(12) United States Patent
`Finkenzeller et al.
`
`(10) Patent No.:
`(45) Date of Patent:
`
`US 8,581,706 B2
`Nov. 12, 2013
`
`US008581706 B2
`
`(54) DATA STORAGEMEDIUMAND METHOD
`FOR CONTACTLESS COMMUNICATION
`BETWEEN THE DATA STORAGEMEDIUM
`AND AREADER
`
`(75) Inventors: Klaus Finkenzeller. Unterföhring (DE);
`Karl Eglof Hartel, München (DE);
`Denny Brandl, Eching (DE)
`
`(*) Notice:
`
`(73) Assignee: Giesecke & DeVrient GmbH, Munich
`(DE)
`Subject to any disclaimer, the term of this
`patent is extended or adjusted under 35
`U.S.C. 154(b) by 1210 days.
`12/304,653
`
`(21) Appl. No.:
`
`Jun. 12, 2007
`PCT/EP2007/005185
`
`(22) PCT Filed:
`(86). PCT No.:
`S371 (c)(1),
`Mar. 4, 2009
`(2), (4) Date:
`(87) PCT Pub. No.: WO2007/144149
`PCT Pub. Date: Dec. 21, 2007
`
`(65)
`
`(30)
`
`Prior Publication Data
`US 2009/O1992O6A1
`Aug. 6, 2009
`
`Foreign Application Priority Data
`
`Jun. 12, 2006 (DE) ......................... 10 2006 O27 200
`
`(51) Int. Cl.
`H04Q5/22
`(52) U.S. Cl.
`USPC ..... 34.0/10.41; 340/10.1; 340/10.2: 340/10.4:
`340/10.42
`
`(2006.01)
`
`(58) Field of Classification Search
`USPC ................. 340/10.1, 10.2, 10.4, 10.41, 10.42
`See application file for complete search history.
`
`
`
`(56)
`
`References Cited
`
`U.S. PATENT DOCUMENTS
`
`6.421, 196 B1* 7/2002 Takayama et al. .............. 360/71
`2004/0199.784 A1* 10, 2004 Irisawa et al. ......
`T13/200
`2005, 0007236 A1* 1/2005 Lane et al. .........
`... 340, 5.86
`2005/0066039 A1* 3/2005 Ayatsuka et al. .
`TO9,228
`2006, OO65731 A1* 3, 2006 Powell et al. ......
`... 235/451
`2006/0206343 A1* 9, 2006 Nakanishi et al. ................ 705/1
`2007/0274242 A1* 11/2007 Lamacraft et al. .....
`370,310
`2008/01098.99 A1* 5/2008 Rijnswou Van et al. ........ T26.21
`2009/024381.0 A1* 10/2009 Pendlebury et al. ......... 340,104
`
`FOREIGN PATENT DOCUMENTS
`
`8, 2004
`2, 2006
`
`1 450 299 A1
`EP
`WO WO 2006/010943 A1
`* cited by examiner
`Primary Examiner — Jennifer Mehmood
`Assistant Examiner — Andrew Bee
`(74) Attorney, Agent, or Firm — Bacon & Thomas, PLLC
`(57)
`ABSTRACT
`A method and a data carrier for contactless, in particular
`parallel, communication of a reading device with at least two
`communication-ready applications located on a portable data
`carrier. A first communication-readiness signal is generated
`for a first application and sent to the reading device, the signal
`having a first identification number that is assigned to the first
`application and indicates to the reading device the communi
`cation readiness of said first application, and a second com
`munication-readiness signal is generated and sent for a sec
`ond application, the second signal having a second
`identification number different from the first identification
`number, which is assigned to said second application and
`indicates to the reading device the communication readiness
`of said second application. The identification numbers simu
`late for the reading device the communication readiness of a
`data carrier in each case. The reading device thus has the
`impression of communicating with applications of two sepa
`rate data carriers.
`
`22 Claims, 4 Drawing Sheets
`
`Ex.1001
`APPLE INC. / Page 1 of 12
`
`

