The invention relates to a mobile communication device comprising a MIFARE Classic card or an emulated MIFARE Classic memory and a MIFARE application manager being adapted to install MIFARE applications in the MIFARE memory.
The invention further relates to a method for installing MIFARE applications in a mobile communication device that comprises a MIFARE Classic card or an emulated MIFARE Classic memory and a MIFARE application manager.
The invention further relates to a computer program product directly loadable into the memory of a mobile communication device being equipped with a MIFARE device.
The invention further relates to a mobile communication device that comprises a classic or emulated MIFARE memory and a MIFARE application manager being adapted to install MIFARE applications in the MIFARE memory.
The MIFARE® classic family, developed by NXP Semiconductors is the pioneer and front runner in contactless smart card ICs operating in the 13.56 MHz frequency range with read/write capability. MIFARE® is a trademark of NXP Semiconductors. MIFARE complies with ISO14443 A, which is used in more than 80% of all contactless smart cards today. The technology is embodied in both cards and card reader devices. MIFARE cards are being used in an increasingly broad range of applications (including transport ticketing, access control, e-payment, road tolling, and loyalty applications). MIFARE Standard (or Classic) cards employ a proprietary high-level protocol with a proprietary security protocol for authentication and ciphering. MIFARE® technology has become a standard for memory devices with key-protected memory sectors. One example for a published product specification of MIFARE® technology is the data sheet “MIFARE® Standard Card IC MF1 IC S50—Functional Specification” (1998) which is herein incorporated by reference. MIFARE® technology is also discussed in: Klaus Finkenzeller, “RFID Handbuch”, HANSER, 3rd edition (2002).
The MIFARE Classic cards are fundamentally just memory storage devices, where the memory is divided into sectors and blocks with simple security mechanisms for access control. Each device has a unique serial number. Anticollision is provided so that several cards in the field may be selected and operated in sequence.
The MIFARE Standard 1k offers about 768 bytes of data storage, split into 16 sectors with 4 blocks of 16 bytes each (one block consists of 16 bytes); each sector is protected by two different keys, called A and B. They can be programmed for operations like reading, writing, increasing value blocks, etc. The last block of each sector is called “trailer”, which contains two secret keys (A and B) and programmable access conditions for each block in this sector. In order to support multi-application with key hierarchy an individual set of two keys (A and B) per sector (per application) is provided.
The memory organization of a MIFARE Standard 1k card is shown in
Basically MIFARE card reader terminals either read only predefined sectors of MIFARE cards or browse through the entire memory in order to find a particular MIFARE application. However, in order to maintain the speed and convenience of MIFARE's tap-and-go operation, the MIFARE Application Directory (MAD) has been defined which provides common data structures for card application directory entries, allowing terminals to identify the right card (and the right memory sector within the card) without the need to perform a comprehensive search through all of the cards' memories until the appropriate application is found. A typical example is when a person has MIFARE based smart cards for both access control to his office and public transport fare collection. With the MAD, when the cardholder wants to enter his office, the access control terminal identifies the two cards and is able to choose the correct one very quickly, simply by checking the MAD. The MAD standard defines that MIFARE applications are registered on a worldwide directory and given an Application ID (AID). The MAD standard uses the registered Application IDentifiers (AIDs) by writing a look-up table of AIDs and sectors in sector 0x00 (and sector 0x10 if applicable) of the card's memory to enable identification of all registered card applications. Terminal software can then take advantage of this feature using these sector pointers instead of physical sector addresses. So an application may use e.g. sector 3 on one card, and sector 7 on another, depending on what other applications are already there.
SmartMX (Memory eXtension) is a family of smart cards that have been designed by NXP Semiconductors for high-security smart card applications requiring highly reliable solutions, with or without multiple interface options. Key applications are e-government, banking/finance, mobile communications and advanced public transportation.
The ability to run the MIFARE protocol concurrently with other contactless transmission protocols implemented by the User Operating System enables the combination of new services and existing applications based on MIFARE (e.g. ticketing) on a single Dual Interface controller based smart card. SmartMX cards are able to emulate MIFARE Classic devices and thereby makes this interface compatible with any installed MIFARE Classic infrastructure. The contactless interface can be used to communicate via any protocol, particularly the MIFARE protocol and self defined contactless transmission protocols. SmartMX enables the easy implementation of state-of-the-art operating systems and open platform solutions including JCOP (the Java Card Operating System) and offers an optimized feature set together with the highest levels of security. SmartMX incorporates a range of security features to counter measure side channel attacks like DPA, SPA etc. A true anticollision method (acc. ISO/IEC 14443-3), enables multiple cards to be handled simultaneously.
It should be noted that the emulation of MIFARE Classic cards is not only restricted to SmartMX cards, but there may also exist other present or future smartcards being able to emulate MIFARE Classic cards.
Recently, mobile communication devices have been developed which contain MIFARE devices, either being configured as MIFARE Classic cards or as MIFARE emulation devices like SmartMX cards. These mobile communication devices comprise e.g. mobile phones with Near Field Communication (NFC) capabilities, but are not limited to mobile phones.
While both MIFARE Classic cards and MIFARE emulation devices have turned out as a story of success in the market, recently wishes to install MIFARE applications that occupy more than one sector on MIFARE Classic or emulation devices have been noticed. These wishes imply new demands in respect of appropriate use of the limited memory size capacities of MIFARE devices.
It is an object of the invention to provide a mobile communication device of the type defined in the opening paragraph and a method of the type defined in the second paragraph, in which the problems mentioned above are overcome.
In order to achieve the object defined above, with a mobile communication device according to the invention characteristic features are provided so that such a mobile communication device can be characterized in the way defined below, that is:
A mobile communication device comprising a MIFARE memory being configured as a MIFARE Classic card or an emulated MIFARE Classic memory and a MIFARE application manager being adapted to install MIFARE applications in the MIFARE memory wherein when a MIFARE application is a multiple sector application being too large to be stored in one sector of the MIFARE memory the MIFARE application manager splits said multiple sector MIFARE application in parts each being small enough for being stored in one sector of the MIFARE memory, installs the parts of the multiple sector MIFARE application in free sectors of the MIFARE memory and stores in the MIFARE memory an indication in which sectors the parts of the multiple sector MIFARE application are located.
In order to achieve the object defined above, with a method according to the invention characteristic features are provided so that a method according to the invention can be characterized in the way defined below, that is:
A method for installing MIFARE applications in a mobile communication device that comprises a MIFARE memory being configured as a MIFARE Classic card or an emulated MIFARE Classic memory and a MIFARE application manager being adapted to install MIFARE applications in the MIFARE memory, wherein when a MIFARE application is a multiple sector application being too large to be stored in one sector of the MIFARE memory the MIFARE application manager splits said multiple sector MIFARE application in parts each being small enough for being stored in one sector of the MIFARE memory, installs the parts of the multiple sector MIFARE application in free sectors of the MIFARE memory and stores in the MIFARE memory an indication in which sectors the parts of the multiple sector MIFARE application are located.
In order to achieve the object defined above, a computer program product being directly loadable into the memory of a mobile communication device with a MIFARE memory being configured as a MIFARE Classic card or an emulated MIFARE Classic memory and a MIFARE application manager comprises software code portions for performing—when running on the mobile communication device—the steps of the method for installing a mobile communication device according to the above paragraph.
In order to achieve the object defined above, a mobile communication device according to the invention comprises an arithmetic-logic unit and a memory and processes the computer program product according to the above paragraph.
The present invention allows to install multiple sector MIFARE applications (which sometimes are also referred to as MIFARE (Classic) Objects (MCO)). A particular advantage of the present invention is that these multiple sector MIFARE applications don't have to be written in consecutive sectors of the MIFARE memory.
When the MIFARE memory comprises a MIFARE application directory (MAD) that contains a look-up table of MIFARE application identifiers and sectors where the MIFARE applications reside in the MIFARE memory, use can be made of this MIFARE application directory as an indication where the parts of the multiple sector application have been stored, in that the MIFARE application manager assigns in the MIFARE application directory the MIFARE application identifier of the multiple sector MIFARE application to all sectors where parts of the multiple sector MIFARE application have been installed.
When the MIFARE memory does not comprise a MIFARE application directory it is suggested in a further embodiment of the invention to split the multiple sector MIFARE application in parts each being smaller than the length of one sector of the MIFARE memory and to install each part in one separate free sector together with an indication that points to that sector where the subsequent part is installed. In order to make assembling of the parts to the original multiple sector MIFARE application easier for a reading device it may be of advantage to fully concatenate the parts by having the indication of the last part of the multiple sector memory application point to the sector of the first part of the multiple sector memory application.
In an alternative embodiment of the invention the MIFARE application manager builds a multiple parts directory for the multiple sector MIFARE application, which multiple parts directory contains a look-up table of the parts of the multiple sector MIFARE application and the sectors where said parts reside in the MIFARE memory, and writes the multiple parts directory in a free sector of the MIFARE memory, preferably in the lowest free sector.
The aspects defined above and further aspects of the invention are apparent from the exemplary embodiments to be described hereinafter and are explained with reference to these exemplary embodiments.
The invention will be described in more detail hereinafter with reference to exemplary embodiments. However, the invention is not limited to them.
A first embodiment of the invention will now be explained in detail by reference to
According to the invention the mobile communication device 1 comprises a MIFARE application manager MAM. In the present embodiment of the invention the MIFARE application manager MAM is a software module being contained in the software SW of the mobile communication device 1. The MIFARE application manager MAM has the ability to install MIFARE applications in the MIFARE memory MM, to read MIFARE applications from the MIFARE memory MM, and to de-install MIFARE applications from the MIFARE memory MM. MIFARE applications are for instance tickets, coupons, access controls, e-purse functions, etc.
MIFARE applications are downloaded into the mobile communication device 1 e.g. by a Service Provider sending a SMS to the mobile communication device 1 (if configured as a mobile phone), or by means of a NFC reader/writer if the mobile communication device 1 has NFC capabilities and is located within the range of such a NFC reader/writer. Other ways to install MIFARE applications in communication devices 1 comprise for instance HTTP, Https and other data transmission protocols. The downloaded MIFARE applications are handled by the MIFARE application manager MAM.
In the representation of
The way how the present invention solves this problem is illustrated in the representation of
Next, a second embodiment of the invention is explained with reference to
A third embodiment of the invention will be now explained with reference to
The present invention is particularly applicable to the field of NFC mobile phones and OTA (Over the Air) provisioning of new services like ticketing, transit, access control etc.
It should be noted that the above-mentioned embodiments illustrate rather than limit the invention, and that those skilled in the art will be able to design many alternative embodiments without departing from the scope of the appended claims. In the claims, any reference signs placed between parentheses shall not be construed as limiting the claim. The word “comprising” does not exclude the presence of elements or steps other than those listed in a claim. The indefinite article “a” or “an” preceding an element does not exclude the presence of a plurality of such elements. In the device claim enumerating several means, several of these means may be embodied by one and the same item of hardware. The mere fact that certain measures are recited in mutually different dependent claims does not indicate that a combination of these measures cannot be used to advantage.
Number | Date | Country | Kind |
---|---|---|---|
08290210.7 | Mar 2008 | EP | regional |
Filing Document | Filing Date | Country | Kind | 371c Date |
---|---|---|---|---|
PCT/IB09/50776 | 2/26/2009 | WO | 00 | 9/2/2010 |