摘要 |
The invention pertains to a method of securely transferring data, such as program data, to a smart card. In order to be applicable in non-secure environments, the method of the invention involves a one-way authentication mechanism, comprising the use of a series of interrelated authentication values (R0, R1, R2, ...). Further security is achieved by using commands (INIT, TRAN) which are provided with an authentication code (MAC0, MAC1, ...). In order to transfer data only to selected cards, the card may accept transfer commands only if a card profile (CP) matches a distribution profile (DP). <IMAGE> |