Method for protecting a security module and arrangement for the implementation of the method
First Claim
1. A method for protecting a security module, in which security-relevant data are stored, inserted on a device motherboard, comprising the steps of:
- monitoring proper insertion of said security module on said device motherboard with a first function unit, a second function unit and a third function unit in said security module;
detecting at least one of improper use and improper replacement of said security module on said motherboard with said second function unit and, upon a detection of at least one of said improper use and said improper replacement, said second function unit causing said security-relevant data to be erased;
during replacement of said security module, automatically setting said third function unit and inhibiting functioning of said security module with said third function unit as long as said third function unit is set;
following at least one of proper use and proper replacement of said security module on said motherboard, re-initializing, with said first function unit, any erased, security-relevant data; and
after said re-initializing, enabling each of said first function unit, said second function unit and said third function unit to re-commission said security module, including resetting said third function unit by said first function unit.
1 Assignment
0 Petitions
Accused Products
Abstract
A method for protecting a security module includes the steps of monitoring proper insertion of the module on a device motherboard with first, second and third function units, erasing sensitive data due to an improper use or a replacement of the module with the second function unit, inhibiting the functionality of the module with the third function unit during a replacement of the security module, re-initializing the previously erased, sensitive data following proper use or replacement of the security module, and re-commissioning by enabling the function units of the security module. An arrangement implementation of the method has an unplugged status detection unit that has a circuit for resettable self-holding of a status indicator, the self-holding being triggered when the voltage level on a test voltage line deviates from a predetermined potential. A processor connected to the other function units and is programmed to identify and modify the status of the security module.
31 Citations
13 Claims
-
1. A method for protecting a security module, in which security-relevant data are stored, inserted on a device motherboard, comprising the steps of:
-
monitoring proper insertion of said security module on said device motherboard with a first function unit, a second function unit and a third function unit in said security module; detecting at least one of improper use and improper replacement of said security module on said motherboard with said second function unit and, upon a detection of at least one of said improper use and said improper replacement, said second function unit causing said security-relevant data to be erased; during replacement of said security module, automatically setting said third function unit and inhibiting functioning of said security module with said third function unit as long as said third function unit is set; following at least one of proper use and proper replacement of said security module on said motherboard, re-initializing, with said first function unit, any erased, security-relevant data; and after said re-initializing, enabling each of said first function unit, said second function unit and said third function unit to re-commission said security module, including resetting said third function unit by said first function unit. - View Dependent Claims (2)
-
-
3. A security module for insertion on a device motherboard, comprising:
-
a memory in which security-relevant data are stored; a voltage monitoring unit which supplies an operating voltage to said memory to maintain said security-relevant data stored therein and which disconnects said memory from said voltage, thereby erasing said security-relevant data therein, upon occurrence of a voltage level indicating at least one of improper use and replacement of said security module on said motherboard; an unplugged status detection unit which inhibits functioning of said security module during replacement of said security module and which has a self-holding capability, indicating that said security module has been replaced, which is triggered, for setting said unplugged status detection unit, when a voltage level on a test voltage line deviates from a predetermined voltage level; and a processor connected to said voltage monitoring unit and to said unplugged status detection unit to re-commission said security module after at least one of said improper use and replacement on said motherboard, by enabling said voltage monitoring unit and said unplugged status detection unit, including resetting said unplugged status detection unit. - View Dependent Claims (4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
Specification