Method and system for providing a controllable trusted service management platform

Method and system for providing a controllable trusted service management platform

  • CN 103,530,775 B
  • Filed: 09/28/2013
  • Issued: 11/03/2020
  • Est. Priority Date: 09/28/2012
  • Status: Active Grant
First Claim
Patent Images

1. A system for managing a plurality of mobile devices, the system comprising:

  • a plurality of trusted service management platforms for personalizing secure elements within a mobile device, installing a supplemental security domain for the secure elements within the mobile device;

    a first server configured to establish a secure channel with the mobile device using a supplemental security domain upon requesting configuration of an application installed in the mobile device, wherein the mobile device comprises a secure element that has been personalized by a trusted service management platform having a supplemental security domain, the application published by a service provider being pre-installed or downloaded into the mobile device, the first server obtaining from the mobile device respective identifiers for the secure element and the application and updating the supplemental security domain; and

    a hardware security module coupled to the first server and configured to compute a new keyset based on a keyset of a supplemental security domain, wherein the first server is configured to interact with the hardware security module to extract the new keyset to thereby generate a new supplemental security domain for the secure element,the trusted service management platform is intended to assist a plurality of service providers in publishing and managing contactless services for their customers and unable to participate in actual transactions, and the first server is one of a plurality of servers operated and controlled by the service provider and involved in actual transactions,the system further includes a second server coupled to the first server and configured to prepare a data set, wherein the first server receives the data set and causes the mobile device to receive the data set for configuring the application,the first server is configured to manage life cycles of the secure element and one or more applets in the mobile device,the first server is configured to delete, lock, or restart an applet related to an application in the mobile device.

View all claims
    ×
    ×

    Thank you for your feedback

    ×
    ×