CN107277794A - Set up the method, device and mobile terminal of communication connection - Google Patents

Set up the method, device and mobile terminal of communication connection Download PDF

Info

Publication number
CN107277794A
CN107277794A CN201710434484.4A CN201710434484A CN107277794A CN 107277794 A CN107277794 A CN 107277794A CN 201710434484 A CN201710434484 A CN 201710434484A CN 107277794 A CN107277794 A CN 107277794A
Authority
CN
China
Prior art keywords
condition code
application software
intelligent target
trusted
target card
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201710434484.4A
Other languages
Chinese (zh)
Inventor
仇剑书
杨群
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China United Network Communications Group Co Ltd
Original Assignee
China United Network Communications Group Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China United Network Communications Group Co Ltd filed Critical China United Network Communications Group Co Ltd
Priority to CN201710434484.4A priority Critical patent/CN107277794A/en
Publication of CN107277794A publication Critical patent/CN107277794A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W8/00Network data management
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/24Accounting or billing
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W8/00Network data management
    • H04W8/18Processing of user or subscriber data, e.g. subscribed services, user preferences or user profiles; Transfer of user or subscriber data

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Databases & Information Systems (AREA)
  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Stored Programmes (AREA)

Abstract

The embodiment of the present invention provides a kind of method, device and mobile terminal for setting up communication connection.The embodiment of the present invention according to the application identities of application software by obtaining its certificate condition code, whether include the certificate condition code in trusted condition code list by determining the Intelligent target card, to application software, whether trusted is verified, and it is determined that after application software trusted, authorize the API of accessible with application software Intelligent target card, and when it is determined that not including certificate condition code in the trusted condition code list of Intelligent target card, by default server further verify application software whether trusted, if application software trusted, then authorize the API of accessible with application software Intelligent target card, the API connections set up between Intelligent target card and application software, user is remotely handled by application software needs the business that conducted interviews to smart card, it is user-friendly and saves user time, improve the utilization rate of application software, greatly improve the efficiency of service of operator.

Description

Set up the method, device and mobile terminal of communication connection
Technical field
The present embodiments relate to communication technical field, more particularly to a kind of method, device and shifting for setting up communication connection Dynamic terminal.
Background technology
With developing rapidly for smart card techniques and mobile terminal technology, the mobile terminal with smart card turns into people day Often live indispensable means of communication, the people for moving communication using mobile terminal is more and more.Set in mobile terminal There is smart card, smart card is used to store the user data such as personal information, key and the telephone directory of user, is to move communication Key.The application software such as the China Mobile Service Hall of operator's exploitation are installed on mobile terminal, inquiry is remotely handled for user Set meal service condition, the query communication business that list, paying etc. need not modify to the user data in smart card in detail.
User moves communication using the smart card of mobile terminal, first has to sign networking contract, scene with operator Submit the personal information of oneself to go forward side by side and real-name authentication, selection contract set meal, paying and sign contract, belong to this to obtain The smart card of user.In use, most users generally also need to be modified contract set meal, inquiry set meal service condition, Query communication detailed list, paying etc..Because number of users is huge, operator, which develops, is installed on mobile operation on mobile terminal The application software such as the Room so that user is by the long-range transacting business of application software, so as to reduce the service pressure of entity business hall.Mesh Before, due to that can not enter row data communication between the application software and smart card on mobile terminal, user can not pass through application software Directly enter row data communication with smart card, inquiry contract set meal, inquiry set meal service condition can only be handled by application software, paid The business that expense etc. of receiving need not modify to the user data in smart card, and change contract set meal can not be handled, network and sign About etc. need the business modified to the user data in smart card.
At present, because the user data that smart card memory is stored up is the privacy information of user, once incredible application software Enter row data communication with smart card, there is the potential safety hazard that user data was distorted and replicated to incredible application software malice, should With communication connection can not be set up between software and smart card, cause user directly can not enter line number with smart card by application software According to communication, the business for needing to modify to the user data in smart card for change contract set meal, the signing etc. that networks, user Then need to go to the entity business hall of operator, the management platform by operator will be handled by staff scene, It can not remotely handle, take the user a lot of time with energy, cause great puzzlement to user.
The content of the invention
The embodiment of the present invention provides a kind of method, device and mobile terminal for setting up communication connection, to solve existing answer With communication connection can not be set up between software and smart card, cause user directly can not enter line number with smart card by application software According to communication, the business for needing to modify to the user data in smart card for change contract set meal, the signing etc. that networks, user Can not remotely it handle, the problem of taking the user a lot of time with energy, cause great puzzlement to user.
The one side of the embodiment of the present invention is to provide a kind of method for setting up communication connection, including:
The communication connection request of setting up of application software transmission is received, the communication connection request of setting up is included for uniquely marking Know the application identities and Intelligent target card mark of the application software;
The application identities included according to the communication connection request, obtain the certificate condition code of the application software, The certificate condition code is corresponded with the application software;
According to Intelligent target card mark and the certificate condition code, the trusted feature of the Intelligent target card is determined Whether include the certificate condition code in code list;
If it is determined that the trusted condition code list of the Intelligent target card includes the certificate condition code, it is determined that described Application software trusted, authorizes the API of Intelligent target card described in the accessible with application software, sets up the Intelligent target card and institute State the API connections between application software;
If it is determined that not including the certificate condition code in the trusted condition code list of the Intelligent target card, then by pre- If server authentication described in application software whether trusted;
If the result is the application software trusted, Intelligent target described in the accessible with application software is authorized The API of card, the API connections set up between the Intelligent target card and the application software.
The other side of the embodiment of the present invention is to provide a kind of device for setting up communication connection, including:
Receiving module, the communication connection request of setting up for receiving application software transmission is described to set up communication connection request Identified comprising the application identities for application software described in unique mark and Intelligent target card;
Acquisition module, for the application identities included according to the communication connection request, obtains the application software Certificate condition code, the certificate condition code and the application software are corresponded;
Determining module, for according to Intelligent target card mark and the certificate condition code, determining the Intelligent target Whether include the certificate condition code in the trusted condition code list of card;
Connection establishment module, for if it is determined that the trusted condition code list of the Intelligent target card includes the certificate Condition code, it is determined that the application software trusted, authorizes the API of Intelligent target card described in the accessible with application software, sets up API connections between the Intelligent target card and the application software;
Authentication module, for if it is determined that not including certificate spy in the trusted condition code list of the Intelligent target card Levy code, then by application software described in default server authentication whether trusted;
If the connection establishment module is additionally operable to the result for the application software trusted, described answer is authorized With the API of Intelligent target card described in softward interview, the API connections set up between the Intelligent target card and the application software.
The other side of the embodiment of the present invention is to provide a kind of mobile terminal, including:Smart card built at least one, At least one be installed on application software on the mobile terminal, with the smart card and described at least one built at least one The processor of the individual application software connection being installed on the mobile terminal, memory and it is stored on the memory and can With the computer program run by the processor,
The processor realizes foundation communication connection described above method when running the computer program.
The method, device and mobile terminal provided in an embodiment of the present invention for setting up communication connection, by receiving application What software was sent is set up after communication connection request, and the corresponding certificate feature of application software is obtained according to the application identities wherein carried Whether code, include the certificate condition code in the trusted condition code list by determining the Intelligent target card, soft to application Part whether verified by trusted, and it is determined that after application software trusted, authorizing accessible with application software Intelligent target card API, and when it is determined that not including certificate condition code in the trusted condition code list of Intelligent target card, pass through default server Further checking application software whether trusted, if the result be application software trusted, authorize accessible with application software mesh Mark the API of smart card, the API connections set up between Intelligent target card and application software so that application software obtains Intelligent target The API's of card calls authority, and Intelligent target card is conducted interviews by the API of invocation target smart card, it is achieved thereby that should Row data communication is sticked into software and Intelligent target so that user directly can carry out data with smart card by application software and lead to Letter, so as to can remotely handle the business for needing to modify to the user data in smart card by application software, side Just user uses and saves user time, improves the utilization rate of application software, greatly improves the efficiency of service of operator.
Brief description of the drawings
Fig. 1 is the method flow diagram for the foundation communication connection that the embodiment of the present invention one is provided;
Fig. 2 is the method flow diagram for the foundation communication connection that the embodiment of the present invention two is provided;
Fig. 3 is the method flow diagram for the foundation communication connection that the embodiment of the present invention three is provided;
Fig. 4 is the structural representation of the device for the foundation communication connection that the embodiment of the present invention four is provided;
Fig. 5 is the structural representation of the device for the foundation communication connection that the embodiment of the present invention five is provided;
Fig. 6 is the structural representation for the mobile terminal that the embodiment of the present invention six is provided.
Embodiment
It is right below in conjunction with the accompanying drawing in the embodiment of the present invention to make technical scheme and advantage clearer Technical scheme is clearly and completely described, it is clear that described embodiment is a part of embodiment of the invention, Rather than whole embodiments.Based on the embodiment in the present invention, those of ordinary skill in the art are not making creative labor The every other embodiment obtained under the premise of dynamic, belongs to the scope of protection of the invention.
In embodiments of the present invention, smartcard management module refers to be used for smart card in the operating system of mobile terminal The functional module for being controlled and managing is accessed, is responsible for accessing the application programming interface (Application of smart card Programming Interface, abbreviation API).The application software installed on mobile terminal is needed by calling smart card API accesses smart card.Smart card in the present embodiment can be universal embedded integrated circuit card (Universal Integrated Circuit Card, abbreviation UICC), the removable smart card such as also referred to as embedded UICC.
Embodiment one
Fig. 1 is the flow chart provided in an embodiment of the present invention for setting up the method communicated to connect.The embodiment of the present invention is for existing Communication connection can not be set up between some application software and smart card, causes user can not be by application software directly and smart card Enter row data communication, the industry for needing to modify to the user data in smart card for change contract set meal, the signing etc. that networks Business, user can not remotely handle, the problem of taking the user a lot of time with energy, cause great puzzlement to user there is provided The method for setting up communication connection.The executive agent of this method is is used to manage the API of smart card in the operating system of mobile terminal Smartcard management module.As shown in figure 1, this method is comprised the following steps that:
What step S101, reception application software were sent sets up communication connection request, and setting up communication connection request and including is used for The application identities of unique mark application software and the mark of Intelligent target card.
Wherein, application identities can uniquely determine one with one application software of unique mark according to application identities Application software.Setting up communication connection request is used for application software request and the foundation communication connection of Intelligent target card, with communication link Connect the user data accessed after being successfully established in smart card.
Step S102, the application identities included according to communication connection request, obtain the certificate condition code of application software, certificate Condition code is corresponded with application software.
In the present embodiment, certificate condition code is corresponded with application software, and application software possesses unique certificate condition code, The certificate condition code of different application software is different.Wherein, the certificate condition code can be that the third-party institution is that application software is issued The mark of the certificate of hair.Application identities can uniquely determine one with one application software of unique mark according to application identities Individual application software, so as to uniquely determine a certificate condition code.
In the present embodiment, when application software is initiated to set up communication connection request, what application software was sent sets up communication link Connecing request at least includes application identities and the mark of Intelligent target card.Receive set up communication connection request when, according to should With mark, the certificate condition code of the corresponding software application of the application identities is obtained.
Step S103, according to Intelligent target card mark and certificate condition code, determine the trusted condition code of Intelligent target card Whether include certificate condition code in list.
In the present embodiment, any smart card memory contains trusted condition code list, is wrapped in the trusted condition code list The certificate condition code for all application software that smart card where including it is trusted.
In the present embodiment, after the corresponding certificate condition code of application software is got, identified and demonstrate,proved according to Intelligent target card Book condition code, determines whether include certificate condition code in the trusted condition code list of Intelligent target card, to determine that the certificate is special Levy code whether trusted;If it is determined that the trusted condition code list of Intelligent target card includes certificate condition code, it is determined that the card Book condition code trusted, performs step S104;If it is determined that it is special not include certificate in the trusted condition code list of Intelligent target card Code is levied, then performs step S105-S106.
Step S104, if it is determined that the trusted condition code list of Intelligent target card includes certificate condition code, authorize application The API of softward interview Intelligent target card, the API connections set up between Intelligent target card and application software.
In the present embodiment, the application software installed on mobile terminal is needed by calling the API of smart card to access intelligence Card.In the step, however, it is determined that the trusted condition code list of Intelligent target card includes certificate condition code, it is determined that the certificate is special It is trusty to levy code, and it is trusty for may thereby determine that the application software, authorizes the accessible with application software Intelligent target card API so that the application software is conducted interviews by the API of invocation target smart card to Intelligent target card, so as to set up mesh Mark the API connections between smart card and application software.
In the present embodiment, smartcard management module is responsible for the API of Intelligent target card, and application software need to be to smart card pipe Reason module, which is sent, sets up communication connection request, and request is set up API with Intelligent target card and is connected, and smartcard management module is soft to application Part whether verified by trusted, and after determining application software trusted, authorizes accessible with application software Intelligent target card API so that what application software obtained the API of Intelligent target card calls authority, and by the API of invocation target smart card to target Smart card conducts interviews, so as to set up the API connections between Intelligent target card and application software.
Step S105, if it is determined that in the trusted condition code list of Intelligent target card not include certificate condition code, then pass through Default server authentication application software whether trusted.
In the present embodiment, however, it is determined that do not include certificate condition code in the trusted condition code list of Intelligent target card, by pre- If server to application software, whether trusted is further verified, can reduce and judge application software trusty by accident For fly-by-night possibility.
If step S106, the result are application software trusted, accessible with application software Intelligent target card is authorized API, the API connections set up between Intelligent target card and application software.
In the present embodiment, if default server further verifies the application software trusted, application software is authorized to visit The API of Intelligent target card is asked, the API connections set up between Intelligent target card and application software.
In the present embodiment, if the result in step S106 is trustless for application software, the application can be determined Software is fly-by-night, and failure is set up in the communication connection between application software and Intelligent target card, can be sent out to application software Communication connection is sent to set up failed message.
The embodiment of the present invention by receive that application software sends set up communication connection request after, according to wherein carrying Application identities obtain the corresponding certificate condition code of application software, in the trusted condition code list by determining Intelligent target card Whether certificate condition code is included, to application software, whether trusted is verified, and it is determined that after application software trusted, awarding Weigh the API of accessible with application software Intelligent target card;And it is determined that not including card in the trusted condition code list of Intelligent target card During book condition code, by default server further verify application software whether trusted, if the result be application software Trusted, then authorize the API of accessible with application software Intelligent target card, and the API set up between Intelligent target card and application software connects Connect so that what application software obtained the API of Intelligent target card calls authority, and by the API of invocation target smart card to target Smart card conducts interviews, it is achieved thereby that application software sticks into row data communication with Intelligent target so that user can be by answering Directly enter row data communication with smart card with software, needed so as to can remotely be handled by application software in smart card The business modified of user data, be user-friendly and save user time, improve the utilization rate of application software, significantly Improve the efficiency of service of operator.
Embodiment two
Fig. 2 is the flow chart of the method for the foundation communication connection that the embodiment of the present invention two is provided.In above-described embodiment one On the basis of, in the present embodiment, if the result is application software trusted, authorizing accessible with application software Intelligent target card API, sets up before the API connections between Intelligent target card and application software, in addition to:The result and certificate condition code are sent out Intelligent target card is given, so that certificate condition code is added to trusted condition code list by Intelligent target card according to the result In.As shown in Fig. 2 this method is comprised the following steps that:
What step S201, reception application software were sent sets up communication connection request, and setting up communication connection request and including is used for Application identities and Intelligent target the card mark of unique mark application software.
The step is consistent with the step S101 in above-described embodiment one, and here is omitted for the present embodiment.
Step S202, the application identities included according to communication connection request, obtain the certificate condition code of application software, certificate Condition code is corresponded with application software.
The step is consistent with the step S102 in above-described embodiment one, and here is omitted for the present embodiment.
Step S203, according to Intelligent target card mark and certificate condition code, determine the trusted condition code of Intelligent target card Whether include certificate condition code in list.
In the present embodiment, any smart card memory contains trusted condition code list, and the trusted condition code list includes All credible condition codes, credible condition code refer to trusted condition code list where the application software that can trust of smart card Certificate condition code.
In the present embodiment, any smart card memory contains trusted condition code list, is wrapped in the trusted condition code list The certificate condition code for all application software that smart card where including it is trusted.
In the present embodiment, according to Intelligent target card mark and certificate condition code, the trusted feature of Intelligent target card is determined Whether include certificate condition code in code list, can specifically be realized using any one following mode:
(1) identified according to Intelligent target card, obtain the trusted condition code list of Intelligent target card storage;It is special according to certificate Code and the trusted condition code list got are levied, determines whether include certificate condition code in trusted condition code list.
Specifically, identified according to Intelligent target card, the trusted condition code list of its storage is read from Intelligent target card, and The certificate condition code is compared with the credible condition code in trusted condition code list successively, if trusted condition code list In to there is any credible condition code consistent with the certificate condition code, it is determined that trusted condition code list includes certificate feature Code;If otherwise all credible condition codes are inconsistent with the certificate condition code in the list of trusted condition code, it is determined that trusted Do not include certificate condition code in condition code list.
(2) according to Intelligent target card mark and certificate condition code, send feature code check to Intelligent target card and ask, feature Code check request bag condition code containing certificate, so that Intelligent target card is according to the request verification trusted condition code list of feature code check In whether include certificate condition code, and to feedback check result;The check results of Intelligent target card feedback are received, and according to verification As a result determine whether include certificate condition code in the trusted condition code list in Intelligent target card.
Specifically, according to Intelligent target card mark and certificate condition code, send feature code check to Intelligent target card and ask, Intelligent target is stuck in receive the request of feature code check after, during feature code check is asked the certificate condition code that includes successively with Credible condition code in the trusted condition code list of itself storage is compared, if existing in trusted condition code list any Credible condition code is consistent with the certificate condition code, it is determined that trusted condition code list includes certificate condition code, if otherwise may be used Trust all credible condition codes in condition code list inconsistent with the certificate condition code, it is determined that in trusted condition code list Do not include certificate condition code;Check results are sent to by Intelligent target card;The check results of Intelligent target card feedback are received, and will The check results received are used as final check results.
After the corresponding certificate condition code of application software is got, in the step, according to Intelligent target card mark and certificate Condition code, determines whether include certificate condition code in the trusted condition code list of Intelligent target card, to determine the certificate feature Code whether trusted;If it is determined that the trusted condition code list of Intelligent target card includes certificate condition code, it is determined that the certificate Condition code trusted, so that it is determined that the application software trusted, performs step S204;If it is determined that the trusted of Intelligent target card is special Levying in yard list does not include certificate condition code, then performs step S205-S208, by default server to application software whether Trusted is further verified, if the result is application software trusted.
Step S204, if it is determined that the trusted condition code list of Intelligent target card includes certificate condition code, it is determined that should Appointed with software trust, authorize the API of accessible with application software Intelligent target card, set up between Intelligent target card and application software API connections.
The step is consistent with the step S104 in above-described embodiment one, and here is omitted for the present embodiment.
Step S205, if it is determined that in the trusted condition code list of Intelligent target card not include certificate condition code, then to pre- If server send application software checking request so that server according to trusted condition code set set in advance checking should The certificate feature of application software whether is included in trusted, and feedback validation result, wherein application software checking request with software Code.
Wherein, be stored with trusted condition code set set in advance on default server, the trusted feature code collection Conjunction includes the certificate condition code for the software application that smart card can trust.The trusted condition code set by operator custodian Member is safeguarded that the present embodiment is not specifically limited to the maintenance mode of trusted condition code set according to actual needs.For example, Administrative staff will can rule of thumb think certificate condition code trusty or through manual verification's software application trusty It is added in trusted condition code set, the certificate condition code of incredible software application can also be will confirm that from trusted feature Code collection is deleted in closing.In addition, the server can be the server being managed collectively to the trusted application software of smart card, Its reference address can be prestored on mobile terminals, from acquisition for mobile terminal;Or server is obtained at application software Reference address, the present embodiment is not specifically limited to server.
In the present embodiment, in actual applications, it is sky to begin to trust condition code list originally, or should for newly developed With software, when its certificate condition code is also not added into the trusted condition code list of Intelligent target card, according to Intelligent target card Mark and certificate condition code, determine not include certificate condition code in the trusted condition code list of Intelligent target card, but now It may be application software trusty to send and set up the application software of communication connection request.
In order to avoid using application software trusty as incredible application software, in the present embodiment, it is determined that target Do not include in the trusted condition code list of smart card after certificate condition code, to the application software, whether trusted is done further Checking.Specifically, after it is determined that not including certificate condition code in the trusted condition code list of Intelligent target card, to service Device sends the certificate condition code for including application software in application software checking request, application software checking request;Server is connecing Receive after application software checking request, can according to whether trusted condition code set set in advance checking certificate condition code belongs to Trust condition code set, if certificate condition code belongs to trusted condition code set, it is determined that application software trusted, and feedback is tested Demonstrate,prove result;If certificate condition code is not belonging to trusted condition code set, it is determined that application software is trustless, and feedback validation knot Really.
Preferably, application software checking request is being sent to default server, so that server is according to set in advance Whether trusted condition code set checking application software is set up with server before trusted, and feedback validation result and is connected it Afterwards, authentication is carried out to server first, or mutually progress authentication is carried out with server.Recognize in addition, carrying out identity Card can realize that the present embodiment is not specifically limited to this by the way of any one authentication in the prior art.For example, Possess the letter of identity that the third-party institution trusty issues with server, it is right first after being connected with server foundation Whether the letter of identity of server is authenticated, credible with the identity of certificate server.
Step S206, the reception server feedback the result.
Above-mentioned steps S205-S206 is if it is determined that not including certificate feature in the trusted condition code list of Intelligent target card Code, passes through default server authentication application software process whether trusty.
If step S207, the result are application software trusted, the result and certificate condition code are sent to target Smart card, so that certificate condition code is added in trusted condition code list by Intelligent target card according to the result.
In the present embodiment, if the result is application software trusted, control targe smart card is by the application software Certificate condition code is added in trusted condition code list, and the trusted condition code list to Intelligent target card is updated.
Step S208, the API for authorizing accessible with application software Intelligent target card, set up between Intelligent target card and application software API connections.
The API of accessible with application software Intelligent target card is authorized in the step, is set up between Intelligent target card and application software API connections process, with above-mentioned steps S204 authorize accessible with application software Intelligent target card API, set up Intelligent target As the process of API connections of the card between application software, here is omitted for the present embodiment.
In the present embodiment, if the result in step S206 is trustless for application software, the application can be determined Software is fly-by-night, and step S207-S208 is not performed, and the communication connection between application software and Intelligent target card, which is set up, loses Lose, communication connection can be sent to application software and set up failed message.
The embodiment of the present invention passes through it is determined that not including certificate condition code in the trusted condition code list of Intelligent target card When, whether trusted is further is verified to the application software for request server, can reduce application software trusty It is mistaken for fly-by-night possibility;When the result is application software trusted, accessible with application software target intelligence is being authorized The API that can block, it is special to the trusted of Intelligent target card while setting up the API connections between Intelligent target card and application software A yard list is levied to be updated.
Embodiment three
Fig. 3 is the flow chart of the method for the foundation communication connection that the embodiment of the present invention three is provided.In above-described embodiment two On the basis of, so that the executive agent of method is smartcard management module as an example, to method executive agent, mesh in the implementation process of method Interaction between mark smart card, application software and server is illustrated.As shown in figure 3, this method specific steps are such as Under:
What step S301, smartcard management module reception application software were sent sets up communication connection request, sets up communication link Connect request bag and contain the application identities for being used for unique mark application software and Intelligent target card mark.
The application identities that step S302, smartcard management module are included according to communication connection request, obtain application software Certificate condition code, certificate condition code is corresponded with application software.
Step S303, smartcard management module send feature code check to Intelligent target card and asked, the request of feature code check Include certificate condition code;
Whether step S304, Intelligent target card include card according in the request verification trusted condition code list of feature code check Book condition code;
Step S305, Intelligent target card are to smartcard management module feedback check result.
In the present embodiment, above-mentioned steps S303-S305 plants embodiment with (2) of step S203 in above-described embodiment two Exemplified by, to according to Intelligent target card mark and certificate condition code, determine in the trusted condition code list of Intelligent target card whether During including certificate condition code, illustrated with interacting for Intelligent target card.Step S203 can also plant real using (1) The mode of applying realizes, is planted when embodiment is realized and is interacted with Intelligent target card using (1) for step S203 in the present embodiment Process is no longer described in detail.
Step S306, smartcard management module determine whether include card in trusted condition code list according to check results Book condition code.
Step S307, if it is determined that trusted condition code list includes certificate condition code, smartcard management module mandate should With the API of softward interview Intelligent target card, the API connections set up between Intelligent target card and application software.
Step S308, if it is determined that not including certificate condition code in trusted condition code list, smartcard management module is to pre- If server send application software checking request.
Wherein, the certificate condition code that application software checking includes application software in asking.
Step S309, server according to trusted condition code set set in advance verify application software whether trusted.
The result is fed back to smartcard management module by step S310, server.
If step S311, the result are application software trusted, smartcard management module is special by the result and certificate Levy code and be sent to Intelligent target card.
Certificate condition code is added in trusted condition code list by step S312, Intelligent target card according to the result.
Step S313, smartcard management module mandate accessible with application software Intelligent target card API, set up Intelligent target card API between application software is connected.
The embodiment of the present invention is directed to the method flow in embodiment two, executive agent smartcard management module to method, Interaction between Intelligent target card, application software and server is illustrated.
Example IV
Fig. 4 is the structural representation of the device for the foundation communication connection that the embodiment of the present invention four is provided.The present embodiment is provided Device specifically for perform set up communication connection embodiment of the method handling process.As shown in figure 4, the device 40 includes: Receiving module 401, acquisition module 402, determining module 403, connection establishment module 404 and authentication module 405.
Specifically, receiving module 401 is used for the communication connection request of setting up for receiving application software transmission, foundation communication connection Request bag contains application identities and Intelligent target the card mark for unique mark application software.
Acquisition module 402 is used for the application identities included according to communication connection request, obtains the certificate feature of application software Code, certificate condition code is corresponded with application software.
Determining module 403 is used to, according to Intelligent target card mark and certificate condition code, determine the trusted of Intelligent target card Whether include certificate condition code in condition code list.
Connection establishment module 404 is used for if it is determined that the trusted condition code list of Intelligent target card includes certificate feature Code, it is determined that application software trusted, authorizes the API of accessible with application software Intelligent target card, sets up Intelligent target card and application API connections between software.
Authentication module 405 be used for if it is determined that in the trusted condition code list of Intelligent target card not include certificate condition code, Then by default server authentication application software whether trusted.
If connection establishment module 404 is additionally operable to the result for application software trusted, accessible with application software mesh is authorized Mark the API of smart card, the API connections set up between Intelligent target card and application software.
The embodiment of the method that device provided in an embodiment of the present invention can be provided specifically for execution above-described embodiment one, Here is omitted for concrete function.
The embodiment of the present invention by receive that application software sends set up communication connection request after, according to wherein carrying Application identities obtain the corresponding certificate condition code of application software, in the trusted condition code list by determining Intelligent target card Whether certificate condition code is included, to application software, whether trusted is verified, and it is determined that after application software trusted, awarding Weigh the API of accessible with application software Intelligent target card;And it is determined that not including card in the trusted condition code list of Intelligent target card During book condition code, by default server further verify application software whether trusted, if the result be application software Trusted, then authorize the API of accessible with application software Intelligent target card, and the API set up between Intelligent target card and application software connects Connect so that what application software obtained the API of Intelligent target card calls authority, and by the API of invocation target smart card to target Smart card conducts interviews, it is achieved thereby that application software sticks into row data communication with Intelligent target so that user can be by answering Directly enter row data communication with smart card with software, needed so as to can remotely be handled by application software in smart card The business modified of user data, be user-friendly and save user time, improve the utilization rate of application software, significantly Improve the efficiency of service of operator.
Embodiment five
Fig. 5 is the structural representation of the device for the foundation communication connection that the embodiment of the present invention five is provided.In above-described embodiment On the basis of four, as shown in figure 5, the device 40 also includes sending module 406.
If it is application software trusted that sending module 406, which is used for the result, the result and certificate condition code are sent Intelligent target card is given, so that certificate condition code is added in trusted condition code list by Intelligent target card according to the result.
As shown in figure 5, authentication module 405 includes:Sending submodule 4051 and receiving submodule 4052.
Wherein, sending submodule 4051 is used for if it is determined that not including certificate in the trusted condition code list of Intelligent target card Condition code, then send application software checking request to default server, so that server is special according to trusted set in advance Levy code collection close checking application software whether in trusted, and feedback validation result, wherein application software checking request comprising application The certificate condition code of software.
Receiving word modules 4052 is used for the result that the reception server is fed back.
In the present embodiment, determining module 403 is additionally operable to be identified according to Intelligent target card, and what acquisition Intelligent target card was stored can Trust condition code list;According to certificate condition code and the trusted condition code list got, trusted condition code list is determined In whether include certificate condition code.
Determining module 403 is additionally operable to, according to Intelligent target card mark and certificate condition code, feature be sent to Intelligent target card Code check is asked, feature code check request bag condition code containing certificate, so that Intelligent target card asks to verify according to feature code check Whether certificate condition code, and feedback check result are included in trusted condition code list;Receive the verification of Intelligent target card feedback As a result, and according to check results determine whether include certificate condition code in trusted condition code list.
What device provided in an embodiment of the present invention can be provided specifically for execution above-described embodiment two and embodiment three Embodiment of the method, here is omitted for concrete function.
The embodiment of the present invention passes through it is determined that not including certificate condition code in the trusted condition code list of Intelligent target card When, whether trusted is further is verified to the application software for request server, can reduce application software trusty It is mistaken for fly-by-night possibility;When the result is application software trusted, accessible with application software target intelligence is being authorized The api interface that can block, while setting up the API connections between Intelligent target card and application software, to the credible of Intelligent target card Condition code list is appointed to be updated.
Embodiment six
Fig. 6 is the structural representation for the mobile terminal that the embodiment of the present invention six is provided.As shown in fig. 6, the present embodiment is provided Mobile terminal 60 include:Smart card 601, at least one application being installed on the mobile terminal built at least one is soft Part 602 and with the smart card 601 built at least one and it is described at least one be installed on the mobile terminal should The processor 603 that is connected with software 602, memory 604 and it is stored on the memory 604 and can be by the processor The computer program of 603 operations.
The processor 603 realizes that the foundation that any of the above-described embodiment of the method is provided is led to when running the computer program Believe the method for connection.
The embodiment of the present invention by receive that application software sends set up communication connection request after, according to wherein carrying Application identities obtain the corresponding certificate condition code of application software, in the trusted condition code list by determining Intelligent target card Whether certificate condition code is included, to application software, whether trusted is verified, and it is determined that after application software trusted, awarding Weigh the API of accessible with application software Intelligent target card;And it is determined that not including card in the trusted condition code list of Intelligent target card During book condition code, by default server further verify application software whether trusted, if the result be application software Trusted, then authorize the API of accessible with application software Intelligent target card, and the API set up between Intelligent target card and application software connects Connect so that what application software obtained the API of Intelligent target card calls authority, and by the API of invocation target smart card to target Smart card conducts interviews, it is achieved thereby that application software sticks into row data communication with Intelligent target so that user can be by answering Directly enter row data communication with smart card with software, needed so as to can remotely be handled by application software in smart card The business modified of user data, be user-friendly and save user time, improve the utilization rate of application software, significantly Improve the efficiency of service of operator.
, can be by it in several embodiments provided by the present invention, it should be understood that disclosed apparatus and method Its mode is realized.For example, device embodiment described above is only schematical, for example, the division of the unit, only Only a kind of division of logic function, can there is other dividing mode when actually realizing, such as multiple units or component can be tied Another system is closed or is desirably integrated into, or some features can be ignored, or do not perform.It is another, it is shown or discussed Coupling each other or direct-coupling or communication connection can be the INDIRECT COUPLINGs or logical of device or unit by some interfaces Letter connection, can be electrical, machinery or other forms.
The unit illustrated as separating component can be or may not be it is physically separate, it is aobvious as unit The part shown can be or may not be physical location, you can with positioned at a place, or can also be distributed to multiple On NE.Some or all of unit therein can be selected to realize the mesh of this embodiment scheme according to the actual needs 's.
In addition, each functional unit in each embodiment of the invention can be integrated in a processing unit, can also That unit is individually physically present, can also two or more units it is integrated in a unit.Above-mentioned integrated list Member can both be realized in the form of hardware, it would however also be possible to employ hardware adds the form of SFU software functional unit to realize.
The above-mentioned integrated unit realized in the form of SFU software functional unit, can be stored in an embodied on computer readable and deposit In storage media.Above-mentioned SFU software functional unit is stored in a storage medium, including some instructions are to cause a computer Equipment (can be personal computer, server, or network equipment etc.) or processor (processor) perform the present invention each The part steps of embodiment methods described.And foregoing storage medium includes:USB flash disk, mobile hard disk, read-only storage (Read- Only Memory, ROM), random access memory (Random Access Memory, RAM), magnetic disc or CD etc. it is various Can be with the medium of store program codes.
Those skilled in the art can be understood that, for convenience and simplicity of description, only with above-mentioned each functional module Division progress for example, in practical application, can distribute complete by different functional modules by above-mentioned functions as needed Into the internal structure of device being divided into different functional modules, to complete all or part of function described above.On The specific work process of the device of description is stated, the corresponding process in preceding method embodiment is may be referred to, will not be repeated here.
Finally it should be noted that:Various embodiments above is merely illustrative of the technical solution of the present invention, rather than its limitations;To the greatest extent The present invention is described in detail with reference to foregoing embodiments for pipe, it will be understood by those within the art that:Its according to The technical scheme described in foregoing embodiments can so be modified, or which part or all technical characteristic are entered Row equivalent substitution;And these modifications or replacement, the essence of appropriate technical solution is departed from various embodiments of the present invention technology The scope of scheme.

Claims (11)

1. a kind of method for setting up communication connection, it is characterised in that including:
The communication connection request of setting up of application software transmission is received, the communication connection request of setting up is included for unique mark institute State the application identities and Intelligent target card mark of application software;
The application identities included according to the communication connection request, obtain the certificate condition code of the application software, described Certificate condition code is corresponded with the application software;
According to Intelligent target card mark and the certificate condition code, the trusted condition code row of the Intelligent target card are determined Whether include the certificate condition code in table;
If it is determined that the trusted condition code list of the Intelligent target card includes the certificate condition code, it is determined that the application Software trust is appointed, and authorizes the API of Intelligent target card described in the accessible with application software, is set up the Intelligent target card and is answered with described With the API connections between software;
If it is determined that not including the certificate condition code in the trusted condition code list of the Intelligent target card, then by default Application software described in server authentication whether trusted;
If the result is the application software trusted, Intelligent target card described in the accessible with application software is authorized API, the API connections set up between the Intelligent target card and the application software.
2. according to the method described in claim 1, it is characterised in that described if it is determined that the trusted feature of the Intelligent target card Code list in not include the certificate condition code, then by application software described in default server authentication whether trusted, bag Include:
If it is determined that not including the certificate condition code in the trusted condition code list of the Intelligent target card, then to described default Server send application software checking request so that the server is verified according to trusted condition code set set in advance The application software whether trusted, and feedback validation result, wherein including the application in the application software checking request The certificate condition code of software;
Receive the result of the server feedback.
3. according to the method described in claim 1, it is characterised in that if the result is the application software trusted, In the API of Intelligent target card described in the mandate accessible with application software, set up the Intelligent target card and the application is soft Before API connections between part, in addition to:
The result and the certificate condition code are sent to the Intelligent target card so that the Intelligent target card according to The certificate condition code is added in the trusted condition code list by the result.
4. the method according to claim any one of 1-3, it is characterised in that it is described according to Intelligent target card mark and The certificate condition code, determines whether include the certificate condition code in the trusted condition code list of the Intelligent target card, Including:
Identified according to the Intelligent target card, obtain the trusted condition code list of the Intelligent target card storage;
According to the certificate condition code and the trusted condition code list got, the trusted condition code list is determined In whether include the certificate condition code.
5. the method according to claim any one of 1-3, it is characterised in that it is described according to Intelligent target card mark and The certificate condition code, determines whether include the certificate condition code in the trusted condition code list of the Intelligent target card, Including:
According to Intelligent target card mark and the certificate condition code, sending feature code check to the Intelligent target card please Ask, described document information verification request bag contains the certificate condition code, so that the Intelligent target card is verified according to described document information Whether the certificate condition code, and feedback check result are included in the request verification trusted condition code list;
The check results of the Intelligent target card feedback are received, and determine that the trusted condition code is arranged according to the check results Whether include the certificate condition code in table.
6. a kind of device for setting up communication connection, it is characterised in that including:
Receiving module, for receive application software transmission set up communication connection request, the communication connection request of setting up is included Application identities and Intelligent target card for application software described in unique mark are identified;
Acquisition module, for the application identities included according to the communication connection request, obtains the card of the application software Book condition code, the certificate condition code is corresponded with the application software;
Determining module, for according to Intelligent target card mark and the certificate condition code, determining the Intelligent target card Whether include the certificate condition code in trusted condition code list;
Connection establishment module, for if it is determined that the trusted condition code list of the Intelligent target card includes the certificate feature Code, it is determined that the application software trusted, authorizes the API of Intelligent target card described in the accessible with application software, sets up described API connections between Intelligent target card and the application software;
Authentication module, for if it is determined that not including the certificate feature in the trusted condition code list of the Intelligent target card Code, then by application software described in default server authentication whether trusted;
If the connection establishment module is additionally operable to the result for the application software trusted, authorize the application soft Part accesses the API of the Intelligent target card, the API connections set up between the Intelligent target card and the application software.
7. device according to claim 6, it is characterised in that the authentication module includes:
Sending submodule, for if it is determined that not including the certificate feature in the trusted condition code list of the Intelligent target card Code, then send application software checking request, so that the server is according to set in advance credible to the default server Appoint condition code set verify the application software whether trusted, and feedback validation result, wherein application software checking please The certificate condition code of the application software is included in asking;
Receiving submodule, the result for receiving the server feedback.
8. device according to claim 7, it is characterised in that also include:
Sending module, if being the application software trusted for the result, by the result and the certificate Condition code is sent to the Intelligent target card so that the Intelligent target card according to the result by the certificate condition code It is added in the trusted condition code list.
9. the device according to claim any one of 6-8, it is characterised in that
The determining module is additionally operable to be identified according to the Intelligent target card, and the trusted for obtaining the Intelligent target card storage is special Levy a yard list;According to the certificate condition code and the trusted condition code list got, the trusted feature is determined Whether include the certificate condition code in code list.
10. the device according to claim any one of 6-8, it is characterised in that
The determining module is additionally operable to according to Intelligent target card mark and the certificate condition code, to the Intelligent target card The request of feature code check is sent, described document information verification request bag contains the certificate condition code, so that the Intelligent target card root Whether verified according to described document information verification request in the trusted condition code list includes the certificate condition code, and feed back school Test result;
The check results of the Intelligent target card feedback are received, and determine that the trusted condition code is arranged according to the check results Whether include the certificate condition code in table.
11. a kind of mobile terminal, it is characterised in that including:Smart card built at least one, at least one be installed on the shifting Application software in dynamic terminal, with the smart card built at least one and it is described at least one be installed on the mobile terminal On the processor of application software connection, memory and be stored on the memory and can be run by the processor Computer program,
The processor realizes the side of the foundation communication connection described in claim any one of 1-5 when running the computer program Method.
CN201710434484.4A 2017-06-09 2017-06-09 Set up the method, device and mobile terminal of communication connection Pending CN107277794A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201710434484.4A CN107277794A (en) 2017-06-09 2017-06-09 Set up the method, device and mobile terminal of communication connection

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201710434484.4A CN107277794A (en) 2017-06-09 2017-06-09 Set up the method, device and mobile terminal of communication connection

Publications (1)

Publication Number Publication Date
CN107277794A true CN107277794A (en) 2017-10-20

Family

ID=60066656

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201710434484.4A Pending CN107277794A (en) 2017-06-09 2017-06-09 Set up the method, device and mobile terminal of communication connection

Country Status (1)

Country Link
CN (1) CN107277794A (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111159693A (en) * 2019-12-28 2020-05-15 西安精雕软件科技有限公司 Electronic equipment permission verification method, device and system and readable medium
WO2023179102A1 (en) * 2022-03-22 2023-09-28 华为技术有限公司 Method for determining trusted identity of application, and management unit and device

Citations (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101031939A (en) * 2004-10-19 2007-09-05 英特尔公司 Method and apparatus for securing communications between a smartcard and a terminal
CN101616165A (en) * 2009-07-28 2009-12-30 江苏先安科技有限公司 A kind of method of inquiring and authenticating issue of novel X 509 digital certificate white list
CN103051456A (en) * 2012-12-25 2013-04-17 北京大唐智能卡技术有限公司 Method for managing application procedures in intelligent secure digital (SD) card and system
CN103391286A (en) * 2013-07-11 2013-11-13 北京天地互连信息技术有限公司 Full IP remote monitoring network system and safety authentication method
CN103812649A (en) * 2012-11-07 2014-05-21 中国电信股份有限公司 Method and system for safety access control of machine-card interface, and handset terminal
CN104348616A (en) * 2013-07-26 2015-02-11 中国移动通信集团公司 Method for visiting terminal security component, device thereof and system thereof
CN106304052A (en) * 2015-06-08 2017-01-04 中国移动通信集团公司 A kind of method of secure communication, device, terminal and client identification module card
CN106470107A (en) * 2015-08-19 2017-03-01 中兴通讯股份有限公司 A kind of message security control method, device and system
CN106657137A (en) * 2017-01-17 2017-05-10 腾讯科技(上海)有限公司 Software product legitimacy verification method, apparatus and system
CN106657032A (en) * 2016-12-05 2017-05-10 北京博惠城信息科技有限公司 System and method for realizing identity identification and data authentication based on security medium confidential short message

Patent Citations (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101031939A (en) * 2004-10-19 2007-09-05 英特尔公司 Method and apparatus for securing communications between a smartcard and a terminal
CN101616165A (en) * 2009-07-28 2009-12-30 江苏先安科技有限公司 A kind of method of inquiring and authenticating issue of novel X 509 digital certificate white list
CN103812649A (en) * 2012-11-07 2014-05-21 中国电信股份有限公司 Method and system for safety access control of machine-card interface, and handset terminal
CN103051456A (en) * 2012-12-25 2013-04-17 北京大唐智能卡技术有限公司 Method for managing application procedures in intelligent secure digital (SD) card and system
CN103391286A (en) * 2013-07-11 2013-11-13 北京天地互连信息技术有限公司 Full IP remote monitoring network system and safety authentication method
CN104348616A (en) * 2013-07-26 2015-02-11 中国移动通信集团公司 Method for visiting terminal security component, device thereof and system thereof
CN106304052A (en) * 2015-06-08 2017-01-04 中国移动通信集团公司 A kind of method of secure communication, device, terminal and client identification module card
CN106470107A (en) * 2015-08-19 2017-03-01 中兴通讯股份有限公司 A kind of message security control method, device and system
CN106657032A (en) * 2016-12-05 2017-05-10 北京博惠城信息科技有限公司 System and method for realizing identity identification and data authentication based on security medium confidential short message
CN106657137A (en) * 2017-01-17 2017-05-10 腾讯科技(上海)有限公司 Software product legitimacy verification method, apparatus and system

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111159693A (en) * 2019-12-28 2020-05-15 西安精雕软件科技有限公司 Electronic equipment permission verification method, device and system and readable medium
WO2023179102A1 (en) * 2022-03-22 2023-09-28 华为技术有限公司 Method for determining trusted identity of application, and management unit and device

Similar Documents

Publication Publication Date Title
CN102761549B (en) Processing method and system of resource sharing and service platforms
US9572025B2 (en) Method, server, computer program and computer program product for communicating with secure element
CN101073239B (en) Method and system for communication between a secure information storage device and at least one third party, corresponding entity, device and third party
CN103249045B (en) A kind of methods, devices and systems of identification
CN108989346B (en) Third-party valid identity escrow agile authentication access method based on account hiding
CN103875211B (en) A kind of internet account number management method, manager, server and system
CN110401655A (en) Access control right management system based on user and role
CN107579958A (en) Data managing method, apparatus and system
KR101876674B1 (en) Method of managing common account using block chain and system performing the same
CN104079686A (en) Setting method and distributing method for terminal equipment MAC address
CN105262588A (en) Log-in method based on dynamic password, account number management server and mobile terminal
CN108769186A (en) service authority control method and device
CN107484152A (en) The management method and device of terminal applies
CN105099983A (en) Authorization method, authority setting method and devices
CN108053088A (en) A kind of Subscriber Management System, method and apparatus
CN103518205B (en) Limit method and the automation equipment of operating right
CN110362533A (en) A kind of archives storage and shared system based on alliance's chain
CN107948970A (en) System of real name method of network entry, system and the mobile terminal of subordinate terminal
CN108174377A (en) Open the method and system of number
CN110162560A (en) Finance data interface butt joint method, device, computer equipment and storage medium
CN110175439A (en) User management method, device, equipment and computer readable storage medium
CN106696749A (en) Charging method and system for electric automobile charging pile with Zigbee
CN106603721A (en) Remote control method and system and remote control client
CN101908967B (en) Configuration method and system of Linux virtual server
CN105224541B (en) Uniqueness control method, information storage means and the device of data

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication

Application publication date: 20171020

RJ01 Rejection of invention patent application after publication