公开(公告)号：US10313855B2

公开(公告)日：2019-06-04

申请号：US15514635

申请日：2015-09-17

Applicant: GEMALTO SA

Inventor： Frédéric Dao ,  David Halle ,  Jean-François Arnaud ,  Jérôme Duprez ,  Stephan Stankowski ,  François Prigent

IPC: H04W4/60 ,  H04L29/06 ,  H04W12/06 ,  H04L9/08

Abstract: The present invention relates to a method to manage subscriptions in a provisioning server (PS) able to communicate with a Hardware Security Module (HSM) having an HSM key (K). Said method being such that the HSM comprising a load and a reload function, the secure device key ((Ke1)K) and the storage key ((Ks)K) as encrypted and stored are provided (S1) to one of said functions, said functions outputting, the storage key ((Ks)Ke1)K) encrypted using the provided secure device (SE1) key (Ke1) and the HSM key K, and an APDU_putkey command ((APDU_PUTKEY((Ks)Ke1))Ke1), encrypted using the provided secure device (SE1) key (Ke1), to put the retrieved storage key ((Ks)Ke1) also encrypted using the provided secure device key (Ke1), the storage key as previously stored ((Ks)K) is overwritten (S6) with the storage key (((Ks)Ke1)K) encrypted using the secure device key (Ke1) and the HSM key (K) returned by the function.