+

WO1997008929A2 - Smart card with a chip, contact field, coils and/or capacitors and a storage element for galvanic or non-galvanic energy and data exchange with a read and/or write device - Google Patents

Smart card with a chip, contact field, coils and/or capacitors and a storage element for galvanic or non-galvanic energy and data exchange with a read and/or write device Download PDF

Info

Publication number
WO1997008929A2
WO1997008929A2 PCT/DE1996/001587 DE9601587W WO9708929A2 WO 1997008929 A2 WO1997008929 A2 WO 1997008929A2 DE 9601587 W DE9601587 W DE 9601587W WO 9708929 A2 WO9708929 A2 WO 9708929A2
Authority
WO
WIPO (PCT)
Prior art keywords
galvanic
chip card
chip
energy
card according
Prior art date
Application number
PCT/DE1996/001587
Other languages
German (de)
French (fr)
Other versions
WO1997008929A3 (en
Inventor
Hans-Diedrich Kreft
Original Assignee
Angewandte Digital Elektronik Gmbh
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Angewandte Digital Elektronik Gmbh filed Critical Angewandte Digital Elektronik Gmbh
Priority to AU13645/97A priority Critical patent/AU1364597A/en
Publication of WO1997008929A2 publication Critical patent/WO1997008929A2/en
Publication of WO1997008929A3 publication Critical patent/WO1997008929A3/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06KGRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
    • G06K19/00Record carriers for use with machines and with at least a part designed to carry digital markings
    • G06K19/06Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code
    • G06K19/067Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components
    • G06K19/07Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components with integrated circuit chips
    • G06K19/077Constructional details, e.g. mounting of circuits in the carrier
    • G06K19/07749Constructional details, e.g. mounting of circuits in the carrier the record carrier being capable of non-contact communication, e.g. constructional details of the antenna of a non-contact smart card
    • G06K19/07766Constructional details, e.g. mounting of circuits in the carrier the record carrier being capable of non-contact communication, e.g. constructional details of the antenna of a non-contact smart card comprising at least a second communication arrangement in addition to a first non-contact communication arrangement
    • G06K19/07769Constructional details, e.g. mounting of circuits in the carrier the record carrier being capable of non-contact communication, e.g. constructional details of the antenna of a non-contact smart card comprising at least a second communication arrangement in addition to a first non-contact communication arrangement the further communication means being a galvanic interface, e.g. hybrid or mixed smart cards having a contact and a non-contact interface
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06KGRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
    • G06K19/00Record carriers for use with machines and with at least a part designed to carry digital markings
    • G06K19/06Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code
    • G06K19/067Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components
    • G06K19/07Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components with integrated circuit chips
    • G06K19/0701Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components with integrated circuit chips at least one of the integrated circuit chips comprising an arrangement for power management
    • G06K19/0707Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components with integrated circuit chips at least one of the integrated circuit chips comprising an arrangement for power management the arrangement being capable of collecting energy from external energy sources, e.g. thermocouples, vibration, electromagnetic radiation
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06KGRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
    • G06K19/00Record carriers for use with machines and with at least a part designed to carry digital markings
    • G06K19/06Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code
    • G06K19/067Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components
    • G06K19/07Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components with integrated circuit chips
    • G06K19/0701Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components with integrated circuit chips at least one of the integrated circuit chips comprising an arrangement for power management
    • G06K19/0712Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components with integrated circuit chips at least one of the integrated circuit chips comprising an arrangement for power management the arrangement being capable of triggering distinct operating modes or functions dependent on the strength of an energy or interrogation field in the proximity of the record carrier
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06KGRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
    • G06K19/00Record carriers for use with machines and with at least a part designed to carry digital markings
    • G06K19/06Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code
    • G06K19/067Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components
    • G06K19/07Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components with integrated circuit chips
    • G06K19/0723Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components with integrated circuit chips the record carrier comprising an arrangement for non-contact communication, e.g. wireless communication circuits on transponder cards, non-contact smart cards or RFIDs
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06KGRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
    • G06K7/00Methods or arrangements for sensing record carriers, e.g. for reading patterns
    • G06K7/0008General problems related to the reading of electronic memory record carriers, independent of its reading method, e.g. power transfer

Definitions

  • Chip card with chip Contact field. Coils and / or capacitors and a memory for either galvanic or non-galvanic
  • the invention relates to a chip card (smart card) which has at least one electronic chip, a contact field with contacts to be galvanically contacted within an external reading and / or writing device (terminal), coils and / or capacitors and at least one memory, either for galvanic or non-galvanic energy and data exchange with the reading and / or writing device, contains at least one chip connected to the contacts as well as to the coils and / or to the capacitors, the plastic card either via the contacts or the coils and / or the capacitors with the reading and / or writing device enters into energy and data exchange and is thereby able to work either in contact or in a contactless manner, according to the preamble of claim 1.
  • Chip cards are known which exchange energy and data in a contact-free or contact-related manner with their read / write devices.
  • the cards are used for telephone or health or access control cards.
  • An overview of such cards and their applications is compiled in three editions of the German specialist magazine electronics year 93.
  • a plastic or chip card according to the preamble of claim 1 has become known from DE-C-39 35 364, which contains further components such as contacts and coils as component groups and on which a chip connected to a contact field is arranged and the additional coils for Has voltage supply of the chip and for data exchange.
  • a diode-capacitor network is used to rectify and smooth the voltage induced in the coils, which is also used to supply the chip and is connected to a circuit which uses two logic levels to control another circuit, which in turn controls the contact field and its outputs is connected to the chip, with either the signals from the coils or from the contact field being switched through to the chip.
  • EP 0534 559 AI discloses a plastic card that has galvanic contacts in accordance with IOS standard 7816 and coils in accordance with the draft ISO standard 10536 contains.
  • the data can be read out from at least one memory of the chip or a part of the chip via the electromagnetic coupling link with low energy consumption, by activating only a part of the integrated electronic circuit, so that a contactless energy supply over a certain distance is possible.
  • the data of the same memory can be read and written via the contacts via the microprocessor contained in the electronic circuit.
  • EP 0 534 559 AI is based on the same principle for a modified task, but without describing it.
  • the invention has for its object to improve a chip card (smart card) of the type mentioned in its electrical function and handling, in particular in the contactless mode to protect sensitive data against attacks from a distance that are not authorized by the holder of the card; the card should also consume as little energy as possible in the contactless mode.
  • chip card smart card
  • the solution to the problem is that the selection of the respective operating mode can be influenced by additional logical conditions in addition to the instantaneous presence of a respective energy supply.
  • the invention advantageously provides a kit of measures which, in addition to the previously known basic benefits, opens up additional benefits from other areas, namely a great freedom of design in optimizing the card and a security potential for critical applications.
  • sensitive data can be protected from remote attacks that are not authorized by the card holder.
  • the chip card consumes less energy in the contactless operating mode than cards of the prior art.
  • That card as an information carrier according to IS 7810, which combines features according to IS 7816 and IS 10536, i.e. energy and information flow on the one hand Galvanic contacts and, on the other hand, used via non-galvanic paths (inductive, capacitive, optical, acoustic ...) are contained in DE 39 35 364 with various configurations of the operating mode position, ie influenced by a stepped actuator.
  • the power supply from the galvanic path for the selection of the operating mode can be linked to at least one logical condition, a precondition is created here for the part according to IS 7861 so that the operating mode selector does not only depend on the power supply for the function of this part makes, but requires additional measures.
  • the essence of this statement thus corresponds to that of claim 2.
  • the logical condition for the selection of the operating mode can be an information combination as an access key.
  • the card user can be expected to enter a password or a personal identification number (PIN, “secret number”) at the terminal in order to gain access to the information or processes contained or expected in the card.
  • PIN personal identification number
  • the operating mode selector can assume such a state, which can be used, without a functionless rest position in the rest position which inevitably sets in without any energy supply.
  • the middle position could be omitted if the changeover switch in one of the two remaining positions is forced.
  • a semiconductor switch especially a FET switch
  • FET field effect transistor
  • a semiconductor switch does not have to completely disconnect when in a de-energized state (like a bipolar switch), but can use the so-called self-conducting channel of the field effect transistor (FET) as a "normally closed contact” but as a (sequential micro-programmed) switchgear or as firmware in a microcontroller, the number of actuator positions is no longer dependent on the explicit disconnector.
  • claim 6 expresses a logical abstraction. Moreover, the claimed choice of the state of rest anticipates that the “awakening” according to claim 3 takes place with minimal delay.
  • the operating mode controller can achieve its intended function by applying the energy supply to the chip card part affected by this function and vice versa. It has just been decided that the desired part of the device is “armed by the appropriate selection of the idle state of the mode selector; it only has to be “ignited”. This is done by applying the power supply to this part of the installation, in particular the non-galvanic one according to IS 10536.
  • the purpose of this configuration is in particular to accelerate boarding and alighting on buses and trains in that the Card is inserted into a (high-frequency) magnetic field for the according to communication.
  • the reference to the reverse effect is intended to make it clear that the mere termination of the energy supply is sufficient to render the previously supplied part of the device ineffective.
  • the operating mode controller can assume a state that serves no further function.
  • the choice of the idle state (“idle state”) turns out here in such a way that the relevant part of the device, in particular that according to IS 7816, is not directly effective through the supply of energy. This is - to the extent that it is logically abstracted - particularly the complement to the definition in claim 6 .
  • the purpose-defined function can be set in that a logical condition in the form of an information combination is required as an access key.
  • the operating mode switch is at rest (i.e. without energy) already unfavorable for the part of the facility concerned here (in particular that according to IS 7816): simply supplying energy does not yet make this part effective.
  • the password (or similar key) coming from the user must also be compared with the password stored in the card. Only when the comparison mechanism known in the art has been overcome can the only logical bit occurring thereby make the affected part of the device effective.
  • the mode controller can return to its idle state, provided the power supply ends and no additional command (s) are required. The mere termination of the power supply is sufficient to render the previously supplied part of the device ineffective.
  • the logical abstraction of this embodiment of the mode selector is the bistable switch.
  • the purpose-defined function may require the creation of an information combination as an access key.
  • secrecy is more important than speed.
  • the user must have the card within range of the terminal in order to be able to have a password compared before going on, for example particularly protect worthy, can access information on the map.
  • the termination of the functionality does not require an explicit claim here, because it corresponds to the effect of claim 10 without further action.
  • the setup part of the card can be made permanently inaccessible when certain circumstances so require.
  • Simple phone cards are single-use items because of certain constraints of the security concept.
  • This mode of action does not have to be excluded in the claimed mode of action. For any reason, one can load the card with information, in particular after the production process, seal the galvanically accessible part of the device (i.e. according to IS 7816) and deliver the card. If the electrical seal (in particular disconnection or short-circuiting) is not penetrating enough, mechanical sealing (on the contact field) can be placed (gluing, welding, laminating; screen printing, punching).
  • the card claimed here is not used galvanically after sealing, but not galvanically.
  • the various system states of the circuit blocks can be selectively effective or shut down. This allows sensitive data to be protected from remote attacks in contact-free mode of operation that are not authorized by the card holder. Furthermore, as little energy as possible is consumed in the contactless operating mode, the full functionality being produced in the operating mode according to IS 7816 because no energy has to be saved. Such cards cannot be changed in their memories unnoticed by distance since they have to be inserted into a terminal. When a card is inserted into a specific environment, some function blocks are put into operation and others are shut down or remain shut down. By inserting the card into a reader, reliable working conditions of the card are to be created.
  • the figure presents a solution according to the invention in a block diagram.
  • the card has on the right side in the picture such a contact field 3 (corresponding to DE-C-39 35 364, part 3) of contacts, as is customary according to IS 7816.
  • a magnetic antenna 4 (corresponding to DE-C-39 35 364, part 4 or 5) is shown as it is the subject of the IS 10536 standard or IS 14443.
  • Another magnetic antenna 5 (according to DE-C-39 35 364, part 5 or 4) can be operated as an option according to IS 1056.
  • Another option is an electrical antenna 6, also according to IS 10536, which is provided in pairs for reasons of symmetry.
  • the signals at the antennas 4, 5, 6 can be converted by function blocks 1 (corresponding to DE-C-39 35 364, part 2.1.4) in such a way that they conform to the IS standard at the, possibly also only virtual, interface 7 Meet 7816; the interface 8 opposite meets the standard IS 7816 anyway.
  • the result of the conversion in the AC / DC converter 1, in particular a rectifier with buffer and limiter, is a direct voltage (according to DE-C-39 35 364, Ul) on line 9 and a, in part bidirectional, data / Control bus 10 (according to DE-C-39 35 364, K1 ... K5).
  • these lines correspond to the line 11 of the DC voltage Vcc according to IS 7816 (corresponding to DE-C-39 35 364, U2) and in turn a bus 12 (corresponding to DE-C-39 35 364, II .. .15).
  • the buses 10 and 12 do not have to consist of five lines: the standard 7816 also allows more or less.
  • the option with the antenna 4 in particular can also occur twice, as a result of which the interface 7 can also occur twice. All other combinations of options should be able to be represented at one interface (s) 7, which is why a single interface 7 is sufficient for the description of the inventive concept.
  • control units 17, 18, which can in particular be microprogrammed switching units and / or microcomputers or other data processing functions.
  • the memories 15, 16 and control units 17, 18 consume auxiliary energy in order to be effective. As already mentioned, it can make sense to save energy when operating the card from the left side in the image, while it is not necessary from the right side in the image.
  • the card now has a further control unit 19 in the sense of an operating mode selector which regulates the access of the control units 17, 18 together with their memories 15, 16 depending on the introduction of the card mentioned above into a communication-capable environment (terminal).
  • the concept of the control-related actuator in “mode controller” 19 (English MODE MANAGER) is intended to associate that physical influence is exerted on the route by means of the logical manipulated variable.
  • the mode controller 19 not only switches logic states but also energy. In its most general form it is Operating mode controller is an abstract structure, the specific shape of which is determined by the current technical requirements.
  • the mode controller 19 uses the lines 20, 21 to supply the blocks 15, 16, 17, 18.
  • the line 22 supplies the modulator / demodulator (MODEM) 2. This line is not part of the interface 7 according to IS 7816.
  • the mode controller 19 not only supplies the blocks 15, 17 via the line 21, but also the lines 15 via the line 22 Signal pre / post processing instructed by auxiliary power 2.
  • the data link 23 is still located between the control units 17 and 18, so that the entire device can also move data back and / or forth in the respective operating mode in accordance with the regulations.
  • data from the contact field 3 can be written into the memory 16 via the line 12 and the control unit 18, in particular with a time delay from the memory 16 through the control unit 18 and the data connection 23 and the control unit 17 move to block 15 and again in particular time-shifted from block 15 through control unit 17 via connecting line 10, MODEM 2 and AC / DC converter 1 to magnetic antenna 4.
  • the tapping of buses 10 and 12 is now essential to the invention for the purpose of influencing operating mode selector 19.
  • An arbitrary example is to serve here: the cardholder enters a password at 3, this is checked in 19.
  • the mode selector 19 supplies energy via 21, 17 and 15. Then the 18 can transport data from 3 to 23 and 17 to 15. In this operating mode, it makes no sense to supply the 22 via the 2. This is the reason for the individual existence of line 22. However, it should not be ruled out that the potential of line 22 may be identical to that of line 9 if the implementer considers this to be correct.
  • the card is inserted into a high-frequency magnetic field, whereby 1 over 9 wakes up the mode selector 19 and supplies it via 22 the 2.
  • the cardholder now enters a password at 4. This is routed via 13, 2 and 10 to 19 and checked in 19.
  • 19 supplies 21 to 17 and 15 with energy.
  • the cardholder can now use the data in 15. In order to save energy in this operating mode, the 19 will not supply the 18 and 16.
  • the invention is now not satisfied with the fact that all these possible and numerous operating modes fall back into the idle state due to failure of the energy source at either 7 or 9 or 11.
  • This is claimed in a category of possible configurations.
  • Another category also claims that the operating mode once set can be retained even after the power failure until the operating mode can be changed after renewed energy supply and input of information about 3 or 4.
  • the operating mode selector 19 becomes so versatile that the implementer has a considerable choice of design options for the card for its respective purpose.
  • the invention can be used with great advantage in chip cards (smart cards) which operate either with contacts or without contacts.
  • the card is advantageously largely error-proof and "bug-proof". In contact-free mode, sensitive data is protected from remote attacks that are not authorized by the card holder.

Landscapes

  • Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • Microelectronics & Electronic Packaging (AREA)
  • Computer Hardware Design (AREA)
  • Theoretical Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Electromagnetism (AREA)
  • Artificial Intelligence (AREA)
  • Computer Vision & Pattern Recognition (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Storage Device Security (AREA)
  • Credit Cards Or The Like (AREA)
  • Power Sources (AREA)

Abstract

The invention pertains to a smart card provided with an electronic chip, a contact field with galvanically contacted contacts, coils and/or capacitors, and at lest one storage element for galvanic or non-galvanic energy and data exchange with a read and/or write device. At least one chip is connected both to the contacts and to the coils and/or capacitors; the plastic card exchanges energy and/or data with the read/write device either via the contacts or via the coils and/or capacitors and can thus operate with or without contact. The choice of operating mode can be influenced by additional logical criteria as well as by the availability at any given moment of a power supply. Power supply from the non-galvanic path for the choice of operating mode is preferably subject to at least one logical condition.

