CN102685727B - Method for transmitting and operating application program, system for operating application program, server and terminal - Google Patents
Method for transmitting and operating application program, system for operating application program, server and terminal Download PDFInfo
- Publication number
- CN102685727B CN102685727B CN201110060128.3A CN201110060128A CN102685727B CN 102685727 B CN102685727 B CN 102685727B CN 201110060128 A CN201110060128 A CN 201110060128A CN 102685727 B CN102685727 B CN 102685727B
- Authority
- CN
- China
- Prior art keywords
- application program
- identity information
- digital certificate
- terminal
- module
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Landscapes
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The embodiment of the invention provides a method for transmitting and operating an application program, a system for operating the application program, a server and a terminal. The operation method comprises the following steps of: binding identity information with the application program and writing the identity information into a digital certificate to ensure the safety of the application program; and if only the authentication of the received identity information is passed through the terminal, operating the application program bound with the identity information, so that a user is not required to pay for the application program for a second time after replacing a mobile terminal, and can receives the digital certificate embedded with the identity information and the application program bound with the identity information in the digital certificate from the server or other terminals, the normal operation of the application program on a replaced mobile terminal is ensured, and the normal operation of the application program on a mobile terminal with a refreshed system can be ensured simultaneously.
Description
Technical field
The present invention relates to field of terminal technology, particularly relate to the transmission of a kind of application program, operation method, system, server and terminal.
Background technology
Along with the continuous enhancing of mobile terminal function; application program for mobile terminal is also more and more abundanter; different software developers develops different application programs; and sell by each application program network platform is unified; buy according to user and use the situation of application program; application program network platform operator and software developer can obtain corresponding remuneration, just because of this, application program copyright protection regime becomes the important ring that application program is sold.
Application program copy-right protection method conventional at present carries out use authority by digital copyright management (DRM, DigitalRights Management) copyright protection file.Concrete; arbitrary user carries out the application program protected and after paying corresponding expense through DRM copyright protection file being downloaded by mobile terminal; the DRM copyright protection engine that this mobile terminal is installed upgrades; thus realize the binding of application program and mobile terminal; user can only pass through this application program of running of mobile terminal of binding, thus the scope of application of limits application.
Current application program copy-right protection method can guarantee the fail safe of application program, avoid illegal copies and the use of application program, can the rights and interests of available protecting software developer and application program network platform operator, but for the user of down load application program, when user needs replacing mobile terminal or refreshes the system of mobile terminal, the renewal of DRM copyright protection engine all can be made to lose efficacy, cause the application program carrying out protecting through DRM copyright protection file cannot continue to use, user needs again to download and pays and uses the expense of this application program to realize continuing to use, thus cause the duplicate payment problem of application program.
For above problem; prior art provides a kind of safety installation method of java application; the method adopts digital signature encryption mode to provide basic protection to java application; after application program downloads to mobile terminal, in the process of set up applications, read the IMSI information of mobile terminal; and generate an independent authenticating documents to record this information; in application program running, utilize the authenticating documents generated, whether verifying application programs runs on legal mobile terminal.Utilize the method, at replacing mobile terminal or after refreshing mobile terminal system, also can ensure the normal operation on the mobile terminal of application program after replacing or the mobile terminal after system refresh.But this method Problems existing is, an independent authenticating documents is generated when java application and IMSI information being bound, this IMSI binding may be tampered, and causes any user or mobile terminal all can use this application program, the fail safe of application program is suffered damage.
Therefore, need badly and introduce the transmission of a kind of application program, operating scheme, both the fail safe of application program can have been guaranteed, avoid illegal copies and the use of application program, again can after replacing mobile terminal and mobile terminal system refresh, without the need to duplicate payment purchase applications, can ensure normally to run in the terminal of application program after replacing or the terminal after system refresh.
Summary of the invention
The embodiment of the present invention provides the transmission of a kind of application program, operation method, system, server and terminal, solve in prior art cannot meet application program simultaneously fail safe and the terminal of application program when again not paying after replacing or the terminal after system refresh on the normal problem run.
A kind of application program sending method, the method comprises:
The application program download request that receiving terminal reports, carries identity information and application program identification in this application program download request;
When comprising the identity information received in the identity information that the application program identification determining to have preserved is corresponding, described identity information is embedded digital certificate;
Application program corresponding to the digital certificate and described application program identification that embed identity information is sent to described terminal.
A kind of application program sending method, the method comprises:
First terminal receives the application program download request of the second terminal, carries application program identification in this application program download request;
The digital certificate of application program corresponding for described application program identification and embedding identity information is sent to the second terminal by first terminal.
A kind of application program operation method, the method comprises:
Terminal receives application program corresponding to the application program identification that embeds the digital certificate of identity information and request;
The identity information embedded in the digital certificate that end-on receives carries out certification, when certification is passed through, runs the application program received.
