WO2017016058A1 - Virtual card protection method, application processor and terminal, and computer storage medium - Google Patents

Virtual card protection method, application processor and terminal, and computer storage medium Download PDF

Info

Publication number
WO2017016058A1
WO2017016058A1 PCT/CN2015/090477 CN2015090477W WO2017016058A1 WO 2017016058 A1 WO2017016058 A1 WO 2017016058A1 CN 2015090477 W CN2015090477 W CN 2015090477W WO 2017016058 A1 WO2017016058 A1 WO 2017016058A1
Authority
WO
WIPO (PCT)
Prior art keywords
sim card
virtual sim
virtual
management application
driver
Prior art date
Application number
PCT/CN2015/090477
Other languages
French (fr)
Chinese (zh)
Inventor
刘川
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2017016058A1 publication Critical patent/WO2017016058A1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W8/00Network data management
    • H04W8/18Processing of user or subscriber data, e.g. subscribed services, user preferences or user profiles; Transfer of user or subscriber data
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication

Definitions

  • the present invention relates to a communication card driving technology, and in particular, to a virtual card protection method, an application processor (AP), a terminal, and a computer storage medium.
  • AP application processor
  • SIM subscriber identity
  • the SIM card chip can ensure the security of the SIM card information.
  • Most of the SIM card information in the virtual SIM card is stored in the application layer of the AP user space, and the application layer is easily cracked by hackers.
  • the virtual SIM card produced by Apple has been used for commercial purposes, but Apple has said that the biggest problem with virtual SIM cards is security.
  • the largest virtual operator in the United States (TraceFone) clearly stated that when implementing the personal protective equipment (PPE) of the traffic management system, how to protect the security of the PPE database is the most critical technical problem that the virtual operator needs to solve. .
  • PPE personal protective equipment
  • how virtual SIM cards enhance software security is also an important technical issue that needs to be addressed.
  • the embodiment of the present invention is to provide a virtual card protection method, an AP, a terminal, and a computer storage medium, which can not only ensure the security of the virtual SIM card information reliably and effectively, but also implement the AP and the virtual SIM card information.
  • the embodiment of the invention provides a virtual card protection method, including:
  • the virtual SIM card driver authenticates the virtual SIM card management application
  • the virtual SIM card driver After the virtual SIM card management application is authenticated, the virtual SIM card driver stores the virtual SIM card information in the storage device according to the storage command issued by the virtual SIM card management application;
  • the virtual SIM card driver is located in a kernel space of the virtual SIM card protection application processor AP.
  • the method further includes:
  • the virtual SIM card driver communicates with a wireless modem MODEM.
  • the method further includes:
  • the virtual SIM card driver queries the virtual SIM card information according to the query command issued by the virtual SIM card management application.
  • the virtual SIM card driver deletes the virtual SIM card information according to a delete command issued by the virtual SIM card management application.
  • the virtual SIM card driver authenticates the virtual SIM card management application as:
  • the virtual SIM card driver performs authentication and authentication with the virtual SIM card management application through an interface in the form of a device file;
  • the virtual SIM card management application delivers the storage command, the query command, and the delete command to the virtual SIM card driver through an interface in the form of the device file.
  • the method before the virtual SIM card driver performs authentication and authentication on the virtual SIM card management application, the method further includes:
  • the virtual SIM card management application sends an authentication connection request to the virtual SIM card driver
  • the virtual SIM card management application sends the authentication information to the virtual SIM card driver.
  • the embodiment of the invention further provides a virtual card protection AP, including:
  • a virtual SIM card driving unit configured to authenticate the virtual SIM card management application by the virtual SIM card driver; after the virtual SIM card management application passes the authentication, the virtual SIM card driver is configured according to the virtual The storage command issued by the SIM card management application stores the virtual SIM card information in the storage device; wherein the virtual SIM card driver is located in the kernel space of the virtual card protection AP;
  • the virtual SIM card management application unit is configured to deliver the storage command to the virtual SIM card management application.
  • the virtual SIM card driving unit is further configured to communicate with the wireless MODEM by the virtual SIM card driver.
  • the AP further includes:
  • a device file unit configured to perform the authentication authentication by the virtual SIM card management application with the virtual SIM card driver through an interface in a device file format;
  • the virtual SIM card management application is in the form of the device file
  • the interface sends the storage command to the virtual SIM card driver;
  • a storage drive unit configured to store the storage device by the storage driver.
  • the embodiment of the invention further provides a virtual card protection terminal, including:
  • the virtual card protects the AP and is configured to drive the virtual SIM card;
  • a baseband chip BB configured to communicate with the virtual card protection AP;
  • a storage device configured to store virtual SIM card information.
  • the virtual card protection AP includes:
  • a virtual SIM card driving unit configured to authenticate the virtual SIM card management application by using a virtual SIM card driver; after the virtual SIM card management application passes authentication authentication, The virtual SIM card driver stores the virtual SIM card information in the storage device according to the storage command issued by the virtual SIM card management application; wherein the virtual SIM card driver is located in the kernel space of the virtual card protection AP ;
  • the virtual SIM card management application unit is configured to deliver the storage command to the virtual SIM card management application.
  • the BB includes:
  • a wireless MODEM configured to communicate with the virtual SIM card driver.
  • the embodiment of the present invention provides a computer storage medium.
  • the computer storage medium provided by the embodiment of the present invention stores a computer program, and the computer program is used to execute the virtual card protection method.
  • the virtual card protection method, the AP and the terminal, and the computer storage medium provided by the embodiment of the present invention protect the virtual SIM card management application by the virtual SIM card driver of the virtual card protection AP in the virtual card protection terminal; After the virtual SIM card management application is authenticated, the virtual SIM card driver stores the virtual SIM card information in the storage device according to the storage command issued by the virtual SIM card management application; wherein the virtual SIM The card driver is located in the kernel space of the virtual card protection AP.
  • the virtual SIM card driver in the embodiment of the present invention is located in the kernel space of the virtual card protection AP, and the security of the virtual SIM card information is ensured by shielding the impact generated by the virtual SIM card management application.
  • FIG. 1 is a schematic flowchart of implementing a virtual card protection method according to Embodiment 1 of the present invention
  • FIG. 2 is a layered schematic diagram of a software structure of a virtual card protection terminal according to Embodiments 1 and 3 of the present invention
  • FIG. 3 is a schematic flowchart of implementing communication between a virtual SIM card driver and a virtual SIM card management application according to Embodiment 1 of the present invention
  • FIG. 4 is a virtual card protection AP and a virtual card protection terminal provided by Embodiments 2 and 3 of the present invention; Schematic diagram of the composition.
  • the virtual SIM card driver of the virtual card protection AP in the virtual card protection terminal authenticates the virtual SIM card management application; after the virtual SIM card management application passes the authentication and authentication, The virtual SIM card driver stores the virtual SIM card information in the storage device according to the storage command issued by the virtual SIM card management application; wherein the virtual SIM card driver is located in the kernel space of the virtual card protection AP.
  • FIG. 1 is a schematic flowchart of implementing a virtual card protection method according to Embodiment 1 of the present invention. As shown in FIG. 1, the method includes:
  • Step 110 The virtual SIM card driver performs authentication and authentication on the virtual SIM card management application.
  • step 110 the virtual SIM card driver can communicate with the virtual SIM card management application located in the virtual card protection AP user space to complete the functions of authentication authentication and virtual SIM card information interaction.
  • the virtual SIM card management application works on the application layer of the user space of the virtual card protection AP; the virtual SIM card management application interacts with the virtual SIM card remote management server through the network to obtain the virtual SIM. Card information and upload terminal information.
  • the virtual SIM card management application applies for the virtual SIM card information to the virtual SIM card remote management server, and downloads the virtual SIM card information after the application is passed, wherein the virtual SIM card management application and the virtual SIM card remote management server perform network connection. It is connected by SSL (Secure Sockets Layer) encryption to ensure the security of network data transmission.
  • SSL Secure Sockets Layer
  • the virtual SIM card driver works on the virtual card protection AP.
  • the device driver layer of the kernel space is used to complete the underlying implementation of the secure storage of the virtual SIM card information and provides security protection for the virtual SIM card.
  • step 110 the operating system performs some functional definitions on the kernel space in order to protect itself from being destroyed by a normal application, such as: access rights, swap in and out, and priority.
  • kernel space is only allowed to be accessed by the kernel program, and the application needs to be audited by the kernel if it wants to access the kernel space.
  • Kernel space and user space communicate through system calls, that is, when an application calls the system application programming interface (API), an interrupt is generated. After entering the kernel mode, the API enters the kernel state and exits through the interrupt to return to the user. The calling function of the state.
  • API system application programming interface
  • the virtual SIM driver effectively shields the impact of the virtual SIM card management application through the operating system's own protection mechanism, thereby ensuring the security of the virtual SIM card information.
  • the virtual SIM driver ensures the security of the data interface by authenticating the authentication operation of the virtual SIM card management application.
  • the authentication and authentication may be implemented in a plurality of manners, including using a magic number for authentication, that is, using a complex constant of consensus for authentication credentials.
  • the method further includes:
  • the virtual SIM card management application sends an authentication connection request to the virtual SIM card driver
  • the virtual SIM card management application sends the authentication information to the virtual SIM card driver.
  • the virtual SIM card management application initiates an authentication connection to the virtual SIM card driver, wherein the authentication connection adopts an open file function (Open) in the system call function; the virtual SIM card management application passes Interface connection request sends an authentication device in the form of a file, wherein sending the connection request using authentication function (the Ioctl) the device I / O channel call management system functions; simultaneously, the connection request carrying the authentication process identifier ( PID, Process ID) and authentication information; after that, the virtual SIM card driver in the kernel space authenticates the connection authentication authority for the virtual SIM card management application. Specifically, the virtual SIM card driver ensures that only one management program is connected according to the process PID, and determines the operation authority of the management application according to the authentication information. If the authentication is successful, step 120 is performed. If the authentication fails, the connection is forcibly closed.
  • Open open file function
  • the virtual SIM card management application passes Interface connection request sends an authentication device in the form of a file, wherein sending the connection request using authentication function (the Ioctl) the device I
