CN104796771B - Control method for down loading and system and downloading guides module - Google Patents
Control method for down loading and system and downloading guides module Download PDFInfo
- Publication number
- CN104796771B CN104796771B CN201410029340.7A CN201410029340A CN104796771B CN 104796771 B CN104796771 B CN 104796771B CN 201410029340 A CN201410029340 A CN 201410029340A CN 104796771 B CN104796771 B CN 104796771B
- Authority
- CN
- China
- Prior art keywords
- control
- guides module
- downloading guides
- character string
- module
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 69
- 230000004044 response Effects 0.000 claims description 37
- 230000008569 process Effects 0.000 claims description 25
- 238000002955 isolation Methods 0.000 claims description 11
- 230000007246 mechanism Effects 0.000 claims description 9
- 230000006837 decompression Effects 0.000 claims description 3
- 235000013399 edible fruits Nutrition 0.000 claims description 3
- 238000000151 deposition Methods 0.000 claims description 2
- 230000006870 function Effects 0.000 abstract description 13
- 238000012790 confirmation Methods 0.000 abstract description 3
- 238000009434 installation Methods 0.000 description 5
- 238000010586 diagram Methods 0.000 description 4
- 230000005540 biological transmission Effects 0.000 description 3
- 230000008901 benefit Effects 0.000 description 2
- 238000012795 verification Methods 0.000 description 2
- 230000008859 change Effects 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 230000000694 effects Effects 0.000 description 1
- 238000011900 installation process Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 238000002360 preparation method Methods 0.000 description 1
- 229910052709 silver Inorganic materials 0.000 description 1
- 239000004332 silver Substances 0.000 description 1
- GOLXNESZZPUPJE-UHFFFAOYSA-N spiromesifen Chemical compound CC1=CC(C)=CC(C)=C1C(C(O1)=O)=C(OC(=O)CC(C)(C)C)C11CCCC1 GOLXNESZZPUPJE-UHFFFAOYSA-N 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
- 230000026676 system process Effects 0.000 description 1
- 230000001960 triggered effect Effects 0.000 description 1
Abstract
The invention discloses a kind of control method for down loading and system and downloading guides module, it is related to intelligent television payment technical field.Control relevant information is divided into variable information and non-variable information by the present invention,Non-variable information includes the public key of downloading guides module and control,Non-variable information is stored in the read-only memory block of TV,The guiding control content and authentication content for ensureing control are not tampered with,So as to ensure that control downloads the safety with call entry,Variable information includes data caused by control and control operation,Variable information is stored in the RAM of TV,The characteristic of loss of data after being powered off using RAM,Control and its service data can be removed after each TV power-off,Reduce leaking data and the risk distorted,And reduce the memory space of control occupancy,Only memory space is taken temporarily when needing TV payment function,Memory space can be discharged in time after TV power-off,Simultaneously,The credibility of loading source and the integrality of Confirmation Controls can be verified using the public key of control.
Description
Technical field
The present invention relates to intelligent television payment technical field, more particularly to a kind of control method for down loading and system and downloading guides
Module.
Background technology
With the development of triple play technology, many intelligent televisions start with payment function.For example, user can pass through
The value-added services such as TV purchase consulting, program request, can also buy physical goods etc. on TV store.Work(is being paid using TV
Before energy, generally require to download related control.
At present, after TV downloads the installation kit of control, the installation kit of control is stored in RAM(Random Access
Memory, random access storage device), then the installation process of the installation kit of execution control, the control file formed after installation are deposited
The user's space in the storage of the fuselages such as Flash chip is stored up, data caused by control operation also are stored in the fuselages such as Flash chip
User's space in storage.
Intelligent television belongs to resource-constrained equipment, and data caused by control and its operation take fuselage memory block always
Domain, partial TV may be caused can not to use TV payment function due to limited storage space, it is also possible to influence user to it
The usage experience that he applies, and what control file and its service data took is user's space in fuselage storage, the storage
Space is read-write for other applications and user, attack, the security ratio such as is subject to leaking data, distorts
It is poor.