Description

Chipkarte mit Chip. Kontaktfeld. Spulen und/oder Kondensatoren und einem Speicher entweder zum galvanischen oder nichtgalvanischen Chip card with chip. Contact field. Coils and / or capacitors and a memory for either galvanic or non-galvanic

Energie- und Datenaustausch mit einem Lese- und/oder SchreibgerätEnergy and data exchange with a reading and / or writing device

Technisches Gebiet:Technical field:

Die Erfindung betrifft eine Chipkarte (Smart Card), die wenigstens einen elektronischen Chip, ein Kontaktfeld mit innerhalb eines externen Lese- und/oder Schreibgerätes (Terminal) galvanisch zu kontaktierenden Kontakten, Spulen und/oder Kondensatoren sowie wenigstens einen Speicher, entweder zum galvanischen oder nichtgalvanischen Energie- und Datenaustausch mit dem Lese- und/oder Schreibgerät , enthält, wenigstens ein Chip sowohl an die Kontakte, wie auch an die Spulen und/oder an die Kondensatoren angeschlossen ist, wobei die Plastikkarte entweder über die Kontakte oder die Spulen und/oder die Kondensatoren mit dem Lese-und/oder Schreibgerät in Energie- und Datenaustausch tritt und dadurch entweder kontaktbehaftet oder kontaktfrei zu arbeiten imstande ist, gemäß dem Oberbegriff des Anspruchs 1.The invention relates to a chip card (smart card) which has at least one electronic chip, a contact field with contacts to be galvanically contacted within an external reading and / or writing device (terminal), coils and / or capacitors and at least one memory, either for galvanic or non-galvanic energy and data exchange with the reading and / or writing device, contains at least one chip connected to the contacts as well as to the coils and / or to the capacitors, the plastic card either via the contacts or the coils and / or the capacitors with the reading and / or writing device enters into energy and data exchange and is thereby able to work either in contact or in a contactless manner, according to the preamble of claim 1.

Stand der Technik:State of the art:

Es sind Chipkarten bekannt, welche kontaktfrei oder kontaktbehaftet mit ihren Schreib/Lesegeräten Energie und Daten austauschen. Die Karten werden für Telefon- oder Gesundheits- oder Zutrittskontrollkarten eingesetzt. Einen Über¬ blick über solche Karten und deren Anwendungen ist in drei Ausgaben der deut¬ schen Fachzeitschrift Elektronik Jahrgang 93 zusammengstellt.Chip cards are known which exchange energy and data in a contact-free or contact-related manner with their read / write devices. The cards are used for telephone or health or access control cards. An overview of such cards and their applications is compiled in three editions of the German specialist magazine electronics year 93.

Eine Plastik- oder Chipkarte gemäß dem Oberbegriff des Anspruchs 1 ist aus der DE-C-39 35 364 bekannt geworden, die als Bauteilegruppen weitere Bauelemente wie Kontakte und Spulen enthält und auf der ein mit einem Kontaktfeld verbundener Chip angeordnet ist und die zusätzlich Spulen zur Spannungsversorgung des Chips und zum Datenaustausch aufweist. Ein Dioden-Kondensatornetzwerk dient zum Gleichrichten und Glätten der in den Spulen induzierten Spannung, die ebenfalls zur Versorgung des Chips dient und dazu an eine Schaltung geführt ist, die mittels zweier logischer Pegel eine weitere Schaltung steuert, welche ihrerseits mit dem Kontaktfeld und an ihren Ausgängen an den Chip angeschlossen ist, wobei entweder die Signale von den Spulen oder vom Kontaktfeld an den Chip durchgeschaltet werden.A plastic or chip card according to the preamble of claim 1 has become known from DE-C-39 35 364, which contains further components such as contacts and coils as component groups and on which a chip connected to a contact field is arranged and the additional coils for Has voltage supply of the chip and for data exchange. A diode-capacitor network is used to rectify and smooth the voltage induced in the coils, which is also used to supply the chip and is connected to a circuit which uses two logic levels to control another circuit, which in turn controls the contact field and its outputs is connected to the chip, with either the signals from the coils or from the contact field being switched through to the chip.

Durch die EP 0534 559 AI ist eine Plastikkarte bekannt, die galvanische Kontakte gemäß IOS-Norm 7816 imd Spulen gemäß der Entwurfs-ISO-Norm 10536 enthält. In dem einen Operationsmode können die Daten aus wenigstens einem Speicher des Chips oder eines Teils des Chips über die elektro¬ magnetische Koppelstrecke mit geringem Energieverbrauch herausgelesen werden, indem nur ein Teil des integrierten Elektronikschaltkreises dazu aktiviert wird, so daß eine kontaktlose Energieversorgung über eine bestimmte Distanz möglich ist. Im anderen standardisierten Operationsmode können die Daten desselben Speichers mittels des im Elektronikschaltkreis enthaltenen Mikroprozessors, der ist, über die Kontakte gelesen und geschrieben werden.EP 0534 559 AI discloses a plastic card that has galvanic contacts in accordance with IOS standard 7816 and coils in accordance with the draft ISO standard 10536 contains. In one operation mode, the data can be read out from at least one memory of the chip or a part of the chip via the electromagnetic coupling link with low energy consumption, by activating only a part of the integrated electronic circuit, so that a contactless energy supply over a certain distance is possible. In the other standardized operation mode, the data of the same memory can be read and written via the contacts via the microprocessor contained in the electronic circuit.

Damit hat sich die DE 39 35 364 Cl schon frühzeitig mit der logischen Abbil¬ dung der in der Karte ankommenden Versorgungsspannungen aus den verschie¬ denen Einbringungsfällen bedient. Die EP 0 534 559 AI stützt sich auf das gleiche Prinzip für eine modifizierte Aufgabe, ohne es allerdings zu beschreiben.DE 39 35 364 Cl thus made early use of the logical mapping of the supply voltages arriving in the card from the various application cases. EP 0 534 559 AI is based on the same principle for a modified task, but without describing it.

Technische Aufgabe:Technical task:

Der Erfindung liegt die Aufgabe zugrunde, eine Chipkarte (Smart Card) der genannten Gattung in ihrer elektrischen Funktion und Handhabung zu verbessern, insbesondere in der kontaktfreien Betriebsart sensible Daten gegen solche Angriffe von ferne zu schützen, die nicht durch den Inhaber der Karte autorisiert sind; daneben soll die Karte in der kontaktfreien Betriebsart so wenig Energie wie möglich verbrauchen.The invention has for its object to improve a chip card (smart card) of the type mentioned in its electrical function and handling, in particular in the contactless mode to protect sensitive data against attacks from a distance that are not authorized by the holder of the card; the card should also consume as little energy as possible in the contactless mode.

Offenbarung der Erfindung und deren Vorteile:Disclosure of the invention and its advantages:

Die Lösung der Aufgabe besteht darin, daß die Wahl der jeweiligen Betriebsart über das augenblickliche Vorhandensein einer jeweiligen Energieversorgung hinaus durch zusätzliche logische Bedingungen beeinflußt werden kann.The solution to the problem is that the selection of the respective operating mode can be influenced by additional logical conditions in addition to the instantaneous presence of a respective energy supply.

Vorteilhaft stellt die Erfindung einen Baukasten von Maßnahmen zur Verfü¬ gung, der über den bisher bekannten Grundnutzen hinaus Zusatznutzen aus weiteren Bereichen erschließt, nämlich eine große Gestaltungsfreiheit bei der Optimierung der Karte sowie ein Sicherheitspotential für kritische Anwendungs¬ fälle zur Verfügung stellt. In der kontaktfreien Betriebsart können sensible Daten gegen solche Angriffe von ferne geschützt werden, die nicht durch den Inhaber der Karte autorisiert sind. Des weiteren verbraucht die Chipkarte in der kontaktfreien Betriebsart weniger Energie als Karten des Standes der Technik.The invention advantageously provides a kit of measures which, in addition to the previously known basic benefits, opens up additional benefits from other areas, namely a great freedom of design in optimizing the card and a security potential for critical applications. In contact-free mode, sensitive data can be protected from remote attacks that are not authorized by the card holder. Furthermore, the chip card consumes less energy in the contactless operating mode than cards of the prior art.

Jene Karte als Informations-Träger nach IS 7810, die Merkmale nach IS 7816 und IS 10536 in sich vereint, also Energie- und Informationsfluß einerseits über galvanische Kontakte und andererseits über nichtgalvanische Wege (induktiv, kapazitiv, optisch, akustisch...) benutzt, ist mit verschiedenen Ausgestaltungen der Betriebsarten-Stellung, d.h. Beeinflussung durch stufiges Stellglied, in der DE 39 35 364 enthalten.That card as an information carrier according to IS 7810, which combines features according to IS 7816 and IS 10536, i.e. energy and information flow on the one hand Galvanic contacts and, on the other hand, used via non-galvanic paths (inductive, capacitive, optical, acoustic ...) are contained in DE 39 35 364 with various configurations of the operating mode position, ie influenced by a stepped actuator.

Zu den seither beschriebenen und - unausgesprochen - unterstellten Stell-Mög- lichkeiten durch Zuführen der jeweiligen Energieversorgung (d.h. jeweils an den Teil nach IS 7816 oder jenen nach IS 10536) hinzu kommt erfindungsgemäß die - auf die Existenz der Energieversorgung aufgesetzte - Qualifizierung (Verschlüs- selimg, Vorbedienung) - insbesondere zur Erleichterung oder Erschwerung des Zugangs zu den in der Karte enthaltenen Informationen oder der Veränderung derselben.In addition to the positioning options described and - unspoken - assumed by supplying the respective energy supply (ie in each case to the part according to IS 7816 or to those according to IS 10536), according to the invention there is the qualification (based on the existence of the energy supply) (encryption selimg, pre-operation) - in particular to facilitate or hinder access to or change the information contained in the card.

Dadurch, daß die Energieversorgung aus dem nichtgalvanischen Weg für die Wahl der Betriebsart mit wenigstens einer logischen Bedingung verknüpft ist, wird an den Teil nach IS 10536 eine Vorbedienung angelegt, damit der Betriebsartsteller 19 die Funktion dieses Teils nicht nur von der Energie¬ versorgung abhängig macht, sondern zusätzliche Maßnahmen erforderlich sind.Because the energy supply from the non-galvanic path for the selection of the operating mode is linked to at least one logical condition, a pre-operation is applied to the part according to IS 10536 so that the operating mode controller 19 does not only make the function of this part dependent on the energy supply , but additional measures are required.

Ein sehr spezieller Fall ist jener, daß die soeben erwähnte Maßnahme eine Multiplikation mit Null ist. Im Fall der binären Logik wird aus der allgemeinen Multiplikation eine boolesche UND-Verknüpfung. Die UND-Verknüpfung speziell mit der NULL (logic FALSE, logisch UNWAHR) bedeutet die verknüpfte Information zu ignorieren. Genau das soll erreicht werden: Die Existenz der Energieversorgung d i e s e r Seite (IS 10536) soll keinen Einfluß auf die Position des Betriebsartstellers haben - ein sehr spezieller Effekt, der erwünscht sein kann. Die Schaltung „schläft" und wird bei Zufuhr der Energie unverzüglich „wach". Der Einfluß der Energieversorgung auf die Stellung des Betriebsartenstellers ist damit nicht verschwunden - es kommt nur von der a n- d e r e n Seite (IS 7816). Deshalb kann die logische Bedingung für die Wahl der Betriebsart insbesondere vorteilhaft eine logische NULL sein.A very special case is that the measure just mentioned is a multiplication by zero. In the case of binary logic, general multiplication becomes a Boolean AND operation. The AND link specifically with the NULL (logic FALSE, logical UNWAHR) means to ignore the linked information. This is exactly what is to be achieved: The existence of the power supply on this side (IS 10536) should not have any influence on the position of the mode selector - a very special effect that may be desirable. The circuit "sleeps" and "awakes" immediately when the energy is supplied. The influence of the energy supply on the position of the mode selector has not disappeared - it only comes from the other side (IS 7816). Therefore, the logical condition for the selection of the operating mode can be, in particular, a logical ZERO.

Dadurch, daß die Energieversorgung aus dem galvanischen Weg für die Wahl der Betriebsart mit wenigstens einer logischen Bedingungen verknüpft sein kann, wird hier an den Teil nach IS 7861 eine Vorbedingung angelegt, damit der Betriebsartsteller die Funktion dieses Teiles nicht nur von der Energie¬ versorgung abhängig macht, sondern zusätzliche Maßnahmen erfordert. Der Kern dieser Aussage entspricht somit demjenigen von Anspruch 2. Die logische Bedingung für die Wahl der Betriebsart kann eine Informations¬ kombination als Zugangsschlüssel sein. Insbesondere kann vom Benutzer der Karte erwartet werden, daß er am Terminal ein Passwort oder eine persönliche Identifikations-Nummer (PIN, „Geheimzahl") eingibt, um Zugang zu den in der Karte befindlichen oder erwarteten Informationen oder Prozessen zu erhalten.Because the power supply from the galvanic path for the selection of the operating mode can be linked to at least one logical condition, a precondition is created here for the part according to IS 7861 so that the operating mode selector does not only depend on the power supply for the function of this part makes, but requires additional measures. The essence of this statement thus corresponds to that of claim 2. The logical condition for the selection of the operating mode can be an information combination as an access key. In particular, the card user can be expected to enter a password or a personal identification number (PIN, “secret number”) at the terminal in order to gain access to the information or processes contained or expected in the card.

Der Betriebsartensteller kann unter Verzicht auf eine funktionslose Ruhelage in der sich ohne jede Energieversorgung zwangsläufig einstellenden Ruhelage einen solchen Zustand einnehmen, der genutzt werden kann.The operating mode selector can assume such a state, which can be used, without a functionless rest position in the rest position which inevitably sets in without any energy supply.

Wenn man sich den Betriebsartsteller - logisch abstrahiert - als einen Schalter mit drei möglichen Positionen vorstellt, von denen die mittlere keinen Ausgang hat (das ist ein Umschalter mit einem Trenner in der Mitte) , dann könnte die mittlere Position weggelassen werden, wenn der Umschalter in eine der beiden verbleibenden Stellungen gezwungen wird. Ein Halbleiterschalter (insbesondere FET-Schalter) muß nicht im energielosen Zustand völlig trennen (wie ein bipolarer Schalter), sondern kann den sogenannten selbstleitenden Kanal des Feldeffekt-Transistors (FET) als „Ruhekontakt" gebrauchen. Sofern der Betriebsartsteller nicht explizit als Schalter implementiert ist, sondern als (sequenzielles mikroprogrammiertes) Schaltwerk oder überhaupt als Firmware in einem Mikrokontroller auftaucht, ist die Zahl der Steller-Position auch nicht mehr auf den expliziten Trenner angewiesen.If you think of the mode selector - logically abstracted - as a switch with three possible positions, of which the middle one has no output (this is a changeover switch with a separator in the middle), then the middle position could be omitted if the changeover switch in one of the two remaining positions is forced. A semiconductor switch (especially a FET switch) does not have to completely disconnect when in a de-energized state (like a bipolar switch), but can use the so-called self-conducting channel of the field effect transistor (FET) as a "normally closed contact" but as a (sequential micro-programmed) switchgear or as firmware in a microcontroller, the number of actuator positions is no longer dependent on the explicit disconnector.

Zur Abdeckung der unzähligen Implementierungs-Möglichkeiten drückt damit der Anspruch 6 eine logische Abstraktion aus. Im übrigen sorgt die bean¬ spruchte Wahl des Ruhezustandes vorausschauend dafür, daß die „Erweckung" nach Anspruch 3 mit minimalem Verzug erfolgt.To cover the countless implementation possibilities, claim 6 expresses a logical abstraction. Moreover, the claimed choice of the state of rest anticipates that the “awakening” according to claim 3 takes place with minimal delay.

Der Betriebsartsteller kann seine bestimmungsgemäße Funktion dadurch erlangen, daß an dem von dieser Funktion betroffenen Chipkartenteil die Energieversorgung angelegt wird und umgekehrt. Es wurde soeben entschieden, daß der gewünschte Einrichtungsteil durch die entsprechende Wahl des Ruhe¬ zustandes des Betriebsartstellers „scharf gemacht ist; er muß nur noch „gezündet" werden. Das tut das Anlegen der Energieversorgung an eben diesen Einrichtungsteil, insbesondere den nichtgalvanischen nach IS 10536. Der Sinn dieser Ausgestaltung ist es insbesondere, das Ein- und Aussteigen an Bussen und Bahnen dadurch zu beschleunigen, daß die Karte schon beim bloßen berüh¬ rungslosen Einführen in ein (hochfrequentes) Magnetfeld zur bestimmungs- gemäßen Kommunikation schreitet. Der Hinweis auf die umgekehrte Wirkung soll deutlich machen, daß das bloße Beenden der Energieversorgung ausreicht, um den zuvor versorgt gewesenen Einrichtungsteil wirkungslos zu machen.The operating mode controller can achieve its intended function by applying the energy supply to the chip card part affected by this function and vice versa. It has just been decided that the desired part of the device is “armed by the appropriate selection of the idle state of the mode selector; it only has to be "ignited". This is done by applying the power supply to this part of the installation, in particular the non-galvanic one according to IS 10536. The purpose of this configuration is in particular to accelerate boarding and alighting on buses and trains in that the Card is inserted into a (high-frequency) magnetic field for the according to communication. The reference to the reverse effect is intended to make it clear that the mere termination of the energy supply is sufficient to render the previously supplied part of the device ineffective.

Der Betriebsartsteller kann ohne jede Energieversorgung einen solchen Zustand einnehmen, der keiner weiteren Funktion dient. Die Wahl des Ruhezustandes („Ruhelage") fallt hier so aus, daß der betreffende Einrichtungsteil, insbesondere der nach IS 7816, nicht unmittelbar durch Zufuhr von Energie wirksam ist. Das ist - insoweit logisch abstrahiert - insbesondere das Komplement zu der Definition in Anspruch 6.Without any energy supply, the operating mode controller can assume a state that serves no further function. The choice of the idle state ("idle state") turns out here in such a way that the relevant part of the device, in particular that according to IS 7816, is not directly effective through the supply of energy. This is - to the extent that it is logically abstracted - particularly the complement to the definition in claim 6 .

Die zweckbestimmte Funktion kann sich dadurch einstellen, daß eine logische Bedingung in Form einer Informationskombimation als Zugangsschlüssel erforderlich ist. Gemäß Anspruch 8 steht der Betriebsartsteller in Ruhe (d.h. ohne Energie) ohnehin schon ungünstig für den hier betroffenen Einrichtungsteil (insbesondere den nach IS 7816): Durch bloßes Zufuhren von Energie wird dieser Teil noch nicht wirksam. Nach dem Anlegen der Energie muß auch noch das von dem Benutzer kommende Paßwort (oder ähnlicher Schlüssel) mit dem in der Karte gespeicherten Paßwort verglichen werden. Erst wenn der fachbekannte Vergleichsmechanismus überwunden ist, kann das einzige dabei anfallende logische Bit den betroffenen Einrichtungsteil wirksam machen.The purpose-defined function can be set in that a logical condition in the form of an information combination is required as an access key. According to claim 8, the operating mode switch is at rest (i.e. without energy) already unfavorable for the part of the facility concerned here (in particular that according to IS 7816): simply supplying energy does not yet make this part effective. After the energy has been applied, the password (or similar key) coming from the user must also be compared with the password stored in the card. Only when the comparison mechanism known in the art has been overcome can the only logical bit occurring thereby make the affected part of the device effective.

Es ist damit nicht gesagt, daß mit dieser Maßnahme der komplementäre Einrichtungsteil (insbesondere der nach IS 10536) von einer tatsächlichen oder möglichen Funktion ausgeschlossen werden muß. Diese Festlegung steht dem implementierenden Mitwirkenden zu.This does not mean that with this measure the complementary part of the device (in particular that according to IS 10536) must be excluded from an actual or possible function. The implementing contributor is entitled to this stipulation.

Der Betriebsartsteller kann in seinen Ruhezustand zurückfallen, sofern die Energieversorgung endet und kein(e) zusätzliche(r) Befehl(e) benötigt werden. Das bloße Beenden der Energieversorgung reicht aus, um den zuvor versorgt gewesenen Einrichtungsteil wirkungslos zu machen. Die logische Abstraktion dieser Ausgestaltung des Betriebsartstellers ist der bistabile Schalter.The mode controller can return to its idle state, provided the power supply ends and no additional command (s) are required. The mere termination of the power supply is sufficient to render the previously supplied part of the device ineffective. The logical abstraction of this embodiment of the mode selector is the bistable switch.

Die zweckbestimmte Funktion kann das Anlegen einer Informationskombi- nation als Zugangsschlüssel erforderlich machen. Als ergonomisches Komple¬ ment zu Anspruch 7 geht hier Geheimhaltung vor Geschwindigkeit. Der Benutzer muß mit der Karte in die Reichweite des Terminals, um ein Paßwort vergleichen lassen zu können, bevor er auf, zum Beispiel besonders schütz würdige, Informationen auf der Karte zugreifen kann. Das Beenden der Funktionalität erfordert hier keinen expliziten Anspruch, weil es ohne weiteres Zutun der Wirkung von Anspruch 10 entspricht.The purpose-defined function may require the creation of an information combination as an access key. As an ergonomic complement to claim 7, secrecy is more important than speed. The user must have the card within range of the terminal in order to be able to have a password compared before going on, for example particularly protect worthy, can access information on the map. The termination of the functionality does not require an explicit claim here, because it corresponds to the effect of claim 10 without further action.

Der Einrichtungssteil der Karte kann permanent unzugänglich gemacht werden, sobald bestimmte Umstände das erfordern. Einfache Telefonkarten sind Einweg-Artikel, weil bestimmte Zwänge des Sicherheitskonzeptes dies erfordern. Diese Wirkungsweise muß bei der beanspruchten Wirkungsweise nicht ausge¬ schlossen bleiben. Mann kann - aus beliebigen Gründe - die Karte insbesondere nach dem Produktionsprozeß mit Informationen laden, den galvanisch zugäng¬ lichen Einrichtungsteil (d.h. den nach IS 7816) versiegeln und die Karte auslie¬ fern. Wenn die elektrische Versiegelung (insbesondere Trennen oder Kurz¬ schließen) nicht eindringlich genug ist, läßt sich mechanische Versiegelung (auf das Kontaktfeld) setzen (Kleben, Schweißen, Laminieren; Siebdrucken, Lochen).The setup part of the card can be made permanently inaccessible when certain circumstances so require. Simple phone cards are single-use items because of certain constraints of the security concept. This mode of action does not have to be excluded in the claimed mode of action. For any reason, one can load the card with information, in particular after the production process, seal the galvanically accessible part of the device (i.e. according to IS 7816) and deliver the card. If the electrical seal (in particular disconnection or short-circuiting) is not penetrating enough, mechanical sealing (on the contact field) can be placed (gluing, welding, laminating; screen printing, punching).

Im Unterschied zur herkömmlichen (galvanischen) Telefonkarte wird die hier beanspruchte Karte nach der Versiegelung nicht galvanisch genutzt, sondern nichtgalvanisch.In contrast to the conventional (galvanic) telephone card, the card claimed here is not used galvanically after sealing, but not galvanically.

Wege zur Ausfuhrung der Erfindung:WAYS OF IMPLEMENTING THE INVENTION:

Die verschiedenen Systemzustände der Schaltungsblöcke können selektiv wirksam bzw. stillgelegt werden. Dadurch können in kontaktfreier Betriebsart sensible Daten gegen solche Angriffe von ferne geschützt werden, die nicht durch den Inhaber der Karte autorisiert sind. In der kontaktfreien Betriebsart wird des weiteren so wenig Energie wie möglich verbraucht, wobei in der Betriebsart nach IS 7816 die volle Funktionalität hergestellt wird, weil keine Energie gespart werden muß. Solche Karten können nicht unbemerkt über Entfernung in ihren Speichern verändert werden, da sie in ein Terminal eingebracht werden müssen. Mit dem Einbringen einer Karte in eine spezifische Umgebung werden bereits einige Funktionsblöcke in Betrieb gesetzt und andere stillgelegt oder bleiben stillgelegt. Mit dem Einbringen der Karte in einen Leser sollen zuverlässige Arbeitsbedingungen der Karte geschaffen werden.The various system states of the circuit blocks can be selectively effective or shut down. This allows sensitive data to be protected from remote attacks in contact-free mode of operation that are not authorized by the card holder. Furthermore, as little energy as possible is consumed in the contactless operating mode, the full functionality being produced in the operating mode according to IS 7816 because no energy has to be saved. Such cards cannot be changed in their memories unnoticed by distance since they have to be inserted into a terminal. When a card is inserted into a specific environment, some function blocks are put into operation and others are shut down or remain shut down. By inserting the card into a reader, reliable working conditions of the card are to be created.

Die Figur stellt eine erfindungsgemäße Lösung in einem Blockschaltbild vor. Die Karte hat auf der im Bild rechten Seite ein solches Kontaktfeld 3 (entsprechend der DE-C-39 35 364, Teil 3) aus Kontakten, wie es nach IS 7816 üblich ist. Auf der linken Seite des Bildes ist eine magnetische Antenne 4 (entsprechend der DE-C-39 35 364, Teil 4 oder 5) gezeigt, wie sie Gegenstand der Norm IS 10536 oder IS 14443 ist. Eine weitere magnetische Antenne 5 (entsprechend der DE- C-39 35 364, Teil 5 oder 4) kann als Option nach IS 1056 betrieben werden. Eine weitere Option ist eine elektrische Antenne 6, ebenfalls nach IS 10536, die aus Gründen der Symmerie paarig vorhanden ist. Die an den Antennen 4, 5, 6 stehenden Signale können durch Funktionsblöcke 1 (entsprechend der DE-C-39 35 364, Teil 2.1.4) so umgewandelt werden, daß sie an der, gegebenfalls auch nur virtuellen, Schnittstelle 7 die Norm IS 7816 erfüllen; die Schnittstelle 8 gegenüber erfüllt die Norm IS 7816 ohnehin.The figure presents a solution according to the invention in a block diagram. The card has on the right side in the picture such a contact field 3 (corresponding to DE-C-39 35 364, part 3) of contacts, as is customary according to IS 7816. On the left side of the picture, a magnetic antenna 4 (corresponding to DE-C-39 35 364, part 4 or 5) is shown as it is the subject of the IS 10536 standard or IS 14443. Another magnetic antenna 5 (according to DE-C-39 35 364, part 5 or 4) can be operated as an option according to IS 1056. Another option is an electrical antenna 6, also according to IS 10536, which is provided in pairs for reasons of symmetry. The signals at the antennas 4, 5, 6 can be converted by function blocks 1 (corresponding to DE-C-39 35 364, part 2.1.4) in such a way that they conform to the IS standard at the, possibly also only virtual, interface 7 Meet 7816; the interface 8 opposite meets the standard IS 7816 anyway.

Das Ergebnis der Umwandlung in dem AC/DC-Wandler 1, insbesondere ein Gleichrichter mit Puffer und Begrenzer, ist eine Gleichspannung (entsprechend der DE-C-39 35 364, Ul) auf der Leitung 9 und ein, zum Teil bidirektionaler, Daten-/Steuerbus 10 (entsprechend der DE-C-39 35 364, K1...K5).The result of the conversion in the AC / DC converter 1, in particular a rectifier with buffer and limiter, is a direct voltage (according to DE-C-39 35 364, Ul) on line 9 and a, in part bidirectional, data / Control bus 10 (according to DE-C-39 35 364, K1 ... K5).

Diesen Leitungen entsprechen an der Schnittstelle 8 die Leitung 11 der Gleich¬ spannung Vcc nach IS 7816 (entsprechend der DE-C-39 35 364, U2) und wiederum ein Bus 12 (entsprechend der DE-C-39 35 364, II...15). Die Busse 10 und 12 müssen nicht aus fünf Leitungen bestehen: Die Norm 7816 läßt auch mehr oder weniger zu.At the interface 8, these lines correspond to the line 11 of the DC voltage Vcc according to IS 7816 (corresponding to DE-C-39 35 364, U2) and in turn a bus 12 (corresponding to DE-C-39 35 364, II .. .15). The buses 10 and 12 do not have to consist of five lines: the standard 7816 also allows more or less.

Wie in der EP 0534 559 AI unverbindlich angedeutet, kann insbesondere die Option mit der Antenne 4 auch doppelt auftreten, wodurch auch die Schnitt¬ stelle 7 zweimal auftreten kann. Alle weiteren Kombinationen von Optionen sollen sich an einer Schnittstelle(n) 7 darstellen lassen, weshalb für die Beschreibung des Erfindungsgedankens die Berücksichtigung einer einzigen Schnittstelle 7 genügt .As indicated in EP 0534 559 A1 without obligation, the option with the antenna 4 in particular can also occur twice, as a result of which the interface 7 can also occur twice. All other combinations of options should be able to be represented at one interface (s) 7, which is why a single interface 7 is sufficient for the description of the inventive concept.

Zwischen den Schnittstellen 7 und 8 befinden sich Funktionsblöcke, die insbe¬ sondere zusammen mit den Blöcken 1 und 2 sowie ihren Verbindungsleitungen 9,10,13,14 etc. auf einem einzigen Chip (entsprechend der DE-C-39 35 364, Teil 2) oder verschiedenen Chips implementiert sein können. Der Natur der Chip- Konstruktion entsprechend, müssen die gezeigten Funktionsblöcke nicht als physikalisch existente Hardware verstanden werden. Es ist sinnvoller, sie als begriffliche Funktionselemente zur Lösung der Aufgabe zu sehen.Between the interfaces 7 and 8 there are function blocks, in particular together with the blocks 1 and 2 and their connecting lines 9, 10, 13, 14 etc. on a single chip (in accordance with DE-C-39 35 364, part 2 ) or different chips can be implemented. In accordance with the nature of the chip construction, the functional blocks shown need not be understood as physically existing hardware. It makes more sense to see them as conceptual functional elements for solving the task.

Die typische Aufgabe einer solchen Karte - von der die Erfindung ausgeht - ist es insbesondere, Daten in Speichern 15, 16 bereitzubehalten. Diese Speicher behalten bestimmungsgemäß ihren Inhalt auch dann bei, wenn sie nicht mit Energie versorgt werden, mögliche Implementierungen hierfür sind insbesondere EEPROMs oder FRAMs. Der Zugang zu diesen Daten wird durch Steuerwerke 17, 18 verwaltet, die insbesondere mikroprogrammierte Schaltwerke und/oder Mikrorechner oder sonstige Datenverarbeitungsfunktionen sein können .The typical task of such a card - from which the invention is based - is in particular to keep data in memories 15, 16 ready. As intended, these memories retain their content even if they are not included Energy is supplied, possible implementations for this are in particular EEPROMs or FRAMs. Access to this data is managed by control units 17, 18, which can in particular be microprogrammed switching units and / or microcomputers or other data processing functions.

Die Speicher 15, 16 und Steuerwerke 17, 18 verbrauchen Hilfsenergie, um wirksam sein zu können. Wie bereits erwähnt, kann es sinnvoll sein, beim Betrieb der Karte von der linken Seite im Bild aus Energie zu sparen, während es von der rechten Seite im Bild aus nicht erforderlich ist. Die Karte besitzt nun ein weiteres Steuerwerk 19 im Sinne eines Betriebsartstellers, das den Zugang der Steuerwerke 17,18 mitsamt ihren Speichern 15,16 in Abhängigkeit von bereits erwähnter Einbringung der Karte in eine kommunikationsfähige Umgebung (Terminal) reglementiert. Der Begriff des regelungstechnischen Stellers in „Betriebsartsteller" 19 (englisch MODE MANAGER) soll assoziieren, daß vermittels der logischen Stellgröße physikalischer Einfluß auf die Strecke ausgeübt wird. Der Betriebsartsteller 19 schaltet nicht nur logische Zustände, sondern auch Energie. In seiner allgemeinsten Form ist der Betriebsartsteller ein abstraktes Gebilde, dessen konkrete Ausformung von den aktuellen technischen Anforderungen bestimmt wird.The memories 15, 16 and control units 17, 18 consume auxiliary energy in order to be effective. As already mentioned, it can make sense to save energy when operating the card from the left side in the image, while it is not necessary from the right side in the image. The card now has a further control unit 19 in the sense of an operating mode selector which regulates the access of the control units 17, 18 together with their memories 15, 16 depending on the introduction of the card mentioned above into a communication-capable environment (terminal). The concept of the control-related actuator in “mode controller” 19 (English MODE MANAGER) is intended to associate that physical influence is exerted on the route by means of the logical manipulated variable. The mode controller 19 not only switches logic states but also energy. In its most general form it is Operating mode controller is an abstract structure, the specific shape of which is determined by the current technical requirements.

Für die Versorgung der Blöcke 15,16,17,18 benutzt der Betriebsartsteller 19 die Leitungen 20,21. Die Leitung 22 versorgt den Modulator/Demodulator (MODEM) 2. Diese Leitung ist nicht Bestandteil der Schnittstelle 7 nach IS 7816. Der Betriebsartsteller 19 versorgt nicht nur über die Leitung 21 die Blöcke 15,17, sondern über die Leitung 22 auch die ebenfalls auf Hilfsenergie angewiesene Signal- Vor/Nachverarbeitung 2.The mode controller 19 uses the lines 20, 21 to supply the blocks 15, 16, 17, 18. The line 22 supplies the modulator / demodulator (MODEM) 2. This line is not part of the interface 7 according to IS 7816. The mode controller 19 not only supplies the blocks 15, 17 via the line 21, but also the lines 15 via the line 22 Signal pre / post processing instructed by auxiliary power 2.

Zwischen den Steuerwerken 17 und 18 befindet sich noch die Datenverbindung 23, damit die gesamte Einrichtung in der jeweiligen Betriebsart auch bestim- mungsgemäß Daten hin- und/oder herschieben kann. Zusammen mit den äußeren Datenleitungen der Busse 10 und 12 lassen sich in dieser Anordnung insbesondere Daten vom Kontaktfeld 3 über die Leitung 12 und das Steuerwerk 18 in den Speicher 16 schreiben, insbesondere zeitversetzt vom Speicher 16 durch das Steuerwerk 18 und die Datenverbindung 23 und das Steuerwerk 17 nach dem Block 15 verlegen und wiederum insbesondere zeitversetzt vom Block 15 durch das Steuerwerk 17 über die Verbindungsleitung 10, MODEM 2 und AC/DC-Wandler 1 zur magnetischen Antenne 4 transportieren. Erfindungswesentlich ist nun das Anzapfen der Busse 10 und 12 zum Zweck der Beeinflussung des Betriebsartstellers 19. Hierzu soll ein willkürliches Beispiel dienen: Der Karteninhaber gibt an 3 ein Paßwort ein, dieses wird in 19 geprüft. Wenn es korrekt ist, versorgt der Betriebsartsteller 19 über 21 den 17 und 15 mit Energie. Dann kann der 18 Daten aus 3 über 23 und 17 nach 15 transportieren. In dieser Betriebsart macht es keinen Sinn, auch noch über 22 den 2 zu versorgen. Das ist der Grund für die individuelle Existenz der Leitung 22. Es soll aber nicht ausgeschlossen werden, daß das Potential der Leitung 22 mit dem der Leitung 9 identisch sein kann, wenn der Implementierer das für richtig hält.The data link 23 is still located between the control units 17 and 18, so that the entire device can also move data back and / or forth in the respective operating mode in accordance with the regulations. Together with the outer data lines of the buses 10 and 12, in this arrangement, in particular data from the contact field 3 can be written into the memory 16 via the line 12 and the control unit 18, in particular with a time delay from the memory 16 through the control unit 18 and the data connection 23 and the control unit 17 move to block 15 and again in particular time-shifted from block 15 through control unit 17 via connecting line 10, MODEM 2 and AC / DC converter 1 to magnetic antenna 4. The tapping of buses 10 and 12 is now essential to the invention for the purpose of influencing operating mode selector 19. An arbitrary example is to serve here: the cardholder enters a password at 3, this is checked in 19. If it is correct, the mode selector 19 supplies energy via 21, 17 and 15. Then the 18 can transport data from 3 to 23 and 17 to 15. In this operating mode, it makes no sense to supply the 22 via the 2. This is the reason for the individual existence of line 22. However, it should not be ruled out that the potential of line 22 may be identical to that of line 9 if the implementer considers this to be correct.

Oder: Die Karte ist in ein hochfrequentes Magnetfeld eingebracht, wodurch 1 über 9 den Betriebsartsteller 19 aufweckt und dieser über 22 den 2 versorgt. Der Karteninhaber gibt nun an 4 ein Paßwort ein. Dieses wird über 13,2 und 10 an 19 geleitet und in 19 geprüft. Bei Übereinstimmung mit dem Sollwort versorgt 19 über 21 den 17 und 15 mit Energie. Jetzt kann der Karteninhaber sich der Daten in 15 bedienen. Um in dieser Betriebsart Energie zu sparen, wird der 19 nicht den 18 und 16 versorgen.Or: The card is inserted into a high-frequency magnetic field, whereby 1 over 9 wakes up the mode selector 19 and supplies it via 22 the 2. The cardholder now enters a password at 4. This is routed via 13, 2 and 10 to 19 and checked in 19. In accordance with the target word, 19 supplies 21 to 17 and 15 with energy. The cardholder can now use the data in 15. In order to save energy in this operating mode, the 19 will not supply the 18 and 16.

Die Erfindung gibt sich nun nicht damit zufrieden, daß all diese möglichen und zahlreichen Betriebsarten durch Ausfall der Energiequelle an entweder 7oder 9 bzw. 11 in den Ruhezustand zurückfallen. Dies ist in einer Kategorie der möglichen Ausgestaltungen zwar beansprucht. In einer anderen Kategorie ist zusätzlich beansprucht, daß die einmal eingestellte Betriebsart auch über den Energieausfall hinaus so lange erhalten bleiben kann, bis nach erneuter Energie¬ zufuhr und Eingabe von Information über 3 oder 4 die Betriebsart geändert werden kann. Zusammen mit der vorerwähnten Anzapfung der Daten wird der Betriebsartsteller 19 derartig vielseitig, daß dem Implementierer eine erhebliche Auswahl von Gestaltungsmöglichkeiten der Karte für ihren jeweiligen Verwen- dungszweck offensteht.The invention is now not satisfied with the fact that all these possible and numerous operating modes fall back into the idle state due to failure of the energy source at either 7 or 9 or 11. This is claimed in a category of possible configurations. Another category also claims that the operating mode once set can be retained even after the power failure until the operating mode can be changed after renewed energy supply and input of information about 3 or 4. Together with the above-mentioned tapping of the data, the operating mode selector 19 becomes so versatile that the implementer has a considerable choice of design options for the card for its respective purpose.

Gewerbliche Anwendbarkeit:Industrial applicability:

Die Erfindung ist höchst vorteilhaft in Chipkarte (Smart Card) anwendbar, die entweder kontaktbehaftet oder kontaktfrei arbeiten. Die Karte ist vorteilhaft weitestgehend falschungs- und „abhörsicher". In der kontaktfreien Betriebsart sind sensible Daten gegen solche Angriffe von ferne geschützt, die nicht durch den Inhaber der Karte autorisiert sind. The invention can be used with great advantage in chip cards (smart cards) which operate either with contacts or without contacts. The card is advantageously largely error-proof and "bug-proof". In contact-free mode, sensitive data is protected from remote attacks that are not authorized by the card holder.

Claims

Patentansprüche: Claims: 1. Chipkarte (Smart Card), die wenigstens einen elektronischen Chip, ein Kontaktfeld mit innerhalb eines externen Lese- und/oder Schreibgerätes (Terminal) galvanisch zu kontaktierenden Kontakten, Spulen und/oder Konden¬ satoren sowie wenigstens einen Speicher, entweder zum galvanischen oder nichtgalvanischen Energie- und Datenaustausch mit dem Lese- und/oder Schreibgerät , enthält, wenigstens ein Chip sowohl an die Kontakte, wie auch an die Spulen und/oder an die Kondensatoren angeschlossen ist, wobei die Plastikkarte entweder über die Kontakte oder die Spulen und/oder die Konden¬ satoren mit dem Lese-und/oder Schreibgerät in Energie- und Datenaustausch tritt und dadurch entweder kontaktbehaftet oder kontaktfrei zu arbeiten imstande ist, dadurch gekennzeichnet, daß die Wahl der jeweiligen Betriebsart über das augenblickliche Vorhandensein einer jeweiligen Energieversorgung hinaus durch zusätzliche logische Bedingungen beeinflußt werden kann.1. Smart card, the at least one electronic chip, a contact field with contacts to be galvanically contacted within an external reading and / or writing device (terminal), coils and / or capacitors, and at least one memory, either for galvanic or non-galvanic energy and data exchange with the reading and / or writing device, contains at least one chip connected to the contacts as well as to the coils and / or to the capacitors, the plastic card either via the contacts or the coils and / or the capacitors with the reading and / or writing device enters into energy and data exchange and is thereby able to work either in contact or in a contact-free manner, characterized in that the choice of the respective operating mode goes beyond the instantaneous presence of a respective energy supply by additional logic Conditions can be influenced. 2. Chipkarte nach Anspruch 1, dadurch gekennzeichnet, daß die Energieversorgung aus dem nichtgalvanischen Weg für die Wahl der Betriebsart mit wenigstens einer logischen Bedingung verknüpft ist;2. Chip card according to claim 1, characterized in that the energy supply from the non-galvanic path for the selection of the operating mode is linked to at least one logical condition; 3. Chipkarte nach Anspruch 2, dadurch gekennzeichnet, daß die logische Bedingung für die Wahl der Betriebsart insbesondere eine logische NULL ist.3. Chip card according to claim 2, characterized in that the logical condition for the selection of the operating mode is in particular a logical ZERO. 4. Chipkarte nach Anspruch 1, dadurch gekennzeichnet, daß die Energieversorgung aus dem galvanischen Weg für die Wahl der Betriebsart mit wenigstens einer logischen Bedingungen verknüpft ist.4. Chip card according to claim 1, characterized in that the energy supply from the galvanic path for the selection of the operating mode is linked to at least one logical conditions. 5. Chipkarte ach Anspruch 4, dadurch gekennzeichnet, daß die logische Bedingung für die Wahl der Betriebsart eine Informations¬ kombination als Zugangsschlüssel ist.5. Chip card according to claim 4, characterized in that the logical condition for the selection of the operating mode is an information combination as an access key. 6. Chipkarte nach Anspruch 1, dadurch gekennzeichnet, daß der Betriebsartensteller unter Verzicht auf eine funktionslose Ruhelage in der sich ohne jede Energieversorgung zwangsläufig einstellenden Ruhelage einen solchen Zustand einnimmt, der genutzt werden kann. 6. Chip card according to claim 1, characterized in that the mode selector assumes such a state, which can be used, without a functionless rest position in the rest position which inevitably occurs without any energy supply. 7. Chipkarte nach Anspruch 6, dadurch gekennzeichnet, daß der Betriebsartensteller seine bestimmungsgemäße Funktion dadurch erlangt, daß an dem von dieser Funktion betroffenen Chipkartenteil die Energie¬ versorgung angelegt wird und umgekehrt.7. Chip card according to claim 6, characterized in that the mode selector achieves its intended function in that the power supply is applied to the chip card part affected by this function and vice versa. 8. Chipkarte nach Anspruch 4, dadurch gekennzeichnet, daß der Betriebsartensteller ohne jede Energieversorgung einen solchen Zustand einnimmt, der keiner weiter Funktion dient.8. Chip card according to claim 4, characterized in that the mode selector assumes such a state without any energy supply that serves no further function. 9. Chipkarte nach Anspruch 8, dadurch gekennzeichnet, daß die zweckbestimmte Funktion sich dadurch einstellt, daß eine logische Bedingung in Form einer Informationskombimation als Zugangsschlüssel erforderlich ist.9. Chip card according to claim 8, characterized in that the intended function arises in that a logical condition in the form of an information combination is required as an access key. 10. Chipkarte nach Anspruch 9, dadurch gekennzeichnet, daß der Betriebsartensteller in seinen Ruhezustand zurückfällt, sofern die Energieversorgung endet und kein(e) zusätzliche(r) Befehl(e) benötigt werden.10. Chip card according to claim 9, characterized in that the mode selector falls back into its idle state, provided the power supply ends and no (e) additional (r) command (s) are required. 11. Einrichting nach Anspruch 6 und 8, dadurch gekennzeichnet, daß der Betriebsartensteller für den Rückfall in seinen Ruhezustand neben der Beendigung der Energieversorgung wenigstens einen zusätzlichen Befehl benötigt.11. Einrichting according to claim 6 and 8, characterized in that the mode selector for the fall back to its idle state in addition to the termination of the power supply requires at least one additional command. 12. Einrichtung nach Anspruch 6, dadurch gekennzeichnet, daß die zweckbestimmte Funktion das Anlegen einer Informationskombination als Zugangsschlüssel erfordert.12. The device according to claim 6, characterized in that the dedicated function requires the creation of an information combination as an access key. 13. Chipkarte nach Anspruch 8, dadurch gekennzeichnet, daß der Einrichtungssteil permanent unzugänglich gemacht werden kann, sobald bestimmte Umstände das erfordern. 13. Chip card according to claim 8, characterized in that the furnishing part can be made permanently inaccessible as soon as certain circumstances require it.
PCT/DE1996/001587 1995-08-27 1996-08-27 Smart card with a chip, contact field, coils and/or capacitors and a storage element for galvanic or non-galvanic energy and data exchange with a read and/or write device WO1997008929A2 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
AU13645/97A AU1364597A (en) 1995-08-27 1996-08-27 Smart card with a chip, contact field, coils and/or capacitors and a storage element for galvanic or non-galvanic energy and data exchange with a read and/or write device

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
DE1995131275 DE19531275C2 (en) 1995-08-27 1995-08-27 Smart card
DE19531275.9 1995-08-27

Publications (2)

Publication Number Publication Date
WO1997008929A2 true WO1997008929A2 (en) 1997-03-13
WO1997008929A3 WO1997008929A3 (en) 1997-06-26

Family

ID=7770350

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/DE1996/001587 WO1997008929A2 (en) 1995-08-27 1996-08-27 Smart card with a chip, contact field, coils and/or capacitors and a storage element for galvanic or non-galvanic energy and data exchange with a read and/or write device

Country Status (3)

Country Link
AU (1) AU1364597A (en)
DE (1) DE19531275C2 (en)
WO (1) WO1997008929A2 (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2001099039A1 (en) * 2000-06-23 2001-12-27 Elva Sa Method for selecting an operating mode for a chip card and card therefor
EP1513098A2 (en) 2003-09-03 2005-03-09 STMicroelectronics, Inc. Method and apparatus for a USB and contactless smart card device
US6883103B2 (en) * 2000-05-31 2005-04-19 Koninklijke Philips Electronics N.V. Data carrier for the adaptation of a consumption time interval to the power consumption of the data carrier

Families Citing this family (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
GB2339044B (en) * 1998-03-02 2003-06-04 Lexar Media Inc Flash memory card with enhanced operating mode detection and user-friendly interfacing system
US6182162B1 (en) * 1998-03-02 2001-01-30 Lexar Media, Inc. Externally coupled compact flash memory card that configures itself one of a plurality of appropriate operating protocol modes of a host computer
DE10360346A1 (en) * 2003-12-22 2005-07-14 Giesecke & Devrient Gmbh Portable data carrier
DE102006002514A1 (en) * 2006-01-16 2007-07-19 Atmel Germany Gmbh Method for wireless data transmission and transponders
US7994921B2 (en) 2006-01-16 2011-08-09 Atmel Corporation Method for wireless data transmission and a transponder
DE102006038877B4 (en) * 2006-08-18 2018-01-25 Giesecke+Devrient Mobile Security Gmbh Tamper-proof unit, procedure for a tamper-proof unit and storage medium

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPS63198567U (en) * 1987-06-12 1988-12-21
DE3935364C1 (en) * 1989-10-24 1990-08-23 Angewandte Digital Elektronik Gmbh, 2051 Brunstorf, De
DE4310334A1 (en) * 1993-03-31 1994-10-06 Walter Holzer Chip (smart) card with which contact is made
DE4337202A1 (en) * 1993-10-30 1995-05-04 Licentia Gmbh Mobile data carrier

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6883103B2 (en) * 2000-05-31 2005-04-19 Koninklijke Philips Electronics N.V. Data carrier for the adaptation of a consumption time interval to the power consumption of the data carrier
WO2001099039A1 (en) * 2000-06-23 2001-12-27 Elva Sa Method for selecting an operating mode for a chip card and card therefor
FR2810766A1 (en) * 2000-06-23 2001-12-28 Elva Sa METHOD FOR SELECTING A MODE OF OPERATION OF A CHIP CARD, AND CARD FOR IMPLEMENTING THE METHOD
EP1513098A2 (en) 2003-09-03 2005-03-09 STMicroelectronics, Inc. Method and apparatus for a USB and contactless smart card device
EP1513098A3 (en) * 2003-09-03 2008-08-06 STMicroelectronics, Inc. Method and apparatus for a USB and contactless smart card device
US7690570B2 (en) 2003-09-03 2010-04-06 Stmicroelectronics, Inc. Method and apparatus for a USB and contactless smart card device

Also Published As

Publication number Publication date
DE19531275A1 (en) 1997-05-07
WO1997008929A3 (en) 1997-06-26
DE19531275C2 (en) 1998-04-09
AU1364597A (en) 1997-03-27

Similar Documents

Publication Publication Date Title
EP1376460B1 (en) Chip card
EP0846307B1 (en) Chip card
DE3935364C1 (en)
DE3041109A1 (en) IDENTIFICATION ELEMENT
EP0748485A1 (en) Chip card
DE69015585T2 (en) Contact chip card reader.
WO2001031577A1 (en) Data carrier and method for reading out information
WO1993007555A1 (en) Smart-diskette read-write device
EP0815530B1 (en) Method and device for adapting a chip card to different card terminals
WO1997008929A2 (en) Smart card with a chip, contact field, coils and/or capacitors and a storage element for galvanic or non-galvanic energy and data exchange with a read and/or write device
DE3336717A1 (en) METHOD AND DEVICE FOR CONTACTLESS, ELECTROMAGNETIC TRANSFERRING OF CONTROL COMMANDS AND DATA
EP0920684B1 (en) Chip card with a personalization memory and a process for the input and output of data
DE19542262A1 (en) Portable data interface with chip data store and processor
EP1340191B1 (en) Voltage regulator circuit for chipcard ics
DE2626619A1 (en) MAGNETIC CARD READING SYSTEM FOR INDIRECT OPERATION THAT CAN WORK LIKE IN DIRECT OPERATION
DE19653409C2 (en) Mobile, machine-readable information carrier
EP1072013A1 (en) Chip card with an electronic blocking function
DE4405570C2 (en) Electronic chip card access control system for common standard chip cards with electronic signature
DE19752695A1 (en) Electronic switching element for blocking electronic parts in a chip card
DE2418982A1 (en) PLUG-IN PROGRAM MEMORY
DE19611072C2 (en) Chip card that can be operated both contact and contactless
DE60125893T2 (en) "Smart card" interface device for controlling signal sequences
DE4337202A1 (en) Mobile data carrier
EP1194887A1 (en) Type plate comprising a storage device
DE19800798A1 (en) Smart card with non contact coupling

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AU BR CA CN CZ HU JP KR MX NO NZ PL RU SG TR US AM AZ BY KG KZ MD RU TJ TM

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): KE LS MW SD SZ UG AT BE CH DE DK ES FI FR GB GR IE IT LU MC NL PT SE BF BJ CF CG CI CM GA GN ML MR NE SN TD TG

DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
AK Designated states

Kind code of ref document: A3

Designated state(s): AU BR CA CN CZ HU JP KR MX NO NZ PL RU SG TR US AM AZ BY KG KZ MD RU TJ TM

AL Designated countries for regional patents

Kind code of ref document: A3

Designated state(s): KE LS MW SD SZ UG AT BE CH DE DK ES FI FR GB GR IE IT LU MC NL PT SE BF BJ CF CG CI CM GA GN ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
122 Ep: pct application non-entry in european phase
NENP Non-entry into the national phase

Ref country code: CA

点击 这是indexloc提供的php浏览器服务,不要输入任何密码和下载