  • the virtual SIM card driver authenticates the virtual SIM card management application as:
  • the virtual SIM card driver performs the authentication authentication with the virtual SIM card management application through an interface in the form of a device file; correspondingly, the virtual SIM card management application passes through an interface of the device file format
  • the virtual SIM card driver delivers the storage command, the query command, and the delete command.
  • the interface in the form of the device file is located in a file system layer of the virtual card protection AP user space, where the interface in the form of the device file performs data interaction between the virtual SIM card driver and the virtual SIM card management application. Interface.
  • the file path of the interface in the form of the device file is: /dev/simcard.
  • the virtual SIM card management application interacts with the virtual SIM card driver located in the AP kernel space by the interface in the form of the device file to complete the reading and saving of the virtual SIM card information, wherein the interface in the form of the device file is Virtual SIM card driver implementation.
  • the interface in the form of a device file is an interface provided by the virtual SIM card driver to the virtual card protection AP, and is mainly responsible for receiving and executing an operation command issued by the upper virtual SIM card management application to implement the virtual SIM card management application and the virtual SIM card. Data interaction between drivers.
  • Netlink is to implement communication between the user process and the kernel process.
  • the special interprocess communication method is to implement communication between the user process and the kernel process.
  • Step 120 After the virtual SIM card management application passes the authentication, the virtual The SIM card driver stores the virtual SIM card information in the storage device according to the storage command issued by the virtual SIM card management application; wherein the virtual SIM card driver is located in a kernel space of the virtual card protection AP.
  • the virtual SIM card driver can effectively perform the function of virtual SIM card information storage protection.
  • the storage driver is located at a physical input/output (I/O, Input/Output) layer of a virtual space protection AP core space; the virtual SIM card driver calls the storage driver So that the storage driver drives the storage device.
  • the storage device may be a flash memory.
  • the virtual SIM card driver can effectively protect the storage device storing the virtual SIM card information, and ensure that any program without the operation authority can access the storage device except the virtual SIM card driver.
  • the virtual SIM card driver performs special protection on the physical storage area for storing the virtual SIM card information, that is, the storage device.
  • a record of the storage device is not added in the system partition table, and the virtual SIM card driver can directly read and operate the physical storage medium by calling the storage driver, and perform operations such as reading and writing the storage device, thereby implementing the storage device.
  • the uniqueness of the storage interface ensures maximum security of the virtual SIM card information.
  • the virtual SIM card management application initiates authentication authentication and sends authentication information to the virtual SIM card driver.
  • the virtual SIM card driver opens the virtual SIM card operation right to the virtual SIM card management application, and establishes a connection, so that the virtual SIM card management application manages the virtual SIM card. If the authentication fails, the virtual SIM card driver will force the connection to be broken.
  • the method further includes:
  • the virtual SIM card driver performs a check according to the virtual SIM card management application Inquiring a command to query the virtual SIM card information;
  • the virtual SIM card driver deletes the virtual SIM card information according to a delete command issued by the virtual SIM card management application.
  • the virtual SIM card driver can quickly execute an operation command issued by the virtual SIM card management application, and complete operations such as storing, querying, and deleting a plurality of virtual SIM card information.
  • the virtual SIM card driver has simple and effective data processing capabilities, and can quickly and efficiently complete operational commands from the virtual SIM card management application.
  • the virtual SIM card management application sends an operation command through the interface in the form of the device file to implement operations such as querying, storing, and deleting the virtual SIM card information.
  • the underlying virtual SIM card driver After receiving the operation command, the underlying virtual SIM card driver performs real-time operation on the virtual SIM card according to the command.
  • the connection is broken, wherein the interrupt connection uses a close function (Close) in the system call function.
  • the method further includes the virtual SIM card driver communicating with a wireless modem (MODEM).
  • MODEM wireless modem
  • the virtual SIM card driver can communicate with the wireless MODEM to ensure normal operation of the wireless MODEM network registration and data connection.
  • the virtual SIM card driver communicating with the wireless MODEM includes:
  • the virtual SIM card driver sends the virtual SIM card information to the wireless MODEM according to a preset modem command language (AT, Attention) instruction set;
  • the wireless MODEM receives the virtual SIM card information, and performs a communication service operation according to the virtual SIM card information.
  • the virtual SIM card driver has the capability of acquiring virtual SIM card information in response to the wireless MODEM in real time, that is, the virtual SIM card driver has a special service process to complete data interaction with the wireless MODEM. Since the virtual SIM card information is saved on the AP side, therefore, when When the wireless MODEM obtains the SIM card information for the network registration service, data communication is required between the AP and the wireless MODEM.
  • the communication methods that can be adopted are: shared memory driver (SMD, Shared Memory Driver) and AT instruction set.
  • SMD shared memory driver
  • AT instruction set can be implemented on most platforms.
  • the AT instruction set is highly adaptable and highly scalable.
  • the wireless MODEM and the AP pre-set the AT command format.
  • the AP sends the virtual SIM card information to the wireless MODEM by using the preset AT command set, where the network communication service includes a voice call. ,Data Connections.
  • the communication service operation is completed, wherein the communication service operation includes network registration, voice dialing, and the like.
  • FIG. 4 is a schematic structural diagram of a virtual card protection AP according to Embodiment 2 of the present invention.
  • the virtual card protection AP 310 includes:
  • the virtual SIM card driving unit 220 is configured to perform virtual authentication on the virtual SIM card management application by the virtual SIM card driver; after the virtual SIM card management application passes the authentication, the virtual SIM card driver according to the The storage command issued by the virtual SIM card management application stores the virtual SIM card information in the storage device 330; wherein the virtual SIM card driver is located in the kernel space of the virtual card protection AP 310.
  • the virtual SIM card driving unit 220 is further configured to communicate with the wireless MODEM 321 by the virtual SIM card driver.
  • the virtual SIM card management application unit 210 is configured to deliver the storage command to the virtual SIM card management application.
  • the virtual card protection AP 310 further includes:
  • a device file unit configured to view the virtual SIM card management application through a device file
  • the interface is authenticated with the virtual SIM card driver; the virtual SIM card management application delivers the storage command to the virtual SIM card driver through an interface in the form of the device file.
  • the storage drive unit 230 is configured to store a driver to drive the storage device 330.
  • each unit module in the virtual card protection AP may be protected by a virtual card from a central processing unit (CPU), or a digital signal processor (DSP), or a programmable gate array. (FPGA, Field-Programmable Gate Array) implementation.
  • CPU central processing unit
  • DSP digital signal processor
  • FPGA Field-Programmable Gate Array
  • FIG. 4 is a schematic structural diagram of a virtual card protection terminal according to Embodiment 3 of the present invention. As shown in FIG. 4, the terminal includes:
  • the virtual card protects the AP 310 and is configured to drive the virtual SIM card.
  • a baseband chip (BB) 320 is configured to communicate with the virtual card protection AP 310.
  • the storage device 330 is configured to store virtual SIM card information.
  • BB320 provides wireless communication function
  • virtual card protection AP310 is configured as the main function realization; virtual card protection AP310 can be regarded as computer, BB320 can be regarded as virtual card protection AP310 wireless MODEM, wireless MODEM through AT command set and other interfaces Provides calls, short messages, Internet access, and other functions.
  • the AT command set is equivalent to the interface between the computer and the MODEM.
  • each unit module in the virtual card protection terminal may be protected by a virtual card to protect a central processing unit (CPU), or a digital signal processor (DSP), or a programmable gate array.
  • CPU central processing unit
  • DSP digital signal processor
  • FPGA Field-Programmable Gate Array
  • the main implementation of the virtual SIM card function provided in this embodiment is partially located in the virtual The card protects the kernel space on the AP side and is implemented by driving.
  • the virtual SIM card drive unit located on the virtual card protection AP side needs to implement communication with the two parts of the chip.
  • Part of the communication between the virtual SIM card drive unit and the virtual card protects the virtual SIM card management application unit in the AP side user space.
  • the virtual SIM card management application unit completes communication with the remote virtual SIM card server, and sends the obtained virtual SIM card information to the virtual SIM card driving unit, and then the virtual SIM card driving unit completes the kernel space. Storage and security protection.
  • the other part is the communication between the virtual SIM card drive unit and the wireless MODEM in the BB.
  • the virtual SIM card driving unit provides virtual SIM card information to the wireless MODEM, so that the wireless MODEM completes functions such as network registration, data connection, and the like.
  • the virtual card protection AP 310 includes:
  • the virtual SIM card driving unit 220 is configured to perform virtual authentication on the virtual SIM card management application by the virtual SIM card driver; after the virtual SIM card management application passes the authentication, the virtual SIM card driver according to the The storage command issued by the virtual SIM card management application stores the virtual SIM card information in the storage device 330; wherein the virtual SIM card driver is located in the kernel space of the virtual card protection AP 310;
  • the virtual SIM card management application unit 210 is configured to deliver the storage command to the virtual SIM card management application.
  • the BB320 includes:
  • the wireless MODEM 321 is configured to communicate with the virtual SIM card driver.
  • the virtual card protection AP 310, BB320, virtual SIM card management application unit 210, virtual SIM card driving unit 220, and storage drive unit 230 may all be central processing units (CPU, Central Processing Unit) located in any computer device. ), a digital signal processor (DSP), a microprocessor (MPU), or a Field Programmable Gate Array (FPGA); the storage device 330 can be implemented by Flash.
  • CPU Central Processing Unit
  • DSP digital signal processor
  • MPU microprocessor
  • FPGA Field Programmable Gate Array
  • the apparatus for tracking the service signaling may also be stored in a computer readable storage medium if it is implemented in the form of a software function module and sold or used as a separate product.
  • the technical solution of the embodiments of the present invention may be embodied in the form of a software product in essence or in the form of a software product stored in a storage medium, including a plurality of instructions.
  • a computer device (which may be a personal computer, server, or network device, etc.) is caused to perform all or part of the methods described in various embodiments of the present invention.
  • the foregoing storage medium includes various media that can store program codes, such as a USB flash drive, a mobile hard disk, a read only memory (ROM), a magnetic disk, or an optical disk.
  • program codes such as a USB flash drive, a mobile hard disk, a read only memory (ROM), a magnetic disk, or an optical disk.
  • an embodiment of the present invention further provides a computer storage medium, wherein a computer program is stored, and the computer program is used to execute the virtual card protection method of the embodiment of the present invention.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Databases & Information Systems (AREA)
  • Telephone Function (AREA)

