摘要 |
The invention relates to a method of detecting an attack aimed at a mobile terminal (10), the terminal comprising a security element (12), a contactless controller (13) suitable for dialoguing with a contactless reader (20) and a secure execution environment (11), in which: - any command (C-APDU) originating from the contactless reader and received by the contactless controller is dispatched to the secure execution environment and to the security module, and - any command (C-APDU) received by the security element is dispatched to the secure execution environment, the method comprising a step of verification (E14), implemented by the secure execution environment, in the course of which it is verified that to a command (C-APDU) received from the contactless controller there corresponds a same command (C-APDU) received from the security element, in the converse case a software attack of relay type is detected. |