System and method for provisioning over the air of confidential information on mobile communicative devices with non-UICC secure elements
First Claim
1. A method for over-the-air (OTA) provisioning a non-Universal Integrated Circuit Card (UICC) type secure element (SE) of a mobile device, the method comprising:
- selecting, by the mobile device, a payment card of a service provider among a plurality of service providers after the service provider has been pre-registered into a Trusted Service Manager (TSM) system, wherein the TSM system has held all of the information from the plurality of service providers through a pre-registration process;
sending, by the service provider, to the TSM system, a request for issuance of the selected payment card when the service provider receives from the mobile device a request to provision the selected payment card, wherein the request for issuance includes identifying information and encrypted account related information;
receiving, by the mobile device, a request to initialize an OTA proxy of the mobile device from the TSM system without the mobile device interacting with the service provider;
initializing, by the mobile device, the OTA proxy;
preparing, by the TSM system, provisioning data;
receiving, by the mobile device, the provisioning data through the OTA proxy from the TSM system without the mobile device interacting with the service provider, wherein (a) the TSM system has determined a mode of provisioning and sent the provisioning data through the determined mode of provisioning, (b) the TSM system has checked a status of the SE and a type of the SE prior to sending the provisioning data based on information of the mobile device and of the SE having been received from the mobile device, and (c) after the TSM system has determined the status of the SE, the TSM system has analyzed the type of the SE to determine a type of protocol to be used within the OTA proxy of the mobile device in order to provision into the SE; and
provisioning, by the mobile device, the received provisioning data into the SE, wherein the preparing of the provisioning data further includes processing a protocol to enable the SE to be provisioned when the SE type is a Micro secure digital (SD) type,wherein the method further comprises preparing the SE for provisioning, and the preparing of the SE for provisioning comprises;
retrieving mobile device information and SE information, wherein the SE information comprises an SE status and an SE type;
receiving a key for accessing the SE from the TSM system; and
securing the SE based on the SE status.
2 Assignments
0 Petitions
Accused Products
Abstract
A method for over-the-air (OTA) provisioning a non-Universal Integrated Circuit Card (UICC) type secure element (SE) of a mobile device, including receiving a request to initialize an OTA proxy of a mobile device; initializing the OTA proxy; receiving provisioning data through the OTA proxy; and provisioning the received data into the SE, in which the SE is a non-UICC type SE. A mobile device to provision secure data OTA in a non-UICC type SE including an OTA proxy to connect to a Trusted Service Manager (TSM) system, and to receive provisioning data from the TSM system; a near-field-communication (NFC) enabled chip to conduct a contactless transaction; and a SE to store information provisioned through OTA proxy, in which the SE is a non-UICC type SE.
-
Citations
21 Claims
-
1. A method for over-the-air (OTA) provisioning a non-Universal Integrated Circuit Card (UICC) type secure element (SE) of a mobile device, the method comprising:
-
selecting, by the mobile device, a payment card of a service provider among a plurality of service providers after the service provider has been pre-registered into a Trusted Service Manager (TSM) system, wherein the TSM system has held all of the information from the plurality of service providers through a pre-registration process; sending, by the service provider, to the TSM system, a request for issuance of the selected payment card when the service provider receives from the mobile device a request to provision the selected payment card, wherein the request for issuance includes identifying information and encrypted account related information; receiving, by the mobile device, a request to initialize an OTA proxy of the mobile device from the TSM system without the mobile device interacting with the service provider; initializing, by the mobile device, the OTA proxy; preparing, by the TSM system, provisioning data; receiving, by the mobile device, the provisioning data through the OTA proxy from the TSM system without the mobile device interacting with the service provider, wherein (a) the TSM system has determined a mode of provisioning and sent the provisioning data through the determined mode of provisioning, (b) the TSM system has checked a status of the SE and a type of the SE prior to sending the provisioning data based on information of the mobile device and of the SE having been received from the mobile device, and (c) after the TSM system has determined the status of the SE, the TSM system has analyzed the type of the SE to determine a type of protocol to be used within the OTA proxy of the mobile device in order to provision into the SE; and provisioning, by the mobile device, the received provisioning data into the SE, wherein the preparing of the provisioning data further includes processing a protocol to enable the SE to be provisioned when the SE type is a Micro secure digital (SD) type, wherein the method further comprises preparing the SE for provisioning, and the preparing of the SE for provisioning comprises; retrieving mobile device information and SE information, wherein the SE information comprises an SE status and an SE type; receiving a key for accessing the SE from the TSM system; and securing the SE based on the SE status. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A method for over-the-air (OTA) provisioning a non-Universal Integrated Circuit Card (UICC) type secure element (SE) device, the method comprising:
-
selecting, by the mobile device, a payment card of a service provider among a plurality of service providers after the service provider has been pre-registered into a Trusted Service Manager (TSM) system, wherein the TSM system has held all of the information from the plurality of service providers through a pre-registration process; sending, by the service provider, to the TSM system a request for issuance of the selected payment card when the service provider receives from the mobile device a request to provision the selected payment card, wherein the request for issuance includes identifying information and encrypted account related information; receiving, by the mobile device, a request to initialize an OTA proxy of the mobile device from the TSM system without the mobile device interacting with the service provider; initializing, by the mobile device, the OTA proxy; communicating, by the mobile device, with the TSM system through the OTA proxy; retrieving, by the mobile device through the OTA proxy, mobile device information and SE information, wherein the SE information comprises an SE status and an SE type; receiving, by the mobile device through the OTA proxy, a key from the TSM system for accessing the SE, wherein the key comprises at least one of an initial issuer master key and a final issuer master key; securing, by the mobile device through the OTA proxy, the SE by providing the corresponding key to the SE based on a the status of the SE; preparing, by the TSM system, provisioning data; receiving, by the mobile device through the OTA proxy, the provisioning data from the TSM system without the mobile device interacting with the service provider, wherein (a) the TSM system has determined a mode of provisioning and sent the provisioning data through the determined mode of provisioning, (b) the TSM system has checked the status of the SE and the type of the SE prior to sending the provisioning data based on information of the mobile device and of the SE having been received from the mobile device, and (c) after the TSM system has determined the status of the SE, the TSM system has analyzed the type of the SE to determine a type of protocol to be used within the OTA proxy of the mobile device in order to provision into the SE; and provisioning, by the mobile device through the OTA proxy, the received data into the SE, wherein the preparing of the provisioning data includes processing a protocol to enable the SE to be provisioned when the SE type is a Micro secure digital (SD) type. - View Dependent Claims (14, 15)
-
-
16. A mobile device configured to provision secure data over-the-air (OTA) in a non-Universal Integrated Circuit Card (UICC) type secure element (SE), the mobile device comprising:
-
an OTA proxy configured to connect to a Trusted Service Manager (TSM) system, to select a payment card of a service provider among a plurality of service providers after the service provider has been pre-registered into the TSM system, and to receive provisioning data from the TSM system, wherein (i) the TSM system has held all of the information from the plurality of service providers through a pre-registration process, (ii) the TSM system has determined a mode of provisioning and sent the provisioning data through the determined mode of provisioning, (iii) the TSM system has checked a status of the SE and a type of the SE prior to sending the provisioning data based on information of the mobile device and of the SE having been received from the mobile device, and (iv) after the TSM system has determined the status of the SE, the TSM system has analyzed the type of the SE to determine type of protocol to be used within the OTA proxy of the mobile device in order to provision into the SE; a near-field-communication (NFC) enabled device configured to conduct a contactless transaction; and a SE configured to store information provisioned through the OTA proxy, wherein the mobile device is configured to interact with the TSM system without service providers (SPs), the TSM system holding all of the information related to a provisioning procedure from the service providers (SPs) through a pre-registration process, wherein the OTA proxy of the mobile device is configured to be initialized when the mobile device receives a request to initialize the OTA proxy transmitted from the TSM system, wherein the OTA proxy is further configured to receive a protocol to prepare the SE to be provisioned, wherein the mobile device is configured to send to the service provider a request to provision the selected payment card, whereby the TSM system receives, from the service provider, a request for issuance of the selected payment card to the mobile device, wherein the request for issuance includes identifying information and encrypted account related information, wherein the OTA proxy is configured to transmit mobile device information and SE information to the TSM system, and the SE information comprises the SE status and the SE type; and wherein the type of SE is a Micro secure digital (SD) type. - View Dependent Claims (17, 18, 19, 20, 21)
-
Specification