SELECTION OF ACCESS CONDITIONS FOR PORTABLE TOKENS

US 20100293191A1
Filed: 12/18/2008
Published: 11/18/2010
Est. Priority Date: 12/27/2007
Status: Active Grant

First Claim

Patent Images

1. A portable token (SC) comprising:

a capability query mechanism (CQM), the capability query mechanism (CQM) being set to inform entities (PC, MW) willing to communicate with the portable token (SC) of at least a subset of the command(s) (C) available in the portable token (SC), and a mechanism to set a flag when the capability query mechanism (CQM) is invoked, and, when a command (C) is called, to enforce first access conditions (AC1) for the command (C) if the flag is set, or to enforce second access conditions (AC2) for the command (C) if the flag is cleared.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The invention relates to a portable token (SC) comprising a capability query mechanism (CQM). The capability query mechanism (CQM) is set to inform entities (PC, MW) willing to communicate with the portable token (SC) of at least a subset of the command(s) (C) available in the portable token (SC). The portable token (SC) is arranged to set a flag when the capability query mechanism (CQM) is invoked. When a command (C) is called, the portable token (SC) enforces first access conditions (AC1) for the command (C) if the flag is set, or second access conditions (AC2) if the flag is cleared.

18 Citations

View as Search Results

11 Claims

1. A portable token (SC) comprising:
- a capability query mechanism (CQM), the capability query mechanism (CQM) being set to inform entities (PC, MW) willing to communicate with the portable token (SC) of at least a subset of the command(s) (C) available in the portable token (SC), and a mechanism to set a flag when the capability query mechanism (CQM) is invoked, and, when a command (C) is called, to enforce first access conditions (AC1) for the command (C) if the flag is set, or to enforce second access conditions (AC2) for the command (C) if the flag is cleared.
- View Dependent Claims (2, 3, 4, 8)
- - 2. The portable token (SC) according to claim 1, wherein the capability query mechanism (CQM) is further set to notify said entities of a first format (F1) for the command(s) (C), and wherein the flag is set only if a command (C) is received with said format (F1).
  - 3. The portable token (SC) according to claim 1 or 2, wherein the first access conditions (AC1) are more stringent than second access conditions (AC2).
  - 4. The portable token (SC) according to claim 1 or 2, wherein the portable token is a smart card, and the command (C) is an ISO 7816-4 compliant command.
  - 8. The portable token (SC) according to claim 3, wherein the portable token is a smart card, and the command (C) is an ISO 7816-4 compliant command.

5. A system comprising:
- a portable token (SC) having capability query mechanism (CQM), the capability query mechanism (CQM) being set to inform entities (PC, MW) willing to communicate with the portable token (SC) of at least a subset of the command(s) (C) available in the portable token (SC), and a mechanism to set a flag when the capability query mechanism (CQM) is invoked, and, when a command (C) is called, to enforce first access conditions (AC1) for the command (C) if the flag is set, or to enforce second access conditions (AC2) for the command (C) if the flag is cleared; and
  
  a middleware (MW), the middleware (MW) being set either;
  
  to query the portable token (SC) for its capabilities, the middleware (MW) being thereby requested to comply with first access conditions (AC1) when calling a command (C) of the portable token (SC), orto call a command (C) without having previously queried the portable token (SC) for its capabilities, being thereby requested to comply with second access conditions (AC2).
- View Dependent Claims (9, 10, 11)
- - 9. The system according to claim 5 wherein the capability query mechanism (CQM) is further set to notify said entities of a first format (F1) for the command(s) (C), and wherein the flag is set only if a command (C) is received with said format (F1).
  - 10. The system according to claim 5 or 9, wherein the first access conditions (AC1) are more stringent than second access conditions (AC2).
  - 11. The system according to claim 5 or 9, wherein the portable token is a smart card, and the command (C) is an ISO 7816-4 compliant command.

6. A method for a personal token (SC) to select the access conditions enforced by the personal token (SC) when an entity (PC, MW) calls a command (C) of the portable token (SC), whereinthe entity (PC, MW) invokes a capability query mechanism (CQM) of the portable token (SC) in order to be notified of at least a subset of the command(s) (C) available in the portable token (SC), thereby enjoying first access condition (AC1) for the command (C), orthe entity (PC, MW) does not invoke the capability query mechanism (CQM), thereby enjoying second access condition (AC2) for the command (C).
- View Dependent Claims (7)
- - 7. The method according to claim 6, wherein, in order for the portable token (SC) to enforce the first access condition (AC1) for the command (C), the capability query mechanism (QCM) is further set to notify the entity (PC, MW) of a first format (F1) for the command(s) (C), and wherein the portable token (SC) enforces the first access condition (AC1) only once a command (C) has been called with the first format (F1).

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Gemalto SA (Thales SA)
Original Assignee
Gemalto SA (Thales SA)
Inventors
Faher, Mourad

Granted Patent

US 8,881,255 B2
Time in Patent Office

Days
Field of Search
US Class Current

707/769
CPC Class Codes

G06F 21/74 operating in dual or compar...

G06F 21/77 in smart cards

SELECTION OF ACCESS CONDITIONS FOR PORTABLE TOKENS

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

18 Citations

11 Claims

Specification

Solutions

Use Cases

Quick Links

SELECTION OF ACCESS CONDITIONS FOR PORTABLE TOKENS

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

18 Citations

11 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links