CN107277794A - Set up the method, device and mobile terminal of communication connection - Google Patents
Set up the method, device and mobile terminal of communication connection Download PDFInfo
- Publication number
- CN107277794A CN107277794A CN201710434484.4A CN201710434484A CN107277794A CN 107277794 A CN107277794 A CN 107277794A CN 201710434484 A CN201710434484 A CN 201710434484A CN 107277794 A CN107277794 A CN 107277794A
- Authority
- CN
- China
- Prior art keywords
- condition code
- application software
- intelligent target
- trusted
- target card
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W8/00—Network data management
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W4/00—Services specially adapted for wireless communication networks; Facilities therefor
- H04W4/24—Accounting or billing
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W8/00—Network data management
- H04W8/18—Processing of user or subscriber data, e.g. subscribed services, user preferences or user profiles; Transfer of user or subscriber data
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Databases & Information Systems (AREA)
- Business, Economics & Management (AREA)
- Accounting & Taxation (AREA)
- Stored Programmes (AREA)
Abstract
The embodiment of the present invention provides a kind of method, device and mobile terminal for setting up communication connection.The embodiment of the present invention according to the application identities of application software by obtaining its certificate condition code, whether include the certificate condition code in trusted condition code list by determining the Intelligent target card, to application software, whether trusted is verified, and it is determined that after application software trusted, authorize the API of accessible with application software Intelligent target card, and when it is determined that not including certificate condition code in the trusted condition code list of Intelligent target card, by default server further verify application software whether trusted, if application software trusted, then authorize the API of accessible with application software Intelligent target card, the API connections set up between Intelligent target card and application software, user is remotely handled by application software needs the business that conducted interviews to smart card, it is user-friendly and saves user time, improve the utilization rate of application software, greatly improve the efficiency of service of operator.
Description
Technical field
The present embodiments relate to communication technical field, more particularly to a kind of method, device and shifting for setting up communication connection
Dynamic terminal.
Background technology
With developing rapidly for smart card techniques and mobile terminal technology, the mobile terminal with smart card turns into people day
Often live indispensable means of communication, the people for moving communication using mobile terminal is more and more.Set in mobile terminal
There is smart card, smart card is used to store the user data such as personal information, key and the telephone directory of user, is to move communication
Key.The application software such as the China Mobile Service Hall of operator's exploitation are installed on mobile terminal, inquiry is remotely handled for user
Set meal service condition, the query communication business that list, paying etc. need not modify to the user data in smart card in detail.
User moves communication using the smart card of mobile terminal, first has to sign networking contract, scene with operator
Submit the personal information of oneself to go forward side by side and real-name authentication, selection contract set meal, paying and sign contract, belong to this to obtain
The smart card of user.In use, most users generally also need to be modified contract set meal, inquiry set meal service condition,
Query communication detailed list, paying etc..Because number of users is huge, operator, which develops, is installed on mobile operation on mobile terminal
The application software such as the Room so that user is by the long-range transacting business of application software, so as to reduce the service pressure of entity business hall.Mesh
Before, due to that can not enter row data communication between the application software and smart card on mobile terminal, user can not pass through application software
Directly enter row data communication with smart card, inquiry contract set meal, inquiry set meal service condition can only be handled by application software, paid
The business that expense etc. of receiving need not modify to the user data in smart card, and change contract set meal can not be handled, network and sign
About etc. need the business modified to the user data in smart card.
At present, because the user data that smart card memory is stored up is the privacy information of user, once incredible application software
Enter row data communication with smart card, there is the potential safety hazard that user data was distorted and replicated to incredible application software malice, should
With communication connection can not be set up between software and smart card, cause user directly can not enter line number with smart card by application software
According to communication, the business for needing to modify to the user data in smart card for change contract set meal, the signing etc. that networks, user
Then need to go to the entity business hall of operator, the management platform by operator will be handled by staff scene,
It can not remotely handle, take the user a lot of time with energy, cause great puzzlement to user.
The content of the invention
The embodiment of the present invention provides a kind of method, device and mobile terminal for setting up communication connection, to solve existing answer
With communication connection can not be set up between software and smart card, cause user directly can not enter line number with smart card by application software
According to communication, the business for needing to modify to the user data in smart card for change contract set meal, the signing etc. that networks, user
Can not remotely it handle, the problem of taking the user a lot of time with energy, cause great puzzlement to user.
The one side of the embodiment of the present invention is to provide a kind of method for setting up communication connection, including:
The communication connection request of setting up of application software transmission is received, the communication connection request of setting up is included for uniquely marking
Know the application identities and Intelligent target card mark of the application software;
The application identities included according to the communication connection request, obtain the certificate condition code of the application software,
The certificate condition code is corresponded with the application software;
According to Intelligent target card mark and the certificate condition code, the trusted feature of the Intelligent target card is determined
Whether include the certificate condition code in code list;
If it is determined that the trusted condition code list of the Intelligent target card includes the certificate condition code, it is determined that described
Application software trusted, authorizes the API of Intelligent target card described in the accessible with application software, sets up the Intelligent target card and institute
State the API connections between application software;
If it is determined that not including the certificate condition code in the trusted condition code list of the Intelligent target card, then by pre-
If server authentication described in application software whether trusted;
If the result is the application software trusted, Intelligent target described in the accessible with application software is authorized
The API of card, the API connections set up between the Intelligent target card and the application software.
The other side of the embodiment of the present invention is to provide a kind of device for setting up communication connection, including:
Receiving module, the communication connection request of setting up for receiving application software transmission is described to set up communication connection request
Identified comprising the application identities for application software described in unique mark and Intelligent target card;
Acquisition module, for the application identities included according to the communication connection request, obtains the application software
Certificate condition code, the certificate condition code and the application software are corresponded;
Determining module, for according to Intelligent target card mark and the certificate condition code, determining the Intelligent target
Whether include the certificate condition code in the trusted condition code list of card;
Connection establishment module, for if it is determined that the trusted condition code list of the Intelligent target card includes the certificate
Condition code, it is determined that the application software trusted, authorizes the API of Intelligent target card described in the accessible with application software, sets up
API connections between the Intelligent target card and the application software;
Authentication module, for if it is determined that not including certificate spy in the trusted condition code list of the Intelligent target card
Levy code, then by application software described in default server authentication whether trusted;
If the connection establishment module is additionally operable to the result for the application software trusted, described answer is authorized
With the API of Intelligent target card described in softward interview, the API connections set up between the Intelligent target card and the application software.
The other side of the embodiment of the present invention is to provide a kind of mobile terminal, including:Smart card built at least one,
At least one be installed on application software on the mobile terminal, with the smart card and described at least one built at least one
The processor of the individual application software connection being installed on the mobile terminal, memory and it is stored on the memory and can
With the computer program run by the processor,
The processor realizes foundation communication connection described above method when running the computer program.
The method, device and mobile terminal provided in an embodiment of the present invention for setting up communication connection, by receiving application
What software was sent is set up after communication connection request, and the corresponding certificate feature of application software is obtained according to the application identities wherein carried
Whether code, include the certificate condition code in the trusted condition code list by determining the Intelligent target card, soft to application
Part whether verified by trusted, and it is determined that after application software trusted, authorizing accessible with application software Intelligent target card
API, and when it is determined that not including certificate condition code in the trusted condition code list of Intelligent target card, pass through default server
Further checking application software whether trusted, if the result be application software trusted, authorize accessible with application software mesh
Mark the API of smart card, the API connections set up between Intelligent target card and application software so that application software obtains Intelligent target
The API's of card calls authority, and Intelligent target card is conducted interviews by the API of invocation target smart card, it is achieved thereby that should
Row data communication is sticked into software and Intelligent target so that user directly can carry out data with smart card by application software and lead to
Letter, so as to can remotely handle the business for needing to modify to the user data in smart card by application software, side
Just user uses and saves user time, improves the utilization rate of application software, greatly improves the efficiency of service of operator.
Brief description of the drawings
Fig. 1 is the method flow diagram for the foundation communication connection that the embodiment of the present invention one is provided;
Fig. 2 is the method flow diagram for the foundation communication connection that the embodiment of the present invention two is provided;
Fig. 3 is the method flow diagram for the foundation communication connection that the embodiment of the present invention three is provided;
Fig. 4 is the structural representation of the device for the foundation communication connection that the embodiment of the present invention four is provided;
Fig. 5 is the structural representation of the device for the foundation communication connection that the embodiment of the present invention five is provided;
Fig. 6 is the structural representation for the mobile terminal that the embodiment of the present invention six is provided.
Embodiment
It is right below in conjunction with the accompanying drawing in the embodiment of the present invention to make technical scheme and advantage clearer
Technical scheme is clearly and completely described, it is clear that described embodiment is a part of embodiment of the invention,
Rather than whole embodiments.Based on the embodiment in the present invention, those of ordinary skill in the art are not making creative labor
The every other embodiment obtained under the premise of dynamic, belongs to the scope of protection of the invention.
In embodiments of the present invention, smartcard management module refers to be used for smart card in the operating system of mobile terminal
The functional module for being controlled and managing is accessed, is responsible for accessing the application programming interface (Application of smart card
Programming Interface, abbreviation API).The application software installed on mobile terminal is needed by calling smart card
API accesses smart card.Smart card in the present embodiment can be universal embedded integrated circuit card (Universal
Integrated Circuit Card, abbreviation UICC), the removable smart card such as also referred to as embedded UICC.
Embodiment one
Fig. 1 is the flow chart provided in an embodiment of the present invention for setting up the method communicated to connect.The embodiment of the present invention is for existing
Communication connection can not be set up between some application software and smart card, causes user can not be by application software directly and smart card
Enter row data communication, the industry for needing to modify to the user data in smart card for change contract set meal, the signing etc. that networks
Business, user can not remotely handle, the problem of taking the user a lot of time with energy, cause great puzzlement to user there is provided
The method for setting up communication connection.The executive agent of this method is is used to manage the API of smart card in the operating system of mobile terminal
Smartcard management module.As shown in figure 1, this method is comprised the following steps that:
What step S101, reception application software were sent sets up communication connection request, and setting up communication connection request and including is used for
The application identities of unique mark application software and the mark of Intelligent target card.
Wherein, application identities can uniquely determine one with one application software of unique mark according to application identities
Application software.Setting up communication connection request is used for application software request and the foundation communication connection of Intelligent target card, with communication link
Connect the user data accessed after being successfully established in smart card.
Step S102, the application identities included according to communication connection request, obtain the certificate condition code of application software, certificate
Condition code is corresponded with application software.
In the present embodiment, certificate condition code is corresponded with application software, and application software possesses unique certificate condition code,
The certificate condition code of different application software is different.Wherein, the certificate condition code can be that the third-party institution is that application software is issued
The mark of the certificate of hair.Application identities can uniquely determine one with one application software of unique mark according to application identities
Individual application software, so as to uniquely determine a certificate condition code.
In the present embodiment, when application software is initiated to set up communication connection request, what application software was sent sets up communication link
Connecing request at least includes application identities and the mark of Intelligent target card.Receive set up communication connection request when, according to should
With mark, the certificate condition code of the corresponding software application of the application identities is obtained.
Step S103, according to Intelligent target card mark and certificate condition code, determine the trusted condition code of Intelligent target card
Whether include certificate condition code in list.
In the present embodiment, any smart card memory contains trusted condition code list, is wrapped in the trusted condition code list
The certificate condition code for all application software that smart card where including it is trusted.
In the present embodiment, after the corresponding certificate condition code of application software is got, identified and demonstrate,proved according to Intelligent target card
Book condition code, determines whether include certificate condition code in the trusted condition code list of Intelligent target card, to determine that the certificate is special
Levy code whether trusted;If it is determined that the trusted condition code list of Intelligent target card includes certificate condition code, it is determined that the card
Book condition code trusted, performs step S104;If it is determined that it is special not include certificate in the trusted condition code list of Intelligent target card
Code is levied, then performs step S105-S106.
Step S104, if it is determined that the trusted condition code list of Intelligent target card includes certificate condition code, authorize application
The API of softward interview Intelligent target card, the API connections set up between Intelligent target card and application software.
In the present embodiment, the application software installed on mobile terminal is needed by calling the API of smart card to access intelligence
Card.In the step, however, it is determined that the trusted condition code list of Intelligent target card includes certificate condition code, it is determined that the certificate is special
It is trusty to levy code, and it is trusty for may thereby determine that the application software, authorizes the accessible with application software Intelligent target card
API so that the application software is conducted interviews by the API of invocation target smart card to Intelligent target card, so as to set up mesh
Mark the API connections between smart card and application software.
In the present embodiment, smartcard management module is responsible for the API of Intelligent target card, and application software need to be to smart card pipe
Reason module, which is sent, sets up communication connection request, and request is set up API with Intelligent target card and is connected, and smartcard management module is soft to application
Part whether verified by trusted, and after determining application software trusted, authorizes accessible with application software Intelligent target card
API so that what application software obtained the API of Intelligent target card calls authority, and by the API of invocation target smart card to target
Smart card conducts interviews, so as to set up the API connections between Intelligent target card and application software.
Step S105, if it is determined that in the trusted condition code list of Intelligent target card not include certificate condition code, then pass through
Default server authentication application software whether trusted.
In the present embodiment, however, it is determined that do not include certificate condition code in the trusted condition code list of Intelligent target card, by pre-
If server to application software, whether trusted is further verified, can reduce and judge application software trusty by accident
For fly-by-night possibility.
If step S106, the result are application software trusted, accessible with application software Intelligent target card is authorized
API, the API connections set up between Intelligent target card and application software.
In the present embodiment, if default server further verifies the application software trusted, application software is authorized to visit
The API of Intelligent target card is asked, the API connections set up between Intelligent target card and application software.
In the present embodiment, if the result in step S106 is trustless for application software, the application can be determined
Software is fly-by-night, and failure is set up in the communication connection between application software and Intelligent target card, can be sent out to application software
Communication connection is sent to set up failed message.
The embodiment of the present invention by receive that application software sends set up communication connection request after, according to wherein carrying
Application identities obtain the corresponding certificate condition code of application software, in the trusted condition code list by determining Intelligent target card
Whether certificate condition code is included, to application software, whether trusted is verified, and it is determined that after application software trusted, awarding
Weigh the API of accessible with application software Intelligent target card;And it is determined that not including card in the trusted condition code list of Intelligent target card
During book condition code, by default server further verify application software whether trusted, if the result be application software
Trusted, then authorize the API of accessible with application software Intelligent target card, and the API set up between Intelligent target card and application software connects
Connect so that what application software obtained the API of Intelligent target card calls authority, and by the API of invocation target smart card to target
Smart card conducts interviews, it is achieved thereby that application software sticks into row data communication with Intelligent target so that user can be by answering
Directly enter row data communication with smart card with software, needed so as to can remotely be handled by application software in smart card
The business modified of user data, be user-friendly and save user time, improve the utilization rate of application software, significantly
Improve the efficiency of service of operator.
Embodiment two
Fig. 2 is the flow chart of the method for the foundation communication connection that the embodiment of the present invention two is provided.In above-described embodiment one
On the basis of, in the present embodiment, if the result is application software trusted, authorizing accessible with application software Intelligent target card
API, sets up before the API connections between Intelligent target card and application software, in addition to:The result and certificate condition code are sent out
Intelligent target card is given, so that certificate condition code is added to trusted condition code list by Intelligent target card according to the result
In.As shown in Fig. 2 this method is comprised the following steps that:
What step S201, reception application software were sent sets up communication connection request, and setting up communication connection request and including is used for
Application identities and Intelligent target the card mark of unique mark application software.
The step is consistent with the step S101 in above-described embodiment one, and here is omitted for the present embodiment.
Step S202, the application identities included according to communication connection request, obtain the certificate condition code of application software, certificate
Condition code is corresponded with application software.
The step is consistent with the step S102 in above-described embodiment one, and here is omitted for the present embodiment.
Step S203, according to Intelligent target card mark and certificate condition code, determine the trusted condition code of Intelligent target card
Whether include certificate condition code in list.
In the present embodiment, any smart card memory contains trusted condition code list, and the trusted condition code list includes
All credible condition codes, credible condition code refer to trusted condition code list where the application software that can trust of smart card
Certificate condition code.
In the present embodiment, any smart card memory contains trusted condition code list, is wrapped in the trusted condition code list
The certificate condition code for all application software that smart card where including it is trusted.
In the present embodiment, according to Intelligent target card mark and certificate condition code, the trusted feature of Intelligent target card is determined
Whether include certificate condition code in code list, can specifically be realized using any one following mode:
(1) identified according to Intelligent target card, obtain the trusted condition code list of Intelligent target card storage;It is special according to certificate
Code and the trusted condition code list got are levied, determines whether include certificate condition code in trusted condition code list.
Specifically, identified according to Intelligent target card, the trusted condition code list of its storage is read from Intelligent target card, and
The certificate condition code is compared with the credible condition code in trusted condition code list successively, if trusted condition code list
In to there is any credible condition code consistent with the certificate condition code, it is determined that trusted condition code list includes certificate feature
Code;If otherwise all credible condition codes are inconsistent with the certificate condition code in the list of trusted condition code, it is determined that trusted
Do not include certificate condition code in condition code list.
(2) according to Intelligent target card mark and certificate condition code, send feature code check to Intelligent target card and ask, feature
Code check request bag condition code containing certificate, so that Intelligent target card is according to the request verification trusted condition code list of feature code check
In whether include certificate condition code, and to feedback check result;The check results of Intelligent target card feedback are received, and according to verification
As a result determine whether include certificate condition code in the trusted condition code list in Intelligent target card.
Specifically, according to Intelligent target card mark and certificate condition code, send feature code check to Intelligent target card and ask,
Intelligent target is stuck in receive the request of feature code check after, during feature code check is asked the certificate condition code that includes successively with
Credible condition code in the trusted condition code list of itself storage is compared, if existing in trusted condition code list any
Credible condition code is consistent with the certificate condition code, it is determined that trusted condition code list includes certificate condition code, if otherwise may be used
Trust all credible condition codes in condition code list inconsistent with the certificate condition code, it is determined that in trusted condition code list
Do not include certificate condition code;Check results are sent to by Intelligent target card;The check results of Intelligent target card feedback are received, and will
The check results received are used as final check results.
After the corresponding certificate condition code of application software is got, in the step, according to Intelligent target card mark and certificate
Condition code, determines whether include certificate condition code in the trusted condition code list of Intelligent target card, to determine the certificate feature
Code whether trusted;If it is determined that the trusted condition code list of Intelligent target card includes certificate condition code, it is determined that the certificate
Condition code trusted, so that it is determined that the application software trusted, performs step S204;If it is determined that the trusted of Intelligent target card is special
Levying in yard list does not include certificate condition code, then performs step S205-S208, by default server to application software whether
Trusted is further verified, if the result is application software trusted.
Step S204, if it is determined that the trusted condition code list of Intelligent target card includes certificate condition code, it is determined that should
Appointed with software trust, authorize the API of accessible with application software Intelligent target card, set up between Intelligent target card and application software
API connections.
The step is consistent with the step S104 in above-described embodiment one, and here is omitted for the present embodiment.
Step S205, if it is determined that in the trusted condition code list of Intelligent target card not include certificate condition code, then to pre-
If server send application software checking request so that server according to trusted condition code set set in advance checking should
The certificate feature of application software whether is included in trusted, and feedback validation result, wherein application software checking request with software
Code.
Wherein, be stored with trusted condition code set set in advance on default server, the trusted feature code collection
Conjunction includes the certificate condition code for the software application that smart card can trust.The trusted condition code set by operator custodian
Member is safeguarded that the present embodiment is not specifically limited to the maintenance mode of trusted condition code set according to actual needs.For example,
Administrative staff will can rule of thumb think certificate condition code trusty or through manual verification's software application trusty
It is added in trusted condition code set, the certificate condition code of incredible software application can also be will confirm that from trusted feature
Code collection is deleted in closing.In addition, the server can be the server being managed collectively to the trusted application software of smart card,
Its reference address can be prestored on mobile terminals, from acquisition for mobile terminal;Or server is obtained at application software
Reference address, the present embodiment is not specifically limited to server.
In the present embodiment, in actual applications, it is sky to begin to trust condition code list originally, or should for newly developed
With software, when its certificate condition code is also not added into the trusted condition code list of Intelligent target card, according to Intelligent target card
Mark and certificate condition code, determine not include certificate condition code in the trusted condition code list of Intelligent target card, but now
It may be application software trusty to send and set up the application software of communication connection request.
In order to avoid using application software trusty as incredible application software, in the present embodiment, it is determined that target
Do not include in the trusted condition code list of smart card after certificate condition code, to the application software, whether trusted is done further
Checking.Specifically, after it is determined that not including certificate condition code in the trusted condition code list of Intelligent target card, to service
Device sends the certificate condition code for including application software in application software checking request, application software checking request;Server is connecing
Receive after application software checking request, can according to whether trusted condition code set set in advance checking certificate condition code belongs to
Trust condition code set, if certificate condition code belongs to trusted condition code set, it is determined that application software trusted, and feedback is tested
Demonstrate,prove result;If certificate condition code is not belonging to trusted condition code set, it is determined that application software is trustless, and feedback validation knot
Really.
Preferably, application software checking request is being sent to default server, so that server is according to set in advance
Whether trusted condition code set checking application software is set up with server before trusted, and feedback validation result and is connected it
Afterwards, authentication is carried out to server first, or mutually progress authentication is carried out with server.Recognize in addition, carrying out identity
Card can realize that the present embodiment is not specifically limited to this by the way of any one authentication in the prior art.For example,
Possess the letter of identity that the third-party institution trusty issues with server, it is right first after being connected with server foundation
Whether the letter of identity of server is authenticated, credible with the identity of certificate server.
Step S206, the reception server feedback the result.
Above-mentioned steps S205-S206 is if it is determined that not including certificate feature in the trusted condition code list of Intelligent target card
Code, passes through default server authentication application software process whether trusty.
If step S207, the result are application software trusted, the result and certificate condition code are sent to target
Smart card, so that certificate condition code is added in trusted condition code list by Intelligent target card according to the result.
In the present embodiment, if the result is application software trusted, control targe smart card is by the application software
Certificate condition code is added in trusted condition code list, and the trusted condition code list to Intelligent target card is updated.
Step S208, the API for authorizing accessible with application software Intelligent target card, set up between Intelligent target card and application software
API connections.
The API of accessible with application software Intelligent target card is authorized in the step, is set up between Intelligent target card and application software
API connections process, with above-mentioned steps S204 authorize accessible with application software Intelligent target card API, set up Intelligent target
As the process of API connections of the card between application software, here is omitted for the present embodiment.
In the present embodiment, if the result in step S206 is trustless for application software, the application can be determined
Software is fly-by-night, and step S207-S208 is not performed, and the communication connection between application software and Intelligent target card, which is set up, loses
Lose, communication connection can be sent to application software and set up failed message.
The embodiment of the present invention passes through it is determined that not including certificate condition code in the trusted condition code list of Intelligent target card
When, whether trusted is further is verified to the application software for request server, can reduce application software trusty
It is mistaken for fly-by-night possibility;When the result is application software trusted, accessible with application software target intelligence is being authorized
The API that can block, it is special to the trusted of Intelligent target card while setting up the API connections between Intelligent target card and application software
A yard list is levied to be updated.
Embodiment three
Fig. 3 is the flow chart of the method for the foundation communication connection that the embodiment of the present invention three is provided.In above-described embodiment two
On the basis of, so that the executive agent of method is smartcard management module as an example, to method executive agent, mesh in the implementation process of method
Interaction between mark smart card, application software and server is illustrated.As shown in figure 3, this method specific steps are such as
Under:
What step S301, smartcard management module reception application software were sent sets up communication connection request, sets up communication link
Connect request bag and contain the application identities for being used for unique mark application software and Intelligent target card mark.
The application identities that step S302, smartcard management module are included according to communication connection request, obtain application software
Certificate condition code, certificate condition code is corresponded with application software.
Step S303, smartcard management module send feature code check to Intelligent target card and asked, the request of feature code check
Include certificate condition code;
Whether step S304, Intelligent target card include card according in the request verification trusted condition code list of feature code check
Book condition code;
Step S305, Intelligent target card are to smartcard management module feedback check result.
In the present embodiment, above-mentioned steps S303-S305 plants embodiment with (2) of step S203 in above-described embodiment two
Exemplified by, to according to Intelligent target card mark and certificate condition code, determine in the trusted condition code list of Intelligent target card whether
During including certificate condition code, illustrated with interacting for Intelligent target card.Step S203 can also plant real using (1)
The mode of applying realizes, is planted when embodiment is realized and is interacted with Intelligent target card using (1) for step S203 in the present embodiment
Process is no longer described in detail.
Step S306, smartcard management module determine whether include card in trusted condition code list according to check results
Book condition code.
Step S307, if it is determined that trusted condition code list includes certificate condition code, smartcard management module mandate should
With the API of softward interview Intelligent target card, the API connections set up between Intelligent target card and application software.
Step S308, if it is determined that not including certificate condition code in trusted condition code list, smartcard management module is to pre-
If server send application software checking request.
Wherein, the certificate condition code that application software checking includes application software in asking.
Step S309, server according to trusted condition code set set in advance verify application software whether trusted.
The result is fed back to smartcard management module by step S310, server.
If step S311, the result are application software trusted, smartcard management module is special by the result and certificate
Levy code and be sent to Intelligent target card.
Certificate condition code is added in trusted condition code list by step S312, Intelligent target card according to the result.
Step S313, smartcard management module mandate accessible with application software Intelligent target card API, set up Intelligent target card
API between application software is connected.
The embodiment of the present invention is directed to the method flow in embodiment two, executive agent smartcard management module to method,
Interaction between Intelligent target card, application software and server is illustrated.
Example IV
Fig. 4 is the structural representation of the device for the foundation communication connection that the embodiment of the present invention four is provided.The present embodiment is provided
Device specifically for perform set up communication connection embodiment of the method handling process.As shown in figure 4, the device 40 includes:
Receiving module 401, acquisition module 402, determining module 403, connection establishment module 404 and authentication module 405.
Specifically, receiving module 401 is used for the communication connection request of setting up for receiving application software transmission, foundation communication connection
Request bag contains application identities and Intelligent target the card mark for unique mark application software.
Acquisition module 402 is used for the application identities included according to communication connection request, obtains the certificate feature of application software
Code, certificate condition code is corresponded with application software.
Determining module 403 is used to, according to Intelligent target card mark and certificate condition code, determine the trusted of Intelligent target card
Whether include certificate condition code in condition code list.
Connection establishment module 404 is used for if it is determined that the trusted condition code list of Intelligent target card includes certificate feature
Code, it is determined that application software trusted, authorizes the API of accessible with application software Intelligent target card, sets up Intelligent target card and application
API connections between software.
Authentication module 405 be used for if it is determined that in the trusted condition code list of Intelligent target card not include certificate condition code,
Then by default server authentication application software whether trusted.
If connection establishment module 404 is additionally operable to the result for application software trusted, accessible with application software mesh is authorized
Mark the API of smart card, the API connections set up between Intelligent target card and application software.
The embodiment of the method that device provided in an embodiment of the present invention can be provided specifically for execution above-described embodiment one,
Here is omitted for concrete function.
The embodiment of the present invention by receive that application software sends set up communication connection request after, according to wherein carrying
Application identities obtain the corresponding certificate condition code of application software, in the trusted condition code list by determining Intelligent target card
Whether certificate condition code is included, to application software, whether trusted is verified, and it is determined that after application software trusted, awarding
Weigh the API of accessible with application software Intelligent target card;And it is determined that not including card in the trusted condition code list of Intelligent target card
During book condition code, by default server further verify application software whether trusted, if the result be application software
Trusted, then authorize the API of accessible with application software Intelligent target card, and the API set up between Intelligent target card and application software connects
Connect so that what application software obtained the API of Intelligent target card calls authority, and by the API of invocation target smart card to target
Smart card conducts interviews, it is achieved thereby that application software sticks into row data communication with Intelligent target so that user can be by answering
Directly enter row data communication with smart card with software, needed so as to can remotely be handled by application software in smart card
The business modified of user data, be user-friendly and save user time, improve the utilization rate of application software, significantly
Improve the efficiency of service of operator.
Embodiment five
Fig. 5 is the structural representation of the device for the foundation communication connection that the embodiment of the present invention five is provided.In above-described embodiment
On the basis of four, as shown in figure 5, the device 40 also includes sending module 406.
If it is application software trusted that sending module 406, which is used for the result, the result and certificate condition code are sent
Intelligent target card is given, so that certificate condition code is added in trusted condition code list by Intelligent target card according to the result.
As shown in figure 5, authentication module 405 includes:Sending submodule 4051 and receiving submodule 4052.
Wherein, sending submodule 4051 is used for if it is determined that not including certificate in the trusted condition code list of Intelligent target card
Condition code, then send application software checking request to default server, so that server is special according to trusted set in advance
Levy code collection close checking application software whether in trusted, and feedback validation result, wherein application software checking request comprising application
The certificate condition code of software.
Receiving word modules 4052 is used for the result that the reception server is fed back.
In the present embodiment, determining module 403 is additionally operable to be identified according to Intelligent target card, and what acquisition Intelligent target card was stored can
Trust condition code list;According to certificate condition code and the trusted condition code list got, trusted condition code list is determined
In whether include certificate condition code.
Determining module 403 is additionally operable to, according to Intelligent target card mark and certificate condition code, feature be sent to Intelligent target card
Code check is asked, feature code check request bag condition code containing certificate, so that Intelligent target card asks to verify according to feature code check
Whether certificate condition code, and feedback check result are included in trusted condition code list;Receive the verification of Intelligent target card feedback
As a result, and according to check results determine whether include certificate condition code in trusted condition code list.
What device provided in an embodiment of the present invention can be provided specifically for execution above-described embodiment two and embodiment three
Embodiment of the method, here is omitted for concrete function.
The embodiment of the present invention passes through it is determined that not including certificate condition code in the trusted condition code list of Intelligent target card
When, whether trusted is further is verified to the application software for request server, can reduce application software trusty
It is mistaken for fly-by-night possibility;When the result is application software trusted, accessible with application software target intelligence is being authorized
The api interface that can block, while setting up the API connections between Intelligent target card and application software, to the credible of Intelligent target card
Condition code list is appointed to be updated.
Embodiment six
Fig. 6 is the structural representation for the mobile terminal that the embodiment of the present invention six is provided.As shown in fig. 6, the present embodiment is provided
Mobile terminal 60 include:Smart card 601, at least one application being installed on the mobile terminal built at least one is soft
Part 602 and with the smart card 601 built at least one and it is described at least one be installed on the mobile terminal should
The processor 603 that is connected with software 602, memory 604 and it is stored on the memory 604 and can be by the processor
The computer program of 603 operations.
The processor 603 realizes that the foundation that any of the above-described embodiment of the method is provided is led to when running the computer program
Believe the method for connection.
The embodiment of the present invention by receive that application software sends set up communication connection request after, according to wherein carrying
Application identities obtain the corresponding certificate condition code of application software, in the trusted condition code list by determining Intelligent target card
Whether certificate condition code is included, to application software, whether trusted is verified, and it is determined that after application software trusted, awarding
Weigh the API of accessible with application software Intelligent target card;And it is determined that not including card in the trusted condition code list of Intelligent target card
During book condition code, by default server further verify application software whether trusted, if the result be application software
Trusted, then authorize the API of accessible with application software Intelligent target card, and the API set up between Intelligent target card and application software connects
Connect so that what application software obtained the API of Intelligent target card calls authority, and by the API of invocation target smart card to target
Smart card conducts interviews, it is achieved thereby that application software sticks into row data communication with Intelligent target so that user can be by answering
Directly enter row data communication with smart card with software, needed so as to can remotely be handled by application software in smart card
The business modified of user data, be user-friendly and save user time, improve the utilization rate of application software, significantly
Improve the efficiency of service of operator.
, can be by it in several embodiments provided by the present invention, it should be understood that disclosed apparatus and method
Its mode is realized.For example, device embodiment described above is only schematical, for example, the division of the unit, only
Only a kind of division of logic function, can there is other dividing mode when actually realizing, such as multiple units or component can be tied
Another system is closed or is desirably integrated into, or some features can be ignored, or do not perform.It is another, it is shown or discussed
Coupling each other or direct-coupling or communication connection can be the INDIRECT COUPLINGs or logical of device or unit by some interfaces
Letter connection, can be electrical, machinery or other forms.
The unit illustrated as separating component can be or may not be it is physically separate, it is aobvious as unit
The part shown can be or may not be physical location, you can with positioned at a place, or can also be distributed to multiple
On NE.Some or all of unit therein can be selected to realize the mesh of this embodiment scheme according to the actual needs
's.
In addition, each functional unit in each embodiment of the invention can be integrated in a processing unit, can also
That unit is individually physically present, can also two or more units it is integrated in a unit.Above-mentioned integrated list
Member can both be realized in the form of hardware, it would however also be possible to employ hardware adds the form of SFU software functional unit to realize.
The above-mentioned integrated unit realized in the form of SFU software functional unit, can be stored in an embodied on computer readable and deposit
In storage media.Above-mentioned SFU software functional unit is stored in a storage medium, including some instructions are to cause a computer
Equipment (can be personal computer, server, or network equipment etc.) or processor (processor) perform the present invention each
The part steps of embodiment methods described.And foregoing storage medium includes:USB flash disk, mobile hard disk, read-only storage (Read-
Only Memory, ROM), random access memory (Random Access Memory, RAM), magnetic disc or CD etc. it is various
Can be with the medium of store program codes.
Those skilled in the art can be understood that, for convenience and simplicity of description, only with above-mentioned each functional module
Division progress for example, in practical application, can distribute complete by different functional modules by above-mentioned functions as needed
Into the internal structure of device being divided into different functional modules, to complete all or part of function described above.On
The specific work process of the device of description is stated, the corresponding process in preceding method embodiment is may be referred to, will not be repeated here.
Finally it should be noted that:Various embodiments above is merely illustrative of the technical solution of the present invention, rather than its limitations;To the greatest extent
The present invention is described in detail with reference to foregoing embodiments for pipe, it will be understood by those within the art that:Its according to
The technical scheme described in foregoing embodiments can so be modified, or which part or all technical characteristic are entered
Row equivalent substitution;And these modifications or replacement, the essence of appropriate technical solution is departed from various embodiments of the present invention technology
The scope of scheme.
Claims (11)
1. a kind of method for setting up communication connection, it is characterised in that including:
The communication connection request of setting up of application software transmission is received, the communication connection request of setting up is included for unique mark institute
State the application identities and Intelligent target card mark of application software;
The application identities included according to the communication connection request, obtain the certificate condition code of the application software, described
Certificate condition code is corresponded with the application software;
According to Intelligent target card mark and the certificate condition code, the trusted condition code row of the Intelligent target card are determined
Whether include the certificate condition code in table;
If it is determined that the trusted condition code list of the Intelligent target card includes the certificate condition code, it is determined that the application
Software trust is appointed, and authorizes the API of Intelligent target card described in the accessible with application software, is set up the Intelligent target card and is answered with described
With the API connections between software;
If it is determined that not including the certificate condition code in the trusted condition code list of the Intelligent target card, then by default
Application software described in server authentication whether trusted;
If the result is the application software trusted, Intelligent target card described in the accessible with application software is authorized
API, the API connections set up between the Intelligent target card and the application software.
2. according to the method described in claim 1, it is characterised in that described if it is determined that the trusted feature of the Intelligent target card
Code list in not include the certificate condition code, then by application software described in default server authentication whether trusted, bag
Include:
If it is determined that not including the certificate condition code in the trusted condition code list of the Intelligent target card, then to described default
Server send application software checking request so that the server is verified according to trusted condition code set set in advance
The application software whether trusted, and feedback validation result, wherein including the application in the application software checking request
The certificate condition code of software;
Receive the result of the server feedback.
3. according to the method described in claim 1, it is characterised in that if the result is the application software trusted,
In the API of Intelligent target card described in the mandate accessible with application software, set up the Intelligent target card and the application is soft
Before API connections between part, in addition to:
The result and the certificate condition code are sent to the Intelligent target card so that the Intelligent target card according to
The certificate condition code is added in the trusted condition code list by the result.
4. the method according to claim any one of 1-3, it is characterised in that it is described according to Intelligent target card mark and
The certificate condition code, determines whether include the certificate condition code in the trusted condition code list of the Intelligent target card,
Including:
Identified according to the Intelligent target card, obtain the trusted condition code list of the Intelligent target card storage;
According to the certificate condition code and the trusted condition code list got, the trusted condition code list is determined
In whether include the certificate condition code.
5. the method according to claim any one of 1-3, it is characterised in that it is described according to Intelligent target card mark and
The certificate condition code, determines whether include the certificate condition code in the trusted condition code list of the Intelligent target card,
Including:
According to Intelligent target card mark and the certificate condition code, sending feature code check to the Intelligent target card please
Ask, described document information verification request bag contains the certificate condition code, so that the Intelligent target card is verified according to described document information
Whether the certificate condition code, and feedback check result are included in the request verification trusted condition code list;
The check results of the Intelligent target card feedback are received, and determine that the trusted condition code is arranged according to the check results
Whether include the certificate condition code in table.
6. a kind of device for setting up communication connection, it is characterised in that including:
Receiving module, for receive application software transmission set up communication connection request, the communication connection request of setting up is included
Application identities and Intelligent target card for application software described in unique mark are identified;
Acquisition module, for the application identities included according to the communication connection request, obtains the card of the application software
Book condition code, the certificate condition code is corresponded with the application software;
Determining module, for according to Intelligent target card mark and the certificate condition code, determining the Intelligent target card
Whether include the certificate condition code in trusted condition code list;
Connection establishment module, for if it is determined that the trusted condition code list of the Intelligent target card includes the certificate feature
Code, it is determined that the application software trusted, authorizes the API of Intelligent target card described in the accessible with application software, sets up described
API connections between Intelligent target card and the application software;
Authentication module, for if it is determined that not including the certificate feature in the trusted condition code list of the Intelligent target card
Code, then by application software described in default server authentication whether trusted;
If the connection establishment module is additionally operable to the result for the application software trusted, authorize the application soft
Part accesses the API of the Intelligent target card, the API connections set up between the Intelligent target card and the application software.
7. device according to claim 6, it is characterised in that the authentication module includes:
Sending submodule, for if it is determined that not including the certificate feature in the trusted condition code list of the Intelligent target card
Code, then send application software checking request, so that the server is according to set in advance credible to the default server
Appoint condition code set verify the application software whether trusted, and feedback validation result, wherein application software checking please
The certificate condition code of the application software is included in asking;
Receiving submodule, the result for receiving the server feedback.
8. device according to claim 7, it is characterised in that also include:
Sending module, if being the application software trusted for the result, by the result and the certificate
Condition code is sent to the Intelligent target card so that the Intelligent target card according to the result by the certificate condition code
It is added in the trusted condition code list.
9. the device according to claim any one of 6-8, it is characterised in that
The determining module is additionally operable to be identified according to the Intelligent target card, and the trusted for obtaining the Intelligent target card storage is special
Levy a yard list;According to the certificate condition code and the trusted condition code list got, the trusted feature is determined
Whether include the certificate condition code in code list.
10. the device according to claim any one of 6-8, it is characterised in that
The determining module is additionally operable to according to Intelligent target card mark and the certificate condition code, to the Intelligent target card
The request of feature code check is sent, described document information verification request bag contains the certificate condition code, so that the Intelligent target card root
Whether verified according to described document information verification request in the trusted condition code list includes the certificate condition code, and feed back school
Test result;
The check results of the Intelligent target card feedback are received, and determine that the trusted condition code is arranged according to the check results
Whether include the certificate condition code in table.
11. a kind of mobile terminal, it is characterised in that including:Smart card built at least one, at least one be installed on the shifting
Application software in dynamic terminal, with the smart card built at least one and it is described at least one be installed on the mobile terminal
On the processor of application software connection, memory and be stored on the memory and can be run by the processor
Computer program,
The processor realizes the side of the foundation communication connection described in claim any one of 1-5 when running the computer program
Method.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710434484.4A CN107277794A (en) | 2017-06-09 | 2017-06-09 | Set up the method, device and mobile terminal of communication connection |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710434484.4A CN107277794A (en) | 2017-06-09 | 2017-06-09 | Set up the method, device and mobile terminal of communication connection |
Publications (1)
Publication Number | Publication Date |
---|---|
CN107277794A true CN107277794A (en) | 2017-10-20 |
Family
ID=60066656
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201710434484.4A Pending CN107277794A (en) | 2017-06-09 | 2017-06-09 | Set up the method, device and mobile terminal of communication connection |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN107277794A (en) |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN111159693A (en) * | 2019-12-28 | 2020-05-15 | 西安精雕软件科技有限公司 | Electronic equipment permission verification method, device and system and readable medium |
WO2023179102A1 (en) * | 2022-03-22 | 2023-09-28 | 华为技术有限公司 | Method for determining trusted identity of application, and management unit and device |
Citations (10)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101031939A (en) * | 2004-10-19 | 2007-09-05 | 英特尔公司 | Method and apparatus for securing communications between a smartcard and a terminal |
CN101616165A (en) * | 2009-07-28 | 2009-12-30 | 江苏先安科技有限公司 | A kind of method of inquiring and authenticating issue of novel X 509 digital certificate white list |
CN103051456A (en) * | 2012-12-25 | 2013-04-17 | 北京大唐智能卡技术有限公司 | Method for managing application procedures in intelligent secure digital (SD) card and system |
CN103391286A (en) * | 2013-07-11 | 2013-11-13 | 北京天地互连信息技术有限公司 | Full IP remote monitoring network system and safety authentication method |
CN103812649A (en) * | 2012-11-07 | 2014-05-21 | 中国电信股份有限公司 | Method and system for safety access control of machine-card interface, and handset terminal |
CN104348616A (en) * | 2013-07-26 | 2015-02-11 | 中国移动通信集团公司 | Method for visiting terminal security component, device thereof and system thereof |
CN106304052A (en) * | 2015-06-08 | 2017-01-04 | 中国移动通信集团公司 | A kind of method of secure communication, device, terminal and client identification module card |
CN106470107A (en) * | 2015-08-19 | 2017-03-01 | 中兴通讯股份有限公司 | A kind of message security control method, device and system |
CN106657137A (en) * | 2017-01-17 | 2017-05-10 | 腾讯科技(上海)有限公司 | Software product legitimacy verification method, apparatus and system |
CN106657032A (en) * | 2016-12-05 | 2017-05-10 | 北京博惠城信息科技有限公司 | System and method for realizing identity identification and data authentication based on security medium confidential short message |
-
2017
- 2017-06-09 CN CN201710434484.4A patent/CN107277794A/en active Pending
Patent Citations (10)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101031939A (en) * | 2004-10-19 | 2007-09-05 | 英特尔公司 | Method and apparatus for securing communications between a smartcard and a terminal |
CN101616165A (en) * | 2009-07-28 | 2009-12-30 | 江苏先安科技有限公司 | A kind of method of inquiring and authenticating issue of novel X 509 digital certificate white list |
CN103812649A (en) * | 2012-11-07 | 2014-05-21 | 中国电信股份有限公司 | Method and system for safety access control of machine-card interface, and handset terminal |
CN103051456A (en) * | 2012-12-25 | 2013-04-17 | 北京大唐智能卡技术有限公司 | Method for managing application procedures in intelligent secure digital (SD) card and system |
CN103391286A (en) * | 2013-07-11 | 2013-11-13 | 北京天地互连信息技术有限公司 | Full IP remote monitoring network system and safety authentication method |
CN104348616A (en) * | 2013-07-26 | 2015-02-11 | 中国移动通信集团公司 | Method for visiting terminal security component, device thereof and system thereof |
CN106304052A (en) * | 2015-06-08 | 2017-01-04 | 中国移动通信集团公司 | A kind of method of secure communication, device, terminal and client identification module card |
CN106470107A (en) * | 2015-08-19 | 2017-03-01 | 中兴通讯股份有限公司 | A kind of message security control method, device and system |
CN106657032A (en) * | 2016-12-05 | 2017-05-10 | 北京博惠城信息科技有限公司 | System and method for realizing identity identification and data authentication based on security medium confidential short message |
CN106657137A (en) * | 2017-01-17 | 2017-05-10 | 腾讯科技(上海)有限公司 | Software product legitimacy verification method, apparatus and system |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN111159693A (en) * | 2019-12-28 | 2020-05-15 | 西安精雕软件科技有限公司 | Electronic equipment permission verification method, device and system and readable medium |
WO2023179102A1 (en) * | 2022-03-22 | 2023-09-28 | 华为技术有限公司 | Method for determining trusted identity of application, and management unit and device |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN102761549B (en) | Processing method and system of resource sharing and service platforms | |
US9572025B2 (en) | Method, server, computer program and computer program product for communicating with secure element | |
CN101073239B (en) | Method and system for communication between a secure information storage device and at least one third party, corresponding entity, device and third party | |
CN103249045B (en) | A kind of methods, devices and systems of identification | |
CN108989346B (en) | Third-party valid identity escrow agile authentication access method based on account hiding | |
CN103875211B (en) | A kind of internet account number management method, manager, server and system | |
CN110401655A (en) | Access control right management system based on user and role | |
CN107579958A (en) | Data managing method, apparatus and system | |
KR101876674B1 (en) | Method of managing common account using block chain and system performing the same | |
CN104079686A (en) | Setting method and distributing method for terminal equipment MAC address | |
CN105262588A (en) | Log-in method based on dynamic password, account number management server and mobile terminal | |
CN108769186A (en) | service authority control method and device | |
CN107484152A (en) | The management method and device of terminal applies | |
CN105099983A (en) | Authorization method, authority setting method and devices | |
CN108053088A (en) | A kind of Subscriber Management System, method and apparatus | |
CN103518205B (en) | Limit method and the automation equipment of operating right | |
CN110362533A (en) | A kind of archives storage and shared system based on alliance's chain | |
CN107948970A (en) | System of real name method of network entry, system and the mobile terminal of subordinate terminal | |
CN108174377A (en) | Open the method and system of number | |
CN110162560A (en) | Finance data interface butt joint method, device, computer equipment and storage medium | |
CN110175439A (en) | User management method, device, equipment and computer readable storage medium | |
CN106696749A (en) | Charging method and system for electric automobile charging pile with Zigbee | |
CN106603721A (en) | Remote control method and system and remote control client | |
CN101908967B (en) | Configuration method and system of Linux virtual server | |
CN105224541B (en) | Uniqueness control method, information storage means and the device of data |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20171020 |
|
RJ01 | Rejection of invention patent application after publication |