`Case 6:21-cv-00916-ADA Document 134-2 Filed 02/06/23 Page 1 of 19
`
`EXHIBIT N
`EXHIBIT N
`
`
`
`Case 6:21-cv-00916-ADA Document 134-2 Filed 02/06/23 Page 2 of 19
`Case 6:21-cv-00916-ADA Document 134-2 Filed 02/06/23 Page 2 of 19
`
`EXHIBIT A
`EXHIBIT A
`
`
`
`Case 6:21-cv-00916-ADA Document 134-2 Filed 02/06/23 Page 3 of 19
`
`Case 6:21-cv-00916-ADA Document 134-2 Filed 02/06/23 Page 3 of 19
`
`US008118218B2
`
`a2) United States Patent
`Koh et al.
`
`(10) Patent No.:
`(45) Date of Patent:
`
`US 8,118,218 B2
`Feb. 21, 2012
`
`(54)
`
`(75)
`
`METHOD AND APPARATUS FOR
`
`PROVIDING ELECTRONIC PURSE
`
`(56)
`
`References Cited
`
`U.S. PATENT DOCUMENTS
`
`Inventors: Liang Seng Koh, Fremont, CA (US);
`Futong Cho, Milpitas, CA (US); Hsin
`Pan, Fremont, CA (US); Fuliang Cho,
`san Jose, CA (US)
`
`................ 235/492
`8/2003 Atsmon etal.
`6,607,136 BIL*
`2002/0145632 Al* 10/2002 Shmuel etal. ............... 345/835
`2009/03 13689 Al* 12/2009 Nystrom etal. oe, 726/9
`
`FOREIGN PATENT DOCUMENTS
`
`
`
`Case 6:21-cv-00916-ADA Document 134-2 Filed 02/06/23 Page 4 of 19
`
`U.S. Patent
`
`Feb. 21, 2012
`
`Sheet 1 of 9
`
`US 8,118,218 B2
`
`
`
` ViVA
`
`
`
`Case 6:21-cv-00916-ADA Document 134-2 Filed 02/06/23 Page 5 of 19
`
`U.S. Patent
`
`Feb. 21, 2012
`
`Sheet 2 of 9
`
`US 8,118,218 B2
`
`OL
`
`9/6uls
`uoiouUN|
`
`S6e]
`
`OLL
`
`GtVas
`
`
`
`
`
`
`
`
`Case 6:21-cv-00916-ADA Document 134-2 Filed 02/06/23 Page 6 of 19
`
`Case 6:21-cv-00916-ADA Document 134-2 Filed 02/06/23 Page 6 of 19
`
`U.S. Patent
`
`Feb. 21, 2012
`
`Sheet 3 of 9
`
`US 8,118,218 B2
`
`Buisixy OO0C
`9OJBLUWWODpeseq-pue
`
`JUSWUOJIAUSPEeSO|OUS
`
`JO,suempuey
`
`
`¢UA
`
`
`
`
`Case 6:21-cv-00916-ADA Document 134-2 Filed 02/06/23 Page 7 of 19
`
`U.S. Patent
`
`Feb. 21, 2012
`
`Sheet 4 of 9
`
`US 8,118,218 B2
`
`
`
`VEVis
`
`
`
`Case 6:21-cv-00916-ADA Document 134-2 Filed 02/06/23 Page 8 of 19
`
`U.S. Patent
`
`Feb. 21, 2012
`
`Sheet 5 of 9
`
`US 8,118,218 B2
`
` Joye|nwe
`
`
`
`Case 6:21-cv-00916-ADA Document 134-2 Filed 02/06/23 Page 9 of 19
`
`U.S. Patent
`
`Case 6:21-cv-00916-ADA Document 134-2 Filed 02/06/23 Page 9 of 19
`
` —a—SOIASP3U}UlJa|ddeasund-3UePUBIVS9SuNd-3MoUUBLBSMaq“ocejauUueUd
`
`
`
`AjLUND|SeBUSI|Ge]Se0}UIELUOPAyNDesUOl]eaI|ddeesn2
`
`
`
` CNSSeSdIAOP9u}Ul9/ddeosund-3uepueWSsUoNnewodsueBunsixsueusEeMjeq>o9¢jauUueYdANOSeBUSIIGe}S9e0}UIEWOpAndes
`
`
`
`
`UO!eoI|\ddessn5
`
`
`
`
`
`
`
`Ctq|be]8u}pueWYSBunsixeou}BIAJoyejnNWUSUeJOSASYPSLUJOJSUEI]SyeIBUdS)
`
`US 8,118,218 B2
`
`
`
` QNd9c£)/Eg0¢.P8ZI|BUOSJEd,JOB]e]S&O}]BSINd-98By]18S
`
`
`
`Case 6:21-cv-00916-ADA Document 134-2 Filed 02/06/23 Page 10 of 19
`
`Case 6:21-cv-00916-ADA Document 134-2 Filed 02/06/23 Page 10 of 19
`
`U.S. Patent
`
`Feb. 21, 2012
`
`Sheet 7 of 9
`
`US 8,118,218 B2
`
`VPVA
`
`
`
`
`Case 6:21-cv-00916-ADA Document 134-2 Filed 02/06/23 Page 11 of 19
`
`U.S. Patent
`
`Feb. 21, 2012
`
`Sheet 8 of 9
`
`US 8,118,218 B2
`
`
`
`
`
`OLYabessewWYOMISUBUlDapDPsqwWeBsUOdse3U}PIBMIO-4
`
`
`
`
`
`
`
`
`
`Oz%Bo]uonoesueseseyepdnpureJoye|nwWeaau}O}
`
`
`
`
`
`
`
`
`
`a149SJNd-389}O}WAU]PUBSPUBSPUBLWLUODNGdyYVJDEI}X9PureAId}SJSIPIIN
`
`
`
`
`
` dyVa
`
`
`VCvV}O/NllusO]BHeSsSawSNjels
`
`
`
`
`
`
`|NJSSBDONSes]eIBUdH 774J8AJOSUSWABU}O}]JSENbSsYIOMJSUBCUI
`
`
`
`
`
`9SUOdSSJNOdyUeSO8}E/NUWUO]JEU}JO/PILUBU}OC}JEYOI]eSBJeuBUdyH)
`
`
`
`
`
`
`
`
`
`Case 6:21-cv-00916-ADA Document 134-2 Filed 02/06/23 Page 12 of 19
`
`U.S. Patent
`
`Feb. 21, 2012
`
`Sheet 9 of 9
`
`US 8,118,218 B2
`
` JyVA
`
`CbOryvv
`
`
`bulsueul4yJOMIBUJUSWAWVS
`
`8hOEPpep
`
`YUEGSISAIOSDUPSINDO|/
`
`joeinwenenda_|sa6euewDue
`
`
`
`
`Case 6:21-cv-00916-ADA Document 134-2 Filed 02/06/23 Page 13 of 19
`
`Case 6:21-cv-00916-ADA Document 134-2 Filed 02/06/23 Page 13 of 19
`
`US 8,118,218 B2
`
`1
`
`METHOD AND APPARATUS FOR
`
`PROVIDING ELECTRONIC PURSE
`
`BACKGROUND
`
`1. Technical Field
`The present invention is generally related to commerce
`over networks. Particularly, the present invention 1s related to
`electronic purses that can be advantageously used in portable
`devices configured for both electronic commerce (a.k.a.,
`e-commerce) and mobile commerce (a.k.a., m-commerce).
`
`10
`
`2
`tion with a payment server. In one embodiment, the essential
`data to be personalized into an e-purse include one or more
`operation keys (e.g., a load key and a purchase key), default
`PINs, administration keys (e.g., an unblock PIN key and a
`reload PIN key), and passwords(e.g., from Mifare). During a
`transaction, the security keys are used to establish a secured
`channel between an embedded e-purse and an SAM (Security
`Authentication Module) or backend server.
`The invention may be implemented in numerous ways,
`including a method, system, and device. In one embodiment,
`the present invention 1s a method for providing an e-purse, the
`
`
`
`Case 6:21-cv-00916-ADA Document 134-2 Filed 02/06/23 Page 14 of 19
`
`Case 6:21-cv-00916-ADA Document 134-2 Filed 02/06/23 Page 14 of 19
`
`US 8,118,218 B2
`
`3
`FIG. 3B shows a block diagram of related modules inter-
`acting with each other to achieve whatis referred to herein as
`e-purse personalization by a user of the e-purse as shown in
`FIG.2;
`FIG. 3C showsa flowchart or process of personalizing an
`e-purse according to one embodiment of the present inven-
`tion;
`FIG. 4A and FIG. 4B show together a flowchart or process
`of financing an e-purse according to one embodimentofthe
`present invention; and
`FIG. 4C shows an exemplary block diagram of related
`
`4
`in order to secure the message channel between the purse and
`the SAM or backendservers. For a single functional card, the
`e-purse security 104 will act as gates to protect actual opera-
`tions performed on a single functional card. During person-
`alization, the single functional card access keys(orits trans-
`formation) are personalized into the purse with the purse
`transaction keys.
`Card Manager Security 106, referring to a general security
`framework of a preload operating system in a smart card,
`providesa platform for PIN management and security chan-
`nels (security domains) for card personalization. This plat-
`
`10
`
`
`
`Case 6:21-cv-00916-ADA Document 134-2 Filed 02/06/23 Page 15 of 19
`
`Case 6:21-cv-00916-ADA Document 134-2 Filed 02/06/23 Page 15 of 19
`
`US 8,118,218 B2
`
`5
`ment, an e-purse is built on top of the global platform and
`implemented as an applet in SMX. The e-purse is configured
`to be able to access the Mifare data structures with appropri-
`ate transformed passwords based on the access keys.
`In the cellphone 202, a purse manager midlet 204 is pro-
`vided. For M-commerce, the midlet 204 acts as an agent to
`facilitate communications between an e-purse applet 206 and
`ohne or more payment network and servers 210 to conduct
`transactions therebetween. As used herein, a midletis a soft-
`ware component suitable for being executed on a portable
`device. The purse manager midlet 204 1s implemented as a
`
`6
`to personalize the e-purse for a user thereof via new e-purse
`SA module 306 and an existing SA module 308 with the
`RFID reader 310 as the interface. The card manager 311
`performs at least two functions: 1. establishing a security
`channel, via a security domain, to install and personalize an
`external application (e.g., e-purse applet) in the card person-
`alization; and 2. creating security means (e.g., PINs) to pro-
`tect the application during subsequent operations. As a result
`ofthe personalization process 304, the e-purse applet 312 and
`the emulator 314 are personalized.
`Similarly, as shown in FIG.3B, a user of an e-purse desires
`
`10
`
`
`
`Case 6:21-cv-00916-ADA Document 134-2 Filed 02/06/23 Page 16 of 19
`
`Case 6:21-cv-00916-ADA Document 134-2 Filed 02/06/23 Page 16 of 19
`
`US 8,118,218 B2
`
`7
`the e-purse applet (e.g., the e-purse applet 312 of FIG. 3A) in
`the device. At 362, a set of transformed keys 1s generated
`using the existing SAM andthe tag ID. The generated keys are
`stored in the emulator for subsequent data access authentica-
`tion. At 358, a set of MF passwords is generated using the
`existing SAM and the tag ID, then is stored into the e-purse
`applet for future data access authentication. After it 1s done,
`the e-purse including the e-purse applet and the correspond-
`ing emulatoris set to a state of “personalized”’.
`FIG. 4A and FIG. 4B show togethera flowchart or process
`400 of financing an e-purse according to one embodiment of
`
`8
`The e-purse verifies the authenticity (e.g.,in APDU for-
`mat) and sends commands to the emulator 438 and updates
`the transaction logs. By now,the e-purse finishes the neces-
`sary steps and returns a response to the midlet 434 that for-
`wards an (APDU) response in a network request to the pay-
`ment server 440.
`Although the process 400 is described as funding the
`e-purse. Those skilled in the art can appreciate that the pro-
`cess of making purchasing over a network with the e-purse is
`substantially similar to the process 400, accordingly no sepa-
`rate discussion on the process of making purchasing is pro-
`
`
`
`Case 6:21-cv-00916-ADA Document 134-2 Filed 02/06/23 Page 17 of 19
`
`Case 6:21-cv-00916-ADA Document 134-2 Filed 02/06/23 Page 17 of 19
`
`US 8,118,218 B2
`
`9
`2. The method asrecited in claim 1, wherein the operation
`keys include one or more of a load key and a purchase key,
`default personal identification numbers (PINs), admuinistra-
`tion keys, and passwords.
`3. The methodas recited in claim 2, wherein at least some
`of the operation keys are used to establish a first secured
`channel so that various data 1s exchanged between the e-purse
`applet and the paymentserver, and at least another some ofthe
`operation keys are used to establish a second secured channel
`so that various data is exchanged between the e-purse applet
`and the e-purse SAM originally used to issue the e-purse as
`
`10
`
`10
`when the smart card is in communication with the pay-
`ment server, and operations of personalizing the e-purse
`applet comprises:
`establishing an initial security channel between the
`smart card and the e-purse security authentication
`module (SAM) to install and personalize the e-purse
`applet in the smart card, and
`creating a security channel on top of the initial security
`channelto protect subsequent operations of the smart
`card with the e-purse SAM, wherein any subsequent
`operation of the emulator is conducted over the secu-
`
`
`
`Case 6:21-cv-00916-ADA Document 134-2 Filed 02/06/23 Page 18 of 19
`
`Case 6:21-cv-00916-ADA Document 134-2 Filed 02/06/23 Page 18 of 19
`
`US008118218C1
`
`a2) EX PARTE REEXAMINATION CERTIFICATE (12203rd)
`United States Patent
`US 8,118,218 Cl
`(10) Number:
`Jan. 11, 2023
`(45) Certificate Issued:
`Koh et al.
`
`(54) METHOD AND APPARATUS FOR
`PROVIDING ELECTRONIC PURSE
`
`(75)
`
`Inventors: Liang Seng Koh, Fremont, CA (US);
`Futong Cho, Milpitas, CA (US); Hsin
`Pan, Fremont, CA (US); Fuliang Cho,
`San Jose, CA (US)
`
`(58) Field of Classification Search
`None
`See application file for complete search history.
`
`(56)
`
`References Cited
`
`To view the complete listing of prior art documents cited
`
`
`
`Case 6:21-cv-00916-ADA Document 134-2 Filed 02/06/23 Page 19 of 19
`
`Case 6:21-cv-00916-ADA Document 134-2 Filed 02/06/23 Page 19 of 19
`
`US 8,118,218 Cl
`
`1
`EX PARTE
`
`REEXAMINATION CERTIFICATE
`
`NO AMENDMENTS HAVE BEEN MADE TO
`THE PATENT
`
`AS A RESULT OF REEXAMINATION, IT HAS BEEN
`DETERMINED THAT:
`
`The patentability of claims 1-18 is confirmed.
`
`5
`
`i"
`
`