WO2004056030A3 - Personalisierung von sicherheitsmoduln - Google Patents

Personalisierung von sicherheitsmoduln Download PDF

Info

Publication number
WO2004056030A3
WO2004056030A3 PCT/DE2003/003853 DE0303853W WO2004056030A3 WO 2004056030 A3 WO2004056030 A3 WO 2004056030A3 DE 0303853 W DE0303853 W DE 0303853W WO 2004056030 A3 WO2004056030 A3 WO 2004056030A3
Authority
WO
WIPO (PCT)
Prior art keywords
certificate
personalisation
security module
key
security modules
Prior art date
Application number
PCT/DE2003/003853
Other languages
English (en)
French (fr)
Other versions
WO2004056030A2 (de
Inventor
Michael Nolte
Original Assignee
Wincor Nixdorf Int Gmbh
Michael Nolte
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Wincor Nixdorf Int Gmbh, Michael Nolte filed Critical Wincor Nixdorf Int Gmbh
Priority to US10/535,699 priority Critical patent/US20060156001A1/en
Priority to EP03782103A priority patent/EP1573688A2/de
Publication of WO2004056030A2 publication Critical patent/WO2004056030A2/de
Publication of WO2004056030A3 publication Critical patent/WO2004056030A3/de

Links

Classifications

    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/10Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
    • G07F7/1008Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/341Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/355Personalisation of cards for use
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3821Electronic credentials
    • G06Q20/38215Use of certificates or encrypted proofs of transaction rights
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/409Device specific authentication in transaction processing
    • G06Q20/4097Device specific authentication in transaction processing using mutual authentication between devices and transaction partners
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F19/00Complete banking systems; Coded card-freed arrangements adapted for dispensing or receiving monies or the like and posting such transactions to existing accounts, e.g. automatic teller machines
    • G07F19/20Automatic teller machines [ATMs]
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/10Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
    • G07F7/1016Devices or methods for securing the PIN and other transaction-data, e.g. by encryption

Landscapes

  • Business, Economics & Management (AREA)
  • Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • Accounting & Taxation (AREA)
  • General Physics & Mathematics (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • Theoretical Computer Science (AREA)
  • Finance (AREA)
  • Computer Security & Cryptography (AREA)
  • Microelectronics & Electronic Packaging (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Storage Device Security (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

Sicherheitsmodul, Personalisierer und Verfahren zu deren Benutzung, wobei der Sicherheitsmodul einen geheimen Schlüssel eines Schlüsselpaares für asymmetrische Verschlüsslung enthält, der Personalisierer ein Zertifikat über den öffentlichen Schlüssel des Schlüsselpaares erzeugt und zusammen mit dem öffentlichen Schlüssel eines Zentralsystems an den Sicherheitsmodul sendet. Der Sicherheitsmodul verwendet dieses Zertifikat und den öffentlichen Schlüssel zur Sicherung der Kommunikation mit einem Zentralsystem, insbesondere im Bankenbereich.
PCT/DE2003/003853 2002-12-17 2003-11-20 Personalisierung von sicherheitsmoduln WO2004056030A2 (de)

Priority Applications (2)

Application Number Priority Date Filing Date Title
US10/535,699 US20060156001A1 (en) 2002-12-17 2003-11-20 Personalisation of security modules
EP03782103A EP1573688A2 (de) 2002-12-17 2003-11-20 Personalisierung von sicherheitsmoduln

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
DE10259270.5 2002-12-17
DE10259270A DE10259270A1 (de) 2002-12-17 2002-12-17 Personalisierung von Sicherheitsmoduln

Publications (2)

Publication Number Publication Date
WO2004056030A2 WO2004056030A2 (de) 2004-07-01
WO2004056030A3 true WO2004056030A3 (de) 2004-08-26

Family

ID=32519074

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/DE2003/003853 WO2004056030A2 (de) 2002-12-17 2003-11-20 Personalisierung von sicherheitsmoduln

Country Status (4)

Country Link
US (1) US20060156001A1 (de)
EP (1) EP1573688A2 (de)
DE (1) DE10259270A1 (de)
WO (1) WO2004056030A2 (de)

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
GB0329039D0 (en) * 2003-12-15 2004-01-14 Ncipher Corp Ltd Cryptographic security module method and apparatus
DE102005025684B4 (de) * 2005-02-02 2006-11-30 Rohde & Schwarz Sit Gmbh Verfahren zur Nachindividualisierung von bei mindestens einem Zulieferer gefertigten Neben-Geräten bzw.- Systemen durch den Hersteller
PL1710760T3 (pl) * 2005-04-06 2014-04-30 Scheidt & Bachmann Gmbh Bezpieczne zwalnianie urządzeń
DE102010030590A1 (de) * 2010-06-28 2011-12-29 Bundesdruckerei Gmbh Verfahren zur Erzeugung eines Zertifikats
CN111092734B (zh) * 2019-12-19 2021-12-28 南京莱斯电子设备有限公司 一种基于自组网络通信的产品激活认证方法

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0784256A1 (de) * 1995-12-22 1997-07-16 Intel Corporation Verfahren und Vorrichtung zur Kryptographie mit offentlichem Schlüssel unter Verwendung einer sicheren Halbleiteranordnung
US5781723A (en) * 1996-06-03 1998-07-14 Microsoft Corporation System and method for self-identifying a portable information device to a computing unit
EP1096446A2 (de) * 1999-11-01 2001-05-02 Citicorp Development Center, Inc. Verfahren und System zur gesicherten Übertragung zwischen einem Selbstbedienungsterminal fur finanzielle Transaktionen und einer entfernten Bedienerschnittstelle
US20020053022A1 (en) * 2000-10-30 2002-05-02 Ivi Checkmate Corp. Security arrangement for exchange of encrypted information
US20030088772A1 (en) * 2001-11-02 2003-05-08 Christian Gehrmann Personal certification authority device

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CA2315656C (en) * 1997-12-19 2008-04-29 Visa International Service Association Card activation at point of distribution
US6212280B1 (en) * 1998-10-23 2001-04-03 L3-Communications Corporation Apparatus and methods for managing key material in heterogeneous cryptographic assets
US6826690B1 (en) * 1999-11-08 2004-11-30 International Business Machines Corporation Using device certificates for automated authentication of communicating devices

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0784256A1 (de) * 1995-12-22 1997-07-16 Intel Corporation Verfahren und Vorrichtung zur Kryptographie mit offentlichem Schlüssel unter Verwendung einer sicheren Halbleiteranordnung
US5781723A (en) * 1996-06-03 1998-07-14 Microsoft Corporation System and method for self-identifying a portable information device to a computing unit
EP1096446A2 (de) * 1999-11-01 2001-05-02 Citicorp Development Center, Inc. Verfahren und System zur gesicherten Übertragung zwischen einem Selbstbedienungsterminal fur finanzielle Transaktionen und einer entfernten Bedienerschnittstelle
US20020053022A1 (en) * 2000-10-30 2002-05-02 Ivi Checkmate Corp. Security arrangement for exchange of encrypted information
US20030088772A1 (en) * 2001-11-02 2003-05-08 Christian Gehrmann Personal certification authority device

Also Published As

Publication number Publication date
DE10259270A1 (de) 2004-07-15
US20060156001A1 (en) 2006-07-13
EP1573688A2 (de) 2005-09-14
WO2004056030A2 (de) 2004-07-01

Similar Documents

Publication Publication Date Title
WO2003003171A3 (en) A method and system for generating and verifying a key protection certificate.
PL371972A1 (en) Method for secure data exchange between two devices
WO2008019194A3 (en) Mutual authentication and secure channel establichment between two parties using consecutive one-time passwords
MXPA02009771A (es) Autentificacion de datos transmitidos en un sistema de transmision digital.
WO2007139706A3 (en) Authenticating a tamper-resistant module in a base station router
WO2008030704A3 (en) Method and system for secure processing of authentication key material in an ad hoc wireless network
WO2009070430A3 (en) Apparatus and methods for providing scalable, dynamic, individualized credential services using mobile telephones
NO20071803L (no) Telemetri som bruker "alltid pa" kommunikasjonssystem og fremgangsmate
WO2009060899A1 (ja) 共通鍵設定方法、中継装置、及びプログラム
TW200633462A (en) Stateless hardware security module
SG149874A1 (en) System and method for encrypted smart card pin entry
WO2003009561A3 (en) A system and method for supporting multiple certificate authorities on a mobile communication device
EP0939514A3 (de) Authentifizierung einer Vorrichtung und verschlüsseltes Kommunikationssystem mit verbesserter Sicherheit
WO2006050152A3 (en) Secure collaborative terminal identity authentication between a wireless communication device and a wireless operator
DE60310437D1 (de) Sichere kommunikation
NZ533457A (en) Network user authentication system and method
WO2007106679A3 (en) Mutual authentication between two parties using two consecutive one-time passwords
WO2007127576A3 (en) Method for elliptic curve public key cryptographic validation
WO2005089088A3 (en) Method, apparatus and system for use in distributed and parallel decryption
WO2008090779A1 (ja) 権限管理方法、そのシステム並びにそのシステムで利用されるサーバ装置及び情報機器端末
TW200701728A (en) Data-encrypting/decrypting method, data-saving media using the method, and data-encrypting/decrypting module
ATE465572T1 (de) Sicherer datentransfer
WO2008099831A1 (ja) 鍵生成装置、鍵導出装置、暗号化装置、復号化装置、方法、及び、プログラム
WO2002063823A1 (fr) Procede de communication de donnees confidentielles
WO2005092001A3 (en) Methods and apparatus for confidentiality protection for fibre channel common transport

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): US

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IT LU MC NL PT RO SE SI SK TR

121 Ep: the epo has been informed by wipo that ep was designated in this application
DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
WWE Wipo information: entry into national phase

Ref document number: 2003782103

Country of ref document: EP

ENP Entry into the national phase

Ref document number: 2006156001

Country of ref document: US

Kind code of ref document: A1

WWE Wipo information: entry into national phase

Ref document number: 10535699

Country of ref document: US

WWP Wipo information: published in national office

Ref document number: 2003782103

Country of ref document: EP

WWP Wipo information: published in national office

Ref document number: 10535699

Country of ref document: US

WWW Wipo information: withdrawn in national office

Ref document number: 2003782103

Country of ref document: EP