The content of the invention
A technical problem to be solved of the embodiment of the present invention is:Solve TV to pay present in control downloading process
The problem of taking memory space and security.
One side according to embodiments of the present invention, the control method for down loading that a kind of TV is paid is proposed, including:Download is drawn
Guide module downloads control to download server application;The Shen for the download control that download server is sent in response to downloading guides module
Please, platform application is provided to payment services to sign to control;Payment services provide platform response and sent in download server
The application signed to control, control is signed using the private key of control, and return the signature character string of control to
Download server;Download server provides the signature character string for the control that platform returns in response to payment services, by control and its
Signature character string is sent to downloading guides module;The control and its signature word that downloading guides module is sent in response to download server
Symbol string, control is verified according to the public key of control and signature character string, if be verified to control, control preserved
To the random access storage device RAM of TV, and by control run caused by data be saved in the RAM of TV, RAM has power-off
Loss of data characteristic afterwards;Wherein, the public key of downloading guides module and control is stored in the read-only memory block of TV.
In one embodiment, using the process isolation mechanism of multi-process operating system to the control that is stored in RAM and
Its service data carries out safeguard protection.
In one embodiment, the control method for down loading also includes:Downloading guides module provides platform Shen to payment services
Please this module is signed;Payment services provide platform response and the application signed to it are sent in downloading guides module,
Signed using the private key of downloading guides module, and the signature character string for returning to downloading guides module gives downloading guides module;
Downloading guides module provides the signature character string of this module that platform returns in response to payment services, to control request call control
Part, wherein, call the signature character string that downloading guides module is carried in the request of control;Control is in response to downloading guides module
Call request, call request is verified according to the public key of downloading guides module and signature character string, if to call request
Be verified, return call result give downloading guides module.
In one embodiment, after each TV power-off, the control is re-executed before using TV payment function
Method for down loading.
In one embodiment, the control method for down loading also includes:If the control that download server returns is compressed, under
Carry guiding module to decompress control, and the control after decompression is saved in RAM.
One side according to embodiments of the present invention, the downloading guides module that a kind of TV is paid is proposed, including:Under control
Carrier unit, for downloading control to download server application;Control authentication unit, for the control sent in response to download server
Part and its signature character string, are verified, control storage unit, for such as according to the public key of control and signature character string to control
Fruit is verified to control, and control is saved in the random access storage device RAM of TV, and by control run caused by number
According to the RAM for being saved in TV, control and its service data in RAM can utilize the process isolation mechanism of multi-process operating system
Carry out safeguard protection;Wherein, the public key of downloading guides module and control is stored in the read-only memory block of TV.
In one embodiment, the downloading guides module also includes:Signature acquiring unit, it is flat for being provided from payment services
Platform obtains the signature character string of downloading guides module;Control call unit, for control request call control, wherein, call
The signature character string of downloading guides module is carried in the request of control, so that control is according to the public key and signature of downloading guides module
Character string is verified to call request, if be verified to call request, receives the call result that control returns.
In one embodiment, the request for the calling control that control call unit is sent includes paying request and inquiry into balance
Request.
One side according to embodiments of the present invention, the control download system that a kind of TV is paid is proposed, including:Under foregoing
Carry guiding module, download server and payment services and platform is provided;Download server is used to send in response to downloading guides module
Download control application, to payment services provide platform application control is signed;And provided in response to payment services
The signature character string for the control that platform returns, control and its signature character string are sent to downloading guides module;Payment services carry
The application signed to control for being used to send in response to download server for platform, control is carried out using the private key of control
Signature, and the signature character string of control is returned to download server.
In one embodiment, payment services provide platform and are additionally operable to sign it in response to the transmission of downloading guides module
The application of name, is signed using the private key of downloading guides module, and returns to the signature character string of downloading guides module to download
Guiding module.
The present invention at least has advantages below:
On the one hand, control relevant information is divided into variable information and non-variable information, non-variable information draws including download
The public key of guide module and control, non-variable information are stored in the read-only memory block of TV, do not allow to rewrite, ensure the guiding of control
Control content and authentication content are not tampered with, so as to ensure that control is downloaded and the safety of call entry, variable information include control
Data caused by part and control operation, variable information are stored in the RAM of TV, the characteristic of loss of data after being powered off using RAM, often
Control and its service data can be removed after secondary TV power-off, reduce leaking data and the risk distorted, improving control makes
Security, and the memory space of control occupancy can be reduced, only storage is taken temporarily when needing TV payment function
Space, memory space can be discharged in time after TV power-off, it is ensured that user to the usage experience of other application, meanwhile, utilize control
The public key of part can verify the credibility of loading source and the integrality of Confirmation Controls.
Another further aspect, the control in RAM and its service data are entered using the process isolation mechanism of multi-process operating system
Row safeguard protection, forbids the access of internal memory between different processes, does not allow process to operate the internal memory of other processes, so as to
To improve the security of control and its service data in internal memory running.
Another aspect, can include the public key of downloading guides module in control, and using the public key to calling the mould of control
Block is verified, so that it is guaranteed that control is only downloaded guiding module calling, prevents disabled user or illegal program from being carried out to control
Operation.
By referring to the drawings to the present invention exemplary embodiment detailed description, further feature of the invention and its
Advantage will be made apparent from.
Brief description of the drawings
In order to illustrate more clearly about the embodiment of the present invention or technical scheme of the prior art, below will be to embodiment or existing
There is the required accompanying drawing used in technology description to be briefly described, it should be apparent that, drawings in the following description are only this
Some embodiments of invention, for those of ordinary skill in the art, without having to pay creative labor, may be used also
To obtain other accompanying drawings according to these accompanying drawings.
Fig. 1 is the schematic flow sheet of control method for down loading one embodiment that the TV of the present invention is paid.
Fig. 2 is the schematic flow sheet of control call method one embodiment that the TV of the present invention is paid.
Fig. 3 is that the overall flow schematic diagram of one embodiment is downloaded and called to the control that the TV of the present invention is paid.
Fig. 4 is that the control that the TV of the present invention is paid is downloaded and paid and the flow of inquiry into balance one embodiment is illustrated
Figure.
Fig. 5 is the structural representation of control download system one embodiment that the TV of the present invention is paid.
Fig. 6 is TV of the present invention or the memory block in set top box and its schematic diagram of storage content.
Fig. 7 is the structural representation of downloading guides module one embodiment of the present invention.
Fig. 8 is the structural representation of downloading guides module further embodiment of the present invention.
Embodiment
Below in conjunction with the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is carried out clear, complete
Site preparation describes, it is clear that described embodiment is only part of the embodiment of the present invention, rather than whole embodiments.Below
Description only actually at least one exemplary embodiment is illustrative, is never used as to the present invention and its application or makes
Any restrictions.Based on the embodiment in the present invention, those of ordinary skill in the art are not making creative work premise
Lower obtained every other embodiment, belongs to the scope of protection of the invention.
Unless specifically stated otherwise, the part and positioned opposite, the digital table of step otherwise illustrated in these embodiments
Do not limited the scope of the invention up to formula and numerical value.
Simultaneously, it should be appreciated that for the ease of description, the size of the various pieces shown in accompanying drawing is not according to reality
Proportionate relationship draw.
It may be not discussed in detail for technology, method and apparatus known to person of ordinary skill in the relevant, but suitable
In the case of, the technology, method and apparatus should be considered as authorizing part for specification.
In shown here and discussion all examples, any occurrence should be construed as merely exemplary, without
It is as limitation.Therefore, the other examples of exemplary embodiment can have different values.
It should be noted that:Similar label and letter represents similar terms in following accompanying drawing, therefore, once a certain Xiang Yi
It is defined, then it need not be further discussed in subsequent accompanying drawing in individual accompanying drawing.
Memory space and security are taken present in control downloading process in order to solve the problems, such as that TV is paid, the present invention
Control relevant information is divided into variable information and non-variable information, non-variable information includes downloading guides module and the public affairs of control
Key, non-variable information are stored in the read-only memory block of TV, do not allow to rewrite, and ensure guiding control content and the certification of control
Content is not tampered with, so as to ensure that control is downloaded and the safety of call entry, variable information include control and control operation generation
Data, variable information is stored in the RAM of TV, loss of data characteristic after being powered off using RAM, can after each TV power-off
Control and its service data are removed, reduce leaking data and the risk distorted, improves the security that control uses, and can be with
The memory space that control takes is reduced, only takes memory space temporarily when needing TV payment function, can be with after TV power-off
Release memory space in time, it is ensured that user to the usage experience of other application, meanwhile, can verify download using the public key of control
The credibility in source and the integrality of Confirmation Controls.Control download scenarios are specifically described below.
Fig. 1 is the schematic flow sheet of control method for down loading one embodiment that the TV of the present invention is paid.
As shown in figure 1, the control method for down loading of the present embodiment for example comprises the following steps:
Step S101, downloading guides module download control to download server application.Wherein, downloading guides module is stored in
The read-only memory block of TV.Downloading guides module is controlled for the download to control, certification, calling etc..Control is in this reality
Apply and the related control of payment function is referred mainly in example, also, the control in the present invention can be used without installation, equivalent to existing
Control file in technology.
As a kind of exemplary method, download link that downloading guides module can provide according to the browser of TV,
The control adaptable to download server application download and business or set top box.
Step S102, the application for the download control that download server is sent in response to downloading guides module, to payment services
Platform application is provided to sign to control.
Step S103, payment services provide the application signed to control that platform response is sent in download server,
Control is signed using the private key of control, and returns to the signature character string of control to download server.
As a kind of exemplary method, the private key of each control can be stored in advance in payment services and platform is provided.
As a kind of exemplary endorsement method, payment services provide platform can the life from control with a hash function
Into summary, then this summary is encrypted with the private key of control, the summary after this encryption is using as the signature word of control
Symbol string is sent to download server.
Step S104, download server provide the signature character string for the control that platform returns in response to payment services, will controlled
Part and its signature character string are sent to downloading guides module.
Wherein, the control that download server is sent can be compressed file or uncompressed original document.Such as
The control that fruit download server returns is compressed file, and downloading guides module needs to decompress control, after decompression
Control can also be saved in RAM, and RAM is also referred to as internal memory.
Step S105, the control and its signature character string that downloading guides module is sent in response to download server, according to control
The public key of part and signature character string verify to control, wherein, the public key of control is stored in the read-only memory block of TV, if
Control is verified, control is saved in the RAM of TV, and by control run caused by data be saved in TV
RAM, RAM have loss of data characteristic after power-off.
After each TV power-off, control method for down loading is re-executed before using TV payment function, i.e., is held again
Row step S101~S105.
As a kind of exemplary verification method, downloading guides module is first with the Kazakhstan as payment services offer platform
Uncommon function calculates the summary of control from the control received, then again with the public key of control come the signature character string to control
It is decrypted, if the two summaries are identical, then recipient just can confirm that the digital signature is sender, then digital signature
Effectively, if the two summaries are different, digital signature is invalid.
Digital signature has two kinds of effects:First, it can determine that message is strictly what is signed and issued by sender, because not
People does not palm off the signature of sender.Second, digital signature can determine that the integrality of message.Because the characteristics of digital signature is it
The feature of file is represented, in the event of changing, the value of digital signature will also change file.Different files will obtain not
Same digital signature.
In another embodiment, using the process isolation mechanism of multi-process operating system to the control that is stored in RAM and
Its service data carries out safeguard protection.As a kind of exemplary process isolation method, process is realized using virtual address space
Isolation.The virtual address of different processes is different, for example, process A virtual address is different with process B virtual address, thus
Prevent process A from data message is write into process B.
Using the process isolation mechanism of multi-process operating system, forbid the access of internal memory between different processes, do not allow process
The internal memory of other processes is operated, so as to improve the safety of control and its service data in internal memory running
Property, prevent disabled user or illegal process from accessing, distorting control and its service data.
In another embodiment, the public key of downloading guides module can be included in control, and is controlled using the public key to calling
The module of part is verified, so that it is guaranteed that control is only downloaded guiding module calling, prevents disabled user or illegal program to control
Part is operated.Control invocation scheme is specifically described below.
Fig. 2 is the schematic flow sheet of control call method one embodiment that the TV of the present invention is paid.
As shown in Fig. 2 the control call method of the present embodiment for example comprises the following steps:
Step S201, downloading guides module provide platform application to payment services and this module are signed.
Step S202, payment services provide platform response and the application signed to it are sent in downloading guides module, make
Signed with the private key of downloading guides module, and the signature character string for returning to downloading guides module gives downloading guides module.
As a kind of exemplary method, the private key of downloading guides module can be stored in advance in payment services provide it is flat
Platform.
Step S203, downloading guides module provide the signature character string of this module that platform returns in response to payment services,
To control request call control, wherein, call the signature character string that downloading guides module is carried in the request of control.
Step S204, control in response to downloading guides module call request, according to the public key and label of downloading guides module
Name character string is verified to call request, if be verified to call request, is returned to call result and is given downloading guides mould
Block.
Wherein, the method signed and its verified may be referred to previous embodiment, or can use existing signature verification
Method, this present embodiment is not limited.
Fig. 3 is that the overall flow schematic diagram of one embodiment is downloaded and called to the control that the TV of the present invention is paid.Wherein,
The specific descriptions of control method for down loading refer to step S101~S105,
The specific descriptions of control call method refer to step S201~S204, repeat no more here.
In TV payment function, payment or inquiry into balance etc. may all call related control, and therefore, control, which calls, asks
Ask such as can be to pay request, inquiry into balance request.
Fig. 4 is that the control that the TV of the present invention is paid is downloaded and paid and the flow of inquiry into balance one embodiment is illustrated
Figure.
As shown in figure 4, after TV starts start, downloading guides module can be loaded.The browser access that user passes through TV
Shopping page, payment transaction may be triggered on the page, browser is downloaded by downloading guides module pays related control, tool
The method that body is downloaded may be referred to previous embodiment.One of which application, browser initiate to pay request to guiding module is downloaded,
Downloading guides module identifies that request is directed to corresponding input page by word according to payer, and input information transmission is controlled to payment
Part, for example, Unionpay is paid, it is necessary to input and transmit Unionpay's card number, password, cell-phone number, the wing is paid, it is necessary to input and transmit mobile phone
Number, dynamic code, quick payment is, it is necessary to input and transmit bank's card number.Control is paid to have interacted with payment services offer platform
Certification and payment process into Net silver, then, pay control and payment result is returned to browser by downloading guides module.It is another
Using browser sends inquiry into balance request by downloading guides module to control is paid, and pays control and is provided to payment services
Platform sends inquiry into balance request, and receives the inquiry into balance result of return, then pay control by downloading guides module to
Browser returns to inquiry into balance result.If user no longer needs to use payment function, after user exits and pays the page, browse
Device can exit payment request to guiding module transmission is downloaded, to exit payment function.
Fig. 5 is the structural representation of control download system one embodiment that the TV of the present invention is paid.
As shown in figure 5, the system of the present embodiment includes:Downloading guides module 501, download server 502 and payment services
Platform 503 is provided.
In one embodiment, download server 502 is used for the download control sent in response to downloading guides module 501
Application, provide platform 503 to payment services and apply signing to control;And provide platform 503 in response to payment services to return
The signature character string of the control returned, control and its signature character string are sent to downloading guides module 501.Payment services provide flat
Platform 503 is used for the application signed to control sent in response to download server 502, and control is entered using the private key of control
Row signature, and the signature character string of control is returned to download server 502.Downloading guides module 501 is used for download server
Control is downloaded in 502 applications;And the control and its signature character string sent in response to download server 502, according to the public affairs of control
Key and signature character string are verified to control, if be verified to control, control is saved in the RAM of TV, and
By control run caused by data be saved in the RAM of TV, RAM has a loss of data characteristic after power-off, control in RAM and its
Service data can carry out safeguard protection using the process isolation mechanism of multi-process operating system;Wherein, downloading guides module 501
The read-only memory block of TV is stored in the public key of control.
In one embodiment, downloading guides module 501 is additionally operable to apply to this module to payment services offer platform 503
Signed;And it is additionally operable to control request call control, wherein, call carrying downloading guides module in the request of control
501 signature character string, so that control is tested call request according to the public key of downloading guides module 501 and signature character string
Card, if be verified to call request, receive the call result that control returns.Payment services provide platform 503 and are additionally operable to
The application signed to it is sent in response to downloading guides module 501, is signed using the private key of downloading guides module 501
Name, and the signature character string of downloading guides module 501 is returned to downloading guides module 501.
Wherein, downloading guides module can be located in TV or set top box.Fig. 6 is depositing in TV of the present invention or set top box
The schematic diagram of storage area and its storage content.As shown in fig. 6, the system space of fuselage storage is read-only memory block, can be read-only
Memory block(Such as ROM)The public key of middle storage downloading guides module and control, counted in RAM caused by storage control and its operation
According to.Certainly, can also there are other kinds of storage region, such as Flash in TV or set top box(Flash memory)Deng.
Fig. 7 is the structural representation of downloading guides module one embodiment of the present invention.
As shown in fig. 7, the downloading guides module 501 of the present embodiment includes:
Control download unit 701, for downloading control to download server application;
Control authentication unit 702, for the control and its signature character string sent in response to download server, according to control
Public key and signature character string control is verified;And
Control storage unit 703, if for being verified to control, the random access that control is saved in TV is deposited
Reservoir RAM, and by control run caused by data be saved in the RAM of TV, RAM has loss of data characteristic after power-off, RAM
In control and its service data can utilize multi-process operating system process isolation mechanism carry out safeguard protection;
Wherein, the public key of downloading guides module 501 and control is stored in the read-only memory block of TV, i.e., fuselage storage is
System space.
Fig. 8 is the structural representation of downloading guides module further embodiment of the present invention.
As shown in figure 8, downloading guides module 501 also includes:
Signature acquiring unit 804, for providing the signature character string of platform acquisition downloading guides module from payment services;With
And
Control call unit 805, for control request call control, wherein, call to carry in the request of control and download
The signature character string of guiding module, so that control is carried out according to the public key of downloading guides module and signature character string to call request
Checking, if be verified to call request, receive the call result that control returns.
One of ordinary skill in the art will appreciate that hardware can be passed through by realizing all or part of step of above-described embodiment
To complete, by program the hardware of correlation can also be instructed to complete, described program can be stored in a kind of computer-readable
In storage medium, storage medium mentioned above can be read-only storage, disk or CD etc..
The foregoing is only presently preferred embodiments of the present invention, be not intended to limit the invention, it is all the present invention spirit and
Within principle, any modification, equivalent substitution and improvements made etc., it should be included in the scope of the protection.
Claims (10)
1. the control method for down loading that a kind of TV is paid, including:
Downloading guides module downloads control to download server application;
The application for the download control that download server is sent in response to downloading guides module, platform application pair is provided to payment services
Control is signed;
Payment services provide the application signed to control that platform response is sent in download server, use the private key of control
Control is signed, and returns to the signature character string of control to download server;
Download server provides the signature character string for the control that platform returns in response to payment services, by control and its signature character
String is sent to downloading guides module;
The control and its signature character string that downloading guides module is sent in response to download server, according to the public key and signature of control
The control that character string is sent to download server is verified, if be verified to control, control is saved in into TV
Random access storage device RAM, and by control run caused by data be saved in the RAM of TV, data are lost after RAM has power-off
Lose characteristic;
Wherein, the public key of downloading guides module and control is stored in the read-only memory block of TV.
2. according to the method for claim 1, it is characterised in that using the process isolation mechanism of multi-process operating system to depositing
Store up the control in RAM and its service data carries out safeguard protection.
3. method according to claim 1 or 2, it is characterised in that this method also includes:
Downloading guides module provides platform application to payment services and this module is signed;
Payment services provide platform response and the application signed to it are sent in downloading guides module, use downloading guides module
Private key signed, and the signature character string for returning to downloading guides module gives downloading guides module;
Downloading guides module provides the signature character string of this module that platform returns in response to payment services, to control request call
Control, wherein, call the signature character string that downloading guides module is carried in the request of control;
Control in response to downloading guides module call request, according to the public key of downloading guides module and signature character string to call
Request is verified, if be verified to call request, is returned to call result and is given downloading guides module.
4. method according to claim 1 or 2, it is characterised in that after each TV power-off, work(is being paid using TV
The control method for down loading can be re-executed before.
5. method according to claim 1 or 2, it is characterised in that this method also includes:
If the control that download server returns is compressed, downloading guides module decompresses to control, and by after decompression
Control be saved in RAM.
6. the downloading guides module that a kind of TV is paid, including:
Control download unit, for downloading control to download server application;
Control authentication unit, for the control and its signature character string sent in response to download server, according to the public key of control
The control sent with signature character string to download server is verified;
Control storage unit, if for being verified to control, control is saved in the random access storage device of TV
RAM, and by control run caused by data be saved in the RAM of TV, RAM has a loss of data characteristic after power-off, in RAM
Control and its service data can carry out safeguard protection using the process isolation mechanism of multi-process operating system;
Wherein, the public key of downloading guides module and control is stored in the read-only memory block of TV.
7. downloading guides module according to claim 6, it is characterised in that the downloading guides module also includes:
Signature acquiring unit, for providing the signature character string of platform acquisition downloading guides module from payment services;
Control call unit, for control request call control, wherein, call carrying downloading guides module in the request of control
Signature character string, so that control is verified according to the public key of downloading guides module and signature character string to call request, such as
Fruit is verified to call request, receives the call result that control returns.
8. downloading guides module according to claim 7, it is characterised in that the calling control that control call unit is sent
Request includes paying request and inquiry into balance request.
9. the control download system that a kind of TV is paid, including:Downloading guides module described in claim any one of 6-8, under
Carry server and payment services provide platform;
Download server is used for the application of the download control sent in response to downloading guides module, and platform Shen is provided to payment services
Please control is signed;And the signature character string for the control that platform returns is provided in response to payment services, by control and its
Signature character string is sent to downloading guides module;
Payment services provide the application signed to control that platform is used to send in response to download server, use control
Private key is signed to control, and returns to the signature character string of control to download server.
10. system according to claim 9, it is characterised in that
Payment services provide platform and are additionally operable to send the application for signing to it in response to downloading guides module, are drawn using download
The private key of guide module is signed, and the signature character string for returning to downloading guides module gives downloading guides module.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410029340.7A CN104796771B (en) | 2014-01-22 | 2014-01-22 | Control method for down loading and system and downloading guides module |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410029340.7A CN104796771B (en) | 2014-01-22 | 2014-01-22 | Control method for down loading and system and downloading guides module |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104796771A CN104796771A (en) | 2015-07-22 |
| CN104796771B true CN104796771B (en) | 2018-04-06 |
Family
ID=53561224
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410029340.7A Active CN104796771B (en) | 2014-01-22 | 2014-01-22 | Control method for down loading and system and downloading guides module |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104796771B (en) |
Families Citing this family (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107194693A (en) * | 2016-03-15 | 2017-09-22 | 中国电信股份有限公司 | Method, set top box and system for realizing secure payment |
| CN109360059A (en) * | 2018-10-16 | 2019-02-19 | 德州职业技术学院(德州市技师学院) | A kind of e-commerce platform for realizing intelligent Service |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101114359A (en) * | 2007-06-22 | 2008-01-30 | 谭祝平 | IC card electronic payment system with bidirectional data-transmission network |
| CN101719250A (en) * | 2009-12-10 | 2010-06-02 | 中国联合网络通信集团有限公司 | Payment authentication method, platform and system |
| CN102036025A (en) * | 2009-09-25 | 2011-04-27 | 无锡华润矽科微电子有限公司 | SOC (System on Chip) chip and control method thereof |
| CN102609841A (en) * | 2012-01-13 | 2012-07-25 | 东北大学 | Remote mobile payment system based on digital certificate and payment method |
Family Cites Families (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US6385651B2 (en) * | 1998-05-05 | 2002-05-07 | Liberate Technologies | Internet service provider preliminary user registration mechanism provided by centralized authority |
| US20060236122A1 (en) * | 2005-04-15 | 2006-10-19 | Microsoft Corporation | Secure boot |
| CN101075316A (en) * | 2007-06-25 | 2007-11-21 | 陆航程 | Method for managing electronic ticket trade certification its carrier structure, system and terminal |
| CN102467789A (en) * | 2010-11-18 | 2012-05-23 | 卓望数码技术(深圳)有限公司 | Retail outlet account transfer operating system and transaction data encryption transmission method |
-
2014
- 2014-01-22 CN CN201410029340.7A patent/CN104796771B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101114359A (en) * | 2007-06-22 | 2008-01-30 | 谭祝平 | IC card electronic payment system with bidirectional data-transmission network |
| CN102036025A (en) * | 2009-09-25 | 2011-04-27 | 无锡华润矽科微电子有限公司 | SOC (System on Chip) chip and control method thereof |
| CN101719250A (en) * | 2009-12-10 | 2010-06-02 | 中国联合网络通信集团有限公司 | Payment authentication method, platform and system |
| CN102609841A (en) * | 2012-01-13 | 2012-07-25 | 东北大学 | Remote mobile payment system based on digital certificate and payment method |
Also Published As
| Publication number | Publication date |
|---|---|
| CN104796771A (en) | 2015-07-22 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| KR102141836B1 (en) | Two factor authentication | |
| CN110826043B (en) | Digital identity application system and method, identity authentication system and method | |
| CN103164792B (en) | Payment services supplying method on wireless terminal and relevant device and system | |
| CN106899552A (en) | Authentication method, certification terminal and system | |
| US20110239281A1 (en) | Method and apparatus for authentication of services | |
| CN106503996A (en) | Payment transaction based on web provides equipment, method and system | |
| CN105279684A (en) | System and method for safely transferring electronic ticket through near field communication technology | |
| CN109191194B (en) | Method, device and system for processing card data and storage medium | |
| WO2017157185A1 (en) | Method and device for linking to account and providing service process | |
| CN105991514A (en) | Service request authentication method and device | |
| CN105338000A (en) | Verification method and verification system | |
| CN104281272A (en) | Password input processing method and device | |
| CN103745352A (en) | Method for placing order by calling payment plug-in on WAP (Wireless Application Protocol) merchant mobile platform | |
| CN106453263A (en) | Method and system of binding cellphone number with APP | |
| CN104346550A (en) | Information processing method and electronic equipment | |
| US9836618B2 (en) | System and method of authentication of a first party respective of a second party aided by a third party | |
| CN102611702A (en) | System and method for ensuring safety of network payment | |
| CN101901306A (en) | Network transaction encryption method and dynamic password equipment used by same | |
| CN104426657A (en) | Service authentication method and system, server | |
| CN102693478A (en) | Trading method of bid security during bidding procedure and system thereof | |
| CN104796771B (en) | Control method for down loading and system and downloading guides module | |
| CN107528822A (en) | A kind of business performs method and device | |
| WO2015007184A1 (en) | Multi-application smart card and multi-application management method for smart card | |
| CN104252676A (en) | System and method for using real-time communication and digital certificate to authenticate Internet bank account identity | |
| CN103546295A (en) | Dynamic mobile signature system and method |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| EXSB | Decision made by sipo to initiate substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| EE01 | Entry into force of recordation of patent licensing contract | ||
| EE01 | Entry into force of recordation of patent licensing contract |
Application publication date: 20150722 Assignee: Tianyiyun Technology Co.,Ltd. Assignor: CHINA TELECOM Corp.,Ltd. Contract record no.: X2024110000020 Denomination of invention: Control download method and system, as well as download guidance module Granted publication date: 20180406 License type: Common License Record date: 20240315 |