Systems and methods for providing security to different functions
First Claim
1. A device comprising:
- a memory storing;
a first key, a second key and a third key; and
an authentication module coupled to the memory, the authentication module including program code programmed to;
authenticate the device to a mobile network using a copy of the first key to permit downloading, from the mobile network, a function capsule including a first function and a second function;
authenticate the device, using a copy of the second key, to execute the first function of the function capsule; and
authenticate the device, using a copy of the third key, to execute the second function of the function capsule after authenticating the device, using the second key, to execute the first function of the function capsule.
5 Assignments
0 Petitions
Accused Products
Abstract
Methods and systems are provided that use smartcards, such as subscriber identity module (SIM) cards to provide secure functions for a mobile client. One embodiment of the invention provides a mobile communication network system that includes a mobile network, a mobile terminal, a server coupled to the mobile terminal via the mobile network, and a subscriber identity module (SIM) card coupled to the mobile terminal. The SIM card includes a first key and a second key. The first key is used to authenticate an intended user of the mobile terminal to the mobile network. Upon successful authentication of the intended user to the mobile network, the mobile terminal downloads a function offered from the server through the mobile network. The second key is then used by the mobile terminal to authenticate the intended user to the downloaded function so that the intended user can utilize the function.
11 Citations
18 Claims
-
1. A device comprising:
-
a memory storing; a first key, a second key and a third key; and an authentication module coupled to the memory, the authentication module including program code programmed to; authenticate the device to a mobile network using a copy of the first key to permit downloading, from the mobile network, a function capsule including a first function and a second function; authenticate the device, using a copy of the second key, to execute the first function of the function capsule; and authenticate the device, using a copy of the third key, to execute the second function of the function capsule after authenticating the device, using the second key, to execute the first function of the function capsule. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A smart card comprising:
-
a memory; and a communication interface coupled to the memory, the memory comprising; a server access key accessible from the memory through the communication interface, where the server access key is configured to authenticate access to a server to download a function capsule comprising a first function and a second function, the server access key matching a copy of the server access key stored with the server to enable authentication of the access to the server; a first function authentication key accessible from the memory through the communication interface, where the first function authentication key matches a copy of the first function authentication key stored remotely from the memory and is configured to authenticate use of the first function of the function capsule; and a second function authentication key accessible from the memory through the communication interface, where the second function authentication key matches a copy of the second function authentication key stored remotely from the memory and is configured to authenticate use of the second function of the function capsule. - View Dependent Claims (7, 8, 9, 10)
-
-
11. A method comprising:
through a mobile device comprising a memory; accessing a server access key from the memory of the mobile device, the server access key matching a key stored with a server remotely from the mobile device; authenticating the mobile device to access the server using the server access key accessed from the memory and challenge-response communications with the server; downloading, from the server, a function capsule comprising a first function and a second function; accessing an additional key from the memory of the mobile device, the additional key matching a copy of the additional key which is stored remotely from the mobile device; authenticating the mobile device, using the additional key in conjunction with further challenge-response communications, to use the first function of the function capsule; accessing a second additional key from the memory of the mobile device, the second additional key matching a copy of the second additional key which is stored remotely from the mobile device; and authenticating the mobile device, using the second additional key in conjunction with further challenge-response communications, to use the second function of the function capsule. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18)
Specification