CN101321191B - User recognition module business issue terminal based on wireless communication - Google Patents
User recognition module business issue terminal based on wireless communication Download PDFInfo
- Publication number
- CN101321191B CN101321191B CN2008101171153A CN200810117115A CN101321191B CN 101321191 B CN101321191 B CN 101321191B CN 2008101171153 A CN2008101171153 A CN 2008101171153A CN 200810117115 A CN200810117115 A CN 200810117115A CN 101321191 B CN101321191 B CN 101321191B
- Authority
- CN
- China
- Prior art keywords
- card
- distribution
- terminal
- module
- ota
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Abstract
The invention discloses a service distributing terminal of a user recognition module based on wireless communication and a distributing method; the personalized service of the user recognition module is customized and distributed through a wireless channel. The user recognition module is a card to be distributed for short below; the terminal is used for obtaining the information of the card to be distributed, analyzes the service distributing package loading message received from the server through the wireless communication network as the service distributing package script, combines the information of the card to be distributed and the content organization of the service distributing package script to distribute instruction for the wireless service with air loading OTA message, and distributes the personalized service to the card to be distributed through the instruction.
Description
Technical field
The present invention relates to wireless communication field, particularly the business issue terminal of subscriber identification module and distributing method.
Background technology
During existing user recognition module business issue (for example open an account, replacement card), usually need in the mobile communication business hall, be undertaken by cable network, the staff will use heavy special use distribution equipment or terminal to finish in the business hall, owing to need set up cable network, the range of application of user recognition module business issue and business issue zone all are restricted.And can not realize original OTA (Over the Air, the aerial download) in having used is sticked into the distribution of capable business packet.
And existing card writing terminal and method can only realize writing of subscriber identification module individuation data, as IMSI, Ki, ICCID, PIN1, PUK1 etc., and can not realize writing of service application, as certain menu program, application program etc.
In a word, need to use novel wireless terminal and new technical scheme to realize being undertaken the personalized customization distribution of user identifying module service and application by wireless network, so as can be in each mobile agent point and market, public arena such as subway uses.
Summary of the invention
The technical problem to be solved in the present invention provides a kind of user recognition module business issue terminal based on radio communication, can carry out user identifying module service personalized customization distribution by radio channel.
In order to solve the problems of the technologies described above, the invention provides a kind of user recognition module business issue terminal based on radio communication, described subscriber identification module is hereinafter to be referred as treating issuing card, described terminal is used to obtain the issuing card information for the treatment of, and will be that business issue is bound foot this from the business issue bag download packet parsing that server end receives by cordless communication network; And be organized as the wireless traffic distribution instruction that comprises aerial download OTA message in conjunction with described issuing card information and described business issue this content of binding foot for the treatment of, treat issuing card by this instruction and carry out the individual business distribution.
Further, described terminal comprises man-machine interaction processing module, wireless communication module, data processing module, distribution flow process control treatment module, distribution package script processing module and read-write control module, wherein:
Described man-machine interaction processing module links to each other with described wireless communication module, is used to the user that interface with terminal interaction is provided, and display message is also selected or input operation for the user;
Described wireless communication module is used for carrying out data transmit-receive by cordless communication network and server end;
Described data processing module links to each other with described wireless communication module, is used to be responsible for carrying out the group bag of uplink data sending and unpacking of descending reception data, is undertaken by the data format for the treatment of issuing card business issue protocol definition when group is wrapped and unpacked;
Described distribution flow process control treatment module links to each other with described data processing module, is used to obtain the issuing card OTA information for the treatment of, and carries out the integral body control of distribution process by calling other processing modules;
Described distribution package script processing module, link to each other with described distribution flow process control treatment module, be used for sending business issue this download request of binding foot to server end, comprise business issue bag code in the described request, and be used for business issue bag that the resolution server end issues and download message and obtain business issue and bind foot this, according to the issuing card information for the treatment of that described business issue is bound foot originally and described distribution flow process control treatment module is obtained, tissue is treated the executable proprietary application protocol Data Unit APDU distribution instruction that contains the over-the-air function message of issuing card;
Described read-write control module, link to each other with described distribution flow process control treatment module, be used to carry out Card Reader or writing operation, according to the special-purpose APDU distribution instruction of described distribution package script processing module tissue, treat in the following content of issuing card one or more and issue operation: operation list, application, file.
Further, describedly treat the distribution operation that issuing card carries out and be meant one or more that carry out following operation: the activation of closing, using of opening, using of the deletion of the interpolation of application, the renewal of application, application, application, the patch of application are downloaded, the enabling of the deletion of the interpolation of catalogue, catalogue, catalogue, the forbidding of catalogue, the renewal of catalogue, remote file updates, information synchronization.
Further, the business issue on server end, sent out of described distribution flow process control treatment module bind foot this version information of the business issue that also comprises described terminal storage in this download request information of binding foot.
Further, described data processing module also is used to carry out one or more of following operation: message data encryption and decryption, packet accouter are handled, the verification of media interviews control data.
Further, described terminal also comprises authentication module, links to each other with described distribution flow process control treatment module, is used to carry out user and/or user's authentication, and also is used on server puberty part information and carries out the terminal legality authentication.
Further, described terminal also comprises distribution record accessing processing module, link to each other with described distribution flow process control treatment module, be used for access distribution record, and when business issue record is expired or when receiving the business packet distribution record statistics request that server issues, corresponding service distribution record gone up send out a server.
Further, described distribution package script processing module also is used to store the business issue that issues this information of binding foot.
