公开(公告)号：US20130283047A1

公开(公告)日：2013-10-24

申请号：US13814067

申请日：2011-08-04

申请人： Lionel Merrien ,  Serge Barbe

发明人： Lionel Merrien ,  Serge Barbe

IPC分类号： H04L29/06

CPC分类号： H04L63/00 ,  H04L63/0428 ,  H04L63/102 ,  H04L67/306 ,  H04W4/00 ,  H04W4/50 ,  H04W12/02 ,  H04W12/08

摘要： System and method for allowing a mobile telecom device to use multiple profiles. The system and method includes operating a security function to perform a cryptographic operation on a profile using a cryptography key of the security function thereby producing a cryptographically protected profile, storing the cryptographically protected profile, and activating the cryptographically protected profile by operating the security function to verify that the cryptographically protected profile has been cryptographically protected using the cryptography key of the security function, and upon verifying that the cryptographically protected profile has been protected using the cryptography key of the security function, activating the cryptographically protected profile.

摘要翻译： 允许移动电信设备使用多个配置文件的系统和方法。 该系统和方法包括操作安全功能以使用安全功能的加密密钥对简档执行加密操作，从而产生密码保护的简档，存储加密保护的简档，以及通过将安全功能操作来激活加密保护的简档 验证使用安全功能的加密密钥对加密保护的简档进行密码保护，并且在使用安全功能的加密密钥验证密码保护的简档已被保护时，激活加密保护的简档。

公开(公告)号：US20120278857A1

公开(公告)日：2012-11-01

申请号：US13519975

申请日：2010-12-24

申请人： Lionel Merrien ,  Rodrigo Ferreira Da Silva

发明人： Lionel Merrien ,  Rodrigo Ferreira Da Silva

IPC分类号： G06F21/00

CPC分类号： H04W12/06

摘要： The present invention provides a method for unlocking a secure device (1), said secure device (10) being adapted to be associated with a first device (11) and being adapted to be locked when it is associated to a second device (12) different from the first device (11), said first device (11) being the paired device, the method comprising a step of unlocking the secure device (1) over-the-air when the secure device (1) is connected to the second device (12).

摘要翻译： 本发明提供了一种用于解锁安全装置（1）的方法，所述安全装置（10）适于与第一装置（11）相关联并且适于在与第二装置（12）相关联时被锁定， 与第一装置（11）不同，所述第一装置（11）是配对装置，所述方法包括当所述安全装置（1）连接到所述第二装置（11）时，通过空中解锁所述安全装置（1）的步骤 装置（12）。

公开(公告)号：US20110092253A1

公开(公告)日：2011-04-21

申请号：US12754823

申请日：2010-04-06

申请人： Patrice Amiel ,  Xavier Berard ,  Hervé Ganem ,  Lionel Merrien

发明人： Patrice Amiel ,  Xavier Berard ,  Hervé Ganem ,  Lionel Merrien

IPC分类号： H04B1/38

CPC分类号： H04W8/265 ,  H04M3/42136

摘要： The invention provides a method for activating the subscription of an UICC, said UICC comprising an activation application, said method comprising the step of activating the subscription of the holder of the UICC by sending a message to an activation server, said message being sent by the activation application to the activation server by using an IP based communication.

摘要翻译： 本发明提供了一种用于激活UICC的订阅的方法，所述UICC包括激活应用，所述方法包括通过向激活服务器发送消息来激活UICC的持有者的订阅的步骤，所述消息由 通过使用基于IP的通信激活应用程序到激活服务器。

公开(公告)号：US07222783B2

公开(公告)日：2007-05-29

申请号：US11086279

申请日：2005-03-23

申请人： Lionel Merrien

发明人： Lionel Merrien

IPC分类号： G06K5/00

CPC分类号： G07F7/1008 ,  G06Q20/341 ,  G06Q20/355 ,  G06Q20/3578 ,  H04L9/0891 ,  H04L2209/80 ,  H04W12/04

摘要： A device external to a terminal transmits a specific application identifier and an encrypted first key and number to a first chip card in service in the terminal. In the first card, if the decrypted first number satisfies a first condition, the specific application is called up, application data are read, the data are encrypted using the decrypted first key to transmit them to the external device, and the application is made inoperable. Following replacement of the first card by a second card, the external device transmits the identifier and an encrypted second key and number to the second card. In the latter, if the decrypted second number satisfies a second condition, the encrypted data are transmitted to the second card so that the latter calls up the application, decrypts the encrypted data using the decrypted second key and installs said data.

