WO2017128286A1 - Method for downloading subscription file, related device, and system - Google Patents

Method for downloading subscription file, related device, and system Download PDF

Info

Publication number
WO2017128286A1
WO2017128286A1 PCT/CN2016/072718 CN2016072718W WO2017128286A1 WO 2017128286 A1 WO2017128286 A1 WO 2017128286A1 CN 2016072718 W CN2016072718 W CN 2016072718W WO 2017128286 A1 WO2017128286 A1 WO 2017128286A1
Authority
WO
WIPO (PCT)
Prior art keywords
download
subscription
file
request message
terminal device
Prior art date
Application number
PCT/CN2016/072718
Other languages
French (fr)
Chinese (zh)
Inventor
衣强
龙水平
高林毅
于小博
范姝男
Original Assignee
华为技术有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 华为技术有限公司 filed Critical 华为技术有限公司
Priority to PCT/CN2016/072718 priority Critical patent/WO2017128286A1/en
Priority to CN201680004898.7A priority patent/CN107113320B/en
Publication of WO2017128286A1 publication Critical patent/WO2017128286A1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords
    • H04L63/0846Network architectures or network communication protocols for network security for authentication of entities using passwords using time-dependent-passwords, e.g. periodically changing passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1441Countermeasures against malicious traffic
    • H04L63/1466Active attacks involving interception, injection, modification, spoofing of data unit addresses, e.g. hijacking, packet injection or TCP sequence number attacks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/06Protocols specially adapted for file transfer, e.g. file transfer protocol [FTP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]
    • H04W12/041Key generation or derivation

Definitions

  • the present invention relates to the field of Internet of Things technologies, and in particular, to a method, a related device and a system for downloading a contract file.
  • eUICC Embedded Universal Integrated Circuit Card
  • the user can directly activate, deactivate, or delete the subscription file through the interactive interface of the terminal, that is, the user does not need to pass through the network side.
  • the user After accidentally deleting the contract file, or repairing the eUICC of the terminal, or migrating the contract file to another terminal, or resetting the eUICC, you need to request the operator to re-download the contract file, but re-download it.
  • it is easy for an attacker to attack the operator by forging a re-download request, or illegally obtaining a contract file, which results in lower security when re-downloading.
  • the present invention provides a method, a related device and a system for downloading a subscription file, which can solve the problem of low security when re-downloading a subscription file in the existing mechanism in the prior art.
  • the first aspect provides a method for downloading a contract file, including:
  • the operator server generates a first download password
  • the operator server sends a second request message to the subscription management entity, where the second request message is used to instruct the subscription management entity to generate a subscription file requested by the terminal device to download, so that the terminal device receives the subscription from the terminal device.
  • the management entity downloads the contract document;
  • the second request message carries the first download password, so that the terminal device receives the sign
  • the management entity obtains the first download password; or the operator server sends the first download password to the terminal device;
  • the first download password is used by the terminal server to authenticate the request of the terminal device when the terminal device requests the operator server to download the subscription file that belongs to the same contract with the subscription file.
  • the operator server After the operator server receives the first confirmation message sent by the subscription management entity, the operator server knows that the subscription file has been successfully downloaded, and saves the first download password, so that the terminal device requests the subscription file again. And authenticating the request of the terminal device, where the first confirmation message is a message that is sent by the subscription management entity after successfully sending the subscription file to the terminal device, where the first confirmation message is used to indicate The terminal device has successfully downloaded the subscription file.
  • the method further includes:
  • the operator server authenticates the third request message by using the first download password
  • the authentication succeeds, and after the authentication succeeds, the operator server generates a third download password
  • the operator server sends a fourth request message to the subscription management entity, where the fourth request message is used to instruct the subscription management entity to acquire a subscription file that the terminal device requests to download and belongs to the same contract with the subscription file, And causing the terminal device that sends the third request message to download, from the subscription management entity, a subscription file that belongs to the same contract with the subscription file;
  • the fourth request message carries the third download password, so that the terminal device obtains the third download password from the subscription management entity; or the operator server sends a terminal to send the third request message The device sends the third download password;
  • the third download password is used by the terminal server to authenticate the request of the terminal device when the terminal device requests the operator server to download the subscription file that belongs to the same contract with the subscription file.
  • the download password generated by the operator server is used for authentication, so that the download password is dynamically generated, and the download is requested. Dynamic authentication is sought to avoid the attacker's masquerading download request.
  • the operator server After the subscription file is downloaded to the terminal device, the operator server receives the second confirmation message sent by the subscription management entity, so that the subscription file that the terminal device requests to download and belongs to the same contract with the subscription file has been successfully downloaded. And the operator server saves the third download password and deletes the first download password, and the second confirmation message is that the subscription management entity successfully sends the subscription file that belongs to the same contract with the subscription file to The message sent by the terminal device optimizes the dynamic authentication mechanism by dynamically updating the download password, thereby improving the security of the download.
  • the first download password or the third download password meets at least one of the following:
  • Valid for a preset duration the number of valid uses is finite, the number of valid uses within the preset duration is finite, and the number of downloads containing the contracted file.
  • the second aspect provides a method for downloading a contract file, the method comprising:
  • the terminal device sends a first request message to the operator server, where the first request message is used to request the operator server to download a subscription file, so that the operator server sends a second request message to the subscription management entity, The second request message is used to instruct the subscription management entity to generate a subscription file that the terminal device requests to download;
  • the terminal device is forwarded to the terminal device by the contract management entity after being sent by the operator server to the subscription management entity;
  • the first download password is used by the terminal device to request authentication from the operator server when requesting to download a subscription file that belongs to the same contract as the subscription file.
  • the method further includes:
  • the operator server authenticates the third request message, and after the authentication is passed, the terminal device acquires the operator.
  • a third download password generated by the server and a subscription file from the contract management entity that belongs to the same contract as the subscription file, and the third download password is used by the terminal device to request the download and the server again from the server.
  • the contract document belongs to the contract document of the same contract, the server is requested to perform authentication.
  • the first download password or the third download password is obtained by the terminal device from the operator server or the contract management entity.
  • the method further includes:
  • the terminal device replaces the locally saved first download password with the third download password.
  • the dynamic authentication mechanism can be optimized to improve the security of the download.
  • the first download password or the third download password meets at least one of the following:
  • Valid for a preset duration the number of valid uses is finite, within the preset duration, the number of valid uses is finite, and the number of downloads containing the contracted file.
  • a third aspect provides a method of downloading a subscription file, the method comprising:
  • the subscription management entity receives a second request message sent by the operator server, where the second request message is used to indicate that the subscription management entity generates a subscription file that the terminal device requests to download, and the second request message is that the carrier server is After receiving the first request message sent by the terminal device, sending the first request message to the subscription management entity, where the first request message is used to request the carrier server to download the subscription file;
  • the second request message carries a first download password generated by the operator server
  • the contract management entity generates the subscription file according to the second request message, and the signing Sending the file and the first download password to the terminal device, where the first download password is used by the terminal device to download to the operator server again the download file that belongs to the same contract as the subscription file,
  • the carrier server is authenticated.
  • the method further includes:
  • the subscription management entity receives a fourth request message that is sent by the operator server and carries a third download password, where the third download password is a download password generated after the operator server successfully authenticates the third request message. ;
  • the contract management entity acquires, according to the instruction of the fourth request message, a subscription file that is requested by the terminal device to be downloaded and belongs to the same contract, and the third download password and the subscription file belong to the same
  • the signed contract file is sent to the terminal device;
  • the third download password is used by the terminal device to request authentication from the operator server when the terminal device requests to download the subscription file that belongs to the same contract as the subscription file.
  • dynamically updating the download password dynamic request authentication of the terminal device is implemented, and the attacker's masquerading download request is avoided.
  • the first download password or the third download password meets at least one of the following:
  • Valid for a preset duration the number of valid uses is finite, within the preset duration, the number of valid uses is finite, and the number of downloads containing the contracted file.
  • the solutions provided by the foregoing first to third aspects are mainly described as being generated by the operator server and authenticating the download password.
  • the solutions provided in the following fourth to sixth aspects mainly describe that the downloading password is generated and authenticated by the contract management entity. .
  • the fourth aspect provides a method for downloading a contract file, including:
  • the subscription management entity After receiving the second request message sent by the terminal device, the subscription management entity generates a first download password, where the second request message is used to request to download the subscription file; the subscription management entity The first download password and the subscription file are sent to the terminal device, and the first download password is used by the terminal device when the terminal device requests to download a subscription file that belongs to the same contract as the subscription file, the signing The management entity authenticates the terminal device.
  • the method further includes:
  • the subscription management entity authenticates the fourth request message, and when the second download password is the same as or corresponds to the first download password, the authentication succeeds;
  • the subscription management entity After the authentication succeeds, the subscription management entity generates a third download password, and sends the third download password and the subscription file that belongs to the same contract with the subscription file to the terminal device that issues the fourth request message.
  • the third download password is used by the subscription management entity to authenticate the terminal device when the terminal device requests to download a subscription file that belongs to the same contract as the subscription file. Dynamic authentication is achieved by dynamically generating download passwords to avoid attackers' masquerading download requests.
  • the first download password may be saved by the contract management entity or the operator server, and the method further includes one of the following:
  • the subscription management entity saves the first download password
  • the subscription management entity sends the first download password to the operator server for saving.
  • the subscription management entity authenticates the fourth request message, including one of the following:
  • the subscription management entity authenticates the second download password in the fourth request message by using the locally saved first download password
  • the third request message carries the first download password from the subscription management entity (in this case, the first download password generated by the subscription management entity is sent by the subscription management entity to the
  • the carrier management server saves the second download password in the fourth request message by using the first download password carried in the third request message.
  • the method further includes one of the following:
  • the subscription management entity updates the locally saved first download password to the third download password
  • the contract management entity sends the third download password to the operator server for saving, so that the operator server updates the locally saved first download password to the third download password.
  • the dynamic authentication mechanism can be optimized to improve the security of the download.
  • the first download password or the second download password or the third download password meet at least one of the following:
  • the number of valid uses is finite, within the preset duration, the number of valid uses is finite, and the number of downloads containing the contracted file.
  • the second request message carries a fourth download password
  • the fourth download password is generated by the subscription management entity for the terminal device before the terminal device requests the subscription, the fourth The download password is used to authenticate whether the terminal device has the right to apply for signing;
  • the generating the first download password includes:
  • the subscription management entity verifies the fourth download password, and after the verification is passed, generates the first download password
  • the method further includes:
  • the subscription management entity replaces the saved fourth download password with the first download password
  • the subscription management entity sends the first download password to the operator server, so that the operator server replaces the locally saved fourth download password with the first download password.
  • the signing management entity sends the fourth download password to the terminal device before the terminal device requests the signing of the operator server, so as to avoid the possibility of forging the download request during the first downloading process, and providing protection for the first download of the terminal device.
  • two-factor authentication including carrier services
  • the security of the first download is improved.
  • the download password is dynamically generated and updated to reduce the probability of being attacked.
  • the fifth aspect provides a method for downloading a contract file, including:
  • the operator server sends a first request message to the subscription management entity, where the first request message is used to instruct the subscription management entity to generate a subscription file that the terminal device requests to download;
  • the first download password is a second request sent by the subscription management entity to the terminal device a first download password generated after the message, wherein the second request message is used to request to download the subscription file;
  • the first download password is used to authenticate the re-request of the terminal device when the terminal device requests to download a subscription file that belongs to the same contract as the subscription file.
  • the method further includes:
  • the operator server sends a third request message to the subscription management entity, where the third request message is used to instruct the subscription management entity to acquire a subscription file that belongs to the same contract with the subscription file;
  • the terminal device sends a fourth request message to the subscription management entity, and after the subscription management entity successfully authenticates the first download password in the fourth request message, the third download password is generated, that is, the third download password is the a download password generated by the subscription management entity after the fourth request message is successfully authenticated, and the third download password is used by the terminal device when the terminal device requests to download the subscription file that belongs to the same contract with the subscription file again.
  • the management entity authenticates the terminal device. Dynamically update the download password, synchronize with the contract management entity, and authenticate for subsequent contract management entities The latest download password is provided in real time when the terminal device downloads the request.
  • the third request message carries the first download password
  • the third request message is further used by the subscription management entity after receiving the fourth request message sent by the terminal device.
  • the first download password carried in the third request message, and the fourth request message is authenticated.
  • the first download password is carried by the third request message, so that the first download password for authenticating the download request of the terminal is provided in real time for the subscription management entity.
  • the method before the operator server receives the first download password sent by the subscription management entity, the method further includes:
  • the operator server acquires a fourth download password from the subscription management entity, and sends the fourth download password to the terminal device.
  • the fourth download password is allocated by the contract management entity.
  • the saving the first download password comprises:
  • the operator server replaces the fourth download password with the first download password.
  • the sixth aspect provides a method for downloading a subscription file, including:
  • the terminal device sends a first download request to the operator server, where the first download request message is used to apply for a subscription to the operator server, and request to download a subscription file;
  • the first download password is used by the terminal device to request authentication from the subscription management entity when the terminal device requests to download a subscription file that belongs to the same contract as the subscription file.
  • the request is initiated to the operator server, and the method further includes:
  • the terminal device sends a second download request message to the operator server, where the second download request message is used to request the carrier server to download and belong to the same contract with the subscription file. Signing documents;
  • the terminal device receives a third download password sent by the subscription management entity and the subscription file that belongs to the same contract with the subscription file, and the third download password is used by the subscription management entity to use the first download password. And generating, after the fourth request message sent by the terminal device is authenticated;
  • the terminal device When the terminal device requests the terminal server to download the subscription file that belongs to the same contract with the subscription file, the terminal device requests the subscription management entity to request authentication.
  • the dynamic authentication download mechanism is optimized to improve the security of the download.
  • the method further includes:
  • the terminal device replaces the locally saved first download password with the third download password.
  • the dynamic authentication mechanism can be optimized to improve the security of the download.
  • the first download password or the second download password or the third download password meets at least one of the following:
  • the number of valid uses is finite, within the preset duration, the number of valid uses is finite, and the number of downloads containing the contracted file.
  • the second request message carries a fourth download password from the subscription management entity, and the fourth download password is used by the subscription management entity to verify before generating the first download password.
  • the second request message carries a fourth download password from the subscription management entity, and the fourth download password is used by the subscription management entity to verify before generating the first download password.
  • the method further includes:
  • the terminal device replaces the saved fourth download password with the first download password. Avoid the possibility of forgery download requests during the first download, provide guarantee for the first download of the terminal device, and improve the first download by two-factor authentication (including whether the identity of the operator server to authenticate the terminal device is legal and the fourth download password is authenticated). safety.
  • the following seventh aspect and the eighth aspect provide the embodiment, which is mainly described by the operator server, when the subscription file requested by the terminal device is the subscription file that has been applied for, and the contract management entity is notified to prepare the contract file.
  • a method for downloading a subscription file in a seventh aspect comprising:
  • the subscription file requested to be downloaded by the first request message is a subscription file that has been requested for signing, according to the information about the subscribed information carried in the first request message, sending a second request to the subscription management entity.
  • the message, the second request message is used to instruct the subscription management entity to acquire the subscription file.
  • the information that has been applied for the subscription includes the user identifier corresponding to the applied for the subscription, or the subscription document identifier corresponding to the subscription document that has been applied for the contract, or the corresponding application for the subscription.
  • Download the password Through the user ID or file identification or download password, the contract file that the terminal device requests to download can be obtained quickly, accurately, and in a targeted manner, and the process and time for downloading the contract file are reduced.
  • the first request message further carries an embedded universal integrated circuit card eUICC identifier of the terminal device;
  • the operator server After determining that the subscription file requested by the first request message is a subscription file that has been requested for subscription, the operator server needs to execute before sending the second request message to the subscription management entity:
  • the operator server may carry different parameters in the second request message by using one of the following manners, so that the subscription management entity acquires the terminal. Signing documents requested by the device:
  • the second request message further carries the re-download indication information and the subscription file identifier, where the re-download indication information is used to indicate that the subscription management entity is associated with the subscribed file that has been distributed according to the subscription file identifier.
  • the second request message further carries the first subscription file information corresponding to the signed contract file that has been applied for the contract, and the first subscription document information that has been applied for the contract includes the signed application has been signed.
  • the root key information corresponding to the distributed subscription file, the first subscription file information is used by the subscription file management entity to generate the subscription file that the terminal device requests to download.
  • the content carried by the second request message enables the subscription management entity to provide the subscription file that the subscription has been distributed for the terminal device, and the contract cost of the operator server can be reduced without newly generating a new subscription contract file.
  • the download request of the terminal device is regarded as a new subscription, so that the second request message may be carried in the second request message. Signing the file information, so that the contract file management entity uses the second contract file information to generate a subscription file that the terminal device requests to download.
  • the eighth aspect provides a method for downloading a contract file, including:
  • Receiving, by the subscription management entity, a second request message sent by the operator server acquiring, according to the second request message, a subscription file that the terminal device requests to download, where the second request message is that the operator server receives the first request message, Determining, according to the first request message, a message sent after the first request message requests to download the subscribed subscription file, where the first request message carries information that has been requested to be signed;
  • the contract management entity sends the contracted file that has been applied for the contract to the terminal device.
  • the information that has been applied for the subscription includes the user identifier corresponding to the applied for the subscription or the subscription file identifier corresponding to the signed subscription document that has been applied for the subscription or the download password corresponding to the applied for the subscription. .
  • the contract file that the terminal device requests to download can be obtained quickly, accurately, and in a targeted manner, and the process and time for downloading the contract file are reduced.
  • the subscription management entity may obtain the subscription file that the terminal device requests to download by using one of the following:
  • the subscription management entity is associated with the contracted file that has been subscribed to the already-applied contract according to the file identifier of the contracted file.
  • the second request message further carries the corresponding contract file that has been applied for the contracted distribution.
  • the contract management entity uses the first subscription file information to generate a subscription file that the terminal device requests to download.
  • the subscription management entity uses the second subscription file information to generate a subscription file that the terminal device requests to download.
  • the contract cost of the operator server can be reduced without newly creating a new contract signing document.
  • a ninth aspect of the present invention provides an operator server having a function of implementing a method corresponding to the download subscription file provided by the above first aspect.
  • the functions may be implemented by hardware or by corresponding software implemented by hardware.
  • the hardware or software includes one or more modules corresponding to the functions described above, which may be software and/or hardware.
  • the operator server includes:
  • a receiving module configured to receive a first request message sent by the terminal device, where the first request message is used to request the operator server to download the subscription file;
  • a processing module configured to generate a first download password
  • a sending module configured to send a second request message to the subscription management entity, where the second request message is used to instruct the subscription management entity to generate a subscription file that the terminal device requests to download, so that the terminal device receives the subscription from the terminal device
  • the management entity downloads the contract document
  • the second request message carries the first download password, so that the terminal device obtains the first download password from the subscription management entity; or sends the first to the terminal device by using the sending module. Download password
  • the processing module performs authentication on the request of the terminal device when the terminal device requests to download the subscription file that belongs to the same contract with the subscription file.
  • the operator server includes:
  • processors memories, receivers, and transmitters
  • the memory is used to store program code
  • the processor is configured to invoke program code in the memory to perform the following operations:
  • the second request message carries the first download password, so that the terminal device obtains the first download password from the subscription management entity; or sends the first to the terminal device by using the transmitter Download password
  • the first download password is used by the processor to authenticate the re-request of the terminal device when the terminal device requests to download a subscription file that belongs to the same contract as the subscription file.
  • a tenth aspect of the present invention provides a terminal device having a function of implementing a method corresponding to the download subscription file provided by the second aspect.
  • the functions may be implemented by hardware or by corresponding software implemented by hardware.
  • the hardware or software includes one or more modules corresponding to the functions described above, which may be software and/or hardware.
  • the terminal device includes:
  • a sending module configured to send a first request message to the operator server, where the first request message is used to request the carrier server to download a subscription file, so that the operator server sends a second request message to the subscription management entity.
  • the second request message is used to instruct the subscription management entity to generate a subscription file that the terminal device requests to download;
  • a receiving module configured to acquire a first download password generated by the operator server and receive the subscription file from the subscription management entity
  • the first download password is used by the terminal device to request authentication from the server by using the sending module when requesting to download a subscription file that belongs to the same contract as the subscription file.
  • the terminal device includes:
  • processors memories, receivers, and transmitters
  • the memory is used to store program code
  • the processor is configured to invoke program code in the memory to perform the following operations:
  • the entity sends a second request message, where the second request message is used to instruct the signing management entity to generate a subscription file that the terminal device requests to download;
  • the first download password is used by the terminal device to request authentication from the server through the transmitter when requesting to download a subscription file that belongs to the same contract as the subscription file.
  • An eleventh aspect of the present invention provides a contract management entity having a function of implementing a method corresponding to the download subscription file provided by the above third aspect.
  • the functions may be implemented by hardware or by corresponding software implemented by hardware.
  • the hardware or software includes one or more modules corresponding to the functions described above, which may be software and/or hardware.
  • the contract management entity includes:
  • a receiving module configured to receive a second request message sent by the operator server, where the second request message is used to instruct the signing management entity to generate a subscription file that the terminal device requests to download, where the second request message is the operator
  • the server After receiving the first request message sent by the terminal device, the server sends the first request message to the subscription management entity, where the first request message is used to request the carrier server to download the subscription file;
  • the second request message carries a first download password generated by the operator server
  • a processing module configured to generate the subscription file according to the second request message received by the receiving module
  • a sending module configured to send the first download password and the subscription file generated by the processing module to the terminal device, where the first download password is used by the terminal device to the operator server again
  • the server is requested to perform authentication, that is, the operator server authenticates the re-request message of the terminal device.
  • the contract management entity includes:
  • processors memories, receivers, and transmitters
  • the memory is used to store program code
  • the processor is configured to invoke program code in the memory to perform the following operations:
  • the server After receiving the first request message sent by the terminal device, the server sends the first request message to the subscription management entity, where the first request message is used to request the carrier server to download the subscription file;
  • the second request message carries a first download password generated by the operator server
  • a twelfth aspect of the present invention provides a contract management entity having a function of implementing a method corresponding to the download subscription file provided by the fourth aspect.
  • the functions may be implemented by hardware or by corresponding software implemented by hardware.
  • the hardware or software includes one or more modules corresponding to the functions described above, which may be software and/or hardware.
  • the contract management entity includes:
  • a receiving module configured to receive a first request message sent by the operator server, where the first request message is sent by the operator server to the subscription management entity after receiving the first download request message of the terminal device, where The first download request message is used to request the carrier server to download a subscription file;
  • a processing module configured to generate, according to the first request message received by the receiving module, a subscription file that the terminal device requests to download;
  • the receiving module After the receiving module receives the second request message sent by the terminal device, generating a first download password, where the second request message is used to request to download the subscription file;
  • a sending module configured to send the first download password and the subscription file generated by the processing module to the terminal device, where the first download password is used by the terminal device to request download again and the signing
  • the processing module authenticates the terminal device.
  • the contract management entity includes:
  • processors memories, receivers, and transmitters
  • the memory is used to store program code
  • the processor is configured to invoke program code in the memory to perform the following operations:
  • the receiver After the receiver receives the second request message sent by the terminal device, generating a first download password, where the second request message is used to request to download the subscription file;
  • the processor authenticates the terminal device.
  • a thirteenth aspect of the present invention provides an operator server having a function of implementing a method corresponding to the download subscription file provided by the fifth aspect.
  • the functions may be implemented by hardware or by corresponding software implemented by hardware.
  • the hardware or software includes one or more modules corresponding to the functions described above, which may be software and/or hardware.
  • the operator server includes:
  • a receiving module configured to receive a first download request message of the terminal device, where the first download request message is used to request to download the subscription file from the operator server;
  • a sending module configured to send a first request message to the subscription management entity, where the first request message is used to instruct the subscription management entity to generate a subscription file that the terminal device requests to download;
  • the receiving module is further configured to receive a first download password sent by the subscription management entity, where the first download password is a first download generated by the subscription management entity after receiving the second request message sent by the terminal device a password, the second request message is used to request to download the subscription file;
  • a processing module configured to save the first download password received by the receiving module
  • the first download password is used by the terminal device to authenticate the re-request of the terminal device when the terminal device requests to download the subscription file that belongs to the same contract with the subscription file.
  • the operator server includes:
  • processors memories, receivers, and transmitters
  • the memory is used to store program code
  • the processor is configured to invoke program code in the memory to perform the following operations:
  • the first download password is used by the terminal device to authenticate the re-request of the terminal device when the terminal device requests to download the subscription file that belongs to the same contract with the subscription file.
  • a fourteenth aspect of the present invention provides a terminal device having a function of implementing a method corresponding to the download subscription file provided by the sixth aspect.
  • the functions may be implemented by hardware or by corresponding software implemented by hardware.
  • the hardware or software includes one or more modules corresponding to the functions described above, which may be software and/or hardware.
  • the terminal device includes:
  • a sending module configured to send a first download request to the operator server, where the first download request message is used to apply for a subscription to the operator server, and request to download a subscription file;
  • a receiving module configured to receive a first download password and the subscription file from the subscription management entity, where the first download password is generated by a subscription management entity;
  • the first download password is used by the sending module to request authentication from the subscription management entity when the terminal device requests to download a subscription file that belongs to the same contract as the subscription file.
  • the terminal device includes:
  • processors memories, receivers, and transmitters
  • the memory is used to store program code
  • the processor is configured to call the memory Program code to do the following:
  • the first download password is used by the transmitter to request authentication from the signing management entity when the terminal device requests to download a subscription file that belongs to the same contract as the subscription file.
  • a fifteenth aspect of the present invention provides an operator server having a function of implementing a method corresponding to the download subscription file provided by the seventh aspect.
  • the functions may be implemented by hardware or by corresponding software implemented by hardware.
  • the hardware or software includes one or more modules corresponding to the functions described above, which may be software and/or hardware.
  • the operator server includes:
  • a receiving module configured to receive a first request message sent by the terminal device, where the first request message is used to request to download a subscription file;
  • a processing module configured to determine, according to the information about the subscribed subscription carried in the first request message, that the subscription file requested by the first request message is a subscription file that has been requested to be signed;
  • a sending module configured to send a second request message to the subscription management entity, where the processing module determines that the subscription file requested to be downloaded by the first request message is a subscription file that has been subscribed for, and the second request message is used to indicate The contract management entity acquires the contract file.
  • the operator server includes:
  • processors memories, receivers, and transmitters
  • the memory is used to store program code
  • the processor is configured to invoke program code in the memory to perform the following operations:
  • the signing document requested to be downloaded is the contracted document that has been applied for the contract;
  • the processor determines that the subscription file requested by the first request message is a subscription file that has been requested for subscription, sending a second request message to the subscription management entity, where the second request message is used to indicate The contract management entity acquires the contract file.
  • a sixteenth aspect of the present invention provides a contract management entity having a function of implementing a method corresponding to the download subscription file provided by the above eighth aspect.
  • the functions may be implemented by hardware or by corresponding software implemented by hardware.
  • the hardware or software includes one or more modules corresponding to the functions described above, which may be software and/or hardware.
  • the contract management entity includes:
  • a receiving module configured to receive a second request message sent by the operator server
  • a processing module configured to acquire, according to the second request message received by the receiving module, a subscription file that the terminal device requests to download, where the second request message is that the operator server receives the first request message, according to the Determining, by the first request message, that the first request message is a message sent after requesting to download a subscription file that has been applied for, and the first request message carries information that has been requested to be signed;
  • a sending module configured to send the subscription file generated by the processing module to the terminal device.
  • the contract management entity includes:
  • processors memories, receivers, and transmitters
  • the memory is used to store program code
  • the processor is configured to invoke program code in the memory to perform the following operations:
  • a seventeenth aspect of the present invention provides a communication system having a function of implementing the above method of downloading a contract file.
  • the functions may be implemented by hardware or by corresponding software implemented by hardware.
  • the hardware or software includes one or more modules corresponding to the functions described above, which may be software and/or hardware.
  • the communication system comprises:
  • the communication system comprises:
  • a contract management entity as described in the twelfth aspect is described in the twelfth aspect.
  • the communication system comprises:
  • a contract management entity as described in the sixteenth aspect is described in the sixteenth aspect.
  • the operator server when the terminal device requests to download the subscription file for the first time, the operator server generates a first download password, so that when the terminal device requests to download the subscription file again, the carrier server pairs
  • the first download password is authenticated to implement dynamic authentication, which avoids security problems caused by an attacker falsifying a heavy download request, and can improve security when downloading a contract file.
  • FIG. 1 is a flowchart of a method for downloading a subscription file in an embodiment of the present invention
  • FIG. 2 is another flowchart of a method for downloading a subscription file in an embodiment of the present invention
  • 3-1 is a schematic structural diagram of an operator server according to an embodiment of the present invention.
  • 3-2 is a schematic structural diagram of a terminal device according to an embodiment of the present invention.
  • 3-3 is a schematic structural diagram of a contract management entity according to an embodiment of the present invention.
  • 3-4 is a schematic structural diagram of a communication system according to an embodiment of the present invention.
  • FIG. 4 is another flowchart of a method for downloading a subscription file in an embodiment of the present invention.
  • FIG. 5 is another flowchart of a method for downloading a subscription file according to an embodiment of the present invention.
  • 5-1 is another flowchart of a method for downloading a subscription file in an embodiment of the present invention.
  • 6-1 is another schematic structural diagram of an operator server according to an embodiment of the present invention.
  • 6-2 is another schematic structural diagram of a terminal device according to an embodiment of the present invention.
  • 6-3 is another schematic structural diagram of a contract management entity according to an embodiment of the present invention.
  • 6-4 is another schematic structural diagram of a communication system according to an embodiment of the present invention.
  • FIG. 7 is another flowchart of a method for downloading a subscription file according to an embodiment of the present invention.
  • 8-1 is another schematic structural diagram of an operator server according to an embodiment of the present invention.
  • 8-2 is another schematic structural diagram of a contract management entity according to an embodiment of the present invention.
  • 8-3 is another schematic structural diagram of a communication system according to an embodiment of the present invention.
  • FIG. 9 is a schematic structural diagram of a physical apparatus for performing a method for downloading a subscription file according to an embodiment of the present invention.
  • the terms “comprises” and “comprises” and “the” and “the” are intended to cover a non-exclusive inclusion, for example, a process, method, system, product, or device that comprises a series of steps or modules is not necessarily limited to Those steps or modules, but may include other steps or modules not explicitly listed or inherent to such processes, methods, products or devices, the division of the modules presented herein is merely a logical division. There may be additional divisions in the implementation of the actual application, for example, multiple modules may be combined or integrated into another system, or some features may be ignored, or not executed, and the displayed or discussed mutual coupling.
  • the direct coupling or the communication connection may be through some interfaces, and the indirect coupling or communication connection between the modules may be electrical or the like, which is not limited herein.
  • the module described as a separate component The sub-module may or may not be physically separated, may not be a physical module, or may not be divided into multiple circuit modules, and some or all of the modules may be selected according to actual needs to implement the embodiment of the present invention. The purpose of the program.
  • the embodiments of the present invention provide a method, a related device, and a system for downloading a subscription file, which are used in the field of wireless communication technologies, and can solve the problem of low security when re-downloading a subscription file in the existing mechanism in the prior art. The details are described below.
  • the contract management entity (SM) in this document refers to the SM-DP (Subscription manager-Data Preparation), or SM refers to the SM-DP and the contracted document distribution entity (SM-SR, Subscription manager-Secure Routing). ), SM-DP is responsible for the generation and security protection of the contract documents, and SM-SR is responsible for the caching and secure distribution of the contracted files.
  • the subscription file in this document is information for the terminal device to access the carrier network.
  • the terminal device described herein refers to a terminal device that does not include an eUICC, and may also be a terminal device that includes an eUICC. After the terminal device obtains the downloaded subscription file, the terminal device further sends the subscription file to the eUICC. Therefore, the request message for downloading the subscription file in this document may be sent by the terminal device or sent by the eUICC through the terminal device.
  • the terminal device may be a device that provides voice and/or data connectivity to a user, a handheld device with a wireless connection function, or other processing device connected to a wireless modem.
  • the wireless terminal can communicate with one or more core networks via a RAN Radio Access Network, which can be a mobile terminal, such as a mobile phone (or "cellular" phone) and a computer with a mobile terminal.
  • a RAN Radio Access Network can be a mobile terminal, such as a mobile phone (or "cellular" phone) and a computer with a mobile terminal.
  • a mobile terminal such as a mobile phone (or "cellular" phone)
  • a computer with a mobile terminal such as a mobile phone (or "cellular" phone)
  • it may be a portable, pocket, handheld, computer built-in or in-vehicle mobile device that exchanges language and/or data with a wireless access network.
  • a wireless terminal may also be called a system, a subscriber unit, a subscriber station, a mobile station, a mobile station, a remote station, an access point, or an access point.
  • Remote Terminal Access Terminal, User Terminal, Terminal Equipment, User Generation User Agent, User Device, or User Equipment.
  • the embodiment of the present invention mainly provides the following two technical solutions:
  • Solution 1 The server downloads the request from the server authentication user.
  • the operator server generates re-download verification information for authentication when the user first requests to download the subscription file
  • the operator server sends the re-download verification information directly to the terminal device, or sends the re-download verification information to the terminal device through the contract management entity;
  • the operator server authenticates the re-download verification information. After the authentication is passed, the new re-download verification information required for the next request for downloading the subscription file is generated, and the contract management entity is requested to prepare the subscription for the terminal device to request the download. file;
  • the contract management entity sends the contract file and the newly generated re-download verification information to the terminal device.
  • the operator server when the terminal device requests to download the subscription file, the operator server generates new re-download verification information, and each new re-download verification information generated is used for the terminal device next time.
  • the operator server authenticates the request of the terminal device, thereby implementing dynamic authentication.
  • Solution 2 The contract management entity authenticates the user's re-download request.
  • the subscription management entity generates re-download verification information for authentication when the user first requests to download the subscription file
  • the contract management entity sends the re-download verification information and the contract file to the terminal device;
  • the operator server requests the subscription management entity to prepare the subscription file that the terminal device requests to download;
  • the terminal device sends the re-download verification information to the subscription management entity, and the subscription management entity authenticates the re-download verification information. After the authentication is passed, the user is requested to download the subscription file for the next time. New re-download verification information required;
  • the contract management entity sends the contract file and the newly generated re-download verification information to the terminal device.
  • the subscription management entity when the terminal device requests to download the subscription file, the subscription management entity generates new re-download verification information, and each new re-download verification information generated is used for the terminal device next time.
  • the contract management entity authenticates the request of the terminal device, thereby implementing dynamic authentication.
  • the re-downloading verification information may be a string of characters, numbers or two-dimensional code information including the authentication information, for example, may be in the form of a download password, as long as the role of the authentication is performed, the specific form of this document There is no limit in the middle.
  • the terminal device after receiving the re-download verification information and the subscription file, the terminal device saves the re-download verification information mainly in the following two cases:
  • the re-download verification information may be saved in the terminal device, such as the memory stored in the terminal device, and the local file assistant (LPA, Local Profile Assistant) in the terminal device may call the memory storage re-download. verify message.
  • LPA Local Profile Assistant
  • the LPA is responsible for the interaction between the terminal device and the eUICC.
  • the main functions include downloading the subscription file, downloading the service discovery of the subscription file, and providing the user interface (UI, User Interface).
  • the terminal device includes the eUICC
  • the re-download verification information is saved in the eUICC.
  • the terminal device obtains the re-download verification information from the eUICC, or may also re-download the verification.
  • the information is stored in the terminal device, such as in the memory of the terminal device, and subsequently called through the LPA.
  • the operator server or the contract management entity can dynamically verify the request of the terminal, so as to prevent the attacker from using the forged eUICC identifier or the user identifier to attack the carrier server by using the re-download or migration subscription, or Illegal acquisition of contract documents, etc. occurred.
  • the terminal device that requests to download the subscription file may be the terminal device that requests to download the subscription file for the first time, for example, the subscription file downloaded before the deletion, or the eUICC is restored after being damaged, or the eUICC is reset.
  • the original terminal device needs to re-download the subscription file.
  • the terminal device requesting to download the subscription file may also be a new terminal device. For example, when the user of the original terminal device replaces the terminal device, the subscription file needs to be downloaded again.
  • the re-downloading verification information can be obtained directly from the old terminal device. If the original terminal device cannot be used normally, the new terminal device cannot obtain the re-downloading verification information from the original terminal device, and the new terminal device can request to obtain the pre-registration through the login mailbox.
  • the re-downloading verification information is obtained on the operator server, or the re-downloading verification information is obtained through a short message or a voice call, which is not limited.
  • the following provides a method for downloading a subscription file from the perspective of dynamically verifying a download request of a terminal device from an operator server, where the method includes:
  • the terminal device sends a first request message to the operator server.
  • the first request message is used to apply for a subscription to the operator server and request to download the subscription file, and the user can access the local user interface (LUI, Local User Interface) of the LPA of the terminal device or scan the QR code.
  • the carrier server then sends a first request message to the operator server through the LPA.
  • the operator server receives the first request message sent by the terminal device.
  • the operator server After receiving the first request message, the operator server registers the first request message.
  • an event identifier (Event ID) may be generated, and the event ID is sent to the terminal device.
  • the event ID may also be used when the terminal requests to download the subscription file that belongs to the same contract with the subscription file, and the operator server authenticates the download request of the terminal, which may replace the function of the first download password in step 103, without generating the next The first download password is described.
  • the operator server generates a first download password.
  • the operator server sends a second request message to the subscription management entity.
  • the second request message is used to instruct the subscription management entity to generate the subscription file that the terminal device requests to download, so that the terminal device downloads the subscription file from the subscription management entity. If the subscription management entity prepares the subscription file, the second request message is further used to instruct the contract management entity to associate the generated subscription file with the subscription of the terminal device.
  • the second request message carries the first download password generated by the operator server, and the first download password is used by the terminal device to request the carrier server to download again and belong to the same contract with the subscription file.
  • the operator server authenticates the request of the terminal device.
  • the operator server sends the generated first download password to the terminal device by using the following two methods:
  • the first download password may be carried in the second request message, so that the subscription management entity receives the request to download the terminal device.
  • the subscription management entity may send the first download password and the subscription file to the terminal device, so that the terminal device obtains from the subscription management entity The first download password;
  • the operator server sends the first download password to the terminal device.
  • the subscription management entity receives the second request message sent by the operator server.
  • the second request message may carry information such as an eUICC identifier, a file type, a subscription file identifier, an Event ID, and an SM-SR ID.
  • the eUICC identifier may be an electronic identifier (EID, Electronic Identity), and the subscription file identifier may be an integrated circuit card identifier (ICCID).
  • the subscription management entity generates, according to the second request message, a subscription file that the terminal device requests to download.
  • the signing management entity After the signing file is generated, the signing management entity also associates the signing file with the signing of the terminal device, for example, the binding file may be bound to the eUICC corresponding to the EID, thereby implementing the subscription management entity registering the terminal device. Download request.
  • the contract management entity sends the subscription file to the terminal device.
  • the subscription management entity may send the first download password in a session for sending a subscription file, or may create a new one after the subscription file is successfully sent.
  • the session sends the first download password.
  • the terminal device acquires the first download password generated by the operator server and receives the subscription file from the subscription management entity.
  • the terminal device may save the first download password to the eUICC-free terminal device, or save the information in the eUICC of the terminal device when the terminal device includes the eUICC, and the similarities in the text are no longer used. Narration.
  • the terminal device may obtain the first download password and the subscription file from the subscription management entity, or obtain the first download password from the operator server, and obtain the subscription file from the subscription management entity. Not limited.
  • the terminal device receives the first download password mainly including the following two situations:
  • the operator server receives the first confirmation message sent by the subscription management entity, and the operator server saves the first download password.
  • the first confirmation message is a message that is sent by the subscription management entity after successfully sending the subscription file to the terminal device, where the first confirmation message is used to instruct the terminal device to successfully download the subscription file. .
  • the operator server when the terminal device requests to download the subscription file for the first time, the operator server generates the first download password, so that the terminal device requests to download the subscription file that belongs to the same contract with the subscription file again, the operator server.
  • the device re-requests the terminal device to implement dynamic authentication, which effectively prevents the attacker from forging the re-download request to attack the carrier server or illegally obtaining the subscription file, thereby improving security.
  • the terminal device that downloads the subscription file for the first time may delete the downloaded subscription file for some reasons, or the eUICC of the terminal device is damaged, or the device is downloaded.
  • the terminal device of the contracted file cannot be used continuously, so that the user of the original terminal device needs to re-download the subscription file to the new terminal device, or the user of the original terminal device needs to re-download the subscription file to the new terminal device.
  • New eUICC, etc. In these cases, the user of the original terminal device needs to re-download the subscription file.
  • the terminal device sends a third request message to the operator server.
  • the third request message carries a second download password, and the third request message is used to request the carrier server to download a subscription file that belongs to the same contract as the subscription file.
  • the third request message may further carry an EID, an ICCID, an IMEI, or an Event ID.
  • the terminal device is a device of a legal subscription user
  • the second download password sent by the terminal device is the first download password, or is a variant of the first download password, and the forged download password or pseudo-use can be avoided.
  • the user's download request, etc. occurs.
  • the LPA or eUICC of the terminal device may deform the first download password or the Event ID by using a preset algorithm, and then send it to the operator server.
  • the downloaded download password may be a download password generated by the operator server, or may be a variant of the download password generated by the terminal device to the operator server.
  • the obtained terminal device can implement the modification of the download password by means of hash coding, signature, etc., and the specific modification manner is not limited herein, and the similarities in the following texts are not described again.
  • the operator server receives a third request message sent by the terminal device.
  • the operator server may also generate a new event ID, and the new event ID may be used for the terminal to request to download the subscription file that belongs to the same contract with the subscription file, and the operator server authenticates the download request of the terminal.
  • the new Event ID may also be generated by the subscription management entity in step 205.
  • the operator server authenticates the third request message, and after the authentication succeeds, generates a third download password.
  • the operator server authenticates the terminal device that requests the download and the contract file to belong to the same contracted contract file.
  • the terminal device here may be the terminal device that requested the download of the contract file last time, or may be the new terminal that has signed the contract.
  • the device can increase the flexibility of the download mechanism as long as it requests the same contract file.
  • the operator server authenticates the third request message, which is specifically configured to authenticate the second download password.
  • the second download password is the same as or corresponds to the first download password, the authentication succeeds.
  • the second download password is a variant of the first download password, the second download password may be considered to correspond to the first download password, and the similarities in the text may be referred to herein.
  • the third download password is used by the terminal device to request the authentication, or the terminal server, to the terminal device, when the terminal device requests to download the subscription file that belongs to the same contract with the subscription file. Request for certification.
  • the operator server sends a fourth request message to the subscription management entity.
  • the fourth request message is used to indicate that the subscription management entity acquires a subscription file that is downloaded by the terminal device and belongs to the same contract as the subscription file, so that the terminal device downloads from the subscription management entity and belongs to the subscription file. Signing documents of the same contract.
  • the carrier server sends the generated third download password to the following two methods.
  • Terminal equipment specifically:
  • the third download password may be carried in the fourth request message, so that the subscription management entity receives the request to download and send the terminal device.
  • the subscription management entity may send the third download password and the subscription file that belongs to the same contract with the subscription file to the terminal device. .
  • the operator server sends the third download password to the terminal device that sends the third request message.
  • the subscription management entity receives a fourth request message that is sent by the operator server and carries a third download password, and obtains a subscription file that belongs to the same contract with the subscription file according to the fourth request message.
  • the subscription file management entity may obtain the subscription file by using one of the following manners: For the contract documents belonging to the same contract, refer to Figure 2-1, as follows:
  • the operator server carries the first subscription file information of the subscription in the fourth request message, 205-2
  • the subscription management entity uses the first subscription file information to generate a terminal device to request to download a contract file, wherein the first contract file information includes information such as a root key of the contracted file that has been distributed.
  • the contract management entity needs to generate a new subscription for the terminal device, and performs the process according to the new application subscription file processing.
  • the operator server may carry the second subscription file information in the fourth request message, so that the subscription management entity generates the terminal device request by using the second subscription file information.
  • the downloaded subscription file wherein the second subscription file information refers to information used to generate a new subscription, which may be a subscription type, a subscription file identifier, or a root key information of a subscription file, such as a new root key. Information or a new contract file identifier.
  • the subscription management entity sends the third download password and the subscription file that belongs to the same contract with the subscription file to the terminal device.
  • the subscription management entity may send the first download password in a session in which the subscription file is sent, or may send the first download password by creating a new session after the subscription file is successfully sent.
  • the terminal device acquires a third download password generated by the operator server, and receives a subscription file from the contract management entity that belongs to the same contract with the subscription file.
  • the terminal device requests the operator server to request authentication when the terminal device requests the terminal server to download the subscription file that belongs to the same contract with the subscription file.
  • the terminal device may be the same terminal device as the terminal device that sends the third request message, or may be a different terminal device.
  • the terminal device after obtaining the third download password, replaces the locally saved first download password with the third download password.
  • the terminal device may obtain the third download password from the subscription management entity and the subscription file that belongs to the same contract with the subscription file, or obtain the third download password from the operator server, and obtain the same from the subscription management entity.
  • the signing documents belong to the same contracting documents, which are not limited.
  • the terminal device can be obtained from the operator server or the contract management entity. Specifically, after the carrier server generates the download password, it directly sends the download password to the terminal device; or when the operator server requests the subscription management entity to obtain the subscription file that the terminal device requests to download, the request message carries the download password, so that the subsequent subscription management entity In the session in which the subscription file is sent to the terminal device, the download password and the subscription file may be sent to the terminal device.
  • the subscription management entity sends a second confirmation message to the operator server.
  • the second confirmation message is used to indicate that the terminal device has successfully downloaded the subscription file that belongs to the same contract with the subscription file.
  • the second confirmation message is a message that is sent by the subscription management entity after successfully sending a subscription file that belongs to the same contract with the subscription file to the terminal device.
  • the second download password sent by the terminal device is authenticated, so that the terminal device after the authentication is passed can continue to download the subscription file, and generate a third download password for downloading the download request of the authentication terminal device. And through the dynamic update download password, optimize the dynamic authentication mechanism to improve the security of the download.
  • the subsequent terminal may still request to download a subscription file that belongs to the same contract with the subscription file, that is, the operator server receives the third transmission sent by the terminal device.
  • the operator server After downloading the password request message, the operator server generates a fourth download password.
  • the fourth download password has the same function as the first download password and the third download password, and subsequently, with the download request of the terminal device, the operator server
  • the fifth download password, the sixth download password, and the like may be generated, and the process of the terminal device requesting to download the subscription file that belongs to the same contract with the subscription file is similar to the embodiment corresponding to FIG. 2, and details are not described herein again.
  • the first download password or the third download password or the download password generated by the operator server in the subsequent download process meets at least one of the following items:
  • Valid for a preset duration the number of valid uses is finite, the number of valid uses within the preset duration is finite, and the number of downloads containing the contracted file.
  • the user may also send the event identifier generated by the operator server at the time of the last download to the operator server to implement dynamic authentication, so as to obtain the contract file that belongs to the same contract with the contract file. .
  • the contents of the subscription documents that the user first applied for changes may change due to changes in user requirements or upgrades of the contracted files, such as changes in certain parameters in the contracted documents.
  • the final contract file is different from the first download, but the changed contract file is still the same as the initial contract file, and the change characteristics of the contract file also apply to the figure in this article. 4 and FIG. 5 corresponding to the embodiment, the subsequent similarities will not be described again.
  • the method for downloading the subscription file in the present invention is described above.
  • the following describes the carrier server, the terminal device, and the contract management entity that execute the above-mentioned download contract file.
  • the carrier server 30 is described with reference to FIG. 3-1.
  • the carrier server 30 includes:
  • the receiving module 301 is configured to receive a first request message sent by the terminal device, where the first request message is used to request the carrier server 30 to download the subscription file.
  • the processing module 302 is configured to generate a first download password.
  • the sending module 303 is configured to send a second request message to the subscription management entity 50, where the second request message is used to instruct the subscription management entity 50 to generate a subscription file that the terminal device requests to download, so that the terminal device The contract management entity 50 downloads the contract file;
  • the second request message carries the first download password, so that the terminal device obtains the first download password from the subscription management entity; or sends the first message to the terminal device by using the sending module 303. a download password;
  • the first download password is used by the processing module 302 to authenticate the re-request of the terminal device when the terminal device requests the operator server 30 to download the subscription file that belongs to the same contract with the subscription file.
  • the processing module 302 when the terminal device requests to download the subscription file for the first time, the processing module 302 generates the first download password, so that when the terminal device requests to download the subscription file that belongs to the same contract with the subscription file again, the processing module 302 The device re-requests the terminal device to implement dynamic authentication, which effectively prevents the attacker from forging the re-download request to attack the carrier server or illegally obtaining the subscription file, thereby improving security.
  • processing module 302 is further configured to:
  • the receiving module 301 Receiving, by the receiving module 301, the first confirmation message sent by the subscription management entity 50, saving the first download password, where the first confirmation message is that the subscription management entity successfully sends the subscription file to the The message sent after the terminal device is sent, the first confirmation message is used to indicate that the terminal device successfully downloads the subscription file.
  • the processing module 302 when the terminal device needs to re-download the subscription file, the processing module 302 is further configured to:
  • the receiving module 301 Receiving, by the receiving module 301, a third request message sent by the terminal device, the third request The message carries a second download password, and the third request message is used to request the subscription management entity 50 to download a subscription file that belongs to the same contract as the subscription file;
  • the third request message is authenticated using the first download password
  • the authentication succeeds, and after the authentication succeeds, the third download password is generated;
  • the terminal device of the third request message downloads, from the subscription management entity 50, a subscription file that belongs to the same contract as the subscription file;
  • the fourth request message carries the third download password, so that the terminal device obtains the third download password from the subscription management entity; or sends the third request message by using the sending module 303. Transmitting, by the terminal device, the third download password;
  • the third download password is used to authenticate the request of the terminal device 40 when the terminal device 40 requests the carrier server 30 to download the subscription file that belongs to the same contract as the subscription file.
  • processing module 302 is further configured to:
  • the second confirmation message sent by the subscription management entity 50, saving the third download password and deleting the first download password, where the first confirmation message is successful for the subscription management entity
  • the time limit of downloading the password is set, and the first download password or the third download password meets at least one of the following items:
  • Valid for a preset duration the number of valid uses is finite, the number of valid uses within the preset duration is finite, and the number of downloads containing the contracted file.
  • the terminal device 40 is described with reference to FIG. 3-2.
  • the terminal device 40 includes:
  • the sending module 401 is configured to send a first request message to the operator server 30, where the first request message is used to request the carrier server 30 to download a subscription file, so that the operator server sends the subscription server to the subscription management entity 50. a second request message, the second request message is used to indicate the sign
  • the management entity 50 generates a subscription file that the terminal device requests to download;
  • the receiving module 402 is configured to acquire a first download password generated by the operator server and receive the subscription file from the subscription management entity 50, where the first download password is generated by the operator server 30;
  • the first download password is used by the terminal device to request the operator server 30 to download a subscription file that belongs to the same contract with the subscription file, and then requests the server 30 through the sending module 401. Certification.
  • the receiving module 401 when the terminal device 40 requests to download the subscription file for the first time, obtains the first download password generated by the operator server 30, so that the terminal device 40 requests again to download the subscription file that belongs to the same contract with the subscription file.
  • the first download password obtained at the time of the previous download can be used to request authentication from the operator server 30 to implement dynamic authentication, which effectively prevents the attacker from forging the re-download request to attack the operator server or illegally obtaining the subscription file, thereby improving security.
  • the sending module 401 is further configured to:
  • the receiving module 402 is further configured to: after the operator server 30 authenticates the third request message, acquire a third download password generated by the operator server, and receive an address from the subscription management entity.
  • the contracted documents belong to the same contracted contract documents;
  • the third download password is used by the sending module 401 to request authentication from the operator server 30 when the terminal device requests the carrier server 30 to download the subscription file that belongs to the same contract with the subscription file. .
  • the first download password or the third download password is acquired by the terminal device from the operator server 30 or the contract management entity 50.
  • the terminal device 40 when the terminal device 40 requests to download the subscription file again, the first download password obtained when the subscription file was last downloaded is used to request authentication from the operator server 30, and the third download generated by the operator server 30 is obtained.
  • Password that is, a new download password is dynamically generated during each download process, which can prevent an attacker from forging a re-download request to attack an operator server or illegally obtaining a contract message. Improve the security of the download.
  • the security of the dynamic authentication may be improved by dynamically updating the download password, and the secure downloading of the subscription file is provided.
  • the terminal device 40 further includes:
  • the processing module 403 is configured to replace the locally saved first download password with the third download password obtained by the receiving module.
  • Valid for a preset duration the number of valid uses is finite, within the preset duration, the number of valid uses is finite, and the number of downloads containing the contracted file.
  • the contract management entity 50 is described with reference to FIG. 3-3.
  • the contract management entity 50 includes:
  • the receiving module 501 is configured to receive a second request message sent by the operator server 30, where the second request message is used to instruct the signing management entity 40 to generate a subscription file that the terminal device requests to download, where the second request message is
  • the operator server 30 sends the first request message sent by the terminal device 40 to the subscription management entity 50, wherein the first request message is used to request the carrier server 30 to download the Signing documents;
  • the second request message carries a first download password generated by the operator server 30;
  • the processing module 502 is configured to generate the subscription file according to the second request message received by the receiving module 501;
  • a sending module 503 configured to send the first download password and the subscription file generated by the processing module 502 to the terminal device, where the first download password is used by the terminal device to perform the operation again
  • the merchant server 30 requests to download a subscription file that belongs to the same contract as the subscription file, it requests authentication from the operator server 30, and specifically requests the operator server 30 for authentication by transmitting a third request message.
  • the receiving module 501 when the terminal device 40 first requests to download the subscription file, the receiving module 501 receives the first download password generated by the operator server 300, and sends the first download password to the process of sending the subscription file.
  • the terminal device 40 saves, so that when the terminal device requests to download the subscription file that belongs to the same contract as the subscription file again, the terminal server 40 can request the identification from the operator server 30.
  • the certificate implements dynamic authentication, which effectively prevents the attacker from forging the re-download request to attack the carrier server or illegally obtaining the subscription file to improve security.
  • the processing module 502 is further configured to:
  • the signed contract file is sent to the terminal device that requests to download the contract file that belongs to the same contract with the contract file;
  • the third download password is used by the terminal device to request authentication from the operator server 30 when the terminal device requests to download the subscription file that belongs to the same contract as the subscription file.
  • Valid for a preset duration the number of valid uses is finite, within the preset duration, the number of valid uses is finite, and the number of downloads containing the contracted file.
  • the embodiment of the present invention further provides a communication system.
  • the communication system 1 includes:
  • the operator server 30 as shown in Figure 3-1;
  • Terminal device 40 as shown in Figure 3-2;
  • the contract management entity 50 is as shown in Figure 3-3.
  • the physical devices corresponding to all the receiving modules may be receivers, all of which are
  • the physical device corresponding to the sending module may be a transmitter
  • the physical device corresponding to all processing modules may be a processor.
  • Each of the devices shown in FIG. 3-1, FIG. 3-2, and FIG. 3-3 may have a structure as shown in FIG. 9.
  • the processing in FIG. , transmitter and receiver The foregoing processing module, the transmitting module, and the receiving module provided by the apparatus embodiment corresponding to the apparatus are the same or similar functions, and the memory storage processor in FIG. 9 needs to call the program code when the method of downloading the subscription file is executed.
  • the subscription management entity may download the self-generated download.
  • the password is saved locally, and the subsequent request for the terminal device is authenticated, and can also be sent to the operator server for storage.
  • the subscription management entity obtains the download password from the operator server.
  • the storage location and storage method of the download password are not limited. Embodiments of the invention include:
  • the terminal device sends a first download request message to the operator server.
  • the first download request message is used to apply for a subscription to the operator server, and request to download a subscription file.
  • the operator server receives the first download request message of the terminal device, and sends a first request message to the subscription management entity.
  • the first request message is used to instruct the subscription management entity to generate a subscription file that the terminal device requests to download.
  • the subscription management entity receives the first request message sent by the operator server, and generates, according to the first request message, a subscription file that the terminal device requests to download.
  • the terminal device sends a second request message to the subscription management entity.
  • the second request message is used to request the subscription management entity to download a subscription file.
  • the subscription management entity After receiving the second request message sent by the terminal device, the subscription management entity generates a first download password.
  • the first download password is used to authenticate the re-request of the terminal device when the terminal device requests to download a subscription file that belongs to the same contract as the subscription file.
  • the subscription management entity may save the generated first download password locally, and directly use the first downloaded password pair saved locally when the subsequent terminal device requests to download the subscription file that belongs to the same contract with the subscription file.
  • the download request of the terminal device is authenticated; the first download port may also be Sending to the operator server for saving, as described in step 608, when the subsequent terminal device requests again to download the subscription file that belongs to the same contract with the subscription file, the subscription management entity uses the first download password obtained from the operator server.
  • the authentication request of the terminal device refer to the embodiment corresponding to FIG. 5 below.
  • the subscription management entity can obtain the download password of the download request for authenticating the terminal device in real time, so as to avoid the problem that the terminal device cannot download the subscription file.
  • the subscription management entity may allocate a fourth download password to the terminal device. And sending the fourth download password to the operator server for saving, the terminal device may acquire the fourth download password from the operator server by using a mail, a short message, or the like, where the fourth download password is used for the terminal Whether the device has the right to apply for contracting for certification.
  • the subscription management entity further needs to authenticate the fourth download password, and the terminal device may carry the fourth download password in the second request message to the subscription management.
  • the entity requests authentication, and the subscription management entity verifies the fourth download password, and after the verification is passed, generates the first download password;
  • the subscription management entity After generating the first download password, the subscription management entity replaces the saved fourth download password with the first download password;
  • the subscription management entity sends the first download password to the operator server, and the operator server replaces the locally saved fourth download password with the first download password. It can be seen that the subscription management entity sends a fourth download password to the terminal device before the terminal device requests the contract from the operator server, to avoid the possibility of forgery download request in the first download process, and provides protection for the first download of the terminal device, and Improve the security of the first download through two-factor authentication (including whether the operator server authenticates the identity of the terminal device and whether the fourth download password is authenticated).
  • the subscription management entity sends the first download password and the subscription file to the terminal device.
  • the subscription management entity may send the first download password in a session in which the subscription file is sent, or may send the first download password by creating a new session after the subscription file is successfully sent.
  • the first download password is saved in the terminal device that does not include the eUICC, or is saved in the eUICC of the terminal device, and the subscription file is saved in the end.
  • the eUICC of the end device the similarities are not repeated here.
  • the terminal device receives a first download password and the subscription file from the subscription management entity.
  • the first download password is used when the terminal device requests the operator server to download a subscription file that belongs to the same contract with the subscription file, and the terminal device requests authentication from the subscription management entity.
  • the terminal device after receiving the first download password and the subscription file, the terminal device replaces the saved fourth download password with the first download password.
  • the subscription management entity sends a first confirmation message carrying the first download password to the operator server.
  • the first confirmation message is used to indicate that the terminal device has successfully downloaded the subscription file, so that the operator saves the first download password; when the operator server saves the fourth download password, the operator server replaces the saved fourth download password. For the first download password.
  • the subscription management entity when the terminal device requests to download the subscription file for the first time, the subscription management entity generates the first download password, so that the terminal device requests to download the subscription file that belongs to the same contract with the subscription file again, the subscription management entity.
  • the device re-requests the terminal device to implement dynamic authentication, which effectively prevents the attacker from forging the re-download request to attack the carrier server or illegally obtaining the subscription file, thereby improving security.
  • an embodiment of the present invention includes:
  • the terminal device sends a second download request message to the operator server.
  • the second download request message is used to request, from the operator server, to download a subscription file that belongs to the same contract as the subscription file;
  • the operator server receives a second download request message sent by the terminal device.
  • the operator server sends a third request message to the subscription management entity.
  • the third request message is used to indicate that the subscription management entity acquires and belongs to the subscription file Signing documents of the same contract.
  • the third request message may further carry the first download password from the subscription management entity, and provide the subscription to the subscription management entity, so that the subscription management entity receives the terminal device in step 706.
  • the fourth request message is authenticated by using the first download password carried by the third request message.
  • the authentication of the fourth request message by the contract management entity may also be understood as the authentication of the second download password in the fourth request message, and the details in the full text are not described herein.
  • the subscription management entity receives a third request message sent by the operator server, and acquires a subscription file that belongs to the same contract with the subscription file according to the third request message.
  • the terminal device After the subscription management entity receives the third request message and prepares the subscription file that belongs to the same contract with the subscription file, the terminal device establishes with the subscription management entity to download the subscription document that belongs to the same contract with the subscription file.
  • the session specifically includes the following steps 705-709.
  • the terminal device sends, to the subscription management entity, a fourth request message that carries a second download password.
  • the second download password sent by the terminal device is not necessarily accurate, and may be sent by the pseudo user. Even if the identity authentication of the operator server is passed, the downloaded download password is not necessarily sent to the embodiment corresponding to FIG. 3 above.
  • the first download password of the terminal device that is, only when the user who issues the second download password is a legitimate subscription user, the second download password is a variant of the first password or the first download password, thereby preventing the pseudo user from requesting to download the subscription file, or the forged download password or the like.
  • the operator server needs to determine the eUICC before sending the third request message to the subscription management entity. And determining whether the eUICC identifier corresponding to the saved subscription is the same.
  • the subscription file management entity may obtain the subscription file by using one of the following: For the contract documents belonging to the same contract, refer to Figure 5-1, as follows:
  • the operator server carries the first signed contract in the third request message.
  • Information, 704-2 the contract management entity uses the first subscription file information to generate a subscription file requested by the terminal device for downloading, wherein the first subscription file information includes the root of the signed subscription file that has been distributed Information such as keys.
  • the contract management entity needs to generate a new subscription for the terminal device, and performs the process according to the new application subscription file processing.
  • the operator server may carry the second subscription file information in the third request message, so that the subscription management entity uses the second subscription file information to generate a subscription file that the terminal device requests to download, where the second subscription file
  • the information refers to information used to generate a new subscription, which may be a subscription type, a contract file identifier, or a root key information of a subscription file, such as new root key information or a new subscription file identifier.
  • the subscription management entity receives a fourth request message sent by the terminal device, where the subscription management entity authenticates the fourth request message.
  • the fourth request message includes a first download password acquired by the terminal device during the last download signing process, or a variant of the obtained first download password, and the contract management entity authenticates the second download in the fourth request message.
  • step 706 the subscription management entity authenticates the fourth request message, including one of the following:
  • the subscription management entity authenticates the second download password in the fourth request message by using the locally saved first download password
  • the subscription management entity uses the first download password carried in the third request message, The second download password in the fourth request message is authenticated.
  • the subscription management entity After the authentication is passed, the subscription management entity generates a third download password.
  • the subscription management entity sends the third download password and the subscription file that belongs to the same contract with the subscription file to the terminal device.
  • the subscription management entity may send the first download password in a session in which the subscription file is sent, or may send the first download password by creating a new session after the subscription file is successfully sent.
  • the third download password is used by the subscription management entity to the terminal when the terminal device requests the carrier server to download a subscription file that belongs to the same contract as the subscription file.
  • the device's request is authenticated. Dynamic authentication is achieved by dynamically generating download passwords to avoid attackers' masquerading download requests.
  • the subscription management entity may save the generated third download password locally, that is, update the previously saved first download password to the third download password, and the subsequent terminal device requests the download again to be the same as the subscription file.
  • the download request of the terminal device is directly authenticated by using the third download password saved locally; the third download password may also be sent to the operator server for saving, and the operator server receives the subscription management.
  • the first download password saved locally is updated to the third download password, and when the subsequent terminal device requests to download the subscription file that belongs to the same contract with the subscription file,
  • the operator server transmits the third download password to the contract management entity, and the contract management entity authenticates the download request of the terminal device using the third download password obtained from the operator server.
  • Improve the dynamic authentication mechanism by dynamically updating the download password and improve the security of the download.
  • the terminal device receives a third download password from the subscription management entity and the subscription file that belongs to the same contract with the subscription file.
  • the third download password is used by the terminal device to request authentication from the contract management entity when requesting to download the subscription file that belongs to the same contract with the contract file again to the operator server.
  • the terminal device After receiving the third download password and the subscription file belongs to the same contracted subscription file, the terminal device replaces the locally saved first download password with the third download password.
  • the dynamic authentication mechanism can be optimized to improve the security of the download.
  • the method further includes the step 710, after the operator server receives the second confirmation message sent by the subscription management entity, saving the third download password and deleting the first download password.
  • the third download password saved by the operator server is the same as the first download password in the embodiment, and may be provided to the subscription management entity to authenticate the download request of the terminal, and details are not described herein.
  • the first download password sent by the terminal device is authenticated, so that the terminal device after the authentication is passed can continue to download the subscription file, and generate the authentication terminal device for downloading.
  • the third download password of the download request, and the dynamic password update mechanism to optimize the dynamic authentication mechanism and improve the security of the download.
  • the first download password or the second download password or the third download password or the download password generated by the operator server in the subsequent download process are both Meet at least one of the following:
  • the number of valid uses is finite, within the preset duration, the number of valid uses is finite, and the number of downloads containing the contracted file.
  • FIG. 4 and FIG. 5 illustrates a method for downloading a subscription file in the present invention.
  • the following describes the operator server, the terminal device, and the contract management entity that execute the method for downloading the subscription file.
  • the contract management entity 80 is described with reference to FIG. 6-1.
  • the contract management entity 80 includes:
  • the receiving module 801 is configured to receive a first request message sent by the operator server 90, where the first request message is sent by the operator server 90 to the subscription management entity after receiving the first download request message of the terminal device 100. 80 is sent, wherein the first download request message is used to request the carrier server 90 to download a subscription file;
  • the processing module 802 is configured to generate, according to the first request message received by the receiving module 801, a subscription file that the terminal device requests to download;
  • the receiving module 801 After the receiving module 801 receives the second request message sent by the terminal device, generating a first download password, where the second request message is used to request to download the subscription file;
  • the sending module 803 is configured to send the first download password and the subscription file generated by the processing module 802 to the terminal device, where the first download password is used by the terminal device to request download again and the signing When the file belongs to the same contracted contract file, the processing module 802 authenticates the request of the terminal device.
  • the processing module 802 when the terminal device requests to download the subscription file for the first time, the processing module 802 generates the first download password, so that when the terminal device requests to download the subscription file that belongs to the same contract with the subscription file again, the processing module 802 Authenticate the re-request of the terminal device to achieve Dynamic authentication effectively prevents attackers from forging heavy download requests to attack carrier servers or illegally obtaining subscription files to improve security.
  • the processing module 802 is further configured to:
  • the third download password is generated, and the third download password and the subscription file that belongs to the same contract with the subscription file are sent by the sending module 803 to the terminal device that issues the fourth request message.
  • the third download password is used by the processing module 802 to authenticate the terminal device when the terminal device requests to download the subscription file that belongs to the same contract as the subscription file.
  • the method may be implemented by dynamically authenticating the download request of the terminal device, and the processing module 802 authenticates the fourth request message, including one of the following: :
  • the third request message carries the first download password from the subscription management entity, and uses the first download password carried in the third request message to the first of the fourth request messages. Second, download the password for authentication.
  • processing module 802 is further configured to perform one of the following steps:
  • the first download password is sent to the operator server 90 for saving by the sending module 803.
  • the processing module 802 is further configured to perform one of the following steps:
  • the third download password is sent to the operator server 90 by the sending module 803, so that the operator server 90 updates the locally saved first download password to the third download password.
  • the first download password or the third download password meets at least one of the following:
  • Valid for a preset duration the number of valid uses is finite, within the preset duration, the number of valid uses is finite, and the number of downloads containing the contracted file.
  • the terminal device may provide a download password to the terminal device before the terminal device applies for signing, so as to perform authentication when the terminal device applies for signing,
  • the second request message carries a fourth download password.
  • the processing module 802 is specifically configured to:
  • the processing module 802 is further configured to:
  • the operator server 90 is described with reference to FIG. 6-2.
  • the carrier server 90 includes:
  • the receiving module 901 is configured to receive a first download request message of the terminal device, where the first download request message is used to request the carrier server to download the subscription file.
  • the sending module 902 is configured to send a first request message to the subscription management entity 80, where the first request message is used to instruct the subscription management entity 80 to generate a subscription file that the terminal device requests to download;
  • the receiving module 901 is further configured to receive a first download password sent by the subscription management entity 80, where the first download password is generated after the subscription management entity 90 receives the second request message sent by the terminal device 100. a first download password, wherein the second request message is used to request to download the subscription file;
  • the processing module 903 is configured to save the first download port received by the receiving module 901 make;
  • the first download password is used by the terminal device to authenticate the re-request of the terminal device when the terminal device requests to download the subscription file that belongs to the same contract with the subscription file.
  • the processing module 903 when the terminal device requests to download the subscription file for the first time, the processing module 903 receives the first download password generated by the subscription management entity 80 through the receiving module 901, and saves, so that the terminal device requests the download and the subscription file again.
  • the subscription management entity 80 can be provided with the first download password for authenticating the download request of the terminal device, and the contract management entity 80 can reduce the password when the download password is not saved, thereby implementing the backup download password. Guarantee the feasibility of dynamic authentication.
  • the receiving module 901 is further configured to:
  • the sending module 902 is further configured to: send a third request message to the subscription management entity, where the third request message is used to instruct the subscription management entity 80 to obtain a subscription file that belongs to the same contract with the subscription file;
  • the processing module 903 is further configured to: receive, by the receiving module 901, a third download password sent by the subscription management entity, and update the locally saved first download password to the third download password;
  • the third download password is a download password generated by the subscription management entity after the authentication succeeded to the fourth request message terminal device, and the third download password is used by the terminal device to request the download again to belong to the same contract with the subscription file.
  • the contract management entity 80 authenticates the request of the terminal device.
  • the operator server 90 may further provide the download password to the subscription management entity 80 in the process of re-downloading the subscription file, where the first download password may be carried in the third request message.
  • the third request message is further used by the subscription management entity, after receiving the fourth request message sent by the terminal device, using the first download password carried in the third request message, and performing the fourth request message Certification.
  • the receiving module 901 is further configured to: before receiving the first download password sent by the subscription management entity, in order to avoid the possibility of forging a download request in the first downloading process:
  • the processing module 903 is further configured to send the fourth download password to the terminal device by using the sending module 902;
  • the fourth download password is replaced with the first download password, so that the download password is dynamically updated, and the security of downloading the subscription file is improved.
  • the terminal device 100 is described with reference to FIG. 6-3.
  • the terminal device 100 includes:
  • the sending module 1001 is configured to send a second request message to the subscription management entity 80, where the second request message is used to request the subscription management entity 80 to download the subscription file.
  • the receiving module 1002 is configured to receive a first download password and the subscription file from the subscription management entity 80, where the first download password is generated by the subscription management entity 80.
  • the first download password is used by the sending module 1001 to request authentication from the subscription management entity 80 when the terminal device 100 requests to download a subscription file that belongs to the same contract as the subscription file.
  • the receiving module 1002 obtains the first download password generated by the subscription management entity 80, and the terminal device 100 again requests to download the subscription file that belongs to the same contract with the subscription file.
  • the first download password is used to request authentication from the subscription management entity.
  • the subscription file can be downloaded to implement dynamic authentication, which effectively prevents the attacker from forging the re-download request and attacking the operator server or illegally obtaining the subscription file, thereby improving security. Sex.
  • the sending module 1001 may send a second download request message to the operator server 90, where the second download request message is used. Requesting, from the operator server 90, to download a contract file that belongs to the same contract as the contract file;
  • the third download password is used by the sending module 1001 to request authentication from the sending management module 80 when the terminal device requests the carrier server 90 to download the subscription file that belongs to the same contract with the subscription file. .
  • the terminal device 100 when the terminal device 100 requests to download the subscription file again, the first download password obtained when the subscription file is downloaded for the first time is used to request the authentication from the subscription management entity 80, and the third download password generated by the subscription management entity is obtained. That is, a new download password is dynamically generated during each download process, which can prevent an attacker from forging a download request to attack an operator server or illegally obtaining a subscription file, thereby improving the security of the download.
  • the terminal device 100 further includes:
  • the processing module 1003 is configured to replace the locally saved first password with the third download password, and dynamically update the download password to synchronize with the network side to improve the security of downloading the subscription file.
  • the first download password or the second download password meets at least one of the following items:
  • Valid for a preset duration the number of valid uses is finite, within the preset duration, the number of valid uses is finite, and the number of downloads containing the contracted file.
  • the terminal device 100 in order to avoid the possibility of forging a download request in the first downloading process, the terminal device 100 needs to request identity authentication from the network side when the first request for the subscription, and may be in the second request message.
  • the fourth download password is generated by the subscription management entity 80 for the terminal device 100 before the terminal device 100 requests the subscription, and the fourth download password is used by the subscription management entity 80.
  • verifying the fourth download password that is, the fourth download password is used to authenticate whether the terminal device 100 has the right to apply for signing;
  • the processing module 1003 is further configured to:
  • Replacing the saved fourth download password with the first download password can improve the security of the first subscription and the first download and download of the subscription file.
  • the embodiment of the present invention further provides a communication system.
  • the communication system 2 includes:
  • the operator server 90 as shown in Figure 6-2;
  • the contract management entity 80 as described in Figure 6-1.
  • the physical devices corresponding to all the receiving modules may be receivers, all The physical device corresponding to the sending module may be a transmitter, and the physical device corresponding to all processing modules may be a processor.
  • Each of the devices shown in FIG. 6-1, FIG. 6-2, and FIG. 6-3 may have a structure as shown in FIG. 9.
  • the processing in FIG. The transmitter, the transmitter and the receiver implement the same or similar functions of the processing module, the transmitting module and the receiving module provided by the device embodiment corresponding to the device, and the memory storage processor in FIG. 9 needs to be called when executing the method for downloading the subscription file. Program code.
  • an embodiment of the present invention further provides a method for downloading a subscription file, and the embodiment includes:
  • the terminal device sends a first request message to the operator server.
  • the first request message carries information that has been requested to be signed.
  • the information that has been applied for the subscription includes the user identifier corresponding to the applied for the subscription or the subscription file identifier corresponding to the signed subscription document that has been applied for the subscription, or the download password corresponding to the applied for the subscription, by using the user.
  • the identification or subscription file identification or download password can be informed that the request is a request message for applying for a contracted contract file, and provides a flexible download mechanism for the user.
  • the operator server receives the first request message sent by the terminal device.
  • the operator server determines, according to the information about the subscription that is carried in the first request message, that the subscription file that is requested to be downloaded by the first request message is a subscription file that has been requested to be signed.
  • the operator server sends a second request message to the subscription management entity.
  • the second request message is used to instruct the subscription management entity to acquire the subscription file.
  • the subscription management entity receives the second request message sent by the operator server, and acquires the subscription file that the terminal device requests to download according to the second request message.
  • the contract management entity sends the subscription file to the terminal device.
  • the terminal device receives the subscription file from the subscription management entity.
  • the operator server determines, according to the information that has been applied for the subscription, that the subscription file requested by the terminal device is the contracted file that has been applied for the contract, and is obtained by the contract management entity.
  • the signing document that has been applied for signing provides the user with a flexible mechanism for downloading the signing document.
  • step 1103 when the first request message further carries the eUICC identifier, in step 1103, after determining that the subscription file requested to be downloaded by the first request message is the subscription file that has been applied for the contract, sending the first to the subscription management entity. Before the second request message, the operator server further needs to determine whether the eUICC identifier is the same as the eUICC identifier corresponding to the saved subscription.
  • the operator server may carry different parameters in the second request message by using one of the following manners, so that the subscription management entity acquires the terminal.
  • the contract documents requested by the device are as follows:
  • the operator server carries, in the second request message, the re-downloading indication information and the subscription file identifier of the contracted file that has been applied for the contract, so that in step 1104, the contract management entity according to the re-downloading instruction An indication of the information, using the contract file identifier to be associated with the signed document that has been applied for the contracted distribution.
  • the operator server carries, in the second request message, the first subscription file information corresponding to the subscription file that has been applied for the contract, so that the contract file management entity uses the first subscription file in step 1104.
  • the information generating terminal device requests the downloaded subscription file, wherein the first subscription file information includes information such as a root key of the signed subscription file that has been distributed.
  • the contract cost of the operator server can be reduced without newly creating a new contract signing file.
  • the contract management entity needs to generate a new subscription for the terminal device, and performs the process according to the new application contract document processing.
  • the operator server may carry the second subscription file information in the second request message, so that the subscription management entity generates the terminal device by using the second subscription file information.
  • the second subscription file information may be a subscription type, a subscription file identifier, or a root key information required to generate a new subscription file, and may be, for example, a new root key information or a new subscription file identifier.
  • the embodiment corresponding to FIG. 7 described above describes a method for downloading a subscription file in the present invention.
  • the following describes the operator server and the contract management entity that execute the method for downloading the subscription file.
  • the operator server 120 includes:
  • the receiving module 1201 is configured to receive a first request message sent by the terminal device, where the first request message is used to request to download a subscription file;
  • the processing module 1202 is configured to determine, according to the information about the subscribed subscription that is carried in the first request message that is received by the receiving module 1201, that the subscription file that is requested to be downloaded by the first request message is a subscription file that has been requested to be signed;
  • the information that has been applied for the subscription includes the user identifier corresponding to the applied for the subscription or the subscription file identifier corresponding to the signed subscription document that has been applied for the subscription, or the download password corresponding to the applied for the subscription.
  • the sending module 1203 is configured to send a second request message to the subscription management entity, where the processing module 1202 determines that the subscription file requested by the first request message is a subscription file that has been subscribed for, and the second request message is used by the And instructing the contract management entity to acquire the contract file.
  • the processing module 1202 determines, according to the information that has been applied for the subscription, that the subscription file requested by the terminal device is the contracted file that has been applied for the contract, and is obtained by the contract management entity.
  • the signing document that has been applied for signing provides the user with a flexible mechanism for downloading the signing document.
  • the processing module 1202 determines that the subscription file requested to be downloaded by the first request message is a subscription file that has been applied for a contract. And determining whether the eUICC identifier is the same as the eUICC identifier corresponding to the saved subscription.
  • the second request message carries the re-download indication information and the subscription file identifier, where the weight is
  • the download indication information is used to indicate that the subscription management entity is associated with the contracted file that has been requested to be contracted according to the subscription file identifier.
  • the second request message carries the first subscription file information corresponding to the subscription file that has been applied for the contracted distribution.
  • the first subscription file information includes the root key information corresponding to the subscription file that has been applied for the contract, and the first subscription file information is used by the subscription file management entity to generate the location that the terminal device requests to download. Document the contract.
  • the second request message carries the second subscription file information, where the second subscription file information is used for the subscription file.
  • the management entity generates the subscription file requested by the terminal device to download.
  • the subscription management entity 130 includes:
  • the receiving module 1301 is configured to receive a second request message sent by the operator server.
  • the processing module 1302 is configured to acquire, according to the second request message received by the receiving module 1301, a subscription file that the terminal device requests to download, where the second request message is that the operator server receives the first request message, Determining, according to the first request message, that the first request message is a message that is sent after requesting to download a subscription file that has been applied for, and the first request message carries information that has been requested for signing;
  • the information about the subscription includes the user identifier corresponding to the applied for the subscription or the subscription file identifier corresponding to the signed subscription document that has been applied for the subscription, or the download password corresponding to the applied for the subscription.
  • the sending module 1303 is configured to send the subscription file generated by the processing module 1302 to the terminal device.
  • the processing module 1302 each time the terminal device requests to download the subscription file, the processing module 1302 obtains the subscription file requested by the terminal device to download, according to the information that has been applied for, and provides the user with a flexible mechanism for downloading the subscription file.
  • the contract management entity 130 obtains the contracted file in the following two situations:
  • the processing module 1302 is associated with the file file that has been applied for the contracted distribution according to the file identifier of the contract file.
  • the processing module 1302 uses the first subscription file information to generate a subscription file that the terminal device requests to download.
  • the contract management entity 130 obtains the contract file as follows:
  • the processing module 1302 uses the second subscription file information to generate a subscription file that the terminal device requests to download.
  • the embodiment of the present invention further provides a communication system.
  • the communication system 3 includes:
  • the operator server 120 as shown in Figure 8-1;
  • the contract management entity 130 is as described in Figure 8-2.
  • the communication system 3 further includes a terminal device.
  • all the physical devices corresponding to the receiving modules in the embodiments of the present invention may be receivers, and physical devices corresponding to all transmitting modules. It can be a transmitter, and the physical device corresponding to all processing modules can be a processor.
  • Each of the devices shown in FIG. 8-1, FIG. 8-2, and FIG. 8-3 may have a structure as shown in FIG. 9, and when one of the devices has the structure as shown in FIG. 9, the processing in FIG.
  • the transmitter, the transmitter and the receiver implement the same or similar functions of the processing module, the transmitting module and the receiving module provided by the device embodiment corresponding to the device, and the memory storage processor in FIG. 9 needs to be called when executing the method for downloading the subscription file.
  • Program code is a program code.
  • the present invention also provides a computer storage medium storing a program, the program including some or all of the steps of the above-mentioned operator server or subscription management entity or terminal device performing the above-mentioned method of downloading a subscription file.
  • the architecture of the operator server herein includes a processor, a receiver, and a transmitter configured to support an operator server to perform the corresponding functions in the above methods.
  • the receiver and the transmitter are configured to support communication between the subscription management entity and the terminal device to the contract management entity Or the terminal device transmits the information or instructions involved in the above method.
  • the carrier server may also include a memory for coupling with the processor that holds program code and data necessary for the operator server.
  • the structure of the contract management entity herein includes a processor, a receiver, and a transmitter configured to support a contract management entity to perform the corresponding functions in the above methods.
  • the receiver and the transmitter are configured to support communication between the operator server and the terminal device, and send information or instructions involved in the foregoing method to the operator server or the terminal device.
  • the subscription management entity may also include a memory for coupling with the processor that retains the program code and data necessary for the contract management entity.
  • the structure of the terminal device herein includes a processor, a receiver, and a transmitter, and the processor is configured to support the terminal device to perform a corresponding function in the above method.
  • the receiver and the transmitter may be a transceiver having a transceiving function for supporting communication between the contract management entity and the terminal device, and between the operator server and the terminal device, to the contract management entity or signing the contract.
  • the management entity sends the information involved in the above method.
  • the terminal device may also include a memory for coupling with the processor, which stores program code and data necessary for the terminal device.
  • the disclosed system, apparatus, and method may be implemented in other manners.
  • the device embodiments described above are merely illustrative.
  • the division of the unit is only a logical function division.
  • there may be another division manner for example, multiple units or components may be combined or Can be integrated into another system, or some features can be ignored or not executed.
  • the mutual coupling or direct coupling or communication connection shown or discussed may be an indirect coupling or communication connection through some interface, device or unit, and may be in an electrical, mechanical or other form.
  • the units described as separate components may or may not be physically separated as The components displayed by the unit may or may not be physical units, that is, may be located in one place, or may be distributed to multiple network units. Some or all of the units may be selected according to actual needs to achieve the purpose of the solution of the embodiment.
  • each functional unit in each embodiment of the present invention may be integrated into one processing unit, or each unit may exist physically separately, or two or more units may be integrated into one unit.
  • the above integrated unit can be implemented in the form of hardware or in the form of a software functional unit.
  • the integrated unit if implemented in the form of a software functional unit and sold or used as a standalone product, may be stored in a computer readable storage medium.
  • the technical solution of the present invention which is essential or contributes to the prior art, or all or part of the technical solution, may be embodied in the form of a software product stored in a storage medium.
  • a number of instructions are included to cause a computer device (which may be a personal computer, server, or network device, etc.) to perform all or part of the steps of the methods described in various embodiments of the present invention.
  • the foregoing storage medium includes: a U disk, a mobile hard disk, a read-only memory (ROM), a random access memory (RAM), a magnetic disk, or an optical disk, and the like. .

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Telephonic Communication Services (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

Provided in the present invention are a method for downloading a subscription file, a related device, and a system. The method comprises: an operator server receiving a first request message sent by a terminal device, wherein the first request message is used to make a request to the operator server for download of a subscription file; generating a first download password, and sending to a subscription management entity a second request message, wherein the second request message is used to instruct the subscription management entity to generate the subscription file requested by the terminal device for download, such that the terminal device downloads the subscription file from the subscription management entity, and the second request message carries the first download password, such that the terminal device obtains the first download password from the subscription management entity; or, alternatively, the operator server sending to the terminal device the first download password, wherein if the terminal device re-requests download of a subscription file belonging to the same subscription as the subscription file, the first download password is used by the operator server to verify the new request of the terminal device. The present invention realizes dynamic verification, enabling increased security in downloading of a subscription file.

Description

一种下载签约文件的方法、相关设备及系统Method, device and system for downloading contract documents 技术领域Technical field
本发明涉及物联网技术领域,尤其涉及的是一种下载签约文件的方法、相关设备及系统。The present invention relates to the field of Internet of Things technologies, and in particular, to a method, a related device and a system for downloading a contract file.
背景技术Background technique
对于支持嵌入式通用集成电路卡(eUICC,Embedded Universal Integrated Circuit Card)的消费电子类终端(如自动售货机、照相机、车载终端、电表等)允许不同运营商的身份鉴权应用在线动态的加载,从而实现签约文件的下载及动态更换签约文件。For consumer electronic terminals (such as vending machines, cameras, vehicle terminals, electric meters, etc.) that support the Embedded Universal Integrated Circuit Card (eUICC), online authentication of different operators' identity authentication applications is allowed. Thereby, the download of the contract file and the dynamic replacement of the contract file are realized.
现有机制中,当签约文件下载完成后,用户便可以直接通过终端的交互界面对签约文件进行激活、去激活或删除等操作,即用户不需要通过网络侧。在误删签约文件,或该终端的eUICC损坏后修好,或需要将签约文件迁移至其它终端,或对该eUICC重置等情况下,都需要向运营商请求重新下载签约文件,但在重新下载签约文件过程中,容易出现攻击者通过伪造重下载请求攻击运营商,或非法获取签约文件等问题,导致重下载时安全性较低。In the existing mechanism, after the downloading of the subscription file is completed, the user can directly activate, deactivate, or delete the subscription file through the interactive interface of the terminal, that is, the user does not need to pass through the network side. After accidentally deleting the contract file, or repairing the eUICC of the terminal, or migrating the contract file to another terminal, or resetting the eUICC, you need to request the operator to re-download the contract file, but re-download it. During the process of signing a file, it is easy for an attacker to attack the operator by forging a re-download request, or illegally obtaining a contract file, which results in lower security when re-downloading.
发明内容Summary of the invention
本发明提供了一种下载签约文件的方法、相关设备及系统,能够解决现有技术中现有机制中重下载签约文件时安全性较低的问题。The present invention provides a method, a related device and a system for downloading a subscription file, which can solve the problem of low security when re-downloading a subscription file in the existing mechanism in the prior art.
第一方面提供一种下载签约文件的方法,包括:The first aspect provides a method for downloading a contract file, including:
运营商服务器接收终端设备发送的第一请求消息,所述第一请求消息用于向运营商服务器请求下载签约文件;Receiving, by the operator server, a first request message sent by the terminal device, where the first request message is used to request the operator server to download the subscription file;
所述运营商服务器生成第一下载口令;The operator server generates a first download password;
所述运营商服务器向签约管理实体发送第二请求消息,所述第二请求消息用于指示所述签约管理实体生成所述终端设备请求下载的签约文件,以使得所述终端设备从所述签约管理实体下载所述签约文件;The operator server sends a second request message to the subscription management entity, where the second request message is used to instruct the subscription management entity to generate a subscription file requested by the terminal device to download, so that the terminal device receives the subscription from the terminal device. The management entity downloads the contract document;
所述第二请求消息携带所述第一下载口令,以使得所述终端设备从所述签 约管理实体获得所述第一下载口令;或者所述运营商服务器向所述终端设备发送所述第一下载口令;The second request message carries the first download password, so that the terminal device receives the sign The management entity obtains the first download password; or the operator server sends the first download password to the terminal device;
所述第一下载口令用于所述终端设备再次向所述运营商服务器请求下载与所述签约文件属于相同签约的签约文件时,所述运营商服务器对所述终端设备的请求进行认证。The first download password is used by the terminal server to authenticate the request of the terminal device when the terminal device requests the operator server to download the subscription file that belongs to the same contract with the subscription file.
所述运营商服务器接收所述签约管理实体发送的第一确认消息后,所述运营商服务器知晓所述签约文件已成功下载,则保存所述第一下载口令,以便终端设备再次请求签约文件时,对终端设备的请求进行认证,其中,所述第一确认消息为所述签约管理实体成功将所述签约文件发送至所述终端设备后发送的消息,所述第一确认消息用于指示所述终端设备已成功下载所述签约文件。After the operator server receives the first confirmation message sent by the subscription management entity, the operator server knows that the subscription file has been successfully downloaded, and saves the first download password, so that the terminal device requests the subscription file again. And authenticating the request of the terminal device, where the first confirmation message is a message that is sent by the subscription management entity after successfully sending the subscription file to the terminal device, where the first confirmation message is used to indicate The terminal device has successfully downloaded the subscription file.
在一些可能的设计中,由于各种原因,终端设备需要重下载签约文件时,所述方法还包括:In some possible designs, when the terminal device needs to re-download the subscription file for various reasons, the method further includes:
所述运营商服务器接收所述终端设备发送的第三请求消息,所述第三请求消息携带第二下载口令,所述第三请求消息用于向所述签约管理实体请求下载与所述签约文件属于相同签约的签约文件;Receiving, by the operator server, a third request message sent by the terminal device, where the third request message carries a second download password, where the third request message is used to request downloading and signing the file from the subscription management entity Contract documents belonging to the same contract;
所述运营商服务器使用所述第一下载口令对所述第三请求消息进行认证;The operator server authenticates the third request message by using the first download password;
当所述第二下载口令与所述第一下载口令相同或相对应时,则认证成功,认证成功后,所述运营商服务器生成第三下载口令;When the second download password is the same as or corresponds to the first download password, the authentication succeeds, and after the authentication succeeds, the operator server generates a third download password;
所述运营商服务器向所述签约管理实体发送第四请求消息,所述第四请求消息用于指示所述签约管理实体获取终端设备请求下载的与所述签约文件属于相同签约的签约文件,以使得发送所述第三请求消息的终端设备从所述签约管理实体下载与所述签约文件属于相同签约的签约文件;The operator server sends a fourth request message to the subscription management entity, where the fourth request message is used to instruct the subscription management entity to acquire a subscription file that the terminal device requests to download and belongs to the same contract with the subscription file, And causing the terminal device that sends the third request message to download, from the subscription management entity, a subscription file that belongs to the same contract with the subscription file;
所述第四请求消息携带所述第三下载口令,以使得所述终端设备从所述签约管理实体获得所述第三下载口令;或所述运营商服务器向发送所述第三请求消息的终端设备发送所述第三下载口令;The fourth request message carries the third download password, so that the terminal device obtains the third download password from the subscription management entity; or the operator server sends a terminal to send the third request message The device sends the third download password;
所述第三下载口令用于所述终端设备再次向所述运营商服务器请求下载与所述签约文件属于相同签约的签约文件时,所述运营商服务器对所述终端设备的请求进行认证。对所述终端设备每一次的下载请求都使用运营商服务器上一次生成的下载口令来进行认证,这样通过动态生成下载口令,实现对下载请 求的动态认证,避免攻击者的伪装下载请求。The third download password is used by the terminal server to authenticate the request of the terminal device when the terminal device requests the operator server to download the subscription file that belongs to the same contract with the subscription file. Each time the download request of the terminal device is used, the download password generated by the operator server is used for authentication, so that the download password is dynamically generated, and the download is requested. Dynamic authentication is sought to avoid the attacker's masquerading download request.
在签约文件下载至终端设备后,所述运营商服务器接收所述签约管理实体发送的第二确认消息,从而知晓本次终端设备请求下载的与所述签约文件属于相同签约的签约文件已成功下载,则所述运营商服务器保存所述第三下载口令并删除所述第一下载口令,所述第二确认消息为所述签约管理实体成功将与所述签约文件属于相同签约的签约文件发送至所述终端设备后发送的消息,通过动态更新下载口令,优化动态认证的机制,提高下载的安全性。After the subscription file is downloaded to the terminal device, the operator server receives the second confirmation message sent by the subscription management entity, so that the subscription file that the terminal device requests to download and belongs to the same contract with the subscription file has been successfully downloaded. And the operator server saves the third download password and deletes the first download password, and the second confirmation message is that the subscription management entity successfully sends the subscription file that belongs to the same contract with the subscription file to The message sent by the terminal device optimizes the dynamic authentication mechanism by dynamically updating the download password, thereby improving the security of the download.
在一些可能的设计中,所述第一下载口令或所述第三下载口令至少满足以下项之一:In some possible designs, the first download password or the third download password meets at least one of the following:
在预设时长内有效、使用的有效次数为有限次、在所述预设时长内使用的有效次数为有限次、包含签约文件的下载次数。通过限定下载口令的有效时长和可使用的有效次数,以及对签约文件的下载次数进行计数,可以进一步避免攻击者伪造重下载请求或克隆下载口令非法获取签约文件,提高签约文件分发的安全性。Valid for a preset duration, the number of valid uses is finite, the number of valid uses within the preset duration is finite, and the number of downloads containing the contracted file. By limiting the effective duration of the download password and the number of valid times that can be used, and counting the number of downloads of the signed file, the attacker can forge the re-download request or clone the download password to illegally obtain the subscription file, thereby improving the security of the contract file distribution.
第二方面提供一种签约文件下载的方法,所述方法包括:The second aspect provides a method for downloading a contract file, the method comprising:
终端设备向运营商服务器发送第一请求消息,所述第一请求消息用于向所述运营商服务器请求下载签约文件,以使所述运营商服务器向签约管理实体发送第二请求消息,所述第二请求消息用于指示所述签约管理实体生成所述终端设备请求下载的签约文件;The terminal device sends a first request message to the operator server, where the first request message is used to request the operator server to download a subscription file, so that the operator server sends a second request message to the subscription management entity, The second request message is used to instruct the subscription management entity to generate a subscription file that the terminal device requests to download;
所述终端设备获取所述运营商服务器生成的第一下载口令和接收来自所述签约管理实体的所述签约文件,其中,所述第一下载口令可以由所述运营商服务器直接发送给所述终端设备,或者,由所述运营商服务器发给所述签约管理实体后,由所述签约管理实体转发给所述终端设备;Obtaining, by the terminal device, a first download password generated by the operator server and receiving the subscription file from the subscription management entity, where the first download password may be directly sent by the operator server to the The terminal device is forwarded to the terminal device by the contract management entity after being sent by the operator server to the subscription management entity;
所述第一下载口令用于所述终端设备在再次请求下载与所述签约文件属于相同签约的签约文件时,向所述运营商服务器请求认证。The first download password is used by the terminal device to request authentication from the operator server when requesting to download a subscription file that belongs to the same contract as the subscription file.
在一些可能的设计中,所述方法还包括:In some possible designs, the method further includes:
所述终端设备向所述运营商服务器发送携带第二下载口令的第三请求消息,所述第三请求消息用于向所述运营商服务器请求下载与所述签约文件属于 相同签约的签约文件;Transmitting, by the terminal device, a third request message carrying a second download password to the operator server, where the third request message is used to request downloading from the operator server that the subscription file belongs to Signing documents of the same contract;
当所述第二下载口令与所述第一下载口令相同或相对应时,则所述运营商服务器对所述第三请求消息认证通过,在认证通过后,所述终端设备获取所述运营商服务器生成的第三下载口令和接收来自所述签约管理实体的与所述签约文件属于相同签约的签约文件,所述第三下载口令用于终端设备在再次向所述运营商服务器请求下载与所述签约文件属于相同签约的签约文件时,向所述运营商服务器请求认证。When the second download password is the same as or corresponds to the first download password, the operator server authenticates the third request message, and after the authentication is passed, the terminal device acquires the operator. a third download password generated by the server and a subscription file from the contract management entity that belongs to the same contract as the subscription file, and the third download password is used by the terminal device to request the download and the server again from the server. When the contract document belongs to the contract document of the same contract, the server is requested to perform authentication.
其中,所述第一下载口令或所述第三下载口令由所述终端设备从所述运营商服务器或签约管理实体获取。The first download password or the third download password is obtained by the terminal device from the operator server or the contract management entity.
在一些可能的设计中,所述方法还包括:In some possible designs, the method further includes:
所述终端设备将本地保存的所述第一下载口令替换为所述第三下载口令。通过动态更新下载口令,与网络侧同步,能够优化动态认证的机制,提高下载的安全性。The terminal device replaces the locally saved first download password with the third download password. By dynamically updating the download password and synchronizing with the network side, the dynamic authentication mechanism can be optimized to improve the security of the download.
在一些可能的设计中,所述第一下载口令或所述第三下载口令至少满足以下项之一:In some possible designs, the first download password or the third download password meets at least one of the following:
在预设时长内有效、使用的有效次数为有限次、在所述预设时长内、使用的有效次数为有限次、包含签约文件的下载次数。通过限定下载口令的有效时长和可使用的有效次数,以及对签约文件的下载次数进行计数,可以进一步避免攻击者伪造重下载请求或克隆下载口令非法获取签约文件,提高签约文件分发的安全性。Valid for a preset duration, the number of valid uses is finite, within the preset duration, the number of valid uses is finite, and the number of downloads containing the contracted file. By limiting the effective duration of the download password and the number of valid times that can be used, and counting the number of downloads of the signed file, the attacker can forge the re-download request or clone the download password to illegally obtain the subscription file, thereby improving the security of the contract file distribution.
第三方面提供一种下载签约文件的方法,所述方法包括:A third aspect provides a method of downloading a subscription file, the method comprising:
签约管理实体接收运营商服务器发送的第二请求消息,所述第二请求消息用于指示所述签约管理实体生成终端设备请求下载的签约文件,所述第二请求消息为所述运营商服务器在接收到所述终端设备发送的第一请求消息后向所述签约管理实体发出,其中,所述第一请求消息用于向所述运营商服务器请求下载所述签约文件;The subscription management entity receives a second request message sent by the operator server, where the second request message is used to indicate that the subscription management entity generates a subscription file that the terminal device requests to download, and the second request message is that the carrier server is After receiving the first request message sent by the terminal device, sending the first request message to the subscription management entity, where the first request message is used to request the carrier server to download the subscription file;
所述第二请求消息携带所述运营商服务器生成的第一下载口令;The second request message carries a first download password generated by the operator server;
所述签约管理实体根据所述第二请求消息生成所述签约文件,并将所述签 约文件和所述第一下载口令发送至所述终端设备,所述第一下载口令用于终端设备再次向所述运营商服务器请求下载与所述签约文件属于相同签约的签约文件时,向所述运营商服务器进行认证。The contract management entity generates the subscription file according to the second request message, and the signing Sending the file and the first download password to the terminal device, where the first download password is used by the terminal device to download to the operator server again the download file that belongs to the same contract as the subscription file, The carrier server is authenticated.
在一些可能的设计中,所述方法还包括:In some possible designs, the method further includes:
所述签约管理实体接收所述运营商服务器发送的携带第三下载口令的第四请求消息,所述第三下载口令为所述运营商服务器对所述第三请求消息认证成功后生成的下载口令;The subscription management entity receives a fourth request message that is sent by the operator server and carries a third download password, where the third download password is a download password generated after the operator server successfully authenticates the third request message. ;
所述签约管理实体根据所述第四请求消息的指示,获取终端设备请求下载的与所述签约文件属于相同签约的签约文件,并将所述第三下载口令,以及与所述签约文件属于相同签约的签约文件发送给所述终端设备;The contract management entity acquires, according to the instruction of the fourth request message, a subscription file that is requested by the terminal device to be downloaded and belongs to the same contract, and the third download password and the subscription file belong to the same The signed contract file is sent to the terminal device;
所述第三下载口令用于终端设备再次请求下载与所述签约文件属于相同签约的签约文件时,终端设备向所述运营商服务器请求认证。通过动态更新下载口令,实现终端设备的动态请求认证,避免攻击者的伪装下载请求。The third download password is used by the terminal device to request authentication from the operator server when the terminal device requests to download the subscription file that belongs to the same contract as the subscription file. By dynamically updating the download password, dynamic request authentication of the terminal device is implemented, and the attacker's masquerading download request is avoided.
在一些可能的设计中,所述第一下载口令或所述第三下载口令至少满足以下项之一:In some possible designs, the first download password or the third download password meets at least one of the following:
在预设时长内有效、使用的有效次数为有限次、在所述预设时长内、使用的有效次数为有限次、包含签约文件的下载次数。通过限定下载口令的有效时长和可使用的有效次数,以及对签约文件的下载次数进行计数,可以进一步避免攻击者伪造重下载请求或克隆下载口令非法获取签约文件,提高签约文件分发的安全性。Valid for a preset duration, the number of valid uses is finite, within the preset duration, the number of valid uses is finite, and the number of downloads containing the contracted file. By limiting the effective duration of the download password and the number of valid times that can be used, and counting the number of downloads of the signed file, the attacker can forge the re-download request or clone the download password to illegally obtain the subscription file, thereby improving the security of the contract file distribution.
上述第一方面至第三方面提供的方案主要描述的是由运营商服务器生成、认证下载口令,以下第四方面至第六方面提供的方案,主要描述的是由签约管理实体生成、认证下载口令。The solutions provided by the foregoing first to third aspects are mainly described as being generated by the operator server and authenticating the download password. The solutions provided in the following fourth to sixth aspects mainly describe that the downloading password is generated and authenticated by the contract management entity. .
第四方面提供一种下载签约文件的方法,包括:The fourth aspect provides a method for downloading a contract file, including:
签约管理实体接收运营商服务器发送的第一请求消息,根据所述第一请求消息生成终端设备请求下载的签约文件;Receiving, by the subscription management entity, the first request message sent by the operator server, and generating, according to the first request message, a subscription file that the terminal device requests to download;
所述签约管理实体接收所述终端设备发送的第二请求消息后,生成第一下载口令,所述第二请求消息用于请求下载所述签约文件;所述签约管理实体将 所述第一下载口令和所述签约文件发送至所述终端设备,所述第一下载口令用于所述终端设备在再次请求下载与所述签约文件属于相同签约的签约文件时,所述签约管理实体对所述终端设备进行认证。After receiving the second request message sent by the terminal device, the subscription management entity generates a first download password, where the second request message is used to request to download the subscription file; the subscription management entity The first download password and the subscription file are sent to the terminal device, and the first download password is used by the terminal device when the terminal device requests to download a subscription file that belongs to the same contract as the subscription file, the signing The management entity authenticates the terminal device.
在一些可能的设计中,所述方法还包括:In some possible designs, the method further includes:
所述签约管理实体接收所述运营商服务器发送的第三请求消息,并根据所述第三请求消息获取与所述签约文件属于相同签约的签约文件;Receiving, by the subscription management entity, a third request message sent by the operator server, and acquiring, according to the third request message, a subscription file that belongs to the same contract with the subscription file;
所述签约管理实体接收终端设备发送的第四请求消息,所述第四请求消息携带第二下载口令;Receiving, by the subscription management entity, a fourth request message sent by the terminal device, where the fourth request message carries a second download password;
所述签约管理实体对所述第四请求消息进行认证,当所述第二下载口令与所述第一下载口令相同或相对应时,则认证成功;The subscription management entity authenticates the fourth request message, and when the second download password is the same as or corresponds to the first download password, the authentication succeeds;
在认证成功后,所述签约管理实体生成第三下载口令,并将所述第三下载口令和所述与所述签约文件属于相同签约的签约文件发送至所述发出第四请求消息的终端设备,所述第三下载口令用于在所述终端设备再次请求下载与所述签约文件属于相同签约的签约文件时,所述签约管理实体对所述终端设备进行认证。通过动态生成下载口令,实现动态认证,避免攻击者的伪装下载请求。After the authentication succeeds, the subscription management entity generates a third download password, and sends the third download password and the subscription file that belongs to the same contract with the subscription file to the terminal device that issues the fourth request message. The third download password is used by the subscription management entity to authenticate the terminal device when the terminal device requests to download a subscription file that belongs to the same contract as the subscription file. Dynamic authentication is achieved by dynamically generating download passwords to avoid attackers' masquerading download requests.
在一些可能的设计中,第一下载口令可以由签约管理实体或运营商服务器保存,所述方法还包括以下之一:In some possible designs, the first download password may be saved by the contract management entity or the operator server, and the method further includes one of the following:
所述签约管理实体保存所述第一下载口令;The subscription management entity saves the first download password;
或,所述签约管理实体将所述第一下载口令发送给所述运营商服务器保存。Or the subscription management entity sends the first download password to the operator server for saving.
在一些可能的设计中,所述签约管理实体对所述第四请求消息进行认证,包括以下之一:In some possible designs, the subscription management entity authenticates the fourth request message, including one of the following:
所述签约管理实体使用本地保存的所述第一下载口令对所述第四请求消息中的第二下载口令进行认证;The subscription management entity authenticates the second download password in the fourth request message by using the locally saved first download password;
或,所述第三请求消息携带来自所述签约管理实体的所述第一下载口令(这种情况下,所述签约管理实体生成的所述第一下载口令由所述签约管理实体发送给所述运营商服务器保存),所述签约管理实体使用所述第三请求消息中携带的所述第一下载口令,对所述第四请求消息中的第二下载口令进行认证。通过设置下载口令的保存位置,有效保障签约管理实体能够实时获取用于 认证终端设备的下载请求的下载口令,避免无法对终端设备进行认证,从而导致终端设备无法下载签约文件的问题。Or the third request message carries the first download password from the subscription management entity (in this case, the first download password generated by the subscription management entity is sent by the subscription management entity to the The carrier management server saves the second download password in the fourth request message by using the first download password carried in the third request message. By setting the save location of the download password, it is effective to ensure that the contract management entity can obtain the real-time use for The download password of the download request of the authentication terminal device avoids the problem that the terminal device cannot be authenticated, thereby causing the terminal device to download the subscription file.
在一些可能的设计中,所述方法还包括以下之一:In some possible designs, the method further includes one of the following:
所述签约管理实体将本地保存的所述第一下载口令更新为所述第三下载口令;The subscription management entity updates the locally saved first download password to the third download password;
或,所述签约管理实体将所述第三下载口令发送给所述运营商服务器保存,以使所述运营商服务器将本地保存的第一下载口令更新为所述第三下载口令。通过动态更新下载口令,能够优化动态认证的机制,提高下载的安全性。Or the contract management entity sends the third download password to the operator server for saving, so that the operator server updates the locally saved first download password to the third download password. By dynamically updating the download password, the dynamic authentication mechanism can be optimized to improve the security of the download.
在一些可能的设计中,所述第一下载口令或所述第二下载口令或所述第三下载口令至少满足以下之一:In some possible designs, the first download password or the second download password or the third download password meet at least one of the following:
在预设时长内有效、使用的有效次数为有限次、在所述预设时长内、使用的有效次数为有限次、包含签约文件的下载次数。通过设置下载口令的有效期和有效使用次数,能够进一步降低下载签约文件时的攻击概率,提高签约文件分发的安全性。Valid for a preset duration, the number of valid uses is finite, within the preset duration, the number of valid uses is finite, and the number of downloads containing the contracted file. By setting the validity period and effective usage times of the download password, the attack probability when downloading the contract file can be further reduced, and the security of the contract file distribution can be improved.
在一些可能的设计中,所述第二请求消息携带第四下载口令,所述第四下载口令为所述签约管理实体在所述终端设备请求签约之前为所述终端设备生成,所述第四下载口令用于对所述终端设备是否具备申请签约的权限进行认证;In some possible designs, the second request message carries a fourth download password, and the fourth download password is generated by the subscription management entity for the terminal device before the terminal device requests the subscription, the fourth The download password is used to authenticate whether the terminal device has the right to apply for signing;
所述生成所述第一下载口令,包括:The generating the first download password includes:
所述签约管理实体验证所述第四下载口令,在验证通过后,生成所述第一下载口令;The subscription management entity verifies the fourth download password, and after the verification is passed, generates the first download password;
所述生成所述第一下载口令之后,所述方法还包括:After the generating the first download password, the method further includes:
所述签约管理实体将所保存的所述第四下载口令替换为所述第一下载口令;The subscription management entity replaces the saved fourth download password with the first download password;
或者,所述签约管理实体将所述第一下载口令发送给所述运营商服务器,以使得所述运营商服务器将本地保存的所述第四下载口令替换为所述第一下载口令。所述签约管理实体在所述终端设备向所述运营商服务器请求签约之前便将第四下载口令发送给终端设备,避免首次下载过程中出现伪造下载请求的可能,为终端设备的首次下载提供保障,以及通过双重认证(包括运营商服务 器认证终端设备的身份是否合法,以及认证第四下载口令),提高首次下载的安全性。另外,动态生成和更新下载口令,减少被攻击的概率。Alternatively, the subscription management entity sends the first download password to the operator server, so that the operator server replaces the locally saved fourth download password with the first download password. The signing management entity sends the fourth download password to the terminal device before the terminal device requests the signing of the operator server, so as to avoid the possibility of forging the download request during the first downloading process, and providing protection for the first download of the terminal device. And through two-factor authentication (including carrier services) Whether the identity of the terminal device is authenticated and the fourth download password is authenticated, the security of the first download is improved. In addition, the download password is dynamically generated and updated to reduce the probability of being attacked.
第五方面提供一种下载签约文件的方法,包括:The fifth aspect provides a method for downloading a contract file, including:
运营商服务器接收终端设备的第一下载请求消息,所述第一下载请求消息用于向所述运营商服务器请求下载签约文件;Receiving, by the operator server, a first download request message of the terminal device, where the first download request message is used to request the carrier server to download the subscription file;
所述运营商服务器向签约管理实体发送第一请求消息,所述第一请求消息用于指示所述签约管理实体生成所述终端设备请求下载的签约文件;The operator server sends a first request message to the subscription management entity, where the first request message is used to instruct the subscription management entity to generate a subscription file that the terminal device requests to download;
所述运营商服务器接收所述签约管理实体发送的第一下载口令,并保存所述第一下载口令;所述第一下载口令为所述签约管理实体接收到所述终端设备发送的第二请求消息后生成的第一下载口令,其中,所述第二请求消息用于请求下载所述签约文件;Receiving, by the operator server, the first download password sent by the subscription management entity, and saving the first download password; the first download password is a second request sent by the subscription management entity to the terminal device a first download password generated after the message, wherein the second request message is used to request to download the subscription file;
所述第一下载口令用于在所述终端设备再次请求下载与所述签约文件属于相同签约的签约文件时,所述签约管理实体对所述终端设备的再次请求进行认证。The first download password is used to authenticate the re-request of the terminal device when the terminal device requests to download a subscription file that belongs to the same contract as the subscription file.
在一些可能的设计中,所述方法还包括:In some possible designs, the method further includes:
所述运营商服务器接收终端设备发送的第二下载请求消息,所述第二下载请求用于请求下载与所述签约文件属于相同签约的签约文件;Receiving, by the operator server, a second download request message sent by the terminal device, where the second download request is used to request to download a subscription file that belongs to the same contract with the subscription file;
所述运营商服务器发送第三请求消息至所述签约管理实体,所述第三请求消息用于指示所述签约管理实体获取与所述签约文件属于相同签约的签约文件;The operator server sends a third request message to the subscription management entity, where the third request message is used to instruct the subscription management entity to acquire a subscription file that belongs to the same contract with the subscription file;
所述运营商服务器接收所述签约管理实体发送的第三下载口令,并将本地保存的所述第一下载口令更新为所述第三下载口令;在后续由签约管理实体和终端设备建立的下载会话中,终端设备向签约管理实体发送第四请求消息,签约管理实体对第四请求消息中的第一下载口令认证成功后,会生成第三下载口令,即所述第三下载口令为所述签约管理实体对所述第四请求消息认证成功后生成的下载口令,所述第三下载口令用于所述终端设备在再次请求下载与所述签约文件属于相同签约的签约文件时,所述签约管理实体对所述终端设备进行认证。动态更新下载口令,与签约管理实体同步,并为后续签约管理实体认证 终端设备的下载请求时,实时提供最新的下载口令。Receiving, by the operator server, a third download password sent by the subscription management entity, and updating the locally saved first download password to the third download password; and subsequently downloading established by the subscription management entity and the terminal device In the session, the terminal device sends a fourth request message to the subscription management entity, and after the subscription management entity successfully authenticates the first download password in the fourth request message, the third download password is generated, that is, the third download password is the a download password generated by the subscription management entity after the fourth request message is successfully authenticated, and the third download password is used by the terminal device when the terminal device requests to download the subscription file that belongs to the same contract with the subscription file again. The management entity authenticates the terminal device. Dynamically update the download password, synchronize with the contract management entity, and authenticate for subsequent contract management entities The latest download password is provided in real time when the terminal device downloads the request.
在一些可能的设计中,所述第三请求消息携带所述第一下载口令,所述第三请求消息还用于所述签约管理实体在接收所述终端设备发送的第四请求消息之后,使用所述第三请求消息携带的所述第一下载口令,对所述第四请求消息进行认证。通过所述第三请求消息携带所述第一下载口令,实现为签约管理实体实时提供用于认证终端的下载请求的第一下载口令。In some possible designs, the third request message carries the first download password, and the third request message is further used by the subscription management entity after receiving the fourth request message sent by the terminal device. The first download password carried in the third request message, and the fourth request message is authenticated. The first download password is carried by the third request message, so that the first download password for authenticating the download request of the terminal is provided in real time for the subscription management entity.
在一些可能的设计中,所述运营商服务器接收所述签约管理实体发送的第一下载口令之前,所述方法还包括:In some possible designs, before the operator server receives the first download password sent by the subscription management entity, the method further includes:
所述运营商服务器从所述签约管理实体获取第四下载口令,并将所述第四下载口令发送至所述终端设备。其中,所述第四下载口令由所述签约管理实体分配。The operator server acquires a fourth download password from the subscription management entity, and sends the fourth download password to the terminal device. The fourth download password is allocated by the contract management entity.
所述保存所述第一下载口令包括:The saving the first download password comprises:
所述运营商服务器将所述第四下载口令替换为所述第一下载口令。通过在终端设备向运营商服务器请求签约之前将第四下载口令发送给终端设备,避免首次下载过程中出现伪造下载请求的可能,为终端设备的首次下载提供保障。The operator server replaces the fourth download password with the first download password. By sending the fourth download password to the terminal device before the terminal device requests the contract from the operator server, the possibility of forging the download request during the first downloading process is avoided, and the first download of the terminal device is guaranteed.
第六方面提供一种下载签约文件的方法,包括:The sixth aspect provides a method for downloading a subscription file, including:
终端设备向所述运营商服务器发送第一下载请求,所述第一下载请求消息用于向所述运营商服务器申请签约,以及请求下载签约文件;The terminal device sends a first download request to the operator server, where the first download request message is used to apply for a subscription to the operator server, and request to download a subscription file;
所述终端设备向签约管理实体发送第二请求消息,所述第二请求消息用于向所述签约管理实体请求下载签约文件;Sending, by the terminal device, a second request message to the subscription management entity, where the second request message is used to request the subscription management entity to download the subscription file;
所述终端设备接收来自所述签约管理实体的第一下载口令和所述签约文件,所述第一下载口令为签约管理实体生成;Receiving, by the terminal device, a first download password and the subscription file from the subscription management entity, where the first download password is generated by a subscription management entity;
所述第一下载口令用于所述终端设备再次请求下载与所述签约文件属于相同签约的签约文件时,所述终端设备向所述签约管理实体请求认证。The first download password is used by the terminal device to request authentication from the subscription management entity when the terminal device requests to download a subscription file that belongs to the same contract as the subscription file.
在一些可能的设计中,由于各种原因,终端设备需要重下载签约文件时,会向运营商服务器发起请求,则,所述方法还包括:In some possible designs, when the terminal device needs to re-download the subscription file for various reasons, the request is initiated to the operator server, and the method further includes:
所述终端设备向所述运营商服务器发送第二下载请求消息,所述第二下载请求消息用于向所述运营商服务器请求下载与所述签约文件属于相同签约的 签约文件;The terminal device sends a second download request message to the operator server, where the second download request message is used to request the carrier server to download and belong to the same contract with the subscription file. Signing documents;
所述终端设备向所述签约管理实体发送携带第二下载口令的第四请求消息;Transmitting, by the terminal device, a fourth request message carrying a second download password to the subscription management entity;
所述终端设备接收所述签约管理实体发送的第三下载口令和所述与所述签约文件属于相同签约的签约文件,所述第三下载口令为所述签约管理实体使用所述第一下载口令对所述终端设备发送的第四请求消息认证通过后所生成;The terminal device receives a third download password sent by the subscription management entity and the subscription file that belongs to the same contract with the subscription file, and the third download password is used by the subscription management entity to use the first download password. And generating, after the fourth request message sent by the terminal device is authenticated;
所述第三下载口令用于所述终端设备再次向所述运营商服务器请求下载与所述签约文件属于相同签约的签约文件时,所述终端设备向所述签约管理实体请求认证。通过动态更新下载口令,优化动态认证的下载机制,提高下载的安全性。When the terminal device requests the terminal server to download the subscription file that belongs to the same contract with the subscription file, the terminal device requests the subscription management entity to request authentication. By dynamically updating the download password, the dynamic authentication download mechanism is optimized to improve the security of the download.
在一些可能的设计中,所述方法还包括:In some possible designs, the method further includes:
所述终端设备将本地保存的所述第一下载口令替换为所述第三下载口令。通过动态更新下载口令,与网络侧同步,能够优化动态认证的机制,提高下载的安全性。The terminal device replaces the locally saved first download password with the third download password. By dynamically updating the download password and synchronizing with the network side, the dynamic authentication mechanism can be optimized to improve the security of the download.
在一些可能的设计中,所述第一下载口令或所述第二下载口令或所述第三下载口令至少满足以下项之一:In some possible designs, the first download password or the second download password or the third download password meets at least one of the following:
在预设时长内有效、使用的有效次数为有限次、在所述预设时长内、使用的有效次数为有限次、包含签约文件的下载次数。通过设置下载口令的有效期和有效使用次数,能够进一步降低下载签约文件时的攻击概率,提高签约文件分发的安全性。Valid for a preset duration, the number of valid uses is finite, within the preset duration, the number of valid uses is finite, and the number of downloads containing the contracted file. By setting the validity period and effective usage times of the download password, the attack probability when downloading the contract file can be further reduced, and the security of the contract file distribution can be improved.
在一些可能的设计中,所述第二请求消息携带来自所述签约管理实体的第四下载口令,所述第四下载口令用于所述签约管理实体在生成所述第一下载口令之前,验证所述第二请求消息;In some possible designs, the second request message carries a fourth download password from the subscription management entity, and the fourth download password is used by the subscription management entity to verify before generating the first download password. The second request message;
所述终端设备接收第一下载口令和所述签约文件之后,所述方法还包括:After the terminal device receives the first download password and the subscription file, the method further includes:
所述终端设备将所保存的所述第四下载口令替换为所述第一下载口令。避免首次下载过程中出现伪造下载请求的可能,为终端设备的首次下载提供保障,以及通过双重认证(包括运营商服务器认证终端设备的身份是否合法,以及认证第四下载口令),提高首次下载的安全性。 The terminal device replaces the saved fourth download password with the first download password. Avoid the possibility of forgery download requests during the first download, provide guarantee for the first download of the terminal device, and improve the first download by two-factor authentication (including whether the identity of the operator server to authenticate the terminal device is legal and the fourth download password is authenticated). safety.
以下第七方面和第八方面提供的实施例,主要从运营商服务器确定终端设备所请求下载的签约文件为已申请签约的签约文件时,通知签约管理实体准备签约文件的角度来描述。The following seventh aspect and the eighth aspect provide the embodiment, which is mainly described by the operator server, when the subscription file requested by the terminal device is the subscription file that has been applied for, and the contract management entity is notified to prepare the contract file.
第七方面的一种下载签约文件的方法,所述方法包括:A method for downloading a subscription file in a seventh aspect, the method comprising:
运营商服务器接收终端设备发送的第一请求消息,所述第一请求消息用于请求下载签约文件;Receiving, by the operator server, a first request message sent by the terminal device, where the first request message is used to request to download the subscription file;
所述运营商服务器根据所述第一请求消息中携带的已申请签约的信息,确定所述第一请求消息请求下载的签约文件为已申请签约的签约文件,则向签约管理实体发送第二请求消息,所述第二请求消息用于指示所述签约管理实体获取所述签约文件。Determining, by the operator server, that the subscription file requested to be downloaded by the first request message is a subscription file that has been requested for signing, according to the information about the subscribed information carried in the first request message, sending a second request to the subscription management entity. The message, the second request message is used to instruct the subscription management entity to acquire the subscription file.
在一些可能的设计中,所述已申请签约的信息包含所述已申请签约对应的用户标识,或所述已申请签约已分发的签约文件对应的签约文件标识,或所述已申请签约对应的下载口令。通过用户标识或文件标识或下载口令,能够迅速、准确的、有针对性的获取终端设备请求下载的签约文件,减少下载签约文件的流程和时间。In some possible designs, the information that has been applied for the subscription includes the user identifier corresponding to the applied for the subscription, or the subscription document identifier corresponding to the subscription document that has been applied for the contract, or the corresponding application for the subscription. Download the password. Through the user ID or file identification or download password, the contract file that the terminal device requests to download can be obtained quickly, accurately, and in a targeted manner, and the process and time for downloading the contract file are reduced.
在一些可能的设计中,所述第一请求消息还携带所述终端设备的嵌入式通用集成电路卡eUICC标识;In some possible designs, the first request message further carries an embedded universal integrated circuit card eUICC identifier of the terminal device;
在确定所述第一请求消息请求下载的签约文件为已申请签约的签约文件后,所述运营商服务器在向签约管理实体发送第二请求消息之前,还需要执行:After determining that the subscription file requested by the first request message is a subscription file that has been requested for subscription, the operator server needs to execute before sending the second request message to the subscription management entity:
判断所述eUICC标识与所保存的所述签约对应的eUICC标识是否相同;Determining whether the eUICC identifier is the same as the eUICC identifier corresponding to the saved subscription;
1、在确定所述eUICC标识与所保存的所述已申请签约对应的eUICC标识相同时,运营商服务器可以通过以下方式之一在第二请求消息中携带不同的参数,使签约管理实体获取终端设备请求的签约文件:1. When it is determined that the eUICC identifier is the same as the eUICC identifier corresponding to the saved application subscription, the operator server may carry different parameters in the second request message by using one of the following manners, so that the subscription management entity acquires the terminal. Signing documents requested by the device:
a、所述第二请求消息还携带重下载指示信息和所述签约文件标识,所述重下载指示信息用于指示所述签约管理实体根据所述签约文件标识关联到所述已申请签约已分发的签约文件;The second request message further carries the re-download indication information and the subscription file identifier, where the re-download indication information is used to indicate that the subscription management entity is associated with the subscribed file that has been distributed according to the subscription file identifier. Signing document;
b、所述第二请求消息还携带所述已申请签约已分发的签约文件对应的第一签约文件信息,所述已申请签约的第一签约文件信息包含所述已申请签约已 分发的签约文件对应的根密钥信息,所述第一签约文件信息用于所述签约文件管理实体生成所述终端设备请求下载的所述签约文件。The second request message further carries the first subscription file information corresponding to the signed contract file that has been applied for the contract, and the first subscription document information that has been applied for the contract includes the signed application has been signed. The root key information corresponding to the distributed subscription file, the first subscription file information is used by the subscription file management entity to generate the subscription file that the terminal device requests to download.
通过所述第二请求消息携带的内容,使得签约管理实体为终端设备提供所述签约已分发的签约文件,不用新生成新签约的签约文件,能够降低运营商服务器签约的成本。The content carried by the second request message enables the subscription management entity to provide the subscription file that the subscription has been distributed for the terminal device, and the contract cost of the operator server can be reduced without newly generating a new subscription contract file.
2、在确定所述eUICC标识与所保存的所述已申请签约对应的eUICC标识不同时,将终端设备的下载请求视为新的签约,故可以通过在所述第二请求消息中携带第二签约文件信息,使得所述签约文件管理实体使用所述第二签约文件信息生成终端设备请求下载的签约文件。2. When it is determined that the eUICC identifier is different from the saved eUICC identifier corresponding to the saved subscription, the download request of the terminal device is regarded as a new subscription, so that the second request message may be carried in the second request message. Signing the file information, so that the contract file management entity uses the second contract file information to generate a subscription file that the terminal device requests to download.
第八方面提供一种签约文件下载的方法,包括:The eighth aspect provides a method for downloading a contract file, including:
签约管理实体接收运营商服务器发送的第二请求消息,根据所述第二请求消息获取终端设备请求下载的签约文件,所述第二请求消息为所述运营商服务器在接收到第一请求消息,根据所述第一请求消息确定所述第一请求消息请求下载的已申请签约的签约文件后所发送的消息,所述第一请求消息携带已申请签约的信息;Receiving, by the subscription management entity, a second request message sent by the operator server, acquiring, according to the second request message, a subscription file that the terminal device requests to download, where the second request message is that the operator server receives the first request message, Determining, according to the first request message, a message sent after the first request message requests to download the subscribed subscription file, where the first request message carries information that has been requested to be signed;
所述签约管理实体将所述已申请签约的签约文件发送至所述终端设备。The contract management entity sends the contracted file that has been applied for the contract to the terminal device.
在一些可能的设计中,所述已申请签约的信息包含所述已申请签约对应的用户标识或所述已申请签约已分发的签约文件对应的签约文件标识或所述已申请签约对应的下载口令。通过用户标识或文件标识或下载口令,能够迅速、准确的、有针对性的获取终端设备请求下载的签约文件,减少下载签约文件的流程和时间。In some possible designs, the information that has been applied for the subscription includes the user identifier corresponding to the applied for the subscription or the subscription file identifier corresponding to the signed subscription document that has been applied for the subscription or the download password corresponding to the applied for the subscription. . Through the user ID or file identification or download password, the contract file that the terminal device requests to download can be obtained quickly, accurately, and in a targeted manner, and the process and time for downloading the contract file are reduced.
在一些可能的设计中,根据第二请求消息所携带的信息的内容,签约管理实体可以通过以下之一获取终端设备请求下载的签约文件:In some possible designs, according to the content of the information carried by the second request message, the subscription management entity may obtain the subscription file that the terminal device requests to download by using one of the following:
1、在所述第二请求消息还携带重下载指示信息和所述签约文件标识时,所述签约管理实体根据所述签约文件的文件标识关联到与所述已申请签约已分发的签约文件。1. When the second request message further carries the re-downloading indication information and the subscription file identifier, the subscription management entity is associated with the contracted file that has been subscribed to the already-applied contract according to the file identifier of the contracted file.
2、在所述第二请求消息还携带所述已申请签约已分发的签约文件对应的 第一签约文件信息时,所述签约管理实体使用所述第一签约文件信息生成所述终端设备请求下载的签约文件。2. The second request message further carries the corresponding contract file that has been applied for the contracted distribution. When signing the file information, the contract management entity uses the first subscription file information to generate a subscription file that the terminal device requests to download.
3、在所述第二请求消息还携带第二签约文件信息时,所述签约管理实体使用所述第二签约文件信息生成所述终端设备请求下载的的签约文件。3. When the second request message further carries the second subscription file information, the subscription management entity uses the second subscription file information to generate a subscription file that the terminal device requests to download.
以上1或2,通过为终端设备提供所述已申请签约已分发的签约文件,不用新生成新签约的签约文件,能够降低运营商服务器签约的成本。In the above 1 or 2, by providing the terminal device with the signed contract file that has been applied for the contract, the contract cost of the operator server can be reduced without newly creating a new contract signing document.
本发明第九方面提供一种运营商服务器,具有实现对应于上述第一方面提供的下载签约文件的方法的功能。所述功能可以通过硬件实现,也可以通过硬件执行相应的软件实现。硬件或软件包括一个或多个与上述功能相对应的模块,所述模块可以是软件和/或硬件。A ninth aspect of the present invention provides an operator server having a function of implementing a method corresponding to the download subscription file provided by the above first aspect. The functions may be implemented by hardware or by corresponding software implemented by hardware. The hardware or software includes one or more modules corresponding to the functions described above, which may be software and/or hardware.
一种可能的设计中,所述运营商服务器包括:In a possible design, the operator server includes:
接收模块,用于接收终端设备发送的第一请求消息,所述第一请求消息用于向运营商服务器请求下载签约文件;a receiving module, configured to receive a first request message sent by the terminal device, where the first request message is used to request the operator server to download the subscription file;
处理模块,用于生成第一下载口令;a processing module, configured to generate a first download password;
发送模块,用于向签约管理实体发送第二请求消息,所述第二请求消息用于指示所述签约管理实体生成所述终端设备请求下载的签约文件,以使得所述终端设备从所述签约管理实体下载所述签约文件;a sending module, configured to send a second request message to the subscription management entity, where the second request message is used to instruct the subscription management entity to generate a subscription file that the terminal device requests to download, so that the terminal device receives the subscription from the terminal device The management entity downloads the contract document;
所述第二请求消息携带所述第一下载口令,以使得所述终端设备从所述签约管理实体获得所述第一下载口令;或者通过所述发送模块向所述终端设备发送所述第一下载口令;The second request message carries the first download password, so that the terminal device obtains the first download password from the subscription management entity; or sends the first to the terminal device by using the sending module. Download password
所述第一下载口令用于所述终端设备再次请求下载与所述签约文件属于相同签约的签约文件时,所述处理模块对所述终端设备的请求进行认证。The processing module performs authentication on the request of the terminal device when the terminal device requests to download the subscription file that belongs to the same contract with the subscription file.
一种可能的设计中,所述运营商服务器包括:In a possible design, the operator server includes:
相互连接的处理器、存储器、接收器和发射器;Interconnected processors, memories, receivers, and transmitters;
其中,所述存储器用于存储程序代码,所述处理器用于调用所述存储器中的程序代码来执行以下操作:The memory is used to store program code, and the processor is configured to invoke program code in the memory to perform the following operations:
利用所述接收器接收终端设备发送的第一请求消息,所述第一请求消息用于向运营商服务器请求下载签约文件; Receiving, by the receiver, a first request message sent by the terminal device, where the first request message is used to request the operator server to download the subscription file;
生成第一下载口令;Generating a first download password;
利用所述发射器向签约管理实体发送第二请求消息,所述第二请求消息用于指示所述签约管理实体生成所述终端设备请求下载的签约文件,以使得所述终端设备从所述签约管理实体下载所述签约文件;Transmitting, by the transmitter, a second request message to the subscription management entity, where the second request message is used to instruct the subscription management entity to generate a subscription file that the terminal device requests to download, so that the terminal device receives the subscription from the terminal device The management entity downloads the contract document;
所述第二请求消息携带所述第一下载口令,以使得所述终端设备从所述签约管理实体获得所述第一下载口令;或者通过所述发射器向所述终端设备发送所述第一下载口令;The second request message carries the first download password, so that the terminal device obtains the first download password from the subscription management entity; or sends the first to the terminal device by using the transmitter Download password
所述第一下载口令用于所述终端设备再次请求下载与所述签约文件属于相同签约的签约文件时,所述处理器对所述终端设备的再次请求进行认证。The first download password is used by the processor to authenticate the re-request of the terminal device when the terminal device requests to download a subscription file that belongs to the same contract as the subscription file.
本发明第十方面提供一种终端设备,具有实现对应于上述第二方面提供的下载签约文件的方法的功能。所述功能可以通过硬件实现,也可以通过硬件执行相应的软件实现。硬件或软件包括一个或多个与上述功能相对应的模块,所述模块可以是软件和/或硬件。A tenth aspect of the present invention provides a terminal device having a function of implementing a method corresponding to the download subscription file provided by the second aspect. The functions may be implemented by hardware or by corresponding software implemented by hardware. The hardware or software includes one or more modules corresponding to the functions described above, which may be software and/or hardware.
一种可能的设计中,所述终端设备包括:In a possible design, the terminal device includes:
发送模块,用于向运营商服务器发送第一请求消息,所述第一请求消息用于向所述运营商服务器请求下载签约文件,以使所述运营商服务器向签约管理实体发送第二请求消息,所述第二请求消息用于指示所述签约管理实体生成所述终端设备请求下载的签约文件;a sending module, configured to send a first request message to the operator server, where the first request message is used to request the carrier server to download a subscription file, so that the operator server sends a second request message to the subscription management entity. The second request message is used to instruct the subscription management entity to generate a subscription file that the terminal device requests to download;
接收模块,用于获取来自所述运营商服务器生成的第一下载口令和接收来自所述签约管理实体的所述签约文件;a receiving module, configured to acquire a first download password generated by the operator server and receive the subscription file from the subscription management entity;
所述第一下载口令用于所述终端设备在再次请求下载与所述签约文件属于相同签约的签约文件时,通过所述发送模块向所述运营商服务器请求认证。The first download password is used by the terminal device to request authentication from the server by using the sending module when requesting to download a subscription file that belongs to the same contract as the subscription file.
一种可能的设计中,所述终端设备包括:In a possible design, the terminal device includes:
相互连接处理器、存储器、接收器和发射器;Interconnecting processors, memories, receivers, and transmitters;
其中,所述存储器用于存储程序代码,所述处理器用于调用所述存储器中的程序代码来执行以下操作:The memory is used to store program code, and the processor is configured to invoke program code in the memory to perform the following operations:
利用所述发射器向运营商服务器发送第一请求消息,所述第一请求消息用于向所述运营商服务器请求下载签约文件,以使所述运营商服务器向签约管理 实体发送第二请求消息,所述第二请求消息用于指示所述签约管理实体生成所述终端设备请求下载的签约文件;Transmitting, by the transmitter, a first request message to an operator server, where the first request message is used to request the carrier server to download a subscription file, so that the operator server is directed to the subscription management The entity sends a second request message, where the second request message is used to instruct the signing management entity to generate a subscription file that the terminal device requests to download;
利用所述接收器获取来自所述运营商服务器生成的第一下载口令和接收来自所述签约管理实体的所述签约文件;Acquiring, by the receiver, a first download password generated by the operator server and receiving the subscription file from the subscription management entity;
所述第一下载口令用于所述终端设备在再次请求下载与所述签约文件属于相同签约的签约文件时,通过所述发射器向所述运营商服务器请求认证。The first download password is used by the terminal device to request authentication from the server through the transmitter when requesting to download a subscription file that belongs to the same contract as the subscription file.
本发明第十一方面提供一种签约管理实体,具有实现对应于上述第三方面提供的下载签约文件的方法的功能。所述功能可以通过硬件实现,也可以通过硬件执行相应的软件实现。硬件或软件包括一个或多个与上述功能相对应的模块,所述模块可以是软件和/或硬件。An eleventh aspect of the present invention provides a contract management entity having a function of implementing a method corresponding to the download subscription file provided by the above third aspect. The functions may be implemented by hardware or by corresponding software implemented by hardware. The hardware or software includes one or more modules corresponding to the functions described above, which may be software and/or hardware.
一种可能的设计中,所述签约管理实体包括:In a possible design, the contract management entity includes:
接收模块,用于接收运营商服务器发送的第二请求消息,所述第二请求消息用于指示所述签约管理实体生成终端设备请求下载的签约文件,所述第二请求消息为所述运营商服务器在接收到所述终端设备发送的第一请求消息后向所述签约管理实体发出,其中,所述第一请求消息用于向所述运营商服务器请求下载所述签约文件;a receiving module, configured to receive a second request message sent by the operator server, where the second request message is used to instruct the signing management entity to generate a subscription file that the terminal device requests to download, where the second request message is the operator After receiving the first request message sent by the terminal device, the server sends the first request message to the subscription management entity, where the first request message is used to request the carrier server to download the subscription file;
所述第二请求消息携带所述运营商服务器生成的第一下载口令;The second request message carries a first download password generated by the operator server;
处理模块,用于根据所述接收模块接收到的所述第二请求消息生成所述签约文件;a processing module, configured to generate the subscription file according to the second request message received by the receiving module;
发送模块,用于将所述第一下载口令和所述处理模块生成的所述签约文件发送至所述终端设备,所述第一下载口令用于所述终端设备在再次向所述运营商服务器请求下载与所述签约文件属于相同签约的签约文件时,向所述运营商服务器请求认证,即所述运营商服务器对所述终端设备的再次请求消息进行认证。a sending module, configured to send the first download password and the subscription file generated by the processing module to the terminal device, where the first download password is used by the terminal device to the operator server again When requesting to download a subscription file that belongs to the same contract as the subscription file, the server is requested to perform authentication, that is, the operator server authenticates the re-request message of the terminal device.
一种可能的设计中,所述签约管理实体包括:In a possible design, the contract management entity includes:
相互连接处理器、存储器、接收器和发射器;Interconnecting processors, memories, receivers, and transmitters;
其中,所述存储器用于存储程序代码,所述处理器用于调用所述存储器中的程序代码来执行以下操作: The memory is used to store program code, and the processor is configured to invoke program code in the memory to perform the following operations:
利用所述接收器接收运营商服务器发送的第二请求消息,所述第二请求消息用于指示所述签约管理实体生成终端设备请求下载的签约文件,所述第二请求消息为所述运营商服务器在接收到所述终端设备发送的第一请求消息后向所述签约管理实体发出,其中,所述第一请求消息用于向所述运营商服务器请求下载所述签约文件;Receiving, by the receiver, a second request message sent by the operator server, where the second request message is used to instruct the signing management entity to generate a subscription file that the terminal device requests to download, where the second request message is the operator After receiving the first request message sent by the terminal device, the server sends the first request message to the subscription management entity, where the first request message is used to request the carrier server to download the subscription file;
所述第二请求消息携带所述运营商服务器生成的第一下载口令;The second request message carries a first download password generated by the operator server;
根据所述接收器接收到的所述第二请求消息生成所述签约文件;Generating the subscription file according to the second request message received by the receiver;
利用所述发射器将所述第一下载口令和所述处理器生成的所述签约文件发送至所述终端设备,所述第一下载口令用于所述终端设备在再次请求下载与所述签约文件属于相同签约的签约文件时,向所述运营商服务器请求认证。Sending, by the transmitter, the first download password and the subscription file generated by the processor to the terminal device, the first download password being used by the terminal device to request download again and the signing When the file belongs to the same contracted contract file, the server is requested to authenticate.
本发明第十二方面提供一种签约管理实体,具有实现对应于上述第四方面提供的下载签约文件的方法的功能。所述功能可以通过硬件实现,也可以通过硬件执行相应的软件实现。硬件或软件包括一个或多个与上述功能相对应的模块,所述模块可以是软件和/或硬件。A twelfth aspect of the present invention provides a contract management entity having a function of implementing a method corresponding to the download subscription file provided by the fourth aspect. The functions may be implemented by hardware or by corresponding software implemented by hardware. The hardware or software includes one or more modules corresponding to the functions described above, which may be software and/or hardware.
一种可能的设计中,所述签约管理实体包括:In a possible design, the contract management entity includes:
接收模块,用于接收运营商服务器发送的第一请求消息,所述第一请求消息为所述运营商服务器在接收导终端设备的第一下载请求消息后向所述签约管理实体发出,其中,所述第一下载请求消息用于向所述运营商服务器请求下载签约文件;a receiving module, configured to receive a first request message sent by the operator server, where the first request message is sent by the operator server to the subscription management entity after receiving the first download request message of the terminal device, where The first download request message is used to request the carrier server to download a subscription file;
处理模块,用于根据所述接收模块接收到的所述第一请求消息生成终端设备请求下载的签约文件;a processing module, configured to generate, according to the first request message received by the receiving module, a subscription file that the terminal device requests to download;
在所述接收模块接收到所述终端设备发送的第二请求消息后,生成第一下载口令,所述第二请求消息用于请求下载所述签约文件;After the receiving module receives the second request message sent by the terminal device, generating a first download password, where the second request message is used to request to download the subscription file;
发送模块,用于将所述处理模块生成的所述第一下载口令和所述签约文件发送至所述终端设备,所述第一下载口令用于所述终端设备在再次请求下载与所述签约文件属于相同签约的签约文件时,所述处理模块对所述终端设备进行认证。a sending module, configured to send the first download password and the subscription file generated by the processing module to the terminal device, where the first download password is used by the terminal device to request download again and the signing When the file belongs to the same contracted contract file, the processing module authenticates the terminal device.
一种可能的设计中,所述签约管理实体包括: In a possible design, the contract management entity includes:
相互连接处理器、存储器、接收器和发射器;Interconnecting processors, memories, receivers, and transmitters;
其中,所述存储器用于存储程序代码,所述处理器用于调用所述存储器中的程序代码来执行以下操作:The memory is used to store program code, and the processor is configured to invoke program code in the memory to perform the following operations:
利用所述接收器接收运营商服务器发送的第一请求消息;Receiving, by the receiver, a first request message sent by an operator server;
根据所述接收器接收到的所述第一请求消息生成终端设备请求下载的签约文件;Generating, according to the first request message received by the receiver, a subscription file that the terminal device requests to download;
在所述接收器接收到所述终端设备发送的第二请求消息后,生成第一下载口令,所述第二请求消息用于请求下载所述签约文件;After the receiver receives the second request message sent by the terminal device, generating a first download password, where the second request message is used to request to download the subscription file;
利用所述发射器将所述处理器生成的所述第一下载口令和所述签约文件发送至所述终端设备,所述第一下载口令用于所述终端设备在再次请求下载与所述签约文件属于相同签约的签约文件时,所述处理器对所述终端设备进行认证。Transmitting, by the transmitter, the first download password and the subscription file generated by the processor to the terminal device, where the first download password is used by the terminal device to request download again and the signing When the file belongs to the same contracted contract file, the processor authenticates the terminal device.
本发明第十三方面提供一种运营商服务器,具有实现对应于上述第五方面提供的下载签约文件的方法的功能。所述功能可以通过硬件实现,也可以通过硬件执行相应的软件实现。硬件或软件包括一个或多个与上述功能相对应的模块,所述模块可以是软件和/或硬件。A thirteenth aspect of the present invention provides an operator server having a function of implementing a method corresponding to the download subscription file provided by the fifth aspect. The functions may be implemented by hardware or by corresponding software implemented by hardware. The hardware or software includes one or more modules corresponding to the functions described above, which may be software and/or hardware.
一种可能的设计中,所述运营商服务器包括:In a possible design, the operator server includes:
接收模块,用于接收终端设备的第一下载请求消息,所述第一下载请求消息用于向所述运营商服务器请求下载签约文件;a receiving module, configured to receive a first download request message of the terminal device, where the first download request message is used to request to download the subscription file from the operator server;
发送模块,用于向签约管理实体发送第一请求消息,所述第一请求消息用于指示所述签约管理实体生成所述终端设备请求下载的签约文件;a sending module, configured to send a first request message to the subscription management entity, where the first request message is used to instruct the subscription management entity to generate a subscription file that the terminal device requests to download;
所述接收模块还用于接收所述签约管理实体发送的第一下载口令,所述第一下载口令为所述签约管理实体接收到所述终端设备发送的第二请求消息后生成的第一下载口令,所述第二请求消息用于请求下载所述签约文件;The receiving module is further configured to receive a first download password sent by the subscription management entity, where the first download password is a first download generated by the subscription management entity after receiving the second request message sent by the terminal device a password, the second request message is used to request to download the subscription file;
处理模块,用于保存通过所述接收模块接收到的所述第一下载口令;a processing module, configured to save the first download password received by the receiving module;
所述第一下载口令用于所述终端设备在再次请求下载与所述签约文件属于相同签约的签约文件时,所述签约管理实体对所述终端设备的再次请求进行认证。 The first download password is used by the terminal device to authenticate the re-request of the terminal device when the terminal device requests to download the subscription file that belongs to the same contract with the subscription file.
一种可能的设计中,所述运营商服务器包括:In a possible design, the operator server includes:
相互连接处理器、存储器、接收器和发射器;Interconnecting processors, memories, receivers, and transmitters;
其中,所述存储器用于存储程序代码,所述处理器用于调用所述存储器中的程序代码来执行以下操作:The memory is used to store program code, and the processor is configured to invoke program code in the memory to perform the following operations:
利用所述接收器接收终端设备的第一下载请求消息,所述第一下载请求消息用于向所述运营商服务器请求下载签约文件;Receiving, by the receiver, a first download request message of the terminal device, where the first download request message is used to request the carrier server to download a subscription file;
利用所述发射器向签约管理实体发送第一请求消息,所述第一请求消息用于指示所述签约管理实体生成所述终端设备请求下载的签约文件;Transmitting, by the transmitter, a first request message to the subscription management entity, where the first request message is used to instruct the subscription management entity to generate a subscription file that the terminal device requests to download;
利用所述接收器接收所述签约管理实体发送的第一下载口令,并保存所述第一下载口令;Receiving, by the receiver, a first download password sent by the subscription management entity, and saving the first download password;
所述第一下载口令用于所述终端设备在再次请求下载与所述签约文件属于相同签约的签约文件时,所述签约管理实体对所述终端设备的再次请求进行认证。The first download password is used by the terminal device to authenticate the re-request of the terminal device when the terminal device requests to download the subscription file that belongs to the same contract with the subscription file.
本发明第十四方面提供一种终端设备,具有实现对应于上述第六方面提供的下载签约文件的方法的功能。所述功能可以通过硬件实现,也可以通过硬件执行相应的软件实现。硬件或软件包括一个或多个与上述功能相对应的模块,所述模块可以是软件和/或硬件。A fourteenth aspect of the present invention provides a terminal device having a function of implementing a method corresponding to the download subscription file provided by the sixth aspect. The functions may be implemented by hardware or by corresponding software implemented by hardware. The hardware or software includes one or more modules corresponding to the functions described above, which may be software and/or hardware.
一种可能的设计中,所述终端设备包括:In a possible design, the terminal device includes:
发送模块,用于向所述运营商服务器发送第一下载请求,所述第一下载请求消息用于向所述运营商服务器申请签约,以及请求下载签约文件;a sending module, configured to send a first download request to the operator server, where the first download request message is used to apply for a subscription to the operator server, and request to download a subscription file;
以及向签约管理实体发送第二请求消息,所述第二请求消息用于向所述签约管理实体请求下载签约文件;And sending a second request message to the subscription management entity, where the second request message is used to request the subscription management entity to download the subscription file;
接收模块,用于接收来自所述签约管理实体的第一下载口令和所述签约文件,所述第一下载口令为签约管理实体生成;a receiving module, configured to receive a first download password and the subscription file from the subscription management entity, where the first download password is generated by a subscription management entity;
所述第一下载口令用于所述终端设备再次请求下载与所述签约文件属于相同签约的签约文件时,通过所述发送模块向所述签约管理实体请求认证。The first download password is used by the sending module to request authentication from the subscription management entity when the terminal device requests to download a subscription file that belongs to the same contract as the subscription file.
一种可能的设计中,所述终端设备包括:In a possible design, the terminal device includes:
相互连接处理器、存储器、接收器和发射器;Interconnecting processors, memories, receivers, and transmitters;
其中,所述存储器用于存储程序代码,所述处理器用于调用所述存储器中 的程序代码来执行以下操作:Wherein the memory is used to store program code, and the processor is configured to call the memory Program code to do the following:
利用所述发射器向所述运营商服务器发送第一下载请求,所述第一下载请求消息用于向所述运营商服务器申请签约,以及请求下载签约文件;Transmitting, by the transmitter, a first download request to the operator server, where the first download request message is used to apply for a subscription to the operator server, and request to download a subscription file;
以及向签约管理实体发送第二请求消息,所述第二请求消息用于向所述签约管理实体请求下载签约文件;And sending a second request message to the subscription management entity, where the second request message is used to request the subscription management entity to download the subscription file;
利用所述接收器接收来自所述签约管理实体的第一下载口令和所述签约文件,所述第一下载口令为签约管理实体生成;Receiving, by the receiver, a first download password and the subscription file from the subscription management entity, the first download password being generated by a subscription management entity;
所述第一下载口令用于所述终端设备再次请求下载与所述签约文件属于相同签约的签约文件时,通过所述发射器向所述签约管理实体请求认证。The first download password is used by the transmitter to request authentication from the signing management entity when the terminal device requests to download a subscription file that belongs to the same contract as the subscription file.
本发明第十五方面提供一种运营商服务器,具有实现对应于上述第七方面提供的下载签约文件的方法的功能。所述功能可以通过硬件实现,也可以通过硬件执行相应的软件实现。硬件或软件包括一个或多个与上述功能相对应的模块,所述模块可以是软件和/或硬件。A fifteenth aspect of the present invention provides an operator server having a function of implementing a method corresponding to the download subscription file provided by the seventh aspect. The functions may be implemented by hardware or by corresponding software implemented by hardware. The hardware or software includes one or more modules corresponding to the functions described above, which may be software and/or hardware.
一种可能的设计中,所述运营商服务器包括:In a possible design, the operator server includes:
接收模块,用于接收终端设备发送的第一请求消息,所述第一请求消息用于请求下载签约文件;a receiving module, configured to receive a first request message sent by the terminal device, where the first request message is used to request to download a subscription file;
处理模块,用于根据所述第一请求消息中携带的已申请签约的信息,确定所述第一请求消息请求下载的签约文件为已申请签约的签约文件;a processing module, configured to determine, according to the information about the subscribed subscription carried in the first request message, that the subscription file requested by the first request message is a subscription file that has been requested to be signed;
发送模块,用于在所述处理模块确定所述第一请求消息请求下载的签约文件为已申请签约的签约文件时,向签约管理实体发送第二请求消息,所述第二请求消息用于指示所述签约管理实体获取所述签约文件。a sending module, configured to send a second request message to the subscription management entity, where the processing module determines that the subscription file requested to be downloaded by the first request message is a subscription file that has been subscribed for, and the second request message is used to indicate The contract management entity acquires the contract file.
一种可能的设计中,所述运营商服务器包括:In a possible design, the operator server includes:
相互连接处理器、存储器、接收器和发射器;Interconnecting processors, memories, receivers, and transmitters;
其中,所述存储器用于存储程序代码,所述处理器用于调用所述存储器中的程序代码来执行以下操作:The memory is used to store program code, and the processor is configured to invoke program code in the memory to perform the following operations:
利用所述接收器接收终端设备发送的第一请求消息,所述第一请求消息用于请求下载签约文件;Receiving, by the receiver, a first request message sent by the terminal device, where the first request message is used to request to download a subscription file;
根据所述第一请求消息中携带的已申请签约的信息,确定所述第一请求消 息请求下载的签约文件为已申请签约的签约文件;Determining the first request cancellation according to the information about the subscribed subscription carried in the first request message The signing document requested to be downloaded is the contracted document that has been applied for the contract;
利用所述发射器在所述处理器确定所述第一请求消息请求下载的签约文件为已申请签约的签约文件时,向签约管理实体发送第二请求消息,所述第二请求消息用于指示所述签约管理实体获取所述签约文件。Using the transmitter, when the processor determines that the subscription file requested by the first request message is a subscription file that has been requested for subscription, sending a second request message to the subscription management entity, where the second request message is used to indicate The contract management entity acquires the contract file.
本发明第十六方面提供一种签约管理实体,具有实现对应于上述第八方面提供的下载签约文件的方法的功能。所述功能可以通过硬件实现,也可以通过硬件执行相应的软件实现。硬件或软件包括一个或多个与上述功能相对应的模块,所述模块可以是软件和/或硬件。A sixteenth aspect of the present invention provides a contract management entity having a function of implementing a method corresponding to the download subscription file provided by the above eighth aspect. The functions may be implemented by hardware or by corresponding software implemented by hardware. The hardware or software includes one or more modules corresponding to the functions described above, which may be software and/or hardware.
一种可能的设计中,所述签约管理实体包括:In a possible design, the contract management entity includes:
接收模块,用于接收运营商服务器发送的第二请求消息;a receiving module, configured to receive a second request message sent by the operator server;
处理模块,用于根据所述接收模块接收到的所述第二请求消息获取终端设备请求下载的签约文件,所述第二请求消息为所述运营商服务器在接收到第一请求消息,根据所述第一请求消息确定所述第一请求消息为请求下载已申请签约的签约文件后所发送的消息,所述第一请求消息携带已申请签约的信息;a processing module, configured to acquire, according to the second request message received by the receiving module, a subscription file that the terminal device requests to download, where the second request message is that the operator server receives the first request message, according to the Determining, by the first request message, that the first request message is a message sent after requesting to download a subscription file that has been applied for, and the first request message carries information that has been requested to be signed;
发送模块,用于将所述处理模块生成的所述签约文件发送至所述终端设备。And a sending module, configured to send the subscription file generated by the processing module to the terminal device.
一种可能的设计中,所述签约管理实体包括:In a possible design, the contract management entity includes:
相互连接处理器、存储器、接收器和发射器;Interconnecting processors, memories, receivers, and transmitters;
其中,所述存储器用于存储程序代码,所述处理器用于调用所述存储器中的程序代码来执行以下操作:The memory is used to store program code, and the processor is configured to invoke program code in the memory to perform the following operations:
利用所述接收器,用于接收运营商服务器发送的第二请求消息;Using the receiver, for receiving a second request message sent by an operator server;
根据所述接收器接收到的所述第二请求消息获取终端设备请求下载的签约文件,所述第二请求消息为所述运营商服务器在接收到第一请求消息,根据所述第一请求消息确定所述第一请求消息为请求下载已申请签约的签约文件后所发送的消息,所述第一请求消息携带已申请签约的信息;Obtaining, by the second request message received by the receiver, a subscription file that the terminal device requests to download, where the second request message is that the operator server receives the first request message, according to the first request message. Determining that the first request message is a message sent after requesting to download a subscription file that has been applied for, and the first request message carries information that has been requested to be signed;
利用所述发射器将所述处理器生成的所述签约文件发送至所述终端设备。 And transmitting, by the transmitter, the subscription file generated by the processor to the terminal device.
本发明第十七方面提供一种通信系统,具有实现上述下载签约文件的方法的功能。所述功能可以通过硬件实现,也可以通过硬件执行相应的软件实现。硬件或软件包括一个或多个与上述功能相对应的模块,所述模块可以是软件和/或硬件。A seventeenth aspect of the present invention provides a communication system having a function of implementing the above method of downloading a contract file. The functions may be implemented by hardware or by corresponding software implemented by hardware. The hardware or software includes one or more modules corresponding to the functions described above, which may be software and/or hardware.
一种可能的设计中,所述通信系统包括:In a possible design, the communication system comprises:
如第九方面所述的运营商服务器;An operator server as described in the ninth aspect;
如第十方面所述的终端设备;a terminal device according to the tenth aspect;
如第十一方面所述的签约管理实体。A contract management entity as described in the eleventh aspect.
一种可能的设计中,所述通信系统包括:In a possible design, the communication system comprises:
如第十三方面所述的运营商服务器;An operator server as described in the thirteenth aspect;
如第十四方面所述的终端设备;a terminal device according to the fourteenth aspect;
如第十二方面所述的签约管理实体。A contract management entity as described in the twelfth aspect.
一种可能的设计中,所述通信系统包括:In a possible design, the communication system comprises:
如第十五方面所述的运营商服务器;An operator server as described in the fifteenth aspect;
如第十六方面所述的签约管理实体。A contract management entity as described in the sixteenth aspect.
相较于现有技术,本发明提供的方案中,运营商服务器在终端设备首次请求下载签约文件时,生成第一下载口令,使得终端设备在再次请求下载签约文件时,所述运营商服务器对该第一下载口令进行认证,实现动态认证,避免攻击者伪造重下载请求等造成的安全问题,能够提高签约文件下载时的安全性。Compared with the prior art, in the solution provided by the present invention, when the terminal device requests to download the subscription file for the first time, the operator server generates a first download password, so that when the terminal device requests to download the subscription file again, the carrier server pairs The first download password is authenticated to implement dynamic authentication, which avoids security problems caused by an attacker falsifying a heavy download request, and can improve security when downloading a contract file.
附图说明DRAWINGS
图1为本发明实施例中下载签约文件的方法的流程图;1 is a flowchart of a method for downloading a subscription file in an embodiment of the present invention;
图2为本发明实施例中下载签约文件的方法的另一种流程图;2 is another flowchart of a method for downloading a subscription file in an embodiment of the present invention;
图2-1为本发明实施例中下载签约文件的方法的另一种流程图;2-1 is another flowchart of a method for downloading a subscription file in an embodiment of the present invention;
图3-1为本发明实施例中运营商服务器的一种结构示意图;3-1 is a schematic structural diagram of an operator server according to an embodiment of the present invention;
图3-2为本发明实施例中终端设备的一种结构示意图;3-2 is a schematic structural diagram of a terminal device according to an embodiment of the present invention;
图3-3为本发明实施例中签约管理实体的一种结构示意图;3-3 is a schematic structural diagram of a contract management entity according to an embodiment of the present invention;
图3-4为本发明实施例中通信系统的一种结构示意图;3-4 is a schematic structural diagram of a communication system according to an embodiment of the present invention;
图4为本发明实施例中下载签约文件的方法的另一种流程图;4 is another flowchart of a method for downloading a subscription file in an embodiment of the present invention;
图5为本发明实施例中下载签约文件的方法的另一种流程图; FIG. 5 is another flowchart of a method for downloading a subscription file according to an embodiment of the present invention; FIG.
图5-1为本发明实施例中下载签约文件的方法的另一种流程图;5-1 is another flowchart of a method for downloading a subscription file in an embodiment of the present invention;
图6-1为本发明实施例中运营商服务器的另一种结构示意图;6-1 is another schematic structural diagram of an operator server according to an embodiment of the present invention;
图6-2为本发明实施例中终端设备的另一种结构示意图;6-2 is another schematic structural diagram of a terminal device according to an embodiment of the present invention;
图6-3为本发明实施例中签约管理实体的另一种结构示意图;6-3 is another schematic structural diagram of a contract management entity according to an embodiment of the present invention;
图6-4为本发明实施例中通信系统的另一种结构示意图;6-4 is another schematic structural diagram of a communication system according to an embodiment of the present invention;
图7为本发明实施例中下载签约文件的方法的另一种流程图;FIG. 7 is another flowchart of a method for downloading a subscription file according to an embodiment of the present invention;
图8-1为本发明实施例中运营商服务器的另一种结构示意图;8-1 is another schematic structural diagram of an operator server according to an embodiment of the present invention;
图8-2为本发明实施例中签约管理实体的另一种结构示意图;8-2 is another schematic structural diagram of a contract management entity according to an embodiment of the present invention;
图8-3为本发明实施例中通信系统的另一种结构示意图;8-3 is another schematic structural diagram of a communication system according to an embodiment of the present invention;
图9为本发明实施例中执行下载签约文件的方法的实体装置的结构示意图。FIG. 9 is a schematic structural diagram of a physical apparatus for performing a method for downloading a subscription file according to an embodiment of the present invention.
具体实施方式detailed description
下面将结合本发明实施例中的附图,对本发明实施例中的技术方案进行清楚、完整地描述,显然,所描述的实施例仅仅是本发明一部分实施例,而不是全部的实施例,基于本发明中的实施例,本领域技术人员在没有做出创造性劳动前提下所获得的所有其他实施例,都属于本发明保护的范围。The technical solutions in the embodiments of the present invention are clearly and completely described in the following with reference to the accompanying drawings in the embodiments of the present invention. It is obvious that the described embodiments are only a part of the embodiments of the present invention, but not all embodiments, based on All other embodiments obtained by those skilled in the art without creative efforts are within the scope of the present invention.
本发明的说明书和权利要求书及上述附图中的术语“第一”、“第二”等是用于区别类似的对象,而不必用于描述特定的顺序或先后次序。应该理解这样使用的数据在适当情况下可以互换,以便这里描述的实施例能够以除了在这里图示或描述的内容以外的顺序实施。此外,术语“包括”和“具有”以及他们的任何变形,意图在于覆盖不排他的包含,例如,包含了一系列步骤或模块的过程、方法、系统、产品或设备不必限于清楚地列出的那些步骤或模块,而是可包括没有清楚地列出的或对于这些过程、方法、产品或设备固有的其它步骤或模块,本文中所出现的模块的划分,仅仅是一种逻辑上的划分,实际应用中实现时可以有另外的划分方式,例如多个模块可以结合成或集成在另一个系统中,或一些特征可以忽略,或不执行,另外,所显示的或讨论的相互之间的耦合或直接耦合或通信连接可以是通过一些接口,模块之间的间接耦合或通信连接可以是电性或其他类似的形式,本文中均不作限定。并且,作为分离部件说明的模块 或子模块可以是也可以不是物理上的分离,可以是也可以不是物理模块,或者可以分不到多个电路模块中,可以根据实际的需要选择其中的部分或全部模块来实现本发明实施例方案的目的。The terms "first", "second" and the like in the specification and claims of the present invention and the above drawings are used to distinguish similar objects, and are not necessarily used to describe a particular order or order. It is to be understood that the data so used may be interchanged where appropriate so that the embodiments described herein can be implemented in a sequence other than what is illustrated or described herein. In addition, the terms "comprises" and "comprises" and "the" and "the" are intended to cover a non-exclusive inclusion, for example, a process, method, system, product, or device that comprises a series of steps or modules is not necessarily limited to Those steps or modules, but may include other steps or modules not explicitly listed or inherent to such processes, methods, products or devices, the division of the modules presented herein is merely a logical division. There may be additional divisions in the implementation of the actual application, for example, multiple modules may be combined or integrated into another system, or some features may be ignored, or not executed, and the displayed or discussed mutual coupling. The direct coupling or the communication connection may be through some interfaces, and the indirect coupling or communication connection between the modules may be electrical or the like, which is not limited herein. Also, the module described as a separate component The sub-module may or may not be physically separated, may not be a physical module, or may not be divided into multiple circuit modules, and some or all of the modules may be selected according to actual needs to implement the embodiment of the present invention. The purpose of the program.
本发明实施例提供了一种下载签约文件的方法、相关设备及系统,用于无线通信技术领域,能够解决现有技术中现有机制中重下载签约文件时安全性较低的问题。以下进行详细说明。The embodiments of the present invention provide a method, a related device, and a system for downloading a subscription file, which are used in the field of wireless communication technologies, and can solve the problem of low security when re-downloading a subscription file in the existing mechanism in the prior art. The details are described below.
本文中的签约管理实体(SM,Subscription manager)指签约文件准备实体(SM-DP,Subscription manager-Data Preparation),或SM指SM-DP和签约文件分发实体(SM-SR,Subscription manager-Secure Routing),SM-DP负责签约文件的生成和安全保护,SM-SR负责签约文件的缓存和安全分发。本文中的签约文件为用于终端设备接入运营商网络的信息。本文所述的终端设备,指不包括eUICC的终端设备,也可以指包含eUICC的终端设备,当终端设备获取下载的签约文件后,进一步将签约文件发送到eUICC中。因此本文中下载签约文件的请求消息可以由终端设备发出或由eUICC通过终端设备发出。The contract management entity (SM) in this document refers to the SM-DP (Subscription manager-Data Preparation), or SM refers to the SM-DP and the contracted document distribution entity (SM-SR, Subscription manager-Secure Routing). ), SM-DP is responsible for the generation and security protection of the contract documents, and SM-SR is responsible for the caching and secure distribution of the contracted files. The subscription file in this document is information for the terminal device to access the carrier network. The terminal device described herein refers to a terminal device that does not include an eUICC, and may also be a terminal device that includes an eUICC. After the terminal device obtains the downloaded subscription file, the terminal device further sends the subscription file to the eUICC. Therefore, the request message for downloading the subscription file in this document may be sent by the terminal device or sent by the eUICC through the terminal device.
其中,需要特别说明的是,本发明实施例涉及的终端设备,可以是指向用户提供语音和/或数据连通性的设备,具有无线连接功能的手持式设备、或连接到无线调制解调器的其他处理设备。无线终端可以经无线接入网(RAN Radio Access Network)与一个或多个核心网进行通信,无线终端可以是移动终端,如移动电话(或称为“蜂窝”电话)和具有移动终端的计算机,例如,可以是便携式、袖珍式、手持式、计算机内置的或者车载的移动装置,它们与无线接入网交换语言和/或数据。例如,个人通信业务(PCS,Personal Communication Service)电话、无绳电话、会话发起协议(SIP)话机、无线本地环路(WLL,Wireless Local Loop)站、个人数字助理(PDA,Personal Digital Assistant)等设备。无线终端也可以称为系统、订户单元(Subscriber Unit)、订户站(Subscriber Station),移动站(Mobile Station)、移动台(Mobile)、远程站(Remote Station)、接入点(Access Point)、远程终端(Remote Terminal)、接入终端(Access Terminal)、用户终端(User Terminal)、终端设备、用户代 理(User Agent)、用户设备(User Device)、或用户装备(User Equipment)。It should be particularly noted that the terminal device according to the embodiment of the present invention may be a device that provides voice and/or data connectivity to a user, a handheld device with a wireless connection function, or other processing device connected to a wireless modem. . The wireless terminal can communicate with one or more core networks via a RAN Radio Access Network, which can be a mobile terminal, such as a mobile phone (or "cellular" phone) and a computer with a mobile terminal. For example, it may be a portable, pocket, handheld, computer built-in or in-vehicle mobile device that exchanges language and/or data with a wireless access network. For example, personal communication service (PCS, Personal Communication Service) telephone, cordless telephone, Session Initiation Protocol (SIP) telephone, Wireless Local Loop (WLL) station, Personal Digital Assistant (PDA, Personal Digital Assistant), etc. . A wireless terminal may also be called a system, a subscriber unit, a subscriber station, a mobile station, a mobile station, a remote station, an access point, or an access point. Remote Terminal, Access Terminal, User Terminal, Terminal Equipment, User Generation User Agent, User Device, or User Equipment.
由于在终端请求下载签约文件的过程中,运营商服务器容易受到伪造下载请求的攻击或非法签约,导致运营商服务器与签约管理实体之间存在过多的、不必要的交互,导致重下载时安全性较低,也增加网络负荷。为解决上述技术问题,本发明实施例主要提供以下两种技术方案:In the process of requesting to download the subscription file, the operator server is vulnerable to the forgery of the download request or the illegal signing, resulting in excessive and unnecessary interaction between the operator server and the contract management entity, resulting in security when re-downloading. It is less sexual and also increases the network load. To solve the above technical problem, the embodiment of the present invention mainly provides the following two technical solutions:
方案一、运营商服务器认证用户的重下载请求。 Solution 1. The server downloads the request from the server authentication user.
a、运营商服务器在用户首次请求下载签约文件时,生成用于认证的重下载验证信息;a. The operator server generates re-download verification information for authentication when the user first requests to download the subscription file;
b、运营商服务器将重下载验证信息直接发送给终端设备,或通过签约管理实体将重下载验证信息发送给终端设备;b, the operator server sends the re-download verification information directly to the terminal device, or sends the re-download verification information to the terminal device through the contract management entity;
c、终端设备请求重下载签约文件时,向运营商服务器发送重下载验证信息;c. when the terminal device requests to re-download the subscription file, send the re-download verification information to the operator server;
d、运营商服务器对该重下载验证信息进行认证,认证通过后,生成用于用户下次请求下载签约文件时所需的新重下载验证信息,并请求签约管理实体准备终端设备请求下载的签约文件;d. The operator server authenticates the re-download verification information. After the authentication is passed, the new re-download verification information required for the next request for downloading the subscription file is generated, and the contract management entity is requested to prepare the subscription for the terminal device to request the download. file;
e、签约管理实体将签约文件和新生成的重下载验证信息发给终端设备。e. The contract management entity sends the contract file and the newly generated re-download verification information to the terminal device.
可以理解的是,方案一中,在终端设备每次请求下载签约文件时,运营商服务器都生成新的重下载验证信息,每次生成的新的重下载验证信息都是用于终端设备在下次请求下载签约文件时,运营商服务器对终端设备的请求进行认证,从而实现动态认证。It can be understood that, in the first solution, when the terminal device requests to download the subscription file, the operator server generates new re-download verification information, and each new re-download verification information generated is used for the terminal device next time. When requesting to download the subscription file, the operator server authenticates the request of the terminal device, thereby implementing dynamic authentication.
方案二、签约管理实体认证用户的重下载请求。Solution 2: The contract management entity authenticates the user's re-download request.
a、签约管理实体在用户首次请求下载签约文件时,生成用于认证的重下载验证信息;a. The subscription management entity generates re-download verification information for authentication when the user first requests to download the subscription file;
b、签约管理实体将重下载验证信息和签约文件发送给终端设备;b. The contract management entity sends the re-download verification information and the contract file to the terminal device;
c、终端设备向运营商服务器请求再次重下载签约文件时,运营商服务器请求签约管理实体准备终端设备请求下载的签约文件;c. When the terminal device requests the operator server to re-download the subscription file, the operator server requests the subscription management entity to prepare the subscription file that the terminal device requests to download;
d、终端设备向签约管理实体发送重下载验证信息,签约管理实体对该重下载验证信息进行认证,认证通过后,生成用于用户下次请求下载签约文件时 所需的新重下载验证信息;d. The terminal device sends the re-download verification information to the subscription management entity, and the subscription management entity authenticates the re-download verification information. After the authentication is passed, the user is requested to download the subscription file for the next time. New re-download verification information required;
e、签约管理实体将签约文件和新生成的重下载验证信息发给终端设备。e. The contract management entity sends the contract file and the newly generated re-download verification information to the terminal device.
可以理解的是,方案二中,在终端设备每次请求下载签约文件时,签约管理实体都生成新的重下载验证信息,每次生成的新的重下载验证信息都是用于终端设备在下次请求下载签约文件时,签约管理实体对终端设备的请求进行认证,从而实现动态认证。It can be understood that, in the second solution, when the terminal device requests to download the subscription file, the subscription management entity generates new re-download verification information, and each new re-download verification information generated is used for the terminal device next time. When requesting to download the subscription file, the contract management entity authenticates the request of the terminal device, thereby implementing dynamic authentication.
在以上两种技术方案中,重下载验证信息可以是一串字符、数字或包含认证信息的二维码信息,例如可以是下载口令的形式,只要起到认证的的作用即可,具体形式本文中均不作限定。另外,终端设备在接收到重下载验证信息和签约文件后,保存重下载验证信息的情况主要有以下两种:In the above two technical solutions, the re-downloading verification information may be a string of characters, numbers or two-dimensional code information including the authentication information, for example, may be in the form of a download password, as long as the role of the authentication is performed, the specific form of this document There is no limit in the middle. In addition, after receiving the re-download verification information and the subscription file, the terminal device saves the re-download verification information mainly in the following two cases:
a、若终端设备不包括eUICC,则可以将重下载验证信息保存于终端设备,如保存于终端设备的存储器,终端设备中的本地文件助手(LPA,Local Profile Assistant)可以调用存储器存储的重下载验证信息。其中,LPA承担终端设备与eUICC之间交互的作用,主要功能包括下载签约文件、下载签约文件的业务发现以及为用户提供用户界面(UI,User Interface)。a. If the terminal device does not include the eUICC, the re-download verification information may be saved in the terminal device, such as the memory stored in the terminal device, and the local file assistant (LPA, Local Profile Assistant) in the terminal device may call the memory storage re-download. verify message. The LPA is responsible for the interaction between the terminal device and the eUICC. The main functions include downloading the subscription file, downloading the service discovery of the subscription file, and providing the user interface (UI, User Interface).
b、若终端设备包括eUICC,则将重下载验证信息保存在eUICC中,当下载签约文件的请求消息由终端设备发出时,终端设备从eUICC中获取重下载验证信息,或者也可以将重下载验证信息保存于终端设备,如保存于终端设备的存储器,后续通过LPA调用。b. If the terminal device includes the eUICC, the re-download verification information is saved in the eUICC. When the request message for downloading the subscription file is sent by the terminal device, the terminal device obtains the re-download verification information from the eUICC, or may also re-download the verification. The information is stored in the terminal device, such as in the memory of the terminal device, and subsequently called through the LPA.
通过以上两种技术方案,运营商服务器或签约管理实体可以通过对终端的请求进行动态验证,从而避免攻击者利用伪造的eUICC标识或用户标识利用重下载或迁移签约的方式攻击运营商服务器,或非法获取签约文件等发生。Through the above two technical solutions, the operator server or the contract management entity can dynamically verify the request of the terminal, so as to prevent the attacker from using the forged eUICC identifier or the user identifier to attack the carrier server by using the re-download or migration subscription, or Illegal acquisition of contract documents, etc. occurred.
需要说明的是,本文中,请求下载签约文件的终端设备可以是首次请求下载签约文件的终端设备,例如,误删之前下载的签约文件,或eUICC损坏后恢复正常,或eUICC重置等情况,原终端设备都需要重新下载签约文件。请求下载签约文件的终端设备也可以是新终端设备,例如,在原终端设备的用户更换终端设备时,需要重新下载签约文件。It should be noted that, in this document, the terminal device that requests to download the subscription file may be the terminal device that requests to download the subscription file for the first time, for example, the subscription file downloaded before the deletion, or the eUICC is restored after being damaged, or the eUICC is reset. The original terminal device needs to re-download the subscription file. The terminal device requesting to download the subscription file may also be a new terminal device. For example, when the user of the original terminal device replaces the terminal device, the subscription file needs to be downloaded again.
原终端设备的用户在使用新终端设备重新下载签约文件时,若原终端设备 能够正常使用,则可以直接从旧终端设备获取重下载验证信息;若原终端设备无法正常使用导致新终端设备无法从原终端设备获取重下载验证信息,则新终端设备可以请求通过登陆邮箱获取预先登记在运营商服务器的重下载验证信息,或者通过短信、语音通话等方式获取重下载验证信息,具体不作限定。If the user of the original terminal device re-downloads the subscription file when using the new terminal device, if the original terminal device If the device can be used normally, the re-downloading verification information can be obtained directly from the old terminal device. If the original terminal device cannot be used normally, the new terminal device cannot obtain the re-downloading verification information from the original terminal device, and the new terminal device can request to obtain the pre-registration through the login mailbox. The re-downloading verification information is obtained on the operator server, or the re-downloading verification information is obtained through a short message or a voice call, which is not limited.
请参照图1,以下从运营商服务器对终端设备的下载请求进行动态验证的角度,对本发明提供一种下载签约文件的方法进行举例说明,所述方法包括:Referring to FIG. 1 , the following provides a method for downloading a subscription file from the perspective of dynamically verifying a download request of a terminal device from an operator server, where the method includes:
101、终端设备向运营商服务器发送第一请求消息。101. The terminal device sends a first request message to the operator server.
其中,所述第一请求消息用于向所述运营商服务器申请签约并请求下载签约文件,用户可以通过终端设备的LPA的本地用户界面(LUI,Local User Interface)或扫描二维码等方式访问运营商服务器,然后通过LPA向运营商服务器发送第一请求消息。The first request message is used to apply for a subscription to the operator server and request to download the subscription file, and the user can access the local user interface (LUI, Local User Interface) of the LPA of the terminal device or scan the QR code. The carrier server then sends a first request message to the operator server through the LPA.
102、运营商服务器接收终端设备发送的第一请求消息。102. The operator server receives the first request message sent by the terminal device.
运营商服务器接收到第一请求消息后,注册第一请求消息。可选的,注册第一请求消息后,还可以生成事件标识(Event ID,Event Identity),将该Event ID发送给终端设备。该Event ID也可以用于终端再次请求下载与所述签约文件属于相同签约的签约文件时,运营商服务器对终端的下载请求进行认证,可以代替步骤103中第一下载口令的作用,不用生成下述第一下载口令。After receiving the first request message, the operator server registers the first request message. Optionally, after the first request message is registered, an event identifier (Event ID) may be generated, and the event ID is sent to the terminal device. The event ID may also be used when the terminal requests to download the subscription file that belongs to the same contract with the subscription file, and the operator server authenticates the download request of the terminal, which may replace the function of the first download password in step 103, without generating the next The first download password is described.
103、所述运营商服务器生成第一下载口令。103. The operator server generates a first download password.
104、所述运营商服务器向签约管理实体发送第二请求消息。104. The operator server sends a second request message to the subscription management entity.
其中,所述第二请求消息用于指示所述签约管理实体生成终端设备请求下载的所述签约文件,以使得所述终端设备从所述签约管理实体下载所述签约文件。若签约管理实体准备好签约文件后,则第二请求消息还用于指示签约管理实体将生成的签约文件与终端设备的签约关联。The second request message is used to instruct the subscription management entity to generate the subscription file that the terminal device requests to download, so that the terminal device downloads the subscription file from the subscription management entity. If the subscription management entity prepares the subscription file, the second request message is further used to instruct the contract management entity to associate the generated subscription file with the subscription of the terminal device.
所述第二请求消息携带所述运营商服务器生成的所述第一下载口令,所述第一下载口令用于所述终端设备再次向所述运营商服务器请求下载与所述签约文件属于相同签约的签约文件时,所述运营商服务器对所述终端设备的请求进行认证。The second request message carries the first download password generated by the operator server, and the first download password is used by the terminal device to request the carrier server to download again and belong to the same contract with the subscription file. When the contract file is signed, the operator server authenticates the request of the terminal device.
可选的,运营商服务器通过以下两种方式,将生成的第一下载口令发送给终端设备,具体为: Optionally, the operator server sends the generated first download password to the terminal device by using the following two methods:
在上述步骤104中,运营商服务器向签约管理实体发送第二请求消息时,可以在所述第二请求消息携带所述第一下载口令,使得签约管理实体在接收到终端设备发送的请求下载所述签约文件的请求消息后,在下述步骤107中,所述签约管理实体可以将所述第一下载口令和所述签约文件发送给终端设备,以使得所述终端设备从所述签约管理实体获得所述第一下载口令;In the above step 104, when the operator server sends the second request message to the subscription management entity, the first download password may be carried in the second request message, so that the subscription management entity receives the request to download the terminal device. After the request message of the subscription file is described, in the following step 107, the subscription management entity may send the first download password and the subscription file to the terminal device, so that the terminal device obtains from the subscription management entity The first download password;
或者,在上述步骤103之后,所述运营商服务器将所述第一下载口令发送至所述终端设备。Alternatively, after the foregoing step 103, the operator server sends the first download password to the terminal device.
105、签约管理实体接收运营商服务器发送的第二请求消息。105. The subscription management entity receives the second request message sent by the operator server.
其中,第二请求消息可以携带eUICC标识、文件类型、签约文件标识、Event ID、SM-SR ID等信息。eUICC标识可以是电子标识(EID,Electronic Identity),签约文件标识可以是集成电路卡标识(ICCID,Integrated Circuit Card Identity)。The second request message may carry information such as an eUICC identifier, a file type, a subscription file identifier, an Event ID, and an SM-SR ID. The eUICC identifier may be an electronic identifier (EID, Electronic Identity), and the subscription file identifier may be an integrated circuit card identifier (ICCID).
106、所述签约管理实体根据第二请求消息,生成终端设备请求下载的签约文件。106. The subscription management entity generates, according to the second request message, a subscription file that the terminal device requests to download.
在生成所述签约文件后,签约管理实体还将所述签约文件与终端设备的签约关联,例如可以是将所述签约文件与EID对应的eUICC绑定,从而实现签约管理实体注册终端设备的本次下载请求。After the signing file is generated, the signing management entity also associates the signing file with the signing of the terminal device, for example, the binding file may be bound to the eUICC corresponding to the EID, thereby implementing the subscription management entity registering the terminal device. Download request.
107、所述签约管理实体将所述签约文件发送至所述终端设备。107. The contract management entity sends the subscription file to the terminal device.
在所述第二请求消息携带所述第一下载口令时,所述签约管理实体可以在发送签约文件的会话中发送所述第一下载口令,也可以在签约文件发送成功后,通过创建新的会话发送所述第一下载口令。When the second request message carries the first download password, the subscription management entity may send the first download password in a session for sending a subscription file, or may create a new one after the subscription file is successfully sent. The session sends the first download password.
108、所述终端设备获取所述运营商服务器生成的所述第一下载口令和接收来自所述签约管理实体的所述签约文件。108. The terminal device acquires the first download password generated by the operator server and receives the subscription file from the subscription management entity.
终端设备可以将第一下载口令保存于不含eUICC的终端设备,或在终端设备包含eUICC时,保存于终端设备的eUICC中,将所述签约文件保存于eUICC,文中的类似之处均不再赘述。The terminal device may save the first download password to the eUICC-free terminal device, or save the information in the eUICC of the terminal device when the terminal device includes the eUICC, and the similarities in the text are no longer used. Narration.
可选的,终端设备可以从签约管理实体获取所述第一下载口令和所述签约文件,也可以是从运营商服务器获取所述第一下载口令,从签约管理实体获取所述签约文件,具体不限定。 Optionally, the terminal device may obtain the first download password and the subscription file from the subscription management entity, or obtain the first download password from the operator server, and obtain the subscription file from the subscription management entity. Not limited.
终端设备接收第一下载口令主要包括以下两种情况:The terminal device receives the first download password mainly including the following two situations:
a、在接收签约文件的会话中接收第一下载口令;a. receiving the first download password in the session receiving the subscription file;
b、在成功接收签约文件后,在签约管理实体新建立的会话中接收签约管理实体发送的第一下载口令。后文中关于终端设备接收网络侧发送的下载口令的方式与此处类似,均不再赘述。b. After successfully receiving the subscription file, receive the first download password sent by the subscription management entity in the newly established session of the subscription management entity. The manner in which the terminal device receives the download password sent by the network side is similar to that of the terminal device, and will not be described again.
109、所述运营商服务器接收所述签约管理实体发送的第一确认消息,则所述运营商服务器保存所述第一下载口令。109. The operator server receives the first confirmation message sent by the subscription management entity, and the operator server saves the first download password.
其中,所述第一确认消息为所述签约管理实体成功将所述签约文件发送至所述终端设备后发送的消息,所述第一确认消息用于指示所述终端设备成功下载所述签约文件。The first confirmation message is a message that is sent by the subscription management entity after successfully sending the subscription file to the terminal device, where the first confirmation message is used to instruct the terminal device to successfully download the subscription file. .
本发明实施例中,在终端设备首次请求下载签约文件时,运营商服务器生成上述第一下载口令,使得终端设备再次请求下载与所述签约文件属于相同签约的签约文件时,所述运营商服务器对终端设备的再次请求进行认证,实现动态认证,有效避免攻击者伪造重下载请求攻击运营商服务器或非法获取签约文件,提高安全性。In the embodiment of the present invention, when the terminal device requests to download the subscription file for the first time, the operator server generates the first download password, so that the terminal device requests to download the subscription file that belongs to the same contract with the subscription file again, the operator server. The device re-requests the terminal device to implement dynamic authentication, which effectively prevents the attacker from forging the re-download request to attack the carrier server or illegally obtaining the subscription file, thereby improving security.
可选的,在一些发明实施例中,实际应用时,首次下载了所述签约文件的终端设备可能因为一些原因删除了已下载的所述签约文件,或者终端设备的eUICC损坏,或者下载了所述签约文件的终端设备无法继续使用,使得原终端设备的用户更换新的终端设备,需要重新下载签约文件至新终端设备,或者原终端设备的用户更换新的终端设备,需要重下载签约文件至新的eUICC等等,这些情况下,原终端设备的用户都需要重新下载签约文件。Optionally, in some embodiments of the invention, in actual application, the terminal device that downloads the subscription file for the first time may delete the downloaded subscription file for some reasons, or the eUICC of the terminal device is damaged, or the device is downloaded. The terminal device of the contracted file cannot be used continuously, so that the user of the original terminal device needs to re-download the subscription file to the new terminal device, or the user of the original terminal device needs to re-download the subscription file to the new terminal device. New eUICC, etc. In these cases, the user of the original terminal device needs to re-download the subscription file.
用户重下载签约文件流程如图2所示:The process of re-downloading the contract file by the user is shown in Figure 2:
201、终端设备向所述运营商服务器发送第三请求消息。201. The terminal device sends a third request message to the operator server.
其中,所述第三请求消息携带第二下载口令,所述第三请求消息用于向所述运营商服务器请求下载与所述签约文件属于相同签约的签约文件。The third request message carries a second download password, and the third request message is used to request the carrier server to download a subscription file that belongs to the same contract as the subscription file.
可选的,所述第三请求消息还可以携带EID、ICCID、IMEI或Event ID。若终端设备为合法签约用户的设备,则所述终端设备发送的第二下载口令为所述第一下载口令,或为第一下载口令的变形,可以避免伪造的下载口令或伪用 户的下载请求等发生。终端设备的LPA或eUICC可以通过预设算法,对第一下载口令或Event ID进行变形,然后再发给运营商服务器。可以理解的是,终端设备在向运营商服务器请求重下载签约文件时,所发送的下载口令可以是运营商服务器生成的下载口令,也可以是由终端设备对运营商服务器生成的下载口令进行变形得到的,终端设备可以通过哈希(hash)编码、签名等方式实现下载口令的变形,具体变形方式本文不作限定,后续文中类似之处不再赘述。Optionally, the third request message may further carry an EID, an ICCID, an IMEI, or an Event ID. If the terminal device is a device of a legal subscription user, the second download password sent by the terminal device is the first download password, or is a variant of the first download password, and the forged download password or pseudo-use can be avoided. The user's download request, etc. occurs. The LPA or eUICC of the terminal device may deform the first download password or the Event ID by using a preset algorithm, and then send it to the operator server. It can be understood that, when the terminal device requests to re-download the subscription file from the operator server, the downloaded download password may be a download password generated by the operator server, or may be a variant of the download password generated by the terminal device to the operator server. The obtained terminal device can implement the modification of the download password by means of hash coding, signature, etc., and the specific modification manner is not limited herein, and the similarities in the following texts are not described again.
202、所述运营商服务器接收终端设备发送的第三请求消息。202. The operator server receives a third request message sent by the terminal device.
在该步骤202中,运营商服务器也可以生成新Event ID,新Event ID可以用于终端再次请求下载与所述签约文件属于相同签约的签约文件时,运营商服务器对终端的下载请求进行认证,可以代替步骤203中的第三下载口令。可选的,新Event ID也可以由签约管理实体在步骤205中生成。In this step 202, the operator server may also generate a new event ID, and the new event ID may be used for the terminal to request to download the subscription file that belongs to the same contract with the subscription file, and the operator server authenticates the download request of the terminal. Instead of the third download password in step 203. Alternatively, the new Event ID may also be generated by the subscription management entity in step 205.
203、所述运营商服务器对所述第三请求消息进行认证,认证成功后,生成第三下载口令。203. The operator server authenticates the third request message, and after the authentication succeeds, generates a third download password.
即所述运营商服务器对请求下载与签约文件属于相同签约的签约文件的终端设备进行认证,此处的终端设备可能是上次请求下载签约文件的终端设备,也可以是签约已转移的新终端设备,只要请求同一签约文件即可,能够提高下载机制的灵活性。That is, the operator server authenticates the terminal device that requests the download and the contract file to belong to the same contracted contract file. The terminal device here may be the terminal device that requested the download of the contract file last time, or may be the new terminal that has signed the contract. The device can increase the flexibility of the download mechanism as long as it requests the same contract file.
所述运营商服务器对所述第三请求消息进行认证,具体体现为对第二下载口令进行认证,当所述第二下载口令与所述第一下载口令相同或相对应时,则认证成功,其中,在第二下载口令为第一下载口令的变形时,可以认为第二下载口令与第一下载口令相对应,文中类似之处均可参考此处说明。The operator server authenticates the third request message, which is specifically configured to authenticate the second download password. When the second download password is the same as or corresponds to the first download password, the authentication succeeds. Wherein, when the second download password is a variant of the first download password, the second download password may be considered to correspond to the first download password, and the similarities in the text may be referred to herein.
其中,所述第三下载口令用于终端设备在再次请求下载与所述签约文件属于相同签约的签约文件时,终端设备向所述运营商服务器请求认证,或所述运营商服务器对终端设备的请求进行认证。The third download password is used by the terminal device to request the authentication, or the terminal server, to the terminal device, when the terminal device requests to download the subscription file that belongs to the same contract with the subscription file. Request for certification.
204、所述运营商服务器向所述签约管理实体发送第四请求消息。204. The operator server sends a fourth request message to the subscription management entity.
所述第四请求消息用于指示所述签约管理实体获取终端设备下载的与所述签约文件属于相同签约的签约文件,以使得所述终端设备从所述签约管理实体下载与所述签约文件属于相同签约的签约文件。The fourth request message is used to indicate that the subscription management entity acquires a subscription file that is downloaded by the terminal device and belongs to the same contract as the subscription file, so that the terminal device downloads from the subscription management entity and belongs to the subscription file. Signing documents of the same contract.
可选的,运营商服务器通过以下两种方式,将生成的第三下载口令发送给 终端设备,具体为:Optionally, the carrier server sends the generated third download password to the following two methods. Terminal equipment, specifically:
在上述步骤204中,运营商服务器向签约管理实体发送第四请求消息时,可以在所述第四请求消息携带所述第三下载口令,使得签约管理实体在接收到终端设备发送的请求下载与所述签约文件属于相同签约的签约文件的请求消息后,在下述步骤206中,所述签约管理实体可以将所述第三下载口令和与所述签约文件属于相同签约的签约文件发送给终端设备。In the foregoing step 204, when the operator server sends the fourth request message to the subscription management entity, the third download password may be carried in the fourth request message, so that the subscription management entity receives the request to download and send the terminal device. After the subscription file belongs to the request message of the same contracted subscription file, in the following step 206, the subscription management entity may send the third download password and the subscription file that belongs to the same contract with the subscription file to the terminal device. .
或者,在上述步骤203之后,所述运营商服务器将所述第三下载口令发送至发送所述第三请求消息的终端设备。Alternatively, after the foregoing step 203, the operator server sends the third download password to the terminal device that sends the third request message.
205、所述签约管理实体接收所述运营商服务器发送的携带第三下载口令的第四请求消息,根据所述第四请求消息获取与所述签约文件属于相同签约的签约文件。205. The subscription management entity receives a fourth request message that is sent by the operator server and carries a third download password, and obtains a subscription file that belongs to the same contract with the subscription file according to the fourth request message.
可选的,在上述第三请求消息携带所述eUICC标识(例如EID)时,步骤204中,所述运营商服务器向所述签约管理实体发送第四请求消息之前,还需要判断所述eUICC标识与所保存的所述签约对应的eUICC标识是否相同,在确定所述eUICC标识与所保存的所述签约对应的eUICC标识相同时,签约文件管理实体可以通过以下方式之一获取与所述签约文件属于相同签约的签约文件,参考图2-1,具体如下:Optionally, when the third request message carries the eUICC identifier (for example, an EID), in step 204, before the operator server sends the fourth request message to the subscription management entity, the eUICC identifier needs to be determined. Whether the eUICC identifier corresponding to the saved subscription is the same, and when the eUICC identifier is determined to be the same as the eUICC identifier corresponding to the saved subscription, the subscription file management entity may obtain the subscription file by using one of the following manners: For the contract documents belonging to the same contract, refer to Figure 2-1, as follows:
1、204-1、运营商服务器在所述第四请求消息中携带重下载指示信息和所述签约已分发的签约文件的签约文件标识时,205-1、所述签约管理实体根据所述重下载指示信息的指示,使用所述签约文件标识关联到所述签约已分发的签约文件。1. 204-1, when the operator server carries the re-download indication information and the subscription file identifier of the contracted contracted file in the fourth request message, 205-1, the contract management entity according to the weight Downloading an indication of the indication information, using the subscription file identifier to associate with the contracted file that has been distributed.
2、204-2、运营商服务器在所述第四请求消息携带所述签约的第一签约文件信息,205-2、所述签约管理实体使用所述第一签约文件信息生成终端设备请求下载的签约文件,其中,所述第一签约文件信息包含已分发的所述签约的签约文件的根密钥等信息。2, 204-2, the operator server carries the first subscription file information of the subscription in the fourth request message, 205-2, the subscription management entity uses the first subscription file information to generate a terminal device to request to download a contract file, wherein the first contract file information includes information such as a root key of the contracted file that has been distributed.
另外,在确定所述eUICC标识与所保存的所述签约对应的eUICC标识不同时,需要签约管理实体为终端设备生成一个新的签约,并按照新申请签约文件处理的流程进行。运营商服务器可以在所述第四请求消息携带第二签约文件信息,则使得所述签约管理实体使用所述第二签约文件信息生成终端设备请求 下载的签约文件,其中,所述第二签约文件信息是指用于生成一个新的签约的信息,可以是签约类型、签约文件标识或签约文件的根密钥信息等,例如新的根密钥信息或一个新的签约文件标识。In addition, when it is determined that the eUICC identifier is different from the saved eUICC identifier, the contract management entity needs to generate a new subscription for the terminal device, and performs the process according to the new application subscription file processing. The operator server may carry the second subscription file information in the fourth request message, so that the subscription management entity generates the terminal device request by using the second subscription file information. The downloaded subscription file, wherein the second subscription file information refers to information used to generate a new subscription, which may be a subscription type, a subscription file identifier, or a root key information of a subscription file, such as a new root key. Information or a new contract file identifier.
206、所述签约管理实体将所述第三下载口令,以及与所述签约文件属于相同签约的签约文件发送给所述终端设备。206. The subscription management entity sends the third download password and the subscription file that belongs to the same contract with the subscription file to the terminal device.
所述签约管理实体可以在发送签约文件的会话中发送所述第一下载口令,也可以在签约文件发送成功后,通过创建新的会话发送所述第一下载口令。The subscription management entity may send the first download password in a session in which the subscription file is sent, or may send the first download password by creating a new session after the subscription file is successfully sent.
207、所述终端设备获取所述运营商服务器生成的第三下载口令和接收来自所述签约管理实体的与所述签约文件属于相同签约的签约文件。207. The terminal device acquires a third download password generated by the operator server, and receives a subscription file from the contract management entity that belongs to the same contract with the subscription file.
其中,所述第三下载口令用于终端设备再次向所述运营商服务器请求下载与所述签约文件属于相同签约的签约文件时,终端设备向所述运营商服务器请求认证。其中终端设备可以是与发出第三请求消息的终端设备相同的终端设备,也可以是不同的终端设备。The terminal device requests the operator server to request authentication when the terminal device requests the terminal server to download the subscription file that belongs to the same contract with the subscription file. The terminal device may be the same terminal device as the terminal device that sends the third request message, or may be a different terminal device.
可选的,终端设备在获取到第三下载口令后,会将本地保存的所述第一下载口令替换为所述第三下载口令。Optionally, after obtaining the third download password, the terminal device replaces the locally saved first download password with the third download password.
可选的,终端设备可以同时从签约管理实体获取第三下载口令和与所述签约文件属于相同签约的签约文件,也可以是从运营商服务器获取第三下载口令,从签约管理实体获取与所述签约文件属于相同签约的签约文件,具体不限定。Optionally, the terminal device may obtain the third download password from the subscription management entity and the subscription file that belongs to the same contract with the subscription file, or obtain the third download password from the operator server, and obtain the same from the subscription management entity. The signing documents belong to the same contracting documents, which are not limited.
在上述图1和图2所对应的实施例中,对于终端设备而言,每次运营商服务器在生成下载口令后,所述终端设备都可以从所述运营商服务器或签约管理实体获取。具体为:在运营商服务器生成下载口令后,直接发送给终端设备;或在运营商服务器请求签约管理实体获取终端设备请求下载的签约文件时,在请求消息中携带下载口令,以便后续签约管理实体在向终端设备发送签约文件的会话中,可以将下载口令与签约文件发送给终端设备。In the embodiment corresponding to FIG. 1 and FIG. 2 above, for the terminal device, each time the operator server generates the download password, the terminal device can be obtained from the operator server or the contract management entity. Specifically, after the carrier server generates the download password, it directly sends the download password to the terminal device; or when the operator server requests the subscription management entity to obtain the subscription file that the terminal device requests to download, the request message carries the download password, so that the subsequent subscription management entity In the session in which the subscription file is sent to the terminal device, the download password and the subscription file may be sent to the terminal device.
208、所述签约管理实体向所述运营商服务器发送第二确认消息。208. The subscription management entity sends a second confirmation message to the operator server.
所述第二确认消息用于指示终端设备已成功下载与所述签约文件属于相同签约的签约文件。The second confirmation message is used to indicate that the terminal device has successfully downloaded the subscription file that belongs to the same contract with the subscription file.
209、所述运营商服务器接收所述签约管理实体发送的第二确认消息后, 则保存所述第三下载口令并删除所述第一下载口令。209. After receiving, by the operator server, the second confirmation message sent by the subscription management entity, And saving the third download password and deleting the first download password.
所述第二确认消息为所述签约管理实体成功将与所述签约文件属于相同签约的签约文件发送至所述终端设备后发送的消息。The second confirmation message is a message that is sent by the subscription management entity after successfully sending a subscription file that belongs to the same contract with the subscription file to the terminal device.
本发明实施例中,通过对终端设备发送的第二下载口令进行认证,使得认证通过后的终端设备才可以继续下载签约文件,并生成用于下载认证终端设备的下载请求的第三下载口令,以及通过动态更新下载口令,优化动态认证的机制,提高下载的安全性。In the embodiment of the present invention, the second download password sent by the terminal device is authenticated, so that the terminal device after the authentication is passed can continue to download the subscription file, and generate a third download password for downloading the download request of the authentication terminal device. And through the dynamic update download password, optimize the dynamic authentication mechanism to improve the security of the download.
可以理解的是,在图2所对应的实施例的基础上,后续终端仍然可能会请求下载与所述签约文件属于相同签约的签约文件,即运营商服务器会接收到终端设备发送的携带第三下载口令的请求消息,运营商服务器会生成第四下载口令,可知,第四下载口令与上述第一下载口令、上述第三下载口令的功能相同,后续随着终端设备的下载请求,运营商服务器可能会生成第五下载口令、第六下载口令等,终端设备请求下载与所述签约文件属于相同签约的签约文件的流程与图2所对应的实施例类似,本文中不再赘述。It can be understood that, on the basis of the embodiment corresponding to FIG. 2, the subsequent terminal may still request to download a subscription file that belongs to the same contract with the subscription file, that is, the operator server receives the third transmission sent by the terminal device. After downloading the password request message, the operator server generates a fourth download password. It can be seen that the fourth download password has the same function as the first download password and the third download password, and subsequently, with the download request of the terminal device, the operator server The fifth download password, the sixth download password, and the like may be generated, and the process of the terminal device requesting to download the subscription file that belongs to the same contract with the subscription file is similar to the embodiment corresponding to FIG. 2, and details are not described herein again.
可选的,所述第一下载口令或所述第三下载口令或者后续下载流程中运营商服务器生成的下载口令均至少满足以下项之一:Optionally, the first download password or the third download password or the download password generated by the operator server in the subsequent download process meets at least one of the following items:
在预设时长内有效、使用的有效次数为有限次、在所述预设时长内使用的有效次数为有限次、包含签约文件的下载次数。通过设置下载口令的有效期和可使用的有效次数,以及对签约文件的下载次数进行计数,能够进一步降低下载签约文件时的攻击概率,提高签约文件分发的安全性。Valid for a preset duration, the number of valid uses is finite, the number of valid uses within the preset duration is finite, and the number of downloads containing the contracted file. By setting the validity period of the download password and the number of valid times that can be used, and counting the number of downloads of the signed file, the attack probability when downloading the contract file can be further reduced, and the security of the contract file distribution can be improved.
可选的,用户需要重新下载签约文件时,还可以通过向运营商服务器发送上一次下载时运营商服务器生成的事件标识,来实现动态认证,以获取与所述签约文件属于相同签约的签约文件。Optionally, when the user needs to re-download the subscription file, the user may also send the event identifier generated by the operator server at the time of the last download to the operator server to implement dynamic authentication, so as to obtain the contract file that belongs to the same contract with the contract file. .
更重要的是,由于签约文件在使用过程中,可能由于用户需求的更改或签约文件版本升级等原因,使用户首次申请的签约文件的内容发生变化,例如签约文件中的某些参数发生变化,使得用户在重新下载签约文件时,最终获取的签约文件与首次下载时的内容不同,但变化的签约文件与初始的签约文件仍同属一个签约,签约文件的变化特征也同样适用于本文中的图4和图5所对应的实施例,后续类似之处不再赘述。 More importantly, because the contracted documents are in use, the contents of the subscription documents that the user first applied for changes may change due to changes in user requirements or upgrades of the contracted files, such as changes in certain parameters in the contracted documents. When the user re-downloads the contract file, the final contract file is different from the first download, but the changed contract file is still the same as the initial contract file, and the change characteristics of the contract file also apply to the figure in this article. 4 and FIG. 5 corresponding to the embodiment, the subsequent similarities will not be described again.
以上对本发明中一种下载签约文件的方法进行说明,以下对执行上述下载签约文件的运营商服务器、终端设备及签约管理实体进行描述。The method for downloading the subscription file in the present invention is described above. The following describes the carrier server, the terminal device, and the contract management entity that execute the above-mentioned download contract file.
一、参照图3-1,对运营商服务器30进行说明,运营商服务器30包括:1. The carrier server 30 is described with reference to FIG. 3-1. The carrier server 30 includes:
接收模块301,用于接收终端设备发送的第一请求消息,所述第一请求消息用于向运营商服务器30请求下载签约文件;The receiving module 301 is configured to receive a first request message sent by the terminal device, where the first request message is used to request the carrier server 30 to download the subscription file.
处理模块302,用于生成第一下载口令;The processing module 302 is configured to generate a first download password.
发送模块303,用于向签约管理实体50发送第二请求消息,所述第二请求消息用于指示所述签约管理实体50生成所述终端设备请求下载的签约文件,以使得所述终端设备从所述签约管理实体50下载所述签约文件;The sending module 303 is configured to send a second request message to the subscription management entity 50, where the second request message is used to instruct the subscription management entity 50 to generate a subscription file that the terminal device requests to download, so that the terminal device The contract management entity 50 downloads the contract file;
所述第二请求消息携带所述第一下载口令,以使得所述终端设备从所述签约管理实体获得所述第一下载口令;或者通过所述发送模块303向所述终端设备发送所述第一下载口令;The second request message carries the first download password, so that the terminal device obtains the first download password from the subscription management entity; or sends the first message to the terminal device by using the sending module 303. a download password;
所述第一下载口令用于所述终端设备再次向运营商服务器30请求下载与所述签约文件属于相同签约的签约文件时,所述处理模块302对终端设备的再次请求进行认证。The first download password is used by the processing module 302 to authenticate the re-request of the terminal device when the terminal device requests the operator server 30 to download the subscription file that belongs to the same contract with the subscription file.
本发明实施例中,在终端设备首次请求下载签约文件时,处理模块302生成上述第一下载口令,使得终端设备再次请求下载与所述签约文件属于相同签约的签约文件时,所述处理模块302对终端设备的再次请求进行认证,实现动态认证,有效避免攻击者伪造重下载请求攻击运营商服务器或非法获取签约文件,提高安全性。In the embodiment of the present invention, when the terminal device requests to download the subscription file for the first time, the processing module 302 generates the first download password, so that when the terminal device requests to download the subscription file that belongs to the same contract with the subscription file again, the processing module 302 The device re-requests the terminal device to implement dynamic authentication, which effectively prevents the attacker from forging the re-download request to attack the carrier server or illegally obtaining the subscription file, thereby improving security.
可选的,所述处理模块302还用于:Optionally, the processing module 302 is further configured to:
通过所述接收模块301接收所述签约管理实体50发送的第一确认消息,则保存所述第一下载口令,所述第一确认消息为所述签约管理实体成功将所述签约文件发送至所述终端设备后发送的消息,所述第一确认消息用于指示所述终端设备成功下载所述签约文件。Receiving, by the receiving module 301, the first confirmation message sent by the subscription management entity 50, saving the first download password, where the first confirmation message is that the subscription management entity successfully sends the subscription file to the The message sent after the terminal device is sent, the first confirmation message is used to indicate that the terminal device successfully downloads the subscription file.
可选的,在一些发明实施例中,在终端设备需要重新下载签约文件时,所述处理模块302还用于:Optionally, in some embodiments of the invention, when the terminal device needs to re-download the subscription file, the processing module 302 is further configured to:
通过所述接收模块301接收终端设备发送的第三请求消息,所述第三请求 消息携带第二下载口令,所述第三请求消息用于向所述签约管理实体50请求下载与所述签约文件属于相同签约的签约文件;Receiving, by the receiving module 301, a third request message sent by the terminal device, the third request The message carries a second download password, and the third request message is used to request the subscription management entity 50 to download a subscription file that belongs to the same contract as the subscription file;
使用所述第一下载口令对所述第三请求消息进行认证;The third request message is authenticated using the first download password;
当所述第二下载口令与所述第一下载口令相同或相对应时,则认证成功,认证成功后,生成第三下载口令;When the second download password is the same as or corresponds to the first download password, the authentication succeeds, and after the authentication succeeds, the third download password is generated;
通过所述发送模块303向所述签约管理实体50发送第四请求消息,所述第四请求消息用于指示所述签约管理实体50获取与所述签约文件属于相同签约的签约文件,以使得发送所述第三请求消息的终端设备从所述签约管理实体50下载与所述签约文件属于相同签约的签约文件;Sending, by the sending module 303, the fourth request message to the subscription management entity 50, where the fourth request message is used to instruct the subscription management entity 50 to obtain a subscription file that belongs to the same contract with the subscription file, so as to be sent The terminal device of the third request message downloads, from the subscription management entity 50, a subscription file that belongs to the same contract as the subscription file;
所述第四请求消息携带所述第三下载口令,以使得所述终端设备从所述签约管理实体获得所述第三下载口令;或通过所述发送模块303向发送所述第三请求消息的终端设备发送所述第三下载口令;The fourth request message carries the third download password, so that the terminal device obtains the third download password from the subscription management entity; or sends the third request message by using the sending module 303. Transmitting, by the terminal device, the third download password;
所述第三下载口令用于终端设备40再次向所述运营商服务器30请求下载与所述签约文件属于相同签约的签约文件时,对终端设备40的请求进行认证。The third download password is used to authenticate the request of the terminal device 40 when the terminal device 40 requests the carrier server 30 to download the subscription file that belongs to the same contract as the subscription file.
可选的,所述处理模块302还用于:Optionally, the processing module 302 is further configured to:
通过所述接收模块301接收所述签约管理实体50发送的第二确认消息,则保存所述第三下载口令并删除所述第一下载口令,所述第一确认消息为所述签约管理实体成功将与所述签约文件属于相同签约的签约文件发送至所述终端设备后发送的消息,所述第二确认消息用于指示终端设备成功下载的与所述签约文件属于相同签约的签约文件。Receiving, by the receiving module 301, the second confirmation message sent by the subscription management entity 50, saving the third download password and deleting the first download password, where the first confirmation message is successful for the subscription management entity Sending, by the terminal device, a subscription file that belongs to the same contract with the subscription file to the terminal device, and the second confirmation message is used to indicate that the terminal device successfully downloads the subscription file that belongs to the same contract with the subscription file.
可选的,为降低伪下载口令或伪下载请求对运营商服务器的攻击概率,对下载口令的时效性进行设置,所述第一下载口令或所述第三下载口令至少满足以下项之一:Optionally, in order to reduce the probability of attacking the pseudo-download password or the pseudo-download request on the operator server, the time limit of downloading the password is set, and the first download password or the third download password meets at least one of the following items:
在预设时长内有效、使用的有效次数为有限次、在所述预设时长内使用的有效次数为有限次、包含签约文件的下载次数。Valid for a preset duration, the number of valid uses is finite, the number of valid uses within the preset duration is finite, and the number of downloads containing the contracted file.
二、参照图3-2,对终端设备40进行说明,终端设备40包括:The terminal device 40 is described with reference to FIG. 3-2. The terminal device 40 includes:
发送模块401,用于向运营商服务器30发送第一请求消息,所述第一请求消息用于向所述运营商服务器30请求下载签约文件,以使所述运营商服务器向签约管理实体50发送第二请求消息,所述第二请求消息用于指示所述签 约管理实体50生成所述终端设备请求下载的签约文件;The sending module 401 is configured to send a first request message to the operator server 30, where the first request message is used to request the carrier server 30 to download a subscription file, so that the operator server sends the subscription server to the subscription management entity 50. a second request message, the second request message is used to indicate the sign The management entity 50 generates a subscription file that the terminal device requests to download;
接收模块402,用于获取所述运营商服务器生成的第一下载口令和接收来自所述签约管理实体50的所述签约文件,所述第一下载口令由所述运营商服务器30生成;The receiving module 402 is configured to acquire a first download password generated by the operator server and receive the subscription file from the subscription management entity 50, where the first download password is generated by the operator server 30;
所述第一下载口令用于所述终端设备在再次向所述运营商服务器30请求下载与所述签约文件属于相同签约的签约文件时,通过所述发送模块401向所述运营商服务器30请求认证。The first download password is used by the terminal device to request the operator server 30 to download a subscription file that belongs to the same contract with the subscription file, and then requests the server 30 through the sending module 401. Certification.
本发明实施例中,终端设备40首次请求下载签约文件时,接收模块401获取运营商服务器30生成的第一下载口令,使得终端设备40再次请求下载与所述签约文件属于相同签约的签约文件时,可以使用上一次下载时获取的所述第一下载口令向运营商服务器30请求认证,实现动态认证,有效避免攻击者伪造重下载请求攻击运营商服务器或非法获取签约文件,提高安全性。In the embodiment of the present invention, when the terminal device 40 requests to download the subscription file for the first time, the receiving module 401 obtains the first download password generated by the operator server 30, so that the terminal device 40 requests again to download the subscription file that belongs to the same contract with the subscription file. The first download password obtained at the time of the previous download can be used to request authentication from the operator server 30 to implement dynamic authentication, which effectively prevents the attacker from forging the re-download request to attack the operator server or illegally obtaining the subscription file, thereby improving security.
可选的,所述发送模块401还用于:Optionally, the sending module 401 is further configured to:
向所述运营商服务器30发送携带第二下载口令的第三请求消息,所述第三请求消息用于向所述运营商服务器30请求下载与所述签约文件属于相同签约的签约文件;Sending, to the operator server 30, a third request message carrying a second download password, where the third request message is used to request the carrier server 30 to download a subscription file that belongs to the same contract with the subscription file;
所述接收模块402还用于:在所述运营商服务器30对所述第三请求消息认证通过后,获取所述运营商服务器生成的第三下载口令和接收来自所述签约管理实体的与所述签约文件属于相同签约的签约文件;The receiving module 402 is further configured to: after the operator server 30 authenticates the third request message, acquire a third download password generated by the operator server, and receive an address from the subscription management entity. The contracted documents belong to the same contracted contract documents;
所述第三下载口令用于所述终端设备再次向所述运营商服务器30请求下载与所述签约文件属于相同签约的签约文件时,通过所述发送模块401向所述运营商服务器30请求认证。And the third download password is used by the sending module 401 to request authentication from the operator server 30 when the terminal device requests the carrier server 30 to download the subscription file that belongs to the same contract with the subscription file. .
其中,所述第一下载口令或所述第三下载口令由所述终端设备从所述运营商服务器30或签约管理实体50获取。The first download password or the third download password is acquired by the terminal device from the operator server 30 or the contract management entity 50.
本发明实施例中,终端设备40再次请求下载签约文件时,使用上次下载签约文件时获取的第一下载口令向运营商服务器30请求认证,并获取此次运营商服务器30生成的第三下载口令,即每次下载过程中都动态生成新的下载口令,能够避免攻击者伪造重下载请求攻击运营商服务器或非法获取签约文 件,提高下载的安全性。In the embodiment of the present invention, when the terminal device 40 requests to download the subscription file again, the first download password obtained when the subscription file was last downloaded is used to request authentication from the operator server 30, and the third download generated by the operator server 30 is obtained. Password, that is, a new download password is dynamically generated during each download process, which can prevent an attacker from forging a re-download request to attack an operator server or illegally obtaining a contract message. Improve the security of the download.
可选的,在一些发明实施例中,可以通过动态更新下载口令提高动态认证的安全性,为安全下载签约文件提供保障,则所述终端设备40还包括:Optionally, in some embodiments of the invention, the security of the dynamic authentication may be improved by dynamically updating the download password, and the secure downloading of the subscription file is provided. The terminal device 40 further includes:
处理模块403,用于将本地保存的所述第一下载口令替换为所述接收模块获取的所述第三下载口令。The processing module 403 is configured to replace the locally saved first download password with the third download password obtained by the receiving module.
可选的,在一些发明实施例中,为降低伪下载口令或伪下载请求对运营商服务器的攻击概率,对下载口令的时效性进行设置,所述第一下载口令或所述第三下载口令至少满足以下项之一:Optionally, in some embodiments of the invention, to reduce the probability of attacking the pseudo-download password or the pseudo-download request on the operator server, setting a time limit of downloading the password, the first download password or the third download password Meet at least one of the following:
在预设时长内有效、使用的有效次数为有限次、在所述预设时长内、使用的有效次数为有限次、包含签约文件的下载次数。Valid for a preset duration, the number of valid uses is finite, within the preset duration, the number of valid uses is finite, and the number of downloads containing the contracted file.
三、参照图3-3,对签约管理实体50进行说明,签约管理实体50包括:3. The contract management entity 50 is described with reference to FIG. 3-3. The contract management entity 50 includes:
接收模块501,用于接收运营商服务器30发送的第二请求消息,所述第二请求消息用于指示所述签约管理实体40生成终端设备请求下载的签约文件,所述第二请求消息为所述运营商服务器30在接收到所述终端设备40发送的第一请求消息后向所述签约管理实体50发出,其中,所述第一请求消息用于向所述运营商服务器30请求下载所述签约文件;The receiving module 501 is configured to receive a second request message sent by the operator server 30, where the second request message is used to instruct the signing management entity 40 to generate a subscription file that the terminal device requests to download, where the second request message is The operator server 30 sends the first request message sent by the terminal device 40 to the subscription management entity 50, wherein the first request message is used to request the carrier server 30 to download the Signing documents;
所述第二请求消息携带运营商服务器30生成的第一下载口令;The second request message carries a first download password generated by the operator server 30;
处理模块502,用于根据所述接收模块501接收到的所述第二请求消息生成所述签约文件;The processing module 502 is configured to generate the subscription file according to the second request message received by the receiving module 501;
发送模块503,用于将所述第一下载口令和所述处理模块502生成的所述签约文件发送至所述终端设备,所述第一下载口令用于所述终端设备在再次向所述运营商服务器30请求下载与所述签约文件属于相同签约的签约文件时,向所述运营商服务器30请求认证,具体通过发送第三请求消息向运营商服务器30请求认证。a sending module 503, configured to send the first download password and the subscription file generated by the processing module 502 to the terminal device, where the first download password is used by the terminal device to perform the operation again When the merchant server 30 requests to download a subscription file that belongs to the same contract as the subscription file, it requests authentication from the operator server 30, and specifically requests the operator server 30 for authentication by transmitting a third request message.
本发明实施例中,在终端设备40首次请求下载签约文件时,通过所述接收模块501接收运营商服务器300生成的第一下载口令,并在发送签约文件的过程中将第一下载口令发送给终端设备40保存,使得终端设备再次请求下载与所述签约文件属于相同签约的签约文件时,可以向运营商服务器30请求认 证,实现动态认证,有效避免攻击者伪造重下载请求攻击运营商服务器或非法获取签约文件,提高安全性。In the embodiment of the present invention, when the terminal device 40 first requests to download the subscription file, the receiving module 501 receives the first download password generated by the operator server 300, and sends the first download password to the process of sending the subscription file. The terminal device 40 saves, so that when the terminal device requests to download the subscription file that belongs to the same contract as the subscription file again, the terminal server 40 can request the identification from the operator server 30. The certificate implements dynamic authentication, which effectively prevents the attacker from forging the re-download request to attack the carrier server or illegally obtaining the subscription file to improve security.
可选的,在一些发明实施例中,在终端设备再次请求下载签约文件时,所述处理模块502还用于:Optionally, in some embodiments of the invention, when the terminal device requests to download the subscription file again, the processing module 502 is further configured to:
通过所述接收模块501接收所述运营商服务器30发送的携带第三下载口令的第四请求消息,所述第三下载口令为所述运营商服务器对所述第三请求消息认证成功后生成的下载口令;Receiving, by the receiving module 501, a fourth request message that is sent by the operator server 30 and carrying a third download password, where the third download password is generated after the operator server successfully authenticates the third request message. Download password
根据所述第四请求消息的指示获取终端设备请求下载的与所述签约文件属于相同签约的签约文件,并通过所述发送模块503将所述第三下载口令,以及与所述签约文件属于相同签约的签约文件发送给所述请求下载与所述签约文件属于相同签约的签约文件的终端设备;Obtaining, according to the instruction of the fourth request message, a subscription file that is requested by the terminal device to be downloaded and belongs to the same contract, and the third download password is the same as the subscription file by the sending module 503. The signed contract file is sent to the terminal device that requests to download the contract file that belongs to the same contract with the contract file;
所述第三下载口令用于终端设备再次请求下载与所述签约文件属于相同签约的签约文件时,终端设备向所述运营商服务器30请求认证。The third download password is used by the terminal device to request authentication from the operator server 30 when the terminal device requests to download the subscription file that belongs to the same contract as the subscription file.
可选的,在一些发明实施例中,为降低伪下载口令或伪下载请求对运营商服务器的攻击概率,对下载口令的时效性进行设置,所述第一下载口令或所述第三下载口令至少满足以下项之一:Optionally, in some embodiments of the invention, to reduce the probability of attacking the pseudo-download password or the pseudo-download request on the operator server, setting a time limit of downloading the password, the first download password or the third download password Meet at least one of the following:
在预设时长内有效、使用的有效次数为有限次、在所述预设时长内、使用的有效次数为有限次、包含签约文件的下载次数。Valid for a preset duration, the number of valid uses is finite, within the preset duration, the number of valid uses is finite, and the number of downloads containing the contracted file.
四、本发明实施例还提供一种通信系统,参考图3-4,所述通信系统1包括:The embodiment of the present invention further provides a communication system. Referring to FIG. 3-4, the communication system 1 includes:
如图3-1所述的运营商服务器30;The operator server 30 as shown in Figure 3-1;
如图3-2所述的终端设备40; Terminal device 40 as shown in Figure 3-2;
如图3-3所述的签约管理实体50。The contract management entity 50 is as shown in Figure 3-3.
需要说明的是,在本发明各实施例(包括图3-1、图3-2以及图3-3所示的各实施例)中所有的接收模块对应的实体设备可以为接收器,所有的发送模块对应的实体设备可以为发射器,所有的处理模块对应的实体设备可以为处理器。图3-1、图3-2以及图3-3所示的各装置均可以具有如图9所示的结构,当其中一种装置具有如图9所示的结构时,图9中的处理器、发射器和接收器 实现前述对应该装置的装置实施例提供的处理模块、发送模块和接收模块相同或相似的功能,图9中的存储器存储处理器执行上述下载签约文件的方法时需要调用的程序代码。It should be noted that, in the embodiments of the present invention (including the embodiments shown in FIG. 3-1, FIG. 3-2, and FIG. 3-3), the physical devices corresponding to all the receiving modules may be receivers, all of which are The physical device corresponding to the sending module may be a transmitter, and the physical device corresponding to all processing modules may be a processor. Each of the devices shown in FIG. 3-1, FIG. 3-2, and FIG. 3-3 may have a structure as shown in FIG. 9. When one of the devices has the structure shown in FIG. 9, the processing in FIG. , transmitter and receiver The foregoing processing module, the transmitting module, and the receiving module provided by the apparatus embodiment corresponding to the apparatus are the same or similar functions, and the memory storage processor in FIG. 9 needs to call the program code when the method of downloading the subscription file is executed.
请参照图4,以下从签约管理实体对终端设备的下载请求进行动态验证的角度,对本发明提供一种下载签约文件的方法进行举例说明,本实施例中,签约管理实体可以将自身生成的下载口令保存在本地,在后续对终端设备的请求进行认证,也可以发送给运营商服务器保存,当需要对请求下载签约文件的终端设备进行认证时,签约管理实体从运营商服务器获取下载口令,具体不限定下载口令的保存位置和保存方式。本发明实施例包括:Referring to FIG. 4, the following provides a method for downloading a subscription file from the perspective of the dynamic verification of the download request of the terminal management device by the subscription management entity. In this embodiment, the subscription management entity may download the self-generated download. The password is saved locally, and the subsequent request for the terminal device is authenticated, and can also be sent to the operator server for storage. When the terminal device that requests the download of the subscription file needs to be authenticated, the subscription management entity obtains the download password from the operator server. The storage location and storage method of the download password are not limited. Embodiments of the invention include:
601、终端设备向运营商服务器发送第一下载请求消息。601. The terminal device sends a first download request message to the operator server.
所述第一下载请求消息用于向所述运营商服务器申请签约,以及请求下载签约文件。The first download request message is used to apply for a subscription to the operator server, and request to download a subscription file.
602、运营商服务器接收终端设备的第一下载请求消息,向签约管理实体发送第一请求消息。602. The operator server receives the first download request message of the terminal device, and sends a first request message to the subscription management entity.
所述第一请求消息用于指示所述签约管理实体生成所述终端设备请求下载的签约文件。The first request message is used to instruct the subscription management entity to generate a subscription file that the terminal device requests to download.
603、签约管理实体接收运营商服务器发送的第一请求消息,根据所述第一请求消息生成终端设备请求下载的签约文件。603. The subscription management entity receives the first request message sent by the operator server, and generates, according to the first request message, a subscription file that the terminal device requests to download.
604、终端设备向签约管理实体发送第二请求消息。604. The terminal device sends a second request message to the subscription management entity.
所述第二请求消息用于向所述签约管理实体请求下载签约文件。The second request message is used to request the subscription management entity to download a subscription file.
605、所述签约管理实体接收所述终端设备发送的第二请求消息后,生成第一下载口令。605. After receiving the second request message sent by the terminal device, the subscription management entity generates a first download password.
其中,所述第一下载口令用于在所述终端设备再次请求下载与所述签约文件属于相同签约的签约文件时,所述签约管理实体对所述终端设备的再次请求进行认证。The first download password is used to authenticate the re-request of the terminal device when the terminal device requests to download a subscription file that belongs to the same contract as the subscription file.
可选的,签约管理实体可以将生成的第一下载口令保存在本地,在后续终端设备再次请求下载与所述签约文件属于相同签约的签约文件时,直接用本地所保存的第一下载口令对终端设备的下载请求进行认证;也可以将第一下载口 令发送给运营商服务器保存,如按照步骤608中的描述,在后续终端设备再次请求下载与所述签约文件属于相同签约的签约文件时,签约管理实体使用从运营商服务器获取的第一下载口令对终端设备的下载请求进行认证,具体可参考下述图5所对应的实施例。通过设置下载口令的保存位置,有效保障签约管理实体能够实时获取用于认证终端设备的下载请求的下载口令,避免无法对终端设备进行认证,从而导致终端设备无法下载签约文件的问题。Optionally, the subscription management entity may save the generated first download password locally, and directly use the first downloaded password pair saved locally when the subsequent terminal device requests to download the subscription file that belongs to the same contract with the subscription file. The download request of the terminal device is authenticated; the first download port may also be Sending to the operator server for saving, as described in step 608, when the subsequent terminal device requests again to download the subscription file that belongs to the same contract with the subscription file, the subscription management entity uses the first download password obtained from the operator server. For the authentication request of the terminal device, refer to the embodiment corresponding to FIG. 5 below. By setting the save location of the download password, the subscription management entity can obtain the download password of the download request for authenticating the terminal device in real time, so as to avoid the problem that the terminal device cannot download the subscription file.
可选的,在终端设备首次请求下载所述签约文件的流程中,所述签约管理实体将第一下载口令发送给运营商服务器之前,所述签约管理实体可以为终端设备分配第四下载口令,然后将所述第四下载口令发送给所述运营商服务器保存,终端设备可以通过邮件、短信等方式从运营商服务器获取所述第四下载口令,所述第四下载口令用于对所述终端设备是否具备申请签约的权限进行认证。则终端设备在向签约管理实体请求下载所述签约文件时,所述签约管理实体还需要对第四下载口令进行认证,终端设备可以在所述第二请求消息携带第四下载口令,向签约管理实体请求认证,所述签约管理实体验证所述第四下载口令,在验证通过后,生成所述第一下载口令;Optionally, in the process that the terminal device requests to download the subscription file for the first time, before the subscription management entity sends the first download password to the operator server, the subscription management entity may allocate a fourth download password to the terminal device. And sending the fourth download password to the operator server for saving, the terminal device may acquire the fourth download password from the operator server by using a mail, a short message, or the like, where the fourth download password is used for the terminal Whether the device has the right to apply for contracting for certification. When the terminal device requests the subscription management entity to download the subscription file, the subscription management entity further needs to authenticate the fourth download password, and the terminal device may carry the fourth download password in the second request message to the subscription management. The entity requests authentication, and the subscription management entity verifies the fourth download password, and after the verification is passed, generates the first download password;
在生成所述第一下载口令之后,所述签约管理实体将所保存的所述第四下载口令替换为所述第一下载口令;After generating the first download password, the subscription management entity replaces the saved fourth download password with the first download password;
或者,所述签约管理实体将所述第一下载口令发送给所述运营商服务器,所述运营商服务器将本地保存的所述第四下载口令替换为所述第一下载口令。可知,所述签约管理实体对在终端设备向运营商服务器请求签约之前将第四下载口令发送给终端设备,避免首次下载过程中出现伪造下载请求的可能,为终端设备的首次下载提供保障,以及通过双重认证(包括运营商服务器认证终端设备的身份是否合法,以及认证第四下载口令),提高首次下载的安全性。Alternatively, the subscription management entity sends the first download password to the operator server, and the operator server replaces the locally saved fourth download password with the first download password. It can be seen that the subscription management entity sends a fourth download password to the terminal device before the terminal device requests the contract from the operator server, to avoid the possibility of forgery download request in the first download process, and provides protection for the first download of the terminal device, and Improve the security of the first download through two-factor authentication (including whether the operator server authenticates the identity of the terminal device and whether the fourth download password is authenticated).
606、所述签约管理实体将所述第一下载口令和所述签约文件发送至所述终端设备。606. The subscription management entity sends the first download password and the subscription file to the terminal device.
所述签约管理实体可以在发送签约文件的会话中发送所述第一下载口令,也可以在签约文件发送成功后,通过创建新的会话发送所述第一下载口令。The subscription management entity may send the first download password in a session in which the subscription file is sent, or may send the first download password by creating a new session after the subscription file is successfully sent.
与图1和图2对应的实施例类似,本实施例中,第一下载口令保存于不包含eUICC的终端设备中,或保存在终端设备的eUICC中,签约文件保存于终 端设备的eUICC,类似之处不再赘述。Similar to the embodiment corresponding to FIG. 1 and FIG. 2, in this embodiment, the first download password is saved in the terminal device that does not include the eUICC, or is saved in the eUICC of the terminal device, and the subscription file is saved in the end. The eUICC of the end device, the similarities are not repeated here.
607、所述终端设备接收来自所述签约管理实体的第一下载口令和所述签约文件。607. The terminal device receives a first download password and the subscription file from the subscription management entity.
所述第一下载口令用于所述终端设备再次向所述运营商服务器请求下载与所述签约文件属于相同签约的签约文件时,所述终端设备向所述签约管理实体请求认证。The first download password is used when the terminal device requests the operator server to download a subscription file that belongs to the same contract with the subscription file, and the terminal device requests authentication from the subscription management entity.
可选的,所述终端设备接收第一下载口令和所述签约文件之后,将所保存的所述第四下载口令替换为所述第一下载口令。Optionally, after receiving the first download password and the subscription file, the terminal device replaces the saved fourth download password with the first download password.
608、签约管理实体向运营商服务器发送携带第一下载口令的第一确认消息。608. The subscription management entity sends a first confirmation message carrying the first download password to the operator server.
其中,第一确认消息用于指示终端设备已成功下载签约文件,以使得运营商保存第一下载口令;当运营商服务器保存第四下载口令时,运营商服务器使用将保存的第四下载口令替换为所述第一下载口令。The first confirmation message is used to indicate that the terminal device has successfully downloaded the subscription file, so that the operator saves the first download password; when the operator server saves the fourth download password, the operator server replaces the saved fourth download password. For the first download password.
本发明实施例中,在终端设备首次请求下载签约文件时,签约管理实体生成上述第一下载口令,使得终端设备再次请求下载与所述签约文件属于相同签约的签约文件时,所述签约管理实体对终端设备的再次请求进行认证,实现动态认证,有效避免攻击者伪造重下载请求攻击运营商服务器或非法获取签约文件,提高安全性。In the embodiment of the present invention, when the terminal device requests to download the subscription file for the first time, the subscription management entity generates the first download password, so that the terminal device requests to download the subscription file that belongs to the same contract with the subscription file again, the subscription management entity. The device re-requests the terminal device to implement dynamic authentication, which effectively prevents the attacker from forging the re-download request to attack the carrier server or illegally obtaining the subscription file, thereby improving security.
可选的,在一些发明实施例中,实际应用时,已下载了所述签约文件的终端设备需要重新下载签约文件,可以通过签约管理实体对终端设备的下载请求进行动态认证,以提高下载的安全性,具体的实施例参阅图5,本发明实施例包括:Optionally, in some embodiments of the present invention, in a practical application, the terminal device that has downloaded the subscription file needs to re-download the subscription file, and the subscription management entity can dynamically authenticate the download request of the terminal device to improve the downloading. Security, specific embodiment Referring to FIG. 5, an embodiment of the present invention includes:
701、终端设备向所述运营商服务器发送第二下载请求消息。701. The terminal device sends a second download request message to the operator server.
所述第二下载请求消息用于向所述运营商服务器请求下载与所述签约文件属于相同签约的签约文件;The second download request message is used to request, from the operator server, to download a subscription file that belongs to the same contract as the subscription file;
702、所述运营商服务器接收终端设备发送的第二下载请求消息。702. The operator server receives a second download request message sent by the terminal device.
703、所述运营商服务器发送第三请求消息至所述签约管理实体。703. The operator server sends a third request message to the subscription management entity.
所述第三请求消息用于指示所述签约管理实体获取与所述签约文件属于 相同签约的签约文件。可选的,步骤703中,所述第三请求消息还可以携带来自所述签约管理实体的所述第一下载口令,提供给签约管理实体,使得在步骤706中签约管理实体在收到终端设备发送的第四请求消息之后,使用第三请求消息携带的所述第一下载口令对第四请求消息进行认证。其中,签约管理实体对第四请求消息进行认证,也可以理解为对第四请求消息中的第二下载口令进行认证,全文中诸如此类之处不再赘述。The third request message is used to indicate that the subscription management entity acquires and belongs to the subscription file Signing documents of the same contract. Optionally, in step 703, the third request message may further carry the first download password from the subscription management entity, and provide the subscription to the subscription management entity, so that the subscription management entity receives the terminal device in step 706. After transmitting the fourth request message, the fourth request message is authenticated by using the first download password carried by the third request message. The authentication of the fourth request message by the contract management entity may also be understood as the authentication of the second download password in the fourth request message, and the details in the full text are not described herein.
704、所述签约管理实体接收所述运营商服务器发送的第三请求消息,并根据所述第三请求消息获取与所述签约文件属于相同签约的签约文件。704. The subscription management entity receives a third request message sent by the operator server, and acquires a subscription file that belongs to the same contract with the subscription file according to the third request message.
在签约管理实体接收到所述第三请求消息,准备好与所述签约文件属于相同签约的签约文件后,终端设备会与签约管理实体建立下载所述与所述签约文件属于相同签约的签约文件的会话,具体包括下述步骤705-步骤709。After the subscription management entity receives the third request message and prepares the subscription file that belongs to the same contract with the subscription file, the terminal device establishes with the subscription management entity to download the subscription document that belongs to the same contract with the subscription file. The session specifically includes the following steps 705-709.
705、所述终端设备向所述签约管理实体发送携带第二下载口令的第四请求消息。705. The terminal device sends, to the subscription management entity, a fourth request message that carries a second download password.
可知,终端设备发送的第二下载口令不一定准确,有可能由伪用户发出,即使通过了运营商服务器的身份认证,发出的下载口令并不一定为上述图3所对应的实施例中发给终端设备的第一下载口令。即只有在发出第二下载口令的用户为合法签约用户时,第二下载口令为第一下口令或第一下载口令的变形,从而避免伪用户请求下载签约文件,或伪造的下载口令等发生。It can be seen that the second download password sent by the terminal device is not necessarily accurate, and may be sent by the pseudo user. Even if the identity authentication of the operator server is passed, the downloaded download password is not necessarily sent to the embodiment corresponding to FIG. 3 above. The first download password of the terminal device. That is, only when the user who issues the second download password is a legitimate subscription user, the second download password is a variant of the first password or the first download password, thereby preventing the pseudo user from requesting to download the subscription file, or the forged download password or the like.
可选的,在上述第二下载请求消息携带所述eUICC标识(例如EID)时,步骤703中,所述运营商服务器向所述签约管理实体发送第三请求消息之前,还需要判断所述eUICC标识与所保存的所述签约对应的eUICC标识是否相同,在确定所述eUICC标识与所保存的所述签约对应的eUICC标识相同时,签约文件管理实体可以通过以下之一获取与所述签约文件属于相同签约的签约文件,参考图5-1,具体如下:Optionally, when the second download request message carries the eUICC identifier (for example, an EID), in step 703, the operator server needs to determine the eUICC before sending the third request message to the subscription management entity. And determining whether the eUICC identifier corresponding to the saved subscription is the same. When determining that the eUICC identifier is the same as the eUICC identifier corresponding to the saved subscription, the subscription file management entity may obtain the subscription file by using one of the following: For the contract documents belonging to the same contract, refer to Figure 5-1, as follows:
1、703-1、运营商服务器在所述第三请求消息中携带重下载指示信息和所述签约已分发的签约文件的签约文件标识时,704-1、所述签约管理实体根据所述重下载指示信息的指示,使用所述签约文件标识关联到所述签约的签约文件。1. 703-1, when the operator server carries the re-download indication information and the subscription file identifier of the contracted signed subscription file in the third request message, 704-1, the subscription management entity according to the weight The indication of the indication information is downloaded, and the subscription file associated with the contract is identified using the subscription file.
2、703-2、运营商服务器在所述第三请求消息携带所述签约的第一签约文 件信息,704-2、所述签约管理实体使用所述第一签约文件信息生成终端设备请求下载的签约文件,其中,所述第一签约文件信息包含已分发的所述签约的签约文件的根密钥等信息。2. 703-2. The operator server carries the first signed contract in the third request message. Information, 704-2, the contract management entity uses the first subscription file information to generate a subscription file requested by the terminal device for downloading, wherein the first subscription file information includes the root of the signed subscription file that has been distributed Information such as keys.
另外,在确定所述eUICC标识与所保存的所述签约对应的eUICC标识不同时,需要签约管理实体为终端设备生成一个新的签约,并按照新申请签约文件处理的流程进行。运营商服务器可以在所述第三请求消息携带第二签约文件信息,则使得所述签约管理实体使用所述第二签约文件信息生成终端设备请求下载的签约文件,其中,所述第二签约文件信息是指用于生成一个新的签约的信息,可以是签约类型、签约文件标识或签约文件的根密钥信息等,例如新的根密钥信息或一个新的签约文件标识。In addition, when it is determined that the eUICC identifier is different from the saved eUICC identifier, the contract management entity needs to generate a new subscription for the terminal device, and performs the process according to the new application subscription file processing. The operator server may carry the second subscription file information in the third request message, so that the subscription management entity uses the second subscription file information to generate a subscription file that the terminal device requests to download, where the second subscription file The information refers to information used to generate a new subscription, which may be a subscription type, a contract file identifier, or a root key information of a subscription file, such as new root key information or a new subscription file identifier.
706、所述签约管理实体接收终端设备发送的第四请求消息,所述签约管理实体对所述第四请求消息进行认证。706. The subscription management entity receives a fourth request message sent by the terminal device, where the subscription management entity authenticates the fourth request message.
第四请求消息中包含终端设备在上次下载签约过程中获取的第一下载口令,或获取的第一下载口令的变形,则所述签约管理实体认证第四请求消息中的所述第二下载口令或第二下载口令的变形。The fourth request message includes a first download password acquired by the terminal device during the last download signing process, or a variant of the obtained first download password, and the contract management entity authenticates the second download in the fourth request message. A variant of the password or the second download password.
在步骤706中,所述签约管理实体对所述第四请求消息进行认证,包括以下之一:In step 706, the subscription management entity authenticates the fourth request message, including one of the following:
所述签约管理实体使用本地保存的所述第一下载口令对第四请求消息中的所述第二下载口令进行认证;The subscription management entity authenticates the second download password in the fourth request message by using the locally saved first download password;
或,步骤704中所述第三请求消息携带来自所述签约管理实体的所述第一下载口令时,所述签约管理实体使用所述第三请求消息中携带的所述第一下载口令,对第四请求消息中的所述第二下载口令进行认证。Or, when the third request message in step 704 carries the first download password from the subscription management entity, the subscription management entity uses the first download password carried in the third request message, The second download password in the fourth request message is authenticated.
707、在认证通过后,所述签约管理实体生成第三下载口令。707. After the authentication is passed, the subscription management entity generates a third download password.
708、所述签约管理实体将所述第三下载口令和所述与所述签约文件属于相同签约的签约文件发送至终端设备。708. The subscription management entity sends the third download password and the subscription file that belongs to the same contract with the subscription file to the terminal device.
所述签约管理实体可以在发送签约文件的会话中发送所述第一下载口令,也可以在签约文件发送成功后,通过创建新的会话发送所述第一下载口令。The subscription management entity may send the first download password in a session in which the subscription file is sent, or may send the first download password by creating a new session after the subscription file is successfully sent.
所述第三下载口令用于在所述终端设备再次向所述运营商服务器请求下载与所述签约文件属于相同签约的签约文件时,所述签约管理实体对所述终端 设备的请求进行认证。通过动态生成下载口令,实现动态认证,避免攻击者的伪装下载请求。The third download password is used by the subscription management entity to the terminal when the terminal device requests the carrier server to download a subscription file that belongs to the same contract as the subscription file. The device's request is authenticated. Dynamic authentication is achieved by dynamically generating download passwords to avoid attackers' masquerading download requests.
可选的,所述签约管理实体可以将生成的第三下载口令保存在本地,即将原先保存的第一下载口令更新为第三下载口令,在后续终端设备再次请求下载与所述签约文件属于相同签约的签约文件时,直接用本地所保存的第三下载口令对终端设备的下载请求进行认证;也可以将第三下载口令发送给运营商服务器保存,所述运营商服务器接收到所述签约管理实体发送的第三下载口令后,将本地保存的所述第一下载口令更新为所述第三下载口令,在后续终端设备再次请求下载与所述签约文件属于相同签约的签约文件时,所述运营商服务器将第三下载口令发送给签约管理实体,所述签约管理实体使用从运营商服务器获取的第三下载口令对终端设备的下载请求进行认证。通过动态更新下载口令,优化动态认证的机制,提高下载的安全性。Optionally, the subscription management entity may save the generated third download password locally, that is, update the previously saved first download password to the third download password, and the subsequent terminal device requests the download again to be the same as the subscription file. When signing the contracted file, the download request of the terminal device is directly authenticated by using the third download password saved locally; the third download password may also be sent to the operator server for saving, and the operator server receives the subscription management. After the third download password sent by the entity, the first download password saved locally is updated to the third download password, and when the subsequent terminal device requests to download the subscription file that belongs to the same contract with the subscription file, The operator server transmits the third download password to the contract management entity, and the contract management entity authenticates the download request of the terminal device using the third download password obtained from the operator server. Improve the dynamic authentication mechanism by dynamically updating the download password and improve the security of the download.
需要说明的是,后续签约管理实体对每次生成的下载口令的处理方式类似上述第一下载口令或上述第三下载口令的处理方式,本文中不再赘述。It should be noted that the processing manner of the download password generated by the subsequent subscription management entity is similar to that of the first download password or the third download password described above, and is not described herein again.
709、所述终端设备接收来自所述签约管理实体的第三下载口令和所述与所述签约文件属于相同签约的签约文件。709. The terminal device receives a third download password from the subscription management entity and the subscription file that belongs to the same contract with the subscription file.
所述第三下载口令用于所述终端设备在再次向所述运营商服务器请求下载与所述签约文件属于相同签约的签约文件时,向所述签约管理实体请求认证。The third download password is used by the terminal device to request authentication from the contract management entity when requesting to download the subscription file that belongs to the same contract with the contract file again to the operator server.
所述终端设备接收第三下载口令和所述签约文件属于相同签约的签约文件之后,将本地保存的所述第一下载口令替换为所述第三下载口令。通过动态更新下载口令,与网络侧同步,能够优化动态认证的机制,提高下载的安全性。可选的,在步骤709之后,还可以包括步骤710、所述运营商服务器接收所述签约管理实体发送的第二确认消息后,则保存所述第三下载口令并删除所述第一下载口令。运营商服务器所保存的第三下载口令和本实施例中的第一下载口令的功能相同,也可以提供给签约管理实体对终端的下载请求进行认证,具体不再赘述。After receiving the third download password and the subscription file belongs to the same contracted subscription file, the terminal device replaces the locally saved first download password with the third download password. By dynamically updating the download password and synchronizing with the network side, the dynamic authentication mechanism can be optimized to improve the security of the download. Optionally, after step 709, the method further includes the step 710, after the operator server receives the second confirmation message sent by the subscription management entity, saving the third download password and deleting the first download password. . The third download password saved by the operator server is the same as the first download password in the embodiment, and may be provided to the subscription management entity to authenticate the download request of the terminal, and details are not described herein.
本发明实施例中,通过对终端设备发送的第一下载口令进行认证,使得认证通过后的终端设备才可以继续下载签约文件,并生成用于下载认证终端设备 的下载请求的第三下载口令,以及通过动态更新下载口令,优化动态认证的机制,提高下载的安全性。In the embodiment of the present invention, the first download password sent by the terminal device is authenticated, so that the terminal device after the authentication is passed can continue to download the subscription file, and generate the authentication terminal device for downloading. The third download password of the download request, and the dynamic password update mechanism to optimize the dynamic authentication mechanism and improve the security of the download.
可选的,在图4和图5所对应的实施例中,所述第一下载口令或所述第二下载口令或所述第三下载口令或者后续下载流程中运营商服务器生成的下载口令均至少满足以下之一:Optionally, in the embodiment corresponding to FIG. 4 and FIG. 5, the first download password or the second download password or the third download password or the download password generated by the operator server in the subsequent download process are both Meet at least one of the following:
在预设时长内有效、使用的有效次数为有限次、在所述预设时长内、使用的有效次数为有限次、包含签约文件的下载次数。通过设置下载口令的有效期和有效使用次数,能够进一步降低下载签约文件时的攻击概率,提高签约文件分发的安全性。Valid for a preset duration, the number of valid uses is finite, within the preset duration, the number of valid uses is finite, and the number of downloads containing the contracted file. By setting the validity period and effective usage times of the download password, the attack probability when downloading the contract file can be further reduced, and the security of the contract file distribution can be improved.
上述图4和图5所对应的实施例对本发明中一种下载签约文件的方法进行说明,以下对执行上述下载签约文件的方法的运营商服务器、终端设备及签约管理实体进行描述。The embodiment corresponding to the foregoing FIG. 4 and FIG. 5 illustrates a method for downloading a subscription file in the present invention. The following describes the operator server, the terminal device, and the contract management entity that execute the method for downloading the subscription file.
一、参照图6-1,对签约管理实体80进行说明,签约管理实体80包括:1. The contract management entity 80 is described with reference to FIG. 6-1. The contract management entity 80 includes:
接收模块801,用于接收运营商服务器90发送的第一请求消息,所述第一请求消息为所述运营商服务器90在接收到终端设备100的第一下载请求消息后向所述签约管理实体80发出,其中,所述第一下载请求消息用于向所述运营商服务器90请求下载签约文件;The receiving module 801 is configured to receive a first request message sent by the operator server 90, where the first request message is sent by the operator server 90 to the subscription management entity after receiving the first download request message of the terminal device 100. 80 is sent, wherein the first download request message is used to request the carrier server 90 to download a subscription file;
处理模块802,用于根据所述接收模块801接收到的所述第一请求消息生成终端设备请求下载的签约文件;The processing module 802 is configured to generate, according to the first request message received by the receiving module 801, a subscription file that the terminal device requests to download;
在所述接收模块801接收到所述终端设备发送的第二请求消息后,生成第一下载口令,所述第二请求消息用于请求下载所述签约文件;After the receiving module 801 receives the second request message sent by the terminal device, generating a first download password, where the second request message is used to request to download the subscription file;
发送模块803,用于将所述处理模块802生成的所述第一下载口令和所述签约文件发送至所述终端设备,所述第一下载口令用于终端设备在再次请求下载与所述签约文件属于相同签约的签约文件时,所述处理模块802对终端设备的请求进行认证。The sending module 803 is configured to send the first download password and the subscription file generated by the processing module 802 to the terminal device, where the first download password is used by the terminal device to request download again and the signing When the file belongs to the same contracted contract file, the processing module 802 authenticates the request of the terminal device.
本发明实施例中,在终端设备首次请求下载签约文件时,处理模块802生成上述第一下载口令,使得终端设备再次请求下载与所述签约文件属于相同签约的签约文件时,所述处理模块802对终端设备的再次请求进行认证,实现 动态认证,有效避免攻击者伪造重下载请求攻击运营商服务器或非法获取签约文件,提高安全性。In the embodiment of the present invention, when the terminal device requests to download the subscription file for the first time, the processing module 802 generates the first download password, so that when the terminal device requests to download the subscription file that belongs to the same contract with the subscription file again, the processing module 802 Authenticate the re-request of the terminal device to achieve Dynamic authentication effectively prevents attackers from forging heavy download requests to attack carrier servers or illegally obtaining subscription files to improve security.
可选的,在一些发明实施例中,在终端设备再次请求下载签约文件时,所述处理模块802还用于:Optionally, in some embodiments of the invention, when the terminal device requests to download the subscription file again, the processing module 802 is further configured to:
通过所述接收模块801接收所述运营商服务器90发送的第三请求消息;Receiving, by the receiving module 801, a third request message sent by the operator server 90;
根据所述第三请求消息获取与所述签约文件属于相同签约的签约文件;Obtaining, according to the third request message, a contract file that belongs to the same contract as the contract file;
通过所述接收模块801接收终端设备发送的第四请求消息,所述第四请求消息携带第二下载口令;Receiving, by the receiving module 801, a fourth request message sent by the terminal device, where the fourth request message carries a second download password;
并对所述第四请求消息进行认证,当所述第二下载口令与所述第一下载口令相同或相对应时,则认证成功;And authenticating the fourth request message, when the second download password is the same as or corresponding to the first download password, the authentication is successful;
认证通过后,生成第三下载口令,并通过所述发送模块803将所述第三下载口令和所述与所述签约文件属于相同签约的签约文件发送至所述发出第四请求消息的终端设备,所述第三下载口令用于在终端设备再次请求下载与所述签约文件属于相同签约的签约文件时,所述处理模块802对终端设备进行认证。After the authentication is passed, the third download password is generated, and the third download password and the subscription file that belongs to the same contract with the subscription file are sent by the sending module 803 to the terminal device that issues the fourth request message. The third download password is used by the processing module 802 to authenticate the terminal device when the terminal device requests to download the subscription file that belongs to the same contract as the subscription file.
可选的,在一些发明实施例中,为提高下载签约文件的安全性,可以通过动态认证终端设备的下载请求实现,所述处理模块802对所述第四请求消息进行认证,包括以下之一:Optionally, in some embodiments of the invention, to improve the security of downloading the subscription file, the method may be implemented by dynamically authenticating the download request of the terminal device, and the processing module 802 authenticates the fourth request message, including one of the following: :
使用本地保存的所述第一下载口令对所述第四请求消息中的第二下载口令进行认证;And authenticating the second download password in the fourth request message by using the locally saved first download password;
或,所述第三请求消息携带来自所述签约管理实体的所述第一下载口令,使用所述第三请求消息中携带的所述第一下载口令,对所述第四请求消息中的第二下载口令进行认证。Or the third request message carries the first download password from the subscription management entity, and uses the first download password carried in the third request message to the first of the fourth request messages. Second, download the password for authentication.
可选的,所述处理模块802还用于执行以下步骤之一:Optionally, the processing module 802 is further configured to perform one of the following steps:
保存所述第一下载口令;Saving the first download password;
或,通过所述发送模块803将所述第一下载口令发送给所述运营商服务器90保存。Alternatively, the first download password is sent to the operator server 90 for saving by the sending module 803.
为提高下载签约文件的安全性,可以通过动态更新认证所需的下载口令实 现,所述处理模块802还用于执行以下步骤之一:In order to improve the security of downloading the contract file, you can dynamically update the download password required for authentication. The processing module 802 is further configured to perform one of the following steps:
将本地保存的所述第一下载口令更新为所述第三下载口令;Updating the locally saved first download password to the third download password;
或,通过所述发送模块803将所述第三下载口令发送给所述运营商服务器90,以使所述运营商服务器90将本地保存的第一下载口令更新为所述第三下载口令。Or, the third download password is sent to the operator server 90 by the sending module 803, so that the operator server 90 updates the locally saved first download password to the third download password.
可选的,所述第一下载口令或所述第三下载口令至少满足以下之一:Optionally, the first download password or the third download password meets at least one of the following:
在预设时长内有效、使用的有效次数为有限次、在所述预设时长内、使用的有效次数为有限次、包含签约文件的下载次数。Valid for a preset duration, the number of valid uses is finite, within the preset duration, the number of valid uses is finite, and the number of downloads containing the contracted file.
可选的,在一些发明实施例中,为防止伪用户通过运营商服务器的身份认证,可以在终端设备申请签约之前,提供一个下载口令给终端设备,以便在终端设备申请签约时进行认证,具体为:所述第二请求消息携带第四下载口令;Optionally, in some embodiments of the present invention, in order to prevent the pseudo user from being authenticated by the operator server, the terminal device may provide a download password to the terminal device before the terminal device applies for signing, so as to perform authentication when the terminal device applies for signing, The second request message carries a fourth download password.
所述处理模块802具体用于:The processing module 802 is specifically configured to:
验证所述第四下载口令,在验证通过后,生成所述第一下载口令;Verifying the fourth download password, and after the verification is passed, generating the first download password;
所述处理模块802还用于:The processing module 802 is further configured to:
将所保存的所述第四下载口令替换为所述第一下载口令;Replacing the saved fourth download password with the first download password;
或者,通过所述发送模块803将所述第一下载口令发送给所述运营商服务器90,以使得所述运营商服务器90将本地保存的所述第四下载口令替换为所述第一下载口令。Or sending, by the sending module 803, the first download password to the operator server 90, so that the operator server 90 replaces the locally saved fourth download password with the first download password. .
二、参照图6-2,对运营商服务器90进行说明,运营商服务器90包括:2. The operator server 90 is described with reference to FIG. 6-2. The carrier server 90 includes:
接收模块901,用于接收终端设备的第一下载请求消息,所述第一下载请求消息用于向所述运营商服务器请求下载签约文件;The receiving module 901 is configured to receive a first download request message of the terminal device, where the first download request message is used to request the carrier server to download the subscription file.
发送模块902,用于向签约管理实体80发送第一请求消息,所述第一请求消息用于指示所述签约管理实体80生成所述终端设备请求下载的签约文件;The sending module 902 is configured to send a first request message to the subscription management entity 80, where the first request message is used to instruct the subscription management entity 80 to generate a subscription file that the terminal device requests to download;
所述接收模块901还用于接收所述签约管理实体80发送的第一下载口令,所述第一下载口令为所述签约管理实体90接收到所述终端设备100发送的第二请求消息后生成的第一下载口令,其中,所述第二请求消息用于请求下载所述签约文件;The receiving module 901 is further configured to receive a first download password sent by the subscription management entity 80, where the first download password is generated after the subscription management entity 90 receives the second request message sent by the terminal device 100. a first download password, wherein the second request message is used to request to download the subscription file;
处理模块903,用于保存通过所述接收模块901接收到的所述第一下载口 令;The processing module 903 is configured to save the first download port received by the receiving module 901 make;
所述第一下载口令用于所述终端设备在再次请求下载与所述签约文件属于相同签约的签约文件时,所述签约管理实体80对所述终端设备的再次请求进行认证。The first download password is used by the terminal device to authenticate the re-request of the terminal device when the terminal device requests to download the subscription file that belongs to the same contract with the subscription file.
本发明实施例中,在终端设备首次请求下载签约文件时,处理模块903通过所述接收模块901接收签约管理实体80生成的第一下载口令并保存,使得终端设备再次请求下载与所述签约文件属于相同签约的签约文件时,可以为签约管理实体80提供认证终端设备的下载请求的第一下载口令,减少签约管理实体80未保存下载口令时无法认证的情况,实现备份下载口令的作用,进一步保障动态认证的可行性。In the embodiment of the present invention, when the terminal device requests to download the subscription file for the first time, the processing module 903 receives the first download password generated by the subscription management entity 80 through the receiving module 901, and saves, so that the terminal device requests the download and the subscription file again. When the subscription file belongs to the same contract, the subscription management entity 80 can be provided with the first download password for authenticating the download request of the terminal device, and the contract management entity 80 can reduce the password when the download password is not saved, thereby implementing the backup download password. Guarantee the feasibility of dynamic authentication.
可选的,在终端设备发起重下载签约文件的流程时,所述接收模块901还用于:Optionally, when the terminal device initiates a process of re-downloading the subscription file, the receiving module 901 is further configured to:
接收终端设备发送的第二下载请求消息,所述第二下载请求用于请求下载与所述签约文件属于相同签约的签约文件;Receiving, by the terminal device, a second download request message, where the second download request is used to request to download a subscription file that belongs to the same contract with the subscription file;
所述发送模块902还用于:发送第三请求消息至所述签约管理实体,所述第三请求消息用于指示所述签约管理实体80获取与所述签约文件属于相同签约的签约文件;The sending module 902 is further configured to: send a third request message to the subscription management entity, where the third request message is used to instruct the subscription management entity 80 to obtain a subscription file that belongs to the same contract with the subscription file;
所述处理模块903还用于:通过所述接收模块901接收所述签约管理实体发送的第三下载口令,并将本地保存的所述第一下载口令更新为所述第三下载口令;所述第三下载口令为所述签约管理实体对所述第四请求消息终端设备发送的认证成功后生成的下载口令,所述第三下载口令用于终端设备再次请求下载与所述签约文件属于相同签约的签约文件时,所述签约管理实体80对终端设备的请求进行认证。The processing module 903 is further configured to: receive, by the receiving module 901, a third download password sent by the subscription management entity, and update the locally saved first download password to the third download password; The third download password is a download password generated by the subscription management entity after the authentication succeeded to the fourth request message terminal device, and the third download password is used by the terminal device to request the download again to belong to the same contract with the subscription file. When the contract file is signed, the contract management entity 80 authenticates the request of the terminal device.
可选的,运营商服务器90在终端设备重下载签约文件的流程中,还可以为签约管理实体80提供下载口令,具体可以在所述第三请求消息中携带所述第一下载口令,所述第三请求消息还用于所述签约管理实体在接收所述终端设备发送的第四请求消息之后,使用所述第三请求消息携带的所述第一下载口令,对所述第四请求消息进行认证。 Optionally, the operator server 90 may further provide the download password to the subscription management entity 80 in the process of re-downloading the subscription file, where the first download password may be carried in the third request message. The third request message is further used by the subscription management entity, after receiving the fourth request message sent by the terminal device, using the first download password carried in the third request message, and performing the fourth request message Certification.
可选的,为避免首次下载过程中出现伪造下载请求的可能,所述接收模块901在接收所述签约管理实体发送的第一下载口令之前,还用于:Optionally, the receiving module 901 is further configured to: before receiving the first download password sent by the subscription management entity, in order to avoid the possibility of forging a download request in the first downloading process:
从所述签约管理实体80获取第四下载口令,所述第四下载口令由所述签约管理实体分配;Obtaining a fourth download password from the contract management entity 80, where the fourth download password is allocated by the contract management entity;
所述处理模块903还用于通过所述发送模块902将所述第四下载口令发送至所述终端设备;The processing module 903 is further configured to send the fourth download password to the terminal device by using the sending module 902;
将所述第四下载口令替换为所述第一下载口令,实现动态更新下载口令,提高下载签约文件的安全性。The fourth download password is replaced with the first download password, so that the download password is dynamically updated, and the security of downloading the subscription file is improved.
三、参照图6-3,对终端设备100进行说明,终端设备100包括:The terminal device 100 is described with reference to FIG. 6-3. The terminal device 100 includes:
发送模块1001,用于向签约管理实体80发送第二请求消息,所述第二请求消息用于向所述签约管理实体80请求下载签约文件;The sending module 1001 is configured to send a second request message to the subscription management entity 80, where the second request message is used to request the subscription management entity 80 to download the subscription file.
接收模块1002,用于接收来自所述签约管理实体80的第一下载口令和所述签约文件,所述第一下载口令为签约管理实体80生成;The receiving module 1002 is configured to receive a first download password and the subscription file from the subscription management entity 80, where the first download password is generated by the subscription management entity 80.
所述第一下载口令用于所述终端设备100再次请求下载与所述签约文件属于相同签约的签约文件时,通过所述发送模块1001向所述签约管理实体80请求认证。The first download password is used by the sending module 1001 to request authentication from the subscription management entity 80 when the terminal device 100 requests to download a subscription file that belongs to the same contract as the subscription file.
本发明实施例中,终端设备100首次请求下载签约文件的过程中,接收模块1002获取签约管理实体80生成的第一下载口令,终端设备100再次请求下载与所述签约文件属于相同签约的签约文件时,使用第一下载口令向所述签约管理实体请求认证,认证通过后,才可以下载签约文件,实现动态认证,有效避免攻击者伪造重下载请求攻击运营商服务器或非法获取签约文件,提高安全性。In the embodiment of the present invention, in the process that the terminal device 100 first requests to download the subscription file, the receiving module 1002 obtains the first download password generated by the subscription management entity 80, and the terminal device 100 again requests to download the subscription file that belongs to the same contract with the subscription file. The first download password is used to request authentication from the subscription management entity. After the authentication is passed, the subscription file can be downloaded to implement dynamic authentication, which effectively prevents the attacker from forging the re-download request and attacking the operator server or illegally obtaining the subscription file, thereby improving security. Sex.
可选的,在一些发明实施例中,终端设备100需要重下载签约文件时,可以通过所述发送模块1001向所述运营商服务器90发送第二下载请求消息,所述第二下载请求消息用于向所述运营商服务器90请求下载与所述签约文件属于相同签约的签约文件;Optionally, in some embodiments of the present invention, when the terminal device 100 needs to re-download the subscription file, the sending module 1001 may send a second download request message to the operator server 90, where the second download request message is used. Requesting, from the operator server 90, to download a contract file that belongs to the same contract as the contract file;
向所述签约管理实体80发送携带第二下载口令的第四请求消息;Sending, to the subscription management entity 80, a fourth request message carrying a second download password;
通过所述接收模块1002接收所述签约管理实体80发送的第三下载口令和 所述签约管理实体80发送的所述与所述签约文件属于相同签约的签约文件,所述第三下载口令为所述签约管理实体80对所述终端设备100发送的第四请求消息认证通过后所生成;Receiving, by the receiving module 1002, a third download password sent by the subscription management entity 80 and The contracting management entity 80 sends the subscription file that belongs to the same contract with the subscription file, and the third download password is that the subscription management entity 80 authenticates the fourth request message sent by the terminal device 100. Generated
所述第三下载口令用于所述终端设备再次向所述运营商服务器90请求下载与所述签约文件属于相同签约的签约文件时,通过所述发送模块1001向所述签约管理实体80请求认证。The third download password is used by the sending module 1001 to request authentication from the sending management module 80 when the terminal device requests the carrier server 90 to download the subscription file that belongs to the same contract with the subscription file. .
本发明实施例中,终端设备100再次请求下载签约文件时,使用首次下载签约文件时获取的第一下载口令向签约管理实体80请求认证,并获取此次签约管理实体生成的第三下载口令,即每次下载过程中都动态生成新的下载口令,能够避免攻击者伪造重下载请求攻击运营商服务器或非法获取签约文件,提高下载的安全性。In the embodiment of the present invention, when the terminal device 100 requests to download the subscription file again, the first download password obtained when the subscription file is downloaded for the first time is used to request the authentication from the subscription management entity 80, and the third download password generated by the subscription management entity is obtained. That is, a new download password is dynamically generated during each download process, which can prevent an attacker from forging a download request to attack an operator server or illegally obtaining a subscription file, thereby improving the security of the download.
可选的,所述终端设备100还包括:Optionally, the terminal device 100 further includes:
处理模块1003,用于将本地保存的所述第一下载口令替换为所述第三下载口令,实现动态更新下载口令,与网络侧同步,提高下载签约文件的安全性。The processing module 1003 is configured to replace the locally saved first password with the third download password, and dynamically update the download password to synchronize with the network side to improve the security of downloading the subscription file.
其中,所述第一下载口令或所述第二下载口令至少满足以下项之一:The first download password or the second download password meets at least one of the following items:
在预设时长内有效、使用的有效次数为有限次、在所述预设时长内、使用的有效次数为有限次、包含签约文件的下载次数。Valid for a preset duration, the number of valid uses is finite, within the preset duration, the number of valid uses is finite, and the number of downloads containing the contracted file.
可选的,在一些发明实施例中,为避免首次下载过程中出现伪造下载请求的可能,终端设备100在首次请求签约时,需要向网络侧请求身份认证,可以在所述第二请求消息中携带第四下载口令,所述第四下载口令为所述签约管理实体80在所述终端设备100请求签约之前为所述终端设备100生成,所述第四下载口令用于所述签约管理实体80在生成所述第一下载口令之前,验证所述第四下载口令,即所述第四下载口令用于对所述终端设备100是否具备申请签约的权限进行认证;Optionally, in some embodiments of the present invention, in order to avoid the possibility of forging a download request in the first downloading process, the terminal device 100 needs to request identity authentication from the network side when the first request for the subscription, and may be in the second request message. Carrying a fourth download password, the fourth download password is generated by the subscription management entity 80 for the terminal device 100 before the terminal device 100 requests the subscription, and the fourth download password is used by the subscription management entity 80. Before the generating the first download password, verifying the fourth download password, that is, the fourth download password is used to authenticate whether the terminal device 100 has the right to apply for signing;
所述处理模块1003在所述接收模块1002接收到第一下载口令和所述签约文件之后,还用于:After the receiving module 1002 receives the first download password and the subscription file, the processing module 1003 is further configured to:
将所保存的所述第四下载口令替换为所述第一下载口令,能够提高首次签约和首次下载下载签约文件的安全性。 Replacing the saved fourth download password with the first download password can improve the security of the first subscription and the first download and download of the subscription file.
四、本发明实施例还提供一种通信系统,参考图6-4,所述通信系统2包括:The embodiment of the present invention further provides a communication system. Referring to FIG. 6-4, the communication system 2 includes:
如图6-2所述的运营商服务器90;The operator server 90 as shown in Figure 6-2;
如图6-3所述的终端设备100;Figure 6-3 of the terminal device 100;
如图6-1所述的签约管理实体80。The contract management entity 80 as described in Figure 6-1.
需要说明的是,在本发明各实施例(包括图6-1、图6-2以及图6-3中所示的各实施例)中所有的接收模块对应的实体设备可以为接收器,所有的发送模块对应的实体设备可以为发射器,所有的处理模块对应的实体设备可以为处理器。图6-1、图6-2以及图6-3所示的各装置均可以具有如图9所示的结构,当其中一种装置具有如图9所示的结构时,图9中的处理器、发射器和接收器实现前述对应该装置的装置实施例提供的处理模块、发送模块和接收模块相同或相似的功能,图9中的存储器存储处理器执行上述下载签约文件的方法时需要调用的程序代码。It should be noted that, in the embodiments of the present invention (including the embodiments shown in FIG. 6-1, FIG. 6-2, and FIG. 6-3), the physical devices corresponding to all the receiving modules may be receivers, all The physical device corresponding to the sending module may be a transmitter, and the physical device corresponding to all processing modules may be a processor. Each of the devices shown in FIG. 6-1, FIG. 6-2, and FIG. 6-3 may have a structure as shown in FIG. 9. When one of the devices has the structure as shown in FIG. 9, the processing in FIG. The transmitter, the transmitter and the receiver implement the same or similar functions of the processing module, the transmitting module and the receiving module provided by the device embodiment corresponding to the device, and the memory storage processor in FIG. 9 needs to be called when executing the method for downloading the subscription file. Program code.
参阅图7,本发明实施例还提供一种下载签约文件的方法,本实施例包括:Referring to FIG. 7, an embodiment of the present invention further provides a method for downloading a subscription file, and the embodiment includes:
1101、终端设备向运营商服务器发送第一请求消息。1101. The terminal device sends a first request message to the operator server.
其中,所述第一请求消息携带已申请签约的信息。可选的,所述已申请签约的信息包含所述已申请签约对应的用户标识或所述已申请签约已分发的签约文件对应的签约文件标识或所述已申请签约对应的下载口令,通过用户标识或签约文件标识或下载口令能够获知该请求为申请已有签约的签约文件的请求消息,给用户提供了灵活的下载机制。The first request message carries information that has been requested to be signed. Optionally, the information that has been applied for the subscription includes the user identifier corresponding to the applied for the subscription or the subscription file identifier corresponding to the signed subscription document that has been applied for the subscription, or the download password corresponding to the applied for the subscription, by using the user. The identification or subscription file identification or download password can be informed that the request is a request message for applying for a contracted contract file, and provides a flexible download mechanism for the user.
1102、运营商服务器接收终端设备发送的第一请求消息。1102. The operator server receives the first request message sent by the terminal device.
1103、所述运营商服务器根据所述第一请求消息中携带的已申请签约的信息,确定所述第一请求消息请求下载的签约文件为已申请签约的签约文件。1103. The operator server determines, according to the information about the subscription that is carried in the first request message, that the subscription file that is requested to be downloaded by the first request message is a subscription file that has been requested to be signed.
1104、所述运营商服务器向签约管理实体发送第二请求消息。1104. The operator server sends a second request message to the subscription management entity.
所述第二请求消息用于指示所述签约管理实体获取所述签约文件。The second request message is used to instruct the subscription management entity to acquire the subscription file.
1105、签约管理实体接收运营商服务器发送的第二请求消息,根据所述第二请求消息获取终端设备请求下载的签约文件。 1105. The subscription management entity receives the second request message sent by the operator server, and acquires the subscription file that the terminal device requests to download according to the second request message.
1106、所述签约管理实体将所述签约文件发送至所述终端设备。1106. The contract management entity sends the subscription file to the terminal device.
1107、所述终端设备接收来自所述签约管理实体的所述签约文件。1107. The terminal device receives the subscription file from the subscription management entity.
本发明实施例中,每次在终端设备请求下载签约文件时,由运营商服务器根据已申请签约的信息来确定终端设备所请求下载的签约文件为已申请签约的签约文件,由签约管理实体获得所述已申请签约的签约文件,为用户提供灵活的下载签约文件的机制。In the embodiment of the present invention, each time the terminal device requests to download the subscription file, the operator server determines, according to the information that has been applied for the subscription, that the subscription file requested by the terminal device is the contracted file that has been applied for the contract, and is obtained by the contract management entity. The signing document that has been applied for signing provides the user with a flexible mechanism for downloading the signing document.
可选的,在所述第一请求消息还携带eUICC标识时,步骤1103中,在确定所述第一请求消息所请求下载的签约文件为已申请签约的签约文件后,向签约管理实体发送第二请求消息之前,所述运营商服务器还需要判断所述eUICC标识与所保存的所述签约对应的eUICC标识是否相同。Optionally, when the first request message further carries the eUICC identifier, in step 1103, after determining that the subscription file requested to be downloaded by the first request message is the subscription file that has been applied for the contract, sending the first to the subscription management entity. Before the second request message, the operator server further needs to determine whether the eUICC identifier is the same as the eUICC identifier corresponding to the saved subscription.
1、在确定所述eUICC标识与所保存的所述已申请签约对应的eUICC标识相同时,运营商服务器可以通过以下方式之一在第二请求消息中携带不同的参数,使签约管理实体获取终端设备请求的签约文件,具体如下:1. When it is determined that the eUICC identifier is the same as the eUICC identifier corresponding to the saved application subscription, the operator server may carry different parameters in the second request message by using one of the following manners, so that the subscription management entity acquires the terminal. The contract documents requested by the device are as follows:
a、运营商服务器在所述第二请求消息中携带重下载指示信息和所述已申请签约已分发的签约文件的签约文件标识,使得步骤1104中,所述签约管理实体根据所述重下载指示信息的指示,使用所述签约文件标识关联到所述已申请签约已分发的签约文件。The operator server carries, in the second request message, the re-downloading indication information and the subscription file identifier of the contracted file that has been applied for the contract, so that in step 1104, the contract management entity according to the re-downloading instruction An indication of the information, using the contract file identifier to be associated with the signed document that has been applied for the contracted distribution.
b、运营商服务器在所述第二请求消息中携带所述已申请签约已分发的签约文件对应的第一签约文件信息,使得步骤1104中,所述签约文件管理实体使用所述第一签约文件信息生成终端设备请求下载的所述签约文件,其中,所述第一签约文件信息包含已分发的所述已申请签约的签约文件的根密钥等信息。The operator server carries, in the second request message, the first subscription file information corresponding to the subscription file that has been applied for the contract, so that the contract file management entity uses the first subscription file in step 1104. The information generating terminal device requests the downloaded subscription file, wherein the first subscription file information includes information such as a root key of the signed subscription file that has been distributed.
以上两种方式中,通过为终端设备提供所述已申请签约已分发的签约文件,不用新生成新签约的签约文件,能够降低运营商服务器签约的成本。In the above two manners, by providing the terminal device with the signed contract file that has been applied for the contract, the contract cost of the operator server can be reduced without newly creating a new contract signing file.
2、在确定所述eUICC标识与所保存的所述已申请签约对应的eUICC标识不同时,需要签约管理实体为终端设备生成一个新的签约,并按照新申请签约文件处理的流程进行。运营商服务器可以在所述第二请求消息携带第二签约文件信息,则使得所述签约管理实体使用所述第二签约文件信息生成终端设备 请求下载的签约文件。其中,所述第二签约文件信息可以是签约类型、签约文件标识或生成新的签约文件所需要的根密钥信息等,例如可以是新的根密钥信息或一个新的签约文件标识。2. When it is determined that the eUICC identifier is different from the eUICC identifier corresponding to the saved application subscription, the contract management entity needs to generate a new subscription for the terminal device, and performs the process according to the new application contract document processing. The operator server may carry the second subscription file information in the second request message, so that the subscription management entity generates the terminal device by using the second subscription file information. The contract file for which the download is requested. The second subscription file information may be a subscription type, a subscription file identifier, or a root key information required to generate a new subscription file, and may be, for example, a new root key information or a new subscription file identifier.
上述图7所对应的实施例对本发明中一种下载签约文件的方法进行说明,以下对执行上述下载签约文件的方法的运营商服务器及签约管理实体进行描述。The embodiment corresponding to FIG. 7 described above describes a method for downloading a subscription file in the present invention. The following describes the operator server and the contract management entity that execute the method for downloading the subscription file.
一、参考图8-1,所述运营商服务器120包括:1. Referring to FIG. 8-1, the operator server 120 includes:
接收模块1201,用于接收终端设备发送的第一请求消息,所述第一请求消息用于请求下载签约文件;The receiving module 1201 is configured to receive a first request message sent by the terminal device, where the first request message is used to request to download a subscription file;
处理模块1202,用于根据所述接收模块1201接收到的所述第一请求消息中携带的已申请签约的信息,确定所述第一请求消息请求下载的签约文件为已申请签约的签约文件;可选的,所述已申请签约的信息包含所述已申请签约对应的用户标识或所述已申请签约已分发的签约文件对应的签约文件标识或所述已申请签约对应的下载口令。The processing module 1202 is configured to determine, according to the information about the subscribed subscription that is carried in the first request message that is received by the receiving module 1201, that the subscription file that is requested to be downloaded by the first request message is a subscription file that has been requested to be signed; Optionally, the information that has been applied for the subscription includes the user identifier corresponding to the applied for the subscription or the subscription file identifier corresponding to the signed subscription document that has been applied for the subscription, or the download password corresponding to the applied for the subscription.
发送模块1203,用于在所述处理模块1202确定所述第一请求消息请求下载的签约文件为已申请签约的签约文件时,向签约管理实体发送第二请求消息,所述第二请求消息用于指示所述签约管理实体获取所述签约文件。The sending module 1203 is configured to send a second request message to the subscription management entity, where the processing module 1202 determines that the subscription file requested by the first request message is a subscription file that has been subscribed for, and the second request message is used by the And instructing the contract management entity to acquire the contract file.
本发明实施例中,每次在终端设备请求下载签约文件时,由处理模块1202根据已申请签约的信息来确定终端设备所请求下载的签约文件为已申请签约的签约文件,由签约管理实体获得所述已申请签约的签约文件,为用户提供灵活的下载签约文件的机制。In the embodiment of the present invention, each time the terminal device requests to download the subscription file, the processing module 1202 determines, according to the information that has been applied for the subscription, that the subscription file requested by the terminal device is the contracted file that has been applied for the contract, and is obtained by the contract management entity. The signing document that has been applied for signing provides the user with a flexible mechanism for downloading the signing document.
可选的,在一些发明实施例中,若所述第一请求消息还携带eUICC标识,则所述处理模块1202在确定所述第一请求消息请求下载的签约文件为已申请签约的签约文件后,还用于判断所述eUICC标识与所保存的所述签约对应的eUICC标识是否相同;Optionally, in some embodiments of the present invention, if the first request message further carries an eUICC identifier, the processing module 1202 determines that the subscription file requested to be downloaded by the first request message is a subscription file that has been applied for a contract. And determining whether the eUICC identifier is the same as the eUICC identifier corresponding to the saved subscription.
在确定所述eUICC标识与所保存的所述申请签约对应的eUICC标识相同时,在所述第二请求消息中携带重下载指示信息和所述签约文件标识,所述重 下载指示信息用于指示所述签约管理实体根据所述签约文件标识关联到所述已申请签约已分发的签约文件。When the eUICC identifier is determined to be the same as the eUICC identifier corresponding to the saved application subscription, the second request message carries the re-download indication information and the subscription file identifier, where the weight is The download indication information is used to indicate that the subscription management entity is associated with the contracted file that has been requested to be contracted according to the subscription file identifier.
或者,在确定所述eUICC标识与所保存的所述已申请签约对应的eUICC标识相同时,在所述第二请求消息中携带所述已申请签约已分发的签约文件对应的第一签约文件信息,所述第一签约文件信息包含所述已申请签约已分发的签约文件对应的根密钥信息,所述第一签约文件信息用于所述签约文件管理实体生成所述终端设备请求下载的所述签约文件。Or, when it is determined that the eUICC identifier is the same as the saved eUICC identifier corresponding to the saved application subscription, the second request message carries the first subscription file information corresponding to the subscription file that has been applied for the contracted distribution. The first subscription file information includes the root key information corresponding to the subscription file that has been applied for the contract, and the first subscription file information is used by the subscription file management entity to generate the location that the terminal device requests to download. Document the contract.
在确定所述eUICC标识与所保存的所述已申请签约对应的eUICC标识不同时,在所述第二请求消息中携带第二签约文件信息,所述第二签约文件信息用于所述签约文件管理实体生成所述终端设备请求下载的所述签约文件。When the eUICC identifier is determined to be different from the saved eUICC identifier, the second request message carries the second subscription file information, where the second subscription file information is used for the subscription file. The management entity generates the subscription file requested by the terminal device to download.
二、参考图8-2,所述签约管理实体130包括:2. Referring to FIG. 8-2, the subscription management entity 130 includes:
接收模块1301,用于接收运营商服务器发送的第二请求消息;The receiving module 1301 is configured to receive a second request message sent by the operator server.
处理模块1302,用于根据所述接收模块1301接收到的所述第二请求消息获取终端设备请求下载的签约文件,所述第二请求消息为所述运营商服务器在接收到第一请求消息,根据所述第一请求消息确定所述第一请求消息为请求下载已申请签约的签约文件后所发送的消息,所述第一请求消息携带已申请签约的信息;可选的,所述已申请签约的信息包含所述已申请签约对应的用户标识或所述已申请签约已分发的签约文件对应的签约文件标识或所述已申请签约对应的下载口令。The processing module 1302 is configured to acquire, according to the second request message received by the receiving module 1301, a subscription file that the terminal device requests to download, where the second request message is that the operator server receives the first request message, Determining, according to the first request message, that the first request message is a message that is sent after requesting to download a subscription file that has been applied for, and the first request message carries information that has been requested for signing; The information about the subscription includes the user identifier corresponding to the applied for the subscription or the subscription file identifier corresponding to the signed subscription document that has been applied for the subscription, or the download password corresponding to the applied for the subscription.
发送模块1303,用于将所述处理模块1302生成的所述签约文件发送至所述终端设备。The sending module 1303 is configured to send the subscription file generated by the processing module 1302 to the terminal device.
本发明实施例中,每次在终端设备请求下载签约文件时,都由处理模块1302根据已申请签约的信息来获取终端设备请求下载的签约文件,为用户提供灵活的下载签约文件的机制。In the embodiment of the present invention, each time the terminal device requests to download the subscription file, the processing module 1302 obtains the subscription file requested by the terminal device to download, according to the information that has been applied for, and provides the user with a flexible mechanism for downloading the subscription file.
可选的,对于请求下载已申请签约的签约文件,签约管理实体130获取签约文件的情况有以下两种:Optionally, for the request to download the signed file that has been applied for the contract, the contract management entity 130 obtains the contracted file in the following two situations:
若所述第二请求消息还携带重下载指示信息和所述签约文件标识,则所述 处理模块1302根据所述签约文件的文件标识关联到所述已申请签约已分发的签约文件。If the second request message further carries the re-download indication information and the subscription file identifier, The processing module 1302 is associated with the file file that has been applied for the contracted distribution according to the file identifier of the contract file.
若所述第二请求消息还携带所述已申请签约的第一签约文件信息,则所述处理模块1302使用所述第一签约文件信息生成所述终端设备请求下载的签约文件。If the second request message further carries the first subscription file information that has been requested to be signed, the processing module 1302 uses the first subscription file information to generate a subscription file that the terminal device requests to download.
可选的,对于请求下载新的签约的签约文件,签约管理实体130获取签约文件的情况如下:Optionally, for requesting to download the new contracted contract file, the contract management entity 130 obtains the contract file as follows:
若所述第二请求消息还携带第二签约文件信息,则所述处理模块1302使用所述第二签约文件信息生成所述终端设备请求下载的的签约文件。If the second request message further carries the second subscription file information, the processing module 1302 uses the second subscription file information to generate a subscription file that the terminal device requests to download.
三、本发明实施例还提供一种通信系统,参阅图8-3,所述通信系统3包括:The embodiment of the present invention further provides a communication system. Referring to FIG. 8-3, the communication system 3 includes:
如图8-1所述的运营商服务器120;The operator server 120 as shown in Figure 8-1;
如图8-2所述的签约管理实体130。The contract management entity 130 is as described in Figure 8-2.
可选的,该通信系统3还包括终端设备。Optionally, the communication system 3 further includes a terminal device.
需要说明的是,本发明各实施例(包括图8-1以及图8-2所示的各实施例)中所有的接收模块对应的实体设备可以为接收器,所有的发送模块对应的实体设备可以为发射器,所有的处理模块对应的实体设备可以为处理器。图8-1、图8-2以及图8-3所示的各装置均可以具有如图9所示的结构,当其中一种装置具有如图9所示的结构时,图9中的处理器、发射器和接收器实现前述对应该装置的装置实施例提供的处理模块、发送模块和接收模块相同或相似的功能,图9中的存储器存储处理器执行上述下载签约文件的方法时需要调用的程序代码。It should be noted that all the physical devices corresponding to the receiving modules in the embodiments of the present invention (including the embodiments shown in FIG. 8-1 and FIG. 8-2) may be receivers, and physical devices corresponding to all transmitting modules. It can be a transmitter, and the physical device corresponding to all processing modules can be a processor. Each of the devices shown in FIG. 8-1, FIG. 8-2, and FIG. 8-3 may have a structure as shown in FIG. 9, and when one of the devices has the structure as shown in FIG. 9, the processing in FIG. The transmitter, the transmitter and the receiver implement the same or similar functions of the processing module, the transmitting module and the receiving module provided by the device embodiment corresponding to the device, and the memory storage processor in FIG. 9 needs to be called when executing the method for downloading the subscription file. Program code.
本发明还提供一种计算机存储介质,该介质存储有程序,该程序执行时包括上述运营商服务器或签约管理实体或终端设备执行上述下载签约文件的方法中的部分或者全部步骤。The present invention also provides a computer storage medium storing a program, the program including some or all of the steps of the above-mentioned operator server or subscription management entity or terminal device performing the above-mentioned method of downloading a subscription file.
例如,本文中的运营商服务器的结构中包括处理器、接收器和发射器,所述处理器被配置为支持运营商服务器执行上述方法中相应的功能。所述接收器和所述发射器用于支持签约管理实体与终端设备之间的通信,向签约管理实体 或终端设备发送上述方法中所涉及的信息或者指令。所述运营商服务器还可以包括存储器,所述存储器用于与处理器耦合,其保存运营商服务器必要的程序代码和数据。For example, the architecture of the operator server herein includes a processor, a receiver, and a transmitter configured to support an operator server to perform the corresponding functions in the above methods. The receiver and the transmitter are configured to support communication between the subscription management entity and the terminal device to the contract management entity Or the terminal device transmits the information or instructions involved in the above method. The carrier server may also include a memory for coupling with the processor that holds program code and data necessary for the operator server.
本文中的签约管理实体的结构中包括处理器、接收器和发射器,所述处理器被配置为支持签约管理实体执行上述方法中相应的功能。所述接收器和所述发射器用于支持运营商服务器与终端设备之间的通信,向运营商服务器或终端设备发送上述方法中所涉及的信息或者指令。所述签约管理实体还可以包括存储器,所述存储器用于与处理器耦合,其保存签约管理实体必要的程序指代码和数据。The structure of the contract management entity herein includes a processor, a receiver, and a transmitter configured to support a contract management entity to perform the corresponding functions in the above methods. The receiver and the transmitter are configured to support communication between the operator server and the terminal device, and send information or instructions involved in the foregoing method to the operator server or the terminal device. The subscription management entity may also include a memory for coupling with the processor that retains the program code and data necessary for the contract management entity.
本文中的终端设备的结构中包括处理器、接收器和发射器,所述处理器被配置为支持终端设备执行上述方法中相应的功能。所述接收器和所述发射器可以是一个同时具有收发功能的收发器,用于支持签约管理实体与终端设备之间,以及运营商服务器与终端设备之间的通信,向签约管理实体或签约管理实体发送上述方法中所涉及的信息。所述终端设备还可以包括存储器,所述存储器用于与处理器耦合,其保存终端设备必要的程序代码和数据。The structure of the terminal device herein includes a processor, a receiver, and a transmitter, and the processor is configured to support the terminal device to perform a corresponding function in the above method. The receiver and the transmitter may be a transceiver having a transceiving function for supporting communication between the contract management entity and the terminal device, and between the operator server and the terminal device, to the contract management entity or signing the contract. The management entity sends the information involved in the above method. The terminal device may also include a memory for coupling with the processor, which stores program code and data necessary for the terminal device.
在上述实施例中,对各个实施例的描述都各有侧重,某个实施例中没有详述的部分,可以参见其他实施例的相关描述。In the above embodiments, the descriptions of the various embodiments are different, and the details that are not detailed in a certain embodiment can be referred to the related descriptions of other embodiments.
所属领域的技术人员可以清楚地了解到,为描述的方便和简洁,上述描述的系统,装置和单元的具体工作过程,可以参考前述方法实施例中的对应过程,在此不再赘述。A person skilled in the art can clearly understand that for the convenience and brevity of the description, the specific working process of the system, the device and the unit described above can refer to the corresponding process in the foregoing method embodiment, and details are not described herein again.
在本申请所提供的几个实施例中,应该理解到,所揭露的系统,装置和方法,可以通过其它的方式实现。例如,以上所描述的装置实施例仅仅是示意性的,例如,所述单元的划分,仅仅为一种逻辑功能划分,实际实现时可以有另外的划分方式,例如多个单元或组件可以结合或者可以集成到另一个系统,或一些特征可以忽略,或不执行。另一点,所显示或讨论的相互之间的耦合或直接耦合或通信连接可以是通过一些接口,装置或单元的间接耦合或通信连接,可以是电性,机械或其它的形式。In the several embodiments provided by the present application, it should be understood that the disclosed system, apparatus, and method may be implemented in other manners. For example, the device embodiments described above are merely illustrative. For example, the division of the unit is only a logical function division. In actual implementation, there may be another division manner, for example, multiple units or components may be combined or Can be integrated into another system, or some features can be ignored or not executed. In addition, the mutual coupling or direct coupling or communication connection shown or discussed may be an indirect coupling or communication connection through some interface, device or unit, and may be in an electrical, mechanical or other form.
所述作为分离部件说明的单元可以是或者也可以不是物理上分开的,作为 单元显示的部件可以是或者也可以不是物理单元,即可以位于一个地方,或者也可以分布到多个网络单元上。可以根据实际的需要选择其中的部分或者全部单元来实现本实施例方案的目的。The units described as separate components may or may not be physically separated as The components displayed by the unit may or may not be physical units, that is, may be located in one place, or may be distributed to multiple network units. Some or all of the units may be selected according to actual needs to achieve the purpose of the solution of the embodiment.
另外,在本发明各个实施例中的各功能单元可以集成在一个处理单元中,也可以是各个单元单独物理存在,也可以两个或两个以上单元集成在一个单元中。上述集成的单元既可以采用硬件的形式实现,也可以采用软件功能单元的形式实现。In addition, each functional unit in each embodiment of the present invention may be integrated into one processing unit, or each unit may exist physically separately, or two or more units may be integrated into one unit. The above integrated unit can be implemented in the form of hardware or in the form of a software functional unit.
所述集成的单元如果以软件功能单元的形式实现并作为独立的产品销售或使用时,可以存储在一个计算机可读取存储介质中。基于这样的理解,本发明的技术方案本质上或者说对现有技术做出贡献的部分或者该技术方案的全部或部分可以以软件产品的形式体现出来,该计算机软件产品存储在一个存储介质中,包括若干指令用以使得一台计算机设备(可以是个人计算机,服务器,或者网络设备等)执行本发明各个实施例所述方法的全部或部分步骤。而前述的存储介质包括:U盘、移动硬盘、只读存储器(ROM,Read-Only Memory)、随机存取存储器(RAM,Random Access Memory)、磁碟或者光盘等各种可以存储程序代码的介质。The integrated unit, if implemented in the form of a software functional unit and sold or used as a standalone product, may be stored in a computer readable storage medium. Based on such understanding, the technical solution of the present invention, which is essential or contributes to the prior art, or all or part of the technical solution, may be embodied in the form of a software product stored in a storage medium. A number of instructions are included to cause a computer device (which may be a personal computer, server, or network device, etc.) to perform all or part of the steps of the methods described in various embodiments of the present invention. The foregoing storage medium includes: a U disk, a mobile hard disk, a read-only memory (ROM), a random access memory (RAM), a magnetic disk, or an optical disk, and the like. .
以上对本发明所提供的一种下载签约文件的方法、相关设备及系统进行了详细介绍,本文中应用了具体个例对本发明的原理及实施方式进行了阐述,以上实施例的说明只是用于帮助理解本发明的方法及其核心思想;同时,对于本领域的一般技术人员,依据本发明的思想,在具体实施方式及应用范围上均会有改变之处,综上所述,本说明书内容不应理解为对本发明的限制。 The method, the related device and the system for downloading the contract file provided by the present invention are described in detail. The principle and the embodiment of the present invention are described in the specific examples. The description of the above embodiment is only for helping. The method of the present invention and its core idea are understood; at the same time, for those skilled in the art, according to the idea of the present invention, there are changes in the specific embodiments and application scopes. It should be understood that the invention is limited.

Claims (81)

  1. 一种下载签约文件的方法,其特征在于,所述方法包括:A method for downloading a subscription file, the method comprising:
    运营商服务器接收终端设备发送的第一请求消息,所述第一请求消息用于向运营商服务器请求下载签约文件;Receiving, by the operator server, a first request message sent by the terminal device, where the first request message is used to request the operator server to download the subscription file;
    所述运营商服务器生成第一下载口令;The operator server generates a first download password;
    所述运营商服务器向签约管理实体发送第二请求消息,所述第二请求消息用于指示所述签约管理实体生成所述终端设备请求下载的签约文件,以使得所述终端设备从所述签约管理实体下载所述签约文件;The operator server sends a second request message to the subscription management entity, where the second request message is used to instruct the subscription management entity to generate a subscription file requested by the terminal device to download, so that the terminal device receives the subscription from the terminal device. The management entity downloads the contract document;
    所述第二请求消息携带所述第一下载口令,以使得所述终端设备从所述签约管理实体获得所述第一下载口令;或者所述运营商服务器向所述终端设备发送所述第一下载口令;The second request message carries the first download password, so that the terminal device obtains the first download password from the subscription management entity; or the operator server sends the first to the terminal device Download password
    所述第一下载口令用于所述终端设备再次向所述运营商服务器请求下载与所述签约文件属于相同签约的签约文件时,所述运营商服务器对所述终端设备的请求进行认证。The first download password is used by the terminal server to authenticate the request of the terminal device when the terminal device requests the operator server to download the subscription file that belongs to the same contract with the subscription file.
  2. 根据权利要求1所述的方法,其特征在于,所述方法还包括:The method of claim 1 further comprising:
    所述运营商服务器接收到第一确认消息后保存所述第一下载口令,所述第一确认消息为所述签约管理实体成功将所述签约文件发送至所述终端设备后发送的消息,所述第一确认消息用于指示所述终端设备已成功下载所述签约文件。And the first confirmation password is sent by the operator server after receiving the first confirmation message, where the first confirmation message is a message sent by the subscription management entity after successfully sending the subscription file to the terminal device. The first confirmation message is used to indicate that the terminal device has successfully downloaded the subscription file.
  3. 根据权利要求1或2所述的方法,其特征在于,所述方法还包括:The method according to claim 1 or 2, wherein the method further comprises:
    所述运营商服务器接收所述终端设备发送的第三请求消息,所述第三请求消息携带第二下载口令,所述第三请求消息用于向所述签约管理实体请求下载与所述签约文件属于相同签约的签约文件;Receiving, by the operator server, a third request message sent by the terminal device, where the third request message carries a second download password, where the third request message is used to request downloading and signing the file from the subscription management entity Contract documents belonging to the same contract;
    所述运营商服务器使用所述第一下载口令对所述第三请求消息进行认证;The operator server authenticates the third request message by using the first download password;
    当所述第二下载口令与所述第一下载口令相同或相对应时,则认证成功,认证成功后,所述运营商服务器生成第三下载口令;When the second download password is the same as or corresponds to the first download password, the authentication succeeds, and after the authentication succeeds, the operator server generates a third download password;
    所述运营商服务器向所述签约管理实体发送第四请求消息,所述第四请求消息用于指示所述签约管理实体获取与所述签约文件属于相同签约的签约文件,以使得发送所述第三请求消息的终端设备从所述签约管理实体下载与所述 签约文件属于相同签约的签约文件;The operator server sends a fourth request message to the subscription management entity, where the fourth request message is used to instruct the subscription management entity to acquire a subscription file that belongs to the same contract with the subscription file, so that the first The terminal device of the three request message is downloaded and described from the subscription management entity The contract documents belong to the same contracted contract documents;
    所述第四请求消息携带所述第三下载口令,以使得所述终端设备从所述签约管理实体获得所述第三下载口令;或所述运营商服务器向发送所述第三请求消息的终端设备发送所述第三下载口令;The fourth request message carries the third download password, so that the terminal device obtains the third download password from the subscription management entity; or the operator server sends a terminal to send the third request message The device sends the third download password;
    所述第三下载口令用于所述终端设备再次向所述运营商服务器请求下载与所述签约文件属于相同签约的签约文件时,所述运营商服务器对所述终端设备的请求进行认证。The third download password is used by the terminal server to authenticate the request of the terminal device when the terminal device requests the operator server to download the subscription file that belongs to the same contract with the subscription file.
  4. 根据权利要求3所述的方法,其特征在于,所述方法还包括:The method of claim 3, wherein the method further comprises:
    所述运营商服务器接收所述签约管理实体发送的第二确认消息,则所述运营商服务器保存所述第三下载口令并删除所述第一下载口令,所述第二确认消息为所述签约管理实体成功将与所述签约文件属于相同签约的签约文件发送至所述终端设备后发送的消息。Receiving, by the operator server, a second confirmation message sent by the subscription management entity, the operator server saves the third download password and deletes the first download password, where the second confirmation message is the subscription The management entity successfully sends a message sent by the subscription file that belongs to the same contract with the subscription file to the terminal device.
  5. 根据权利要求3或4所述的方法,其特征在于,所述第一下载口令或所述第三下载口令至少满足以下项之一:The method according to claim 3 or 4, wherein the first download password or the third download password meets at least one of the following:
    在预设时长内有效、使用的有效次数为有限次、在所述预设时长内使用的有效次数为有限次、包含签约文件的下载次数。Valid for a preset duration, the number of valid uses is finite, the number of valid uses within the preset duration is finite, and the number of downloads containing the contracted file.
  6. 一种签约文件下载的方法,其特征在于,所述方法包括:A method for downloading a contract file, characterized in that the method comprises:
    终端设备向运营商服务器发送第一请求消息,所述第一请求消息用于向所述运营商服务器请求下载签约文件,以使所述运营商服务器向签约管理实体发送第二请求消息,所述第二请求消息用于指示所述签约管理实体生成所述终端设备请求下载的签约文件;The terminal device sends a first request message to the operator server, where the first request message is used to request the operator server to download a subscription file, so that the operator server sends a second request message to the subscription management entity, The second request message is used to instruct the subscription management entity to generate a subscription file that the terminal device requests to download;
    所述终端设备获取所述运营商服务器生成的第一下载口令和接收来自所述签约管理实体的所述签约文件;Obtaining, by the terminal device, a first download password generated by the operator server and receiving the subscription file from the subscription management entity;
    所述第一下载口令用于所述终端设备在再次请求下载与所述签约文件属于相同签约的签约文件时,向所述运营商服务器请求认证。The first download password is used by the terminal device to request authentication from the operator server when requesting to download a subscription file that belongs to the same contract as the subscription file.
  7. 根据权利要求6所述的方法,其特征在于,所述方法还包括:The method of claim 6 wherein the method further comprises:
    所述终端设备向所述运营商服务器发送携带第二下载口令的第三请求消息,所述第三请求消息用于向所述运营商服务器请求下载与所述签约文件属于相同签约的签约文件; The terminal device sends a third request message carrying a second download password to the operator server, where the third request message is used to request the carrier server to download a subscription file that belongs to the same contract with the subscription file;
    当所述第二下载口令与所述第一下载口令相同或相对应时,则所述运营商服务器对所述第三请求消息认证通过,在认证通过后,所述终端设备获取所述运营商服务器生成的第三下载口令和接收来自所述签约管理实体的与所述签约文件属于相同签约的签约文件,所述第三下载口令用于所述终端设备在再次向所述运营商服务器请求下载与所述签约文件属于相同签约的签约文件时,向所述运营商服务器请求认证。When the second download password is the same as or corresponds to the first download password, the operator server authenticates the third request message, and after the authentication is passed, the terminal device acquires the operator. a third download password generated by the server and a subscription file from the contract management entity that belongs to the same contract as the subscription file, and the third download password is used by the terminal device to request download from the operator server again. When the contract file belongs to the same contracted contract file, the server is requested to perform authentication.
  8. 根据权利要求7所述的方法,其特征在于,所述第一下载口令或所述第三下载口令由所述终端设备从所述运营商服务器或签约管理实体获取。The method according to claim 7, wherein the first download password or the third download password is acquired by the terminal device from the operator server or a contract management entity.
  9. 根据权利要求7或8所述的方法,其特征在于,所述方法还包括:The method according to claim 7 or 8, wherein the method further comprises:
    所述终端设备将本地保存的所述第一下载口令替换为所述第三下载口令。The terminal device replaces the locally saved first download password with the third download password.
  10. 根据权利要求7至9任一所述的方法,其特征在于,所述第一下载口令或所述第三下载口令至少满足以下项之一:The method according to any one of claims 7 to 9, wherein the first download password or the third download password meets at least one of the following:
    在预设时长内有效、使用的有效次数为有限次、在所述预设时长内、使用的有效次数为有限次、包含签约文件的下载次数。Valid for a preset duration, the number of valid uses is finite, within the preset duration, the number of valid uses is finite, and the number of downloads containing the contracted file.
  11. 一种下载签约文件的方法,其特征在于,所述方法包括:A method for downloading a subscription file, the method comprising:
    签约管理实体接收运营商服务器发送的第二请求消息,所述第二请求消息用于指示所述签约管理实体生成终端设备请求下载的签约文件,所述第二请求消息为所述运营商服务器在接收到所述终端设备发送的第一请求消息后向所述签约管理实体发出,其中,所述第一请求消息用于向所述运营商服务器请求下载所述签约文件;The subscription management entity receives a second request message sent by the operator server, where the second request message is used to indicate that the subscription management entity generates a subscription file that the terminal device requests to download, and the second request message is that the carrier server is After receiving the first request message sent by the terminal device, sending the first request message to the subscription management entity, where the first request message is used to request the carrier server to download the subscription file;
    所述第二请求消息携带所述运营商服务器生成的第一下载口令;The second request message carries a first download password generated by the operator server;
    所述签约管理实体根据所述第二请求消息生成所述签约文件,并将所述签约文件和所述第一下载口令发送至所述终端设备,所述第一下载口令用于终端设备在再次向所述运营商服务器请求下载与所述签约文件属于相同签约的签约文件时,向所述运营商服务器请求进行认证。The contract management entity generates the subscription file according to the second request message, and sends the subscription file and the first download password to the terminal device, where the first download password is used by the terminal device again. When the operator server is requested to download a subscription file that belongs to the same contract as the subscription file, the operator server is requested to perform authentication.
  12. 根据权利要求11所述的方法,其特征在于,所述方法还包括:The method of claim 11 wherein the method further comprises:
    所述签约管理实体接收所述运营商服务器发送的携带第三下载口令的第四请求消息,所述第三下载口令为所述运营商服务器对所述第三请求消息认证成功后生成的下载口令; The subscription management entity receives a fourth request message that is sent by the operator server and carries a third download password, where the third download password is a download password generated after the operator server successfully authenticates the third request message. ;
    所述签约管理实体根据所述第四请求消息的指示获取终端设备请求下载的与所述签约文件属于相同签约的签约文件,并将所述第三下载口令,以及与所述签约文件属于相同签约的签约文件发送给所述请求下载与所述签约文件属于相同签约的签约文件的终端设备;The subscription management entity acquires, according to the instruction of the fourth request message, a subscription file that the terminal device requests to download that belongs to the same contract as the subscription file, and the third download password and the same contract with the subscription file The contract file is sent to the terminal device requesting to download a contract file that belongs to the same contract as the contract file;
    所述第三下载口令用于终端设备再次请求下载与所述签约文件属于相同签约的签约文件时,终端设备向所述运营商服务器请求认证。The third download password is used by the terminal device to request authentication from the operator server when the terminal device requests to download the subscription file that belongs to the same contract as the subscription file.
  13. 根据权利要求12所述的方法,其特征在于,所述第一下载口令或所述第三下载口令至少满足以下项之一:The method of claim 12, wherein the first download password or the third download password meets at least one of:
    在预设时长内有效、使用的有效次数为有限次、在所述预设时长内、使用的有效次数为有限次、包含签约文件的下载次数。Valid for a preset duration, the number of valid uses is finite, within the preset duration, the number of valid uses is finite, and the number of downloads containing the contracted file.
  14. 一种下载签约文件的方法,其特征在于,包括:A method for downloading a contract file, comprising:
    签约管理实体接收运营商服务器发送的第一请求消息,根据所述第一请求消息生成终端设备请求下载的签约文件,所述第一请求消息为所述运营商服务器在接收到终端设备的第一下载请求消息后向所述签约管理实体发出,其中,所述第一下载请求消息用于向所述运营商服务器请求下载签约文件;The subscription management entity receives the first request message sent by the operator server, and generates a subscription file that the terminal device requests to download according to the first request message, where the first request message is the first time that the operator server receives the terminal device. After the download request message is sent to the subscription management entity, the first download request message is used to request the carrier server to download the subscription file;
    所述签约管理实体接收所述终端设备发送的第二请求消息后,生成第一下载口令,所述第二请求消息用于请求下载所述签约文件;所述签约管理实体将所述第一下载口令和所述签约文件发送至所述终端设备,所述第一下载口令用于所述终端设备在再次请求下载与所述签约文件属于相同签约的签约文件时,所述签约管理实体对所述终端设备的请求进行认证。After receiving the second request message sent by the terminal device, the subscription management entity generates a first download password, where the second request message is used to request to download the subscription file; the subscription management entity sends the first download The password and the subscription file are sent to the terminal device, and the first download password is used by the subscription management entity to the subscription device when the terminal device requests to download the subscription file that belongs to the same contract with the subscription file again. The terminal device requests authentication.
  15. 根据权利要求14所述的方法,其特征在于,所述方法还包括:The method of claim 14, wherein the method further comprises:
    所述签约管理实体接收所述运营商服务器发送的第三请求消息,并根据所述第三请求消息获取与所述签约文件属于相同签约的签约文件;Receiving, by the subscription management entity, a third request message sent by the operator server, and acquiring, according to the third request message, a subscription file that belongs to the same contract with the subscription file;
    所述签约管理实体接收终端设备发送的第四请求消息,所述第四请求消息携带第二下载口令;Receiving, by the subscription management entity, a fourth request message sent by the terminal device, where the fourth request message carries a second download password;
    所述签约管理实体对所述第四请求消息进行认证,当所述第二下载口令与所述第一下载口令相同或相对应时,则认证成功;The subscription management entity authenticates the fourth request message, and when the second download password is the same as or corresponds to the first download password, the authentication succeeds;
    在认证成功后,所述签约管理实体生成第三下载口令,并将所述第三下载口令和所述与所述签约文件属于相同签约的签约文件发送至所述发出第四请 求消息的终端设备,所述第三下载口令用于在所述终端设备再次请求下载与所述签约文件属于相同签约的签约文件时,所述签约管理实体对所述终端设备进行认证。After the authentication succeeds, the subscription management entity generates a third download password, and sends the third download password and the subscription file that belongs to the same contract with the subscription file to the fourth request. And the third download password is used by the subscription management entity to authenticate the terminal device when the terminal device requests to download the subscription file that belongs to the same contract with the subscription file.
  16. 根据权利要求15所述的方法,其特征在于,所述签约管理实体对所述第四请求消息进行认证,包括以下之一:The method according to claim 15, wherein the subscription management entity authenticates the fourth request message, including one of the following:
    所述签约管理实体使用本地保存的所述第一下载口令对所述第四请求消息中的第二下载口令进行认证;The subscription management entity authenticates the second download password in the fourth request message by using the locally saved first download password;
    或,所述第三请求消息携带来自所述签约管理实体的所述第一下载口令,所述签约管理实体使用所述第三请求消息中携带的所述第一下载口令,对所述第四请求消息中的第二下载口令进行认证。Or the third request message carries the first download password from the subscription management entity, and the subscription management entity uses the first download password carried in the third request message to the fourth The second download password in the request message is authenticated.
  17. 根据权利要求15或16所述的方法,其特征在于,所述方法还包括以下之一:The method according to claim 15 or 16, wherein the method further comprises one of the following:
    所述签约管理实体将本地保存的所述第一下载口令更新为所述第三下载口令;The subscription management entity updates the locally saved first download password to the third download password;
    或,所述签约管理实体将所述第三下载口令发送给所述运营商服务器,以使所述运营商服务器将本地保存的第一下载口令更新为所述第三下载口令。Or the contract management entity sends the third download password to the operator server, so that the operator server updates the locally saved first download password to the third download password.
  18. 根据权利要求15至17任一所述的方法,其特征在于,所述第一下载口令或所述第三下载口令至少满足以下之一:The method according to any one of claims 15 to 17, wherein the first download password or the third download password satisfies at least one of the following:
    在预设时长内有效、使用的有效次数为有限次、在所述预设时长内、使用的有效次数为有限次、包含签约文件的下载次数。Valid for a preset duration, the number of valid uses is finite, within the preset duration, the number of valid uses is finite, and the number of downloads containing the contracted file.
  19. 根据权利要求14所述的方法,其特征在于,所述第二请求消息携带第四下载口令,所述第四下载口令为所述签约管理实体在所述终端设备请求签约之前为所述终端设备生成;The method according to claim 14, wherein the second request message carries a fourth download password, and the fourth download password is that the subscription management entity is the terminal device before the terminal device requests to sign a contract. generate;
    所述生成所述第一下载口令,包括:The generating the first download password includes:
    所述签约管理实体验证所述第四下载口令,在验证通过后,生成所述第一下载口令;The subscription management entity verifies the fourth download password, and after the verification is passed, generates the first download password;
    所述生成所述第一下载口令之后,所述方法还包括:After the generating the first download password, the method further includes:
    所述签约管理实体将所保存的所述第四下载口令替换为所述第一下载口令; The subscription management entity replaces the saved fourth download password with the first download password;
    或者,所述签约管理实体将所述第一下载口令发送给所述运营商服务器,以使得所述运营商服务器将本地保存的所述第四下载口令替换为所述第一下载口令。Alternatively, the subscription management entity sends the first download password to the operator server, so that the operator server replaces the locally saved fourth download password with the first download password.
  20. 一种下载签约文件的方法,其特征在于,包括:A method for downloading a contract file, comprising:
    运营商服务器接收终端设备的第一下载请求消息,所述第一下载请求消息用于向所述运营商服务器请求下载签约文件;Receiving, by the operator server, a first download request message of the terminal device, where the first download request message is used to request the carrier server to download the subscription file;
    所述运营商服务器向签约管理实体发送第一请求消息,所述第一请求消息用于指示所述签约管理实体生成所述终端设备请求下载的签约文件;The operator server sends a first request message to the subscription management entity, where the first request message is used to instruct the subscription management entity to generate a subscription file that the terminal device requests to download;
    所述运营商服务器接收所述签约管理实体发送的第一下载口令,并保存所述第一下载口令;所述第一下载口令为所述签约管理实体接收到所述终端设备发送的第二请求消息后生成的第一下载口令,所述第二请求消息用于请求下载所述签约文件;Receiving, by the operator server, the first download password sent by the subscription management entity, and saving the first download password; the first download password is a second request sent by the subscription management entity to the terminal device a first download password generated after the message, the second request message being used to request to download the subscription file;
    所述第一下载口令用于在所述终端设备再次向所述运营商服务器请求下载与所述签约文件属于相同签约的签约文件时,所述签约管理实体对所述终端设备的再次请求进行认证。The first download password is used to authenticate the re-request of the terminal device when the terminal device requests the operator server to download a subscription file that belongs to the same contract as the subscription file. .
  21. 根据权利要求20所述的方法,其特征在于,所述方法还包括:The method of claim 20, wherein the method further comprises:
    所述运营商服务器接收终端设备发送的第二下载请求消息,所述第二下载请求用于请求下载与所述签约文件属于相同签约的签约文件;Receiving, by the operator server, a second download request message sent by the terminal device, where the second download request is used to request to download a subscription file that belongs to the same contract with the subscription file;
    所述运营商服务器发送第三请求消息至所述签约管理实体,所述第三请求消息用于指示所述签约管理实体获取与所述签约文件属于相同签约的签约文件;The operator server sends a third request message to the subscription management entity, where the third request message is used to instruct the subscription management entity to acquire a subscription file that belongs to the same contract with the subscription file;
    所述运营商服务器接收所述签约管理实体发送的第三下载口令,并将本地保存的所述第一下载口令更新为所述第三下载口令;所述第三下载口令为所述签约管理实体对所述终端设备发送的第四请求消息认证成功后生成的下载口令,所述第三下载口令用于所述终端设备在再次请求下载与所述签约文件属于相同签约的签约文件时,所述签约管理实体对所述终端设备的请求进行认证。Receiving, by the operator server, a third download password sent by the subscription management entity, and updating the locally saved first download password to the third download password; the third download password being the subscription management entity a download password generated after the fourth request message sent by the terminal device is successfully authenticated, and the third download password is used by the terminal device when requesting to download a subscription file that belongs to the same contract with the subscription file again. The contract management entity authenticates the request of the terminal device.
  22. 根据权利要求21所述的方法,其特征在于,所述第三请求消息携带来自所述签约管理实体的所述第一下载口令,所述第三请求消息还用于所述签约管理实体在接收所述终端设备发送的第四请求消息之后,使用所述第三请求 消息携带的所述第一下载口令,对所述第四请求消息进行认证。The method according to claim 21, wherein the third request message carries the first download password from the subscription management entity, and the third request message is further used by the subscription management entity to receive After the fourth request message sent by the terminal device, using the third request And the first download password carried by the message, and the fourth request message is authenticated.
  23. 根据权利要求20所述的方法,其特征在于,所述运营商服务器接收所述签约管理实体发送的第一下载口令之前,所述方法还包括:The method according to claim 20, wherein before the operator server receives the first download password sent by the subscription management entity, the method further includes:
    所述运营商服务器从所述签约管理实体获取第四下载口令,并将所述第四下载口令发送至所述终端设备;The operator server acquires a fourth download password from the subscription management entity, and sends the fourth download password to the terminal device;
    所述保存所述第一下载口令包括:The saving the first download password comprises:
    所述运营商服务器将所述第四下载口令替换为所述第一下载口令。The operator server replaces the fourth download password with the first download password.
  24. 一种下载签约文件的方法,其特征在于,包括:A method for downloading a contract file, comprising:
    终端设备向所述运营商服务器发送第一下载请求,所述第一下载请求消息用于向所述运营商服务器申请签约,以及请求下载签约文件;The terminal device sends a first download request to the operator server, where the first download request message is used to apply for a subscription to the operator server, and request to download a subscription file;
    所述终端设备向签约管理实体发送第二请求消息,所述第二请求消息用于向所述签约管理实体请求下载签约文件;Sending, by the terminal device, a second request message to the subscription management entity, where the second request message is used to request the subscription management entity to download the subscription file;
    所述终端设备接收来自所述签约管理实体的第一下载口令和所述签约文件,所述第一下载口令为签约管理实体生成;Receiving, by the terminal device, a first download password and the subscription file from the subscription management entity, where the first download password is generated by a subscription management entity;
    所述第一下载口令用于所述终端设备再次请求下载与所述签约文件属于相同签约的签约文件时,所述终端设备向所述签约管理实体请求认证。The first download password is used by the terminal device to request authentication from the subscription management entity when the terminal device requests to download a subscription file that belongs to the same contract as the subscription file.
  25. 根据权利要求24所述的方法,其特征在于,所述方法还包括:The method of claim 24, wherein the method further comprises:
    所述终端设备向所述运营商服务器发送第二下载请求消息,所述第二下载请求消息用于向所述运营商服务器请求下载与所述签约文件属于相同签约的签约文件;The terminal device sends a second download request message to the operator server, where the second download request message is used to request the carrier server to download a subscription file that belongs to the same contract with the subscription file;
    所述终端设备向所述签约管理实体发送携带第二下载口令的第四请求消息;Transmitting, by the terminal device, a fourth request message carrying a second download password to the subscription management entity;
    所述终端设备接收所述签约管理实体发送的第三下载口令和所述与所述签约文件属于相同签约的签约文件,所述第三下载口令为所述签约管理实体对所述终端设备发送的第四请求消息认证通过后所生成;Receiving, by the terminal device, a third download password sent by the subscription management entity and the subscription file that belongs to the same subscription as the subscription file, where the third download password is sent by the subscription management entity to the terminal device. The fourth request message is generated after the authentication is passed;
    所述第三下载口令用于所述终端设备再次向所述运营商服务器请求下载与所述签约文件属于相同签约的签约文件时,所述终端设备向所述签约管理实体请求认证。When the terminal device requests the terminal server to download the subscription file that belongs to the same contract with the subscription file, the terminal device requests the subscription management entity to request authentication.
  26. 根据权利要求25所述的方法,其特征在于,所述方法还包括: The method of claim 25, wherein the method further comprises:
    所述终端设备将本地保存的所述第一下载口令替换为所述第三下载口令。The terminal device replaces the locally saved first download password with the third download password.
  27. 根据权利要求25或26所述的方法,其特征在于,所述第一下载口令或所述第二下载口令至少满足以下项之一:The method according to claim 25 or 26, wherein the first download password or the second download password satisfies at least one of the following:
    在预设时长内有效、使用的有效次数为有限次、在所述预设时长内、使用的有效次数为有限次、包含签约文件的下载次数。Valid for a preset duration, the number of valid uses is finite, within the preset duration, the number of valid uses is finite, and the number of downloads containing the contracted file.
  28. 根据权利要求24所述的方法,其特征在于,所述第二请求消息携带来自所述签约管理实体的第四下载口令,所述第四下载口令用于所述签约管理实体在生成所述第一下载口令之前,验证所述第二请求消息;The method according to claim 24, wherein said second request message carries a fourth download password from said subscription management entity, said fourth download password being used by said subscription management entity to generate said Verifying the second request message before downloading the password;
    所述终端设备接收第一下载口令和所述签约文件之后,所述方法还包括:After the terminal device receives the first download password and the subscription file, the method further includes:
    所述终端设备将所保存的所述第四下载口令替换为所述第一下载口令。The terminal device replaces the saved fourth download password with the first download password.
  29. 一种下载签约文件的方法,其特征在于,所述方法包括:A method for downloading a subscription file, the method comprising:
    运营商服务器接收终端设备发送的第一请求消息,所述第一请求消息用于请求下载签约文件;Receiving, by the operator server, a first request message sent by the terminal device, where the first request message is used to request to download the subscription file;
    所述运营商服务器根据所述第一请求消息中携带的已申请签约的信息,确定所述第一请求消息请求下载的签约文件为已申请签约的签约文件,则向签约管理实体发送第二请求消息,所述第二请求消息用于指示所述签约管理实体获取所述签约文件。Determining, by the operator server, that the subscription file requested to be downloaded by the first request message is a subscription file that has been requested for signing, according to the information about the subscribed information carried in the first request message, sending a second request to the subscription management entity. The message, the second request message is used to instruct the subscription management entity to acquire the subscription file.
  30. 根据权利要求29的方法,其特征在于,所述已申请签约的信息包含所述已申请签约对应的用户标识或所述已申请签约已分发的签约文件的签约文件标识或所述已申请签约对应的下载口令。The method according to claim 29, wherein the information that has been applied for the contract includes the user identifier corresponding to the applied for the contract, or the contracted document identifier of the contracted document that has been applied for the contracted contract, or the signed application corresponding to the contracted document. Download password.
  31. 根据权利要求30所述的方法,其特征在于,所述第一请求消息还携带所述终端设备的嵌入式通用集成电路卡eUICC标识;The method according to claim 30, wherein the first request message further carries an embedded universal integrated circuit card eUICC identifier of the terminal device;
    在确定所述第一请求消息请求下载的签约文件为已申请签约的签约文件后,所述方法还包括:After determining that the first request message requests the downloaded subscription file to be the contracted file that has been applied for, the method further includes:
    在确定所述eUICC标识与所保存的所述申请签约对应的eUICC标识相同时,所述第二请求消息还携带重下载指示信息和所述签约文件标识,所述重下载指示信息用于指示所述签约管理实体根据所述签约文件标识关联到所述已申请签约已分发的签约文件。 When the eUICC identifier is determined to be the same as the eUICC identifier corresponding to the saved application subscription, the second request message further includes re-download indication information and the subscription file identifier, where the re-download indication information is used to indicate The contract management entity is associated with the contracted document that has been applied for the contracted contract according to the contract file identifier.
  32. 根据权利要求30所述的方法,其特征在于,所述第一请求消息还携带所述终端设备的eUICC标识;The method according to claim 30, wherein the first request message further carries an eUICC identifier of the terminal device;
    在确定所述第一请求消息请求下载的签约文件为已申请签约的签约文件后,所述方法还包括:After determining that the first request message requests the downloaded subscription file to be the contracted file that has been applied for, the method further includes:
    在确定所述eUICC标识与所保存的所述已申请签约对应的eUICC标识相同时,所述第二请求消息还携带所述已申请签约已分发的签约文件对应的第一签约文件信息,所述第一签约文件信息包含所述已申请签约已分发的签约文件的根密钥信息,所述第一签约文件信息用于所述签约文件管理实体生成所述终端设备请求下载的所述签约文件。When the eUICC identifier is determined to be the same as the saved eUICC identifier corresponding to the saved application subscription, the second request message further carries the first subscription file information corresponding to the subscription file that has been applied for the contracted distribution, The first subscription file information includes the root key information of the subscription file that has been applied for the subscription, and the first subscription file information is used by the subscription file management entity to generate the subscription file that the terminal device requests to download.
  33. 根据权利要求29至32任一所述的方法,其特征在于,所述第一请求消息还携带所述终端设备的eUICC标识;The method according to any one of claims 29 to 32, wherein the first request message further carries an eUICC identifier of the terminal device;
    在确定所述第一请求消息请求下载的签约文件为已申请签约的签约文件后,所述方法还包括:After determining that the first request message requests the downloaded subscription file to be the contracted file that has been applied for, the method further includes:
    在确定所述eUICC标识与所保存的所述已申请签约对应的eUICC标识不同时,所述第二请求消息还携带第二签约文件信息,所述第二签约文件信息用于所述签约文件管理实体生成所述终端设备请求下载的所述签约文件。When the eUICC identifier is determined to be different from the saved eUICC identifier, the second request message further carries the second subscription file information, where the second subscription file information is used for the subscription file management. The entity generates the subscription file that the terminal device requests to download.
  34. 一种签约文件下载的方法,其特征在于,包括:A method for downloading a contract file, characterized in that it comprises:
    签约管理实体接收运营商服务器发送的第二请求消息,根据所述第二请求消息获取终端设备请求下载的签约文件,所述第二请求消息为所述运营商服务器在接收到第一请求消息,根据所述第一请求消息确定所述第一请求消息为请求下载已申请签约的签约文件后所发送的消息,所述第一请求消息携带已申请签约的信息;Receiving, by the subscription management entity, a second request message sent by the operator server, acquiring, according to the second request message, a subscription file that the terminal device requests to download, where the second request message is that the operator server receives the first request message, Determining, according to the first request message, that the first request message is a message that is sent after requesting to download a subscription file that has been applied for, and the first request message carries information that has been requested to be signed;
    所述签约管理实体将所述签约文件发送至所述终端设备。The subscription management entity sends the subscription file to the terminal device.
  35. 根据权利要求34的方法,其特征在于,所述已申请签约的信息包含所述已申请签约对应的用户标识或所述已申请签约已分发的签约文件对应的签约文件标识或所述已申请签约对应的下载口令。The method according to claim 34, wherein the information that has been applied for the contract includes the user identifier corresponding to the applied for the contract, or the contract document identifier corresponding to the contracted document that has been applied for the contract, or the signed application The corresponding download password.
  36. 根据权利要求35所述的方法,其特征在于,所述第二请求消息还携带重下载指示信息和所述签约文件标识,所述签约管理实体根据所述第二请求 消息获取终端设备请求下载的签约文件,包括:The method according to claim 35, wherein the second request message further carries re-download indication information and the subscription file identifier, and the subscription management entity is configured according to the second request The message acquisition terminal requests the downloaded subscription file, including:
    所述签约管理实体根据所述签约文件的文件标识关联到所述已申请签约已分发的签约文件。The contract management entity is associated with the signed document that has been applied for the contract according to the file identifier of the contract file.
  37. 根据权利要求36所述的方法,其特征在于,所述第二请求消息还携带所述已申请签约已分发的签约文件对应的第一签约文件信息,所述签约管理实体根据所述第二请求消息获取终端设备请求下载的签约文件,包括:The method according to claim 36, wherein the second request message further carries the first subscription file information corresponding to the subscription file that has been applied for the contracted distribution, and the subscription management entity according to the second request The message acquisition terminal requests the downloaded subscription file, including:
    所述签约管理实体使用所述第一签约文件信息生成所述终端设备请求下载的签约文件。The contract management entity uses the first subscription file information to generate a subscription file that the terminal device requests to download.
  38. 根据权利要求36或37所述的方法,其特征在于,所述第二请求消息还携带第二签约文件信息,所述签约管理实体根据所述第二请求消息获取终端设备请求下载的签约文件,包括:The method according to claim 36 or 37, wherein the second request message further carries the second subscription file information, and the subscription management entity acquires the subscription file requested by the terminal device for downloading according to the second request message. include:
    所述签约管理实体使用所述第二签约文件信息生成所述终端设备请求下载的的签约文件。The contract management entity uses the second subscription file information to generate a subscription file that the terminal device requests to download.
  39. 一种运营商服务器,其特征在于,所述运营商服务器包括:An operator server, wherein the operator server comprises:
    接收模块,用于接收终端设备发送的第一请求消息,所述第一请求消息用于向运营商服务器请求下载签约文件;a receiving module, configured to receive a first request message sent by the terminal device, where the first request message is used to request the operator server to download the subscription file;
    处理模块,用于生成第一下载口令;a processing module, configured to generate a first download password;
    发送模块,用于向签约管理实体发送第二请求消息,所述第二请求消息用于指示所述签约管理实体生成所述终端设备请求下载的签约文件,以使得所述终端设备从所述签约管理实体下载所述签约文件;a sending module, configured to send a second request message to the subscription management entity, where the second request message is used to instruct the subscription management entity to generate a subscription file that the terminal device requests to download, so that the terminal device receives the subscription from the terminal device The management entity downloads the contract document;
    所述第二请求消息携带所述第一下载口令,以使得所述终端设备从所述签约管理实体获得所述第一下载口令;或者通过所述发送模块向所述终端设备发送所述第一下载口令;The second request message carries the first download password, so that the terminal device obtains the first download password from the subscription management entity; or sends the first to the terminal device by using the sending module. Download password
    所述第一下载口令用于所述终端设备再次向所述运营商服务器请求下载与所述签约文件属于相同签约的签约文件时,所述处理模块对所述终端设备的再次请求进行认证。When the first download password is used by the terminal device to download the subscription file that belongs to the same contract with the subscription file, the processing module authenticates the re-request of the terminal device.
  40. 根据权利要求39所述的运营商服务器,其特征在于,所述处理模块还用于:The operator server according to claim 39, wherein the processing module is further configured to:
    通过所述接收模块接收所述签约管理实体发送的第一确认消息,则保存所 述第一下载口令,所述第一确认消息为所述签约管理实体成功将所述签约文件发送至所述终端设备后发送的消息,所述第一确认消息用于指示所述终端设备成功下载所述签约文件。Receiving, by the receiving module, the first confirmation message sent by the subscription management entity, and saving the location a first downloading password, where the first confirmation message is a message that is sent by the subscription management entity after successfully sending the subscription file to the terminal device, where the first confirmation message is used to indicate that the terminal device successfully downloads The contracted document.
  41. 根据权利要求39或40所述的运营商服务器,其特征在于,所述处理模块还用于:The operator server according to claim 39 or 40, wherein the processing module is further configured to:
    通过所述接收模块接收所述终端设备发送的第三请求消息,所述第三请求消息携带第二下载口令,所述第三请求消息用于向所述签约管理实体请求下载与所述签约文件属于相同签约的签约文件;Receiving, by the receiving module, a third request message sent by the terminal device, where the third request message carries a second download password, where the third request message is used to request the subscription management entity to download and sign the file Contract documents belonging to the same contract;
    使用所述第一下载口令对所述第三请求消息进行认证;The third request message is authenticated using the first download password;
    当所述第二下载口令与所述第一下载口令相同或相对应时,则认证成功,认证成功后,生成第三下载口令;When the second download password is the same as or corresponds to the first download password, the authentication succeeds, and after the authentication succeeds, the third download password is generated;
    通过所述发送模块向所述签约管理实体发送第四请求消息,所述第四请求消息用于指示所述签约管理实体获取与所述签约文件属于相同签约的签约文件,以使得发送所述第三请求消息的终端设备从所述签约管理实体下载与所述签约文件属于相同签约的签约文件;Transmitting, by the sending module, a fourth request message to the subscription management entity, where the fourth request message is used to instruct the subscription management entity to acquire a subscription file that belongs to the same contract with the subscription file, so that the first The terminal device of the three request message downloads, from the contract management entity, a contract file that belongs to the same contract with the contract file;
    所述第四请求消息携带所述第三下载口令,以使得所述终端设备从所述签约管理实体获得所述第三下载口令;或通过所述发送模块向发送所述第三请求消息的终端设备发送所述第三下载口令;The fourth request message carries the third download password, so that the terminal device obtains the third download password from the subscription management entity; or sends the third request message to the terminal by using the sending module. The device sends the third download password;
    所述第三下载口令用于所述终端设备再次向所述运营商服务器请求下载与所述签约文件属于相同签约的签约文件时,所述处理模块对所述终端设备的请求进行认证。When the terminal device requests the terminal server to download the subscription file that belongs to the same contract with the subscription file, the processing module authenticates the request of the terminal device.
  42. 根据权利要求41所述的运营商服务器,其特征在于,所述处理模块还用于:The operator server according to claim 41, wherein the processing module is further configured to:
    通过所述接收模块接收所述签约管理实体发送的第二确认消息,则保存所述第三下载口令并删除所述第一下载口令,所述第一确认消息为所述签约管理实体成功将与所述签约文件属于相同签约的签约文件发送至所述终端设备后发送的消息,所述第二确认消息用于指示终端设备成功下载的与所述签约文件属于相同签约的签约文件。Receiving, by the receiving module, the second confirmation message sent by the subscription management entity, saving the third download password and deleting the first download password, where the first confirmation message is that the subscription management entity successfully The subscription file belongs to a message sent by the same contracted subscription file to the terminal device, and the second confirmation message is used to indicate that the terminal device successfully downloads the subscription file that belongs to the same contract with the subscription file.
  43. 根据权利要求41或42所述的运营商服务器,其特征在于,所述第一 下载口令或所述第三下载口令至少满足以下项之一:An operator server according to claim 41 or 42, wherein said first The download password or the third download password satisfies at least one of the following:
    在预设时长内有效、使用的有效次数为有限次、在所述预设时长内使用的有效次数为有限次、包含签约文件的下载次数。Valid for a preset duration, the number of valid uses is finite, the number of valid uses within the preset duration is finite, and the number of downloads containing the contracted file.
  44. 一种终端设备,其特征在于,所述终端设备包括:A terminal device, the terminal device includes:
    发送模块,用于向运营商服务器发送第一请求消息,所述第一请求消息用于向所述运营商服务器请求下载签约文件,以使所述运营商服务器向签约管理实体发送第二请求消息,所述第二请求消息用于指示所述签约管理实体生成所述终端设备请求下载的签约文件;a sending module, configured to send a first request message to the operator server, where the first request message is used to request the carrier server to download a subscription file, so that the operator server sends a second request message to the subscription management entity. The second request message is used to instruct the subscription management entity to generate a subscription file that the terminal device requests to download;
    接收模块,用于获取所述运营商服务器生成的第一下载口令和接收来自所述签约管理实体的所述签约文件;a receiving module, configured to acquire a first download password generated by the operator server, and receive the subscription file from the subscription management entity;
    所述第一下载口令用于所述终端设备在再次请求下载与所述签约文件属于相同签约的签约文件时,通过所述发送模块向所述运营商服务器请求认证。The first download password is used by the terminal device to request authentication from the server by using the sending module when requesting to download a subscription file that belongs to the same contract as the subscription file.
  45. 根据权利要求44所述的终端设备,其特征在于,所述发送模块还用于:The terminal device according to claim 44, wherein the sending module is further configured to:
    向所述运营商服务器发送携带第二下载口令的第三请求消息,所述第三请求消息用于向所述运营商服务器请求下载与所述签约文件属于相同签约的签约文件;Sending, by the operator server, a third request message carrying a second download password, where the third request message is used to request, from the operator server, to download a subscription file that belongs to the same contract with the subscription file;
    所述接收模块还用于:当所述第二下载口令与所述第一下载口令相同或相对应时,则所述运营商服务器对所述第三请求消息认证通过,在认证通过后,获取所述运营商服务器生成的第三下载口令和接收来自所述签约管理实体的与所述签约文件属于相同签约的签约文件;The receiving module is further configured to: when the second download password is the same as or corresponding to the first download password, the operator server authenticates the third request message, and after the authentication is passed, obtains a third download password generated by the operator server and a subscription file received from the contract management entity that belongs to the same contract as the contract file;
    所述第三下载口令用于所述终端设备再次向所述运营商服务器请求下载与所述签约文件属于相同签约的签约文件时,通过所述发送模块向所述运营商服务器请求认证。And the third download password is used by the sending module to request authentication from the operator server when the terminal device requests the operator server to download the subscription file that belongs to the same contract with the subscription file.
  46. 根据权利要求45所述的终端设备,其特征在于,所述第一下载口令或所述第三下载口令由所述终端设备从所述运营商服务器或签约管理实体获取。The terminal device according to claim 45, wherein the first download password or the third download password is acquired by the terminal device from the operator server or a contract management entity.
  47. 根据权利要求45或46所述的终端设备,其特征在于,所述终端设备还包括: The terminal device according to claim 45 or 46, wherein the terminal device further comprises:
    处理模块,用于将本地保存的所述第一下载口令替换为所述接收模块获取的所述第三下载口令。And a processing module, configured to replace the locally saved first download password with the third download password acquired by the receiving module.
  48. 根据权利要求46或47所述的终端设备,其特征在于,所述第一下载口令或所述第三下载口令至少满足以下项之一:The terminal device according to claim 46 or 47, wherein the first download password or the third download password satisfies at least one of the following:
    在预设时长内有效、使用的有效次数为有限次、在所述预设时长内、使用的有效次数为有限次、包含签约文件的下载次数。Valid for a preset duration, the number of valid uses is finite, within the preset duration, the number of valid uses is finite, and the number of downloads containing the contracted file.
  49. 一种签约管理实体,其特征在于,所述签约管理实体包括:A contract management entity, characterized in that the contract management entity comprises:
    接收模块,用于接收运营商服务器发送的第二请求消息,所述第二请求消息用于指示所述签约管理实体生成终端设备请求下载的签约文件,所述第二请求消息为所述运营商服务器在接收到所述终端设备发送的第一请求消息后向所述签约管理实体发出,其中,所述第一请求消息用于向所述运营商服务器请求下载所述签约文件;a receiving module, configured to receive a second request message sent by the operator server, where the second request message is used to instruct the signing management entity to generate a subscription file that the terminal device requests to download, where the second request message is the operator After receiving the first request message sent by the terminal device, the server sends the first request message to the subscription management entity, where the first request message is used to request the carrier server to download the subscription file;
    所述第二请求消息携带所述运营商服务器生成的第一下载口令;The second request message carries a first download password generated by the operator server;
    处理模块,用于根据所述接收模块接收到的所述第二请求消息生成所述签约文件;a processing module, configured to generate the subscription file according to the second request message received by the receiving module;
    发送模块,用于将所述第一下载口令和所述处理模块生成的所述签约文件发送至所述终端设备,所述第一下载口令用于所述终端设备在再次向所述运营商服务器请求下载与所述签约文件属于相同签约的签约文件时,向所述运营商服务器请求认证。a sending module, configured to send the first download password and the subscription file generated by the processing module to the terminal device, where the first download password is used by the terminal device to the operator server again When requesting to download a contract file that belongs to the same contract as the contract file, request authentication from the operator server.
  50. 根据权利要求49所述的签约管理实体,其特征在于,所述处理模块还用于:The contract management entity according to claim 49, wherein the processing module is further configured to:
    通过所述接收模块接收所述运营商服务器发送的携带第三下载口令的第四请求消息,所述第三下载口令为所述运营商服务器对所述第三请求消息认证成功后生成的下载口令;And receiving, by the receiving module, a fourth request message that is sent by the operator server and that carries a third download password, where the third download password is a download password that is generated after the operator server successfully authenticates the third request message. ;
    根据所述第四请求消息的指示获取终端设备请求下载的与所述签约文件属于相同签约的签约文件,并通过所述发送模块将所述第三下载口令,以及与所述签约文件属于相同签约的签约文件发送给所述请求下载与所述签约文件属于相同签约的签约文件的终端设备;Acquiring, according to the instruction of the fourth request message, a subscription file that is requested by the terminal device to be downloaded and belongs to the same contract, and the third download password is signed by the sending module and belongs to the same contract with the subscription file. The contract file is sent to the terminal device requesting to download a contract file that belongs to the same contract as the contract file;
    所述第三下载口令用于终端设备再次请求下载与所述签约文件属于相同 签约的签约文件时,终端设备向所述运营商服务器请求认证。The third download password is used by the terminal device to request the download again to be the same as the subscription file. When signing the contracted file, the terminal device requests authentication from the operator server.
  51. 根据权利要求50所述的签约管理实体,其特征在于,所述第一下载口令或所述第三下载口令至少满足以下项之一:The subscription management entity according to claim 50, wherein said first download password or said third download password satisfies at least one of the following:
    在预设时长内有效、使用的有效次数为有限次、在所述预设时长内、使用的有效次数为有限次、包含签约文件的下载次数。Valid for a preset duration, the number of valid uses is finite, within the preset duration, the number of valid uses is finite, and the number of downloads containing the contracted file.
  52. 一种签约管理实体,其特征在于,所述签约管理实体包括:A contract management entity, characterized in that the contract management entity comprises:
    接收模块,用于接收运营商服务器发送的第一请求消息,所述第一请求消息为所述运营商服务器在接收到终端设备的第一下载请求消息后向所述签约管理实体发出,其中,所述第一下载请求消息用于向所述运营商服务器请求下载签约文件;a receiving module, configured to receive a first request message sent by the operator server, where the first request message is sent by the operator server to the subscription management entity after receiving the first download request message of the terminal device, where The first download request message is used to request the carrier server to download a subscription file;
    处理模块,用于根据所述接收模块接收到的所述第一请求消息生成终端设备请求下载的签约文件;a processing module, configured to generate, according to the first request message received by the receiving module, a subscription file that the terminal device requests to download;
    在所述接收模块接收到所述终端设备发送的第二请求消息后,生成第一下载口令,所述第二请求消息用于请求下载所述签约文件;After the receiving module receives the second request message sent by the terminal device, generating a first download password, where the second request message is used to request to download the subscription file;
    发送模块,用于将所述处理模块生成的所述第一下载口令和所述签约文件发送至所述终端设备,所述第一下载口令用于所述终端设备在再次请求下载与所述签约文件属于相同签约的签约文件时,所述处理模块对所述终端设备的请求进行认证。a sending module, configured to send the first download password and the subscription file generated by the processing module to the terminal device, where the first download password is used by the terminal device to request download again and the signing When the file belongs to the same contracted contract file, the processing module authenticates the request of the terminal device.
  53. 根据权利要求52所述的签约管理实体,其特征在于,所述处理模块还用于:The subscription management entity according to claim 52, wherein the processing module is further configured to:
    通过所述接收模块接收所述运营商服务器发送的第三请求消息;Receiving, by the receiving module, a third request message sent by the operator server;
    根据所述第三请求消息获取与所述签约文件属于相同签约的签约文件;Obtaining, according to the third request message, a contract file that belongs to the same contract as the contract file;
    通过所述接收模块接收终端设备发送的第四请求消息,所述第四请求消息携带第二下载口令;Receiving, by the receiving module, a fourth request message sent by the terminal device, where the fourth request message carries a second download password;
    并对所述第四请求消息进行认证,当所述第二下载口令与所述第一下载口令相同或相对应时,则认证成功;And authenticating the fourth request message, when the second download password is the same as or corresponding to the first download password, the authentication is successful;
    在认证成功后,生成第三下载口令,并通过所述发送模块将所述第三下载口令和所述与所述签约文件属于相同签约的签约文件发送至所述发出第四请求消息的终端设备,所述第三下载口令用于在所述终端设备再次请求下载与所 述签约文件属于相同签约的签约文件时,所述处理模块对所述终端设备进行认证。After the authentication succeeds, the third download password is generated, and the third download password and the subscription file that belongs to the same contract with the subscription file are sent by the sending module to the terminal device that issues the fourth request message. The third download password is used to request downloading again at the terminal device When the contract file belongs to the same contracted contract file, the processing module authenticates the terminal device.
  54. 根据权利要求53所述的签约管理实体,其特征在于,所述处理模块对所述第四请求消息进行认证,包括以下之一:The subscription management entity according to claim 53, wherein the processing module authenticates the fourth request message, including one of the following:
    使用本地保存的所述第一下载口令对所述第四请求消息中的第二下载口令进行认证;And authenticating the second download password in the fourth request message by using the locally saved first download password;
    或,所述第三请求消息携带来自所述签约管理实体的所述第一下载口令,使用所述第三请求消息中携带的所述第一下载口令,对所述第四请求消息中的第二下载口令进行认证。Or the third request message carries the first download password from the subscription management entity, and uses the first download password carried in the third request message to the first of the fourth request messages. Second, download the password for authentication.
  55. 根据权利要求53或54所述的签约管理实体,其特征在于,所述处理模块还用于执行以下步骤之一:The contract management entity according to claim 53 or 54, wherein the processing module is further configured to perform one of the following steps:
    将本地保存的所述第一下载口令更新为所述第三下载口令;Updating the locally saved first download password to the third download password;
    或,通过所述发送模块将所述第三下载口令发送给所述运营商服务器,以使所述运营商服务器将本地保存的第一下载口令更新为所述第三下载口令。Or sending, by the sending module, the third download password to the operator server, so that the operator server updates the locally saved first download password to the third download password.
  56. 根据权利要求53至55任一所述的签约管理实体,其特征在于,所述第一下载口令或所述第三下载口令至少满足以下之一:The subscription management entity according to any one of claims 53 to 55, wherein the first download password or the third download password satisfies at least one of the following:
    在预设时长内有效、使用的有效次数为有限次、在所述预设时长内、使用的有效次数为有限次、包含签约文件的下载次数。Valid for a preset duration, the number of valid uses is finite, within the preset duration, the number of valid uses is finite, and the number of downloads containing the contracted file.
  57. 根据权利要求52所述的签约管理实体,其特征在于,所述第二请求消息携带第四下载口令,所述第四下载口令为所述签约管理实体在所述终端设备请求签约之前为所述终端设备生成;The subscription management entity according to claim 52, wherein the second request message carries a fourth download password, and the fourth download password is the contract management entity before the terminal device requests to sign the contract. Terminal device generation;
    所述处理模块具体用于:The processing module is specifically configured to:
    验证所述第四下载口令,在验证通过后,生成所述第一下载口令;Verifying the fourth download password, and after the verification is passed, generating the first download password;
    所述处理模块还用于:The processing module is further configured to:
    将所保存的所述第四下载口令替换为所述第一下载口令;Replacing the saved fourth download password with the first download password;
    或者,通过所述发送模块将所述第一下载口令发送给所述运营商服务器,以使得所述运营商服务器将本地保存的所述第四下载口令替换为所述第一下载口令。Or sending, by the sending module, the first download password to the operator server, so that the operator server replaces the locally saved fourth download password with the first download password.
  58. 一种运营商服务器,其特征在于,所述运营商服务器包括: An operator server, wherein the operator server comprises:
    接收模块,用于接收终端设备的第一下载请求消息,所述第一下载请求消息用于向所述运营商服务器请求下载签约文件;a receiving module, configured to receive a first download request message of the terminal device, where the first download request message is used to request to download the subscription file from the operator server;
    发送模块,用于向签约管理实体发送第一请求消息,所述第一请求消息用于指示所述签约管理实体生成所述终端设备请求下载的签约文件;a sending module, configured to send a first request message to the subscription management entity, where the first request message is used to instruct the subscription management entity to generate a subscription file that the terminal device requests to download;
    所述接收模块还用于接收所述签约管理实体发送的第一下载口令,所述第一下载口令为所述签约管理实体接收到所述终端设备发送的第二请求消息后生成的第一下载口令,所述第二请求消息用于请求下载所述签约文件;The receiving module is further configured to receive a first download password sent by the subscription management entity, where the first download password is a first download generated by the subscription management entity after receiving the second request message sent by the terminal device a password, the second request message is used to request to download the subscription file;
    处理模块,用于保存通过所述接收模块接收到的所述第一下载口令;a processing module, configured to save the first download password received by the receiving module;
    所述第一下载口令用于所述终端设备在再次请求下载与所述签约文件属于相同签约的签约文件时,所述签约管理实体对所述终端设备进行认证。The first download password is used by the terminal management device to authenticate the terminal device when the terminal device requests to download the subscription file that belongs to the same contract with the subscription file.
  59. 根据权利要求58所述的运营商服务器,其特征在于,所述接收模块还用于:The operator server according to claim 58, wherein the receiving module is further configured to:
    接收终端设备发送的第二下载请求消息,所述第二下载请求用于请求下载与所述签约文件属于相同签约的签约文件;Receiving, by the terminal device, a second download request message, where the second download request is used to request to download a subscription file that belongs to the same contract with the subscription file;
    所述发送模块还用于:发送第三请求消息至所述签约管理实体,所述第三请求消息用于指示所述签约管理实体获取与所述签约文件属于相同签约的签约文件;The sending module is further configured to: send a third request message to the subscription management entity, where the third request message is used to instruct the subscription management entity to acquire a subscription file that belongs to the same contract with the subscription file;
    所述处理模块还用于:通过所述接收模块接收所述签约管理实体发送的第三下载口令,并将本地保存的所述第一下载口令更新为所述第三下载口令;所述第三下载口令为所述签约管理实体对所述终端设备发送的第四请求消息认证成功后生成的下载口令,所述第三下载口令用于在终端设备再次请求下载与所述签约文件属于相同签约的签约文件时,所述签约管理实体对所述终端设备的请求进行认证。The processing module is further configured to: receive, by the receiving module, a third download password sent by the subscription management entity, and update the locally saved first download password to the third download password; The download password is a download password generated after the authentication of the fourth request message sent by the subscription management entity to the terminal device is successful, and the third download password is used to request that the download and the subscription file belong to the same contract at the terminal device again. When signing the file, the contract management entity authenticates the request of the terminal device.
  60. 根据权利要求59所述的运营商服务器,其特征在于,所述第三请求消息携带所述第一下载口令,所述第三请求消息还用于所述签约管理实体在接收所述终端设备发送的第四请求消息之后,使用所述第三请求消息携带的所述第一下载口令,对所述第四请求消息进行认证。The operator server according to claim 59, wherein the third request message carries the first download password, and the third request message is further used by the subscription management entity to receive the terminal device to send After the fourth request message, the fourth request message is authenticated by using the first download password carried by the third request message.
  61. 根据权利要求59所述的运营商服务器,其特征在于,所述接收模块在接收所述签约管理实体发送的第一下载口令之前,还用于: The operator server according to claim 59, wherein the receiving module is further configured to: before receiving the first download password sent by the subscription management entity:
    从所述签约管理实体获取第四下载口令,所述第四下载口令由所述签约管理实体分配;Obtaining a fourth download password from the contract management entity, where the fourth download password is allocated by the contract management entity;
    所述处理模块还用于通过所述发送模块将所述第四下载口令发送至所述终端设备;The processing module is further configured to send the fourth download password to the terminal device by using the sending module;
    将所述第四下载口令替换为所述第一下载口令。The fourth download password is replaced with the first download password.
  62. 一种终端设备,其特征在于,所述终端设备包括:A terminal device, the terminal device includes:
    发送模块,用于向所述运营商服务器发送第一下载请求,所述第一下载请求消息用于向所述运营商服务器申请签约,以及请求下载签约文件;a sending module, configured to send a first download request to the operator server, where the first download request message is used to apply for a subscription to the operator server, and request to download a subscription file;
    所述向签约管理实体发送第二请求消息,所述第二请求消息用于向所述签约管理实体请求下载签约文件;Sending, by the subscription management entity, a second request message, where the second request message is used to request the subscription management entity to download a subscription file;
    接收模块,用于接收来自所述签约管理实体的第一下载口令和所述签约文件,所述第一下载口令为签约管理实体生成;a receiving module, configured to receive a first download password and the subscription file from the subscription management entity, where the first download password is generated by a subscription management entity;
    所述第一下载口令用于所述终端设备再次请求下载与所述签约文件属于相同签约的签约文件时,通过所述发送模块向所述签约管理实体请求认证。The first download password is used by the sending module to request authentication from the subscription management entity when the terminal device requests to download a subscription file that belongs to the same contract as the subscription file.
  63. 根据权利要求62所述的终端设备,其特征在于,所述发送模块还用于向所述运营商服务器发送第二下载请求消息,所述第二下载请求消息用于向所述运营商服务器请求下载与所述签约文件属于相同签约的签约文件;The terminal device according to claim 62, wherein the sending module is further configured to send a second download request message to the operator server, where the second download request message is used to request the operator server Downloading a contract document that belongs to the same contract as the contract document;
    向所述签约管理实体发送携带第二下载口令的第四请求消息;Sending, to the subscription management entity, a fourth request message carrying a second download password;
    所述接收模块还用于接收所述签约管理实体发送的第三下载口令和所述与所述签约文件属于相同签约的签约文件,所述第三下载口令为所述签约管理实体对所述第四请求消息认证通过后所生成;The receiving module is further configured to receive a third download password sent by the subscription management entity and the subscription file that belongs to the same contract with the subscription file, where the third download password is the subscription management entity Four request messages are generated after the authentication is passed;
    所述第三下载口令用于所述终端设备再次向所述运营商服务器请求下载与所述签约文件属于相同签约的签约文件时,通过所述发送模块向所述签约管理实体请求认证。And the third download password is used by the sending module to request authentication from the signing management entity when the terminal device requests the carrier server to download the subscription file that belongs to the same contract with the subscription file.
  64. 根据权利要求63所述的终端设备,其特征在于,所述终端设备还包括:The terminal device according to claim 63, wherein the terminal device further comprises:
    处理模块,用于将本地保存的所述第一下载口令替换为所述第三下载口令。And a processing module, configured to replace the locally saved first download password with the third download password.
  65. 根据权利要求63或64所述的终端设备,其特征在于,所述第一下载 口令或所述第二下载口令至少满足以下项之一:The terminal device according to claim 63 or 64, wherein said first download The password or the second download password satisfies at least one of the following:
    在预设时长内有效、使用的有效次数为有限次、在所述预设时长内、使用的有效次数为有限次、包含签约文件的下载次数。Valid for a preset duration, the number of valid uses is finite, within the preset duration, the number of valid uses is finite, and the number of downloads containing the contracted file.
  66. 根据权利要求62所述的终端设备,其特征在于,所述第二请求消息携带来自所述签约管理实体的第四下载口令,所述第四下载口令用于所述签约管理实体在生成所述第一下载口令之前,验证所述第二请求消息;The terminal device according to claim 62, wherein the second request message carries a fourth download password from the subscription management entity, and the fourth download password is used by the subscription management entity to generate the Verifying the second request message before the first download password;
    所述处理模块在所述接收模块接收到第一下载口令和所述签约文件之后,还用于:After the receiving module receives the first download password and the subscription file, the processing module is further configured to:
    将所保存的所述第四下载口令替换为所述第一下载口令。The saved fourth download password is replaced with the first download password.
  67. 一种运营商服务器,其特征在于,所述运营商服务器包括:An operator server, wherein the operator server comprises:
    接收模块,用于接收终端设备发送的第一请求消息,所述第一请求消息用于请求下载签约文件;a receiving module, configured to receive a first request message sent by the terminal device, where the first request message is used to request to download a subscription file;
    处理模块,用于根据所述接收模块接收到的所述第一请求消息中携带的已申请签约的信息,确定所述第一请求消息请求下载的签约文件为已申请签约的签约文件;a processing module, configured to determine, according to the information about the subscribed subscription that is carried in the first request message that is received by the receiving module, that the subscription file that is requested to be downloaded by the first request message is a subscription file that has been requested to be signed;
    发送模块,用于在所述处理模块确定所述第一请求消息请求下载的签约文件为已申请签约的签约文件时,向签约管理实体发送第二请求消息,所述第二请求消息用于指示所述签约管理实体获取所述签约文件。a sending module, configured to send a second request message to the subscription management entity, where the processing module determines that the subscription file requested to be downloaded by the first request message is a subscription file that has been subscribed for, and the second request message is used to indicate The contract management entity acquires the contract file.
  68. 根据权利要求67的运营商服务器,其特征在于,所述已申请签约的信息包含所述已申请签约对应的用户标识或所述已申请签约已分发的签约文件对应的签约文件标识或所述已申请签约对应的下载口令。The operator server according to claim 67, wherein the information that has been applied for the contract includes the user identifier corresponding to the applied for the contract or the contract file identifier corresponding to the contracted document that has been applied for the contract, or the The download password corresponding to the application for the contract.
  69. 根据权利要求68所述的运营商服务器,其特征在于,所述第一请求消息还携带所述终端设备的嵌入式通用集成电路卡eUICC标识;The operator server according to claim 68, wherein the first request message further carries an embedded universal integrated circuit card eUICC identifier of the terminal device;
    所述处理模块在确定所述第一请求消息请求下载的签约文件为已申请签约的签约文件后,还用于:The processing module is further configured to: after determining that the subscription file requested by the first request message is a contracted file that has been requested to be signed,
    在确定所述eUICC标识与所保存的所述申请签约对应的eUICC标识相同时,在所述第二请求消息中携带重下载指示信息和所述签约文件标识,所述重下载指示信息用于指示所述签约管理实体根据所述签约文件标识关联到所述 已申请签约已分发的签约文件。And when the eUICC identifier is the same as the eUICC identifier corresponding to the saved application subscription, the second request message carries the re-download indication information and the subscription file identifier, where the re-download indication information is used to indicate The contract management entity is associated with the contracting file identifier according to the Has signed up to sign the contracted documents that have been distributed.
  70. 根据权利要求68所述的运营商服务器,其特征在于,所述第一请求消息还携带所述终端设备的eUICC标识;The operator server according to claim 68, wherein the first request message further carries an eUICC identifier of the terminal device;
    所述处理模块在确定所述第一请求消息请求下载的签约文件为已申请签约的签约文件后,还用于:The processing module is further configured to: after determining that the subscription file requested by the first request message is a contracted file that has been requested to be signed,
    在确定所述eUICC标识与所保存的所述已申请签约对应的eUICC标识相同时,在所述第二请求消息中携带所述已申请签约已分发签约文件对应的第一签约文件信息,所述第一签约文件信息包含所述已申请签约已分发签约文件对应的根密钥信息,所述第一签约文件信息用于所述签约文件管理实体生成所述终端设备请求下载的所述签约文件。When it is determined that the eUICC identifier is the same as the saved eUICC identifier corresponding to the saved subscription, the second request message carries the first subscription file information corresponding to the subscribed distributed subscription file, The first subscription file information includes the root key information corresponding to the subscribed signed subscription file, and the first subscription file information is used by the subscription file management entity to generate the subscription file that the terminal device requests to download.
  71. 根据权利要求68至70任一所述的运营商服务器,其特征在于,所述第一请求消息还携带所述终端设备的eUICC标识,所述处理模块在确定所述第一请求消息请求下载的签约文件为已申请签约的签约文件后,还用于:The operator server according to any one of claims 68 to 70, wherein the first request message further carries an eUICC identifier of the terminal device, and the processing module determines that the first request message requests downloading After the signing document is the signing document that has been applied for the contract, it is also used to:
    在确定所述eUICC标识与所保存的所述已申请签约对应的eUICC标识不同时,在所述第二请求消息中携带第二签约文件信息,所述第二签约文件信息用于所述签约文件管理实体生成所述终端设备请求下载的所述签约文件。When the eUICC identifier is determined to be different from the saved eUICC identifier, the second request message carries the second subscription file information, where the second subscription file information is used for the subscription file. The management entity generates the subscription file requested by the terminal device to download.
  72. 一种签约管理实体,其特征在于,所述签约管理实体包括:A contract management entity, characterized in that the contract management entity comprises:
    接收模块,用于接收运营商服务器发送的第二请求消息;a receiving module, configured to receive a second request message sent by the operator server;
    处理模块,用于根据所述接收模块接收到的所述第二请求消息获取终端设备请求下载的签约文件,所述第二请求消息为所述运营商服务器在接收到第一请求消息,根据所述第一请求消息确定所述第一请求消息为请求下载已申请签约的签约文件后所发送的消息,所述第一请求消息携带已申请签约的信息;a processing module, configured to acquire, according to the second request message received by the receiving module, a subscription file that the terminal device requests to download, where the second request message is that the operator server receives the first request message, according to the Determining, by the first request message, that the first request message is a message sent after requesting to download a subscription file that has been applied for, and the first request message carries information that has been requested to be signed;
    发送模块,用于将所述处理模块生成的所述签约文件发送至所述终端设备。And a sending module, configured to send the subscription file generated by the processing module to the terminal device.
  73. 根据权利要求72的签约管理实体,其特征在于,所述已申请签约的信息包含所述已申请签约对应的用户标识或所述已申请签约已分发的签约文件对应的签约文件标识或所述已申请签约对应的下载口令。The contract management entity according to claim 72, wherein the information that has been applied for the contract includes the user identifier corresponding to the applied for the contract or the contract file identifier corresponding to the contracted document that has been applied for the contracted contract or the The download password corresponding to the application for the contract.
  74. 根据权利要求73所述的签约管理实体,其特征在于,所述第二请求 消息还携带重下载指示信息和所述签约文件标识,所述处理模块具体用于:A contract management entity according to claim 73, wherein said second request The message further carries the re-download indication information and the subscription file identifier, where the processing module is specifically configured to:
    根据所述签约文件的文件标识关联到所述已申请签约已分发的签约文件。The file identifier according to the contract file is associated with the signed document that has been applied for the contract.
  75. 根据权利要求73所述的签约管理实体,其特征在于,所述第二请求消息还携带所述已申请签约的第一签约文件信息,所述处理模块具体用于:The contract management entity according to claim 73, wherein the second request message further carries the first subscription file information that has been requested to be signed, and the processing module is specifically configured to:
    使用所述第一签约文件信息生成所述终端设备请求下载的签约文件。And using the first subscription file information to generate a subscription file that the terminal device requests to download.
  76. 根据权利要求74或75所述的签约管理实体,其特征在于,所述第二请求消息还携带第二签约文件信息,所述处理模块具体用于:The subscription management entity according to claim 74 or 75, wherein the second request message further carries the second subscription file information, and the processing module is specifically configured to:
    使用所述第二签约文件信息生成所述终端设备请求下载的的签约文件。And using the second subscription file information to generate a subscription file that the terminal device requests to download.
  77. 一种通信系统,其特征在于,所述通信系统包括:A communication system, characterized in that the communication system comprises:
    如权利要求39-43任一所述的运营商服务器;An operator server according to any of claims 39-43;
    如权利要求44-48任一所述的终端设备;A terminal device according to any of claims 44-48;
    如权利要求49-51任一所述的签约管理实体。A contract management entity according to any of claims 49-51.
  78. 一种通信系统,其特征在于,所述通信系统包括:A communication system, characterized in that the communication system comprises:
    如权利要求58-61任一所述的运营商服务器;An operator server according to any of claims 58-61;
    如权利要求62-66任一所述的终端设备;A terminal device according to any of claims 62-66;
    如权利要求52-57任一所述的签约管理实体。A contract management entity according to any of claims 52-57.
  79. 一种运营商服务器,其特征在于,所述运营商服务器包括:An operator server, wherein the operator server comprises:
    相互连接的处理器、存储器、接收器和发射器;Interconnected processors, memories, receivers, and transmitters;
    其中,所述存储器用于存储程序代码,所述处理器用于调用所述存储器中的程序代码来执行如权利要求1至5任一项所述的方法,或者执行如权利要求20至23任一项所述的方法,或者执行如权利要求29至33任一项所述的方法。Wherein the memory is for storing program code, the processor is for calling program code in the memory to perform the method according to any one of claims 1 to 5, or performing any one of claims 20 to 23. The method of any of the preceding claims, or the method of any one of claims 29 to 33.
  80. 一种终端设备,其特征在于,所述终端设备包括:A terminal device, the terminal device includes:
    相互连接的处理器、存储器、接收器和发射器;Interconnected processors, memories, receivers, and transmitters;
    其中,所述存储器用于存储程序代码,所述处理器用于调用所述存储器中的程序代码来执行如权利要求6至10任一项所述的方法,或者执行如权利要求24至28任一项所述的方法。Wherein the memory is for storing program code, the processor is for calling program code in the memory to perform the method according to any one of claims 6 to 10, or performing any one of claims 24 to 28 The method described in the item.
  81. 一种签约管理实体,其特征在于,所述签约管理实体包括:A contract management entity, characterized in that the contract management entity comprises:
    相互连接的处理器、存储器、接收器和发射器; Interconnected processors, memories, receivers, and transmitters;
    其中,所述存储器用于存储程序代码,所述处理器用于调用所述存储器中的程序代码来执行如权利要求11至13任一项所述的方法,或者执行如权利要求14至19任一项所述的方法,或者执行如权利要求34至38任一项所述的方法。 Wherein the memory is for storing program code, the processor is for calling program code in the memory to perform the method according to any one of claims 11 to 13, or performing any one of claims 14 to 19 The method of any of the preceding claims, or the method of any one of claims 34 to 38.
PCT/CN2016/072718 2016-01-29 2016-01-29 Method for downloading subscription file, related device, and system WO2017128286A1 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
PCT/CN2016/072718 WO2017128286A1 (en) 2016-01-29 2016-01-29 Method for downloading subscription file, related device, and system
CN201680004898.7A CN107113320B (en) 2016-01-29 2016-01-29 Method, related equipment and system for downloading signed file

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/CN2016/072718 WO2017128286A1 (en) 2016-01-29 2016-01-29 Method for downloading subscription file, related device, and system

Publications (1)

Publication Number Publication Date
WO2017128286A1 true WO2017128286A1 (en) 2017-08-03

Family

ID=59397033

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2016/072718 WO2017128286A1 (en) 2016-01-29 2016-01-29 Method for downloading subscription file, related device, and system

Country Status (2)

Country Link
CN (1) CN107113320B (en)
WO (1) WO2017128286A1 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112966308A (en) * 2021-04-23 2021-06-15 京东方科技集团股份有限公司 Software delivery method, processing device and storage medium

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107707630B (en) * 2017-09-15 2020-12-15 百度在线网络技术(北京)有限公司 Method and device for file transmission
CN108684034B (en) * 2018-05-16 2021-03-30 中国联合网络通信集团有限公司 Data transmission method and device
CN116582369B (en) * 2023-07-13 2023-09-12 北京点聚信息技术有限公司 Willingness authentication method for online subscription

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102763395A (en) * 2010-02-17 2012-10-31 诺基亚公司 Method and apparatus for providing an authentication context-based session
CN103178969A (en) * 2013-04-16 2013-06-26 河南有线电视网络集团有限公司 Service authentication method and system
US20130263239A1 (en) * 2012-03-27 2013-10-03 University-Industrycooperation Group Of Kyung Hee University Apparatus and method for performing user authentication by proxy in wireless communication system
CN105245349A (en) * 2015-11-17 2016-01-13 王家城 User wearing equipment provided with embedded UICC card

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102763395A (en) * 2010-02-17 2012-10-31 诺基亚公司 Method and apparatus for providing an authentication context-based session
US20130263239A1 (en) * 2012-03-27 2013-10-03 University-Industrycooperation Group Of Kyung Hee University Apparatus and method for performing user authentication by proxy in wireless communication system
CN103178969A (en) * 2013-04-16 2013-06-26 河南有线电视网络集团有限公司 Service authentication method and system
CN105245349A (en) * 2015-11-17 2016-01-13 王家城 User wearing equipment provided with embedded UICC card

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112966308A (en) * 2021-04-23 2021-06-15 京东方科技集团股份有限公司 Software delivery method, processing device and storage medium

Also Published As

Publication number Publication date
CN107113320B (en) 2020-09-29
CN107113320A (en) 2017-08-29

Similar Documents

Publication Publication Date Title
CN109756447B (en) Security authentication method and related equipment
US20170161721A1 (en) Method and system for opening account based on euicc
CN110800331B (en) Network verification method, related equipment and system
CN102970362B (en) The method of a kind of high in the clouds data sharing and device
EP3592014B1 (en) Method and device for adding authentication algorithm program
EP2854433B1 (en) Method, system and related device for realizing virtual sim card
US11510054B2 (en) Methods, apparatuses, and computer program products for performing identification and authentication by linking mobile device biometric confirmation with third-party mobile device account association
CN108259164B (en) Identity authentication method and equipment of Internet of things equipment
US9031541B2 (en) Method for transmitting information stored in a tamper-resistant module
CN109729523B (en) Terminal networking authentication method and device
CN112559993B (en) Identity authentication method, device and system and electronic equipment
JP2009537893A (en) Wireless transaction authentication method
TWI632798B (en) Server, mobile terminal, and network real-name authentication system and method
CN103297403A (en) Method and system for achieving dynamic password authentication
WO2017128286A1 (en) Method for downloading subscription file, related device, and system
WO2017113359A1 (en) Cloud operation interface sharing method, related device and system
JP5952973B2 (en) Mutual authentication method between terminal and remote server via third-party portal
KR20180067183A (en) System and Method for Creating and Disposal of Identification associated with User Bio Information
CN105634743A (en) Authentication method used for open interface calling
CN111405036A (en) Service access method, device, related equipment and computer readable storage medium
WO2015100615A1 (en) Method and apparatus for processing service packet, and gateway device
CN102984335B (en) Dial the identity identifying method of landline telephone, equipment and system
CN104702575A (en) Account management method, management platform and account management system
CN110278084B (en) eID establishing method, related device and system
CN105119716A (en) Secret key negotiation method based on SD cards

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 16887170

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 16887170

Country of ref document: EP

Kind code of ref document: A1