Method for programming a mobile end device chip
First Claim
Patent Images
1. A method for programming a chip for a mobile end device, comprising the steps of:
- in a preparatory step a serial number is programmed into the chip; and
thenin a programming step, the serial number is verified and a programming of at least one further datum into the chip is only carried out if the serial number has been successfully verified, the further datum comprising a cryptographic key required for operability of a security operating system implemented, or yet to be implemented, in the chip, the cryptographic key being generated based on the serial number, such that the cryptographic key is unique to the chip;
wherein the serial number programmed into the chip is verified by means of a security module configured to regenerate the serial number using a secret mapping rule and further determine whether the serial number programmed into the chip matches the regenerated serial number, the mapping rule being stored in the security module as a secret information item.
2 Assignments
0 Petitions
Accused Products
Abstract
The invention provides a method for programming a chip for a mobile end device, wherein, in a preparatory step, a serial number is programmed into the chip and thereafter, in a programming step, the serial number is verified and a programming of at least one further datum into the chip is only carried out if the serial number has been successfully verified. The serial number is verified here by means of a security module (HSM), while employing a secret information item stored in the security module (HSM) and different from the serial number.
41 Citations
14 Claims
-
1. A method for programming a chip for a mobile end device, comprising the steps of:
-
in a preparatory step a serial number is programmed into the chip; and
thenin a programming step, the serial number is verified and a programming of at least one further datum into the chip is only carried out if the serial number has been successfully verified, the further datum comprising a cryptographic key required for operability of a security operating system implemented, or yet to be implemented, in the chip, the cryptographic key being generated based on the serial number, such that the cryptographic key is unique to the chip; wherein the serial number programmed into the chip is verified by means of a security module configured to regenerate the serial number using a secret mapping rule and further determine whether the serial number programmed into the chip matches the regenerated serial number, the mapping rule being stored in the security module as a secret information item. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A method for securely configuring a mobile end device containing a chip, for a mobile radio system, comprising the steps of:
-
in a preparatory step a serial number is programmed into the chip; and
thenin a programming step, the serial number is verified and a programming of at least one further datum into the chip is only carried out if the serial number has been successfully verified, the further datum comprising a cryptographic key required for operability of a security operating system implemented, or yet to be implemented, in the chip, the cryptographic key being generated based on the serial number, such that the cryptographic key is unique to the chip; verifying the serial number programmed into the chip by means of a security module configured to regenerate the serial number using a secret mapping rule and further determine whether the serial number programmed into the chip matches the regenerated serial number, the mapping rule being stored in the security module as a secret information item; bringing the chip into data exchange connection with a background system of the mobile radio system in order to register the mobile end device with the background system; in a verification step temporally following the programming step, the serial number is verified again with the background system by means of the verification data set, and the chip is accepted if the serial number has been successfully verified in the verification step, and the chip is discarded if the serial number has not been successfully verified in the verification step; and wherein only in the case that the serial number and/or the key-serial number datum has been successfully verified in the verification step is the mobile radio device registered with the background system. - View Dependent Claims (14)
-
Specification