JP2023021685A - Electronic information storage medium and radio communication network connection method - Google Patents

Abstract

To connect a terminal to a desired radio communication network while minimizing time and effort of key management and securing security without depending on a specific communication system like SMS.SOLUTION: A SIM mounted on a terminal T, when receiving instruction information indicating an instruction for connection to a prescribed radio communication network among the plurality of radio communication networks and signature information via a control unit 5 of the terminal T from an external device G, performs signature verification using the signature information and a public key unique to the external device G in accordance with the instruction information, and transmits to the control unit 5 a REFRESH command for connection to the prescribed radio communication network when the signature verification succeeds.SELECTED DRAWING: Figure 3

Description

The present invention relates to a technical field such as a SIM (Subscriber Identity Module) installed in a terminal connectable to any one of a plurality of different wireless communication networks.

Conventionally, in an area where multiple wireless communication networks (e.g., 3G, LTE, 5G, etc.) coexist, the REFRESH command of the SIM installed in the terminal is used as a method for the terminal to connect to the desired wireless communication network. method is known. In this method, for example, SMS (Short Message Service) messages in Secured Packet format specified by 3GPP (Third Generation Partnership Project) shown in Patent Document 1 are used. processing takes place. In such authentication processing, a common key is shared between the external device and the SIM, and the SIM verifies the signature of the received SMS message using the common key to confirm the validity of the message. there is

JP 2017-76930 A

However, in private wireless communication networks (private LTE and local 5G), which are being considered for use in recent years, cheaper network equipment is used, and SMS communication and Secured Packet using SMS communication cannot be used in many cases. . In addition, the authentication process using the above-mentioned common key requires a lot of work for distribution and management of the common key, and in a private wireless communication network with many relatively small-scale players, it becomes a burden on the administrator.

Therefore, the present invention has been made in view of the above points. An object of the present invention is to provide an electronic information storage medium and a program that can be connected to a desired wireless communication network.

In order to solve the above problems, the invention according to claim 1 provides an electronic information storage medium installed in a terminal connectable to any one of a plurality of different wireless communication networks, wherein an external storage means for storing a public key included in a key pair unique to the device; instruction information indicating an instruction to connect to a predetermined wireless communication network among the plurality of wireless communication networks; and the instruction information being the key pair. receiving means for receiving, via an information processing unit of the terminal, the instruction information and the signature information transmitted from the external device, which is signature information generated by being signed by a private key included in the authentication means for performing signature verification using the public key and the signature information in accordance with the instruction information; and transmitting means for transmitting to the information processing unit.

The invention according to claim 2 is the electronic information storage medium according to claim 1, further comprising a counter for holding the counter value transmitted from the information processing unit, wherein the receiving means receives the instruction information and the signature. receiving a counter value together with the information; the authenticating means determines whether the counter value received by the receiving means is greater than the counter value held in the counter; If the verification is successful and it is determined that the counter value received by the receiving means is larger than the counter value held in the counter, the command for connecting to the predetermined wireless communication network is issued to the It is characterized by transmitting to the information processing unit of the terminal.

The invention according to claim 3 is the electronic information storage medium according to claim 1 or 2, wherein the instruction information and the signature information are transmitted between the terminal and the terminal when the user carrying the terminal enters a specific area. The information is received by the terminal through short-range wireless communication performed with the external device.

According to a fourth aspect of the present invention, there is provided an electronic information storage medium mounted on a terminal connectable to any one of a plurality of different wireless communication networks, wherein a predetermined number of the plurality of wireless communication networks storage means for storing the first identification information used for connecting to the wireless communication network; and reception means for receiving the second identification information transmitted from the information processing unit of the terminal according to the operation of the user of the terminal. and authentication means for performing authentication using the first identification information stored in the storage means and the second identification information received by the reception means, and if the authentication is successful, the predetermined wireless communication and transmission means for transmitting a command for connecting to the network to the information processing unit of the terminal.

The invention according to claim 5 is the electronic information storage medium according to claim 4, wherein the first identification information and the second identification information are input values input by the user or biological information of the user. It is characterized by

The invention according to claim 6 is the electronic information storage medium according to claim 4, wherein the first identification information and the second identification information are random numbers generated by the electronic information storage medium. do.

The invention according to claim 7 is the electronic information storage medium according to any one of claims 1 to 6, wherein the predetermined wireless communication network is a private communication network other than a public communication network provided by a mobile communication carrier. It is characterized by being a wireless communication network.

The invention according to claim 8 is the electronic information storage medium according to any one of claims 1 to 7, wherein the command switches from the wireless communication network to which the terminal is connected to the predetermined wireless communication network. It is characterized by being a command for

According to the ninth aspect of the invention, there is provided a wireless communication performed by an information processing unit of a terminal connectable to any one of a plurality of different wireless communication networks and an electronic information storage medium mounted on the terminal. In the communication network connection method, the electronic information storage medium stores a public key included in a key pair unique to an external device; receiving instruction information indicating an instruction to connect to the wireless communication network of the external device and signature information generated by signing the instruction information with a private key included in the key pair from the external device; transmitting the instruction information and the signature information to the electronic information storage medium; performing signature verification using the signature information; and sending a command for connecting to the predetermined wireless communication network to the information processing unit of the terminal when the electronic information storage medium succeeds in the signature verification. and a step of connecting to the predetermined wireless communication network when the information processing section of the terminal receives the command from the electronic information storage medium.

According to the tenth aspect of the present invention, there is provided a wireless communication performed by an information processing unit of a terminal connectable to any one wireless communication network out of a plurality of different wireless communication networks and an electronic information storage medium mounted on the terminal. A communication network connection method, wherein the electronic information storage medium stores first identification information used for connecting to a predetermined wireless communication network among the plurality of wireless communication networks; and information processing of the terminal. a step of transmitting second identification information to the electronic information storage medium in response to an operation by a user of the terminal; and a step in which the electronic information storage medium receives the second identification information from an information processing section of the terminal. authentication using the stored first identification information and the received second identification information; a step of transmitting a command for connection to a communication network to an information processing unit of the terminal; and connecting.

According to the present invention, it is possible to connect a terminal to a desired wireless communication network without depending on a specific communication method such as SMS, while ensuring security while minimizing the labor of key management.

1 is a diagram showing a schematic configuration example of a communication system S; FIG. 2 is a diagram showing a schematic configuration example of a terminal T; FIG. 4 is a sequence diagram showing an example of processing of the control unit 5 of the terminal T and the SIM in the first embodiment; FIG. FIG. 12 is a sequence diagram showing an example of processing of the control unit 5 and SIM of the terminal T in the second embodiment; FIG. 12 is a sequence diagram showing an example of processing of the control unit 5 and SIM of the terminal T in the third embodiment;

BEST MODE FOR CARRYING OUT THE INVENTION Hereinafter, embodiments of the present invention will be described in detail with reference to the drawings. The embodiments described below are embodiments in which the present invention is applied to a communication system.

[1. Outline configuration of communication system S]
First, a schematic configuration of a communication system S according to this embodiment will be described with reference to FIG. FIG. 1 is a diagram showing a schematic configuration example of a communication system S. As shown in FIG. As shown in FIG. 1, the communication system S includes a public wireless communication network NW1, a private wireless communication network NW2, a private wireless communication network NW3, an external device G, and a terminal T. Although one external device G and one terminal T are shown in the example of FIG. 1, there are actually many of each. In the example of FIG. 1, the communication area of the public wireless communication network NW1 (inside the ellipse represented by the curve) includes the communication area of the private wireless communication network NW2 (inside the ellipse represented by the curve) and the communication area of the private wireless communication network NW3 (inside the ellipse represented by the curve). in the ellipse represented by the curve) and are included. Also, the communication area of the private wireless communication network NW2 and the communication area of the private wireless communication network NW3 partially overlap.

