VENEROSO, Amedeo (Via Marchesiello, 125, Caserta, I-81100, IT)
VARONE, Francesco (Via Piero Gobetti 12, Bellona, I-81041, IT)
VENEROSO, Amedeo (Via Marchesiello, 125, Caserta, I-81100, IT)
| CLAIMS
1. Communication method between an handset device and a first IC Card, hosted in a slot of the handset device , comprising an handset device-IC card interface intended to drive a communication- between the first IC Card and the handset device through a plurality of commands, including the following steps: providing a portable hosting device, comprising at least a slot hosting at least a second IC Card; providing the first IC Card and the at least second IC Card with a wireless personal interface, supporting a wireless personal communication protocol between the first IC Card and the at least second IC Card; forwarding a command of the plurality of commands from the handset device-IC card interface to the wireless personal interface for driving, from the handset device, the at least second IC Card.
2. Communication method according to claim 1 wherein the step of forwarding comprises the phases of: splitting a packet of data including the command of the handset device-IC card interface into one or more packets according to the wireless personal interface; sending the one or more packets over the wireless personal communication, from the first IC Card to the at least second IC Card; reassemble the one or more packets in a single packet, including the command; - sending the one or more packets over the wireless personal communication, from the at least second IC Card to the first IC Card;
3. Communication method according to claim 2, comprising a phase for exchanging a secure key between said at least second IC Card and the first IC Card, the one or more packets of data being encrypted /decrypted through an algorithm based on the secure key before /after the phases of
INC032BWO sending one or more packets.
4. Communication method according to claim 2, comprising a phase for setting an active IC Card among the at least second IC Card, the at least second IC Card in the phases of sending one or more packets being the active IC Card.
5. Communication method according to claim 4, wherein the phase of setting is driven by a user interface on the handset device.
6. Communication method according to claim 4, comprising a phase for generating a single file including data stored in the active IC Card and data stored inside one or more of said at least second IC Card not set as active IC Cards, the handset device being able to access the single file.
7. Communication method according to claim 6 wherein the single file comprises a selection of the data stored in the active IC Card and a selection of the data stored inside one or more of the at least second IC Card not set as active IC Cards.
8. Communication method according to claim 4, comprising a phase for aligning a value of a PIN associated to one of said at least second IC Card to a value of a PIN associated to at least one of said at least second IC Card, a single input of the value in the handset device, after alignment, providing a contemporary authentication to one or more IC Cards of the at least second IC Cards.
9. Communication method according to claim 1 wherein the handset device-IC Card interface comprises an ISO 7816 protocol.
10. Communication method according to claim 1 wherein the wireless personal interface comprises a ZigBee protocol.
11. Communication system comprising a first IC Card intended to be hosted in a slot of an handset device and to communicate with it according to a handset device-IC card interface comprising a plurality of commands, comprising: - a second device, including at least a slot hosting at least a second IC Card;
INC032BWO means, included inside the first IC Card, inside said at least second IC Card, supporting a wireless personal communication between the first IC Card and said at least second IC Card; means to forward a command of the plurality of commands from the handset device-IC card interface to the wireless personal interface for driving, from the handset device, the at least second IC Card.
12. Communication system according to claim 11 wherein the means to forward comprises: a unit for splitting a packet of data including the command in the handset device-IC card interface into one or more packets according to the wireless personal interface; a unit for sending the one or more packets over the wireless personal communication, from the first IC Card to said at least second IC Card or for sending one or more packets over said wireless personal communication, from said at least second IC Card to the first IC Card; a unit for reassembling the one or more packets in a single packet, including the command.
INC032BWO |
Title: "A communication method between an handset device and IC Cards"
DESCRIPTION Field of Application
The present invention relates to a communication method between an handset device, comprising a slot for hosting an IC Card, and at least an IC Card.
More particularly, the method according to the present invention comprises a plurality of commands, based on an handset device-IC card interface, intended to drive a first IC Card hosted inside said slot. Prior Art
As it is well known, some handset devices such as mobile phones, personal digital assistant and smart phones comprise a slot intended to host an IC Card or a flash memory card. For example a mobile phones includes a slot for an (U)SIM, associated to a subscriber line and to a corresponding phone number.
With reference to figure 1, a mobile phone schematically shown and indicated with numeral reference 1 , comprises a slot 2 intended to host an IC card 3. A communication method between the mobile phone 1 and the IC Card 3 is based on a standard communication protocol, the ISO 7816, comprising a set of command APDUs.
