CN106874800A - The access method and system of a kind of smart card device - Google Patents
The access method and system of a kind of smart card device Download PDFInfo
- Publication number
- CN106874800A CN106874800A CN201611196195.7A CN201611196195A CN106874800A CN 106874800 A CN106874800 A CN 106874800A CN 201611196195 A CN201611196195 A CN 201611196195A CN 106874800 A CN106874800 A CN 106874800A
- Authority
- CN
- China
- Prior art keywords
- smart card
- service
- pipeline
- name
- application program
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/70—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
- G06F21/71—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
- G06F21/77—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information in smart cards
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/606—Protecting data by securing the transmission between two devices or processes
Abstract
The embodiment of the invention discloses a kind of smart card device access method and system, belong to smart card device application technology.The method includes:The first name pipeline between the system smart card service of the first application program of intelligent card and first terminal equipment in first terminal equipment;First smart card device access request is sent to system smart card service by the first application program of intelligent card by the described first name pipeline;The service of system smart card receives the first smart card device access request, type according to the request calls corresponding smart card service interface to operate smart card device accordingly, the first response message of smart card device return is got, and the response message is returned into the first application program of intelligent card.Smart card device access method and system provided in the embodiment of the present invention, solve the problems, such as that in the case of application program insufficient permission in the prior art smart card service interface cannot be called, and have better met the practical application request of user.
Description
Technical field
The present invention relates to smart card device applied technical field, and in particular to a kind of access method of smart card device and be
System.
Background technology
In assault wildness, the Internet era of virus overflowing, the safety of PC is more and more threatened,
The security risk that server is faced is then even more serious.In view of this situation, to the use of the limited account of operating system with
And the application of the fort machine of server becomes more and more extensive.
In many cases, the keeper of server is connected remotely to server to carry out daily management and dimension by fort machine
Shield, the smart card differentiated for identity is connected to server host.And due to windows smart card service's
Limitation, the process that Telnet account starts cannot operate smart card device.Likewise, in some restricted user accounts
Under, sign in local account also due to it is identical the reason for and smart card device cannot be operated.
The content of the invention
For defect present in prior art, the purpose of the embodiment of the present invention is to provide one kind to overcome above-mentioned asking
The access method and system of topic or a kind of smart card device that at least can partly solve the above problems.
To achieve the above object, a kind of access method of smart card device, bag are provided in one embodiment of the present of invention
Include following steps:
Connection first terminal equipment and smart card device;It is provided with the first terminal equipment and the smart card device
The first corresponding application program of intelligent card;
The the first name pipe set up between the first application program of intelligent card and the system smart card service of first terminal equipment
Road;
Be sent to for the first smart card device access request by the described first name pipeline by the first application program of intelligent card
System smart card is serviced;
The service of system smart card receives the first smart card device access request, and the type according to the request calls correspondence
Smart card service interface smart card device is operated accordingly, get smart card device return first response letter
Breath;
First response message is sent to first intelligence by the service of system smart card by the described first name pipeline
Can card application.
Further, a kind of access method of smart card device as described above, the method also includes:
The connection set up between second terminal equipment and the first terminal equipment;It is provided with the second terminal equipment
Second application program of intelligent card corresponding with the smart card device;
The the second name pipe set up between the second application program of intelligent card and the system smart card service of first terminal equipment
Second smart card device access request is sent to system intelligence by road, the second application program of intelligent card by the described second name pipeline
Can card service;
The service of system smart card receives the second smart card device access request, and the type according to the request calls correspondence
Smart card service interface smart card device is operated accordingly, get smart card device return second response letter
Breath;
Second response message is sent to second smart card by the service of system smart card by the second name pipeline
Application program.
Further, a kind of access method of smart card device as described above, the method also includes:
After system smart card service detection is inserted to the smart card device, system smart card is serviced according to described first
The pipeline name of pipeline is named, is tasted by calling name pipeline to open function createfile and be spaced according to the default very first time
Examination connection the first name pipeline, until successful connection;
After first application program of intelligent card starts, the pipeline name according to the described first name pipeline creates first orders
Name pipeline, and call waiting connection name cre-atepipe ConnectNamedPipe waits the company of the system smart card service
Connect;
The service of system smart card calls name pipeline opening function createfile to be communicated to first life by described
Name pipeline.
Further, a kind of access method of smart card device as described above, the first smart card access request includes
Smart card device enumeration request, equipment connection request, equipment operation instruction and off device connection request.
Further, a kind of access method of smart card device as described above, the first application program of intelligent card is by described
Before first smart card device access request is sent to the service of system smart card by the first name pipeline, also include:
The service of system smart card carries out safety certification to first application program of intelligent card, after certification passes through, receives institute
State the first smart card access request of the first application program of intelligent card transmission.
Further, a kind of access method of smart card device as described above, the first application program of intelligent card and system intelligence
Can be communicated according to both data forms of agreement between card service;
Before first response message is sent to first application program of intelligent card by the service of system smart card, also include:
According to it is described both agreement data form, by the first response message enter row format conversion, by conversion after the first response message
It is sent to the first application program of intelligent card.
A kind of access system of smart card device, including first terminal equipment and intelligence are additionally provided in the embodiment of the present invention
Card apparatus;The first terminal equipment is connected with smart card device, is provided with first terminal equipment and the smart card device
The first corresponding application program of intelligent card;
The first terminal equipment includes:
First name pipeline sets up module, the system intelligence for setting up the first application program of intelligent card and first terminal equipment
The first name pipeline between service can be blocked;
First request sending module, it is intelligent by first by the described first name pipeline for the first application program of intelligent card
Card apparatus access request is sent to system smart card service;
First request processing module, for receiving the first smart card device access request in the service of system smart card
Afterwards, the type according to the request calls corresponding smart card service interface to operate smart card device accordingly, gets
The first response message that smart card device is returned;
First response sending module, pipeline is named by the first response message for the service of system smart card by described first
It is sent to first application program of intelligent card;
First response receiver module, for the first application program of intelligent card by the described in the described first name conduit acceptor
One response message.
Further, a kind of access system of smart card device as described above, the system also includes and first terminal equipment
The second terminal equipment of connection, is provided with second smart card corresponding with the smart card device in the second terminal equipment
Application program;
The second terminal equipment includes:
Second name pipeline sets up module, the system intelligence for setting up the second application program of intelligent card and first terminal equipment
The first name pipeline between service can be blocked;
Second request sending module, it is intelligent by first by the described first name pipeline for the second application program of intelligent card
Card apparatus access request is sent to system smart card service;
Second response receiver module, system smart card is obtained for the second application program of intelligent card by the second name pipeline
Service the second response message for sending;
The first terminal equipment also includes:
Second request processing module, for receiving the second smart card device access request in the service of system smart card
Afterwards, the type according to the request calls corresponding smart card service interface to operate smart card device accordingly, gets
The second response message that smart card device is returned;
Second response sending module, for being responded second by the described second name pipeline for the service of system smart card
Information is sent to second application program of intelligent card.
Further, a kind of access system of smart card device as described above, the first name pipeline sets up module bag
Include:
Unit is attempted in connection, for after system smart card service startup, when system smart card service detection to institute
After stating smart card device insertion, system smart card services the pipeline name according to the described first name pipeline, by calling name
Pipeline opens function createfile and attempts connection the first name pipeline according to interval of the default very first time, until connection
Success;
Pipeline sets up unit again, after starting for first application program of intelligent card, according to the described first name pipe
The pipeline name in road creates first and names pipeline, and call waiting connection name cre-atepipe ConnectNamedPipe waits institute
State the connection of system smart card service;
Pipeline communication unit, calls name pipeline to open function createfile for the service of system smart card by described
It is communicated to the first name pipeline.
Further, a kind of access system of smart card device as described above, the first smart card access request includes
Smart card device enumeration request, equipment connection request, equipment operation instruction and off device connection request.
The beneficial effects of the present invention are:Smart card device access method and system provided in the embodiment of the present invention,
Smart card service interface is called in the system service of right to use limit for height, and application program tells that service journey (is by naming pipeline
System smart card service) sequence want what equipment does, the program no matter application program authority just, can be by naming pipeline and taking
Business interprogram communication, to solve and cannot call asking for smart card service interface in the case of application program insufficient permission in the prior art
Topic, has better met the practical application request of user.
Brief description of the drawings
In order to illustrate more clearly about the embodiment of the present invention or technical scheme of the prior art, below will be to embodiment or existing
The accompanying drawing to be used needed for having technology description is briefly described, it should be apparent that, drawings in the following description are only this
Some embodiments of invention, accompanying drawing is only limitted to show the purpose of preferred embodiment, and is not considered as limitation of the invention, and
For those of ordinary skill in the art, on the premise of not paying creative work, can also be obtained according to these accompanying drawings
Other accompanying drawings.
Fig. 1 is a kind of schematic flow sheet of the access method of the smart card device in one embodiment of the invention;
Fig. 2 is a kind of schematic flow sheet of the access method of the smart card device in another embodiment of the present invention;
Fig. 3 is a kind of structural representation of the access system of the smart card device in one embodiment of the invention;
Fig. 4 is the block schematic illustration of access system in Fig. 3 of the present invention;
Fig. 5 sets up the structural representation of module for the first name pipeline in one embodiment of the invention;
Fig. 6 is a kind of structural representation of the access system of smart card device in another embodiment of the present invention.
Specific embodiment
Below in conjunction with the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is carried out clear, complete
Site preparation is described, it is clear that described embodiment is only a part of embodiment of the invention, rather than whole embodiments.It is based on
Embodiments of the invention, the every other reality that those of ordinary skill in the art are obtained under the premise of creative work is not made
Example is applied, the scope of protection of the invention is belonged to.
Fig. 1 shows that a kind of one of the invention flow of the access method of the smart card device provided in implementing is illustrated
Figure, as can be seen from Figure, the method mainly may comprise steps of:
Step S110:The set up between the first application program of intelligent card and system the smart card service of first terminal equipment
One name pipeline;
Step S120:First application program of intelligent card of first terminal equipment names pipeline by the first smart card by first
Equipment access request is sent to its system smart card service;
The access method that the present embodiment is provided, it is adaptable between smart card device and first terminal equipment, the intelligence
Card apparatus refer to the smart card device with identification and/or safety verification based on smart card (having intelligent card chip),
The including but not limited to safety certificate equipment such as U-shield, USBKey, the first terminal equipment includes but is not limited to PC or server
Deng, the first application program of intelligent card i.e. applications client corresponding with smartcard identification is installed in first terminal equipment, the
One terminal device, it is necessary to communicated with smart card device, enters in operation applications client thereon with to smart card device
Row is accessed and operated.
In the present embodiment, after connection first terminal equipment and smart card device, in order to ensure first application of IC cards
Smart card device can be operated, after the first application program of intelligent card starts, first with the system intelligence of first terminal equipment
The the first name pipe communicated for both can be set up between card service (operating system service routine, smart card service)
Road, used as the server end for naming pipeline, the service of system smart card is used as the client for naming pipeline for the first application program of intelligent card
End, the first name pipeline set up between the first application program of intelligent card and the system smart card service of first terminal equipment, refers to
Be name pipeline between process where setting up the first application program of intelligent card and the process where the service of system smart card.Its
In, the process of specifically setting up of name pipeline is prior art, is no longer described herein.Wherein, first terminal equipment be smart card
Connected mode between equipment includes but is not limited to the modes such as USB connections.
After completing the foundation of the first name pipeline, the first application program of intelligent card is by the first name pipeline to being
The service of system smart card sends the request of the first smart card access.Wherein, the first smart card access request includes but is not limited to intelligence
Energy card apparatus enumeration request, equipment connection request, equipment operation instruction and off device connection request etc..
In actual applications, in order to avoid unauthorized applications operate smart card, first by the service of system smart card
Application program of intelligent card is serviced before sending the request of the first smart card access to smart card device by system smart card, is also wrapped
Include:
The service of system smart card carries out safety certification to first application program of intelligent card, after certification passes through, receives institute
State the first smart card access request of the first application program of intelligent card transmission.
Identity discriminating is carried out to application program of intelligent card after pipeline communication is named, be built so as to avoid illegal program
It is vertical to name pipeline to operate smart card device.Wherein, the mode for safety certification being carried out to the first application program of intelligent card can be with root
It is determined according to being actually needed.It is for instance possible to use in the following manner:
After first name pipeline communication, in authentication phase, system smart card service request is first to the first application of IC cards
Program carries out safety verification, and sends a random number to the first application program of intelligent card, application program using the key of agreement with
The random number that symmetry algorithm cryptographic services program is sent, sends back to ciphertext system smart card and services journey after encryption by pipeline
Sequence, system service program to draw random number original text after the secret key decryption arranged, with the random number ratio for previously issuing application program
Compared with than more consistent, certification passes through, and other kinds of message can be just processed by rear service routine.
In actual applications, the first name pipeline between the first application program of intelligent card and the service of system smart card is set up
Success after, both of which can store the pipeline name of the first name pipeline, in order to subsequently between the two be again coupled to communication.Its
In, the pipeline name is to be appointed between the first application program of intelligent card and system smart card service.
In one embodiment of the present of invention, the first application program of intelligent card is seen you later with system smart card service first is set up
Name pipeline, can also include:
Start the system smart card service;
After system smart card service detection is inserted to the smart card device, system smart card is serviced according to described first
The pipeline name of pipeline is named, is tasted by calling name pipeline to open function createfile and be spaced according to the default very first time
Examination connection the first name pipeline, until successful connection;
After first application program of intelligent card starts, the pipeline name according to the described first name pipeline creates first orders
Name pipeline, and call waiting connection name cre-atepipe ConnectNamedPipe waits the company of the system smart card service
Connect;
The service of system smart card calls name pipeline opening function createfile to be communicated to first life by described
Name pipeline.
In actual applications, system smart card is serviced in the form of system service all the time in equipment running background,
In the present embodiment, service routine distributing operation system interface detects the plug of smart card device, is set when smart card has been detected
During standby insertion, that is, the title pipename of the incoming first name pipelines of CreateFile is called to attempt connecting pipe, if this
When the first application program of intelligent card not yet create the first name pipeline and smart card system service end session, then can connection failure,
Connection failure is then again attempted to after the service of system smart card waits the first setting time interval (such as 100 milliseconds), the first smart card
After application program launching, first pass through CreateNamedPipe to create the first name pipeline, then call
The service of ConnectNamedPipe waiting system smart cards is connected, and now, the system smart card service for attempting connection passes through
CreateFile can connecting pipe.
Step S130:The service of system smart card receives the first smart card device access request, according to the class of the request
Type calls corresponding smart card service interface to operate smart card device accordingly, gets the of smart card device return
One response message;
Step S140:First response message is sent to institute by the service of system smart card by the described first name pipeline
State the first application program of intelligent card.
System smart card service receives the institute that the first application program of intelligent card is sent by the described first name pipeline
After stating the first smart card device access request, the type according to the request calls corresponding smart card service interface come complete to intelligence
The corresponding operating of energy card apparatus, gets first response message for the corresponding operating of smart card device return, afterwards, is
The response message is sent to the first application program of intelligent card by system smart card service by the described first name pipeline, so that completely
Indirect operation of the applications client to the smart card device.
Wherein, what the type of the request referred to is specific what access request, such as smart card device enumeration request or
Smart card device connection request etc., system smart card service calls corresponding smart card server interface according to the type of request
Refer to that system smart card service call is used to complete the system function that first smart card access is asked, by calling correspondence
System function to complete the corresponding operating to smart card device, for example, the access request be smart card device enumeration request,
After system smart card service receives the request, the just function for completing smart card device enumeration operation of calling system, by
The function completes the enumeration operation to smart card device, obtains response message of the smart card device for enumeration operation.
In one embodiment of the invention, can be between first application program of intelligent card and the service of system smart card
Communicated according to the data form that both arrange, i.e., can voluntarily arrange to instruct transmission means, now, system between two processes
Before first response message is sent to first application program of intelligent card by smart card service, also include:According to both described
The data form of agreement, the first response message of smart card device is changed, by conversion after the first response message send
To the first application of IC cards.
Fig. 2 shows a kind of flow chart of the access method of smart card device in an alternative embodiment of the invention, wherein,
The present embodiment is applied between second terminal equipment, first terminal equipment and smart card device three, wherein, second terminal equipment
It is connected with first terminal equipment, first terminal equipment is connected with smart card device.
In the present embodiment, the second terminal equipment includes but is not limited to PC or server etc., and the second terminal sets
The second application program of intelligent card i.e. applications client corresponding with the smart card device is installed in standby;First terminal equipment
Include but is not limited to remotely be connected etc. mode with the connected mode of second terminal equipment, first terminal equipment and smart card device it
Between connected mode include but is not limited to the modes such as USB connections, bluetooth connection.
Mainly be may comprise steps of by can be seen that the smart card device access method in Fig. 2:
Step S210:The set up between the system smart card service of the second application program of intelligent card and first terminal equipment
Two name pipelines;
Step S220:Second application program of intelligent card is accessed the second smart card device by the described second name pipeline please
Ask and be sent to system smart card service;
Step S230:The service of system smart card receives the second smart card device access request, according to the class of the request
Type calls corresponding smart card service interface to operate smart card device accordingly, gets the of smart card device return
Two response messages;
Step S240:Second response message is sent to described the by the service of system smart card by the second name pipeline
Two application program of intelligent card.
