阅读说明：本技术 微电路卡 (Microcircuit card ) 是由 O·鲁伊 于 2021-03-26 设计创作，主要内容包括：本公开的实施例涉及微电路卡。一种微电路卡,包括第一(通用)微控制器、第二(安全处理)微控制器、与卡的外部通信的至少一个模块以及生物测定传感器。向卡的外部的任何通信都通过第一微控制器传送。传感器与第二微控制器之间的任何通信都通过第一微控制器传送。此外,第二微控制器不参与向卡的外部的任何通信。(Embodiments of the present disclosure relate to microcircuit cards. A microcircuit card comprising a first (general purpose) microcontroller, a second (secure processing) microcontroller, at least one module communicating with the outside of the card, and a biometric sensor. Any communication to the outside of the card is passed through the first microcontroller. Any communication between the sensor and the second microcontroller is communicated by the first microcontroller. Furthermore, the second microcontroller does not participate in any communication to the outside of the card.)

1. A microcircuit card comprising:

a first microcontroller;

a second microcontroller;

at least one communication module communicating with an exterior of the card; and

a biometric sensor is provided which is capable of measuring,

wherein:

any communication by the card to the outside of the card is transmitted by the first microcontroller;

any communication between the biometric sensor and the second microcontroller is communicated by the first microcontroller; and

the second microcontroller does not participate in any communication to the outside of the card.

2. The card of claim 1, wherein the second microcontroller is a secure microcontroller.

3. The card of claim 1, wherein said second microcontroller is dedicated to processing and storing secure data.

4. The card of claim 1, wherein the second microcontroller has a memory capacity that is less than a memory capacity the first microcontroller has.

5. The card of claim 1, wherein the at least one communication module comprises a first near field communication module and a second contact communication module, and wherein the first microcontroller is coupled to the first near field communication module and the second contact communication module for communication.

6. The card of claim 5, wherein the first microcontroller is configured to implement: a near field communication protocol by the first near field communication module; and a contact communication protocol through the second contact communication module.

7. The card of claim 1, wherein the first microcontroller comprises: a power management unit; and an operation sorting unit.

8. The card of claim 1, wherein the first microcontroller is configured to control operations performed by: the second microcontroller; the at least one communication module; and the biometric sensor.

9. The card of claim 1, wherein the first microcontroller is configured to manage power to the second microcontroller.

10. The card of claim 1, wherein the first microcontroller is configured to process data originating from the biometric sensor.

11. The card of claim 1, wherein the first microcontroller and the second microcontroller form part of the same chip.

12. The card of claim 1, wherein the biometric sensor is a fingerprint sensor.

13. A microcircuit card comprising:

a general purpose microcontroller;

a secure processing microcontroller configured to process and store secure or secret data;

a first communication link between the general purpose microcontroller and the secure processing microcontroller, wherein the first communication link to the general purpose microcontroller provides the secure processing microcontroller with a unique communication connection for communicating external to the secure processing microcontroller;

at least one communication module in communication with the exterior of the card, wherein the general purpose microcontroller is configured to control communications through the at least one communication module;

a second communication link between the general purpose microcontroller and the at least one communication module;

a biometric sensor; and

a third communication link between the general purpose microcontroller and the biometric sensor, wherein the general purpose microcontroller is further configured to control the transfer of biometric data from the biometric sensor to the secure processing microcontroller through the general purpose microcontroller and over the first communication link and the third communication link.

14. The card of claim 13, wherein the secure processing microcontroller is not involved in any communication to the exterior of the card.

15. The card of claim 13, wherein said secure processing microcontroller has a smaller memory capacity than said general purpose microcontroller.

16. The card of claim 13, wherein the at least one communication module comprises a first near field communication module and a second contact communication module, and wherein the common microcontroller is coupled to the first near field communication module and the second contact communication module for communication.

17. The card of claim 16, wherein the general purpose microcontroller is configured to implement: a near field communication protocol by the first near field communication module; and a contact communication protocol through the second contact communication module.

18. The card of claim 13, wherein the general purpose microcontroller is configured to control operations performed by: the secure processing microcontroller; the at least one communication module; and the biometric sensor.

19. The card of claim 13, wherein the biometric sensor is a fingerprint sensor.

Technical Field

The present disclosure relates generally to electronic devices and, more particularly, to microcircuit cards.

Background

Many applications use microcircuit cards, such as payment cards, transportation cards, personal identification cards, and the like. Among the current microcircuit cards, cards equipped with biometric sensors are particularly known. Biometric sensors are typically capable of performing an identity check each time the card is used. Current microcircuit cards provided with biometric sensors are generally complex and expensive to design and manufacture.

There is a need for improvements in current microcircuit cards that include biometric sensors.

Disclosure of Invention

Embodiments overcome all or some of the disadvantages of known microcircuit cards that include biometric sensors.

An embodiment provides a microcircuit card comprising: a first microcontroller; a second microcontroller; at least one module in communication with an exterior of the card; and a biometric sensor. Any communication to the outside of the card is passed through the first microcontroller. Any communication between the sensor and the second microcontroller is communicated by the first microcontroller.

According to an embodiment, the second microcontroller is a secure microcontroller.

According to an embodiment, the second microcontroller is dedicated to processing and storing secure data.

According to an embodiment, the second microcontroller has a smaller memory capacity than the first microcontroller.

According to an embodiment, the first microcontroller is coupled (preferably connected) to two modules communicating to the outside of the card: a first near field communication module; and a second contact communication module.

According to an embodiment, the first microcontroller is configured to implement: a near field communication protocol; and a contact communication protocol.

According to an embodiment, the first microcontroller comprises: a power management unit; and an operation sorting unit.

According to an embodiment, the first microcontroller is configured to control: a second microcontroller; a communication module; and a sensor.

According to an embodiment, the first microcontroller is configured to manage the power supply of the second microcontroller.

According to an embodiment, the first microcontroller is configured to process data originating from the sensor.

According to an embodiment, the first microcontroller and the second microcontroller form part of the same chip.

According to an embodiment, the sensor is a fingerprint sensor.

Drawings

The above features and advantages and other features and advantages are described in detail in the following description of specific embodiments, which is given by way of illustration and not of limitation with reference to the accompanying drawings, in which:

FIG. 1 schematically illustrates, in block diagram form, an embodiment of a microcircuit card in communication with a reader; and

figure 2 shows schematically in the form of a block diagram an example of the functional architecture of the card of figure 1.

Detailed Description

Like features are designated by like reference numerals throughout the various figures. In particular, structural and/or functional features that are common in various embodiments may have the same reference numbers, and may be arranged with the same structural, dimensional, and material properties.

For the sake of clarity, only the steps and elements that are helpful in understanding the embodiments described herein have been illustrated and described in detail. In particular, the data exchange between the reader and the card and the encryption algorithm implemented by the secure microcontroller of the card are not specified, the described embodiments being compatible with conventional data exchange between the reader and the card and conventional encryption algorithms. Furthermore, the processing of data originating from the biometric sensor of the card is not described in detail, embodiments are compatible with conventional data processing originating from biometric sensors.

Unless otherwise indicated, when two elements are referred to as being connected together, this means that there is no direct connection of any intervening elements, other than conductors, and when two elements are referred to as being coupled together, this means that the two elements may be connected or connected through one or more other elements.

In the following description, when referring to terms defining absolute positions (such as the terms "front", "rear", "top", "bottom", "left", "right", etc.), or terms defining relative positions (such as the terms "above", "below", "upper", "lower", etc.), or terms defining directions (such as the terms "horizontal", "vertical", etc.), the directions of the drawings are referred to, unless otherwise specified.

Unless otherwise specified, "about", "substantially" and "approximately" mean within 10%, preferably within 5%.

Fig. 1 schematically shows, in block diagram form, an embodiment of a microcircuit card 100 (smart card) in communication with a reader 102 (reader). For example, the card 100 is a contactless bank payment card, a transportation card, a personal identification card, or the like. For example, reader 102 is a payment terminal, a traffic ticket, a personal access control terminal, and the like.

Reader 102 includes an antenna 104 (antenna). In particular, the antenna 104 is capable of emitting an electromagnetic field (EMF) (e.g., a radio frequency field). In the case of transmission, for example, the EMF field is modulated and/or demodulated by an asynchronous transceiver circuit or module 106(RF UART) of reader 102 (e.g., a universal asynchronous receiver). In the event that card 100 is located within range of reader 102, the electromagnetic radio frequency field EMF modulated by reader 102 may then be captured by antenna 108 (antenna) of card 100.

Fig. 1 arbitrarily shows the case of a reader 102 including a near field communication module (asynchronous transceiver circuit) 106. However, this is not a limitation. As a variant, reader 102 comprises another communication module, for example a contact communication module according to standard ISO/IEC 7816. Depending on the application, reader 102 thus includes one or the other between unit 106 and a contact communication unit (not shown), or both.

The card 100 comprises a first circuit or module 110(RF acquisition + RF UART) communicating with the outside of the card 100. For example, first communication module 110 of card 100 is similar to module 106 of reader 102. For example, the module 110 can provide power to the card 100 from the EMF field captured by the antenna 108. Although not shown, the antenna 108 may actually be coupled to the module 110 via a matching circuit.

The card 100 further comprises a second circuit or module 112 (contact module) communicating with the outside of the card 100. For example, the second communication module 112 is a contact communication module. For example, module 112 enables card 100 to communicate through contact with reader 102 or with a reader similar to reader 102 but not including antenna 104 and near field communication module 106.

As a variant, the card 100 comprises a single communication module, for example a contact communication module 112, between the modules 110 and 112.

According to an embodiment, the communication modules 110 and 112 of the card 100 are driven or controlled by a first microcontroller 114 (general purpose MCU). For example, the communication modules 110 and 112 of the card 100 are each coupled (preferably connected) to a microcontroller 114. In particular, the contact communication module 112 is connected to the microcontroller 114 via a link 116(ISO 7816), for example according to the standard ISO 7816.

The card 100 comprises a second microcontroller 118 (security kernel). The second microcontroller 118 is coupled (preferably connected) to the first microcontroller 114 via a serial link 120 (serial link).

According to an embodiment, the second microcontroller 118 is a secure microcontroller. In particular, the microcontroller 118 is dedicated to processing and storing secure or secret data, i.e. data that needs to be kept accessible to certain users or circuits. The microcontroller 118 has in particular the function of protecting secret data (for example data relating to the owner of the card 100) and performs operations on or by means of the secret data. The microcontroller 118 is specifically configured to determine that the secret data it manipulates cannot be discovered by hackers or pirates.

For example, the second microcontroller 118 has a smaller memory capacity than the first microcontroller 114. Further, for example, the microcontroller 118 is provided with a computing power that is less than the computing power of the microcontroller 114. According to an embodiment, the microcontroller 114 is capable of performing more floating point operations per second than the microcontroller 118.

According to an embodiment, the first microcontroller 114 is configured to drive or control the second microcontroller 118. During data exchange over serial link 120, microcontroller 114 is configured as a master as long as microcontroller 118 is configured as a slave.

Generally, any communications with the exterior of the card 100 are communicated through the first microcontroller 114. In particular, the second microcontroller 118 is only able to communicate with the outside of the card 100 (e.g., with the reader 102) through the first microcontroller 114.

The card 100 further comprises a biometric sensor 122 (biometric sensor), for example a fingerprint sensor. Sensor 122 via link 128(SPI, I)²C) (e.g. SPI (Serial peripheral interface) Serial data bus or I)²C (inter integrated circuit) bus) is coupled (preferably connected) to the first microcontroller 114. The first microcontroller 114 is preferably configured to process data originating from the biometric sensor 122.

The sensor 122 is not directly coupled to the second microcontroller 118. In particular, any possible data exchange (i.e., any communication) between the sensor 122 and the second microcontroller 118 is communicated by the first microcontroller 114. In other words, the sensor 122 may not exchange data directly with the second microcontroller 118 without passing through the first microcontroller 114, the first microcontroller 114 being able to manipulate a large amount of data originating from the biometric sensor 122, in particular in the case of the fingerprint sensor 122, data relating to image filtering.

Generally, the first microcontroller 114 is configured to control: a second microcontroller 118; communication modules 110 and 112; and a biometric sensor 122.

Reader 102 and card 100 may each include other circuitry, such as application specific circuitry. In FIG. 1, these circuits will be represented by block 124(FCT) for reader 102; for the card 100, these circuits will be represented by block 126 (FCT).

It may also be designed to provide a card similar to card 100, but including, for example, a single microcontroller instead of microcontrollers 114 and 118. For example, it is possible to design the microcontroller as a secure microcontroller which is not only capable of storing and processing secret data, but also of performing operations unrelated to secret data. For example, a microcontroller would be used to process data originating from sensor 122 and manage communications with the exterior of the card. However, secure microcontrollers are generally more expensive to design, manufacture, and program than microcontrollers that are not capable of handling secret data. Thus, using a single microcontroller to ensure similar functionality to that used with microcontrollers 114 and 118 would risk resulting in increased card complexity and manufacturing costs.

The advantage of the card 100 is that the secure microcontroller 118 is basically used to process and store secret data. For example, this advantageously enables the provision of an implementation of the secure microcontroller 118 having a lower computational power and/or memory capacity than would be the case if the microcontroller 118 were to be further configured to store and/or process non-secure data (e.g., data originating from the sensors 122 and/or data exchanged with the communication modules 110 and 112). This further enables the manufacturer of the card 100 to integrate the microcontroller 118 in one or more applications without requiring (or having) the ability to be dedicated to the development of applications that can be executed by the secure microcontroller.

Another advantage of the card 100 is that the sharing of tasks between the microcontroller 114 and the secure microcontroller 118 allows for the development of the card 100 with less complexity and greater flexibility. For example, software configured to manage the exchange of data with the outside of the card 100 can be modified without the software affecting the software executed by the microcontroller 118. This advantageously enables, for example, that software executed by the microcontroller 118 need only be authenticated again in the typically unusual case where modifications have been made in relation to the storage or processing of secret data.

It may also be designed to provide a card similar to card 100, but wherein the secure microcontroller 118 is not only capable of storing and processing secret data, but is also capable of managing communications with the exterior of the card. In this case, for example, the microcontroller 114 will be dedicated to processing the data coming from the sensor 122 and will in particular ensure that there is no functionality for external communication with the card. However, this would require providing a secure microcontroller 118 with higher performance and/or greater memory capacity than the card 100, and therefore is generally more expensive. This would further add a more complex authentication process to the card manufacturer after each modification of the functionality to manage the exchange of data with the outside of the card is enabled.

Fig. 2 schematically shows, in block diagram form, an example of the functional architecture of the card 100 of fig. 1.

In the example shown, the first microcontroller 14 (general purpose MCU) comprises a power management module or unit 200 (power management). For example, the power management unit 200 is configured to manage power of at least one element of the card 100 (fig. 1) and/or the first microcontroller 114 selected from: a second microcontroller 118 (security kernel), a communication module 110(RF acquisition + RF UART), a communication module 112 (contact module) and a biometric sensor 122 (biometric sensor). In practice, for example, the unit 200 controls the off or on state of at least one switch (not shown) external to the microcontroller 114. The switch is capable of disconnecting and restoring power to the microcontroller 118 and biometric sensor 122 from the module 110. In general, the first microcontroller 114 is preferably configured to manage the power supply of the second microcontroller 118.

The first microcontroller 114 further comprises an operational sequencing module or unit 202 (overall sequencing). The operation sequencing unit 202 is for example configured to assign tasks to different elements of the card 100 and/or to manage the execution priority of the tasks.

In practice, the units 200 and 202 of the first microcontroller 114 may be hardware and/or software.

For example, the first microcontroller 114 of the card 100 is configured to implement a near field communication protocol and a contact communication protocol. In the example shown, the microcontroller 114 includes a multiplexer 204(MUX arbitration) that enables selective activation of execution of near field communication software 206(RF COM protocol SW) or contact communication software 208(ISO COM protocol SW). The software 206, 208 is for example configured to drive the associated communication module 110, 112.

In the example shown, the second microcontroller 118 includes a secure memory area 210 (secret safe). For example, the memory area 210 can store secret keys and data, for example, at least one so-called reference fingerprint, with data resulting from the processing of, and comparing with, the images acquired by the sensor 122.

In the example shown, the second microcontroller 118 further comprises a secure processing unit 212 (secure processing and encryption). For example, unit 212 enables the execution of at least one encryption, signature or authentication algorithm, more commonly referred to as an encryption algorithm.

Although fig. 1 and 2 show microcontrollers 114 and 118 having different blocks, in practice microcontrollers 114 and 118 may form part of the same chip. Alternatively, the microcontrollers 114 and 118 are formed inside and on top of different chips.

An advantage of the architecture discussed in connection with fig. 2 is that the secure second microcontroller 118 does not involve communication(s) to be made externally to the card 100. This enables, for example, the use of microcontrollers 118 having the same hardware and/or software configuration in microcircuit cards 100 for different applications.

Various embodiments and modifications have been described. Those skilled in the art will appreciate that certain features of these various embodiments and variations may be combined, and that other variations will occur to those skilled in the art. In particular, it will be within the ability of those skilled in the art to adapt the described embodiment to a microcircuit card 100 that includes a single communication module.

Finally, the actual implementation of the described embodiments and variants is within the abilities of a person skilled in the art based on the functional indications given above. In particular, based on the above indications, the actual implementation of the communication modules 110 and 112, the microcontrollers 114 and 118, and the biometric sensor 122 are within the ability of those skilled in the art.

Based on the indications provided above, it would be within the ability of those skilled in the art to adjust the characteristics of the radio frequency communication according to the target application. In particular, it will be within the ability of those skilled in the art to adapt the above embodiments to comply with the requirements of the banking standard ISO 14443.

Such alterations, modifications, and improvements are intended to be part of this disclosure, and are intended to be within the spirit and scope of the invention. Accordingly, the foregoing description is by way of example only and is not intended as limiting. The invention is limited only as defined in the following claims and the equivalents thereto.