CN102685727A - Method for transmitting and operating application program, system for operating application program, server and terminal - Google Patents
Method for transmitting and operating application program, system for operating application program, server and terminal Download PDFInfo
- Publication number
- CN102685727A CN102685727A CN2011100601283A CN201110060128A CN102685727A CN 102685727 A CN102685727 A CN 102685727A CN 2011100601283 A CN2011100601283 A CN 2011100601283A CN 201110060128 A CN201110060128 A CN 201110060128A CN 102685727 A CN102685727 A CN 102685727A
- Authority
- CN
- China
- Prior art keywords
- application program
- identity information
- terminal
- digital certificate
- module
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Landscapes
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The embodiment of the invention provides a method for transmitting and operating an application program, a system for operating the application program, a server and a terminal. The operation method comprises the following steps of: binding identity information with the application program and writing the identity information into a digital certificate to ensure the safety of the application program; and if only the authentication of the received identity information is passed through the terminal, operating the application program bound with the identity information, so that a user is not required to pay for the application program for a second time after replacing a mobile terminal, and can receives the digital certificate embedded with the identity information and the application program bound with the identity information in the digital certificate from the server or other terminals, the normal operation of the application program on a replaced mobile terminal is ensured, and the normal operation of the application program on a mobile terminal with a refreshed system can be ensured simultaneously.
Description
Technical field
The present invention relates to the terminal technology field, relate in particular to a kind of application program transmission, operation method, system, server and terminal.
Background technology
Continuous enhancing along with mobile terminal function; Application program to portable terminal is also more and more abundanter, and Different software developer develops different application programs, and is sold by each application program network platform unification; Buy and use the situation of application program according to the user; Application program network platform operator and software developer can obtain corresponding remuneration, just because of this, the application program copyright protection regime becomes the important ring that application program is sold.
Application program copy-right protection method commonly used at present is to carry out use authority through digital copyright management (DRM, DigitalRights Management) copyright protection file.Concrete; Arbitrary user through mobile terminal downloads through application program that DRM copyright protection file is protected and after paying corresponding cost; The DRM copyright protection engine of installing on this portable terminal upgrades; Thereby realize the binding of application program and portable terminal, the user can only pass through this application program of running of mobile terminal of binding, thereby the scope of application of limits application.
Present application program copy-right protection method can be guaranteed the fail safe of application program; Avoid the illegal copies and the use of application program; Can effectively protect the rights and interests of software developer and application program network platform operator, but for the user of down load application program, when the user need change portable terminal or refresh the system of portable terminal; All can make the renewal of DRM copyright protection engine lose efficacy; Cause can't continuing to use through the application program that DRM copyright protection file is protected, the user need download and pay the expense of using this application program again and realize continuing to use, thereby causes the duplicate payment problem of application program.
To above problem, prior art provides a kind of safety installation method of java application, and this method adopts the digital signature mode to java application basic protection to be provided; After application program downloads to portable terminal, in the process of set up applications, read the IMSI information of portable terminal; And generate an independent authenticating documents and write down this information; In the application program running, utilize the authenticating documents that generates, whether verifying application programs moves on legal portable terminal.Utilize this method, after changing portable terminal or refreshing mobile terminal system, can guarantee that also application program is in portable terminal after the replacing or the normal operation on the portable terminal behind the system refresh.But the problem that this method exists is; Generate an independent authenticating documents during with java application and the binding of IMSI information; This IMSI binds and possibly distorted, and causes any user or portable terminal all can use this application program, makes the fail safe of application program suffer damage.
Therefore; Need badly and introduce a kind of application program transmission, operating scheme; Both can guarantee the fail safe of application program, avoid the illegal copies and the use of application program, again can be after changing portable terminal and mobile terminal system and refreshing; Need not the duplicate payment purchase applications, can guarantee normally operation in terminal or the terminal behind the system refresh of application program after replacing.
Summary of the invention
The embodiment of the invention provides a kind of application program transmission, operation method, system, server and terminal, can't satisfy the fail safe of application program and the problem that application program is normally moved on terminal after the replacing or the terminal behind the system refresh under the situation of not paying again in the solution prior art simultaneously.
A kind of application program sending method, this method comprises:
The application program download request that receiving terminal reports carries identity information and application program identification in this application program download request;
When in confirming the application program identification corresponding identity information of having preserved, comprising the identity information that receives, said identity information is embedded digital certificate;
The digital certificate and the said application program identification corresponding application program that embed identity information are sent to said terminal.
A kind of application program sending method, this method comprises:
First terminal receives the application program download request at second terminal, carries application program identification in this application program download request;
First terminal sends to second terminal with said application program identification corresponding application program and the digital certificate that embeds identity information.
A kind of application program operation method, this method comprises:
The terminal receives digital certificate and the application requested sign corresponding application program that embeds identity information;
The identity information that embeds in the digital certificate that end-on is received carries out authentication, when authentication is passed through, and the application program that operation receives.
