LOCAL TRUSTED SERVICES MANAGER FOR A CONTACTLESS SMART CARD
First Claim
1. A computer-implemented method for implementing a trusted service manager (TSM) locally within a secure element of a contactless smart card payment device, used the method comprising:
- installing, in the secure element of the contactless smart card payment device, a TSM software application, wherein the TSM software application comprises computer code for executing a transmitting function to request application data and a decrypting function to decrypt an encrypted form of received application data, the received application data received at the contactless smart card device in response to a request by the transmitting function;
storing, in the secure element, a private encryption key assigned to the TSM software application and a corresponding public encryption key;
transmitting, by the transmitting function of the TSM software application, the request for application data to a registered remote non-TSM computer configured to access the public key;
receiving, in the contactless smart card payment device from the remote non-TSM computer, the requested application data for installation in the secure element of the contactless smart card payment device, the received requested application data having been encrypted by the remote non-TSM computer using the public encryption key; and
decrypting, by the decrypting function of the TSM software application, the encrypted received application data using the private key.
2 Assignments
0 Petitions
Accused Products
Abstract
Systems, methods, computer programs, and devices are disclosed herein for deploying a local trusted service manager within a secure element of a contactless smart card device. The secure element is a component of a contactless smart card incorporated into a contactless smart card device. An asymmetric cryptography algorithm is used to generate public-private key pairs. The private keys are stored in the secure element and are accessible by a trusted service manager (TSM) software application or a control software application in the secure element. A non-TSM computer with access to the public key encrypts and then transmits encrypted application data or software applications to the secure element, where the TSM software application decrypts and installs the software application to the secure element for transaction purposes.
104 Citations
19 Claims
-
1. A computer-implemented method for implementing a trusted service manager (TSM) locally within a secure element of a contactless smart card payment device, used the method comprising:
-
installing, in the secure element of the contactless smart card payment device, a TSM software application, wherein the TSM software application comprises computer code for executing a transmitting function to request application data and a decrypting function to decrypt an encrypted form of received application data, the received application data received at the contactless smart card device in response to a request by the transmitting function; storing, in the secure element, a private encryption key assigned to the TSM software application and a corresponding public encryption key; transmitting, by the transmitting function of the TSM software application, the request for application data to a registered remote non-TSM computer configured to access the public key; receiving, in the contactless smart card payment device from the remote non-TSM computer, the requested application data for installation in the secure element of the contactless smart card payment device, the received requested application data having been encrypted by the remote non-TSM computer using the public encryption key; and decrypting, by the decrypting function of the TSM software application, the encrypted received application data using the private key. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A computer-implemented system for implementing a trusted service manager (TSM) locally within the secure element of a contactless smart card payment device, the system comprising:
-
a contactless smart card payment device; a secure element resident on the device and storing a private encryption key assigned to the secure element and a corresponding public encryption key; and a TSM software application resident in the secure element, the TSM software application comprising computer code for executing a transmitting function to request application data and a decrypting function for decrypting an encrypted form of received application data, the received application data received at the contactless smart card device in response to a request by the transmitting function, wherein the transmitting function of the TSM software application transmits, to a remote non-TSM computer, the request for application data, wherein the remote non-TSM computer is configured to access the public key, wherein the device receives, from the remote non-TSM computer, the requested application data in response to the transmitted request for installation in the secure element of the device, the received application data having been encrypted by the remote non-TSM computer using the public encryption key, and wherein the decrypting function of the TSM software application decrypts the encrypted received application data using the private key.
-
- 10. The system according to claim 10, wherein the secure element further comprises a control software application that writes the decrypted application data to at least one memory block in the secure element.
-
17. A computer-implemented method for implementing a trusted service manager (TSM) locally within the a secure element of a contactless smart card payment device, the method comprising:
-
registering a non-TSM computer with a controller of access to the secure element of the contactless smart card payment device, thereby obtaining access for the non-TSM computer to a public encryption key for encrypting application data prior to transmission of the encrypted data by the non-TSM computer to the contactless smart card payment device, the public key corresponding to a private encryption key assigned to the contactless smart card payment device and stored in the secure element of the contactless smart card payment device, the non-TSM computer being remote from the contactless smart card payment device; receiving, by the non-TSM computer from the contactless smart card payment device, a request for application data managed by non-TSM computer; encrypting, by the non-TSM computer, the requested application data using the public key; and transmitting, by the non-TSM computer to the contactless smart card payment device, the encrypted application data for input into the secure element of the contactless smart card payment device by the local TSA is the secure element of the contactless smart card payment device.
-
- 19. The method according to claim 19, wherein the encrypted application data is transmitted from the non-TSM computer to the secure element of the contactless smart card payment device.
Specification