CN103747443A - Multi-security domain device based on mobile phone user identification card and authentication method thereof - Google Patents
Multi-security domain device based on mobile phone user identification card and authentication method thereof Download PDFInfo
- Publication number
- CN103747443A CN103747443A CN201310628776.3A CN201310628776A CN103747443A CN 103747443 A CN103747443 A CN 103747443A CN 201310628776 A CN201310628776 A CN 201310628776A CN 103747443 A CN103747443 A CN 103747443A
- Authority
- CN
- China
- Prior art keywords
- security domain
- sim card
- security
- mobile phone
- cloud server
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Landscapes
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
The invention discloses a multi-security domain device based on a mobile phone user identification card and an authentication method thereof. The mobile phone user identification card (SIM card) is taken as a personal information security device processing platform, in the SIM software system, the hardware structure of the SIM card is combined, the multi-security domain device is established for storing the data authentication certificate of personal information; through the security and encryption system of the SIM card and a cloud-end application service platform are used to realize personal identity authentication according to a specific authentication algorithm, and after being authorized, services and applications required by users are completed. According to the invention, by utilizing technical features of security, the uncopied performance, uniqueness and the exclusive attribute of the mobile phone user identification card SIM, the SIM card is selected as the carrier of the security domain device, through the card-end authentication and the cloud-end server authentication, the personal information security can be effectively protected.
Description
Technical field
The present invention relates to communication technical field, particularly relate to a kind of based on cellphone subscriber's identification card many security domains device and method for authenticating thereof.
Background technology
The rise of information age, particularly mobile Internet, smart mobile phone becomes the desirable terminal of mobile Internet, is subject to personal user's favor, and the application product of network and mobile phone terminal, as emerged rapidly in large numbersBamboo shoots after a spring rain, emerges in an endless stream.Meanwhile, personal information, particularly personally identifiable information, individual privacy etc. are the information that needs safeguard protection.The means of protection are also very limited at present; occasion in some application; divulging a secret of personal information; stolen, even illegal event, happens occasionally; no matter be coml application; or the requirement of laws and regulations, sets up a safe and reliable personal information security device, is next generation internet problem in urgent need to solve.
Summary of the invention
The object of the invention is to overcome the deficiency of prior art; provide a kind of based on cellphone subscriber's identification card many security domains device and method for authenticating thereof; to utilize cellphone subscriber's identification card SIM to there is fail safe, not reproducible and uniqueness; and exclusive technical characterstic; select SIM card as the carrier of security domain device; by card, hold the authentication of authentication and cloud server, thereby effectively protected the safety of personal information.
The technical solution adopted for the present invention to solve the technical problems is: a kind of based on many security domains of cellphone subscriber's identification card device, comprising:
Cloud server, has ca authentication processing module and authentication process module;
Mobile phone terminal, has Communications Processor Module;
SIM card, has the separate security domain of many groups, and each security domain has: managing keys processing module, for the management of security domain; Unsymmetrical key processing module, stores a pair of unsymmetrical key, for signing, the operation of encryption and decryption; Variable data space, for Store Credentials, signature and private data; Symmetric key processing module, for generation of interim symmetric key, for data encrypting and deciphering;
Mobile phone terminal is realized data communication by wireless network and cloud server, and mobile phone terminal is realized data communication by the data link in mobile phone and SIM card;
Wherein, the authentication request that the ca authentication processing module of cloud server sends by mobile phone terminal according to the corresponding security domain of SIM card, generates the certificate corresponding to the PKI of this security domain; The digital signature that the authentication process module of cloud server sends by mobile phone terminal according to the corresponding security domain of SIM card, is used the validity of corresponding this digital signature of public key verifications of this corresponding security domain;
The unsymmetrical key processing module of SIM card, according to corresponding security domain in SIM card, utilize the PKI of the ca authentication processing module of cloud server to decrypt corresponding certificate, obtain the corresponding PKI of this certificate, then by the validity of the digital signature in security domain corresponding to this public key verifications.
The data of the variable data space storage of described SIM card comprise: unique identifier, domain name claims, security domain state, managing keys, user password, unsymmetrical key type, unsymmetrical key pair, private data space length and private data space.
The variable data space of described SIM card is that in SIM card, to take the data block of fixed size be basic data piece, each data block is provided with two attribute fields, these two attribute fields are security domain index and data block index, find all data blocks of corresponding security domain by ergodic data piece array.
The managing keys processing module of the security domain of described SIM card also comprises for user password and the checking to user password are set.
The security domain of described SIM card and each of extraneous exchanges data walk by command response forming, wherein terminal applies layer sends order by terminal transmission layer to cellphone subscriber's identification card, and cellphone subscriber's identification card returns to a response to terminal applies layer by terminal transmission layer after processing this order; Each specific order matches with a specific response.
A method for authenticating based on the many security domains of cellphone subscriber's identification card, comprising:
Application supplier beyond the clouds server generates public private key pair, and PKI is offered to ca authentication processing module Generates Certificate; Meanwhile, application supplier carries out signature operation with private key to one section of plaintext, generating digital signature; The Communications Processor Module of application supplier by mobile phone terminal first unique ID of reading SIM card returns to cloud server and sets up user basic information for it, secondly in SIM card, create a corresponding security domain, return to PKI to the cloud server of this security domain and preserve, certificate and digital signature are write in security domain corresponding to SIM card simultaneously;
Unique ID of the Communications Processor Module reading SIM card of mobile phone terminal sends cloud server to, and cloud server carries out authentication to this ID;
Select security domain corresponding to application supplier in SIM card, by the ca authentication of cloud server, processed the PKI deciphering certificate of mould, the supplier's that is applied PKI, then by the validity of the digital signature in security domain corresponding to application supplier's public key verifications;
Private key generating digital signing messages by security domain corresponding in SIM card reaches cloud server, is used the validity of corresponding this digital signature of public key verifications of corresponding security domain by cloud server.
Further, also comprise that SIM card A generates random symmetric key, use the PKI of the security domain N of SIM card B to be encrypted operation generating ciphertext C to random symmetric key, ciphertext C is sent to the security domain N of SIM card B be decrypted and obtained random symmetric key by its private key, so far symmetric key has been consulted.
Compared with prior art, the invention has the beneficial effects as follows:
The present invention adopts cellphone subscriber's identification card (SIM card) as the processing platform of personal information security device, in the software architecture of SIM, in conjunction with the hardware configuration of SIM card, sets up many security domains device, is used for storing the data authentication certificate of personal information; By safety and the encryption system of SIM card, with the application service platform in high in the clouds, by specific authentication arithmetic, realize the authentication of personal identification, after authorizing, the needed service of completing user and application; The present invention utilizes cellphone subscriber's identification card SIM to have fail safe, not reproducible and uniqueness; and exclusive technical characterstic; select SIM card as the carrier of security domain device, the authentication of holding authentication and cloud server by card, thus effectively protected the safety of personal information.
Below in conjunction with drawings and Examples, the present invention is described in further detail; But of the present inventionly a kind ofly based on cellphone subscriber's identification card many security domains device and method for authenticating thereof, be not limited to embodiment.
Accompanying drawing explanation
Fig. 1 is the formation block diagram of device of the present invention;
Fig. 2 is the schematic diagram that SIM card of the present invention arranges many security domains;
Fig. 3 is the schematic diagram of the data structure of security domain of the present invention;
Fig. 4 is the structural representation of variable data space of the present invention;
Fig. 5 is that the present invention applies one processing procedure schematic diagram;
Fig. 6 is the schematic diagram that the present invention applies the ciphering process of two short message;
Fig. 7 is the schematic diagram that the present invention applies the decrypting process of two short message;
Fig. 8 is that the present invention applies three processing procedure schematic diagram.
