Smart card and settlement terminal
First Claim
1. A smart card, comprising:
- communication unit to communicate with the outside;
information accumulating unit to accumulate data and a program; and
arithmetic processing unit to perform information processing, wherein;
said information accumulating unit stores value data, a transfer key used to update the value data, a transfer key identifier used to judge whether the transfer key is newer or older in accordance with a value of the transfer key identifier, an update key used to update the transfer key, and an upper limit of transfer key identifier that represents an upper limit of the transfer key identifier that can be stored by the smart card;
said arithmetic processing unit updates the transfer key identifier and the transfer key by performing encryption using the update key on the basis of common-key cryptography; and
said arithmetic processing unit then updates the value data by performing encryption using the transfer key on the basis of the common-key cryptography.
1 Assignment
0 Petitions
Accused Products
Abstract
An object of the present invention is to provide a smart card and a settlement terminal by which when common-key cryptography is used for value transfer between smart cards, the security of the whole system can be improved by enabling easy update of a cryptographic key used for the value transfer.
A smart card transmits/receives value data to/from another smart card. The smart card includes information accumulating means for accumulating the value data, a transfer key used to update the value data, and an update key used to update the transfer key; communication means for receiving a transfer key encrypted by use of the update key, the transfer key being transmitted from another smart card; and arithmetic processing means for decrypting the encrypted transfer key by use of the update key to update the transfer key accumulated in the information accumulating means by use of the decrypted transfer key.
47 Citations
19 Claims
-
1. A smart card, comprising:
-
communication unit to communicate with the outside;
information accumulating unit to accumulate data and a program; and
arithmetic processing unit to perform information processing, wherein;
said information accumulating unit stores value data, a transfer key used to update the value data, a transfer key identifier used to judge whether the transfer key is newer or older in accordance with a value of the transfer key identifier, an update key used to update the transfer key, and an upper limit of transfer key identifier that represents an upper limit of the transfer key identifier that can be stored by the smart card;
said arithmetic processing unit updates the transfer key identifier and the transfer key by performing encryption using the update key on the basis of common-key cryptography; and
said arithmetic processing unit then updates the value data by performing encryption using the transfer key on the basis of the common-key cryptography. - View Dependent Claims (2)
-
-
3. A smart card, comprising:
-
communication unit to communicate with the outside;
information accumulating unit to accumulate data and a program; and
arithmetic processing unit to perform information processing, wherein;
said information accumulating unit stores value data, a transfer key used to update the value data, a transfer key identifier used to judge whether the transfer key is newer or older in accordance with a value of the transfer key identifier, a first public key certificate including a first public key, which is used to update the transfer key, a secret key corresponding to the first public key, and an upper limit of transfer key identifier that represents an upper limit of the transfer key identifier which can be stored by the smart card;
said arithmetic processing unit updates the transfer key identifier and the transfer key by performing encryption using the first public key certificate and the secret key on the basis of public-key cryptography; and
said arithmetic processing unit then updates the value data by performing encryption using the transfer key on the basis of common-key cryptography. - View Dependent Claims (4)
-
-
5. A smart card, comprising:
-
communication unit to communicate with the outside;
information accumulating unit to accumulate data and a program; and
arithmetic processing unit to perform information processing, wherein;
said information accumulating unit stores value data, a transfer key used to update the value data, a transfer key identifier used to judge whether the transfer key is newer or older in accordance with a value of the transfer key identifier, an update key used to update the transfer key, an update key identifier used to judge whether the update key is newer or older in accordance with a value of the update key identifier, a first public key certificate including a first public key, which is used to update the transfer key, a secret key corresponding to the first public key, and an upper limit of transfer key identifier that represents an upper limit of the transfer key identifier which can be stored by the smart card;
said arithmetic processing unit updates the transfer key by use of the update key on the basis of common-key cryptography, or updates the transfer key by use of the first public key certificate and the secret key on the basis of common-key cryptography; and
said arithmetic processing unit then updates the value data by performing encryption using the transfer key on the basis of the common-key cryptography. - View Dependent Claims (6, 7)
-
-
8. A smart card, comprising:
-
communication unit to communicate with the outside;
information accumulating unit to accumulate data and a program; and
arithmetic processing unit to perform information processing, wherein;
said information accumulating unit stores value data, one or more transfer keys used to update the value data, a selection transfer key identifier used to identify the transfer key currently selected, and an update key used to update the transfer key;
said arithmetic processing unit updates the selection transfer key identifier by performing encryption using the update key on the basis of common-key cryptography; and
said arithmetic processing unit then updates the value data by performing encryption using the transfer key on the basis of common-key cryptography. - View Dependent Claims (9)
-
-
10. A settlement terminal comprising:
-
first card reading and writing unit having a function of communicating with a first smart card that holds first value data inside;
second card reading and writing unit having a function of communicating with a second smart card that holds second value data inside; and
arithmetic processing unit to update the first value data and the second value data by performing encryption between the first smart card and the second smart card using the first transfer key held by the first smart card and the second transfer key held by the second smart card on the basis of common-key cryptography, wherein;
said arithmetic processing unit comprises the steps of;
obtaining, from the first smart card, a first transfer key identifier used to judge whether the first transfer key is newer or older in accordance with a value of the first transfer key identifier, and obtaining, from the second smart card, a second transfer key identifier used to judge whether the second transfer key is newer or older in accordance with a value of the second transfer key identifier; and
comparing the value of the first transfer key identifier with the value of the second transfer key identifier, and if the values differ from each other, updating either a value of the transfer key held by the first smart card or a value of the transfer key held by the second smart card on the basis of common-key cryptography, and then updating the value data on the basis of common-key cryptography. - View Dependent Claims (11)
-
-
12. A settlement terminal comprising:
-
first card reading and writing unit having a function of communicating with a first smart card that holds first value data inside;
second card reading and writing unit having a function of communicating with a second smart card that holds second value data inside; and
arithmetic processing unit to update the first value data and the second value data by performing encryption between the first smart card and the second smart card using the first transfer key held by the first smart card and the second transfer key held by the second smart card on the basis of common-key cryptography, wherein;
said arithmetic processing unit comprises the steps of;
obtaining, from the first smart card, a first public key certificate, and a first transfer key identifier used to judge whether the first transfer key is newer or older in accordance with a value of the first transfer key identifier, and obtaining, from the second smart card, a second public key certificate, and a second transfer key identifier used to judge whether the second transfer key is newer or older in accordance with a value of the second transfer key identifier; and
comparing the value of the first transfer key identifier with the value of the second transfer key identifier, and if the values differ from each other, updating either the value of the transfer key held by the first smart card or the value of the transfer key held by the second smart card on the basis of public-key cryptography, and then updating the value data on the basis of common-key cryptography. - View Dependent Claims (13)
-
-
14. A settlement terminal comprising:
-
first card reading and writing unit having a function of communicating with a first smart card that holds first value data inside;
second card reading and writing unit having a function of communicating with a second smart card that holds second value data inside; and
arithmetic processing unit to update the first value data and the second value data by performing encryption between the first smart card and the second smart card using the first transfer key held by the first smart card and the second transfer key held by the second smart card on the basis of common-key cryptography, wherein;
said arithmetic processing unit comprises the steps of;
first obtaining, from the first smart card, a first transfer key identifier used to judge whether the first transfer key is newer or older in accordance with a value of the first transfer key identifier, a first update key identifier used to judge whether the first update key is newer or older in accordance with a value of the first update key identifier, said update key being used to update the first transfer key, and the first public key certificate, and obtaining, from the second smart card, a second transfer key identifier used to judge whether the second transfer key is newer or older in accordance with a value of the second transfer key identifier, a second update key identifier used to judge whether the second update key is newer or older in accordance with a value of the second update key identifier, said update key being used to update the second transfer key, and the second public key certificate;
if the value of the first transfer key identifier differs from the value of the second transfer key identifier, and if the value of the first update key identifier is equivalent to the value of the second update key identifier, updating either the value of the transfer key held by the first smart card or the value of the transfer key held by the second smart card on the basis of common-key cryptography;
if the value of the first transfer key identifier differs from the value of the second transfer key identifier, and if the value of the first update key identifier differs from the value of the second update key identifier, updating either the value of the transfer key held by the first smart card or the value of the transfer key held by the second smart card on the basis of public-key cryptography; and
then updating the value data on the basis of common-key cryptography. - View Dependent Claims (15, 16)
-
-
17. A smart card that transmits/receives value data to/from another smart card, said smart card comprising:
-
information accumulating unit to accumulate the value data, a transfer key used to update the value data, and an update key used to update the transfer key;
communication unit to receive a transfer key encrypted by use of the update key, said transfer key being transmitted from said another smart card; and
arithmetic processing unit to decrypt the encrypted transfer key by use of the update key to update the transfer key accumulated in the information accumulating unit by use of the decrypted transfer key.
-
-
18. A smart card that transmits/receives value data to/from another smart card, said smart card comprising:
-
information accumulating unit to accumulate the value data, a transfer key used to update the value data, and a secret key based on public-key cryptography, said secret key being used to update the transfer key;
communication unit to receive a transfer key encrypted using a public key corresponding to the secret key, said transfer key being transmitted from said another smart card; and
arithmetic processing unit to decrypt the encrypted transfer key by use of the secret key to update the transfer key accumulated in the information accumulating unit by use of the decrypted transfer key.
-
-
19. A settlement terminal that transmits/receives first value data accumulated in a first smart card and second value data accumulated in a second smart card between the first smart card that accumulates a first transfer key used to update the first value data and an update key used to update the first transfer key, and the second smart card that accumulates a second transfer key used to update the second value data and an update key used to update the second transfer key, said settlement terminal comprising:
-
first smart-card read/write unit, if the first transfer key differs from the second transfer key, for receiving the first transfer key encrypted by use of the update key from the first smart card; and
second smart-card read/write unit to transmitt, to the second smart card, a transfer-key update request requesting that the second transfer key of the second smart card is updated to the first transfer key, said transfer-key update request including the first transfer key encrypted by use of the update key.
-
Specification