CN101977377A - Method, system and mobile terminal for reading digital certificate in SIM (Subscriber Identity Module) card - Google Patents
Method, system and mobile terminal for reading digital certificate in SIM (Subscriber Identity Module) card Download PDFInfo
- Publication number
- CN101977377A CN101977377A CN2010102932924A CN201010293292A CN101977377A CN 101977377 A CN101977377 A CN 101977377A CN 2010102932924 A CN2010102932924 A CN 2010102932924A CN 201010293292 A CN201010293292 A CN 201010293292A CN 101977377 A CN101977377 A CN 101977377A
- Authority
- CN
- China
- Prior art keywords
- sim card
- digital certificate
- certificate
- reading
- order
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Mobile Radio Communication Systems (AREA)
Abstract
The invention is applicable to the field of communications and provides a method, a system and a mobile terminal for reading a digital certificate in an SIM (Subscriber Identity Module) card. The method comprises the steps of: reading the digital certificate in the SIM card through AD commands; and realizing access verification of a WLAN (Wireless Local Area Network) according to the digital certificate in the SIM card. The technical scheme of the invention has the advantages of good certificate mobility and high safety.
Description
Technical field
The invention belongs to the communications field, relate in particular to read method, system and the portable terminal of digital certificate in a kind of SIM card.
Background technology
WAPI (WLAN Authenticationand Privacy Infrastructure, WAPI) be to use built-in safety communication agreement (Wired Equivalent Privacy at WLAN (wireless local area network) among the IEEE802.11, WEP) safety problem, the existing read method of realizing the digital certificate of the wlan security solution that CNS GB15629.11 proposes: portable terminal is read and write by the file read-write function and is built in digital certificate in the mobile terminal stores unit.。
According to the technical scheme that prior art provided, find to exist in the prior art following technical problem:
The digital certificate of the technical scheme that prior art provides is to be stored in portable terminal, has following defective: 1, can't realize digital certificate secure distribution, access and use; 2, operator can't realize the unified management to WAPI, realizes large-scale network-estabilishing; 3, digital certificate can't use on other portable terminal, the certificate poor mobility; 4, function expansibility is poor
Summary of the invention
The purpose of the embodiment of the invention is to provide the read method of digital certificate in a kind of SIM card, is intended to solve the following defective that exists in the prior art: can't realize digital certificate secure distribution, access and use; Operator can't realize the unified management to WAPI, realizes large-scale network-estabilishing; Digital certificate can't use on other portable terminal, the certificate poor mobility; The technical problem of function expansibility difference.
The embodiment of the invention is achieved in that the read method of digital certificate in a kind of SIM card, and described method specifically comprises:
By the digital certificate in the AT order reading SIM card;
Realize the networking checking of WLAN according to the digital certificate in the SIM card.
The present invention also provides the reading system of digital certificate in a kind of SIM card, and described system comprises:
Reading unit is used for by the digital certificate in the described expansion AT command reading SIM card;
The networking authentication unit is used for realizing according to the digital certificate in the SIM card networking checking of WLAN.
The present invention also provides a kind of portable terminal, and this portable terminal comprises the reading system of digital certificate in the above-mentioned SIM card,
The embodiment of the invention compared with prior art, beneficial effect is: technical scheme of the present invention with digital certificate store in SIM card, and read digital certificate by AT order, so the digital certificate in this SIM card can be used the portable terminal of this SIM card and use, so it has following technique effect: can realize digital certificate secure distribution, access and use; Operator can realize the unified management to WAPI, realizes large-scale network-estabilishing; Digital certificate can use on other portable terminal, solves the technical problem of certificate poor mobility; Can solve the technical problem of function expansibility difference.。
Description of drawings
Fig. 1 is the flow chart that the invention provides the read method of digital certificate in a kind of SIM card;
Fig. 2 is the flow chart that the embodiment of the invention one provides the read method of digital I certificate in a kind of SIM card;
The topology diagram of the communication system that Fig. 3 provides for the embodiment of the invention two;
The flow chart of the read method of digital I certificate in a kind of SIM card that Fig. 4 provides for the embodiment of the invention two;
The structure chart of the reading system of digital certificate in a kind of SIM card that Fig. 5 provides for the embodiment of the invention three.
Embodiment
In order to make purpose of the present invention, technical scheme and advantage clearer,, the present invention is further elaborated below in conjunction with drawings and Examples.Should be appreciated that specific embodiment described herein only in order to explanation the present invention, and be not used in qualification the present invention.
