SYSTEM AND METHOD FOR PROVISIONING OVER THE AIR OF CONFIDENTIAL INFORMATION ON MOBILE COMMUNICATIVE DEVICES WITH NON-UICC SECURE ELEMENTS

US 20120172089A1
Filed: 12/02/2011
Published: 07/05/2012
Est. Priority Date: 12/30/2010
Status: Active Grant

First Claim

Patent Images

1. A method for over-the-air (OTA) provisioning a non-Universal Integrated Circuit Card (UICC) type secure element (SE) of a mobile device, comprising:

receiving a request to initialize an OTA proxy of a mobile device;

initializing the OTA proxy;

receiving provisioning data through the OTA proxy; and

provisioning the received data into the SE, wherein the SE is a non-UICC type SE.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method for over-the-air (OTA) provisioning a non-Universal Integrated Circuit Card (UICC) type secure element (SE) of a mobile device, including receiving a request to initialize an OTA proxy of a mobile device; initializing the OTA proxy; receiving provisioning data through the OTA proxy; and provisioning the received data into the SE, in which the SE is a non-UICC type SE. A mobile device to provision secure data OTA in a non-UICC type SE including an OTA proxy to connect to a Trusted Service Manager (TSM) system, and to receive provisioning data from the TSM system; a near-field-communication (NFC) enabled chip to conduct a contactless transaction; and a SE to store information provisioned through OTA proxy, in which the SE is a non-UICC type SE.

102 Citations

View as Search Results

26 Claims

1. A method for over-the-air (OTA) provisioning a non-Universal Integrated Circuit Card (UICC) type secure element (SE) of a mobile device, comprising:
- receiving a request to initialize an OTA proxy of a mobile device;
  
  initializing the OTA proxy;
  
  receiving provisioning data through the OTA proxy; and
  
  provisioning the received data into the SE, wherein the SE is a non-UICC type SE.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
- - 2. The method of claim 1, further comprising:
    - requesting the OTA proxy from a Trusted Service Manager (TSM) system;
      
      receiving OTA proxy installation information; and
      
      installing the OTA proxy in the mobile device.
  - 3. The method of claim 1, wherein initializing the OTA proxy comprises:
    - waking the OTA proxy from its dormant state;
      
      gathering mobile device information;
      
      communicating, by the mobile device, with a TSM system through the OTA proxy; and
      
      transmitting the mobile device information to the TSM system.
  - 4. The method of claim 1, wherein receiving provisioning data through the OTA proxy comprises:
    - receiving the provisioning data as Application Protocol Data Unit (APDU) commands through the OTA proxy, wherein the TSM system converts the provisioning data into APDU commands.
  - 5. The method of claim 4, wherein provisioning the received data into the non-UICC type SE comprises provisioning the APDU commands, wherein the non-UICC type SE comprises a Micro SD, an Embedded SE, or a SE that does not support either a Short Message Service Point to Point (SMS-PP) protocol or a Bearer Independent Protocol (BIP).
  - 6. The method of claim 1, wherein the request to initialize the OTA proxy is received through a push server.
  - 7. The method of claim 1, further comprising preparing the SE for provisioning, wherein preparing the SE for provisioning comprises:
    - retrieving mobile device information and SE information, wherein the SE information comprises an SE status and an SE type;
      
      receiving a key from the TSM system for accessing the SE; and
      
      securing the SE based on the SE status.
  - 8. The method of claim 7, wherein the mobile device information comprises at least one of International Mobile Equipment Identity (IMEI), Mobile Equipment Identifier (MEID), and Mobile Subscriber Integrated Services Digital Network Number (MSISDN).
  - 9. The method of claim 7, wherein the key comprises at least one of an initial issuer master key and a final issuer master key.
  - 10. The method of claim 9, wherein securing the SE comprises providing the initial issuer master key and the final issuer master key to the SE in response to a determination that the SE status is Operating System (OS) native.
  - 11. The method of claim 9, wherein securing the SE comprises providing the final issuer master key to the SE in response to a determination that SE status is initialized.
  - 12. The method of claim 7, wherein preparing the SE for provisioning further comprises processing a protocol to enable the SE to be provisioned, the SE type being a Micro SD type.
  - 13. The method of claim 3, wherein communicating, by the mobile device, with the TSM system through the OTA proxy comprises reattempting to communicate with the TSM system in response to a failure to communicate with the TSM system by the mobile device.
  - 14. The method of claim 1, wherein receiving provisioning data comprises reconnecting to the TSM system and requesting to receive the provisioning data in response to receipt of unusable data or in response to a session disconnection during an attempted receiving of the provisioning data.

15. A method for over-the-air (OTA) provisioning a non-Universal Integrated Circuit Card (UICC) type secure element (SE), comprising:
- receiving a request to initialize an OTA proxy of a mobile device from a Trusted Service Manager (TSM) system;
  
  initializing the OTA proxy;
  
  communicating, by the mobile device, with the TSM system through the OTA proxy;
  
  retrieving mobile device information and SE information, wherein the SE information comprises an SE status and an SE type;
  
  receiving a key from the TSM system for accessing the SE, wherein the key comprises at least one of an initial issuer master key and a final issuer master key;
  
  securing the SE by providing the corresponding key to the SE based on its status;
  
  receiving provisioning data; and
  
  provisioning the received data into the SE, wherein the SE is a non-UICC type SE.
- View Dependent Claims (16, 17, 18)
- - 16. The method of claim 15, further comprising processing a protocol for enabling the SE to receive provisioning data.
  - 17. The method of claim 15, wherein the request to initialize the OTA proxy is received at the mobile device through a push server.
  - 18. The method of claim 15, wherein the non-UICC type SE comprises a Micro SD, an Embedded SE, or a SE that does not support either a Short Message Service Point to Point (SMS-PP) protocol or a Bearer Independent Protocol (BIP).

19. A mobile device to provision secure data over-the-air (OTA) in a non-Universal Integrated Circuit Card (UICC) type secure element (SE), comprising:
- an OTA proxy to connect to a Trusted Service Manager (TSM) system, and to receive provisioning data from the TSM system;
  
  a near-field-communication (NFC) enabled device to conduct a contactless transaction; and
  
  a SE to store information provisioned through OTA proxy, wherein the SE is a non-UICC type SE.
- View Dependent Claims (20, 21, 22, 23, 24, 25, 26)
- - 20. The mobile device of claim 19, wherein the OTA proxy is configured to transmit mobile device information and SE information to the TSM system, wherein the SE information comprises an SE status and an SE type.
  - 21. The mobile device of claim 20, wherein the mobile device information comprises at least one of International Mobile Equipment Identity (IMEI), Mobile Equipment Identifier (MEID), and Mobile Subscriber Integrated Services Digital Network Number (MSISDN).
  - 22. The mobile device of claim 20, wherein the OTA proxy is configured to receive a key from the TSM system to access the SE based on the SE information sent to the TSM system, wherein the key comprises at least one of an initial issuer master key and a final issuer master key.
  - 23. The mobile device of claim 20, wherein the OTA proxy is further configured to receive a protocol to prepare the SE to be provisioned, the SE type being a Micro SD type.
  - 24. The mobile device of claim 19, wherein the mobile device further comprises a mobile wallet application comprising a widget corresponding to the information stored in the SE.
  - 25. The mobile device of claim 19, wherein the OTA proxy is to be installed OTA.
  - 26. The mobile device of claim 24, wherein the information stored in the SE comprises:
    - a Payment Procedure Secure Elements (PPSE) to store a contactless card applet; and
      
      a wallet management applet (WMA) corresponding to the contactless card applet.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Mozido Corfire-Korea Limited
Original Assignee
SK C&C Company Limited (SK Inc.)
Inventors
CHEONG, Kido, BAE, Sungwoo, KIM, Donghyun, LIM, Jaemin, KWON, Daeman, YOU, Youngjin

Granted Patent

US 9,161,218 B2
Time in Patent Office

Days
Field of Search
US Class Current

455/558
CPC Class Codes

G06F 21/34   involving the use of extern...

G06F 21/35   communicating wirelessly

G06F 21/57   Certifying or maintaining t...

G06F 21/88   Detecting or preventing the...

G06F 2221/2153   Using hardware token as a s...

G06Q 20/3227   using secure elements embed...

G06Q 20/3263   characterised by activation...

G06Q 20/354   Card activation or deactiva...

G06Q 20/355   Personalisation of cards fo...

G06Q 20/363   with the personal data of a...

H04L 63/067   using one-time keys cryptog...

H04W 12/04   Key management, e.g. using ...

H04W 12/06   Authentication

H04W 12/068   using credential vaults, e....

H04W 12/086   using security domains

H04W 12/35   Protecting application or s...

H04W 12/71   Hardware identity

H04W 12/72   Subscriber identity

H04W 4/50   Service provisioning or rec...

H04W 4/80   Services using short range ...

SYSTEM AND METHOD FOR PROVISIONING OVER THE AIR OF CONFIDENTIAL INFORMATION ON MOBILE COMMUNICATIVE DEVICES WITH NON-UICC SECURE ELEMENTS

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

102 Citations

26 Claims

Specification

Solutions

Use Cases

Quick Links

SYSTEM AND METHOD FOR PROVISIONING OVER THE AIR OF CONFIDENTIAL INFORMATION ON MOBILE COMMUNICATIVE DEVICES WITH NON-UICC SECURE ELEMENTS

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

102 Citations

26 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links