SPOOFING PROTECTION FOR SECURE-ELEMENT IDENTIFIERS
First Claim
1. An electronic device, comprising:
- an antenna;
an interface circuit, coupled to the antenna, configured to communicate with another electronic device; and
a secure element, coupled to the interface circuit, configured to;
receive, from the other electronic device, a challenge and a request for a secure-element identifier of the secure element; and
provide, to the other electronic device, the secure-element identifier, a certificate associated with a provider of the secure element, and a digital signature, wherein the digital signature includes a signed version of the challenge and the secure-element identifier.
1 Assignment
0 Petitions
Accused Products
Abstract
The disclosed embodiments related to a first electronic device (such as a cellular telephone) that includes a secure element. In response to a challenge and a request for a secure-element identifier associated with the secure element, which are received from a second electronic device (such as a trusted services manager that loads content onto the secure element), the secure element provides to the second electronic device: the secure-element identifier, a certificate associated with a provider of the secure element, and a digital signature. The digital signature may include a signed version of the challenge and the secure-element identifier, which are encrypted using an encryption key associated with a provider of the secure element. In this way, the second electronic device may certify the secure element.
77 Citations
20 Claims
-
1. An electronic device, comprising:
-
an antenna; an interface circuit, coupled to the antenna, configured to communicate with another electronic device; and a secure element, coupled to the interface circuit, configured to; receive, from the other electronic device, a challenge and a request for a secure-element identifier of the secure element; and provide, to the other electronic device, the secure-element identifier, a certificate associated with a provider of the secure element, and a digital signature, wherein the digital signature includes a signed version of the challenge and the secure-element identifier. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A secure element for use with an electronic device, comprising:
-
a processor; and memory, coupled to the processor, which stores a program module configured to be executed by the processor, the program module including; instructions for receiving, from another electronic device, a challenge and a request for a secure-element identifier of the secure element; and instructions for providing, to the other electronic device, the secure-element identifier, a certificate associated with a provider of the secure element, and a digital signature, wherein the digital signature includes a signed version of the challenge and the secure-element identifier. - View Dependent Claims (9)
-
-
10. A processor-implemented method for certifying a secure element in an electronic device, wherein the method comprises:
-
receiving, from another electronic device, a challenge and a request for a secure-element identifier of the secure element; and using the processor, providing, to the other electronic device, the secure-element identifier, a certificate associated with a provider of the secure element, and a digital signature, wherein the digital signature includes a signed version of the challenge and the secure-element identifier. - View Dependent Claims (11)
-
-
12. An electronic device, comprising:
-
an antenna; an interface circuit, coupled to the antenna, configured to communicate with a second electronic device and a third electronic device; a processor; a secure element coupled to the processor; and memory, coupled to the processor, which stores a program module configured to be executed by the processor, the program module including; instructions for providing, to the third electronic device, an identifier of a user; instructions for receiving, from the third electronic device, a sign-in token that is based on the identifier; instructions for providing the sign-in token and a request to the secure element for a secure-element identifier; instructions for receiving, from the secure element, the secure-element identifier, a certificate associated with a provider of the secure element, and a digital signature, wherein the digital signature includes a signed version of the secure-element identifier and the sign-in token; and instructions for providing, to the second electronic device, the secure-element identifier, the certificate, the digital signature, and the sign-in token. - View Dependent Claims (13, 14, 15, 16, 17)
-
-
18. A computer-program product for use in conjunction with an electronic device, the computer-program product comprising a non-transitory computer-readable storage medium and a computer-program mechanism embedded therein, to certify a secure element in the electronic device, the computer-program mechanism including:
-
instructions for providing, to a third electronic device, an identifier of a user; instructions for receiving, from the third electronic device, a sign-in token that is based on the identifier; instructions for providing the sign-in token and a request to a secure element in the electronic device for a secure-element identifier; instructions for receiving, from the secure element, the secure-element identifier, a certificate associated with a provider of the secure element, and a digital signature, wherein the digital signature includes a signed version of the sign-in token and the secure-element identifier; and instructions for providing, to a second electronic device, the secure-element identifier, the certificate, the digital signature, and the sign-in token. - View Dependent Claims (19, 20)
-
Specification