A kind of application program operational system, this system comprises:
Server; Be used for the application program download request that receiving terminal reports; Carry identity information and application program identification in this application program download request; When in the application program identification corresponding identity information of confirming to have preserved, comprising the identity information that receives, said identity information is embedded digital certificate, and the digital certificate and the said application program identification corresponding application program that will embed identity information send to said terminal;
The terminal is used for when the identity information authentication that the digital certificate that receives is embedded is passed through, moving this application program.
A kind of application program operational system, this system comprise first terminal and second terminal, wherein:
First terminal is used to receive the application program download request at second terminal, carries application program identification in this application program download request, and said application program identification corresponding application program and the digital certificate that embeds identity information are sent to second terminal;
Second terminal is used for when the identity information authentication that the digital certificate that receives is embedded is passed through, moving this application program.
A kind of server, said server comprises:
Receiver module is used for the application program download request that receiving terminal reports, and carries identity information and application program identification in this application program download request;
Comparison module, whether be the said application program identification corresponding identity information of having preserved, when in confirming the application program identification corresponding identity information of having preserved, comprising the identity information that receives, trigger writing module if being used for more said identity information;
Writing module is used for said identity information is embedded digital certificate;
Sending module is used for the digital certificate and the said application program identification corresponding application program that embed identity information are sent to said terminal.
A kind of terminal, this terminal comprises:
Receiver module is used to receive digital certificate and the said application program identification corresponding application program that embeds identity information;
Authentication module, the identity information that is used for the digital certificate that receives is embedded carries out authentication;
The operation module is used for when the authentication module authentication is passed through, moving this application program.
A kind of terminal, this terminal comprises:
First receiver module is used to receive the application program download request that other-end sends, and carries first application program identification in this application program download request;
Data transmission blocks is used for said first application program identification corresponding application program and the digital certificate that embeds identity information are sent to said other-end.
In the technical scheme provided by the invention; Through identity information and application program are bound; And identity information write the fail safe that digital certificate is guaranteed application program; And as long as the end-on identity information authentication of receiving is passed through, can move the application program of binding with this identity information, make that the user changes portable terminal after; Need not to pay again purchase applications; Can receive digital certificate that has embedded identity information and the application program of binding from server or from other-end, guarantee the normal operation on the portable terminal after application program is changed, can guarantee the normal operation of application program on the portable terminal behind the updating system simultaneously with the identity information this digital certificate.
Description of drawings
The flow chart of steps of the application program sending method that Fig. 1 provides for the embodiment of the invention one;
The structural representation of the digital certificate of the X.509 form that Fig. 2 provides for the embodiment of the invention one;
The flow chart of steps of the application program sending method that Fig. 3 provides for the embodiment of the invention two;
The flow chart of steps of the application program operation method that Fig. 4 provides for the embodiment of the invention three;
The flow chart of steps of the application program operation method that Fig. 5 provides for the embodiment of the invention four;
The structural representation of the application program operational system that Fig. 6 provides for the embodiment of the invention five;
The structural representation of the application program operational system that Fig. 7 provides for the embodiment of the invention six;
The structural representation of the server that Fig. 8 provides for the embodiment of the invention seven;
The structural representation at the terminal that Fig. 9 provides for the embodiment of the invention eight;
The structural representation at the terminal that Figure 10 provides for the embodiment of the invention nine.
Embodiment
Technical scheme provided by the invention is in the security requirement of satisfying application program; Can satisfy the normal operation of application program on the portable terminal behind the system refresh; And to the situation of changing portable terminal; Portable terminal after the replacing can need not duplicate payment from server down load application program again, also can all not influence the normal use of application program on the portable terminal after the replacing from former terminal downloads application program.
Technical scheme of the present invention is elaborated with each embodiment below in conjunction with Figure of description.
The down load application program first at the terminal; Reach the follow-up needs in terminal down load application program again; As change that application program that portable terminal, terminal preserve is damaged or other are when needing again the problem from server down load application program; All can obtain the application program that the terminal needs, and when repeating, need not duplicate payment from server down load application program from server.Through embodiment one, from server side, the application programs sending method is elaborated below.
Embodiment one,
The embodiment of the invention one provides a kind of application program sending method, and the steps flow chart of method is as shown in Figure 1, specifically may further comprise the steps:
The application program download request that step 101, receiving terminal report.
When certain application program is downloaded at needs in the terminal; Send the application program download request to server; Carry identity information in this application program download request; Said identity information is used for confirming the main consuming body after this application program is downloaded, and the application program identification that is used to identify the application program that this terminal request downloads.
In this step; Server can be according to the corresponding relation of application program identification of having preserved and identity information; Whether judgement comprises the identity information that carries in the application program download request in the said application program identification corresponding identity information of having preserved; If when comprising the identity information that receives in the application program identification corresponding identity information of confirming to have preserved, confirm that said terminal paid correlative charges, redirect continues execution in step 104; Otherwise, confirm that said terminal do not pay correlative charges, execution in step 103 as yet.
Whether paid the correlative charges of down load application program through judging the terminal; Can realize that the application program of user in changing terminal, terminal is damaged or other are when needing again the problem of down load application program; Can need not duplicate payment through continuing to move the application program of having bought from the method for server down load application program again, thereby protect user's rights and interests.
In this step; When server does not comprise the identity information that receives in confirming the application program identification corresponding identity information of having preserved; Require said terminal that the application program identification corresponding application program of carrying in the application program download request of sending is paid; And after the success of said terminal payment, recorder to the application program download request in the application program identification of carrying and the corresponding relation of identity information.After this step is accomplished, can continue execution in step 104, also execution in step 102 again.
Digital certificate adopts public-key cryptosystem, promptly utilizes a pair of key that matches each other to encrypt, decipher.Each user has one and is merely the private cipher key (private key) that I am grasped, and deciphers and signs with it; Have a public keys (PKI) simultaneously and also can externally disclose, be used for encrypting and certifying signature.In various embodiments of the present invention; Server will utilize the application program after the digital certificate technique encryption (authentication) to be sent to the terminal; And the terminal carries out obtaining executable application program after the corresponding decryption oprerations, thereby guarantees application transfer process safe property and integrality.
Server embeds digital certificate with said identity information and specifically comprises:
Server extracts the terminal corresponding identity information that reports this request from the application program download request that receives, and this identity information is embedded digital certificate, thereby identity information and digital certificate are bound.
The form of digital certificate generally adopts X.509 international standard.When said digital certificate is based on the digital certificate of form X.509; The structure of this format digital certificate is as shown in Figure 2; Can utilize the extended field of digital certificate to embed the identity information of extraction; Can be in the clauses and subclauses of the String of extended field type, embed with extensible markup language (eXtensible Markup Language, XML) identity information write of form; Said identity information can write in the clauses and subclauses of a String type, also can write in the clauses and subclauses of a plurality of String types.
Concrete, because each clauses and subclauses of this format digital certificate extension field comprise expansion type, expanding value and three territories of key mark, the expansion type that writes the clauses and subclauses of identity information is String; The content format that is used for identifying these clauses and subclauses is a character string; Expanding value is the identity information of XML form, and key mark can be used to represent this identity information corresponding grade, is 1 as setting key mark; Represent that the identity information corresponding grade that embeds in these clauses and subclauses is 1 grade, is highest level; Setting key mark is 2, representes that the identity information corresponding grade that embeds in these clauses and subclauses is 2 grades, for second advanced other.
Digital certificate and said application program identification corresponding application program that step 105, server will embed identity information send to said terminal.
Server extracts application program identification from the application program download request that receives; Utilization has embedded this application program identification corresponding application program of digital certificate authentication of identity information; Through authentication; Digital certificate and application program are bound, thereby realized the binding of identity information and application program, and the digital certificate and the said application program identification corresponding application program that will embed identity information send to said terminal.
Concrete, digital certificate and said application program identification corresponding application program that server will embed identity information send to said terminal and can be following dual mode:
Digital certificate and said application program identification corresponding application program that first kind, server will embed identity information directly are pushed to said terminal
Second kind, server are signed and issued digital certificate, and generate download link, and indicating terminal is downloaded digital certificate and the said application program identification corresponding application program that embeds identity information from this download link.
More excellent, after the step 101, before the step 104, can further include step 101 ':
Step 101 ', server sets the valid expiration date that application program is moved in the terminal in the digital certificate of application program.
A plurality of terminals to request down load application program; Can set identical valid expiration date for each terminal, also can set the different effective time limit for each terminal, as; According to the difference of each terminal pins, be that different effective time limit is set at each terminal to the application program institute defrayment of request download.
In Fig. 1, with step 101 ' be positioned at after the step 101, illustrate before the step 102.
Embodiment two,
Down in the face of after changing portable terminal, the portable terminal after the replacing is from former mobile terminal downloads application program, and the process of normally moving this application program describes.With former terminal definitions is first terminal, and the portable terminal after the replacing is defined as second terminal, and then, the embodiment of the invention two provides a kind of application program sending method from the angle at first terminal, and the flow chart of steps of this method is as shown in Figure 3, specifically may further comprise the steps:
The application program download request that send at step 201, reception second terminal.
Carry application program identification in this application program download request, ask first terminal that this application program identification corresponding application program is sent to second terminal.
Step 202, first terminal send to second terminal with the digital certificate of said application program identification corresponding application program and embedding identity information.
In embodiment two, the application program that first terminal obtains can be downloaded (method of utilizing embodiment one to provide) from server, also can be from other-end, like (method of utilizing present embodiment two to provide) downloaded in the 3rd terminal.
Below through embodiment three, to the application program sending method that the embodiment of the invention one and embodiment two provide, (second terminal) side from the terminal, the application programs operation method is elaborated.
Embodiment three,
The embodiment of the invention three provides a kind of application program operation method, and the steps flow chart of method is as shown in Figure 4, specifically may further comprise the steps:
In the present embodiment, the digital certificate of embedding identity information and application program can be that the terminal obtains from server or other-end.
In this step, the identity information that embeds in the digital certificate that end-on is received carries out authentication, and this authentication specifically comprises:
The identity information of local storage is read at the terminal, and utilizes the identity information of local storage that the identity information that embeds in the digital certificate that receives is carried out authentication.
The terminal to the identity information authentication that receives through the time, as, when the identity information that receives matees with terminal self corresponding identity information, move this application program.
Before step 301, said method can further include:
Step 301 ': report the application program download request.
The terminal can report the application program download request to server or other-end, can carry identity information and application program identification in this application program download request.
In the present embodiment, said operation can also can be the use first after installing for installing.
Application program through the embodiment of the invention one, embodiment two and embodiment three provide is sent, operation method, is guaranteeing applications security, avoids the illegal copies and the use of application program; And can behind the system refresh of changing terminal or terminal, still can continue to run application, solved on the basis of the technical problem that the present invention proposes; Terminal after the replacing can obtain this application program from the terminal before changing, also can download this application program from server again, all need not duplicate payment; Can continue to move this application program, and, when the terminal is damaged or runs into other and need again the problem from server down load application program in application program; Also all can need not duplicate payment; Can realize the continuation operation of application program, simultaneously again from server down load application program; Can also set the valid expiration date that application program is moved in the terminal, improve the flexibility of protection application program.
To the mobile applications network platform, the identity information among the embodiment one can identify for SIM, like cell-phone number; To Google's application program network platform, identity information can be the Google account, to microsoft application program network platform; Identity information can be Microsoft's account, like Windows Live ID, below to be directed against the mobile applications network platform; Identity information is that cell-phone number is an example, and the scheme of the embodiment of the invention one and embodiment three is elaborated.
Embodiment four,
Be illustrated in figure 5 as the flow chart of steps of the application program operation method that the embodiment of the invention four provides, specifically may further comprise the steps:
Said application program download request carries cell-phone number and application program identification.
The legitimacy of step 302, server authentication cell-phone number.
Server extracts cell-phone number information from the application program download request that receives; And verify the legitimacy of this information, whether legal whether or first digit be non-0 numeral like the figure place of checking cell-phone number, when confirming that cell-phone number is legal cell-phone number; Continue execution in step 303; Otherwise, the flow process of end application operation, and can point out the user mobile phone number information errors.
In this step, server during for the said application program identification corresponding mobile phone of having preserved, can embed the cell-phone number that extracts the extended field of digital certificate at the cell-phone number of confirming to receive.As shown in Figure 2, when said digital certificate is the digital certificate of X.509 form, can in the expansion codomain of the clauses and subclauses of the String of digital certificate extended field type, write the cell-phone number information of writing with the XML form.
In this step, when said digital certificate is the digital certificate of X.509 form, can also set the valid expiration date that the application program identification corresponding application program is moved in this terminal in the term of validity field of digital certificate, be 1 year as setting valid expiration date.
If said terminal is the terminal after changing down load application program again and since the terminal after changing with change before terminal phone number identical, therefore, also need not to pay again, server confirms that the terminal after the replacing paid the correlative charges of down load application program.
The application program identification corresponding application program of carrying in the digital certificate application programs download request that server by utilizing writes is carried out authentication, and after authentication is accomplished, generates download link, supplies the application program of terminal downloads behind digital certificate authentication.
Whether terminal corresponding mobile phone number and the cell-phone number that receives are mated the checking of (consistent) can be at the terminal carry out during set up applications, carry out in the time of also can behind the set up applications of terminal, carrying out this application program first.Below with at the terminal during set up applications, number whether consistent process describes the verification terminal corresponding mobile phone with the cell-phone number that receives.
Install request is sent at step 306, terminal.
The terminal after application program download to be accomplished, the installation of executive utility.
Whether step 307, terminal verification terminal corresponding mobile phone be number consistent with the cell-phone number that receives.
The cell-phone number of self is read at the terminal, and matees with (carrying in application program of from download link, downloading and the digital certificate) cell-phone number that receives, when two cell-phone numbers are consistent; Execution in step 308; Otherwise, withdraw from the installation of application program, the running of end application.
Other information in the digital certificate are read at the terminal; Like the version number of application program, sequence number, public key information etc.; And analyze, compile, and the information stores after will analyzing, compiling is to the terminal so that when the application program of this digital certificate authentication of operation according to this information and executing.
After analysis, compiling and the storage of terminal other information in accomplishing digital certificate, accomplish the installation of application program, follow-uply can carry out the use of application program.
Application program according to the embodiment of the invention one~embodiment four provides is sent, operation method, and the embodiment of the invention five~embodiment nine provides following application program operational system, server and terminal.
Embodiment five,
Be illustrated in figure 6 as the structural representation of the application program operational system that the embodiment of the invention five provides, this system comprises server 11 and terminal 12, wherein:
Said server 11 also is used for when confirming that the application program identification corresponding identity information of having preserved does not comprise the identity information that receives; Indicate said terminal that the application program identification corresponding application program of carrying in the application program download request of sending is paid; And after the success of said terminal payment, recorder to the application program download request in the application program identification of carrying and the corresponding relation of identity information.
Said server 11 specifically is used for when said digital certificate is based on the digital certificate of form X.509, in the clauses and subclauses of the String type in the digital certificate extended field, embeds the identity information of extensible markup language XML form.
Said server 11 specifically is used for embedding in the expansion codomain of the clauses and subclauses of this String type the identity information of said XML form.
Said server 11 also is used for when said digital certificate is based on the digital certificate of form X.509; After the application program download request that receiving terminal reports; Digital certificate and application program are sent to before the terminal, in the digital certificate of application program, set the valid expiration date that application program is moved in the terminal.
Embodiment six,
Be illustrated in figure 7 as the structural representation of the application program operational system that the embodiment of the invention six provides, this system comprises first terminal 21 and second terminal 22, wherein:
First terminal 21 is used to receive the application program download request at second terminal, carries application program identification in this application program download request, and said application program identification corresponding application program and the digital certificate that embeds identity information are sent to second terminal; Second terminal 22 is used for when the identity information authentication that the digital certificate that receives is embedded is passed through, moving this application program.
The function at wherein said first terminal and second terminal can be integrated in same terminal simultaneously, and promptly a terminal both can be used as the use of first terminal, also can be used as second terminal and used.
Embodiment seven,
Be illustrated in figure 8 as the structural representation of the server that the embodiment of the invention seven provides, this server comprises receiver module 31, comparison module 32, writing module 33 and sending module 34, wherein:
Said server also comprises logging modle 35, wherein
Said comparison module 32 also is used for when confirming that the application program identification corresponding identity information of having preserved does not comprise the identity information that receives, trigger recording module 35.
Said write module 33 specifically is used for when said digital certificate is based on the digital certificate of form X.509, in the clauses and subclauses of the String type in the digital certificate extended field, embeds the identity information of extensible markup language XML form.
Said write module 33 specifically is used for embedding in the expansion codomain of the clauses and subclauses of this String type the identity information of said XML form.
Said server also comprises term of validity setting module 36:
Term of validity setting module 36 is used for when said digital certificate is based on the digital certificate of form X.509, in the digital certificate of application program, sets the valid expiration date that application program is moved in the terminal.
Embodiment eight,
Be illustrated in figure 9 as the structural representation at the terminal that the embodiment of the invention eight provides, this terminal comprises receiver module 41, authentication module 42 and operation module 43, wherein:
Receiver module 41 is used to receive digital certificate and the said application program identification corresponding application program that embeds identity information; The identity information that authentication module 42 is used for the digital certificate that receives is embedded carries out authentication; Operation module 43 is used for when the authentication module authentication is passed through, moving this application program.
Said authentication module 42 specifically is used to read the identity information of local storage, and utilizes the identity information of local storage that the identity information that embeds in the digital certificate that receives is carried out authentication.
Said terminal can further include sending module 44:
Sending module 44 is used to report the application program download request, carries identity information and application program identification in this application program download request.
Embodiment nine,
The structural representation at the terminal that provides for the embodiment of the invention nine shown in figure 10, this terminal comprise first receiver module 51 and data transmission blocks 52, wherein:
Said terminal also comprises second receiver module 53, authentication module 54 and operation module 55, wherein:
The identity information that authentication module 54 is used for the digital certificate that receives is embedded carries out authentication.
Said terminal can further include request sending module 56:
Request sending module 56 is used to report the application program download request, carries the identity information and second application program identification in this application program download request, perhaps carries second application program identification.
Obviously, those skilled in the art can carry out various changes and modification to the present invention and not break away from the spirit and scope of the present invention.Like this, belong within the scope of claim of the present invention and equivalent technologies thereof if of the present invention these are revised with modification, then the present invention also is intended to comprise these changes and modification interior.
Claims (19)
1. an application program sending method is characterized in that, this method comprises:
The application program download request that receiving terminal reports carries identity information and application program identification in this application program download request;
When in confirming the application program identification corresponding identity information of having preserved, comprising the identity information that receives, said identity information is embedded digital certificate;
The digital certificate and the said application program identification corresponding application program that embed identity information are sent to said terminal.
2. the method for claim 1 is characterized in that, said method also comprises:
If do not comprise the identity information that receives in the application program identification corresponding identity information of confirming to have preserved, then after said terminal payment success, recorder to the application program download request in the application program identification of carrying and the corresponding relation of identity information.
3. according to claim 1 or claim 2 method is characterized in that said digital certificate is based on the X.509 digital certificate of form;
Said identity information is embedded digital certificate specifically to be comprised:
In the clauses and subclauses of the String type in the digital certificate extended field, embed the identity information of extensible markup language XML form.
4. method as claimed in claim 3 is characterized in that, the identity information that in the clauses and subclauses of said String type, embeds the XML form specifically comprises:
Embed the identity information of said XML form in the expansion codomain of the clauses and subclauses of this String type.
5. the method for claim 1 is characterized in that, said digital certificate is based on the X.509 digital certificate of form;
After the application program download request that receiving terminal reports, digital certificate and application program are sent to before the terminal, said method also comprises:
In the digital certificate of application program, set the valid expiration date that application program is moved in the terminal.
