METHOD FOR SECURE TRANSFER OF AN APPLICATION FROM A SERVER INTO A READING DEVICE UNIT
2 Assignments
0 Petitions
Accused Products
Abstract
A method and a system for secure transfer of an application from a server (S) into a reading device unit (2) with authentication of a user with a data carrier unit (1), the server (S) making available the application, wherein, between the data carrier unit (1) and the server (S), a first cryptographically secured channel (K1) is set up based on first cryptographic information (A), and between a security module (3) of the reading device unit (2) and the server (S) a second cryptographically secured channel (K2) is set up based on second cryptographic information (B). The application is transferred from the server to the reading device unit via the second cryptographically secured channel (K2).
31 Citations
25 Claims
-
1-13. -13. (canceled)
-
14. A method for secure transfer of an application from a server (S) into a reading device unit with authentication of a user by means of data carrier unit, the server making available the application, comprising the steps:
-
setting up between the data carrier unit and the server (S) a first cryptographically secured channel (K1) based on first cryptographic information (A); setting up between a security module of the reading device unit and the server (S) a second cryptographically secured channel (K2) based on second cryptographic information (B); transferring the application from the server to the reading device unit via the second cryptographically secured channel (K2); installing the application on the security module of the reading device unit; and managing the application by the security module of the reading device unit. - View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22, 23, 25)
-
-
24. A system comprising a server (S), data carrier unit and reading device unit, which is configured so that in the operation of the system:
-
between the data carrier unit and the server (S) a first cryptographically secured channel (K1) is set up based on first cryptographic information (A) for the purpose of the authentication of a user by means of the data carrier unit at the server (S); between a security module of the reading device unit and the server (S) a second cryptographically secured channel (K2) is set up based on second cryptographic information (B); an application is transferred from the server (S) to the reading device unit via the second cryptographically secured channel (K2), and wherein the application, after the transfer, is installed and managed on the security module of the reading device unit.
-
Specification