Further, described distribution flow process control treatment module also is used for basis and whether supports to issue special-purpose APDU instruction differentiation OTA generic card and wireless traffic distribution personality card, and adopts different purview certification mechanism and business packet to issue handling process at different cards.
Further, when described when treating that issuing card is wireless traffic distribution personality card, described wireless traffic distribution personality card is meant the personality card of supporting the personalized publish special instruction, and described distribution flow process control treatment module is obtained and treated that issuing card OTA information is meant: described distribution flow process control treatment module uses unified proprietary APDU instruction from treating that issuing card reads the OTA relevant information for the treatment of issuing card.
Further, described distribution package script processing module is when organisation specific APDU distribution instruction, and the issuing card information sets for the treatment of with business issue script and wireless traffic distribution personality card is made into the OTA message earlier, converts thereof into the APDU instruction to the card operation again.
Further, described read-write control module also is used for after business issue is complete, will treat that issuing card OTA information reverts to initial condition.
Further, described distribution flow process control treatment module also be used for obtain treat issuing card OTA information before, undertaken alternately by cordless communication network and server end earlier, the registered industry distribution user name of user input and password are sent to server end carry out purview certification, in authentication by back reception server end download business distribution package tabulation; And/or, be used for obtaining when treating issuing card OTA information, obtain earlier and treat card vendor's information in the issuing card, carry out alternately with server, finish and treat issuing card ADM and PINI purview certification, re-use unified proprietary APDU instruction and read OTA relevant information and the record for the treatment of issuing card.
Further, when treating that issuing card is the OTA generic card, described distribution flow process control treatment module is obtained and treated that issuing card information is meant: described distribution flow process control treatment module is obtained the OTA information that this treats issuing card from server end when described.
Further, described distribution package script processing module is when organisation specific APDU distribution instruction, and business issue is bound foot originally in elder generation and the issuing card information sets for the treatment of of OTA generic card is made into OTA note command message, converts thereof into the APDU instruction to the card operation again.
Further, described terminal also comprises card image access processing module, and when the OTA generic card was carried out business issue, described card image access processing module was used to store the issuing card OTA information of obtaining from server for the treatment of; And be used for after business issue is complete, reporting and wait to issue the up-to-date OTA information of card.
Further, described terminal and server end utilize GPRS, note or HSDPA passage to carry out interacting message.
Further, described terminal also comprises downlink data note processing parsing module, link to each other with data processing module with described wireless communication module respectively, when described terminal is carried out business issue by short message mode, the downlink data note is handled parsing module and is used for the data note is resolved, by distinguishing heading the relevant note of business issue is passed to described business data processing resume module, when terminal need send the relevant note of business issue, send to server end by wireless communication module again after increasing corresponding heading.
Adopt wireless user's identification module business issue terminal of the present invention, can be used to substitute professional distribution equipment of wired smart card or terminal in the mobile communication business hall, save the trouble of setting up cable network, enlarged the range of application and the business issue zone of the professional distribution of smart card.
The present invention provides novel mobile service distribution pattern for operator, make mobile communication subscriber when opening an account, during the replacement card and during daily use, can be by the mobile service application combination service of using in the business hall or wireless user's identification module business issue terminal of public place can be personalized according to the individual demand selection, the mobile service of different service types convenient for users is used.Simultaneously, can also provide a kind of novel industry (enterprise) business customizing issuing way, make things convenient for the enterprise customer to use, save enterprise customer's cost, promote the development of mobile value-added service and the use of mobile data services simultaneously for industry (enterprise) user.
The present invention adopts wireless terminal to carry out the professional distribution of using of smart card, have distribution script and distribution records store data amount big, the characteristics that the distribution process processing speed is fast.
Description of drawings
Fig. 1 is a user identifying module service applied customization publishing system schematic diagram;
Fig. 2 is wireless traffic issue terminal functional module structure figure;
Fig. 3 is a user identifying module service applied customization distributing method schematic diagram;
To be the user send the bind foot schematic flow sheet of this download request of business issue by terminal to Fig. 4;
Fig. 5 is the schematic flow sheet of server end to terminal issuing service distribution package;
Fig. 6 is the schematic flow sheet of OTA generic card business issue;
Fig. 7 is the schematic flow sheet of wireless traffic distribution personality card business issue;
Fig. 8 is the schematic flow sheet of terminal to report business issue record.
Embodiment
As shown in Figure 1, the user recognition module business issue system that the present invention is based on radio communication comprises the wireless traffic issuance server end and the wireless traffic distribution client of carrying out information interaction by cordless communication network, and subscriber identification module to be issued (hereinafter referred to as treating issuing card), the realization of described wireless traffic distribution customer end adopted terminal, wherein:
Wireless traffic issuance server end, be used for generating and storage service distribution package script, according to the business issue bag download request of user by the transmission of wireless traffic issue terminal, select business issue to bind foot this, and transmit packing data to wireless traffic issue terminal issuing service distribution package download message;
The wireless traffic issue terminal, be used to resolve the business issue bag download message that wireless traffic issuance server end issues, be organized into wireless traffic distribution special instruction according to this content of binding foot of the business issue after resolving, treat issuing card (being subscriber identification module) by this special instruction and carry out the individual business distribution.
Described special instruction can be that terminal is instructed with the APDU (Application Protocol Data Units, Application Protocol Data Unit) that the card interaction data uses, but this APDU instruction itself is not the instruction that is exclusively used in business issue.
As shown in Figure 2, the wireless traffic issue terminal comprises man-machine interaction processing module, wireless communication module, data processing module, distribution flow process control treatment module, distribution package script download process module, distribution package script access module, distribution package script package module, authentication module, distribution record accessing processing module, card image access processing module, read-write control module etc., this terminal also comprises or an external read write line promptly is used to insert the slot for the treatment of issuing card, wherein:
The man-machine interaction processing module: be used to the user that interface with terminal interaction is provided, display message is also selected or input operation for the user;
Wireless communication module: be used for realizing carrying out data transmit-receive by note, GPRS, HSDPA passage with server end;
Data processing module: be responsible for carrying out the group bag of uplink data sending and unpacking of descending reception data, when wrapping and unpack, group undertaken by the data format for the treatment of issuing card business issue protocol definition, and carry out one or more of following operation: message data encryption and decryption, packet accouter are handled, MAC (Media Access Control, media interviews control) data check etc.;
This module prevents that by the encryption and decryption to the server interaction data data are stolen and prevent that by counter mechanism data re-transmission from attacking, and guarantees data integrity to prevent that data tampering from attacking by mac authentication.
Distribution flow process control treatment module: this module is used to carry out the flow process control of client distribution, carries out the integral body control of client distribution process by calling modules such as distribution package script download process module, distribution package script access module, distribution package script package module, card image access processing module.This module can be distinguished OTA generic card and wireless traffic distribution personality card (judging according to whether supporting to issue special-purpose APDU instruction), and adopts different corresponding authority authentication mechanisms and business packet distribution handling process:
At the OTA generic card, this module is used to call the read-write control module and reads and wait to issue IMSI (the International Mobile Subscriber Identifier that file in the card obtains card, international mobile subscriber identity) data or ICCID (Integrated Circuit Card ID, the integrated circuit card identification code) data, and report server end, issue the card confirmation or return information judges whether the issuing card (being subscriber identification module) for the treatment of that the user inserts is registered OTA card by waiting of issuing of Analysis server, calling waiting that card image access module service device obtains issues card image and calls the tissue encapsulation that distribution package script package module is finished the distribution order, after the business issue bag is complete, call and wait in the card image access processing module that the relevant up-to-date OTA information of distribution of issuing card (comprises up-to-date operation list information, most recent count device A/B value, information such as card remaining space) go up and send out server, to upgrade the content in the OTA server, guarantee the record consistency of card and server service catalogue.
At wireless traffic distribution personality card, this module is used to call the read-write control module to treating that issuing card sends the OTA login state inquiry APDU instruction of professional format, judges whether card supports special-purpose APDU distribution instruction; Read and wait to issue the interior file of card or use special instruction to obtain card vendor's information, carry out alternately with server, the relevant card vendor's certified component in the invoking server is by card ADM and PIN1 purview certification; Use proprietary APDU instruction to read relevant OTA information of card issuing (as register initial state, IMSI or ICCID, OTA batch, the initial informations such as value of card remaining space, counter A/B) and record, call distribution package script Encapsulation Moulds card and finish the tissue encapsulation of distribution order, after business issue is complete, calls the read-write control module and use the APDU instruction that the relevant information (as the value of OTA login state, counter A/B) that changes of card OTA is reverted to initial condition.Described wireless traffic distribution personality card is meant supports the relevant OTA information of card issuing (as: OTA login state query modification, revise counter A/B etc.) to obtain and the personality card of personalized publish special instruction such as modification.
Authentication module: this resume module user carries out authentication by the man-machine interaction processing module;
When distribution work is used, determined whether at first that to wireless traffic distribution personality card operation permission the password that user in the password of user's input and the personality card is set storage in advance carries out consistency and relatively authenticates, with the legitimacy of definite operator's identity.This module also has the function of puberty part information on server, and the purpose of last puberty part information is to carry out the terminal legality authentication by server according to the identity information of the wireless traffic issue terminal that obtains.
When carrying out the trading card business issue, the terminal notifying user inputs industry distribution user name and password, and server is issued in the content-encrypt packing of input carried out authenticating user identification; Industry user's authenticate-acknowledge information that processing server issues is passed through as authentication, and industry distribution work the package list that display server issues is selected for the user; Do not pass through as authentication, then point out authenticating user identification not pass through.
Because of the industry business issue towards special user colony, carry out the authentication of industry user's name and password, can satisfy higher security requirement, and the general service issue face can not authenticate to masses.
Distribution package script download process module: be used for being responsible for the demonstration and the selection of business issue bag, select to obtain the version number of distribution package script from distribution package script access module according to the user, sending service distribution package script download request on server end, if server judges that need carry out the business packet script upgrades, then the business issue bag that issues of reception server end is downloaded message, after message resolved, call distribution package script access module and preserve.
Distribution package script access module: be used to preserve business issue after the distribution package script download process module parses bind foot this and version thereof, and read business issue this confession the distribution flow process control treatment module use of binding foot;
Distribution package script package module: call distribution package script access module and obtain business issue by the business packet index and bind foot this, call the issuing card for the treatment of of card image access processing module stores and issue relevant OTA information (as: counterpart keys, value in conjunction with counter A/B), with business issue bind foot this order with treat that the issuing card information organization becomes the interpolation of corresponding application, upgrade, deletion, open-minded, close, activate, patch is downloaded, and/or the interpolation of catalogue, deletion, enable, forbidding, upgrade, and/or the remote file updates of file, and/or over-the-air function message such as information synchronization (key sum counter A/B is the parameter that belongs to the responsible security control of over-the-air function data download agreement, be used for the encapsulation of OTA message, the related data of the OTA card of different operators may be different), and the over-the-air function message is organized into waits to issue executable special-purpose APDU (Application Protocol Data Unit) the distribution instruction that contains the over-the-air function message of card, treat the distribution card and carry out the business issue operation by calling read-write control module control read write line by distribution flow process control treatment module thereafter.
Above-mentioned distribution package script download process module, distribution package script access module and distribution package script package module can be referred to as distribution package script processing module.
Card image access processing module: call by distribution flow process control treatment module, storage is treated issuing card (OTA generic card) OTA relevant information (as: IMSI or ICCID, OTA key, OTA batch, the value of card remaining space, protocol version, counter A/B etc.) from what server obtained, and business issue will be waited to issue the relevant up-to-date OTA information of card issuing (counter A/B value, card remaining space, downloading service and directory information) after complete and offer a server on the data processing module.
Distribution record accessing processing module: call by distribution flow process control treatment module, be used for the access of card issuing record, and when business issue record is expired or when receiving the business packet distribution record statistics request that server issues, a server upward sent out in corresponding service distribution record, realize just blocking reporting of distribution recorded information with server.
Read-write control module: call by distribution flow process control treatment module, carry out Card Reader or writing operation, control read write line and treat that issuing card passes through the APDU instruction interaction, read wireless traffic distribution personality card and generate the required information of OTA message, and wireless traffic distribution personality card and generic card are carried out that following distribution operates one or more: the interpolation of application, the renewal of using, the deletion of using, that uses is open-minded, that uses closes, the activation of using, the patch of using is downloaded, the interpolation of catalogue, the deletion of catalogue, enabling of catalogue, the forbidding of catalogue, the renewal of catalogue, remote file updates, information synchronization etc., the Card Reader and the writing operation of issuing card treated in realization, and after business is complete, will treat that the issuing card relevant information reverts to initial condition.Described read write line can be the read write line of wired connection, also can be the read write line of wireless transmission.
When adopting short message channel, then terminal also need increase by a downlink data note dissection process module, be used for the data SMS that wireless communication module receives is resolved, by distinguishing heading the relevant note of business issue is passed to the data processing module processing, other data SMSs are passed to subscriber identification module (referring to communication SIM, UIM card or usim card) and are handled; And when terminal need send the relevant note of business issue, send to server end by wireless communication module again after increasing corresponding heading.
Only when adopting short message channel to carry out the card business issue, just need to increase downlink data note dissection process module the downlink data note is carried out special processing,, then do not need if adopt GPRS passage, HSDPA passage to carry out business issue.
As shown in Figure 3, the user identifying module service applied customization distributing method based on radio communication may further comprise the steps:
Step 301: the user utilizes GPRS, note or HSDPA passage to send business issue this download request of binding foot to wireless traffic issuance server end by the wireless traffic issue terminal;
Step 302: server end is resolved the distribution solicited message of uploading, and selects corresponding service distribution package script according to the business information in the request;
Business information in the request can be bind foot this a index information of business issue, as business issue bind foot this title, code, version number etc.
Step 303: server end is bound foot to the business issue of selecting and is originally transmitted packing data, and the data SMS of generation or the business issue bag download message of GPRS data message are sent to the wireless traffic issue terminal;
Business issue is bound foot, and this contains OTA order of core, and the business issue bag is downloaded the message notebook data of business issue having been bound foot and transmitted packing data, promptly adds heading sum counter MAC etc.
Step 304: the wireless traffic issue terminal carries out message protocol resolves, and is organized into the APDU instruction that contains the OTA message according to the content after resolving, and treats the pre-peopleization card or the individualized industry that sticks into of distribution by the APDU instruction and is engaged in and the personalized publish of using.
The flow process that operating personnel send wireless traffic distribution package script download request by the wireless traffic issue terminal may further comprise the steps as shown in Figure 4:
Step 401: puberty part information is given server on the wireless traffic issue terminal, and server end carries out the authentication of client legitimacy according to the identity information of the wireless traffic issue terminal that obtains;
Step 402: terminal is carried out authentication to operating personnel, after authentication is passed through, shows general service distribution and sector application distribution choice menus;
Terminal notifying input operation password, and with the password that password and the user of input sets the in advance authentication of comparing, passing through as authentication shows that then general service distribution and sector application issue choice menus, otherwise the flow process end.
Step 403: after selecting the business issue type, treat the issuing card prompting according to the insertion that the wireless traffic issue terminal shows, insert card to be issued, use distribution if choose a trade, then execution in step 404A is to step 405A, if select general service to issue then execution in step 404B;
Generally speaking, because the sector application distribution for user right and security requirement height, has therefore proposed and the different subscription authentication handling process of general service distribution, can select for use according to actual needs.
In order to increase the fail safe of information, the sector application distribution must be by the authentication of authority, server end is issued the different service lists of terminal according to different user name authorities, the business packet tabulation of sector application can show by terminal, but be not stored in terminal, and the sector application issue list that issues refreshes at every turn.
The user can pass through business packet list update updating menu general service the package list, and the service lists that terminal can be deposited is limited, and the server end service lists is a lot, therefore can be by refresh list to obtain wanting the download business tabulation.
Step 406: terminal is to treating that issuing card sends the OTA login state inquiry APDU instruction of professional format, judge whether wait to issue card supports the special-purpose APDU distribution of wireless distribution instruction, if support, then explanation treats that issuing card is a wireless traffic distribution personality card, carries out 407A; If do not support, then explanation treats that issuing card is the OTA generic card, then carries out following steps 407B to 409B;
Said OTA generic card of the present invention and wireless traffic distribution personality card are the OTA card.OTA card described herein is meant all types of widely OTA cards (OTA is meant by wireless mode and carries out the aerial technology of downloading of business datum), the card OTA that has comprised various different modes downloads implementation, and the OTA card that the service menu data are downloaded for adopting, the packing of immediate data note is downloaded or the microbrowser mode realizes all is suitable for.As: the OTA card of China Mobile, CHINAUNICOM, China Telecom, WIB card, ST card are not confined to OTA2/3.
The said wireless traffic distribution of the present invention personality card is meant the personality card of personalized publish special instructions such as supporting OTA login state query modification, modification counter A/B, both can be used for the distribution and the use of industry service application, also can be used for distribution and use that common over-the-air function is used.
Here adopt to insert earlier and treat issuing card, select to treat the operating process of issuing card type again by the user, be because terminal need be used special-purpose APDU instruction and treat that issuing card carries out data interaction, to determine to wait to issue type of card and the tabulation of the type card corresponding service distribution package.
The OTA server is that relevant parameter, the information of OTA down loading updating of OTA generic card and the server that provides OTA to download are provided.
The above card image of obtaining all is in order to generate the information of follow-up OTA message, but because therefore the OTA host-host protocol difference of different operators need provide corresponding card OTA relevant information according to the OTA card of different operators.
In the step 303 server end to the flow process of terminal issuing service bag as shown in Figure 5, this process may further comprise the steps:
Step 501: the business issue of sending out on the business packet that the server end receiving terminal is selected according to the user this download request of binding foot;
Step 502: server end judges whether the business packet version number in the solicited message is identical with the version number of server end, if identical then execution in step 503, otherwise execution in step 504;
Step 503: server end returns the version confirmation to terminal, and flow process finishes;
Step 504: server end selects business issue to bind foot this, transmit packing after, download message by radio channel to terminal issuing service distribution package;
Radio channel also can adopt note based on GPRS, and server end can whether identification terminal supports GPRS passage or short message channel according to end mark (as the terminal versions sign), because some terminal may not supported GPRS.
It is business issue to be bound foot originally split into many that the business issue bag is downloaded message, adds to form after the security control data such as heading sum counter MAC.Do not contain the APDU instruction in this because business issue is bound foot, so business issue bag download message does not contain the APDU instruction yet.
Step 505: terminal receives this version business issue bag and downloads message, carries out obtaining business issue after message protocol is resolved and binds foot this, and be stored in terminal;
Server end and terminal storage all be that business issue is bound foot this, wherein include version information, be the command script of realizing the wireless distribution of business issue bag.The business issue bag is meant the combinations of services of a plurality of card business; The business issue bag is downloaded message and is used for server and terminal interaction and carries out business issue this download of binding foot.
Server end can only be deposited business issue and bind foot this, because information such as every counter for the treatment of issuing card, key are all different, therefore business issue is bound foot this (being the business issue bag) is converted to and can writes the APDU instruction that contains the OTA message for the treatment of issuing card and can only be undertaken by terminal.
It is that example describes that above flow process has memory function with wireless issue terminal, in order to realize wireless distribution work fast, terminal has the bind foot function of this and business issue the package list of business issue that storage issued, thereby need judge business issue this version of binding foot, to confirm distribution latest edition content, certain terminal also can only provide the selection interface of the distribution classification and the card classification of wireless traffic distribution, selects to issue tabulation of corresponding service distribution package and business issue bag download message by server according to the user.
After terminal is obtained business issue that server issues and is bound foot, according to treating that issuing card sends professional format OTA login state inquiry APDU instruction, judge whether wait to issue card supports the special-purpose APDU distribution of wireless distribution instruction, if support, treat that then issuing card is a wireless traffic distribution personality card, if do not support, treats that then issuing card is the OTA generic card, and according to treating that issuing card is that OTA generic card or wireless traffic distribution personality card adopt different distribution flow processs, describes respectively below in conjunction with accompanying drawing.
The distribution flow process of OTA generic card, as shown in Figure 6, this flow process may further comprise the steps:
Step 601: this time business issue that terminal is called storage bind foot this and treat issuing card information, it (is the OTA command message of messaging format that the corresponding command data set in the script is made into OTA note command message, instruct as directory management, use and add instruction etc.), convert thereof into APDU instruction again to the card operation, send to card to be issued by the terminal read write line, the distribution of distribution card is treated in realization, concrete operations comprise one or more of following operation: the interpolation of application, upgrade, deletion, open-minded, close, activate, patch is downloaded, the interpolation of catalogue, deletion, enable, forbidding, upgrade, remote file updates, information synchronization;
The OTA relevant information for the treatment of issuing card is that terminal is obtained and stored from server, be used to issue the group bag of relevant OTA message, the OTA relevant information for the treatment of issuing card comprises as IMSI or ICCID, OTA key, OTA batch, the value of card remaining space, protocol version, counter A/B etc., the OTA card desired parameters of different operators may be different, only are example herein.
Step 602: after the business issue bag was complete, terminal was treated issuing card and is carried out information synchronization, sent out server on the up-to-date card image of card with waiting to issue;
On server end, send out the card image that changes because of business issue, comprise as counter A/B value, card remaining space, downloading service and directory information (the OTA card desired parameters of different operators may be different, and this is for giving an example).
Step 603: after server end is received the card image of sending out, upgrade the corresponding information of this card in the OTA server, and issue card image renewal affirmation to client;
Step 604: terminal receive card image that server end issues upgrade confirm after, prompt service distribution result notifies the user.
