Abstract: A method is provided for producing securing data for implementing a secured session between a first and at least a second entity based on a protocol for establishing secured sessions. The method includes setting up a third secured entity related to the first entity; generating at least a portion of the securing data within the third entity; and transmitting the securing data from the secured third entity to the first entity.

Abstract: A method and apparatus are provided for generating security data for implementing a secure session between a first and at least a second entity according to a secure session establishment protocol. Such a method includes: initializing a third secure entity connected to the first entity; generating at least a portion of the security data within the third entity; transmitting the generated security data from the secure third entity to the first entity; and transmitting at least a portion of the security data generated in the third secure entity to at least a previously initialized fourth secure entity connected to the third secure entity.

Abstract: A method is provided for producing securing data for implementing a secured session between a first and at least a second entity based on a protocol for establishing secured sessions. The method includes setting up a third secured entity related to the first entity; generating at least a portion of the securing data within the third entity; and transmitting the securing data from the secured third entity to the first entity.

Abstract: A method is provided for authenticating a client terminal with an authentication server. The client terminal holds an authentication certificate. The method includes the following phases: obtaining at least once encryption parameter by the client terminal; encrypting the authentication certificate by the client terminal, based on the at least one encryption parameter, delivering an encrypted authentication certificate; transmitting the encrypted authentication certificate to the server, obtaining the at least one encryption parameter by the server; obtaining the at east one encryption parameter by the server; decrypting the encrypted authentication certificate, based on the at least one encrypting parameter, authenticating and delivering an authentication assertion if the authentication is positive.

Abstract: The invention relates to the loading of an applet in a smart card (2a), with the aid of two loading programs, an in-loader (IL) stored in the card and an off-loader (OL), respectively. According to the invention, two specific communication protocol layers are provided, one in a terminal (1) that houses the card reader, and the other in the card. These layers include in particular intelligent agents that enable the card to offer a client/webserver and gateway or CGI function. The method includes at least one step during which an http request is sent to the card in order to address an HTML page, one step of retrieving parametrizing data carried by an HTML form, and one step of executing the second loading program (IL), by implementation of the CGI function, in order to load the applet.

Abstract: The invention relates to a method for listing a user in a directory server and/or locating a subscriber in an internet-type network (RI), by consulting a directory server (SAi), in such a way as to determine an IP address associated with this subscriber. To do so, a smart card (2a) is used, which stores applications (A1) that are each associated with a listing and/or locating (“PL”) protocol. Subscriber profiles can be stored in the smart card (2a). A plurality of different protocols can be stored, converting the smart card (2a) into a multi-directory database. The card (2a) is provided with client/webserver and CGI functions, in such a way as to be capable of initiating transmissions, by internet protocols, between directory servers (SAi) and the smart card (2a) and activating the applications (A1) stored in the card, for the execution of listing and/or locating (“PL”) protocols. The invention also relates to the associated card.

Abstract: The invention relates to a method for managing data transmissions via an internet network (RI) between calling (Aa) and called (Ab) subscribers and also an associated smart card. A card (2a) cooperates with a terminal (1a) and has client/webserver (SWEB), CGI and proxy (27a) functions. The proxy function is used for the signaling channels (CS) and data channels (CD). The terminal (1a) and the card (2a) include specific communication protocol layers that make it possible to establish sessions for bidirectional transmission between them and/or with the internet network (RI). The smart card (2a) stores applications associated with protocols for listing (900a) and for locating subscribers (901a), as well as subscriber profiles (903a). It plays the role of a proxy in the signaling channel (CS) and/or data channel (CD).

Abstract: The invention relates to a method for listing a user in a directory server and/or locating a subscriber in an internet-type network (RI), by consulting a directory server (SAi), in such a way as to determine an IP address associated with this subscriber. To do so, a smart card (2a) is used, which stores applications (Al) that are each associated with a listing and/or locating (“PL”) protocol. Subscriber profiles can be stored in the smart card (2a). A plurality of different protocols can be stored, converting the smart card (2a) into a multi-directory database. The card (2a) is provided with client/webserver and CGI functions, in such a way as to be capable of initiating transmissions, by internet protocols, between directory servers (SAi) and the smart card (2a) and activating the applications (Al) stored in the card, for the execution of listing and/or locating (“PL”) protocols. The invention also relates to the associated card.

Abstract: The invention relates to a method for high-speed data stream transmission to an Internet-type network (RI) between a remote server (4) and a smart card terminal (1). The terminal and the card each include a specific transmission protocol layer (13, 23a). These layers include two intelligent agents (T2, T1, S2, S1), one being a server and the other being a client. The intelligent agents (T2, T1, S2, S1) enable the establishment of bidirectional data exchange sessions. The card then has the function of a client/web server. A filter (28) cooperates with the intelligent agents (T2, T1, S2, S1) to form a “proxy”-type function (27) implanted directly in the card. The data stream includes critical data that pass through the card and opaque data that pass directly to the terminal (1) under the control of the filter (28). Application in particular to multimedia data streams.

Abstract: The invention relates to a method and an architecture for securely accessing virtual objects (Obvi) distributed in systems connected to the internet network (RI), and for obtaining an instance of same. This access is performed via a smart card (2a), through a “web” browser (10). The terminal (1) and the smart card (2a) each comprise a specific protocol layer (13, 23a). The latter comprises intelligent agents (132, 232a1) for establishing two-way data exchange sessions, thereby allowing the smart card (2a) to have a “web” server functionality. The smart card (2a) also comprises intelligent agents, called script translators, and a virtual file management system (8) cooperating with a specialized script-translating intelligent agent (7). Each virtual object (Obvi) is associated with a virtual file of the virtual file management system (8). The specialized intelligent agent (7) presents the browser (10) with a list of the accessible virtual objects (Obvi) and generates methods for accessing these objects.

Abstract: The invention relates to a method for activating one (Ai) of the applications (Ai-An) of an on-board or embedded system, particularly of a chip card (2a) connected to a terminal (1) equipped with a reader, by means of a “web” browser. The terminal (1) and the chip card (2a) each comprise, in addition to the conventional protocol layers (101-102) corresponding to the ISO 7816 standards, a specific layer (13, 23a). The latter comprises intelligent agents (132, 231a1) for establishing two-way data exchange sessions, enabling the chip card (2a) to offer a “web” server functionality. In addition, the chip card (2a) comprises intelligent agents (ATS1-ATSn) called script translators that interact with the applications (Ai-An), making it possible to activate a selected application (Ai) using conventional commands corresponding to the ISO 7816 standards. In a variant of embodiment, provisions are made for a dynamic updating of the chip card (2a), particularly from the browser.

Abstract: The invention relates to a method for managing data transmissions via an internet network (RI) between calling (Aa) and called (Ab) subscribers and also an associated shart card. A card (2a) cooperates with a terminal (1a) and has client/webserver (SWEB), CGI and proxy (27a) functions. The proxy function is used for the signaling channels (CS) and data channels (CD). The terminal (1a) and the card (2a) include specific communication protocol layers that make it possible to establish sessions for bidirectional transmission between them and/or with the internet network (RI). The smart card (2a) stores applications associated with protocols for listing (900a) and for locating subscribers (901a), as well as subscriber profiles (903a). It plays the role of a proxy in the signaling channel (CS) and/or data channel (CD).

Abstract: A method and architecture for communication between a terminal (1) and a smart card, said terminal being operatively connected to a smart card reader (3) and a data transmission network (RI). The terminal includes an initial stack of network (RI) access protocol which consists of a specified number of communication software layers (C1-C4). The said smart card (3) and said smart card reader comprise second and third protocol stacks, each consisting of at least lower order software communication layers (CC2-CC1, CCa2-CCa1), in order to allow data exchange between the smart card and said terminal (1). In a first preliminary phase, a first specific software item (23a) smart card (2a) functions as an interface for the lower layers (CCa2-CCa1) of the third protocol stack and with at least one application (24a) registered in the smart card (2a).

Abstract: The invention relates to a method for managing data transmissions via an internet network (RI) between calling (Aa) and called (Ab) subscribers and also an associated smart card. A card (2a) cooperates with a terminal (1a) and has client/webserver (SWEB), CGI and proxy (27a) functions. The proxy function is used for the signaling channels (CS) and data channels (CD). The terminal (1a) and the card (2a) include specific communication protocol layers that make it possible to establish sessions for bidirectional transmission between them and/or with the internet network (RI). The smart card (2a) stores applications associated with protocols for listing (900a) and for locating subscribers (901a), as well as subscriber profiles (903a). It plays the role of a proxy in the signaling channel (CS) and/or data channel (CD).

Abstract: The invention relates to a method for managing data transmissions via an internet network (RI) between calling (Aa) and called (Ab) subscribers and also an associated shart card. A card (2a) cooperates with a terminal (1a) and has client/webserver (SWEB), CGI and proxy (27a) functions. The proxy function is used for the signaling channels (CS) and data channels (CD). The terminal (1a) and the card (2a) include specific communication protocol layers that make it possible to establish sessions for bidirectional transmission between them and/or with the internet network (RI). The smart card (2a) stores applications associated with protocols for listing (900a) and for locating subscribers (901a), as well as subscriber profiles (903a). It plays the role of a proxy in the signaling channel (CS) and/or data channel (CD).

Abstract: The invention relates to the loading of an applet in a smart card (2a), with the aid of two loading programs, an in-loader (IL) stored in the card and an off-loader (OL), respectively. According to the invention, two specific communication protocol layers are provided, one in a terminal (1) that houses the card reader, and the other in the card. These layers include in particular intelligent agents that enable the card to offer a client/webserver and gateway or CGI function. The method includes at least one step during which an http request is sent to the card in order to address an HTML page, one step of retrieving parametrizing data carried by an HTML form, and one step of executing the second loading program (IL), by implementation of the CGI function, in order to load the applet.

Abstract: The invention relates to a method for high-speed data stream transmission to an Internet-type network (RI) between a remote server (4) and a smart card terminal (1). The terminal and the card each include a specific transmission protocol layer (13, 23a). These layers include two intelligent agents (T2, T1, S2, S1), one being a server and the other being a client. The intelligent agents (T2, T1, S2, S1) enable the establishment of bidirectional data exchange sessions. The card then has the function of a client/web server. A filter (28) cooperates with the intelligent agents (T2, T1, S2, S1) to form a “proxy”-type function (27) implanted directly in the card. The data stream includes critical data that pass through the card and opaque data that pass directly to the terminal (1) under the control of the filter (28).

Abstract: The invention relates to a method for listing a user in a directory server and/or locating a subscriber in an internet-type network (RI), by consulting a directory server (SAi), in such a way as to determine an IP address associated with this subscriber. To do so, a smart card (2a) is used, which stores applications (A1) that are each associated with a listing and/or locating (“PL”) protocol. Subscriber profiles can be stored in the smart card (2a). A plurality of different protocols can be stored, converting the smart card (2a) into a multi-directory database. The card (2a) is provided with client/webserver and CGI functions, in such a way as to be capable of initiating transmissions, by internet protocols, between directory servers (SAi) and the smart card (2a) and activating the applications (A1) stored in the card, for the execution of listing and/or locating (“PL”) protocols. The invention also relates to the associated card.

Abstract: A data transmission system coupled between a computer bus (PBS) and a network (RE) includes a coupling device (GPU) linked to the bus and communicating by an interface with an adapter device (DEA) including a microprocessor (CPU2) connected to the network, an initial microprocessor (CPU1), and apparatus for transferring frames from the bus to the adapter device including a double port. The system is characterized by the fact that the interface is constituted by command files (F1 to F4) grouped in the memory, the second management processor handling software modules (ML1 , . . . ML10) independent of each other, to manage the emission and reception of specific frames from the network and communicating by means of letter boxes (BAL1, etc . . . ) included in the second processor and/or command files.

Abstract: A test system for a very high-speed ring network and an operating procedure for the system is provided that can be used with a communications coupler in which function tests are implemented and wherein a processor executes specific test software. The test system of the invention is also able to drive any communications coupler connected to the network, and can display the entire network on a screen of the minicomputer.