System and method for a multi-application smart card which can facilitate a post-issuance download of an application onto the smart card
First Claim
Patent Images
1. A smart card comprising:
- a card life cycle having a plurality of states;
a memory including an indication of which of said states said card life cycle is in; and
a card domain application including an issuer key associated with the issuer of said smart card, a function for managing said life cycle of said smart card, and a function for tracking the status of said life cycle of said smart card, whereby said card domain application represents the interests of the issuer and manages said card life cycle.
2 Assignments
0 Petitions
Accused Products
Abstract
The embodiments of the present invention teaches a system and method which allows card issuers to securely add applications during the lifetime of the card after the card has already been issued (post issuance). The system and method according to embodiments of the present invention allows the loading of an application and/or objects from an application server via a card acceptance device and its supporting system infrastructure delivery mechanism, onto a card post issuance in a secure and confidential manner.
367 Citations
23 Claims
-
1. A smart card comprising:
-
a card life cycle having a plurality of states;
a memory including an indication of which of said states said card life cycle is in; and
a card domain application including an issuer key associated with the issuer of said smart card, a function for managing said life cycle of said smart card, and a function for tracking the status of said life cycle of said smart card, whereby said card domain application represents the interests of the issuer and manages said card life cycle. - View Dependent Claims (2, 3, 4, 5)
a function for blocking said smart card.
-
-
3. A smart card as recited in claim 1 wherein said states of said card life cycle include masked, initialized, load secured and blocked.
-
4. A smart card as recited in claim 1 wherein said states of said card life cycle are in an irreversible sequence and wherein said states of said card life cycle place said smart card into an increasing level of security.
-
5. A smart card as recited in claim 1 wherein the contents of said memory determines the state of said card life cycle.
-
6. A method of blocking a smart card comprising:
-
detecting a problem with said smart card by an application of said smart card;
sending a card block request from said application to a card domain application of said smart card, said card domain application having the capability to block said smart card;
determining by said card domain application whether said card block request is valid; and
blocking said smart card by said card domain application, whereby said smart card is not operational for a user. - View Dependent Claims (7)
-
-
8. A method of moving a smart card through a sequence of card life cycle states, said method comprising:
-
receiving said smart card in a masked state, said masked state indicating that components necessary for initialization are available on said smart card;
initializing said smart card using an initialization key;
placing said smart card into an initialized state;
loading an application onto said smart card post-issuance; and
placing said smart card into a load secured state, whereby said smart card passes through a number of said states of said card life cycle. - View Dependent Claims (9, 10, 11, 12)
receiving a card block request;
blocking said smart card; and
placing said smart card into a blocked state, whereby said smart card is not operational for a user.
-
-
10. A method as recited in claim 8 wherein said card life cycle states are managed by a card domain application.
-
11. A method as recited in claim 8 wherein said states of said card life cycle are in an irreversible sequence.
-
12. A method as recited in claim 8 wherein said states of said card life cycle place said smart card into an increasing level of security.
-
13. A smart card comprising:
-
a first application having a sequence of life cycle states; and
a card domain application including an issuer key associated with the issuer of said smart card, a function for loading said application onto said smart card, said loading causing said first application to be placed into a loaded state, a function for installing said application on said smart card, said installing causing said first application to be placed into an installed state, and a function for registering said application on said smart card, said registering causing said first application to be placed into a registered state, whereby said card domain application represents the interests of the issuer and manages said first application. - View Dependent Claims (14, 15, 16)
a cryptographic service for loading said first application onto said smart card post-issuance.
-
-
15. A smart card as recited in claim 13 wherein said first application further includes:
a function for personalizing said first application, said personalizing causing said first application to be placed into a personalized state, whereby said personalizing is under the authority of said first application.
-
16. A smart card as recited in claim 13 wherein said first application further includes:
a function for blocking said first application, said blocking causing said first application to be placed into a blocked state, whereby said blocking is under the authority of said first application.
-
17. A method of moving an application of smart card through a sequence of application life cycle states, said method comprising:
-
receiving said application on said smart card, said receiving placing said application into a loaded state;
installing said application on said smart card, said installing placing said application into an installed state;
registering said application on said smart card, said registering placing said application into a registered state;
personalizing said application on said smart card, said personalizing placing said application into a personalized state, whereby said application is available for use. - View Dependent Claims (18, 19, 20, 21)
receiving an application block request;
blocking said application; and
placing said application into a blocked state, whereby said application is not available for use.
-
-
19. A method as recited in claim 17 further comprising:
-
receiving an application delete request;
deleting said application from said smart card; and
indicating said application is in a not available state, whereby said application is not available for use.
-
-
20. A method as recited in claim 17 wherein said application is received by being loaded into a memory of said smart card during initialization of said smart card, whereby said application is present on said smart card before issuance.
-
21. A method as recited in claim 17 wherein said application is received by being loaded onto said smart card post-issuance, whereby said application appears on said smart card after issuance.
-
22. A method of moving an application of smart card through a sequence of application life cycle states after issuance of said smart card, said method comprising:
-
issuing said smart card;
indicating within said smart card that said application is in a not available state;
loading said application onto said smart card post-issuance, said loading placing said application into a loaded state; and
installing said application on said smart card, said installing placing said application into an installed state, whereby said application is available for use on said smart card. - View Dependent Claims (23)
personalizing said application on said smart card, said personalizing placing said application into a personalized state.
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeGlobalPlatform, Inc.
-
Original AssigneeVisa International Service Association (Visa, Inc.)
-
InventorsWeise, Joel M., Chan, Alfred, Kekicheff, Marc B., Wentker, David C.
-
Primary Examiner(s)Peeso, Thomas R.
-
Application NumberUS09/046,994Time in Patent Office1,148 DaysField of Search380/172, 713/172, 713/200, 713/201, 235/380US Class Current713/172CPC Class CodesG06F 21/51 at application loading time...G06F 21/53 by executing in a restricte...G06F 21/57 Certifying or maintaining t...G06F 21/572 Secure firmware programming...G06F 21/74 operating in dual or compar...G06F 21/77 in smart cardsG06F 2221/2105 Dual mode as a secondary as...G06F 2221/2113 Multi-level security, e.g. ...G06F 2221/2149 Restricted operating enviro...G06F 2221/2153 Using hardware token as a s...G06Q 20/341 Active cards, i.e. cards in...G06Q 20/3552 Downloading or loading of p...G06Q 20/3574 Multiple applications on cardG06Q 20/3576 Multiple memory zones on cardG07F 7/1008 Active credit-cards provide...
