CN110519751B - Activation method of embedded smart card, operator system and mobile terminal - Google Patents
Activation method of embedded smart card, operator system and mobile terminal Download PDFInfo
- Publication number
- CN110519751B CN110519751B CN201910859884.9A CN201910859884A CN110519751B CN 110519751 B CN110519751 B CN 110519751B CN 201910859884 A CN201910859884 A CN 201910859884A CN 110519751 B CN110519751 B CN 110519751B
- Authority
- CN
- China
- Prior art keywords
- terminal
- module
- network side
- address
- activation
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/03—Protecting confidentiality, e.g. by encryption
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W8/00—Network data management
- H04W8/22—Processing or transfer of terminal data, e.g. status or physical capabilities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W8/00—Network data management
- H04W8/22—Processing or transfer of terminal data, e.g. status or physical capabilities
- H04W8/24—Transfer of terminal data
Abstract
The application provides an activation method of an embedded smart card, an operator system and a mobile terminal, wherein the activation method comprises the following steps: when an activation request of a terminal is received, acquiring network side equipment information of the location of the terminal; generating a first number according to the network side equipment information of the location of the terminal; sending the generated first number to a terminal; and releasing the first number when a release request of the terminal is received. The operator system includes: the acquisition module acquires the network side equipment information of the location of the terminal; the processing module is used for generating a first number; the sending module is used for sending the first number to the terminal; a receiving module, configured to receive an activation request and a release request; and the releasing module is used for releasing the first number. The method and the device solve the problems that code number resources are greatly increased and space resources of an operator are wasted in the process of activating the smart card.
Description
Technical Field
The present application relates to the field of mobile communications technologies, and in particular, to an activation method for an embedded smart card, an operator system, and a mobile terminal.
Background
At present, operators generally develop services of the internet of things through the existing Mobile communication network, allocate MSISDN (Mobile Subscriber International ISDN/PSTN Number) and IMSI (International Mobile Subscriber Identity) to each terminal of the internet of things, and closely combine the terminal products with the eUICC, so as to meet some special service requirements. In order to enable the eUICC to be used normally, subscription data needs to be provisioned for the eUICC. Specifically, the provisioning process needs to preset temporary subscription data in the eUICC, so that the eUICC terminal can interact with a corresponding network element in an operator network to complete the provisioning.
The existing eUICC provisioning scheme allocates a unique identification code and a code number associated with the identification code to each eUICC in advance, and stores the corresponding relationship between the unique identification code and the code number in an operator system.
With the increase of operators, the existing opening or activating scheme can cause the great increase of code number resources, and the phenomenon of space resource waste also exists in an operator system.
Disclosure of Invention
The application aims to provide an activation method of an embedded smart card, an operator system and a mobile terminal, and solves the problems that code number resources are greatly increased in the process of activating the smart card, and space resources of the operator system are wasted.
In order to achieve the above object, the present application provides an activation method for an embedded smart card, comprising the following steps:
when an activation request of a terminal is received, acquiring network side equipment information of the location of the terminal;
generating a first number according to the network side equipment information of the location of the terminal;
sending the generated first number to a terminal;
and releasing the first number when a release request of the terminal is received.
As above, wherein the activation request includes a terminal-generated random session password and a terminal identification.
As above, whether the terminal is legal or not is determined according to the terminal identifier, and if so, the network side device information at the location of the terminal is obtained, otherwise, activation is prohibited.
As above, the network side device information includes an IP address and/or a MAC address of the network side device.
As above, the first half and the second half of the IP address and/or the MAC address are respectively placed at the head end and the tail end of the terminal identifier, and an intermediate number is generated;
and carrying out encryption operation on the intermediate number by using the random session password to generate a first number.
The above, wherein the first number is decrypted using a random session password;
and releasing the IP address and/or the MAC address and the terminal identification according to the reverse operation of the generation method of the intermediate number.
The present application further provides an operator system of an embedded smart card, including:
the acquisition module acquires the network side equipment information of the location of the terminal;
the processing module is used for generating a first number;
the sending module is used for sending the first number to the terminal;
a receiving module, configured to receive an activation request and a release request;
and the releasing module is used for releasing the first number.
The method comprises the steps of encrypting the intermediate number by using a random session password;
the decryption module is used for decrypting the first number by using the random session password.
As above, the operator system further includes a determining module for determining whether the terminal is legal.
The present application further provides a mobile terminal, including:
a terminal receiving module; for receiving a first number;
the terminal sending module is used for sending an activation request and a release request;
and the terminal generation module is used for generating a random session password.
The beneficial effect that this application realized is as follows:
(1) the method and the device have the advantages that the technical effect that the identification code and the code number do not need to be stored in advance is achieved by temporarily generating the number, and further, the technical effect that the code number can be reused is achieved as the temporary number can be released according to the request of the terminal.
(2) The data of the generated number are encrypted, and the safety of data transmission is improved.
Drawings
In order to more clearly illustrate the embodiments of the present application or the technical solutions in the prior art, the drawings needed to be used in the description of the embodiments or the prior art will be briefly described below, it is obvious that the drawings in the following description are only some embodiments described in the present application, and other drawings can be obtained by those skilled in the art according to the drawings.
Fig. 1 is a flowchart of an activation method of an embedded smart card according to the present application.
Fig. 2 is a flowchart of an operator system of an embedded smart card according to the present application.
Reference numerals: 10-a judgment module; 11-an acquisition module; 12-a processing module; 13-an encryption module; 14-a sending module; 15-a receiving module; 16-a decryption module; 17-a release module; 100-operator system.
Detailed Description
The technical solutions in the embodiments of the present application are clearly and completely described below with reference to the drawings in the embodiments of the present application, and it is obvious that the described embodiments are some, but not all, embodiments of the present application. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present application.
Example one
As shown in fig. 1, an activation method of an embedded smart card includes:
step S1, when receiving the activation request of the terminal, obtaining the network side equipment information of the terminal location;
specifically, step S1 includes:
step S101, when receiving a terminal activation request, authenticating the terminal, if the authentication is passed, executing the next step, otherwise, forbidding the execution;
the authentication method of the terminal comprises the following steps: the terminal sends an initial user data file provided by the operator for the terminal user to the operator, the initial user data file is sent to the terminal by the operator, the initial user data file contains authentication data, the authentication data comprises an authentication code authorized by the operator, and if the operator judges that the authentication data is obtained from the operator, the authentication is passed.
Step S102, sending a request for acquiring the equipment information of the network side where the terminal is located to the terminal, and acquiring the IP address (Internet protocol address) and/or the MAC address (media access address) of the network equipment where the terminal is located.
The IP address of the network equipment is 32 bits and is divided into 4 sections, each section has 8 bits and is expressed by decimal numbers, and the range of the number of each section is 0-255; the MAC address is 48 bits, is composed of 16-system numbers and is divided into front 24 bits and rear 24 bits.
And step S2, generating a first number according to the network side equipment information of the location of the terminal. Wherein, the first number is the activation response information. The terminal is activated after receiving the first number.
Judging the type of the network side equipment information as an IP address or an MAC address according to the bit number of the network side equipment information;
and if the acquired network side equipment information is the IP address, the acquired IP address is operated with the random session password and the terminal identification in the activation request to generate a first number.
Specifically, step S2 includes:
step S201: respectively placing the front half part and the rear half part of the IP address at the head end and the tail end of a terminal identifier to generate an intermediate number;
step S202: and carrying out encryption operation on the intermediate number by using the random session password to generate a first number.
And if the obtained network side equipment is the MAC address, the obtained MAC address is operated with the random session password and the terminal identification in the activation request to generate a first number.
Specifically, step S2 includes:
step S211: respectively placing the first half part and the second half part of the MAC address at the head end and the tail end of a terminal identifier to generate an intermediate number;
step S212: and carrying out encryption operation on the intermediate number by using the random session password to generate a first number.
If the acquired network side device address includes an IP address and a MAC address, step S2 includes:
step S231: placing the first half of the IP address and the first half of the MAC address at the head end of the terminal identifier, placing the second half of the IP address and the second half of the MAC address at the tail end of the terminal identifier, and generating an intermediate number;
step S232: and carrying out encryption operation on the intermediate number by using the random session password to generate a first number.
And step S3, sending the generated first number to the terminal, wherein the first number has an activation success message, and the terminal activates the embedded smart card after receiving the first number.
And step S4, when a release request of the terminal is received, releasing the first number, releasing the IP address and/or the MAC address, and generating the first number by using the IP address and/or the MAC address again to activate the embedded smart card.
Specifically, step S4 includes:
step S401: decrypting the first number using a random session password;
step S402: and releasing the IP address and/or the MAC address and the terminal identification according to the reverse operation of the generation method of the intermediate number.
The embedded smart card interacts with the terminal through an input/output interface on the smart card, which responds only to commands sent from the terminal.
Example two
As shown in fig. 2, an operator system 100 of an embedded smart card comprises:
the acquisition module 11 is used for acquiring the network side equipment information of the location of the terminal;
the processing module 12 is used for generating a first number;
a sending module 14, configured to send a first number to a terminal;
a receiving module 15, configured to receive an activation request and a release request;
and the releasing module 17 is used for releasing the first number, so that the number is recycled, and space resources are saved.
The operator system further comprises a judging module 10 for judging whether the terminal is legal. When the operator system receives an activation request sent by the terminal, the operator system sends an authentication request to the terminal to acquire authentication data sent by the terminal, the operator system judges whether the authentication data is acquired from the operator, and if so, the authentication is passed.
The operator system further comprises an encryption module 13 for encrypting the intermediate number using the random session password.
The operator system further comprises a decryption module 16 for decrypting said first number using the random session password.
EXAMPLE III
A mobile terminal, comprising:
a terminal receiving module; for receiving a first number generated by an operator system.
The terminal sending module is used for sending an activation request and a release request and sending network side equipment information of the location of the terminal to an operator system; when the mobile terminal is started, the mobile terminal actively sends an activation request to the operator system, and when the mobile terminal receives an authentication request sent by the operator system, the mobile terminal sends authentication data to the operator system.
And the terminal generation module is used for generating a random session password.
And the terminal sending module is also used for sending the random session password as the information of the activation request to the operator system.
Specifically, when the terminal is started, whether the embedded smart card is activated or not is judged; and if the embedded smart card is not activated, the terminal initiates an activation request.
The beneficial effect that this application realized is as follows:
(1) the method and the device have the advantages that the technical effect that the identification code and the number do not need to be stored in advance is achieved by temporarily generating the number, and further, the technical effect that the number can be reused is achieved as the temporary number can be released according to the request of the terminal.
(2) The data of the generated number are encrypted, and the safety of data transmission is improved.
It should be noted that, in this document, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrase "comprising an … …" does not exclude the presence of other like elements in a process, method, article, or apparatus that comprises the element.
While one embodiment of the present invention has been described in detail, the description is only a preferred embodiment of the present invention and should not be taken as limiting the scope of the invention. All equivalent changes and modifications made within the scope of the present invention shall fall within the scope of the present invention.
Claims (8)
1. An activation method of an embedded smart card is characterized by comprising the following steps:
when an activation request of a terminal is received, acquiring network side equipment information of the location of the terminal;
generating a first number according to the network side equipment information of the location of the terminal;
sending the generated first number to a terminal;
releasing the first number when a release request of a terminal is received;
the network side equipment information comprises an IP address and/or an MAC address of the network side equipment;
the generation method of the first number comprises the following steps:
respectively placing the first half part and the second half part of the IP address and/or the MAC address at the head end and the tail end of the terminal identifier to generate an intermediate number;
and carrying out encryption operation on the intermediate number by using the random session password to generate a first number.
2. Activation method according to claim 1, characterized in that the activation request comprises a terminal generated random session password and a terminal identification.
3. The activation method according to claim 2, wherein whether the terminal is legal is determined according to the terminal identifier, and if so, the network side device information at the location of the terminal is obtained, otherwise, activation is prohibited.
4. Activation method according to claim 1,
decrypting the first number using a random session password;
and releasing the IP address and/or the MAC address and the terminal identification according to the reverse operation of the generation method of the intermediate number.
5. An operator system for an embedded smart card, comprising:
the acquisition module acquires the network side equipment information of the location of the terminal;
the processing module is used for generating a first number;
the sending module is used for sending the first number to the terminal;
a receiving module, configured to receive an activation request and a release request;
the release module is used for releasing the first number;
the network side equipment information comprises an IP address and/or an MAC address of the network side equipment;
the generation method of the first number comprises the following steps:
respectively placing the first half part and the second half part of the IP address and/or the MAC address at the head end and the tail end of the terminal identifier to generate an intermediate number;
and carrying out encryption operation on the intermediate number by using the random session password to generate a first number.
6. The operator system according to claim 5, further comprising an encryption module for encrypting the intermediary number using a random session password;
the decryption module is used for decrypting the first number by using the random session password.
7. The operator system according to claim 5, further comprising a determining module for determining whether said terminal is legal.
8. A mobile terminal, comprising:
a terminal receiving module; for receiving a first number;
the terminal sending module is used for sending an activation request and a release request;
the terminal generation module is used for generating a random session password;
the generation method of the first number comprises the following steps:
respectively placing the first half part and the second half part of the IP address and/or the MAC address at the head end and the tail end of the terminal identifier to generate an intermediate number;
and carrying out encryption operation on the intermediate number by using the random session password to generate a first number.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910859884.9A CN110519751B (en) | 2019-09-11 | 2019-09-11 | Activation method of embedded smart card, operator system and mobile terminal |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910859884.9A CN110519751B (en) | 2019-09-11 | 2019-09-11 | Activation method of embedded smart card, operator system and mobile terminal |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN110519751A CN110519751A (en) | 2019-11-29 |
| CN110519751B true CN110519751B (en) | 2022-04-22 |
Family
ID=68630700
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201910859884.9A Active CN110519751B (en) | 2019-09-11 | 2019-09-11 | Activation method of embedded smart card, operator system and mobile terminal |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN110519751B (en) |
Citations (13)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP2000022807A (en) * | 1998-07-07 | 2000-01-21 | Mitsubishi Electric Corp | Phs(r) telephone set with personal information transmission/reception function |
| CN101977372A (en) * | 2010-11-05 | 2011-02-16 | 北京握奇数据系统有限公司 | Number switching method and system as well as intelligent card |
| CN102055754A (en) * | 2009-10-30 | 2011-05-11 | 中国移动通信集团公司 | Method, system and device for initializing card-free hard terminal |
| CN102196413A (en) * | 2010-03-03 | 2011-09-21 | 中国移动通信集团公司 | Method, system and server for realizing OTA (over-the-air) number allocation, and SIM (subscriber identity module) |
| CN102404705A (en) * | 2011-10-24 | 2012-04-04 | 中兴通讯股份有限公司 | Mobile terminal and method thereof for remote activating call transfer |
| CN102857906A (en) * | 2011-06-28 | 2013-01-02 | 华为软件技术有限公司 | Method, device and system for switching activated numbers in SIMM (single IMSI multiple MSISDN) service |
| CN103118356A (en) * | 2013-02-07 | 2013-05-22 | 中国联合网络通信集团有限公司 | Embedded type intelligent card e universal integrated circuit card (eUICC) activating method, system, terminal and platform |
| CN103517267A (en) * | 2012-06-29 | 2014-01-15 | 中国移动通信集团公司 | System, method and device for determining actual code number |
| CN104640103A (en) * | 2015-03-02 | 2015-05-20 | 联通兴业通信技术有限公司 | Intelligent card MSISD (mobile subscriber international ISDN (integrated service digital network)) number configuration method and device |
| CN106210034A (en) * | 2016-07-07 | 2016-12-07 | 国网山东省电力公司信息通信公司 | A kind of intelligent terminal's management-control method based on IMS enterprise network and system |
| CN108040335A (en) * | 2017-12-07 | 2018-05-15 | 深圳市优友互联有限公司 | A kind of Internet of Things communication number management method and system based on smart card |
| CN108055658A (en) * | 2017-12-09 | 2018-05-18 | 恒宝股份有限公司 | The implementation method and its system of a kind of one-card multi-number |
| CN109962991A (en) * | 2017-12-26 | 2019-07-02 | 中国移动通信集团四川有限公司 | Internet of Things fault handling method, device, equipment and medium |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP2018934A1 (en) * | 2007-07-26 | 2009-01-28 | Renishaw plc | Measurement device having authentication module |
-
2019
- 2019-09-11 CN CN201910859884.9A patent/CN110519751B/en active Active
Patent Citations (13)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP2000022807A (en) * | 1998-07-07 | 2000-01-21 | Mitsubishi Electric Corp | Phs(r) telephone set with personal information transmission/reception function |
| CN102055754A (en) * | 2009-10-30 | 2011-05-11 | 中国移动通信集团公司 | Method, system and device for initializing card-free hard terminal |
| CN102196413A (en) * | 2010-03-03 | 2011-09-21 | 中国移动通信集团公司 | Method, system and server for realizing OTA (over-the-air) number allocation, and SIM (subscriber identity module) |
| CN101977372A (en) * | 2010-11-05 | 2011-02-16 | 北京握奇数据系统有限公司 | Number switching method and system as well as intelligent card |
| CN102857906A (en) * | 2011-06-28 | 2013-01-02 | 华为软件技术有限公司 | Method, device and system for switching activated numbers in SIMM (single IMSI multiple MSISDN) service |
| CN102404705A (en) * | 2011-10-24 | 2012-04-04 | 中兴通讯股份有限公司 | Mobile terminal and method thereof for remote activating call transfer |
| CN103517267A (en) * | 2012-06-29 | 2014-01-15 | 中国移动通信集团公司 | System, method and device for determining actual code number |
| CN103118356A (en) * | 2013-02-07 | 2013-05-22 | 中国联合网络通信集团有限公司 | Embedded type intelligent card e universal integrated circuit card (eUICC) activating method, system, terminal and platform |
| CN104640103A (en) * | 2015-03-02 | 2015-05-20 | 联通兴业通信技术有限公司 | Intelligent card MSISD (mobile subscriber international ISDN (integrated service digital network)) number configuration method and device |
| CN106210034A (en) * | 2016-07-07 | 2016-12-07 | 国网山东省电力公司信息通信公司 | A kind of intelligent terminal's management-control method based on IMS enterprise network and system |
| CN108040335A (en) * | 2017-12-07 | 2018-05-15 | 深圳市优友互联有限公司 | A kind of Internet of Things communication number management method and system based on smart card |
| CN108055658A (en) * | 2017-12-09 | 2018-05-18 | 恒宝股份有限公司 | The implementation method and its system of a kind of one-card multi-number |
| CN109962991A (en) * | 2017-12-26 | 2019-07-02 | 中国移动通信集团四川有限公司 | Internet of Things fault handling method, device, equipment and medium |
Non-Patent Citations (2)
| Title |
|---|
| eUICC卡远程管理实现;顾星;《中国新通信》;20130620;全文 * |
| MAC-Sim:A multi-agent and communication network simulation platform for smart grid applications based on established technologies;Fidelis Perkonigg;《IEEE》;20131031;全文 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN110519751A (en) | 2019-11-29 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US20190068591A1 (en) | Key Distribution And Authentication Method And System, And Apparatus | |
| US20170161721A1 (en) | Method and system for opening account based on euicc | |
| EP1994715B1 (en) | Sim based authentication | |
| EP2721854B1 (en) | Authentication server and communication device | |
| CN106936774B (en) | Authentication method and system in trusted execution environment | |
| CN101102186B (en) | Method for implementing general authentication framework service push | |
| CN102572815B (en) | Method, system and device for processing terminal application request | |
| CN110475249B (en) | Authentication method, related equipment and system | |
| CN107094127B (en) | Processing method and device, and obtaining method and device of security information | |
| CN109873819B (en) | Method and system for preventing illegal access to server | |
| CN111918289B (en) | Terminal access method, device and server | |
| CN103974248A (en) | Terminal security protection method, device and system in ability open system | |
| CN104579657A (en) | Method and device for identity authentication | |
| FI107367B (en) | Checking the accuracy of the transmission parties in a telecommunications network | |
| CN102547702B (en) | User authentication method, system and password processing device | |
| CN106465117B (en) | Method, device and communication system for accessing terminal to communication network | |
| CN110519751B (en) | Activation method of embedded smart card, operator system and mobile terminal | |
| WO2017206185A1 (en) | Method, apparatus and system for verifying legitimacy of application program | |
| CN108513272B (en) | Short message processing method and device | |
| CN114501591B (en) | Intelligent equipment network access method and device and computer readable storage medium | |
| CN116233832A (en) | Verification information sending method and device | |
| CN106031126A (en) | Method and system for determining that a sim and a sip client are co-located in the same mobile equipment | |
| CN111586673B (en) | Method, device, system and storage medium for reusing IMSI in configuration file | |
| CN110311928B (en) | Network authentication method and authentication device of cloud terminal system | |
| CN112995090B (en) | Authentication method, device and system for terminal application and computer readable storage medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| TA01 | Transfer of patent application right | ||
| TA01 | Transfer of patent application right |
Effective date of registration: 20220329 Address after: 212355 Hengtang Industrial Zone, Danyang City, Zhenjiang City, Jiangsu Province Applicant after: HENGBAO Corp. Address before: Hengtang Industrial Park, Yunyang town, Danyang City, Zhenjiang City, Jiangsu Province Applicant before: JIANGSU HENGBAO INTELLIGENT SYSTEM TECHNOLOGY Co.,Ltd. |
|
| GR01 | Patent grant | ||
| GR01 | Patent grant |