Search International and National Patent Collections

1. (WO2001005085) METHOD AND DEVICE FOR MAKING SECURE DATA ACCESS AND TRANSFERS IN A COMPUTER SYSTEM

Pub. No.:    WO/2001/005085    International Application No.:    PCT/FR2000/001990
Publication Date: Fri Jan 19 00:59:59 CET 2001 International Filing Date: Tue Jul 11 01:59:59 CEST 2000
IPC: H04L 9/32
Applicants: SCM SCHNEIDER MICROSYSTEME MICROSYTEMES ENTWICKLUNGS UND VERTRIERS GMBH SARL DEVELOPPEMENT ET VENTE
GENEVOIS, Christophe
GUENEBAUD, Philippe
Inventors: GENEVOIS, Christophe
GUENEBAUD, Philippe
Title: METHOD AND DEVICE FOR MAKING SECURE DATA ACCESS AND TRANSFERS IN A COMPUTER SYSTEM
Abstract:
The invention concerns a method for making secure data access and transfers in a computer system comprising at least a host and a peripheral provided with a smart card interface enabling access to the computer system while it is in use by means of smart cards. The invention also concerns a device for implementing the method. The invention is characterised in that it consists in: storing in the smart card(s) and in the host a secret key, said secret key being identical in the host and in the authorised smart cards; and during use sessions, in creating in the smart card and in the host a local session key by identical encryption of a random number using the secret key. When data are being transferred between the peripheral and the host, the method consists in: encrypting the data to be transferred by encryption means using the local session key; decrypting the transferred data symmetrically with encryption means using the other local session key; such that the transferred data are intelligible only if the same secret key is present in the host and in the smart card. The invention is applicable to a security system for authorisation and authentication.