6. an application program sending method is characterized in that, this method comprises:
First terminal receives the application program download request at second terminal, carries application program identification in this application program download request;
First terminal sends to second terminal with said application program identification corresponding application program and the digital certificate that embeds identity information.
7. an application program operation method is characterized in that, this method comprises:
The terminal receives digital certificate and the application requested sign corresponding application program that embeds identity information;
The identity information that embeds in the digital certificate that end-on is received carries out authentication, when authentication is passed through, and the application program that operation receives.
8. method as claimed in claim 7 is characterized in that, the identity information that embeds in the digital certificate that end-on is received carries out authentication, specifically comprises:
The identity information of local storage is read at the terminal, and utilizes the identity information of local storage that the identity information that embeds in the digital certificate that receives is carried out authentication.
9. an application program operational system is characterized in that, this system comprises:
Server; Be used for the application program download request that receiving terminal reports; Carry identity information and application program identification in this application program download request; When in the application program identification corresponding identity information of confirming to have preserved, comprising the identity information that receives, said identity information is embedded digital certificate, and the digital certificate and the said application program identification corresponding application program that will embed identity information send to said terminal;
The terminal is used for when the identity information authentication that the digital certificate that receives is embedded is passed through, moving this application program.
10. an application program operational system is characterized in that, this system comprises first terminal and second terminal, wherein:
First terminal is used to receive the application program download request at second terminal, carries application program identification in this application program download request, and said application program identification corresponding application program and the digital certificate that embeds identity information are sent to second terminal;
Second terminal is used for when the identity information authentication that the digital certificate that receives is embedded is passed through, moving this application program.
11. a server is characterized in that, said server comprises:
Receiver module is used for the application program download request that receiving terminal reports, and carries identity information and application program identification in this application program download request;
Comparison module, whether be the said application program identification corresponding identity information of having preserved, when in confirming the application program identification corresponding identity information of having preserved, comprising the identity information that receives, trigger writing module if being used for more said identity information;
Writing module is used for said identity information is embedded digital certificate;
Sending module is used for the digital certificate and the said application program identification corresponding application program that embed identity information are sent to said terminal.
12. server as claimed in claim 11 is characterized in that, said server also comprises logging modle, wherein:
Said comparison module also is used for when confirming that the application program identification corresponding identity information of having preserved does not comprise the identity information that receives the trigger recording module;
Logging modle is used for after the success of said terminal payment, recorder to the application program download request in the application program identification and the corresponding relation of identity information of carrying, and when record is accomplished the triggering writing module.
13. like claim 11 or 12 described servers, it is characterized in that,
The said write module specifically is used for when said digital certificate is based on the digital certificate of form X.509, in the clauses and subclauses of the String type in the digital certificate extended field, embeds the identity information of extensible markup language XML form.
14. server as claimed in claim 13 is characterized in that,
The said write module specifically is used for embedding in the expansion codomain of the clauses and subclauses of this String type the identity information of said XML form.
15. server as claimed in claim 11 is characterized in that, said server also comprises term of validity setting module:
Term of validity setting module is used for when said digital certificate is based on the digital certificate of form X.509, in the digital certificate of application program, sets the valid expiration date that application program is moved in the terminal.
16. a terminal is characterized in that, this terminal comprises:
Receiver module is used to receive digital certificate and the said application program identification corresponding application program that embeds identity information;
Authentication module, the identity information that is used for the digital certificate that receives is embedded carries out authentication;
The operation module is used for when the authentication module authentication is passed through, moving this application program.
17. terminal as claimed in claim 16 is characterized in that,
Said authentication module specifically is used to read the identity information of local storage, and utilizes the identity information of local storage that the identity information that embeds in the digital certificate that receives is carried out authentication.
18. a terminal is characterized in that, this terminal comprises:
First receiver module is used to receive the application program download request that other-end sends, and carries first application program identification in this application program download request;
Data transmission blocks is used for said first application program identification corresponding application program and the digital certificate that embeds identity information are sent to said other-end.
19. terminal as claimed in claim 18 is characterized in that, said terminal also comprises:
Second receiver module is used to receive the digital certificate and the second application program identification corresponding application program that embeds identity information;
Authentication module, the identity information that is used for the digital certificate that receives is embedded carries out authentication;
The operation module is used for when the authentication module authentication is passed through, moving this second application program identification corresponding application program.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201110060128.3A CN102685727B (en) | 2011-03-11 | 2011-03-11 | Method for transmitting and operating application program, system for operating application program, server and terminal |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201110060128.3A CN102685727B (en) | 2011-03-11 | 2011-03-11 | Method for transmitting and operating application program, system for operating application program, server and terminal |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102685727A true CN102685727A (en) | 2012-09-19 |
| CN102685727B CN102685727B (en) | 2015-07-01 |
Family
ID=46816965
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201110060128.3A Active CN102685727B (en) | 2011-03-11 | 2011-03-11 | Method for transmitting and operating application program, system for operating application program, server and terminal |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102685727B (en) |
Cited By (16)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103546887A (en) * | 2013-10-29 | 2014-01-29 | 小米科技有限责任公司 | Application software transmitting method, device and terminal and server |
| CN103905390A (en) * | 2012-12-26 | 2014-07-02 | 联想(北京)有限公司 | Permission acquisition method, device, electronic equipment and system |
| WO2014201991A1 (en) * | 2013-06-20 | 2014-12-24 | 华为终端有限公司 | Application purchase method and terminal |
| WO2015013974A1 (en) * | 2013-08-02 | 2015-02-05 | 博世尼克资讯股份有限公司 | Device for permitting program, program transaction device and method for permitting program thereof |
| CN104753676A (en) * | 2013-12-31 | 2015-07-01 | 北龙中网(北京)科技有限责任公司 | Identity verifying method and device for mobile application developer |
| CN104850775A (en) * | 2014-02-14 | 2015-08-19 | 北京奇虎科技有限公司 | Method and device for assessing safety of application program |
| CN105069646A (en) * | 2015-07-27 | 2015-11-18 | 立德高科(昆山)数码科技有限责任公司 | Business APP renewing method based on information sent by server and system |
| CN105205372A (en) * | 2015-08-26 | 2015-12-30 | 宇龙计算机通信科技(深圳)有限公司 | Digital certificate reading method, device and system for terminal, and terminal |
| CN106851628A (en) * | 2013-12-05 | 2017-06-13 | 华为终端有限公司 | Download the method and apparatus of the file of operator |
| CN107251106A (en) * | 2014-12-23 | 2017-10-13 | 法雷奥舒适驾驶助手公司 | The method securely transmitted for virtual key and the mirror method for distinguishing for mobile terminal |
| CN110417554A (en) * | 2018-04-26 | 2019-11-05 | 华为技术有限公司 | A kind of method and device for verifying terminal device identity |
| US10623952B2 (en) | 2014-07-07 | 2020-04-14 | Huawei Technologies Co., Ltd. | Method and apparatus for authorizing management for embedded universal integrated circuit card |
| CN111182529A (en) * | 2019-11-26 | 2020-05-19 | 腾讯云计算(北京)有限责任公司 | Police application processing method and device, electronic equipment and storage medium |
| CN112256280A (en) * | 2020-09-01 | 2021-01-22 | 郑州富联智能工坊有限公司 | Information processing apparatus and information processing method |
| CN113031973A (en) * | 2021-03-01 | 2021-06-25 | 湖北亿咖通科技有限公司 | Download installation method of paid vehicle-mounted application |
| CN114666112A (en) * | 2022-03-14 | 2022-06-24 | 亿咖通(湖北)技术有限公司 | Communication authentication method, device, electronic equipment and storage medium |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20070267491A1 (en) * | 2006-05-16 | 2007-11-22 | Az, Ltd. | Shop information distribution method, shop information distribution system, information management server and portable information terminal |
| CN101466094A (en) * | 2007-12-18 | 2009-06-24 | 郭诺 | Method, server and deciphering device for protecting digital contents of mobile communication application |
| CN101945366A (en) * | 2009-07-07 | 2011-01-12 | 中国移动通信集团公司 | Experiential accounting method, proxy module, terminal and system |
| CN101959179A (en) * | 2009-07-17 | 2011-01-26 | 华为技术有限公司 | Method for providing mobile terminal application program, and server and mobile terminal |
-
2011
- 2011-03-11 CN CN201110060128.3A patent/CN102685727B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20070267491A1 (en) * | 2006-05-16 | 2007-11-22 | Az, Ltd. | Shop information distribution method, shop information distribution system, information management server and portable information terminal |
| CN101466094A (en) * | 2007-12-18 | 2009-06-24 | 郭诺 | Method, server and deciphering device for protecting digital contents of mobile communication application |
| CN101945366A (en) * | 2009-07-07 | 2011-01-12 | 中国移动通信集团公司 | Experiential accounting method, proxy module, terminal and system |
| CN101959179A (en) * | 2009-07-17 | 2011-01-26 | 华为技术有限公司 | Method for providing mobile terminal application program, and server and mobile terminal |
Cited By (24)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103905390B (en) * | 2012-12-26 | 2017-05-24 | 联想(北京)有限公司 | Permission acquisition method, device, electronic equipment and system |
| CN103905390A (en) * | 2012-12-26 | 2014-07-02 | 联想(北京)有限公司 | Permission acquisition method, device, electronic equipment and system |
| WO2014201991A1 (en) * | 2013-06-20 | 2014-12-24 | 华为终端有限公司 | Application purchase method and terminal |
| CN104240091A (en) * | 2013-06-20 | 2014-12-24 | 华为终端有限公司 | Application buying method and terminals |
| CN104240091B (en) * | 2013-06-20 | 2018-05-11 | 华为终端(东莞)有限公司 | A kind of method and terminal for buying application |
| WO2015013974A1 (en) * | 2013-08-02 | 2015-02-05 | 博世尼克资讯股份有限公司 | Device for permitting program, program transaction device and method for permitting program thereof |
| US10223509B2 (en) | 2013-08-02 | 2019-03-05 | Bothnic Information Co. Ltd. | Device of licensing program, program transaction device and method of licensing program |
| CN103546887A (en) * | 2013-10-29 | 2014-01-29 | 小米科技有限责任公司 | Application software transmitting method, device and terminal and server |
| US10768918B2 (en) | 2013-12-05 | 2020-09-08 | Huawei Device Co., Ltd. | Method and device for downloading profile of operator |
| CN106851628A (en) * | 2013-12-05 | 2017-06-13 | 华为终端有限公司 | Download the method and apparatus of the file of operator |
| CN106851628B (en) * | 2013-12-05 | 2020-08-07 | 华为终端有限公司 | Method and device for downloading files of operator |
| CN104753676A (en) * | 2013-12-31 | 2015-07-01 | 北龙中网(北京)科技有限责任公司 | Identity verifying method and device for mobile application developer |
| CN104850775A (en) * | 2014-02-14 | 2015-08-19 | 北京奇虎科技有限公司 | Method and device for assessing safety of application program |
| US10623952B2 (en) | 2014-07-07 | 2020-04-14 | Huawei Technologies Co., Ltd. | Method and apparatus for authorizing management for embedded universal integrated circuit card |
| CN107251106A (en) * | 2014-12-23 | 2017-10-13 | 法雷奥舒适驾驶助手公司 | The method securely transmitted for virtual key and the mirror method for distinguishing for mobile terminal |
| CN105069646A (en) * | 2015-07-27 | 2015-11-18 | 立德高科(昆山)数码科技有限责任公司 | Business APP renewing method based on information sent by server and system |
| CN105205372A (en) * | 2015-08-26 | 2015-12-30 | 宇龙计算机通信科技(深圳)有限公司 | Digital certificate reading method, device and system for terminal, and terminal |
| CN110417554A (en) * | 2018-04-26 | 2019-11-05 | 华为技术有限公司 | A kind of method and device for verifying terminal device identity |
| CN111182529A (en) * | 2019-11-26 | 2020-05-19 | 腾讯云计算(北京)有限责任公司 | Police application processing method and device, electronic equipment and storage medium |
| CN111182529B (en) * | 2019-11-26 | 2022-11-29 | 腾讯云计算(北京)有限责任公司 | Police application processing method and device, electronic equipment and storage medium |
| CN112256280A (en) * | 2020-09-01 | 2021-01-22 | 郑州富联智能工坊有限公司 | Information processing apparatus and information processing method |
| CN113031973A (en) * | 2021-03-01 | 2021-06-25 | 湖北亿咖通科技有限公司 | Download installation method of paid vehicle-mounted application |
| CN114666112A (en) * | 2022-03-14 | 2022-06-24 | 亿咖通(湖北)技术有限公司 | Communication authentication method, device, electronic equipment and storage medium |
| CN114666112B (en) * | 2022-03-14 | 2023-08-15 | 亿咖通(湖北)技术有限公司 | Communication authentication method, device, electronic equipment and storage medium |
Also Published As
| Publication number | Publication date |
|---|---|
| CN102685727B (en) | 2015-07-01 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102685727B (en) | Method for transmitting and operating application program, system for operating application program, server and terminal | |
| CN110532735B (en) | Firmware upgrading method | |
| CN107077557B (en) | Method and device for releasing and verifying software application program | |
| US7146645B1 (en) | Dedicated applications for user stations and methods for downloading dedicated applications to user stations | |
| CN101317380B (en) | Method and system for license backup and recovery | |
| CN100515134C (en) | Mobile phone software encryption and verification method | |
| CN102760219A (en) | Android platform software protecting system, method and equipment | |
| CN104199654A (en) | Open platform calling method and device | |
| CN106936588B (en) | Hosting method, device and system of hardware control lock | |
| CN103220264A (en) | Methods to provide digital signature to secure flash programming function | |
| CN102314578A (en) | System and method for realizing software protection | |
| CN103390122B (en) | Application program transmitting method, application program operating method, sever and terminal | |
| CN104199657A (en) | Call method and device for open platform | |
| CN104683299A (en) | Control method for software registration, authentication server and terminal | |
| CN103888475A (en) | Method and device for protecting multimedia data | |
| EP1561301B1 (en) | Software integrity test in a mobile telephone | |
| CN111585995A (en) | Method and device for transmitting and processing safety wind control information, computer equipment and storage medium | |
| KR102585404B1 (en) | Data security apparatus | |
| EP3696698A1 (en) | Method of protecting a software program against tampering | |
| CN102831357B (en) | Encryption and authentication protection method and system of secondary development embedded type application program | |
| CN103403729A (en) | Secure management and personalization of unique code signing keys | |
| CN108923910A (en) | A kind of method that mobile application APK is anti-tamper | |
| CN105743651A (en) | Method and apparatus for utilizing card application in chip security domain, and application terminal | |
| CN105227300A (en) | A kind of acquisition methods of key and system | |
| KR101711024B1 (en) | Method for accessing temper-proof device and apparatus enabling of the method |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |