INTERNET IC CARD SYSTEM
The present application is related to co-pending Provisional Patent
Application No. 60/083,833 of WEI CHANG, filed 05/01/98, entitled "INTERNET IC
CARD SYSTEM", and based on which priority is herewith claimed under 35 U.S.C.
119(e) and the disclosure of which is incorporated herein by reference in its
entirety.
BACKGROUND OF THE INVENTION
1. Field of the Invention. The present invention relates to integrated circuit (IC) cards and more particularly to information processing IC cards, or Smart cards, adapted for use in interacting with the Internet and other information processing networks.
2. Description of the Prior Art. With the rapid development of modern micro-electronics technology, information storage and processing means using integrated circuits in the form of IC cards have effected almost every aspect of daily life. Almost all industries today, such as the financial, transportation, postal, telecommunications, commerce, education, etc., use some kind of IC cards. The IC card, since its invention in the early 1970s, has evolved in functionality from a basic information storage device, normally called an IC Memory Card, to an information-processing-capable device, normally called an
Intelligent or Smart IC Card, hereinafter referred to as a "Smart Card".
In order to further the universal commercial use of Smart Cards, a
global industrial standard has been established by the International Standards
Organization (ISO) setting forth unified specifications for their manufacture,
1
utilization, and application. In particular, the ISO-standard-7816 covers the non- application-related specifications for Smart Cards including their physical
characteristics, input/output (I/O) contact dimensions and locations, electronic signaling and information transfer protocols, and registering procedures, while the ISO-standard-9992 covers the application-related specifications such as concept, system architecture, functionality, command and control, public and encrypted data exchange, as well as reliability and safety verification, etc. A typical Smart Card hardware arrangement is shown in Figure 1 and includes a standard ISO contacting interface 80, e.g., ISO-7816 contacting points, an Input/Output connection port with an I/O bus 82 connected to an internal bus 84, which is coupled to an EEPROM, ROM, and RAM, as well as a Micro-Processing Unit (MPU), a Coding Arithmetic Unit (CAU), and Security Logic (SL).
Following from this standardization has come market acceptance and expansion of use, so that the number of Smart Cards issued to individual users by different industries has grown tremendously. However, this growth has gradually degraded the convenience of each individual Smart Card issued since a final user may experience confusion and drawbacks due to the number and differences resulting from diversified card manufacturing, applications, and distribution caused by heightened competition. While over 1600 patents have been granted world-wide on Smart-Card-related inventions since the original
invention was independently conceived by Roland Moreno of France and M.
Arimura of Japan, most of the patents issued in recent years have been directed to
improvements in design and technology enhancement for particular single-user
Smart Cards. These improvements involve new applications, physical interconnecting capabilities, information storage enhancement, signal processing advancement, and data transmission and receiving functionality such as
confidentiality, integrity, accessibility, authenticity and durability, as disclosed variously in PCT, WO 93/20538, Oct. 1993; 94/11969, May 1994; 96/15603, May 1996; 96/25814, Aug. 1996; 97/16896, May 1997; and 97/16904, May 1997. It will be seen that few of these disclosures address the problem posed by multiple Smart Cards issued by the same or different issuers and manufacturers for similar or different application purposes.
3. Problem to be Solved. It is therefore a problem in the art to provide a Smart Card that is versatile in use among a number of users and which is readily adaptable for provision by a number of different issuers and manufacturers. 4. Objects. It is accordingly an object of the present invention to provide a Smart Card design that offers versatility of use and applications for many users and various issuers and manufacturers.
It is another object of the invention to provide a Smart Card architecture that offers versatility in processing capabilities and enhancement in
functionality for many users and various issuers and manufacturers.
It is a further object of the invention to provide a Smart Card system
that offers high levels of information security and processing power for Internet and electronic commerce applications.
SUMMARY OF THE INVENTION
The present invention is directed to alleviating the problem of
versatility among Smart Cards by providing an improved architecture for Smart Cards enabling new and wider processing capabilities by integrating any number of Smart Cards into a single IC card (hereinafter referred to as an l2C Card, where l2C stands for the inter-networking of smart ICs). The improved architecture involves a Card and a structured system, an l2C Card system, devised for the inter- networking and integration of multiple independent Smart Card ICs on the same Card, an l C Card, which system consists in hardware of three main parts: i) a micro-server unit; ii) an integrating and inter-networking Smart Card IC circuit (l2C circuit); and iii) an input/output circuit and system. Using the micro-server, one such l2C Card can integrate any number of independent Smart Card ICs, manufactured by the same or different vendors and/or issued for the same and different applications, on a single card. In doing such integration, with or without changing any data structure or encryption coding process of any existing Smart Card capability, the l2C Card can absolutely maintain the various functions of confidentiality, integrity, accessibility, authenticity, and durability of each and every individual Smart Card IC issued within the l2C Card, as well as maintaining and complying with industrial standards. More importantly, the l2C Card of the invention enhances the operation of the functions of confidentiality, integrity,
accessability, authenticity, and durability of the individual Smart Card ICs while allowing individual users, issuers, and manufacturers to expand their current
operations onto the Internet and other information processing network
architectures. The invention is fundamentally compatible with the existing operation of Smart Cards, while providing an open architecture enabling new
levels of business operating capabilities including secure data transactions and transmission functionality between and among different application providers, issuers and Smart Card IC manufacturers for multi-user, multi-access data processing operations, as well as enhancing secure data transmission and processing capabilities for both users and service providers in which any defined process can be strictly and confidentially controlled and monitored, at infinite states, by users, issuers, and manufacturers independently, jointly, or interactively.
BRIEF DESCRIPTION OF THE DRAWING
The present invention will be described in more detail below with reference to the accompanying drawings in which:
FIG. 1 is a schematic diagram illustrating the structural arrangement of a Smart Card IC of the prior art.
FIG. 2 is a schematic diagram illustrating the structural arrangement of an l2C Card IC in accordance with the present invention.
FIG. 3 is a diagrammatic representation of a typical l2C Card system architecture with one micro-server unit (MSU) and a subset of Smart Card ICs randomly arranged in accordance with the present invention.
FIG. 4 is a schematic diagram illustrating the structure of the MSU of FIG. 3 in accordance with the present invention.
FIG. 5 is a schematic diagram illustrating the structural arrangement of a printed circuit board (PCB) type of l2C Card system in accordance with the present invention.
FIG. 6 is a schematic diagram illustrating the structural arrangement of an integrated circuit type of l2C Card system in accordance with the present invention.
FIG. 7 is a diagrammatic representation illustrating the arrangement of an l2C Card Interface Device, i.e., IC Card Reader/Writer (R/W), in accordance
with the present invention, with respect to an l2C Card and a PC Workstation.
7
FIG. 8 is a schematic diagram illustrating the typical system architecture for an l2C Input/Output Interface Circuit and l C Card Operating
System (COS) in accordance with the present invention for the arrangement in
FIG. 7. FIG. 9 is a diagrammatic representation of the code structure for an l2C Card Operating System (COS) command control signal in accordance with the present invention.
FIG. 10 is a diagrammatic representation of the code structure for the communication protocol between the l2C Card Interface Device, i.e., IC Card R/W, and the PC Workstation of FIG. 7, in accordance with the present invention. FIG. 11 is a diagrammatic flowchart of a typical COS algorithm for an l2C Card including the communication protocol between the l2C Card Interface
Device, i.e., IC Card R/W, and the l2C Card of FIG. 8, in accordance with the present invention. FIG. 11A is a flowchart of a sub-routine of the COS algorithm of FIG.
11 in accordance with the present invention.
FIG. 12 is a diagrammatic flowchart of a typical communication protocol of IC card R/W for the l2C Card system of FIG. 8 in accordance with the
present invention. FIG. 13 is a diagrammatic flowchart of a typical COS algorithm of the
IC Card R/W, including the communication protocol between IC Card R/W and the
PC Workstation, in accordance with the present invention.
8
FIG. 14 is a diagrammatic flowchart of a typical COS algorithm of the PC Workstation, including the communication protocol between the PC
Workstation and the IC Card R/W, in accordance with the present invention.
DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENT
The present invention provides a solution to the multiple Smart Card issuing problem presented by the number of cards offered by different
manufacturers, such as Motorola, Texas Instruments, Catalyst and Atmel, Japan's NEC, OKI, Toshiba, and Hitachi, or European Siemens, Gemplus, Solatic, Schlumberger, Philips, and STM, and different application issuers such as banks and financial firms, transportation companies, and telecommunications corporations, as well as to the need to expand Smart Card applications into other information processing capable network systems. The invention solves the issuing problem by truly integrating all Smart Card ICs into a single IC card, again, referred to as an l2C Card, where l2C stands for the inter-networking of smart ICs.
In a typical Smart Card IC hardware architecture of the prior art, as shown in FIG. 1 , a set of contacting points 80 according to the ISO-7816 connecting point protocol is coupled through an Input/Output (I/O) connection port 82 to a bus 84 that communicates with a Microprocessing Unit (MPU), a Coding Arithmetic Unit (CAU), and Security Logic (SL), as well as an EEPROM, ROM, and RAM. By way of contrast, the system architecture of a typical l2C Card of the invention in hardware, is shown in Figures 2 and 3 and consists of three main parts: i) a micro-server unit (MSU) 90; ii) an integrating and inter-networking Smart Card circuit (l2C circuit) 91 including a set of Smart Card ICs (SCS = SC11 ( SC12, ...
SC1m, and SCn1, SCn2, ... SCnm); and iii) an input/output circuit and system 81.
More particularly, i) the micro-server unit (MSU) 90 with an external
10
input/output control interface (EI/OC) 90A and an internal input/output control interface (ll/OC) 90B as well as a movable central processing unit CPUV (MCPUV: where v c (1, 2, ..., V}) as shown in Figs. 2 - 4, controls, monitors, maintains,
secures and manages the routing application environment and the input/output accessing capability as well as all the pertinent functionality of the Smart Card ICs (SC,) on a l2C Card. For any subset Sk of Smart Card ICs (where the subset Sk is an element of the power set, P, and P has 2T elements, T being the total number of Smart Card ICs contained within the l2C Card, as a typical system structure such as shown in Figure 2, Sk = {SC,,: where i c {1 , 2, ..., n} and j c {1 , 2, ..., m}} Ξ
P, where k Ξ {1, 2, ..., 2T - 1}), the MSU 90 behaves as an inter-networking server
which connects the ISO-defined standard input/output signal lx 83 from the set of contacting points 80, and/or a non-standard signal input/output ly 86, to the Smart Card ICs 91 of the l2C Card through the internal bus 85 and their contacting points 80, I/O connection port 82, and bus 84. These inputs and outputs are coupled to the Smart Card ICs from an external interface device 81 using the l2C Card Operating System (COS) with an IC Card Reader/Writer (R/W) 92 connected to a computer, workstation, or server 93, through a controlled contacting or non- contacting interface system 80, 83, and 86 (the external devices with l2C COS and the controlled interface system together being referred to as an l2C Card Interface Device 81) and the MSU 90 which behaves like a security gate between the l2C
system 91 and the external network systems, as shown in Figure 3. Within each subset Sk, the Smart Card IC elements share common functional features that can
11
be defined and configured in accordance with application requirements and customer preferences, while the MSU can be designed to keep each and every
individual Smart Card IC data structure independent and intact, so that its confidentiality, integrity, accessibility, authenticity, and durability for related applications are preserved. All elements in the subset Sk of Smart Card ICs, SC^
(where i = 1 , 2, ..., n; j = 1 , 2 m; and n and m can be randomly arranged for T number of Smart Card ICs) have common application functional features that are defined by the IC manufacturers, application issuers, or users.
The MSU 90 provides an open and cross networking platform with both hardware and software architectures for the same or different Smart Card ICs that are designed, developed, and manufactured by their respective Smart Card IC manufacturers, application providers, or users in application specific fields. The MSU 90 interlaces and networks individual Smart Card ICs with common functional features within a subset Sk which can be configured and defined on-line or off-line using an l2C Card Interface Device 81 , including a computer, workstation, or server 93. By using the MSU 90 to filter, monitor, manage, secure and control input/output data and application resources for and among the Smart Card ICs of the l C circuit 91 , the MSU 90 enhances and expands the application capabilities and versatility of the l2C Card. For example, a printed circuit board (PCB) embodiment thereof, in the form of a PCB Box 87 and extendable contacts
88, is shown in FIG. 5, and an embodiment with an integrated circuit 89, is shown
in FIG. 6. The MSU 90 is adapted to provide the l2C Card with centralized
12
information processing, calculation, and system management capabilities such
that the network functions of hardware resources management, communication management, application control management, and safety control management can be achieved with a higher level of effectiveness and versatility. An additional level of network security control like the Firewall and De-Militarized Zone environment can be implemented in the MSU 90 with an accessing procedure for the selection of the individual Smart Card ICs defined by a user, application provider, or issuer. The common features for an existing Internet system or a local area network server can be applied and implemented in the MSU 90. Turning to the second part of the l2C Card system architecture ii) the integrating and inter-networking Smart Card circuit (l2C circuit 91) is a structured information-processing-capable network which, regardless of its physical means of connection such as the path coupled from points 80 through busses 82, 84, and 85, has the following characteristics. a) The l2C circuit network is designed to be a miniaturization of a local area network (LAN), such as on a printed circuit board (PCB) box 87 with extendable contacts or a non-contacting interface 88 as shown in Figure 5, or an integrated circuit on a card 89 as shown in Figure 6, or in other hardware. The network can be operated in the passive or active mode. When its functional mode is in the passive state, the network can only be operated and functioning using l2C
Card Interface Devices; and when its functional mode is active, the network can be
operated and functioning continually and interactively with self-power or other
13
power generating devices. The network possesses all the necessary properties
and applicable functions of a LAN. b) The circuit network behaves as a simple Internet when interfaced with other computer networks through l2C Card Interface Devices, including a computer terminal, or workstation, or application system server 93 as well as an IC card R/W 92 as seen in figs. 7 and 8. The network can be designed to handle, manage, and satisfy all requirements and specifications of an Internet system such as its information processing, managing, transmission, and control characteristics like TCP/IP protocols, peripheral device driver specifications, and networking environment managing specifications for information sharing, processing, and computing, etc. c) The network, typically, can monitor and memorize its past data accessing, processing, and network performance information whenever it is accessed by on-line or off-line, in either active or passive operating mode, while using or not using an l2C Card Interface Device 81. The information can be retrieved securely through l/Os 83, 86 and bus 85 and/or channels 94, 95, by authorized user and/or application providers from the MSU 90 of the l2C circuit 91 where the common data is shared and stored to enable instantaneous feedback
and control. d) The circuit network can be partitioned structurally so that its
network architecture can be reliably and securely re-organized and re-configured
by users and application providers such that the elements of the Smart Card ICs
14
within any subset Sk can be re-grouped into new subsets with common operational functions and features determined by application providers or users (see figs. 3 and 7 - 14). Without physically changing the l2C Card hardware, the network is re-
configurable by software in terms of the number of Smart Card IC elements in a LAN, such as the subset Sk, and/or in terms of the number of LANs, such as the number of subsets contained in an l2C circuit 91 , that can be accessed and interacted simultaneously by a user and/or application provider as shown in figs. 7 - 14. The network provides truly an open architecture for a controllable and configurable Internet system, which allows applications integration and business cooperation and alliance among application providers for the user. e) The individual Smart Card IC component as shown in FIG. 1 contained in any subset of an l2C circuit system seen in FIG. 3 is inherently independent and intact regarding its data structure, information processing capabilities and all functions of the Smart Card including its confidentiality, integrity, accessibility, authenticity and durability. The network guarantees the most secure features and capabilities of each Smart Card with networking capabilities. f) The capabilities and characteristics of the l2C circuit network for enhanced applications and Smart Card functions can be physically implemented in the l2C Card Operating System (COS) as shown in figs. 8 - 14. With the greater
performance and versatility of the l2C Card, the network provides challenging
opportunities in the design and development of hardware, such as the
15
embodiments shown in figs. 5 and 6, as well as of software for the COS to exceed and perfect the current Smart Card system. Specific applications of the invention involving preferred modes of operation will be described more fully below.
Finally, the third part of the l2C Card architecture iii) the input/output (I/O) circuit and system 81 , as shown in FIG. 3, is a physical system which, as seen in FIG. 7, consists of an IC Card R/W 92, an external network accessible terminal, such as a computer, workstation, or system server 93, as well as the appropriate l C COS shown in figs. 8 - 14, for completing and enabling maximum information flow with multiple input/output accesses between an l2C Card and an external network such as the Internet. The I/O circuit is part of the I/O system, or l2C Card Interface Device 81 , and may include an ISO defined interface and like coupling means, such as channels 94 and 95 shown in FIG. 8, which cooperate with one or more external Interface Devices and networks. The I/O system is a controlled interface system, such as P01 - P08 shown in FIG. 8, for coupling signals of external systems to the l2C system. It consists of hardware like the elements 92 - 95 and software means like P01 - P08 for enabling and controlling information flow and processing in a network connected environment for the l C system. One of the functions of the I/O system is enabling manufacturers to change the total number of Smart Card ICs on an l2C Card system 91 with the changing process under control while the system elements 92 and 93 are powered
ON, which function is called "hot-plug-in". The I/O system can be designed to
satisfy l2C application specifications such as the ISO-7816 standard for Smart
16
Cards and other requirements for completing its physical connection and enabling information processing, computation, and command control.
The present invention has been described in terms of general embodiments and combinations above, and will now turn to more specific
applications of the invention involving preferred modes of operation. A Two Layer Integrated l2C Card System
An l2C Smart Card of the integrated circuit type 89, such as shown in FIG. 6, can be designed as a two-layer integrated l2C Card System. Referring to figs. 2 - 4, the first layer may contain the MSU 90 and be defined as the server control layer, the second layer may contain the l2C circuit 91 and be defined as the application layer, and the signal bus 85 may connect both layers. The two layers are integrated into the same IC forming the l2C Card IC with an external I/O port connecting MSU 90 to contacting points 80 and channels 83 or 86.
The server control layer, with MSU 90, is designed to consist of a command control zone, a manufacturer coding (MC) zone (MCZ), and one fuse
(F1) like structure. The command control zone includes a CPU 90C, external circuitry contacts 80 and channels 83, 86, an external input/output control interface
(EI/OC) 90A and an internal input/output control interface (ll/OC) 90B as seen in
■ FIG. 4. The command control procedure and the process of the server control is accomplished by one of the following ways:
1) the l2C Card Operating System (COS) can be programmed and fused
directly into the ROM of the MSU 90 by the manufacturer while the l2C IC is
17
under design and production;
2) designing a fuse to be burned later to protect the content of the ROM for which the writing and programming of the l2C COS into the ROM of thr MSU
90 is allowed to be performed at a later time; and 3) using the EEPROM as the means for multiple erasures and programming of the l2C COS. The MCZ is used for l2C IC testing when the MC is readable before fusing F1 , since after the programming of MC information and fusing of F1 , the MCZ is no longer erasable. The application layer 91 , as shown in figs. 2 and 3, consists of multiple zones constituted by the independent Smart Cards SC^ (where i = 1 , 2, ..., n; j = 1 , 2, ..., m; and n and m can be randomly arranged for T number of Smart Card ICs) that are connected to internal bus 85 by leads Sy. These Smart Card ICs can be designed as regular Memory ICs, Encryption Logic Memory ICs, or CPU ICs. To enter this layer requires the verifications of both the first layer 90 and the user's security level. Even if this layer 91 is entered, the user is only allowed to go in one particular zone assigned by the manufacturer. In general, a specific zone or Smart Card is provided to a specific issuer. The issuer must obtain an Authorization Code (AC) for the particular zone from the manufacturer before he can go in the zone to perform the Personalization Operation (PO). Inside every zone there are two fuses. One is fused after the writing and programming of the
MC, and other one is fused after the PO. After fusing, all data are only readable
18
and not erasable.