The invention provides the read method of digital certificate in a kind of SIM card, this method is finished by portable terminal, and the step that this method comprises specifically comprises the steps: as shown in Figure 1
S11, read user's status by AT order and differentiate module (Subscriber Identification Module, SIM) digital certificate in the card;
S12, realize the networking checking of WLAN according to the digital certificate in the SIM card.
Need to prove, the particular location that is stored in the digital certificate in the SIM card in advance can be services sets sign (Service Set Identifier in the SIM card, SSID) catalogue, can certainly be stored in other position in the SIM card, above-mentioned digital certificate is specifically as follows: WAPI certificate or WIFI (Wireless Fidelity) certificate.
Optionally, can also comprise before the above-mentioned S11:
S10, expansion AT (Attention) order, AT is ordered can be from the digital certificate in the reading SIM card in the SIM card.
Need to prove, realize that the method for S10 specifically can comprise:
Revise SIM card catalogue and file and choose state machine, the AT order of digital certificate under the SIM card catalogue is read or is write in expansion, makes the AT order can read and write the interior digital certificate of SIM card.
Be that example illustrates that AT orders the method that reads the WAPI certificate with the WAPI certificate below, suppose that the WAPI certificate is stored in the SSID catalogue of SIM card in advance, the concrete grammar of realizing can for: revise SIM card catalogue and file and choose state machine, the AT order of WAPI certificate under the expansion reading SIM card SSID catalogue, expansion writes WAPI certificate AT order under the SIM card SSID catalogue, makes expansion AT command can read and write certificate under the SIM card SSID catalogue.
The AT order that makes among the above-mentioned S10 can specifically comprise from the step of the digital certificate in the reading SIM card in the SIM card: make this AT order can read or write digital certificate in the SIM card.
Realize S12 concrete grammar can for:
According to the SSID of operator search wlan network in the SIM card, when portable terminal and wlan network synchronously after, use private key certificate in the WAPI certificate of SIM card to realize networking and verify.
Method provided by the invention is used so the digital certificate in this SIM card can be used the portable terminal of this SIM card, so it has the good advantage of certificate mobility because the WAPI certificate is stored in the SIM card.Have again, in SIM card, SIM card belongs to operator's unified management to this method with digital certificate store, so lowered the risk of divulging a secret of digital certificate, the fail safe that has improved digital certificate.And digital certificate is saved in the SIM card, and operator can manage by GSM or 3G network key management mode, can realize large-scale network-estabilishing, can effectively solve the roaming problem, and solves service management and charging problem.And this method with digital certificate and user identity binding after, can make things convenient for operator to expand other functions, function such as mobile terminal payment for example is so it has the advantage of good function expansibility.
Embodiment one
Present embodiment provides the read method of digital certificate in a kind of SIM card, this method is at portable terminal and access point (Access Point, AP) finish between, digital certificate in the present embodiment is that example describes with the WAPI certificate, for the convenience of describing, here the SIM in the portable terminal is listed separately, it is in real work, SIM card should be installed in the portable terminal, this SIM card internal memory contains the WAPI certificate, WAPI certificate and user identity binding, portable terminal have been expanded the AT order makes it read the WAPI certificate in SIM card, and concrete extended method can be referring to the related description among the above-mentioned S11.This method comprises the steps: as shown in Figure 2
S21, portable terminal monitor user ' are opened the wlan network function;
S22, portable terminal are by the WAPI certificate in the expansion AT command reading SIM card;
S23, according to the SSID of SIM card operator search wlan network;
S24, portable terminal and wlan network are synchronous;
S25, portable terminal use the interior private key certificate of the WAPI certificate of SIM to realize access authentication;
S26, portable terminal use user certificate realization business authentication and charging in the SIM card.
The method that present embodiment provides is used so the WAPI certificate in this SIM card can be used the mobile phone of this SIM card, so it has the good advantage of certificate mobility because the WAPI certificate is stored in the SIM card.Have again, this method is stored in SIM card with the WAPI certificate, and SIM card belongs to operator's unified management, has lowered the risk of divulging a secret of WAPI, and has improved the fail safe of WAPI certificate.And the WAPI certificate is saved in the SIM card, and operator can manage by GSM or 3G network key management mode, can realize large-scale network-estabilishing, can effectively solve roaming, and solves service management and charging problem.And this method with WAPI certificate and user identity binding after, can make things convenient for operator to expand other functions, function such as mobile terminal payment for example is so it has the advantage of good function expansibility.
