Mobile devices for commerce over unsecured networks
First Claim
Patent Images
1. A mobile device for conducting a secured transaction over a network, the mobile device comprising:
- a network interface;
an interface to receive a secure element;
a memory space for storing at least a module and an application downloaded from the network;
a processor coupled to the memory space and configured to execute the module to perform operations including;
verifying whether the application has been provisioned;
when said verifying indicates that the application has not been provisioned,sending to a server via the network interface an identifier identifying the application together with device information of a secure element;
establishing a secured channel between the secure element and the server using a key set installed on the secure element, wherein the server is configured to prepare data necessary for the application to function as designed on the mobile device;
receiving the data from the server to associate the application with the secure element; and
sending out an acknowledgement to a provider of the application about a status of the application that is now active with the secure element.
2 Assignments
0 Petitions
Accused Products
Abstract
Techniques for managing modules or applications installed in a mobile device are described. To provide authentic and secured transactions with another device, each of the installed applications is provisioned with a server through data communication capability in a mobile device. A provisioned application is associated with the personalized secure element in the mobile device and works with a set of keys that are generated in accordance with a set of keys from the personalized secure element. Further management of controlling an installed application is also described.
113 Citations
17 Claims
-
1. A mobile device for conducting a secured transaction over a network, the mobile device comprising:
-
a network interface; an interface to receive a secure element; a memory space for storing at least a module and an application downloaded from the network; a processor coupled to the memory space and configured to execute the module to perform operations including; verifying whether the application has been provisioned; when said verifying indicates that the application has not been provisioned, sending to a server via the network interface an identifier identifying the application together with device information of a secure element; establishing a secured channel between the secure element and the server using a key set installed on the secure element, wherein the server is configured to prepare data necessary for the application to function as designed on the mobile device; receiving the data from the server to associate the application with the secure element; and sending out an acknowledgement to a provider of the application about a status of the application that is now active with the secure element. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A mobile device for conducting a secured transaction over a network, the mobile device comprising:
-
a network interface; a secure element; a memory space for storing various modules downloaded from the network, each of the modules configured to provide an application or a service to a user of the mobile device; a processor coupled to the memory space and configured to execute an embedded module to perform operations including; provisioning each of the modules with a provider that publishes the each of the modules, wherein said provisioning each of the modules with a distributor comprises; sending to a server via the network interface an identifier identifying the each of the modules together with device information of the secure element; establishing a secured channel between the secure element and the server using a key set installed on the secure element, wherein the server is configured to prepare data necessary for the each of the modules to function as designed on the mobile device; receiving the data from the server to associate the each of the modules with the secure element, wherein the data includes a set of keys generated for the each of the modules; and sending out an acknowledgement to the provider of the each of the modules about a status thereof that is now active with the secure element. - View Dependent Claims (15, 16, 17)
-
Specification