TAMPER RESISTANT DEVICE FOR AN INTEGRATED CIRCUIT CARD

US 20200137034A1
Filed: 10/17/2019
Published: 04/30/2020
Est. Priority Date: 10/30/2018
Status: Active Grant

First Claim

Patent Images

1. A tamper resistant device for an embedded Universal Integrated Circuit Card, the device comprising:

memory storing a first security domain that includes a telecommunication profile and a second security domain that includes an application profile;

a first physical interface configured to be coupled to a baseband processor that is configured to operate with a mobile telecommunications network, the first physical interface configured to allow the baseband processor to access the telecommunication profile; and

a second physical interface configured to be coupled to an application processor, the second physical interface configured to allow the application processor to access the application profile;

wherein the tamper resistant device is configured to enable accessibility to the application profile when corresponding commands are received in signals exchanged at the first interface and to enable accessibility to the telecommunication profile if corresponding commands are received in signals exchanged at the second interface.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A tamper resistant device can be used for an integrated circuit card. The device includes memory storing a first security domain that includes a telecommunication profile and a second security domain that includes an application profile. A first physical interface is configured to be coupled to a baseband processor configured to operate with a mobile telecommunications network. A second physical interface configured to be coupled to an application processor. The first physical interface configured to allow the baseband processor to access the telecommunication profile and the second physical interface is configured to allow the application processor to access the application profile. The tamper resistant device is configured to enable accessibility to the application profile if corresponding commands are received at the first interface and to enable accessibility to the telecommunication profile if corresponding commands are received at the second interface.

15 Citations

View as Search Results

21 Claims

1. A tamper resistant device for an embedded Universal Integrated Circuit Card, the device comprising:
- memory storing a first security domain that includes a telecommunication profile and a second security domain that includes an application profile;
  
  a first physical interface configured to be coupled to a baseband processor that is configured to operate with a mobile telecommunications network, the first physical interface configured to allow the baseband processor to access the telecommunication profile; and
  
  a second physical interface configured to be coupled to an application processor, the second physical interface configured to allow the application processor to access the application profile;
  
  wherein the tamper resistant device is configured to enable accessibility to the application profile when corresponding commands are received in signals exchanged at the first interface and to enable accessibility to the telecommunication profile if corresponding commands are received in signals exchanged at the second interface.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The device according to claim 1, wherein the application profile corresponds to an application profile of an embedded secure element.
  - 3. The device according to claim 1, wherein the application profile corresponds to an application profile of a Trusted platform module.
  - 4. The device according to claim 1, wherein the first interface is a SPI interface and the second interface is an ISO interface.
  - 5. The device according to claim 1, further comprising a SWP (Single Wire Protocol) interface configured to interface an NFC controller with either the application profile or the telecommunication profile.
  - 6. The device according to claim 1, further comprising an application registry configured to store information indicating the application profile to which an application belongs.

7. An electronic device comprising:
- a tamper resistant device implementing an integrated circuit card, the tamper resistant device storing a first security domain that includes a telecommunication profile and a second security domain that includes an application profile;
  
  a baseband processor configured to operate with a mobile telecommunications network;
  
  an application processor;
  
  a first physical interface configured to allow access from the baseband processor to the telecommunication profile; and
  
  a second physical interface configured to allow access from the application processor to the application profile;
  
  wherein the tamper resistant device is configured to enable accessibility to the application profile if corresponding commands are received in signals exchanged on the first interface and to enable accessibility to the telecommunication profile if corresponding commands are received in signals exchanged on the second interface.
- View Dependent Claims (8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18)
- - 8. The device according to claim 7, wherein the integrated circuit card is an embedded Universal Integrated Circuit Card.
  - 9. The device according to claim 8, wherein the application profile corresponds to an application profile of an embedded secure element.
  - 10. The device according to claim 7, wherein the application profile corresponds to an application profile of a Trusted platform module.
  - 11. The device according to claim 7, wherein the first interface is a SPI interface and the second interface is an ISO interface.
  - 12. The device according to claim 7, further comprising a near field communication circuit, wherein the application profile is provided for communication with the near field communication circuit.
  - 13. The device according to claim 12, further comprising a SWP (Single Wire Protocol) interface configured to interface an NFC controller with either the application profile or the telecommunication profile depending on which physical interface receives the commands.
  - 14. The device according to claim 7, wherein the device is configured to perform a routing operation to select whether accessibility to the first security domain or the second security domain is enabled based on which physical interface the commands are received.
  - 15. The device according to claim 14, further comprising a memory with hardware separated areas for storing the first and second security domains, wherein accessibility is enabled by enabling access to the corresponding memory area.
  - 16. The device according to claim 14, wherein the routing operation includes also performing an arbitration required to make concurrently received commands sequential.
  - 17. The device according to claim 7, further comprising an application registry configured to store information indicating the application profile to which an application belongs.
  - 18. The device according to claim 7, wherein respective instances of an issuer security domain root and of an eUICC Controlling Authority Security Domain (eCASD) are included for the application profile and the telecommunication profile.

19. A method of accessing profiles in a tamper resistant device implementing an embedded Universal Integrated Circuit Card, the device comprising a first physical interface configured to allow a baseband processor access to a telecommunications profile stored in a first security domain and a second physical interface configured to allow an application processor access to an application profile stored in a second security domain, the method comprising:
- receiving commands at the first interface or the second interface;
  
  enabling accessibility to the application profile when the commands are received at the first interface; and
  
  enabling accessibility to the telecommunication profile when the commands are received at the second interface.
- View Dependent Claims (20, 21)
- - 20. The method of claim 19, further comprising:
    - defining a routing function in an operative system to perform enabling accessibility to the application profile when the commands are received at the first interface and enabling accessibility to the telecommunication profile when the commands are received at the second interface; and
      
      providing separate ISD-R and eCASD for each of the security domain.
  - 21. A non-transitory memory storing software code that, when executed by at least one processor, causes the at least one processor to implement the method according to claim 19.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
STMicroelectronics SRL (STMicroelectronics NV)
Original Assignee
STMicroelectronics SRL (STMicroelectronics NV)
Inventors
Di Cosmo, Luca, Veneroso, Amedeo

Granted Patent

US 11,582,212 B2
Time in Patent Office

Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/10   Protecting distributed prog...

G06F 21/71   to assure secure computing ...

G06K 7/10247   issues specific to the use ...

G06Q 20/3227   using secure elements embed...

G06Q 20/3229   Use of the SIM of a M-devic...

G06Q 20/325   using wireless networks

G06Q 20/326   Payment applications instal...

G07F 7/0826   Embedded security module

H04L 63/062   for key distribution, e.g. ...

H04L 63/0823   using certificates cryptogr...

H04W 12/069   using certificates or pre-s...

H04W 12/08   Access security

H04W 12/086   using security domains

H04W 12/35   Protecting application or s...

H04W 12/45   using multiple identity mod...

H04W 4/50   Service provisioning or rec...

H04W 4/60   Subscription-based services...

H04W 8/183   Processing at user equipmen...

TAMPER RESISTANT DEVICE FOR AN INTEGRATED CIRCUIT CARD

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

15 Citations

21 Claims

Specification

Use Cases

Quick Links

Others

TAMPER RESISTANT DEVICE FOR AN INTEGRATED CIRCUIT CARD

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

15 Citations

21 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others