Do not confirm that as receiving that for a long time card image is upgraded the user can pass through the synchronous menu of selling information, go up once more and send out the relevant information of waiting to issue card.
The distribution flow process of wireless traffic distribution personality card, as shown in Figure 7, this flow process may further comprise the steps:
Step 701: terminal reads treats the interior file of issuing card or uses special instruction to obtain card vendor's information that carry out alternately with server, the relevant card vendor's certified component in the invoking server is by card ADM and PIN1 purview certification;
Step 702: terminal uses unified proprietary APDU instruction to read OTA relevant information and the record for the treatment of issuing card, and card is changed to the OTA registered state;
The OTA relevant information for the treatment of issuing card comprises the information such as value as: register initial state, IMSI, OTA batch, Function Identification, protocol version, card remaining space, counter A/B, certainly the OTA card desired parameters of different operators may be different, only are example herein.
No matter wireless traffic distribution personality card still is common OTA card, the relevant OTA information of card all is stored in the card, but have only the card image after the OTA registration in the OTA server, just to have, the support of wireless traffic distribution personality card is directly read the OTA relevant information by special-purpose APDU instruction from card, common OTA card is not supported directly to read the OTA relevant information by special-purpose APDU instruction from card, therefore need obtain the OTA relevant information from the OTA server.
Step 703: terminal reads this time business issue script of storage and treats issuing card information, the corresponding command data set in the script is made into the OTA message (to instruct as directory management, use and add instruction etc., OTA BIP message is used in suggestion, also can use OTA note message), convert thereof into APDU instruction again to the card operation, send to by the terminal read write line and to treat issuing card, the distribution of distribution card is treated in realization, comprise in the following operation one or more: the interpolation of application, upgrade, deletion, open-minded, close, activate, patch is downloaded, the interpolation of catalogue, deletion, enable, forbidding, upgrade remote file updates, information synchronization;
Step 704: terminal uses the APDU instruction that card issuing OTA relevant information (as the value of login state, counter A/B) is reverted to initial condition;
The OTA relevant information is returned to initial condition make and to treat that issuing card can also carry out the OTA registration to the OTA server, and keep the server of relevant OTA parameter such as counter and the consistency of card.
Step 705: terminal notifying business issue result, comprise the failure of business issue success or business issue, notify the user.
With respect to the distribution process of OTA generic card by OTA note message conversion APDU instruction, the distribution of wireless traffic distribution personality card recommends to use OTA BIP (Bearer Independent Protocol, bearer independent protocol) command message, but also support OTA note command message, use OTA BIP message conversion APDU instruction, data-carrying capacity rises to 1024 bytes of BIP from 176 bytes of note, and speed improves and also reduced interaction times.
In order to allow server end can write down the card issuing situation of each wireless traffic distribution user side, so that charge and business statistics, the invention provides following terminal distribution record report flow, as shown in Figure 8, this flow process may further comprise the steps:
Step 801: server end issues distribution record statistics solicited message and gives the distribution log file of terminal or client stored full;
Step 802: terminal receive after the distribution record statistics solicited message that server issues or the distribution log file of terminal stored full, last sending service distribution recorded information, recorded information is by batch managing, content contains phone number (being the number of the subscriber identification module of mobile phone), batch number, note or the upstream data total number (i.e. recorded information total number that go up to send out of this batch, can by sending out on note or the GPRS data) of distribution work bag code, distribution, when preceding article number sequence number;
Step 803: server end is accessed in relevant information in the database after receiving the business issue recorded information, after receiving the last item, server judges whether to receive this time photos and sending messages on all, as incomplete, the bar that then issues disappearance is counted sequence number to terminal, up to receive complete all go up photos and sending messages, after information received, server issuing service distribution registration confirmed was to terminal;
Step 804: after terminal is received the business issue registration confirmed, empty the business issue record of this batch, on the terminal after the sending service distribution of information and before receiving server service distribution registration confirmed, the business record of new issue should use new batch number, to avoid confusion.
Using download channel can use passages such as GPRS, note, 3G HSDPA to realize according to the version identifier of terminal.
Wireless traffic issue terminal among the present invention not only can be realized the service application distribution to the wireless traffic distribution personality card of supporting the personalized publish special instruction, also supports the service application distribution of the OTA card of original user in having used.For the wireless traffic distribution personality card of supporting the personalized publish special instruction, both supported the business customizing distribution of individualized card, also support the distribution of pre-individualized card.
The present invention be directed to original card business issue need use heavy special use distribution equipment and coupled computer to issue by cable network, move inconvenience and be not suitable for designing according to the problem of user's needs personalized customization in the business hall, utilize radio channel to carry out the service personalization distribution of card, realized issuing based on the personalized customization that the user identifying module service of radio communication is used, mobile agency and the business packing customization of wireless terminal have in public places been made things convenient for, make the user select personalized card application service according to individual demand, enlarged the range of application of smart card customization publishing system, bigger space has been arranged on meeting customer need, also solved operator the different application types of cards blocked a difficult problem fully.Concrete radio channel comprises note or GPRS or HSDPA passage, consider little, the easy packet loss of note transmitted data amount, recommend to adopt the GPRS passage, but emphasis advocates to realize based on the GPRS high-speed channel, so just solved the active user and used short message channel to download large-data operation, because the difficult problem that the note packet loss is difficult to complete download often takes place.This method also provides technology to realize supporting for the realization of short message channel, mainly is applicable to the area use that the GPRS channel condition is bad or do not possess.In addition, this method realizes supporting to using in the future the 3G high-speed data channel also to provide.
The present invention not only can realize by radio channel the smart card of supporting the personalized publish special instruction being carried out the service application distribution, the business packet distribution implementation of the OTA card in brand-new can compatible user is original the use has also been proposed, solve the difficult problem that existing other schemes can not stick into capable business packet distribution to original OTA in having used, used the customization distribution coverage rate of business packet to be greatly improved.
Claims (17)
1. user recognition module business issue terminal based on radio communication, described subscriber identification module is characterized in that hereinafter to be referred as treating issuing card,
Described terminal is used to obtain the issuing card information for the treatment of, and will be that business issue is bound foot this from the business issue bag download packet parsing that server end receives by cordless communication network; And be organized as the wireless traffic distribution instruction that comprises aerial download OTA message in conjunction with described issuing card information and described business issue this content of binding foot for the treatment of, treat issuing card by this instruction and carry out the individual business distribution;
Described terminal comprises man-machine interaction processing module, wireless communication module, data processing module, distribution flow process control treatment module, distribution package script processing module and read-write control module, wherein:
Described man-machine interaction processing module links to each other with described wireless communication module, is used to the user that interface with terminal interaction is provided, and display message is also selected or input operation for the user;
Described wireless communication module is used for carrying out data transmit-receive by cordless communication network and server end;
Described data processing module links to each other with described wireless communication module, is used to be responsible for carrying out the group bag of uplink data sending and unpacking of descending reception data, is undertaken by the data format for the treatment of issuing card business issue protocol definition when group is wrapped and unpacked;
Described distribution flow process control treatment module links to each other with described data processing module, is used to obtain the issuing card OTA information for the treatment of, and carries out the integral body control of distribution process by calling other processing modules;
Described distribution package script processing module, link to each other with described distribution flow process control treatment module, be used for sending business issue this download request of binding foot to server end, comprise business issue bag code in the described request, and be used for business issue bag that the resolution server end issues and download message and obtain business issue and bind foot this, according to the issuing card information for the treatment of that described business issue is bound foot originally and described distribution flow process control treatment module is obtained, tissue is treated the executable proprietary application protocol Data Unit APDU distribution instruction that contains the over-the-air function message of issuing card;
Described read-write control module, link to each other with described distribution flow process control treatment module, be used to carry out Card Reader or writing operation, according to the special-purpose APDU distribution instruction of described distribution package script processing module tissue, treat in the following content of issuing card one or more and issue operation: operation list, application, file.
2. terminal as claimed in claim 1 is characterized in that,
Describedly treat the distribution operation that issuing card carries out and be meant one or more that carry out following operation:
The patch of the deletion of the interpolation of using, the renewal of application, application, the activation of closing, using of opening, using of application, application is downloaded, the enabling of the deletion of the interpolation of catalogue, catalogue, catalogue, the forbidding of catalogue, the renewal of catalogue, remote file updates, information synchronization.
3. terminal as claimed in claim 1 is characterized in that,
The business issue that described distribution flow process control treatment module is sent out on server end bind foot this version information of the business issue that also comprises described terminal storage in this download request information of binding foot.
4. terminal as claimed in claim 1 is characterized in that,
Described data processing module also is used to carry out one or more of following operation: message data encryption and decryption, packet accouter are handled, the verification of media interviews control data.
5. terminal as claimed in claim 1 is characterized in that,
Described terminal also comprises authentication module, links to each other with described distribution flow process control treatment module, is used to carry out user and/or user's authentication, and also is used on server puberty part information and carries out the terminal legality authentication.
6. terminal as claimed in claim 1 is characterized in that,
Described terminal also comprises distribution record accessing processing module, link to each other with described distribution flow process control treatment module, be used for access distribution record, and when business issue record is expired or when receiving the business packet distribution record statistics request that server issues, corresponding service distribution record gone up send out a server.
7. terminal as claimed in claim 1 is characterized in that,
Described distribution package script processing module also is used to store the business issue that issues this information of binding foot.
8. terminal as claimed in claim 1 is characterized in that,
Described distribution flow process control treatment module also is used for basis and whether supports to issue special-purpose APDU instruction differentiation OTA generic card and wireless traffic distribution personality card, and adopts different purview certification mechanism and business packet to issue handling process at different cards.
9. as claim 1 or 8 described terminals, it is characterized in that,
When described when treating that issuing card is wireless traffic distribution personality card, described wireless traffic distribution personality card is meant the personality card of supporting the personalized publish special instruction, and described distribution flow process control treatment module is obtained and treated that issuing card OTA information is meant: described distribution flow process control treatment module uses unified proprietary APDU instruction from treating that issuing card reads the OTA relevant information for the treatment of issuing card.
10. terminal as claimed in claim 9 is characterized in that,
Described distribution package script processing module is when organisation specific APDU distribution instruction, and the issuing card information sets for the treatment of with business issue script and wireless traffic distribution personality card is made into the OTA message earlier, converts thereof into the APDU instruction to the card operation again.
11. terminal as claimed in claim 9 is characterized in that,
Described read-write control module also is used for after business issue is complete, will treat that issuing card OTA information reverts to initial condition.
12. terminal as claimed in claim 10 is characterized in that,
Described distribution flow process control treatment module also be used for obtain treat issuing card OTA information before, undertaken alternately by cordless communication network and server end earlier, the registered industry distribution user name of user input and password are sent to server end carry out purview certification, in authentication by back reception server end download business distribution package tabulation; And/or, be used for obtaining when treating issuing card OTA information, obtain earlier and treat card vendor's information in the issuing card, carry out alternately with server, finish and treat issuing card ADM and PINI purview certification, re-use unified proprietary APDU instruction and read OTA relevant information and the record for the treatment of issuing card.
13. as claim 1 or 8 described terminals, it is characterized in that,
When treating that issuing card is the OTA generic card, described distribution flow process control treatment module is obtained and treated that issuing card information is meant: described distribution flow process control treatment module is obtained the OTA information that this treats issuing card from server end when described.
14. terminal as claimed in claim 13 is characterized in that,
Described distribution package script processing module is when organisation specific APDU distribution instruction, and business issue is bound foot originally in elder generation and the issuing card information sets for the treatment of of OTA generic card is made into OTA note command message, converts thereof into the APDU instruction to the card operation again.
15. terminal as claimed in claim 13 is characterized in that,
Described terminal also comprises card image access processing module, and when the OTA generic card was carried out business issue, described card image access processing module was used to store the issuing card OTA information of obtaining from server for the treatment of; And be used for after business issue is complete, reporting and wait to issue the up-to-date OTA information of card.
16. terminal as claimed in claim 1 is characterized in that,
Described terminal and server end utilize GPRS, note or HSDPA passage to carry out interacting message.
17. terminal as claimed in claim 16 is characterized in that,
Described terminal also comprises downlink data note processing parsing module, link to each other with data processing module with described wireless communication module respectively, when described terminal is carried out business issue by short message mode, the downlink data note is handled parsing module and is used for the data note is resolved, by distinguishing heading the relevant note of business issue is passed to described business data processing resume module, when terminal need send the relevant note of business issue, send to server end by wireless communication module again after increasing corresponding heading.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2008101171153A CN101321191B (en) | 2008-07-24 | 2008-07-24 | User recognition module business issue terminal based on wireless communication |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2008101171153A CN101321191B (en) | 2008-07-24 | 2008-07-24 | User recognition module business issue terminal based on wireless communication |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101321191A CN101321191A (en) | 2008-12-10 |
| CN101321191B true CN101321191B (en) | 2011-12-07 |
Family
ID=40181004
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2008101171153A Active CN101321191B (en) | 2008-07-24 | 2008-07-24 | User recognition module business issue terminal based on wireless communication |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101321191B (en) |
Families Citing this family (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101984690B (en) * | 2010-11-15 | 2015-06-03 | 中兴通讯股份有限公司 | Data card and system and method for customizing application business of data card |
| CN104766103B (en) * | 2014-01-03 | 2018-06-26 | 中国移动通信集团贵州有限公司 | Smart card issuing method and system |
| CN107133539B (en) * | 2016-02-26 | 2020-08-11 | 北京数码视讯科技股份有限公司 | Smart card personalization method and related device and system |
| CN116980878B (en) * | 2023-09-22 | 2024-02-02 | 紫光同芯微电子有限公司 | Network access communication method, terminal, storage medium and smart card |
Citations (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1946235A (en) * | 2006-11-09 | 2007-04-11 | 中国移动通信集团江苏有限公司 | User identifying module service and method and system for using personalized tailered issuing |
-
2008
- 2008-07-24 CN CN2008101171153A patent/CN101321191B/en active Active
Patent Citations (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1946235A (en) * | 2006-11-09 | 2007-04-11 | 中国移动通信集团江苏有限公司 | User identifying module service and method and system for using personalized tailered issuing |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101321191A (en) | 2008-12-10 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101309271B (en) | User recognition modular service publishing method and system based on wireless communication | |
| CN100423610C (en) | User identifying module service and method and system for using personalized tailered issuing | |
| EP1441553B1 (en) | Method and system of remotely controlling a portable terminal by inserting a storage medium | |
| EP2731381B1 (en) | Method for changing the mobile network operator in an embedded sim on basis of special privilege | |
| US20090221278A1 (en) | Method for Customizing the Operation of a Telephonic Terminal | |
| US9439076B2 (en) | Method for incorporating subscriber identity data into a subscriber identity module | |
| JP2016164790A (en) | Storage medium | |
| KR101979162B1 (en) | Method for Managing Key of Embedded SIM, Embedded SIM and recording medium for the same | |
| US20100063960A1 (en) | Backup system and method in a mobile telecommunication network | |
| CN101309484B (en) | Special intelligent card and terminal realizing personalized publish of user recognition modular service | |
| EP2549782B1 (en) | Data card and method and system for customizing its application service | |
| CN101895883B (en) | Smart card supporting authentication arithmetic update and method for updating authentication arithmetic | |
| CN101321191B (en) | User recognition module business issue terminal based on wireless communication | |
| CN101350056B (en) | Smart card with wireless card-writing function and method for wireless writing card | |
| CN102056172A (en) | Smart card and authentication method thereof | |
| CN101431755B (en) | System and method for implementing user login | |
| WO2010084081A1 (en) | Method of loading data in an electronic device | |
| KR102030619B1 (en) | system and method of joining mobile communication, system of authenticating user | |
| US11930558B2 (en) | Method for providing subscription profiles, subscriber identity module and subscription server | |
| EP2452478B2 (en) | Method of managing an application embedded in a secured electronic token | |
| EP2083556B1 (en) | Method of associating an identity module with first and second communication services provider | |
| Chandrasiri | First Steps to Software Defined Radio Standards: MExE, the Mobile Execution Environment |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |