Method for issuer and chip specific diversification

US 20070095927A1
Filed: 11/02/2005
Published: 05/03/2007
Est. Priority Date: 11/02/2005
Status: Active Grant

First Claim

Patent Images

1. A method for initializing a secure element in a wireless terminal, comprising:

receiving an uninitialized secure element comprising memory, wherein the memory of the secure element includes pre-installed root keys and a unique serial number;

receiving secure element tailoring information associated with a wireless terminal issuer; and

, configuring the installed secure element to support secure communication through the wireless terminal, wherein said configuring of the secure element is based on the received tailoring information and the pre-installed root keys and the unique serial number.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method for initializing secure elements for use in mobile devices. A mobile device manufacturer embeds uninitialized secure elements into mobile devices. An issuer-specific seed value is securely passed into an initialization routine in the operating system of the secure element. The initialization routine diversifies the initial root keys on the secure element with the issuer seed and the unique chip serial number to create master and chip keys for use in secure communications between the issuer and the mobile device user.

59 Citations

View as Search Results

40 Claims

1. A method for initializing a secure element in a wireless terminal, comprising:
- receiving an uninitialized secure element comprising memory, wherein the memory of the secure element includes pre-installed root keys and a unique serial number;
  
  receiving secure element tailoring information associated with a wireless terminal issuer; and
  
  , configuring the installed secure element to support secure communication through the wireless terminal, wherein said configuring of the secure element is based on the received tailoring information and the pre-installed root keys and the unique serial number.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
- - 2. The method of claim 1, further comprising the step of installing the uninitialized secure element into the wireless terminal, wherein the step of installing the uninitialized secure element occurs before the step of configuring the installed secure element.
  - 3. The method of claim 1, wherein said secure element is an integrated circuit microprocessor card.
  - 4. The method of claim 1, wherein said wireless terminal is a mobile phone.
  - 5. The method of claim 1, wherein said secure element comprises an operating system.
  - 6. The method of claim 5, wherein said operating system is a JavaCard with Global Platform compliant operating system.
  - 7. The method of claim 1, wherein the step of configuring the secure element comprises:
    - diversifying pre-installed root keys stored in the memory of the secure element with an issuer seed corresponding to the secure element tailoring information associated with the wireless terminal issuer to generate master keys;
      
      temporarily storing the master keys in the memory of the secure element;
      
      diversifying the master keys with a serial number stored in the memory of the secure element to generate chip keys; and
      
      , storing the chip keys in the memory of the secure element.
  - 8. The method of claim 7, wherein the step of configuring the secure element further comprises the step of permanently removing the root keys and master keys from the memory of the secure element after storing the chip keys.
  - 9. The method of claim 7, wherein the issuer seed corresponding to the secure element tailoring information associated with the wireless terminal issuer is encrypted.
  - 10. The method of claim 9, wherein said secure element tailoring information comprises:
    - the issuer seed encrypted with a transfer key, wherein the transfer key corresponds to a transfer key stored in the memory of the secure element; and
      
      , a MAC seed encrypted with the issuer seed, wherein the MAC seed corresponds to a MAC seed stored in the memory of the secure element.
  - 11. The method of claim 1, further comprising the step of delivering the unique chip serial number to the wireless terminal issuer after the configuration of the secure element.
  - 12. The method of claim 2, wherein the secure element is installed into the wireless terminal permanently.

13. An apparatus, comprising:
- a wireless terminal; and
  
  a terminal-integrated secure element comprising memory, wherein said secure element is configured, based on tailoring information received from an issuer and based on pre-installed root keys and a unique serial number associated with the secure element, to support secure communication through the wireless terminal.
- View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21, 22)
- - 14. The apparatus of claim 13, further comprising a radio frequency identification communication module.
  - 15. The apparatus of claim 14, further comprising an interface configured to support communication between the radio frequency identification communication module and the terminal-integrated secure element.
  - 16. The apparatus of claim 13, wherein said terminal-integrated secure element is an integrated circuit microprocessor card.
  - 17. The apparatus of claim 13, wherein said wireless terminal is a mobile phone.
  - 18. The apparatus of claim 13, wherein said terminal-integrated secure element comprises an operating system.
  - 19. The apparatus of claim 18, wherein said operating system is a JavaCard with Global Platform compliant operating system.
  - 20. The apparatus of claim 13, wherein the tailoring information received from the issuer is encrypted.
  - 21. The apparatus of claim 20, wherein said tailoring information comprises:
    - an issuer seed encrypted with a transfer key, wherein the transfer key corresponds to a transfer key stored in the memory of the secure element; and
      
      , a MAC seed encrypted with the issuer seed, wherein the MAC seed corresponds to a MAC seed stored in the memory of the secure element.
  - 22. The apparatus of claim 13, wherein the secure element is installed into the wireless terminal permanently.

23. A computer-readable medium having computer-executable instructions for performing steps comprising:
- receiving secure element tailoring information associated with a wireless terminal issuer;
  
  deriving from said secure element tailoring information a key value and an issuer seed;
  
  validating said secure element tailoring information using said derived key value and pre-installed key values of a wireless terminal; and
  
  , configuring a secure element to support secure communication through the wireless terminal, wherein said configuring of the secure element is based on the secure element tailoring information.
- View Dependent Claims (24, 25, 26, 27, 28, 29, 30)
- - 24. The computer-readable medium of claim 23, wherein said wireless terminal is a mobile phone.
  - 25. The computer-readable medium of claim 23, wherein the steps are performed by an integrated circuit microprocessor card, wherein said integrated circuit microprocessor card is running an operating system.
  - 26. The computer-readable medium of claim 25, wherein the operating system is a JavaCard with Global Platform compliant operating system.
  - 27. The computer-readable medium of claim 23, wherein the step of configuring said secure element comprises:
    - generating master keys by diversifying pre-installed root keys stored in the memory of the secure element, wherein the root keys are diversified with the issuer seed derived from the secure element tailoring information; and
      
      , generating chip keys by diversifying the master keys with a serial number stored in the memory of the secure element.
  - 28. The computer-readable medium of claim 27, wherein the step of configuring the secure element further comprises the step of removing the pre-installed root keys and generated master keys from the memory of the secure element.
  - 29. The computer-readable medium of claim 27, wherein the issuer seed derived from the secure element tailoring information is encrypted.
  - 30. The computer-readable medium of claim 23, wherein said secure element tailoring information includes data corresponding to:
    - the issuer seed encrypted with a transfer key, wherein the transfer key corresponds to a transfer key stored in the memory of the secure element; and
      
      , a MAC seed encrypted with the issuer seed, wherein the MAC seed corresponds to a MAC seed stored in the memory of the secure element.

31. A method for initializing a secure element in a wireless terminal, comprising:
- generating tailoring information corresponding to a key value associated with the wireless terminal and a seed value associated with a wireless terminal issuer;
  
  securely transmitting said tailoring information to an untrusted party in possession of said wireless terminal, wherein the information is thereafter used to configure the secure element to support secure communication through the wireless terminal, wherein said configuring is based on the tailoring information and pre-installed root keys and a unique serial number associated with the secure element.
- View Dependent Claims (32, 33, 34, 35, 36, 37)
- - 32. The method of claim 31, wherein said secure element is an integrated circuit microprocessor card.
  - 33. The method of claim 31, wherein said wireless terminal is a mobile phone.
  - 34. The method of claim 31, wherein said secure element comprises an operating system.
  - 35. The method of claim 34, wherein said operating system is a JavaCard with Global Platform compliant operating system.
  - 36. The method of claim 31, wherein securely transmitting said tailoring information comprises encrypting said tailoring information.
  - 37. The method of claim 31, further comprising:
    - receiving the unique chip serial number from the untrusted party after the successful configuration of the secure element.

38. A memory device that has been initialized to include the following fields:
- at least one pre-installed root key value for use in the generation of at least one issuer-specific chip key;
  
  a pre-installed transfer key value for use in the validation of received initialization data;
  
  a pre-installed MAC seed value for use in the validation of received initialization data; and
  
  , a pre-installed unique chip serial number, wherein said at least one root key value, said transfer key value, and said MAC seed value are identical to respective root key values, transfer key values, and MAC seed values on a plurality of other commonly manufactured memory devices, and wherein said unique chip serial number is not identical to the unique chip serial number on any other commonly manufactured memory device.
- View Dependent Claims (39, 40)
- - 39. The memory device of claim 38, wherein the device has been further initialized to include a field comprising at least one chip key generated from the at least one pre-installed root key values, an externally-provided issuer-specific seed value, and the unique chip serial number.
  - 40. The memory device of claim 38, wherein the device has been further initialized to remove the transfer key field, MAC seed field, and root key field, wherein these fields are removed subsequent to the storage of the at least one chip key on the memory device.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Nokia Technologies Oy (Nokia Corporation)
Original Assignee
Nokia Corporation
Inventors
Pesonen, Lauri

Granted Patent

US 7,699,233 B2
Time in Patent Office

Days
Field of Search
US Class Current

235/492
CPC Class Codes

G06F 21/73   by creating or determining ...

G06F 21/77   in smart cards

G06F 2221/2107   File encryption

G06Q 20/3558   Preliminary personalisation...

G07F 7/1008   Active credit-cards provide...

Method for issuer and chip specific diversification

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

59 Citations

40 Claims

Specification

Solutions

Use Cases

Quick Links

Method for issuer and chip specific diversification

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

59 Citations

40 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links