Abstract

A virtual card protection method, comprising: a virtual SIM card drive program performing authorization and authentication on a virtual SIM card management application program; after the virtual SIM card management application program passes the authorization and authentication, the virtual SIM card drive program storing virtual SIM card information into a storage device according to a storage command issued by the virtual SIM card management application program, wherein the virtual SIM card drive program is located in kernel space of a virtual SIM card protection application processor. Also disclosed are a virtual card protection AP and terminal, and a computer storage medium.

Description

虚拟卡保护方法、应用处理器及终端、计算机存储介质Virtual card protection method, application processor and terminal, computer storage medium 技术领域Technical field
本发明涉及通信卡驱动技术,尤其涉及一种虚拟卡保护方法、应用处理器(AP,Application Processor)及终端、计算机存储介质。The present invention relates to a communication card driving technology, and in particular, to a virtual card protection method, an application processor (AP), a terminal, and a computer storage medium.
背景技术Background technique
现有技术中,用户身份识别(SIM,Subscriber Identity Module)卡信息保存在真实的SIM卡芯片上,留出部分接口供设备平台读取。SIM卡芯片可以保证SIM卡信息的安全性。而虚拟SIM卡中的SIM卡信息大多都保存于AP用户空间的应用层,而应用层很容易被黑客等破解。In the prior art, the subscriber identity (SIM) information is stored on the real SIM card chip, leaving part of the interface for the device platform to read. The SIM card chip can ensure the security of the SIM card information. Most of the SIM card information in the virtual SIM card is stored in the application layer of the AP user space, and the application layer is easily cracked by hackers.
目前,苹果公司生产的虚拟SIM卡已经用于商业用途,但是苹果公司曾表示,目前虚拟SIM卡最大的问题是安全性。另外,美国最大的虚拟运营商(TraceFone)明确表示,当实现流量管理系统个体防护装备(PPE,Personal Protective Equipment)时,如何保护PPE数据库的安全性是虚拟运营商需要解决的最关键的技术问题。同样,虚拟SIM卡如何增强软件安全性也是需要解决的重要技术问题。At present, the virtual SIM card produced by Apple has been used for commercial purposes, but Apple has said that the biggest problem with virtual SIM cards is security. In addition, the largest virtual operator in the United States (TraceFone) clearly stated that when implementing the personal protective equipment (PPE) of the traffic management system, how to protect the security of the PPE database is the most critical technical problem that the virtual operator needs to solve. . Similarly, how virtual SIM cards enhance software security is also an important technical issue that needs to be addressed.
发明内容Summary of the invention
有鉴于此,本发明实施例期望提供一种虚拟卡保护方法、AP及终端、计算机存储介质,不仅能够可靠及有效的保证虚拟SIM卡信息的安全;而且能通过使用虚拟SIM卡信息实现AP和无线调制解调器(MODEM)之间的数据通信。In view of this, the embodiment of the present invention is to provide a virtual card protection method, an AP, a terminal, and a computer storage medium, which can not only ensure the security of the virtual SIM card information reliably and effectively, but also implement the AP and the virtual SIM card information. Data communication between wireless modems (MODEM).
为达到上述目的,本发明实施例的技术方案是这样实现的:To achieve the above objective, the technical solution of the embodiment of the present invention is implemented as follows:
本发明实施例提供了一种虚拟卡保护方法,包括: The embodiment of the invention provides a virtual card protection method, including:
虚拟SIM卡驱动程序对虚拟SIM卡管理应用程序进行鉴权认证;The virtual SIM card driver authenticates the virtual SIM card management application;
所述虚拟SIM卡管理应用程序通过鉴权认证后,所述虚拟SIM卡驱动程序根据所述虚拟SIM卡管理应用程序下发的存储命令将虚拟SIM卡信息存储于存储设备;After the virtual SIM card management application is authenticated, the virtual SIM card driver stores the virtual SIM card information in the storage device according to the storage command issued by the virtual SIM card management application;
其中,所述虚拟SIM卡驱动程序位于虚拟SIM卡保护应用处理器AP的内核空间。The virtual SIM card driver is located in a kernel space of the virtual SIM card protection application processor AP.
上述方案中,所述方法还包括:In the above solution, the method further includes:
所述虚拟SIM卡驱动程序与无线调制解调器MODEM进行通信。The virtual SIM card driver communicates with a wireless modem MODEM.
上述方案中,所述虚拟SIM卡管理应用程序通过鉴权认证后,所述方法还包括:In the above solution, after the virtual SIM card management application is authenticated, the method further includes:
所述虚拟SIM卡驱动程序根据所述虚拟SIM卡管理应用程序下发的查询命令查询所述虚拟SIM卡信息;或者,The virtual SIM card driver queries the virtual SIM card information according to the query command issued by the virtual SIM card management application; or
所述虚拟SIM卡驱动程序根据所述虚拟SIM卡管理应用程序下发的删除命令删除所述虚拟SIM卡信息。The virtual SIM card driver deletes the virtual SIM card information according to a delete command issued by the virtual SIM card management application.
上述方案中,所述虚拟SIM卡驱动程序对虚拟SIM卡管理应用程序进行鉴权认证为:In the above solution, the virtual SIM card driver authenticates the virtual SIM card management application as:
所述虚拟SIM卡驱动程序通过设备文件形式的接口与所述虚拟SIM卡管理应用程序进行鉴权认证;The virtual SIM card driver performs authentication and authentication with the virtual SIM card management application through an interface in the form of a device file;
相应的,所述虚拟SIM卡管理应用程序通过所述设备文件形式的接口向所述虚拟SIM卡驱动程序下发所述存储命令、所述查询命令和所述删除命令。Correspondingly, the virtual SIM card management application delivers the storage command, the query command, and the delete command to the virtual SIM card driver through an interface in the form of the device file.
上述方案中,所述虚拟SIM卡驱动程序对虚拟SIM卡管理应用程序进行鉴权认证前,所述方法还包括:In the foregoing solution, before the virtual SIM card driver performs authentication and authentication on the virtual SIM card management application, the method further includes:
所述虚拟SIM卡管理应用程序向所述虚拟SIM卡驱动程序发送认证连接请求; The virtual SIM card management application sends an authentication connection request to the virtual SIM card driver;
认证连接成功后,所述虚拟SIM卡管理应用程序向所述虚拟SIM卡驱动程序发送认证信息。After the authentication connection is successful, the virtual SIM card management application sends the authentication information to the virtual SIM card driver.
本发明实施例还提供了一种虚拟卡保护AP,包括:The embodiment of the invention further provides a virtual card protection AP, including:
虚拟SIM卡驱动单元,配置为虚拟SIM卡驱动程序对虚拟SIM卡管理应用程序进行鉴权认证;所述虚拟SIM卡管理应用程序通过鉴权认证后,所述虚拟SIM卡驱动程序根据所述虚拟SIM卡管理应用程序下发的存储命令将虚拟SIM卡信息存储于存储设备;其中,所述虚拟SIM卡驱动程序位于所述虚拟卡保护AP的内核空间;a virtual SIM card driving unit configured to authenticate the virtual SIM card management application by the virtual SIM card driver; after the virtual SIM card management application passes the authentication, the virtual SIM card driver is configured according to the virtual The storage command issued by the SIM card management application stores the virtual SIM card information in the storage device; wherein the virtual SIM card driver is located in the kernel space of the virtual card protection AP;
虚拟SIM卡管理应用单元,配置为所述虚拟SIM卡管理应用程序下发所述存储命令。The virtual SIM card management application unit is configured to deliver the storage command to the virtual SIM card management application.
上述方案中,所述虚拟SIM卡驱动单元,还配置为所述虚拟SIM卡驱动程序与无线MODEM进行通信。In the above solution, the virtual SIM card driving unit is further configured to communicate with the wireless MODEM by the virtual SIM card driver.
上述方案中,所述AP还包括:In the above solution, the AP further includes:
设备文件单元,配置为所述虚拟SIM卡管理应用程序通过设备文件形式的接口与所述虚拟SIM卡驱动程序进行所述鉴权认证;所述虚拟SIM卡管理应用程序通过所述设备文件形式的接口向所述虚拟SIM卡驱动程序下发所述存储命令;a device file unit configured to perform the authentication authentication by the virtual SIM card management application with the virtual SIM card driver through an interface in a device file format; the virtual SIM card management application is in the form of the device file The interface sends the storage command to the virtual SIM card driver;
存储驱动单元,配置为存储驱动程序驱动所述存储设备。And a storage drive unit configured to store the storage device by the storage driver.
本发明实施例还提供了一种虚拟卡保护终端,包括:The embodiment of the invention further provides a virtual card protection terminal, including:
虚拟卡保护AP,配置为驱动虚拟SIM卡;The virtual card protects the AP and is configured to drive the virtual SIM card;
基带芯片BB,配置为与所述虚拟卡保护AP进行通信;a baseband chip BB configured to communicate with the virtual card protection AP;
存储设备,配置为存储虚拟SIM卡信息。A storage device configured to store virtual SIM card information.
上述方案中,所述虚拟卡保护AP包括:In the foregoing solution, the virtual card protection AP includes:
虚拟SIM卡驱动单元,配置为虚拟SIM卡驱动程序对虚拟SIM卡管理应用程序进行鉴权认证;所述虚拟SIM卡管理应用程序通过鉴权认证后, 所述虚拟SIM卡驱动程序根据所述虚拟SIM卡管理应用程序下发的存储命令将虚拟SIM卡信息存储于存储设备;其中,所述虚拟SIM卡驱动程序位于所述虚拟卡保护AP的内核空间;a virtual SIM card driving unit configured to authenticate the virtual SIM card management application by using a virtual SIM card driver; after the virtual SIM card management application passes authentication authentication, The virtual SIM card driver stores the virtual SIM card information in the storage device according to the storage command issued by the virtual SIM card management application; wherein the virtual SIM card driver is located in the kernel space of the virtual card protection AP ;
虚拟SIM卡管理应用单元,配置为所述虚拟SIM卡管理应用程序下发所述存储命令。The virtual SIM card management application unit is configured to deliver the storage command to the virtual SIM card management application.
上述方案中,所述BB包括:In the above solution, the BB includes:
无线MODEM,配置为与所述虚拟SIM卡驱动程序进行通信。A wireless MODEM configured to communicate with the virtual SIM card driver.
本发明实施例提供了一种计算机存储介质,本发明实施例提供的计算机存储介质存储有计算机程序,该计算机程序用于执行上述虚拟卡保护方法。The embodiment of the present invention provides a computer storage medium. The computer storage medium provided by the embodiment of the present invention stores a computer program, and the computer program is used to execute the virtual card protection method.
本发明实施例所提供的虚拟卡保护方法、AP及终端、计算机存储介质,由虚拟卡保护终端中的虚拟卡保护AP的虚拟SIM卡驱动程序对虚拟SIM卡管理应用程序进行鉴权认证;所述虚拟SIM卡管理应用程序通过鉴权认证后,所述虚拟SIM卡驱动程序根据所述虚拟SIM卡管理应用程序下发的存储命令将虚拟SIM卡信息存储于存储设备;其中,所述虚拟SIM卡驱动程序位于虚拟卡保护AP的内核空间。由于本发明实施例中的所述虚拟SIM卡驱动程序位于虚拟卡保护AP的内核空间,通过屏蔽虚拟SIM卡管理应用程序产生的影响来保证虚拟SIM卡信息的安全。The virtual card protection method, the AP and the terminal, and the computer storage medium provided by the embodiment of the present invention protect the virtual SIM card management application by the virtual SIM card driver of the virtual card protection AP in the virtual card protection terminal; After the virtual SIM card management application is authenticated, the virtual SIM card driver stores the virtual SIM card information in the storage device according to the storage command issued by the virtual SIM card management application; wherein the virtual SIM The card driver is located in the kernel space of the virtual card protection AP. The virtual SIM card driver in the embodiment of the present invention is located in the kernel space of the virtual card protection AP, and the security of the virtual SIM card information is ensured by shielding the impact generated by the virtual SIM card management application.
附图说明DRAWINGS
图1为本发明实施例1提供的虚拟卡保护方法的实现流程示意图;1 is a schematic flowchart of implementing a virtual card protection method according to Embodiment 1 of the present invention;
图2为本发明实施例1和3提供的虚拟卡保护终端的软件结构分层示意图;2 is a layered schematic diagram of a software structure of a virtual card protection terminal according to Embodiments 1 and 3 of the present invention;
图3为本发明实施例1提供的虚拟SIM卡驱动程序和虚拟SIM卡管理应用程序进行通信的实现流程示意图;3 is a schematic flowchart of implementing communication between a virtual SIM card driver and a virtual SIM card management application according to Embodiment 1 of the present invention;
图4为本发明实施例2和3提供的虚拟卡保护AP和虚拟卡保护终端的 组成结构示意图。4 is a virtual card protection AP and a virtual card protection terminal provided by Embodiments 2 and 3 of the present invention; Schematic diagram of the composition.
具体实施方式detailed description
本发明实施例中,由虚拟卡保护终端中的虚拟卡保护AP的虚拟SIM卡驱动程序对虚拟SIM卡管理应用程序进行鉴权认证;所述虚拟SIM卡管理应用程序通过鉴权认证后,所述虚拟SIM卡驱动程序根据所述虚拟SIM卡管理应用程序下发的存储命令将虚拟SIM卡信息存储于存储设备;其中,所述虚拟SIM卡驱动程序位于虚拟卡保护AP的内核空间。In the embodiment of the present invention, the virtual SIM card driver of the virtual card protection AP in the virtual card protection terminal authenticates the virtual SIM card management application; after the virtual SIM card management application passes the authentication and authentication, The virtual SIM card driver stores the virtual SIM card information in the storage device according to the storage command issued by the virtual SIM card management application; wherein the virtual SIM card driver is located in the kernel space of the virtual card protection AP.
下面结合附图及具体实施例对本发明再做进一步详细的说明。The present invention will be further described in detail below with reference to the accompanying drawings and specific embodiments.
实施例1Example 1
图1为本发明实施例1提供的虚拟卡保护方法的实现流程示意图,如图1所示,所述方法包括:1 is a schematic flowchart of implementing a virtual card protection method according to Embodiment 1 of the present invention. As shown in FIG. 1, the method includes:
步骤110:虚拟SIM卡驱动程序对虚拟SIM卡管理应用程序进行鉴权认证。Step 110: The virtual SIM card driver performs authentication and authentication on the virtual SIM card management application.
在步骤110中,如图2所示,虚拟SIM卡驱动程序能够与位于虚拟卡保护AP用户空间的虚拟SIM卡管理应用程序进行通信,以完成鉴权认证和虚拟SIM卡信息交互的功能。In step 110, as shown in FIG. 2, the virtual SIM card driver can communicate with the virtual SIM card management application located in the virtual card protection AP user space to complete the functions of authentication authentication and virtual SIM card information interaction.
进一步地,如图2所示,虚拟SIM卡管理应用程序工作于虚拟卡保护AP的用户空间的应用层;虚拟SIM卡管理应用程序对外通过网络与虚拟SIM卡远程管理服务器进行交互以获取虚拟SIM卡信息并上传终端信息。Further, as shown in FIG. 2, the virtual SIM card management application works on the application layer of the user space of the virtual card protection AP; the virtual SIM card management application interacts with the virtual SIM card remote management server through the network to obtain the virtual SIM. Card information and upload terminal information.
具体地,虚拟SIM卡管理应用程序向虚拟SIM卡远程管理服务器申请虚拟SIM卡信息,申请通过后下载虚拟SIM卡信息,其中,虚拟SIM卡管理应用程序与虚拟SIM卡远程管理服务器进行网络连接时,采用安全套接层(SSL,Secure Sockets Layer)加密方式进行连接,以保证网络数据传输的安全性。Specifically, the virtual SIM card management application applies for the virtual SIM card information to the virtual SIM card remote management server, and downloads the virtual SIM card information after the application is passed, wherein the virtual SIM card management application and the virtual SIM card remote management server perform network connection. It is connected by SSL (Secure Sockets Layer) encryption to ensure the security of network data transmission.
进一步地,如图2所示,虚拟SIM卡驱动程序工作于虚拟卡保护AP 内核空间的设备驱动层,用于完成虚拟SIM卡信息安全存储的底层实现,并提供虚拟SIM卡的安全保护。Further, as shown in FIG. 2, the virtual SIM card driver works on the virtual card protection AP. The device driver layer of the kernel space is used to complete the underlying implementation of the secure storage of the virtual SIM card information and provides security protection for the virtual SIM card.
在步骤110中,操作系统为了保护自身不被普通应用程序破坏,对内核空间进行了一些功能定义,例如:访问权限、换入换出、优先级。也就是说,内核空间只允许内核程序访问,应用程序如果要访问内核空间就需要经过内核的审核。内核空间和用户空间通过系统调用来实现通信,即当应用程序调用系统应用程序编程接口(API,Application Programming Interface)时产生中断,进入内核态的API在内核处理完成后,通过中断退出,返回用户态的调用函数。In step 110, the operating system performs some functional definitions on the kernel space in order to protect itself from being destroyed by a normal application, such as: access rights, swap in and out, and priority. In other words, kernel space is only allowed to be accessed by the kernel program, and the application needs to be audited by the kernel if it wants to access the kernel space. Kernel space and user space communicate through system calls, that is, when an application calls the system application programming interface (API), an interrupt is generated. After entering the kernel mode, the API enters the kernel state and exits through the interrupt to return to the user. The calling function of the state.
虚拟SIM驱动程序通过操作系统本身自有的保护机制有效屏蔽虚拟SIM卡管理应用程序产生的影响,从而保证虚拟SIM卡信息的安全。The virtual SIM driver effectively shields the impact of the virtual SIM card management application through the operating system's own protection mechanism, thereby ensuring the security of the virtual SIM card information.
在步骤110中,虚拟SIM驱动程序通过对虚拟SIM卡管理应用程序的鉴权认证操作,保证了数据接口的安全。所述鉴权认证可采用多种方式实现,包括采用幻数进行鉴权认证,即采用协商一致的复杂常数进行鉴权凭证。In step 110, the virtual SIM driver ensures the security of the data interface by authenticating the authentication operation of the virtual SIM card management application. The authentication and authentication may be implemented in a plurality of manners, including using a magic number for authentication, that is, using a complex constant of consensus for authentication credentials.
如图3所示,所述虚拟SIM卡驱动程序对虚拟SIM卡管理应用程序进行鉴权认证前,所述方法还包括:As shown in FIG. 3, before the virtual SIM card driver authenticates the virtual SIM card management application, the method further includes:
所述虚拟SIM卡管理应用程序向所述虚拟SIM卡驱动程序发送认证连接请求;The virtual SIM card management application sends an authentication connection request to the virtual SIM card driver;
认证连接成功后,所述虚拟SIM卡管理应用程序向所述虚拟SIM卡驱动程序发送认证信息。After the authentication connection is successful, the virtual SIM card management application sends the authentication information to the virtual SIM card driver.
具体地,如图3所示,首先虚拟SIM卡管理应用程序向虚拟SIM卡驱动程序发起认证连接,其中,认证连接采用系统调用函数中的打开文件函数(Open);虚拟SIM卡管理应用程序通过设备文件形式的接口发送认证连接请求,其中,发送认证连接请求时采用系统调用函数中的对设备I/O通 进行管理的函数(Ioctl);同时,所述认证连接请求携带进程标识符(PID,Process ID)及认证信息;之后,内核空间中的虚拟SIM卡驱动程序对虚拟SIM卡管理应用程序进行请求认证连接权限认证。具体地,所述虚拟SIM卡驱动程序根据进程PID保证同时只有一个管理程序进行连接,并根据所述认证信息确定所述管理应用程序的操作权限,如果认证成功,则执行步骤120。如果认证失败,则强制关闭连接。Specifically, as shown in FIG. 3, first, the virtual SIM card management application initiates an authentication connection to the virtual SIM card driver, wherein the authentication connection adopts an open file function (Open) in the system call function; the virtual SIM card management application passes Interface connection request sends an authentication device in the form of a file, wherein sending the connection request using authentication function (the Ioctl) the device I / O channel call management system functions; simultaneously, the connection request carrying the authentication process identifier ( PID, Process ID) and authentication information; after that, the virtual SIM card driver in the kernel space authenticates the connection authentication authority for the virtual SIM card management application. Specifically, the virtual SIM card driver ensures that only one management program is connected according to the process PID, and determines the operation authority of the management application according to the authentication information. If the authentication is successful, step 120 is performed. If the authentication fails, the connection is forcibly closed.
这里,如图2所示,所述虚拟SIM卡驱动程序对虚拟SIM卡管理应用程序进行鉴权认证为:Here, as shown in FIG. 2, the virtual SIM card driver authenticates the virtual SIM card management application as:
所述虚拟SIM卡驱动程序通过设备文件形式的接口与所述虚拟SIM卡管理应用程序进行所述鉴权认证;相应的,所述虚拟SIM卡管理应用程序通过所述设备文件形式的接口向所述虚拟SIM卡驱动程序下发所述存储命令、所述查询命令和所述删除命令。其中,所述设备文件形式的接口位于虚拟卡保护AP用户空间的文件系统层,这里,所述设备文件形式的接口为所述虚拟SIM卡驱动程序与所述虚拟SIM卡管理应用程序进行数据交互的接口。例如,所述设备文件形式的接口所在文件路径为:/dev/simcard。The virtual SIM card driver performs the authentication authentication with the virtual SIM card management application through an interface in the form of a device file; correspondingly, the virtual SIM card management application passes through an interface of the device file format The virtual SIM card driver delivers the storage command, the query command, and the delete command. The interface in the form of the device file is located in a file system layer of the virtual card protection AP user space, where the interface in the form of the device file performs data interaction between the virtual SIM card driver and the virtual SIM card management application. Interface. For example, the file path of the interface in the form of the device file is: /dev/simcard.
也即,虚拟SIM卡管理应用程序对内通过设备文件形式的接口与位于AP内核空间的虚拟SIM卡驱动程序交互,共同完成虚拟SIM卡信息的读取和保存,其中,设备文件形式的接口由虚拟SIM卡驱动程序实现。设备文件形式的接口为虚拟SIM卡驱动程序向虚拟卡保护AP提供的接口,主要负责接收和执行上层虚拟SIM卡管理应用程序下发的操作命令,以实现虚拟SIM卡管理应用程序和虚拟SIM卡驱动程序之间的数据交互。That is, the virtual SIM card management application interacts with the virtual SIM card driver located in the AP kernel space by the interface in the form of the device file to complete the reading and saving of the virtual SIM card information, wherein the interface in the form of the device file is Virtual SIM card driver implementation. The interface in the form of a device file is an interface provided by the virtual SIM card driver to the virtual card protection AP, and is mainly responsible for receiving and executing an operation command issued by the upper virtual SIM card management application to implement the virtual SIM card management application and the virtual SIM card. Data interaction between drivers.
除了采用虚拟SIM卡的设备文件形式的接口实现通信,虚拟SIM卡驱动程序和虚拟SIM管理应用程序之间可以通过套接字(Netlink)实现通信,这里,Netlink是实现用户进程与内核进程间通信的特殊进程间通信方式。In addition to communication using the interface of the device file in the form of a virtual SIM card, the virtual SIM card driver and the virtual SIM management application can communicate via a socket (Netlink). Here, Netlink is to implement communication between the user process and the kernel process. The special interprocess communication method.
步骤120:所述虚拟SIM卡管理应用程序通过鉴权认证后,所述虚拟 SIM卡驱动程序根据所述虚拟SIM卡管理应用程序下发的存储命令将虚拟SIM卡信息存储于存储设备;其中,所述虚拟SIM卡驱动程序位于虚拟卡保护AP的内核空间。Step 120: After the virtual SIM card management application passes the authentication, the virtual The SIM card driver stores the virtual SIM card information in the storage device according to the storage command issued by the virtual SIM card management application; wherein the virtual SIM card driver is located in a kernel space of the virtual card protection AP.
在步骤120中,所述虚拟SIM卡驱动程序能够有效完成虚拟SIM卡信息存储保护的功能。具体地,如图2所示,所述存储驱动程序位于虚拟卡保护AP的内核空间的物理输入输出(I/O,Input/Output)层;所述虚拟SIM卡驱动程序调用所述存储驱动程序,以便所述存储驱动程序驱动所述存储设备。其中,所述存储设备可以为闪存(Flash)。In step 120, the virtual SIM card driver can effectively perform the function of virtual SIM card information storage protection. Specifically, as shown in FIG. 2, the storage driver is located at a physical input/output (I/O, Input/Output) layer of a virtual space protection AP core space; the virtual SIM card driver calls the storage driver So that the storage driver drives the storage device. The storage device may be a flash memory.
这里,所述虚拟SIM卡驱动程序能够有效保护存储虚拟SIM卡信息的所述存储设备,确保除虚拟SIM卡驱动程序外,任何没有操作权限的程序均无法对所述存储设备进行访问。具体地,为了能够有效可靠的保证虚拟SIM卡信息的安全,所述虚拟SIM卡驱动程序对存储虚拟SIM卡信息的物理存储区域,即所述存储设备,进行了专项保护。在系统分区表中不添加存储设备的记录,虚拟SIM卡驱动程序通过调用所述存储驱动程序,从而直接操作物理存储介质的方法,对存储设备进行读写等操作,由此可实现存储设备的存储接口的唯一性,从而最大程度的保护了虚拟SIM卡信息的安全。Here, the virtual SIM card driver can effectively protect the storage device storing the virtual SIM card information, and ensure that any program without the operation authority can access the storage device except the virtual SIM card driver. Specifically, in order to ensure the security of the virtual SIM card information effectively and reliably, the virtual SIM card driver performs special protection on the physical storage area for storing the virtual SIM card information, that is, the storage device. A record of the storage device is not added in the system partition table, and the virtual SIM card driver can directly read and operate the physical storage medium by calling the storage driver, and perform operations such as reading and writing the storage device, thereby implementing the storage device. The uniqueness of the storage interface ensures maximum security of the virtual SIM card information.
如图3所示,虚拟SIM卡管理应用程序发起鉴权认证,发送认证信息给所述虚拟SIM卡驱动程序。当鉴权认证通过后,所述虚拟SIM卡驱动程序对虚拟SIM卡管理应用程序开放虚拟SIM卡操作的权限,建立连接,以便虚拟SIM卡管理应用程序对虚拟SIM卡进行管理。如果鉴权认证失败,虚拟SIM卡驱动程序将强制中断连接。As shown in FIG. 3, the virtual SIM card management application initiates authentication authentication and sends authentication information to the virtual SIM card driver. After the authentication is passed, the virtual SIM card driver opens the virtual SIM card operation right to the virtual SIM card management application, and establishes a connection, so that the virtual SIM card management application manages the virtual SIM card. If the authentication fails, the virtual SIM card driver will force the connection to be broken.
进一步地,如图3所示,所述虚拟SIM卡管理应用程序通过鉴权认证后,所述方法还包括:Further, as shown in FIG. 3, after the virtual SIM card management application passes the authentication, the method further includes:
所述虚拟SIM卡驱动程序根据所述虚拟SIM卡管理应用程序下发的查 询命令查询所述虚拟SIM卡信息;或者The virtual SIM card driver performs a check according to the virtual SIM card management application Inquiring a command to query the virtual SIM card information; or
所述虚拟SIM卡驱动程序根据所述虚拟SIM卡管理应用程序下发的删除命令删除所述虚拟SIM卡信息。The virtual SIM card driver deletes the virtual SIM card information according to a delete command issued by the virtual SIM card management application.
具体地,所述虚拟SIM卡驱动程序能够快速执行所述虚拟SIM卡管理应用程序下发的操作命令,完成对多个虚拟SIM卡信息的储存、查询、和删除等操作。为了实现这一特性,所述虚拟SIM卡驱动程序具备简单有效的数据处理能力,能够快速有效地完成来自虚拟SIM卡管理应用程序的操作命令。Specifically, the virtual SIM card driver can quickly execute an operation command issued by the virtual SIM card management application, and complete operations such as storing, querying, and deleting a plurality of virtual SIM card information. In order to achieve this feature, the virtual SIM card driver has simple and effective data processing capabilities, and can quickly and efficiently complete operational commands from the virtual SIM card management application.
如图3所示,鉴权认证通过后,虚拟SIM卡管理应用程序通过设备文件形式的接口下发操作命令,以实现对虚拟SIM卡信息的查询、存储和删除等操作。底层的虚拟SIM卡驱动程序接收操作命令后,按照命令对虚拟SIM卡进行实时操作。当虚拟SIM卡管理应用程序不再进行操作时,中断连接,其中,中断连接采用系统调用函数中的关闭函数(Close)。As shown in FIG. 3, after the authentication is passed, the virtual SIM card management application sends an operation command through the interface in the form of the device file to implement operations such as querying, storing, and deleting the virtual SIM card information. After receiving the operation command, the underlying virtual SIM card driver performs real-time operation on the virtual SIM card according to the command. When the virtual SIM card management application no longer operates, the connection is broken, wherein the interrupt connection uses a close function (Close) in the system call function.
进一步地,所述方法还包括:所述虚拟SIM卡驱动程序与无线调制解调器(MODEM)进行通信。Further, the method further includes the virtual SIM card driver communicating with a wireless modem (MODEM).
这里,所述虚拟SIM卡驱动程序能够与无线MODEM进行通信,从而保证无线MODEM网络注册和数据连接的正常进行。Here, the virtual SIM card driver can communicate with the wireless MODEM to ensure normal operation of the wireless MODEM network registration and data connection.
具体地,所述虚拟SIM卡驱动程序与无线MODEM进行通信包括:Specifically, the virtual SIM card driver communicating with the wireless MODEM includes:
所述虚拟SIM卡驱动程序根据预设调制解调器命令语言(AT,Attention)指令集发送所述虚拟SIM卡信息至所述无线MODEM;The virtual SIM card driver sends the virtual SIM card information to the wireless MODEM according to a preset modem command language (AT, Attention) instruction set;
所述无线MODEM接收所述虚拟SIM卡信息,根据所述虚拟SIM卡信息进行通讯业务操作。The wireless MODEM receives the virtual SIM card information, and performs a communication service operation according to the virtual SIM card information.
所述虚拟SIM卡驱动程序具备实时响应无线MODEM获取虚拟SIM卡信息的能力,即所述虚拟SIM卡驱动程序具备专门的服务进程来完成与无线MODEM间的数据交互。由于虚拟SIM卡信息保存在AP侧,因此,当 无线MODEM获取SIM卡信息进行网络注册业务时,AP和无线MODEM之间需要进行数据通信。The virtual SIM card driver has the capability of acquiring virtual SIM card information in response to the wireless MODEM in real time, that is, the virtual SIM card driver has a special service process to complete data interaction with the wireless MODEM. Since the virtual SIM card information is saved on the AP side, therefore, when When the wireless MODEM obtains the SIM card information for the network registration service, data communication is required between the AP and the wireless MODEM.
以目前各个主流平台的具体实现为例,可以采用的通信方式有:共享内存驱动(SMD,Shared Memory Driver)和AT指令集。AT指令集作为一种通用通讯方式,在多数平台上都可以实现。AT指令集适应性强、扩展性高。具体地,无线MODEM和AP预先设定AT指令格式,当终端需要进行网络通讯业务时,AP采用预设AT指令集将虚拟SIM卡信息发送给无线MODEM,其中,所述网络通讯业务包括语音通话、数据连接。无线MODEM获取虚拟SIM卡信息后完成通讯业务操作,其中,通讯业务操作包括网络注册、语音拨号等。Take the specific implementation of each mainstream platform as an example, the communication methods that can be adopted are: shared memory driver (SMD, Shared Memory Driver) and AT instruction set. As a general communication method, the AT instruction set can be implemented on most platforms. The AT instruction set is highly adaptable and highly scalable. Specifically, the wireless MODEM and the AP pre-set the AT command format. When the terminal needs to perform the network communication service, the AP sends the virtual SIM card information to the wireless MODEM by using the preset AT command set, where the network communication service includes a voice call. ,Data Connections. After the wireless MODEM obtains the virtual SIM card information, the communication service operation is completed, wherein the communication service operation includes network registration, voice dialing, and the like.
至此,虚拟SIM卡保护的过程就完成了。At this point, the process of virtual SIM card protection is complete.
实施例2Example 2
图4为本发明实施例2提供的虚拟卡保护AP的组成结构示意图,如图4所示,所述虚拟卡保护AP310包括:4 is a schematic structural diagram of a virtual card protection AP according to Embodiment 2 of the present invention. As shown in FIG. 4, the virtual card protection AP 310 includes:
虚拟SIM卡驱动单元220,配置为虚拟SIM卡驱动程序对虚拟SIM卡管理应用程序进行鉴权认证;所述虚拟SIM卡管理应用程序通过鉴权认证后,所述虚拟SIM卡驱动程序根据所述虚拟SIM卡管理应用程序下发的存储命令将虚拟SIM卡信息存储于存储设备330;其中,所述虚拟SIM卡驱动程序位于所述虚拟卡保护AP310的内核空间。The virtual SIM card driving unit 220 is configured to perform virtual authentication on the virtual SIM card management application by the virtual SIM card driver; after the virtual SIM card management application passes the authentication, the virtual SIM card driver according to the The storage command issued by the virtual SIM card management application stores the virtual SIM card information in the storage device 330; wherein the virtual SIM card driver is located in the kernel space of the virtual card protection AP 310.
所述虚拟SIM卡驱动单元220,还配置为所述虚拟SIM卡驱动程序与无线MODEM321进行通信。The virtual SIM card driving unit 220 is further configured to communicate with the wireless MODEM 321 by the virtual SIM card driver.
虚拟SIM卡管理应用单元210,配置为所述虚拟SIM卡管理应用程序下发所述存储命令。The virtual SIM card management application unit 210 is configured to deliver the storage command to the virtual SIM card management application.
进一步地,所述虚拟卡保护AP310还包括:Further, the virtual card protection AP 310 further includes:
设备文件单元,配置为所述虚拟SIM卡管理应用程序通过设备文件形 式的接口与所述虚拟SIM卡驱动程序进行所述鉴权认证;所述虚拟SIM卡管理应用程序通过所述设备文件形式的接口向所述虚拟SIM卡驱动程序下发所述存储命令。a device file unit configured to view the virtual SIM card management application through a device file The interface is authenticated with the virtual SIM card driver; the virtual SIM card management application delivers the storage command to the virtual SIM card driver through an interface in the form of the device file.
存储驱动单元230,配置为存储驱动程序驱动所述存储设备330。The storage drive unit 230 is configured to store a driver to drive the storage device 330.
实际应用中,所述虚拟卡保护AP中各个单元模块可由虚拟卡保护AP中的中央处理器(CPU,Central Processing Unit)、或数字信号处理器(DSP,Digital Signal Processor)、或可编程门阵列(FPGA,Field-Programmable Gate Array)实现。In a practical application, each unit module in the virtual card protection AP may be protected by a virtual card from a central processing unit (CPU), or a digital signal processor (DSP), or a programmable gate array. (FPGA, Field-Programmable Gate Array) implementation.
实施例3Example 3
图4为本发明实施例3提供的虚拟卡保护终端的组成结构示意图,如图4所示,所述终端包括:4 is a schematic structural diagram of a virtual card protection terminal according to Embodiment 3 of the present invention. As shown in FIG. 4, the terminal includes:
虚拟卡保护AP310,配置为驱动虚拟SIM卡;The virtual card protects the AP 310 and is configured to drive the virtual SIM card.
基带芯片(BB,Baseband)320,配置为与所述虚拟卡保护AP310进行通信。A baseband chip (BB) 320 is configured to communicate with the virtual card protection AP 310.
存储设备330,配置为存储虚拟SIM卡信息。The storage device 330 is configured to store virtual SIM card information.
这里,BB320提供无线通信功能,虚拟卡保护AP310配置为主要功能的实现;虚拟卡保护AP310可以被看作计算机,BB320可以被看作虚拟卡保护AP310的无线MODEM,无线MODEM通过AT指令集等接口提供通话、短消息、上网、等功能,其中,AT指令集相当于计算机和MODEM之间的接口。Here, BB320 provides wireless communication function, virtual card protection AP310 is configured as the main function realization; virtual card protection AP310 can be regarded as computer, BB320 can be regarded as virtual card protection AP310 wireless MODEM, wireless MODEM through AT command set and other interfaces Provides calls, short messages, Internet access, and other functions. The AT command set is equivalent to the interface between the computer and the MODEM.
实际应用中,所述虚拟卡保护终端中各个单元模块可由虚拟卡保护终端中的中央处理器(CPU,Central Processing Unit)、或数字信号处理器(DSP,Digital Signal Processor)、或可编程门阵列(FPGA,Field-Programmable Gate Array)实现。In practical applications, each unit module in the virtual card protection terminal may be protected by a virtual card to protect a central processing unit (CPU), or a digital signal processor (DSP), or a programmable gate array. (FPGA, Field-Programmable Gate Array) implementation.
如图2所示,本实施例提供的虚拟SIM卡功能主要实现部分位于虚拟 卡保护AP侧的内核空间,并通过驱动方式实现。位于虚拟卡保护AP侧的虚拟SIM卡驱动单元需要实现和两部分芯片间的通信。一部分是虚拟SIM卡驱动单元与虚拟卡保护AP侧用户空间中的虚拟SIM卡管理应用单元之间的通信。具体地,虚拟SIM卡管理应用单元完成与远端虚拟SIM卡服务器之间的通信,并将获取到的虚拟SIM卡信息发送给虚拟SIM卡驱动单元,之后,由虚拟SIM卡驱动单元完成内核空间的存储和安全保护。另一部分是虚拟SIM卡驱动单元与BB中的无线MODEM之间的通信。具体地,虚拟SIM卡驱动单元向无线MODEM提供虚拟SIM卡信息,使得无线MODEM完成网络注册、数据连接等功能。As shown in FIG. 2, the main implementation of the virtual SIM card function provided in this embodiment is partially located in the virtual The card protects the kernel space on the AP side and is implemented by driving. The virtual SIM card drive unit located on the virtual card protection AP side needs to implement communication with the two parts of the chip. Part of the communication between the virtual SIM card drive unit and the virtual card protects the virtual SIM card management application unit in the AP side user space. Specifically, the virtual SIM card management application unit completes communication with the remote virtual SIM card server, and sends the obtained virtual SIM card information to the virtual SIM card driving unit, and then the virtual SIM card driving unit completes the kernel space. Storage and security protection. The other part is the communication between the virtual SIM card drive unit and the wireless MODEM in the BB. Specifically, the virtual SIM card driving unit provides virtual SIM card information to the wireless MODEM, so that the wireless MODEM completes functions such as network registration, data connection, and the like.
具体地,参照图4所示,所述虚拟卡保护AP310包括:Specifically, referring to FIG. 4, the virtual card protection AP 310 includes:
虚拟SIM卡驱动单元220,配置为虚拟SIM卡驱动程序对虚拟SIM卡管理应用程序进行鉴权认证;所述虚拟SIM卡管理应用程序通过鉴权认证后,所述虚拟SIM卡驱动程序根据所述虚拟SIM卡管理应用程序下发的存储命令将虚拟SIM卡信息存储于存储设备330;其中,所述虚拟SIM卡驱动程序位于所述虚拟卡保护AP310的内核空间;The virtual SIM card driving unit 220 is configured to perform virtual authentication on the virtual SIM card management application by the virtual SIM card driver; after the virtual SIM card management application passes the authentication, the virtual SIM card driver according to the The storage command issued by the virtual SIM card management application stores the virtual SIM card information in the storage device 330; wherein the virtual SIM card driver is located in the kernel space of the virtual card protection AP 310;
虚拟SIM卡管理应用单元210,配置为所述虚拟SIM卡管理应用程序下发所述存储命令。The virtual SIM card management application unit 210 is configured to deliver the storage command to the virtual SIM card management application.
具体地,所述BB320包括:Specifically, the BB320 includes:
无线MODEM321,配置为与所述虚拟SIM卡驱动程序进行通信。The wireless MODEM 321 is configured to communicate with the virtual SIM card driver.
在实际应用中,所述虚拟卡保护AP310、BB320、虚拟SIM卡管理应用单元210、虚拟SIM卡驱动单元220、存储驱动单元230均可由位于任意计算机设备中的中央处理器(CPU,Central Processing Unit)、数字信号处理器(DSP,Digital Signal Processor)、微处理器(MPU)、或可编程逻辑阵列(FPGA,Field Programmable Gate Array)实现;所述存储设备330可以由Flash实现。 In practical applications, the virtual card protection AP 310, BB320, virtual SIM card management application unit 210, virtual SIM card driving unit 220, and storage drive unit 230 may all be central processing units (CPU, Central Processing Unit) located in any computer device. ), a digital signal processor (DSP), a microprocessor (MPU), or a Field Programmable Gate Array (FPGA); the storage device 330 can be implemented by Flash.
本发明实施例上述业务信令跟踪的装置如果以软件功能模块的形式实现并作为独立的产品销售或使用时,也可以存储在一个计算机可读取存储介质中。基于这样的理解,本发明实施例的技术方案本质上或者说对现有技术做出贡献的部分可以以软件产品的形式体现出来,该计算机软件产品存储在一个存储介质中,包括若干指令用以使得一台计算机设备(可以是个人计算机、服务器、或者网络设备等)执行本发明各个实施例所述方法的全部或部分。而前述的存储介质包括:U盘、移动硬盘、只读存储器(ROM,Read Only Memory)、磁碟或者光盘等各种可以存储程序代码的介质。这样,本发明实施例不限制于任何特定的硬件和软件结合。The apparatus for tracking the service signaling according to the embodiment of the present invention may also be stored in a computer readable storage medium if it is implemented in the form of a software function module and sold or used as a separate product. Based on such understanding, the technical solution of the embodiments of the present invention may be embodied in the form of a software product in essence or in the form of a software product stored in a storage medium, including a plurality of instructions. A computer device (which may be a personal computer, server, or network device, etc.) is caused to perform all or part of the methods described in various embodiments of the present invention. The foregoing storage medium includes various media that can store program codes, such as a USB flash drive, a mobile hard disk, a read only memory (ROM), a magnetic disk, or an optical disk. Thus, embodiments of the invention are not limited to any specific combination of hardware and software.
相应地,本发明实施例还提供一种计算机存储介质,其中存储有计算机程序,该计算机程序用于执行本发明实施例的虚拟卡保护方法。Correspondingly, an embodiment of the present invention further provides a computer storage medium, wherein a computer program is stored, and the computer program is used to execute the virtual card protection method of the embodiment of the present invention.
以上所述,仅为本发明的较佳实施例而已,并非用于限定本发明的保护范围。 The above is only the preferred embodiment of the present invention and is not intended to limit the scope of the present invention.

Claims (12)

  1. 一种虚拟卡保护方法,所述方法包括:A virtual card protection method, the method comprising:
    虚拟用户身份识别SIM卡驱动程序对虚拟SIM卡管理应用程序进行鉴权认证;The virtual user identity SIM card driver authenticates the virtual SIM card management application;
    所述虚拟SIM卡管理应用程序通过鉴权认证后,所述虚拟SIM卡驱动程序根据所述虚拟SIM卡管理应用程序下发的存储命令将虚拟SIM卡信息存储于存储设备;After the virtual SIM card management application is authenticated, the virtual SIM card driver stores the virtual SIM card information in the storage device according to the storage command issued by the virtual SIM card management application;
    其中,所述虚拟SIM卡驱动程序位于虚拟卡保护应用处理器AP的内核空间。The virtual SIM card driver is located in a kernel space of the virtual card protection application processor AP.
  2. 根据权利要求1所述的方法,其中,所述方法还包括:The method of claim 1 wherein the method further comprises:
    所述虚拟SIM卡驱动程序与无线调制解调器MODEM进行通信。The virtual SIM card driver communicates with a wireless modem MODEM.
  3. 根据权利要求1所述的方法,其中,所述虚拟SIM卡管理应用程序通过鉴权认证后,所述方法还包括:The method of claim 1, wherein after the virtual SIM card management application is authenticated, the method further comprises:
    所述虚拟SIM卡驱动程序根据所述虚拟SIM卡管理应用程序下发的查询命令查询所述虚拟SIM卡信息;或者,The virtual SIM card driver queries the virtual SIM card information according to the query command issued by the virtual SIM card management application; or
    所述虚拟SIM卡驱动程序根据所述虚拟SIM卡管理应用程序下发的删除命令删除所述虚拟SIM卡信息。The virtual SIM card driver deletes the virtual SIM card information according to a delete command issued by the virtual SIM card management application.
  4. 根据权利要求3所述的方法,其中,所述虚拟SIM卡驱动程序对虚拟SIM卡管理应用程序进行鉴权认证为:The method of claim 3, wherein the virtual SIM card driver authenticates the virtual SIM card management application as:
    所述虚拟SIM卡驱动程序通过设备文件形式的接口与所述虚拟SIM卡管理应用程序进行鉴权认证;The virtual SIM card driver performs authentication and authentication with the virtual SIM card management application through an interface in the form of a device file;
    相应的,所述虚拟SIM卡管理应用程序通过所述设备文件形式的接口向所述虚拟SIM卡驱动程序下发所述存储命令、所述查询命令和所述删除命令。Correspondingly, the virtual SIM card management application delivers the storage command, the query command, and the delete command to the virtual SIM card driver through an interface in the form of the device file.
  5. 根据权利要求1至4任一项所述的方法,其中,所述虚拟SIM卡驱 动程序对虚拟SIM卡管理应用程序进行鉴权认证前,所述方法还包括:The method according to any one of claims 1 to 4, wherein the virtual SIM card drive Before the program authenticates the virtual SIM card management application, the method further includes:
    所述虚拟SIM卡管理应用程序向所述虚拟SIM卡驱动程序发送认证连接请求;The virtual SIM card management application sends an authentication connection request to the virtual SIM card driver;
    认证连接成功后,所述虚拟SIM卡管理应用程序向所述虚拟SIM卡驱动程序发送认证信息。After the authentication connection is successful, the virtual SIM card management application sends the authentication information to the virtual SIM card driver.
  6. 一种虚拟卡保护AP,所述AP包括:A virtual card protects an AP, and the AP includes:
    虚拟SIM卡驱动单元,配置为虚拟SIM卡驱动程序对虚拟SIM卡管理应用程序进行鉴权认证;所述虚拟SIM卡管理应用程序通过鉴权认证后,所述虚拟SIM卡驱动程序根据所述虚拟SIM卡管理应用程序下发的存储命令将虚拟SIM卡信息存储于存储设备;其中,所述虚拟SIM卡驱动程序位于所述虚拟卡保护AP的内核空间;a virtual SIM card driving unit configured to authenticate the virtual SIM card management application by the virtual SIM card driver; after the virtual SIM card management application passes the authentication, the virtual SIM card driver is configured according to the virtual The storage command issued by the SIM card management application stores the virtual SIM card information in the storage device; wherein the virtual SIM card driver is located in the kernel space of the virtual card protection AP;
    虚拟SIM卡管理应用单元,配置为所述虚拟SIM卡管理应用程序下发所述存储命令。The virtual SIM card management application unit is configured to deliver the storage command to the virtual SIM card management application.
  7. 根据权利要求6所述的AP,其中,所述虚拟SIM卡驱动单元,还配置为所述虚拟SIM卡驱动程序与无线MODEM进行通信。The AP of claim 6, wherein the virtual SIM card driving unit is further configured to communicate with the wireless MODEM by the virtual SIM card driver.
  8. 根据权利要求6或7所述的AP,其中,所述AP还包括:The AP according to claim 6 or 7, wherein the AP further comprises:
    设备文件单元,配置为所述虚拟SIM卡管理应用程序通过设备文件形式的接口与所述虚拟SIM卡驱动程序进行所述鉴权认证;所述虚拟SIM卡管理应用程序通过所述设备文件形式的接口向所述虚拟SIM卡驱动程序下发所述存储命令;a device file unit configured to perform the authentication authentication by the virtual SIM card management application with the virtual SIM card driver through an interface in a device file format; the virtual SIM card management application is in the form of the device file The interface sends the storage command to the virtual SIM card driver;
    存储驱动单元,配置为存储驱动程序驱动所述存储设备。And a storage drive unit configured to store the storage device by the storage driver.
  9. 一种虚拟卡保护终端,所述终端包括:A virtual card protection terminal, the terminal includes:
    虚拟卡保护AP,配置为驱动虚拟SIM卡;The virtual card protects the AP and is configured to drive the virtual SIM card;
    基带芯片BB,配置为与所述虚拟卡保护AP进行通信;a baseband chip BB configured to communicate with the virtual card protection AP;
    存储设备,配置为存储虚拟SIM卡信息。 A storage device configured to store virtual SIM card information.
  10. 根据权利要求9所述的终端,其中,所述虚拟卡保护AP包括:The terminal of claim 9, wherein the virtual card protection AP comprises:
    虚拟SIM卡驱动单元,配置为虚拟SIM卡驱动程序对虚拟SIM卡管理应用程序进行鉴权认证;所述虚拟SIM卡管理应用程序通过鉴权认证后,所述虚拟SIM卡驱动程序根据所述虚拟SIM卡管理应用程序下发的存储命令将虚拟SIM卡信息存储于存储设备;其中,所述虚拟SIM卡驱动程序位于所述虚拟卡保护AP的内核空间;a virtual SIM card driving unit configured to authenticate the virtual SIM card management application by the virtual SIM card driver; after the virtual SIM card management application passes the authentication, the virtual SIM card driver is configured according to the virtual The storage command issued by the SIM card management application stores the virtual SIM card information in the storage device; wherein the virtual SIM card driver is located in the kernel space of the virtual card protection AP;
    虚拟SIM卡管理应用单元,配置为所述虚拟SIM卡管理应用程序下发所述存储命令。The virtual SIM card management application unit is configured to deliver the storage command to the virtual SIM card management application.
  11. 根据权利要求10所述的终端,其中,所述BB包括:The terminal of claim 10, wherein the BB comprises:
    无线MODEM,配置为与所述虚拟SIM卡驱动程序进行通信。A wireless MODEM configured to communicate with the virtual SIM card driver.
  12. 一种计算机存储介质,所述计算机存储介质中存储有计算机可执行指令,该计算机可执行指令配置为执行权利要求1-5任一项所述的虚拟卡保护方法。 A computer storage medium having stored therein computer executable instructions configured to perform the virtual card protection method of any of claims 1-5.
PCT/CN2015/090477 2015-07-24 2015-09-23 Virtual card protection method, application processor and terminal, and computer storage medium WO2017016058A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201510443089.3A CN106375996B (en) 2015-07-24 2015-07-24 Virtual user identity identification card protection method, application processor and terminal
CN201510443089.3 2015-07-24

Publications (1)

Publication Number Publication Date
WO2017016058A1 true WO2017016058A1 (en) 2017-02-02

Family

ID=57880342

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2015/090477 WO2017016058A1 (en) 2015-07-24 2015-09-23 Virtual card protection method, application processor and terminal, and computer storage medium

Country Status (2)

Country Link
CN (1) CN106375996B (en)
WO (1) WO2017016058A1 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP4068821A1 (en) * 2021-04-01 2022-10-05 Simo Holdings Inc. Vsim module for portable apparatus and portable apparatus

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107708107A (en) * 2017-09-30 2018-02-16 广东欧珀移动通信有限公司 Network service processing method, device, storage medium and terminal
CN107635220A (en) * 2017-09-30 2018-01-26 广东欧珀移动通信有限公司 Network service processing method, device, storage medium and terminal
CN109831775B (en) * 2019-02-02 2021-12-03 华为数字技术(苏州)有限公司 Processor, baseband chip and SIM card information transmission method
CN110267256B (en) * 2019-06-21 2023-08-01 深圳市优克联新技术有限公司 SIM card resource management scheduling device, communication terminal and system

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101742731A (en) * 2008-11-24 2010-06-16 华为终端有限公司 Method and device for sharing user identification card
CN101931945A (en) * 2010-08-24 2010-12-29 武汉天喻信息产业股份有限公司 Download and installation method for realizing (U) SIM card application by using PC terminal
CN103347257A (en) * 2013-06-05 2013-10-09 华为技术有限公司 Virtual user identification data distribution method, acquisition method and device
US20130276056A1 (en) * 2012-04-13 2013-10-17 Cisco Technology, Inc. Automatic curation and modification of virtualized computer programs

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20090125996A1 (en) * 2007-09-19 2009-05-14 Interdigital Patent Holdings, Inc. Virtual subscriber identity module
CN101222712B (en) * 2008-02-02 2010-09-08 代邦(江西)制卡有限公司 Mobile terminal supporting virtual SIM card and its user identity authentication method
CN101355770B (en) * 2008-09-12 2011-06-15 普天信息技术研究院有限公司 Method and system for virtually spreading capacity of user recognizing module card
CN101790149A (en) * 2010-02-05 2010-07-28 华为终端有限公司 Registration method of mobile terminal equipment, calibration item verifying method, system and device

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101742731A (en) * 2008-11-24 2010-06-16 华为终端有限公司 Method and device for sharing user identification card
CN101931945A (en) * 2010-08-24 2010-12-29 武汉天喻信息产业股份有限公司 Download and installation method for realizing (U) SIM card application by using PC terminal
US20130276056A1 (en) * 2012-04-13 2013-10-17 Cisco Technology, Inc. Automatic curation and modification of virtualized computer programs
CN103347257A (en) * 2013-06-05 2013-10-09 华为技术有限公司 Virtual user identification data distribution method, acquisition method and device

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
MATTHIAS LANGE ET AL.: "L4Android: A Generic Operating System Framework for Secure Smartphones", SPSM' 11: PROCEEDING OF THE 1ST ACM WORKSHOP ON SECURITY AND PRIVACY IN SMARTPHONES AND MOBILE DEVICES, 17 October 2011 (2011-10-17), XP058005979 *

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP4068821A1 (en) * 2021-04-01 2022-10-05 Simo Holdings Inc. Vsim module for portable apparatus and portable apparatus
US11611867B2 (en) 2021-04-01 2023-03-21 Simo Holdings Inc. VSIM module for portable apparatus

Also Published As

Publication number Publication date
CN106375996A (en) 2017-02-01
CN106375996B (en) 2021-05-18

Similar Documents

Publication Publication Date Title
US11902289B2 (en) Methods and systems for controlling access to a protected resource
US11764966B2 (en) Systems and methods for single-step out-of-band authentication
US10834086B1 (en) Hybrid cloud-based authentication for flash storage array access
US9882913B1 (en) Delivering authorization and authentication for a user of a storage array from a cloud
US11429950B2 (en) Mobile payment apparatus and method
WO2017016058A1 (en) Virtual card protection method, application processor and terminal, and computer storage medium
KR102141836B1 (en) Two factor authentication
US20240106625A1 (en) Securing audio communications
CN106330958B (en) Secure access method and device
WO2019192129A1 (en) Customer data security access method and device based on mobile terminal
CN108462710A (en) Authentication authority method, device, certificate server and machine readable storage medium
JP2012530967A (en) Remote access control of storage device
WO2017147890A1 (en) Verification code short message display method and mobile terminal
EP3061025B1 (en) Method and system for authenticating service
WO2020181809A1 (en) Data processing method and system based on interface checking, and computer device
US20130059567A1 (en) Protection of a communication channel between a security module and an nfc circuit
WO2016045189A1 (en) Data reading/writing method of dual-system terminal and dual-system terminal
WO2020186457A1 (en) Authentication method and apparatus for ip camera
US20140122867A1 (en) Encryption and decryption of user data across tiered self-encrypting storage devices
WO2020253197A1 (en) Method and apparatus for managing virtual user identification card, terminal device and storage medium
WO2019134494A1 (en) Verification information processing method, communication device, service platform, and storage medium
EP3162042B1 (en) Identification of call participants
KR102050737B1 (en) Method for authentication users using multi-channel based on trusted platform, apparatus thereof, terminal thereof and system thereof
KR20160046655A (en) Apparatus and method for user authentication using subscriber identification module
US11184763B2 (en) Hands free access management and credential protection

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 15899410

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 15899410

Country of ref document: EP

Kind code of ref document: A1