Method for the authentication of applications

US 8,261,365 B2
Filed: 11/26/2004
Issued: 09/04/2012
Est. Priority Date: 11/27/2003
Status: Active Grant

First Claim

Patent Images

1. An authentication method of at least one application working in an equipment connected by a network to a control server, said equipment being locally connected to a security module, said application being at least one of loadable and executable via an application execution environment of the equipment and the at least one application being configured to use resources stored in the security module, the method comprising:

receiving by the control server, via the network, identification data including at least an identifier of the equipment and an identifier of the security module;

analyzing and verifying, by the control server, said identification data and, based on the analysis and verification, the control server creating a protection profile defining resources of the security module that can be used by the at least one application, the protection profile being created based on at least one of;

an updating of a version of a software installed in the equipment,a downloading of a new application in the equipment,an updating period of the protection profile,a number of connection of the equipment to the network, anda technology used for accessing the network;

generating, by the control server, a cryptogram, the cryptogram including a digest of the at least one application, the identification data, the protection profile and at least one of an identifier of the at least one application and an identifier of security module resources; and

transmitting the at least one application and the cryptogram by the control server, via the network and the equipment, to the security module,wherein, when the at least one application and cryptogram are transmitted at a same time, the method includes,verifying, by the security module, the at least one application by comparing the digest extracted from the received cryptogram with a digest determined by the security module, the verification occurring periodically at a rate given by the control server, during at least one of a first initialization of the at least one application, a first use of the at least one application, and each initialization of the at least one application, the security module performs at least one of releasing and blocking access of certain resources of said security module to the at least one application based on the received protection profile, andwhen the at least one application and the cryptogram are not transmitted at a same time, the method includes,requesting by the at least one application, once loaded into the equipment from the control server via the network, the cryptogram from the server at the time of an initialization of the at least one application and transmitting the cryptogram to the security module, a confirmation message of acceptance or refusal of the cryptogram being transmitted by the security module to the server via the at least one application; and

performing the verifying by the security module when the cryptogram is accepted.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Authentication method of at least one application using resources stored in a security module associated to an equipment connected to a control server via a network. The control server receives via the network, analyses and verifies identification data comprising at least an identifier of the equipment and an identifier of the security module, generates a cryptogram comprising a digest of the application, the identification data and instructions intended for the security module and transmits the cryptogram, via the network and the equipment, to the security module. The latter verifies the application by comparing the digest extracted from the cryptogram with a calculated digest, wherein, during at least one of initialization and activation of the application, the security module executes the instructions extracted from the cryptogram and either releases or blocks access to certain resources of said security module according to a result of the verification of the application.

45 Citations

View as Search Results

14 Claims

1. An authentication method of at least one application working in an equipment connected by a network to a control server, said equipment being locally connected to a security module, said application being at least one of loadable and executable via an application execution environment of the equipment and the at least one application being configured to use resources stored in the security module, the method comprising:
- receiving by the control server, via the network, identification data including at least an identifier of the equipment and an identifier of the security module;
  
  analyzing and verifying, by the control server, said identification data and, based on the analysis and verification, the control server creating a protection profile defining resources of the security module that can be used by the at least one application, the protection profile being created based on at least one of;
  
  an updating of a version of a software installed in the equipment,a downloading of a new application in the equipment,an updating period of the protection profile,a number of connection of the equipment to the network, anda technology used for accessing the network;
  
  generating, by the control server, a cryptogram, the cryptogram including a digest of the at least one application, the identification data, the protection profile and at least one of an identifier of the at least one application and an identifier of security module resources; and
  
  transmitting the at least one application and the cryptogram by the control server, via the network and the equipment, to the security module,wherein, when the at least one application and cryptogram are transmitted at a same time, the method includes,verifying, by the security module, the at least one application by comparing the digest extracted from the received cryptogram with a digest determined by the security module, the verification occurring periodically at a rate given by the control server, during at least one of a first initialization of the at least one application, a first use of the at least one application, and each initialization of the at least one application, the security module performs at least one of releasing and blocking access of certain resources of said security module to the at least one application based on the received protection profile, andwhen the at least one application and the cryptogram are not transmitted at a same time, the method includes,requesting by the at least one application, once loaded into the equipment from the control server via the network, the cryptogram from the server at the time of an initialization of the at least one application and transmitting the cryptogram to the security module, a confirmation message of acceptance or refusal of the cryptogram being transmitted by the security module to the server via the at least one application; and
  
  performing the verifying by the security module when the cryptogram is accepted.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
- - 2. The method according to claim 1, wherein the equipment is a mobile equipment of mobile telephony.
  - 3. The method according to claim 2, wherein the security module is a subscriber identification module that is inserted into the mobile equipment of mobile telephony.
  - 4. The method according to claim 1, wherein the network is a mobile network of at least one of a GSM, GPRS, and UMTS.
  - 5. The method according to claim 2, wherein the security module is a subscriber identification module that is inserted into the mobile equipment of mobile telephony.
  - 6. The method according to claim 5, wherein the identification data of at least one of the mobile equipment and subscriber identification module includes an identifier of the mobile equipment and an identifier of the subscriber identification module pertaining to a subscriber of the network.
  - 7. The method according to claim 1, wherein the protection profile received by the security module condition the use of the at least one application according to criteria established previously by at least one of the operator, the application supplier and the user of the equipment.
  - 8. The method according to claim 7, wherein the criteria define limits of use of the at least one application according to risks associated with at least one of the software of the at least one application and the hardware of the equipment that the operator desires to take into account.
  - 9. The method according to claim 1, wherein the cryptogram is generated with the aid of an asymmetrical or symmetrical encryption key from a data set including the identifier of the equipment, the identifier of the security module, an identifier of the at least one application, the digest of the at least one application calculated with an unidirectional hash function, identifiers of the resources of the security module and the protection profile.
  - 10. The method according to claim 9, wherein the cryptogram includes a variable that is predictable by the security module thereby avoiding the double use of a same cryptogram, the value of said variable controlled by the security module by comparing the value of the variable with a reference value, the reference value being stored in the security module and regularly updated.
  - 11. The method according to the claim 1, wherein the cryptogram is transmitted to the security module at the same time as the at least one application is loaded into the equipment via the application execution environment.
  - 12. The method according to claim 1, wherein the equipment is at least one of a Pay-TV decoder and a computer to which the security module is connected.

13. A system, comprising:
- a security module including resources that are accessed locally by at least one application installed in an equipment, the equipment being connected by a network to a control server, whereinthe equipment includes means for reading and transmitting data, the transmitted data including at least one of an identifier of the equipment and an identifier of the security module, andthe security module includes,means for reception, storage and analysis of a cryptogram and of the at least one application received with the cryptogram, the cryptogram and the at least one application being transmitted by the control server,wherein the control server analyzes and verifies the transmitted at least one of the identifier of the equipment and the identifier of the security module, and the control server creates a protection profile defining resources of the security module that can be used by the at least one application, the protection profile being created based on at least one of;
  
  an updating of a version of a software installed in the equipment,a downloading of a new application in the equipment,an updating period of the protection profile,a number of connection of the equipment to the network, anda technology used for accessing the network, andwherein the cryptogram includes a digest of the at least one application, at least one of the identifier of the equipment and the identifier of the security module, the protection profile means for verifying said at least one application, and means for identification of security module resources, andmeans for extraction and execution, whereinwhen the at least one application and cryptogram are received at a same time, the means for extraction and execution perform at least one of releasing and blocking certain resources of the security module to the at least one application according to the received protection profile, and verifying the at least one application, the verification occurring periodically at a rate given by the control server, during at least one of a first initialization of the at least one application, a first use of the at least one application, and each initialization of the at least one application, andwhen the at least one application and the cryptogram are not received at a same time,the at least one application, once loaded into the equipment from the control server via the network, requests the cryptogram from the server at the time of its initialization and transmits the cryptogram to the security module, the confirmation message of acceptance or refusal of the cryptogram being transmitted by the security module to the server via the at least one application, andthe means for extraction and execution perform at least one of releasing and blocking certain resources of the security module to the at least one application according to the received protection profile, and verifying the at least one application, the verification occurring periodically at a rate given by the control server, during at least one of a first initialization of the at least one application, a first use of the at least one application, and each initialization of the at least one application.
- View Dependent Claims (14)
- - 14. The system according to claim 13, wherein the security module is a subscriber identification module that is connected to a mobile equipment.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Nagravision SA (Kudelski SA)
Original Assignee
Nagravision SA (Kudelski SA)
Inventors
Ksontini, Rached, Cantini, Renato
Primary Examiner(s)
Flynn, Nathan
Assistant Examiner(s)
Vaughan, Michael R

Application Number

US10/577,857
Publication Number

US 20070198834A1
Time in Patent Office

2,839 Days
Field of Search

None
US Class Current

726/29
CPC Class Codes

G06F 21/10   Protecting distributed prog...

G06F 21/34   involving the use of extern...

G06F 21/51   at application loading time...

G06F 21/554   involving event detection a...

G06F 2221/2107   File encryption

G06F 2221/2153   Using hardware token as a s...

G06F 8/65   Updates security arrangemen...

H04L 63/0428   wherein the data content is...

H04L 63/0823   using certificates cryptogr...

H04L 63/0853   using an additional device,...

H04L 63/10   for controlling access to d...

H04L 63/12   Applying verification of th...

H04L 63/123   received data contents, e.g...

H04W 12/08   Access security

H04W 12/10   Integrity

H04W 12/35   Protecting application or s...

H04W 4/60   Subscription-based services...

Method for the authentication of applications

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

45 Citations

14 Claims

Specification

Use Cases

Quick Links

Others

Method for the authentication of applications

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

45 Citations

14 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others