System and method for providing secure data communication functionality to a variety of applications on a portable communication device
First Claim
1. A system for providing a first application associated with a portable communication device the ability to communicate via a secure element disposed on the portable communication device, the system comprising:
- a first digital identifier and a first digital token operably associated with the first application, wherein the first digital token is a global constant communicated by a server to other portable communication devices that also receive the first application;
a card services module disposed on the portable communication device and operably associated with the secure element to provide an application programming interface to the secure element;
a secure data table electronically associated with the card services module and stored on the portable communication device, the secure data table including a list of one or more trusted applications each being identifiable by a paired set of digital identifier and digital token,wherein the card services module includes means for comparing the first digital identifier and the first digital token with each of the identifier-token pairs in the secure data table until a match indicates that the first application is a first trusted application; and
means for generating a second digital token that is a function of the first digital identifier and the first digital token, and for storing the second digital token in the secure data table in association with the first trusted application,wherein the card services module issues one or more commands to the secure element in conjunction with presentation of the first digital token during an initial launch of the first trusted application and in conjunction with presentation of the second digital token, instead of the first digital token, in a subsequent launch of the first trusted application.
8 Assignments
0 Petitions
Accused Products
Abstract
A system for providing an application associated with a portable communication device the ability to communicate via a secure element. The system has a digital identifier and digital token operably associated with the application; a card services module that provides an application programming interface to the secure element; and a secure data table associated with the card services module. The secure data table includes a list of trusted applications each identifiable by paired digital identifier and token. The card services module [includes] compares the identifier and the token with each of the identifier-token pairs in the table until a match indicates the application is trusted. The card services module issues commands to the secure element based on an action requested by a trusted application in conjunction with the presentation of the digital token. A method of providing an application with the ability to communicate via secure element is also disclosed.
46 Citations
20 Claims
-
1. A system for providing a first application associated with a portable communication device the ability to communicate via a secure element disposed on the portable communication device, the system comprising:
-
a first digital identifier and a first digital token operably associated with the first application, wherein the first digital token is a global constant communicated by a server to other portable communication devices that also receive the first application; a card services module disposed on the portable communication device and operably associated with the secure element to provide an application programming interface to the secure element; a secure data table electronically associated with the card services module and stored on the portable communication device, the secure data table including a list of one or more trusted applications each being identifiable by a paired set of digital identifier and digital token, wherein the card services module includes means for comparing the first digital identifier and the first digital token with each of the identifier-token pairs in the secure data table until a match indicates that the first application is a first trusted application; and means for generating a second digital token that is a function of the first digital identifier and the first digital token, and for storing the second digital token in the secure data table in association with the first trusted application, wherein the card services module issues one or more commands to the secure element in conjunction with presentation of the first digital token during an initial launch of the first trusted application and in conjunction with presentation of the second digital token, instead of the first digital token, in a subsequent launch of the first trusted application. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A method for providing a first application associated with a portable communication device the ability to communicate via a secure element disposed on the portable communication device, the method comprising:
-
determining that the first application is a first trusted application on the portable communication device by comparing a first digital identifier and a first digital token operably associated with the first application with each paired set of digital identifier and digital token associated with a known trusted application until a match indicates that the first application is a trusted application, the paired sets having been stored in a secure data table on the portable communication device, wherein the first digital token is a global constant communicated by a server to other portable communication devices that also receive the first application; verifying that the first digital token is associated with the first trusted application in the secure data table; generating a second digital token that is a function of the first digital identifier and the first digital token; storing the second digital token in the secure data table in association with the first trusted application; and issuing one or more commands to the secure element in conjunction with presentation of the first digital token during an initial launch of the first trusted application and in conjunction with presentation of the second digital token, instead of the first digital token, in a subsequent launch of the first trusted application. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20)
-
Specification