Method of dispatching secret keys to security modules and user cards in a data processing network

US 4,910,773 A
Filed: 03/31/1988
Issued: 03/20/1990
Est. Priority Date: 04/03/1987
Status: Expired due to Term

First Claim

Patent Images

1. A method for dispatching at least one predetermined secret key, in order to secure the implementation of a provision of service, from a security module (MSC1) of a central processing unit (Cl) of a service implementation network to another security module (MST1) of a terminal (T1) of this network, or to one of the user cards (U1) that can be connected to the terminal (T1) and in turn comprise security modules, characterized in that it comprises transmitting a predetermined implementation key in an encoded form from a security module (MSC1) having a predetermined rank to a security module (MST1 or card U) having a lower rank than the predetermined rank, this encoding comprising using an encoding algorithm contained in the module of predetermined rank and introducing both the predetermined implementation key and at least one diversified key recorded in the module of a rank lower than the predetermined rank, this diversified key necessary for the encoding being obtained by a diversification algorithm contained in the module of predetermined rank and introducing both a basic key of this diversified key and diversification data originating in the module of lower rank, the predetermined encoded implementation key being decoded by the use, in the module of lower rank than the predetermined rank, of a decoding algorithm, which is the inverse of the encoding algorithm.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present invention relates to a method for dispatching at least one predetermined secret key, in order to make the implementation of a provision of service secure, characterized in that it comprises transmitting a predetermined implementation key in encoded form from a security module (MSCl) having a predetermined rank to a security module (MSTl) or card (U) of a rank lower than the predetermined rank, this encoding comprises using an encoding algorithm and introducing the predetermined implementation key, as well as least one diversified key, this diversified key, necessary for the encoding, being obtained by a diversification algorithm by introducing both a basic key of this diversified key and diversification data originating from the module of lower rank, the predetermined encoded implementation key being decoded by the use, in a module of lower rank than the predetermined rank, of a decoding algorithm which is the inverse of the encoding algorithm.

174 Citations

17 Claims

1. A method for dispatching at least one predetermined secret key, in order to secure the implementation of a provision of service, from a security module (MSC1) of a central processing unit (Cl) of a service implementation network to another security module (MST1) of a terminal (T1) of this network, or to one of the user cards (U1) that can be connected to the terminal (T1) and in turn comprise security modules, characterized in that it comprises transmitting a predetermined implementation key in an encoded form from a security module (MSC1) having a predetermined rank to a security module (MST1 or card U) having a lower rank than the predetermined rank, this encoding comprising using an encoding algorithm contained in the module of predetermined rank and introducing both the predetermined implementation key and at least one diversified key recorded in the module of a rank lower than the predetermined rank, this diversified key necessary for the encoding being obtained by a diversification algorithm contained in the module of predetermined rank and introducing both a basic key of this diversified key and diversification data originating in the module of lower rank, the predetermined encoded implementation key being decoded by the use, in the module of lower rank than the predetermined rank, of a decoding algorithm, which is the inverse of the encoding algorithm.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
- - 2. A method as defined by claim 1, characterized in that any diversified key transmitted from a module of predetermined rank to a module of a lower rank for being recorded there is encoded, the method comprising the use of an encoding algorithm contained in the module of predetermined rank and introducing both the diversified key to be transmitted and another diversified key calculated by the diversification algorithm contained in the module of predetermined rank and recorded in the module of a rank lower than the predetermined rank, the diversified key thus encoded being decoded by an algorithm, contained in the module of lower rank than the predetermined rank, that is the inverse of the encoding algorithm.
  - 3. A method as defined by claim 2, characterized in that it comprises the use of a loading module, connectable to the module having the highest rank in the network, this module containing basic keys recorded by an authorizing organization, the basic keys corresponding to the predetermined implementation keys to be dispatched, as well as diversified keys serving the purpose of encoded transmission of each predetermined secret implementation key, this loading module containing at least one algorithm for diversification of basic keys and at least one algorithm for encoding basic keys or diversified keys to be transmitted to the modules of the network for the dispatching of implementation keys.
  - 4. A method as defined by claim 3, characterized in that the diversified keys are prerecorded in the module and in the cards, respectively, by an authorizing organization prior to the use of the modules and cards in the network.
  - 5. A method as defined by claim 4, characterized in that it comprises encoding (CPc1), by an encoding algorithm contained in the loading module (MCH), a first predetermined basic key (CP) for implementation of the provision of service recorded in this loading module, this first encoded key (CPc1) being transmitted from the loading module (MCH) to the security module (MSC1) of the central unit, where it is decoded (CP) by an inverse algorithm of the encoding algorithm, this first key (CP) being re-encoded (CPc2) by an encoding algorithm contained in the security module (MSC1) of the central unit for being transmitted to the security module (MST1) of the terminal, where it is decoded by an inverse algorithm of the encoding algorithm, this first key being diversified and encoded (CPdc) in the central unit security module by diversification (CPd) and encoding (CPdc) algorithms contained in the module of the central unit, in order to be transmitted to the user card, where it is decoded by an inverse algorithm of the encoding algorithm.
  - 6. A method as defined by claim 5, characterized in that the encoding algorithm of the first implementation key (Pc1) transmitted from the loading module (MCH) to the security module (MSC1) of the central unit introduces both the basic key (CP) of this first key and a first diversified transport key (CTd), obtained by a diversification algorithm contained in the loading module and introducing both a basic key (CT) of this first transport key contained in the loading module and diversification data originating in the security module (MSC1) of the central unit.
  - 7. A method as defined by claim 5, characterized in that the encoding algorithm of the first encoded key (CPc2 transmitted from the security module (MSC1) of the central unit to the security module (MST) of the terminal introduces both the first key (CP), contained in the security module (MSC1) of the central unit, and a diversified communication key (CXd) recorded in the security module (MSC1) of the terminal and calculated in a security module of the central unit, by diversification algorithm introducing both the basic key (CX) of this diversified communication key recorded in the security module (MSC1) of the central unit and diversification data originating in the security module (MST1) of the terminal.
  - 8. A method as defined by claim 7, characterized in that the basic communication key (CX) recorded in the security module (MST1) of the central unit is transmitted in encoded form (CXc) from the loading module (MCH) to the security module of the central unit, the encoding of this communication key using an encoding algorithm contained in the loading module and introducing both the basic key (CX) contained in the loading module and the first diversified transport key (CTd1) calculated in the loading module, the diversified communication key (CXd) to be recorded in the security module (MST1) of the terminal being transmitted from the loading module (MCH) to the security module of the terminal, in a diversified and encoded form (CXdc), the diversification (CXd) of this key using a diversification algorithm from the loading module introducing both the basic communication key (CX) contained in the loading module and diversification data originating in the security module of the terminal (MST1), the encoding of this diversified communication key (CXdc) using an encoding algorithm that introduces both the diversified communication key (CXd), and a second diversified transport key (CTd2) obtained by a diversification algorithm that is contained in the loading module and introduces both the basic key (CT) of this second transport key contained in the loading module (MCH) and diversification data originating in the security module (MST1) of the terminal.
  - 9. A method as defined by claim 8, characterized in that the diversification algorithm contained in the security module (MSC1) of the central unit for diversification (CPd) of an implementation key to be transmitted to the user card introduces both the basic key (CP) of this implementation key, contained in this security module, and diversification data originating in the user card, the encoding of the diversified implementation key (CPdc) being obtained by an algorithm, contained in the security module of the central unit, that introduces both the diversified implementation key (CPd) and a diversified opening key (COd) which is recorded in the user card and is calculated in the security module of the central unit by a diversification algorithm that introduces both a basic key (CO) of this opening key, recorded in the security module of the central unit, and diversification originating in the user card.
  - 10. A method as defined by claim 9, characterized in that the basic opening key (CO) recorded in the security module of the central unit is transmitted in encoded form (COc) by the loading module, the encoding of this basic key being obtained by an encoding algorithm contained in the loading module, and using said first diversified transport key (CTd1).
  - 11. A method according to claim 10, characterized in that the diversified opening key (COd) recorded in the user card is transmitted to the user card in encoded form (COdc) by the security module (MSC1) of the central unit, the encoding of this diversified opening key using an encoding algorithm contained in the security module of the central unit and introducing both this diversified opening key (COd) and a diversified fabrication key (CFd) prerecorded in the card and calculated by the security module (MSC1) based on a basic fabrication key (CF).
  - 12. A method according to claim 11, characterized in that the basic key (CF) of the diversified fabrication keys prerecorded in the user cards is transmitted to the security module (MSC1) of the central unit in encoded form (CFc), the loading module containing an encoding algorithm introducing both this basic key (CF) of the prerecorded diversified keys and the first transport key (CTd1) calculated by the loading module and present in this security module (MSC1) of the central unit.
  - 13. A method as defined by claim 6 characterized in that the first and second diversified transport keys are recorded in the security module (MSC1) of the central unit and in the security module (MST1) of the terminal, respectively.
  - 14. A method as defined by claim 8 characterized in that the first and second diversified transport keys are recorded in the security module (MSC1) of the central unit and in the security module (MST1) of the terminal, respectively.
  - 15. A method as defined by claim 10 characterized in that the first and second diversified transport keys are recorded in the security module (MSC1) of the central unit and in the security module (MST1) of the terminal, respectively.

16. A network comprising a central unit (C1) and at least one terminal (T1), each including at least one security module (MSC1, MST1), characterized in that prior to the emplacement of the security modules of the network, a predetermined diversified transport key, corresponding to a loading module, is recorded into each security module of the network.
- View Dependent Claims (17)
- - 17. A network as defined by claim 16, characterized in that said network is so constructed and arranged so as to operatively cooperate with user cards (U1), in each of which at least one diversified opening key (COd) has been recorded prior to putting the card into service.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Bull Sas (Atos SE)
Original Assignee
CII Honeywell Bull
Inventors
Chemin, Francois, Desjardins, Jean-Michel, Hazard, Michel
Primary Examiner(s)
Cangialosi, Salvatore

Application Number

US07/176,158
Time in Patent Office

719 Days
Field of Search

380/21, 380/23, 380/24, 380/25, 380/45, 380/49
US Class Current

380/277
CPC Class Codes

G06Q 20/341   Active cards, i.e. cards in...

G06Q 20/3552   Downloading or loading of p...

G06Q 20/3672   initialising or reloading t...

G06Q 20/4014   Identity check for transact...

G06Q 20/40975   using encryption therefor

G07F 7/1008   Active credit-cards provide...

G07F 7/1016   Devices or methods for secu...

H04L 9/0836   using tree structure or hie...

Method of dispatching secret keys to security modules and user cards in a data processing network

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

174 Citations

17 Claims

Specification

Solutions

Use Cases

Quick Links

Method of dispatching secret keys to security modules and user cards in a data processing network

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

174 Citations

17 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links