`

`U.S. Patent
`
`Nov. 12, 2013
`
`Sheet 1 of 4
`
`US 8,581,706 B2
`
`FG 1
`
`
`
`70
`
`Ex.1001
`APPLE INC. / Page 2 of 12
`
`

`

`U.S. Patent
`
`Nov. 12, 2013
`
`Sheet 2 of 4
`
`US 8,581,706 B2
`
`
`
`
`
`ssasouduol}oa|asJaleoeyep
`
`uoyeaiiddy:0oytooepoeJo(02)uogea||dde
`
`
`pessotP}uoealdde
`
` uoyeayjddeQ\$s9a0Jdu0I|99|8S
`
`
`
`
`
`
`wioneaydde214‘apue(z}pucoas“(9|)1SullpuosasJo}|eubisssaul|pea.uoedUNWUOSU!(9Qz)
`
`
`
`
`fajeiauab(gg)uoqeaiiddepuooaspue(0)Sy-UONRDIUNWWUOD‘0101
`
`
`
`
`Jo(o¢)woneoiddepulu)payesauab(97)uoneoiddeHOIReS“008
`
`
`
`
`UJIMUONOIUNWLUODUl“UOHEI|UNULUOD:0Z0|a01AapBUIPedY‘01.02
`
`
`pulyyJO)jeuBlsssaulpeaiUJIMUO!PEOIUNWLWOS
`
`
`-UONBOIUNUILUOD:O¢0Lul(90z)ealnap
`JoeseyeJeu
` ssa9oid
`
`
`
`
`uojesddy:oorjeubiserepJo(01)auseo
`
`
`
`
`
`
`
`
`
`
`
`
`
`}SullJO)[CUBISssaulpee.
`
`
`
`aye}s|euOyesado-uOUUI
`
`(QOL)saLuedByeq:0
`
`éOls
`
`
`
`
`
`uayealddepuosss:9z¢uoneaddeysui4‘9,5
`
`(0¢}
`
`puosas‘07g
`
`(OL
`
`ISSOIPe
`
`(0z}uoqeaydde
`passape
`
`passalpe
`
`
`
`uoqeoiddeysul40,¢
`
`
`
`possaupe(O01)
`
`
`
`
`
`(00z)ea1napBulpeay
`
`
`
`
`
`‘0802‘0Z0z‘010Z
`
`
`
`uoyealiddy:o0r
`
`UOI}99|98s
`
`
`
`
`
`Payeieuab(91)uojeayjdde
`
`Ex.1001
`APPLEINC./ Page 3 of 12
`
`
`
`
`
`passaipe(qz)passavpe(9)
`
`
`
`Bulpeay:020z‘OL0Zjeubis
`
`
`
`yaoleses‘00g
`
`
`
`ayeysjeualyesadoul
`
`
`
`
`
`
`
`(00/)4eLue9eJeq‘0001
`
`Ex.1001
`APPLE INC. / Page 3 of 12
`
`
`
`
`
`
`
`
`
`
`

