CN102087716A - Multi-application Java smart card - Google Patents

Multi-application Java smart card Download PDF

Info

Publication number
CN102087716A
CN102087716A CN2011100498723A CN201110049872A CN102087716A CN 102087716 A CN102087716 A CN 102087716A CN 2011100498723 A CN2011100498723 A CN 2011100498723A CN 201110049872 A CN201110049872 A CN 201110049872A CN 102087716 A CN102087716 A CN 102087716A
Authority
CN
China
Prior art keywords
card
virtual
application
virtual card
manager
Prior art date
Application number
CN2011100498723A
Other languages
Chinese (zh)
Other versions
CN102087716B (en
CN102087716K1 (en
Inventor
熊传光
陈华林
Original Assignee
武汉天喻信息产业股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 武汉天喻信息产业股份有限公司 filed Critical 武汉天喻信息产业股份有限公司
Priority to CN 201110049872 priority Critical patent/CN102087716B/en
Publication of CN102087716A publication Critical patent/CN102087716A/en
Publication of CN102087716K1 publication Critical patent/CN102087716K1/zh
Application granted granted Critical
Publication of CN102087716B publication Critical patent/CN102087716B/en

Links

Abstract

The invention discloses a multi-application Java smart card which comprises a Java Card virtual machine, a smart card operating system and a smart card chip. The multi-application Java smart card is characterized by further comprising a plurality of virtual cards mutually independent; each virtual card is corresponding to one application provider for providing application; each virtual card comprises a Card Manager for independently controlling the resource of the corresponding virtual card to provide the safety verification service of a terminal access corresponding to the virtual card; and each virtual card correspondingly manages the respective Electrically Erasable Programmable Read-Only Memory (EEPROM) for the content management of the virtual card. The smart card can realize that the issuer and the application provider of the smart card coexist on one physical card mutually and independently and have mutually equal status, thereby satisfying the requirement of each issuing party of co-branded cards.

Description

A kind of Java smart card of using more
Technical field
The present invention relates to field of intelligent cards, relate in particular to a kind of many application Java smart cards and distributing method thereof of on individual physics card, realizing a plurality of virtual card applied environment functions that possess.
Background technology
One card for multiple uses is along with the application of IC cards field is expanded and the technical requirement of generation, such as bank and other industry, especially there is the industry (as public transport, social security, communication etc.) of a large number of users jointly to issue multi-application card, both can increase issued volume, also brought facility, also improved the popularity of bank card brand simultaneously to the holder.In existing joint name card distribution pattern, it between card issuing merchant and the application provider a kind of master slave relation, be embodied in the card, promptly be that the card issuing merchant is the effector of all resources on the card, and general application provider must could obtain corresponding resource under card issuing merchant's mandate, the card issuing merchant can unilaterally regain the resource of distributing to application provider, and what the multi-application card scheme of current main-stream such as Java (Multos) Global Platform supported is exactly this business model.Above-mentioned distribution pattern can not satisfy the requirement of joint name card distribution each side sometimes, for example from security standpoint, distribution each side wishes oneself can control one's own side's application fully, that is to say, there is not the difference of card issuing merchant and application provider in distribution each side on card, all share a card, all are the application providers of equality.In this case, card issuing merchant and application provider coexist as on the physics card, but are separate in logic, and existing Java Global Platform card can not be supported this distribution pattern.
Summary of the invention
At problems of the prior art, the present invention proposes a kind of smart card of using more, integrated a plurality of virtual cards on a physics card, each virtual card has all comprised a virtual card manager (Card Manager), each virtual card is safeguarded the state of self separately, each virtual card carries out the card Content Management on own affiliated EEPROM, thereby realize that card issuing merchant and application provider coexist as on the physics card in logic independently of each other, satisfy the requirement of joint name card distribution each side.
Realize that the concrete technical scheme that purpose of the present invention adopts is:
A kind of smart card of using comprises being integrated in a plurality of separate virtual cards, JavaCard virtual machine, smart card operating system and intelligent card chip on the physics card more.
Different application providers mode with virtual card on card exists, and each virtual card carries out the card Content Management on own affiliated EEPROM.The corresponding application provider of each virtual card, be used to provide application, each virtual card comprises a Card Manager, be used to control the resource of its corresponding virtual card, the safety demonstration service of the corresponding virtual card of terminal access is provided, the all corresponding management of each virtual card has EEPROM separately, is used to carry out the virtual card Content Management.
Application under the virtual card can only be downloaded, create and be deleted by virtual card, and EEPROM required in whole process can only apply for from the EEPROM resource of virtual card management, equally, the EEPROM of virtual card and affiliated application thereof release also is recovered in the EEPROM resource of virtual card management.
This programme is based on that [GP2.1.1] design, and in the architecture of card, RTE API, GPAPI, OPEN, Runtime Environment are consistent with the description in [GP2.1.1].In the present invention, RTE API, Runtime Environment are please respectively with reference to [JCVM2.2.1] [JCRE2.2.1] [JCAPI2.2.1].Different application providers mode with virtual card on card exists, the corresponding virtual card of application provider, and different virtual cards is mutually independently.Following emphasis is described the notion of virtual card.
Virtual card in this programme is similarly with a multi-application card in logic, has all comprised a Card Manager.This Card Manager is the same with Card Manager in [GP2.1.1], has controlled the resource of virtual card, and the safety demonstration service of terminal access virtual card is provided.In this programme, there is not the card mode of definition in [GP2.1.1] in the physics card, the substitute is the state of virtual card, and virtual card has been realized the card mode of definition in [GP2.1.1] and changed the mechanism, every virtual card maintenance state separately is not subjected to the influence of other virtual card states.
In the card that meets [GP2.1.1], after resetting, card only have the basic logic passage to activate, mean that a default application is only arranged is selected at the basic logic passage.In this programme, after card resets, only have a virtual card to be activated, each virtual card can dispose a default application, if this virtual card is configured to the virtual card of default activation, then the default application of this virtual card can be chosen by the basic logic passage when card resets.Virtual card can also choose should be used under it to be activated by select command, this means the application that different virtual cards is managed, and its AID is unique on whole card (many virtual cards).
The EEPROM of physics card distributes to different virtual cards when pre-individualizing.For virtual card, most important resource is EEPROM, when card carries out individualizing in advance, can create many virtual cards as required, can dispose the EEPROM resource of specified quantity in the virtual card constructive process.Virtual card can not be deleted after creating, and the EEPROM resource of its management is managed use alone by it.
Order and mechanism that virtual card carries out the card Content Management meet [GP2.1.1].
The present invention also provides a kind of distributing method of this smart card, specifically comprises:
(1) card is individualized in advance
According to service needed, for a virtual card is created by each application provider, and the EEPROM resource of size is specified in application.The EEPROM resource of this virtual card full powers management oneself.
(2) application provider is individualized
Each application provider downloads the application of oneself, creates and uses, and finish individualized to what use.
Smart card of the present invention can realize that card issuing merchant and application provider coexist as on the physics card in logic independently of each other, has coequal status, satisfies the requirement of joint name card distribution each side.
Description of drawings
Fig. 1 is for having now based on GP architecture system synoptic diagram.
Fig. 2 is the smart card planar structure block diagram of integrated many virtual cards of the present invention.
Fig. 3 is the smart card three-dimensional structure diagram of integrated many virtual cards of the present invention.
Fig. 4 is the Content Management synoptic diagram of virtual card.
Fig. 5 is the distribution schematic flow sheet of card.
Embodiment
Below by by embodiment and accompanying drawing the present invention being described in further detail, but following examples only are illustrative, and protection scope of the present invention is not subjected to the restriction of these embodiment.
Shown in Fig. 2 and 3, a kind of smart card of using more, comprise and be integrated in a plurality of separate virtual cards and JavaCard virtual machine, smart card operating system and intelligent card chip on the physics card, the JavaCard virtual machine is explained the bytecode of carrying out application of IC cards, and smart card operating system is in charge of the various hardware resources of intelligent card chip.
The corresponding application provider of each virtual card, be used to provide application, each virtual card comprises a Card Manager, be used to control the resource of its corresponding virtual card, the safety demonstration service of the corresponding virtual card of terminal access is provided, the all corresponding management of each virtual card has EEPROM separately, is used to carry out the virtual card Content Management.
For EEPROM management, the Card Manager of each virtual card increases a record attribute size1, and size1 writes down this Card Manager maximum can be with how many EEPROM spaces, the appointment when this Card Manager creates of this value.After selecting certain related security domain to be the application of this Card Manager, if apply for the EEPROM space of a size size, the EEPROM partition function is when distributing EEPROM, can find its record attribute size1 according to the Card Manager of current application association, if size1>=size, then be allocated successfully, and revise size1=size1-size; Otherwise, the application failure.When needs discharge the EEPROM space of size size, in like manner, after EEPROM release function is finished EEPROM release, can find its record attribute size1 according to the Card Manager of current application association, revise size1=size1+size.
Get the order that remains the EEPROM space for GP, can directly find the record attribute size1 of this Card Manager, return size1.
Fig. 4 is the Content Management of virtual card, and the application of each virtual card and bag all are oneself to manage independently, comprises download, installs and deletion.After creating certain virtual card, can under the root directory of EEPROM allocation list, form a bag and an application table that belongs to this virtual card, when each increase or delete a new bag or new the application, will at first find the bag and the application table of the virtual card management of this bag or association, doing in this table then increases or deletion action.
When the information of bag or application is got in order for GP, can directly find bag and the application table that belongs to this virtual card at the EEPROM allocation list, and find bag or application wherein and return corresponding information.
Fig. 5 is the distribution flow process of card, has comprised the following step:
● card is individualized in advance
According to service needed, for a virtual card is created by each application provider, and application is specified the EEPROM resource of size, the EEPROM resource of this virtual card full powers management oneself.The constructive process of virtual card is actual to be exactly the process of creating its Card Manager, in the constructive process of Card Manager, its authority byte is 9E, in the installation parameter territory, and the size in the EEPROM space that needs appointment Card Manager is managed and initial escape way authenticate key.
● application provider is individualized
Each application provider downloads the application of oneself, creates and uses, and finish individualized to what use.Certain bag and application under the virtual card environment is installed, and security domain that should specified associations is the virtual card manager (Card Manager) of this virtual card.Like this, the unified CardManager thus of the resource of this bag and application manages, and other virtual card haves no right to manage.
Card is accepted the new business that above-mentioned application provider provides in user's hand, download the application of new business correspondence, creates and newly uses and finish the individualized of new application.
Should be clear and definite, described embodiment only is a part of embodiment of the present invention, rather than whole embodiment.Based on the embodiment among the present invention, those of ordinary skills belong to the scope of protection of the invention not making the every other embodiment that is obtained under the new work prerequisite of creation.

Claims (7)

1. use the Java smart card one kind more, comprise JavaCard virtual machine, smart card operating system and intelligent card chip, it is characterized in that, this smart card also comprises a plurality of separate virtual cards, the corresponding application provider of each virtual card, be used to provide application, described each virtual card comprises a virtual card manager (Card Manager), the resource that is used for independent control corresponding virtual card, so that the safety demonstration service of the corresponding virtual card of terminal access to be provided, and all corresponding management of each virtual card has EEPROM separately, is used for the Content Management of virtual card.
2. smart card according to claim 1 is characterized in that, the root directory of the EEPROM allocation list of each virtual card generates down bag table and the application table that belongs to corresponding virtual card, and the application and the bag of each virtual card are managed independently by it.
3. smart card according to claim 2, it is characterized in that, described management comprises download, installs and deletion, increasing or deleting a new bag or when newly using, at first find the bag table and the application table of the virtual card management of this new bag or new association, in respective table, do the operation that increases or delete bag or use again, finish the management of application and bag.
4. according to the described smart card of one of claim 1-3, it is characterized in that, comprise a record attribute size1 in the virtual card manager of described each virtual card (Card Manager), be used to write down the maximum available EEPROM spatial value of this virtual card manager (Card Manager), this value is specified when being created at described virtual card manager (Card Manager).
5. according to the described smart card of one of claim 1-4, it is characterized in that, comprise the virtual card of a default activation in described a plurality of virtual cards, after described smart card card resetted, the virtual card of this default activation was activated.
6. smart card according to claim 5, it is characterized in that, described each virtual card disposes default application, default application in the virtual card of default activation can be chosen by the basic logic passage when card resets, in addition, virtual card can also choose should be used under it to be activated by select command.
7. the distributing method of the described smart card of one of claim 1-6 may further comprise the steps:
(1) card is individualized in advance
According to service needed, for a virtual card is created by each application provider, and the EEPROM resource of size is specified in application;
(2) application provider is individualized
Each application provider downloads the application of oneself, creates and uses, and finish individualized to what use.
CN 201110049872 2011-03-02 2011-03-02 Multi-application Java smart card CN102087716B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN 201110049872 CN102087716B (en) 2011-03-02 2011-03-02 Multi-application Java smart card

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN 201110049872 CN102087716B (en) 2011-03-02 2011-03-02 Multi-application Java smart card

Publications (3)

Publication Number Publication Date
CN102087716A true CN102087716A (en) 2011-06-08
CN102087716K1 CN102087716K1 (en) 2011-06-08
CN102087716B CN102087716B (en) 2013-02-13

Family

ID=44099513

Family Applications (1)

Application Number Title Priority Date Filing Date
CN 201110049872 CN102087716B (en) 2011-03-02 2011-03-02 Multi-application Java smart card

Country Status (1)

Country Link
CN (1) CN102087716B (en)

Cited By (15)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102254119A (en) * 2011-07-15 2011-11-23 华南理工大学 Safe mobile data storage method based on fingerprint U disk and virtual machine
CN102629215A (en) * 2012-02-28 2012-08-08 东信和平智能卡股份有限公司 Communication method and communication device of virtual smart cards
CN102760326A (en) * 2012-07-10 2012-10-31 武汉天喻信息产业股份有限公司 Java virtual machine-based multi-application card swiping method and terminal
CN103106090A (en) * 2013-01-31 2013-05-15 北京大唐智能卡技术有限公司 Smart card and installation method for applying the smart card
CN103514050A (en) * 2012-06-19 2014-01-15 蔡毓芬 Program calling method and mobile device
CN103559073A (en) * 2013-10-28 2014-02-05 飞天诚信科技股份有限公司 Data management method based on Java card
CN103617440A (en) * 2013-12-04 2014-03-05 武汉天喻信息产业股份有限公司 Multi-application smart card achieving multi-way independent control and issuing method thereof
CN103744965A (en) * 2014-01-07 2014-04-23 东信和平科技股份有限公司 Simple multi-platform intelligent card personalization method
WO2014063632A1 (en) * 2012-10-25 2014-05-01 中国银联股份有限公司 Multi-application smart card management system and method
CN103793644A (en) * 2014-02-28 2014-05-14 天地融科技股份有限公司 Method for information safety device to achieve multiple applications, and information safety device and system
WO2015083093A1 (en) * 2013-12-03 2015-06-11 Gbohou Toudie Roger Smart card support for virtual integration of multiple electronic and magnetic cards
US20150186873A1 (en) * 2007-06-22 2015-07-02 Blackhawk Network, Inc. Client Customized Virtual or Physical Card for Use with Selected Merchants
CN106598551A (en) * 2016-12-16 2017-04-26 大唐微电子技术有限公司 Smart card, processing method and device of smart card
CN104156200B (en) * 2013-05-14 2017-07-21 国际商业机器公司 The statement formula configuration operated for card Content Management and the method and system performed
CN108665045A (en) * 2018-05-02 2018-10-16 北京中电华大电子设计有限责任公司 A method of realizing that more publishers' applies Java card more

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1516052A (en) * 2003-01-06 2004-07-28 李之彦 Opened function dynamic integrated intelligent card system
WO2006061754A1 (en) * 2004-12-07 2006-06-15 Philips Intellectual Property & Standards Gmbh System and method for application management on multi-application smart cards
CN101853416A (en) * 2010-06-02 2010-10-06 东信和平智能卡股份有限公司 Physical smart card with virtual smart cards and configuration method of virtual smart card
CN101908120A (en) * 2009-06-02 2010-12-08 上海复旦微电子股份有限公司 Method for realizing all-in-one function of single intelligent card

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1516052A (en) * 2003-01-06 2004-07-28 李之彦 Opened function dynamic integrated intelligent card system
WO2006061754A1 (en) * 2004-12-07 2006-06-15 Philips Intellectual Property & Standards Gmbh System and method for application management on multi-application smart cards
CN101908120A (en) * 2009-06-02 2010-12-08 上海复旦微电子股份有限公司 Method for realizing all-in-one function of single intelligent card
CN101853416A (en) * 2010-06-02 2010-10-06 东信和平智能卡股份有限公司 Physical smart card with virtual smart cards and configuration method of virtual smart card