Sometimes it is useful for a single user to have more than one (U)SIMs, each shipping a different phone number, generally associated to a different subscriber line.
For example, a first (U)SIM is used for professional purpose and a second (U)SIM is used for free-time, for foreign travels, for saving money with a second fare, for accessing an operator with a different network coverage, for using additional SIM Toolkit applications. It is also useful to have separated (U)SIMs in order to distinguish different phonebooks and SMS data base. A communication method usually allows to use a single IC Card at a time;
INC032BWO
in fact, according to such communication method a user must close a communication with a first IC Card, in order to begin a communication with a second IC Card comprising the step of: switching off the handset device, - open its cover, extract the first IC card, substitute it with a second IC Card, switching on the handset device in order, establish a communication with the second IC Card. More particularly, the slot inside the handset device is closed inside an handset cover, generally under a battery pack so that it is usually necessary to remove the handset cover and the battery pack to replace the IC Card hosted in the slot. In this case a user that needs to replace the IC Card is involved in a laborious and non immediate action. It is also known that some handset devices, now neglected, was designed to host more than one IC Cards, generally in the back of the battery pack, in order to avoid a replacement as described above.
Anyway, such handset device was cumbersome because more than one IC Card required a lot of space inside the handset device in order to be hosted, the resulting size of the handset device being not suitable to be hold in a pocket.
Moreover, in such neglected handset devices, a communication method between the IC Card and the handset device provided that only one IC Card at a time could be active, the operation of switching to the alternate IC card (usually done by switching off and on the handset device) being an uncomfortable and non immediate action.
For this reason, such an handset device was replaced by new phone models, smaller in size but not providing sufficient room to let coexist battery and more than one IC cards, the communication method between the handset device and the IC Card supporting a single IC Card at a time.
INC032BWO
One aim of the present invention is that of providing a communication method between an handset device and one or more IC Cards, without introducing more than one IC Cards inside the handset device, in order to limit the size of the handset device, at the same time providing a quick switching of a communication between the handset device and the one or more IC Cards.
A further aim of the invention is that of providing a communication method achievable without modifying the hardware specification of the handset devices as well as an hardware specification of the IC Cards. Summary of the invention
One embodiment of the invention relates to a communication method between an handset device, comprising a slot for hosting an IC Card, and at least an IC Card, the method providing the insertion, inside such slot, of a first IC Card for communicating with said handset device according to an handset device-IC card interface and providing an insertion, for example inside an additional box external to the handset device, of one or more additional IC Cards, such additional IC Cards being in communication with the first IC Card through a wireless personal interface. When the handset device sends a command to the first IC Card, the first IC Card forwards such command, through the wireless personal interface, to an additional IC cards, hosted in said additional box and selected by the user among the one or more additional IC Cards.
Another embodiment of the present invention relates to a communication method between an handset device and a first IC Card, hosted in a slot of the handset device, comprising an handset device-IC card interface intended to drive a communication between the first IC Card and the handset device through a plurality of commands, including the following steps: providing a portable hosting device, comprising at least a slot hosting at least a second IC Card; providing the first IC Card and the at least second IC Card with a wireless personal interface, supporting a wireless personal communication protocol between the first IC Card and the at least second IC Card;
INC032BWO
forwarding a command of the plurality of commands from the handset device-IC card interface to the wireless personal interface for driving, from the handset device, the at least second IC Card.
Further characteristics and the advantages of the communication method according to the present invention will be apparent from the following description of an embodiment thereof, made with reference to the annexed drawings, given for indicative and non-limiting purpose.
Brief description of drawings
Figure 1: schematically shows, an handset device 1 intended to host and communicate with (U)SIM, according to the prior art.
Figure 2: schematically shows, an handset device 1 intended to host and communicate with (U)SIM, according to the present invention.
Figure 3: schematically shows, in a block diagram a communication between an handset device 1 and an (U)SIM, according to the present invention.
Figure 4: schematically shows, a packet of data in a wireless communication between IC cards, according to the present invention.
Figure 5: schematically shows, a sequence of steps executed for selecting one of at least a second IC Card for a wireless communication, according to the present invention.
Figure 6: schematically shows, a sequence of steps executed for deactivating a current IC Card and for activating a selected IC Card for a wireless communication, according to the present invention, according to the present invention. Figure 7a: schematically shows, phonebook contents of two corresponding IC Cards 5a, 5b, according to the present invention.