A kind of application program operational system, this system comprises:
Server, for the application program download request that receiving terminal reports, identity information and application program identification is carried in this application program download request, when comprising the identity information received in the identity information that the application program identification determining to have preserved is corresponding, described identity information is embedded digital certificate, and application program corresponding to the digital certificate and described application program identification that embed identity information is sent to described terminal;
Terminal, for the identity information certification that embeds in the digital certificate received by time, run this application program.
A kind of application program operational system, this system comprises first terminal and the second terminal, wherein:
First terminal, for receiving the application program download request of the second terminal, carries application program identification in this application program download request, and the digital certificate of application program corresponding for described application program identification and embedding identity information is sent to the second terminal;
Second terminal, for the identity information certification that embeds in the digital certificate received by time, run this application program.
A kind of server, described server comprises:
Receiver module, for the application program download request that receiving terminal reports, carries identity information and application program identification in this application program download request;
Whether comparison module, be identity information corresponding to the described application program identification of having preserved for more described identity information, when comprising the identity information received in the identity information that the application program identification determining to have preserved is corresponding, trigger writing module;
Writing module, for embedding digital certificate by described identity information;
Sending module, for sending to described terminal by application program corresponding to the digital certificate and described application program identification that embed identity information.
A kind of terminal, this terminal comprises:
Receiver module, the application program that digital certificate and described application program identification for receiving embedding identity information are corresponding;
Authentication module, for carrying out certification to the identity information embedded in the digital certificate received;
Running module, for when passing through authentication module certification, running this application program.
A kind of terminal, this terminal comprises:
First receiver module, for receiving the application program download request that other-end sends, carries the first application program identification in this application program download request;
Data transmission blocks, for sending to described other-end by the digital certificate of application program corresponding for described first application program identification and embedding identity information.
In technical scheme provided by the invention, by identity information and application program are bound, and identity information is write digital certificate to guarantee the fail safe of application program, as long as and the identity information certification that end-on receives is passed through, the application program of binding with this identity information can be run, after making user change mobile terminal, without the need to purchase applications of again paying, the digital certificate that embedded in identity information and the application program of binding with the identity information this digital certificate can be received from server or from other-end, ensure that the normal operation on the mobile terminal after application program replacing, the normal operation on the mobile terminal of application program after updating system can be ensured simultaneously.
Accompanying drawing explanation
The flow chart of steps of the application program sending method that Fig. 1 provides for the embodiment of the present invention one;
The structural representation of the digital certificate of the X.509 form that Fig. 2 provides for the embodiment of the present invention one;
The flow chart of steps of the application program sending method that Fig. 3 provides for the embodiment of the present invention two;
The flow chart of steps of the application program operation method that Fig. 4 provides for the embodiment of the present invention three;
The flow chart of steps of the application program operation method that Fig. 5 provides for the embodiment of the present invention four;
The structural representation of the application program operational system that Fig. 6 provides for the embodiment of the present invention five;
The structural representation of the application program operational system that Fig. 7 provides for the embodiment of the present invention six;
The structural representation of the server that Fig. 8 provides for the embodiment of the present invention seven;
The structural representation of the terminal that Fig. 9 provides for the embodiment of the present invention eight;
The structural representation of the terminal that Figure 10 provides for the embodiment of the present invention nine.
Embodiment
Technical scheme provided by the invention is while the security requirement meeting application program, the normal operation on the mobile terminal of application program after system refresh can be met, and for changing the situation of mobile terminal, mobile terminal after replacing can without the need to duplicate payment from server again down load application program, from former terminal downloads application program, the normal use on the mobile terminal of application program after replacing all can not affected yet.
Below in conjunction with Figure of description and each embodiment, technical solution of the present invention is described in detail.
In terminal down load application program first, and SS later needs down load application program again, be damaged as the application program changing mobile terminal, terminal is preserved or other need again from the problem of server down load application program time, the application program of terminal needs all can be obtained from server, and when repeating from server down load application program, without the need to duplicate payment.Below by embodiment one, from server side, application programs sending method is described in detail.
Embodiment one,
The embodiment of the present invention one provides a kind of application program sending method, and the steps flow chart of method as shown in Figure 1, specifically comprises the following steps:
The application program download request that step 101, receiving terminal report.
Terminal is when certain application program downloaded by needs, application program download request is sent to server, identity information is carried in this application program download request, described identity information for the main consuming body after determining this application program and downloading, and for identifying the application program identification of application program that this terminal request is downloaded.
Step 102, judge that whether described identity information is identity information corresponding to described application program identification that server has been preserved.
In this step, server can according to the corresponding relation of the application program identification of having preserved and identity information, judge whether comprise the identity information carried in application program download request in the identity information that the described application program identification of having preserved is corresponding, when comprising the identity information received in the identity information that the application program identification of having preserved if determine is corresponding, confirm that described terminal pays correlative charges, redirect continues to perform step 104; Otherwise, confirm that described terminal not yet pays correlative charges, perform step 103.
