Apparatus and method for secure delivery of data from a communication device

摘要

A system that incorporates the subject disclosure may perform, for example, providing an upload request to a mobile communication device to cause a secure device processor of the mobile communication device to perform a modification of data according to a data protection key to generate modified data and to perform an encryption of the modified data according to an upload transport key to generate encrypted modified data where the secure device processor is separate from and in communication with a secure element of the mobile communication device, and where the secure element receives master keys from a remote management server and stores the master keys to enable the upload transport key and the data protection key to be generated by the secure element without providing the master keys to the secure device processor. Other embodiments are disclosed.

主权项

1. A computer-readable storage device comprising executable instructions which, responsive to being executed by a secure device processor of a mobile communication device, cause the secure device processor to perform operations comprising:
requesting an upload transport key and a data protection key from a secure element of the mobile communication device, and wherein the secure element stores master keys from which the upload transport key and the data protection key are generated by the secure element, wherein the secure element receives the master keys over a network from a remote management server, wherein the secure device processor and the secure element perform a mutual authentication with each other utilizing a keyset received via the remote management server; receiving the upload transport key and the data protection key from the secure element without receiving the master keys; receiving an upload request from a recipient device, another communication device, an application being executed by the mobile communication device, or a user input received at the mobile communication device; obtaining data for transmission to the recipient device, wherein the obtaining of the data is in response to the receiving of the upload request; encrypting the data using the data protection key to generate a single encrypted data; and encrypting the single encrypted data using the upload transport key to generate a double encrypted data, wherein the mobile communication device comprises a mobile processor device that facilitates wireless communications by the secure device processor and by the secure element, and wherein the mobile processor device, the secure element and the secure device processor are physically separated components that are housed in the mobile communication device and are in communication with each other.