System and method for a multi-application smart card which can facilitate a post-issuance download of an application onto the smart card
First Claim
1. A method for loading a smart card application onto a smart card after said smart card has been issued to a cardholder, said method comprising:
- issuing said smart card to a cardholder, said smart card including a card domain application arranged to manage the post-issuance loading of applications;
establishing communication between said smart card and a provider of said smart card application;
loading said smart card application onto said smart card under control of said card domain application; and
checking a cryptographic signature of said smart card application using said card domain application, whereby said smart card application is loaded onto said smart card post-issuance in a secure manner.
2 Assignments
0 Petitions
Accused Products
Abstract
A system and method allow card issuers to securely add applications during the lifetime of the card after the card has already been issued (post issuance). Loading of an application and/or objects from an application server via a card acceptance device (and its supporting system infrastructure delivery mechanism) onto a card post issuance is performed in a secure and confidential manner. A smart card includes a card domain application that manages the card. Any number of security domain applications on the card provide security for loaded applications by managing keys; each application is associated with a security domain. Each of the card domain and security domains has a command interface for off-card communication, and an API for internal card use. The card life cycle includes the states of masked, initialized, load secured and blocked. An application life cycle includes the states of not available, loaded, installed, registered, personalized, activated and blocked. An application can block the card.
616 Citations
24 Claims
-
1. A method for loading a smart card application onto a smart card after said smart card has been issued to a cardholder, said method comprising:
-
issuing said smart card to a cardholder, said smart card including a card domain application arranged to manage the post-issuance loading of applications; establishing communication between said smart card and a provider of said smart card application; loading said smart card application onto said smart card under control of said card domain application; and checking a cryptographic signature of said smart card application using said card domain application, whereby said smart card application is loaded onto said smart card post-issuance in a secure manner. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method for loading a smart card application onto a smart card after said smart card has been issued to a cardholder, said method comprising:
-
issuing said smart card to a cardholder, said smart card including a card domain application arranged to manage the post-issuance loading of applications and a security domain application arranged to manage the security of post-issuance loading of applications; establishing communication between said smart card and a provider of said smart card application; loading said smart card application onto said smart card; and invoking a cryptographic service of said security domain application to validate said smart card application, whereby said smart card application is loaded onto said smart card post-issuance in a secure manner. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A smart card arranged to load an application onto said smart card after said smart card has been issued to a cardholder, said smart card comprising:
-
a card domain application arranged to manage loading of said application onto said smart card; and a security domain application arranged to manage the security of post-issuance loading of applications, said security domain application including a cryptographic key associated with said application, a cryptographic service for validating said application after said application has been loaded post-issuance, said cryptographic service using said cryptographic key, and a key management function associated with said cryptographic key, whereby said application may be loaded onto said smart card post-issuance in a secure manner using said security domain application. - View Dependent Claims (16, 17, 18, 19)
-
-
20. A smart card arranged to load a plurality of applications onto said smart card after said smart card has been issued to a cardholder, said smart card comprising:
-
a card domain application arranged to manage loading of said applications onto said smart card; a first security domain application arranged to provide security for a first application to be loaded post-issuance, said first security domain application including a first cryptographic key associated with said first application, said first cryptographic key being kept secret from said card domain and from a second security domain application; and said second security domain application arranged to provide security for a second application to be loaded post-issuance, said second security domain application including a second cryptographic key associated with said second application, said second cryptographic key being kept secret from said card domain and from said first security domain application, whereby said first and second applications may be loaded securely post-issuance using said first and second cryptographic keys, respectively. - View Dependent Claims (21, 22, 23, 24)
-
Specification