By judging whether terminal has paid the correlative charges of down load application program; can realize user changing terminal, application program in terminal be damaged or other need the problem of down load application program again time; by again continuing to run the application program bought and without the need to duplicate payment from the method for server down load application program, thus the rights and interests of user can be protected.
Step 103, server, after described terminal payment success, record the corresponding relation of application program identification and the identity information carried in the application program download request received.
In this step, when server does not comprise the identity information received in the identity information that the application program identification determining to have preserved is corresponding, the application program requiring described terminal corresponding to the application program identification of carrying in the application program download request sent is paid, and after described terminal payment success, record the corresponding relation of application program identification and the identity information carried in the application program download request received.After this step completes, can continue to perform step 104, also can re-execute step 102.
Identity information is embedded digital certificate by step 104, server.
Digital certificate adopts public-key cryptosystem, namely utilizes the key matched each other for a pair to be encrypted, to decipher.Each user has a private cipher key (private key) being only me and grasping, and is decrypted and signs with it; Have a public keys (PKI) and can external disclosure, for encryption and certifying signature simultaneously.In various embodiments of the present invention, server is sent to terminal by utilizing digital certificate technique to encrypt the application program after (certification), and terminal obtains executable application program after carrying out corresponding decryption oprerations, thus ensure the fail safe in application transfer process and integrality.
Described identity information is embedded digital certificate and specifically comprises by server:
Server extracts the identity information reporting the terminal of this request corresponding from the application program download request received, and this identity information is embedded digital certificate, thus identity information and digital certificate is bound.
The form of digital certificate generally adopts X.509 international standard.When described digital certificate is the digital certificate based on X.509 form, the structure of this format digital certificate as shown in Figure 2, the extended field of digital certificate can be utilized to embed the identity information of extraction, can in the entry of the String type of extended field, embed with extensible markup language (eXtensible Markup Language, XML) identity information write of form, described identity information can write in the entry of a String type, also can write in the entry of multiple String type.
Concrete, each entry due to this format digital certificate extension field comprises expansion type, expanding value and key mark three territories, the expansion type of the entry of write identity information is String, be character string for the content format identified in this entry, expanding value is the identity information of XML format, and key mark may be used for the rank representing that this identity information is corresponding, if setting key mark is 1, representing that the rank that the identity information that embeds in this entry is corresponding is 1 grade, is highest level; Setting key mark is 2, represents that the rank that the identity information that embeds in this entry is corresponding is 2 grades, for second advanced.
Application program corresponding to the digital certificate and described application program identification that embed identity information is sent to described terminal by step 105, server.
Server extracts application program identification from the application program download request received, utilize and embedded in application program corresponding to this application program identification of digital certificate authentication of identity information, by certification, digital certificate and application program are bound, thus realize the binding of identity information and application program, and application program corresponding to the digital certificate and described application program identification that embed identity information is sent to described terminal.
Concrete, application program corresponding to the digital certificate and described application program identification that embed identity information sends to described terminal can be following two kinds of modes by server:
The first, server will embed the digital certificate of identity information and application program corresponding to described application program identification is directly pushed to described terminal
The second, server sign and issue digital certificate, and generate download link, and indicating terminal is downloaded from this download link and embedded the digital certificate of identity information and application program corresponding to described application program identification.
Preferably, after step 101, before step 104, can further include step 101 ':
Step 101 ', server sets the valid expiration date that application program is run in terminal in the digital certificate of application program.
For multiple terminals of request down load application program, can be the valid expiration date that each terminal profile is identical, also can be each terminal profile different valid expiration date, as, according to the difference of each terminal pins to the application program institute defrayment that request is downloaded, it it is the valid expiration date that each terminal profile is different.
In FIG, with step 101 ' be positioned at step 101 after, illustrate before step 102.
Embodiment two,
Below to after replacing mobile terminal, the mobile terminal after replacing is from former mobile terminal down load application program, and the normal process running this application program is described.Be first terminal by former terminal definitions, the mobile terminal after replacing is defined as the second terminal, then, the embodiment of the present invention two is from the angle of first terminal, and provide a kind of application program sending method, the flow chart of steps of the method as shown in Figure 3, specifically comprises the following steps:
Step 201, receive second terminal send application program download request.
Carry application program identification in this application program download request, application program corresponding for this application program identification is sent to the second terminal by request first terminal.
The digital certificate of application program corresponding for described application program identification and embedding identity information is sent to the second terminal by step 202, first terminal.
In embodiment two, the application program that first terminal obtains can be downloaded from server (utilizing the method that embodiment one provides), also can be from other-end, as (the utilizing the method that the present embodiment two provides) of downloading in third terminal.
Below by embodiment three, for the application program sending method that the embodiment of the present invention one and embodiment two provide, from terminal (the second terminal) side, application programs operation method is described in detail.
Embodiment three,
The embodiment of the present invention three provides a kind of application program operation method, and the steps flow chart of method as shown in Figure 4, specifically comprises the following steps:
Step 301, terminal receive application program corresponding to the application program identification that embeds the digital certificate of identity information and request.
In the present embodiment, the digital certificate and the application program that embed identity information can be that terminal obtains from server or other-end.
Step 302, terminal operating application program.
In this step, the identity information embedded in the digital certificate that end-on receives carries out certification, and this certification specifically comprises:
Terminal reads the local identity information stored, and utilizes the local identity information stored to carry out certification to the identity information embedded in the digital certificate received.
Terminal to the identity information certification received by time, e.g., when identity information corresponding to the identity information received and terminal self mates, run this application program.
Before step 301, described method can further include:
Step 301 ': report application program download request.
Terminal can report application program download request to server or other-end, can carry identity information and application program identification in this application program download request.
In the present embodiment, described operation can, for installing, also can be the use first after installing.
By the embodiment of the present invention one, the application program that embodiment two and embodiment three provide sends, operation method, guaranteeing applications security, avoid illegal copies and the use of application program, and can after the system refresh changing terminal or terminal, still can continue to run application, solve on the basis of the technical problem that the present invention proposes, terminal after replacing can obtain this application program from the terminal before replacing, also again this application program can be downloaded from server, all without the need to duplicate payment, can continue to run this application program, and, terminal application program be damaged or run into other need again from the problem of server down load application program time, also all can without the need to duplicate payment, can again from server down load application program, the continuation realizing application program runs, simultaneously, the valid expiration date that application program is run in terminal can also be set, improve the flexibility of protection application program.
For the mobile applications network platform, identity information in embodiment one can identify for SIM card, as cell-phone number, for Google's application program network platform, identity information can be Google account, for microsoft application program network platform, identity information can be Microsoft's account, as Windows Live ID, below with for the mobile applications network platform, identity information is cell-phone number is example, is described in detail to the scheme of the embodiment of the present invention one and embodiment three.
Embodiment four,
Be illustrated in figure 5 the flow chart of steps of the application program operation method that the embodiment of the present invention four provides, specifically comprise the following steps:
Step 301, terminal to report application program download request.
Described application program download request carries cell-phone number and application program identification.
The legitimacy of step 302, server authentication cell-phone number.
Server extracts cell-phone number information from the application program download request received, and verify the legitimacy of this information, as verified, whether whether legal the or the first numeral of the figure place of cell-phone number is non-zero numeral, when determining that cell-phone number is legal cell-phone number, continue to perform step 303, otherwise, the flow process that end application is run, and user mobile phone number information errors can be pointed out.
Step 303, server determine that described cell-phone number is cell-phone number corresponding to described application program identification that server has been preserved, and write digital certificate.
In this step, the cell-phone number extracted, when the cell-phone number determining to receive is cell-phone number corresponding to the described application program identification of having preserved, can be embedded the extended field of digital certificate by server.As shown in Figure 2, when described digital certificate is the digital certificate of X.509 form, the cell-phone number information of writing in xml format can be write in the expansion codomain of the entry of the String type of digital certificate extended field.
In this step, when described digital certificate is the digital certificate of X.509 form, the valid expiration date can also run in this terminal in the application program that the term of validity field set application program identification of digital certificate is corresponding, if setting valid expiration date is 1 year.
If described terminal is the terminal down load application program again after changing, due to the terminal after changing with change before terminal phone number identical, therefore, also without the need to again paying, the terminal after server confirms replacing has paid the correlative charges of down load application program.
Step 304, server are signed and issued application program certificate and are generated download link.
Application program corresponding to the application program identification of carrying in the digital certificate application programs download request that server by utilizing writes carries out certification, and after certification completes, generates download link, for the application program of terminal downloads after digital certificate authentication.
Step 305, terminal downloads application program.
The checking of whether cell-phone number corresponding to terminal being mated to (consistent) with the cell-phone number received can perform when terminal set up applications, performs when also can perform this application program first after terminal set up applications.Below with when terminal set up applications, the cell-phone number that verification terminal the is corresponding process whether consistent with the cell-phone number received is described.
Step 306, terminal send the request of installation.
Terminal after application program has been downloaded, the installation of executive utility.
Whether cell-phone number corresponding to step 307, terminal authentication terminal be consistent with the cell-phone number received.
The cell-phone number of terminal reading self, and mate with (carrying in the application program downloaded from download link and the digital certificate) cell-phone number received, when two cell-phone numbers are consistent, perform step 308, otherwise, exit the installation of application program, the running of end application.
Step 308, complete installation, run application.
Terminal reads other information in digital certificate, as the version number, sequence number, public key information etc. of application program, and carry out analyzing, compiling, and the information after analyzing, compiling is stored into terminal local, so that when running the application program of this digital certificate authentication according to this information and executing.
Terminal, after completing the analysis of other information in digital certificate, compiling and storage, completes the installation of application program, the follow-up use can carrying out application program.
The application program provided according to the embodiment of the present invention one ~ embodiment four sends, operation method, and the embodiment of the present invention five ~ embodiment nine provides following application program operational system, server and terminal.
Embodiment five,
Be illustrated in figure 6 the structural representation of the application program operational system that the embodiment of the present invention five provides, this system comprises server 11 and terminal 12, wherein:
The application program download request that server 11 reports for receiving terminal, identity information and application program identification is carried in this application program download request, when comprising the identity information received in the identity information that the application program identification determining to have preserved is corresponding, described identity information is embedded digital certificate, and application program corresponding to the digital certificate and described application program identification that embed identity information is sent to described terminal; Terminal 12 for the identity information certification that embeds in the digital certificate received by time, run this application program.
When described server 11 also for not comprising the identity information received in the identity information that the application program identification determining to have preserved is corresponding, the application program indicating described terminal corresponding to the application program identification of carrying in the application program download request sent is paid, and after described terminal payment success, record the corresponding relation of application program identification and the identity information carried in the application program download request received.
When described server 11 is specifically for being the digital certificate based on X.509 form at described digital certificate, in the entry of the String type in digital certificate extended field, embed the identity information of extensible markup language XML format.
Described server 11 embeds the identity information of described XML format specifically for the expansion codomain of the entry in this String type.
When described server 11 is also for being the digital certificate based on X.509 form at described digital certificate, after the application program download request that receiving terminal reports, before digital certificate and application program are sent to terminal, in the digital certificate of application program, set the valid expiration date that application program is run in terminal.
Embodiment six,
Be illustrated in figure 7 the structural representation of the application program operational system that the embodiment of the present invention six provides, this system comprises first terminal 21 and the second terminal 22, wherein:
First terminal 21, for receiving the application program download request of the second terminal, carries application program identification in this application program download request, and the digital certificate of application program corresponding for described application program identification and embedding identity information is sent to the second terminal; Second terminal 22 for the identity information certification that embeds in the digital certificate received by time, run this application program.
The function of wherein said first terminal and the second terminal can be integrated in same terminal simultaneously, and namely a terminal both can use as first terminal, also can use as the second terminal.
Embodiment seven,
Be illustrated in figure 8 the structural representation of the server that the embodiment of the present invention seven provides, this server comprises receiver module 31, comparison module 32, writing module 33 and sending module 34, wherein:
The application program download request that receiver module 31 reports for receiving terminal, carries identity information and application program identification in this application program download request; Whether comparison module 32 is identity information corresponding to the described application program identification of having preserved for more described identity information, when comprising the identity information received in the identity information that the application program identification determining to have preserved is corresponding, triggers writing module 33; Writing module 33 is for embedding digital certificate by described identity information; Sending module 34 is for sending to described terminal by application program corresponding to the digital certificate and described application program identification that embed identity information.
Described server also comprises logging modle 35, wherein
When described comparison module 32 also for not comprising the identity information received in the identity information that the application program identification determining to have preserved is corresponding, trigger recording module 35.
Logging modle 35, for after described terminal payment success, records the corresponding relation of application program identification and the identity information carried in the application program download request received, and triggers writing module 33 when record completes.
When said write module 33 is specifically for being the digital certificate based on X.509 form at described digital certificate, in the entry of the String type in digital certificate extended field, embed the identity information of extensible markup language XML format.
Said write module 33 embeds the identity information of described XML format specifically for the expansion codomain of the entry in this String type.
Described server also comprises term of validity setting module 36:
When term of validity setting module 36 is for being the digital certificate based on X.509 form at described digital certificate, in the digital certificate of application program, set the valid expiration date that application program is run in terminal.
Embodiment eight,
Be illustrated in figure 9 the structural representation of the terminal that the embodiment of the present invention eight provides, this terminal comprises receiver module 41, authentication module 42 and runs module 43, wherein:
Receiver module 41 embeds the digital certificate of identity information and application program corresponding to described application program identification for receiving; Authentication module 42 is for carrying out certification to the identity information embedded in the digital certificate received; Run module 43 for when authentication module certification is passed through, run this application program.
Described authentication module 42 specifically for reading the local identity information stored, and utilizes the local identity information stored to carry out certification to the identity information embedded in the digital certificate received.
Described terminal can further include sending module 44:
Sending module 44, for reporting application program download request, carries identity information and application program identification in this application program download request.
Embodiment nine,
The structural representation of the terminal provided for the embodiment of the present invention nine as shown in Figure 10, this terminal comprises the first receiver module 51 and data transmission blocks 52, wherein:
The application program download request that first receiver module 51 sends for receiving other-end, carries the first application program identification in this application program download request; Data transmission blocks 52 is for sending to described other-end by the digital certificate of application program corresponding for described first application program identification and embedding identity information.
Described terminal also comprises the second receiver module 53, authentication module 54 and runs module 55, wherein:
Second receiver module 53 embeds the digital certificate of identity information and application program corresponding to the second application program identification for receiving.
Authentication module 54 is for carrying out certification to the identity information embedded in the digital certificate received.
Run module 55 for when authentication module certification is passed through, run the application program that this second application program identification is corresponding.
Described terminal can further include request sending module 56:
Request sending module 56, for reporting application program download request, carries identity information and the second application program identification, or carries the second application program identification in this application program download request.
Obviously, those skilled in the art can carry out various change and modification to the present invention and not depart from the spirit and scope of the present invention.Like this, if these amendments of the present invention and modification belong within the scope of the claims in the present invention and equivalent technologies thereof, then the present invention is also intended to comprise these change and modification.
Claims (17)
1. an application program sending method, is characterized in that, the method comprises:
The application program download request that receiving terminal reports, carries identity information and application program identification in this application program download request, and described identity information is for determining the main consuming body after application program download;
When comprising the identity information received in the identity information that the application program identification determining to have preserved is corresponding, described identity information is embedded digital certificate;
Application program corresponding to the digital certificate and described application program identification that embed identity information is sent to described terminal;
Wherein, when described digital certificate is the digital certificate based on X.509 form, described identity information is embedded digital certificate and specifically comprises:
In the entry of the String type in digital certificate extended field, embed the identity information of extensible markup language XML format.
2. the method for claim 1, is characterized in that, described method also comprises:
Do not comprise the identity information received in the identity information that the application program identification of having preserved if determine is corresponding, then, after described terminal payment success, record the corresponding relation of application program identification and the identity information carried in the application program download request received.
3. the method for claim 1, is characterized in that, the identity information embedding XML format in the entry of described String type specifically comprises:
The identity information of described XML format is embedded in the expansion codomain of the entry of this String type.
4. the method for claim 1, is characterized in that, described digital certificate is the digital certificate based on X.509 form;
After the application program download request that receiving terminal reports, before digital certificate and application program are sent to terminal, described method also comprises:
The valid expiration date that application program is run in terminal is set in the digital certificate of application program.
5. an application program sending method, is characterized in that, the method comprises:
First terminal receives the application program download request of the second terminal, carries application program identification in this application program download request;
The digital certificate of application program corresponding for described application program identification and embedding identity information is sent to the second terminal by first terminal;
Wherein, described identity information is for determining the main consuming body after application program download, and when described digital certificate is the digital certificate based on X.509 form, described identity information is embedded in the entry of the String type in digital certificate extended field with extensible markup language XML format.
6. an application program operation method, is characterized in that, the method comprises:
Terminal receives application program corresponding to the application program identification that embeds the digital certificate of identity information and request; The identity information embedded in the digital certificate that end-on receives carries out certification, when certification is passed through, runs the application program received;
Wherein, described identity information is for determining the main consuming body after application program download, and when described digital certificate is the digital certificate based on X.509 form, described identity information is embedded in the entry of the String type in digital certificate extended field with extensible markup language XML format.
7. method as claimed in claim 6, it is characterized in that, the identity information embedded in the digital certificate that end-on receives carries out certification, specifically comprises:
Terminal reads the local identity information stored, and utilizes the local identity information stored to carry out certification to the identity information embedded in the digital certificate received.
8. an application program operational system, is characterized in that, this system comprises:
Server, for the application program download request that receiving terminal reports, identity information and application program identification is carried in this application program download request, when comprising the identity information received in the identity information that the application program identification determining to have preserved is corresponding, described identity information is embedded digital certificate, and application program corresponding to the digital certificate and described application program identification that embed identity information is sent to described terminal;
Terminal, for the identity information certification that embeds in the digital certificate received by time, run this application program;
Wherein, described identity information is for determining the main consuming body after application program download, and when described digital certificate is the digital certificate based on X.509 form, described identity information is embedded in the entry of the String type in digital certificate extended field with extensible markup language XML format.
9. an application program operational system, is characterized in that, this system comprises first terminal and the second terminal, wherein:
First terminal, for receiving the application program download request of the second terminal, carries application program identification in this application program download request, and the digital certificate of application program corresponding for described application program identification and embedding identity information is sent to the second terminal; Wherein, described identity information is for determining the main consuming body after application program download, and when described digital certificate is the digital certificate based on X.509 form, described identity information is embedded in the entry of the String type in digital certificate extended field with extensible markup language XML format;
Second terminal, for the identity information certification that embeds in the digital certificate received by time, run this application program.
10. a server, is characterized in that, described server comprises:
Receiver module, for the application program download request that receiving terminal reports, carries identity information and application program identification in this application program download request; Wherein, described identity information is for determining the main consuming body after application program download;
Whether comparison module, be identity information corresponding to the described application program identification of having preserved for more described identity information, when comprising the identity information received in the identity information that the application program identification determining to have preserved is corresponding, trigger writing module;
Writing module, for embedding digital certificate by described identity information;
Sending module, for sending to described terminal by application program corresponding to the digital certificate and described application program identification that embed identity information;
Wherein, said write module, during specifically for being the digital certificate based on X.509 form at described digital certificate, in the entry of the String type in digital certificate extended field, embeds the identity information of extensible markup language XML format.
11. servers as claimed in claim 10, it is characterized in that, described server also comprises logging modle, wherein:
Described comparison module, time also for not comprising the identity information received in the identity information that the application program identification determining to have preserved is corresponding, trigger recording module;
Logging modle, for after described terminal payment success, records the corresponding relation of application program identification and the identity information carried in the application program download request received, and triggers writing module when record completes.
12. servers as claimed in claim 10, is characterized in that,
Said write module, the expansion codomain specifically for the entry in this String type embeds the identity information of described XML format.
13. servers as claimed in claim 10, it is characterized in that, described server also comprises term of validity setting module:
Term of validity setting module, during for being the digital certificate based on X.509 form at described digital certificate, sets the valid expiration date that application program is run in terminal in the digital certificate of application program.
14. 1 kinds of terminals, is characterized in that, this terminal comprises:
Receiver module, the application program that the application program identification for receiving digital certificate and the request embedding identity information is corresponding; Wherein, described identity information is for determining the main consuming body after application program download, and when described digital certificate is the digital certificate based on X.509 form, described identity information is embedded in the entry of the String type in digital certificate extended field with extensible markup language XML format;
Authentication module, for carrying out certification to the identity information embedded in the digital certificate received;
Run module, for when authentication module certification is passed through, run this application program.
15. terminals as claimed in claim 14, is characterized in that,
Described authentication module, specifically for reading the local identity information stored, and utilizes the local identity information stored to carry out certification to the identity information embedded in the digital certificate received.
16. 1 kinds of terminals, is characterized in that, this terminal comprises:
First receiver module, for receiving the application program download request that other-end sends, carries the first application program identification in this application program download request;
Data transmission blocks, for sending to described other-end by the digital certificate of application program corresponding for described first application program identification and embedding identity information; Wherein, described identity information is for determining the main consuming body after application program download, and when described digital certificate is the digital certificate based on X.509 form, described identity information is embedded in the entry of the String type in digital certificate extended field with extensible markup language XML format.
17. terminals as claimed in claim 16, it is characterized in that, described terminal also comprises:
Second receiver module, the application program that digital certificate and the second application program identification for receiving embedding identity information are corresponding;
Authentication module, for carrying out certification to the identity information embedded in the digital certificate received;
Run module, for when authentication module certification is passed through, run the application program that this second application program identification is corresponding.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201110060128.3A CN102685727B (en) | 2011-03-11 | 2011-03-11 | Method for transmitting and operating application program, system for operating application program, server and terminal |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201110060128.3A CN102685727B (en) | 2011-03-11 | 2011-03-11 | Method for transmitting and operating application program, system for operating application program, server and terminal |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102685727A CN102685727A (en) | 2012-09-19 |
| CN102685727B true CN102685727B (en) | 2015-07-01 |
Family
ID=46816965
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201110060128.3A Active CN102685727B (en) | 2011-03-11 | 2011-03-11 | Method for transmitting and operating application program, system for operating application program, server and terminal |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102685727B (en) |
Families Citing this family (16)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103905390B (en) * | 2012-12-26 | 2017-05-24 | 联想(北京)有限公司 | Permission acquisition method, device, electronic equipment and system |
| CN104240091B (en) * | 2013-06-20 | 2018-05-11 | 华为终端(东莞)有限公司 | A kind of method and terminal for buying application |
| JP6931531B2 (en) | 2013-08-02 | 2021-09-08 | 博世尼克資訊股▲ふん▼有限公司 | Device to license the program |
| CN103546887A (en) * | 2013-10-29 | 2014-01-29 | 小米科技有限责任公司 | Application software transmitting method, device and terminal and server |
| CN104703170B (en) * | 2013-12-05 | 2017-04-12 | 华为终端有限公司 | Methods and equipment for downloading file of operator |
| CN104753676A (en) * | 2013-12-31 | 2015-07-01 | 北龙中网(北京)科技有限责任公司 | Identity verifying method and device for mobile application developer |
| CN104850775B (en) * | 2014-02-14 | 2019-06-28 | 北京奇安信科技有限公司 | A kind of identification method and device of applications security |
| US10623952B2 (en) | 2014-07-07 | 2020-04-14 | Huawei Technologies Co., Ltd. | Method and apparatus for authorizing management for embedded universal integrated circuit card |
| FR3030818B1 (en) * | 2014-12-23 | 2016-12-23 | Valeo Comfort & Driving Assistance | METHOD FOR SECURELY TRANSMITTING A VIRTUAL KEY AND METHOD OF AUTHENTICATING A MOBILE TERMINAL |
| CN105069646A (en) * | 2015-07-27 | 2015-11-18 | 立德高科(昆山)数码科技有限责任公司 | Business APP renewing method based on information sent by server and system |
| CN105205372A (en) * | 2015-08-26 | 2015-12-30 | 宇龙计算机通信科技(深圳)有限公司 | Digital certificate reading method, device and system for terminal, and terminal |
| CN110417554A (en) * | 2018-04-26 | 2019-11-05 | 华为技术有限公司 | A kind of method and device for verifying terminal device identity |
| CN111182529B (en) * | 2019-11-26 | 2022-11-29 | 腾讯云计算(北京)有限责任公司 | Police application processing method and device, electronic equipment and storage medium |
| CN112256280A (en) * | 2020-09-01 | 2021-01-22 | 郑州富联智能工坊有限公司 | Information processing apparatus and information processing method |
| CN113031973B (en) * | 2021-03-01 | 2023-04-07 | 亿咖通(湖北)技术有限公司 | Download installation method of paid vehicle-mounted application |
| CN114666112B (en) * | 2022-03-14 | 2023-08-15 | 亿咖通(湖北)技术有限公司 | Communication authentication method, device, electronic equipment and storage medium |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101466094A (en) * | 2007-12-18 | 2009-06-24 | 郭诺 | Method, server and deciphering device for protecting digital contents of mobile communication application |
| CN101945366A (en) * | 2009-07-07 | 2011-01-12 | 中国移动通信集团公司 | Experiential accounting method, proxy module, terminal and system |
| CN101959179A (en) * | 2009-07-17 | 2011-01-26 | 华为技术有限公司 | Method for providing mobile terminal application program, and server and mobile terminal |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP2007310431A (en) * | 2006-05-16 | 2007-11-29 | Az Ltd | Store information distribution method, store information distribution system, information management server device, and portable information terminal |
-
2011
- 2011-03-11 CN CN201110060128.3A patent/CN102685727B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101466094A (en) * | 2007-12-18 | 2009-06-24 | 郭诺 | Method, server and deciphering device for protecting digital contents of mobile communication application |
| CN101945366A (en) * | 2009-07-07 | 2011-01-12 | 中国移动通信集团公司 | Experiential accounting method, proxy module, terminal and system |
| CN101959179A (en) * | 2009-07-17 | 2011-01-26 | 华为技术有限公司 | Method for providing mobile terminal application program, and server and mobile terminal |
Also Published As
| Publication number | Publication date |
|---|---|
| CN102685727A (en) | 2012-09-19 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102685727B (en) | Method for transmitting and operating application program, system for operating application program, server and terminal | |
| CN107798650B (en) | Digital asset infringement judgment method and device based on block chain | |
| CN107077557B (en) | Method and device for releasing and verifying software application program | |
| CN103944903B (en) | Multi-party authorized APK signature method and system | |
| CN103038775B (en) | Digital certificates manage | |
| US7146645B1 (en) | Dedicated applications for user stations and methods for downloading dedicated applications to user stations | |
| US8256009B2 (en) | Method and apparatus for managing digital rights of secure removable media | |
| US20060168580A1 (en) | Software-management system, recording medium, and information-processing device | |
| US20040039932A1 (en) | Apparatus, system and method for securing digital documents in a digital appliance | |
| CN103390122B (en) | Application program transmitting method, application program operating method, sever and terminal | |
| CN101689237A (en) | Activation system architecture | |
| CN102314578A (en) | System and method for realizing software protection | |
| JP2002319230A (en) | Recording medium, information processor, server, and method, program for contents distribution and recording medium thereof | |
| CN104199654A (en) | Open platform calling method and device | |
| CN106936588B (en) | Hosting method, device and system of hardware control lock | |
| CN107980132A (en) | A kind of APK signature authentications method and system | |
| CN104426658A (en) | Method and device for performing identity authentication on application on mobile terminal | |
| CN105893837B (en) | Application program installation method, security encryption chip and terminal | |
| CN104199657A (en) | Call method and device for open platform | |
| CN100527144C (en) | Method and device for accurate charging in digital copyright management | |
| CN111814136A (en) | Android application signature and signature verification method and device, and signature verification system | |
| CN111339201A (en) | Evaluation method and system based on block chain | |
| CN104464114A (en) | System and method for managing and monitoring safety of application of financial terminals | |
| CN111585995A (en) | Method and device for transmitting and processing safety wind control information, computer equipment and storage medium | |
| CN105743651A (en) | Method and apparatus for utilizing card application in chip security domain, and application terminal |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |