CN105657688B - A kind of communication means and device based on virtual client identification module - Google Patents
A kind of communication means and device based on virtual client identification module Download PDFInfo
- Publication number
- CN105657688B CN105657688B CN201510863774.1A CN201510863774A CN105657688B CN 105657688 B CN105657688 B CN 105657688B CN 201510863774 A CN201510863774 A CN 201510863774A CN 105657688 B CN105657688 B CN 105657688B
- Authority
- CN
- China
- Prior art keywords
- parameter
- mobile terminal
- server
- sim card
- virtual sim
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000004891 communication Methods 0.000 title claims abstract description 92
- 230000003993 interaction Effects 0.000 claims abstract description 58
- 238000000034 method Methods 0.000 claims description 21
- 230000005540 biological transmission Effects 0.000 claims description 13
- 230000002452 interceptive effect Effects 0.000 claims description 5
- 230000008569 process Effects 0.000 description 8
- 230000001413 cellular effect Effects 0.000 description 4
- 238000010586 diagram Methods 0.000 description 4
- 230000004044 response Effects 0.000 description 4
- 241000208340 Araliaceae Species 0.000 description 3
- 235000005035 Panax pseudoginseng ssp. pseudoginseng Nutrition 0.000 description 3
- 235000003140 Panax quinquefolius Nutrition 0.000 description 3
- 235000008434 ginseng Nutrition 0.000 description 3
- 238000012986 modification Methods 0.000 description 3
- 230000004048 modification Effects 0.000 description 3
- 230000003213 activating effect Effects 0.000 description 2
- 238000005516 engineering process Methods 0.000 description 2
- 101100465000 Mus musculus Prag1 gene Proteins 0.000 description 1
- 230000008859 change Effects 0.000 description 1
- 239000011800 void material Substances 0.000 description 1
- 238000005303 weighing Methods 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W8/00—Network data management
- H04W8/18—Processing of user or subscriber data, e.g. subscribed services, user preferences or user profiles; Transfer of user or subscriber data
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/02—Protecting privacy or anonymity, e.g. protecting personally identifiable information [PII]
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Databases & Information Systems (AREA)
- Computer Security & Cryptography (AREA)
- Mobile Radio Communication Systems (AREA)
- Telephonic Communication Services (AREA)
Abstract
The present invention provides a kind of communication means and device based on virtual SIM card, in the case where mobile terminal uses the virtual SIM card, first message is sent to server to indicate that virtual SIM card is being currently used and using encrypted first parameter and server progress service interaction in mobile terminal, and then mobile terminal can carry out service interaction using encrypted first parameter and server received, mobile terminal is after getting the first parameter in this way, service interaction no longer can be carried out using the first parameter with clear-text way, to improve the safety of the first parameter in virtual SIM card, such as service interaction can be carried out based on encrypted Ki and server, to improve the safety of Ki.
Description
Technical field
The invention belongs to virtual client identification module technical fields more particularly to a kind of based on virtual client identification module
Communication means and device.
Background technique
In existing cellular network, mobile terminal, as mobile phone needs entity SIM card (Subscriber Identity
Module, client identification module) support just accessible cellular network.But entity SIM card is currently to be sent out by operator
Row, and the entity SIM card of operators issue can only access the network of the operator under normal circumstances, i.e. entity SIM card will move
Terminal " locking " is on a network.
For solve entity SIM card the above problem, produce virtual SIM card, why it is referred to as virtual SIM card, be because
It is that the virtual SIM card uses embedded technology, can be preloaded in mobile terminal when leaving the factory, due to virtual SIM card and unlocked
Due to some carrier network, thus user can by the system interface switch operators service of mobile terminal, eliminate by
The link that entity SIM card is taken out and replaced.
Such as user can quickly change operator and retain phone number by the system interface of mobile terminal, selection is more
Excellent service and price, signal covers best operator instantly for selection, either in local, or other places or roaming abroad,
More cost-effective short-term contract can be selected, long-distance and roaming charges are avoided
Although existing virtual SIM card can bring great convenience and the services of roaming of low rate.But virtually
The key parameter of SIM card, such as Ki (Key identifier, mobile phone identification key) are being issued to modem (modem)
It is all to participate in business processing in clear text manner after chip, there are certain disclosure risks.
Summary of the invention
In view of this, the present invention provides a kind of communication means and device based on virtual SIM card, for improving virtual SIM
The safety of parameters in card.