Embodiment
Embodiment
Of the present invention a kind of based on many security domains of cellphone subscriber's identification card device, comprising:
Cloud server, has ca authentication processing module and authentication process module;
Mobile phone terminal, has Communications Processor Module;
SIM card, has the separate security domain of many groups, and each security domain has: managing keys processing module, for the management of security domain; Unsymmetrical key processing module, stores a pair of unsymmetrical key, for signing, the operation of encryption and decryption; Variable data space, for Store Credentials, signature and private data; Symmetric key processing module, for generation of interim symmetric key, for data encrypting and deciphering;
Mobile phone terminal is realized data communication by wireless network and cloud server, and mobile phone terminal is realized data communication by the data link in mobile phone and SIM card;
Wherein, the authentication request that the ca authentication processing module of cloud server sends by mobile phone terminal according to the corresponding security domain of SIM card, generates the certificate corresponding to the PKI of this security domain; The digital signature that the authentication process module of cloud server sends by mobile phone terminal according to the corresponding security domain of SIM card, is used the validity of corresponding this digital signature of public key verifications of this corresponding security domain;
The unsymmetrical key processing module of SIM card, according to corresponding security domain in SIM card, utilize the PKI of the ca authentication processing module of cloud server to decrypt corresponding certificate, obtain the corresponding PKI of this certificate, then by the validity of the digital signature in security domain corresponding to this public key verifications.
As shown in Figure 1, the present invention's invention is to adopt cellphone subscriber's identification card (SIM card) as the processing platform of personal information security device, in the software architecture of SIM, in conjunction with the hardware configuration of SIM card, set up many security domains device, be used for storing the data authentication certificate of personal information.By safety and the encryption system of SIM card, with the application service platform in high in the clouds, by specific authentication arithmetic, realize the authentication of personal identification, after authorizing, the needed service of completing user and application.
In SIM cards of mobile phones, be provided with the separate security domain of many groups, in each security domain, stored a pair of unsymmetrical key.Application program of mobile phone (APPS) is that the Communications Processor Module of mobile phone terminal communicates by special-purpose data link (CA-Link) and SIM card, by wireless network and cloud server, communicates, and completes the authentication of digital certificate.
Rf terminal, normally operator provides the POS system of service, by radio frequency signal and mobile phone (NFC mobile phone) or the SIM card (RF-SIM or NFC-SIM) with wireless near field communication function, communicates by letter, and completes the mobile payment transaction under line.
Cloud server has been stored public-key cryptography corresponding to each security domain in every SIM card, for certifying signature information.
Because cellphone subscriber's identification card SIM has fail safe, not reproducible and uniqueness, and exclusive technical characterstic, selecting SIM card is the carrier of the security domain device narrated of the present invention, than selecting mobile phone terminal or other mobile electronic devices more to have advanced and superior part, the SIM card with many security domains of the present invention, be called for short CA-SIM, as shown in Figure 2.
Many groups of separate security domains that arrange in SIM cards of mobile phones, each security domain has following features:
1) have independently managing keys, for the management (as: create security domain, deletion security domain, empty user password, revise managing keys etc.) of security domain;
2) support user password, to improve the fail safe of security domain;
3) store a pair of unsymmetrical key, for operations such as signature, encryption and decryption;
4) support variable private room, for Store Credentials, signature and other private datas;
5) provide symmetric key negotiation, symmetric key encryption and decryption functions.
Certainly, for supporting user password, be not necessary, can not want yet.
Of the present invention a kind of based on many security domains of cellphone subscriber's identification card device, the data of the variable data space storage of described SIM card comprise: unique identifier, domain name claims, security domain state, managing keys, user password, unsymmetrical key type, unsymmetrical key pair, private data space length and private data space.
Data structure of the present invention as shown in Figure 3
Of the present invention a kind of based on many security domains of cellphone subscriber's identification card device, the variable data space of described SIM card is that in SIM card, to take the data block of fixed size be basic data piece, each data block is provided with two attribute fields, these two attribute fields are security domain index and data block index, find all data blocks of corresponding security domain by ergodic data piece array.
When creating security domain, the private data space of dynamic assignment security domain, can effectively save memory space like this, and the application supplier of convenient support multi-service form uses security domain.As shown in Figure 4, the strategy in dynamic assignment space is to be basic data piece by take the data block of fixed size, and each data block has two attribute fields, security domain index and data block index.Security domain index shows which security domain is this data block belong to, and data block index shows which data block is this data block belong in security domain inside.By ergodic data piece array, can find all data blocks of certain security domain.
Of the present invention a kind of based on many security domains of cellphone subscriber's identification card device, the managing keys processing module of the security domain of described SIM card also comprises for user password and the checking to user password are set.
