Abstract: Disclosed herein is a communications device including: a first transceiver configured to transmit and receive a signal compliant with a first communication protocol; a first protocol processor configured to process a first frame included in the received signal; a second transceiver configured to transmit and receive a signal compliant with a second communication protocol; a second protocol processor configured to process a second frame included in the received signal; a recognizer configured to recognize the communication protocol of the received signal; a command handler configured to handle a command extracted from the first frame; a converter configured to convert a command extracted from the second frame and pass the converted command to the command handler; and a memory configured to store device identification information for use in the first communication protocol. The second transceiver transmits the device identification information to an external device.

Abstract: Disclosed herein is a communications device including: a first transceiver configured to transmit and receive a signal compliant with a first communication protocol; a first protocol processor configured to process a first frame included in the received signal; a second transceiver configured to transmit and receive a signal compliant with a second communication protocol; a second protocol processor configured to process a second frame included in the received signal; a recognizer configured to recognize the communication protocol of the received signal; a command handler configured to handle a command extracted from the first frame; a converter configured to convert a command extracted from the second frame and pass the converted command to the command handler; and a memory configured to store device identification information for use in the first communication protocol. The second transceiver transmits the device identification information to an external device.

Abstract: There has been no access control method combining two different authentication methods, i.e., authentication by password collation or secret key encryption and authentication by public key encryption. A key number that is assigned to a fixed key stored in a nonvolatile memory of an IC card is virtually assigned to a temporary key, and this key number is included in a public key certificate, and further, this key number is used as a security attribute for setting an access authority, whereby information relating to the fixed key and information relating to the temporary key are combined and specified. Thereby, it is possible to perform access control combining different two authentication methods, i.e., authentication by password collation or secret key encryption and authentication by public key encryption.

Abstract: When a terminal specifies an address and a data length to read out data from a file in an IC card, if a response from the IC card has a TLV structure and a field length of L in the TLV structure is variable, there is a possibility that the terminal cannot obtain data of the requested length, and the interoperability might be deteriorated. With respect to an Le field that specified a maximum length of response data from the IC card, a conversion rule from the data length requested by the terminal into an Le value is shared between the terminal and the IC card. Alternatively, aside from the Le field, the data length requested by the terminal is specified within a data field. Thereby, it is possible to definitely transfer the data length requested by the terminal to the IC card in conformity with a message structure of ISO/IEC7816.

Abstract: Biometric information previously obtained from an IC card bearer and security status for determining whether or not the IC card is accessible are stored in the IC card. Then, a biometric authentication device obtains biometric information from the IC card bearer and reads the previously-obtained biometric information from the IC card. The biometric authentication device compares the biometric information with the previously-obtained biometric information and transmits a result of the comparison to the IC card. The IC card verifies the comparison result transmitted thereto and determines whether or not the comparison result was illegally fabricated or altered, and updates the security status when it is determined that the comparison result was neither fabricated nor altered.

Abstract: A URL input device is connected to a WWW client device and helps the client device access a desired network object. The URL input device includes a URL storing unit, a URL displaying unit, a URL selection interface, and an access facilitating unit. The URL storing unit stores URLs for accessing network objects. The URL displaying unit displays the URLs. The URL selection interface has the user select a URL corresponding to the desired network object from the displayed URLs. The access facilitating unit facilitates the client device's access to the desired network object, by having the client device use the selected URL.

Abstract: An integrated circuit card includes a processing controller, a non-volatile memory having plural files in a hierarchical structure, with each file having an access conditions controller relating to the level number of said hierarchical structure, and a RAM having plural key information fields corresponding to the level numbers. Each access condition controller has an access key box designation table which indicates which keys should be verified and a vertical matching condition settings table which indicates which level keys should be collected for verification.

Abstract: A secure encrypted data communication system between IC cards inserted in respective terminals. In order to encrypt plain text sent from a first terminal to a second terminal, a first IC card (51) receives a random number (r1) generated by a second IC card (52), and uses the number together with a secret key (ka) to generate a session key (ks1). The second IC card receives identification information (IDa) from the first IC card, and uses that information together with a master key (km) to obtain the secret key (ka), which is then used together with the random number to generate the same session key (ks1). Encryption of plain text sent from the second terminal to the first terminal can be done in a similar manner using a random number (r2) generated by the first IC card, and the identification information (IDb) of the second IC card.

Abstract: This invention is intended for the communication between a first communication device (e.g., an IC card) and a second communication device (e.g., a card terminal) by preventing the faking of the IC card or card terminal, for example, thereby allowing correct information exchange between them. The invention provides the IC card with a first encryption means and the card terminal with a second encryption means. In consequence, communication signals in both directions are encrypted, and random numbers and the algorism of functional computation are prevented from being analyzed. As a result, manufacturing of fake devices can be prevented and correct information exchange can be performed.