公开(公告)号：WO2014102303A1

公开(公告)日：2014-07-03

申请号：PCT/EP2013/078021

申请日：2013-12-26

Applicant: TELEFONICA, S.A.

Inventor： VILLOSLADA DE LA TORRE, Eduardo ,  FLORES CUADRADO, Ana ,  MARTÍNEZ ELICEGUI, Javier ,  ORTEGA BARRADO, Pedro Jose

IPC: G06F21/51

CPC classification number: G06F21/51 ,  G06F2221/0704

Abstract: The method comprising sending a request from at least one service terminal to a remote server to download at least one computer algorithm, said at least one service terminal including a state machine for loading computer algorithms, wherein said at least one downloaded computer algorithm is used for performing operations by said at least one service terminal, the method further using a sign server and an OTA server for performing the following steps: a) carrying out an authentication process of said at least one downloaded computer algorithm providing a first secure key; b) validating a plurality of parameters of said at least one service terminal, generating a second secure key; c) further generating a new secure key by combining said first and said second generated secure keys, and d) sending said new secure key to said at least one service terminal trough an OTA server, wherein a security module of said at least one service terminal e) further validates said received new secure key by comparing it with a self-generated secure key.

Abstract translation: 该方法包括从至少一个服务终端向远程服务器发送请求以下载至少一个计算机算法，所述至少一个服务终端包括用于加载计算机算法的状态机，其中所述至少一个下载的计算机算法用于 所述方法还使用符号服务器和OTA服务器执行以下步骤：a）执行提供第一安全密钥的所述至少一个下载的计算机算法的认证过程; b）验证所述至少一个服务终端的多个参数，生成第二安全密钥; c）通过组合所述第一和所述第二生成的安全密钥进一步产生新的安全密钥，以及d）通过OTA服务器向所述至少一个服务终端发送所述新的安全密钥，其中所述至少一个服务终端的安全模块 e）通过将自己生成的安全密钥进行比较来进一步验证所接收的新的安全密钥。