Device and method for secure connection
US-2019074964-A1 · Mar 7, 2019 · US
Method for storing digital key and electronic device
US12095914B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-12095914-B2 |
| Application number | US-201917057995-A |
| Country | US |
| Kind code | B2 |
| Filing date | May 20, 2019 |
| Priority date | May 23, 2018 |
| Publication date | Sep 17, 2024 |
| Grant date | Sep 17, 2024 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
Provided are a method and electronic device for storing a digital key. The electronic device includes: a communicator; a secure element configured to store a digital key and perform authentication related to the digital key; a memory storing a program and data for storing the digital key; and a processor configured to execute the program stored in the memory to perform authentication on a target device and a user of the electronic device by performing short range communication with the target device, generate the digital key for the target device, and store the generated digital key in one region of the secure element.
First claim
Opening claim text (preview).
The invention claimed is: 1. An electronic device for storing a digital key for controlling and accessing a target device, the electronic device comprising: a communicator; a secure element; a memory; and a processor, wherein the secure element is configured to: authenticate the target device and user information by performing short range communication with the target device, generate the digital key for the target device, store the generated digital key in one region of the secure element based on an index, and update a routing table regarding the generated digital key, wherein the index is distinguished for each of at least one service provider. 2. The electronic device of claim 1 , wherein the secure element is further configured to activate the digital key and perform authentication between a common application in the secure element and a service provider server by connecting the common application and the service provider server. 3. The electronic device of claim 2 , wherein the secure element is further configured to: when a request related to the digital key is received from the service provider server, identify, based on the routing table, a storage location of the digital key in the service provider server and an access authority of the service provider server regarding the digital key, and when the service provider server has the access authority, control the common application to generate a response to the request related to the digital key and transmit the response to the service provider server. 4. The electronic device of claim 1 , wherein the secure element is further configured to: generate, in one region of the secure element, a dedicated storage space that is functionally isolated to store the digital key for each of at least one service provider or for each of at least one target device; install, in the dedicated storage space, a dedicated application for providing a service regarding the digital key, store the generated digital key in the dedicated storage space by distinguishing the generated digital key for each of at least one service provider, and update the routing table regarding the generated digital key. 5. The electronic device of claim 4 , wherein the secure element is further configured to activate the digital key and perform authentication between a common application in the secure element and a service provider server by connecting the common application and the service provider server. 6. The electronic device of claim 5 , wherein the secure element is further configured to: receive access authority information of the service provider server from a digital key manager server and receive a verification token from the target device, when a request related to the digital key is received from the service provider server, control the common application to identify, based on the routing table, a storage location of the digital key in the service provider server and an access authority of the service provider server regarding the digital key, and when the service provider server has the access authority regarding the digital key, control the dedicated application to generate a response to the request related to the digital key by using the verification token and transmit the response to the service provider server. 7. The electronic device of claim 1 , wherein the secure element is further configured to: generate, in one region of the secure element, a dedicated secure domain that is functionally isolated and accessible when a use authority is verified to store the digital key for each of at least one service provider or for each of at least one target device; and install, in the dedicated secure domain, a dedicated application for providing a service regarding the digital key, and store the generated digital key in the dedicated secure domain by distinguishing the generated digital key for each of at least one service provider. 8. The electronic device of claim 7 , wherein the secure element is further configured to activate the digital key and perform authentication between the dedicated application in the secure element and a service provider server by connecting the dedicated application and the service provider server. 9. The electronic device of claim 8 , wherein the secure element is further configured to: transmit, to a digital key manager server, a verification token for accessing the dedicated secure domain, and when the verification token and a request related to the digital key are received from the service provider server, perform verification regarding the verification token and when the verification token is valid, control the dedicated application to generate a response to the request related to the digital key, and transmit the response to the service provider server. 10. A method of storing a digital key for controlling and accessing a target device, the method comprising: authenticating the target device and user information by performing short range communication with the target device; generating the digital key for the target device; storing the generated digital key in one region of a secure element based on an index; and updating a routing table regarding the generated digital key, wherein the index is distinguished for each of at least one service provider. 11. The method of claim 10 , further comprising: activating the digital key; and performing authentication between a common application in the secure element and a service provider server by connecting the common application and the service provider server. 12. The method of claim 10 , further comprising: before generating the digital key, generating a dedicated storage space that is functionally isolated to store, in one region of the secure element, the digital key for each of at least one service provider or for each of at least one target device; and installing, in the dedicated storage space, a dedicated application for providing a service regarding the digital key, wherein storing the generated digital key comprises: storing the generated digital key in the dedicated storage space by distinguishing the generated digital key for each of at least one service provider; and updating the routing table regarding the generated digital key. 13. The method of claim 10 , further comprising: before generating the digital key, generating a dedicated secure domain that is functionally isolated and accessible when a use authority is verified to store, in one region of the secure element, the digital key for each of at least one service provider or for each of at least one target device; and installing, in the dedicated secure domain, a dedicated application for providing a service regarding the digital key, wherein the storing of the generated digital key comprises storing the generated digital key in the dedicated secure domain by distinguishing the generated digital key for each of at least one service provider.
Assignees
Inventors
Classifications
involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements (network architectures or network communication protocols for supporting authentication of entities using certificates in a packet data network H04L63/0823) · CPC title
using a predetermined code, e.g. password, passphrase or PIN (network architectures or network communication protocols for supporting authentication of entities using passwords in a packet data network H04L63/083) · CPC title
Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication · CPC title
using certificates or pre-shared keys · CPC title
Generation of secret information including derivation or calculation of cryptographic keys or passwords · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US12095914B2 cover?
- Provided are a method and electronic device for storing a digital key. The electronic device includes: a communicator; a secure element configured to store a digital key and perform authentication related to the digital key; a memory storing a program and data for storing the digital key; and a processor configured to execute the program stored in the memory to perform authentication on a targe…
- Who is the assignee on this patent?
- Samsung Electronics Co Ltd
- What technology area does this patent fall under?
- Primary CPC classification H04L9/0894. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue Sep 17 2024 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 5 related publications on this page (citations in our corpus or others sharing the same primary CPC).