Electrical computers and digital processing systems: support – Multiple computer communication using cryptography – Particular communication authentication technique
Reexamination Certificate
1997-07-10
2001-06-19
Swann, Tod (Department: 2132)
Electrical computers and digital processing systems: support
Multiple computer communication using cryptography
Particular communication authentication technique
C705S065000, C713S165000, C235S379000, C235S380000
Reexamination Certificate
active
06249869
ABSTRACT:
BACKGROUND OF THE INVENTION
The present invention relates to an integrated circuit card provided with memory means storing service data relating to at least one service.
Such integrated circuit cards are now widely used. The present invention is intended to be used in multiple application authorization mechanisms. Examples of multiple application authorization mechanisms have been described before in, e.g., U.S. Pat. No. 5,473,690, WO-A-92/06451, EP-A-0,640,945, EP-A-0,644,513, WO-A-87/07060, EP-A-0,262,025 and EP-A-0,661,675.
These known multiple application authorization mechanisms share a direct memory access structure in which no directories and files are used. A common feature of the known mechanisms is to use a secret code to check whether a secure application module is allowed to access an application, indicated by a unique identifier, on the integrated circuit card. Whenever a secure application module wishes access to this application this secret code needs to be reproduced.
Since these known mechanisms do not use directories or file structures the presence of access tables on the integrated circuit cards is required. These access tables comprise several entries including the secret code for a predetermined application, the related memory locations on the integrated circuit card used for the predetermined application and the related access rights associated with the predetermined application such as, for example read/write rights, or a pin. Most importantly, a secret key is required to avoid disclosure of the secret code.
A disadvantage of the known mechanisms referred to above is that the access tables on the integrated circuit card occupy memory locations. Since nowadays an integrated circuit card only has about 8 kilobits of memory space available, this is a serious disadvantage.
SUMMARY OF THE INVENTION
The object of the present invention is to provide an integrated circuit card having a memory organized in a directory and file structure and in which memory space is saved by reducing the overhead data on the integrated circuit card per application.
To obtain this object the present invention provides an integrated circuit card wherein at least part of the memory means comprises service data in file structures within one directory comprising a first file and a second file, service data being grouped together in service slots, any service slot being divided into a profile part and a data part, any profile part having a slot number, and being stored in the first file and comprising a unique application identifier and any data part being stored in the second file and comprising data relating to the service, the memory means storing at least one key to protect write access to the first and second files.
By means of a memory on the integrated circuit card structured as defined above it is enough to store only one or two keys on the card which are common to several service applications. Thus, less overhead data relating to any of the service applications on the card is required and more service applications can be supported by the integrated circuit card.
In one embodiment, at least one profile part also comprises data relating to an expiry date of the service slot concerned. Such data relating to an expiry date may be checked by the secure application module which is communicating with the integrated circuit card. If it is established that the date has already expired the service slot concerned is available to any other new service application. Thus, no complicated arrangements have to be provided for between the hardware provider, the provider of the software and the party who is providing the service to the user of the integrated circuit card. The availability of a service slot of which the expiry date has expired can be checked automatically.
When there are different application providers of the software related to several services the service slots are preferably structured such that they comprise their own profile part and their own data part, the profile parts being implemented as records of the first file and the data parts being implemented as records of the second file, the memory means storing a further key to protect access to the first file. In such a case these service slots may be called “generic service slots”.
However, when there is only one application provider of the software for several services, preferably the implemented service slots share one common profile part but any service slot comprises its own data part, the common profile part being implemented as one record of the first file and the data parts being implemented as separate records of the second file. These service slots may be called “dedicated service slots”. In such a case, the first file only comprises one record, thus saving required memory space for the profile part data.
The directory of the integrated circuit card may be extended by a third file such that at least one service slot comprises an additional data part in the third file for storing additional data. Some service applications need a lot of additional data which may be stored in such an additional data part.
The present invention also relates to a secure application module equipped to communicate with an integrated circuit card, provided with memory means storing service data relating to at least one service, wherein at least part of the memory means comprises service data in file structures within one directory, the directory comprising at least one file, the at least one file storing service data relating to one single service grouped together into:
application/service definition data comprising a unique service identifier and data indicating a service type;
at least two application counters for administrating the number of allocations and for generating a unique record transaction number;
a service sequence counter for generating a unique object number and administrating the number of created service objects;
a service float for administrating the number of either issued or received value units and
data relating to access rights defining service actions allowed to be performed by predefined terminals,
and wherein the memory means comprises at least a first key and a second key for protecting any data communication with an integrated circuit card.
The service definition data and the keys on the secure application module are used for the management of the service application, which was controlled by access tables on the integrated circuit card in the mechanisms according to the prior art. Thus, management control data is now stored on the secure application module instead of on the integrated circuit card. However, this is no serious disadvantage since the available memory space on the secure application module is less critical than on the integrated circuit card itself. Moreover, such a construction has several advantages.
First of all, the management of the applications may be realized more easily since the issuer of the integrated circuit cards is always able to establish a direct link between the secure application module and a central data collect system which is more difficult between the integrated circuit cards and the central data collect system.
Secondly, different service acceptants, i.e. parties which establish direct links between integrated circuit cards and the secure application module to facilitate a service, may be authorized to different access rights. The secure application module can easily check which service actions are allowed to a service acceptant to be carried out on an integrated circuit card, e.g. adding loyalty points, subtracting loyalty points, or only displaying a total number of loyalty points present on the integrated circuit card.
By using records within the file structure of the service slot mechanism, the use of access tables on the integrated circuit cards is avoided. The secure application module will always only allow use of a specified record number that has been read in a secured way.
The present invention also relates to a system comprising a secure application module according
Drupsteen Michel Marco Paul
Feiken Albertus
Frishauf, Holtz Goodman, Langer & Chick, P.C.
Koninklijke KTN N.V.
Meislahn Douglas
Swann Tod
LandOfFree
Integrated circuit card, secure application module, system... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Integrated circuit card, secure application module, system..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Integrated circuit card, secure application module, system... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2532568