Secure device, information processing terminal, integrated circuit, terminal application generation apparatus, application authentication method
First Claim
1. A secure device comprising:
- a storage that stores predetermined data;
an application storage that stores an application to be processed by an information processing terminal to obtain the predetermined data from the secure device, an information processing terminal obtaining the predetermined data from the secure device by executing the application at the information processing terminal, the information processing terminal not having the application for obtaining the predetermined data from the secure device;
an application issuer that, upon receipt of a request from the information terminal, embeds in the application, as information for an authentication of said application, authentication information which is generated by the secure device on a random basis so as to have a varying value upon every issue of said application;
an application transmitter that transmits, to said information processing terminal, said application in which said information for said authentication of said application is embedded by the secure device and having the varying value upon every issue of said application;
an authenticator that, upon every issue of said application, performs with said information processing terminal an authentication process for said application executed on said information processing terminal, using said information for said authentication of said application embedded in said application, thereby obtaining a different authentication result upon every issue of said application; and
a communicator that transmits to said information processing terminal said predetermined data stored in said storage, when said application executed on said information processing terminal is authenticated.
4 Assignments
0 Petitions
Accused Products
Abstract
The present invention is designed to enable a secure device to authenticate a terminal application that operates on an information processing terminal and that accesses the secure device. An application issue request transmitter (301) of the information processing terminal (30) sends a request for issue of a terminal application to an application issuer (101). The application issuer (101) of an secure device (10) reads a terminal application (31) from an application storage (105) and embeds authentication information in the terminal application (31), associates an ID and the authentication information of the terminal application (31) and save them in an issue information storage (106), and sends the terminal application (31) to an application receiver (302) of the information processing terminal through an application transmitter (102). The application receiver (302) starts the terminal application (31). An application authenticator (311) of the terminal application (31) performs an authentication with the secure device (10) by means of the application authentication information.
-
Citations
23 Claims
-
1. A secure device comprising:
-
a storage that stores predetermined data; an application storage that stores an application to be processed by an information processing terminal to obtain the predetermined data from the secure device, an information processing terminal obtaining the predetermined data from the secure device by executing the application at the information processing terminal, the information processing terminal not having the application for obtaining the predetermined data from the secure device; an application issuer that, upon receipt of a request from the information terminal, embeds in the application, as information for an authentication of said application, authentication information which is generated by the secure device on a random basis so as to have a varying value upon every issue of said application; an application transmitter that transmits, to said information processing terminal, said application in which said information for said authentication of said application is embedded by the secure device and having the varying value upon every issue of said application; an authenticator that, upon every issue of said application, performs with said information processing terminal an authentication process for said application executed on said information processing terminal, using said information for said authentication of said application embedded in said application, thereby obtaining a different authentication result upon every issue of said application; and a communicator that transmits to said information processing terminal said predetermined data stored in said storage, when said application executed on said information processing terminal is authenticated. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. A terminal application generation apparatus that generates an application to be processed by an information processing terminal and stores the generated application in a secure device that comprises:
-
a storage that stores predetermined data; an application storage that stores an application to be processed by an information processing terminal to obtain the predetermined data from the secure device, an information processing terminal obtaining the predetermined data from the secure device by executing the application at the information processing terminal, the information processing terminal not having the application for obtaining the predetermined data from the secure device; an application issuer that, upon receipt of a request from the information terminal, embeds in the application, as information for an authentication of said application, authentication information which is generated by the secure device on a random basis so as to have a varying value upon every issue of said application; an application transmitter that transmits, to said information processing terminal, said application in which said information for said authentication of said application is embedded by the secure device and having the varying value upon every issue of said application; an authenticator that, upon every issue of said application, performs with said information processing terminal an authentication process for said application executed on said information processing terminal, using said information for said authentication of said application embedded in said application, thereby obtaining a different authentication result upon every issue of said application; and a communicator that transmits to said information processing terminal said predetermined data stored in said storage, when said application executed on said information processing terminal is authenticated, the terminal application generation apparatus comprising; an embedment preparator that receives a source code of the application, prepares for an embedment of authentication information, and outputs the source code, in which the authentication information can be embedded and received, the information having the varying value upon every issue of said application, and an instruction template that comprises a prototype of an instruction specifying a method of the embedment of the authentication information; a compiler that compiles the source code, in which the authentication information can be embedded upon every issue of said application, into a bytecode that is executable on the information processing terminal, thereby obtaining a different authentication result upon every issue of said application; and an instruction generator that receives the bytecode and the instruction template and generates the instruction, wherein the bytecode and instruction are transmitted to and stored in the secure device.
-
-
22. An application authentication method between an information processing terminal connectable to a secure device and the secure device, the method comprising:
-
storing at the secure device predetermined data; storing at a secure device an application to be processed by the information processing terminal to obtain the predetermined data from the secure device, the information processing terminal obtaining the predetermined data from the secure device by executing the application at the information processing terminal, the information processing terminal not having the application for obtaining the predetermined data from the secure device; upon receipt of a request from the information processing terminal embedding in the application at the secure device, as information for authentication of said application, authentication information which is generated by the secure device on a random basis so as to have a varying value upon every issue of said application; transmitting, from the secure device to the information processing terminal, the application in which the authentication information of the application is embedded by the secure device and having the varying value upon every issue of said application; performing between the secure device and the information processing terminal an authentication process, upon every issue of said application, of the application by causing the application to execute on the information processing terminal, using the authentication information of the application embedded in the application, thereby obtaining a different authentication result upon every issue of said application; and transmitting from the secure device to the information processing terminal the predetermined data stored in the storage, when the application executed on the information processing terminal is authenticated. - View Dependent Claims (23)
-
Specification