公开(公告)号：US20180176778A1

公开(公告)日：2018-06-21

申请号：US15737438

申请日：2016-06-23

Applicant: GEMALTO SA

Inventor： Patrice AMIEL ,  Michel ENDRUSCHAT ,  Sébastien PONARD ,  Gabriel PEREIRA ,  Jean-Yves FINE ,  Francois ZANNIN ,  Michel MARTIN ,  Caroline DURANT DINET ,  Xavier BERARD

IPC: H04W12/06 ,  H04W12/04

CPC classification number: H04W12/06 ,  H04W12/0023 ,  H04W12/04

Abstract: A method of replacing an authentication parameter for authenticating a security element co-operating with a terminal includes storing in the security element a first authentication parameter; transmitting to a mobile network operator the first authentication parameter for the operator to record it in its authentication system; on occurrence of an event, having a remote platform transmit to the security element an indicator informing the security element that it is authorized to replace the first authentication parameter with a second authentication parameter if its authentication fails; on occurrence of the event, having the entity transmit to the operator a second authentication parameter to replace the first authentication parameter; and in the event of subsequent failure of the security element to connect to the mobile network and if the indicator is present at the security element, replacing the first authentication parameter with the second authentication parameter at the security element.

公开(公告)号：US20170339634A1

公开(公告)日：2017-11-23

申请号：US15524196

申请日：2015-10-21

Applicant: GEMALTO SA

Inventor： Jean-Yves FINE ,  Julien BAUDOUIN

IPC: H04W48/18 ,  H04L29/06 ,  H04W64/00 ,  H04L29/12 ,  H04W8/18 ,  H04W8/08 ,  H04W80/10 ,  H04W12/06

CPC classification number: H04W48/18 ,  H04L61/2007 ,  H04L61/6004 ,  H04L65/1016 ,  H04W8/06 ,  H04W8/08 ,  H04W8/18 ,  H04W12/06 ,  H04W64/00 ,  H04W80/10 ,  H04W84/00

Abstract: The invention relates to a method for accessing an Internet protocol Multimedia Subsystem type subsystem, said subsystem. According to the invention, a device is firstly connected to a mobile communication network, as a visited network, said first network. The method comprises the following steps. The first network sends to the device a first message comprising current location data relating to a location where the device is currently present. The device analyses whether at least one roaming rule associated with the current location data is or is not stored within the device. The at least one roaming rule includes, each, at least one parameter for accessing the subsystem. And if the device does store the at least one roaming rule associated with the current location data, then the device sends to the subsystem a second message including a request for connecting to the subsystem. The invention also pertains to a corresponding device.

公开(公告)号：US20190238324A1

公开(公告)日：2019-08-01

申请号：US16320291

申请日：2017-03-30

Applicant: GEMALTO SA

Inventor： Mireille PAULIAC ,  Michel ENDRUSCHAT ,  Ly Thanh PHAN ,  Jean-Yves FINE

IPC: H04L9/08 ,  H04L9/30

CPC classification number: H04L9/088 ,  H04L9/0825 ,  H04L9/0827 ,  H04L9/083 ,  H04L9/0869 ,  H04L9/30 ,  H04L2209/805

Abstract: This invention related to a method for provisioning a first communication device with a set of at least one credential required for accessing to a wireless network by using a second communication device provisioned with a cryptographic key K also known by the wireless network, the first communication device being associated with a certificate comprising a public key PK, said certificate being stored with an associated private key PrK in said first communication device, the method comprising the following steps: receiving by the second communication device a registration request from the first communication device in order to be provisioned with the set of at least one credential; transmitting to the wireless network by the second communication device the registration request to generate a set of at least one credential associated to the first communication device comprising at least a cryptographic key K″, the wireless network being adapted to generate a first random number R1 and a second random number R2; receiving by the second communication device a response from the wireless network comprising R1 and R2; generating K′ by the second communication device using R1 and K; transmitting by the second communication device to the first communication device K′ and R2 to generate K″ using R2 and K′.

公开(公告)号：US20180091977A1

公开(公告)日：2018-03-29

申请号：US15568192

申请日：2016-04-25

Applicant: GEMALTO SA

Inventor： HongQian Karen LU ,  Jean-Yves FINE ,  Benoît GONZALVO ,  Aline GOUGET

IPC: H04W12/08 ,  H04W12/12 ,  H04W12/06

CPC classification number: H04W12/08 ,  H04L2463/101 ,  H04L2463/103 ,  H04W12/06 ,  H04W12/12

Abstract: The invention is a method for managing access to a service wherein the method comprises the following steps: a client application sends to an application server a request to access the service by using credentials and a first anti-clone code, the application server performs a verification of the credentials and said first anti-clone code, the application server sends a second anti-clone code to the client application and deactivates said first anti-clone code only in case of successful verification, said second anti-clone code being required for the next attempt to access the service.