Communications: electrical – Continuously variable indicating – With meter reading
Patent
1994-04-28
1996-07-09
Zimmerman, Brian
Communications: electrical
Continuously variable indicating
With meter reading
3408253, 380 21, 380 23, 235380, G07F 708, H04L 932
Patent
active
055348572
DESCRIPTION:
BRIEF SUMMARY
TECHNICAL FIELD
This invention concerns a method for securely writing confidential data to smart cards in remote, insecure locations. In a second aspect the invention concerns a system for securely writing the confidential data. Smart Cards are used as a highly-secure means of storing data in a portable form. They are of particular use, for example, in cryptographic applications for the storage of cipher keys.
BACKGROUND OF THE INVENTION
When a smart card is manufactured, the manufacturer `burns in` a unique identifying serial number. In addition the manufacturer installs a manufacturer's `Master` Secret Code.
The card and the Master Secret Code are subsequently conveyed to the Issuer by separate means. Upon receipt by the Issuer the card is accessed by presenting the Master Secret Code and that code is then changed to a fresh `Issuer` Secret Code not known to the manufacturer. One or more User Secret Codes are then stored in the card and used to protect access to confidential user data. Initial user data may then be stored in the card. The card and the User Secret Code(s) are ultimately conveyed to a user by separate means, and the appropriate User Secret Code(s) must be correctly presented to the smart card by the user, before access to the card is allowed.
The process of presentation of the Master Secret Code, storage of the Issuer Secret Code, storage of the User Secret Codes, and initial storage of user data, is commonly called Personalisation, and is traditionally done in a secure "Personalisation Centre" by the Issuer. This approach is costly, time-consuming and relatively insecure.
SUMMARY OF THE INVENTION
According to the present invention, as currently envisaged, there is provided a method for securely writing confidential data from an Issuer to a customer smart card at a remote location, comprising the steps of: at the remote location and the Issuer's secure computer; includes a smart card reader/writer, and the data terminal device; by means of a retailer smart card presented to the secure terminal device; terminal device and the Issuer's computer, using the retailer smart card; the Issuer's computer to the customer smart card.
Preferably the method includes the step of establishing a second session key for enciphering data traffic between the data terminal device and the Issuer's computer.
Preferably the retailer is authenticated to the Issuer by entering a retailer secret code which is checked by the retailer smart card, then a cipher key is read from the retailer smart card to the secure terminal device and checked by a challenge sent by the Issuer. Optionally the Issuer is subsequently authenticated to the retailer using a cipher key which is read from the retailer smart card to the secure terminal device and used to challenge the Issuer.
Preferably the session keys are established by using a cipher key to encrypt the combined product of two random numbers, one of which was generated by the first party and sent to the second party, the other of which was generated by the second party and sent to the first party.
Advantageously the confidential data is an Issuer Secret Code present in the customer smart card to prevent access to the card, and required to open the card to accept data.
Preferably the confidential data comprises a directory and file structures, and data.
According to a further aspect of the invention, as currently envisaged, there is provided a system for securely writing confidential data from an Issuer to a customer smart card in a remote location, comprising: communication with the computer by means of a communications link; reader/writer, selectively in communication with the computer via the data terminal device; retailer to the Issuer and the Issuer to the retailer, and the data required to establish a session key for enciphering traffic between the secure terminal device and the Issuer's computer; to the secure terminal device, written from the computer enciphered under the session key.
Preferably the retailer smart card also contains the data required to establis
REFERENCES:
patent: 4453074 (1984-06-01), Weinstein
patent: 4649233 (1987-03-01), Bass et al.
patent: 4758718 (1988-07-01), Fujisaki
patent: 4803351 (1989-02-01), Shigenaga
patent: 4910774 (1990-03-01), Barakat
patent: 4965568 (1990-10-01), Atalla et al.
patent: 5068894 (1991-11-01), Hoppe
patent: 5109152 (1992-04-01), Takagi et al.
patent: 5193114 (1993-03-01), Moseley
patent: 5196840 (1993-03-01), Leith et al.
Bowcock Matthew P.
Laing Simon G.
Security Domain Pty. Ltd.
Wilson Jr. William H.
Zimmerman Brian
LandOfFree
Method and system for secure, decentralized personalization of s does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method and system for secure, decentralized personalization of s, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method and system for secure, decentralized personalization of s will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-1870144