Each security domain of the present invention is separate, and each security domain has and has independently managing keys, with the right that ensures that application supplier uses for security domain; Each security domain can select to arrange user password protection by user, with the right that ensures that user uses for security domain; Each security domain is preserved a pair of unsymmetrical key, in order to computings such as signature, encryption and decryption; Each security domain is supported symmetric key negotiation mechanism, in order to produce interim symmetric key, for data encrypting and deciphering.
Of the present invention a kind of based on many security domains of cellphone subscriber's identification card device, the security domain of described SIM card and each of extraneous exchanges data walk by command response forming, wherein terminal applies layer sends order by terminal transmission layer to cellphone subscriber's identification card, and cellphone subscriber's identification card returns to a response to terminal applies layer by terminal transmission layer after processing this order; Each specific order matches with a specific response.An APDU is exactly a command message or a response message.
C-APDU (command message)
The command header that C-APDU comprises an indispensable continuous nybble, represents with CLA, INS, P1 and P2, comprises the object of condition of a variable-length simultaneously.
Command header is defined as follows:
---CLA: instruction type.
---INS: the command code of instruction type.
---P1P2: the parameter byte that completes INS.
The object of condition is defined as follows:
---Lc accounts for a byte, has defined the byte number that sends data in C-APDU.
---Le accounts for a byte, points out the maximum number of byte that in R-APDU, expectation is returned.
Four kinds of situations of possible C-APDU structure see the following form:
The situation of C-APDU
R-APDU (response message)
R-APDU is a string byte, and this string byte is comprised of an object of condition and two indispensable byte status code SW1SW2.
The object of condition is a string data byte, in the Le of its maximum length in C-APDU, defines.
A kind of method for authenticating based on the many security domains of cellphone subscriber's identification card of the present invention, comprising:
Hair fastener creates security domain, the step that digital signature and certificate issue: application supplier is server generation public private key pair beyond the clouds, and PKI is offered to ca authentication processing module Generates Certificate; Meanwhile, application supplier carries out signature operation with private key to one section of plaintext, generating digital signature; The Communications Processor Module of application supplier by mobile phone terminal first unique ID of reading SIM card returns to cloud server and sets up user basic information for it, secondly in SIM card, create a corresponding security domain, return to PKI to the cloud server of this security domain and preserve, certificate and digital signature are write in security domain corresponding to SIM card simultaneously;
The step of the ID authentication of holding by card: unique ID of the Communications Processor Module reading SIM card of mobile phone terminal sends cloud server to, and cloud server carries out authentication to this ID;
The step of the certificate authentication of holding by card: select security domain corresponding to application supplier in SIM card, by the ca authentication of cloud server, processed the PKI deciphering certificate of mould, be applied supplier's PKI, then by the validity of the digital signature in security domain corresponding to application supplier's public key verifications;
The step that the public and private key of holding by card and cloud server are shaken hands: the private key generating digital signing messages by security domain corresponding in SIM card reaches cloud server, is used the validity of corresponding this digital signature of public key verifications of corresponding security domain by cloud server.
Further, also comprise the step that symmetric key is consulted: SIM card A generates random symmetric key, use the PKI of the security domain N of SIM card B to be encrypted operation generating ciphertext C to random symmetric key, ciphertext C is sent to the security domain N of SIM card B be decrypted and obtained random symmetric key by its private key, so far symmetric key has been consulted;
And utilize card to do the step of data encryption: after symmetric key has been consulted, can utilize symmetric key to carry out data encrypting and deciphering and operate.
By concrete application examples, illustrate below of the present invention a kind of based on cellphone subscriber's identification card many security domains device and method for authenticating thereof:
Application one, shown in Figure 5, the present invention is for interactive advertisement authentication.
Businessman links to mobile phone application software advertisement by rf terminal, private cipher key Ss by SIM cards of mobile phones when advertisement link is checked in user's click carries out signature operation to advertisement link, produce signing messages S, this signing messages S is sent to the public-key cryptography Ps that cloud server matches by private cipher key Ss and carries out sign test operation, proves thus user and has carried out ad view operation.
Application two, shown in Fig. 6, Fig. 7, the present invention is for Encrypted short message.
User A initiates Encrypted short message request to user B, and its step is as follows:
A. user A need to obtain to user B the public-key cryptography Pb of user B as promoter, and then the negotiation of the symmetric key between completing user A and user B, obtains symmetric key K;
B. under the protection of symmetric key K, user A and user B can be encrypted the transmitting-receiving of note.
The ciphering process of short message as shown in Figure 6;
The decrypting process of short message as shown in Figure 7.
Application three, shown in Figure 8, the present invention is for electronic driving license authentication.
On the mobile phone radio frequency SIM card of user A, there are the electronic driving license data of traffic department's granting and the certificate of the signature of significant data and the public-key cryptography of traffic department thereof.
Electronic driving license proof procedure is as follows:
A. rf terminal reads certificate, and by the resume traffic public-key cryptography Pi of department of the public-key cryptography Pca of authentication center in rf terminal;
B. by public-key cryptography Pi, signed data is carried out to sign test.
So-called electronic driving license is exactly that application supplier provides the driving license electronic copies with application supplier private cipher key signature to user.
Electronic driving license authentication process as shown in Figure 8.
Above-described embodiment is only used for further illustrating of the present invention a kind of based on cellphone subscriber's identification card many security domains device and method for authenticating thereof; but the present invention is not limited to embodiment; any simple modification, equivalent variations and modification that every foundation technical spirit of the present invention is done above embodiment, all fall in the protection range of technical solution of the present invention.
Claims (7)
1. based on many security domains of cellphone subscriber's identification card device, it is characterized in that: comprising:
Cloud server, has ca authentication processing module and authentication process module;
Mobile phone terminal, has Communications Processor Module;
SIM card, has the separate security domain of many groups, and each security domain has: managing keys processing module, for the management of security domain; Unsymmetrical key processing module, stores a pair of unsymmetrical key, for signing, the operation of encryption and decryption; Variable data space, for Store Credentials, signature and private data; Symmetric key processing module, for generation of interim symmetric key, for data encrypting and deciphering;
Mobile phone terminal is realized data communication by wireless network and cloud server, and mobile phone terminal is realized data communication by the data link in mobile phone and SIM card;
Wherein, the authentication request that the ca authentication processing module of cloud server sends by mobile phone terminal according to the corresponding security domain of SIM card, generates the certificate corresponding to the PKI of this security domain; The digital signature that the authentication process module of cloud server sends by mobile phone terminal according to the corresponding security domain of SIM card, is used the validity of corresponding this digital signature of public key verifications of this corresponding security domain;
The unsymmetrical key processing module of SIM card, according to corresponding security domain in SIM card, utilize the PKI of the ca authentication processing module of cloud server to decrypt corresponding certificate, obtain the corresponding PKI of this certificate, then by the validity of the digital signature in security domain corresponding to this public key verifications.
2. according to claim 1 based on many security domains of cellphone subscriber's identification card device, it is characterized in that: the data of the variable data space storage of described SIM card comprise: unique identifier, domain name claims, security domain state, managing keys, user password, unsymmetrical key type, unsymmetrical key pair, private data space length and private data space.
3. according to claim 1 based on many security domains of cellphone subscriber's identification card device, it is characterized in that: the variable data space of described SIM card is that in SIM card, to take the data block of fixed size be basic data piece, each data block is provided with two attribute fields, these two attribute fields are security domain index and data block index, find all data blocks of corresponding security domain by ergodic data piece array.
4. according to claim 1 based on many security domains of cellphone subscriber's identification card device, it is characterized in that: the managing keys processing module of the security domain of described SIM card also comprises for user password and the checking to user password are set.
5. according to claim 1 based on many security domains of cellphone subscriber's identification card device, it is characterized in that: the security domain of described SIM card and each of extraneous exchanges data walk by command response forming, wherein terminal applies layer sends order by terminal transmission layer to cellphone subscriber's identification card, and cellphone subscriber's identification card returns to a response to terminal applies layer by terminal transmission layer after processing this order; Each specific order matches with a specific response.