The difference of the smart card access method shown in described smart card access method and Fig. 1 in the present embodiment
It is:In method shown in Fig. 2, application program of intelligent card is that application of IC cards client is located in second terminal equipment,
Second terminal equipment is connected by with first terminal equipment, complete by the system smart card communication for service with first terminal equipment
The whole pair of operation of the smart card device being connected with first terminal equipment.
It can be seen that, smart card access method provided by the present invention, i.e., suitable for remotely to the scene of smart card device, fitting again
For locally to the scene of smart card device operation, for example, the keeper of server (first terminal equipment) can be by fort
Machine (second terminal equipment) is connected remotely on server, the process (second started by the Telnet account on fort machine
Application program of intelligent card) smart card device differentiated for identity connected on server is operated, or directly by service
Process (the first application program of intelligent card) the operation smart card device of local account startup is signed in on device.
It is corresponding with the method shown in Fig. 1, a kind of smart card device is additionally provided in one embodiment of the present of invention
Access system, as shown in figure 3, the system includes first terminal equipment 100 and smart card device 200;Wherein, the first terminal
Equipment 100 is connected with smart card device 200, and corresponding with the smart card device is provided with first terminal equipment 100
One application program of intelligent card.
In the present embodiment, the first terminal equipment 100 includes that the first name pipeline sets up the request hair of module 110, first
Module 120, the first request processing module 130, first is sent to respond the response receiver module 150 of sending module 140 and first.Wherein:
First name pipeline sets up module 110, is for set up the first application program of intelligent card and first terminal equipment
The first name pipeline between system smart card service;
First request sending module 120, pipeline is named by first for the first application program of intelligent card by described first
Smart card device access request is sent to system smart card service;
First request processing module 130, please for receiving the first smart card device access in the service of system smart card
After asking, the type according to the request calls corresponding smart card service interface to operate smart card device accordingly, obtains
To the first response message that smart card device is returned;
First response sending module 140, is responded by the described first name pipeline for the service of system smart card by first
Information is sent to first application program of intelligent card;
First response receiver module 150, for the first application program of intelligent card by the described first name conduit acceptor institute
State the first response message.
Wherein, first smart card access includes but is not limited to smart card device enumeration request, equipment connection request, sets
Standby operational order and off device connection request etc..
Smartcard access system provided in the present embodiment, the first application of IC cards journey in first terminal equipment 100
Sequence realizes the communication with system smart card service (the smart card service of operating system), system intelligence by way of naming pipeline
Card service, to the access request of smart card, calls corresponding smart card service interface to be set to smart card according to application program of intelligent card
Preparation send instruction, completes the operation to smart card device, receives the response instruction that smart card device is returned, then by naming pipeline
The data that smart card device is returned are returned into application program, it is achieved thereby that application program of intelligent card is between smart card device
Operation is connect, as shown in Figure 4.
It is each independent with application program to operate in because system service system service are authority highest processes
In internal memory, do not influenceed by current logon account authority, there are enough authorities to call smart card service interface to operate smart card device,
Therefore, by the access system, can effectively solve that in the case of application program insufficient permission smart card service interface cannot be called
Problem.
In one embodiment of the invention, as shown in figure 5, the first name pipeline is set up module 110 and can also be wrapped
Include connection trial unit 111, pipeline and set up unit 112 and pipeline communication unit 113 again.Wherein:
Module 111 is attempted in connection, for after system smart card service startup, when system smart card service detection is arrived
After the smart card device 200 is inserted, system smart card services the pipeline name according to the described first name pipeline, by calling
Name pipeline opens function createfile and attempts connection the first name pipeline according to interval of the default very first time, until
Successful connection;
Pipeline sets up module 112 again, after starting for first application program of intelligent card, according to the described first name
The pipeline name of pipeline creates first and names pipeline, and call waiting connection name cre-atepipe ConnectNamedPipe to wait
The connection of the system smart card service;
Pipeline communication module 113, calls name pipeline to open function for the service of system smart card by described
Createfile is communicated to the first name pipeline.
It is corresponding with the method shown in Fig. 2, a kind of visit of smart card device is provided in one embodiment of the present of invention
System is asked, as shown in fig. 6, the system includes second terminal equipment 300, first terminal equipment 100 and smart card device 200, the
Two terminal devices 300 are connected with first terminal equipment 100, are provided with the second terminal equipment 300 and are set with the smart card
Standby 100 the second corresponding application program of intelligent card.
In the present embodiment, the second terminal equipment 300 includes that the second name pipeline sets up the request hair of module 310, second
Module 320 and second is sent to respond receiver module 330, the first terminal equipment 100 also includes the He of the second request processing module 160
Second response sending module 170.Wherein:
Second name pipeline sets up module 310, is for set up the second application program of intelligent card and first terminal equipment
The first name pipeline between system smart card service;
Second request sending module 320, pipeline is named by first for the second application program of intelligent card by described first
Smart card device access request is sent to system smart card service;
Second response receiver module 330, system intelligence is obtained for the second application program of intelligent card by the second name pipeline
The second response message that service sends can be blocked;
Second request processing module 160, please for receiving the second smart card device access in the service of system smart card
After asking, the type according to the request calls corresponding smart card service interface to operate smart card device accordingly, obtains
To the second response message that smart card device is returned;
Second response sending module 170, for naming pipeline by second by described second for the service of system smart card
Response message is sent to second application program of intelligent card.
It should be noted that herein, such as first and second or the like relational terms are used merely to a reality
Body or operation make a distinction with another entity or operation, and not necessarily require or imply these entities or deposited between operating
In any this actual relation or order.And, term " including ", "comprising" or its any other variant be intended to
Nonexcludability is included, so that process, method, article or equipment including a series of key elements not only will including those
Element, but also other key elements including being not expressly set out, or also include being this process, method, article or equipment
Intrinsic key element.In the absence of more restrictions, the key element limited by sentence "including a ...", it is not excluded that
Also there is other identical element in process, method, article or equipment including the key element.
Each embodiment in this specification is described by the way of correlation, identical similar portion between each embodiment
Divide mutually referring to what each embodiment was stressed is the difference with other embodiment.Especially for device reality
Apply for example, because it is substantially similar to embodiment of the method, so description is fairly simple, related part is referring to embodiment of the method
Part explanation.
One of ordinary skill in the art will appreciate that realizing that all or part of each several part in said apparatus implementation method can
Realized with hardware, or realized with the software module run on one or more hardware, it is complete in method implementation method
Portion or part steps can be by program to instruct the hardware of correlation to complete.It will be understood by those skilled in the art that this hair
Bright described method and apparatus are not limited to the embodiment described in specific embodiment, and specific descriptions above are intended merely to solution
The purpose of the present invention is released, the present invention is not intended to limit.Those skilled in the art's technology according to the present invention scheme draws other
Implementation method, also belong to technological innovation scope of the invention, protection scope of the present invention is by claim and its equivalent
Limit.
Obviously, those skilled in the art can carry out various changes and modification without deviating from essence of the invention to the present invention
God and scope.So, if these modifications of the invention and modification belong to the scope of the claims in the present invention and its equivalent technology
Within, then the present invention is also intended to comprising these changes and modification.
Claims (10)
1. a kind of access method of smart card device, comprises the following steps:
Connection first terminal equipment and smart card device;It is provided with the first terminal equipment relative with the smart card device
The first application program of intelligent card answered;
The the first name pipeline set up between the first application program of intelligent card and the system smart card service of first terminal equipment;
First smart card device access request is sent to system by the first application program of intelligent card by the described first name pipeline
Smart card is serviced;
The service of system smart card receives the first smart card device access request, and the type according to the request calls corresponding intelligence
Energy card service interface is operated accordingly to smart card device, gets the first response message of smart card device return;
First response message is sent to first smart card by the service of system smart card by the described first name pipeline
Application program.
2. the access method of a kind of smart card device according to claim 1, it is characterised in that the method also includes:
The connection set up between second terminal equipment and the first terminal equipment;It is provided with the second terminal equipment and institute
State the second corresponding application program of intelligent card of smart card device;
The the second name pipeline set up between the second application program of intelligent card and the system smart card service of first terminal equipment, the
Second smart card device access request is sent to system smart card by two application program of intelligent card by the described second name pipeline
Service;
The service of system smart card receives the second smart card device access request, and the type according to the request calls corresponding intelligence
Energy card service interface is operated accordingly to smart card device, gets the second response message of smart card device return;
Second response message is sent to second application of IC cards by the service of system smart card by the second name pipeline
Program.
3. the access method of a kind of smart card device according to claim 1, it is characterised in that the method also includes:
After system smart card service detection is inserted to the smart card device, the service of system smart card is according to the described first name
The pipeline name of pipeline, the company of trial is spaced by calling name pipeline to open function createfile according to the default very first time
The logical first name pipeline, until successful connection;
After first application program of intelligent card starts, the pipeline name according to the described first name pipeline creates the first name pipe
Road, and call waiting connection name cre-atepipe ConnectNamedPipe waits the connection of the system smart card service;
The service of system smart card calls name pipeline opening function createfile to be communicated to the first name pipe by described
Road.
4. the access method of a kind of smart card device according to claim 1, it is characterised in that first smart card is visited
Ask that request includes smart card device enumeration request, equipment connection request, equipment operation instruction and off device connection request.
5. a kind of access method of smart card device according to claim 1, it is characterised in that the first application of IC cards journey
Before first smart card device access request is sent to the service of system smart card by sequence by the described first name pipeline, also wrap
Include:
The service of system smart card carries out safety certification to first application program of intelligent card, after certification passes through, receives described the
The first smart card access request that one application program of intelligent card sends.
6. according to a kind of access method of the described smart card device of one of claim 1 to 5, it is characterised in that the first intelligence
Communicated according to both data forms of agreement between card application and system smart card service;
Before first response message is sent to first application program of intelligent card by the service of system smart card, also include:According to
It is described both agreement data form, by the first response message enter row format conversion, by conversion after the first response message send
To the first application program of intelligent card.
7. the access system of a kind of smart card device, including first terminal equipment and smart card device;It is characterized in that:Described
One terminal device is connected with smart card device, and first intelligence corresponding with the smart card device is provided with first terminal equipment
Can card application;
The first terminal equipment includes:
First name pipeline sets up module, the system smart card for setting up the first application program of intelligent card and first terminal equipment
The first name pipeline between service;
First request sending module, is set the first smart card by the described first name pipeline for the first application program of intelligent card
Standby access request is sent to system smart card service;
First request processing module, for after the service of system smart card receives the first smart card device access request, root
Call corresponding smart card service interface to operate smart card device accordingly according to the type of the request, get smart card
The first response message that equipment is returned;
First response sending module, is sent the first response message by the described first name pipeline for the service of system smart card
To first application program of intelligent card;
First response receiver module, for the first application program of intelligent card by the first sound described in the described first name conduit acceptor
Answer information.
8. the access system of a kind of smart card device according to claim 7, it is characterised in that the system also includes and the
The second terminal equipment of one terminal device connection, is provided with corresponding with the smart card device in the second terminal equipment
Second application program of intelligent card;
The second terminal equipment includes:
Second name pipeline sets up module, the system smart card for setting up the second application program of intelligent card and first terminal equipment
The first name pipeline between service;
Second request sending module, is set the first smart card by the described first name pipeline for the second application program of intelligent card
Standby access request is sent to system smart card service;
Second response receiver module, obtains system smart card and services for the second application program of intelligent card by the second name pipeline
The second response message for sending;
The first terminal equipment also includes:
Second request processing module, for after the service of system smart card receives the second smart card device access request, root
Call corresponding smart card service interface to operate smart card device accordingly according to the type of the request, get smart card
The second response message that equipment is returned;
Second response sending module, for naming pipeline by the second response message by described second for the service of system smart card
It is sent to second application program of intelligent card.
9. a kind of access system of smart card device according to claim 7, it is characterised in that the first name pipeline
Setting up module includes:
Unit is attempted in connection, for after system smart card service startup, when system smart card service detection to the intelligence
After energy card apparatus insertion, system smart card services the pipeline name according to the described first name pipeline, by calling name pipeline
Open function createfile and attempt connection the first name pipeline according to interval of the default very first time, until connecting into
Work(;
Pipeline sets up unit again, after starting for first application program of intelligent card, according to the described first name pipeline
Pipeline name creates first and names pipeline, and call waiting connection name cre-atepipe ConnectNamedPipe waits the system
The connection of system smart card service;
Pipeline communication unit, calls name pipeline to open function createfile connections for the service of system smart card by described
To the described first name pipeline.
10. according to a kind of access system of the described smart card device of one of claim 7 to 9, it is characterised in that described first
Smart card access request includes smart card device enumeration request, equipment connection request, equipment operation instruction and off device connection
Request.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201611196195.7A CN106874800B (en) | 2016-12-22 | 2016-12-22 | Access method and system of smart card device |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201611196195.7A CN106874800B (en) | 2016-12-22 | 2016-12-22 | Access method and system of smart card device |
Publications (2)
Publication Number | Publication Date |
---|---|
CN106874800A true CN106874800A (en) | 2017-06-20 |
CN106874800B CN106874800B (en) | 2023-06-23 |
Family
ID=59164117
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201611196195.7A Active CN106874800B (en) | 2016-12-22 | 2016-12-22 | Access method and system of smart card device |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN106874800B (en) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109901935A (en) * | 2017-12-11 | 2019-06-18 | 航天信息股份有限公司 | A kind of method and apparatus communicated with USB Key |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102867255A (en) * | 2012-07-27 | 2013-01-09 | 郑州信大捷安信息技术股份有限公司 | Multi-operating system platform and mobile payment equipment E-bank USB key and working method thereof |
CN103235910A (en) * | 2013-03-27 | 2013-08-07 | 公安部第三研究所 | Method achieving network account protection control based on smart card in iOS operation system |
US20150110028A1 (en) * | 2012-06-21 | 2015-04-23 | Huizhou Tcl Mobile Communication Co., Ltd. | Method and system for implementing smart card remote operation |
CN105404503A (en) * | 2015-10-22 | 2016-03-16 | 成都卫士通信息产业股份有限公司 | Method for supporting multiple terminals to remotely access to intelligent card in parallel |
CN106201747A (en) * | 2016-07-22 | 2016-12-07 | 浪潮软件集团有限公司 | Method for accessing intelligent password equipment under limited user of WINDOWS system |
-
2016
- 2016-12-22 CN CN201611196195.7A patent/CN106874800B/en active Active
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20150110028A1 (en) * | 2012-06-21 | 2015-04-23 | Huizhou Tcl Mobile Communication Co., Ltd. | Method and system for implementing smart card remote operation |
CN102867255A (en) * | 2012-07-27 | 2013-01-09 | 郑州信大捷安信息技术股份有限公司 | Multi-operating system platform and mobile payment equipment E-bank USB key and working method thereof |
CN103235910A (en) * | 2013-03-27 | 2013-08-07 | 公安部第三研究所 | Method achieving network account protection control based on smart card in iOS operation system |
CN105404503A (en) * | 2015-10-22 | 2016-03-16 | 成都卫士通信息产业股份有限公司 | Method for supporting multiple terminals to remotely access to intelligent card in parallel |
CN106201747A (en) * | 2016-07-22 | 2016-12-07 | 浪潮软件集团有限公司 | Method for accessing intelligent password equipment under limited user of WINDOWS system |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109901935A (en) * | 2017-12-11 | 2019-06-18 | 航天信息股份有限公司 | A kind of method and apparatus communicated with USB Key |
Also Published As
Publication number | Publication date |
---|---|
CN106874800B (en) | 2023-06-23 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CA2297323C (en) | Personal device, terminal, server and methods for establishing a trustworthy connection between a user and a terminal | |
EP1922632B1 (en) | Extended one-time password method and apparatus | |
CN101183932B (en) | Security identification system of wireless application service and login and entry method thereof | |
US8966096B2 (en) | Device-pairing by reading an address provided in device-readable form | |
CN102006271B (en) | IP address secure multi-channel authentication for online transactions | |
DE60311200T2 (en) | Apparatus and method for providing authentication information for secure group communication | |
US20160234336A1 (en) | Method and system for remote activation and management of personal security devices | |
CN104735065B (en) | A kind of data processing method, electronic equipment and server | |
CN107113613B (en) | Server, mobile terminal, network real-name authentication system and method | |
JPS5962241A (en) | Method of confirming at least one information generation so-urce transmitted to second electronic device registered to memory of first electronic device and method of executing samethod | |
CN109039652B (en) | Digital certificate generation and application method | |
CN106101147A (en) | A kind of method and system realizing smart machine and remote terminal dynamic encryption communication | |
WO2014111888A1 (en) | Mobile payment system | |
WO2018021708A1 (en) | Public key-based service authentication method and system | |
CN111209558A (en) | Internet of things equipment identity authentication method and system based on block chain | |
CN109150800A (en) | Login access method, system and storage medium | |
CN101222334B (en) | Cipher token safety authentication method adopting picture interference | |
CN106874800A (en) | The access method and system of a kind of smart card device | |
CN109450643B (en) | Signature verification method realized on Android platform based on native service | |
CN102831468A (en) | Intelligent card chip of mobile terminal as well as initialization and use method thereof | |
CN115766023A (en) | Encryption algorithm-based vehicle cross-functional domain secret key and certificate dynamic updating system | |
CN101692673B (en) | Message processing method of payment platform, payment platform device and payment system | |
US6467040B1 (en) | Client authentication by server not known at request time | |
CN106534047A (en) | Information transmitting method and apparatus based on Trust application | |
FR2877171A1 (en) | METHOD FOR SECURING REMOTE TRANSACTIONS OVER AN OPEN COMMUNICATION NETWORK |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |