Embodiment
In order to make technical problem to be solved by this invention, technical scheme and beneficial effect clearer, clear,, the present invention is further elaborated below in conjunction with accompanying drawing and embodiment.Should be appreciated that specific embodiment described herein only in order to explanation the present invention, and be not used in qualification the present invention.
Near field communication (NFC) (Near Field Communication; NFC) be continue infrared, bluetooth, Wireless Fidelity (WirelessFidelity; Wi-Fi), worldwide interoperability for microwave inserts (Worldwide Interoperability for Microwave Access; WiMax), ultra broadband (Ultra Wideband; UWB), (Radio Frequency Identification, a kind of new wireless communication technique that RFID) grows up afterwards are a kind of contactless identification and interconnection technique to radio frequency identification.Can carry out wireless near field communication at mobile device, consumer electronics product, PC and smart control Tool Room.NFC provides a kind of solution of simple, touch, can let consumer's simple, intuitive ground exchange message, accessed content and service.
STK (SIM TOOL KIT; STK) be a kind of software of small-sized programming language; Simera32K card based on the Java language platform is realized; (Subscriber Identity Module SIM) can realize receiving and sending global system for mobile communications (Global System for Mobile Communications, short message data GSM) in the card can be solidificated in User Recognition; Play the effect of the interface between SIM and the short message, also allow the application software of SIM operation oneself simultaneously.
The embodiment of the invention provides a kind of IC-card information sharing realizing method; Realize based on NFC technology and STK; Realize that through NFC module and STK functional module are set on portable terminal obtaining with safety of IC-card information is shared, this method flow is as shown in Figure 1, comprises the steps:
Step S11: first portable terminal obtains instruction according to the IC-card information of user's input, starts near field communication (NFC) NFC module, from IC-card, obtains IC-card information.
Step S12: first portable terminal is encapsulated in the IC-card information of obtaining in the short message, and short message is sent to second portable terminal.
Preferably, when being encapsulated in the IC-card information of obtaining in the short message, also comprise this IC-card related user authentication information also is encapsulated in the short message, together send to second portable terminal.
Wherein, IC-card related user authentication information comprises one of following message or combination: the ID of the ID that first portable terminal is corresponding, IC correspondence, the ID of second portable terminal correspondence and first portable terminal are to the authorization message of second portable terminal.
The data structure sketch map that is encapsulated in the short message as shown in Figure 2 has wherein comprised IC-card related user authentication information and IC-card information.
Step S13: when second portable terminal receives short message,, obtain the IC-card information that comprises in the short message according to the extraction instruction of user's input.
Accordingly, when second portable terminal obtains the IC-card information that comprises in the short message and sends to IC-card Information Authentication device authentication, also comprise: obtain this IC-card related user authentication information that comprises in the short message and send to IC-card Information Authentication device authentication.
Preferably, said method also comprises:
Step S14: second portable terminal starts the NFC module according to the transmission instruction of user's input, and the IC-card information of obtaining is sent to Information Authentication equipment.
Step S15: the IC-card information that the Information Authentication equipment interconnection is received is verified, when checking is passed through, allows the user to carry out corresponding operation.
Wherein, the process that the IC-card information that the Information Authentication equipment interconnection is received is verified specifically comprises:
Whether the IC information that the Information Authentication device authentication receives is valid data, if then checking is passed through, otherwise checking is not passed through; Or whether the IC information that receives of Information Authentication device authentication is valid data and uses the user of IC information whether to have rights of using according to receiving the checking of IC-card related user authentication information; When all being judged as when being, checking is passed through; Otherwise checking is not passed through.
Above-mentioned IC-card information sharing realizing method of the present invention can be applied in the scene of various use IC-cards such as gate control system, financial sector, banking system, public transit system, is that example describes below with the gate control system.
Wherein, it is as shown in Figure 3 that first portable terminal obtains the realization flow of IC-card information, comprises the steps:
Step S21: first portable terminal is opened the STK menu according to user instruction.
