摘要 |
<p>Disclosed herein is a method for transferring a token into a secure element, SE, of a user device such as a SIM in a smartphone where the user device having a secure communications channel that is configured to transmit data, that has been encrypted with one or more keys, between a data source remote from the user device and the SE of the user device. The method comprising: obtaining a token 703 by an application on the user device, wherein the obtained token is outside of both the SE and the secure communications channel; encrypting the token 705 using the same one or more keys configured to encrypt data transmitted from the remote data source in the secure communications channel; and using the secure communications channel 707 to transfer the encrypted token to the SE. The SE stores one or more tokens and a token is not retrieved from the SE until it is required for use during a transaction. Advantageously, this prevents malicious activity from stealing tokens from the user device.</p> |