Embodiment two
Present embodiment provides the read method of digital certificate in a kind of SIM card, the method that present embodiment provides realizes in the topological structure of as shown in Figure 3 communication system, the technology scene that present embodiment is realized is, the digital certificate of present embodiment is the example explanation with the WAPI certificate, in the SSID of SIM card catalogue, store the WAPI certificate in advance, expansion AT command makes the AT order WAPI certificate under can the SSID catalogue of reading SIM card.This method comprises the steps: as shown in Figure 4
S41, when the user need insert wlan network, portable terminal is by the WAPI certificate under the SSID catalogue of AT order reading SIM card;
S42, portable terminal are according to the SSID of SIM card operator search wlan network;
S43, portable terminal and wlan network synchronously after, portable terminal uses the private key certificate in the WAPI certificate to send the request of access to AP;
Need to prove that above-mentioned access request carries private key certificate.
S44, AP allow portable terminal to insert wlan network after the private key certificate in the access request is proved to be successful.
The method that present embodiment provides is used so the WAPI certificate in this SIM card can be used the mobile phone of this SIM card, so it has the good advantage of certificate mobility because the WAPI certificate is stored in the SIM card.Have again, this method is stored in SIM card with the WAPI certificate, and SIM card belongs to operator's unified management, has lowered the risk of divulging a secret of WAPI, and has improved the fail safe of WAPI certificate.And the WAPI certificate is saved in the SIM card, and operator can manage by GSM or 3G network key management mode, can realize large-scale network-estabilishing, can effectively solve roaming, and solves service management and charging problem.
Embodiment three
Present embodiment provides the reading system of digital certificate in a kind of SIM card, and this system specifically comprises as shown in Figure 5:
Optionally, the form of expression of above-mentioned digital certificate and digital certificate store can be referring to the related description among the method embodiment at the particular location of SIM card.
Optionally, said system can also comprise:
Order expanding element 53 expansion AT command make the digital certificate of described AT order energy reading pre-stored in SIM card.
Optionally, above-mentioned described AT order can specifically be comprised by the digital certificate of reading pre-stored in SIM card:
Make described AT order can read or write digital certificate in the SIM card.
System provided by the invention since with digital certificate store in SIM card, use so the digital certificate in this SIM card can be used the portable terminal of this SIM card, so it has the good advantage of certificate mobility.Have again, in SIM card, SIM card belongs to operator's unified management with digital certificate store in this system, has lowered the risk of divulging a secret of digital certificate, the fail safe that has improved digital certificate.And digital certificate is saved in the SIM card, and operator can manage by GSM or 3G network key management mode, can realize large-scale network-estabilishing, can effectively solve the roaming problem, and solves service management and charging problem.And this system with digital certificate and user identity binding after, can make things convenient for operator to expand other functions, function such as mobile terminal payment for example is so it has the advantage of good function expansibility.
Embodiment four
Present embodiment provides a kind of portable terminal, and this portable terminal comprises the reading system of the interior digital certificate of SIM card that embodiment three provides.
It should be noted that among said system and the portable terminal embodiment that each included unit is just divided according to function logic, but is not limited to above-mentioned division, as long as can realize function corresponding; In addition, the concrete title of each functional unit also just for the ease of mutual differentiation, is not limited to protection scope of the present invention.
In addition, one of ordinary skill in the art will appreciate that all or part of step that realizes in the foregoing description method is to instruct relevant hardware to finish by program, corresponding program can be stored in a kind of computer-readable recording medium, the above-mentioned storage medium of mentioning can be a read-only memory, disk or CD etc.
In sum, it is good that technical scheme provided by the invention has the certificate mobility, favorable expandability, safe advantage.
The above only is preferred embodiment of the present invention, not in order to restriction the present invention, all any modifications of being done within the spirit and principles in the present invention, is equal to and replaces and improvement etc., all should be included within protection scope of the present invention.
Claims (10)
1. the read method of digital certificate in the SIM card is characterized in that described method specifically comprises:
By the digital certificate in the AT order reading SIM card;
Realize the networking checking of WLAN according to the digital certificate in the SIM card.
2. method according to claim 1 is characterized in that,
Described digital certificate comprises: WAPI certificate or WIFI certificate.
3. method according to claim 1 and 2 is characterized in that, the digital certificate in the described SIM card specifically comprises:
Be stored in the digital certificate under the SSID catalogue of SIM card in advance.
4. method according to claim 1 is characterized in that, described method also comprised before the step of the digital certificate of ordering reading SIM card by AT: expansion AT command makes the digital certificate of described AT order energy reading pre-stored in SIM card.
5. method according to claim 4 is characterized in that, the step of the digital certificate of the described AT of making order energy reading pre-stored in SIM card specifically comprises:
Make described AT order can read or write digital certificate in the SIM card.
6. the reading system of digital certificate in the SIM card is characterized in that described system comprises:
Reading unit is used for by the digital certificate in the described expansion AT command reading SIM card;
The networking authentication unit is used for realizing according to the digital certificate in the SIM card networking checking of WLAN.
7. system according to claim 6 is characterized in that, the digital certificate in the described SIM card specifically comprises:
Be stored in the digital certificate under the SSID catalogue of SIM card in advance.
8. system according to claim 6 is characterized in that, described system also comprises:
The order expanding element is used for expansion AT command, makes the digital certificate of described AT order energy reading pre-stored in SIM card.
9. system according to claim 8 is characterized in that, the described digital certificate of described AT order energy reading pre-stored in SIM card that make specifically comprises:
Make described AT order can read or write digital certificate in the SIM card.
10. a portable terminal is characterized in that, described portable terminal comprises the reading system as digital certificate in the arbitrary described SIM card of claim 6-9.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2010102932924A CN101977377A (en) | 2010-09-27 | 2010-09-27 | Method, system and mobile terminal for reading digital certificate in SIM (Subscriber Identity Module) card |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2010102932924A CN101977377A (en) | 2010-09-27 | 2010-09-27 | Method, system and mobile terminal for reading digital certificate in SIM (Subscriber Identity Module) card |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN101977377A true CN101977377A (en) | 2011-02-16 |
Family
ID=43577217
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2010102932924A Pending CN101977377A (en) | 2010-09-27 | 2010-09-27 | Method, system and mobile terminal for reading digital certificate in SIM (Subscriber Identity Module) card |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101977377A (en) |
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102202054A (en) * | 2011-04-27 | 2011-09-28 | 宇龙计算机通信科技(深圳)有限公司 | Mobile terminal, generation method of WLAN authentication and privacy infrastructure (WAPI) and application method thereof |
| CN102316428A (en) * | 2011-09-30 | 2012-01-11 | 福源立信(北京)科技有限公司 | Method for communication between mobile application client and intelligent card and device |
| CN102387255A (en) * | 2011-10-25 | 2012-03-21 | 福源立信(北京)科技有限公司 | Method and device for utilizing intelligent card to process third-party expanded service data |
| CN108449759A (en) * | 2018-03-28 | 2018-08-24 | 湖南东方华龙信息科技有限公司 | Radio switch-in method and wireless access authentication method |
| CN111970120A (en) * | 2020-07-27 | 2020-11-20 | 山东华芯半导体有限公司 | Method for realizing security application mechanism of encryption card based on OPENSL |
| CN112543454A (en) * | 2020-11-30 | 2021-03-23 | 亚信科技(成都)有限公司 | Authentication method and equipment |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101252434A (en) * | 2008-02-29 | 2008-08-27 | 北京中电华大电子设计有限责任公司 | Apparatus and method for implementing mobile telephone access identification in wireless local area network |
| WO2009106004A1 (en) * | 2008-02-29 | 2009-09-03 | 西安西电捷通无线网络通信有限公司 | Method and system for accessing digital certificate of mobile telephone based on wapi |
| CN101674580A (en) * | 2008-09-12 | 2010-03-17 | 上海顶竹通讯技术有限公司 | Method for accessing mobile core network by utilizing fixed network |
| CN101795198A (en) * | 2009-12-24 | 2010-08-04 | 太仓市同维电子有限公司 | Data card with parental control function and use system and implementation method |
-
2010
- 2010-09-27 CN CN2010102932924A patent/CN101977377A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101252434A (en) * | 2008-02-29 | 2008-08-27 | 北京中电华大电子设计有限责任公司 | Apparatus and method for implementing mobile telephone access identification in wireless local area network |
| WO2009106004A1 (en) * | 2008-02-29 | 2009-09-03 | 西安西电捷通无线网络通信有限公司 | Method and system for accessing digital certificate of mobile telephone based on wapi |
| CN101674580A (en) * | 2008-09-12 | 2010-03-17 | 上海顶竹通讯技术有限公司 | Method for accessing mobile core network by utilizing fixed network |
| CN101795198A (en) * | 2009-12-24 | 2010-08-04 | 太仓市同维电子有限公司 | Data card with parental control function and use system and implementation method |
Cited By (11)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102202054A (en) * | 2011-04-27 | 2011-09-28 | 宇龙计算机通信科技(深圳)有限公司 | Mobile terminal, generation method of WLAN authentication and privacy infrastructure (WAPI) and application method thereof |
| CN102316428A (en) * | 2011-09-30 | 2012-01-11 | 福源立信(北京)科技有限公司 | Method for communication between mobile application client and intelligent card and device |
| CN102316428B (en) * | 2011-09-30 | 2015-04-15 | 北京中清怡和科技有限公司 | Method for communication between mobile application client and intelligent card and device |
| CN102387255A (en) * | 2011-10-25 | 2012-03-21 | 福源立信(北京)科技有限公司 | Method and device for utilizing intelligent card to process third-party expanded service data |
| CN102387255B (en) * | 2011-10-25 | 2014-07-23 | 北京中清怡和科技有限公司 | Method and device for utilizing intelligent card to process third-party expanded service data |
| CN108449759A (en) * | 2018-03-28 | 2018-08-24 | 湖南东方华龙信息科技有限公司 | Radio switch-in method and wireless access authentication method |
| CN108449759B (en) * | 2018-03-28 | 2021-05-04 | 湖南东方华龙信息科技有限公司 | Wireless access method and wireless access authentication method |
| CN111970120A (en) * | 2020-07-27 | 2020-11-20 | 山东华芯半导体有限公司 | Method for realizing security application mechanism of encryption card based on OPENSL |
| CN111970120B (en) * | 2020-07-27 | 2024-03-26 | 山东华芯半导体有限公司 | Implementation method of encryption card security application mechanism based on OPENSSL |
| CN112543454A (en) * | 2020-11-30 | 2021-03-23 | 亚信科技(成都)有限公司 | Authentication method and equipment |
| CN112543454B (en) * | 2020-11-30 | 2022-11-15 | 亚信科技(成都)有限公司 | Authentication method and equipment |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101977377A (en) | Method, system and mobile terminal for reading digital certificate in SIM (Subscriber Identity Module) card | |
| JP4729664B2 (en) | Reuse method of identification data from user equipment identification module by peripheral device | |
| CN101998394B (en) | Fast authentication between heterogeneous wireless networks | |
| CN102523628B (en) | A kind of trunking method of wireless relay apparatus and wireless relay apparatus | |
| CN102970766B (en) | A kind of on-vehicle host and mobile phone carry out the method and system that WIFI is connected automatically | |
| CN103068066A (en) | Intelligent mobile communication terminal and wireless network access method and system thereof | |
| WO2013127124A1 (en) | Method, system and terminal for implementing wi-fi connection through nfc | |
| CN104735606B (en) | Communication means and system based on wearable device | |
| CN106416331A (en) | Electronic subscriber identity module selection | |
| CN107667554A (en) | Decentralized configuration device entity | |
| CN107439027A (en) | The apparatus and method installed and interoperated for electronic user identity module (ESIM) | |
| CN103781069B (en) | Bidirectional-authentication method, device and system | |
| CN100388664C (en) | Access method for realizing WLAN multi mode safety identification | |
| CN103945507A (en) | Method, apparatus, and computer program product for power save control for tethering connections | |
| CN105491093B (en) | Method, server, wireless access point and the terminal that terminal authentication, network access | |
| WO2014048354A1 (en) | Method, terminal and universal integrated circuit card (uicc) for realizing subscriber identity module (sim) card function in terminal | |
| CN103888941A (en) | Method and device for key negotiation of wireless network | |
| CN102209324A (en) | Mobile terminal and method for accessing mobile terminal into wireless local area network (WLAN) hotspot | |
| CN102711082A (en) | Method and system for sharing trustful wireless access point information in mobile communication | |
| US20100217881A1 (en) | Wireless terminal device, wireless connection method, and program | |
| CN103945564A (en) | Wireless network connecting method and system and wireless access point equipment | |
| CN102204306A (en) | Method, device and system for machine type communication (mtc) terminal communicating with network through gateway | |
| CN102118831A (en) | Wireless access method and device | |
| CN100581125C (en) | Access method suitable for WPAN | |
| CN104599211B (en) | A kind of physical examination data uploading method, wireless terminal and Business Management Platform |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C12 | Rejection of a patent application after its publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20110216 |