6. the method for authenticating based on the many security domains of cellphone subscriber's identification card, is characterized in that: comprising:
Application supplier beyond the clouds server generates public private key pair, and PKI is offered to ca authentication processing module Generates Certificate; Meanwhile, application supplier carries out signature operation with private key to one section of plaintext, generating digital signature; The Communications Processor Module of application supplier by mobile phone terminal first unique ID of reading SIM card returns to cloud server and sets up user basic information for it, secondly in SIM card, create a corresponding security domain, return to PKI to the cloud server of this security domain and preserve, certificate and digital signature are write in security domain corresponding to SIM card simultaneously;
Unique ID of the Communications Processor Module reading SIM card of mobile phone terminal sends cloud server to, and cloud server carries out authentication to this ID;
Select security domain corresponding to application supplier in SIM card, by the ca authentication of cloud server, processed the PKI deciphering certificate of mould, the supplier's that is applied PKI, then by the validity of the digital signature in security domain corresponding to application supplier's public key verifications;
Private key generating digital signing messages by security domain corresponding in SIM card reaches cloud server, is used the validity of corresponding this digital signature of public key verifications of corresponding security domain by cloud server.
7. the method for authenticating based on the many security domains of cellphone subscriber's identification card according to claim 6, it is characterized in that: further, also comprise that SIM card A generates random symmetric key, use the PKI of the security domain N of SIM card B to be encrypted operation generating ciphertext C to random symmetric key, ciphertext C is sent to the security domain N of SIM card B be decrypted and obtained random symmetric key by its private key, so far symmetric key has been consulted.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310628776.3A CN103747443B (en) | 2013-11-29 | 2013-11-29 | One kind is based on cellphone subscriber's identification card Multi-security domain device and its method for authenticating |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310628776.3A CN103747443B (en) | 2013-11-29 | 2013-11-29 | One kind is based on cellphone subscriber's identification card Multi-security domain device and its method for authenticating |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN103747443A true CN103747443A (en) | 2014-04-23 |
| CN103747443B CN103747443B (en) | 2017-03-15 |
Family
ID=50504422
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310628776.3A Active CN103747443B (en) | 2013-11-29 | 2013-11-29 | One kind is based on cellphone subscriber's identification card Multi-security domain device and its method for authenticating |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103747443B (en) |
Cited By (18)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104902475A (en) * | 2015-04-24 | 2015-09-09 | 梁融凌 | Far-end SIM card switching device and authentication method |
| WO2015161689A1 (en) * | 2014-04-25 | 2015-10-29 | 天地融科技股份有限公司 | Data processing method based on negotiation key |
| CN105406963A (en) * | 2015-12-09 | 2016-03-16 | 中国联合网络通信集团有限公司 | Encryption method, encryption device, decryption method and decryption device for user account |
| CN106507331A (en) * | 2015-09-07 | 2017-03-15 | 中国移动通信集团公司 | A kind of safety transfer method of card application data, apparatus and system |
| CN106657032A (en) * | 2016-12-05 | 2017-05-10 | 北京博惠城信息科技有限公司 | System and method for realizing identity identification and data authentication based on security medium confidential short message |
| CN107451647A (en) * | 2016-06-01 | 2017-12-08 | 北京军地联合网络技术中心 | A kind of post special SIM card of built-in security mechanisms |
| CN108614711A (en) * | 2018-04-20 | 2018-10-02 | 北京握奇智能科技有限公司 | TA mirrored storages method, apparatus and terminal |
| CN108848496A (en) * | 2018-06-12 | 2018-11-20 | 中国联合网络通信集团有限公司 | Authentication method, TEE terminal and the management platform of virtual eSIM card based on TEE |
