公开(公告)号：WO2006024904A1

公开(公告)日：2006-03-09

申请号：PCT/IB2005/002137

申请日：2005-07-22

Applicant: AXALTO SA

Inventor： SACHDEVA, Kapil ,  PREVOST, Sylvain

IPC: G06F1/00

CPC classification number: G06F21/6218

Abstract: Providing application programs the right to access a data item while preventing security breaches, allowing applications and data to be independently updated, and allowing multiple applications to share the data item. Each application program has associated therewith a first public key and each data file has associated therewith a second public key. If these public keys match for a particular application program and data file, the application program is granted access to the data file.

Abstract translation: 为应用程序提供访问数据项的权利，同时防止安全漏洞，允许独立更新应用程序和数据，并允许多个应用程序共享数据项。 每个应用程序已经将第一公共密钥与每个应用程序相关联，并且每个数据文件与其相关联地具有第二公共密钥。 如果这些公共密钥与特定的应用程序和数据文件相匹配，则应用程序被授权访问数据文件。

公开(公告)号：WO2006024903A1

公开(公告)日：2006-03-09

申请号：PCT/IB2005/002136

申请日：2005-07-22

Applicant: AXALTO SA

Inventor： SACHDEVA, Kapil ,  PREVOST, Sylvain

IPC: G06F1/00

CPC classification number: G06F21/54

Abstract: Protecting an application of a multi-application smart card against unauthorized manipulations. A system and method for guarding against unauthorized modifications includes partitioning the application into a plurality of basic blocks. Basic blocks are programming atomic units that have one entry point and one exit point and comprises a set of data units. For each basic block a check value associated with a basic block is computed wherein the check value is a function of the data units of the basic block. This check value is some how remembered and later recalled and checked either during execution of the corresponding basic block of the application program or prior to execution of the application program. During or prior to execution of the basic block the re-computed check value is verified to be the same as the remembered check value. If not, an error condition is indicated and a corrective action may be taken.

Abstract translation: 保护多应用智能卡的应用免受未经授权的操纵。 用于防止未经授权的修改的系统和方法包括将应用程序划分为多个基本块。 基本块是具有一个入口点和一个出口点并且包括一组数据单元的编程原子单元。 对于每个基本块，计算与基本块相关联的校验值，其中校验值是基本块的数据单元的函数。 该检查值是在应用程序的相应基本块的执行期间之前或在执行应用程序之前的一些如何被记住并且随后被调用和检查。 在执行基本块期间或之前，重新计算的检查值被验证为与记住的检查值相同。 如果没有，则指示错误状况并且可以采取纠正措施。