公开(公告)号：US20180176211A1

公开(公告)日：2018-06-21

申请号：US15578895

申请日：2016-05-24

Applicant: GEMALTO SA

Inventor： Gil BERNABEU ,  Olivier POTONNIEE ,  HongQian Karen LU

IPC: H04L29/06 ,  H04L9/08 ,  H04L9/32 ,  H04L9/30

CPC classification number: H04L63/0823 ,  H04L9/0844 ,  H04L9/3013 ,  H04L9/3242 ,  H04L63/0428 ,  H04L63/0853 ,  H04L63/166 ,  H04W12/003 ,  H04W12/00407 ,  H04W12/06

Abstract: The invention is a method for managing a secure channel between a server and a secure element embedded in a first device, wherein a user agent embedded in a second device establishes a HTTPS session with the server and retrieves a web application from the server, the method comprising the steps: the server sends to the web application an application certificate which is linked to a specific data reflecting the identity of the server, the secure element gets the application certificate and the specific data, the secure element checks the validity of the application certificate and that the application certificate is consistently linked to the specific data, in case of successful checks, the secure element and the server generate an ephemeral session key and use it for opening a secure channel.