（e）在卡的外表面上连接到输出端（A，B）的两个端子（36,38）。 支架机械和电连接到卡上。 它具有（a）可以是电池的电源，（b）与卡的外部端子配合的表面端子，（c）用于将电源连接到表面端子的开关，以及（d） 将卡片和支架与卡片和支撑终端电连接在一起。

公开(公告)号：US08893227B2

公开(公告)日：2014-11-18

申请号：US13760248

申请日：2013-02-06

Applicant: Gemalto SA

Inventor： HongQian Karen Lu ,  Aline Gouget

IPC: H04L9/32 ,  H04L9/00 ,  H04L29/06 ,  G06Q20/38

CPC classification number: H04L63/08 ,  G06Q20/0652 ,  G06Q20/383 ,  G07F15/00 ,  H04L63/0407 ,  H04L63/0853 ,  Y04S40/24

Abstract: Privacy-preserving smart metering for a smart grid. Issuing a privacy-enhanced credential to a consumer node having smart meter. Operating the consumer node to associate an id with the credential and to use the id to report usage. Other systems and methods are disclosed.

Abstract translation: 用于智能电网的隐私保护智能测量。 向具有智能电表的消费者节点颁发隐私增强凭证。 操作消费者节点将ID与凭证相关联，并使用该ID来报告使用情况。 公开了其它系统和方法。