Figure 7b: schematically shows, a selection of the phonebook contents of figure 7a in order to create a virtual phonebook content, according to the present invention. Figure 7c: schematically shows, the virtual phonebook content structured
INC032BWO
in corresponding virtual pages, according to the present invention.
Figure 8: schematically shows, a possible PIN alignment between more than one IC Card, according to the present invention.
Figure 9: schematically shows an interconnection between an additional box and a personal computer, according to the present invention.
Figure 10: schematically shows a couple of interconnections between an additional box and, respectively, a personal computer and an handset device, according to the present invention.
Detailed description According to the present invention and with reference to the annexed drawings, a communication method between an handset device and at least an IC Card is schematically indicated with numeral reference 10.
With reference to figure 2, the handset device 1 comprises a slot 2 for hosting a first IC Card, a communication between the handset device 1 and the first IC Card being based on an handset device-IC card interface, for example an ISO 7816 protocol.
According to the method of the present invention, a communication between the handset device 1 and at least a second IC Card is provided as described hereinafter. The first IC card 4 is inserted in conventional way inside the slot 2 of the handset device 1 and it is in communication with it according to the handset device-IC card interface.
At least a second IC Card is inserted inside an additional box 6, for example external to the handset device 1 , comprising one or more slots for hosting the corresponding at least second IC Card. In the example of figure 2, the at least second IC Card is represented with three IC Cards 5a, 5b, 5c, without limiting the scope of protection to the number of IC Card hosted by the additional box 6.
The connection between the IC Cards 5a, 5b, 5c and the additional box 6 is realized in conventional way, for example they are hosted inside three corresponding slots, under an hardware point of view, similar to the slot 2
INC032BWO
provided by the handset device 1.
According to the present invention, the first IC Card 4, the at least second IC Card 5a, 5b, 5c and/ or the additional box 6 are provided with a wireless personal interface, supporting a corresponding wireless personal communication.
Without limiting the scope of the invention, the additional box 6 may be external to the handset device 1 or it may be placed in an apposite location reached inside or nearby a cover of the handset device 1 , substantially without wired connection with an electronic component of the handset device 1 itself.
According to the invention, a data exchanged between the first IC Card 4 and the handset device 1, based on a conventional handset-IC Card interface, is forwarded onto a wireless personal interface, to one of the IC Card 5a, 5b, 5c hosted in the additional device 6. The first IC Card 4 and said at least a second IC Cards 5a, 5b, 5c are provided with the wireless personal interface 7, supporting the wireless communication between said first IC Card 4 and the additional one or more IC Cards 5a, 5b, 5c. For example, the wireless personal interface 7 is supported by the additional box 6, while the at least second IC Cards 5a, 5b, 5c is connected in conventional way to the additional box 6.
According to the method of the present invention, the first IC Card 4 receives from the handset device 1 a command by the conventional handset device/IC Card interface and forwards it to the at least second IC Cards 5a, 5b, 5c through the wireless personal interface 7. Hardware modifications to the handset device 1 are not required since the first IC Card 4 has the same size and shape of a conventional IC Card, for example the same size and shape of a conventional (U)SIM. Also software modification to the conventional handset device/IC Card interface are not required since the method according to the present invention does not involve any change of the communication between the handset device 1 and the first IC Card 4.
The first IC Card 4 may have a same form factor than a standard IC card intended to be physically inserted in the slot of the handset device 1.
INC032BWO
More particularly, the first IC Card 4 has no subscription line but it works like a proxy replicating an ISO 7816 communication between the handset device 1 and the first IC Card 4 on the wireless personal interface 7.
A communication between the handset device 1 and the first IC card 4, as well as a wireless communication between the first IC Card 4 and the at least second IC Card 5a, 5b, 5c, according to the method of the present invention is schematically represented in figure 3. The steps labeled with the code 60 denote the standard way used in IC Cards to instruct handsets or other terminal that IC Card is working. In conventional systems, this steps are needed to keep communication alive even if response is not ready yet and to avoid that the handset aborts communication due long waiting time. In figure 3 is shown how this procedure can be used to compensate the longer response time due to wireless communication overhead. Without limiting the scope of the present invention, a ZigBee communication protocol is considered to better explain the wireless personal communication between the first IC Card 4 and the at least second IC Cards 5a, 5b, 5c.
A ZigBee communication protocol is particularly indicated for implementing a wireless communication in an IC Card, due to its low hardware requirement and low power consumption. Anyway, a different wireless personal communication protocol should be taken in consideration without altering the scope of the present invention.
More particularly, the ZigBee is a specification for a high level communication protocol based on small, low-power digital radios, complying to the IEEE 802.15.4 standard. The IEEE 802.15 is the 15th working group of the IEEE 802, specialized in standards relating to
Wireless Personal Area Network. More particularly, the fourth section of such working groups IEEE 802.15.4, identified as Low Rate WPAN section, deals with low data rate and very long battery life.
A communication protocol according to the ZigBee specification is for example implemented for industrial, scientific and medical radio bands, corresponding to 868 MHz in Europe, 915 MHz in the USA and 2.4 GHz in most jurisdictions worldwide.
INC032BWO
A network based on such communication protocol is intended to be simpler and cheaper than other Wireless Personal Area Network, such as Bluetooth. As a comparison, the most capable device implementing communication protocol based on ZigBee specification, hereinafter ZigBee node, requires only about 10% of the software of a typical Bluetooth or Wireless Internet device, and the simplest ZigBee nodes are about 2%.
More particularly, there are three different types of ZigBee device:
- ZigBee coordinator (ZC), the most capable device intended to coordinate; it represents a root of a network tree and might bridge to other networks. There is exactly one ZigBee coordinator in each network, able to store information about the network, including acting as the repository for security keys.
- ZigBee Router (ZR), acts as an intermediate router, passing data from other devices. - ZigBee End Device (ZED), contains just enough functionality to talk to its parent node, either the coordinator or a router; it cannot relay data from other devices. It requires the least amount of memory, and therefore may be less expensive to manufacture than the above mentioned ZR or ZC.
It is out of the scope of the present invention to establish which, among the at least a second IC Cards 5a, 5b, 5c, the first IC Card 4 and the additional box 6 is the master of the wireless communication and which is the coordinator, the router or the end-point because this is an implementative choice, not altering the solution idea at the base of the communication method. Again with reference to figure 3, the handset device 1 sends an ISO 7816 compliant APDU command to the first IC Card 4, according to the conventional handset-IC Card interface; such first IC Card 4 forwards the APDU command to the additional box 6, through the wireless personal interface 7. The additional box 6 receives the APDU command through the wireless personal interface 7 and forwards it to the at least second IC Card 5a, 5b, 5c, for example according to ISO 7816 standard protocol.
INC032BWO
When the at least second IC Card 5a, 5b, 5c process the received APDU command, it sends back a response to the additional box 6. The additional box 6, return the response to the first IC Card 4, through the wireless personal interface 7. According to the method of the present invention a mapping phase is provided in order transform an APDU command according to the conventional handset-IC Card interface into a corresponding APDU command according to the wireless personal interface, for example according to a ZigBee protocol. More particularly, the method according to the present invention provides to split a conventional APDU command before sending it to the wireless personal interface.
In fact, in some wireless personal protocols, like ZigBee protocol, a packet of data has a size smaller than the maximum data size according to the conventional handset-IC Card interface; for example the ISO 7816 maximum data size is 256 bytes, grater than a size of a packet of data in a ZigBee protocol.
Similarly, the communication method according to the present invention provides to reassemble an APDUs, previously subdivided, in order to render it readable to the at least second IC Card 5a, 5b, 5c, like a conventional APDU command.
Figure 4 schematically shows a packet of data for a wireless communication between the handset device 1 and the at least second IC Card 5a, 5b, 5c. The packet of data comprises a wireless header block, for example storing information about the destination of the packet, a flow control information block, for splitting and/ or reassembling one or more long APDUs, and an APDU block, storing the APDU command.
Since a radio protocol is usually broadcast over the air, it can be easily monitored by an unauthorized and hidden receiver. For this reason the method of the present invention provides a phase for rendering secure the communication between the first IC card 4 and the additional box 6, as well as the communication between such additional box 6 and the at least second IC Card.
INC032BWO
In fact, a potential attack could for example try to observe data stored inside the at least second IC Card 5a, 5b, 5c by intercepting data sent by such at least second IC Card 5a, 5b, 5c to the additional box 6 or data sent from such additional box 6 to the first IC Card 4. More particularly, the method provides a ciphering of a transmission through a conventional cryptographic algorithm based on a key exchange. During an administrative phase under the control of a user a secret key is exchanged, for example between the first IC Card 4 and the additional box 6 and herein registered. The communication method provides that, during the administrative phase intended to exchange the secure key, the wireless personal interface is excluded but the first IC Card 4 is inserted inside the slot present in the additional box 6 in order to prevent not authorized IC Card to get registered to the additional box 6. The secure keys may for example be stored by a manufacturer inside two ZigBee devices, i.e. one first IC Card 4 and one additional box 6, the ZigBee devices sharing the same secure keys. In this case they could be used together, for example the additional box 6 and the first IC Card 4 could be sold together. In this case the additional box 6 cannot be ever used in combination with a first IC Card different from the one it was sold with.
Another approach is the following. One of the two ZigBee devices is provided with a master key. For example, let the additional box 6 hold the master key. The master key is shared inserting the IC Card 4 in the additional box 6, in one of the slots dedicated to the at least second IC Card 5a, 5b, 5c, so to transmit the master key over the wired interface. In this case, a given additional box 6 can be used with whatever piece of first IC Card, provided that it has been previously inserted in the additional box 6 to perform the administrative phase. It's also advisable that a mechanism is used to make void a previous key exchange, to avoid that a first IC Card, lost or given to another user, can be used to spy wireless communication between the additional box 6 and the new first IC Card intended to be used as replacement. Making void a previous key exchange can be achieved simply discarding the old key held by the additional box 6 and generating a new one during each administrative phase. In this case,
INC032BWO
the new first IC Card will be provided with the new key, while the key held by old IC Card is no more recognized by the additional box 6. Also an explicit procedure to cancel key received by IC Card during a previous administrative phase could be performed inserting the first IC Card in one of the slots present in the additional box 6 and pressing a button. According to the communication method, many other security solutions may be adopted for protecting the wireless communication: for example a strong key exchange based on a Diffie-Helmann algorithm or an authentication scheme based on an RSA asymmetric cryptography. Being the handset device 1 designed to use a single IC Card at a time, the communication method also provides a phase for selecting a specific IC card among the at least second IC Cards 5a, 5b, 5c, inserted inside the additional box 6.
The phase for selecting a specific IC card may allow a user to decide which subscriber line he desires to use, for example through a graphic interface on a display of the handset device 1, driven by an application loaded inside the first IC card 4, for example using Sim Application Toolkit commands defined in ETSI Technical Specification 11.14. The switching of an IC Card 5a, 5b, 5c, may also be managed through an application stored inside the handset device 1, adding an administrative menu for setting an active IC Card 5a, 5b, 5c.
The administrative menu allows to query which IC Card among the at least second IC Card 5a, 5b, 5c is available, for example which IC card is inserted in the additional box 6. Once the one of the at least second IC Card is selected, the first IC Card 4 issue a REFRESH proactive command, for example according to the ETSI TS 11.14, to the handset device 1 for switching to the selected IC Card 5a, 5b 5c.
The administrative menu driven by the first IC Card 4 can also present an option to make void the key possibly used to protect communication between the first IC Card 4 and the additional box 6, so that the first IC Card 4 shall be submitted to a new key exchange with the same or another additional box 6 to return operative.
Otherwise, the communication method may provide that, during the power on of the handset device, an IC card 5b is selected automatically,
INC032BWO
such IC card 5b being different, in a revolving way, from an IC Card 5a selected during a previous power on of the handset device.
A phonebook, an SMS data base or personal information, stored inside a non active second IC Card, may be accessed from the additional box 6, even if only one of the at least second IC cards at a time is available for a telephone communication.
In fact, the handset device is designed to use a single IC Card at a time, but this is limited to the files related to the subscriber line and to the commands provided by the IC Card, not to the utility information non related to telecom operator and network authentication.
As an example not limiting to scope of the present invention, a merging of a first address book, belonging to an IC Card active for a telephone communication, with a second address book, belonging to an IC Card non active for a telephone communication, is briefly described. While the active IC Card is used for network authentication, the communication method retrieves phonebooks and SMS data from corresponding non active IC Card hosted inside the additional box 6. The communication method, organizes phonebooks and SMS data in order to present them to the handset device 1 as a single virtual phonebook and virtual SMS database.
For example, the communication method provides to organize the virtual SMS database as a merging of all the SMS data inside all the at least second IC Card 5a, 5b, 5c.
More particularly, in a GSM environment the communication method may support a plurality of data file merging.
For example, the set of SMS data file belonging to all the at least second IC Cards 5a, 5b, 5c, wherein each SMS data file stored inside each at least second IC Cards comprises a plurality of records, is mapped into a single virtual SMS data file, comprising the merging of the plurality of records belonging to each SMS data file; each record may have a fixed length, according to the standard specification ETSI TS 11.11.
Also the set of phonebook data file belonging to all the at least second IC
INC032BWO
Cards 5a, 5b, 5c, wherein each phonebook data file stored inside each at least second IC Cards comprises a plurality of records, may be mapped into a single virtual phonebook, comprising the merging of the plurality of records belonging to each phonebook data file. Since each IC Card 5a, 5b, 5c usually stores a number of records near to an upper limit, the communication method provides that the single virtual phonebook is not the mere union of all phonebook data files but a selection of significant data file. For example, empty and duplicate records among the IC Cards are ignored. If there are exceeding records even after the selection, such exceeding records may be ignored, since they belong to a non active IC Card; otherwise, the communication method provides to browse the exceeding records in a plurality of phonebook pages, for example through a browse command driven by the first IC Card 4 using a graphic interface of the handset device.
Since the phonebook and SMS data file are usually cached by the handset device 1, the communication method provides that the browse command comprises a REFRESH command with "file refresh" option issued to force the handset device 1 to re-read a new version of the virtual phonebook data file. More particularly, the new version includes significant records, excluded by the previous loaded version of virtual phonebook data file. Iteratively, if there are exceeding records, a new page is available to substitute a last version.
Since it is non guaranteed that the record size in a first phonebook of an IC Card of said at least second IC Card is equal to the record size in a second phonebook of another IC Card of said at least second IC Card, the communication method provides that the virtual phonebook is based on record having the greater size between said record sizes. The communication method returns the file size and record size of the virtual data file.
With reference to figure 7a, it is schematically represented an IC Card 5a storing a first phonebook data file comprising ten records and an IC Card 5b storing a second phonebook data file comprising eight records.
As schematically represented in figure 7c, the page 1 of the virtual
INC032BWO
phonebook comprises 10 records, supposed that, to simplify description, that 10 is the upper limit for number of records. Even if there are further contacts belonging to the second phonebook to be displayed, some free records are inserted inside the virtual phonebook, to allow a user to add new contacts. More particularly, if a new contact is inserted, it is flushed in the IC Card 5a, that is the active one, if possible, otherwise in the first free record available in any IC Card 5a, 5b.
The page 2 of the virtual phonebook contains all the significant contacts of the IC Card 5b. Since there is remaining space in the virtual phonebook, being its size substantially greater than the size of the IC Card 5b, some contacts belonging to the page 1 of the virtual phonebook are shown, as well as some free space for adding contacts. Which contact to be presented in each page, depends on a specific policy for example base on a priority of the entries and it is an implementative matter. Figure 7b schematically shows an example of a selection of the phonebook contents of figure 7a, in order to create a virtual phonebook content, according to the present invention.
For example, assuming that an handset device updates the records of a phonebook using the first free record, a following policy may be considered: entries in the first records of a virtual phonebook data file are the most important, since they have been inserted by the user earlier; entries in the bottom of the file, are the most recent inserted and therefore that they will be recalled soon with high probability; - duplicated entries will appear once, but with an high priority.
The communication method provides a menu to a user in order to select which set of phonebook data files and SMS data files to use.The method according to the present invention also provides a multi PIN management of the at least second IC Cards 5a, 5b, 5c. In fact, if multiple IC Cards are accessed simultaneously, a corresponding PIN must be presented for each IC card. More particularly, each IC Card is associated to a specific PINs but the handset device 1 usually ask the user for a single PIN to a single IC Card.
INC032BWO
Even if possible, by means of an application running on the first IC Card 4 for PIN management at power on, it is uncomfortable for a user to enter many PINs every time the handset device 1 is turned on. The communication method support a change PIN service intended to align multiple PIN values, associated to the at least a second IC card, in a single PIN value, for example the PIN value of the active IC Card.
For improving security, the communication method does not track the PIN value of the at least second IC Card, used to align all the PIN values but the serial number of such IC Card, being not recommended to track a PIN value. For example, the IC Card serial number is stored inside the additional box 6.
If an IC Card 5b result in a list of IC Card with the same PIN, the PIN first successfully entered for an active IC Card 5a is presented also to the IC Card 5b. If the PIN verification fails, the IC Card 5b is removed from the list of IC Card with the same PIN and the communication method proposes a change PIN to the user.
The additional box cannot suppose that an IC Card 5b has a same PIN of an active IC Card 5a if such IC Card 5b is not in the list, and should minimize the attempts to verify PIN on untracked IC Cards, since after three consecutive unsuccessful PIN presentations the card is blocked.
A possible PIN alignment according to the communication method is schematically represented in figure 8.
Advantageously, the communication method provides an improved connectivity to external devices, for example a connection between the additional box 6 and a personal computer based on a wireless personal communication like ZigBee, Bluetooth or based on a wire connection like USB. According to such improved connection, a personal computer may read phonebooks, SMS and similar contents stored inside the at least second IC Cards, as well as participating to a test, sending a plurality of configuration command to the at least second IC Cards, for example during their manufacturing phase.
With reference to figure 9, the communication method provides that the additional box 6 it is interconnected through a wireless personal interface with a personal computer. The additional box 6 sends and receives APDU
INC032BWO
commands over the wireless personal communication to/ from the personal computer.
With reference to figure 10, the communication method provides that the additional box 6 it is interconnected both to a personal computer and a handset device 1.
According to a different embodiment of the present invention the additional box 6 provides one or more slots for hosting different purposes IC Cards, for example a (U)SIM and a multimedia mass storage card such as MMC. The additional box 6 communicates with the (U)SIM through a conventional handset-(U)SIM interface while it communicates with the MMC according to a conventional handset-MMC interface. At handset side, an IC Card as the described first IC Card 4 is inserted in the handset (U)SIM slot, and the IC Card replicates communication between the handset and the IC Card on the wireless personal interface 7. Moreover a multimedia card is inserted in the handset multimedia slot. Said multimedia card is not required to have any significant storage or other capabilities, but it is provided with wireless connectivity, as the said first IC Card 4, and it replicates communication (usually data exchange and file access) between the handset and the multimedia card on the wireless personal interface 7. In this way, multimedia card containing actual data is not directly inserted in the handset, but inserted in the additional box 6, with the same advantages as for IC Cards.
Advantageously, this solution may also provide multi-format, so that an SD Card or other format may be used with an handset device provided only with an MMC slot if, for example, the additional box 6 is designed to accept SD format and handset MMC only
Advantageously, an additional box 6 may be used with further multimedia memory slots for users that need many memory cards. For example, a main memory Card reserved for the mobile phone and permanently inserted in the additional box 6, and another memory Card, in use with the digital camera, inserted in the additional box 6 only when needed.
The communication methods manages the multiple slots in one of the following approaches:
INC032BWO
- only one slot at a time may be active, being a selection made using the a menu in the handset device graphic interface;
- contents of two or more IC Cards are managed, for example merged in a single virtual data file; such a virtual data file looks like a directory of a single IC Card comprising a plurality of sub-directory for each corresponding additional IC Card.
Advantageously, the communication method allows to use a plurality of said first IC Card, each one inserted in a corresponding handset device 1 and associated to a single additional box 6. If a first handset device 1 is not available, for example because battery is charging, a second handset device 1 may be used without removing a first IC Card 4 inserted in the first handset device 1.
Advantageously, the communication method according to the present invention supports a multiple communication between an handset device and at least a second IC Cards, such IC Card being hosted in an additional box, external the handset device, in order to maintain the total size and the weight of the handset device, suitable to be hosted in a pocket.
At the same time the communication method provides a quick switching of a communication between the handset device and different IC Cards, chosen by a user between the at least second IC Cards.
The communication method is achievable without modifying an hardware specification of the handset devices as well as an hardware specification of the IC Cards. Also the conventional handset-IC card interface is not altered, being the first IC Card driven by a set of standard APDU commands according to such conventional handset-IC card interface.
Also the at least second IC Card may receive and answer to standard APDU command according to such conventional handset-IC card interface, sent by the additional box. Advantageously, considering the size of a (U)SIMs, according to ISO 7816 plug-in or ETSI 3 rd form factor and the characteristics of a radio protocol IEEE 802.15.4 and ZigBee protocol, for the provision of the corresponding power for the communication method it is sufficient that the additional
INC032BWO
box 6 comprises a lithium button-sized battery or a small rechargeable battery, thus limiting its size and weight for user comfort
INC032BWO