`

`U.S. Patent
`
`Nov. 12, 2013
`
`Sheet 3 of 4
`
`US8,581,706 B2
`
`
`
`
`
`SolAapBulpesy:0002
`
`
`
`UONEOIUNLULUODUl!(90Z)
`
`
`
`
`
`Payesauab(9¢)uoqeodde
`
`
`
`uones||ddy‘oor
`
`
`
`ssadqduoo9|8s
`
`
`
`uojeaddy:00r7
`
`
`
`ssaoqiduayoa|as
`
`
`
`-UOESIUNWLUOD:0Z0|
`
`
`
`YOIESS‘00E
`
`jeubls
`
`
`
`-UONDIUNLULUOD‘CSO
`
`
`
`
`
`ply}JO,|euBIssseulpeed
`
`
`
`
`
`so1napBulpeay:0002
`
`
`
`ajeysjeuoqesadoul
`
`uaisuadsns
`
`Ja,Ue9ByepJo
`
`
`
`UOIJEOIUNWLUODUl(QQZ)
`
`
`
`
`
`(0¢)uoyeorddepaiuyLyi
`
`Ja/e9Byepjo
`
`
`
`
`
`so1aapBuipeay:0¢9
`
`
`
`Yes:00e
`
`jeubis
`
`
`
`ayeys[euoesadeul
`
`
`
`
`
`aalAapBulpeay:0Z9
`
`(OO)soledByeq:000L
`
`
`
`uojesiiddy:002
`
`
`0Z)uonealjddepucoesUy
`UONEIUNWUOSUl(00Z)
`
`
`
`aye}s|euOyesado-uOUUI
`
`(QOL)saLuedByeq:0
`
`€ols
`
`
`
`UONedIUNLWWOdUI!(QZ)
`
`
`
`youeas:00¢
`
`jeubis
`
`
`
`ayeysjeualyesadoul
`
`
`
`-UONPIIUNWLUOD‘OL
`
`
`
`(00/)sauese1eq:0001
`
`
`
`
`
`
`
`
`
`puooasJo}jeuBlsssoulpead
`
`
`
`
`
`ayeiauab(oz)uoqeodde
`
`
`
`(QOL)4aLueseyeq:0001
`
`
`
`
`
`
`
`uojeaddyody
`
`
`
`ssaooiduoa9|as
`
`
`
`
`
`Payeieuab(9),)uojeayjdde
`
`
`
`
`
`aolaapBulpeay-0002
`
`UONEOIUNWUUCOUl(00Z)
`
`
`
`
`
`aolAepBulpesy:019
`
`uoWedlUNWLUAdUl(9Qz)
`
`
`
`JSulJJO)[CUBISSsaulpees
`
`
`
`
`
`uolsuedsns
`
`
`
`onaeosJaiue@oeJepJo
`
`
`
`
`
`(0})uoneayddeysuyulm
`
`Ex.1001
`APPLEINC./ Page 4 of 12
`
`Ex.1001
`APPLE INC. / Page 4 of 12
`
`
`
`
`
`
`
`
`
`
`
`
`
`

`

`U.S. Patent
`
`Nov. 12, 2013
`
`Sheet 4 of 4
`
`US 8,581,706 B2
`
`
`
`Ex.1001
`APPLE INC. / Page 5 of 12
`
`