The present invention provides a kind of communication means based on virtual SIM card, is applied in mobile terminal, which comprises
The mobile terminal use the virtual SIM card in the case where, to server send first message, described first
Message is used to indicate the mobile terminal and is being currently used the virtual SIM card, and using encrypted first parameter with
The server carries out service interaction;
Receive encrypted first parameter that server is sent;
Service interaction is carried out based on encrypted first parameter and the server.
It is preferably, described to send first message to server, comprising:
Login request message is sent to the server, carries the virtual SIM card in the login request message
Identification information, the identification information of the virtual SIM card are used to indicate the mobile terminal and the virtual SIM are being currently used
Card, and service interaction is carried out using encrypted first parameter and the server.
It is preferably, described to send first message to server, comprising:
Radio connection request message is sent to the server, is carried in the radio connection request message described virtual
The identification information of SIM card, the identification information of the virtual SIM card are used to indicate the mobile terminal and the void are being currently used
Quasi- SIM card, and service interaction is carried out using encrypted first parameter and the server.
Preferably, the method also includes:
Encryption key and Encryption Algorithm are obtained, the encryption key and the Encryption Algorithm are used for the virtual SIM card
The first parameter be decrypted;
Judge whether the rank of the communication module of the mobile terminal configuration meets communication security requirements;
If it is, first parameter is decrypted using the encryption key and the Encryption Algorithm;
If it is not, then controlling the mobile terminal directly stores encrypted first parameter.
Preferably, whether the rank of the communication module for judging the mobile terminal configuration meets communication security requirements,
It include: to judge whether the identification information of the communication module is default identification information.
The present invention also provides a kind of communication devices based on virtual client identification module SIM card, are applied in mobile terminal,
Described device includes:
Transmission unit, for sending first to server in the case where the mobile terminal uses the virtual SIM card
Message, the first message are used to indicate the mobile terminal and the virtual SIM card are being currently used, and after use encryption
The first parameter and the server carry out service interaction;
Receiving unit, for receiving encrypted first parameter of server transmission;
Interactive unit, for carrying out service interaction based on encrypted first parameter and the server.
Preferably, the transmission unit is used to send login request message, the login request message to the server
In carry the identification information of the virtual SIM card, the identification information of the virtual SIM card is used to indicate the mobile terminal and works as
Before be used the virtual SIM card, and carry out service interaction using encrypted first parameter and the server.
Preferably, the transmission unit is used to send radio connection request message, the wireless connection to the server
The identification information of the virtual SIM card is carried in request message, the identification information of the virtual SIM card is used to indicate the shifting
The virtual SIM card is being currently used in dynamic terminal, and carries out business using encrypted first parameter and the server
Interaction.
Preferably, described device further include:
Acquiring unit, for obtaining encryption key and Encryption Algorithm, the encryption key and the Encryption Algorithm for pair
First parameter of the virtual SIM card is decrypted;
Judging unit is wanted for judging whether the rank of communication module of the mobile terminal configuration meets communication security
It asks;
The case where control unit, the rank for the communication module in the mobile terminal configuration meets communication security requirements
Under, then first parameter is decrypted using the encryption key and the Encryption Algorithm;And in the movement
Terminal configuration communication module rank be unsatisfactory for communication security requirements in the case where, control the mobile terminal directly store add
The first parameter after close.
Preferably, the judging unit is used to judge whether the identification information of the communication module to be default identification information,
To judge whether the rank of the communication module of the mobile terminal configuration meets communication security requirements.
Compared with prior art, above-mentioned technical proposal provided by the invention has the advantages that
In above-mentioned technical proposal provided by the invention, first message is being sent to indicate mobile terminal currently just to server
In the case where carrying out service interaction using virtual SIM card and using encrypted first parameter and server, can use
Encrypted first parameter that receives and server carry out service interaction, such mobile terminal after getting the first parameter,
Service interaction no longer can be carried out using the first parameter with clear-text way, to improve the safety of the first parameter in virtual SIM card
Property, such as service interaction can be carried out based on encrypted Ki and server, to improve the safety of Ki.
Detailed description of the invention
In order to more clearly explain the embodiment of the invention or the technical proposal in the existing technology, to embodiment or will show below
There is attached drawing needed in technical description to be briefly described, it should be apparent that, the accompanying drawings in the following description is the present invention
Some embodiments for those of ordinary skill in the art without creative efforts, can also basis
These attached drawings obtain other attached drawings.
Fig. 1 is a kind of flow chart of the communication means provided in an embodiment of the present invention based on virtual SIM card;
Fig. 2 is another flow chart of the communication means provided in an embodiment of the present invention based on virtual SIM card;
Fig. 3 is a kind of structural schematic diagram of the communication device provided in an embodiment of the present invention based on virtual SIM card;
Fig. 4 is another structural schematic diagram of the communication device provided in an embodiment of the present invention based on virtual SIM card.
Specific embodiment
In order to make the object, technical scheme and advantages of the embodiment of the invention clearer, below in conjunction with the embodiment of the present invention
In attached drawing, technical scheme in the embodiment of the invention is clearly and completely described, it is clear that described embodiment is
A part of the embodiment of the present invention, instead of all the embodiments.Based on the embodiments of the present invention, those of ordinary skill in the art
Every other embodiment obtained without making creative work, shall fall within the protection scope of the present invention.
Referring to Fig. 1, being applied to move it illustrates the communication means provided in an embodiment of the present invention based on virtual SIM card
In dynamic terminal, this mobile terminal can be communicated based on virtual SIM card with the server that carrier network uses, so that mobile
Terminal can complete every business using virtual SIM.Specifically, the communication means based on virtual SIM card shown in above-mentioned Fig. 1 can
With the following steps are included:
101: in the case where mobile terminal uses virtual SIM card, sending first message to server, first message is used for
Virtual SIM card is being currently used in instruction mobile terminal, and carries out industry using encrypted first parameter and the server
Business interaction, such server can carry out business friendship after receiving first message with encrypted first parameter and mobile terminal
Mutually.And if mobile terminal using encrypted first parameter carry out service interaction, and server using plaintext the first parameter (i.e.
First parameter of unencryption) when carrying out service interaction, it will lead to mobile terminal and server can not identify the message that other side sends,
Therefore when mobile terminal is wanted to carry out service interaction using encrypted first parameter and server, it is necessary first to send first
Message carrys out tell the server.
In embodiments of the present invention, mobile terminal can be used using some message interacted with server
Message is used to indicate mobile terminal and virtual SIM card is being currently used, and uses encrypted first parameter and the service
Device carries out service interaction, and such as during starting register flow path after activating virtual SIM card, mobile terminal is sent to server
The identification information of virtual SIM card, the virtual SIM card can be carried in login request message or radio connection request message
Identification information be used to indicate mobile terminal and be being currently used virtual SIM card, and use encrypted first parameter and institute
It states server and carries out service interaction, in this way under the premise of not changing existing business interaction flow, by being asked in existing registration
Ask the mode for increasing the identification information of a virtual SIM card in message or radio connection request message can tell the server movement
Virtual SIM card is being currently used in terminal, and carries out service interaction using encrypted first parameter and the server.
Wherein the identification information of above-mentioned virtual SIM card can use binary sequence form, and binary sequence 0101 indicates
Virtual SIM card is used in mobile terminal, and carries out service interaction using encrypted first parameter and the server, and
Binary sequence 0011 indicates that entity SIM card is used in mobile terminal, therefore can pass through judgement in embodiments of the present invention
Which binary sequence what is carried in first message is to determine whether mobile terminal is used virtual SIM card, and is used
Encrypted first parameter and the server carry out service interaction.
When the identification information of certain virtual SIM card is a sequence, the form in addition to binary sequence can also be used,
If the identification information of virtual SIM card is a Serial No. and/or alphabetical sequence, such as can using number 1 and 2 the two it is digital come
It determines whether mobile terminal is used virtual SIM card, and carries out industry using encrypted first parameter and the server
Business interaction, wherein number 1 can indicate that mobile terminal is used virtual SIM card, and using encrypted first parameter with
The server carries out service interaction, and number 2 then indicates that entity SIM card is used in mobile terminal.
102: receiving encrypted first parameter that server is sent.Wherein the encryption of the first parameter be using server with
Mobile terminal negotiates the encryption key passed through and Encryption Algorithm in advance, and the encryption key and Encryption Algorithm negotiated can be using existing
There is mode, if Encryption Algorithm can be rivest, shamir, adelman, such as RSA public key encryption algorithm, wherein RSA public key encryption algorithm
It is 1977 by Peter Lonard Lee Vista (Ron Rivest), A Di Shamir (Adi Shamir) and Leonard A De
Graceful (Leonard Adleman) is proposed together, and RSA is exactly that their three people's surnames start the alphabetical composition that is stitched together.
After negotiating to pass through, server can be used the encryption key for negotiating to pass through and Encryption Algorithm and carry out to the first parameter
Encryption.In embodiments of the present invention, the first parameter is mobile terminal and server carries out the parameter used when service interaction, such as
In the authentication services of virtual SIM card, the Ki in virtual SIM card is encrypted, thus can be used encrypted Ki into
Row authentication services.
103: service interaction is carried out based on encrypted first parameter and server.By taking authentication services as an example, server exists
When executing authentication services between mobile terminal, server will use encrypted Ki as input to calculate authentication vector, so
Authentication vector is carried in authentication request message afterwards and is sent to mobile terminal.Mobile terminal receive authentication request message it
Afterwards, it will the encrypted Ki saved using itself verifies authentication vector as input, with the identity of authentication server.
After authentication passes through, mobile terminal recycles encrypted Ki to calculate Authentication Response, and is sent to server.Work as server
When determining that Authentication Response is correct, server carries out subsequent register flow path.
From above-mentioned technical proposal it is found that it is provided in an embodiment of the present invention based on the communication means of virtual SIM card to service
Device sends first message and is being currently used virtual SIM card to indicate mobile terminal, and using encrypted first parameter with
In the case that server carries out service interaction, business friendship can be carried out using encrypted first parameter and server received
Mutually, such mobile terminal no longer can carry out service interaction using the first parameter with clear-text way after getting the first parameter,
To improve the safety of the first parameter in virtual SIM card, such as business friendship can be carried out based on encrypted Ki and server
Mutually, to improve the safety of Ki.
In order to further increase virtual SIM card the first parameter safety, it is provided in an embodiment of the present invention based on virtual
The communication means of SIM card can also further determine whether that storage is decrypted to encrypted first parameter, and detailed process is such as
Shown in Fig. 2, on the basis of Fig. 1 further include:
104: obtaining encryption key and Encryption Algorithm, encryption key and Encryption Algorithm are used for the first ginseng to virtual SIM card
Number is decrypted.
For encryption key and Encryption Algorithm can be obtained, need to hold consultation between mobile terminal and server, wherein assisting
The purpose of quotient be determining both sides when carrying out service interaction using which kind of encryption key and Encryption Algorithm, process may is that with
Server negotiates the encryption key and Encryption Algorithm that the first parameter of encryption uses and obtains and negotiate after passing through with server negotiation
By encryption key and Encryption Algorithm.Specific steps can be such that
Mobile terminal sends the negotiation request message for carrying encryption key and Encryption Algorithm to server, wherein negotiating to ask
It asks the encryption key carried in message and Encryption Algorithm to can be mobile terminal itself configuration, adds for what intercommunication used
Key and Encryption Algorithm, it is therefore desirable to which whether request server using the encryption key that mobile terminal itself configures and can add
Close algorithm encrypts the first parameter, so that server can know that the encryption key that mobile terminal uses and encryption are calculated
Method, such server can just be handled using corresponding manner;
After server agrees to the encryption key and Encryption Algorithm of mobile terminal configuration, is sent to mobile terminal and negotiate affirmative
Message is agreed to encrypt the first parameter using the encryption key and Encryption Algorithm of mobile terminal configuration with instruction.If service
Device disagrees the encryption key and Encryption Algorithm of mobile terminal configuration, then needs to send to mobile terminal and negotiate nack message, with
Instruction mobile terminal reconfigures encryption key and Encryption Algorithm, or sends the encryption key that server configures to mobile terminal
And Encryption Algorithm.
In embodiments of the present invention, mobile terminal and server are in the negotiations process for carrying out encryption key and Encryption Algorithm
In, it can be held consultation by wifi (Wireless Fidelity, WLAN) or cellular network with server.
105: judging whether the rank of the communication module of mobile terminal configuration meets communication security requirements, if so, executing
Step 106, step 107 is executed if not.The purpose for wherein judging whether the rank of communication module meets communication security requirements exists
In: whether storage is decrypted in encrypted first parameter, with the first ginseng after sending decryption from the application layer of mobile terminal
Number is into communication module.
In embodiments of the present invention, judge whether the rank of the communication module of mobile terminal configuration meets communication security requirements
Feasible pattern be: whether the identification information for judging the communication module is default identification information, if it is determining mobile terminal
The rank of the communication module of configuration meets communication security requirements, if otherwise determining the rank of the communication module of mobile terminal configuration
It is unsatisfactory for communication security requirements.Wherein preset the mark that identification information is the higher each communication module of preconfigured security level
Information is known, such as the communication module of Gao De.
106: first parameter being decrypted using the encryption key and the Encryption Algorithm, when communication module
When rank meets communication security requirements, illustrate that the safety of communication module is higher, the first parameter after can store decryption, so far
Mobile terminal can be used the encryption key and the Encryption Algorithm and first parameter be decrypted, and be existed with clear-text way
Communication module or the application layer of mobile terminal are stored.
107: it controls the mobile terminal and directly stores encrypted first parameter, i.e., the first parameter is not decrypted,
To prevent from obtaining the first parameter by communication module, and then the safety of the first parameter can be improved.
Referring to Fig. 3, it illustrates provided in an embodiment of the present invention, the communication based on virtual client identification module SIM card is filled
The structural schematic diagram set is applied in mobile terminal, may include: transmission unit 11, receiving unit 12 and interactive unit 13.
Transmission unit 12, for sending the to server in the case where the mobile terminal uses the virtual SIM card
One message, first message is used to indicate mobile terminal and virtual SIM card is being currently used, and uses encrypted first parameter
Service interaction is carried out with the server.
In embodiments of the present invention, transmission unit 11 can be used using some message interacted with server
Message be used to indicate mobile terminal and be being currently used virtual SIM card, and use encrypted first parameter and the clothes
Business device carries out service interaction, and such as during starting register flow path after activating virtual SIM card, transmission unit 12 is sent out to server
The identification information of virtual SIM card can be carried in the login request message or radio connection request message sent, it is described virtual
The identification information of SIM card is used to indicate mobile terminal and virtual SIM card is being currently used, and uses encrypted first parameter
Service interaction is carried out with the server, in this way under the premise of not changing existing business interaction flow, by existing note
The mode for the identification information for increasing by a virtual SIM card in volume request message or radio connection request message can tell the server
Virtual SIM card is being currently used in mobile terminal.
Wherein the identification information of above-mentioned virtual SIM card can use binary sequence form, and binary sequence 0101 indicates
Virtual SIM card is used in mobile terminal, and carries out service interaction using encrypted first parameter and the server, and
Binary sequence 0011 indicates that entity SIM card is used in mobile terminal, therefore can pass through judgement in embodiments of the present invention
Which binary sequence what is carried in first message is to determine whether mobile terminal is used virtual SIM card, and is used
Encrypted first parameter and the server carry out service interaction.
When the identification information of certain virtual SIM card is a sequence, the form in addition to binary sequence can also be used,
If the identification information of virtual SIM card is a Serial No. and/or alphabetical sequence, such as can using number 1 and 2 the two it is digital come
It determines whether mobile terminal is used virtual SIM card, and carries out industry using encrypted first parameter and the server
Business interaction, wherein number 1 can indicate that mobile terminal is used virtual SIM card, and using encrypted first parameter with
The server carries out service interaction, and number 2 then indicates that entity SIM card is used in mobile terminal.
Receiving unit 12, for receiving encrypted first parameter of server transmission.The wherein encryption of the first parameter is
Negotiate the encryption key passed through and Encryption Algorithm in advance using server and mobile terminal, the encryption key negotiated and encryption are calculated
Method can use existing way, if Encryption Algorithm can be rivest, shamir, adelman, such as RSA public key encryption algorithm, wherein RSA
Public key encryption algorithm be 1977 by Peter Lonard Lee Vista (Ron Rivest), A Di Shamir (Adi Shamir) and
Leonard A Deman (Leonard Adleman) proposes that RSA is exactly that their three people's surnames beginning letters are stitched together together
Composition.
After negotiating to pass through, server can be used the encryption key for negotiating to pass through and Encryption Algorithm and carry out to the first parameter
Encryption.In embodiments of the present invention, the first parameter is mobile terminal and server carries out the parameter used when service interaction, such as
In the authentication services of virtual SIM card, the Ki in virtual SIM card is encrypted, thus can be used encrypted Ki into
Row authentication services.
Interactive unit 13, for carrying out service interaction based on encrypted first parameter and server.It is with authentication services
Example, when server executes authentication services between mobile terminal, server will use encrypted Ki as input to calculate
Then authentication vector is carried in authentication request message and is sent to mobile terminal by authentication vector.Mobile terminal is receiving mirror
After weighing request message, interactive unit 14 will be tested authentication vector as input using the encrypted Ki that itself is saved
Card, with the identity of authentication server.After authentication passes through, mobile terminal recycles encrypted Ki to calculate Authentication Response,
And it is sent to server.When server determines that Authentication Response is correct, server carries out subsequent register flow path.
From above-mentioned technical proposal it is found that it is provided in an embodiment of the present invention based on the communication device of virtual SIM card to service
Device sends first message and is being currently used virtual SIM card to indicate mobile terminal, and using encrypted first parameter with
In the case that the server carries out service interaction, service interaction can be carried out using encrypted first parameter and server,
Mobile terminal so no longer can carry out service interaction using the first parameter with clear-text way after getting the first parameter, from
And the safety of the first parameter in virtual SIM card is improved, such as service interaction can be carried out based on encrypted Ki and server,
To improve the safety of Ki.
Referring to Fig. 4, it illustrates the another kind knots of the communication device provided in an embodiment of the present invention based on virtual SIM card
Structure schematic diagram, on the basis of Fig. 3, further includes: acquiring unit 14, judging unit 15 and control unit 16.
Acquiring unit 11, for obtaining encryption key and Encryption Algorithm, encryption key and Encryption Algorithm are used for virtual SIM
First parameter of card is decrypted.Needed for encryption key and Encryption Algorithm can be obtained, between mobile terminal and server into
Row is negotiated, wherein the purpose negotiated is determining both sides use which kind of encryption key and Encryption Algorithm when carrying out service interaction,
Process may is that acquiring unit 11 and server negotiate the encryption key and Encryption Algorithm that the first parameter of encryption uses, with clothes
After business device negotiation passes through, the encryption key for negotiating to pass through and Encryption Algorithm are obtained.In embodiments of the present invention, acquiring unit 11 exists
In the negotiations process for carrying out encryption key and Encryption Algorithm, it can be held consultation by wifi or cellular network with server.
Judging unit 15 is wanted for judging whether the rank of communication module of the mobile terminal configuration meets communication security
It asks.Whether the purpose for wherein judging whether the rank of communication module meets communication security requirements is: encrypted first being joined
Storage is decrypted in number, to send the first parameter after decryption from the application layer of mobile terminal into communication module.
In embodiments of the present invention, judge whether the rank of the communication module of mobile terminal configuration meets communication security requirements
Feasible pattern be: whether the identification information for judging the communication module is default identification information, if it is determining mobile terminal
The rank of the communication module of configuration meets communication security requirements, if otherwise determining the rank of the communication module of mobile terminal configuration
It is unsatisfactory for communication security requirements.Wherein preset the mark that identification information is the higher each communication module of preconfigured security level
Know information, the communication module that such as high moral generates.
Control unit 16, the rank for the communication module in the mobile terminal configuration meet the feelings of communication security requirements
Under condition, then first parameter is decrypted using the encryption key and the Encryption Algorithm;And in the shifting
In the case that the rank of the communication module of dynamic terminal configuration is unsatisfactory for communication security requirements, controls the mobile terminal and directly store
Encrypted first parameter.
When the rank of communication module meets communication security requirements, illustrates that the safety of communication module is higher, can store
The first parameter after decryption, so far the encryption key and the Encryption Algorithm can be used to first ginseng in control unit 16
Number is decrypted, and the application layer with clear-text way in communication module or mobile terminal is stored.And in the mobile terminal
In the case that the rank of the communication module of configuration is unsatisfactory for communication security requirements, control the mobile terminal directly store encryption after
The first parameter, i.e., the first parameter is not decrypted, to prevent from obtaining the first parameter by communication module, and then be can be improved
The safety of first parameter.
Finally, it should be noted that, in this document, the terms "include", "comprise" or its any other variant are intended to contain
Lid non-exclusive inclusion, so that the process, method, article or equipment including a series of elements is not only wanted including those
Element, but also including other elements that are not explicitly listed, or further include for this process, method, article or equipment
Intrinsic element.In the absence of more restrictions, the element limited by sentence "including a ...", it is not excluded that
There is also other identical elements in process, method, article or equipment including the element.
The foregoing description of the disclosed embodiments can be realized those skilled in the art or using the present invention.To this
A variety of modifications of a little embodiments will be apparent for a person skilled in the art, and the general principles defined herein can
Without departing from the spirit or scope of the present invention, to realize in other embodiments.Therefore, the present invention will not be limited
It is formed on the embodiments shown herein, and is to fit to consistent with the principles and novel features disclosed in this article widest
Range.
The above is only a preferred embodiment of the present invention, it is noted that for the ordinary skill people of the art
For member, various improvements and modifications may be made without departing from the principle of the present invention, these improvements and modifications are also answered
It is considered as protection scope of the present invention.
Claims (10)
1. a kind of communication means based on virtual client identification module SIM card, which is characterized in that be applied in mobile terminal, institute
The method of stating includes:
In the case where the mobile terminal uses the virtual SIM card, first message, the first message are sent to server
Be used to indicate the mobile terminal and be being currently used the virtual SIM card, and using encrypted first parameter with it is described
Server carries out service interaction;
Receive encrypted first parameter that server is sent;Wherein, first parameter is the mobile terminal and the clothes
Business device carries out the parameter used when service interaction, and first parameter is negotiated in advance using the server and the mobile terminal
By encryption key and Encryption Algorithm encrypted;
Service interaction is carried out based on encrypted first parameter and the server.
2. the method according to claim 1, wherein described send first message to server, comprising:
Login request message is sent to the server, the mark of the virtual SIM card is carried in the login request message
Information, the identification information of the virtual SIM card are used to indicate the mobile terminal and the virtual SIM card are being currently used, and
And service interaction is carried out using encrypted first parameter and the server.
3. the method according to claim 1, wherein described send first message to server, comprising:
Radio connection request message is sent to the server, carries the virtual SIM in the radio connection request message
The identification information of card, the identification information of the virtual SIM card be used to indicate the mobile terminal be being currently used it is described virtual
SIM card, and service interaction is carried out using encrypted first parameter and the server.
4. the method according to claim 1, wherein the method also includes:
Obtain encryption key and Encryption Algorithm, the encryption key and the Encryption Algorithm are used for the to the virtual SIM card
One parameter is decrypted;
Judge whether the rank of the communication module of the mobile terminal configuration meets communication security requirements;
If it is, first parameter is decrypted using the encryption key and the Encryption Algorithm;
If it is not, then controlling the mobile terminal directly stores encrypted first parameter.
5. according to the method described in claim 4, it is characterized in that, the communication module of the judgement mobile terminal configuration
Whether rank meets communication security requirements, comprising: whether the identification information for judging the communication module is default identification information.
6. a kind of communication device based on virtual client identification module SIM card, which is characterized in that be applied in mobile terminal, institute
Stating device includes:
Transmission unit, for sending first message to server in the case where the mobile terminal uses the virtual SIM card,
The first message is used to indicate the mobile terminal and is being currently used the virtual SIM card, and uses encrypted the
One parameter and the server carry out service interaction;
Receiving unit, for receiving encrypted first parameter of server transmission;Wherein, first parameter is the movement
Terminal and the server carry out the parameter used when service interaction, and first parameter uses the server and the movement
Terminal negotiates the encryption key passed through in advance and Encryption Algorithm is encrypted;
Interactive unit, for carrying out service interaction based on encrypted first parameter and the server.
7. device according to claim 6, which is characterized in that the transmission unit is used to send to the server and register
Request message carries the identification information of the virtual SIM card, the mark of the virtual SIM card in the login request message
Information is used to indicate the mobile terminal and is being currently used the virtual SIM card, and using encrypted first parameter with
The server carries out service interaction.
8. device according to claim 6, which is characterized in that the transmission unit is used to send to the server wireless
Connection request message carries the identification information of the virtual SIM card, the virtual SIM in the radio connection request message
The identification information of card is used to indicate the mobile terminal and is being currently used the virtual SIM card, and uses encrypted the
One parameter and the server carry out service interaction.
9. device according to claim 6, which is characterized in that described device further include:
Acquiring unit, for obtaining encryption key and Encryption Algorithm, the encryption key and the Encryption Algorithm are used for described
First parameter of virtual SIM card is decrypted;
Judging unit, for judging whether the rank of communication module of the mobile terminal configuration meets communication security requirements;
Control unit, in the case where the rank of the communication module of the mobile terminal configuration meets communication security requirements,
Then first parameter is decrypted using the encryption key and the Encryption Algorithm;And in the mobile terminal
In the case that the rank of the communication module of configuration is unsatisfactory for communication security requirements, control the mobile terminal directly store encryption after
The first parameter.
10. device according to claim 9, which is characterized in that the judging unit is for judging the communication module
Whether identification information is default identification information, to judge whether the rank of communication module of the mobile terminal configuration meets communication
Safety requirements.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510863774.1A CN105657688B (en) | 2015-11-30 | 2015-11-30 | A kind of communication means and device based on virtual client identification module |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510863774.1A CN105657688B (en) | 2015-11-30 | 2015-11-30 | A kind of communication means and device based on virtual client identification module |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN105657688A CN105657688A (en) | 2016-06-08 |
| CN105657688B true CN105657688B (en) | 2019-10-11 |
Family
ID=56482207
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510863774.1A Active CN105657688B (en) | 2015-11-30 | 2015-11-30 | A kind of communication means and device based on virtual client identification module |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105657688B (en) |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN114726518B (en) * | 2022-03-31 | 2023-05-26 | 阿里云计算有限公司 | Communication method, device and system for cloud network system and storage medium |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102461271A (en) * | 2009-06-08 | 2012-05-16 | 高通股份有限公司 | Method and apparatus for switching virtual sim service contracts based upon a user profile |
| CN103533539A (en) * | 2013-11-01 | 2014-01-22 | 深圳市中兴物联科技有限公司 | Virtual SIM (subscriber identity module) card parameter management method and device |
| CN105007577A (en) * | 2015-06-19 | 2015-10-28 | 宇龙计算机通信科技(深圳)有限公司 | Virtual SIM card parameter management method, mobile terminal and server |
Family Cites Families (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| RU2472222C1 (en) * | 2011-10-12 | 2013-01-10 | Неирон.Ком.Лимитед | Method of providing services to mobile communication subscribers, system for providing services to mobile communication subscribers and machine-readable media |
| US9350550B2 (en) * | 2013-09-10 | 2016-05-24 | M2M And Iot Technologies, Llc | Power management and security for wireless modules in “machine-to-machine” communications |
-
2015
- 2015-11-30 CN CN201510863774.1A patent/CN105657688B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102461271A (en) * | 2009-06-08 | 2012-05-16 | 高通股份有限公司 | Method and apparatus for switching virtual sim service contracts based upon a user profile |
| CN103533539A (en) * | 2013-11-01 | 2014-01-22 | 深圳市中兴物联科技有限公司 | Virtual SIM (subscriber identity module) card parameter management method and device |
| CN105007577A (en) * | 2015-06-19 | 2015-10-28 | 宇龙计算机通信科技(深圳)有限公司 | Virtual SIM card parameter management method, mobile terminal and server |
Also Published As
| Publication number | Publication date |
|---|---|
| CN105657688A (en) | 2016-06-08 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| EP3183857B1 (en) | Secure provisioning of an authentication credential | |
| EP3228104B1 (en) | Apparatuses, methods and systems for implementing a trusted subscription management platform | |
| KR20190027488A (en) | Method and apparatus of supporting profile transfer of devices in wireless communication system | |
| US10425118B2 (en) | Mobile device-centric electronic subscriber identity module (eSIM) provisioning | |
| US20190007826A1 (en) | Apparatuses, methods and systems for implementing a trusted subscription management platform | |
| CN103391541B (en) | The collocation method of wireless device and device, system | |
| US20130012168A1 (en) | Method and system for secured remote provisioning of a universal integrated circuit card of a user equipment | |
| EP3769498B1 (en) | Method and apparatus for installing and managing profile using message service | |
| CN109756447A (en) | A kind of safety certifying method and relevant device | |
| US11606685B2 (en) | Apparatuses, methods and systems for implementing a trusted subscription management platform | |
| CN106533662A (en) | Methods and devices for transmitting network safety secret key | |
| CN104253801B (en) | Realize the methods, devices and systems of login authentication | |
| CN108141744A (en) | The instantiation of multiple electronics subscriber identity module (eSIM) examples | |
| CN109076058B (en) | Authentication method and device for mobile network | |
| US20170041786A1 (en) | Device and method in wireless communication system and wireless communication system | |
| CN104268478B (en) | A kind of data interactive method and device of multisystem terminal | |
| US20160337325A1 (en) | Key management | |
| KR102237840B1 (en) | APPARATUS AND METHODS TO INSTALL AND MANAGE eSIM PROFILES | |
| CN105451298A (en) | Network-sharing method and system, network access method and system, and electronic device | |
| WO2018037149A1 (en) | Security procedure | |
| CN103841082A (en) | Security capability negotiation method, system, service server and user terminal | |
| CN112205013A (en) | Apparatus for wireless communication handover | |
| EP3373622B1 (en) | Method and apparatus for secure interaction between terminals | |
| US20160366137A1 (en) | Installation of a secure-element-related service application in a secure element in a communication device, system and telecommunications | |
| Silva et al. | eSIM suitability for 5G and B5G enabled IoT verticals |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20231212 Address after: 518000 floor 21, block a, Kupai building, intersection of Keyuan Avenue and Baoshen Road, north high tech Zone, songpingshan community, Xili street, Nanshan District, Shenzhen, Guangdong Patentee after: YULONG COMPUTER TELECOMMUNICATION SCIENTIFIC (SHENZHEN) Co.,Ltd. Address before: 3 / F, plant No.1, phase I project, No.3, Gongye West 1st Road, Songshan Lake high tech Industrial Development Zone, Dongguan City, Guangdong Province 523500 Patentee before: DONGGUAN COOLPAD SOFTWARE TECH Co.,Ltd. |
|
| TR01 | Transfer of patent right |