Abstract: An intermediary third-party receives, from a master device, a batch of pre-generated secure commands; plays it so as to send sequentially, to a slave device, the commands. The batch includes an initial command indicating the establishment of a channel secured with a session key dependent on a sequence counter, and second commands protected by a MAC code that is a function of the session key. An update of the sequence counter in non-volatile memory of the slave on each new establishment of a secure channel renders the pre-generated batch obsolete by virtue of a new session key. In order to allow the batch to be replayed, the invention provides for each update value of the counter to be temporarily stored in volatile memory, and for the current value to be overwritten in non-volatile memory on predefined events, including a test counter reaching a maximum number of replays.

Abstract: A secure element includes a boot program comprises instructions for the execution a startup step to determine if a non-volatile memory stores an active operating system, and, in the affirmative, to launch execution of the operating system, an authentication step of a updater device, as a function of first authentication data determined by a secure element and second authentication data received from the updater device, and, in response to the authentication step, a storage step of a new operating system received from the update, device in the non-volatile memory and an activation step of the new operating system, when said instructions are executed by a microprocessor.

Abstract: An electronic device including a communication module capable of exchanging messages with an external entity, characterized in that the communication module includes at least a first communication circuit capable of exchanging messages using a first communication protocol and a second communication circuit capable of exchanging messages using a second communication protocol different from the first communication protocol.

Abstract: Disclosed are methods and systems of implementing a right over a content or contents. Various implementations may include means and operations for receiving, for example in an execution environment and from a secure element, a first key for implementing a right over an encrypted content; decrypting said content in said execution environment with the help of the first key; and implementing the right over the content in said execution environment. Various implementations may also include means and operations for receiving a second key in, for example, said execution environment, from the secure element; and encrypting said content in sad execution environment with the help of the second key.

Abstract: An electronic module that includes means for determining an operating system targeted by a message received by a transmitter-receiver of an electronic device, from among at least a Rich-OS operating system and a trusted operating system executed on a chipset of the electronic device, so that the message becomes accessible to the targeted operating system. The determining means may be set in operation in response to receipt of the message by the transmitter-receiver.

Abstract: A method of enforcing control of access by a hosting device to a secure element, and a secure element are described. The method includes steps performed by the secure element: receiving a request for retrieving at least one access rule controlling access to at least one application of the secure element, from access rules stored in the secure element; outputting at least one access rule retrieved from the stored access rules, wherein an access rule controlling access to an application of the secure element is retrieved by searching only in access rules stored in a security domain to which the application belongs in the secure element, or an access rule controlling access to an application of the secure element is stored only in a security domain to which the application belongs in the secure element.

Abstract: A method for administering life cycles of communication profiles that are managed by a subscriber identity module (100) embedded in a telecommunications terminal (110) may be performed by the module (100), which is suitable for using at least one process for administering the life cycles of communication profiles. The process uses a set of at least one command and/or of at least one rule. The method includes operations for receiving (B610) a message (M610) issued by the terminal (110) and representative of the capabilities of the terminal (110); selecting or not selecting (B615) the set used by the process as a function of the capabilities of the terminal (110); and if the set is selected, administering at least one life cycle of at least one of the profiles by using the set of at least one command and/or of at least one rule.

Abstract: Method for generating a pair of public and private cryptographic keys in the additive group of integers modulo n, where n is the product of two prime numbers p and q, the method including the following steps: calculating a public exponent e for said public key, and calculating a private exponent d for said private key from said public exponent and said public modulus, where d·e=1 mod ?(n), ?(n) being the least common multiple between p-1 and q-1, characterized in that the method furthermore comprises a step: of checking to check that ?(n)=0 mod (p-1) and ?(n)=0 mod (q-1).

Abstract: Methods and systems of simulating the effects of an attack seeking fraudulently to modify target code that is interpretable by a processor are disclosed. Various implementations may include means and operations for searching for a set of sensitive instructions in the target code; generating an interpretable “simulation” code having instructions representing the result of said attack on the set of instructions; selecting memory registers that might be accessed during the interpretation of the simulation code; interpreting at least a portion of the simulation code; and storing at least one value of the registers during the interpretation in order to enable the effects of the attack to be analyzed.

Abstract: A method for determining a representation of a product of a first element and a second element is disclosed comprising, picking a random value for each pair of a first integer between 1 and d and a second integer greater than the first integer, adding the random value to the product of a first value and a second value, and adding the result of the first addition and the product of the first value and the second value. Then summing, for each integer between 1 and d, a product of the first and second values associated with the integer, the random values associated with the pairs of which the first integer is the integer concerned, and the values obtained for the pairs of which the second integer is the integer concerned.

Abstract: The present invention relates to the field of the connection to a secure remote service from a terminal and notably of the establishment of a connection between the secure remote service and a security device connected to the terminal. A security device including a security element is connected to the terminal via a physical or virtual local network. When trying to access a secure remote service, a software module is automatically downloaded onto the terminal, without requiring particular rights, from the secure remote service for the discovery and the interaction with the security device. In this way, it is not necessary to install drivers or other specific software in order to enable the use of the secure element when trying to access a secure remote service.

Abstract: Method of integrity verification of cryptographic key pairs, the method including an integrity test with: at least one first step implementing one of the private and public keys and an initial test datum, the first step making it possible to generate a first result, at least one second step implementing at least the first result and the key not used during the at least one first step, the second step making it possible to generate a second result, and a comparison of the second result and of the initial test datum, characterized in that the test is re-executed upon each positive comparison, and in that the test is executed at least 2 times.

Abstract: Disclosed is an antenna support for incorporating in an electronic document. The support can include a first substrate made of a plastics material that is defined by first and second opposite faces, which define between them a thickness of the substrate. The antenna can include one or more turn that extends between two ends, and the antenna can be formed by a wire that is inlaid in the thickness of the first substrate from the first face, such that each of the two ends presents a zigzag shape formed by at least two rectilinear portions and by two bends. The bends can be inlaid more deeply than the rectilinear portions in the thickness of the first substrate from the first face.

Abstract: Method of integrity verification of public and private cryptographic key pairs in the additive group of integers modulo n, with n being the product of two prime numbers p and q, the method including the following steps: of computation (201), on the basis of the number n, of a public exponent e of the public key, and of a private exponent d of the private key, of two candidate factors p? and q? corresponding respectively to the numbers p and q, of verification (206) so as to verify the consistency of the private exponent with respect to the public exponent and to the number n, the verification step involving the candidate factors.

Abstract: Devices and methods for masking and unmasking sensitive data, based on a standard cryptographic algorithm defining a ciphering algorithm, and a deciphering algorithm using more resources than the ciphering algorithm are described. The masking of sensitive data is done by applying the deciphering algorithm to the sensitive data to obtain masked sensitive data. The unmasking of the masked sensitive data is done by applying the ciphering algorithm to the masked sensitive data to obtain sensitive data in plain form.

Abstract: An authentication method for accessing a user account of a service (28) on a data network (26), includes the following steps: reception (E20) by the service (28) of a request from a consulting device (10) for the service (28), the request including a first authentication information element, reception (E60) by the service (28) of an information element sent by an authentication security device manager (34), the information received by the service (28) being based on a second authentication information element originating from a security device (16; 18) associated with the user account, and authentication by the service (28), based on the first authentication information element and the information received from the authentication security device manager (34).

Abstract: A method for communicating between a user using a viewing device (2000) and the viewing device, includes the following steps: acquiring, at an acquisition interface (1400) integrated into a pair of glasses (1000) of the user, an item of information on utilization of the glasses; and generating and sending to the viewing device (2000), by a microcontroller (1100) integrated into the glasses, a data signal (DATA) depending on the acquired information. The acquired information enables in particular the authentication of the user, so as to send, to the viewing device, data that the latter will use to display a digital content.

Abstract: An electronic entity includes a module formed of a support film carrying, on an internal face, a microcircuit and a first coupling coil, and a body including a cavity in which this module is fixed, the support film having an external surface running at least approximately alongside an upper surface of this body, and containing an antenna and a second coupling coil connected to this antenna and intended for the coupling of the antenna with the microcircuit by electromagnetic coupling with the first coupling coil; this second coupling coil (likewise may be the case for the antenna and the first coupling coil) is formed on a thickness of at most a few microns in a plane situated, with respect to the upper surface of the body, at a distance of less than half the distance with respect to the surface opposite from this upper surface of this body.

Abstract: A method for modifying the profile in a device (D) including a communication module for communicating on a communication network, the device (D) being provided with a microcircuit storing connection data used by the communication module and associated with a profile, the method including the following steps: reception, by the microcircuit and via the communication module, of a request to deactivate (E6) the profile; transmission, by the microcircuit, of a first message (E10) to the device; transmission, by the device and to the microcircuit, of a response (E14) indicative of the existence of a critical situation; following the receipt of the response (E14) by the microcircuit, implementation of a time delay mechanism (E18); upon expiry of the time delay (E18), transmission, by the microcircuit and to the device, of a second message (E22) resulting in the deactivation of the profile. An associated device and microcircuit are also described.

Abstract: A method for producing a pattern in relief in a thin plastic card, includes the following steps: producing a stack of layers including, in the following order: a transparent layer, a special layer, a black surface, and a substrate layer, and drawing the pattern by a laser through the transparent layer.