US 11,997,488 B2
Method and apparatus for managing and verifying certificate
Kangjin Yoon, Suwon-si (KR); Jonghoe Koo, Suwon-si (KR); Duckey Lee, Suwon-si (KR); and Taehyung Lim, Suwon-si (KR)
Assigned to Samsung Electronics Co., Ltd., Suwon-si (KR)
Filed by Samsung Electronics Co., Ltd., Suwon-si (KR)
Filed on Feb. 6, 2023, as Appl. No. 18/164,821.
Application 18/164,821 is a continuation of application No. 17/521,287, filed on Nov. 8, 2021, granted, now 11,576,044, issued on Feb. 7, 2023.
Application 17/521,287 is a continuation of application No. 16/871,278, filed on May 11, 2020, granted, now 11,172,362, issued on Nov. 9, 2021.
Claims priority of application No. 10-2019-0054522 (KR), filed on May 9, 2019; and application No. 10-2019-0080318 (KR), filed on Jul. 3, 2019.
Prior Publication US 2023/0188990 A1, Jun. 15, 2023
This patent is subject to a terminal disclaimer.
Int. Cl. H04W 12/069 (2021.01); G06F 8/61 (2018.01); G06Q 20/12 (2012.01); G06Q 30/018 (2023.01); H04L 9/08 (2006.01); H04L 9/32 (2006.01); H04W 8/24 (2009.01); H04W 12/0431 (2021.01)
CPC H04W 12/069 (2021.01) [G06F 8/61 (2013.01); G06Q 20/127 (2013.01); G06Q 30/0185 (2013.01); H04L 9/0844 (2013.01); H04L 9/3247 (2013.01); H04W 8/245 (2013.01); H04W 12/0431 (2021.01); H04L 2209/80 (2013.01)] 16 Claims
OG exemplary drawing
 
1. A method of a smart secure platform (SSP) in a terminal verifying certificate in a wireless communication system, the method comprising:
receiving, from a local bundle assistant (LBA), an SSP credential request including a secondary platform bundle manager (SPBM) credential, wherein the SPBM credential includes secondary platform bundle family identifier (SPB Family ID), secondary platform bundle family custodian object identifier (SPB Family Custodian Object ID) and a first SPBM certificate for key agreement, and wherein the first SPBM certificate for the key agreement includes a public key for key agreement of an SPBM;
verifying the first SPBM certificate based on the SPB Family ID and the SPB Family Custodian Object ID;
generating an ephemeral key pair of a SSP ephemeral public key and a SSP ephemeral secret key;
generating a first session key based on the SSP secret public key and the public key for key agreement of the SPBM;
generating the SSP credential based on the first session key; and
transmitting the generated SSP credential to the LBA, in response to receiving a transfer request from the LBA,
wherein the SPB Family ID represents an identifier that identifies a type of a bundle, and
wherein the SPB Family Custodian Object ID represents an identifier that identifies a subject which manages the SPB Family ID.