摘要翻译： 终端外部的设备向终端中正在使用的第一芯片卡发送特定应用标识符和加密的第一密钥和号码。 在第一卡中，如果解密的第一号码满足第一条件，则调用特定应用，读取应用数据，使用解密的第一密钥对数据进行加密，将其发送到外部设备，并且使应用不可操作 。 在通过第二卡替换第一卡之后，外部设备将标识符和加密的第二密钥和号码发送到第二卡。 在后者中，如果解密的第二个数字满足第二个条件，则将加密的数据发送到第二个卡，以便后者调用应用程序，使用解密的第二个密钥解密加密的数据并安装所述的数据。

公开(公告)号：US09647984B2

公开(公告)日：2017-05-09

申请号：US13814067

申请日：2011-08-04

申请人： Lionel Merrien ,  Serge Barbe

发明人： Lionel Merrien ,  Serge Barbe

IPC分类号： H04L29/06 ,  H04W4/00 ,  H04L29/08 ,  H04W12/08 ,  H04W12/02

CPC分类号： H04L63/00 ,  H04L63/0428 ,  H04L63/102 ,  H04L67/306 ,  H04W4/00 ,  H04W4/50 ,  H04W12/02 ,  H04W12/08

摘要： System and method for allowing a mobile telecom device to use multiple profiles. The system and method includes operating a security function to perform a cryptographic operation on a profile using a cryptography key of the security function thereby producing a cryptographically protected profile, storing the cryptographically protected profile, and activating the cryptographically protected profile by operating the security function to verify that the cryptographically protected profile has been cryptographically protected using the cryptography key of the security function, and upon verifying that the cryptographically protected profile has been protected using the cryptography key of the security function, activating the cryptographically protected profile.

公开(公告)号：US09301145B2

公开(公告)日：2016-03-29

申请号：US13312309

申请日：2011-12-06

申请人： Lionel Merrien ,  Xavier Berard ,  Denis Gachon

发明人： Lionel Merrien ,  Xavier Berard ,  Denis Gachon

IPC分类号： H04W4/00 ,  H04W12/08 ,  H04W12/04 ,  H04W12/06 ,  H04L29/08 ,  H04L9/08 ,  H04W8/22 ,  H04B1/3816 ,  H04W8/18 ,  H04W8/20 ,  H04L29/06 ,  H04W84/04

CPC分类号： G06F21/6218 ,  G06F8/61 ,  H04B1/3816 ,  H04L9/0825 ,  H04L63/0428 ,  H04L63/08 ,  H04L63/083 ,  H04L63/123 ,  H04L67/34 ,  H04W4/50 ,  H04W4/60 ,  H04W4/70 ,  H04W8/18 ,  H04W8/183 ,  H04W8/205 ,  H04W8/22 ,  H04W8/245 ,  H04W12/04 ,  H04W12/06 ,  H04W12/08 ,  H04W12/10 ,  H04W84/04

摘要： The invention proposes several improvements related to the management of secure elements, like UICCs embedding Sim applications, these secure elements being installed, fixedly or not, in terminals, like for example mobile phones. In some cases, the terminals are constituted by machines that communicate with other machines for M2M (Machine to Machine) applications.

公开(公告)号：US09294919B2

公开(公告)日：2016-03-22

申请号：US13991689

申请日：2011-12-05

申请人： Lionel Merrien ,  Xavier Berard

发明人： Lionel Merrien ,  Xavier Berard

IPC分类号： H04W12/06 ,  H04W4/00

CPC分类号： G06F21/6218 ,  G06F8/61 ,  H04B1/3816 ,  H04L9/0825 ,  H04L63/0428 ,  H04L63/08 ,  H04L63/083 ,  H04L63/123 ,  H04L67/34 ,  H04W4/50 ,  H04W4/60 ,  H04W4/70 ,  H04W8/18 ,  H04W8/183 ,  H04W8/205 ,  H04W8/22 ,  H04W8/245 ,  H04W12/04 ,  H04W12/06 ,  H04W12/08 ,  H04W12/10 ,  H04W84/04

摘要： A method for exporting on a UICC in a terminal. An export request signed by the UICC, is transmitted by the terminal to a secure server. The server verifies the signed export request by comparing the signature and the identity of the UICC. The server sends a signed export certificate to the UICC via the terminal. An export package containing the data is prepared, signed and encrypted by the UICC, and sent to the terminal. The terminal transmits the export package to the server. The server signs an acknowledgment message and transmits it to the UICC via the terminal. In the UICC, the data that have been exported is destroyed, and a signed acknowledge message is sent to the server via the terminal. The server makes the data available for a further transfer to a new terminal or UICC.

摘要翻译： 一种在终端UICC上导出的方法。 由UICC签发的出口请求由终端发送到安全服务器。 服务器通过比较签名和UICC的身份来验证签名的导出请求。 服务器通过终端向UICC发送签名的导出证书。 包含数据的导出包由UICC准备，签名和加密，并发送到终端。 终端将导出包传输到服务器。 服务器签收确认消息，并通过终端将其发送到UICC。 在UICC中，已经导出的数据被破坏，并且通过终端将有效的确认消息发送到服务器。 服务器使数据可用于进一步传输到新终端或UICC。

公开(公告)号：US08032748B2

公开(公告)日：2011-10-04

申请号：US11793676

申请日：2005-12-06

申请人： Lionel Merrien ,  Gary Chew ,  Max De Groot

发明人： Lionel Merrien ,  Gary Chew ,  Max De Groot

IPC分类号： H04L9/00

CPC分类号： G07F7/1008 ,  G06Q20/3552 ,  H04L9/3234 ,  H04L9/3247 ,  H04L2209/80 ,  H04W8/205 ,  H04W8/265

摘要： A chip card needs to be allocated in a secured manner to a network operator via a personalization center in order to determine a final authentication key which is attributed to a subscriber of the operator without its being transmitted via a network. The following is loaded into a card by a module: an algorithm and an allocation key; an algorithm for determination of the authentication key and at least one intermediate authentication key. A module transmits an allocation message which includes a final identity number, a random number and an allocation signature from the center to the card. The card authenticates the message by means of the allocation algorithm as a function of the allocation key and the allocation signature, and determines the final authentication key as a function of the intermediate key and the random number.

