WO2016124032A1

WO2016124032A1 - Data exchange method

Info

Publication number: WO2016124032A1
Application number: PCT/CN2015/094956
Authority: WO
Inventors: 李东声
Original assignee: 天地融科技股份有限公司
Priority date: 2015-02-03
Filing date: 2015-11-18
Publication date: 2016-08-11

Abstract

Provided in the present invention is a data exchange method, comprising: an analog device acquires an analog device-end authentic card information list; the analog device prompts the analog device-end authentic card information list; the analog device receives an authentic card selection instruction and determines a selected authentic card; the analog device acquires first data and transmits the first data to an authentic card manager; the authentic card manager receives the first data transmitted by the analog device and transmits to the selected authentic card. Implemented by means of the data exchange method of the present invention is data exchange between the analog device and the authentic card manager, thus providing a novel transaction solution that facilitates user transactions and has increased security.

Description

Data interaction method

Technical field

The present invention relates to the field of electronic information security technologies, and in particular, to a data interaction method.

Background technique

In the existing transaction process, for example, withdrawal or shopping, the user usually needs to carry the bank card from the bank with him. The user carries the bank card with certain security risks. Once lost, it is easy to cause damage to the user's assets. In addition, due to the variety of bank cards, a user may have multiple bank cards of different banks at the same time. If you need to carry multiple bank cards of different banks with you, it is not convenient to conduct transactions.

Therefore, there is an urgent need in the prior art to provide a transaction solution that is convenient for users to trade and has high security.

Summary of the invention

The present invention is directed to solving the above problems.

A first main object of the present invention is to provide a data interaction method.

In order to achieve the above object, the technical solution of the present invention is specifically implemented as follows:

The solution 1 provides a data interaction method, comprising: the simulation device acquires a real card information list of the simulation device end, wherein the real device card information list of the simulation device end is the real card manager end obtained by the simulation device from the real card manager. Card information list, the real card manager side real card information list includes real card information of the real card connected with the real card manager; the simulation device prompts the real device card list of the simulation device; the simulation device receives the real card selection instruction, determines the selected The real card; and the simulation device acquires the first data and sends the first data to the real card manager; the real card manager receives the first data sent by the analog device and sends the first data to the selected real card.

The method of claim 1, further comprising: the real card manager further receiving the second data sent by the real card and transmitting the second data to the simulation device.

The method of claim 2, further comprising: the simulation device transmitting the second data to the terminal.

The method of any one of the preceding claims, wherein the acquiring, by the simulation device, the first data comprises: the simulation device receiving the first data sent by the terminal; or the simulation device generating the first data.

The method of any one of clauses 1 to 4, the transmitting the first data to the real card manager comprises: the simulation device prompting the first data; and the simulation device receiving the confirmation command for confirming that the first data is correct, The first data is sent to the real card manager.

The method of any one of the items 1 to 5, further comprising: establishing a secure connection between the simulation device and the real card manager, and obtaining an analog device end for securely transmitting data between the simulation device and the real card manager. Secure transport key and real card manager side secure transport key.

The method of claim 6, wherein the establishing, by the simulation device, the secure connection with the real card manager comprises: the emulating device transmitting, to the real card manager, a first secure connection instruction for indicating establishment of a secure connection, wherein the first secure connection The instruction comprises: the first connection ciphertext obtained by the simulation device encrypting the simulation device end binding factor and the generated first connection random factor by using the real card manager public key in the real card manager certificate, and the simulation device uses the simulation device private The first connection signature obtained by the key pairing the simulation device end binding factor and the first connection random factor; the real card manager receives the first secure connection instruction, and decrypts the first connection ciphertext by using the real card manager private key, Obtaining an analog device end binding decryption factor and a first connection random decryption factor; the real card manager uses the analog device public key in the simulation device certificate, the simulated device end binding decryption factor, and the first connection random decryption factor to sign the first connection Verify; the real card manager verifies the first connection signature After confirming, verify that the simulation device binding binding factor is the same as the real card manager binding factor; the real card manager verifies that the simulated device binding binding factor is the same as the real card manager binding factor, and generates a second Connecting the random factor; the real card manager encrypts the first connection random decryption factor and the second connection random factor by using the analog device public key in the simulation device certificate to obtain the second connection ciphertext, and uses the real card manager private key pair first Connecting a random decryption factor and a second connection random factor to obtain a second connection signature; the real card manager sends a first secure connection response to the simulation device, wherein the first secure connection response comprises: a second connection ciphertext and a second connection Signing; the simulation device receives the first secure connection response, decrypts the second connected ciphertext by using the simulated device private key, and obtains the decrypted first connection random decryption factor and the second connected random decryption factor; the simulation device uses the real card manager The real card manager public key in the certificate, the first company after decryption The second connection signature is verified by the random decryption factor and the second connection random decryption factor; after the simulation device verifies that the second connection signature is correct, verifying whether the decrypted first connection random decryption factor is the same as the first connection random factor; After verifying that the decrypted first connection random decryption factor is the same as the first connection randomization factor, at least the second connection random decryption factor is used to generate an analog device-side secure transmission key between the simulation device and the real card manager; the real card manager is at least The second card randomization factor is used to generate a real card manager secure transmission key between the emulation device and the real card manager.

The method of claim 6, the establishing a secure connection between the simulation device and the real card manager comprises: the simulation device receiving the third connection random factor generated by the real card manager sent by the real card manager and the real card manager unique identifier The simulation device sends a second secure connection instruction to the real card manager for indicating the establishment of the secure connection, wherein the second secure connection instruction comprises: simulating the device unique identifier, the emulation device utilizing the real card manager in the real card manager certificate The public key encrypts the third connection random factor and the generated fourth connection random factor Obtaining a third connection signature obtained by the third connection ciphertext and the simulation device by using the simulation device private key to sign the third connection random factor and the fourth connection random factor; the real card manager receives the second security connection instruction, and determines the simulation device The unique identifier is in the real card manager binding list; if the emulation device is uniquely identified in the real card manager binding list, the real card manager decrypts the third connected ciphertext using the real card manager private key, Obtaining a third connection random decryption factor and a fourth connection random decryption factor; the real card manager validating the third connection signature by using an analog device public key, a third connection random decryption factor, and a fourth connection random decryption factor in the simulation device certificate After the real card manager verifies that the third connection signature is correct, it is verified whether the third connection random decryption factor is the same as the third connection random factor; if the third connection random decryption factor is the same as the third connection random factor, the real card manager utilizes the real Card manager private key to the third connection random solution The factor and the fourth connection random decryption factor are signed to obtain a fourth connection signature; the real card manager sends a second secure connection response to the simulation device, wherein the second secure connection response comprises: a fourth connection signature; the analog device receives the second security The connection response is verified by using the real card manager public key, the third connection random factor and the fourth connection random factor in the real card manager certificate; after the simulation device verifies that the fourth connection signature is correct, at least the first The four-connected random factor and the simulated device-end binding factor generate an analog device-side secure transmission key between the simulation device and the real card manager; the real card manager uses at least the fourth connection random decryption factor and the real card manager-side binding factor Generating a real card manager-side secure transmission key between the simulation device and the real card manager; the simulation device performs the first processing on the third connection random factor and the fourth connection random factor by using the simulated device-side secure transmission key, and then sends the message to the real Card manager; real card manager The third connection random decryption factor and the fourth connection random decryption factor are first processed by the real card manager end secure transmission key and sent to the simulation device; the analog device receives the data sent by the real card manager, and uses the analog device end The secure transmission key performs a second processing on the received data, and compares whether the second processed data is the same as the third connection random factor and the fourth connection random factor; the real card manager receives the data sent by the analog device, and uses the real The card manager side secure transmission key performs a second process on the received data, and compares whether the second processed data is the same as the third connected random decryption factor and the fourth connected random decryption factor.

The method of any one of the preceding aspects, wherein before the establishing device establishes a secure connection with the real card manager, the method further comprises: the emulating device performing a binding operation with the real card manager.

Item 10. The method of claim 9, wherein the emulating device performs a binding operation with the real card manager, the emulating device receiving a trigger command for indicating binding with the real card manager; and the simulating device transmitting the message to the real card manager a first binding instruction, where the first binding instruction comprises: a first binding random factor generated by the simulation device, an analog device certificate, and an analog device unique identifier; the real card manager receives the first binding instruction, and uses the root certificate pair The simulation device certificate is verified; after the real card manager verifies that the simulation device certificate is legal, a second binding random factor is generated; the real card manager uses the simulated device public key in the simulated device certificate to bind the first binding random factor and the second binding Fixed The machine factor is encrypted to obtain the first bound ciphertext, and the first binding random factor and the second binding random factor are signed by the real card manager private key to obtain the first binding signature; the real card manager sends the simulation message to the simulation device. a first binding response, where the first binding response includes: a first binding ciphertext, a first binding signature, a real card manager certificate, and a real card manager unique identifier; the analog device receives the first binding response, The real card manager certificate is verified by using the root certificate; after the simulation device verifies that the real card manager certificate is legal, the first binding ciphertext is decrypted by using the simulated device private key, and the first binding random decryption factor and the second binding are obtained. a random decryption factor; the simulation device verifies the first binding signature by using a real card manager public key, a first bound random decryption factor, and a second bound random decryption factor in the real card manager certificate; After a binding signature is correct, verify whether the first binding random decryption factor is the same as the first binding random factor; After the first binding random decryption factor is the same as the first binding random factor, the real card manager is uniquely identified; the simulation device receives a trigger command for confirming that the real card manager uniquely identifies, using the analog device private key pair first Binding the random factor and the second binding random decryption factor to sign, obtain the second binding signature, and store the real card manager unique identifier, the real card manager certificate, and the simulated device binding factor to the simulated device binding list Wherein the simulation device end binding factor is a second binding random decryption factor; the simulation device sends a second binding signature to the real card manager; the real card manager receives the second binding signature, using the simulation in the simulation device certificate The device public key, the first binding random factor, and the second binding random factor verify the second binding signature; after the real card manager verifies that the second binding signature is correct, the storage device unique identifier, the simulated device certificate, and the real Card manager binding factor to real card manager binding list, where true The card manager terminal is bound second binding factor random factor.

The method of any one of the preceding aspects, wherein before the establishing device establishes a secure connection with the real card manager, the method further comprises: the emulating device sending a login request to the real card manager; and the emulating device and the real card management After establishing the secure connection, the simulation device further comprises: the analog device performs the first processing on the received login password by using the simulated device-side secure transmission key, and then sends the data to the real card manager; the real card manager receives the data sent by the analog device, and uses the real The card manager side secure transmission key performs the second processing on the received data to verify the correctness of the second processed data; after the real card manager verifies that the second processed data passes, the simulated device logs in to the real card management. Device.

According to the method of claim 11, the real card manager performs the second processing on the received data by using the real card manager secure transmission key to verify the correctness of the second processed data, including: real card management. The device performs the second processing on the received data by using the real card manager security transmission key to obtain the password to be verified; the real card manager determines whether the password to be verified is an alarm password; if the password to be verified is an alarm password, the real The card manager determines that the password to be verified is verified and performs an alarm operation; if the password to be verified is not an alarm password and is a login password, the real card manager determines that the password to be verified is verified.

The method of claim 6, further comprising: the real card manager detecting the real card connected to the real card manager; the real card manager obtaining the real card connected to the real card manager The real card information of the real card, wherein the real card information includes at least: a card number; after the real card manager obtains the real card information of the real card, generates a real card manager-side real card information list.

The method of claim 13, further comprising: the real card manager further generating a real card manager end identification list, the real card manager end identification list identifier and the real card manager end real card information list The real card information corresponds one by one.

The method of claim 14, after the simulation device is logged into the real card manager, the method further comprises: the simulation device searching for the list of the device identifiers; if the simulation device finds the list of the device identifiers, using the device The secure transmission key is sent to the real card manager after performing the first processing on the analog device end identification list, and the real card manager receives the data sent by the analog device, and uses the real card manager to transmit the data to the received data. After the second processing, it is determined whether the second processed data is the same as the real card manager end identification list stored by the real card manager. If not, the real card manager uses the real card manager to securely transmit the key pair update instruction. And the updated data is sent to the simulation device after the first processing, and the simulation device receives the data sent by the real card manager, and performs the second processing on the received data by using the simulated device-side secure transmission key, and updates the real card of the simulated device end. Information list; if the simulation device does not find the simulation package The terminal identification list is sent to the real card manager by using the simulated device-side secure transmission key to perform the first processing on the preset identifier, and the real card manager receives the data sent by the analog device, and uses the real card manager to securely transmit the key. After the second processing of the received data by the key, the real card manager determines that the second processed data is used to indicate that the simulated device side does not store the simulated device end identification list, and uses the real card manager to securely transmit the key pair update. The instruction and the update data are sent to the simulation device after the first processing, and the simulation device receives the data sent by the real card manager, and performs the second processing on the received data by using the simulated device-side secure transmission key, and updates the simulation device to the real state. A list of card information.

The method of claim 14, after the simulation device logs in to the real card manager, the method further comprises: the real card manager performing the first processing on the real card manager end identification list by using the real card manager security transmission key Sending to the analog device; the analog device receives the data sent by the real card manager, and performs the second process on the received data by using the simulated device-side secure transmission key, and then determines the second processed data and the analog device end stored by the analog device. Whether the identification list is the same; if not, the simulation device sends an update request to the real card manager; the real card manager receives the update request, and performs the first processing on the update instruction and the update data by using the real card manager-side secure transmission key Sending to the analog device; the analog device receives the data sent by the real card manager, and performs the second process on the received data by using the simulated device-side secure transmission key, and updates the real card information list of the simulated device.

Item 17. The method of claim 14, the simulation device further comprising a heartbeat sleep mode, wherein the heartbeat sleeps The mode is a low-power non-operation mode, and the method further comprises: the simulation device sends the detection information to the real card manager every first preset time in the heartbeat sleep mode; the real card manager receives the detection information to the simulation device Sending response information; if the analog device does not receive the response information within the second preset time, disconnecting the secure connection between the analog device and the real card manager; if the analog device receives the response message within the second preset time , to maintain a secure connection between the analog device and the real card manager.

The method of claim 17, if the simulation device receives the response information within the second preset time, and the response information further includes the update prompt information, the method further includes: the simulation device stores the update prompt information; and the simulation device After entering the working mode by the heartbeat sleep mode, the simulation device sends an update trigger request to the real card manager; the real card manager receives the update trigger request, and uses the real card manager side secure transmission key to perform the real card manager end identification list. After processing, the device sends the data to the analog device; the analog device receives the data sent by the real card manager, and performs the second processing on the received data by using the simulated device-side secure transmission key, and then determines the second processed data and the analog device stored. Whether the simulated device end identification list is the same; if not, the simulation device sends an update request to the real card manager; the real card manager receives the update request, and uses the real card manager-side secure transmission key to perform the update command and the update data. After processing, send to the analog device; simulation The device receives the data sent by the real card manager, and performs the second processing on the received data by using the simulated device-side secure transmission key, and updates the real card information list on the simulated device side.

The method of claim 17, if the simulation device receives the response information within the second preset time, and the response information further includes the update prompt information, the method further includes: the simulation device stores the update prompt information; and the simulation device After entering the working mode by the heartbeat sleep mode, the simulation device performs the first processing on the analog device end identification list by using the simulated device end security transmission key, and then sends the data to the real card manager; the real card manager receives the data sent by the analog device, and uses the real After the card manager side security transmission key performs the second processing on the received data, it is determined whether the second processed data is the same as the real card manager end identification list stored by the real card manager; if not, the real card The manager uses the real card manager-side secure transmission key to perform the first processing on the update instruction and the update data, and then sends the data to the analog device; the analog device receives the data sent by the real card manager, and uses the analog device-side secure transmission key pair to receive After the second data is processed, the analog device end is updated. A list of real card information.

The method of claim 1, the simulation device receives the real card selection instruction, and the determined real card comprises: the simulation device receives the real card selection instruction, and obtains the selected identifier, wherein the selected identifier is used to indicate the selected real card; The simulation device sends the selected identifier to the real card manager; the real card manager determines the selected real card corresponding to the selected identifier from the real card connected to the real card manager according to the selected identifier.

The method of any one of aspects 1 to 20, further comprising: the simulation device transmitting at least the simulation device certificate to the update platform; the update platform generating the first update encryption key; and the update platform utilizing the first update encryption key Correct The simulation device application installation package is encrypted to obtain the first installation package ciphertext; the update platform uses the update platform private key to sign the first installation package ciphertext to obtain the first installation package signature; and the update platform utilizes the simulation device certificate in the simulation device certificate. The first encryption encryption key is obtained by the key encryption, and the first update encryption key ciphertext is obtained; the update platform sends the simulation device update information to the simulation device, where the simulation device update information includes: updating the platform certificate, the first installation package ciphertext, The first installation package signature and the first update encryption key ciphertext; the simulation device receives the simulation device update information, and verifies the update platform certificate by using the root certificate; after the simulation device verifies that the update platform certificate is passed, the update platform public key in the update platform certificate is utilized. The first installation package signature is checked; after the simulation device verifies that the first installation package signature is correct, the first update encryption key ciphertext is decrypted by using the simulated device private key to obtain the first decryption key; and the simulation device utilizes the first decryption key. Key decryption first installation package ciphertext, obtain simulation device application installation package; simulation installation Analog verification device application installation package data format is correct; if the verification simulation device simulation device application installation package data in the correct format, the analog device mounting package to install the application based on the simulation apparatus.

The method of any one of aspects 1 to 21, further comprising: the real card manager transmitting at least the real card manager certificate to the update platform; the update platform generating the second update encryption key; and the updating platform utilizing the second Updating the encryption key to encrypt the real card manager application installation package to obtain the second installation package ciphertext; the update platform uses the update platform private key to sign the second installation package ciphertext to obtain the second installation package signature; The real card manager public key in the card manager certificate encrypts the second update encryption key to obtain the second update encryption key ciphertext; the update platform sends the real card manager update information to the real card manager, wherein the real card The manager update information includes: an update platform certificate, a second installation package ciphertext, a second installation package signature, and a second update encryption key ciphertext; the real card manager receives the real card manager update information, and uses the root certificate verification update platform. Certificate; the real card manager verifies that the update platform certificate is passed, and the update platform certificate is utilized. The update platform public key checks the signature of the second installation package; after the real card manager verifies that the second installation package signature is correct, the second update encryption key ciphertext is decrypted by using the real card manager private key to obtain the second decryption key. Key; the real card manager decrypts the second installation package ciphertext by using the second decryption key to obtain the real card manager application installation package; the real card manager verifies whether the data format of the real card manager application installation package is correct; The real card manager verifies that the data format of the real card manager application installation package is correct, and the real card manager is installed according to the real card manager application installation package.

The method according to any one of the preceding aspects, wherein after the simulation device establishes a secure connection with the real card manager, the first data sent by the simulation device to the real card manager is performed by using the simulated device-side secure transmission key. After the first processing is sent, the real card manager receives the first processed first data, and performs the second processing by using the real card manager-side secure transmission key; the second data sent by the real card manager to the analog device utilizes the real The card manager side secure transmission key is sent after the first processing, and the simulation device receives the first processed second data, and performs the second processing by using the analog device side secure transmission key.

The method of any one of the preceding claims, wherein the real card manager opens and/or accesses the real card information of the real card connected to the real card manager according to the security level of the real card. Or close the settings.

A second main object of the present invention is to provide another method of data interaction.

The solution 25 provides a data interaction method, including: the real card manager obtains a real card manager side real card information list, wherein the real card manager side real card information list includes a real card connected with the real card manager. Real card information; the real card manager prompts the real card manager to have a real card information list; the real card manager receives the real card selection command to determine the selected real card; and the simulation device acquires the first data and sends the first data to The real card manager; the real card manager receives the first data sent by the analog device, and sends the first data to the selected real card.

The method of claim 25, further comprising: the real card manager further receiving the second data sent by the real card, and transmitting the second data to the simulation device.

The method of claim 26, further comprising: the simulation device transmitting the second data to the terminal.

The method of any one of clauses 25 to 27, wherein the acquiring, by the simulation device, the first data comprises: the simulation device receiving the first data sent by the terminal; or the simulation device generating the first data.

The method of any one of clauses 25 to 28, wherein the transmitting the first data to the selected real card comprises: the real card manager prompting the first data; and the real card manager receiving the confirmation that the first data is correct A confirmation command sends the first data to the selected real card.

The method of any one of aspects 25 to 29, further comprising: establishing a secure connection between the real card manager and the emulation device, and obtaining real card management for secure data transmission between the real card manager and the emulation device The device securely transmits the key and simulates the device-side secure transmission key.

The method of claim 30, the real card manager establishing a secure connection with the simulation device comprises: the real card manager transmitting a first secure connection instruction to the simulation device for indicating establishment of a secure connection, wherein the first secure connection The instruction includes: the real card manager uses the analog device public key in the simulation device certificate to encrypt the real card manager binding factor and the generated first connection random factor to obtain the first connection ciphertext, and the real card manager utilizes the real The first connection signature obtained by the card manager private key signing the real card manager binding factor and the first connection random factor; the simulation device receives the first secure connection instruction, and uses the simulated device private key to perform the first connection ciphertext Decrypting, obtaining the real card manager binding decryption factor and the first connection random decryption factor; the simulation device uses the real card manager public key in the real card manager certificate, the real card manager binding decryption factor, and the first connection The random decryption factor verifies the first connection signature; After verifying that the first connection signature is correct, check Verify that the real card manager binding binding factor is the same as the analog device binding factor; the simulation device verifies that the real card manager binding binding factor is the same as the analog device binding factor, and generates a second connection random factor; The device encrypts the first connection random decryption factor and the second connection random factor by using a real card manager public key in the real card manager certificate to obtain a second connection ciphertext, and uses the simulated device private key to the first connection random decryption factor and The second connection random factor is signed to obtain a second connection signature; the simulation device sends a first secure connection response to the real card manager, wherein the first secure connection response comprises: a second connection ciphertext and a second connection signature; real card management Receiving the first secure connection response, decrypting the second connected ciphertext by using the real card manager private key, obtaining the decrypted first connection random decryption factor and the second connection random decryption factor; the real card manager using the simulation device certificate The analog device public key in the middle, the first connection random solution after decryption The factor and the second connection random decryption factor verify the second connection signature; after the real card manager verifies that the second connection signature is correct, verify whether the decrypted first connection random decryption factor is the same as the first connection random factor; real card management After verifying that the decrypted first connection random decryption factor is the same as the first connection random factor, the second connection random decryption factor is used to generate a real card manager secure transmission key between the real card manager and the simulation device; the simulation device At least the second device connection random factor is used to generate an analog device-side secure transmission key between the real card manager and the analog device.

According to the method of claim 30, the real card manager establishes a secure connection with the simulation device, including: the real card manager receives the third connection random factor generated by the simulation device sent by the simulation device, and the unique identifier of the simulation device; real card management Transmitting, to the emulation device, a second secure connection instruction for indicating establishment of a secure connection, wherein the second secure connection instruction comprises: a real card manager unique identifier, and the real card manager utilizes an analog device public key pair in the emulation device certificate The third connection ciphertext obtained by encrypting the three connection random factors and the generated fourth connection random factor, and the real card manager using the real card manager private key to sign the third connection random factor and the fourth connection random factor The third connection signature; the simulation device receives the second secure connection instruction to determine whether the real card manager unique identifier is in the simulation device binding list; if the real card manager uniquely identifies the simulation device binding list, the simulation device utilizes the simulation Device private key to third connected ciphertext Decrypting to obtain a third connection random decryption factor and a fourth connection random decryption factor; the simulation device uses the real card manager public key, the third connection random decryption factor, and the fourth connection random decryption factor in the real card manager certificate The third connection signature is verified; after the simulation device verifies that the third connection signature is correct, it is verified whether the third connection random decryption factor is the same as the third connection random factor; if the third connection random decryption factor is the same as the third connection random factor, the simulation device utilizes The simulation device private key signs the third connection random decryption factor and the fourth connection random decryption factor to obtain a fourth connection signature; the simulation device sends a second secure connection response to the real card manager, wherein the second secure connection response includes: Four connection signature; the real card manager receives the second secure connection response, and verifies the fourth connection signature by using the analog device public key, the third connection random factor and the fourth connection random factor in the simulation device certificate; the real card manager verifies Fourth connection signature After correct, at least the fourth card randomization factor and the real card manager binding factor are used to generate a real card manager secure transmission key between the real card manager and the emulation device; the emulation device uses at least the fourth connection random decryption factor and The simulation device end binding factor generates an analog device-side secure transmission key between the real card manager and the simulation device; the real card manager uses the real card manager-side secure transmission key pair third connection random factor and the fourth connection random factor After performing the first processing, sending to the simulation device; the simulation device performs the first processing on the third connection random decryption factor and the fourth connection random decryption factor by using the simulated device-side secure transmission key, and then sends the result to the real card manager; the real card manager Receiving data sent by the simulation device, and performing second processing on the received data by using a real card manager-side secure transmission key, and comparing whether the second processed data is the same as the third connection random factor and the fourth connection random factor; The analog device receives the actual card manager sent Data, and using the data transmission simulation apparatus side security keys received a second treatment, the comparison of the second data processing decrypted random third connection and a fourth connection factor decryption random factors are the same.

