Portable electronic device for safe communication system, and method for initializing its parameters

US 6,308,268 B1
Filed: 02/18/2000
Issued: 10/23/2001
Est. Priority Date: 08/21/1997
Status: Expired due to Term

First Claim

Patent Images

1. Portable electronic device for secure communication with at least one electronic unit for use of a plurality of functions, including:

data storage means, interface means with at least one external tool for loading data into said storage means, data processing means including initialization means for enabling, in response to the application of a secret personalizing access code specific to said device, modification of said specific secret personalizing access code and loading of personalizing data into said storage means, first loading means controlled by said specific secret personalizing access code for loading into said storage means reprogrammable particular secret data respectively representative of different particular secret personalizing access codes, each said particular secret personalizing access code being assigned to personalizing in said device a particular one of said functions, second loading means controlled by said particular secret personalizing access codes for loading into said storage means particular personalizing data assigned to the implementation of said functions by said processing means, and inhibitor means for authorizing, for each said functions, only in response to the application of one said particular secret personalizing access codes already assigned to said function, (i) modification of one said reprogammable particular secret data loaded into said storage means and representative of said particular secret personalizing access code and (ii) said loading of said particular personalizing data.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

This device includes data storage unit, interface unit with an external tool for loading data into the storage unit, data processing unit including initialization unit for enabling modification of a specific secret personalizing access code and loading of personalizing data into the storage unit, first loading unit controlled by the specific access code for loading into the storage unit reprogrammable particular secret personalizing access codes assigned to personalizing in the device a plurality of functions, second loading unit controlled by the particular access codes for loading into the storage unit particular personalizing data assigned to the implementation of the functions, and inhibitor unit for authorizing, for each of the functions, only in response to the application of one particular access code already assigned to the function, (i) modification of the particular access code and (ii) the loading of the particular personalizing data.

Citations

21 Claims

1. Portable electronic device for secure communication with at least one electronic unit for use of a plurality of functions, including:
- data storage means, interface means with at least one external tool for loading data into said storage means, data processing means including initialization means for enabling, in response to the application of a secret personalizing access code specific to said device, modification of said specific secret personalizing access code and loading of personalizing data into said storage means, first loading means controlled by said specific secret personalizing access code for loading into said storage means reprogrammable particular secret data respectively representative of different particular secret personalizing access codes, each said particular secret personalizing access code being assigned to personalizing in said device a particular one of said functions, second loading means controlled by said particular secret personalizing access codes for loading into said storage means particular personalizing data assigned to the implementation of said functions by said processing means, and inhibitor means for authorizing, for each said functions, only in response to the application of one said particular secret personalizing access codes already assigned to said function, (i) modification of one said reprogammable particular secret data loaded into said storage means and representative of said particular secret personalizing access code and (ii) said loading of said particular personalizing data.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
- - 2. Device according to claim 1, wherein said inhibitor means comprise means to prohibit read mode access to any of said secret data.
  - 3. Device according to claim 1, wherein said inhibitor means comprise means to prohibit read mode and write mode access by said processing means to said particular personalizing data by means of said specific secret personalizing access code.
  - 4. Device according to claim 1, wherein said inhibitor means comprise means to prohibit read mode access to said particular personalizing data following the loading of said data by means of said particular secret personalizing access codes assigned to said functions.
  - 5. Device according to claim 1, wherein said inhibitor means comprise means to authorize, for each said functions, read mode access to said particular personalizing data assigned to the implementation of said function by means of one said particular secret personalizing access codes assigned to said function.
  - 6. Device according to claim 1, wherein said processing means comprise means to authorize, by means of said specific secret personalizing access code, the deletion of said reprogramable particular secret data and of said particular personalizing data once loaded into said storage means and the loading of new reprogrammable particular secret data.
  - 7. Device according to claim 1, wherein said specific secret personalizing access code is an access code for loading into said storage means common personalizing data which are common to all said functions of said device.
  - 8. Device according to claim 1, wherein it includes third loading means for loading into said storage means a reprogrammable specific secret datum representative of said specific secret personalizing access code, said initialization means comprising means to authorize the replacement of said reprogrammable specific secret datum by a new specific secret datum representative of a new specific secret personalizing access code only in response to the application to said processing means of said specific secret personalizing access code imaging said reprogrammable specific secret datum to be replaced.
  - 9. Device according to claim 8, wherein said storage means include at least one non-volatile memory in which a base secret key is stored and said initialization means include first calculating means for calculating an initial value of said reprogrammable specific secret datum as a function of said base secret key and of an initial secret parameter.
  - 10. Device according to claim 1, wherein each said secret datum is a calculation secret key for calculating a verification code for verifying one of said personalizing access codes applied to said device.
  - 11. Device according to claim 10, wherein said processing means include second calculating means for calculating said verification code by encrypting a variable by means of said calculation secret key.
  - 12. Device according to claim 1, wherein said particular personalizing data includes at least one plurality of authentication secret keys which are different from each other and each of which is assigned to one of said functions and said processing means include calculating means for calculating an authentication code vis-á
    - -vis a verification unit as a function of one of said authentication secret keys.

13. Method of initializing a portable electronic device for secure communication with at least one electronic unit for use of a plurality of functions, said portable electronic device including:
- data storage means, interface means with at least one external tool for loading data into said storage means, data processing means including initialization means for enabling, in response to the application of a secret personalizing access code specific to said device, modification of said specific secret personalizing access code and loading of personalizing data into said storage means, first loading means controlled by said specific secret personalizing access code for loading into said storage means reprogrammable particular secret data respectively representative of different particular secret personalizing access codes and each assigned to personalizing in said device a particular one of said functions, second loading means controlled by said particular secret personalizing access codes for loading into said storage means particular personalizing data assigned to the implementation of said functions by said processing means, and inhibitor means for authorizing, for each said functions, only in response to the application of one said particular secret personalizing access codes already assigned to said function, (i) modification of one said reprogammable particular secret data loaded into said storage means and representative of said particular secret personalizing access code and (ii) said loading of said particular personalizing data, wherein said method includes;
  
  an initialization step of defining and storing in said storage means a reprogrammable specific personalizing secret key specific to said device, a first personalizing step of loading into said storage means, by means of said specific secret personalizing access code dependent on said reprogrammable specific personalizing secret key, common personalizing data which are common to said functions and reprogrammable particular secret keys for calculating said particular secret personalizing access secret codes each assigned to one of said functions, and a second personalizing step of loading said particular personalizing data relating to each said functions into said storage means by means of said particular secret personalizing access code assigned to personalizing said function.
- View Dependent Claims (14, 15, 16, 17, 18)
- - 14. Method according to claim 13, wherein said second personalizing step includes a phase consisting in, when loading said particular personalizing data relative to at least one of said functions, modifying said reprogrammable particular secret key for calculating said particular secret personalizing access code assigned to said function.
  - 15. Method according to claim 13, wherein said initialization step includes:
16. Method according to claim 15, wherein said first pesonalizing step includes the following steps, for each device of said set:
- a) extracting said specific identification datum from said device, b) calculating in a first external tool said first specific personalizing secret key as a function of said common secret datum and said specific identification datum, c) calculating in said first external tool a first specific secret personalizing access code as a function of said first specific personalizing secret key and a challenge transmitted by said device, d) transmitting from said first external tool to said device said first specific secret personalizing access code with personalizing parameters including a second specific personalizing secret key different from said first specific personalizing secret key, e) calculating in said system a verification code as a function of said first specific personalizing secret key and said challenge for verifying said first specific secret personalizing access code received from said first external tool, f) comparing in said device said first specific secret personalizing access code and said verification code and, in response to a match of said codes;
  
  g) storing said personalizing parameters in said storage means, and h) substituting said second specific personalizing secret key for said first specific personalizing secret key in said storage means.
17. Method according to claim 15, wherein said initialization step includes a third initialization phase consisting in initially storing a common base secret key in a permanent memory of said storage means and wherein steps a) and b) of said second initialization phase comprise:
- applying said common secret datum and said common base secret key to a second external tool, reading said specific identification datum by means of said second external tool, calculating said specific personalizing secret key by means of said second external tool, encrypting said specific personalizing secret key by means of said common base secret key in said second external tool, transmitting the result of said encryption from said second external tool to said device, and decrypting said result in said device by means of said common base secret key to reconstitute said specific personalizing secret key.
18. Method according to claim 15, wherein said initialization step includes a third initialization phase consisting in initially storing a common base secret key in a permanent memory of said storage means, said first initialization phase equally consists in encrypting said common secret datum by means of said common base secret key and applying the result of said encryption to a second external tool, and said second initialization phase equally comprises:
- a) reading said specific identification datum by means of said second external tool and transmitting said specific identification datum and the result of said encryption to said device, b) decrypting said result in said device by means of said common base secret key to restore said common secret datum and thereafter calculating said specific personalizing secret key.

19. Secure communication system comprising:
- (a) a set of portable electronic devices for secure communication with at least one electronic unit for use of a plurality of functions, each said portable electronic device including;
  
  data storage means, interface means with at least one external tool for loading data into said storage means, data processing means including initialization means for enabling, in response to the application of a secret personalizing access code specific to said device, modification of said specific secret personalizing access code and loading of personalizing data into said storage means, first loading means controlled by said specific secret personalizing access code for loading into said storage means reprogrammable particular secret data respectively representative of different particular secret personalizing access codes and each assigned to personalizing in said device a particular one of said functions, second loading means controlled by said particular secret personalizing access codes for loading into said storage means particular personalizing data assigned to the implementation of said functions by said processing means, and inhibitor means for authorizing, for each said functions, only in response to the application of one said particular secret personalizing access codes already assigned to said function, (i) modification of one said reprogammable particular secret data loaded into said storage means and representative of said particular secret personalizing access code and (ii) said loading of said particular personalizing data,and (b) at least one external tool for initializing personalizing parameters for loading into each of said devices;
  
  common personalizing data which are common to said functions of said device, said particular personalizing data, and said reprogrammable particular secret data.
- View Dependent Claims (20)
- - 20. Secure communication system according to claim 19, wherein it further includes a production tool for the initial loading into each of said devices of a reprogrammable secret datum specific to each said devices and representative of said specific secret personalizing access code.

21. Secure communication system comprising:
- (a) a set of portable electronic device for secure communication with at least one electronic unit for use of a plurality of functions, each said portable electronic device including;
  
  data storage means, interface means with at least one external tool for loading data into said storage means, data processing means including initialization means for enabling, in response to the application of a secret personalizing access code specific to said device, modification of said specific secret personalizing access code and loading of personalizing data into said storage means, first loading means controlled by said specific secret personalizing access code for loading into said storage means reprogrammable particular secret data respectively representative of different particular secret personalizing access codes and each assigned to personalizing in said device a particular one of said functions, second loading means controlled by said particular secret personalizing access codes for loading into said storage means particular personalizing data assigned to the implementation of said functions by said processing means, said personalizing data including at least one plurality of authentication secret keys which are different from each other and each of which is assigned to one of said functions, and inhibitor means for authorizing, for each said functions, only in response to the application of one said particular secret personalizing access codes already assigned to said function, (i) modification of one said reprogammable particular secret data loaded into said storage means and representative of said particular secret personalizing access code and (ii) said loading of said particular personalizing data, and (b) at least one verification unit, wherein said processing means include calculating means for calculating an authentication code vis-á
  
  -vis said verification unit as a function of one of said authentication secret keys.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Assa Abloy AB
Original Assignee
ActivCard Co.
Inventors
Audebert, Yves Louis Gabriel
Primary Examiner(s)
Peeso, Thomas R.

Application Number

US09/506,587
Time in Patent Office

613 Days
Field of Search

713/171, 713/182, 380/255, 380/277, 380/283, 380/285
US Class Current

713/182
CPC Class Codes

G06Q 20/341   Active cards, i.e. cards in...

G06Q 20/3558   Preliminary personalisation...

G06Q 20/4097   using mutual authentication...

G07F 7/1008   Active credit-cards provide...

Portable electronic device for safe communication system, and method for initializing its parameters

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

Citations

21 Claims

Specification

Solutions

Use Cases

Quick Links

Portable electronic device for safe communication system, and method for initializing its parameters

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

21 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links