Systems, methods, and computer program products for supporting multiple contactless applications using different security keys
First Claim
1. A method for supporting multiple contactless applications using different security keys on a wireless smart device, the method comprising:
- at a wireless smart device configured to communicate with a wireless smart device reader, the wireless device including a plurality of contactless applications and a contactless application memory for use by the plurality of contactless applications;
initializing a portion of the memory such that access to the portion of memory requires the use of a shared secret key known to the plurality of contactless applications;
reserving the portion of memory for use by one of the plurality of contactless applications by using the shared secret key to set access privileges for the portion of memory such that access to the portion of memory requires the use of a application-specific secret key associated with the one application and not known to the other applications;
accessing the reserved portion of memory using the application-specific secret key; and
releasing the reserved portion of memory by using the application-specific secret key to set access privileges for the portion of memory such that access to the portion of memory requires the use of the shared secret key.
5 Assignments
0 Petitions
Accused Products
Abstract
Systems, methods, and computer program products for supporting multiple contactless applications using different security keys on a wireless smart device are disclosed. According to one aspect, the subject matter described herein includes a method for supporting multiple contactless applications using different security keys on a wireless smart device. The method includes, at a wireless smart device configured to communicate with a wireless smart device reader, the wireless device including a plurality of contactless applications and a contactless application memory for use by the plurality of contactless applications, initializing a portion of the memory such that access to the portion of memory requires the use of a shared secret key known to the plurality of contactless applications. The method includes reserving the portion of memory for use by one of the plurality of contactless applications by using the shared secret key to set access privileges for the portion of memory such that access to the portion of memory requires the use of a application-specific secret key associated with the one application and not known to the other applications.
-
Citations
18 Claims
-
1. A method for supporting multiple contactless applications using different security keys on a wireless smart device, the method comprising:
-
at a wireless smart device configured to communicate with a wireless smart device reader, the wireless device including a plurality of contactless applications and a contactless application memory for use by the plurality of contactless applications; initializing a portion of the memory such that access to the portion of memory requires the use of a shared secret key known to the plurality of contactless applications; reserving the portion of memory for use by one of the plurality of contactless applications by using the shared secret key to set access privileges for the portion of memory such that access to the portion of memory requires the use of a application-specific secret key associated with the one application and not known to the other applications; accessing the reserved portion of memory using the application-specific secret key; and releasing the reserved portion of memory by using the application-specific secret key to set access privileges for the portion of memory such that access to the portion of memory requires the use of the shared secret key. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A method for supporting multiple contactless applications based on MIFARE specifications using different security keys on a wireless smart device, the method comprising:
-
at a wireless smart device configured to communicate with a wireless smart device reader, the device including a secure element for hosting a plurality of contactless applications based on MIFARE specifications and a MIFARE memory for use by the plurality of contactless applications based on MIFARE specifications; initializing a sector of the MIFARE memory such that a sector trailer of the sector contains a shared secret key known to the plurality of contactless applications based on MIFARE specifications hosted by the secure element; reserving the sector of MIFARE memory for use by one of the plurality of contactless applications based on MIFARE specifications by using the shared secret key to write information associated with the one application into the MIFARE memory, including writing a application-specific secret key associated with the one application into a key field of the sector trailer; performing a MIFARE transaction with the wireless smart device reader, the MIFARE transaction including accessing, by the wireless smart device reader, the reserved sector of MIFARE memory using the application-specific secret key contained in the key field of the sector trailer; and releasing the sector of MIFARE memory for use by another of the plurality of contactless applications based on MIFARE specifications by using the application-specific secret key associated with the one application to write the shared secret key into a key field of the sector trailer. - View Dependent Claims (7, 8, 9)
-
-
10. A wireless smart device for supporting multiple applications using different security keys, the wireless smart device comprising:
-
a communications module for wirelessly communicating with a wireless smart device reader; a plurality of applications for communicating with the wireless smart device reader via the communications module, each application having associated with it an application key not known to the other applications; and an application memory for use by the plurality of applications and accessible by the wireless smart device reader via the communications module, wherein access to at least a portion of the memory requires the use of an access key, the application memory being configured such that, upon initialization, a shared secret key, known to the plurality of applications, is the access key for the portion of memory, wherein each one application is configured to reserve the portion of memory by using the shared secret key to change the access key for the portion to the application key associated with the one application, and wherein each one application is configured to release the reserved portion of memory by using the application key associated with the one application to change the access key for the portion to shared secret key. - View Dependent Claims (11, 12, 13, 14, 15, 16)
-
-
17. A computer readable medium encoded with computer executable instructions for performing steps comprising:
-
at a wireless smart device configured to communicate with a wireless smart device reader, the device including a secure element for hosting a plurality of applications and an application memory for use by the plurality of applications; initialize at least a portion of the memory such that access to the portion of memory requires the use of a shared secret key known to the plurality of hosted applications; using the shared secret key, set access privileges for the portion of memory such that access to the portion of memory requires the use of a application-specific secret key known to one of the plurality of hosted applications; using the application-specific secret key, access the portion of memory; and releasing the reserved portion of memory by using the application-specific secret key to set access privileges for the portion of memory such that access to the portion of memory requires the use of the shared secret key.
-
-
18. A computer readable medium encoded with computer executable instructions for performing steps comprising:
-
at a wireless smart device configured to communicate with a wireless smart device reader, the device including a secure element for hosting a plurality of contactless applications based on MIFARE specifications and a MIFARE memory for use by the plurality of contactless applications based on MIFARE specifications; initializing a sector of the MIFARE memory such that a sector trailer of the sector contains a shared secret key known to the plurality of contactless applications based on MIFARE specifications hosted by the secure element; reserving the sector of MIFARE memory for use by one of the plurality of contactless applications based on MIFARE specifications by using the shared secret key to write information associated with the one application into the MIFARE memory, including writing a application-specific secret key associated with the one application into a key field of the sector trailer; performing a MIFARE transaction with the wireless smart device reader, the MIFARE transaction including, by the wireless smart device reader, accessing the reserved sector of MIFARE memory using the application-specific secret key contained in the key field of the sector trailer; and releasing the sector of MIFARE memory for use by another of the plurality of contactless applications based on MIFARE specifications by using the application-specific secret key associated with the one application to write the shared secret key into a key field of the sector trailer.
-
Specification