The public wireless communication network NW1 is a mobile communication network constructed by a mobile communication carrier that provides mobile communication services, and provides voice communication, SMS communication, and data communication. On the other hand, the private wireless communication networks NW2 and NW3 are mobile communication networks other than public communication networks provided by mobile communication carriers. , facilities) to provide data communications. The public wireless communication network NW1 and the private wireless communication networks NW2 and NW3 each consist of a wireless network including base stations and a core network including cores. Authentication processing for connection to a wireless communication network is performed using a SIM prepared by a mobile communication carrier, or a company or organization other than the mobile communication carrier.

The external device G is installed as a gateway near the entrance/exit of a specific area of a company or organization other than the mobile communication carrier (for example, near the entrance/exit of a facility), and has a communication range of, for example, several meters to several tens of meters. It is possible to perform short-distance wireless communication with a terminal T within the communication range of . Near field communication, for example, NFC (Near field communication), Bluetooth (registered trademark), or UWB (Ultra Wide Band) technology may be used. The external device G stores a key pair consisting of a private key and a public key unique to the external device G.

Then, the external device G transmits a command including instruction information indicating an instruction to connect to a predetermined wireless communication network among the public wireless communication network NW1, the private wireless communication network NW2, and the private wireless communication network NW3. The data is transmitted to the terminal T (that is, the terminal T that has entered the communication range of the short-range wireless communication) by communication. Here, the predetermined wireless communication network is, for example, the private wireless communication network NW2 or the private wireless communication network NW3, which is set in the SIM by the network builder. It should be noted that it is sufficient for the instruction information to indicate an instruction to connect to a predetermined wireless communication network, and information (for example, identification information) for specifying the predetermined wireless communication network may not be indicated.

When transmitting the command, the external device G generates signature information by signing the instruction information with a secret key included in the key pair (that is, encrypting the instruction information with the secret key). , to the terminal T, a command including the instruction information and the signature information. Further, the external device G preferably transmits to the terminal T a command including the counter value together with the instruction information and the signature information. A counter value is a value that is incremented for each transmission. For example, the counter value at the first transmission is "1", the counter value at the second transmission is "2", and so on. It should be noted that, if the external device G can identify the terminal T to be the short-range wireless communication partner, the external device G manages the history of the counter value transmitted to the terminal T, and every time it transmits to the terminal T, it transmits based on the history. A power counter value may be calculated. For example, if the counter value previously transmitted to the terminal T is "1", the counter value obtained by adding 1 to the previous counter value is transmitted to the terminal T in the current communication.

FIG. 2 is a diagram showing a schematic configuration example of the terminal T. As shown in FIG. As shown in FIG. 2, the terminal T includes an I/F section 1, a wireless communication section 2, a storage section 3, an operation/display section 4, a control section 5, and the like. The terminal T is, for example, a mobile terminal such as a smart phone. The terminal T is equipped with a SIM. The SIM is an example of the electronic information storage medium of the present invention, and may be detachably mounted on the terminal T as an IC (Integrated Circuit) card. It may be an eUICC (Embedded Universal Integrated Circuit Card) that is mounted (for example, soldered) on a substrate. Note that the terminal T may be equipped with a fingerprint sensor. The fingerprint sensor reads the fingerprint from the pad of the user's finger of the terminal T and outputs the fingerprint information (an example of the user's biometric information) to the control unit 5 . The I/F unit 1 serves as an interface with SIM. Such interface is preferably an ISO7816 interface. However, SPI (Serial Peripheral Interface) or I ² C (Inter-Integrated Circuit) may be applied to the I/F unit 1 . Note that the control unit 5 and SIM communicate via the I/F unit 1 according to, for example, an APDU (Application Protocol Data Unit) protocol.

The wireless communication unit 2 includes a first communication module for connecting (switchably connecting) to any one of the public wireless communication network NW1, the private wireless communication network NW2, and the private wireless communication network NW3; and a second communication module for performing short-range wireless communication between. The first communication module has a modem that detects the wireless communication network (one of NW1 to NW3), and is capable of wireless communication with a base station in the detected wireless communication network. . The wireless communication unit 2 maintains the connection of the currently connected wireless communication network (for example, the public wireless communication network NW1) in an area where the communication areas of the plurality of wireless communication networks overlap, For example, switching from the public wireless communication network NW1 to the private wireless communication network NW2 is performed by a REFRESH command from the SIM. Here, the REFRESH command is a proactive command defined by 3GPP (described in ETSI TS 102 223 and 3GPP TS 31.111).

On the other hand, the second communication module performs short-range wireless communication with the external device G when the user carrying the terminal T enters a specific area (for example, a building), and the external device G transmits A command including the above instruction information, signature information, etc. is received. The storage unit 3 is composed of, for example, a non-volatile memory, and stores an operating system and applications. The operation/display unit 4 has an input function for receiving input from a user and a display function for displaying various information on a display (for example, a touch panel). The operation/display unit 4 outputs the PIN (an example of the input value) input by the user to the control unit 5 .

The control unit 5 corresponds to a UE defined by 3GPP, and includes, for example, a CPU (Central Processing Unit), RAM (Random Access Memory), ROM (Read Only Memory), and the like. The control unit 5 controls the wireless communication unit 2 to connect to the wireless communication network (one of NW1 to NW3). In addition, the control unit 5 performs non-contact communication (near field communication) with the external device G via the wireless communication unit 2, and receives commands including the instruction information and signature information transmitted from the external device G. receive. Furthermore, the control unit 5 performs contact communication with the SIM via the I/F unit 1 as an information processing unit of the terminal T. FIG. Note that the information processing unit of the terminal T may be configured by software or may be configured by hardware.

When receiving a command including the instruction information and the signature information from the external device G, the control unit 5 transmits the command including the instruction information and the signature information to the SIM via the I/F unit 1 . Further, when the control unit 5 receives a REFRESH command from the SIM via the I/F unit 1, it performs control for connecting to the wireless communication network (one of NW1 to NW3) indicated by the REFRESH command. For example, the control unit 5 outputs a control command to the wireless communication unit 2 to connect to the wireless communication network (one of NW1 to NW3) indicated by the REFRESH command. Here, as described above, for example, when the REFRESH command is received while the terminal T is connected to the public wireless communication network NW1, the connection is switched from the public wireless communication network NW1 to, for example, the private wireless communication network NW2. In this case, the REFRESH command can be said to be a command for switching from the wireless communication network to which the terminal T is currently connected to a predetermined wireless communication network. The REFRESH command may switch the connection from the private wireless communication network NW2 to the private wireless communication network NW3.

The SIM corresponds to the UICC defined by 3GPP, and as shown in FIG. The I/F section 11 serves as an interface with the control section 5 of the terminal T. FIG. The NVM 14 (an example of storage means) is a non-volatile memory such as flash memory. A public key unique to the external device G is stored in the NVM 14 . The NVM 14 may be provided with a counter (holding area) that holds the counter value described above. In addition, NVM 14 stores a USAT (User Subscriber Identity Module Application Toolkit) application executed by CPU 15 . A USAT application includes a USAT framework, RFM (Remote File Management), and a USAT applet.

The USAT framework has a function of communicating with the control unit 5 via the I/F unit 11 . The RFM and USAT applets each run on top of the USAT framework. RFM has the ability to write and read data files stored in NVM 14 as requested by the USAT framework. Data files are stored in the NVM 14 for each of the wireless communication networks NW1-NW3. Each data file contains authentication information used for connecting to each of the wireless communication networks NW1 to NW3, telephone numbers, and the like. The USAT applet has a function of responding to a command including instruction information from the external device G with a REFRESH command for connecting to a predetermined wireless communication network (one of NW1 to NW3). The REFRESH command is set in the USAT applet in advance, for example, and describes information (eg, identification information) for specifying a predetermined wireless communication network.

The USAT applet functions as receiving means, authenticating means, and transmitting means in the present invention in exchanges with the control unit 5 . Specifically, when the USAT applet receives a command including the instruction information and signature information from the control unit 5 via the I/F unit 11, the public key stored in the NVM 14 and the public key stored in the NVM 14 according to the instruction information. Signature verification is performed using the signature information included in the command. Then, when the signature verification is successful (that is, the signature information can be decrypted normally with the public key), the USAT applet issues a REFRESH command for connecting to a predetermined wireless communication network (one of NW1 to NW3). , to the control unit 5 via the I/F unit 11 .

Alternatively, when the USAT applet receives a command including the counter value together with the instruction information and the signature information from the control unit 5 via the I/F unit 11, it verifies the signature and It is determined whether or not the counter value included in the command is greater than the value. As a result, it is possible to cope with an attack in which instruction information or the like is repeatedly sent. Then, when the USAT applet determines that the signature verification is successful and the counter value included in the command is larger than the counter value held in the counter, the REFRESH command is sent to the I/F unit 11. to the control unit 5 via the

In the above example, the SIM is configured to transmit a REFRESH command to the control unit 5 of the terminal T according to the instruction information transmitted by the external device G, but as another example, the user of the terminal T It may be configured so that a REFRESH command is transmitted from the SIM to the control unit 5 of the terminal T according to the operation. In this case, the NVM 14 stores in advance first identification information used for connecting to a predetermined wireless communication network. Examples of the first identification information include a random number (random value) generated by the SIM, a PIN input by the user of the terminal T, fingerprint information of the user, and the like. After the first identification information is stored in the NVM 14 in this way, the USAT applet transmits the second identification information transmitted from the control unit 5 of the terminal T according to the operation of the user of the terminal T to the I/F unit 11 and the USAT framework. , authentication is performed using the first identification information stored in the NVM 14 and the received second identification information. Then, when the authentication is successful (for example, the first identification information and the second identification information match), the USAT applet sends the REFRESH command to the control unit via the I/F unit 11 and the USAT framework. 5.

[2. Operation of communication system S]
Next, the operation of the communication system S will be described separately for the first to third embodiments.

(Example 1)
First, Example 1 in which a REFRESH command is transmitted from the SIM to the control unit 5 of the terminal T according to instruction information transmitted by the external device G will be described. FIG. 3 is a sequence diagram showing an example of processing of the control unit 5 of the terminal T and SIM in the first embodiment. In the first embodiment, when the terminal T enters a specific area, the terminal T receives a command including the instruction information, the signature information, and the counter value, which is transmitted from the external device G via short-range wireless communication. be. The public key unique to the external device G may be stored in advance in the NVM 14 of the SIM, or may be included in the command as the temporary public key together with the instruction information, the signature information, and the counter value. good.

When the control unit 5 of the terminal T receives the command including the instruction information, the signature information, and the counter value from the external device G via the wireless communication unit 2, the command is transmitted via the I/F unit 1 to the SIM (step S1). Such a command is a command dependent on a communication method (for example, UWB). Note that the control unit 5 of the terminal T may convert the protocol of the received command for SIM and transmit it.

Next, when the USAT applet (Toolkit AP) of the SIM receives the command from the control unit 5 via the I/F unit 11, the public key of the external device G and the signature information included in the received command is used to verify the signature, and it is determined whether or not the counter value included in the command is greater than the counter value held in the counter (counter value determination) (step S2). Then, if it is determined that the signature verification was successful (that is, the signature information was successfully decrypted with the public key) and the counter value included in the command is greater than the counter value held in the counter , the USAT applet sends (send( )) a REFRESH command to the USAT framework (step S3). If the signature verification fails (for example, the signature information cannot be decrypted normally with the public key), or if it is determined that the counter value included in the command is not greater than the counter value held in the counter, Error processing is performed, and a response indicating an error, for example, is sent to the control unit 5 .

Next, when the USAT framework receives the REFRESH command from the USAT applet, it transmits a 91XX response to the control unit 5 via the I/F unit 11 (step S4). Here, "91XX" is a status word indicating that there is data (REFRESH) of data length "XX" in SIM. Next, upon receiving the 91XX response from the SIM, the control section 5 transmits a FETCH command to the SIM via the I/F section 1 (step S5). Next, when the USAT framework receives the FETCH command from the control unit 5, it transmits a REFRESH command to the control unit 5 via the I/F unit 11 (step S6). Next, when the control unit 5 receives the REFRESH command from the SIM, it performs control for connecting to the wireless communication network (one of NW1 to NW3) indicated by the REFRESH command (step S7). Next, the control section 5 transmits a TERMINAL RESPONSE command to the SIM via the I/F section 1 (step S8). Next, when the USAT framework receives the TERMINAL RESPONSE command from the control unit 5, it transmits a 9000 response to the control unit 5 via the I/F unit 11 (step S9). Here, "9000" is a status word indicating normal termination.

(Example 2)
Next, Example 2 in which a REFRESH command is transmitted from the SIM to the control unit 5 according to the operation of the user of the terminal T will be described. FIG. 4 is a sequence diagram showing an example of processing of the control unit 5 and SIM of the terminal T in the second embodiment. In Example 2, a random number (an example of the first identification information) dynamically generated by the control unit 5 of the terminal T is pre-stored in the NVM 14 of the SIM. This random number is generated by the SIM (for example, the USAT applet) according to the operation of the terminal T user. Then, the SIM embeds the generated random number in the SET UP MENU command and provides it to the controller 5 . Here, the SET UP MENU command is a proactive command defined by 3GPP, and when any one of a plurality of menu items provided by the SET UP MENU command is selected by the user. is set. The random number generated by the SIM is associated with the menu identifier set by the user and stored in the storage unit 3, and is also associated with the menu identifier and stored in the NVM 14. FIG. In the second embodiment, when the terminal T receives the instruction information transmitted from the external device G via short-range wireless communication when the terminal T enters a specific area, the control unit of the terminal T 5 may cause the operation/display unit 4 to display a message prompting switching of the wireless communication network.

After the random number is stored in the SIM, when the user of the terminal T operates the operation/display unit 4 to select the set menu, the control unit 5 of the terminal T stores the identifier of the selected menu and the random number ( An ENVELOPE (MENU SELECTION) command including (an example of the second identification information) is transmitted to the SIM via the I/F section 1 (step S11). Here, the random number included in the ENVELOPE (MENU SELECTION) command is a random number stored in association with the identifier of the menu set by the user. Next, when the USAT framework of the SIM receives the ENVELOPE command from the control unit 5, it calls the USAT applet (process Toolkit( )) (step S12), and the USAT applet calls the random number stored in the NVM 14 and the received Authentication is performed using the random number included in the received command (step S13). Then, if the authentication is successful (that is, the random numbers match), the USAT applet sends the REFRESH command to the USAT framework (step S3), as in the first embodiment, and the subsequent processing is performed. will be If the authentication fails (for example, the random numbers do not match), error processing is performed, and a response indicating the error is sent to the control unit 5, for example.

(Example 3)
Next, Example 3 in which a REFRESH command is transmitted from the SIM to the control unit 5 according to the operation of the user of the terminal T will be described. FIG. 5 is a sequence diagram showing an example of processing of the control unit 5 of the terminal T and the SIM in the third embodiment. In Example 3, a PIN (an example of first identification information) input by the user of terminal T is pre-stored in NVM 14 of the SIM. Note that fingerprint information of the user may be pre-stored in the NVM 14 instead of the PIN. This PIN is written into the SIM by some method (for example, a special terminal installed in a security factory or a predetermined department of a company), although it is not particularly limited. That is, it is assumed that the PIN is known only by the user of the special terminal (the same person as the user of terminal T) and the SIM, and the special terminal does not know the PIN. Note that in the third embodiment as well, when the terminal T receives the instruction information transmitted from the external device G via short-range wireless communication when the terminal T enters a specific area, the control of the terminal T is performed. The unit 5 may cause the operation/display unit 4 to display a message prompting switching of the wireless communication network.

After the PIN is stored in the SIM, the user sets any menu item among the plurality of menus provided by the SET UP MENU command from the SIM, as in the second embodiment. After that, when the user of the terminal T operates the operation/display unit 4 to select the above set menu, the control unit 5 of the terminal T sends the ENVELOPE (MENU SELECTION) command including the identifier of the selected menu to I/O. It is transmitted to the SIM via the F unit 1 (step S21). When the USAT framework of SIM receives the ENVELOPE command from the control unit 5, it calls the USAT applet (process Toolkit()) (step S22), and the USAT applet transmits a response to the USAT framework (send()). (Step S23).

Next, when the USAT framework receives the response from the USAT applet, it transmits the 91XX response to the control unit 5 via the I/F unit 11 (step S24). Next, upon receiving the 91XX response from the SIM, the control section 5 transmits a FETCH command to the SIM via the I/F section 1 (step S25). Next, when the USAT framework receives the FETCH command from the control unit 5, it transmits a GET INPUT command to the control unit 5 via the I/F unit 11 (step S26). Here, the GET INPUT command is a proactive command defined by 3GPP. Next, when the control unit 5 receives the GET INPUT command from the SIM, the operation/display unit 4 prompts the user to input a PIN (fingerprint information may be used), and the TERMINAL including the PIN input by the user is displayed. A RESPONSE command is sent to the SIM via the I/F section 1 (step S27).

Next, when the USAT framework of the SIM receives the TERMINAL RESPONSE command from the control unit 5, it passes the PIN included in the TERMINAL RESPONSE command to the USAT applet (return from send()) (step S28), and the USAT applet receives the NVM 14 and the PIN passed from the USAT framework are used for authentication (step S29). Then, if the authentication is successful (that is, the PINs match), the USAT applet sends the REFRESH command to the USAT framework (step S3) as in the first embodiment, and the subsequent processing is performed. will be If the authentication fails (for example, the PINs do not match), error processing is performed, and a response indicating the error is sent to the control unit 5, for example.

As described above, according to the above embodiment, when the SIM installed in the terminal T receives the instruction information and the signature information from the external device G via the control unit 5 of the terminal T, In response, a signature verification is performed using a public key unique to the external device G and the signature information, and if the signature verification is successful, a REFRESH command for connecting to a predetermined wireless communication network is sent to the control unit 5. To allow a terminal T to connect to a desired wireless communication network without depending on a specific communication method such as SMS and ensuring security while minimizing the labor of key management because it is configured to transmit. can be done.

Further, according to the above embodiment, the SIM installed in the terminal T stores in advance the first identification information used for connecting to a predetermined wireless communication network among a plurality of wireless communication networks, and the terminal T When the second identification information transmitted from the control unit 5 of the terminal T is received in response to the user's operation, authentication is performed using the stored first identification information and the received second identification information , when the authentication is successful, a REFRESH command for connecting to a predetermined wireless communication network is transmitted to the control unit 5. The terminal T can be connected to a desired wireless communication network while ensuring security while minimizing management effort.

In the above embodiment, an example in which one public wireless communication network is included in a plurality of wireless communication networks has been described, but the present invention can also be applied when a plurality of public wireless communication networks are included. . Again, the sequences described in FIGS. 3-5 allow connection switching from one public wireless network to another public wireless network. Further, in the above embodiment, the application of the control unit 5 and the USAT applet of the SIM may be directly linked without going through the USAT framework.

1 I/F unit 2 Wireless communication unit 3 Storage unit 4 Operation/display unit 5 Control unit 11 I/F unit 12 RAM
13 ROMs
14 NVM
15 CPUs
T terminal G external device NW1 public wireless communication networks NW2, NW3 private wireless communication network S communication system

Claims (10)

An electronic information storage medium mounted in a terminal connectable to any one of a plurality of different wireless communication networks,
a storage means for storing a public key included in a key pair unique to the external device;
Instruction information indicating an instruction to connect to a predetermined wireless communication network among the plurality of wireless communication networks, and signature information generated by signing the instruction information with a private key included in the key pair. receiving means for receiving the instruction information and the signature information transmitted from the external device via an information processing unit of the terminal;
authentication means for performing signature verification using the public key and the signature information in accordance with the instruction information;
transmission means for transmitting a command for connecting to the predetermined wireless communication network to an information processing unit of the terminal when the signature verification is successful;
An electronic information storage medium comprising: Further comprising a counter that holds the counter value transmitted from the information processing unit,
the receiving means receives a counter value together with the instruction information and the signature information;
The authenticating means determines whether the counter value received by the receiving means is greater than the counter value held in the counter,
When the signature verification is successful and it is determined that the counter value received by the receiving means is greater than the counter value held in the counter, the transmitting means transmits to the predetermined wireless communication network. 2. The electronic information storage medium according to claim 1, wherein a command for connection is transmitted to the information processing section of said terminal. The instruction information and the signature information are received by the terminal through short-range wireless communication performed between the terminal and the external device when the user carrying the terminal enters a specific area. 3. The electronic information storage medium according to claim 1, wherein: An electronic information storage medium mounted in a terminal connectable to any one of a plurality of different wireless communication networks,
storage means for storing first identification information used for connecting to a predetermined wireless communication network among the plurality of wireless communication networks;
receiving means for receiving the second identification information transmitted from the information processing unit of the terminal according to the operation of the user of the terminal;
authentication means for performing authentication using the first identification information stored in the storage means and the second identification information received by the reception means;
transmission means for transmitting a command for connecting to the predetermined wireless communication network to an information processing unit of the terminal when the authentication is successful;
An electronic information storage medium comprising: 5. The electronic information storage medium according to claim 4, wherein said first identification information and said second identification information are input values input by said user or biological information of said user. 5. The electronic information storage medium according to claim 4, wherein said first identification information and said second identification information are random numbers generated by said electronic information storage medium. 7. The electronic information storage medium according to claim 1, wherein said predetermined wireless communication network is a private wireless communication network other than a public communication network provided by a mobile communication carrier. 8. The electronic information storage medium according to claim 1, wherein said command is a command for switching from a wireless communication network to which said terminal is connected to said predetermined wireless communication network. A wireless communication network connection method performed by an information processing unit of a terminal connectable to any one of a plurality of different wireless communication networks and an electronic information storage medium mounted on the terminal,
the electronic information storage medium storing a public key included in a key pair unique to the external device;
Instruction information indicating an instruction for the information processing unit of the terminal to connect to a predetermined wireless communication network among the plurality of wireless communication networks, and the instruction information being signed by a private key included in the key pair. receiving the signature information generated in from the external device, and transmitting the received instruction information and the signature information to the electronic information storage medium;
a step of performing signature verification using the public key and the signature information when the electronic information storage medium receives the instruction information and the signature information from the information processing unit of the terminal;
a step in which the electronic information storage medium transmits a command for connecting to the predetermined wireless communication network to the information processing unit of the terminal when the signature verification is successful;
a step of connecting the information processing unit of the terminal to the predetermined wireless communication network when the command is received from the electronic information storage medium;
A wireless communication network connection method, comprising: A wireless communication network connection method performed by an information processing unit of a terminal connectable to any one of a plurality of different wireless communication networks and an electronic information storage medium mounted on the terminal,
a step of storing, in the electronic information storage medium, first identification information used for connecting to a predetermined wireless communication network among the plurality of wireless communication networks;
a step in which the information processing unit of the terminal transmits second identification information to the electronic information storage medium in response to an operation of the user of the terminal;
When the electronic information storage medium receives the second identification information from the information processing unit of the terminal, it performs authentication using the stored first identification information and the received second identification information. a step;
a step in which the electronic information storage medium transmits a command for connecting to the predetermined wireless communication network to the information processing unit of the terminal when the authentication is successful;
a step of connecting the information processing unit of the terminal to the predetermined wireless communication network when the command is received from the electronic information storage medium;
A wireless communication network connection method, comprising:

Images