| CN109525989A (en) * | 2017-09-19 | 2019-03-26 | 阿里巴巴集团控股有限公司 | Data processing, identity identifying method and system, terminal |
| CN109803254A (en) * | 2017-11-16 | 2019-05-24 | 北京握奇智能科技有限公司 | A kind of security service method and device applied to mobile terminal |
| CN111787530A (en) * | 2020-08-06 | 2020-10-16 | 联通雄安产业互联网有限公司 | Block chain digital identity management method based on SIM card |
| CN112187709A (en) * | 2019-07-05 | 2021-01-05 | 华为技术有限公司 | Authentication method, device and server |
| CN112487011A (en) * | 2020-12-18 | 2021-03-12 | 合肥达朴汇联科技有限公司 | Block chain based Internet of things terminal data chaining method and system |
| CN112667743A (en) * | 2020-12-18 | 2021-04-16 | 合肥达朴汇联科技有限公司 | Data uplink method, system, equipment and storage medium applied to transmission terminal |
| CN112787977A (en) * | 2019-11-07 | 2021-05-11 | 中国电信股份有限公司 | Secure transmission method and system |
| CN113596841A (en) * | 2021-09-13 | 2021-11-02 | 中国联合网络通信集团有限公司 | Authentication control method and system for user identity identification card |
| CN114567881A (en) * | 2022-04-24 | 2022-05-31 | 江苏益捷思信息科技有限公司 | SIM card information security protection method and system |
| CN115278646A (en) * | 2022-07-26 | 2022-11-01 | 无锡融卡科技有限公司 | Embedded SIM card, terminal and method for selecting, downloading and installing application program |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN113890738A (en) * | 2020-07-03 | 2022-01-04 | 中移互联网有限公司 | Electronic signature method and device |
Family Cites Families (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101729244B (en) * | 2008-10-24 | 2011-12-07 | 中兴通讯股份有限公司 | Method and system for distributing key |
| CN101511051B (en) * | 2008-12-31 | 2012-09-19 | 北京握奇数据系统有限公司 | Method, system and equipment for downloading application business of telecom smart card |
| CN101938520B (en) * | 2010-09-07 | 2015-01-28 | 中兴通讯股份有限公司 | Mobile terminal signature-based remote payment system and method |
-
2013
- 2013-11-29 CN CN201310628776.3A patent/CN103747443B/en active Active
Cited By (28)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2015161689A1 (en) * | 2014-04-25 | 2015-10-29 | 天地融科技股份有限公司 | Data processing method based on negotiation key |
| CN104902475A (en) * | 2015-04-24 | 2015-09-09 | 梁融凌 | Far-end SIM card switching device and authentication method |
| CN104902475B (en) * | 2015-04-24 | 2020-06-02 | 梁融凌 | Far-end SIM card switching device and authentication method thereof |
| CN106507331B (en) * | 2015-09-07 | 2019-08-20 | 中国移动通信集团公司 | A kind of card applies the safety transfer method, apparatus and system of data |
| CN106507331A (en) * | 2015-09-07 | 2017-03-15 | 中国移动通信集团公司 | A kind of safety transfer method of card application data, apparatus and system |
| CN105406963B (en) * | 2015-12-09 | 2019-02-15 | 中国联合网络通信集团有限公司 | Encryption method, encryption device and the decryption method of user account, decryption device |
| CN105406963A (en) * | 2015-12-09 | 2016-03-16 | 中国联合网络通信集团有限公司 | Encryption method, encryption device, decryption method and decryption device for user account |
| CN107451647A (en) * | 2016-06-01 | 2017-12-08 | 北京军地联合网络技术中心 | A kind of post special SIM card of built-in security mechanisms |
| CN107451647B (en) * | 2016-06-01 | 2023-08-29 | 北京军地联合网络技术中心 | Built-in safety mechanism's special SIM card of barracks |
| CN106657032A (en) * | 2016-12-05 | 2017-05-10 | 北京博惠城信息科技有限公司 | System and method for realizing identity identification and data authentication based on security medium confidential short message |
| CN106657032B (en) * | 2016-12-05 | 2023-11-14 | 北京博惠城信息科技有限公司 | System and method for realizing identity authentication and data authentication based on secure medium secret short message |
| CN109525989A (en) * | 2017-09-19 | 2019-03-26 | 阿里巴巴集团控股有限公司 | Data processing, identity identifying method and system, terminal |
| CN109803254A (en) * | 2017-11-16 | 2019-05-24 | 北京握奇智能科技有限公司 | A kind of security service method and device applied to mobile terminal |
| CN108614711A (en) * | 2018-04-20 | 2018-10-02 | 北京握奇智能科技有限公司 | TA mirrored storages method, apparatus and terminal |
| CN108614711B (en) * | 2018-04-20 | 2021-12-10 | 北京握奇智能科技有限公司 | TA mirror image storage method and device and terminal |
| CN108848496A (en) * | 2018-06-12 | 2018-11-20 | 中国联合网络通信集团有限公司 | Authentication method, TEE terminal and the management platform of virtual eSIM card based on TEE |
| CN112187709A (en) * | 2019-07-05 | 2021-01-05 | 华为技术有限公司 | Authentication method, device and server |
| CN112187709B (en) * | 2019-07-05 | 2022-07-05 | 荣耀终端有限公司 | Authentication method, device and server |
| CN112787977A (en) * | 2019-11-07 | 2021-05-11 | 中国电信股份有限公司 | Secure transmission method and system |
| CN112787977B (en) * | 2019-11-07 | 2022-11-11 | 中国电信股份有限公司 | Secure transmission method and system |
| CN111787530A (en) * | 2020-08-06 | 2020-10-16 | 联通雄安产业互联网有限公司 | Block chain digital identity management method based on SIM card |
| CN111787530B (en) * | 2020-08-06 | 2024-01-09 | 联通雄安产业互联网有限公司 | Block chain digital identity management method based on SIM card |
| CN112667743A (en) * | 2020-12-18 | 2021-04-16 | 合肥达朴汇联科技有限公司 | Data uplink method, system, equipment and storage medium applied to transmission terminal |
| CN112487011A (en) * | 2020-12-18 | 2021-03-12 | 合肥达朴汇联科技有限公司 | Block chain based Internet of things terminal data chaining method and system |
| CN112667743B (en) * | 2020-12-18 | 2023-11-10 | 合肥达朴汇联科技有限公司 | Data uplink method, system, equipment and storage medium applied to transmission terminal |
| CN113596841A (en) * | 2021-09-13 | 2021-11-02 | 中国联合网络通信集团有限公司 | Authentication control method and system for user identity identification card |
| CN114567881A (en) * | 2022-04-24 | 2022-05-31 | 江苏益捷思信息科技有限公司 | SIM card information security protection method and system |
| CN115278646A (en) * | 2022-07-26 | 2022-11-01 | 无锡融卡科技有限公司 | Embedded SIM card, terminal and method for selecting, downloading and installing application program |
Also Published As
| Publication number | Publication date |
|---|---|
| CN103747443B (en) | 2017-03-15 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103747443B (en) | One kind is based on cellphone subscriber's identification card Multi-security domain device and its method for authenticating | |
| US10595201B2 (en) | Secure short message service (SMS) communications | |
| CN106161359B (en) | It authenticates the method and device of user, register the method and device of wearable device | |
| CN107358441B (en) | Payment verification method and system, mobile device and security authentication device | |
| JP5508428B2 (en) | Key distribution method and system | |
| CN105812332A (en) | Data protection method | |
| US9445269B2 (en) | Terminal identity verification and service authentication method, system and terminal | |
| CN101828357A (en) | Credential provisioning | |
| JP2015537476A (en) | Fingerprint authentication system and fingerprint authentication method based on NFC | |
| CN101720071A (en) | Short message two-stage encryption transmission and secure storage method based on safety SIM card | |
| US11405782B2 (en) | Methods and systems for securing and utilizing a personal data store on a mobile device | |
| CN112862481A (en) | Block chain digital asset key management method and system based on SIM card | |
| KR101604622B1 (en) | Method for Processing Mobile Payment by Using Encryption Matrix Authentication | |
| CN105654294A (en) | Safety authentication method, apparatus and mobile terminal thereof | |
| US20150302506A1 (en) | Method for Securing an Order or Purchase Operation Means of a Client Device | |
| CN106330897A (en) | Information storage method and system | |
| CN206195801U (en) | A cloud platform, subscriber equipment and system for CPU card encryption authentication | |
| KR101146509B1 (en) | Internet banking transaction system and the method that use maintenance of public security card to be mobile | |
| CN111787535A (en) | NDEF format security dynamic code generation method and device and near field communication method and system | |
| CN109474624B (en) | Application program authentication system and method | |
| CN108075887A (en) | For method, cloud platform, user equipment and the system of CPU card encryption certification | |
| CN115580863A (en) | Internet of vehicles card real name authentication method and system | |
| KR20200130044A (en) | Apparatus and methods for managing and verifying digital certificates | |
| Chen | Secure e-Payment Portal Solutions Using Mobile Technologies and Citizen Identity Scheme | |
| TR201601088A2 (en) | A SYSTEM AND METHOD FOR HIGH SECURITY COMMUNICATION |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |