Writing application data to a secure element
First Claim
1. A computer-implemented method for writing application data in a secure element namespace of a secure element of a contactless device, using requests from a user-interface software application resident on the contactless device and outside the secure element, the method comprising:
- assigning, by a control software application in the secure element, one or more memory blocks of the secure element namespace to a software application from a software application provider, wherein the one or more data memory blocks of the secure element namespace are protected from a read access type and a write access type access keys, the access keys defined, by the control software application, in an access memory lock of the secure element namespace, and wherein a copy of the access keys are maintained in the control software application;
transmitting, from the user-interface software application to a remote trusted service manager (TSM) computer, a request for application data for the software application assigned to the one or more memory blocks of the secure element and an access key for a write access type, the application data to be written to the secure element namespace;
receiving, in a secure memory of the contactless device, from the remote TSM computer, the requested application data and the requested access key; and
writing, by the control software application in the secure element, the requested application data from the secure memory to the one or more data memory blocks of the secure element namespace to the software application, wherein the one or more data memory blocks of the secure element namespace are accessed by the control software application using the requested access key.
4 Assignments
0 Petitions
Accused Products
Abstract
Systems, methods, computer programs, and devices are disclosed herein for partitioning the namespace of a secure element in contactless smart card devices and for writing application data in the secure element using requests from a software application outside the secure element. The secure element is a component of a contactless smart card incorporated into a contactless smart card device. A control software application resident in the same or a different secure element provides access types and access bits, for each access memory block of the secure element namespace, thereby portioning the namespace into different access types. Further, a software application outside the secure element manages the control software application by passing commands using a secure channel to the secure element, thereby enabling an end-user of the contactless smart card device or a remote computer to control the partitioning and use of software applications within the secure element.
-
Citations
26 Claims
-
1. A computer-implemented method for writing application data in a secure element namespace of a secure element of a contactless device, using requests from a user-interface software application resident on the contactless device and outside the secure element, the method comprising:
-
assigning, by a control software application in the secure element, one or more memory blocks of the secure element namespace to a software application from a software application provider, wherein the one or more data memory blocks of the secure element namespace are protected from a read access type and a write access type access keys, the access keys defined, by the control software application, in an access memory lock of the secure element namespace, and wherein a copy of the access keys are maintained in the control software application; transmitting, from the user-interface software application to a remote trusted service manager (TSM) computer, a request for application data for the software application assigned to the one or more memory blocks of the secure element and an access key for a write access type, the application data to be written to the secure element namespace; receiving, in a secure memory of the contactless device, from the remote TSM computer, the requested application data and the requested access key; and writing, by the control software application in the secure element, the requested application data from the secure memory to the one or more data memory blocks of the secure element namespace to the software application, wherein the one or more data memory blocks of the secure element namespace are accessed by the control software application using the requested access key. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A computer-implemented system for writing application data in a secure element namespace of a contactless device using requests from a user-interface software application resident outside the secure element, the system comprising:
-
a computer comprising the secure element and that executes a user-interface software application to transmit, to a remote trusted service manager (TSM) computer, a request for application data and an access key for a write access type, the application data to be written to the secure element namespace; a temporary memory in the computer for receiving, from the remote TSM computer, the requested application data and the requested access key; and a control software application operating in the secure element that assigns one or more memory blocks of the secure element namespace to a software application from a software application provider, and that writes the requested application data from the temporary memory to the one or more data memory blocks of the secure element namespace assigned to the software application, wherein the one or more data memory blocks of the secure element namespace are accessed by the control software application using the requested access key. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16, 17)
-
-
18. A contactless device, comprising:
-
a secure element comprising a secure element namespace; a user-interface software application resident outside the secure element that transmits, to a remote trusted service manager (TSM) computer, a request for application data and at least an access key for a write access type, the application data to be written to the secure element namespace; a temporary memory that receives, from the remote TSM computer, the requested application data and the requested access key; and a control software application in the secure element that assigns one or more data memory blocks of the secure element namespace to a software application from a software application provider, and that writes the requested application data from the temporary memory to the one or more data memory blocks of the secure element namespace assigned to the software application, and wherein the one or more data memory blocks of the secure element namespace are accessed by the control software application using the requested access key. - View Dependent Claims (19, 20, 21, 22, 23, 24, 25, 26)
-
Specification