Key transformation unit for a tamper resistant module

US 7,669,055 B2
Filed: 10/25/2007
Issued: 02/23/2010
Est. Priority Date: 02/21/1997
Status: Expired due to Fees

First Claim

Patent Images

1. A method for securely loading an executable software application from an application provider onto a tamper resistant module (TRM) having a memory over a communications network, said method comprising the steps of:

providing a TRM private key and a TRM public key for said TRM;

encrypting at least one portion of said executable software application using an associated transport key, each said portion also having an associated location;

creating an application unit which comprises said portion of said executable software application;

encrypting said associated transport key and an indicator of said associated location using said TRM public key;

forming a key transformation unit (KTU), said KTU comprising said associated transport key and said indicator;

transmitting said application unit and said KTU to said TRM;

decrypting said KTU using said TRM private key to recover said associated transport key and said indicator;

identifying said portion of said executable software application;

decrypting said portion of said executable software application using said associated transport key; and

storing said portion of said executable software application in said memory on said TRM for subsequent execution.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Methods, apparati, and computer-readable media for securely transporting a software application onto a tamper resistant module (TRM) (103) by using an individualized TRM key set. A method embodiment of the present invention comprises: storing a key pair unique to the TRM (103) in a memory located on the TRM (103), where the key pair comprises a TRM public key (150) and a TRM private key (190); retrieving the TRM public key from the TRM; encrypting a portion of the software application using the TRM public key (150); transmitting the encrypted software application to the TRM (103); and recovering and decrypting the encrypted software application using the TRM private key (190).

159 Citations

24 Claims

1. A method for securely loading an executable software application from an application provider onto a tamper resistant module (TRM) having a memory over a communications network, said method comprising the steps of:
- providing a TRM private key and a TRM public key for said TRM;
  
  encrypting at least one portion of said executable software application using an associated transport key, each said portion also having an associated location;
  
  creating an application unit which comprises said portion of said executable software application;
  
  encrypting said associated transport key and an indicator of said associated location using said TRM public key;
  
  forming a key transformation unit (KTU), said KTU comprising said associated transport key and said indicator;
  
  transmitting said application unit and said KTU to said TRM;
  
  decrypting said KTU using said TRM private key to recover said associated transport key and said indicator;
  
  identifying said portion of said executable software application;
  
  decrypting said portion of said executable software application using said associated transport key; and
  
  storing said portion of said executable software application in said memory on said TRM for subsequent execution.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The method of claim 1, wherein said step of encrypting at least one portion of said executable software application comprises using a symmetric technique.
  - 3. The method of claim 2, wherein said symmetric technique is DES.
  - 4. The method of claim 1, wherein said TRM public key and said TRM private key are provided using an asymmetric technique.
  - 5. The method of claim 4, wherein said asymmetric technique is RSA.
  - 6. The method of claim 1, wherein said KTU further indicates an encryption technique used to encrypt said portion of said executable software application.
  - 7. The method of claim 1, further comprising the step of enciphering a second portion of said executable software application exclusive of said at least one portion of said executable software application that is encrypted.
  - 8. The method of claim 7, wherein said second portion is encrypted using at least one of a second encryption technique and a second key, and said KTU indicates at least one of said second encryption technique and said second key.
  - 9. The method of claim 8, wherein said KTU comprises a location indicator for said second portion.
  - 10. The method of claim 1, wherein said at least one portion of said executable software application comprises a quantity of portions, and said KTU comprises an indicator identifying the quantity of portions.

11. Tamper resistant module (TRM) apparatus, comprising:
- at least one TRM having a memory;
  
  an executable software application provided by a software application provider to said TRM;
  
  a communications link coupled to said TRM and to said software application provider;
  
  a TRM public key and a TRM private key for said TRM; and
  
  an arrangement;
  
  wherein;
  
  a portion of said executable software application is encrypted by said software application provider using an associated transport key, each said portion having an associated location;
  
  an application unit is created, said application unit comprising said portion of said executable software application;
  
  said associated transport key and an indicator of said associated location are encrypted using said TRM public key;
  
  a key transformation unit (KTU) is formed, said KTU comprising said associated transport key and said indicator;
  
  said application unit and said KTU are transmitted to said TRM over said communications link;
  
  said KTU is decrypted on said TRM using said TRM private key to recover said associated transport key and said indicator;
  
  said portion of said executable software application is identified;
  
  said portion of said executable software application is decrypted on said TRM using said associated transport key for each said portion to recover said executable software application; and
  
  said executable software application is stored on said TRM for subsequent execution.
- View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22)
- - 12. The apparatus of claim 11, wherein said executable software application is encrypted using a symmetric technique.
  - 13. The apparatus of claim 12, wherein said symmetric technique is DES.
  - 14. The apparatus of claim 11, wherein said TRM public key and said TRM private key are provided using an asymmetric technique.
  - 15. The apparatus of claim 14, wherein said asymmetric technique is RSA.
  - 16. The apparatus of claim 11, wherein said KTU further indicates an encryption technique used to encrypt said portion of said executable software application.
  - 17. The apparatus of claim 11, wherein said arrangement further comprises enciphering a second portion of said executable software application exclusive of said portion of said executable software application that is encrypted.
  - 18. The apparatus of claim 17, wherein said second portion is encrypted using a second encryption technique, and said KTU indicates said second encryption technique.
  - 19. The apparatus of claim 17, wherein said second portion is encrypted using a second key, and said KTU indicates said second key.
  - 20. The apparatus of claim 17, wherein said KTU comprises a location indicator for said second portion of said executable software application.
  - 21. The apparatus of claim 11, wherein said KTU indicates an associated location of each portion of said executable application.
  - 22. The apparatus of claim 11, wherein said portion of said executable software application comprises a quantity of portions, and said KTU comprises an indicator identifying the quantity of portions.

23. A method for securely loading an executable software application over a communications network from an application provider onto a personal computer (PC) having at least one tamper resistant module (TRM), said method comprising the steps of:
- providing a PC and TRM combination (PC/TRM) with a PC/TRM private key and a PC/TRM public key;
  
  encrypting a portion of said executable software application using an associated transport key, said portion also having an associated location;
  
  creating an application unit comprising said encrypted portion;
  
  encrypting said associated transport key and an indicator of said associated location using said PC/TRM public key;
  
  forming a key transformation unit (KTU) comprising said encrypted associated transport key and said indicator;
  
  transmitting said application unit and said KTU to said PC/TRM;
  
  decrypting said KTU using said PC/TRM private key to recover said associated transport key and said indicator;
  
  identifying said portion of said executable software application;
  
  decrypting said portion using said associated transport key; and
  
  storing said portion of said executable software application in said PC/TRM for subsequent execution.

24. Apparatus comprising:
- a personal computer (PC) having at least one tamper resistant module (TRM), each PC and TRM combination (PC/TRM) having a memory;
  
  an executable software application provided by a software application provider to said PC/TRM;
  
  a communications link coupled to said PC/TRM and to said software application provider;
  
  a PC/TRM public key and a PC/TRM private key for said PC/TRM; and
  
  an arrangement;
  
  wherein;
  
  a portion of said executable software application is encrypted by said software application provider using an associated transport key, said portion having an associated location;
  
  an application unit is created, said application unit comprising said encrypted portion of said executable software application;
  
  said associated transport key and an indicator of said associated location are encrypted using said PC/TRM public key;
  
  a key transformation unit (KTU) is formed, said KTU comprising said associated transport key and said indicator;
  
  said application unit and said KTU are transmitted to said PC/TRM over said communications link;
  
  said KTU is decrypted on said PC/TRM using said PC/TRM private key to recover said associated transport key and said indicator;
  
  said portion of said executable software application is identified;
  
  said portion of said executable software application is decrypted on said PC/TRM using said associated transport key for said portion to recover said executable software application; and
  
  said executable software application is stored on said TRM for subsequent execution.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Multos Ltd
Original Assignee
Multos Ltd
Inventors
Viner, John Charles, Everett, David Barrington, Richards, Timothy Philip, Miller, Stuart James, Simmons, Ian Stephen, Peacham, Anthony David
Primary Examiner(s)
SMITHERS, MATTHEW

Application Number

US11/977,914
Publication Number

US 20080137842A1
Time in Patent Office

852 Days
Field of Search

713/173
US Class Current

713/173
CPC Class Codes

G06F 21/51   at application loading time...

G06F 21/57   Certifying or maintaining t...

G06F 21/77   in smart cards

G06F 2221/2115   Third party

G06K 19/0719   at least one of the integra...

G06Q 20/341   Active cards, i.e. cards in...

G06Q 20/355   Personalisation of cards fo...

G06Q 20/3552   Downloading or loading of p...

G06Q 20/3574   Multiple applications on card

G06Q 20/35765   Access rights to memory zones

G06Q 20/4097   using mutual authentication...

G06Q 20/40975   using encryption therefor

G07F 7/1008   Active credit-cards provide...

G07F 7/1016   Devices or methods for secu...

H04L 2209/56   Financial cryptography, e.g...

H04L 9/3263   involving certificates, e.g...

Key transformation unit for a tamper resistant module

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

159 Citations

24 Claims

Specification

Solutions

Use Cases

Quick Links

Key transformation unit for a tamper resistant module

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

159 Citations

24 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links