`

`US 8,581,706 B2
`
`1.
`DATA STORAGEMEDIUMAND METHOD
`FOR CONTACTLESS COMMUNICATION
`BETWEEN THE DATA STORAGEMEDIUM
`AND AREADER
`
`FIELD OF INVENTION
`
`The present invention relates to a method for contactless
`communication of at least two applications stored on a com
`mon portable data carrier with a leading device, and to an
`10
`accordingly set tip data carrier. A data carrier according to the
`invention may be e.g. a contactlessly communicating chip
`card, a contactlessly communicating label, a contactlessly
`communicating identification document, a security module
`SAM (secure application module) equipped for contactless
`communication, or an electronic device. Such as a mobile
`terminal with an NEC interface, equipped for contactless
`communication.
`
`15
`
`BACKGROUND
`
`25
`
`30
`
`40
`
`In the prior art (egg. Finkenzeller, Klaus: REID-Handbuch,
`Munich, 2002) there are described various contactlessly com
`municating data carriers, for example chip cards and RFID
`transponders (radio frequency identification transponders),
`e.g. according to the standard ISO/TEC 14443. These are
`so-called proximity coupling chip cards, which are frequently
`used in the application field of ticketing, that is, as public
`transport tickets for example, The energy Supply to the data
`carrier is normally effected here by the magnetic alternating
`field of a reading device. The range of Such a data carrier is
`approx. 7 to 15 cm. The invention is not restricted to tran
`sponder chip cards with Such short ranges, however, but can
`also be used in connection with other contactlessly commu
`nicating data carriers with other ranges and/or according to
`35
`other standards. It is fundamentally also possible to use data
`carriers with their own energy source,
`When such a data carrier is brought into the response field
`of a reading device, thereby commencing its energy Supply
`and putting it in an operational mode, it can receive a search
`signal emitted cyclically by the reading device and indicate its
`communication readiness to the reading device by means of a
`first response signal. As soon as the reading device has
`received this signal it starts a selection process using a so
`called anti-collision method in order to specifically select one
`45
`data carrier for further communication when a plurality of
`communication-ready data carriers are located in the
`response field of the reading device at the same time. How
`ever, there are also reading devices that communicate via
`proprietary, nonstandard communications protocols and do
`not support any anti-collision methods.
`The selection of a data carrier is effected in the case of an
`anti-collision method on the basis of a unique identification
`number of the data carrier, for example a UID (unique iden
`tifier),
`a PUPI (pseudo-unique PICC identifier,
`PICC proximity ICC, ICC integrated circuit card) or the like.
`For data carriers according to ISO/IEC 14443 it further holds
`that a data carrier selected for communication is addressable
`during communication via a unique session number (session
`ID, CID) allocated dynamically by the reading device. In this
`state Such a data carrier no longer responds to the aforemen
`tioned search signals still emitted by the reading device. In
`this way the reading device can select further data carriers
`located in the response field via their unique identification
`numbers and also assign them unique session numbers in
`turn. According to ISO/IEC 14443, up to 16 data carriers can
`in this way be selected for communication at the same time
`
`50
`
`55
`
`60
`
`65
`
`2
`and addressed accordingly via 16 different session numbers.
`A command emitted by the reading device and addressed by
`means of the session number is then always processed only by
