SELECTION OF ACCESS CONDITIONS FOR PORTABLE TOKENS
First Claim
Patent Images
1. A portable token (SC) comprising:
- a capability query mechanism (CQM), the capability query mechanism (CQM) being set to inform entities (PC, MW) willing to communicate with the portable token (SC) of at least a subset of the command(s) (C) available in the portable token (SC), and a mechanism to set a flag when the capability query mechanism (CQM) is invoked, and, when a command (C) is called, to enforce first access conditions (AC1) for the command (C) if the flag is set, or to enforce second access conditions (AC2) for the command (C) if the flag is cleared.
1 Assignment
0 Petitions
Accused Products
Abstract
The invention relates to a portable token (SC) comprising a capability query mechanism (CQM). The capability query mechanism (CQM) is set to inform entities (PC, MW) willing to communicate with the portable token (SC) of at least a subset of the command(s) (C) available in the portable token (SC). The portable token (SC) is arranged to set a flag when the capability query mechanism (CQM) is invoked. When a command (C) is called, the portable token (SC) enforces first access conditions (AC1) for the command (C) if the flag is set, or second access conditions (AC2) if the flag is cleared.
18 Citations
11 Claims
-
1. A portable token (SC) comprising:
- a capability query mechanism (CQM), the capability query mechanism (CQM) being set to inform entities (PC, MW) willing to communicate with the portable token (SC) of at least a subset of the command(s) (C) available in the portable token (SC), and a mechanism to set a flag when the capability query mechanism (CQM) is invoked, and, when a command (C) is called, to enforce first access conditions (AC1) for the command (C) if the flag is set, or to enforce second access conditions (AC2) for the command (C) if the flag is cleared.
- View Dependent Claims (2, 3, 4, 8)
-
5. A system comprising:
- a portable token (SC) having capability query mechanism (CQM), the capability query mechanism (CQM) being set to inform entities (PC, MW) willing to communicate with the portable token (SC) of at least a subset of the command(s) (C) available in the portable token (SC), and a mechanism to set a flag when the capability query mechanism (CQM) is invoked, and, when a command (C) is called, to enforce first access conditions (AC1) for the command (C) if the flag is set, or to enforce second access conditions (AC2) for the command (C) if the flag is cleared; and
a middleware (MW), the middleware (MW) being set either;to query the portable token (SC) for its capabilities, the middleware (MW) being thereby requested to comply with first access conditions (AC1) when calling a command (C) of the portable token (SC), or to call a command (C) without having previously queried the portable token (SC) for its capabilities, being thereby requested to comply with second access conditions (AC2). - View Dependent Claims (9, 10, 11)
- a portable token (SC) having capability query mechanism (CQM), the capability query mechanism (CQM) being set to inform entities (PC, MW) willing to communicate with the portable token (SC) of at least a subset of the command(s) (C) available in the portable token (SC), and a mechanism to set a flag when the capability query mechanism (CQM) is invoked, and, when a command (C) is called, to enforce first access conditions (AC1) for the command (C) if the flag is set, or to enforce second access conditions (AC2) for the command (C) if the flag is cleared; and
-
6. A method for a personal token (SC) to select the access conditions enforced by the personal token (SC) when an entity (PC, MW) calls a command (C) of the portable token (SC), wherein
the entity (PC, MW) invokes a capability query mechanism (CQM) of the portable token (SC) in order to be notified of at least a subset of the command(s) (C) available in the portable token (SC), thereby enjoying first access condition (AC1) for the command (C), or the entity (PC, MW) does not invoke the capability query mechanism (CQM), thereby enjoying second access condition (AC2) for the command (C).
Specification