Cited By (26)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20150186873A1 (en) * 2007-06-22 2015-07-02 Blackhawk Network, Inc. Client Customized Virtual or Physical Card for Use with Selected Merchants
US10846685B2 (en) * 2007-06-22 2020-11-24 Blackhawk Network, Inc. Client customized virtual or physical card for use with selected merchants
CN102254119B (en) * 2011-07-15 2013-08-07 华南理工大学 Safe mobile data storage method based on fingerprint U disk and virtual machine
CN102254119A (en) * 2011-07-15 2011-11-23 华南理工大学 Safe mobile data storage method based on fingerprint U disk and virtual machine
CN102629215A (en) * 2012-02-28 2012-08-08 东信和平智能卡股份有限公司 Communication method and communication device of virtual smart cards
CN103514050A (en) * 2012-06-19 2014-01-15 蔡毓芬 Program calling method and mobile device
CN103514050B (en) * 2012-06-19 2016-12-21 蔡毓芬 Formula method of calling and running gear
CN102760326A (en) * 2012-07-10 2012-10-31 武汉天喻信息产业股份有限公司 Java virtual machine-based multi-application card swiping method and terminal
WO2014063632A1 (en) * 2012-10-25 2014-05-01 中国银联股份有限公司 Multi-application smart card management system and method
CN103778448A (en) * 2012-10-25 2014-05-07 中国银联股份有限公司 Multi-application smart card management system and method
CN103106090B (en) * 2013-01-31 2015-10-28 北京大唐智能卡技术有限公司 The installation method of a kind of smart card and application thereof
CN103106090A (en) * 2013-01-31 2013-05-15 北京大唐智能卡技术有限公司 Smart card and installation method for applying the smart card
US10359999B2 (en) 2013-05-14 2019-07-23 International Business Machines Corporation Declarative configuration and execution of card content management operations for trusted service manager
US9886243B2 (en) 2013-05-14 2018-02-06 International Business Machines Corporation Declarative configuration and execution of card content management operations for trusted service manager
CN104156200B (en) * 2013-05-14 2017-07-21 国际商业机器公司 The statement formula configuration operated for card Content Management and the method and system performed
CN103559073A (en) * 2013-10-28 2014-02-05 飞天诚信科技股份有限公司 Data management method based on Java card
CN103559073B (en) * 2013-10-28 2016-05-25 飞天诚信科技股份有限公司 A kind of data managing method based on Java card
WO2015083093A1 (en) * 2013-12-03 2015-06-11 Gbohou Toudie Roger Smart card support for virtual integration of multiple electronic and magnetic cards
CN103617440A (en) * 2013-12-04 2014-03-05 武汉天喻信息产业股份有限公司 Multi-application smart card achieving multi-way independent control and issuing method thereof
CN103617440B (en) * 2013-12-04 2014-08-20 武汉天喻信息产业股份有限公司 Multi-application smart card achieving multi-way independent control and issuing method thereof
CN103744965A (en) * 2014-01-07 2014-04-23 东信和平科技股份有限公司 Simple multi-platform intelligent card personalization method
CN103793644A (en) * 2014-02-28 2014-05-14 天地融科技股份有限公司 Method for information safety device to achieve multiple applications, and information safety device and system
CN103793644B (en) * 2014-02-28 2017-09-19 天地融科技股份有限公司 Information safety devices realize method, information safety devices and the system of many applications
CN106598551B (en) * 2016-12-16 2019-01-29 大唐微电子技术有限公司 A kind for the treatment of method and apparatus of smart card, smart card
CN106598551A (en) * 2016-12-16 2017-04-26 大唐微电子技术有限公司 Smart card, processing method and device of smart card
CN108665045A (en) * 2018-05-02 2018-10-16 北京中电华大电子设计有限责任公司 A method of realizing that more publishers' applies Java card more

Also Published As

Publication number Publication date
CN102087716K1 (en) 2011-06-08
CN102087716B (en) 2013-02-13

Similar Documents

Publication Publication Date Title
US6296191B1 (en) Storing data objects in a smart card memory
US5901303A (en) Smart cards, systems using smart cards and methods of operating said cards in systems
CN101855887B (en) Sharing or reselling NFC applications among mobile communication devices
JP4348190B2 (en) Smart card system
US6532518B2 (en) Data carrying device and systems for use therewith
CN100421100C (en) Method and apparatus for displaying embedded chip states and embedded chip end-user application states
CN104380261B (en) The locally-supported storage based on cloud
KR101533787B1 (en) Writing application data to a secure element
DE69826318T2 (en) CARD ACTIVATION AT THE DISTRIBUTION AGENCY
CN103917949B (en) Use the component update method and apparatus of management engine
CN100442393C (en) A semiconductor memory card access apparatus, a computer-readable recording medium, an initialization method, and a semiconductor memory card
CN102710814B (en) The control method of virtual machine IP address and device
CN100410882C (en) System and method for centralized software management in virtual machines
CN101685393B (en) Method and system for realizing interface dynamic customization and generation
CN101609403B (en) Page layout dynamic switch method and system
JP5443659B2 (en) Local trusted service manager for contactless smart cards
CN101511051B (en) Method, system and equipment for downloading application business of telecom smart card
CN105531688B (en) The service of resource as other services is provided
US6612486B2 (en) Smart card managing system
CN103425592B (en) EMS memory management process in a kind of multiprocess system and device
CN103229144B (en) Preheating software is installed
JP4902282B2 (en) Business system configuration change method, management computer, and business system configuration change program
CN104750528B (en) A kind of assembly management method and apparatus in Android program
CN101872305B (en) UI (User Interface) performance and service logic separation method and system
KR20120000065A (en) System for optimizing the transfer of stored content in response to a triggering event

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant