Signing program data payload sequence in program loading

US 20040143551A1
Filed: 01/16/2003
Published: 07/22/2004
Est. Priority Date: 01/16/2003
Status: Active Grant

First Claim

Patent Images

1. A method for communicating program data between a first device and a second device, the method comprising:

disassembling a first program file comprising program data into at least one logical data unit;

partitioning each of said at least one logical data unit into at least one protocol data unit, the format of said at least one protocol data unit defined by a communication protocol and including a payload portion; and

computing a first fingerprint over the payload portion of said at least one protocol data unit of said at least one logical data unit.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Communicating program data between a first device and a second device comprises disassembling a first program file comprising program data into at least one logical data unit, partitioning each of the at least one logical data unit into at least one protocol data unit and computing a first fingerprint over the payload portion of the at least one protocol data unit of the at least one logical data unit. The format of the at least one protocol data unit is defined by a communication protocol and includes a payload portion.

Citations

283 Claims

1. A method for communicating program data between a first device and a second device, the method comprising:
- disassembling a first program file comprising program data into at least one logical data unit;
  
  partitioning each of said at least one logical data unit into at least one protocol data unit, the format of said at least one protocol data unit defined by a communication protocol and including a payload portion; and
  
  computing a first fingerprint over the payload portion of said at least one protocol data unit of said at least one logical data unit.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17)
- - 2. The method of claim 1 wherein said second device comprises a loading terminal configured to communicate with a smart card.
  - 3. The method of claim 1, further comprising communicating a second program file to a second device, said second program file comprising said program data and one or more members of the group comprising said first fingerprint and an authentication code based at least in part on said first fingerprint.
  - 4. The method of claim 1 wherein said program data comprises a class file.
  - 5. The method of claim 1 wherein said program file comprises a JAR file.
  - 6. The method of claim 1 wherein said program file comprises a CAP file.
  - 7. The method of claim 1 wherein said method further comprises creating at least one verification protocol data unit associated with one of said at least one logical data unit, said verification protocol data unit comprising verification data for said logical data unit.
  - 8. The method of claim 3 wherein said authentication code further comprises at least one loading device authentication code for use by said second device in authenticating said second program file received from said first device.
  - 9. The method of claim 3 wherein said authentication code further comprises at least one target device authentication code for use by a third device in authenticating data received from said second device, said received data based at least in part on said first program file.
  - 10. The method of claim 1 wherein said protocol comprises an application protocol data unit (APDU) protocol;
    - and said protocol data units comprise application protocol data units (APDUs).
  - 11. The method of claim 10 wherein said protocol further comprises using a trailer APDU to indicate a last APDU associated with a program unit.
  - 12. The method of claim 10 wherein said protocol further comprises using a header APDU to indicate an expected sequence of one or more logical program APDUs to follow said header APDU.
  - 13. The method of claim 10 wherein said APDUs comprise information identifying the context of said APDUs.
  - 14. The method of claim 1 wherein said first fingerprint comprises a checksum.
  - 15. The method of claim 1 wherein said first fingerprint comprises a cyclic redundancy code (CRC).
  - 16. The method of claim 1 wherein said first fingerprint comprises a message digest.
  - 17. The method of claim 1 wherein said first fingerprint comprises a keyed hash-based message authentication code (HMAC).

18. A method for communicating program data between a first device and a second device, the method comprising:
- receiving a program file comprising program data and one or more members of the group comprising a first fingerprint and a first authentication code based at least in part on said first fingerprint;
  
  disassembling said program data into at least one logical data unit; and
  
  partitioning each of said at least one logical data unit into at least one protocol data unit, the format of said at least one protocol data unit defined by a communication protocol and including a payload portion.
- View Dependent Claims (19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45)
- - 19. The method of claim 18, further comprising communicating to said second device one or more members of the group comprising said first fingerprint and said first authentication code.
  - 20. The method of claim 18 wherein said first device comprises a loading terminal;
    - and said second device comprises a smart card.
  - 21. The method of claim 20 wherein said smart card comprises a Java Card™
    - technology-enabled smart card.
  - 22. The method of claim 20 wherein said smart card comprises a CDMA (Code Division Multiple Access) technology-enabled smart card.
  - 23. The method of claim 20 wherein said smart card comprises a SIM (Subscriber Identity Module) card.
  - 24. The method of claim 20 wherein said smart card comprises a WIM (Wireless Interface Module).
  - 25. The method of claim 20 wherein said smart card comprises a USIM (Universal Subscriber Identity Module).
  - 26. The method of claim 20 wherein said smart card comprises a UIM (User Identity Module).
  - 27. The method of claim 20 wherein said smart card comprises a R-UIM (Removable User Identity Module).
  - 28. The method of claim 18 wherein said program data comprises a class file.
  - 29. The method of claim 18 wherein said program file comprises a JAR file.
  - 30. The method of claim 18 wherein said program file comprises a CAP file.
  - 31. The method of claim 18 wherein said method further comprises creating at least one verification protocol data unit associated with one of said at least one logical data unit, said verification protocol data unit comprising verification data for said logical data unit and extracted from said program file.
  - 32. The method of claim 18 wherein said method further comprises:
    - computing verification data for at least one of said at least one logical data unit; and
      
      creating a verification protocol data unit comprising said verification data for said logical data unit.
  - 33. The method of claim 18 wherein said method further comprises creating at least one link protocol data unit associated with one of said at least one logical data unit, said link protocol data unit comprising link data for said logical data unit.
  - 34. The method of claim 18 wherein said method further comprises:
    - creating at least one link protocol data unit associated with one of said at least one logical data unit, said link protocol data comprising link data for said logical data unit; and
      
      creating a verification protocol data unit comprising said verification data for said logical data unit and extracted from said program file.
  - 35. The method of claim 18 wherein said method further comprises:
    - creating at least one link protocol data unit associated with one of said at least one logical data unit, said link protocol data comprising link data for said logical data unit;
      
      computing verification data for at least one of said at least one logical data unit; and
      
      creating a verification protocol data unit comprising said verification data for said logical data unit.
  - 36. The method of claim 18, further comprising receiving from said second device an indication of whether said first fingerprint matches a second fingerprint computed over the payload portion of the protocol data units received by said second device.
  - 37. The method of claim 18, further comprising receiving from said second device an indication of whether said one or more members match a second authentication code based at least in part on a second fingerprint, said second fingerprint computed over the payload portion of the protocol data units received by said second device.
  - 38. The method of claim 18 wherein said protocol comprises an application protocol data unit (APDU) protocol;
    - and said protocol data units comprise application protocol data units (APDUs).
  - 39. The method of claim 38 wherein said protocol further comprises using a trailer APDU to indicate a last APDU associated with a program unit.
  - 40. The method of claim 38 wherein said protocol further comprises using a header APDU to indicate an expected sequence of one or more logical program APDUs to follow said header APDU.
  - 41. The method of claim 38 wherein said APDUs comprise information identifying the context of said APDUs.
  - 42. The method of claim 18 wherein said first fingerprint comprises a checksum.
  - 43. The method of claim 18 wherein said first fingerprint comprises a cyclic redundancy code (CRC).
  - 44. The method of claim 18 wherein said first fingerprint comprises a message digest.
  - 45. The method of claim 18 wherein said first fingerprint comprises a keyed hash-based message authentication code (HMAC).

46. A method for communicating program data between a first device and a second device comprising a memory, the method comprising:
- communicating a second program file to a second device, said second program file comprising said program data and one or more members of the group comprising a first fingerprint and a first authentication code based at least in part on said first fingerprint;
  
  receiving said one or more members and a plurality of protocol data units comprising at least one logical data unit of a program file, each of said at least one logical data unit partitioned into at least one protocol data unit, the format of said at least one protocol data unit defined by a communication protocol and including a payload portion;
  
  computing a second fingerprint over the payload portion of the protocol data units of said at least one logical data unit; and
  
  committing said program to said memory based at least in part on whether said one or more members match said second fingerprint or a second authentication code based at least in part on said second fingerprint.
- View Dependent Claims (47, 48, 49, 50, 51, 52, 53, 54, 55, 56)
- - 47. The method of claim 46 wherein said method further comprises excluding from said computing a protocol data unit that comprises link data.
  - 48. The method of claim 46 wherein said method further comprises excluding from said computing a protocol data unit that comprises verification data if a flag indicates verification data should be excluded from an authentication fingerprint computation.
  - 49. The method of claim 46 wherein said protocol comprises an application protocol data unit (APDU) protocol;
    - and said protocol data units comprise application protocol data units (APDUs).
  - 50. The method of claim 49 wherein said protocol further comprises using a trailer APDU to indicate a last APDU associated with a program unit.
  - 51. The method of claim 49 wherein said protocol further comprises using a header APDU to indicate an expected sequence of one or more logical program APDUs to follow said header APDU.
  - 52. The method of claim 49 wherein said APDUs comprise information identifying the context of said APDUs.
  - 53. The method of claim 46 wherein said first fingerprint comprises a checksum;
    - and said second fingerprint comprises a checksum.
  - 54. The method of claim 46 wherein said first fingerprint comprises a cyclic redundancy code (CRC);
    - and said second fingerprint comprises a CRC.
  - 55. The method of claim 46 wherein said first fingerprint comprises a message digest;
    - and said second fingerprint comprises a message digest.
  - 56. The method of claim 46 wherein said first fingerprint comprises a keyed hash-based message authentication code (HMAC);
    - and said second fingerprint comprises a keyed hash-based message authentication code (HMAC).

57. A method for communicating program data between a first device and a second device, the method comprising:
- disassembling a first program file comprising program data into at least one logical data unit;
  
  partitioning each of said at least one logical data unit into at least one protocol data unit, the format of said at least one protocol data unit defined by a communication protocol and including a payload portion;
  
  computing a first fingerprint over the payload portion of the protocol data units of said at least one logical data unit; and
  
  communicating said protocol data units of said at least one logical data unit and one or more of the group comprising said first fingerprint and a first authentication code based at least in part on said first fingerprint to said second device according to said protocol.
- View Dependent Claims (58, 59, 60, 61, 62, 63, 64, 65, 66, 67, 68, 69, 70, 134, 135, 136)
- - 58. The method of claim 57 wherein said program data comprises a class file.
  - 59. The method of claim 57 wherein said program file comprises a JAR file.
  - 60. The method of claim 57 wherein said program file comprises a CAP file.
  - 61. The method of claim 57 wherein said method further comprises creating at least one verification protocol data unit associated with one of said at least one logical data unit, said verification protocol data unit comprising verification data for said logical data unit.
  - 62. The method of claim 57, further comprising receiving from said second device an indication of whether said one or more members matches a second fingerprint computed over the payload portion of the protocol data units received by said second device, or a second authentication code based at least in part on said second fingerprint.
  - 63. The method of claim 57 wherein said protocol comprises an application protocol data unit (APDU) protocol;
    - and said protocol data units comprise application protocol data units (APDUs).
  - 64. The method of claim 63 wherein said protocol further comprises using a trailer APDU to indicate a last APDU associated with a program unit.
  - 65. The method of claim 63 wherein said protocol further comprises using a header APDU to indicate an expected sequence of one or more logical program APDUs to follow said header APDU.
  - 66. The method of claim 63 wherein said APDUs comprise information identifying the context of said APDUs.
  - 67. The method of claim 57 wherein said first fingerprint comprises a checksum.
  - 68. The method of claim 57 wherein said first fingerprint comprises a cyclic redundancy code (CRC).
  - 69. The method of claim 57 wherein said first fingerprint comprises a message digest.
  - 70. The method of claim 57 wherein said first fingerprint comprises a keyed hash-based message authentication code (HMAC).
  - 134. The program storage device of claim 63 wherein said protocol further comprises using a trailer APDU to indicate a last APDU associated with a program unit.
  - 135. The program storage device of claim 63 wherein said protocol further comprises using a header APDU to indicate an expected sequence of one or more logical program APDUs to follow said header APDU.
  - 136. The program storage device of claim 63 wherein said APDUs comprise information identifying the context of said APDUs.

71. A program storage device readable by a machine, embodying a program of instructions executable by the machine to perform a method for communicating program data between a host computer and a smart card, the method comprising:
- disassembling a first program file comprising program data into at least one logical data unit;
  
  partitioning each of said at least one logical data unit into at least one protocol data unit, the format of said at least one protocol data unit defined by a communication protocol and including a payload portion; and
  
  computing a first fingerprint over the payload portion of said at least one protocol data unit of said at least one logical data unit.
- View Dependent Claims (72, 73, 74, 75, 76, 77, 78, 79, 80, 81, 82, 83, 84, 85, 86, 87)
- - 72. The program storage device of claim 71 wherein said second device comprises a loading terminal configured to communicate with a smart card.
  - 73. The program storage device of claim 71, said method further comprising communicating a second program file to a second device, said second program file comprising said program data and one or more members of the group comprising said first fingerprint and an authentication code based at least in part on said first fingerprint.
  - 74. The program storage device of claim 71 wherein said program data comprises a class file.
  - 75. The program storage device of claim 71 wherein said program file comprises a JAR file.
  - 76. The program storage device of claim 71 wherein said program file comprises a CAP file.
  - 77. The program storage device of claim 71 wherein said method further comprises creating at least one verification protocol data unit associated with one of said at least one logical data unit, said verification protocol data unit comprising verification data for said logical data unit.
  - 78. The program storage device of claim 73 wherein said authentication code further comprises at least one loading device authentication code for use by said second device in authenticating said second program file received from said first device.
  - 79. The program storage device of claim 73 wherein said authentication code further comprises at least one target device authentication code for use by a third device in authenticating data received from said second device, said received data based at least in part on said first program file.
  - 80. The program storage device of claim 71 wherein said protocol comprises an application protocol data unit (APDU) protocol;
    - and said protocol data units comprise application protocol data units (APDUs).
  - 81. The program storage device of claim 80 wherein said protocol further comprises using a trailer APDU to indicate a last APDU associated with a program unit.
  - 82. The program storage device of claim 80 wherein said protocol further comprises using a header APDU to indicate an expected sequence of one or more logical program APDUs to follow said header APDU.
  - 83. The program storage device of claim 80 wherein said APDUs comprise information identifying the context of said APDUs.
  - 84. The program storage device of claim 71 wherein said first fingerprint comprises a checksum.
  - 85. The program storage device of claim 71 wherein said first fingerprint comprises a cyclic redundancy code (CRC).
  - 86. The program storage device of claim 71 wherein said first fingerprint comprises a message digest.
  - 87. The program storage device of claim 71 wherein said first fingerprint comprises a keyed hash-based message authentication code (HMAC).

88. A program storage device readable by a machine, embodying a program of instructions executable by the machine to perform a method for communicating program data between a first device and a second device, the method comprising:
- receiving a program file comprising program data and one or more members of the group comprising a first fingerprint and a first authentication code based at least in part on said first fingerprint;
  
  disassembling said program data into at least one logical data unit; and
  
  partitioning each of said at least one logical data unit into at least one protocol data unit, the format of said at least one protocol data unit defined by a communication protocol and including a payload portion.
- View Dependent Claims (89, 90, 91, 92, 93, 94, 95, 96, 97, 98, 99, 100, 101, 102, 103, 104, 105, 106, 107, 108, 109, 110, 111, 112, 113, 114, 115)
- - 89. The program storage device of claim 88 wherein said method further comprises communicating to said second device one or more members of the group comprising said first fingerprint and said first authentication code.
  - 90. The program storage device of claim 88 wherein said first device comprises a loading terminal;
    - and said second device comprises a smart card.
  - 91. The program storage device of claim 90 wherein said smart card comprises a Java Card™
    - technology-enabled smart card.
  - 92. The program storage device of claim 90 wherein said smart card comprises a CDMA (Code Division Multiple Access) technology-enabled smart card.
  - 93. The program storage device of claim 90 wherein said smart card comprises a SIM (Subscriber Identity Module) card.
  - 94. The program storage device of claim 90 wherein said smart card comprises a WIM (Wireless Interface Module).
  - 95. The program storage device of claim 90 wherein said smart card comprises a USIM (Universal Subscriber Identity Module).
  - 96. The program storage device of claim 90 wherein said smart card comprises a UIM (User Identity Module).
  - 97. The program storage device of claim 90 wherein said smart card comprises a R-UIM (Removable User Identity Module).
  - 98. The program storage device of claim 88 wherein said program data comprises a class file.
  - 99. The program storage device of claim 88 wherein said program file comprises a JAR file.
  - 100. The program storage device of claim 88 wherein said program file comprises a CAP file.
  - 101. The program storage device of claim 88 wherein said method further comprises creating at least one verification protocol data unit associated with one of said at least one logical data unit, said verification protocol data unit comprising verification data for said logical data unit and extracted from said program file.
  - 102. The program storage device of claim 88 wherein said method further comprises:
    - computing verification data for at least one of said at least one logical data unit; and
      
      creating a verification protocol data unit comprising said verification data for said logical data unit.
  - 103. The program storage device of claim 88 wherein said method further comprises creating at least one link protocol data unit associated with one of said at least one logical data unit, said link protocol data unit comprising link data for said logical data unit.
  - 104. The program storage device of claim 88 wherein said method further comprises:
    - creating at least one link protocol data unit associated with one of said at least one logical data unit, said link protocol data comprising link data for said logical data unit; and
      
      creating a verification protocol data unit comprising said verification data for said logical data unit and extracted from said program file.
  - 105. The program storage device of claim 88 wherein said method further comprises:
    - creating at least one link protocol data unit associated with one of said at least one logical data unit, said link protocol data comprising link data for said logical data unit, computing verification data for at least one of said at least one logical data unit; and
      
      creating a verification protocol data unit comprising said verification data for said logical data unit.
  - 106. The program storage device of claim 88 wherein said method further comprises receiving from said second device an indication of whether said first fingerprint matches a second fingerprint computed over the payload portion of the protocol data units received by said second device.
  - 107. The program storage device of claim 88 wherein said method further comprises receiving from said second device an indication of whether said one or more members match a second authentication code based at least in part on a second fingerprint, said second fingerprint computed over the payload portion of the protocol data units received by said second device.
  - 108. The program storage device of claim 88 wherein said protocol comprises an application protocol data unit (APDU) protocol;
    - and said protocol data units comprise application protocol data units (APDUs).
  - 109. The program storage device of claim 108 wherein said protocol further comprises using a trailer APDU to indicate a last APDU associated with a program unit.
  - 110. The program storage device of claim 108 wherein said protocol further comprises using a header APDU to indicate an expected sequence of one or more logical program APDUs to follow said header APDU.
  - 111. The program storage device of claim 108 wherein said APDUs comprise information identifying the context of said APDUs.
  - 112. The program storage device of claim 88 wherein said first fingerprint comprises a checksum.
  - 113. The program storage device of claim 88 wherein said first fingerprint comprises a cyclic redundancy code (CRC).
  - 114. The program storage device of claim 88 wherein said first fingerprint comprises a message digest.
  - 115. The program storage device of claim 88 wherein said first fingerprint comprises a keyed hash-based message authentication code (HMAC).

116. A program storage device readable by a machine, embodying a program of instructions executable by the machine to perform a method for communicating program data between a first device and a second device comprising a memory, the method comprising:
- communicating a second program file to a second device, said second program file comprising said program data and one or more members of the group comprising a first fingerprint and a first authentication code based at least in part on said first fingerprint;
  
  receiving said one or more members and a plurality of protocol data units comprising at least one logical data unit of a program file, each of said at least one logical data unit partitioned into at least one protocol data unit, the format of said at least one protocol data unit defined by a communication protocol and including a payload portion;
  
  computing a second fingerprint over the payload portion of the protocol data units of said at least one logical data unit; and
  
  committing said program to said memory based at least in part on whether said one or more members match said second fingerprint or a second authentication code based at least in part on said second fingerprint.
- View Dependent Claims (117, 118, 119, 120, 121, 122, 123, 124, 125, 126)
- - 117. The program storage device of claim 116 wherein said method further comprises excluding from said computing a protocol data unit that comprises link data.
  - 118. The program storage device of claim 116 wherein said method further comprises excluding from said computing a protocol data unit that comprises verification data if a flag indicates verification data should be excluded from an authentication fingerprint computation.
  - 119. The program storage device of claim 116 wherein said protocol comprises an application protocol data unit (APDU) protocol;
    - and said protocol data units comprise application protocol data units (APDUs).
  - 120. The program storage device of claim 119 wherein said protocol further comprises using a trailer APDU to indicate a last APDU associated with a program unit.
  - 121. The program storage device of claim 119 wherein said protocol further comprises using a header APDU to indicate an expected sequence of one or more logical program APDUs to follow said header APDU.
  - 122. The program storage device of claim 119 wherein said APDUs comprise information identifying the context of said APDUs.
  - 123. The program storage device of claim 116 wherein said first fingerprint comprises a checksum;
    - and said second fingerprint comprises a checksum.
  - 124. The program storage device of claim 116 wherein said first fingerprint comprises a cyclic redundancy code (CRC);
    - and said second fingerprint comprises a CRC.
  - 125. The program storage device of claim 116 wherein said first fingerprint comprises a message digest;
    - and said second fingerprint comprises a message digest.
  - 126. The program storage device of claim 116 wherein said first fingerprint comprises a keyed hash-based message authentication code (HMAC);
    - and said second fingerprint comprises a keyed hash-based message authentication code (HMAC).

127. A program storage device readable by a machine, embodying a program of instructions executable by the machine to perform a method for communicating program data between a first device and a second device, the method comprising:
- disassembling a first program file comprising program data into at least one logical data unit;
  
  partitioning each of said at least one logical data unit into at least one protocol data unit, the format of said at least one protocol data unit defined by a communication protocol and including a payload portion;
  
  computing a first fingerprint over the payload portion of the protocol data units of said at least one logical data unit; and
  
  communicating said protocol data units of said at least one logical data unit and one or more of the group comprising said first fingerprint and a first authentication code based at least in part on said first fingerprint to said second device according to said protocol.
- View Dependent Claims (128, 129, 130, 131, 132, 133, 137, 138, 139, 140)
- - 128. The program storage device of claim 127 wherein said program data comprises a class file.
  - 129. The program storage device of claim 127 wherein said program file comprises a JAR file.
  - 130. The program storage device of claim 127 wherein said program file comprises a CAP file.
  - 131. The program storage device of claim 127 wherein said method further comprises creating at least one verification protocol data unit associated with one of said at least one logical data unit, said verification protocol data unit comprising verification data for said logical data unit.
  - 132. The program storage device of claim 127 wherein said method further comprises receiving from said second device an indication of whether said one or more members matches a second fingerprint computed over the payload portion of the protocol data units received by said second device, or a second authentication code based at least in part on said second fingerprint.
  - 133. The program storage device of claim 127 wherein said protocol comprises an application protocol data unit (APDU) protocol;
    - and said protocol data units comprise application protocol data units (APDUs).
  - 137. The program storage device of claim 127 wherein said first fingerprint comprises a checksum.
  - 138. The program storage device of claim 127 wherein said first fingerprint comprises a cyclic redundancy code (CRC).
  - 139. The program storage device of claim 127 wherein said first fingerprint comprises a message digest.
  - 140. The program storage device of claim 127 wherein said first fingerprint comprises a keyed hash-based message authentication code (HMAC).

141. An apparatus for communicating program data between a first device and a second device, the apparatus comprising:
- means for disassembling a first program file comprising program data into at least one logical data unit;
  
  means for partitioning each of said at least one logical data unit into at least one protocol data unit, the format of said at least one protocol data unit defined by a communication protocol and including a payload portion; and
  
  means for computing a first fingerprint over the payload portion of said at least one protocol data unit of said at least one logical data unit.
- View Dependent Claims (142, 143, 144, 145, 146, 147, 148, 149, 150, 151, 152, 153, 154, 155, 156, 157)
- - 142. The apparatus of claim 141 wherein said second device comprises a loading terminal configured to communicate with a smart card.
  - 143. The apparatus of claim 141, further comprising means for communicating a second program file to a second device, said second program file comprising said program data and one or more members of the group comprising said first fingerprint and an authentication code based at least in part on said first fingerprint.
  - 144. The apparatus of claim 141 wherein said program data comprises a class file.
  - 145. The apparatus of claim 141 wherein said program file comprises a JAR file.
  - 146. The apparatus of claim 141 wherein said program file comprises a CAP file.
  - 147. The apparatus of claim 141 wherein said apparatus further comprises means for creating at least one verification protocol data unit associated with one of said at least one logical data unit, said verification protocol data unit comprising verification data for said logical data unit.
  - 148. The apparatus of claim 143 wherein said authentication code further comprises at least one loading device authentication code for use by said second device in authenticating said second program file received from said first device.
  - 149. The apparatus of claim 143 wherein said authentication code further comprises at least one target device authentication code for use by a third device in authenticating data received from said second device, said received data based at least in part on said first program file.
  - 150. The apparatus of claim 141 wherein said protocol comprises an application protocol data unit (APDU) protocol;
    - and said protocol data units comprise application protocol data units (APDUs).
  - 151. The apparatus of claim 150 wherein said protocol further comprises means for using a trailer APDU to indicate a last APDU associated with a program unit.
  - 152. The apparatus of claim 150 wherein said protocol further comprises means for using a header APDU to indicate an expected sequence of one or more logical program APDUs to follow said header APDU.
  - 153. The apparatus of claim 150 wherein said APDUs comprise information identifying the context of said APDUs.
  - 154. The apparatus of claim 141 wherein said first fingerprint comprises a checksum.
  - 155. The apparatus of claim 141 wherein said first fingerprint comprises a cyclic redundancy code (CRC).
  - 156. The apparatus of claim 141 wherein said first fingerprint comprises a message digest.
  - 157. The apparatus of claim 141 wherein said first fingerprint comprises a keyed hash-based message authentication code (HMAC).

158. An apparatus for communicating program data between a first device and a second device, the apparatus comprising:
- means for receiving a program file comprising program data and one or more members of the group comprising a first fingerprint and a first authentication code based at least in part on said first fingerprint;
  
  means for disassembling said program data into at least one logical data unit; and
  
  means for partitioning each of said at least one logical data unit into at least one protocol data unit, the format of said at least one protocol data unit defined by a communication protocol and including a payload portion.
- View Dependent Claims (159, 160, 161, 162, 163, 164, 165, 166, 167, 168, 169, 170, 171, 172, 173, 174, 175, 176, 177, 178, 179, 180, 181, 182, 183, 184, 185)
- - 159. The apparatus of claim 158, further comprising means for communicating to said second device one or more members of the group comprising said first fingerprint and said first authentication code.
  - 160. The apparatus of claim 158 wherein said first device comprises a loading terminal;
    - and said second device comprises a smart card.
  - 161. The apparatus of claim 160 wherein said smart card comprises a Java Card™
    - technology-enabled smart card.
  - 162. The apparatus of claim 160 wherein said smart card comprises a CDMA (Code Division Multiple Access) technology-enabled smart card.
  - 163. The apparatus of claim 160 wherein said smart card comprises a SIM (Subscriber Identity Module) card.
  - 164. The apparatus of claim 160 wherein said smart card comprises a WIM (Wireless Interface Module).
  - 165. The apparatus of claim 160 wherein said smart card comprises a USIM (Universal Subscriber Identity Module).
  - 166. The apparatus of claim 160 wherein said smart card comprises a UIM (User Identity Module).
  - 167. The apparatus of claim 160 wherein said smart card comprises a R-UIM (Removable User Identity Module).
  - 168. The apparatus of claim 158 wherein said program data comprises a class file.
  - 169. The apparatus of claim 158 wherein said program file comprises a JAR file.
  - 170. The apparatus of claim 158 wherein said program file comprises a CAP file.
  - 171. The apparatus of claim 158 wherein said apparatus further comprises means for creating at least one verification protocol data unit associated with one of said at least one logical data unit, said verification protocol data unit comprising verification data for said logical data unit and extracted from said program file.
  - 172. The apparatus of claim 158 wherein said apparatus further comprises:
    - means for computing verification data for at least one of said at least one logical data unit; and
      
      means for creating a verification protocol data unit comprising said verification data for said logical data unit.
  - 173. The apparatus of claim 158 wherein said apparatus further comprises means for creating at least one link protocol data unit associated with one of said at least one logical data unit, said link protocol data unit comprising link data for said logical data unit.
  - 174. The apparatus of claim 158 wherein said apparatus further comprises:
    - means for creating at least one link protocol data unit associated with one of said at least one logical data unit, said link protocol data comprising link data for said logical data unit; and
      
      means for creating a verification protocol data unit comprising said verification data for said logical data unit and extracted from said program file.
  - 175. The apparatus of claim 158 wherein said apparatus further comprises:
    - means for creating at least one link protocol data unit associated with one of said at least one logical data unit, said link protocol data comprising link data for said logical data unit;
      
      means for computing verification data for at least one of said at least one logical data unit; and
      
      means for creating a verification protocol data unit comprising said verification data for said logical data unit.
  - 176. The apparatus of claim 158, further comprising means for receiving from said second device an indication of whether said first fingerprint matches a second fingerprint computed over the payload portion of the protocol data units received by said second device.
  - 177. The apparatus of claim 158, further comprising means for receiving from said second device an indication of whether said one or more members match a second authentication code based at least in part on a second fingerprint, said second fingerprint computed over the payload portion of the protocol data units received by said second device.
  - 178. The apparatus of claim 158 wherein said protocol comprises an application protocol data unit (APDU) protocol;
    - and said protocol data units comprise application protocol data units (APDUs).
  - 179. The apparatus of claim 178 wherein said protocol further comprises means for using a trailer APDU to indicate a last APDU associated with a program unit.
  - 180. The apparatus of claim 178 wherein said protocol further comprises means for using a header APDU to indicate an expected sequence of one or more logical program APDUs to follow said header APDU.
  - 181. The apparatus of claim 178 wherein said APDUs comprise information identifying the context of said APDUs.
  - 182. The apparatus of claim 158 wherein said first fingerprint comprises a checksum.
  - 183. The apparatus of claim 158 wherein said first fingerprint comprises a cyclic redundancy code (CRC).
  - 184. The apparatus of claim 158 wherein said first fingerprint comprises a message digest.
  - 185. The apparatus of claim 158 wherein said first fingerprint comprises a keyed hash-based message authentication code (HMAC).

186. An apparatus for communicating program data between a first device and a second device comprising a memory, the apparatus comprising:
- means for communicating a second program file to a second device, said second program file comprising said program data and one or more members of the group comprising a first fingerprint and a first authentication code based at least in part on said first fingerprint;
  
  means for receiving said one or more members and a plurality of protocol data units comprising at least one logical data unit of a program file, each of said at least one logical data unit partitioned into at least one protocol data unit, the format of said at least one protocol data unit defined by a communication protocol and including a payload portion;
  
  means for computing a second fingerprint over the payload portion of the protocol data units of said at least one logical data unit; and
  
  means for committing said program to said memory based at least in part on whether said one or more members match said second fingerprint or a second authentication code based at least in part on said second fingerprint.
- View Dependent Claims (187, 188, 189, 190, 191, 192, 193, 194, 195, 196)
- - 187. The apparatus of claim 186 wherein said apparatus further comprises means for excluding from said computing a protocol data unit that comprises link data.
  - 188. The apparatus of claim 186 wherein said apparatus further comprises means for excluding from said computing a protocol data unit that comprises verification data if a flag indicates verification data should be excluded from an authentication fingerprint computation.
  - 189. The apparatus of claim 186 wherein said protocol comprises an application protocol data unit (APDU) protocol;
    - and said protocol data units comprise application protocol data units (APDUs).
  - 190. The apparatus of claim 189 wherein said protocol further comprises means for using a trailer APDU to indicate a last APDU associated with a program unit.
  - 191. The apparatus of claim 189 wherein said protocol further comprises means for using a header APDU to indicate an expected sequence of one or more logical program APDUs to follow said header APDU.
  - 192. The apparatus of claim 189 wherein said APDUs comprise information identifying the context of said APDUS.
  - 193. The apparatus of claim 186 wherein said first fingerprint comprises a checksum;
    - and said second fingerprint comprises a checksum.
  - 194. The apparatus of claim 186 wherein said first fingerprint comprises a cyclic redundancy code (CRC);
    - and said second fingerprint comprises a CRC.
  - 195. The apparatus of claim 186 wherein said first fingerprint comprises a message digest;
    - and said second fingerprint comprises a message digest.
  - 196. The apparatus of claim 186 wherein said first fingerprint comprises a keyed hash-based message authentication code (HMAC);
    - and said second fingerprint comprises a keyed hash-based message authentication code (HMAC).

197. An apparatus for communicating program data between a first device and a second device, the apparatus comprising:
- means for disassembling a first program file comprising program data into at least one logical data unit;
  
  means for partitioning each of said at least one logical data unit into at least one protocol data unit, the format of said at least one protocol data unit defined by a communication protocol and including a payload portion;
  
  means for computing a first fingerprint over the payload portion of the protocol data units of said at least one logical data unit; and
  
  means for communicating said protocol data units of said at least one logical data unit and one or more of the group comprising said first fingerprint and a first authentication code based at least in part on said first fingerprint to said second device according to said protocol.
- View Dependent Claims (198, 199, 200, 201, 202, 203, 204, 205, 206, 207, 208, 209, 210)
- - 198. The apparatus of claim 197 wherein said program data comprises a class file.
  - 199. The apparatus of claim 197 wherein said program file comprises a JAR file.
  - 200. The apparatus of claim 197 wherein said program file comprises a CAP file.
  - 201. The apparatus of claim 197 wherein said apparatus further comprises means for creating at least one verification protocol data unit associated with one of said at least one logical data unit, said verification protocol data unit comprising verification data for said logical data unit.
  - 202. The apparatus of claim 197, further comprising means for receiving from said second device an indication of whether said one or more members matches a second fingerprint computed over the payload portion of the protocol data units received by said second device, or a second authentication code based at least in part on said second fingerprint.
  - 203. The apparatus of claim 197 wherein said protocol comprises an application protocol data unit (APDU) protocol;
    - and said protocol data units comprise application protocol data units (APDUs).
  - 204. The apparatus of claim 203 wherein said protocol further comprises means for using a trailer APDU to indicate a last APDU associated with a program unit.
  - 205. The apparatus of claim 203 wherein said protocol further comprises means for using a header APDU to indicate an expected sequence of one or more logical program APDUs to follow said header APDU.
  - 206. The apparatus of claim 203 wherein said APDUs comprise information identifying the context of said APDUs.
  - 207. The apparatus of claim 197 wherein said first fingerprint comprises a checksum.
  - 208. The apparatus of claim 197 wherein said first fingerprint comprises a cyclic redundancy code (CRC).
  - 209. The apparatus of claim 197 wherein said first fingerprint comprises a message digest.
  - 210. The apparatus of claim 197 wherein said first fingerprint comprises a keyed hash-based message authentication code (HMAC).

211. An apparatus for communicating program data between a first device and a second device, the apparatus comprising:
- a memory for storing said program data; and
  
  an off-card installer configured to;
  
  disassemble a first program file comprising program data into at least one logical data unit;
  
  partition each of said at least one logical data unit into at least one protocol data unit, the format of said at least one protocol data unit defined by a communication protocol and including a payload portion; and
  
  compute a first fingerprint over the payload portion of said at least one protocol data unit of said at least one logical data unit.
- View Dependent Claims (212, 213, 214, 215, 216, 217, 218, 219, 220, 221, 222, 223, 224, 225, 226, 227)
- - 212. The apparatus of claim 211 wherein said second device comprises a loading terminal configured to communicate with a smart card.
  - 213. The apparatus of claim 211 wherein said off-card installer is further configured to communicate a second program file to a second device, said second program file comprising said program data and one or more members of the group comprising said first fingerprint and an authentication code based at least in part on said first fingerprint.
  - 214. The apparatus of claim 211 wherein said program data comprises a class file.
  - 215. The apparatus of claim 211 wherein said program file comprises a JAR file.
  - 216. The apparatus of claim 211 wherein said program file comprises a CAP file.
  - 217. The apparatus of claim 211 wherein said off-card installer is further configured to create at least one verification protocol data unit associated with one of said at least one logical data unit, said verification protocol data unit comprising verification data for said logical data unit.
  - 218. The apparatus of claim 213 wherein said authentication code further comprises at least one loading device authentication code for use by said second device in authenticating said second program file received from said first device.
  - 219. The apparatus of claim 213 wherein said authentication code further comprises at least one target device authentication code for use by a third device in authenticating data received from said second device, said received data based at least in part on said first program file.
  - 220. The apparatus of claim 211 wherein said protocol comprises an application protocol data unit (APDU) protocol;
    - and said protocol data units comprise application protocol data units (APDUs).
  - 221. The apparatus of claim 220 wherein said protocol further comprises using a trailer APDU to indicate a last APDU associated with a program unit.
  - 222. The apparatus of claim 220 wherein said protocol further comprises using a header APDU to indicate an expected sequence of one or more logical program APDUs to follow said header APDU.
  - 223. The apparatus of claim 220 wherein said APDUs comprise information identifying the context of said APDUs.
  - 224. The apparatus of claim 211 wherein said first fingerprint comprises a checksum.
  - 225. The apparatus of claim 211 wherein said first fingerprint comprises a cyclic redundancy code (CRC).
  - 226. The apparatus of claim 211 wherein said first fingerprint comprises a message digest.
  - 227. The apparatus of claim 211 wherein said first fingerprint comprises a keyed hash-based message authentication code (HMAC).

228. An apparatus for communicating program data between a first device and a second device, the apparatus comprising:
- a memory for storing said program data; and
  
  a processor configured to;
  
  receive a program file comprising program data and one or more members of the group comprising a first fingerprint and a first authentication code based at least in part on said first fingerprint;
  
  disassemble said program data into at least one logical data unit; and
  
  partition each of said at least one logical data unit into at least one protocol data unit, the format of said at least one protocol data unit defined by a communication protocol and including a payload portion.
- View Dependent Claims (229, 230, 231, 232, 233, 234, 235, 236, 237, 238, 239, 240, 241, 242, 243, 244, 245, 246, 247, 248, 249, 250, 251, 252, 253, 254, 255)
- - 229. The apparatus of claim 228 wherein said processor is further configured to communicate to said second device one or more members of the group comprising said first fingerprint and said first authentication code.
  - 230. The apparatus of claim 228 wherein said first device comprises a loading terminal;
    - and said second device comprises a smart card.
  - 231. The apparatus of claim 230 wherein said smart card comprises a Java Card™
    - technology-enabled smart card.
  - 232. The apparatus of claim 230 wherein said smart card comprises a CDMA (Code Division Multiple Access) technology-enabled smart card.
  - 233. The apparatus of claim 230 wherein said smart card comprises a SIM (Subscriber Identity Module) card.
  - 234. The apparatus of claim 230 wherein said smart card comprises a WIM (Wireless Interface Module).
  - 235. The apparatus of claim 230 wherein said smart card comprises a USIM (Universal Subscriber Identity Module).
  - 236. The apparatus of claim 230 wherein said smart card comprises a UIM (User Identity Module).
  - 237. The apparatus of claim 230 wherein said smart card comprises a R-UIM (Removable User Identity Module).
  - 238. The apparatus of claim 228 wherein said program data comprises a class file.
  - 239. The apparatus of claim 228 wherein said program file comprises a JAR file.
  - 240. The apparatus of claim 228 wherein said program file comprises a CAP file.
  - 241. The apparatus of claim 228 wherein said processor is further configured to create at least one verification protocol data unit associated with one of said at least one logical data unit, said verification protocol data unit comprising verification data for said logical data unit and extracted from said program file.
  - 242. The apparatus of claim 228 wherein said processor is further configured to:
    - compute verification data for at least one of said at least one logical data unit; and
      
      create a verification protocol data unit comprising said verification data for said logical data unit.
  - 243. The apparatus of claim 228 wherein said processor is further configured to create at least one link protocol data unit associated with one of said at least one logical data unit, said link protocol data unit comprising link data for said logical data unit.
  - 244. The apparatus of claim 228 wherein said processor is further configured to:
    - create at least one link protocol data unit associated with one of said at least one logical data unit, said link protocol data comprising link data for said logical data unit; and
      
      create a verification protocol data unit comprising said verification data for said logical data unit and extracted from said program file.
  - 245. The apparatus of claim 228 wherein said said processor is further configured to:
    - create at least one link protocol data unit associated with one of said at least one logical data unit, said link protocol data comprising link data for said logical data unit;
      
      compute verification data for at least one of said at least one logical data unit; and
      
      create a verification protocol data unit comprising said verification data for said logical data unit.
  - 246. The apparatus of claim 228 wherein said processor is further configured to receive from said second device an indication of whether said first fingerprint matches a second fingerprint computed over the payload portion of the protocol data units received by said second device.
  - 247. The apparatus of claim 228 wherein said processor is further configured to receive from said second device an indication of whether said one or more members match a second authentication code based at least in part on a second fingerprint, said second fingerprint computed over the payload portion of the protocol data units received by said second device.
  - 248. The apparatus of claim 228 wherein said protocol comprises an application protocol data unit (APDU) protocol;
    - and said protocol data units comprise application protocol data units (APDUs).
  - 249. The apparatus of claim 248 wherein said protocol further comprises using a trailer APDU to indicate a last APDU associated with a program unit.
  - 250. The apparatus of claim 248 wherein said protocol further comprises using a header APDU to indicate an expected sequence of one or more logical program APDUs to follow said header APDU.
  - 251. The apparatus of claim 248 wherein said APDUs comprise information identifying the context of said APDUs.
  - 252. The apparatus of claim 228 wherein said first fingerprint comprises a checksum.
  - 253. The apparatus of claim 228 wherein said first fingerprint comprises a cyclic redundancy code (CRC).
  - 254. The apparatus of claim 228 wherein said first fingerprint comprises a message digest.
  - 255. The apparatus of claim 228 wherein said first fingerprint comprises a keyed hash-based message authentication code (HMAC).

256. An apparatus for communicating program data between a first device and a second device comprising a memory, the apparatus comprising:
- a memory for storing said program data; and
  
  an installer configured to;
  
  communicate a second program file to a second device, said second program file comprising said program data and one or more members of the group comprising a first fingerprint and a first authentication code based at least in part on said first fingerprint;
  
  receive said one or more members and a plurality of protocol data units comprising at least one logical data unit of a program file, each of said at least one logical data unit partitioned into at least one protocol data unit, the format of said at least one protocol data unit defined by a communication protocol and including a payload portion;
  
  compute a second fingerprint over the payload portion of the protocol data units of said at least one logical data unit; and
  
  commit said program to said memory based at least in part on whether said one or more members match said second fingerprint or a second authentication code based at least in part on said second fingerprint.
- View Dependent Claims (257, 258, 259, 260, 261, 262, 263, 264, 265, 266)
- - 257. The apparatus of claim 256 wherein said installer is further configured to exclude from said computing a protocol data unit that comprises link data.
  - 258. The apparatus of claim 256 wherein said installer is further configured to exclude from said computing a protocol data unit that comprises verification data if a flag indicates verification data should be excluded from an authentication fingerprint computation.
  - 259. The apparatus of claim 256 wherein said protocol comprises an application protocol data unit (APDU) protocol;
    - and said protocol data units comprise application protocol data units (APDUs).
  - 260. The apparatus of claim 259 wherein said protocol further comprises using a trailer APDU to indicate a last APDU associated with a program unit.
  - 261. The apparatus of claim 259 wherein said protocol further comprises using a header APDU to indicate an expected sequence of one or more logical program APDUs to follow said header APDU.
  - 262. The apparatus of claim 259 wherein said APDUs comprise information identifying the context of said APDUs.
  - 263. The apparatus of claim 256 wherein said first fingerprint comprises a checksum;
    - and said second fingerprint comprises a checksum.
  - 264. The apparatus of claim 256 wherein said first fingerprint comprises a cyclic redundancy code (CRC);
    - and said second fingerprint comprises a CRC.
  - 265. The apparatus of claim 256 wherein said first fingerprint comprises a message digest;
    - and said second fingerprint comprises a message digest.
  - 266. The apparatus of claim 256 wherein said first fingerprint comprises a keyed hash-based message authentication code (HMAC);
    - and said second fingerprint comprises a keyed hash-based message authentication code (HMAC).

267. An apparatus for communicating program data between a first device and a second device, the apparatus comprising:
- a memory for storing said program data;
  
  an off-card installer configured to;
  
  disassemble a first program file comprising program data into at least one logical data unit;
  
  partition each of said at least one logical data unit into at least one protocol data unit, the format of said at least one protocol data unit defined by a communication protocol and including a payload portion;
  
  compute a first fingerprint over the payload portion of the protocol data units of said at least one logical data unit; and
  
  communicate said protocol data units of said at least one logical data unit and one or more of the group comprising said first fingerprint and a first authentication code based at least in part on said first fingerprint to said second device according to said protocol.
- View Dependent Claims (268, 269, 270, 271, 272, 273, 274, 275, 276, 277, 278, 279, 280)
- - 268. The apparatus of claim 267 wherein said program data comprises a class file.
  - 269. The apparatus of claim 267 wherein said program file comprises a JAR file.
  - 270. The apparatus of claim 267 wherein said program file comprises a CAP file.
  - 271. The apparatus of claim 267 wherein said off-card installer is further configured to create at least one verification protocol data unit associated with one of said at least one logical data unit, said verification protocol data unit comprising verification data for said logical data unit.
  - 272. The apparatus of claim 267 wherein said off-card installer is further configured to receive from said second device an indication of whether said one or more members matches a second fingerprint computed over the payload portion of the protocol data units received by said second device, or a second authentication code based at least in part on said second fingerprint.
  - 273. The apparatus of claim 267 wherein said protocol comprises an application protocol data unit (APDU) protocol;
    - and said protocol data units comprise application protocol data units (APDUs).
  - 274. The apparatus of claim 273 wherein said protocol further comprises using a trailer APDU to indicate a last APDU associated with a program unit.
  - 275. The apparatus of claim 273 wherein said protocol further comprises using a header APDU to indicate an expected sequence of one or more logical program APDUs to follow said header APDU.
  - 276. The apparatus of claim 273 wherein said APDUs comprise information identifying the context of said APDUs.
  - 277. The apparatus of claim 267 wherein said first fingerprint comprises a checksum.
  - 278. The apparatus of claim 267 wherein said first fingerprint comprises a cyclic redundancy code (CRC).
  - 279. The apparatus of claim 267 wherein said first fingerprint comprises a message digest.
  - 280. The apparatus of claim 267 wherein said first fingerprint comprises a keyed hash-based message authentication code (HMAC).

281. An apparatus for automatic computation of a digital fingerprint, the apparatus comprising:
- a memory dedicated for storing program data;
  
  a computation unit in communication with said memory and configured to incrementally compute a digital fingerprint over data stored in said memory.
- View Dependent Claims (282, 283)
- - 282. The apparatus of claim 281 wherein said computation unit is further configured to incrementally compute said digital fingerprint upon detecting a write operation to said memory.
  - 283. The apparatus of claim 281 wherein said computation unit is further configured to incrementally compute a digital fingerprint upon receiving a read request for data stored in said memory.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Oracle America, Inc. (Oracle Corporation)
Original Assignee
Sun Microsystems Incorporated (Oracle Corporation)
Inventors
Jong, Eduard de

Granted Patent

US 8,121,955 B2
Time in Patent Office

Days
Field of Search
US Class Current

705/64
CPC Class Codes

G06F 21/572   Secure firmware programming...

G06F 21/608   Secure printing

G06F 9/445   Program loading or initiati...

G06Q 20/105   involving programming of a ...

G06Q 20/3552   Downloading or loading of p...

G06Q 20/382   insuring higher security of...

G06Q 20/3825   Use of electronic signatures

G07F 7/1008   Active credit-cards provide...

Signing program data payload sequence in program loading

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

283 Claims

Specification

Solutions

Use Cases

Quick Links

Signing program data payload sequence in program loading

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

283 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links