`the data carrier to which said session number was assigned.
`Further, it is known that a plurality of applications can be
`located on a portable data carrier at the same time and that the
`corresponding application processes can be executed concur
`rently when an operating system providing the necessary
`mechanisms is set up on the data carrier. Concurrent execu
`tion of processes means that the latter are executed quasi at the
`same time by repeatedly toggling between different pro
`cesses. Toggling between different processes means that said
`processes are Supplied to the processor alternatingly to obtain
`actual computing time. An application process designates an
`application that is undergoing execution. In the context of this
`invention, both an application and the associated application
`process will hereinafter always be designated as an applica
`tion.
`It is possible to address a plurality of different concurrent
`applications, for example via their application identifiers
`AIDS, via different logical channels. Logical channels make it
`possible to set a plurality of virtual channels in parallel via a
`single interface by the corresponding communications proto
`cols being so designed that the addressed logical channel is
`also coded. In this way a plurality of applications on the data
`carrier can thus be addressed in parallel via the application
`identifier by specification of the particular channel to be used.
`The currently common protocols and the coding of the data
`to be transferred (APDU, application protocol data unit, a
`form of data transfer based on a command/response Scheme)
`allow up to four logical channels which are coded by means of
`two special bits. However, the data carrier's responses gen
`erated upon a command received from outside the data carrier
`no longer contain any information about the logical channel.
`This has the consequence that external applications desiring
`to communicate with a plurality of concurrent applications on
`a data carrier must be synchronized with each other, since an
`external application cannot decide by the response of an
`application of the data carrier whether it is the response
`expected by it or is intended for another external application.
`The management of logical channels is very elaborate for
`an operating system of the data carrier and requires a great
`amount of memory, all the more so if communication has to
`take place under secure conditions, i.e. the data belonging to
`an application are transferred in encrypted form and are pro
`tected in general against spying by other applications.
`Problems also occur in cases where a plurality of possibly
`proprietary applications that were hitherto each stored as the
`only application on a separate data carrier are now to be
`integrated on a common data carrier configured as a multiap
`plication data carrier in addition to the above-described dif
`ficulties in parallel communication, collisions can take place
`in the data structures, because the different applications have
`for example hitherto identified different contents on different
`data carriers by identical file identifiers FIDs that now iden
`tify only one file on the common data carrier. It also happens
`that applications from different data carriers are to be inte
`grated that are Subject to different restrictions in the commu
`nications parameters, such as the block length of transferable
`blocks.
`
`SUMMARY
`
`It is the object of the present invention to specify a method
`permitting contactless communication of a plurality of mutu
`ally uncoordinated applications of a portable data carrier with
`a reading device, as well as an accordingly set up data carrier
`
`Ex.1001
`APPLE INC. / Page 6 of 12
`
`

`

`US 8,581,706 B2
`
`30
`
`40
`
`5
`
`3
`This object is achieved by a method and data carrier having
`the features of the independent claims. Advantageous
`embodiments and developments are stated in dependent
`claims.
`The present inventive method is based on the idea that, for 5
`at least two applications located on a portable, contactlessly
`communicating data carrier that are ready to communicate
`with a reading device, a first communication-readiness signal
`to the reading device is generated for a first of the at least two
`10
`applications, the signal comprising a first identification num
`ber assigned to the first of the at least two applications and
`indicating to the reading device the communication readiness
`of said first application, and a second communication-readi
`ness signal to the reading device is generated for a second of
`the at least two applications, the second signal comprising a
`second identification number different from the first identifi
`cation number, which is assigned to the second application
`and indicates to the reading device the communication readi
`ness of said second application. These steps are carried out by 20
`an accordingly set up communication device on the data
`carrier.
`The identification numbers perform the role played in the
`prior art by the identification number (UID. PUPI and the
`like) assigned to the data carrier. The reading device can thus 25
`address one application of a plurality of applications located
`on a data carrier selectively and independently of the data
`carrier via the identification number. A customary reading
`device has the impression of communicating with different
`data carries.
`In this connection it is also possible that the communica
`tion-readiness signals are generated in each case for groups of
`applications and indicate to the reading device the communi
`cation readiness of each of the corresponding applications of
`the particular group. All applications in Such a group are 35
`assigned the same identification number here. It is possible to
`assign each of the applications in a group additional selection
`information which permits the applications within a group to
`be distinguished. In this way the applications can be arranged
`in a hierarchical manner.
`When the communication of an application with a reading
`device is spoken of hereinafter, this will always mean the
`communication taking place via a communication device of
`the data carrier, whereby the reading device selectively
`addresses said application and the data directed to the appli- 45
`cation are passed on to said application via the communica
`tion device of the data carrier. This holds in particular also
`when the data carrier has further communication-ready appli
`cations located thereon, or applications that are already com
`municating with the reading device or have already been 50
`Suspended by the reading device after completion of commu
`nication.
`The signals from the data carrier generated for the appli
`cations can be ergo periodically emitted signals or specific
`response signals to search signals emitted by the reading 55
`device. The reading device can thus recognize which com
`munication-ready applications are located in its response
`field even when they are stored on a common data carrier.
`A toggle functionality present on the data carrier can toggle
`between different applications executed on the data carrier 60
`concurrently. In this way a plurality of applications can be
`engaged in communication with the reading device quasi
`simultaneously, whereby the toggling between said applica
`tions permits parallel communication thereof with the read
`ing device via the communication device. However, the com- 65
`munication also can take place consecutively rather than in
`parallel, adapted to the abilities of the reading device.
`
`4
`The aforementioned restrictions in connection with the use
`of logical channels cease to exist. It is possible for more than
`four applications to communicate with the reading device in
`parallel The communication device ensures that all data that
`are sent to the data carrier by the reading device are processed
`only by the addressed application. It ensures in particular that
`all data emitted to the reading device by the data carrier are so
`constituted that the reading device can assign them uniquely
`to one application,
`Finally, there results the advantage that a plurality of appli
`cations can be integrated on a common data carrier indepen
`dently of each other and without having to be mutually coor
`dinated, since toggling between the applications allows each
`of the applications to have its own data structures, for example
`a file system, and its own software means, such as program
`code only used by it. Collisions with further applications
`regarding these resources are thus ruled out.
`The toggle functionality can be configured as part of the
`operating system. The toggle between different applications
`can be effected e.g. by branching. In branching, a so-called
`parent process starts a new process, the child process. Both
`processes, parent and child, use the same system resources,
`Such as working memory. A toggle can, on the other hand, e.g.
`also be effected by a context switch by means of a dispatcher.
`Here, the particular process currently assigned to the proces
`sor is given its own context which comprises for example
`areas in the main memory and system variables.
`The reading device selects an application for further com
`munication by means of the identification number assigned to
`the application. The additional selection information option
`ally assigned to the application can also be used for selection
`by the reading device. An application selected for further
`communication is then assigned a session number dynami
`cally by the reading device. Via said session number the
`application can be addressed uniquely during communication
`with the reading device. Upon addressing, the session number
`is so linked in the data carrier by the communication device
`with the identification number assigned to the application and
`optionally the additional selection information that the cor
`rect application is always addressed upon communication.
`When an application has been selected for further communi
`cation by the reading device, said communication takes place
`Subsequently without requiring any further steps. An appli
`cation selected for further communication by the reading
`device is thus then engaged in communication with the read
`ing device.
`According to the method, the data carrier generates com
`munication-readiness signals for one or more applications
`located on the data carrier that have not yet been selected for
`further communication by the reading device even when one
`or more other applications have already been selected for
`farther communication by the reading device and the com
`munication with said other applications is not yet completed.
`This is preferably also the case after one or more other appli
`cations have already been Suspended by the reading device
`after completion of communication. A further activity of the
`application Suspended by the reading device on the data car
`rier, separately from the communication with the reading
`device, is still possible.
`While according to the prior art a data carrier engaged in
`communication does not respond to search signals and a
`suspended data carrier either must first be removed from the
`response field of the reading device and be brought back into
`it to be communication-ready again, or is reset by a RESET
`signal from the reading device, a reading device can establish
`contact with all communication-ready applications of the
`inventive data carrier at any time.
`
`Ex.1001
`APPLE INC. / Page 7 of 12
`
`

`

`5
`The communication device controls the total communica
`tion between the applications and the reading device and
`always knows the communication status of each application:
`communication-ready or selected by the reading device for
`further communication and thus communicating with the
`reading device or Suspended by the reading device after
`completion of communication.
`The data carrier informs the reading device preferably by
`means of collision signals that communication-ready appli
`cations that have not yet been selected for further communi
`cation are present in the response field. Said signals, which
`are emitted during execution of the collision algorithm, can
`take the form for example of simulated collisions between a
`plurality of applications. The reading device will then emit
`search signals in parallel with the communication with other
`applications and/or after the end of communication in order to
`establish contact with the applications not yet selected for
`communication.
`The communication device of the data carrier can prefer
`ably recognize by the responses of the reading device to
`emitted communication-readiness signals whether the read
`ing device is able to resolve a collision between a plurality of
`applications. In this connection a termination of communica
`tion by the reading device in case more than one data carrier
`is located in the response field of the reading device can also
`be interpreted as a response of the reading device If the data
`carrier recognizes, for example, that the reading device call
`always process only one application in its response field, the
`emission of further communication-readiness signals can be
`adapted thereto The data carrier thereafter emits a communi
`cation-readiness signal for an application only when the read
`ing device has completed communication with another appli
`cation.
`The method preferably stores in a nonvolatile memory, by
`means of the communication device, information about
`35
`which of the applications was last selected for further com
`munication by the reading device. This makes it possible to
`ascertain upon reactivation of the data carrier, for example
`after an interruption of the energy Supply, which application
`last communicated with the reading device, to then generate a
`communication-readiness signal first for an application dif
`ferent therefrom, in order egg to prevent the same application
`from always being served first and other applications from
`possibly having to put up with long waiting periods or not
`being executed at all.
`The method can therefore be so designed that the reading
`device can communicate with a plurality of applications in
`parallel. The identification numbers assigned to the applica
`tions are preferably so selected here that the reading device
`interprets them like identification numbers of different data
`carriers. The inventive method can then be carried out with
`reading devices according to the prior art without any prob
`lems.
`In the case of reading devices expecting to communicate
`with MIFARE memory cards with memories organized in
`sectors and applications each firmly assigned to one of the
`sectors, it is possible to use the additional selection informa
`tion as sector information. Use of the sector information
`produces a virtual sector assignment of the individual appli
`cations that corresponds to that of a MIFARE memory card.
`In this way it is possible to emulate a MIFARE memory card
`by means of a modern data carrier), by a memory of the data
`carrier appearing to the reading device as a sectored memory
`by means of the sector information. It is preferably not rec
`ognizable to the reading device whether a genuine MIFARE
`memory card is physically present or whether an inventive
`emulated MIFARE memory card is involved.
`
`6
`Each sector of such an emulated MIFARE card has exactly
`one application stored therein . Each individual sector is
`preferably access-protected separately for a reading device
`accessing it, usually by a pair of keys assigned to the sector It
`is thus also possible for those applications to be stored execut
`ably on a data carrier that were assigned to corresponding
`fixed sectors on different original MIFARE memory cards
`Those applications that were assigned to originally different
`fixed sectors are preferably then combined into groups with a
`common identification number The reading device accord
`ingly interprets a thus configured data carrier as a multiplicity
`of MIFARE memory cards, whereby each of said MIFARE
`memory cards comprises exactly one group of applications
`that reside in pairwise different sectors. In this way the read
`ing device can first select via the identification number a
`group of applications that correspond e.g. to the applications
`of a single original MIFARE memory card. Thereafter a spe
`cial application which was e.g. originally firmly assigned to
`the sector 1 can be selected on the basis of the additional
`selection information in the form of the virtual sector assign
`ment.
`The inventive data carrier can be configured in general as a
`contactlessly communicating chip card, contactlessly com
`municating label or contactlessly communicating identifica
`tion document, Further, it is possible that the data carrier is
`configured as a security module SAM (secure application
`module) in a device set up for contactless data transmission,
`the security module having software means for communicat
`ing contactlessly by means of a suitable interface with the
`help of the device. A SAM is a component secured both
`mechanically and by Software means which serves to store
`secret data and to execute cryptoalgorithms.
`Further, an electronic device, in particular a mobile termi
`nal, with a contactless interface for communication with a
`reading device and with a plurality of access-protected
`memory areas on different storage media of the device can
`also be designed as an inventive data carrier. Each of the
`memory areas has all application stored therein. The memory
`areas are preferably found on one or more storage media, in
`particular secure chip cards, which are integrated into the
`mobile terminal These may be for example (U)SIM mobile
`communication cards, SD cards (secure digital memory
`cards) or EMV payment cards. EMV designates a specifica
`tion for payment cards and is derived from “Etropay”, “Mas
`terCard', and “Visa'. By means of the inventive method it is
`then possible that the reading device communicates with each
`of the applications on the different secure chip cards via the
`contactless interface of the mobile terminal. The contactless
`interface is preferably configured as an NFC interface (“near
`field communication'). This permits a so-called “secure
`NEC with a device in the role of a passive communication
`partner and with a plurality of applications stored thereon.
`
`BRIEF DESCRIPTION OF THE DRAWINGS
`
`The invention will hereinafter be explained by way of
`example with reference to the accompanying drawings.
`Therein are shown:
`FIG. 1 a schematic representation of a first embodiment of
`an inventive data carrier,
`FIG. 2 a flow chart of a sequence of activities in a first
`embodiment of the inventive method;
`FIG.3 a flow chart of a sequence of activities in a second
`embodiment of the inventive method; and
`
`US 8,581,706 B2
`
`10
`
`15
`
`25
`
`30
`
`40
`
`45
`
`50
`
`55
`
`60
`
`65
`
`Ex.1001
`APPLE INC. / Page 8 of 12
`
`

`

`US 8,581,706 B2
`
`7
`FIG. 4 a schematic representation of a second embodiment
`of an inventive data carrier.
`
`DETAILED DESCRIPTION OF VARIOUS
`EMBODIMENTS OF THE DISCLOSURE
`
`10
`
`15
`
`25
`
`30
`
`Different embodiments of the invention will hereinafter be
`presented in more detail FIG. 1 shows schematically a first
`embodiment of an inventive data carrier 100 and a reading
`device 200. The data carrier 100 has at least two applications
`10, 20, 30 located thereon. The data carrier 100 comprises a
`communication device 70 and a toggling device 50 that is set
`up to toggle between the different applications 10, 20, 30.
`Each of the applications 10, 20, 30 is assigned an identifica
`tion number UID1, UID2, UIDn. The identification numbers
`UID1, UID2, UIDn are managed by the communication
`device 70. When the reading device 200 enters into commu
`nication with one or more of the applications 10, 20, 30 of the
`data carrier 100, the reading device can select them for further
`communication via the identification numbers UID1, UID2,
`UIDn and address them in the further course of communica
`tion by means of session numbers CID1, CID2, CIDn allo
`cated dynamically by it. Said session numbers CID1, CID2,
`CIDn can be linked by the communication device 70 with the
`identification numbers of the particular applications
`addressed. All communication between the applications 10,
`20, 30 of the data carrier 100 with the reading device 200
`takes place via the communication device 70, it being pos
`sible to toggle between the applications 10, 20, 30 by means
`of the toggling device 50.
`FIG. 2 shows a flow chart of a sequence of activities in a
`first embodiment of the inventive method. The numbers
`designate individual method steps and states of individual
`components. When the inventive data carrier 100, which at
`the onset is in the non-operational State 0, passes into the
`response field of a reading device 200, it becomes operational
`1000 and receives a search signal 300 from the reading device
`200. The communication device 70 of the data carrier 100
`generates for a first application 10 a communication-readi
`ness signal which comprises the identification number UID1
`assigned to the application 10, 1010. Said signal is emitted by
`the data carrier, and the application 10 is selected for further
`communication by the reading device 200 in the course of the
`selection process 400 by means of an anti-collision method.
`While or before the reading device 200 communicates with
`the application 10 of the data carrier 100, 2010, which it
`addresses via the session number CID1,510, it emits further
`search signals 300, and the communication device 70 of the
`50
`data carrier 100 generates for a second application 20 a com
`munication-readiness signal comprising the identification
`number UID2, 1020, and the application 20 is selected for
`further communication by the reading device 200 in the
`course of the selection process 400. The reading device 200 is
`now engaged in communication with tie two applications 10
`and 20 in parallel, 2010, 2020, which are addressed via the
`session numbers CID1,510, and CID2,520.
`The establishment of communication of the reading device
`200 with the application 30 follows analogously by a search
`signal 300, a communication-readiness signal generated by
`the communication device 70, 1030, a selection step 400, so
`that the reading device 200 is finally communicating in par
`allel with the three applications 10, 20, 30,510,520, 530,
`addressed via the session numbers CID1, CID2, CIDn, 2010,
`2020, 2030. As indicated, the method can continue with fur
`ther applications in the same manner.
`
`35
`
`40
`
`45
`
`55
`
`60
`
`65
`
`8
`To the reading device 200 the different applications of the
`inventive data carrier 100 appear to be a collection of different
`data carriers according to the prior art.
`FIG. 3 shows a flow chart of a sequence of activities in a
`second embodiment of the inventive method. The numbers
`designate, as in FIG. 2, individual method steps and states of
`individual components. The chief difference compared to the
`embodiment shown in FIG. 2 is that in the present example
`the reading device does