LOCAL TRUSTED SERVICE MANAGER
First Claim
1. A method for managing a secure element which is embedded into a host unit, the method comprising:
- transmitting a request for a management script from the host unit to a program element of the secure element,at the program element, generating a management script in accordance with the request and encrypting the generated management script,transmitting the encrypted management script from the program element to the host unit,transmitting the encrypted management script from the host unit to a secure domain of the secure element, andat the secure domain, decrypting and executing the management script,wherein the request comprises a parameter value which is to be used to generate the management script, andwherein the host unit is a mobile communication unit and the parameter value is an International Mobile Equipment Identity of the mobile communication unit.
10 Assignments
0 Petitions
Accused Products
Abstract
A method for managing a secure element which is embedded into a host unit. The described method comprises (a) transmitting a request for a management script from the host unit to a program element of the secure element, (b) at the program element, generating a management script in accordance with the request and encrypting the generated management script, (c) transmitting the encrypted management script from the program element to the host unit, (d) transmitting the encrypted management script from the host unit to a secure domain of the secure element, and (e) at the secure domain, decrypting and executing the management script.
141 Citations
13 Claims
-
1. A method for managing a secure element which is embedded into a host unit, the method comprising:
-
transmitting a request for a management script from the host unit to a program element of the secure element, at the program element, generating a management script in accordance with the request and encrypting the generated management script, transmitting the encrypted management script from the program element to the host unit, transmitting the encrypted management script from the host unit to a secure domain of the secure element, and at the secure domain, decrypting and executing the management script, wherein the request comprises a parameter value which is to be used to generate the management script, and wherein the host unit is a mobile communication unit and the parameter value is an International Mobile Equipment Identity of the mobile communication unit. - View Dependent Claims (2, 3, 6, 11)
-
-
4. (canceled)
-
5. (canceled)
-
7. (canceled)
-
8. (canceled)
-
9. A secure element for a host unit, the secure element comprising a management applet for locally managing the secure element which is embedded into the host unit, the management applet comprising instructions which when executed by a secure element processor causes the secure element processor to perform the steps of
receiving a request for a management script from the host unit, generating a management script in accordance with the received request, encrypting the generated management script, and transmitting the encrypted management script to the host unit; - the secure element further comprising;
a processing unit adapted to execute the management applet, Where the secure element further comprises; a secure domain adapted to receive the encrypted management script from the host unit and to decrypt and execute the management script, wherein the received request comprises a parameter value used to generate the management script, wherein the host unit is a mobile communication unit and the parameter value is an International Mobile Equipment Identity of the mobile communication unit. - View Dependent Claims (10, 13)
- the secure element further comprising;
-
12. (canceled)
Specification