| CPC G06F 8/65 (2013.01) [H04L 63/0853 (2013.01); H04L 67/34 (2013.01); H04W 12/35 (2021.01); H04W 12/40 (2021.01)] | 13 Claims |
|
1. A method for patching an operating system (OS) on a secure element embedded in a terminal, the method comprising:
transmitting an order to create an Issuer Security Domain-Profile (ISD-P) on the secure element from a script platform to a Subscription Manager Secure Routing (SM-SR);
establishing a secure channel between the script platform and the ISD-P or the secure element a secure channel;
performing ISD-P key establishment with the ISD-P on the secure element through the SM-SR, thereby generating a keyset known only by the script platform and the ISD-P to secure one or more scripts;
formatting the one or more scripts, adding one or more signed tokens in the one or more scripts, and securing the one or more scripts to produce one or more secured scripts;
sending the one or more secured scripts to the SM-SR which then sends the one or more secured scripts to the secure element;
executing the one or more secured scripts in the ISD P, wherein the execution of the one or more secured scripts install a patch in the OS; and
sending a message informing the script platform of a result of the execution of the one or more secured scripts from the secure element to the script platform.
|