Abstract: The invention relates to a method and to an electronic device for securing the computation of a modular exponentiation x=mD mod N against invasive attacks. The invention comprises applying a mask to the message m, and after the modular exponentiation is carried out, in verifying that the exponentiation was not altered thanks to properties introduced by the mask.

Abstract: An integrated circuit card is used with a terminal. The integrated circuit card includes a memory that stores an interpreter and an application that has a high level programming language format. A processor of the card is configured to use the interpreter to interpret the application for execution and to use a communicator of the card to communicate with the terminal.

Abstract: The invention is aimed at solving the problem of selection of an application and/or configuration in a device of an NFC system having no independent power source or when the power source of the device is temporarily out of operation or does not have an independent power source. To that end, a wireless mobile communication device of an NFC system according to the invention comprises—a sensor of the accelerometer (Ace) type to produce a signal detecting the movement of the said device while the sensor is powered by a field emitted by a coupler close to which the said device is brought, —a processor (Pro) for comparing the said movement detection signal with a predetermined sequence corresponding with an application and/or configuration, and accordingly selecting the said application and/or configuration if the comparison is positive.

Abstract: The invention relates to a personal token including a microprocessor and a memory, said personal token storing and running a software entity which constitutes an end-point for communication over the internet. The software entity constitutes an end-point according to a signaling protocol over the internet and the signaling protocol is of the type intended when the session for real-time conferencing is initiated between end-points.

Abstract: A system and method for peer-to-peer communication between a slave device and network resources wherein the slave device, for example, a smart card, communicates using a protocol designed to allow the smart card to communicate over a half-duplex serial communications link while appearing to applications and network nodes as being a full-fledged network node in a manner that conserves power so as to be suitable for deployment on small portable devices.

Abstract: This invention relates to a method for the transmission using the half-duplex mode of a data signal from a first transmission/reception device to a second transmission/reception device, called the remote device, comprising a logical coding step in which at least two distinct transmission times are associated with two respective statuses of the data signal to transmit. The method is characterised in that it comprises the generation by the first device of a signal (10, 11) comprising, for the transmission of a status of the signal, more or less exclusively a plateau at a first voltage level for the time defined as the transmission time associated with the status to transmit and a falling edge, to the exclusion of any rising edge, the transmission of a data signal status from the second device to the first device comprising the generation of a signal (20, 21) by the second device comprising more or less exclusively a plateau at a second voltage level and a rising edge, to the exclusion of any falling edge.

Abstract: Access of a first device, communicating with a second, portable device, to digital content is controlled by authentication of the first device by a remote server; upon successful authentication of the first device by the remote server, securely providing by the remote server credentials to the portable device, the credentials enabling the portable device to authenticate the first device; securely providing by the remote server rights objects to the portable device, the rights objects comprising usage rights and information which is necessary to access the content; authentication of the first device by the portable device using the credentials received from the remote server; and, upon successful authentication of the first device by the portable device, delivering by the portable device to the first device the information which is necessary to access the content.

Abstract: The invention relates to an integrated circuit comprising at least one microprocessor [12] linked to at least one non-volatile memory [14] that can be accessed by sectors. The integrated circuit comprises a detector [20] for discovering when a threshold number of bad sectors has been exceeded in said non-volatile memory [14].

Abstract: The invention solves the problem of systematic image marking of portable communicating objects, such as smart cards or mobile terminals, involved in a campaign in a database connected to a downloading server, thereby releasing the server. Access to a communicating object targeted by the campaign is authorized for a single-unit operation while the server manages the preprocessing of data for the communicating object during the campaign. Access is inhibited for a single-unit operation concerning an object targeted by the campaign when access is requested while the server manages transmission of a data message to the communicating object during the campaign. Access is also prohibited while the server manages an acknowledgement transmitted by the communicating object and the post-processing of data concerning the communicating object.

Abstract: The invention provides a method for activating the subscription of an UICC, said UICC comprising an activation application, said method comprising the step of activating the subscription of the holder of the UICC by sending a message to an activation server, said message being sent by the activation application to the activation server by using an IP based communication.

Abstract: Personalization of identity card by producing a color image thereon by selectively exposing photon-sensitive layers on the card to change between transparent and opaque thereby selectively revealing opaque colors from the photon-sensitive layer or from a printed substrate. Other systems and methods are disclosed.

Abstract: The invention concerns a method for adjusting frequency tuning of a resonant circuit with turns having a regular spacing generating stray inter-turn capacity. The adjusting of the frequency tuning of the resonant circuit is performed, at the level of the stray inter-turn capacity, by varying the regular spacing of adjacent turns on at least one zone of the antenna. The invention uses this adjusting method for producing an adjusted antenna for a resonant circuit, the resonant circuit and a non-contact product. The invention concerns a device programmed for antenna production and/or definition.

Abstract: A system and a method for operating a device that is not capable of independently maintaining a local time clock to enforce a time-based transaction policy that requires a reliable time reference. The device establishes a secure communications channel to one or more network-attached time sources and inquires of each of the network-attached time-sources as to the current time using the secure communications channel. The device receives the current time from the network-attached time-sources and uses the received current times to estimate a current calendar time and to compute a reliability index associated with the estimated current calendar time. The device uses the estimated current calendar time and reliability index to enforce the time-based transaction policy.

Abstract: A system and method for creating a trusted network capable of facilitating secure transactions via an open network using batch credentials, such as batch PKI certificates, is presented. A certificate is bound to a group, or batch, or devices. This certificate is referenced by an activation authority upon processing a request for service by a device. Information regarding the device batch certificate is maintained in a permanent, or escrow, database. A user identity is bound to a device, as a device key is used to sign a user key created on the device in the presence of the user, and a copy of the device key is later used to decrypt the signed user key upon its transmission and receipt.

Abstract: A method and system for providing authentication of a user to a first peripheral device connected to a host computer using an authentication of the user on a second peripheral device, thereby allowing the user access to both devices through a single authentication. A security function on the second peripheral device is used to create an authorization phrase. Subsequent accesses to the first peripheral device requires the second peripheral device to re-create the same authorization phrase thereby demonstrating that the same second peripheral device is being used to access the first peripheral device and that a user was successfully authenticated to the second peripheral device. Other systems and methods are disclosed.

Abstract: The invention relates to an electronic device having one or more services made available to a host equipment with which it is connected. The invention allows the device to automatically adjust the access capability to the services made available depending on the software platform available within the host equipment. The invention relates more particularly to electronic storage devices, the access capability of which to reading/writing to the memory is adapted depending on the host equipment.

Abstract: The invention relates to a method for transferring at least one piece of application data from a source device to a destination device. According to the invention, the source device including at least one piece of identification data, the piece of identification data identifying an account number and a medium storing at least one piece of application data, the method including a sending step in which the source device sends at least the piece of identification data to a transfer control device; a processing step in which the transfer control device and/or another device connected to the transfer control device processes at least the piece of identification data; according to a processing result, the transfer control device forbids or authorizes to transfer at least one piece of application data to the destination device by transferring, when authorized, to the destination device at least the piece of identification data.

Abstract: A method for installing a NFC application (APP) that includes a picture (PIC) in a mobile communication device (3) comprises: at a Service Provider (1) transmitting the NFC application (APP) together with the picture (PIC) to a Trusted Service Manager (2); at the Trusted Service Manager (2), separating the picture (PIC) from the NFC application (APP) and storing it and transmitting the NFC application (APP) together with a reference (REF) to a storage location of the picture (PIC) to the mobile communication device (3); at the mobile communication device (3), installing the NFC application (APP) together with the reference (REF) and retrieving the picture (PIC) by sending the reference (REF) to the Trusted Service Manager (2) requesting download of the picture (PIC); at the Trusted Service Manager (2), fetching the picture (PIC) from the storage location indicated by the reference (REF) and downloading it to the mobile communication device (3).

Abstract: The invention relates to a method for loading a software having several modules loadable in the non-volatile memory of a portable digital device. The loading of at least one module includes testing the existence of a data structure associated with the module in the non-volatile memory and, when necessary, to create the data structure indicating it as empty. The method further includes resolving links for totality of internal elements and, afterwards, in marking the structure as loaded. The existence of an associated data structure is determined for each other module referenced in the loadable module and, when necessary, the structure is created and indicated as empty. The invention makes it possible to reduce the space occupied by the on-board software during loading of modules.

Abstract: The invention relates to a method of masking a plain datum b having n bits. The inventive method is characterised in that a masked datum m is produced using the following masking function: (I), wherein p is a prime number, bi is the bit at position i of plain datum b, and qi is the prime number at position i in a set of prime numbers (q1, . . . , qn). The invention also relates to a method of masking a biometric print, consisting in: determining a set of s real minutiae which are characteristic of the print; mixing and arranging the real minutiae with t false minutiae; and forming a mixed biometric datum b having n=s+t bits, such that, for any i: bi=1 if position i corresponds to a real minutia, and bi=0 if position i corresponds to a false minutia. The invention can be used to secure a security document such as a bank cheque.