CN103957210A - Smart card and safety control method, device and system thereof - Google Patents
Smart card and safety control method, device and system thereof Download PDFInfo
- Publication number
- CN103957210A CN103957210A CN201410181142.2A CN201410181142A CN103957210A CN 103957210 A CN103957210 A CN 103957210A CN 201410181142 A CN201410181142 A CN 201410181142A CN 103957210 A CN103957210 A CN 103957210A
- Authority
- CN
- China
- Prior art keywords
- isd
- smart card
- essd
- instruction
- shielding
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Abstract
The invention provides a smart card and a safety control method, device and system thereof. The method comprises the steps that a smart card terminal sends a shield ISD instruction to an ISD of the smart card after certification is successful; according to the shield ISD instruction, the ISD hands management authority over to each ESSD of the smart card to manage in a division mode according to application relevance; each ESSD takes over the management authority handed over by the ISD, and after the management authority is taken over, the management authority of each ESSD is limited to the safety domain and all mounting application of the safety domain; when any instruction is received, each ESSD processes the instruction according to the its own management authority. According to the method, issuers distributing cards in a joint mode enable the application of their own to be controlled only by the safety domain of their own, and therefore the data safety of the issuers distributing the cards in the joint mode is improved.
Description
Technical field
The present invention relates to the safety control technology of smart card, especially relate to a kind of smart card and method of controlling security thereof, device and system.
Background technology
Global Platform specification (hereinafter to be referred as GP specification) is international smart card behavior management specification.All Java card are all followed GP specification.In GP specification, publisher's security domain (ISD, Issuer Security Domain) have a highest administration authority, such as the overall situation is deleted (Global Delete), token authentication (Token Verification), card life cycle state etc., wherein, ISD is also referred to as main security domain.
The at present domestic scene that has a lot of many application associating hair fasteners.GP specification, for many application scenarioss, provides the function of auxiliary security territory (SSD, Supplementary Security Domain), and each application can be mounted under SSD separately, and each application is only subject to the management of SSD and the ISD of its carry so.
But, as shown in Figure 6, according to existing GP specification, on a card, can only there is an ISD, this ISD has the highest administration authority, can lock, delete any application on card.Conventionally, the card issuer of associating hair fastener is the relation of cooperating with each other, authority application is equality, therefore, the card issuer of associating hair fastener does not wish that either party administers ISD, all wish that the application of oneself is only subject to the control of own security domain, for such application scenarios, the GP specification of standard cannot realize this demand.
Summary of the invention
The object of the present invention is to provide a kind of smart card and method of controlling security thereof, device and system, the application of oneself only can be subject to the security domain control of oneself to realize each card issuer of associating hair fastener, improve each card issuer's Information Security.
For achieving the above object, on the one hand, the invention provides a kind of method of controlling security of ISD side, comprise the following steps:
Receive the authentication request that smart card terminal sends;
Described authentication request is authenticated, generate authentication result and send it to described smart card terminal;
Receive the main security domain ISD of the shielding instruction that described smart card terminal sends after authentication success;
According to described shielding ISD, instruction connects the discrete management of each enhancement mode auxiliary security territory ESSD to this smart card by administration authority by association sexual intercourse.
The method of controlling security of ISD side of the present invention, described according to described shielding ISD, instruction connects the discrete management of each ESSD to this smart card by administration authority by association sexual intercourse, specifically comprises:
The life cycle state of this smart card is pushed to each ESSD of this smart card;
Cancel the token authentication service of described ISD;
The access object of GP system application DLL (dynamic link library) is transferred on the ESSD with this association.
The method of controlling security of ISD side of the present invention,, also comprises after according to described shielding ISD, administration authority is connect the discrete management of each ESSD to this smart card by association sexual intercourse by instruction described:
Refuse any instruction.
On the other hand, the present invention also provides a kind of method of controlling security of ESSD side, comprises the following steps:
The administration authority of taking over ISD handing-over, after adapter, the administration authority of each ESSD is limited to all application of intrinsic safety universe and lower carry thereof;
In the time receiving arbitrary instruction, each described ESSD processes described instruction according to self-management authority.
On the one hand, the present invention also provides a kind of method of controlling security of smart card terminal side, comprises the following steps again:
ISD to smart card initiates authentication request;
Receive the authentication result that described ISD returns;
In the time that described authentication result is success identity, send shielding ISD instruction to described ISD.
The method of controlling security of smart card terminal side of the present invention, described shielding ISD instruction comprises that the application identities AID that revises ISD is invalid AID instruction.
On the one hand, the present invention also provides a kind of smart card security control method, comprises the following steps again:
Smart card terminal sends shielding ISD instruction to the ISD of smart card after authentication success;
According to described shielding ISD, instruction connects the discrete management of each ESSD to described smart card by administration authority by association sexual intercourse to described ISD; ;
Described in each, ESSD takes over the administration authority of described ISD handing-over, and after adapter, the administration authority of each described ESSD is limited to all application of intrinsic safety universe and lower carry thereof;
In the time receiving arbitrary instruction, each described ESSD processes described instruction according to self-management authority.
On the one hand, the present invention also provides a kind of ISD, comprising again:
Identification processing module, the authentication request sending for receiving smart card terminal, authenticates described authentication request, generates authentication result and sends it to described smart card terminal;
Administration authority handing-over module, the shielding ISD instruction sending after authentication success for receiving described smart card terminal, according to described shielding ISD, instruction connects the discrete management of each ESSD to this smart card by administration authority by association sexual intercourse.
On the one hand, the present invention also provides a kind of ESSD, comprising again:
Administration authority is taken over module, and for taking over the administration authority of ISD handing-over, after adapter, the administration authority of each described ESSD is limited to all application of intrinsic safety universe and lower carry thereof;
Command process module, in the time receiving arbitrary instruction, processes described instruction according to self-management authority.
On the one hand, the present invention also provides a kind of smart card terminal, comprising again:
Certification initiation module, initiates authentication request for the ISD to smart card, receives the authentication result that described ISD returns;
Shielding ISD instruction initiation module, in the time that described authentication result is success identity, sends shielding ISD instruction to described ISD.
On the one hand, the present invention also provides a kind of smart card, comprising again:
At least one ESSD as above; And,
An ISD as above.
On the one hand, the present invention also provides a kind of smart card security control system, comprising again:
Smart card terminal as above; And,
Smart card as mentioned above.
In the present invention, after authentication success, smart card terminal sends shielding ISD instruction to the ISD of smart card, according to shielding ISD, instruction connects the discrete management of each ESSD to this smart card by administration authority by association sexual intercourse to ISD, each ESSD takes over after the administration authority of ISD handing-over, ISD has completely lost all managerial abilities, the administration authority of each ESSD is limited to all application of intrinsic safety universe and lower carry thereof, that is to say, any one ESSD does not still access and manage the authority of other ESSD.Thereby each card issuer who has realized associating hair fastener can only be subject to the application of oneself the security domain control of oneself, thereby, each card issuer's of associating hair fastener Information Security improved.
Brief description of the drawings
Accompanying drawing described herein is used to provide a further understanding of the present invention, forms the application's a part, does not form limitation of the invention.In the accompanying drawings:
Fig. 1 is the flow chart of the method for controlling security of the smart card terminal side of the embodiment of the present invention;
Fig. 2 is the flow chart of the method for controlling security of the ISD side of the embodiment of the present invention;
Fig. 3 is the flow chart of the method for controlling security of the ESSD side of the embodiment of the present invention;
Fig. 4 is the flow chart of the smart card security control method of the embodiment of the present invention;
Fig. 5 is the structure chart of the smart card security control system of the embodiment of the present invention;
Fig. 5 a is the structure chart of smart card in Fig. 5;
Fig. 5 b is the structure chart of the ISD of smart card in Fig. 5 a;
Fig. 5 c is the structure chart of the ESSD of smart card in Fig. 5 a;
Fig. 5 d is the structure chart of smart card terminal in Fig. 5;
Fig. 6 is the smart card security control Organization Chart under existing GP specification;
Fig. 7 is the smart card security control Organization Chart of the embodiment of the present invention.
Embodiment
For making the object, technical solutions and advantages of the present invention clearer, below in conjunction with embodiment and accompanying drawing, the present invention is described in further details.At this, schematic description and description of the present invention is used for explaining the present invention, but not as a limitation of the invention.
Below in conjunction with accompanying drawing, the specific embodiment of the present invention is described in further detail.
Shown in figure 1, the method for controlling security of the smart card terminal side of the embodiment of the present invention, comprises the following steps:
Step S101, initiate authentication request to the ISD of smart card.
Step S102, receive the authentication result that this ISD returns.Wherein, authentication result is generally return code.
Step S103, in the time that authentication result is success identity, send shielding ISD instruction to this ISD.Smart card terminal can carry out authentication result inspection receiving after authentication result, if success identity, to sending shielding ISD instruction.Visible, only have authentication success, just can carry out ISD shielding.Wherein, shielding ISD instruction can have various ways, and for example, shielding ISD instruction can be invalid AID instruction for the application identities (AID, Application Identifier) of amendment ISD, certainly, also can adopt other special instructions to realize.
Shown in figure 2, the method for controlling security of the ISD side of the embodiment of the present invention, comprises the following steps:
The authentication request that step S201, reception smart card terminal send.
Step S202, authentication request is authenticated, generate authentication result and also send it to smart card terminal.
The shielding ISD instruction that step S203, reception smart card terminal send after authentication success.
Step S204, according to shielding ISD instruction, administration authority is connect to each enhancement mode auxiliary security territory (ESSD, Enhanced Supplementary Security Domain) to this smart card by association sexual intercourse.ISD receives after this instruction, to carry out a series of processing, so-called according to shielding ISD, instruction connects the discrete management of each ESSD to this smart card by administration authority by association sexual intercourse, specifically comprises: each ESSD that the life cycle state of this smart card is pushed to this smart card; Cancel the token authentication service of ISD; The access object of GP system application DLL (dynamic link library) (being GPSystem API) is transferred on the ESSD with this association.
After ISD shielding, ISD will refuse any instruction, for example, all return to refusal code 0X6D00 for any instruction, after this ISD has completely lost all managerial abilities, and smart card will be in the situation of the discrete management of each ESSD so, and each application is only subject to the management of the ESSD of its carry.It is desired that such situation has well solved each card issuer: the application of oneself is only subject to the control of the security domain of oneself; Can power cross over security domain management without any one.
Shown in figure 3, the method for controlling security of the ESSD side of the embodiment of the present invention, comprises the following steps:
The administration authority of step S301, adapter ISD handing-over, after adapter, the administration authority of each ESSD is limited to all application of intrinsic safety universe and lower carry thereof, also just says, and any one ESSD does not still access and manages the authority of other ESSD.
In this step, the function that ESSD takes over is as follows:
1, ESSD can carry out, as basic management functions such as download, installation, deletions;
2, ESSD itself can not be deleted;
3, under ESSD, download new application and only controlled by ESSD, do not need to obtain the checking of ISD;
4, ESSD takes over the life cycle state of ISD as the life cycle state of self, and the life cycle state of ESSD will directly affect the application of its lower institute carry:
1), ESSD in the time of LOCKED state, its lower all application all can not be selected;
2), ESSD in the time of TERMINATED state, the lower all application of this ESSD and its are all terminated;
5, the life cycle state of ESSD does not affect other ESSD and application;
6, GPSystem API does not visit again the life cycle state of ISD, and by the life cycle state of its corresponding ESSD of access, GPSystem API will use the Status Flag of ESSD as accessing and judgement symbol:
1), GPSystem.lockCard () will lock corresponding ESSD;
2), GPSystem.terminateCard () the corresponding ESSD that will terminate.
In fact, ESSD is upgraded and forms having taken over after the part administration authority of ISD by common SSD.By as following table 1, we can find out ISD and the variation of ESSD before and after ISD conductively-closed more intuitively.
Table 1
Step S302, in the time receiving arbitrary instruction, each ESSD processes instruction according to self-management authority.
Shown in Fig. 4, the smart card security control method of the embodiment of the present invention, comprises the following steps:
Step S401, smart card terminal send shielding ISD instruction to the ISD of smart card after authentication success.
Instruction connects the discrete management of each ESSD to this smart card by administration authority by association sexual intercourse according to shielding ISD for step S402, this ISD.Specifically referring to above-mentioned steps S204.
Each ESSD of step S403, this smart card takes over the administration authority of this ISD handing-over, after adapter, the administration authority of each ESSD is limited to all application of intrinsic safety universe and lower carry thereof, also just says, any one ESSD does not still access and manage the authority of other ESSD.Specifically referring to above-mentioned steps S301.
Step S404, in the time receiving arbitrary instruction, each ESSD processes instruction according to self-management authority.
In the embodiment of the present invention, after authentication success, smart card terminal sends shielding ISD instruction to the ISD of smart card, according to shielding ISD, instruction connects the discrete management of each ESSD (as shown in Figure 7) to smart card by administration authority by association sexual intercourse to this ISD, each ESSD takes over after the administration authority of ISD handing-over, ISD has completely lost all managerial abilities, the administration authority of each ESSD is limited to all application of intrinsic safety universe and lower carry thereof, that is to say, any one ESSD does not still access and manages the authority of other ESSD.Thereby each card issuer who has realized associating hair fastener can only be subject to the application of oneself the security domain control of oneself, thereby, each card issuer's of associating hair fastener Information Security improved.
Shown in figure 5~Fig. 5 d, the smart card security control system of the embodiment of the present invention comprises smart card 5 and smart card terminal 6.Wherein:
Smart card terminal 6 comprises:
Certification initiation module 61, initiates authentication request for the ISD51 to smart card 5, receives the authentication result that smart card 5 returns.
Shielding ISD instruction initiation module 62, in the time that authentication result is success identity, sends shielding ISD instruction to this ISD51.
Smart card 5 generally includes an ISD51 and multiple ESSD52., wherein:
ISD51 comprises:
Identification processing module 511, the authentication request sending for receiving smart card terminal 6, authenticates authentication request, generates authentication result and sends it to smart card terminal 6;
Administration authority handing-over module 512, the shielding ISD instruction sending after authentication success for receiving smart card terminal 6, according to shielding ISD, instruction connects the discrete management of each ESSD52 to this smart card by administration authority by association sexual intercourse.
Each ESSD52 comprises:
Administration authority is taken over module 521, and for taking over the administration authority of ISD handing-over, after adapter, the administration authority of each ESSD52 is limited to all application of intrinsic safety universe and lower carry thereof; Also just say, any one ESSD52 does not still access and manages the authority of other ESSD52.
Command process module 522, in the time receiving arbitrary instruction, processes instruction according to self-management authority.
In the embodiment of the present invention, after authentication success, smart card terminal 6 sends shielding ISD instruction to the ISD51 of smart card 5, according to shielding ISD, instruction connects the discrete management of each ESSD52 to smart card 5 by administration authority by association sexual intercourse to this ISD51, each ESSD52 takes over after the administration authority of ISD51 handing-over, ISD51 has completely lost all managerial abilities, the administration authority of each ESSD52 is limited to all application of intrinsic safety universe and lower carry thereof, that is to say, any one ESSD52 does not still access and manages the authority of other ESSD52.Thereby each card issuer who has realized associating hair fastener can only be subject to the application of oneself the security domain control of oneself, thereby, each card issuer's of associating hair fastener Information Security improved.
Those skilled in the art can also recognize that various illustrative components, blocks, unit and step that the embodiment of the present invention is listed can realize by hardware, software or both combinations.So to realizing by hardware or software the designing requirement of depending on specific application and whole system.Those skilled in the art can, for every kind of specific application, can make in all sorts of ways and realize described function, but this realization should not be understood to exceed the scope of embodiment of the present invention protection.
Various illustrative logical block described in the embodiment of the present invention, or unit can pass through general processor, digital signal processor, application-specific integrated circuit (ASIC) (ASIC), field programmable gate array or other programmable logic device, discrete gate or transistor logic, discrete hardware components, or the design of above-mentioned any combination realizes or operates described function.General processor can be microprocessor, and alternatively, this general processor can be also any traditional processor, controller, microcontroller or state machine.Processor also can be realized by the combination of calculation element, for example digital signal processor and microprocessor, and multi-microprocessor, a Digital Signal Processor Core of one or more microprocessor associating, or any other similarly configures and realizes.
Method described in the embodiment of the present invention or the step of algorithm can directly embed hardware, the software module of processor execution or the two combination.Software module can be stored in the storage medium of other arbitrary form in RAM memory, flash memory, ROM memory, eprom memory, eeprom memory, register, hard disk, moveable magnetic disc, CD-ROM or this area.Exemplarily, storage medium can be connected with processor, with make processor can be from storage medium reading information, and can deposit write information to storage medium.Alternatively, storage medium can also be integrated in processor.Processor and storage medium can be arranged in ASIC, and ASIC can be arranged in user terminal.Alternatively, processor and storage medium also can be arranged in the different parts in user terminal.
In one or more exemplary designs, the described above-mentioned functions of the embodiment of the present invention can realize in hardware, software, firmware or this three's combination in any.If realized in software, these functions can be stored on the medium with computer-readable, or are transmitted on the medium of computer-readable with one or more instructions or code form.Computer-readable medium comprises computer storage medium and is convenient to make to allow computer program transfer to other local communication medium from a place.Storage medium can be the useable medium that any general or special computer can access.For example, such computer readable media can include but not limited to RAM, ROM, EEPROM, CD-ROM or other optical disc storage, disk storage or other magnetic storage device, or other any medium that can be read by general or special computer or general or special processor for carrying or storage the program code of form with instruction or data structure and other.In addition, any connection can be suitably defined as computer-readable medium, for example,, if software is by a coaxial cable, fiber optic cables, twisted-pair feeder, Digital Subscriber Line (DSL) or being also comprised in defined computer-readable medium with wireless way for transmittings such as such as infrared, wireless and microwaves from a web-site, server or other remote resource.Described video disc (disk) and disk (disc) comprise Zip disk, radium-shine dish, CD, DVD, floppy disk and Blu-ray Disc, and disk is conventionally with magnetic duplication data, and video disc carries out optical reproduction data with laser conventionally.Above-mentioned combination also can be included in computer-readable medium.
Above-described specific embodiment; object of the present invention, technical scheme and beneficial effect are further described; institute is understood that; the foregoing is only specific embodiments of the invention; the protection range being not intended to limit the present invention; within the spirit and principles in the present invention all, any amendment of making, be equal to replacement, improvement etc., within all should being included in protection scope of the present invention.
Claims (12)
1. a method of controlling security for ISD side, is characterized in that, comprises the following steps:
Receive the authentication request that smart card terminal sends;
Described authentication request is authenticated, generate authentication result and send it to described smart card terminal;
Receive the main security domain ISD of the shielding instruction that described smart card terminal sends after authentication success;
According to described shielding ISD, instruction connects the discrete management of each enhancement mode auxiliary security territory ESSD to this smart card by administration authority by association sexual intercourse.
2. the method for controlling security of ISD side according to claim 1, is characterized in that, described according to described shielding ISD, instruction connects the discrete management of each ESSD to this smart card by administration authority by association sexual intercourse, specifically comprises:
The life cycle state of this smart card is pushed to each ESSD of this smart card;
Cancel the token authentication service of described ISD;
The access object of GP system application DLL (dynamic link library) is transferred on the ESSD with this association.
3. the method for controlling security of ISD side according to claim 1, is characterized in that,, also comprises after according to described shielding ISD, administration authority is connect the discrete management of each ESSD to this smart card by association sexual intercourse by instruction described:
Refuse any instruction.
4. a method of controlling security for ESSD side, is characterized in that, comprises the following steps:
The administration authority of taking over ISD handing-over, after adapter, the administration authority of each ESSD is limited to all application of intrinsic safety universe and lower carry thereof;
In the time receiving arbitrary instruction, each described ESSD processes described instruction according to self-management authority.
5. a method of controlling security for smart card terminal side, is characterized in that, comprises the following steps:
ISD to smart card initiates authentication request;
Receive the authentication result that described ISD returns;
In the time that described authentication result is success identity, send shielding ISD instruction to described ISD.
6. the method for controlling security of smart card terminal side according to claim 5, is characterized in that, described shielding ISD instruction comprises that the application identities AID that revises ISD is invalid AID instruction.
7. a smart card security control method, is characterized in that, comprises the following steps:
Smart card terminal sends shielding ISD instruction to the ISD of smart card after authentication success;
According to described shielding ISD, instruction connects the discrete management of each ESSD to described smart card by administration authority by association sexual intercourse to described ISD;
Described in each, ESSD takes over the administration authority of described ISD handing-over, and after adapter, the administration authority of each described ESSD is limited to all application of intrinsic safety universe and lower carry thereof;
In the time receiving arbitrary instruction, each described ESSD processes described instruction according to self-management authority.
8. an ISD, is characterized in that, comprising:
Identification processing module, the authentication request sending for receiving smart card terminal, authenticates described authentication request, generates authentication result and sends it to described smart card terminal;
Administration authority handing-over module, the shielding ISD instruction sending after authentication success for receiving described smart card terminal, according to described shielding ISD, instruction connects the discrete management of each ESSD to this smart card by administration authority by association sexual intercourse.
9. an ESSD, is characterized in that, comprising:
Administration authority is taken over module, and for taking over the administration authority of ISD handing-over, after adapter, the administration authority of each described ESSD is limited to all application of intrinsic safety universe and lower carry thereof;
Command process module, in the time receiving arbitrary instruction, processes described instruction according to self-management authority.
10. a smart card terminal, is characterized in that, comprising:
Certification initiation module, initiates authentication request for the ISD to smart card, receives the authentication result that described ISD returns;
Shielding ISD instruction initiation module, in the time that described authentication result is success identity, sends shielding ISD instruction to described ISD.
11. 1 kinds of smart cards, is characterized in that, comprising:
At least one ESSD claimed in claim 9; And,
An ISD claimed in claim 8.
12. 1 kinds of smart card security control system, is characterized in that, comprising:
Smart card terminal claimed in claim 10; And,
Smart card described in claim 11.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410181142.2A CN103957210B (en) | 2014-04-30 | 2014-04-30 | Smart card and its method of controlling security, device and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410181142.2A CN103957210B (en) | 2014-04-30 | 2014-04-30 | Smart card and its method of controlling security, device and system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN103957210A true CN103957210A (en) | 2014-07-30 |
| CN103957210B CN103957210B (en) | 2017-10-20 |
Family
ID=51334436
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410181142.2A Active CN103957210B (en) | 2014-04-30 | 2014-04-30 | Smart card and its method of controlling security, device and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103957210B (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105809064A (en) * | 2014-12-31 | 2016-07-27 | 北京华大智宝电子系统有限公司 | Smart card safety control method and smart card |
| WO2017185458A1 (en) * | 2016-04-29 | 2017-11-02 | 宇龙计算机通信科技(深圳)有限公司 | Method and device for generating and acquiring authorization for deleting isd-p domain |
| CN110286857A (en) * | 2019-06-25 | 2019-09-27 | 恒宝股份有限公司 | A kind of distribution of smart card control area and management method |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102025710A (en) * | 2009-09-11 | 2011-04-20 | 中国银联股份有限公司 | Multi-application intelligent card and intelligent card multi-application management system and method |
| CN102521626A (en) * | 2011-11-30 | 2012-06-27 | 北京握奇数据系统有限公司 | Method and system for multi-application management of intelligent cards |
| CN102970137A (en) * | 2011-08-31 | 2013-03-13 | 北京中电华大电子设计有限责任公司 | Safe issuing method of multi-functional intelligent card |
| CN103617440A (en) * | 2013-12-04 | 2014-03-05 | 武汉天喻信息产业股份有限公司 | Multi-application smart card achieving multi-way independent control and issuing method thereof |
| CN103729179A (en) * | 2013-12-25 | 2014-04-16 | 飞天诚信科技股份有限公司 | Method for securely executing entrusted management commands |
-
2014
- 2014-04-30 CN CN201410181142.2A patent/CN103957210B/en active Active
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102025710A (en) * | 2009-09-11 | 2011-04-20 | 中国银联股份有限公司 | Multi-application intelligent card and intelligent card multi-application management system and method |
| CN102970137A (en) * | 2011-08-31 | 2013-03-13 | 北京中电华大电子设计有限责任公司 | Safe issuing method of multi-functional intelligent card |
| CN102521626A (en) * | 2011-11-30 | 2012-06-27 | 北京握奇数据系统有限公司 | Method and system for multi-application management of intelligent cards |
| CN103617440A (en) * | 2013-12-04 | 2014-03-05 | 武汉天喻信息产业股份有限公司 | Multi-application smart card achieving multi-way independent control and issuing method thereof |
| CN103729179A (en) * | 2013-12-25 | 2014-04-16 | 飞天诚信科技股份有限公司 | Method for securely executing entrusted management commands |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105809064A (en) * | 2014-12-31 | 2016-07-27 | 北京华大智宝电子系统有限公司 | Smart card safety control method and smart card |
| CN105809064B (en) * | 2014-12-31 | 2018-09-28 | 北京华大智宝电子系统有限公司 | A kind of smart card security control method and smart card |
| WO2017185458A1 (en) * | 2016-04-29 | 2017-11-02 | 宇龙计算机通信科技(深圳)有限公司 | Method and device for generating and acquiring authorization for deleting isd-p domain |
| CN110286857A (en) * | 2019-06-25 | 2019-09-27 | 恒宝股份有限公司 | A kind of distribution of smart card control area and management method |
| CN110286857B (en) * | 2019-06-25 | 2022-09-09 | 恒宝股份有限公司 | Smart card control area distribution and management method |
Also Published As
| Publication number | Publication date |
|---|---|
| CN103957210B (en) | 2017-10-20 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102216998B (en) | Controlled data access to non-volatile memory | |
| US8656454B2 (en) | Data store including a file location attribute | |
| CN111143816B (en) | Verification and authorization method and verification server | |
| CN103430222A (en) | Local trusted services manager for contactless smart card | |
| CN102982141A (en) | Method and device for realizing distributed database agent | |
| CN105323237A (en) | Authority delegation system, method and authentication server system | |
| CN109033857B (en) | Method, device and equipment for accessing data and readable storage medium | |
| US20210216523A1 (en) | Data Storage Method, Metadata Server, and Client | |
| CN104937904A (en) | Copy offload for disparate offload providers | |
| US20130024917A1 (en) | Memo synchronization system, mobile system, and method for synchronizing memo data | |
| CN104348895A (en) | Method and device for sharing data among programs in mobile terminal | |
| KR20210130825A (en) | Prevention of erroneous transfer of copies of data records to distributed ledger systems | |
| US9462408B2 (en) | Information processing method and electronic device | |
| CN103957210A (en) | Smart card and safety control method, device and system thereof | |
| CN108989288A (en) | A kind of mobile digital literary property protection method and device based on block chain | |
| US20100162409A1 (en) | Method for moving rights object and method for managing rights of issuing rights object and system thereof | |
| CN105183799A (en) | Authority management method and client | |
| KR102139551B1 (en) | Method and server for managing testament | |
| CN103685259A (en) | Method and device for account logging in | |
| CN101796513A (en) | Method and device for managing data in a distributed environment | |
| CN102831468A (en) | Intelligent card chip of mobile terminal as well as initialization and use method thereof | |
| US9424405B2 (en) | Using receipts to control assignments of items of content to users | |
| CN113468579A (en) | Data access method, device, equipment and storage medium | |
| CN115438353A (en) | User data management method and related equipment | |
| CN105630811A (en) | Update method and update system of access control rule |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| CP01 | Change in the name or title of a patent holder |
Address after: 330096 No. 399 torch street, hi tech Development Zone, Jiangxi, Nanchang Patentee after: Jiede (China) Technology Co.,Ltd. Address before: 330096 No. 399 torch street, hi tech Development Zone, Jiangxi, Nanchang Patentee before: Jiede (China) Information Technology Co.,Ltd. |
|
| CP01 | Change in the name or title of a patent holder |