Regarding applications, different types of Smart Cards are designed and used for different purposes such as telephone charges, store shopping, and banking operations. Memory IC and Encryption Logic Memory IC cards can be
easily designed and programmed. As for a CPU IC card, its IC-COS can be programmed and designed according to the methods used for programming the first layer l2C COS as described above. The l2C COS is the core of command and control for the first layer including the MSU 90. When an l2C Card is being developed and operated by a second issuer and further issuers, the purpose of the server control procedure in the first layer is to verify the identification (ID) and Operating Security Level (OSL) of the particular issuer and to decide whether or not to open the communication channel for the issuer to the IC Card R/W 92 and to the second layer 91 for PO.
The exact l2C Card operations will be explained with reference to the COS algorithms of the l2C Card, IC Card R/W 92, and Workstation or Server 93, as well as the communication protocols in channels 94 and 95 between IC Card R/W 92 and the l2C Card 89 and the PC Workstation 93, respectively, as illustrated in detail in figs. 9 - 14.
FIG. 9 illustrates the code structure for an l2C Card Operating System (COS) command control signal in accordance with the invention, where S
is the start signal bit for a COS command and control code, C is the detecting response and command signal bits, D is the data signal bits, A is the response
19
signal bit, R W is the read or write signal bit, and P is the stop signal bit for the COS command and control code.
FIG. 10 illustrates the code structure for the communication protocol
of channel 95 between the l2C Card Interface Device, i.e., IC Card R/W 92, and the PC Workstation 93 of FIG. 7, where ATR is the request-ready response control signal, R is the response signal bits, ST is the sum bits of total data being transmitted, C is the command bits before D which is the data signal bits, and CS is the check sum signal bits.
FIG. 11 is an operational flowchart of a typical COS algorithm for an l2C Card including the communication protocol of channel 94 between the l2C Card Interface Device, i.e., IC Card R/W 92, and the l2C Card of FIG. 8, where Cl is the issuer code, CN is the l2C Card serial number, CU is the user security code, RU is the verifying result of the user security code, CO is the Sy of Sk and other l2C Card COS and functional information. FIG. 11A is a flowchart of the sub-routines of the COS algorithm of
FIG. 11.
FIG. 12 is an operational flowchart of a typical communication protocol of the IC card R/W 92 for the l2C Card system of FIG. 8.
FIG. 13 is an operational flowchart of a typical COS algorithm of the IC Card R/W 92, including the communication protocol in channel 95 between IC Card R/W 92 and the PC Workstation 93.
FIG. 14 is an operational flowchart of a typical COS algorithm of the
20
PC Workstation 93, including the communication protocol of channel 95 between the PC Workstation 93 and the IC Card R W 92, where GUI is a graphic user
interface.
Using additional information encryption and encoding algorithms inside the first layer 90, the l2C Card system will provide a Smart Card with a very high level of security for electronic commerce applications. A Two Layer Hybrid l2C Card System
For the particular two-layer integrated l2C Card System described above, an example of its hardware variation in l2C Card design will now be described as a two-layer hybrid l2C Card System embodiment. As indicated with reference to figs. 2 - 4 the first layer of the two-layer hybrid l2C Card System, including the MSU 90, is defined as the server control layer, the second layer, with l2C circuit 91 , is defined as the application layer, and the signal bus 85 connects both layers. The two layers in this embodiment are separated into two ICs with one forming l2C circuit IC 91 and other one forming the MSU 90 including an external I/O port for connecting to contact points 80, and bus 83 or 86. Both ICs are connected through the signal I/O bus 85. All other parts including designs and application procedures are similarly constructed as in the two-layer integrated l2C Card System described above. With the hybrid l2C Card design, the issuer and
manufacturer can utilize the "hot-plug-in" function of the l2C system to broaden the
applications of electronic commerce.
While the present invention has been described in terms of specific
21
embodiments and combinations, it will be appreciated that the invention is not limited to the particular examples presented herein, and that the scope of the protection is defined in the attached claims.
22