| 发明名称 | Method of transferring the control of a security module from a first entity to a second entity | ||
| 摘要 | A method is provided for transferring control of a security module from a first entity to a second entity. The security module has a first security domain controlled by the first entity by at least one first secret control key specific to the first entity, and a second security domain, the second domain containing a private key and a certificate of a public key of a controlling authority. The method includes: receiving a request to obtain the certificate; sending the certificate; receiving data encrypted by the public key of the certificate, the data including at least one second secret control key specific to the second entity; decrypting the data; verifying the data; and if the verification is positive, replacing the at least one first secret control key by the at least one second secret control key. | ||
| 申请公布号 | US9124561(B2) | 申请公布日期 | 2015.09.01 |
| 申请号 | US201214350738 | 申请日期 | 2012.10.12 |
| 申请人 | Orange | 发明人 | Saif Ahmad;Pladeau Bertrand |
| 分类号 | H04L9/32;H04L29/06;H04W12/04 | 主分类号 | H04L9/32 |
| 代理机构 | Westman, Champlin & Koehler, P.A. | 代理人 | Brush David D.;Westman, Champlin & Koehler, P.A. |
| 主权项 | 1. A method comprising: transferring the control of a security module from a first entity to a second entity, the security module having a first security domain controlled by the first entity by at least one first secret control key specific to the first entity, and a second security domain, said second security domain including both a certificate of a public key of a controlling authority and also a private key of the controlling authority, wherein transferring comprises the following steps performed by the security module: the second security domain receiving a request to obtain a certificate, the request coming from the second entity; the second security domain sending said certificate; the first security domain receiving data from the second entity, which data has been encrypted by the public key certified by said certificate, the data including at least one second secret control key specific to the second entity; the second security domain decrypting said data; the first security domain verifying the data; and if the verification is positive, the first security domain replacing the at least one first secret control key with said at least one second secret control key. | ||
| 地址 | Paris FR | ||