Abstract: A strong authentication token supporting multiple instances associated with different users and protected by a user identity verification mechanism is disclosed. A multi-instance strong authentication token may be adapted to generate dynamic credentials using cryptographic secrets that are specific to a particular instance stored in the token. A method and a system to secure remotely accessible applications using strong authentication tokens supporting multiple instances are disclosed. A method for loading additional tokens into a multi-instance authentication token is disclosed.

Abstract: Mass storage devices and methods for securely storing data are disclosed. The mass storage device includes a communication interface for communicating with a connected host computer, a mass-memory storage component for storing data, a secure key storage component adapted to securely store at least one master secret, and an encryption-decryption component different from the secure key storage component and connected to the secure key storage component and the mass-memory storage component. The encryption-decryption component may be adapted to encrypt data received from the host computer using an encryption algorithm and at least one encryption key and to write the encrypted data into the mass-memory storage component.

Abstract: The invention provides a method and apparatus for the secure electronic signing of electronic documents and data. The method comprises the steps of: obtaining a first digital representation in a high level first data format of the set of application data; generating a second digital representation in a low level second data format of the application data whereby the low level second data format is different from the high level first data format; presenting an analog representation of the set of application data to a user, whereby the second digital representation is a precise and accurate representation of said analog representation; obtaining an indication whether the user approves the analog representation for signing; if the indication indicates that the user approves the analog representation for signing, generating the first digital signature over the second digital representation using a first signature key associated with the user.

Abstract: Mass storage devices and methods for securely storing data are disclosed. The mass storage device includes a communication interface for communicating with a connected host computer, a mass-memory storage component for storing data, a secure key storage component adapted to securely store at least one master secret, and an encryption-decryption component different from the secure key storage component and connected to the secure key storage component and the mass-memory storage component. The encryption-decryption component may be adapted to encrypt data received from the host computer using an encryption algorithm and at least one encryption key and to write the encrypted data into the mass-memory storage component.

Abstract: A strong authentication token supporting multiple instances associated with different users and protected by a user identity verification mechanism is disclosed. A multi-instance strong authentication token may be adapted to generate dynamic credentials using cryptographic secrets that are specific to a particular instance stored in the token. A method and a system to secure remotely accessible applications using strong authentication tokens supporting multiple instances are disclosed. A method for loading additional tokens into a multi-instance authentication token is disclosed.

Abstract: A secure smart card reader is disclosed that is enabled to make reader signatures on data representative of events and actions which may be security related and which may include data representative of reader commands received from a host or remote application, smart card commands exchanged with an inserted smart card, data presented to a user for approval, and/or configuration parameters applied when dealing with any of the foregoing. The smart card reader may be adapted to maintain logs of events and actions which may include exchanging reader commands, exchanging smart card commands, and/or interactions with a user. The logs may include data representative of the reader commands received, the smart card commands exchanged, data presented to the user for approval, and/or configuration parameters applied when dealing with any of the foregoing. The secure smart card reader may be adapted to generate a reader signature over the logs.

Abstract: The invention provides a method and apparatus for the secure electronic signing of electronic documents and data. In a preferred embodiment, a method for generating a first digital signature associated with a set of application data is disclosed.

Abstract: Mass storage devices and methods for securely storing data are disclosed. The mass storage device includes a communication interface for communicating with a connected host computer, a mass-memory storage component for storing data, a secure key storage component adapted to securely store at least one master secret, and an encryption-decryption component different from the secure key storage component and connected to the secure key storage component and the mass-memory storage component. The encryption-decryption component may be adapted to encrypt data received from the host computer using an encryption algorithm and at least one encryption key and to write the encrypted data into the mass-memory storage component.

Abstract: The operations required to verify the origin and the authenticity of a software module for an electronic device can advantageously be divided between a general-purpose computer, hereinafter the host, having the electronic device attached to it, and the electronic device itself. More specifically, memory and processing intensive tasks such as syntax checking are done at the host, while security-critical tasks such as cryptographic verifications are done at the electronic device. The present invention thus provides a method for updating software on an electronic device in a trusted way, wherein verification steps are divided between a host system connected to the electronic device, and the electronic device itself. The present invention thus further provides a storage medium containing a program for a host system, causing this host system to perform verification steps with respect to a software update for an attached electronic device, and to appropriately interact with said electronic device.

Abstract: A data transfer device, having first data interface means for exchanging data with a data processing system, second data interface means for exchanging data with a user of the data transfer device, and control means for controlling data transfer between the first and second data interface means. The control means are configured for receiving control data from the first data interface means for selectively enabling data exchange between the first and second data interface means. The control means can be configured for enabling part of the first and second data interface means for operation in a first or open mode, and for enabling the second data interface means for operation in a second or secure mode of operation. The second data interface means may comprise Input/Output means for secure data exchange with the first data interface means under the control of program execution data operative in the data transfer device and comprised by the control data.

Abstract: A data transfer device, having first data interface means for exchanging data with a data processing system, second data interface means for exchanging data with a user of the data transfer device, and control means for controlling data transfer between the first and second data interface means. The control means are configured for receiving control data from the first data interface means for selectively enabling data exchange between the first and second data interface means. The control means can be configured for enabling part of the first and second data interface means for operation in a first or open mode, and for enabling the second data interface means for operation in a second or secure mode of operation. The second data interface means may comprise Input/Output means for secure data exchange with the first data interface means under the control of program execution data operative in the data transfer device and comprised by the control data.

Abstract: In a transmission system a pair of signalling tone signals is transmitted by a transmitter (2) to a receiver (6) via a transmission channel (4). In the terminal (6) a tone detector is used to detect the presence of the pair of signalling tone signals. In order to improve the reliability of the tone detector in the case of differing strength of both tone signals, the decision on the presence of the pair of signalling tone signals is based on a combined strength measure which is determined by an adder (23). The combined strength measure is compared with a reference level TH.sub.2. In a further embodiment, also a check on the level of the individual tone signals is done with comparators (11) and (9), in order to specify the maximum strength difference tolerated.

Abstract: In a transmission system, a signalling tone is transmitted by a transmitter to a receiver via a transmission channel. In the receiver, a tone detector detects the presence of a signalling tone. In order to improve a reliability of the tone detector, a number of correlating elements which determine a correlation value between an input signal and a reference signal are used. Absolute output signals of the correlating elements are added by an adder to derive a combined correlation signal to be used for detection.

Abstract: In a transmission system, a tone is transmitted by a transmitter to a receiver via a transmission channel. In the receiver, a tone detector is used to detect the presence of a signalling tone. In order to improve a reliability of the tone detector when the arrival of the signalling tone is unknown, a number of correlators having mutually displaced measuring periods are used. More than two correlators are used in order to reduce the measuring period, also resulting in an improved reliability of the tone detection.

Abstract: An auxiliary frame for a wheelchair, the auxiliary frame having a coupling assembly for coupling the auxiliary frame to the wheelchair, at least one steerable wheel and a drive assembly. The coupling assembly is formed by a central elongate body provided with a bearing for co-action with the frame of the wheelchair and a clamping bracket pivotally connected to the elongate body and co-acting with the bearing. A stationary hook-like member is connected to the elongate body.