CN101630373A - Method and device for realizing multi-application of intelligent card - Google Patents
Method and device for realizing multi-application of intelligent card Download PDFInfo
- Publication number
- CN101630373A CN101630373A CN200910091328A CN200910091328A CN101630373A CN 101630373 A CN101630373 A CN 101630373A CN 200910091328 A CN200910091328 A CN 200910091328A CN 200910091328 A CN200910091328 A CN 200910091328A CN 101630373 A CN101630373 A CN 101630373A
- Authority
- CN
- China
- Prior art keywords
- application
- instruction
- current
- current instruction
- list
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 21
- 238000012795 verification Methods 0.000 claims abstract description 31
- 238000013507 mapping Methods 0.000 description 6
- 238000010586 diagram Methods 0.000 description 4
- 230000006870 function Effects 0.000 description 3
- 238000012986 modification Methods 0.000 description 3
- 230000004048 modification Effects 0.000 description 3
- 101150086503 ADF1 gene Proteins 0.000 description 2
- 101100384717 Schizosaccharomyces pombe (strain 972 / ATCC 24843) cof1 gene Proteins 0.000 description 2
- 238000011161 development Methods 0.000 description 1
- 230000000694 effects Effects 0.000 description 1
- 238000012545 processing Methods 0.000 description 1
- 238000010200 validation analysis Methods 0.000 description 1
- 239000002699 waste material Substances 0.000 description 1
Images
Landscapes
- Storage Device Security (AREA)
- Stored Programmes (AREA)
Abstract
The invention discloses a method and a device for realizing multi-application of an intelligent card, aiming at solving the problem that the independence of different applications is difficult to guarantee when the Native intelligent card is used in multi-application in the prior art. In the applications of Native intelligent card, the method comprises carrying out legitimacy verification on the received current command under the current application according to the saved corresponding relation of the application and the command when the received current command is an application type command, and operating the application file corresponding to the current application through the current command when the verification is passed.
Description
Technical Field
The invention relates to the technical field of smart cards, in particular to a method and a device for realizing multiple applications of a smart card.
Background
Currently, a Chip Operating System (COS) is mostly adopted in a widely used Native smart card to control the secure use of an internal memory. A Native smart card generally supports an application, that is, a supported instruction conforms to a certain application specification, and a corresponding application file system is established on the card according to an application requirement, so that after the smart card receives the instruction, the COS operates the corresponding application file through the instruction, and a specific functional application is realized.
With the rapid development of the application of the smart card, the social affairs, the business and the consumption activities related to the smart card are increased continuously, and the number of Native smart cards held by a single card holder is increased continuously due to the single application of the Native smart card, so that the portability of the smart card is reduced, and the idle and waste of card resources are also caused. Therefore, a Native smart card capable of supporting multiple applications is urgently needed.
Currently, a multi-application Native smart card still adopts the COS to control the safe use of an internal memory, so as to realize various specific functional applications. The instructions supported by the multi-application Native smart card meet various application specifications, and each application operator establishes a corresponding application file system on the card according to various application requirements, so that after the smart card receives the instructions, the COS still operates the application files corresponding to the instructions through the instructions, and a certain specific function application is realized.
However, in the process of implementing multiple applications of the smart card, because a received instruction may conform to multiple application specifications, the COS may not distinguish whether the current application supports the instruction, and may execute the instruction immediately after receiving the instruction, which may cause an application file corresponding to another application B to be operated under the current application a, thereby failing to ensure the independence of each application and hardly ensuring the security of each application.
Disclosure of Invention
The embodiment of the invention provides a method and a device for realizing multiple applications of a smart card, which are used for solving the problem that the independence of each application is difficult to ensure when a Native smart card is applied to multiple applications in the prior art.
The embodiment of the invention provides a method for realizing multiple applications of an intelligent card, which is applied to a Native intelligent card and comprises the following steps:
when the received current instruction is an application type instruction, carrying out validity verification on the received current instruction under the current application according to the stored corresponding relation between the application and the instruction;
and when the verification is passed, operating the application file corresponding to the current application through the current instruction.
The embodiment of the invention provides a multi-application Native smart card, which comprises:
the verification unit is used for verifying the validity of the received current instruction under the current application according to the stored corresponding relation between the application and the instruction when the received current instruction is an application type instruction;
and the operation unit is used for operating the application file corresponding to the current application through the current instruction when the verification is passed.
In the embodiment of the invention, when the current instruction received by the Native smart card is an application type instruction, the received current instruction can be validated under the current application according to the stored corresponding relation between the application and the instruction, and when the validation is passed, the application file corresponding to the current application is operated through the current instruction. Therefore, by establishing the mapping relation among the application codes, the application files and the instructions, the application file corresponding to another application is prevented from being operated under the current application, the independence of each application is ensured, and the safety of each application is improved.
Drawings
FIG. 1 is a diagram illustrating a first mapping between applications and instructions according to an embodiment of the present invention;
FIG. 2 is a diagram illustrating a second mapping relationship between applications and instructions according to an embodiment of the present invention;
FIG. 3 is a diagram illustrating a third mapping relationship between application codes and application files according to an embodiment of the present invention;
FIG. 4 is a flow chart of a method for implementing smart card multi-applications in an embodiment of the present invention;
fig. 5 is a structural diagram of a multi-application Native smart card in the embodiment of the present invention.
Detailed Description
The embodiment of the invention provides a method for realizing multiple applications of a smart card, which realizes multiple applications of a Native smart card by establishing a mapping relation among an application code, an application file and an instruction, thus avoiding operating the application file corresponding to another application under the current application and ensuring the independence of each application.
The Native smart card in the embodiment of the invention has a plurality of applications, such as application A, application B, application C, application D and application E. In this way, each application supports some instructions, so that the corresponding relation between the application and the instructions can be established on the Native smart card. In this embodiment of the present invention, the correspondence between the application and the instruction may include: the first correspondence of the application with the instruction and/or the second correspondence of the application with the instruction. Wherein, the first corresponding relationship, that is, one application corresponds to at least one instruction, see fig. 1; the second correspondence, i.e. one instruction corresponds to at least one application, see fig. 2. And a corresponding application file system is established for each application on the Native smart card, that is, a third corresponding relationship between the application code and the application file, as shown in fig. 3.
In the embodiment of the invention, the COS is still adopted to operate the corresponding application file through the instruction so as to realize the specific functional application. After the current application is determined according to the actual application environment, referring to fig. 4, the specific implementation process of the multi-application of the Native smart card includes:
step 401: a current instruction is received.
Native smart cards can be used for contact applications as well as for contactless applications. Then, the Native smart card can receive data from the card reader and obtain the current instruction from the data; or receiving data from the wireless network through the antenna, and obtaining the current instruction from the data.
Step 402: judging the type of the current instruction, and if the current instruction is an application type instruction, executing step 403; otherwise, step 406 is performed.
Specific instructions specified in the industry, such as specific instructions in the 7816-4 specification, are stored in the Native smart card, and when the current instruction is received, the current instruction is firstly searched in the stored specific instructions, and when the current instruction cannot be searched in the specific instructions, the current instruction is an application-type instruction, and step 403 is executed. Otherwise, the current instruction is a non-application type instruction, and step 406 is executed.
The non-application type instruction may specifically include: an application instruction or a channel instruction is selected. When the received current instruction is an application selection instruction, the Native smart card can determine the application selected by the current instruction from the multiple applications according to the received current instruction and update the selected application to the current application; when the received current instruction is a channel instruction, the Native smart card can close or open the corresponding channel according to the received current instruction.
Step 403: and according to the stored corresponding relation between the application and the instruction, carrying out validity verification on the received current instruction under the current application, and executing the step 404 when the verification is passed, otherwise, executing the step 405.
When the first corresponding relationship between the application and the instruction as shown in fig. 1 has been established on the Native smart card, then when the received current instruction is an application-type instruction and the current application on the Native smart card is also determined, the first instruction list corresponding to the current application may be determined according to the stored first corresponding relationship. And searching the received current instruction in the determined first instruction list, when the current instruction can be searched in the first instruction list, indicating that the current instruction is legal, passing the verification, and executing the step 404, otherwise, failing the verification, and executing the step 405.
For example, if the current application is a, then according to the first corresponding relationship shown in fig. 1, determine a first instruction list, see table 1:
| applications of | Instructions |
| Applications A | Instructions 1, 2, 4, 5, 7, 12 |
TABLE 1
If the current instruction is instruction 5, the first instruction list includes instruction 5, the verification is passed, the instruction 5 is legal, and step 404 is executed. If the current instruction is instruction 6, the first instruction list does not include instruction 6, and the instruction 6 is illegal, step 405 is performed.
In the embodiment of the present invention, when the second corresponding relationship between the application and the instruction as shown in fig. 2 has been established on the Native smart card, when the received current instruction is an application-type instruction and the current application on the Native smart card is also determined, the second application list corresponding to the current instruction may be determined according to the stored second corresponding relationship. And searching the determined current application in the determined second application list, when the current application can be found in the second application list, indicating that the current instruction has validity, and executing the step 405 if the verification is passed, otherwise, executing the step 405 if the verification fails.
For example, if the current command is 5, then according to the second corresponding relationship shown in fig. 2, a second application list is determined, see table 2:
| instructions | Applications of |
| Instruction 5 | Using A, B, D, E |
TABLE 2
If the current instruction is application a, the second application list includes application a, the verification is passed, the instruction 5 is legal, and step 404 is executed. If the current application is application C, the second application list does not include application C, and the instruction 5 is illegal, step 405 is performed.
Of course, in the embodiment of the present invention, the first corresponding relationship and the second corresponding relationship are simultaneously stored, and then any one corresponding relationship may be selected, and the validity of the received current instruction is verified under the current application.
Step 404: and operating the application file corresponding to the current application through the received current instruction.
The Native smart card has established a corresponding application file system for each application, that is, a third correspondence between the application code and the application file as shown in fig. 3.
Therefore, the COS of the Native smart card firstly obtains the application code corresponding to the current application, then determines the application file corresponding to the application code according to the third corresponding relation between the application code and the application file, and finally operates the determined application file according to the current instruction.
For example: if the corresponding code corresponding to the current application a is obtained, the application file corresponding to the application a code is determined according to the third corresponding relationship between the application code and the application file shown in fig. 3, as shown in table 3:
| application code | Application files |
| Application A code | ADF1 |
TABLE 3
Thus, the COS can operate the file ADF1 according to the received current instruction, and implement the function corresponding to the application a.
Step 405: and discarding the received current instruction or returning an error code, and ending the application process.
Here, if the current instruction cannot be found in the first instruction list, it indicates that the current instruction is not a legal instruction, and the verification fails, so that the received current instruction is discarded, or an error code is returned to the interface device, and the current application process is ended.
Step 406: and operating the Native smart card through the current instruction.
Here, the received current instruction is a non-application type instruction, so that it is not necessary to scan an application list supported by the current instruction, the current instruction can be executed in any case, and the Native smart card is operated instead of the specified application file.
When the received current instruction is an application selection instruction, the application selected by the current instruction can be determined from the stored multiple applications, and the selected application is updated to be the current application, so that the current application is updated when the instruction is received next time; when the received current instruction is a channel instruction, the corresponding channel can be closed or opened according to the received current instruction.
In step 404 of the foregoing embodiment, there may be multiple ways to obtain the application code corresponding to the current application, where the multiple ways include:
when only the first corresponding relationship between the application and the instruction is stored in the Native smart card, or when the first corresponding relationship between the application and the instruction is stored in the Native smart card, all applications corresponding to the current instruction can be searched in the first corresponding relationship, a second application list is formed by all searched applications, and then the current application is searched in the formed second application list, so that the application code of the current application can be obtained.
When only the second corresponding relationship between the application and the instruction is stored in the Native smart card, or when the first and second corresponding relationships between the application and the instruction are stored in the Native smart card at the same time, the second application list corresponding to the current instruction can be directly determined from the stored second corresponding relationship between the application and the instruction, and then the current application is searched in the determined second application list, so that the application code of the current application is known.
According to the method for realizing multiple applications of the smart card, a multi-application Native smart card can be determined, and referring to fig. 5, the method includes: an authentication unit 100 and an operation unit 200. Wherein,
and the verification unit 100 is configured to, when the received current instruction is an application-type instruction, perform validity verification on the received current instruction under the current application according to the stored correspondence between the application and the instruction.
And an operation unit 200, configured to, when the verification passes, operate the application file corresponding to the current application through the current instruction.
The verification unit 100 may determine a first instruction list corresponding to the current application according to the stored first corresponding relationship between the application and the instruction, and determine that the current instruction is legal when the determined first instruction list includes the current instruction.
Alternatively, the verification unit 100 may determine a second application list corresponding to the current instruction according to the stored second corresponding relationship between the application and the instruction, and determine that the current instruction is legal when the determined second application list includes the current application.
Of course, the verification unit 100 performs validity verification on the received current instruction, and when the verification fails, the Native smart card may also discard the current instruction or return an error code.
The operation unit 200 includes: acquisition subunit 210, determination subunit 220, and operation subunit 230
An obtaining subunit 210, configured to obtain an application code corresponding to the current application.
The determining subunit 220 is configured to determine, according to the third corresponding relationship between the application code and the application file, the application file corresponding to the application code.
And an operation subunit 230, configured to operate the determined application file according to the current instruction.
The obtaining sub-unit 210 may search a second application list corresponding to the current instruction according to the stored first corresponding relationship between the application and the instruction, and determine an application code corresponding to the current application according to the second application list. Or,
the obtaining sub-unit 210 may determine a second application list corresponding to the current instruction from the stored second corresponding relationship between the application and the instruction, and determine an application code corresponding to the current application according to the second application list.
Of course, the Native smart card in the embodiment of the present invention may further include:
and the updating unit is used for determining the application selected by the current instruction from the stored multiple applications and updating the selected application to the current application when the received current instruction is the instruction for selecting the application.
In the embodiment of the invention, the Native smart card for realizing multi-application can also be a Native electronic key and other similar Native devices with a safety processing function in practical application.
In summary, in the embodiment of the present invention, the Native smart card performs validity verification on the received current instruction under the current application according to the stored corresponding relationship between the application and the instruction, and when the verification is passed, operates the application file corresponding to the current application through the current instruction. Therefore, by establishing the mapping relation among the application codes, the application files and the instructions, the application file corresponding to another application is prevented from being operated under the current application, the independence of each application is ensured, and the safety of each application is improved.
It will be apparent to those skilled in the art that various changes and modifications may be made in the present invention without departing from the spirit and scope of the invention. Thus, if such modifications and variations of the present invention fall within the scope of the claims of the present invention and their equivalents, the present invention is intended to include such modifications and variations.
Claims (10)
1. A method for realizing multiple applications of a smart card is characterized in that a Native smart card is applied, and the method comprises the following steps:
when the received current instruction is an application type instruction, carrying out validity verification on the received current instruction under the current application according to the stored corresponding relation between the application and the instruction;
and when the verification is passed, operating the application file corresponding to the current application through the current instruction.
2. The method of claim 1, wherein the validating the received current instruction for legitimacy under the current application comprises:
determining a first instruction list corresponding to the current application according to the stored first corresponding relation between the application and the instruction, and determining that the current instruction is legal when the determined first instruction list comprises the current instruction; or,
and determining a second application list corresponding to the current instruction according to the stored second corresponding relation between the application and the instruction, and determining that the current instruction is legal when the determined second application list comprises the current application.
3. The method of claim 1, wherein the operating the application file corresponding to the current application through the current instruction comprises:
acquiring an application code corresponding to the current application;
determining an application file corresponding to the application code according to the third corresponding relation between the application code and the application file;
and operating the determined application file according to the current instruction.
4. The method of claim 3, wherein the obtaining the application code corresponding to the current application comprises:
searching a second application list corresponding to the current instruction according to the first corresponding relation between the stored application and the instruction, or determining the second application list corresponding to the current instruction from the second corresponding relation between the stored application and the instruction;
and determining the application code corresponding to the current application according to the second application list.
5. The method of claim 1, wherein when the received current instruction is a select application instruction, further comprising:
and determining the application selected by the current instruction from the saved multiple applications, and updating the selected application as the current application.
6. A multi-application Native smart card, comprising:
the verification unit is used for verifying the validity of the received current instruction under the current application according to the stored corresponding relation between the application and the instruction when the received current instruction is an application type instruction;
and the operation unit is used for operating the application file corresponding to the current application through the current instruction when the verification is passed.
7. The smart card of claim 6,
the verification unit is further configured to determine a first instruction list corresponding to the current application according to the stored first corresponding relationship between the application and the instruction, and when the determined first instruction list includes the current instruction, determine that the current instruction is legal; or,
the verification unit is further configured to determine a second application list corresponding to the current instruction according to the stored second corresponding relationship between the application and the instruction, and determine that the current instruction is legal when the determined second application list includes the current application.
8. The smart card of claim 6, wherein the operation unit comprises:
the obtaining subunit is used for obtaining an application code corresponding to the current application;
the determining subunit is used for determining the application file corresponding to the application code according to the third corresponding relation between the application code and the application file;
and the operation subunit is used for operating the determined application file according to the current instruction.
9. The smart card of claim 8,
the obtaining subunit is further configured to search a second application list corresponding to the current instruction according to the stored first corresponding relationship between the application and the instruction, and determine an application code corresponding to the current application according to the second application list; or,
the obtaining subunit is further configured to determine a second application list corresponding to the current instruction from the stored second corresponding relationship between the application and the instruction, and determine an application code corresponding to the current application according to the second application list.
10. The smart card of claim 6, further comprising:
and the updating unit is used for determining the application selected by the current instruction from the stored multiple applications and updating the selected application to the current application when the received current instruction is the instruction for selecting the application.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2009100913288A CN101630373B (en) | 2009-08-18 | 2009-08-18 | Method and device for realizing multi-application of intelligent card |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2009100913288A CN101630373B (en) | 2009-08-18 | 2009-08-18 | Method and device for realizing multi-application of intelligent card |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101630373A true CN101630373A (en) | 2010-01-20 |
| CN101630373B CN101630373B (en) | 2012-05-02 |
Family
ID=41575476
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2009100913288A Expired - Fee Related CN101630373B (en) | 2009-08-18 | 2009-08-18 | Method and device for realizing multi-application of intelligent card |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101630373B (en) |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102033771A (en) * | 2010-12-24 | 2011-04-27 | 北京握奇数据系统有限公司 | Method and device for applying patch program in Java Card |
| CN102054173A (en) * | 2010-12-24 | 2011-05-11 | 北京握奇数据系统有限公司 | Smart card and method for integrating multiple telecom applications on same |
| CN103236003A (en) * | 2013-04-09 | 2013-08-07 | 深圳市雄帝科技股份有限公司 | E-wallet payment method and device |
| CN107229489A (en) * | 2016-12-02 | 2017-10-03 | 天地融科技股份有限公司 | A kind of multi-application smart card and its selective method for application and device |
| CN109711221A (en) * | 2018-12-28 | 2019-05-03 | 飞天诚信科技股份有限公司 | A kind of method that monitoring relationship is applied in multi-application smart card and its inquiry |
-
2009
- 2009-08-18 CN CN2009100913288A patent/CN101630373B/en not_active Expired - Fee Related
Cited By (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102033771A (en) * | 2010-12-24 | 2011-04-27 | 北京握奇数据系统有限公司 | Method and device for applying patch program in Java Card |
| CN102054173A (en) * | 2010-12-24 | 2011-05-11 | 北京握奇数据系统有限公司 | Smart card and method for integrating multiple telecom applications on same |
| CN102054173B (en) * | 2010-12-24 | 2013-03-13 | 北京握奇数据系统有限公司 | Smart card and method for integrating multiple telecom applications on same |
| CN102033771B (en) * | 2010-12-24 | 2013-09-25 | 北京握奇数据系统有限公司 | Method and device for applying patch program in Java Card |
| CN103236003A (en) * | 2013-04-09 | 2013-08-07 | 深圳市雄帝科技股份有限公司 | E-wallet payment method and device |
| CN107229489A (en) * | 2016-12-02 | 2017-10-03 | 天地融科技股份有限公司 | A kind of multi-application smart card and its selective method for application and device |
| CN109711221A (en) * | 2018-12-28 | 2019-05-03 | 飞天诚信科技股份有限公司 | A kind of method that monitoring relationship is applied in multi-application smart card and its inquiry |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101630373B (en) | 2012-05-02 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| JP5758120B2 (en) | Method for processing application commands from physical channels using portable electronic devices and corresponding devices and systems | |
| CN107908485B (en) | Interface parameter transmission method, device, equipment and computer readable storage medium | |
| EP2940640A1 (en) | Method for controlling payment device for selecting payment means | |
| CN102087715B (en) | Information processing device, information processing method and program | |
| CN101630373B (en) | Method and device for realizing multi-application of intelligent card | |
| US20130185740A1 (en) | Information processing apparatus, ic chip, information processing method, program, and information processing system | |
| US10528857B2 (en) | IC card, portable electronic device, and information processing method | |
| CN110866258B (en) | Rapid vulnerability positioning method, electronic device and storage medium | |
| KR101062011B1 (en) | Smart card and user authentication method with signature information input unit | |
| US9953198B2 (en) | Systems and methods for a cloud connected transponder | |
| CN102136085A (en) | Telecom smart card and telecom smart card-based non-contact application management method | |
| US20120067947A1 (en) | Ic card, mobile electronic device and data processing method in ic card | |
| US9978056B2 (en) | Smart card having multiple payment instruments | |
| CN110414651A (en) | Debug the method and device of smart card | |
| CN113361293A (en) | Card swiping method, card controller, electronic device and storage medium | |
| CN103268262A (en) | Method for multiple basebands to access single-user identification card, and processor | |
| KR101740635B1 (en) | Method for storing rfid tag information and near field communication terminal using thereof | |
| EP2793201A1 (en) | Safety information transfer system, device and method based on extended parameter set | |
| US9824246B2 (en) | Radio frequency identification tag having input device | |
| CN102884541A (en) | Method for managing communication between electronic device (such as non-contact chip card) and communication apparatus (such as reader) and corresponding electronic device | |
| CN104572135A (en) | Command processing method, command processing device and terminal | |
| CN111310875A (en) | Reagent detection system, method, computer device and readable storage medium | |
| JP2009230218A (en) | Communication terminal and application deletion method | |
| JP5838713B2 (en) | IC chip, UIM, processing method in IC chip, IC chip processing program, and portable terminal | |
| US9979745B2 (en) | Method and apparatus for transmitting information |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CB03 | Change of inventor or designer information | ||
| CB03 | Change of inventor or designer information |
Inventor after: Zhang Aiming Inventor after: Wang Youjun Inventor before: Zhang Aiming |
|
| CP01 | Change in the name or title of a patent holder | ||
| CP01 | Change in the name or title of a patent holder |
Address after: 100015 Beijing city Chaoyang District Dongzhimen West eight Street No. 2 room Wanhong Yan Dong Business Garden Patentee after: BEIJING WATCHDATA Co.,Ltd. Address before: 100015 Beijing city Chaoyang District Dongzhimen West eight Street No. 2 room Wanhong Yan Dong Business Garden Patentee before: BEIJING WATCH DATA SYSTEM Co.,Ltd. |
|
| CF01 | Termination of patent right due to non-payment of annual fee | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20120502 Termination date: 20210818 |