Malware mitigation based on runtime memory allocation
US-2024220609-A1 · Jul 4, 2024 · US
Method of managing a tamper-proof device comprising several software containers
US2020279059A1 · US · A1
| Field | Value |
|---|---|
| Publication number | US-2020279059-A1 |
| Application number | US-201816765199-A |
| Country | US |
| Kind code | A1 |
| Filing date | Nov 6, 2018 |
| Priority date | Nov 21, 2017 |
| Publication date | Sep 3, 2020 |
| Grant date | — |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
The invention is a method for managing a tamper-proof device comprising a plurality of software containers and an operating system. The operating system is able to handle a set of communication protocols with external entities. The operating system accesses a pairing data in which each communication protocol of said set has been associated with a single software container and upon receipt of a message from one of the external entities, the operating system uses the pairing data to route the message to the software container associated with the communication protocol used to convey the message.
First claim
Opening claim text (preview).
1 . A method for managing a secure element comprising a plurality of software containers and an operating system, said operating system being configured to handle a set of communication protocols with external entities, wherein the operating system accesses a pairing data comprising a description of an association between each communication protocol of said set and a software container belonging to the plurality of software containers, each of said communication protocols being associated with a single software container, and wherein upon receipt of a message from one of said external entities, the operating system routes the message to the software container which is declared in the pairing data as being associated with the communication protocol used to convey the message. 2 . The method according to claim 1 , wherein each software container of said plurality comprises a file which is targeted by said external entities by means of a common identifier. 3 . The method according to claim 1 , wherein each software container of said plurality comprises a root file which is targeted by said external entities by means of a common identifier. 4 . The method according to claim 2 , wherein the operating system uses the pairing data to route the message only in case the message targets said common identifier. 5 . The method according to claim 1 , wherein the plurality of software containers comprises both a security domain compliant with GlobalPlatform Card Specification standard and a Telecom profile compliant with GSMA SGP 0.22 RSP Technical Specification standard. 6 . The method according to claim 1 , wherein the secure element is an embedded secure element, an integrated secure element, a secure enclave, a smart card or a Machine-To-Machine device. 7 . The method according to claim 1 , wherein the set of communication protocols comprises T=0 or T=1 as defined by ETSI ISO7816-3 and at least one of the following group: SWP contactless type A, SWP contactless type B, APDU Gate or SPI. 8 . A secure element comprising a plurality of software containers and an operating system, said operating system being configured to handle a set of communication protocols with external entities, wherein the operating system comprises a pairing data comprising a description of an association between each communication protocol of said set and a software container belonging to the plurality of software containers, each of said communication protocols being associated with a single software container, and wherein the operating system comprises a routing agent configured to, upon receipt of a message from one of said external entities, route the message to the software container which is declared in the pairing data as being associated with the communication protocol used to convey the message. 9 . The secure element according to claim 8 , wherein each software container of said plurality comprises a file which is targeted by said external entities by means of a common identifier. 10 . The secure element according to claim 8 , wherein each software container of said plurality comprises a root file which is targeted by said external entities by means of a common identifier. 11 . The secure element according to claim 9 , wherein the routing agent is configured to use the pairing data to route the message to the software container associated with the communication protocol used to convey the message only in case the message targets said common identifier. 12 . The secure element according to claim 8 , wherein the plurality of software containers comprises both a security domain compliant with GlobalPlatform Card Specification standard and a Telecom profile compliant with GSMA SGP 0.22 RSP Technical Specification standard. 13 . The secure element according to claim 8 , wherein the secure element is an embedded secure element, an integrated secure element, a secure enclave, a smart card or a Machine-To-Machine device. 14 . The secure element according to claim 8 , wherein the set of communication protocols comprises T=0 or T=1 as defined by ETSI ISO7816-3 and at least one of the following group: SWP contactless type A, SWP contactless type B, APDU Gate or SPI. 15 . A host device embedding a secure element device according to claim 8 .
Assignees
Inventors
Classifications
Subscription-based services using application servers or record carriers, e.g. SIM application toolkits · CPC title
Key management, e.g. using generic bootstrapping architecture [GBA] · CPC title
using multiple identity modules · CPC title
Protecting application or service provisioning, e.g. securing SIM application provisioning · CPC title
using security domains · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US2020279059A1 cover?
- The invention is a method for managing a tamper-proof device comprising a plurality of software containers and an operating system. The operating system is able to handle a set of communication protocols with external entities. The operating system accesses a pairing data in which each communication protocol of said set has been associated with a single software container and upon receipt of a …
- Who is the assignee on this patent?
- Thales Dis France Sa
- What technology area does this patent fall under?
- Primary CPC classification G06F21/71. Mapped technology areas include Physics.
- When was this patent published?
- Publication date Thu Sep 03 2020 00:00:00 GMT+0000 (Coordinated Universal Time) (A1). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).