Smart card data transaction system and methods for providing high levels of storage and transmission security

Assignee

• International Business Machines Corporation · US

Inventors

• Vincenzo V. Di Luoffo · Sandy Hook, US
• Craig Fellenstein · Brookfield, US
• Dylan M. Reilly · Middletown, US

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG06Q20/4097
• WIPO fieldIT methods for management
• WIPO sectorElectrical engineering

Abstract

A smart card system is disclosed for secure transmission of post issuance data to a embedded chip using a chip relay module, a plurality of hardware security modules, a first communication system having two security layers and a second communication system having four security layers.The first communication system may be considered a server side system and comprises a chip management system, a security server having a first hardware security module, a distribution server having a second hardware security module and a computer system connected by a network. The first communication system has a first security layer and a second security layer. The first security layer comprises mutual authentication that makes each component of the first communication system a trusted node to the others through client mutual authentication. The second security layer comprises system keys for secure communication between the hardware security modules.The second communication system may be considered a client side system and comprises the computer system connected to the distribution server by a network, a PC/SC card reader driver, a Web browser application, and a chip relay module and is for secure co…