摘要翻译： 需要通过个性化中心以安全的方式向网络运营商分配芯片卡，以便确定归属于运营商的用户的最终认证密钥，而不经由网络传输。 以下内容由模块加载到卡中：算法和分配密钥; 用于确定认证密钥和至少一个中间认证密钥的算法。 模块从中心向卡发送包括最终身份号码，随机号码和分配签名的分配消息。 卡通过分配算法作为分配密钥和分配签名的函数来认证消息，并且根据中间密钥和随机数确定最终认证密钥。

公开(公告)号：US07925878B2

公开(公告)日：2011-04-12

申请号：US10252517

申请日：2002-09-24

申请人： Lionel Merrien ,  Jean-Louis Carrara ,  Youri Bebic ,  Paul Miller

发明人： Lionel Merrien ,  Jean-Louis Carrara ,  Youri Bebic ,  Paul Miller

IPC分类号： H04L29/06 ,  H04L9/32 ,  G06F11/30 ,  G06F15/16

CPC分类号： H04L67/30 ,  G06Q20/02 ,  G06Q20/3829 ,  H04L9/006 ,  H04L9/3268 ,  H04L63/0823 ,  H04L63/104 ,  H04L63/12 ,  H04L2209/56 ,  H04L2209/80

摘要： A system and method for creating a trusted network capable of facilitating secure transactions via an open network using batch credentials, such as batch PKI certificates, is presented. A certificate is bound to a group, or batch, or devices. This certificate is referenced by an activation authority upon processing a request for service by a device. Information regarding the device batch certificate is maintained in a permanent, or escrow, database. A user identity is bound to a device, as a device key is used to sign a user key created on the device in the presence of the user, and a copy of the device key is later used to decrypt the signed user key upon its transmission and receipt.

摘要翻译： 提出了一种用于创建能够通过使用批量凭证（例如批量PKI证书）经由开放网络促进安全交易的可信网络的系统和方法。 证书绑定到组或批处理或设备。 在由设备处理服务请求时，该证书由激活机构引用。 有关设备批次证书的信息保留在永久或托管的数据库中。 用户身份被绑定到设备，因为设备密钥用于在存在用户的情况下对在设备上创建的用户密钥进行签名，并且设备密钥的副本稍后用于在签名的用户密钥传输时对其进行解密 和收据。

公开(公告)号：US20140141747A1

公开(公告)日：2014-05-22

申请号：US13991542

申请日：2011-12-02

申请人： Lionel Merrien ,  Xavier Berard ,  Denis Gachon

发明人： Lionel Merrien ,  Xavier Berard ,  Denis Gachon

IPC分类号： H04W12/08 ,  H04B1/38

CPC分类号： G06F21/6218 ,  G06F8/61 ,  H04B1/3816 ,  H04L9/0825 ,  H04L63/0428 ,  H04L63/08 ,  H04L63/083 ,  H04L63/123 ,  H04L67/34 ,  H04W4/50 ,  H04W4/60 ,  H04W4/70 ,  H04W8/18 ,  H04W8/183 ,  H04W8/205 ,  H04W8/22 ,  H04W8/245 ,  H04W12/0023 ,  H04W12/00522 ,  H04W12/04 ,  H04W12/06 ,  H04W12/08 ,  H04W12/10 ,  H04W84/04

摘要： A method for transmitting a SIM application of a first terminal to a second terminal, the SIM application being stored in a secure element included in the first terminal, with access to the SIM application being locked by a PIN code. The method includes exporting the SIM application from the first terminal to a distant site, by including the PIN code as well as a remote loading code. A user of the second terminal is asked to enter the remote loading code in the second terminal. In the event the remote loading code entered by the user matches the remote loading code that has been exported, the installation of the SIM application in a secure element of the second terminal is authorized. Otherwise, the SIM application is not installed in the secure element of the second terminal.

摘要翻译： 一种用于将第一终端的SIM应用发送到第二终端的方法，所述SIM应用被存储在包括在所述第一终端中的安全元件中，所述SIM应用被PIN码锁定。 该方法包括通过包括PIN代码以及远程加载代码将SIM应用从第一终端导出到远端站点。 要求第二终端的用户在第二终端中输入远程加载代码。 如果由用户输入的远程加载代码与已经导出的远程加载代码相匹配，则将SIM应用程序安装在第二终端的安全元件中被授权。 否则，SIM应用程序未安装在第二终端的安全元件中。