The method of any one of the aspects 30 to 32, before the real card manager establishes a secure connection with the simulation device, the method further comprises: the real card manager and the simulation device perform a binding operation.

The method of claim 33, wherein the real card manager performs the binding operation with the simulation device, the real card manager receives a trigger command for indicating binding with the simulation device, and the real card manager sends the simulation device to the simulation device. a first binding instruction, where the first binding instruction includes: a first binding random factor generated by a real card manager, a real card manager certificate, and a real card manager unique identifier; and the analog device receives the first binding instruction, The real card manager certificate is verified by using the root certificate; after the simulation device verifies that the real card manager certificate is legal, a second binding random factor is generated; and the simulation device uses the real card manager public key pair in the real card manager certificate to Binding the random factor and the second binding random factor to obtain the first binding ciphertext, and signing the first binding random factor and the second binding random factor by using the simulation device private key to obtain the first binding signature; The device sends a first binding response to the real card manager, where the first binding response includes: a binding ciphertext, a first binding signature, an emulation device certificate, and a unique identifier of the emulation device; the real card manager receives the first binding response, and verifies the emulation device certificate using the root certificate; the real card manager verifies the emulator certificate After being legal, the first binding ciphertext is decrypted by using the real card manager private key to obtain the first binding random decryption factor and the second binding random decryption factor; the real card manager uses the analog device in the simulation device certificate. The first binding signature is verified by the key, the first binding random decryption factor and the second binding random decryption factor; after the real card manager verifies that the first binding signature is correct, verifying the first binding random decryption factor and the first Whether the binding random factor is the same; the real card manager verifies that the first binding random decryption factor is the same as the first binding random factor, prompting the simulation device to uniquely identify; the real card manager receives the trigger for confirming that the simulated device uniquely identifies correctly Command, using the real card manager private key to the first bound random factor and the second bound random solution Sign factor to obtain a second binding signatures, and the simulation device storing unique identification, simulation The device certificate and the real card manager binding factor to the real card manager binding list, wherein the real card manager binding factor is the second binding random decryption factor; the real card manager sends the second binding device to the analog device Binding the signature; the simulation device receives the second binding signature, and verifies the second binding signature by using the real card manager public key, the first binding random factor, and the second binding random factor in the real card manager certificate; After the simulation device verifies that the second binding signature is correct, the real card manager unique identifier, the real card manager certificate, and the simulated device binding factor are stored to the analog device binding list, wherein the simulation device binding factor is the second Bind random factors.

The method of any one of clauses 25 to 34, further comprising: obtaining, by the real card manager, the data to be verified and verifying the data to be verified.

The method of claim 35, the data to be verified includes: a password to be verified; and the verification of the data to be verified includes: determining, by the real card manager, whether the password to be verified is an alarm password; if the password to be verified is an alarm password, the real The card manager determines that the password to be verified is verified and performs an alarm operation.

The method of any one of aspects 25 to 36, further comprising: detecting, by the real card manager, a real card connected to the real card manager; the real card manager detecting the connection with the real card manager After the real card, the real card information of the real card is obtained, wherein the real card information includes at least: the card number; after the real card manager obtains the real card information of the real card, the real card manager end real card information list is generated.

The method of claim 37, further comprising: the real card manager further generating a real card manager end identification list, the identifier in the real card manager end identification list and the real card manager end real card information list The real card information corresponds one by one.

The method of any one of aspects 30 to 34, wherein the real card manager further comprises a heartbeat sleep mode, wherein the heartbeat sleep mode is a low power consumption non-operation mode, and the method further comprises: the real card manager is in the heartbeat In the sleep mode, the detection information is sent to the simulation device every first preset time; the simulation device receives the detection information, and sends the response information to the real card manager; if the real card manager does not receive the response within the second preset time The information disconnects the secure connection between the real card manager and the emulation device; if the real card manager receives the response message within the second preset time, the secure connection established between the real card manager and the emulation device is maintained.

The method of claim 25, the real card manager receives the real card selection instruction, and determines that the selected real card comprises: the real card manager receives the real card selection instruction, and obtains the selected identifier, wherein the selected identifier is used to indicate the selected The real card; the real card manager determines the selected real card corresponding to the selected identifier from the real card connected to the real card manager according to the selected identifier.

The method of any one of aspects 25 to 40, further comprising: the real card manager acquiring the simulated device certificate from the simulation device, transmitting at least the simulated device certificate to the update platform; and the update platform generating the first update encryption key Key; the update platform encrypts the simulated device application installation package with the first update encryption key to obtain the first installation The ciphertext is updated; the update platform uses the update platform private key to sign the first installation package ciphertext to obtain the first installation package signature; and the update platform encrypts the first update encryption key by using the simulation device public key in the simulation device certificate to obtain the first Updating the encryption key ciphertext; the update platform sends the simulated device update information to the real card manager, wherein the simulated device update information includes: updating the platform certificate, the first installation package ciphertext, the first installation package signature, and the first update encryption Key ciphertext; the real card manager receives the simulated device update information, performs the first processing on the simulated device update information by using the real card manager-side secure transmission key, and sends the data to the analog device; the analog device receives the data sent by the real card manager. After the second processing of the received data is performed by using the simulated device-end secure transmission key, the simulation device update information is obtained; the simulation device uses the root certificate to verify the updated platform certificate; and the simulation device verifies that the updated platform certificate is passed, and the updated platform certificate is used. Update the platform public key to verify the signature of the first installation package After the simulation device verifies that the first installation package is correctly signed, the first update encryption key is decrypted by using the simulated device private key to obtain the first decryption key; and the simulation device decrypts the first installation package ciphertext by using the first decryption key to obtain the first installation package ciphertext. The simulation device application installation package; the simulation device verifies that the data format of the simulation device application installation package is correct; if the simulation device verifies that the data format of the simulation device application installation package is correct, the simulation device is installed according to the simulation device application installation package.

The method of any one of aspects 25 to 41, further comprising: the real card manager transmitting at least the real card manager certificate to the update platform; the update platform generating the second update encryption key; and the updating platform utilizing the second Updating the encryption key to encrypt the real card manager application installation package to obtain the second installation package ciphertext; the update platform uses the update platform private key to sign the second installation package ciphertext to obtain the second installation package signature; The real card manager public key in the card manager certificate encrypts the second update encryption key to obtain the second update encryption key ciphertext; the update platform sends the real card manager update information to the real card manager, wherein the real card The manager update information includes: an update platform certificate, a second installation package ciphertext, a second installation package signature, and a second update encryption key ciphertext; the real card manager receives the real card manager update information, and uses the root certificate verification update platform. Certificate; the real card manager verifies that the update platform certificate is passed, and the update platform certificate is utilized. The update platform public key checks the signature of the second installation package; after the real card manager verifies that the second installation package signature is correct, the second update encryption key ciphertext is decrypted by using the real card manager private key to obtain the second decryption key. Key; the real card manager decrypts the second installation package ciphertext by using the second decryption key to obtain the real card manager application installation package; the real card manager verifies whether the data format of the real card manager application installation package is correct; The real card manager verifies that the data format of the real card manager application installation package is correct, and the real card manager is installed according to the real card manager application installation package.

The method of any one of the preceding claims 30 to 32, after the real card manager establishes a secure connection with the simulation device, the first data sent by the simulation device to the real card manager is performed by using the simulated device-side secure transmission key. After the first processing is sent, the real card manager receives the first processed first data, and performs the second processing by using the real card manager-side secure transmission key; the second data sent by the real card manager to the analog device utilizes the real Card The manager-side secure transmission key is sent after the first processing, and the simulation device receives the first processed second data, and performs the second processing by using the simulated device-side secure transmission key.

According to the method of any one of the items 25 to 43, the real card manager opens and/or accesses the real card information of the real card connected to the real card manager according to the security level of the real card. Or close the settings.

It can be seen from the technical solution provided by the present invention that the data interaction between the simulation device and the real card manager can be realized by the data interaction method of the present invention, so as to provide a new type of user-friendly transaction with high security. Trading solution.

DRAWINGS

In order to more clearly illustrate the technical solutions of the embodiments of the present invention, the drawings used in the description of the embodiments will be briefly described below. It is obvious that the drawings in the following description are only some embodiments of the present invention, Those of ordinary skill in the art will be able to obtain other figures from these drawings without the inventive effort.

FIG. 1 is a flowchart of a data interaction method according to an embodiment of the present invention;

2 is a flowchart of a method 1 for updating data in a data interaction method according to an embodiment of the present invention;

FIG. 3 is a flowchart of a second method for updating data in a data interaction method according to an embodiment of the present disclosure;

4 is a flowchart of a third method for updating data in a data interaction method according to an embodiment of the present invention;

FIG. 5 is a flowchart of a method 4 of a data update method in a data interaction method according to an embodiment of the present disclosure;

6 is a flowchart of a method for establishing a secure connection between a simulation device and a real card manager in a data interaction method according to an embodiment of the present invention;

FIG. 7 is a flowchart of a method for establishing a secure connection between a simulation device and a real card manager in a data interaction method according to an embodiment of the present invention;

8 is a flowchart of performing a binding operation between a simulation device and a real card manager in a data interaction method according to an embodiment of the present invention;

FIG. 9 is a flowchart of an application update of a simulation device in a data interaction method according to an embodiment of the present invention;

10 is a flowchart of a real card manager application update in a data interaction method according to an embodiment of the present invention;

FIG. 11 is a flowchart of another data interaction method according to an embodiment of the present invention;

FIG. 12 is a flowchart of a method for establishing a secure connection between a real card manager and an analog device in another data interaction method according to an embodiment of the present invention;

13 is a flowchart of a second method for establishing a secure connection between a real card manager and an analog device in another data interaction method according to an embodiment of the present invention;

FIG. 14 is a flowchart of performing a binding operation between a real card manager and an emulation device in another data interaction method according to an embodiment of the present invention;

FIG. 15 is a flowchart of a simulation device application update in another data interaction method according to an embodiment of the present invention.

detailed description

The technical solutions in the embodiments of the present invention are clearly and completely described in the following with reference to the drawings in the embodiments of the present invention. It is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments obtained by a person of ordinary skill in the art based on the embodiments of the present invention without creative efforts are within the scope of the present invention.

In the description of the present invention, it is to be understood that the terms "center", "longitudinal", "lateral", "upper", "lower", "front", "back", "left", "right", " The orientation or positional relationship of the indications of "upright", "horizontal", "top", "bottom", "inside", "outside", etc. is based on the orientation or positional relationship shown in the drawings, only for the convenience of describing the present invention and The simplification of the description is not intended to limit or imply that the device or component that is referred to has a particular orientation, is constructed and operated in a particular orientation, and thus is not to be construed as limiting. Moreover, the terms "first" and "second" are used for descriptive purposes only and are not to be construed as indicating or implying a relative importance or quantity or location.

In the description of the present invention, it should be noted that the terms "installation", "connected", and "connected" are to be understood broadly, and may be fixed or detachable, for example, unless otherwise explicitly defined and defined. Connected, or integrally connected; can be mechanical or electrical; can be directly connected, or indirectly connected through an intermediate medium, can be the internal communication of the two components. The specific meaning of the above terms in the present invention can be understood in a specific case by those skilled in the art.

The embodiments of the present invention will be further described in detail below with reference to the accompanying drawings.

The present invention provides an architecture for data interaction to provide a transaction solution that is convenient for users to trade and has high security. The data interaction architecture includes: an emulation device and a real card manager.

among them:

The simulation device may include one or more analog devices, each of which can belong to and be managed by only one real card manager. The simulation device may be an analog card, that is, a device that is separately manufactured as a card shape, or a real card that is reserved with an analog device function, and the analog card may be the same size as the existing bank card, and in the data interaction architecture, Replace the real card to complete the transaction. Of course, the simulation device of the present invention may also be a mobile device having an analog device function, including: a smart phone, a tablet computer (PAD), a PDA (eg, a palmtop computer, a learning machine), a pen. Note book computer, e-book reading device, wearable device (such as smart watch, smart glasses, etc.), or the analog device of the present invention can also be an electronic signature device (key device, such as ICBC U Shield, Agricultural Bank K Bao Wait). Of course, the analog device of the present invention can also be a combination of a mobile device and an electronic signature device. The simulation device can cooperate with an existing terminal (the terminal can include a payment terminal, a function terminal, etc., for example, the payment terminal includes a transaction type terminal related to financial transactions, such as: a smartphone, a tablet, a notebook computer, a smart wearable device, an ATM A payment originating terminal such as a machine, a POS machine, a bus recharge machine, and a Lakara payment terminal, and the function terminal includes a service type terminal, for example, a service initiating terminal such as an access control and a point card management terminal, performs data interaction, and the simulation device can also be real. The card manager performs data interaction. Specifically, when the analog device is a card-shaped device, the terminal can be connected by using a contact type and/or an NFC method. When the analog device is in the form of a smart phone or the like, the terminal can be connected by using an NFC method. In order to facilitate cooperation with the simulation device of the present invention, the terminal involved in the present invention may be a card reader terminal or a card reader terminal for reading or reading data from the simulation device.

The real card manager can manage one or more analog devices, and the real card manager has at least one read/write interface, and the read/write interface can be a contact type (such as contact contact in the form of a card slot) interface and/or Or non-contact (such as NFC, etc.) interface, so that the real card manager can connect different kinds of real cards in different ways; the real card manager can also interact with the analog device for data. The real card manager can be placed in a fixed location (such as the user's home), or can be made into a small device (such as a wallet). When the real card manager is placed in a fixed location, it can mainly pass the 2G network interface, 3G. The network interface such as the network interface, the 4G network interface or the WIFI interface interacts with the analog device. When the real card manager is carried around, the network interface and the analog device can be used for data interaction, and the Bluetooth interface and the infrared interface can also be used. The near field communication interface or the midfield communication interface such as the 2.4G interface, the 900M interface, the zigbee interface, and the analog device perform data interaction.

In the data interaction architecture, the real card is a smart chip card, and the real card can be a function card (such as a bus card, a meal card, a shopping card, a membership card, a loyalty card, an ID card, etc.) or a bank card issued by a bank. When the analog device is a card-shaped device, it can also be a smart chip card.

Hereinafter, the terms in the present invention will be explained:

The first process includes: an encryption process, and the second process includes: a decryption process; specifically, the simple encryption ensures the security of the data transmission, and may be processed in such a manner when the security level of the data to be transmitted is high. or

The first processing includes: a verification calculation process, and the second process includes: a verification verification calculation process; specifically, a simple verification ensures data transmission integrity and prevents tampering, and may be adopted when the integrity of the data to be transmitted is high. Ways to deal with. or

The first process includes: encryption and check calculation processing, and the second process includes: decryption and verification verification calculation processing. Specifically, the encryption and verification hybrid mode is adopted to ensure the security and integrity of the data transmission. When the security level of the data to be transmitted is the highest, the method can be processed in this manner.

Based on the data interaction architecture described above, data interaction between the simulation device and the real card manager can be implemented by the data interaction method of the present invention to provide a new type of transaction solution that is convenient for user transactions and has high security.

Analog device side

FIG. 1 is a flowchart of a data interaction method according to an embodiment of the present invention. Referring to FIG. 1, the data interaction method of the present invention includes:

The simulation device acquires a real card information list of the simulation device end, wherein the real card information list of the simulation device end is a real card manager real card information list obtained by the simulation device from the real card manager, and the real card manager end real card information list Real card information including real cards connected to the real card manager;

The simulation device prompts the simulation device to have a real card information list;

The simulation device receives the real card selection instruction to determine the selected real card; and the simulation device acquires the first data and sends the first data to the real card manager;

The real card manager receives the first data sent by the analog device and sends it to the selected real card.

In the following, the data interaction method is described in detail. Specifically, the data interaction method may include the following aspects:

First, the real card manager side real card information list generation and update:

Before the simulation device acquires the real card information list of the simulation device, the real card manager generates the real card information list of the real card manager by the following manner. Of course, the present invention is not limited to this:

The real card manager detects the real card connected to the real card manager; specifically, the real card manager detects the contact interface and/or the contactless interface provided thereon to determine whether there is a real card and the real The card manager connects to detect whether there is a real card connected to it, or it can simultaneously detect whether there is a real card connected to it. Optionally, the real card manager may be configured to save real card information of all or part of the real cards in the real card connected thereto, so that the user can make different settings according to the security requirements of the real card, for example, can be managed in real cards. The settings on the device do not allow real card information for certain real cards, thus ensuring the security of these real cards.

After detecting the real card connected to the real card manager, the real card manager obtains the real card information of the real card, wherein the real card information includes at least: the card number; specifically, the real card manager detects that there is a real card and When making a connection, the real card information stored in the real card connected to it is read, and finally the real card information of all the real cards connected to the real card manager is obtained. In addition, the real card information may include information such as card authentication information, the issuer identifier of the real card, and the like in addition to the card number.

After the real card manager obtains the real card information of the real card, it generates a real card manager-side real card information list. Specifically, after the real card manager obtains the real card information of the real card connected thereto, the real card manager side real card information list is generated, so that the subsequent simulation device can obtain the real card manager end real card information list, which is convenient. Follow-up use. Optionally, the real card manager can obtain real card information that the user sets to allow the real card to be acquired.

In addition, the real card manager generates a real card manager end identification list in addition to the real card manager end real card information list, and the real card manager end identification list identifier and the real card manager end real card information list. The real card information in the one-to-one correspondence. Specifically, the identifier in the real card manager identifier list may uniquely identify the corresponding real card, and the identifier may be: an identifier indicating whether there is a real card connection at the contact interface and/or the contactless interface (for example, 1 represents Real card, 0 means no real card), or the logo can be the author of the real card (for example, when the real card is a bank card, the code is the bank code), the end number of the card number of the real card, the card number of the real card One of the information such as a check value (for example, a CRC check value, etc.) or any combination thereof. The real card manager generates the real card manager end identification list, which can facilitate the subsequent simulation device to update the real card information list.

Of course, the real card manager can re-detect and generate a real card manager-side real card information list every time the real card manager is turned on; or it can also use the function buttons (physical buttons or virtual buttons) provided by the real card manager. After triggering the detection of the real card, regenerate the real card information list of the real card manager; or you can also list the real card information each time the real card manager detects that there is a real card to be inserted or removed or enters the scene. Perform an operation to add and/or delete real card information.

Optionally, the real card manager may be configured to save real card information of all or part of the real cards in the real card connected thereto, so that the user can make different settings according to the security requirements of the real card, for example, can be managed in real cards. The settings on the device do not allow real card information for certain real cards, thus ensuring the security of these real cards.

Specifically, the real card manager can partition the contact interface and/or the contactless interface, and is divided into a normal card area and an important card area according to different usage safety factors. For example, the user's small card, secondary card, bus card and other real cards involving a small amount of money are placed in the ordinary card area, and the user's large-value card, credit card main card and other real cards involving a larger amount are placed in the important Card area.

After the real card manager partitions the contact interface and/or the contactless interface, the normal card area that allows the real card information of the real card to be read can be read to obtain the real card connected in the normal card area. Real card information; it is impossible to read the important card area of the real card information that is not allowed to obtain the real card, and it is impossible to obtain the real card information of the real card connected in the important card area. Therefore, the real card manager generated by the real card manager can only include the real card connected in the normal card area. Real card information, the simulation device can obtain the real card information of the real card connected in the ordinary card area, and can not obtain the real card information of the real card connected in the important card area, for example: the real card in the ordinary card area for the simulation device It can be seen that the analog device can be directly connected to it; the real card in the important card area is invisible to the analog device, and the analog device cannot be directly connected to it. If it is necessary to connect the real card in the important card area, then The card in the important card area needs to be set in one of the following ways, so that the simulation device can be connected to all or part of the real card in the important card area:

Method 1: After the user inputs the login password, the simulation device only has the right to connect and use all the real cards in the normal card area, and does not have the right to connect and use the real card in the important card area, if necessary, the important card is needed. If the real card in the area is connected, you can set the physical button on the real card manager, or set the virtual button on the real card manager, or set the function menu on the real card manager so that the user can manage the real card. The device is provided with the authority to connect the real card in the important card area. For example, the user can manually press the physical button, the virtual button or the option in the function menu to activate the permission of the simulation device to connect all or part of the real card in the important card area, so that the simulation device can A real card with open permissions in the important card area is used for connection.

Method 2: After the user inputs the login password, the simulation device only has the right to connect and use all the real cards in the normal card area, and does not have the right to connect and use the real card in the important card area, if necessary, the important card is needed. If the real card in the area is connected, you can set the client on the real card manager, or set the control terminal (such as PC, smartphone, tablet, etc.) connected to the real card manager, and control the terminal. The client is set up, and the user sets the permission by logging in the client to open or close the permission of the analog device to connect all or part of the real card in the important card area, so that the simulation device can open the authority with the important card area. The real card is used for connection.

Method 3: After the user inputs the login password, the simulation device only has the right to connect and use all the real cards in the normal card area, and does not have the right to connect and use the real card in the important card area, if necessary, the important card is needed. If the real card in the area is connected, the password can be set on the real card manager. The user can initiate a permission setting request to the real card manager through the simulation device. The real card manager only receives the permission setting request and receives the request. The user-entered privilege password, and after verifying that the user-entered privilege password is correct, can open or close the permission of the emulation device to connect all or part of the real card in the important card area, so that the emulation device can interact with the important card. Real cards with open permissions in the area are connected. Among them, the privilege password is different from the login password and the alarm password. Of course, if the real card manager verifies that the user-entered privilege password is incorrect, the setting of the privilege to connect all or part of the real cards in the important card area is not performed.

Second, the acquisition and update of the real card information list on the analog device side:

In the present invention, the real device card information list of the simulation device end acquired by the simulation device is a real card manager terminal real card information list obtained from the real card manager.

The update of the real card information list on the simulated device side may include the following methods:

Method 1: The real card manager determines whether it is necessary to perform an update operation of the real card information list on the simulated device side:

FIG. 2 is a schematic diagram of the first method in the data update method in the data interaction method of the present invention. Referring to FIG. 2, the data update method in the data interaction method of the present invention includes:

The simulation device searches the analog device end identification list; specifically, the simulation device end identification list is a real card manager end identification list obtained by the simulation device from the real card manager.

If the simulation device finds the simulated device end identification list, sends the simulated device end identification list to the real card manager, and the real card manager receives the simulated device end identification list sent by the simulation device, and then determines the received analog device end identification list. Whether the real card manager end identification list stored by the real card manager is the same, if not, the real card manager sends the update instruction and the update data to the simulation device, and the simulation device updates the simulation after receiving the update instruction and the update data. The real card information list on the device side; specifically, updating the real card information list on the simulation device side can be performed by: the update command sent by the real card manager includes an add and/or delete command, and the update data includes a real card that needs to be added or deleted. Information, after receiving the update instruction and the update data, the simulation device performs an adding and/or deleting operation on the simulated device side real card information list according to the update instruction and the update data; or the update command sent by the real card manager includes adding and/or delete The instruction, the update data includes an identifier corresponding to the real card information that needs to be added or the real card information that needs to be deleted, and after receiving the update instruction and the update data, the simulation device performs an increase on the real card information list of the simulation device according to the update instruction and the update data. Or delete operation; or, the update instruction sent by the real card manager includes a replacement instruction, and the update data includes a list of the latest real card manager real card information, and the simulation device receives the update instruction and the update data according to the update instruction and The update data performs a replacement operation on the simulated device side real card information list.

If the simulation device does not find the analog device end identification list, the preset identification is sent to the real card manager, and the real card manager receives the preset identifier sent by the simulation device, and determines the preset identifier to indicate that the analog device end does not store the simulation. When the device side identifies the list, the update instruction and the update data are sent to the simulation device, and after receiving the update command and the update data, the simulation device updates the list of real card information of the simulated device. Specifically, updating the real card information list of the simulation device end may be performed by: the update instruction sent by the real card manager includes a storage instruction, and the update data includes a latest real card manager end real card information list, and the simulation device receives the update. After instructing and updating the data, a storage operation is performed on the simulated device side real card information list according to the update instruction and the update data.

Based on the above solution of the present invention, the simulation device transmits the simulated device end identification list to the real card manager Whether the judgment is consistent, because the amount of data of the analog device end identification list is much smaller than the real card information list of the analog device end, the data amount of the data transmission is reduced, the data transmission rate is improved, and the judgment rate of the real card manager is also improved. . If the simulation device is used for the first time, the simulation device itself does not store the simulated device end identification list. At this time, the preset identification is sent to the real card manager, so that the real card manager delivers the real card manager end identification list and The real card manager side lists the real card information to the simulation device, and the preset identifier may be an empty identifier, a predefined value, or a predefined character.

Of course, the present invention is not limited to the above implementation manner of the first method. When the simulation device and the real card manager do not store the identifier list, the update of the real card information list of the simulation device end may be implemented by one of the following methods:

Sending a list of real card information of the simulated device side directly from the simulation device to the real card manager, so that the real card manager can perform the comparison to determine whether to update; or

Sending, by the simulation device, a list number of the real card information list of the simulated device side to the real card manager, so that the real card manager compares whether the list number is the same or not, or whether it is updated; or

After receiving the update command input by the user by the real card manager, the real card manager sends the real card manager side real card information list to the simulation device.

Of course, after the real card manager determines that the update is needed, the update query request may also be sent to the simulation device, and the simulation device prompts the update inquiry request to the user, so that the user confirms whether to update.

Method 2: The simulation device determines whether it is necessary to perform a process of updating the real card information list of the simulated device side:

FIG. 3 is a schematic diagram of a second method of the data update method in the data interaction method of the present invention. Referring to FIG. 3, the data update method in the data interaction method of the present invention includes:

The real card manager sends the real card manager end identification list to the emulation device;

The simulation device receives the real card manager end identification list sent by the real card manager, and determines whether the received real card manager end identification list is identical to the simulated device end identification list stored by the simulation device; specifically, if the simulation device is the first time If the real card manager end identification list is used or never successfully downloaded, and the analog device end identification list is not stored, it is directly determined to be different.

If not the same, the simulation device sends an update request to the real card manager;

The real card manager receives the update request, and sends the update command and the update data to the simulation device;

After receiving the update command and the update data sent by the real card manager, the simulation device updates the real card information list on the simulated device side. Specifically, updating the real device information list of the simulation device end may be performed by: the update instruction sent by the real card manager includes an addition and/or deletion instruction, and the update data includes real card information that needs to be added or deleted, and the simulation device receives the After updating the instruction and updating the data, performing an add and/or delete operation on the simulated device side real card information list according to the update instruction and the update data; or the update command sent by the real card manager includes adding and/or deleting the instruction, and the update data includes the need Add real card information or real card information that needs to be deleted Corresponding identifier, after receiving the update instruction and the update data, the simulation device performs an adding and/or deleting operation on the simulated device side real card information list according to the update instruction and the update data; or the update command sent by the real card manager includes replacement The instruction, the update data includes a latest real card manager side real card information list, and after receiving the update instruction and the update data, the simulation device performs a replacement operation on the simulated device side real card information list according to the update instruction and the update data.

Based on the above solution of the present invention, the real card manager determines whether the real card manager end identification list is consistent by sending the real card manager end identification list, because the real card manager end identification list data amount is much smaller than the real card manager end real card information list. Therefore, the amount of data transmitted by the data is reduced, the data transmission rate is increased, and the judgment rate of the analog device is also improved. If the simulation device is used for the first time, the simulation device itself does not store the simulated device end identification list. At this time, after receiving the real card manager end identification list issued by the real card manager, the update request is directly sent for real card management. The device sends a real card manager-side real card information list to the simulation device.

Of course, the present invention is not limited to the foregoing implementation manner of the second method. When the simulation device and the real card manager do not store the identifier list, the update of the real card information list of the simulation device end may be implemented by one of the following methods:

Sending a real card manager-side real card information list directly to the simulation device by the real card manager, so that the simulation device directly stores; or

Sending, by the real card manager, the list number of the real card manager side real card information list to the simulation device, so as to simulate whether the device compares the list numbers to determine whether the update is the same; or

After receiving the update instruction input by the user by the simulation device, the simulation device sends an update request to the real card manager, so that the real card manager directly delivers the real card manager-side real card information list and sends it to the simulation device.

Of course, after the simulation device determines that the update is necessary, the user may be prompted to confirm whether to perform the update, and after the user confirms the update, the subsequent update operation is performed.

The analog device of the present invention has a heartbeat sleep mode in addition to the normal operation mode, wherein the heartbeat sleep mode is a low power consumption non-operation mode, that is, some unnecessary power consumption programs are turned off. Specifically, the simulation device may enter the heartbeat sleep mode after the operation is not performed within the preset time, or may enter the heartbeat sleep mode by the operation control of the user.

Mode 3: The simulation device is in the heartbeat sleep mode, and the simulation device determines whether it is necessary to perform a process of updating the real card information list update operation on the device side:

4 is a schematic diagram of a method for updating data in the data interaction method of the present invention. Referring to FIG. 4, the data update method in the data interaction method of the present invention includes:

The simulation device sends the detection information to the real card manager every first preset time in the heartbeat sleep mode;

The real card manager receives the detection information and sends the response information to the analog device;

If the simulation device receives the response information within the second preset time, and the response information further includes the update prompt information, the simulation device stores the update prompt information; wherein the update prompt information is the real card manager notifying the simulated device The card manager has a prompt message for updating the real card information list on the real card manager side.

After the simulation device enters the working mode by the heartbeat sleep mode, the simulation device sends an update trigger request to the real card manager; specifically, the simulation device can enter the work mode from the heartbeat sleep mode by: the analog device automatically receives the update prompt information After entering the working mode, or the simulation device receives an operation instruction input by the user (for example, an operation instruction for the user to input a key, etc.), the operation mode is entered.

The real card manager receives the update trigger request and sends the real card manager end identification list to the simulation device;

After receiving the update command and the update data sent by the real card manager, the simulation device updates the real card information list on the simulated device side. Specifically, updating the real device information list of the simulation device end may be performed by: the update instruction sent by the real card manager includes an addition and/or deletion instruction, and the update data includes real card information that needs to be added or deleted, and the simulation device receives the After updating the instruction and updating the data, performing an add and/or delete operation on the simulated device side real card information list according to the update instruction and the update data; or the update command sent by the real card manager includes adding and/or deleting the instruction, and the update data includes the need Adding real card information or an identifier corresponding to the real card information to be deleted, after receiving the update instruction and the update data, the simulation device performs an adding and/or deleting operation on the real card information list of the simulated device side according to the update instruction and the update data; or The update instruction sent by the real card manager includes a replacement instruction, and the update data includes the latest real card manager side real card information list, and the simulation device simulates the update instruction and the update data after receiving the update instruction and the update data. The device side real card information list performs a replacement operation.

The first preset time may be the same as or different from the second preset time.

Of course, the present invention is not limited to the foregoing implementation manner of the third method. When the simulation device and the real card manager do not store the identifier list, the update of the real card information list of the simulation device end may be implemented by one of the following methods:

Method 4: The simulation device is in the heartbeat sleep mode, and the real card manager determines whether it is necessary to perform the process of updating the real card information list update operation on the device side:

FIG. 5 is a schematic diagram of a fourth embodiment of the data update method in the data interaction method of the present invention. Referring to FIG. 5, the data update method in the data interaction method of the present invention includes:

If the simulation device receives the response information within the second preset time, and the response information further includes the update prompt information, the simulation device stores the update prompt information; wherein the update prompt information is the real card manager notifying the simulated device real card manager There is a prompt message for updating the real card information list on the real card manager side.

After the simulation device enters the working mode by the heartbeat sleep mode, the simulation device sends the simulated device end identification list to the real card manager; specifically, the simulation device can enter the working mode from the heartbeat sleep mode by: the simulation device receives the update prompt After the information, the operation mode is automatically entered, or the simulation device receives an operation instruction input by the user (for example, an operation instruction for the user to input a key), and then enters the work mode. If the analog device is used for the first time or has never successfully downloaded the real card manager end identification list, the analog device end identification list is not stored in the simulation device. At this time, the simulation device uses the analog device side security transmission key pair preset. The identification is sent to the real card manager after the first processing.

The real card manager receives the simulated device end identification list sent by the simulation device, and determines whether the received analog device end identification list is identical to the real card manager end identification list stored by the real card manager; specifically, the real card manager receives The preset logo is also judged to be different.

If not the same, the real card manager sends the update command and the update data to the simulation device;

After receiving the update command and the update data sent by the real card manager, the simulation device updates the real card information list on the simulated device side. Specifically, updating the real device information list of the simulation device end may be performed by: the update instruction sent by the real card manager includes an addition and/or deletion instruction, and the update data includes real card information that needs to be added or deleted, and the simulation device receives the After updating the instructions and updating the data, the simulation is based on the update instructions and the updated data. The device-side real card information list performs an add and/or delete operation; or the update command sent by the real card manager includes an add and/or delete command, and the update data includes an identifier corresponding to the real card information that needs to be added or the real card information that needs to be deleted. After receiving the update instruction and the update data, the simulation device performs an adding and/or deleting operation on the simulated device side real card information list according to the update instruction and the update data; or the update command sent by the real card manager includes the replacement instruction, and the update data. The latest real card manager side real card information list is included, and after receiving the update instruction and the update data, the simulation device performs a replacement operation on the simulated device side real card information list according to the update instruction and the update data.

According to the above solution of the present invention, the simulation device determines whether the simulation is consistent by sending the simulation device end identification list to the real card manager, because the amount of data of the simulation device end identification list is much smaller than the real card information list of the simulation device end, thereby reducing The amount of data transmitted by the data increases the data transfer rate and also improves the judgment rate of the real card manager. If the simulation device is used for the first time, the simulation device itself does not store the simulated device end identification list. At this time, the preset identification is sent to the real card manager, so that the real card manager delivers the real card manager end identification list and The real card manager side lists the real card information to the simulation device, and the preset identifier may be an empty identifier, a predefined value, or a predefined character.

Of course, the present invention is not limited to the above implementation manner of the fourth method. When the simulation device and the real card manager do not store the identifier list, the update of the real card information list on the simulation device side may be implemented by one of the following methods:

Optionally, after the real card manager opens or closes the permission of the analog device to connect all or part of the real cards in the important card area, since the real card manager side real card information list is updated, the real card is The manager will send the real card information that opens the permission of the simulation device to connect all or part of the real cards in the important card area to the simulation device, so that the simulation device updates the real card information list on the simulated device side; or in the real card management After opening or closing the permission of the simulation device to connect all or part of the real cards in the important card area, the process of updating the real card information list of the simulation device is triggered, and the update mode may refer to the update manner of the above manners 1 and 2. It will not be described in detail here.

In addition to the real card manager side real card information list, the update data sent by the real card manager includes a real card manager end identification list, so that the simulation device obtains the latest identification list.

Third, determine the selected real card:

The simulation device acquires a real card information list of the simulation device end, wherein the real device card information list of the simulation device end is a real card manager end real card information list obtained from the real card manager; specifically, optionally, before this step The operation of the analog device to boot and the simulated device to log in to the real card manager can also be performed, and details are not described herein. For details, refer to the above description about the booting of the analog device and the login of the simulated device to the real card manager. In this step, the simulation device obtains the real card information list of the simulation device end, and may further include the step of the simulation device updating the real card information list of the simulation device end, and details are not described herein again. For details, refer to the above simulation device updating the simulation device end. A description of the card information list. After the simulation device obtains the real card manager list of the real card manager from the real card manager, it is stored in the storage area of the simulation device as a real card information list on the simulated device side, and the simulation device needs to prompt (for example, display or When playing a real card information list on the device side, the real card information list of the simulation device can be directly obtained from the local to improve the processing speed of the analog device.

The simulation device prompts the real device card list of the simulation device end; specifically, the simulation device displays the real card information list of the simulation device end by using the display device itself or by the external display device, or the simulation device utilizes its own voice playback device or by means of an external voice playback device Voice playback (such as speaker playback or earphone handset playback) simulates a real card information list on the device side, so that the user can select the real card to be used for the transaction according to the real card information list on the simulated device side, which is convenient for the user to select and enhance the user experience. .

The simulation device receives the real card selection instruction to determine the selected real card; specifically, the real card selection instruction received by the simulation device may be generated by selecting a physical button separately set on the simulation device, or may be on the touch screen of the analog device The generated by the virtual button is selected, or may be generated for the menu item indicating the selection function in the menu displayed on the screen of the simulation device. The simulation device receives the real card selection instruction, determines the selected real card, and the simulation device implements data transmission via the real card manager and the selected real card. In addition, the selected real card can be determined by: the simulation device receives the real card selection instruction, and obtains the selected identifier, wherein the selected identifier is used to indicate the selected real card; the simulation device sends the selected identifier to the real card manager; The card manager determines the selected real card corresponding to the selected identifier from the real card connected to the real card manager according to the selected identifier; wherein the selected identifier may be part or all of the information in the real card information, for example: card number and/or Or the real card manager reads and writes the port identifier; after receiving the selected identifier, the real card manager can find the real card manager read/write port identifier corresponding to the selected identifier in the real card information list of the real card manager, so as to be true The card manager determines its read and write ports to interact with the selected real card through the read and write ports.

In addition, each read/write interface in the real card manager contains an IO interface, and the real card manager is built in. The chip has multiple IO interfaces, and the IO interfaces of each read/write interface are respectively connected to the IO interface of one chip, so that the read/write interface is managed in parallel; the IO interface of each read/write interface in the real card manager is also The connection can be made in a serial manner, wherein the IO interface of the first read/write interface is connected to the IO interface of the chip built in the real card manager.

It is worth noting that if the IO interface of each read/write interface in the real card manager is connected in a serial manner, after the real card manager receives the selected identifier, the selected real card corresponding to the selected identifier is determined. It can be realized as follows: the chip built in the real card manager sends a card reading instruction to each read/write interface through the serially connected IO interface to read the real card information of the real card connected to each read/write interface, and The identifier of each read/write interface (such as the address information) is saved corresponding to the real card information of the real card read by each, thereby generating a real card manager-side real card information list, so that the real card manager can manage the real card. The read/write interface corresponding to the selected identifier is found in the real card information list of the device, and the data is exchanged with the selected real card through the read/write interface. Of course, the alternative solution is: the chip built in the real card manager sends a card reading instruction to the read/write interface through the serially connected IO interface to read the real card information of the real card connected to the read/write interface, and judges from reading the card. Whether the real card information of the real card read in the write interface is the real card information of the real card indicated by the selected identifier; if not, continuing to send the card reading instruction to the next read/write interface to read and read the next read/write interface The real card information of the connected real card is judged; if so, it is determined that data interaction is performed with the selected real card through the read/write interface.

Fourth, data interaction:

The simulation device acquires the first data and sends the first data to the real card manager; specifically, the simulation device may acquire the first data by: the simulation device receives the first data sent by the terminal; for example, during the data interaction process The analog device is connected to a terminal (for example, an ATM machine, a POS machine, a bus card recharge machine, etc.) (a contact interface or a contactless interface), and the analog device receives the first data sent by the terminal, and the first data may be Processed data (such as withdrawal amount, debit amount, real card information acquisition request, etc.). Of course, the simulation device can also acquire the first data by the simulation device generating the first data. In addition, the simulation device may also prompt the first data after acquiring the first data, and receive an acknowledgement instruction for confirming that the first data is correct, and send the first data to the real card manager; at this time, the simulation device may display the first A data can also be played by voice (for example, speaker playback or through earphone handset playback) for the user to confirm whether the first data is correct, and only after correct, receive a confirmation command that the user inputs the correct first data. After the first data is sent to the real card manager, if the user confirms that the first data is incorrect, the data interaction can be directly canceled, thereby improving the security of the data interaction. The confirmation command received by the simulation device for confirming that the first data is correct may be generated by a confirmation physical button separately set on the simulation device, or may be generated for a confirmation virtual button on the touch screen of the simulation device, or on the simulation device screen. In the menu displayed on the screen, the confirmation function is selected, or the voice confirmation indication received by the voice collection device (such as a microphone) of the simulation device may be generated and verified after the verification is passed, or may be received by the fingerprint collection device of the simulation device. The fingerprint confirmation indication and the verification are generated, or may be generated after the iris collection device of the simulation device receives the iris confirmation indication and the verification is generated. Of course, it may be generated in any other manner, which is not limited in the present invention.

The real card manager receives the first data sent by the analog device and sends the first data to the selected real card. Specifically, the real card manager sends the first data to the selected real card, so that the selected real card processes the first data. After the selected real card receives the first data, the first data may be processed, and the processing is a scheme for processing the existing smart card, and details are not described herein again.

Based on the above data interaction process, a plurality of different types of real card functions can be realized by one simulation device, and when the user performs data interaction, only the simulation device is carried, and the real card can be completed without carrying a real card, thereby improving convenience and security.

The simulation device can prompt the information that needs to be confirmed during the data interaction process, so that the user can confirm the information that needs to be confirmed in the data interaction process and then perform the interaction, thereby ensuring the authenticity of the data interaction and improving the security.

In addition, since the real card matching the terminal can be selected, the unnecessary expenses (such as bank interbank withdrawal fee, etc.) generated by the user in the prior art that the real card matched with the terminal is not carried can be solved.

Of course, the above specific implementation only discloses a single data interaction from the terminal to the real card. In actual applications, there may be multiple data interactions, and the interaction process is similar to the single data interaction described above. In multiple data interactions, Whether the interactive data requires confirmation to set whether the interactive data is prompted at the simulation device to ensure the authenticity of the interactive data.

In addition, in actual application, if the data processed by the real card needs to be returned to the simulation device, the real card manager of the embodiment of the present invention also receives the second data sent by the real card, and sends the second data to the simulation. Device. Therefore, the solution that the real card obtains the second data obtained by processing the first data to the simulation device can be realized, and the application of the embodiment of the present invention is expanded. Of course, if the real card processed data needs to be returned to the terminal for processing, the simulation apparatus of the embodiment of the present invention may further send the second data to the terminal.

Fifth, the establishment of a secure connection:

Before the simulation device acquires the real card information list of the simulation device end, the present invention may further comprise: establishing a secure connection between the simulation device and the real card manager, and obtaining an analog device-side secure transmission key for secure data transmission between the simulation device and the real card manager. And the process of securely transferring keys to the real card manager.

The analog device establishes a secure connection with the real card manager and obtains between the simulated device and the real card manager. Simulated device-side secure transmission key for data secure transmission and real card manager-side secure transmission key:

In the present invention, the simulation device and the real card manager can establish a secure connection by:

Method 1: The simulation device and the real card manager mutually authenticate each other's identity (for example, mutually authenticating the other party's signature data), and in the process of mutually authenticating the identity of the other party, compare whether the binding factors stored by the two parties are the same, and compare the bindings stored by the two parties. After the factors are the same and each other authenticates the identity of the other party, a secure transmission key (simulating the device-side secure transmission key and the real card manager-side secure transmission key) for secure transmission of data between the simulation device and the real card manager is generated.

It is worth noting that if the analog device and the real card manager mutually authenticate each other's certificate and the identity of the other party before the analog device establishes a secure connection with the real card manager, and after both parties have passed the authentication, they are stored in the authentication process. In the binding mode of the generated binding factor, in the first mode, the simulation device and the real card manager mutually authenticate each other's identity, that is, the simulation device and the real card manager mutually authenticate each other's identity.

Hereinafter, the present invention provides a specific implementation of the first method:

FIG. 6 is a flowchart of a method for establishing a secure connection between a simulated device and a real card manager in a data interaction method according to an embodiment of the present invention. Referring to FIG. 6, establishing a secure connection between the simulation device and the real card manager includes:

The simulation device sends a first secure connection instruction to the real card manager for instructing to establish a secure connection, wherein the first secure connection instruction comprises: the emulation device utilizing the real card manager public key in the real card manager certificate to the analog device end a first connection ciphertext obtained by encrypting the binding factor and the generated first connection random factor, and the first connection signature obtained by the simulation device using the simulation device private key to sign the simulation device end binding factor and the first connection random factor; Specifically, before using the simulation device to perform data interaction with the real card manager, optionally, a secure connection is established between the emulation device and the real card manager to improve the security of subsequent data interaction. The first secure connection instruction received by the simulation device for indicating that the secure connection is established may be generated by a physical button connected to the analog device, or may be generated by a virtual button connected to the touch screen of the analog device, or It can be generated after the power-on password is verified correctly, or it can be generated when the simulation device sends a login request to the real card manager, or it can be generated by selecting the connection function in the menu displayed on the screen of the simulation device, or it can be simulated. The device obtains a list of real card information on the simulated device side, which is generated after the user selects a real card. Of course, it can also be generated in any other manner, and is not limited in the present invention. The first connection random factor may be a random number generated by the simulation device, a random character or a combination thereof. Of course, after generating the first connection random factor, the randomness of the first connection random factor may also be verified to improve the The randomness of the connection random factor is prevented from being cracked; specifically, the simulation device encrypts the analog device end binding factor and the first connection random factor by using the real card manager public key to ensure the simulation device binding factor and the first To connect the security of the random factor transmission, the simulation device uses the analog device private key to sign the analog device end binding factor and the first connection random factor to ensure that the subsequent real card manager can authenticate the legality of the simulated device identity. Sending the simulated device end binding factor to the real card manager, so that the subsequent real card manager determines whether the emulation device end binding factor is the same as the stored binding factor. And determining whether the simulation device is bound to the real card manager. Optionally, before the step, after the simulation device detects the real card manager, the simulation device may determine whether the real card manager is in the simulation device binding list, for example, the following manner may be determined: the simulation device is logged in. After receiving the real card manager, receiving the real card manager information sent by the real card manager (such as the real card manager unique identifier and/or the real card manager certificate, etc.), according to the received real card manager information, determining the Whether the real card manager is in the simulated device-side binding list; and/or the real card manager can also determine whether the emulation device is in the real card manager-side binding list, for example, can be determined by: emulating device After logging in to the real card manager, the simulated device information (eg, the simulated device unique identifier and/or the simulated device certificate, etc.) is sent to the real card manager, and the real card manager determines the simulated device based on the received simulated device information. Whether it is in the real card manager binding list; only in the judgment of the pair After the party is in its own binding list, the subsequent processes are executed, the process is optimized, and the efficiency is improved.

The real card manager receives the first secure connection instruction, decrypts the first connection ciphertext by using a real card manager private key, and obtains an analog device end binding decryption factor and a first connection random decryption factor; specifically, using real card management The private key of the device decrypts the first connection ciphertext. If a data transmission error occurs in the data transmission, or tampering occurs in the data transmission, the decryption factor may not be successfully decrypted, or the decrypted simulated device side binding decryption factor And the first connection random decryption factor is different from the simulated device end binding factor and the first connection random factor. The encryption is performed by the real card manager public key, and only the real card manager private key can be successfully decrypted, thereby ensuring the security of data decryption.

The real card manager verifies the first connection signature by using the analog device public key in the simulation device certificate, the simulated device end binding decryption factor, and the first connection random decryption factor; specifically, the real card manager utilizes the analog device public key pair The signature sent by the analog device is verified to ensure the legal source of the data.

After the real card manager verifies that the first connection signature is correct, it is verified whether the emulation device end binding decryption factor is the same as the real card manager end binding factor; specifically, the real card manager also verifies the decrypted simulated device end binding decryption. Whether the factor is the same as the real card manager binding factor stored by the real card manager itself. If they are the same, the emulation device has completed the binding operation before establishing a secure connection with the real card manager. The real card manager can determine whether the emulation device is bound to the real card manager.

After the real card manager verifies that the simulated device end binding decryption factor is the same as the real card manager end binding factor, the second connection random factor is generated; specifically, the second connection random factor may be a random number generated by the real card manager, Random characters or a combination thereof. Of course, after generating the second connection random factor, the randomness of the second connection random factor may also be verified to improve the randomness of the second connection random factor to prevent cracking.

The real card manager encrypts the first connection random decryption factor and the second connection random factor by using the analog device public key in the simulation device certificate to obtain the second connection ciphertext, and uses the real card manager private key to the first connection random decryption factor. And the second connection random factor is signed to obtain the second connection signature; specifically, the real card manager utilizes The analog device public key encrypts the first connection random decryption factor and the second connection random factor to ensure the security of the first connection random decryption factor and the second connection random factor transmission, and the real card manager utilizes the real card manager private key pair The first connection random decryption factor and the second connection random factor are signed to ensure that the subsequent simulation device can authenticate the authenticity of the real card manager identity.

The real card manager sends a first secure connection response to the analog device, where the first secure connection response includes: a second connection ciphertext and a second connection signature; specifically, the real card manager sets the second connection ciphertext and the second The connection signature is sent to the analog device so that the analog device decrypts and verifies the received data.

The simulation device receives the first secure connection response, and decrypts the second connected ciphertext by using the simulated device private key to obtain the decrypted first connection random decryption factor and the second connection random decryption factor; specifically, using the simulated device private key pair The second connection ciphertext is decrypted. If a data transmission error occurs in the data transmission, or tampering occurs in the data transmission, the decryption may not be successful, or the decrypted first connection random decryption factor and the second connection random The decryption factor is different from the first connection random factor and the second connection random factor. By encrypting the public key of the analog device, only the private key of the analog device can be successfully decrypted, thereby ensuring the security of data decryption.

The simulation device verifies the second connection signature by using the real card manager public key in the real card manager certificate, the decrypted first connection random decryption factor and the second connection random decryption factor; specifically, the simulation device utilizes real card management The public key verifies the signature sent by the real card manager to ensure the legal source of the data.

After verifying that the second connection signature is correct, the simulation device verifies whether the decrypted first connection random decryption factor is the same as the first connection random factor; specifically, the simulation device verifies the first connection random factor generated by itself and the decrypted first connection The random decryption factor is the same, which ensures that the data has not been tampered with, and the encrypted data source does send the first connected random factor object to the analog device.

After the simulation device verifies that the decrypted first connection random decryption factor is the same as the first connection randomization factor, at least the second connection random decryption factor is used to generate an analog device-side secure transmission key between the simulation device and the real card manager; real card management At least the second connection random factor is used to generate a real card manager secure transmission key between the simulation device and the real card manager. Specifically, the simulation device may generate the simulated device-side secure transmission key between the simulation device and the real card manager by using the second connection random decryption factor, or may generate the simulation device by using the first connection random factor and the second connection random decryption factor. The simulated device-side secure transmission key between the real card managers can also generate the simulated device-side security between the analog device and the real card manager by using the first connection random factor, the second connection random decryption factor, and the simulated device-side binding factor. The key is transmitted. Similarly, the real card manager can also use the second connection random factor to generate a real card manager secure transmission key between the simulation device and the real card manager, or use the first connection random decryption factor, The second connection random factor generates a real card manager secure transmission key between the simulation device and the real card manager, and can also generate a simulation by using the first connection random decryption factor, the second connection random factor, and the real card manager binding factor. Real card between the device and the real card manager Secure transmission end processor Key; as long as the emulation device and the real card manager use the same algorithm with the same parameters to generate a secure transport key. Therefore, in the present invention, the secure transmission key factor may be a second connection random decryption factor on the analog device side, or a second connection random decryption factor and a first connection random factor; the secure transmission key factor is in real card management. The terminal may be a second connection random factor, or a second connection random factor and a first connection random decryption factor. In addition, the secure transmission key may include an encryption and decryption key and/or a verification key. The encryption and decryption key may participate in the data transmission to ensure the security of the data transmission, and the data transmission may be ensured by using the verification key to participate in the data transmission. Integrity, in the present invention, the secure transmission key can be selectively used in accordance with the security level of the transmitted data.

Of course, in the present invention, the step of the real card manager using at least the second connection random factor to generate a real card manager secure transmission key between the simulation device and the real card manager is not limited to the steps in the first mode, and The real card manager security transmission key may be generated after the real card manager generates the second connection random factor, or may be received after the simulation device verifies that the decrypted first connection random decryption factor is the same as the first connection random factor. The real card manager security transmission key is generated after the success information sent by the device.

It can be seen that the security connection established by the above simulation device and the real card manager can improve the security of data transmission, and at the same time, it can verify whether the two parties are bound, thereby further improving the security.

If the analog device performs manual binding and stores the binding factor and the like before establishing a secure connection with the real card manager, in the first mode, the analog device and the real card manager need to authenticate each other in addition to each other. Mutual authentication of each other's certificate.

In addition, the present invention is not limited to the establishment of a secure connection initiated by the above analog device, and the real device manager may be triggered by the analog device to initiate the establishment of a secure connection. At this time, the first secure connection command is sent by the real card manager to the analog device. Other processes can be implemented contrary to the above-mentioned process implementation subject, and will not be repeated here.

Method 2: The simulation device and the real card manager mutually authenticate each other's identity (for example, mutually authenticate each other's signature data), and generate a secure transmission key factor in the process of mutually authenticating the identity of the other party, and at least use the stored The binding factor and the secure transport key factor generate a secure transport key for the secure transmission of data between the simulated device and the real card manager (simulating the device-side secure transport key and the real card manager-side secure transport key) and verifying Whether the secure transport keys generated by both parties are the same.

It is worth noting that if the analog device and the real card manager mutually authenticate each other's certificate and the identity of the other party before the analog device establishes a secure connection with the real card manager, and after both parties have passed the authentication, they are stored in the authentication process. In the second mode, the emulation device and the real card manager mutually authenticate each other's identity, that is, the emulation device and the real card manager mutually authenticate each other's identity.

Hereinafter, the present invention provides a specific implementation of the second method:

FIG. 7 is a flowchart of a method for establishing a secure connection between a simulation device and a real card manager in a data interaction method according to an embodiment of the present invention. Referring to FIG. 7, establishing a secure connection between the simulation device and the real card manager includes:

The simulation device receives the third connection random factor generated by the real card manager sent by the real card manager and the real card manager unique identifier; specifically, the third connection random factor may be a random number generated by the real card manager, a random character or The combination, of course, after generating the third connection random factor, can also verify the randomness of the third connection random factor to improve the randomness of the third connection random factor and prevent the crack. Before the step, the real card manager generates a third connection random factor, and after the simulation device detects the real card manager, the real card manager sends the third connection random factor and the real card manager unique identifier to the simulation device. .

The simulation device sends a second secure connection instruction to the real card manager for instructing to establish a secure connection, wherein the second secure connection instruction comprises: simulating the device unique identifier, and the emulation device utilizes the real card manager in the real card manager certificate a third connection ciphertext obtained by encrypting the third connection random factor and the generated fourth connection random factor, and a third obtained by the simulation device using the simulation device private key to sign the third connection random factor and the fourth connection random factor The connection signature; in particular, before the data interaction with the real card manager is performed using the simulation device, optionally, a secure connection is established between the simulation device and the real card manager to improve the security of subsequent data interaction. The second secure connection command received by the simulation device for indicating that the secure connection is established may be generated by a physical button connected to the analog device, or may be generated by a virtual button connected to the touch screen of the analog device, or It can be generated after the power-on password is verified correctly, or it can be generated when the simulation device sends a login request to the real card manager, or it can be generated by selecting the connection function in the menu displayed on the screen of the simulation device, or it can be simulated. The device obtains a list of real card information on the simulated device side, which is generated after the user selects a real card. Of course, it can also be generated in any other manner, and is not limited in the present invention. Specifically, the simulation device encrypts the third connection random factor and the generated fourth connection random factor by using the real card manager public key to ensure the security of the third connection random factor and the generated fourth connection random factor transmission, and the simulation device The third connection random factor and the generated fourth connection random factor are signed by the simulation device private key to ensure that the subsequent real card manager can authenticate the validity of the simulated device identity. In addition, the fourth connection random factor may be a random number generated by the simulation device, a random character, or a combination thereof. Of course, after generating the fourth connection random factor, the randomness of the fourth connection random factor may also be verified to improve the The randomness of the four connected random factors is prevented from being cracked; optionally, after the analog device receives the unique identifier of the real card manager before the step, the simulation device can determine whether the real card manager is based on the unique identifier of the real card manager. In the simulation device binding list, the subsequent process is executed only after the real card manager is judged to be in the simulation device binding list, and the process is optimized to improve the efficiency.

The real card manager receives the second secure connection instruction, and determines whether the simulated device unique identifier is in the real card manager end binding list; specifically, the real card manager determines, according to the received unique identifier of the simulated device, whether the simulated device is The real card manager end binding list; only after judging that the emulation device is in the real card manager binding list, the subsequent process is executed, the process is optimized, and the efficiency is improved.

If the emulation device is uniquely identified in the real card manager binding list, the real card manager utilizes the real card The slice manager private key decrypts the third connection ciphertext to obtain a third connection random decryption factor and a fourth connection random decryption factor; specifically, decrypting the third connection ciphertext by using a real card manager private key, if A data transmission error occurs in the data transmission, or tampering occurs in the data transmission, which will result in failure to successfully decrypt, or obtain the third connection random decryption factor and the fourth connection random decryption factor and the third connection random factor and the fourth The connection random factor is different. The encryption is performed by the real card manager public key, and only the real card manager private key can be successfully decrypted, thereby ensuring the security of data decryption.

The real card manager verifies the third connection signature by using the analog device public key, the third connection random decryption factor, and the fourth connection random decryption factor in the simulation device certificate; specifically, the real card manager uses the simulation device public key pair to simulate The signature sent by the device is verified to ensure the legal source of the data.

After the real card manager verifies that the third connection signature is correct, it is verified whether the third connection random decryption factor is the same as the third connection random factor; specifically, the real card manager verifies the third connection random factor generated by itself and the third connection random decryption The same factor ensures that the data has not been tampered with, and the encrypted data source does send the third connection random factor object to the real card manager.

If the third connection random decryption factor is the same as the third connection randomization factor, the real card manager uses the real card manager private key to sign the third connection random decryption factor and the fourth connection random decryption factor to obtain the fourth connection signature; specifically The real card manager uses the real card manager private key to sign the third connection random decryption factor and the fourth connection random decryption factor to ensure that the subsequent simulation device can authenticate the authenticity of the real card manager identity.

The real card manager sends a second secure connection response to the analog device, wherein the second secure connection response comprises: a fourth connection signature; in particular, the real card manager sends the fourth connection signature to the analog device for analog device pair reception The data obtained is verified.

The simulation device receives the second secure connection response, and verifies the fourth connection signature by using the real card manager public key, the third connection random factor and the fourth connection random factor in the real card manager certificate; specifically, the simulation device utilizes the real The card manager public key verifies the signature sent by the real card manager to ensure the legal source of the data.

After the simulation device verifies that the fourth connection signature is correct, at least the fourth connection random factor and the simulation device end binding factor are used to generate the simulated device-side secure transmission key between the simulation device and the real card manager; the real card manager uses at least the fourth Connecting the random decryption factor and the real card manager binding factor to generate a real card manager secure transmission key between the simulation device and the real card manager; in particular, the simulation device can be tied with the fourth connection random factor and the analog device end The fixed factor generates an analog device-side secure transmission key between the simulation device and the real card manager, and can also generate a simulation device and the real card manager by using the third connection random factor, the fourth connection random factor, and the simulation device binding factor. The analog device end securely transmits the key; similarly, the real card manager can also use the fourth connection random decryption factor and the real card manager binding factor to generate the true between the analog device and the real card manager. The real card manager side secure transmission key can also use the third connection random factor, the fourth connection random decryption factor and the real card manager binding factor to generate real card manager security between the simulation device and the real card manager. Transport key; as long as the emulation device and the real card manager use the same algorithm with the same parameters to generate a secure transport key. Therefore, in the present invention, the secure transmission key factor may be a fourth connection random factor, or a third connection random factor and a fourth connection random factor at the analog device end; the secure transmission key factor is at the real card manager end. The fourth connection random decryption factor, or the third connection random factor and the fourth connection random decryption factor may be used. In addition, the secure transmission key may include an encryption and decryption key and/or a verification key. The encryption and decryption key may participate in the data transmission to ensure the security of the data transmission, and the data transmission may be ensured by using the verification key to participate in the data transmission. Integrity, in the present invention, the secure transmission key can be selectively used in accordance with the security level of the transmitted data.

The simulation device uses the simulated device-side secure transmission key to perform the first processing on the third connection random factor and the fourth connection random factor, and then sends the result to the real card manager; the real card manager uses the real card manager to securely transmit the key pair. The third connection random decryption factor and the fourth connection random decryption factor are first processed and then sent to the simulation device; specifically, the two parties perform the first processing on the data by using the generated secure transmission key, and then send the data to the other party, so that the other party can verify the generation. Is the secure transport key the same?

The simulation device receives the data sent by the real card manager, and performs second processing on the received data by using the simulated device-side secure transmission key, and compares the second processed data with the third connection random factor and the fourth connection random factor. The same; the real card manager receives the data sent by the analog device, and performs second processing on the received data by using the real card manager secure transmission key, and compares the second processed data with the third connected random decryption factor and the Whether the four connected random decryption factors are the same. Specifically, after performing the second processing on the received data by using the generated secure transmission key, the two parties compare whether the second processed data is the same as the data respectively sent by the two parties. If they are the same, the two sides generate the secure transmission key. The keys are the same, so as to ensure that the two parties can use the generated secure transmission key for data transmission. In addition, while verifying that the secure transmission keys generated by the two parties are the same, it is also possible to verify that the respective binding factors are the same, and further verify that the other party is a real binding object, thereby further improving the security of subsequent data transmission.

Of course, in the present invention, the step of the real card manager generating the real card manager security transmission key is not limited to the steps in the second method, and the real card manager may be generated after decrypting the fourth connection random decryption factor. The secure transmission key can also generate the real card manager security transmission key after receiving the success information sent by the simulation device after the simulation device verifies that the fourth connection signature sent by the real card manager is correct; the simulation device generates the simulation device end. The step of securely transmitting the key is not limited to the steps in the second mode, and the simulated device-side secure transmission key may be generated after the simulation device generates the fourth connection random factor.

If the analog device performs manual binding and stores the binding factor and other operations before establishing a secure connection with the real card manager, in the second mode, the analog device and the real card manager need to authenticate each other in addition to each other. Mutual authentication of each other's certificate.

In addition, the present invention is not limited to the establishment of a secure connection initiated by the above analog device, and the real device manager may be triggered by the analog device to initiate the establishment of a secure connection. At this time, the second secure connection command is sent by the real card manager to the analog device. Other processes can be implemented contrary to the above-mentioned process implementation subject, and will not be repeated here.

Of course, in the process of generating the secure transmission key for secure transmission of data between the simulation device and the real card manager in the above manners 1 and 2, the binding factor used is the binding process between the simulation device and the real card manager. a binding factor generated and saved in the authentication process, and the binding factor may be a binding between the mutual authentication certificate and the real card manager to authenticate each other's certificate and the identity of the other party, and after each of the two parties authenticates, respectively, the binding generated by the authentication process is generated. A factor, or a binding factor that can be entered and stored by manual binding.

In addition, if the binding operation is not performed between the simulation device and the real card manager, the binding factor used in the first mode and the second mode may be a random value manually input during the establishment of the secure connection; or the security is established. During the connection process, the secure transmission key is generated only by the random factor, and the binding factor is not verified or the binding factor is not used to generate the secure transmission key.

In addition, before the simulation device of the present invention establishes a secure connection with the real card manager, and obtains the simulated device-side secure transmission key and the real card manager-side secure transmission key for secure data transmission between the simulation device and the real card manager, The simulation device sends a login request to the real card manager; specifically, the login request may be generated by a login physical button separately set on the simulation device, or may be generated for a login virtual button on the touch screen of the simulation device, or may be The generated password verification is generated correctly, or may be generated by selecting a login function in a menu displayed on the screen of the simulation device; the login request may include a unique identifier of the simulation device so that the real card manager knows which simulation device is requesting to log in.

The simulation device sends a login request to the real card manager, and the simulation device establishes a secure connection with the real card manager, and obtains an analog device-side secure transmission key and a real card manager for securely transmitting data between the simulation device and the real card manager. After the secure transmission of the key:

The simulation device performs the first processing on the received login password by the simulated device-side secure transmission key, and then sends the login password to the real card manager. Specifically, the simulation device may also prompt the user to input the login password, and after the user inputs the login password, the user uses the login password. The simulated device-side secure transmission key performs the first processing on the login password and then sends it to the real card manager, which can improve the security of the login password transmission.

The real card manager receives the data sent by the analog device, and performs the second processing on the received data by using the real card manager secure transmission key to verify the correctness of the second processed data; specifically, the real card manager utilizes The real card manager side secure transmission key performs second processing on the data sent by the analog device, and obtains user input. The login password is compared with the legal login password stored. Only when the login password entered by the user is the same as the legal login password stored by the user, the simulated device is allowed to log in to the real card manager, thereby improving login security and ensuring subsequent data transmission. Sex. If the real card manager of the present invention has an alarm function, the legal login password and the legal alarm password can be set in the real card manager in advance. At this time, the real card manager uses the real card manager to transmit the secure key pair. After the second processing of the data, the password to be verified is obtained; the real card manager determines whether the password to be verified is an alarm password; if the password to be verified is an alarm password, the real card manager determines that the password to be verified passes, and performs an alarm operation. If the password to be verified is not an alarm password and is a login password, the real card manager determines that the password to be verified is verified. Since the alarm password is set, when the login password input by the user is the alarm password, the real card manager can recognize that the current login has a security risk and perform an alarm operation (for example, the real card manager sends an alarm message, and calls the alarm to the law enforcement department). Wait).

After the real card manager verifies that the second processed data has passed, the emulation device logs into the real card manager.

It can be seen that before establishing a secure connection between the simulation device and the real card manager, the simulation device initiates a login request first, and triggers the establishment of the secure connection while the simulation device sends the login request, and after the secure connection is established, Login password verification, which can save processes and improve processing speed.

In addition, in order to ensure the validity of the real card information list on the simulation device side, after the simulation device establishes a secure connection with the real card manager, and the simulation device logs into the real card manager, the real card information list of the simulation device side can also be performed as follows. Update:

Method 1: After the simulation device logs in to the real card manager, the real card manager determines whether it is necessary to perform an update operation of the real card information list on the simulated device side:

The following provides an implementation of mode one:

If the simulation device finds the analog device end identification list, the analog device end security list is used to perform the first processing on the analog device end identification list and then sent to the real card manager, and the real card manager receives the data sent by the analog device, and utilizes After the real card manager security transmission key performs the second processing on the received data, it is determined whether the second processed data is the same as the real card manager end identification list stored by the real card manager, and if not, the real The card manager performs the first processing on the update command and the update data by using the real card manager-side secure transmission key, and then sends the data to the analog device, and the analog device receives the data sent by the real card manager, and uses the analog device to securely transmit the key pair. After the received data is subjected to the second processing, the real card information list of the simulated device end is updated; specifically, updating the real card information list of the simulated device end may be performed by: adding, and/or deleting, the update instruction sent by the real card manager Instructions, update data including the need to increase Or delete the real card information, the simulation device is After receiving the update instruction and the update data, performing an add and/or delete operation on the simulated device side real card information list according to the update instruction and the update data; or the update command sent by the real card manager includes adding and/or deleting instructions, updating the data Including the identifier corresponding to the real card information that needs to be added or the real card information that needs to be deleted, after receiving the update instruction and the update data, the simulation device performs an addition and/or deletion operation on the real card information list of the simulated device side according to the update instruction and the update data. Or, the update instruction sent by the real card manager includes a replacement instruction, and the update data includes a list of the latest real card manager real card information, and the simulation device simulates the update instruction and the update data after receiving the update instruction and the update data. The device side real card information list performs a replacement operation.

If the simulation device does not find the analog device end identification list, the first device is processed by the simulated device end security transmission key and sent to the real card manager, and the real card manager receives the data sent by the simulation device, and uses the real After the card manager side secure transmission key performs the second processing on the received data, the real card manager determines that the second processed data is used to indicate that the simulated device side does not store the simulated device end identification list, and uses the real card manager. The terminal security transmission key performs the first processing on the update instruction and the update data, and then sends the data to the simulation device, and the simulation device receives the data sent by the real card manager, and performs the second processing on the received data by using the simulated device-side secure transmission key. After that, update the real card information list on the simulated device side. Specifically, updating the real card information list of the simulation device end may be performed by: the update instruction sent by the real card manager includes a storage instruction, and the update data includes a latest real card manager end real card information list, and the simulation device receives the update. After instructing and updating the data, a storage operation is performed on the simulated device side real card information list according to the update instruction and the update data.

Based on the foregoing implementation manner of the first method, the simulation device determines whether the simulation device consistency identifier is consistent by sending the simulation device end identification list to the real card manager, because the amount of data of the simulation device end identification list is much smaller than the real card information list of the simulation device end, thereby reducing The amount of data transmitted by the data increases the data transfer rate and also improves the judgment rate of the real card manager. If the simulation device is used for the first time, the simulation device itself does not store the simulated device end identification list. At this time, the preset identification is sent to the real card manager, so that the real card manager delivers the real card manager end identification list and The real card manager side lists the real card information to the simulation device, and the preset identifier may be an empty identifier, a predefined value, or a predefined character.

Method 2: After the simulation device logs in to the real card manager, the simulation device determines whether it is necessary to perform an update operation of the real card information list on the simulated device side:

The real card manager uses the real card manager end secure transmission key to perform the first processing on the real card manager end identification list and then sends the result to the simulation device;

The simulation device receives the data sent by the real card manager, and performs second processing on the received data by using the simulated device-side secure transmission key, and determines whether the second processed data is identical to the simulated device-side identification list stored by the simulation device; Specifically, if the simulation device uses or successfully downloads the real card manager end identification list for the first time, and does not store the simulated device end identification list, it is directly determined to be different.

The real card manager receives the update request, performs the first processing on the update command and the update data by using the real card manager-side secure transmission key, and sends the update request to the simulation device;

The simulation device receives the data sent by the real card manager, and performs a second process on the received data by using the simulated device-side secure transmission key, and updates the real card information list on the simulated device side. Specifically, updating the real device information list of the simulation device end may be performed by: the update instruction sent by the real card manager includes an addition and/or deletion instruction, and the update data includes real card information that needs to be added or deleted, and the simulation device receives the After updating the instruction and updating the data, performing an add and/or delete operation on the simulated device side real card information list according to the update instruction and the update data; or the update command sent by the real card manager includes adding and/or deleting the instruction, and the update data includes the need Adding real card information or an identifier corresponding to the real card information to be deleted, after receiving the update instruction and the update data, the simulation device performs an adding and/or deleting operation on the real card information list of the simulated device side according to the update instruction and the update data; or The update instruction sent by the real card manager includes a replacement instruction, and the update data includes the latest real card manager side real card information list, and the simulation device simulates the update instruction and the update data after receiving the update instruction and the update data. The device side real card information list performs a replacement operation.

Based on the above implementation scheme of the second method, the real card manager determines whether the real card manager end identification list is consistent by sending the real card manager end identification list to the analog device, because the real card manager end identification list data amount is much smaller than the real card manager end real card information. The list, therefore, reduces the amount of data transmitted by the data, increases the data transfer rate, and also increases the rate of judgment of the analog device. If the simulation device is used for the first time, the simulation device itself does not store the simulated device end identification list. At this time, after receiving the real card manager end identification list issued by the real card manager, the update request is directly sent for real card management. The device sends a real card manager-side real card information list to the simulation device.

In the heartbeat sleep mode, the analog device can also determine whether to maintain a secure connection established between the analog device and the real card manager, so that when the analog device is restored to the working mode from the mental sleep mode, it is not necessary to establish the real card manager again. Secure connection for added convenience.

The following provides a specific implementation manner in which the analog device determines whether to maintain a secure connection established between the analog device and the real card manager in the heartbeat sleep mode:

If the analog device does not receive the response information within the second preset time, disconnect the secure connection between the analog device and the real card manager;

If the analog device receives the response message within the second predetermined time, the secure connection established by the analog device with the real card manager is maintained.

The analog device does not receive the response information within the second preset time, which may be unstable between the analog device and the real card manager, or the real card manager is abnormal. At this time, the analog device and the real card manager are disconnected. The secure connection between the two ensures security; the analog device receives the response message within the second preset time, and the analog device maintains a secure connection with the real card manager, and does not need to be re-established when the analog device resumes the working mode. Secure connection for easy use.

Of course, in the heartbeat sleep mode, the user can also choose to manually disconnect the secure connection between the analog device and the real card manager, such as the operation of the analog device to log out from the real card manager, or the user performs a shutdown on the analog device. operating.

The following provides a way to update the real card information list on the analog device in the heartbeat sleep mode:

Method 3: After the simulation device is logged into the real card manager, the simulation device is in the heartbeat sleep mode, and the simulation device determines whether it is necessary to perform the update operation of the real card information list on the simulation device side:

In the heartbeat sleep mode, if the simulation device receives the response information within the second preset time, and the response information further includes the update prompt information, the simulation device stores the update prompt information; wherein the update prompt information is notified by the real card manager The real device card manager of the simulation device has the prompt information of the real card information list update of the real card manager.

The real card manager receives the update trigger request, performs the first processing on the real card manager end identification list by using the real card manager end secure transmission key, and sends the result to the simulation device;

Based on the above implementation manner of the third method, the real card manager determines whether the real card manager end identification list is consistent by sending the real card manager end identification list to the analog device, because the real card manager end identification list data amount is much smaller than the real card manager end real card information. List, therefore, reduces the amount of data transferred and increases the data transfer rate. The judgment rate of the analog device is increased. If the simulation device is used for the first time, the simulation device itself does not store the simulated device end identification list. At this time, after receiving the real card manager end identification list issued by the real card manager, the update request is directly sent for real card management. The device sends a real card manager-side real card information list to the simulation device.

Method 4: After the simulation device logs into the real card manager, the simulation device is in the heartbeat sleep mode, and the real card manager determines whether it is necessary to perform the update operation of the real card information list on the simulation device side:

In the heartbeat sleep mode, if the simulation device receives the response information within the second preset time, and the response information further includes the update prompt information, the simulation device stores the update prompt information; wherein the update prompt information is the real card management The device informs the simulation device that the real card manager has the prompt information of the real card manager list update of the real card information list.

After the analog device enters the working mode by the heartbeat sleep mode, the simulation device performs the first processing on the simulated device end identification list by using the simulated device-side secure transmission key, and then sends the result to the real card manager; specifically, the simulation device can be The heartbeat sleep mode enters the working mode: the analog device automatically enters the working mode after receiving the update prompt information, or the analog device receives the operation command input by the user (for example, an operation instruction for the user to input a key, etc.), and then enters the working mode. If the analog device is used for the first time or has never successfully downloaded the real card manager end identification list, the analog device end identification list is not stored in the simulation device. At this time, the simulation device uses the analog device side security transmission key pair preset. The identification is sent to the real card manager after the first processing.

The real card manager receives the data sent by the analog device, and performs second processing on the received data by using the real card manager secure transmission key, and determines the second processed data and the real card manager stored by the real card manager. Whether the end identification list is the same; specifically, the real card manager receives the preset identification, and is also determined to be different.

If not the same, the real card manager uses the real card manager-side secure transmission key to perform the first processing on the update command and the update data, and then sends the same to the analog device;

The simulation device receives the data sent by the real card manager, and performs a second process on the received data by using the simulated device-side secure transmission key, and updates the real card information list on the simulated device side. Specifically, updating the real card information list on the simulated device side may be performed by: adding, and/or deleting, the update instruction sent by the real card manager In addition to the instruction, the update data includes real card information that needs to be added or deleted, and after receiving the update instruction and the update data, the simulation device performs an addition and/or deletion operation on the simulated device side real card information list according to the update instruction and the update data; The update instruction sent by the real card manager includes an add and/or delete instruction, and the update data includes an identifier corresponding to the real card information that needs to be added or the real card information that needs to be deleted, and the simulation device receives the update instruction and the update data according to the update instruction. And updating the data to perform an add and/or delete operation on the simulated device side real card information list; or the update command sent by the real card manager includes a replacement instruction including the latest real card manager side real card information list, the simulation device After receiving the update instruction and the update data, the replacement operation is performed on the simulated device side real card information list according to the update instruction and the update data.

According to the above implementation manner of the fourth method, the simulation device determines whether the simulation device consistency identifier is sent by sending the simulation device end identification list to the real card manager, and the amount of data of the simulation device end identification list is far smaller than the real card information list of the simulation device end, thereby reducing The amount of data transmitted by the data increases the data transfer rate and also improves the judgment rate of the real card manager. If the simulation device is used for the first time, the simulation device itself does not store the simulated device end identification list. At this time, the preset identification is sent to the real card manager, so that the real card manager delivers the real card manager end identification list and The real card manager side lists the real card information to the simulation device, and the preset identifier may be an empty identifier, a predefined value, or a predefined character.

Sixth, binding:

In order to further improve the security of the data interaction, before the simulation device establishes a secure connection with the real card manager, the method may further include: performing a binding operation process between the simulation device and the real card manager;

The emulation device performs a binding operation with the real card manager:

In the present invention, the simulation device and the real card manager can be bound as follows:

The simulation device and the real card manager mutually authenticate each other's certificate and the identity of the other party, and after both parties have passed the authentication, each of the binding factors generated in the authentication process is stored.

In the following, a specific implementation manner of performing a binding operation between the simulation device and the real card manager is provided:

FIG. 8 is a flowchart of performing a binding operation between a simulation device and a real card manager in a data interaction method according to an embodiment of the present invention. Referring to FIG. 8, the binding operation performed by the simulation device and the real card manager includes:

The simulation device receives a trigger command for indicating binding with the real card manager; specifically, before the analog device is used, the boot device may be first powered on. At this time, optionally, the simulation device prompts the user to input a power-on password. And receiving the power-on password input by the user, verifying the correctness of the power-on password input by the user, and after verifying that the power-on password input by the user is correct, performing a power-on operation, and the simulation device enters the working mode. Optionally, the analog device is bound to the real card manager before using the emulation device to interact with the real card manager to improve the security of subsequent data interactions. The trigger command received by the simulation device for indicating that the simulation device is bound to the real card manager may be generated by a binding physical button separately set on the simulation device, or may be a binding on the touch screen of the analog device. The virtual button is generated, or may be generated after the power-on password is verified correctly, or may be generated after the emulation device is logged into the real card manager, or may be generated by selecting a binding function for the menu displayed on the emulation device screen. Of course, it can also be generated in any other way, and is not limited in the present invention.

The simulation device sends a first binding instruction to the real card manager, where the first binding instruction includes: a first binding random factor generated by the simulation device, an analog device certificate, and a simulated device unique identifier; specifically, the simulation device may pass The read/write interface (via the contactless interface or the contact interface) sends the first binding instruction to the real card manager, and the simulation device can also send the first binding instruction to the real card manager through the wireless interface, the former can improve the binding Security, which can improve the convenience of binding. The first binding instruction carries the first binding random factor to prevent the replay attack. The first binding instruction carries the emulation device certificate so that the real card manager authenticates the emulation device, and the first binding command carries the analog device uniquely. Identifying, so that the real card manager knows which analog device is bound thereto; wherein the first binding random factor may be a random number generated by the simulation device, a random character or a combination thereof, of course, after generating the first binding random factor, The randomness of the first bound random factor may be verified to improve the randomness of the first bound random factor to prevent cracking; the unique identifier of the simulated device may be any one of an analog device serial number, a device identifier, a MAC address, and the like. Or a combination thereof to uniquely identify the identity of the simulated device.

The real card manager receives the first binding instruction, and uses the root certificate to verify the simulated device certificate; specifically, the real card manager pre-stores the root certificate, and uses the root certificate to complete verification of the simulated device certificate to ensure subsequent Use the security of the simulated device certificate.

After the real card manager verifies that the emulation device certificate is legal, the second binding random factor is generated; specifically, the second binding random factor may be a random number generated by the real card manager, a random character or a combination thereof; After binding the random factor, the randomness of the second bound random factor can also be verified to improve the randomness of the second bound random factor and prevent the crack.

The real card manager encrypts the first binding random factor and the second binding random factor by using the analog device public key in the simulation device certificate to obtain the first binding ciphertext, and uses the real card manager private key to bind the first binding The random factor and the second binding random factor are signed to obtain the first binding signature; specifically, the real card manager encrypts the first binding random factor and the second binding random factor by using the analog device public key to ensure the first The security of the binding random factor and the second binding random factor transmission, the real card manager uses the real card manager private key to sign the first binding random factor and the second binding random factor to ensure that the subsequent simulation device can Authenticate the authenticity of the real card manager identity.

The real card manager sends a first binding response to the simulation device, where the first binding response includes: a first binding ciphertext, a first binding signature, a real card manager certificate, and a real card manager unique identifier; The first binding response sent by the real card manager carries the real card manager certificate to simulate the device to authenticate the real card manager, and the first binding response carries the real card manager unique identifier to simulate the device to know which one is true. The card manager is bound thereto; wherein the real card manager uniquely identifies any one or a combination of a real card manager serial number, a device identifier, a MAC address, etc. to uniquely identify the identity of the real card manager.

The simulation device receives the first binding response, and uses the root certificate to verify the real card manager certificate. Specifically, the simulation device pre-stores the root certificate, and uses the root certificate to complete verification of the real card manager certificate to ensure subsequent use of the real certificate. Card Manager Certificate Security.

After the simulation device verifies that the real card manager certificate is legal, the first binding ciphertext is decrypted by using the simulated device private key to obtain the first binding random decryption factor and the second binding random decryption factor; specifically, using the simulation device private The key decrypts the first bound ciphertext. If a data transmission error occurs in the data transmission, or a tampering occurs in the data transmission, the decryption may not be successfully decrypted, or the first bound random decryption factor and the decrypted The second bound random decryption factor is different from the first bound random factor and the second bound random factor. By encrypting the public key of the analog device, only the private key of the analog device can be successfully decrypted, thereby ensuring the security of data decryption.

The simulation device verifies the first binding signature by using the real card manager public key, the first binding random decryption factor and the second binding random decryption factor in the real card manager certificate; specifically, the simulation device uses the verification after passing The real card manager public key verifies the signature sent by the real card manager to ensure the legal source of the data.

After verifying that the first binding signature is correct, the simulation device verifies whether the first binding random decryption factor is the same as the first binding random factor; specifically, the simulation device verifies that the first binding random factor generated by itself is random with the first binding Decryption factor In the same way, it can be guaranteed that the data has not been tampered with, and the encrypted data source does send the object of the first binding random factor to the analog device.

After the simulation device verifies that the first binding random decryption factor is the same as the first binding random factor, prompting the real card manager to uniquely identify; specifically, the simulation device may display the real card manager unique identifier, or may play the voice (eg, speaker playback) Or through the earphone receiver, etc.) the real card manager unique identification, so that the user can confirm the authenticity of the real card manager, improve the security of the binding.

The simulation device receives a trigger command for confirming that the real card manager uniquely identifies, and uses the analog device private key to sign the first binding random factor and the second binding random decryption factor, obtain the second binding signature, and store the real a card manager unique identifier, a real card manager certificate, and an analog device end binding factor to the analog device end binding list, wherein the analog device end binding factor is a second binding random decryption factor; specifically, the analog device receives The trigger command for confirming that the real card manager is uniquely identified may be generated for the confirmation physical button that is separately set on the simulation device, or may be generated for the confirmation virtual button on the touch screen of the analog device, or on the simulated device screen. The displayed menu is selected by the confirmation function, or may be a voice confirmation indication received by the voice collection device (such as a microphone) of the simulation device and verified after the verification is passed, or may receive the fingerprint confirmation for the fingerprint collection device of the simulation device. Indicating and verifying the generated after the pass, or can be modeled The iris collection device of the device receives the iris confirmation indication and generates the verification after the verification, and of course, may be generated by any other means, which is not limited in the present invention; the first binding random factor is used by the simulation device private key and the first The second binding random decryption factor is signed for subsequent real card manager to authenticate the identity of the simulated device; of course, the simulation device can also store the simulated device-side binding list, which is used for recording and binding with the simulation device. The information about the real card manager, such as: the real card manager unique identifier, the real card manager certificate, etc. In addition, the simulated device-side binding list is also used to store the analog device-side binding factor, and the analog device is tied The fixed factor is the second bound random factor of the ciphertext transmission, and the second binding random factor is transmitted according to the ciphertext. Therefore, the analog device binding factor is safe and has not been tampered with.

The simulation device sends a second binding signature to the real card manager; specifically, the emulation device sends a second binding signature to the real card manager for the real card manager to authenticate the emulated device identity.

The real card manager receives the second binding signature, and verifies the second binding signature by using the simulated device public key, the first binding random factor, and the second binding random factor in the simulation device certificate; specifically, real card management The device verifies the signature sent by the analog device by using the simulated device public key after verification to ensure the legal source of the data.

After the real card manager verifies that the second binding signature is correct, the simulation device unique identifier, the simulation device certificate, and the real card manager binding factor are stored to the real card manager binding list, wherein the real card manager binding The factor is the second bound random factor. Specifically, the real card manager may also store a real card manager-end binding list for recording information related to the simulated device bound to the real card manager, for example: the only device of the simulation device Identification, simulation device certificate, etc. In addition, the real card manager binding list is also used The real card manager binding factor is stored, and the real card manager binding factor is a second binding random factor generated by the real card manager.

It can be seen that, based on the binding of the above simulation device and the real card manager, the security of data interaction between the subsequent simulation device and the real card manager can be ensured.

In addition, the operation of performing binding on the simulation device and the real card manager is not an essential step. According to the requirements of different application scenarios, the operation of performing binding on the simulation device and the real card manager may be selected.

Of course, the operation of performing the binding between the foregoing simulation device and the real card manager is not limited to the implementation provided above. For example, manual binding may also be adopted, that is, in a trusted environment, the input to be bound is input on the simulation device. The identity of the real card manager is used as the emulation device-side binding factor, and the real card manager defaults to the real card manager's identity as the real card manager-side binding factor; or enters the analog device to be bound on the real card manager. The identifier is used as the real card manager binding factor, and the identifier of the default device of the simulation device is used as the simulation device binding factor; or any random value is input on the simulation device as the simulation device binding factor, and input on the real card manager. The same random value as the real card manager binding factor and the like, as long as the simulation device and the real card manager can obtain the same binding factor should belong to the protection scope of the present invention.

Seven, data interaction:

method one:

When the analog device does not establish a secure connection with the real card manager, the data interaction can be performed as follows:

The simulation device acquires the first data and sends the first data to the real card manager; specifically, the simulation device may acquire the first data by: the simulation device receives the first data sent by the terminal; for example, during the data interaction process The analog device is connected to a terminal (for example, an ATM machine, a POS machine, a bus card recharge machine, etc.) (a contact interface or a contactless interface), and the analog device receives the first data sent by the terminal, and the first data may be Processed data (such as withdrawal amount, debit amount, real card information acquisition request, etc.). Of course, the simulation device can also acquire the first data by the simulation device generating the first data. In addition, the simulation device may also prompt the received first data and receive the confirmation message for confirming that the received first data is correct, and then send the first data to the real card manager; at this time, the simulation device may display the first A data, the first data can also be played by voice (such as speaker playback or through earphone handset), for the user to confirm whether the first data is correct, and only after correct, after receiving the confirmation instruction that the user inputs the correct first data confirmation The first data is sent to the real card manager; if the user confirms that the first data is incorrect, the data interaction can be directly canceled, thereby improving the security of the data interaction. The confirmation command received by the simulation device for confirming that the first data is correct may be generated for the confirmation physical button separately set on the simulation device, or may be generated for the confirmation virtual button on the touch screen of the simulation device, or on the simulation device screen The menu displayed above selects the function generated by the confirmation function, or can be a voice acquisition device (such as a microphone) of the analog device. The received voice confirmation indication is generated and verified after the verification, or may be generated after the fingerprint collection device of the simulation device receives the fingerprint confirmation indication and verified, or may receive the iris confirmation indication for the iris collection device of the simulation device. The verification is performed after the verification, and of course, it can also be generated in any other manner, and is not limited in the invention.

The real card manager receives the first data sent by the analog device and sends the first data to the selected real card. Specifically, the real card manager sends the first data to the selected real card, so that the selected real card processes the first data.

Method 2:

After the simulation device establishes a secure connection with the real card manager, the first data sent by the simulation device to the real card manager is first processed by using the simulated device-side secure transmission key, and the real card manager receives the first process. The first data is processed by the real card manager side secure transmission key.

This ensures the security of data interaction.

The following provides a data interaction method of the present invention after the analog device establishes a secure connection with the real card manager, but the present invention is not limited thereto:

The simulation device acquires the first data, and performs the first processing on the received first data by using the simulated device-side secure transmission key, and then sends the first data to the real card manager. Specifically, the simulation device may acquire the first data by using the following method: The device receives the first data sent by the terminal; for example, in the process of data interaction, connecting the analog device with a terminal (such as an ATM machine, a POS machine, a bus card recharge machine, etc.) (contact interface or contactless interface), simulating Device reception The first data sent by the terminal, the first data may be data to be processed (for example, a withdrawal amount, a deduction amount, a real card information acquisition request, etc.). Of course, the simulation device can also acquire the first data by the simulation device generating the first data. In addition, after receiving the first data sent by the terminal, and receiving the confirmation instruction for confirming that the received first data is correct, the analog device performs the first processing on the first data by using the simulated device-side secure transmission key, and then sends the message to the real Card manager, at this time, the simulation device can display the first data, or can play the first data in a voice (for example, speaker playback or through the earphone handset), so that the user can confirm whether the first data is correct, only after correct, After receiving the correct confirmation command input by the user to confirm the first data, the first data is sent to the real card manager; if the user confirms that the first data is incorrect, the data interaction can be directly canceled, thereby improving The security of data interaction. The confirmation command received by the simulation device for confirming that the first data is correct may be generated for the confirmation physical button separately set on the simulation device, or may be generated for the confirmation virtual button on the touch screen of the simulation device, or on the simulation device screen In the menu displayed above, the confirmation function is selected, or the voice confirmation indication received by the voice collection device (such as a microphone) of the simulation device may be generated and verified after the verification, or the fingerprint collection device of the simulation device may receive the fingerprint. The confirmation indication and the verification are generated, or may be generated after the iris collection device of the simulation device receives the iris confirmation indication and the verification is generated. Of course, it may be generated in any other manner, which is not limited in the present invention.

The real card manager receives the data sent by the analog device, and performs second processing on the received data by using the real card manager secure transmission key, and then sends the data to the selected real card; specifically, the real card manager will be processed. The data is sent to the selected real card, so that the selected real card processes the data to be processed.

In the data transmission process, the data interaction between the simulation device and the real card manager is performed by the secure transmission key for encryption, decryption and/or verification operations, thereby ensuring the security and integrity of the data transmission.

In addition, in actual application, if the data processed by the real card needs to be returned to the simulation device, the real card manager of the embodiment of the present invention also receives the second data sent by the real card, and sends the second data to the simulation. Device. Therefore, the solution that the real card obtains the second data obtained by processing the first data to the simulation device can be realized, and the application of the embodiment of the present invention is expanded. Of course, if you still need to return the data processed by the real card to the terminal For the line processing, the simulation apparatus of the embodiment of the present invention may further send the second data to the terminal.

In addition, when the data that needs to be processed by the real card is returned to the real card manager of the simulation device, the second data sent to the simulation device can also be sent after the first processing by using the real card manager secure transmission key, and the simulation is performed. After receiving the first processed second data, the device may also perform the second processing by using the simulated device-side secure transmission key. Of course, when the data processed by the real card needs to be returned to the terminal for processing, the simulation device receives the second data after the first processing, and after performing the second processing by using the simulated device-side secure transmission key, the simulation device will be the second The processed data is sent to the terminal.

Eight, recharge:

With the data interaction architecture of the present invention, operations such as recharging (such as bus card, water card, electric card recharge, etc.) can also be implemented, so that the user can carry out the charging of a plurality of different types of real cards only by carrying the simulation device of the present invention. It is convenient for users to carry, avoiding the loss of assets caused by the loss of real cards.

A specific refilling process is provided below, but the invention is not limited to this:

The simulation device prompts the real device card list of the simulation device end; specifically, the simulation device displays the real card information list of the simulation device end by using the display device itself or by the external display device, or the simulation device utilizes its own voice playback device or by means of an external voice playback device Voice playback (such as speaker playback or earphone handset playback) simulates a real card information list on the device side, so that the user can select the real card to be used for recharging according to the real card information list on the analog device side, which is convenient for the user to select and enhance the user experience. .

The simulation device receives the real card selection instruction to determine the selected real card; and the simulation device receives the data sent by the refill terminal, and performs the first processing on the received data by using the simulated device-side secure transmission key, and then sends the data to the real card manager; Specifically, the real card selection instruction received by the simulation device may be generated by selecting a physical button separately set on the simulation device, or may be generated by selecting a virtual button on the touch screen of the simulation device, or may be The menu item representing the selection function is selected in the menu displayed on the screen of the simulation device. The simulation device receives the real card selection instruction, determines the selected real card, and the simulation device implements data transmission via the real card manager and the selected real card. In addition, during the recharging process, the analog device is connected to a recharging terminal (such as a recharger or the like) (the contact interface or the non-contact interface), and the analog device receives the data sent by the refill terminal, and the data may be the recharge data to be processed. (such as recharge amount, etc.), so that subsequent users can confirm whether the pending recharge data is correct. In addition, before the analog device receives the to-be-charged data to be processed sent by the refill terminal, the simulation device may further receive the real card information request sent by the refill terminal to obtain the selected real card, and use the simulated device-side secure transmission key pair to receive the received The data is sent to the real card manager after the first processing, and the real card manager receives the data sent by the analog device, and performs the second processing on the received data by using the real card manager secure transmission key, and then sends the data to the selected real. The card, the selected real card receives the data sent by the real card manager, and sends the obtained real card information to the real card manager, and the real card manager receives the data sent by the selected real card, and uses the real card manager end The secure transmission key performs the first processing on the received data and then sends the data to the analog device, and the analog device receives the data sent by the real card manager, and performs the second processing on the received data by using the simulated device-side secure transmission key. To the recharge terminal, thereby obtaining the recharge terminal Real card information selected real cards for subsequent recharge for the real card. In addition, after receiving the data sent by the refill terminal, the simulation device may also present the received data and receive an acknowledgment command for indicating that the received data is correct, and then use the analog device-side secure transmission key to perform the received data. After being processed, the device sends the data to the real card manager. Specifically, the simulation device can display the recharge data to be processed, and can also play the recharge data to be processed by voice playback (such as speaker playback or through earphone handset playback) for the user to confirm. Whether the processed recharge data is correct, and only after correct, after receiving the correct confirmation instruction input by the user indicating that the recharge data to be processed is correct, the recharge data to be processed is sent to the real card manager; if the user confirms the pending If the recharge data is incorrect, you can cancel the recharge directly, so as to improve the security of recharge. The confirmation command received by the simulation device for indicating that the received data is correct may be generated by a confirmation physical button that is separately set on the simulation device, or may be generated for a confirmation virtual button on the touch screen of the simulation device, or in an analog device. The menu displayed on the screen selects the function generated by the confirmation function, or may be the voice confirmation indication received by the voice acquisition device (such as a microphone) of the analog device and verified after the verification is passed, or may be received by the fingerprint collection device of the simulation device. The fingerprint confirmation indication and the verification are generated, or may be generated after the iris collection device of the simulation device receives the iris confirmation indication and the verification is generated. Of course, it may be generated in any other manner, which is not limited in the present invention.

The real card manager receives the data sent by the analog device, and performs second processing on the received data by using the real card manager secure transmission key, and then sends the data to the selected real card; specifically, the real card manager will be processed. The recharge data is sent to the selected real card, so that the selected real card processes the recharged data to be processed (for example, performing a refill operation).

Based on the above recharging process, a variety of different types of real card functions can be realized by an analog device. When the user recharges, the user only needs to carry the analog device, and the recharging can be completed without carrying the real card, thereby improving the convenience and security of recharging.

The simulation device can prompt the information to be confirmed during the recharging process, so that the user can confirm the information to be confirmed in the recharging process and then perform the recharging, thereby ensuring the authenticity of the recharging and improving the security.

In addition, since the real card matching the recharge terminal can be selected, the unnecessary expenses (such as bank interbank withdrawal fee, etc.) generated by the user in the prior art that the real card matching the recharge terminal is not carried can be solved.

Nine, the transaction:

By using the data interaction architecture of the present invention, operations such as transactions (such as ATM machine withdrawal transfer, POS card swipe, etc.) can also be implemented, so that the user can carry only a plurality of different types of real card transactions by carrying only the simulation device of the present invention. The user carries it, avoiding the loss of assets caused by the loss of real cards.

A specific transaction flow is provided below, but the invention is not limited to this:

The simulation device receives the real card selection instruction to determine the selected real card; and the simulation device receives the data sent by the transaction terminal, and uses the simulated device-side secure transmission key to perform the first processing on the received data and then send it to the real The card manager; in particular, the real card selection command received by the simulation device may be generated by selecting a physical button separately set on the simulation device, or may be generated for selecting a virtual button on the touch screen of the simulation device, or may be The menu item displayed on the screen of the simulation device is selected from the menu item indicating the selection function. The simulation device receives the real card selection instruction, determines the selected real card, and the simulation device implements data transmission via the real card manager and the selected real card. In addition, during the transaction process, the simulation device is connected to a transaction terminal (for example, an ATM machine, a POS machine, etc.) (contact interface or contactless interface), and the simulation device receives data sent by the transaction terminal, and the data may be pending Transaction data (such as withdrawal amount, deduction amount, etc.), so that subsequent users can confirm whether the transaction data to be processed is correct. In addition, before receiving the transaction data to be processed sent by the transaction terminal, the simulation device may further receive a real card information request sent by the transaction terminal to obtain the selected real card, and perform the received data by using the simulated device-side secure transmission key. After the first processing is sent to the real card manager, the real card manager receives the data sent by the analog device, and performs the second processing on the received data by using the real card manager secure transmission key, and then sends the data to the selected real card. The selected real card receives the data sent by the real card manager, and sends the obtained real card information to the real card manager, and the real card manager receives the data sent by the selected real card, and uses the real card manager to transmit securely. The key performs the first processing on the received data and sends the data to the analog device, and the analog device receives the data sent by the real card manager, and performs the second processing on the received data by using the simulated device-side secure transmission key, and then sends the data to the transaction. Terminal, whereby the transaction terminal obtains the selected Real cards real card information, so that subsequent transaction for the real card. In addition, after receiving the data sent by the transaction terminal, the simulation device may also present the received data, and after receiving the confirmation instruction for indicating that the received data is correct, the analog device transmits the received data to the received data. After processing, it is sent to the real card manager; specifically, the simulation device can display the transaction data to be processed, and can also play the transaction data to be processed by voice playback (for example, speaker playback or through earphone handset, etc.) for the user to confirm the waiting. Whether the transaction data processed is correct, and only after correct, after receiving the correct confirmation instruction input by the user indicating that the transaction data to be processed is correct, the transaction data to be processed is sent to the real card manager; if the user confirms the pending If the transaction data is incorrect, you can cancel the transaction directly, thereby improving the security of the transaction. The confirmation command received by the simulation device for indicating that the received data is correct may be generated by a confirmation physical button that is separately set on the simulation device, or may be generated for a confirmation virtual button on the touch screen of the simulation device, or in an analog device. The menu displayed on the screen selects the function generated by the confirmation function, or may be the voice confirmation indication received by the voice acquisition device (such as a microphone) of the analog device and verified after the verification is passed, or may be received by the fingerprint collection device of the simulation device. The fingerprint confirmation indication and the verification are generated, or may be generated after the iris collection device of the simulation device receives the iris confirmation indication and the verification is generated. Of course, it may be generated in any other manner, which is not limited in the present invention.

The real card manager receives the data sent by the analog device, and performs the second processing on the received data by using the real card manager secure transmission key, and then sends the data to the selected real card; specifically, the real card manager will be processed The transaction data is sent to the selected real card, so that the selected real card processes the transaction data to be processed.

The selected real card receives the data sent by the real card manager, and sends the data obtained after the transaction processing to the real card manager after the transaction processing; specifically, the selected real card performs transaction processing on the transaction data to be processed, The transaction processing is a transaction processing scheme of an existing smart card, and will not be described herein.

The real card manager receives the data sent by the selected real card, and performs the first processing on the received data by using the real card manager secure transmission key, and then sends the data to the analog device;

The simulation device receives the data sent by the real card manager, and performs second processing on the received data by using the simulated device-side secure transmission key, and then sends the data to the transaction terminal. Specifically, after receiving the data processed by the real card transaction, the transaction terminal can complete the transaction according to the existing transaction process, such as withdrawing money, transferring money, and deducting the card.

Based on the above transaction process, a variety of different types of real card functions can be realized by one simulation device. When the user conducts a transaction, only the simulation device is carried, and the transaction can be completed without carrying a real card, thereby improving transaction convenience and security.

The simulation device can prompt the information that needs to be confirmed during the transaction process, thereby the user can confirm the information that needs to be confirmed in the transaction process and then execute the transaction, thereby ensuring the authenticity of the transaction and improving the security.

In addition, since the real card matching the transaction terminal can be selected, the unnecessary expenses (such as bank interbank withdrawal fee, etc.) generated by the user in the prior art that the real card matched with the transaction terminal is not carried can be solved.

Of course, the above specific implementation only discloses a single data interaction from a transaction terminal to a real card, a real card to a transaction terminal. In actual applications, there may be multiple data interactions, and the interaction process is similar to the above single data interaction. In the secondary data interaction, whether the interactive data is prompted at the simulation device can be set according to whether the interactive data needs confirmation to ensure the authenticity of the interaction data.

Ten, application update:

1. Simulator application update:

In the present invention, the simulation device can also update an application that has been installed by itself or install a new application to expand various applications of the simulation device or upgrade an existing application of the simulation device:

The present invention provides a specific implementation scheme for simulating device application update, but the present invention is not limited to this:

Figure 9 shows a flow chart of a simulated device application update. Referring to Figure 9, the simulated device application update includes:

The simulation device transmits at least the simulation device certificate to the update platform; specifically, the secure update platform is separately set to complete the update of the simulation device application. The simulation device sends the simulation device certificate to the update platform, so that the update platform knows which simulation device needs to be updated, and can also verify the identity of the simulation device; the simulation device can also The application identification to be updated or other information that informs the update platform that the application needs to be updated or downloaded is sent to the update platform so that the update platform knows which application installation package needs to be sent to the simulation device.

The update platform generates a first update encryption key; specifically, the update platform itself generates an update encryption key for encrypting the application installation package, and the update encryption key generated each time the application update is performed may be the same or different, different It can prevent being cracked and improve security.

The update platform encrypts the simulation device application installation package by using the first update encryption key to obtain the first installation package ciphertext; specifically, the update platform encrypts the simulation device application installation package by using the generated update encryption key, thereby ensuring the simulation device The security of the application installation package transfer.

The update platform uses the update platform private key to sign the first installation package ciphertext to obtain the first installation package signature; specifically, the update platform signs the first installation package ciphertext, so that the subsequent simulation device verifies the identity of the update platform.

The update platform encrypts the first update encryption key by using the analog device public key in the simulation device certificate to obtain the first update encryption key ciphertext; specifically, the update platform uses the simulation device public key encryption to update the encryption key, and the update encryption can be guaranteed. The security of key transmission, at the same time, ensures that only the analog device can decrypt the updated encryption key and improve the security of the application installation package transmission.

The update platform sends the simulation device update information to the simulation device, where the simulation device update information includes: an update platform certificate, a first installation package ciphertext, a first installation package signature, and a first update encryption key ciphertext; specifically, updating The updated information sent by the platform carries the updated platform certificate, so that the simulation device authenticates the update platform, and the update information carries the first installation package ciphertext to ensure the security of the application installation package transmission, and the update information carries the first installation package signature to ensure The subsequent simulation device can authenticate the validity of the update platform identity, and the update information carries the updated encryption key ciphertext to ensure the security of the update encryption key transmission.

The simulation device receives the simulation device update information, and uses the root certificate to verify the update platform certificate. Specifically, the simulation device stores the root certificate in advance, and uses the root certificate to complete the verification of the updated platform certificate to ensure the security of the subsequent update platform certificate.

After the simulation device verifies that the update platform certificate is passed, the first installation package signature is verified by using the update platform public key in the update platform certificate; specifically, the simulation device uses the update platform public key pair update in the updated platform certificate after the verification is passed. The signature sent by the platform is verified to ensure the legal source of the data.

After the simulation device verifies that the first installation package is correctly signed, decrypting the first update encryption key ciphertext by using the simulation device private key to obtain the first decryption key; specifically, the simulation device decrypts the decryption key by using the simulated device private key, so that Subsequent decryption of the installation package ciphertext to obtain the simulation device application installation package.

The simulation device decrypts the first installation package ciphertext by using the first decryption key to obtain a simulation device application installation package;

The simulation device verifies that the data format of the simulation device application installation package is correct; specifically, the simulation device also verifies whether the data format of the simulation device application installation package is correct, if the data format of the simulation device application installation package is If the type is incorrect, the installation operation will not be performed. If the data format of the simulation device application installation package is correct, the installation is performed.

If the simulation device verifies that the data format of the simulation device application installation package is correct, the simulation device is installed according to the simulation device application installation package. Specifically, if the emulation device updates the installed application, it can overwrite the installed application, or upgrade the installed application, or uninstall the installed application before executing the new application. The installation of the program, if the emulation device is a newly installed application, you can install the application directly.

The update of the application by the simulation device according to the present invention can update the installed application or download the new application and install, which expands the function of the simulation device and is convenient for the user to use.

2. Real Card Manager Application Update:

In the present invention, the real card manager can also update the application that has already been installed or install a new application, in order to expand the various applications of the real card manager or upgrade the existing application of the real card manager:

The present invention provides a specific implementation of a real card manager application update, but the invention is not limited to this:

Figure 10 shows a flow diagram of a real card manager application update, see Figure 10, the real card manager application update includes:

The real card manager sends at least the real card manager certificate to the update platform; specifically, a secure update platform is set separately to complete the update of the real card manager application. The real card manager sends the real card manager certificate to the update platform so that the update platform knows which real card manager needs to be updated, and can also verify the identity of the real card manager; the real card manager can also apply the application that needs to be updated. The program identification or other information that informs the update platform that the application needs to be updated or downloaded is sent to the update platform so that the update platform knows which application installation package needs to be sent to the real card manager.

The update platform generates a second update encryption key; specifically, the update platform itself generates an update encryption key for encrypting the application installation package, and the update encryption key generated each time the application update is performed may be the same or different, different It can prevent being cracked and improve security.

The update platform encrypts the real card manager application installation package by using the second update encryption key to obtain the second installation package ciphertext; specifically, the update platform encrypts the real card manager application installation package by using the generated update encryption key, This ensures the security of the real card manager application installation package transmission.

The update platform signs the second installation package ciphertext by using the update platform private key to obtain the second installation package signature; specifically, the update platform signs the second installation package ciphertext, so that the subsequent real card manager performs the identity of the update platform. verification.

The update platform encrypts the second update encryption key by using the real card manager public key in the real card manager certificate to obtain the second update encryption key ciphertext; specifically, the update platform uses the real card manager public key encryption to update the encryption key. The key can guarantee the security of updating the encryption key transmission, and at the same time, ensure that only the real card manager can decrypt the update encryption key and improve the security of the application installation package transmission.

The update platform sends the real card manager update information to the real card manager, wherein the real card manager update information includes: an update platform certificate, a second installation package ciphertext, a second installation package signature, and a second update encryption key Specifically, the update information sent by the update platform carries the update platform certificate for the real card manager to authenticate the update platform, and the update information carries the second installation package ciphertext to ensure the security of the application installation package transmission, and the update information is included in the update information. The second installation package signature is carried to ensure that the subsequent real card manager can authenticate the validity of the update platform identity, and the update information carries the updated encryption key ciphertext to ensure the security of the encryption key transmission.

The real card manager receives the real card manager update information, and verifies the update platform certificate by using the root certificate; specifically, the real card manager pre-stores the root certificate, and uses the root certificate to complete verification of the updated platform certificate to ensure subsequent use of the update platform. The security of the certificate.

After the real card manager verifies that the update platform certificate is passed, the second installation package signature is verified by using the updated platform public key in the update platform certificate; specifically, the real card manager uses the update platform in the updated platform certificate after the verification is passed. The public key verifies the signature sent by the update platform to ensure the legal source of the data.

After the real card manager verifies that the second installation package is correctly signed, the second update encryption key ciphertext is decrypted by using the real card manager private key to obtain a second decryption key; specifically, the real card manager uses the real card manager to privately The key decrypts the decryption key to subsequently decrypt the installation package ciphertext to obtain the real card manager application installation package.

The real card manager decrypts the second installation package ciphertext by using the second decryption key to obtain a real card manager application installation package;

The real card manager verifies that the data format of the real card manager application installation package is correct; specifically, the real card manager also verifies that the data format of the real card manager application installation package is correct, if the real card manager application is installed If the data format of the package is incorrect, the installation operation will not be performed. If the data format of the real card manager application installation package is correct, the installation is performed.

If the real card manager verifies that the data format of the real card manager application installation package is correct, the real card manager is installed according to the real card manager application installation package. Specifically, if the real card manager updates the installed application, you can overwrite the installed application, upgrade the installed application, or uninstall the installed application before proceeding with the new one. The installation of the application, if the real card manager is a newly installed application, you can install the application directly.

The real card manager based on the invention updates the application, and can update the installed application, download the new application and install it, and expand the function of the real card manager to facilitate the user.

Real card manager side

FIG. 11 is a flowchart of another data interaction method according to an embodiment of the present invention. Referring to FIG. 11, the data interaction method of the present invention includes:

The real card manager obtains a real card manager side real card information list, wherein the real card manager side real card information list includes real card information of the real card connected with the real card manager;

The real card manager prompts the real card manager to have a real card information list;

The real card manager receives the real card selection instruction to determine the selected real card; and the simulation device acquires the first data and sends the first data to the real card manager;

The real card manager receives the first data sent by the analog device and sends the first data to the selected real card.

Before the real card manager obtains the real card information list of the real card manager, the real card manager performs the generation and update of the real card information list of the real card manager. For details, refer to the description in the embodiment on the simulation device side. No longer.

Second, determine the selected real card:

The real card manager obtains a real card manager side real card information list, wherein the real card manager side real card information list includes real card information of the real card connected to the real card manager;

The real card manager prompts the real card manager to have a real card information list; specifically, the real card manager uses its own display device or displays the real card manager real card information list by means of an external display device, or the real card manager utilizes itself The voice playing device or the actual card manager side real card information list by means of external voice playing device voice playing (such as speaker playing or through earphone handset playing, etc.) for the user to select and trade according to the real card manager side real card information list. The real card you need to use is convenient for users to choose and enhance the user experience.

The real card manager receives the real card selection instruction to determine the selected real card; specifically, the real card selection instruction received by the real card manager may be generated by selecting a physical button separately set on the real card manager, or may be authentic The selection of the virtual button on the touch screen of the card manager may be generated by selecting a menu item representing the selection function in the menu displayed on the real card manager screen. The real card manager receives the real card selection command, determines the selected real card, and the simulation device implements data transmission via the real card manager and the selected real card. In addition, the selected real card can be determined by: the real card manager receiving the true The real card selection instruction acquires the selected identifier, wherein the selected identifier is used to indicate the selected real card; the real card manager determines the selected real card corresponding to the selected identifier from the real card connected with the real card manager according to the selected identifier. Wherein, the selected identifier may be part or all of the information in the real card information, for example: card number and/or real card manager read and write port identifier; after the real card manager obtains the selected identifier, it may be true on the real card manager side; The real card manager read/write port identifier corresponding to the selected identifier is found in the card information list, so that the real card manager determines its read/write port, thereby performing data interaction with the selected real card through the read/write port.

In addition, the IO interface of the real card manager is specifically described in the embodiment on the analog device side, and details are not described herein again.

Third, data interaction:

The simulation device acquires the first data and sends the first data to the real card manager; specifically, the simulation device may acquire the first data by: the simulation device receives the first data sent by the terminal; for example, during the data interaction process The analog device is connected to a terminal (for example, an ATM machine, a POS machine, a bus card recharge machine, etc.) (a contact interface or a contactless interface), and the analog device receives the first data sent by the terminal, and the first data may be Processed data (such as withdrawal amount, debit amount, real card information acquisition request, etc.). Of course, the simulation device can also acquire the first data by the simulation device generating the first data.

The real card manager receives the first data sent by the analog device and sends the first data to the selected real card. Specifically, the real card manager sends the first data to the selected real card, so that the selected real card processes the first data. After the selected real card receives the first data, the first data may be processed, and the processing is a scheme for processing the existing smart card, and details are not described herein again. In addition, the real card manager may also prompt the first data after receiving the first data, and receive a confirmation instruction for confirming that the first data is correct, and send the first data to the selected real card; The manager can display the first data, or can play the first data by voice (for example, speaker playback or through the earphone handset), for the user to confirm whether the first data is correct, and only after correct, receive the user input confirmation first. After the data is correctly confirmed, the first data is sent to the real card; if the user confirms that the first data is incorrect, the data interaction can be directly canceled, thereby improving the security of the data interaction. The confirmation command received by the real card manager for confirming that the first data is correct may be generated by a confirmation physical button that is separately set on the real card manager, or may be generated for the confirmation virtual button on the touch screen of the real card manager. Or select the confirmation function generated in the menu displayed on the real card manager screen, or may receive the voice confirmation indication received by the real card manager's voice collection device (such as a microphone) and verify the generated after the pass, or may The fingerprint collection device of the real card manager receives the fingerprint confirmation indication and verifies the generated after the verification, or may be generated by the iris collection device of the real card manager after receiving the iris confirmation indication and verifying the passage, and of course, may be other Any form generated is not limited in the present invention. For example, when the first data is the transaction amount, The real card manager also displays the real transaction amount to the user. After the user confirms and presses the confirmation button, it is sent to the real card to perform corresponding operations to ensure the authenticity of the first data.

Based on the above data interaction process, a variety of different types of real card functions can be realized by one simulation device. When the user performs data interaction, the analog device can be used instead of the real card to be recharged, thereby improving convenience and security. .

Of course, the above specific implementation only discloses a single data interaction from the simulation device to the real card. In practical applications, there may be multiple data interactions, and the interaction process is similar to the single data interaction described above.

Fourth, the establishment of a secure connection:

The invention may further comprise a process of establishing a secure connection between the real card manager and the simulation device, obtaining a real card manager security transmission key for secure data transmission between the real card manager and the simulation device, and simulating the secure transmission key of the device end. .

The real card manager establishes a secure connection with the analog device, and obtains a real card manager secure transmission key and an analog device-side secure transmission key for secure data transmission between the real card manager and the analog device:

In the present invention, the real card manager and the emulation device can establish a secure connection by:

Method 1: The real card manager and the emulation device mutually authenticate each other's identity (for example, mutually authenticate each other's signature data), and compare each other's stored binding factors in the process of mutually authenticating each other's identity, and compare the stored bindings of the two parties. After the factors are the same and the mutual authentication is passed, a secure transmission key (real card manager security transmission key and analog device security transmission key) for realizing data security transmission between the real card manager and the simulation device is generated.

It is worth noting that if the real card manager and the emulation device establish a secure connection before the real card manager and the emulation device establish a mutual authentication certificate and the identity of the other party, and after both parties pass the authentication, they are stored in the authentication process. In the binding mode of the generated binding factor, in the first mode, the real card manager and the emulation device mutually authenticate each other's identity, that is, the real card manager and the emulation device mutually authenticate each other's identity.

FIG. 12 is a flowchart of a method for establishing a secure connection between a real card manager and an analog device in a data interaction method according to an embodiment of the present invention. Referring to FIG. 12, establishing a secure connection between a real card manager and an analog device includes:

The real card manager sends a first secure connection instruction for instructing to establish a secure connection to the emulation device, wherein the first secure connection command comprises: the real card manager utilizing the emulated device public key in the emulation device certificate to the real card manager end The first connection ciphertext obtained by encrypting the binding factor and the generated first connection random factor, and the real card manager uses the real card manager private key to sign the real card manager binding factor and the first connection random factor The first connection signature; in particular, before the data interaction with the simulation device is performed using the real card manager, optionally, a secure connection is established between the real card manager and the simulation device to improve the security of subsequent data interaction. The first secure connection instruction received by the real card manager for indicating the establishment of the secure connection may be generated by a physical button connected to the real card manager, or may be a connection on the touch screen of the real card manager. The virtual button is generated, or it can be generated after the power-on password is verified correctly, or it can be generated by selecting the connection function in the menu displayed on the real card manager screen, or the real card manager can be obtained in the real card manager. A list of real card information that the user generates after selecting the real card. Of course, it can also be generated in any other manner, and is not limited in the present invention. The first connection random factor may be a random number generated by a real card manager, a random character, or a combination thereof. Of course, after generating the first connection random factor, the randomness of the first connection random factor may also be verified, Increasing the randomness of the first connection random factor to prevent cracking; specifically, the real card manager encrypts the real card manager binding factor and the first connection random factor by using the analog device public key to ensure the real card manager end The binding factor and the security of the first connection random factor transmission, the real card manager uses the real card manager private key to sign the real card manager binding factor and the first connection random factor to ensure that the subsequent simulation device can The authenticity of the real card manager identity is authenticated. Sending the real card manager binding factor to the simulation device, so that the subsequent simulation device determines whether the real card manager binding factor is the same as the stored binding factor, thereby determining whether the real card manager and the simulation device are Bind. Optionally, before the step, after the real card manager detects the simulation device, the real card manager can determine whether the simulation device is in the real card manager binding list, for example, the following manner can be determined: the real card The manager receives the simulated device information sent by the analog device (eg, the simulated device unique identifier and/or the simulated device certificate, etc.), and determines, according to the received simulated device information, whether the simulated device is in the real card manager binding list; and / or can be judged by the simulation device whether the real card manager is in the simulated device-side binding list, for example, can be judged by: the real card manager will be the real card manager information (such as the real card manager unique identification and / or a real card manager certificate, etc.) is sent to the simulation device, and the simulation device determines, according to the received real card manager information, whether the real card manager is in the binding list of the simulated device; only when judging that the other party is tied in itself After the list is completed, the subsequent process is executed, the process is optimized, and the process is improved. effectiveness.

The simulation device receives the first secure connection instruction, and decrypts the first connection ciphertext by using the analog device private key to obtain The real card manager end binds the decryption factor and the first connection random decryption factor; specifically, the first connection ciphertext is decrypted by using the analog device private key, if a data transmission error occurs in the data transmission, or in the data transmission If tampering occurs, it will result in unsuccessful decryption, or the decrypted real card manager-side binding decryption factor and the first connection random decryption factor are different from the real card manager-side binding factor and the first connection random factor. By encrypting the public key of the analog device, only the private key of the analog device can be successfully decrypted, thereby ensuring the security of data decryption.

The simulation device verifies the first connection signature by using the real card manager public key in the real card manager certificate, the real card manager binding decryption factor, and the first connection random decryption factor; specifically, the simulation device utilizes real card management The public key verifies the signature sent by the real card manager to ensure the legal source of the data.

After the simulation device verifies that the first connection signature is correct, it is verified whether the real card manager end binding decryption factor is the same as the simulated device end binding factor; specifically, the simulation device also verifies whether the decrypted real card manager end binding decryption factor is Whether the simulation device end binding factor stored by the simulation device itself is the same, if the same, it indicates that the real card manager has completed the binding operation before establishing a secure connection with the analog device, and based on this, the simulation device can judge the real Whether the card manager is bound to the emulation device.

After the simulation device verifies that the real card manager binding binding factor is the same as the analog device binding factor, generating a second connection random factor; specifically, the second connection random factor may be a random number generated by the simulation device, a random character, or Combination, of course, after generating the second connection random factor, the randomness of the second connection random factor may also be verified to improve the randomness of the second connection random factor to prevent cracking.

The simulation device encrypts the first connection random decryption factor and the second connection random factor by using a real card manager public key in the real card manager certificate to obtain a second connection ciphertext, and uses the simulation device private key to the first connection random decryption factor And the second connection random factor is signed to obtain the second connection signature; specifically, the simulation device encrypts the first connection random decryption factor and the second connection random factor by using the real card manager public key to ensure the first connection random decryption factor and The security of the second connection random factor transmission, the simulation device uses the simulation device private key to sign the first connection random decryption factor and the second connection random factor to ensure that the subsequent real card manager can authenticate the validity of the analog device identity. .

The simulation device sends a first secure connection response to the real card manager, where the first secure connection response includes: a second connection ciphertext and a second connection signature; specifically, the simulation device signs the second connection ciphertext and the second connection signature Send to the real card manager so that the real card manager can decrypt and verify the received data.

The real card manager receives the first secure connection response, decrypts the second connected ciphertext by using the real card manager private key, and obtains the decrypted first connection random decryption factor and the second connection random decryption factor; specifically, using the real The card manager private key decrypts the second connection ciphertext. If a data transmission error occurs in the data transmission, or tampering occurs in the data transmission, the decryption may not be successful, or the decrypted first connection may be randomly decrypted. Cause The sub-and second connected random decryption factors are different from the first connected random factor and the second connected random factor. The encryption is performed by the real card manager public key, and only the real card manager private key can be successfully decrypted, thereby ensuring the security of data decryption.

The real card manager verifies the second connection signature by using the analog device public key in the simulation device certificate, the decrypted first connection random decryption factor and the second connection random decryption factor; specifically, the real card manager utilizes the analog device public The key verifies the signature sent by the emulated device to ensure the legal source of the data.

After the real card manager verifies that the second connection signature is correct, it is verified whether the decrypted first connection random decryption factor is the same as the first connection random factor; specifically, the real card manager verifies the first connection random factor generated by itself and after decryption The first connection random decryption factor is the same, which can ensure that the data has not been tampered with, and the encrypted data source does send the first connection random factor object to the real card manager.

After the real card manager verifies that the decrypted first connection random decryption factor is the same as the first connection random factor, at least the second connection random decryption factor is used to generate a real card manager secure transmission key between the real card manager and the simulation device. The simulation device generates the simulated device-side secure transmission key between the real card manager and the simulation device using at least the second connection random factor. Specifically, the real card manager may generate a real card manager secure transmission key between the real card manager and the simulation device by using the second connection random decryption factor, or may use the first connection random factor and the second connection random decryption factor. Generating a real card manager-side secure transmission key between the real card manager and the emulation device, and also generating a real card manager using the first connection random factor, the second connection random decryption factor, and the real card manager binding factor The real card manager side of the simulation device securely transmits the key; similarly, the simulation device can also generate the simulated device-side secure transmission key between the real card manager and the analog device by using the second connection random factor, or can use the first Connecting the random decryption factor and the second connection random factor to generate an analog device-side secure transmission key between the real card manager and the simulation device, and also using the first connection random decryption factor, the second connection random factor, and the simulated device-side binding factor Generate a model between the real card manager and the emulation device Transmission apparatus side security key; true as long as the card manager and the same simulation device using the same security algorithm parameters to generate the transport key. Therefore, in the present invention, the secure transmission key factor may be a second connection random decryption factor or a second connection random decryption factor and a first connection random factor at the real card manager end; the secure transmission key factor is simulated The device end may be a second connection random factor, or a second connection random factor and a first connection random decryption factor. In addition, the secure transmission key may include an encryption and decryption key and/or a verification key. The encryption and decryption key may participate in the data transmission to ensure the security of the data transmission, and the data transmission may be ensured by using the verification key to participate in the data transmission. Integrity, in the present invention, the secure transmission key can be selectively used in accordance with the security level of the transmitted data.

Of course, in the present invention, the step of the analog device generating the secure device-side secure transmission key between the real card manager and the simulation device using at least the second connection random factor is not limited to the steps in the first mode, and may also be in the simulation device. Generate a second device connection random factor to generate a simulated device-side secure transmission key, which can also be verified in the real card manager. After the decrypted first connection random decryption factor is the same as the first connection random factor, the simulated device-side secure transmission key is generated after receiving the success information sent by the real card manager.

It can be seen that the security connection established by the above real card manager and the analog device can improve the security of data transmission, and at the same time, it can also verify whether the two parties are bound, thereby further improving the security.

If the real card manager performs a manual binding and stores a binding factor and the like before establishing a secure connection with the emulation device, in the first mode, the real card manager and the emulation device need to authenticate each other in addition to each other. Mutual authentication of each other's certificate.

In addition, the present invention is not limited to the establishment of the secure connection initiated by the real card manager, and the real card manager may trigger the simulation device to initiate the establishment of the secure connection. At this time, the first secure connection command is sent by the analog device to the real card. The manager, other processes can be implemented contrary to the above-mentioned process implementation subject, and will not be repeated here.

Method 2: The real card manager and the analog device mutually authenticate each other's identity (for example, mutually authenticate each other's signature data), and generate a secure transmission key factor in the process of mutually authenticating the identity of the other party, and at least use the stored The binding factor and the secure transport key factor generate a secure transport key (real card manager-side secure transport key and simulated device-side secure transport key) for secure data transmission between the real card manager and the emulation device, and verify Whether the secure transport keys generated by both parties are the same.

It is worth noting that if the real card manager and the emulation device mutually authenticate each other's certificate and the other party's identity before establishing a secure connection between the real card manager and the emulation device, and after both parties have passed the authentication, they are stored in the authentication process. In the binding operation of the binding factor generated in the second mode, the real card manager and the emulation device mutually authenticate each other's identity, that is, the real card manager and the emulation device mutually authenticate each other's identity.

FIG. 13 is a flowchart of a method for establishing a secure connection between a real card manager and an analog device in a data interaction method according to an embodiment of the present invention. Referring to FIG. 13, a secure connection between a real card manager and an analog device includes:

The real card manager receives the third connection random factor generated by the simulation device sent by the simulation device and the unique identifier of the simulation device; specifically, the third connection random factor may be a random number generated by the simulation device, a random character, or a combination thereof, of course, After the third connection random factor is generated, the randomness of the third connection random factor may also be verified to improve the randomness of the third connection random factor to prevent cracking. Before this step, the simulation device generates a third connection random factor, and after the real card manager detects the simulation device, the simulation device sends the third connection random factor and the simulation device unique identifier to the real card manager.

The real card manager sends a second secure connection instruction to the emulation device for instructing to establish a secure connection, wherein the second secure connection command comprises: a real card manager unique identifier, and the real card manager utilizes the analog device in the emulation device certificate The third connection ciphertext obtained by encrypting the third connection random factor and the generated fourth connection random factor by the key, the real card manager using the real card manager private key to the third connection random factor and the fourth connection random The third connection signature obtained by the signature of the factor; in particular, before the data interaction with the simulation device is performed using the real card manager, optionally, a secure connection is established between the real card manager and the simulation device to improve subsequent data interaction Security. The second secure connection instruction received by the real card manager for indicating the establishment of the secure connection may be generated by a physical button connected to the real card manager, or may be a connection on the touch screen of the real card manager. The virtual button is generated, or it can be generated after the power-on password is verified correctly, or it can be generated by selecting the connection function in the menu displayed on the real card manager screen, or the real card manager can be obtained in the real card manager. A list of real card information that the user generates after selecting the real card. Of course, it can also be generated in any other manner, and is not limited in the present invention. Specifically, the real card manager encrypts the third connection random factor and the generated fourth connection random factor by using the analog device public key to ensure the security of the third connection random factor and the generated fourth connection random factor transmission, the real card The manager uses the real card manager private key to sign the third connection random factor and the generated fourth connection random factor to ensure that the subsequent simulation device can authenticate the authenticity of the real card manager identity. In addition, the fourth connection random factor may be a random number generated by the real card manager, a random character, or a combination thereof. Of course, after generating the fourth connection random factor, the randomness of the fourth connection random factor may also be verified, The randomness of the fourth connection random factor is improved to prevent being cracked. Optionally, after the real card manager receives the unique identifier of the simulation device before the step, the real card manager may determine whether the simulation device is based on the unique identifier of the simulation device. In the real card manager binding list, only after judging that the simulation device is in the real card manager binding list, the subsequent process is executed, the process is optimized, and the efficiency is improved.

The simulation device receives the second secure connection instruction, and determines whether the real card manager unique identifier is in the simulated device end binding list; specifically, the simulation device determines, according to the received real card manager unique identifier, whether the real card manager is Simulate the device-side binding list; only after determining that the real card manager is in the simulated device-side binding list, the subsequent processes are executed, the process is optimized, and the efficiency is improved.

If the real card manager is uniquely identified in the simulated device end binding list, the simulation device decrypts the third connected ciphertext by using the simulated device private key to obtain a third connection random decryption factor and a fourth connection random decryption factor; specifically, The third connection ciphertext is decrypted by using the analog device private key. If a data transmission error occurs in the data transmission, or tampering occurs in the data transmission, the decryption cannot be successfully performed, or the obtained third connection random decryption factor is obtained. And the fourth connected random decryption factor is different from the third connected random factor and the fourth connected random factor. By encrypting the public key of the analog device, only the private key of the analog device can be successfully decrypted, thereby ensuring the security of data decryption.

The simulation device verifies the third connection signature by using the real card manager public key, the third connection random decryption factor, and the fourth connection random decryption factor in the real card manager certificate; specifically, the simulation device uses the real card manager public key Verify the signature sent by the real card manager to ensure the legal source of the data.

After verifying that the third connection signature is correct, the simulation device verifies the third connection random decryption factor and the third connection random factor Whether the same is the same; specifically, the simulation device verifies that the third connection random factor generated by itself is the same as the third connection random decryption factor, which can ensure that the data has not been tampered with, and the encrypted data source does send the third connection random factor for the analog device. Object.

If the third connection random decryption factor is the same as the third connection randomization factor, the simulation device uses the simulation device private key to sign the third connection random decryption factor and the fourth connection random decryption factor to obtain a fourth connection signature; specifically, the simulation device utilizes The simulation device private key signs the third connection random decryption factor and the fourth connection random decryption factor to ensure that the subsequent real card manager can authenticate the validity of the simulated device identity.

The simulation device sends a second secure connection response to the real card manager, wherein the second secure connection response comprises: a fourth connection signature; specifically, the simulation device sends the fourth connection signature to the real card manager for the real card manager Verify the received data.

The real card manager receives the second secure connection response, and verifies the fourth connection signature by using the analog device public key, the third connection random factor, and the fourth connection random factor in the simulation device certificate; specifically, the real card manager utilizes the simulation The device public key verifies the signature sent by the analog device to ensure the legal source of the data.

After the real card manager verifies that the fourth connection signature is correct, at least the fourth card randomization factor and the real card manager binding factor are used to generate a real card manager security transmission key between the real card manager and the simulation device; the simulation device Generating, by using at least a fourth connection random decryption factor and an analog device end binding factor, an analog device-side secure transmission key between the real card manager and the simulation device; specifically, the real card manager can utilize the fourth connection random factor and the real card The manager-side binding factor generates a real card manager-side secure transmission key between the real card manager and the emulation device, and can also generate a third connection random factor, a fourth connection random factor, and a real card manager binding factor. The real card manager securely transmits the key between the real card manager and the emulation device; similarly, the emulation device can also generate the real card manager and the emulation device by using the fourth connection random decryption factor and the analog device end binding factor. Simulate device-side secure transmission key, also Generating a secure device-side secure transmission key between the real card manager and the analog device by using the third connection random factor, the fourth connection random decryption factor, and the simulated device-side binding factor; as long as the real card manager and the analog device use the same parameters The same algorithm generates a secure transport key. Therefore, in the present invention, the secure transmission key factor may be a fourth connection random factor, or a third connection random factor and a fourth connection random factor at the real card manager end; the secure transmission key factor is on the analog device side. The fourth connection random decryption factor, or the third connection random factor and the fourth connection random decryption factor may be used. In addition, the secure transmission key may include an encryption and decryption key and/or a verification key. The encryption and decryption key may participate in the data transmission to ensure the security of the data transmission, and the data transmission may be ensured by using the verification key to participate in the data transmission. Integrity, in the present invention, the secure transmission key can be selectively used in accordance with the security level of the transmitted data.

The real card manager uses the real card manager-side secure transmission key to perform the first processing on the third connection random factor and the fourth connection random factor, and then sends the same to the analog device; the analog device uses the analog device-side secure transmission key pair The third connection random decryption factor and the fourth connection random decryption factor are sent to the real card manager after the first processing; specifically, the two parties perform the first processing on the data by using the generated secure transmission key, and then send the data to the other party for verification by the other party. Whether the secure transport keys generated by both parties are the same.

The real card manager receives the data sent by the analog device, and performs second processing on the received data by using the real card manager secure transmission key, and compares the second processed data with the third connection random factor and the fourth connection random Whether the factors are the same; the analog device receives the data sent by the real card manager, and performs second processing on the received data by using the simulated device-side secure transmission key, and compares the second processed data with the third connected random decryption factor and the Whether the four connected random decryption factors are the same. Specifically, after performing the second processing on the received data by using the generated secure transmission key, the two parties compare whether the second processed data is the same as the data respectively sent by the two parties. If they are the same, the two sides generate the secure transmission key. The keys are the same, so as to ensure that the two parties can use the generated secure transmission key for data transmission. In addition, while verifying that the secure transmission keys generated by the two parties are the same, it is also possible to verify that the respective binding factors are the same, and further verify that the other party is a real binding object, thereby further improving the security of subsequent data transmission.

Of course, in the present invention, the step of generating the simulated device-side secure transmission key by the simulation device is not limited to the steps in the second mode, and the simulated device-side secure transmission key may be generated after the decryption obtains the fourth connection random decryption factor. After the real card manager verifies that the fourth connection signature sent by the simulation device is correct, the real device manager transmits the success information sent by the real card manager to generate the simulated device-side secure transmission key; the real card manager generates the real card manager-side security transmission. The step of the key is not limited to the steps in the second method, and the real card manager secure transmission key may be generated after the real card manager generates the fourth connection random factor.

If the real card manager performs a manual binding and stores a binding factor and the like before establishing a secure connection with the emulation device, in the second mode, the real card manager and the emulation device need to authenticate each other in addition to each other. Mutual authentication of each other's certificate.

In addition, the present invention is not limited to the establishment of a secure connection by the real card manager described above, and may also trigger the establishment of a secure connection by the real card manager to trigger the establishment of a secure connection. At this time, the second secure connection command is sent by the analog device to the real card. The manager, other processes can be implemented contrary to the above-mentioned process implementation subject, and will not be repeated here.

Of course, in the process of generating the secure transmission key for secure transmission of data between the real card manager and the simulation device in the above manners 1 and 2, the binding factor used is the binding process between the real card manager and the simulation device. The binding factor generated and saved in the authentication process, and the binding factor may be a binding factor generated by the real card manager and the simulation device to mutually authenticate each other's certificate and the identity of the other party, and after both parties have passed the authentication process, each of which is stored in the authentication process. Or can be a binding factor that is entered and stored by manual binding.

In addition, if the binding operation is not performed between the real card manager and the emulation device, the binding factor used in the first mode and the second mode may be a random value manually input during the establishment of the secure connection; or the security is established. During the connection process, the secure transmission key is generated only by the random factor, and the binding factor is not verified or the binding factor is not used to generate the secure transmission key.

In addition, before the real card manager of the present invention establishes a secure connection with the analog device, and obtains a real card manager secure transmission key and a simulated device-side secure transmission key for secure data transmission between the real card manager and the analog device, The user can also log in to the real card manager; in particular, the user login can press the login physical button that is separately set on the real card manager for the user, or can be the login virtual button on the touch screen of the user pressing the real card manager. Or you can enter the power-on password for the user and verify it correctly, or you can select the login function for the menu that the user displays on the real card manager screen.

After the user logs in to the real card manager, the real card manager establishes a secure connection with the analog device, and obtains a real card manager secure transmission key and secure device-side secure transmission for secure data transmission between the real card manager and the analog device. Key.

The real card manager compares the login password entered by the user with the legal login password stored by the user. Only when the login password input by the user is the same as the legal login password stored by the user, the user is allowed to log in to the real card manager, thereby improving login security. If the real card manager of the present invention has an alarm function, the legal login password and the legal alarm password can be set in advance in the real card manager. At this time, the real card manager obtains the data to be verified and verifies the verification data. For example, the real card manager obtains the password to be verified, and determines whether the password to be verified is an alarm password; if the password to be verified is an alarm password, the real card manager determines that the password to be verified passes and performs an alarm operation; if the password to be verified is not The alarm password is the login password, and the real card manager determines that the password to be verified is verified. Since the alarm password is set, when the login password input by the user is the alarm password, the real card manager can recognize that the current login has a security risk and perform an alarm operation (for example, the real card manager sends an alarm message, and calls the alarm to the law enforcement department). Wait).

It can be seen that before establishing a secure connection between the real card manager and the emulation device, the user first logs into the real card manager and triggers the establishment of a secure connection after logging in to the real card manager, thereby ensuring the security of the secure connection establishment. .

In addition, the real card manager of the present invention has a heartbeat sleep mode in addition to the normal working mode, wherein the heartbeat sleep mode is a low power consumption non-operation mode, that is, some unnecessary power consumption programs are turned off. Specifically, the real card manager may enter the heartbeat sleep mode after no operation within a preset time, or may enter the heartbeat sleep mode by the user's operation control.

The real card manager can also determine whether to maintain the real card manager and the emulation device in the heartbeat sleep mode. A secure connection is established so that when the real card manager is restored to the working mode by the sleep mode, there is no need to establish a secure connection with the analog device again, which improves convenience.

The following provides a specific implementation manner for the real card manager to determine whether to maintain a secure connection established between the real card manager and the emulation device in the heartbeat sleep mode:

The real card manager sends the detection information to the simulation device every first preset time in the heartbeat sleep mode;

The simulation device receives the detection information and sends the response information to the real card manager;

If the real card manager does not receive the response message within the second preset time, disconnect the secure connection between the real card manager and the emulation device;

If the real card manager receives the response message within the second predetermined time, then the secure connection established by the real card manager with the emulation device is maintained.

The real card manager does not receive the response information within the second preset time, which may be unstable between the analog device and the real card manager, or the analog device works abnormally. At this time, the real card manager and the analog device are disconnected. The secure connection between the two ensures security; the real card manager receives the response message within the second preset time, and the real card manager maintains a secure connection with the emulation device when the real card manager resumes the working mode. , no need to re-establish a secure connection, easy to use.

Of course, in the heartbeat sleep mode, the user can also choose to manually disconnect the secure connection between the real card manager and the emulation device, such as the user pressing the sleep button to indicate that the real card manager enters the heartbeat sleep mode, or the user manages the real card. The device performs a shutdown operation.

Five, binding:

In order to further improve the security of the data interaction, before the real card manager establishes a secure connection with the simulation device, the process of performing a binding operation between the real card manager and the simulation device may also be included;

The real card manager performs the binding operation with the emulation device:

In the present invention, the real card manager and the emulation device can be bound as follows:

The real card manager and the emulation device mutually authenticate each other's certificate and the identity of the other party, and after both parties have passed the authentication, each of the binding factors generated in the authentication process is stored.

In the following, a specific implementation manner of performing a binding operation between a real card manager and an analog device is provided:

FIG. 14 is a flowchart of performing a binding operation between a real card manager and an emulation device in a data interaction method according to an embodiment of the present invention. Referring to FIG. 14, the binding operation performed by the real card manager and the emulation device includes:

The real card manager receives a trigger command for indicating binding with the simulation device; specifically, before the real card manager is used, the real card manager may be first turned on, and at this time, the optional card card is optional. The controller prompts the user to input the power-on password, and receives the power-on password input by the user, and verifies the correctness of the power-on password input by the user. After verifying that the power-on password input by the user is correct, the power-on operation is performed, and the real card manager enters the working mode. Before using the real card manager to interact with the emulation device, optionally, the real card manager is bound to the emulation device to improve the security of subsequent data interaction. The trigger command received by the real card manager for indicating that the real card manager is bound to the emulation device may be generated by a binding physical button separately set on the real card manager, or may be a real card manager. Generated by the binding virtual button on the touch screen, or generated after the power-on password is verified correctly, or generated after the user logs in to the real card manager, or can be selected for the menu displayed on the real card manager screen. The binding function may be generated by any other means, which is not limited in the present invention.

The real card manager sends a first binding instruction to the simulation device, where the first binding instruction includes: a first binding random factor generated by the real card manager, a real card manager certificate, and a real card manager unique identifier; The real card manager can send a first binding instruction to the analog device through a read/write interface (contact connection and/or contactless connection), and the real card manager can also send the first binding to the analog device via the wireless interface. Instructions, the former can improve the binding security, the latter can improve the convenience of binding. The first binding instruction carries the first binding random factor to prevent the replay attack. The first binding instruction carries the real card manager certificate to simulate the device to authenticate the real card manager, and the first binding instruction carries the real The card manager uniquely identifies the simulation device to know which real card manager is bound to it; wherein the first binding random factor can be a random number generated by the real card manager, a random character or a combination thereof, of course, the first binding is generated. After the random factor is determined, the randomness of the first bound random factor can also be verified to improve the randomness of the first bound random factor to prevent cracking; the real card manager unique identifier can be the real card manager serial number. Any one or combination of device identifiers, MAC addresses, etc. to uniquely identify the identity of the real card manager.

The simulation device receives the first binding instruction, and uses the root certificate to verify the real card manager certificate; specifically, the simulation device pre-stores the root certificate, and uses the root certificate to complete verification of the real card manager certificate to ensure subsequent use of the real Card Manager Certificate Security.

After the simulation device verifies that the real card manager certificate is legal, the second binding random factor is generated; specifically, the second binding random factor may be a random number generated by the simulation device, a random character or a combination thereof; After the random factor is determined, the randomness of the second bound random factor can also be verified to improve the randomness of the second bound random factor to prevent cracking.

The simulation device encrypts the first binding random factor and the second binding random factor by using a real card manager public key in the real card manager certificate to obtain the first binding ciphertext, and uses the simulation device private key to bind the first binding The random factor and the second binding random factor are signed to obtain a first binding signature; specifically, the simulation device encrypts the first binding random factor and the second binding random factor by using a real card manager public key to ensure the first Binding random factor and The security of the second binding random factor transmission, the simulation device uses the simulation device private key to sign the first binding random factor and the second binding random factor to ensure that the subsequent real card manager can perform the legality of the simulated device identity. Certification.

The simulation device sends a first binding response to the real card manager, where the first binding response includes: a first binding ciphertext, a first binding signature, an analog device certificate, and a simulated device unique identifier; specifically, the simulation device The first binding response sent carries the simulated device certificate for the real card manager to authenticate the simulated device, and the first binding response carries the unique identifier of the simulated device so that the real card manager knows which analog device is bound to it; The device unique identifier may be any one or combination of analog device serial number, device identification code, MAC address, etc. to uniquely identify the identity of the simulated device.

The real card manager receives the first binding response, and uses the root certificate to verify the simulated device certificate. Specifically, the real card manager pre-stores the root certificate, and uses the root certificate to complete verification of the simulated device certificate to ensure subsequent use simulation. The security of the device certificate.

After the real card manager verifies that the emulation device certificate is legal, the first binding ciphertext is decrypted by using the real card manager private key to obtain the first bound random decryption factor and the second bound random decryption factor; specifically, using the real The card manager private key decrypts the first bound ciphertext. If a data transmission error occurs in the data transmission, or a tampering occurs in the data transmission, the first binding may not be successfully decrypted or decrypted. The random decryption factor and the second bound random decryption factor are different from the first bound random factor and the second bound random factor. The encryption is performed by the real card manager public key, and only the real card manager private key can be successfully decrypted, thereby ensuring the security of data decryption.

The real card manager verifies the first binding signature by using the analog device public key in the simulation device certificate, the first binding random decryption factor, and the second binding random decryption factor; specifically, the real card manager utilizes the verification after passing The simulated device public key verifies the signature sent by the analog device to ensure the legal source of the data.

After the real card manager verifies that the first binding signature is correct, it is verified whether the first binding random decryption factor is the same as the first binding random factor; specifically, the real card manager verifies the first binding random factor generated by itself and the first A binding random decryption factor is the same, which ensures that the data has not been tampered with, and the encrypted data source does send the first binding random factor object to the real card manager.

After the real card manager verifies that the first binding random decryption factor is the same as the first binding random factor, the simulation device uniquely identifies; specifically, the real card manager can display the unique identifier of the simulated device, and can also play the voice (for example, speaker playback) Or through the earphone handset, etc.) to simulate the unique identification of the device, so that the user can confirm the authenticity of the simulation device and improve the security of the binding.

The real card manager receives the trigger command for confirming that the simulation device uniquely identifies, and uses the real card manager private key to sign the first binding random factor and the second binding random decryption factor to obtain the second binding signature. And storing the simulation device unique identifier, the simulation device certificate, and the real card manager binding factor to the real card manager binding list, wherein the real card manager binding factor is the second binding random decryption factor; specifically The trigger command received by the real card manager for confirming that the simulation device is uniquely identified may be generated by a confirmation physical button separately set on the real card manager, or may be a confirmation virtual button on the touch screen of the real card manager. Generated, or selected in the menu displayed on the real card manager screen, or generated by the voice recognition device (such as a microphone) of the real card manager, and verified after the pass, Or the fingerprint collection device of the real card manager may receive the fingerprint confirmation indication and verify the generated after the verification, or may be generated by the iris collection device of the real card manager after receiving the iris confirmation indication and verifying the passage, and of course, Generated for any other means, in the present invention Limiting; using the real card manager private key to sign the first binding random factor and the second binding random decryption factor for subsequent emulation devices to authenticate the identity of the real card manager; of course, the real card manager can also store A real card manager-side binding list for recording information about an analog device bound to a real card manager, such as: a unique identifier of the simulated device, a simulated device certificate, etc., in addition, true The card manager binding list is further configured to store a real card manager binding factor, the real card manager binding factor is a second binding random factor of the ciphertext transmission, and the second binding random factor is dense. The text is transmitted, so the real card manager binding factor is safe and has not been tampered with.

The real card manager sends a second binding signature to the emulation device; in particular, the real card manager sends a second binding signature to the emulation device to emulate the device to authenticate the real card manager identity.

The simulation device receives the second binding signature, and verifies the second binding signature by using the real card manager public key, the first binding random factor, and the second binding random factor in the real card manager certificate; specifically, the simulation The device verifies the signature sent by the real card manager using the real card manager public key after verification to ensure the legal source of the data.

After the simulation device verifies that the second binding signature is correct, the real card manager unique identifier, the real card manager certificate, and the simulated device binding factor are stored to the analog device binding list, wherein the simulation device binding factor is the second Bind random factors. Specifically, the simulation device may further store an analog device end binding list for recording information about a real card manager bound to the simulation device, for example: a real card manager unique identifier, a real card In addition, the simulation device-side binding list is further used to store an analog device-side binding factor, which is a second binding random factor generated by the simulation device.

It can be seen that, based on the binding of the above real card manager and the simulation device, the security of data interaction between the subsequent real card manager and the simulation device can be ensured.

In addition, the operation of performing binding on the real card manager and the emulation device is not an essential step. According to the requirements of different application scenarios, the operation of performing binding on the real card manager and the emulation device may be selected.

Of course, the operation of the binding between the real card manager and the emulation device is not limited to the implementation provided above. For example, manual binding may be used, that is, in a trusted environment, the real card manager is to be bound. The identifier of the fixed simulation device is used as the real card manager binding factor, and the identifier of the simulation device default simulation device is used as the simulation device end binding factor; or any random value is input on the real card manager as the real card manager binding Factor, and send the random value to the analog device as an analog device end binding factor or the like through an interface between the real card manager and the analog device, as long as the real card manager and the analog device can obtain the same binding factor All should fall within the scope of protection of the present invention.

Sixth, data interaction:

method one:

When the real card manager and the emulation device do not establish a secure connection, the data interaction can be performed as follows:

The real card manager receives the first data sent by the analog device and sends the first data to the selected real card. Specifically, the real card manager sends the first data to the selected real card, so that the selected real card processes the first data. In addition, the real card manager may also prompt the received first data and receive the confirmation message for confirming that the received first data is correct, and then send the first data to the selected real card; at this time, the real card management The first data can be displayed, or the first data can be played by voice (for example, speaker playback or through earphone handset), so that the user can confirm whether the first data is correct. Only after correct, the user receives the confirmation that the first data is correct. After the confirmation command, the first data is sent to the selected real card; if the user confirms that the first data is incorrect, the data interaction can be directly canceled, thereby improving the security of data interaction. The confirmation command received by the real card manager for confirming that the first data is correct may be generated by a confirmation physical button that is separately set on the real card manager, or may be generated for the confirmation virtual button on the touch screen of the real card manager. Or select the confirmation function generated in the menu displayed on the real card manager screen, or may receive the voice confirmation indication received by the real card manager's voice collection device (such as a microphone) and verify the generated after the pass, or may The fingerprint collection device of the real card manager receives the fingerprint confirmation indication and verifies the generated after the verification, or may be generated by the iris collection device of the real card manager after receiving the iris confirmation indication and verifying the passage, and of course, may be other Any form generated is not limited in the present invention. For example: when the first data is the transaction amount, the real card manager also The real transaction amount is displayed to the user. After the user confirms and presses the confirmation button, it is sent to the real card to perform corresponding operations to ensure the authenticity of the first data.

The real card manager can prompt the information that needs to be confirmed during the data interaction process, so that the user can confirm the information that needs to be confirmed in the data interaction process and then perform the interaction, thereby ensuring the authenticity of the data interaction and improving the security. .

Method 2:

After the real card manager establishes a secure connection with the analog device, the first data sent by the simulation device to the real card manager is first processed by using the simulated device-side secure transmission key, and the real card manager receives the first process. The first data is processed by the real card manager side secure transmission key.

This ensures the security of data interaction.

The simulation device acquires the first data, and performs the first processing on the received first data by using the simulated device-side secure transmission key, and then sends the first data to the real card manager. Specifically, the simulation device may acquire the first data by using the following method: The device receives the first data sent by the terminal; for example, in the process of data interaction, connecting the analog device with a terminal (such as an ATM machine, a POS machine, a bus card recharge machine, etc.) (contact interface or contactless interface), simulating The device receives the first data sent by the terminal, and the first data may be data to be processed (eg, a withdrawal amount, a deduction amount, a real card information acquisition request, etc.). Of course, the simulation device can also acquire the first data by the simulation device generating the first data.

The real card manager receives the data sent by the analog device, and performs second processing on the received data by using the real card manager secure transmission key, and then sends the data to the selected real card; specifically, the real card manager will be processed. The data is sent to the selected real card, so that the selected real card processes the data to be processed. In addition, true The real card manager may also prompt the data after performing the second processing on the received data, and receive a confirmation instruction for confirming that the second processed data is correct, and send the second processed data to the selected real Card; at this time, the real card manager can display the second processed data, or can play the second processed data by voice playback (such as speaker playback or through earphone handset, etc.) for the user to confirm the second processed Whether the data is correct, and only after correct, after receiving the correct confirmation command input by the user to confirm the second processed data, the second processed data is sent to the real card; if the user confirms the second processed data If it is not correct, you can directly cancel the data interaction to improve the security of data interaction. The confirmation command received by the real card manager for confirming the correctness of the second processed data may be generated for the confirmation physical button separately set on the real card manager, or may be the confirmation virtual on the touch screen of the real card manager. Generated by the button, or selected in the menu displayed on the real card manager screen, or may be the voice confirmation indication received by the voice card collection device (such as a microphone) of the real card manager and verified after the pass. Alternatively, the fingerprint collection device of the real card manager may receive the fingerprint confirmation indication and verify that the fingerprint is generated, or may be generated by the iris collection device of the real card manager after receiving the iris confirmation indication and verifying the passage, and of course, It can be generated in any other manner and is not limited in the present invention. For example, when the second processed data is the transaction amount, the real card manager also displays the real transaction amount to the user. After the user determines and presses the confirmation button, the real card is sent to the real card for corresponding operation to ensure the second. The authenticity of the processed data.

In addition, when the data that needs to be processed by the real card is returned to the real card manager of the simulation device, The second data sent by the device may also be sent after the first processing by using the real card manager security transmission key, and the simulation device receives the second data after the first processing, and may also perform the secure transmission key by using the simulated device. Second processing. Of course, when the data processed by the real card needs to be returned to the terminal for processing, the simulation device receives the second data after the first processing, and after performing the second processing by using the simulated device-side secure transmission key, the simulation device will be the second The processed data is sent to the terminal.

Seven, recharge:

With the data interaction architecture of the present invention, operations such as recharging (such as bus card, water card, card recharge, etc.) can also be implemented, so that the user can realize the recharging of a plurality of different types of real cards by using only the simulation device of the present invention. It is convenient for users to carry, avoiding the loss of assets caused by the loss of real cards.

The real card manager obtains a real card manager-side real card information list; specifically, optionally, before the step, the real card manager can be activated, and the user logs in to the real card manager, and details are not described herein. For details, please refer to the above description about the real card manager booting and the user login to the real card manager.

The real card manager prompts the real card manager to have a real card information list; specifically, the real card manager uses its own display device or displays the real card manager real card information list by means of an external display device, or the real card manager utilizes itself The voice playing device or the voice card playing by the external voice playing device (for example, speaker playing or playing through the earphone earphone), the real card manager side real card information list, for the user to select and recharge according to the real card manager side real card information list. The real card you need to use is convenient for users to choose and enhance the user experience.

The real card manager receives the real card selection instruction to determine the selected real card; and the analog device receives the data sent by the refill terminal, and performs the first processing on the received data by using the simulated device-side secure transmission key, and then sends the data to the real card management. Specifically, the real card selection instruction received by the real card manager may be generated by selecting a physical button that is separately set on the real card manager, or may be generated for selecting a virtual button on the touch screen of the real card manager. Or it can be generated for the menu item indicating the selection function in the menu displayed on the real card manager screen. The real card manager receives the real card selection command, determines the selected real card, and the simulation device implements data transmission via the real card manager and the selected real card. In addition, during the recharging process, the analog device is connected to a recharging terminal (such as a recharger or the like) (the contact interface or the non-contact interface), and the analog device receives the data sent by the refill terminal, and the data may be the recharge data to be processed. (such as recharge amount, etc.), so that subsequent users can confirm whether the pending recharge data is correct. In addition, before the analog device receives the to-be-charged data to be processed sent by the refill terminal, the simulation device may further receive a real card information request sent by the refill terminal to obtain the selected real card, and the simulation device uses the analog device-side secure transmission key pair to receive the Data is sent to real card management after the first processing The real card manager receives the data sent by the analog device, and performs the second processing on the received data by using the real card manager secure transmission key, and then sends the data to the selected real card, and the selected real card receives the real card manager. The data sent by the end, and the obtained real card information is sent to the real card manager, the real card manager receives the data sent by the selected real card, and uses the real card manager to transmit the data to the received data. After processing, the device sends the data to the analog device, and the analog device receives the data sent by the real card manager, and performs the second processing on the received data by using the analog device-side secure transmission key, and then sends the data to the recharge terminal, thereby charging the terminal. Get the real card information of the selected real card, so as to recharge the real card later.

The real card manager receives the data sent by the analog device, and performs second processing on the received data by using the real card manager secure transmission key, prompts the second processed data, and receives the second processing after receiving the second processing. After the correct confirmation command of the data, the second processed data is sent to the selected real card; specifically, the real card manager can display the recharge data to be processed, or can be played by voice (for example, speaker playback or playback through the earphone) Waiting for the recharge data to be processed, for the user to confirm whether the recharge data to be processed is correct, and only after correct, the recharge data to be processed is received after receiving a correct confirmation instruction input by the user indicating that the recharge data to be processed is correct. Send to the selected real card; if the user confirms that the recharge data to be processed is incorrect, the recharge can be directly canceled, thereby improving the security of recharging. The confirmation command received by the real card manager for indicating that the second processed data is correct may be generated by a confirmation physical button separately set on the real card manager, or may be a confirmation virtual on the touch screen of the real card manager. Generated by the button, or selected in the menu displayed on the real card manager screen, or may be the voice confirmation indication received by the voice card collection device (such as a microphone) of the real card manager and verified after the pass. Alternatively, the fingerprint collection device of the real card manager may receive the fingerprint confirmation indication and verify that the fingerprint is generated, or may be generated by the iris collection device of the real card manager after receiving the iris confirmation indication and verifying the passage, and of course, It can be generated in any other manner and is not limited in the present invention. In addition, the real card manager sends the recharged data to be processed to the selected real card, so that the selected real card processes the recharged data to be processed (for example, performing a refill operation).

Based on the above recharging process, a variety of different types of real card functions can be realized by an analog device. When the user recharges, the real device can be recharged by replacing the real card to be recharged with an analog device, thereby improving the convenience and safety of recharging. .

The real card manager can prompt the information that needs to be confirmed during the recharging process, so that the user can confirm the information that needs to be confirmed in the recharging process and then perform recharging, thereby ensuring the authenticity of the recharging and improving the security.

Eight, the transaction:

With the data interaction architecture of the present invention, transactions (for example, ATM machine withdrawal transfer, POS card swipe, etc.) can also be implemented, and the user can replace different types of real cards by using an analog device, thereby realizing transactions of a plurality of different types of real cards.

The real card manager receives the real card selection instruction to determine the selected real card; and the analog device receives the data sent by the terminal, and performs the first processing on the received data by using the simulated device-side secure transmission key, and then sends the data to the real card manager. Specifically, the real card selection instruction received by the real card manager may be generated for selecting a physical button that is separately set on the real card manager, or may be generated for selecting a virtual button on the touch screen of the real card manager, or It can be generated for the menu item representing the selection function in the menu displayed on the real card manager screen. The real card manager receives the real card selection command, determines the selected real card, and the simulation device implements data transmission via the real card manager and the selected real card. In addition, during the transaction process, the analog device is connected to a terminal (such as an ATM machine, a POS machine, etc.) (contact interface or contactless interface), and the analog device receives data sent by the terminal, and the data may be a transaction to be processed. Data (such as withdrawal amount, debit amount, etc.), so that subsequent users can confirm whether the pending transaction data is correct. In addition, before the simulation device receives the transaction data to be processed sent by the terminal, the simulation device may further receive a real card information request sent by the terminal to obtain the selected real card, and the simulation device receives the data sent by the terminal, and uses the analog device to transmit the data securely. The key performs the first processing on the received data and sends the data to the real card manager. The real card manager receives the data sent by the analog device, and performs the second processing on the received data by using the real card manager secure transmission key. After being sent to the selected real card, the selected real card receives the data sent by the real card manager, and sends the obtained real card information to the real card manager, and the real card manager receives the data sent by the selected real card, and The received data is first processed by the real card manager-side secure transmission key and sent to the analog device, and the analog device receives the real card manager to send The data is sent to the terminal by performing the second processing on the received data by using the simulated device-side secure transmission key, whereby the terminal acquires the real card information of the selected real card, so as to subsequently conduct the transaction for the real card.

The real card manager receives the data sent by the analog device, and performs second processing on the received data by using the real card manager secure transmission key, prompts the second processed data, and receives the second processing after receiving the second processing. After the correct confirmation of the data, the data is sent to the selected real card; specifically, the real card manager can display the transaction data to be processed, or can also play the voice (such as speaker playback or through the earpiece handset), pending transaction data. For the user to confirm whether the transaction data to be processed is correct, and only after correct, after receiving the correct confirmation instruction input by the user indicating that the transaction data to be processed is correct, the transaction data to be processed is sent to the selected real card; If the user confirms that the transaction data to be processed is incorrect, the transaction can be directly cancelled, thereby improving the security of the transaction. The confirmation command received by the real card manager for indicating that the second processed data is correct may be generated by a confirmation physical button separately set on the real card manager, or may be a confirmation virtual on the touch screen of the real card manager. Generated by the button, or selected in the menu displayed on the real card manager screen, or may be the voice confirmation indication received by the voice card collection device (such as a microphone) of the real card manager and verified after the pass. Alternatively, the fingerprint collection device of the real card manager may receive the fingerprint confirmation indication and verify that the fingerprint is generated, or may be generated by the iris collection device of the real card manager after receiving the iris confirmation indication and verifying the passage, and of course, It can be generated in any other manner and is not limited in the present invention. In addition, the real card manager sends the transaction data to be processed to the selected real card, so that the selected real card processes the transaction data to be processed.

The analog device receives the data sent by the real card manager, and performs second processing on the received data by using the analog device-side secure transmission key, and then sends the data to the terminal. Specifically, after receiving the data processed by the real card transaction, the terminal can complete the transaction according to the existing transaction process, such as withdrawing money, transferring money, and deducting the card.

Based on the above transaction process, a variety of different types of real cards can be simulated by an analog device to realize the functions of a plurality of different types of real cards, thereby improving transaction convenience and security.

The real card manager can prompt the information that needs to be confirmed during the transaction process, thereby the user can confirm the information that needs to be confirmed in the transaction process and then execute the transaction, thereby ensuring the authenticity of the transaction and improving the security.

Of course, the above specific implementation only discloses a single data interaction from the terminal to the real card and the real card to the terminal. In actual applications, there may be multiple data interactions, and the interaction process is similar to the above single data interaction, in multiple data. In the interaction, whether the interactive data is prompted at the simulation device can be set according to whether the interactive data needs confirmation to ensure the authenticity of the interaction data.

Nine, application update:

1. Simulator application update:

Figure 15 shows a flow chart of a simulated device application update. Referring to Figure 15, the simulated device application update includes:

The real card manager obtains the simulation device certificate from the simulation device, and sends at least the simulation device certificate to the update platform; specifically, the real card manager can obtain the simulation device certificate from the simulation device by: the real card manager through the contact type Or after the non-contact detection of the simulation device, sending a request for acquiring the simulation device certificate to the simulation device, and after receiving the request sent by the real card manager, the simulation device sends the simulation device certificate to the real card manager; or the real card manager After the analog device is detected by contact or contactless, the analog device actively sends the simulated device certificate to the real card manager. An alternative solution is: after the real card manager detects the analog device by contact or contactless, sends a request for acquiring the unique identifier of the simulated device to the analog device, and after receiving the request sent by the real card manager, the simulated device simulates The device unique identifier is sent to the real card manager, and the real card manager can obtain the simulation corresponding to the unique identifier of the simulated device from the locally stored real card manager binding list according to the unique identifier of the simulated device after receiving the unique identifier of the simulated device. Device certificate; or after the real card manager detects the analog device through contact or contactless, the simulation device actively sends the unique identifier of the simulated device to the real card manager, and the real card manager can also receive the unique identifier of the simulated device according to the The simulation device uniquely identifies the simulated device certificate corresponding to the unique identifier of the simulated device from the locally stored real card manager-end binding list. In addition, a secure update platform is set up separately to complete the update of the simulated device application. The real card manager sends the emulation device certificate to the update platform, so that the update platform knows which emulation device needs to be updated, and can also verify the identity of the emulated device; the real card manager can also notify the update of the application ID or other update that needs to be updated. The information of the application that the platform needs to update or download is sent to the update platform, so that the update platform knows which application installation package needs to be sent to the simulation device.

The update platform generates a first update encryption key; specifically, the update platform itself generates an update encryption key for encrypting the application installation package, and the update encryption key generated each time the application update is performed may be the same or different. Different can prevent being cracked and improve security.

The update platform sends the simulated device update information to the real card manager, where the simulated device update information includes: an update platform certificate, a first installation package ciphertext, a first installation package signature, and a first update encryption key ciphertext; specifically The update information sent by the update platform carries the update platform certificate to simulate the device to authenticate the update platform, and the update information carries the first installation package ciphertext to ensure the security of the application installation package transmission, and the update information carries the first installation package signature. In order to ensure that the subsequent simulation device can authenticate the validity of the update platform identity, the update information carries the updated encryption key ciphertext to ensure the security of the update encryption key transmission.

The real card manager receives the simulated device update information, performs the first processing on the simulated device update information by using the real card manager-side secure transmission key, and sends the information to the analog device; specifically, the real card manager utilizes the real card manager and the analog device. The secure transmission key generated when establishing a secure connection is processed and transmitted after the analog device update information is processed, thereby improving the security of data transmission.

The simulation device receives the data sent by the real card manager, and performs second processing on the received data by using the simulated device-side secure transmission key to obtain the simulated device update information;

The simulation device uses the root certificate to verify the update platform certificate; specifically, the simulation device pre-stores the root certificate, and uses the root certificate to complete verification of the updated platform certificate to ensure the security of the subsequent use of the updated platform certificate.

The simulation device verifies that the data format of the simulation device application installation package is correct; specifically, the simulation device is verified If the data format of the simulation device application installation package is correct, if the data format of the simulation device application installation package is incorrect, the installation operation will not be performed. If the data format of the simulation device application installation package is correct, the installation is performed.

Of course, if the real card manager does not establish a secure connection with the emulation device, the emulation device directly sends the data to the real card manager when the emulation device makes an application update, and the real card manager directly sends the data to the emulation device.

2. Real Card Manager Application Update:

The present invention provides a specific implementation scheme of the real card manager application update. For details, refer to the related description in the embodiment of the analog device, and details are not described herein.

In all embodiments of the present invention, all normal data interaction processes between the simulation device and the real card manager, the simulation devices are located within the effective communication range of the real card manager, if the real card manager detects that the analog device is out of The real card manager can prompt the real card manager, or the real card manager can send the prompt information to the user terminal (such as a smart phone, tablet, etc.) to prompt the user to simulate the location of the device. An abnormality occurs, thereby improving the safety of the use of the simulation device.

Any process or method description in the flowcharts or otherwise described herein may be understood to represent a module, segment or portion of code that includes one or more executable instructions for implementing the steps of a particular logical function or process. And the scope of the preferred embodiments of the invention includes additional implementations, in which the functions may be performed in a substantially simultaneous manner or in an opposite order depending on the functions involved, in the order shown or discussed. It will be understood by those skilled in the art to which the embodiments of the present invention pertain.

It should be understood that portions of the invention may be implemented in hardware, software, firmware or a combination thereof. In the above In this manner, multiple steps or methods may be implemented in software or firmware stored in a memory and executed by a suitable instruction execution system. For example, if implemented in hardware, as in another embodiment, it can be implemented by any one or combination of the following techniques well known in the art: having logic gates for implementing logic functions on data signals. Discrete logic circuits, application specific integrated circuits with suitable combinational logic gates, programmable gate arrays (PGAs), field programmable gate arrays (FPGAs), etc.

One of ordinary skill in the art can understand that all or part of the steps carried by the method of implementing the above embodiments can be completed by a program to instruct related hardware, and the program can be stored in a computer readable storage medium. When executed, one or a combination of the steps of the method embodiments is included.

In addition, each functional unit in each embodiment of the present invention may be integrated into one processing module, or each unit may exist physically separately, or two or more units may be integrated into one module. The above integrated modules can be implemented in the form of hardware or in the form of software functional modules. The integrated modules, if implemented in the form of software functional modules and sold or used as stand-alone products, may also be stored in a computer readable storage medium.

The above mentioned storage medium may be a read only memory, a magnetic disk or an optical disk or the like.

In the description of the present specification, the description with reference to the terms "one embodiment", "some embodiments", "example", "specific example", or "some examples" and the like means a specific feature described in connection with the embodiment or example. A structure, material or feature is included in at least one embodiment or example of the invention. In the present specification, the schematic representation of the above terms does not necessarily mean the same embodiment or example. Furthermore, the particular features, structures, materials, or characteristics described may be combined in a suitable manner in any one or more embodiments or examples.

Although the embodiments of the present invention have been shown and described, it is understood that the foregoing embodiments are illustrative and not restrictive Variations, modifications, alterations and variations of the above-described embodiments are possible within the scope of the invention. The scope of the invention is defined by the appended claims and their equivalents.

Claims

A data interaction method, comprising:

The simulation device acquires a real card information list of the simulation device end, wherein the real device card information list of the simulation device end is a real card manager end real card information list obtained by the simulation device from the real card manager, the real card management The real card information list of the device includes real card information of the real card connected to the real card manager;

The simulation device prompts the simulated device end to have a real card information list;

The simulation device receives a real card selection instruction to determine the selected real card; and the simulation device acquires the first data and sends the first data to the real card manager;

The real card manager receives the first data sent by the simulation device and sends the first data to the selected real card.
The method of claim 1 further comprising:

The real card manager also receives second data transmitted by the real card and transmits the second data to the simulation device.
The method of claim 2, further comprising:

The simulation device transmits the second data to the terminal.
The method according to any one of claims 1 to 3, wherein the acquiring, by the simulation device, the first data comprises:

The simulation device receives the first data sent by the terminal; or

The simulation device generates the first data.
The method according to any one of claims 1 to 4, wherein the transmitting the first data to the real card manager comprises:

The simulation device prompts the first data;

The simulation device receives an acknowledgment command for confirming that the first data is correct, and transmits the first data to the real card manager.
The method according to any one of claims 1 to 5, further comprising:

The simulation device establishes a secure connection with the real card manager, obtains an analog device-side secure transmission key for secure data transmission between the simulation device and the real card manager, and secure transmission of a real card manager end key.
The method according to claim 6, wherein before the emulating device establishes a secure connection with the real card manager, the method further comprises:

The simulation device performs a binding operation with the real card manager.
The method of claim 6 wherein:

Before the simulation device establishes a secure connection with the real card manager, the method further includes:

The simulation device sends a login request to the real card manager;

After the analog device establishes a secure connection with the real card manager, the method further includes:

The simulation device performs a first processing on the received login password through the simulated device-side secure transmission key, and then sends the received password to the real card manager;

The real card manager receives the data sent by the simulation device, and performs second processing on the received data by using the real card manager security transmission key to verify the correctness of the second processed data;

After the real card manager verifies that the second processed data has passed, the simulation device logs into the real card manager.
The method according to claim 8, wherein the real card manager uses the real card manager-side secure transmission key to perform second processing on the received data to verify the correctness of the second processed data. Sex includes:

The real card manager uses the real card manager security transmission key to perform second processing on the received data, and obtains a password to be verified;

The real card manager determines whether the password to be verified is an alarm password;

If the password to be verified is an alarm password, the real card manager determines that the password to be verified is verified and performs an alarm operation;

If the password to be verified is not an alarm password and is a login password, the real card manager determines that the password verification to be verified is passed.
The method of claim 6 further comprising:

The real card manager detects a real card connected to the real card manager;

After the real card manager detects the real card connected to the real card manager, the real card information of the real card is obtained, wherein the real card information includes at least: a card number;

After the real card manager obtains the real card information of the real card, the real card manager side real card information list is generated.
The method of claim 10, further comprising:

The real card manager also generates a real card manager end identification list, and the identifier in the real card manager end identification list is in one-to-one correspondence with the real card information in the real card manager end real card information list.
The method according to claim 1, wherein the simulation device receives the real card selection instruction, and determining the selected real card comprises:

The simulation device receives a real card selection instruction, and acquires a selected identifier, wherein the selected identifier is used to indicate the selected real card;

The simulation device sends the selected identifier to the real card manager;

And the real card manager determines, according to the selected identifier, the selected real card corresponding to the selected identifier from the real card connected to the real card manager.
A data interaction method, comprising:

The real card manager obtains a real card manager side real card information list, wherein the real card manager side real card information list includes real card information of the real card connected to the real card manager;

The real card manager prompts the real card manager to have a real card information list;

The real card manager receives a real card selection instruction to determine the selected real card; and the simulation device acquires the first data and sends the first data to the real card manager;

The real card manager receives the first data sent by the simulation device, and sends the first data to the selected real card.
The method of claim 13 further comprising:

The real card manager also receives second data transmitted by the real card, and transmits the second data to the simulation device.
The method of claim 14 further comprising:

The simulation device transmits the second data to the terminal.
The method according to any one of claims 13 to 15, wherein the acquiring, by the simulation device, the first data comprises:

The simulation device receives the first data sent by the terminal; or

The simulation device generates the first data.
The method according to any one of claims 13 to 16, wherein the transmitting the first data to the selected real card comprises:

The real card manager prompts the first data;

The real card manager receives an acknowledgment command for confirming that the first data is correct, and transmits the first data to the selected real card.
The method according to any one of claims 13 to 17, further comprising:

The real card manager establishes a secure connection with the simulation device, obtains a real card manager secure transmission key and secure transmission of the analog device end for secure data transmission between the real card manager and the simulation device. key.
The method of claim 18, wherein said real card manager and said emulation device Before setting up a secure connection, it also includes:

The real card manager performs a binding operation with the simulation device.
The method according to any one of claims 13 to 19, further comprising:

The real card manager obtains data to be verified and verifies the data to be verified.
The method of claim 20 wherein:

The data to be verified includes: a password to be verified;

The verifying the data to be verified includes:

The real card manager determines whether the password to be verified is an alarm password;

If the password to be verified is an alarm password, the real card manager determines that the password to be verified is verified and performs an alarm operation.
The method according to any one of claims 13 to 21, further comprising:

The real card manager detects a real card connected to the real card manager;

After the real card manager detects the real card connected to the real card manager, the real card information of the real card is obtained, wherein the real card information includes at least: a card number;

After the real card manager obtains the real card information of the real card, the real card manager side real card information list is generated.
The method of claim 22, further comprising:

The real card manager also generates a real card manager end identification list, and the identifier in the real card manager end identification list is in one-to-one correspondence with the real card information in the real card manager end real card information list.
The method of claim 18, wherein the real card manager further comprises a heartbeat sleep mode, wherein the heartbeat sleep mode is a low power consumption non-operation mode, the method further comprising:

The real card manager sends the detection information to the simulation device every first preset time in the heartbeat sleep mode;

The simulation device receives the detection information, and sends response information to the real card manager;

If the real card manager does not receive the response information within the second preset time, disconnect the secure connection between the real card manager and the simulation device;

And if the real card manager receives the response information within a second preset time, maintaining the secure connection established by the real card manager with the analog device.
The method according to claim 13, wherein said real card manager receives a real card selection instruction, and determining the selected real card comprises:

Receiving, by the real card manager, a real card selection instruction, and acquiring a selected identifier, wherein the selected identifier is used to indicate the selected real card;

And the real card manager determines, according to the selected identifier, the selected real card corresponding to the selected identifier from the real card connected to the real card manager.