The STK module provides STK menu interface for the user, supplies the user to select to import corresponding operational order.For example: the user can select to open the NFC module, obtains IC information, encapsulate IC information in the medium various instructions of short message.
Step S22: first portable terminal starts near field communication (NFC) NFC module according to the NFC module OPEN of user's input.
First portable terminal is opened the NFC module, carries out the IC-card simulation.
Step S23: first portable terminal obtains instruction according to the IC-card information of user's input, from IC-card, obtains IC-card information.First portable terminal can be opened the NFC module in advance, also can obtain instruction unpack NFC module according to the IC-card information of user's input.
STK realizes obtaining IC-card information through the data that active order control NFC module reads on the IC-card.For example: active order can be Application Protocol Data Unit (Application Protocol Data Unit, APDU) instruction.
With gate inhibition's card is example, then opens to carry out gate inhibition's snap gauge after the NFC module and intend, and obtains the data of gate inhibition's card, so that use during the follow-up gate inhibition of opening.
Step S24: the IC-card information of obtaining is encapsulated in the short message.
For the IC-card that does not need authentication, only need the encapsulation IC information in short message, to get final product, to need authentication, also need encapsulate corresponding authentication information.
Authentication information comprises that the corresponding ID of IC shows the identity of IC-card; The ID that first portable terminal is corresponding shows uses the first mobile terminal user identity; First portable terminal that first portable terminal is licensed, the ID that second portable terminal is corresponding show use second mobile terminal user identity or the like.
With gate inhibition's card is example; Can be with the ID that has the gate inhibition's card that defines in gate inhibition's card system; For example: information such as user's name; First mobile terminal user sign, or first portable terminal licenses the second mobile terminal user sign etc. and is encapsulated in the short message, sends to second portable terminal.
Step S25: short message is sent to second portable terminal.
The short breath that utilizes the original radio communication function of portable terminal will carry IC information sends to other portable terminals, thereby realizes the IC-card information sharing.
After accomplishing IC-card information sharing transmission, can close the NFC module.
In the above-mentioned IC-card information sharing realizing method of the present invention, second portable terminal extracts and verifies that the realization flow of IC-card information is as shown in Figure 4, comprises the steps:
Step S31: second portable terminal receives the short message that first portable terminal sends.
Receiving short message is to utilize the common short message communication function of portable terminal to realize.
Step S32: second portable terminal is opened the STK menu according to user instruction.
The STK module provides STK menu interface for the user, supplies the user to select to import corresponding operational order.For example: the IC-card information in the short message that the user can selective extraction receives sends to various instructions such as Information Authentication equipment with the information of extracting.
The user can select the operational order imported as required, and when carrying IC-card information in the short message of for example finding to receive, the dependent instruction of the IC-card information in the short message that selective extraction receives extracts IC-card information.
Step S33: first portable terminal starts near field communication (NFC) NFC module according to the NFC module OPEN of user's input.
Step S34: the IC information in the note that the extraction instruction fetch that second portable terminal is imported according to the user receives.
When including authentication information in the note that receives, also extract in the lump.
Step S35: the IC effectiveness of information that the checking of second portable terminal extracts.
The short message that IC information is arranged that first portable terminal selects knot to receive, after extracting the IC-card information in the short message, the menu verification IC-card data that provide through the STK module, whether compliant.If data are effective or invalid, all can point out the user.
This step is a preferred steps, and advanced validity is judged before sending to Information Authentication equipment.The related data of IC-card information compliant etc. whether for example.
Step S36: second portable terminal sends to Information Authentication equipment according to the transmission instruction of user's input with the IC-card information of obtaining.
When the related authentication information of IC-card, can send to Information Authentication equipment in the lump, or etc. Information Authentication equipment redispatch when initiatively obtaining.
Second portable terminal can be opened the NFC module in advance, also can import according to the user and send instruction startup NFC module.STK is through active order control NFC module and can verify that the service system of holder's identity is mutual.For example: active order can be the APDU instruction.
With gate inhibition's card is example, then opens to carry out gate inhibition's snap gauge after the NFC module and intend, and first portable terminal sends to gate control system near gate control system with the IC-card information of extracting.
Step S37: the IC-card information that the Information Authentication equipment interconnection is received is verified.
When the IC information that receives is verified,, then need obtain authentication information simultaneously and verify if verify holder's identity according to the needs that require of the service system that can verify holder's identity.If execution in step S38 is passed through in checking; Otherwise execution in step S39.
With gate inhibition's card is example, can verify the portable terminal that the portable terminal that sends gate inhibition's card information is authorized to whether the time, or the ID of this gate inhibition's fastening justice is authorized to user's ID etc. whether the time.Or say the record whether this user is arranged in the gate control system.
For example a proof procedure can be following: at first first mobile terminal user sign is sent to gate control system through the NFC module, in the checking gate control system whether this user is arranged.When checking was passed through, relatively second mobile terminal user identified, and for example whether cell-phone number is the cell-phone number of authorizing.When authentication was passed through, second portable terminal sent to gate control system with gate inhibition's card data.
Step S38: allow the user to carry out corresponding operation.
When checking is passed through, read IC-card information, complete operation through Information Authentication equipment.
Step S39: end or prompting checking are not passed through.
Accomplish IC-card information after the transmission and proof procedure of Information Authentication equipment, can close the NFC module.
Above-mentioned first portable terminal and second portable terminal are confirmed according to its role in IC information sharing process; Each portable terminal both can be used as first portable terminal and also can be used as the use of second portable terminal; Therefore; STK module in the portable terminal offers IC the share menu of user can be as shown in Figure 5, comprising:
Opening/closing NFC is used to allow the user to click and selects to open or close NFC, realizes opening or closing the input of NFC instruction.
Read the IC-card data, be used to allow the user to click and select to obtain IC-card information, can also read the corresponding subscriber authentication information such as ID of IC.
Newly organized short breath is used to allow the user that the IC-card information of obtaining is encapsulated as short message or IC-card information and subscriber authentication information are encapsulated as short message together.
Receive short message, be used for allowing the user to click the IC information of the short message that selective extraction receives, can also extract the subscriber authentication information that is encapsulated in together in the short message.
Verification is also sent the IC-card data, is used to allow the user to click selection and verifies to Information Authentication equipment transmission IC information.When subscriber authentication information, also to send together.
Above-mentioned STK module can also realize the bottom of user data is encrypted, and this enciphered data can only just can be untied at the encrypted right end, and user's critical data is safe in transmission course.AES can adopt the 3DES algorithm of dual key group, and data packet length is 8 bytes, and key length is 8 bytes, and safety of data is guaranteed by key.So the comparatively safe characteristic of STK obtains the safety approval of industries such as finance, bond, telecommunications, when it is applied in the IC-card information sharing, the security reliability of the IC-card information sharing that can guarantee to use in these industries.
According to the IC-card information sharing realizing method that the embodiment of the invention provides, the embodiment of the invention also provides a kind of IC information sharing to realize system, and this system configuration is as shown in Figure 6, comprising: first portable terminal 10 and second portable terminal 20.
First portable terminal 10 is used for obtaining instruction according to the IC-card information of user's input, starts near field communication (NFC) NFC module, from IC-card 30, obtains IC-card information; And the IC-card information of obtaining is encapsulated in the short message, short message is sent to second portable terminal 20.
Second portable terminal 20 when being used to receive short message, according to the extraction instruction of user's input, obtains the IC-card information that comprises in the short message.
Preferably, above-mentioned IC information sharing realizes system, also comprises: Information Authentication equipment 30.
Above-mentioned second portable terminal 20 also is used for starting the NFC module according to the transmission instruction of user's input, and the IC-card information of obtaining is sent to Information Authentication equipment.
Information Authentication equipment 30 is used for the IC-card information that receives is verified, when checking is passed through, allows the user to carry out corresponding operation.
Preferably, above-mentioned first portable terminal 10 also is used for: when the IC-card information of obtaining is encapsulated in short message, this IC-card related user authentication information is encapsulated in the short message; Accordingly; Above-mentioned second portable terminal 20; When also being used for obtaining IC-card information that short message comprises and sending to IC-card Information Authentication device authentication, obtain this IC-card related user authentication information that comprises in the short message and send to IC-card Information Authentication device authentication.
Preferably, above-mentioned Information Authentication equipment 30 specifically is used for: whether the IC information that checking receives is valid data, if then checking is passed through, otherwise checking is not passed through; Or whether the IC information that receives of checking is valid data and uses the user of IC information whether to have rights of using according to receiving the checking of IC-card related user authentication information; When all being judged as when being, checking is passed through; Otherwise checking is not passed through.
The IC-card information sharing realizing method and the system that provide according to the embodiment of the invention; The embodiment of the invention also provides a kind of portable terminal; Its structure is as shown in Figure 7, comprising: STK STK module 101 and near field communication (NFC) NFC module 102.
STK module 101 is used for obtaining instruction according to the IC-card information of user's input, starts near field communication (NFC) NFC module, from IC-card, obtains IC-card information; And the IC-card information of obtaining is encapsulated in the short message, short message is sent to second portable terminal.
NFC module 102 is used for obtaining IC-card information from IC-card.
Preferably, above-mentioned STK module 101 also is used for: when the IC-card information of obtaining is encapsulated in short message, this IC-card related user authentication information is encapsulated in the short message.
Preferably, above-mentioned STK module 101 also is used for: when receiving short message, according to the extraction instruction of user's input, obtain the IC-card information that comprises in the short message.
Preferably, above-mentioned STK module 101 also is used for starting the NFC module according to the transmission instruction of user's input; Above-mentioned NFC module 102 also is used for the IC-card information of obtaining is sent to Information Authentication equipment.
Preferably, above-mentioned STK module 101 also is used for: when obtaining IC-card information that short message comprises and sending to IC-card Information Authentication device authentication, obtain this IC-card related user authentication information that comprises in the short message and send to IC-card Information Authentication device authentication.
The IC-card information sharing realizing method and the system that provide according to the embodiment of the invention; The embodiment of the invention also provides another kind of portable terminal; Its structure is as shown in Figure 8, comprises STK STK module 201, when being used to receive short message; According to the extraction instruction of user's input, obtain the IC-card information that comprises in the short message.
Preferably, above-mentioned portable terminal also comprises: near field communication (NFC) NFC module 202.Wherein: STK module 201 also is used for starting the NFC module according to the transmission instruction of user's input; NFC module 202 is used for the IC-card information of obtaining is sent to Information Authentication equipment.
Preferably, above-mentioned STK module when also being used for obtaining IC-card information that short message comprises and sending to IC-card Information Authentication device authentication, is obtained this IC-card related user authentication information that comprises in the short message and is sent to IC-card Information Authentication device authentication.
The built-in NFC chip of above-mentioned portable terminal is as the NFC module, and has the STK function and can connect the STK card as the STK module.Adopt the I2C bus to be connected between NFC chip and the portable terminal, and employing ISO7816 communication standard communicate between STK card and the portable terminal.Adopt the STK card to control the NFC chip, the concrete realization is the STK function of utilizing the STK card, can be the active order of expansion of GSM11.14, by portable terminal the APDU instruction interpretation is transferred to the NFC chip, to realize the function of STK card control NFC chip.
Said method of the present invention utilizes NFC technology and STK functional characteristic to realize IC-card is shared, and makes things convenient for the use of the IC-card of daily life.
Above-mentioned explanation illustrates and has described a preferred embodiment of the present invention; But as previously mentioned; Be to be understood that the present invention is not limited to the form that this paper discloses, should do not regard eliminating as, and can be used for various other combinations, modification and environment other embodiment; And can in invention contemplated scope described herein, change through the technology or the knowledge of above-mentioned instruction or association area.And change that those skilled in the art carried out and variation do not break away from the spirit and scope of the present invention, then all should be in the protection range of accompanying claims of the present invention.