公开(公告)号：US10693645B2

公开(公告)日：2020-06-23

申请号：US15744402

申请日：2016-07-13

Applicant: GEMALTO SA

Inventor： Georges Debois ,  Aline Gouget ,  Michael Webster

IPC: H04L9/32 ,  H04L29/06

Abstract: The present invention relates to a security management system for performing a secure transmission of data from a token to a service provider server by means of an identity provider server, wherein said security management system comprises: —said identity provider server which is adapted to: —open with said token a secure messaging channel by means of a General Authentication Procedure using at least one certificate; —receive via said secure messaging channel from said token enciphered data; —transmit to said service provider server said enciphered data; —said service provider server which is adapted to: —receive from said identity provider server enciphered data of said token; —decipher said enciphered data to extract said data; —said token which is adapted to: —encipher data; and—transmit via said secure messaging channel to said identity provider server said enciphered data.

公开(公告)号：US11038675B2

公开(公告)日：2021-06-15

申请号：US15761102

申请日：2016-09-19

Applicant: GEMALTO SA

Inventor： Milan J. Krizenecky ,  Michael Webster ,  Michal Botka

IPC: H04L9/08 ,  H04L9/32

Abstract: Electronic voting including a registration authority server, an election authority server, and a voter-host computer connected to an electronic identity card associated with a voter casting a vote. The registration authority server computer and the secure electronic identity card establish a first cross-domain unlinkable pseudonym for the secure electronic identification token, the first cross-domain unlinkable pseudonym being unique to the electronic identity card and the registration authority. The registration authority writes a vote-eligibility attribute on the electronic identity card. The election authority server computer retrieves a second cross-domain unlinkable pseudonym and the vote-eligibility attribute from the electronic identity card, the second cross-domain unlinkable pseudonym being associated with the election authority, and writes an attribute on the electronic identity card indicative of receipt of a vote cast by the voter.

公开(公告)号：US09768960B2

公开(公告)日：2017-09-19

申请号：US14650676

申请日：2013-11-28

Applicant: GEMALTO SA

Inventor： Michael Webster ,  Seppo Pohja ,  Timo Palo

IPC: G06F21/62 ,  H04L9/08 ,  H04L9/32

CPC classification number: H04L9/0894 ,  H04L9/08 ,  H04L9/321 ,  H04L9/3226 ,  H04L9/3236

Abstract: The present invention relates to a method to access a data store previously locked using a passphrase from a device. The method includes the following steps, when the user requests access to the data store: requesting the user to enter the personal code; generating an access code by applying a first function to at least the entered personal code; sending out, to the server, at least an identifier of the device and the access code; for the server, comparing the access code with the preliminary received first function; for the server, if the access code is correct, returning the passphrase to the device; and for the device, unlocking the data store using the received passphrase in combination with the entered personal code.