DE102004054068A1 - A method for querying the system configuration of a volume - Google Patents

A method for querying the system configuration of a volume

Info

Publication number
DE102004054068A1
DE102004054068A1 DE200410054068 DE102004054068A DE102004054068A1 DE 102004054068 A1 DE102004054068 A1 DE 102004054068A1 DE 200410054068 DE200410054068 DE 200410054068 DE 102004054068 A DE102004054068 A DE 102004054068A DE 102004054068 A1 DE102004054068 A1 DE 102004054068A1
Authority
DE
Germany
Prior art keywords
system configuration
system
information
disk
volume
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
DE200410054068
Other languages
German (de)
Inventor
Gisela Dr. Meister
Stephan Dr. Spitz
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Giesecke and Devrient GmbH
Original Assignee
Giesecke and Devrient GmbH
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Giesecke and Devrient GmbH filed Critical Giesecke and Devrient GmbH
Priority to DE200410054068 priority Critical patent/DE102004054068A1/en
Publication of DE102004054068A1 publication Critical patent/DE102004054068A1/en
Ceased legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/10Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
    • G07F7/1008Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/445Program loading or initiating
    • G06F9/44505Configuring for program initiating, e.g. using registry, configuration files
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06QDATA PROCESSING SYSTEMS OR METHODS, SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/341Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/0806Details of the card
    • G07F7/0833Card having specific functional components
    • G07F7/084Additional components relating to data transfer and storing, e.g. error detection, self-diagnosis

Abstract

The invention provides a method of interrogating the system configuration of a native volume with an operating system and an instruction set provided by the operating system providing functionalities of the volume. The system configuration is performed using a functionality - e.g. As a command - queried from the instruction set of the disk. Information about the system configuration is provided in response to the query. Optionally, an authentication is required for the query. An appropriate volume with the functionality in the instruction set is also specified.

Description

  • The The invention relates to a method for querying the system configuration a native volume with an operating system and one provided by the operating system Command set provided by the functionalities of the volume are. Furthermore, the invention relates to a corresponding data carrier, in particular a chip module or a chip card with such a chip module.
  • One disk in the sense of the invention is a computer system in which the resources, i.e. Memory resources and / or computing capacity (computing power) limited are, e.g. a smart card (smart card, microprocessor chip card) or a Token or a chip module for installation in a chip card or in a Token. The disk has a body in which is a CPU (a microprocessor) is arranged, and any standardized or non-standardized shape, for example the Shape of a flat chip card without standard or according to a standard like e.g. ISO 7810 (e.g., ID-1, ID-00, ID-000) or a voluminous one Tokens. The disk can continue one or more interfaces for contactless and / or contact-based communication with a reader or data processing system (e.g., personal computer, workstation, server).
  • Of the disk usually has a non-volatile System memory ROM, a nonvolatile application memory EEPROM and a volatile Random Access Memory (RAM. In ROM are essentially the operating system and system functions stored together, which together at least the bulk of the Systems of the disk form. In EEPROM are essentially applications (synonymous: Applications) stored. Alternatively, there are software components, that belong to the system, stored in the EEPROM from, for example, subsequently reloaded supplements or corrections to the operating system or system functions. Such supplements or corrections are also called "patches". Optionally, some are Memory replaced by flash memory, FRAM, etc.
  • in the Connection to the invention is based on a native data carrier. Under a native disk becomes a volume understood, in which all in the volume implemented functionalities for the Data processing in the form of an instruction set of the Operating system available are placed. Applications included with such a native disk only data, but no program code. The instruction set makes it possible the user, the functionalities of the instruction set in conjunction with data use, so that the Data in connection with the needed functionalities of the instruction set an executable Represent application. The instruction set itself can be set to any Way to the disk be provided, for example as program code in one any programming language. For example, the instruction set becomes as program code in C, C ++ or any other suitable programming language provided and implemented in compiled form in the disk. alternative The instruction set is code-based in an interpreter-based manner Programming language such as Java provided and interpreted Shape in the disk implemented. In particular, the instruction set can be used as a Java applet provided in interpreted form in the disk becomes.
  • Under the configuration of a data carrier, in particular a smart card is understood which implements content in the volume are the way in which the contents are set up, and in which Status the contents are. The contents may be data and / or program code include, e.g. For Applications and / or parts of the system. Through content, for example achieved, if and which security environments in the disk to disposal which types of communication - e.g. according to which communication protocols - between the disk and a reader / writer for the disk possible are.
  • The Configuration can be both applications and the system (operating system and system functions including possible patches) of the volume affect. In the context of the invention will depend on the system configuration spoken as the configuration of the system. As an application configuration the configuration of the disk with regard to it Implemented applications called.
  • The Configuration of the data medium For example, by programming operations on the disk as e.g. Personalization or initialization to be changed. It can that happen changes not fully documented on the configuration and therefore or for other reasons are not clearly traceable. Therefore, it is desirable the configuration of a volume to be able to query.
  • In the case of native data carriers according to different standards, it is possible to obtain information about applications implemented in the data carrier, for example how many and which applications are implemented in the data carrier are, ie to get information about the application configuration.
  • So is for native disks, that meet the Global Platform Standard in the Global Platform specification (currently 2.1.1) a command GET STATUS from the instruction set of the operating system of the disk defines information about the status of applications in the application memory of the volume.
  • at native data media according to the specification ISO / IEC 7816 are in a special elementary file EF (elementary file EF) within the volume, namely the directory file EF_DIR all applications listed by supported the disk.
  • Just for the Manufacturer of a data carrier would it be interesting also in a simple way to access information about the System configuration of the volume to have.
  • Of the Invention is based on the object, an efficient method to create with which the system configuration of a native Determine the volume leaves. An appropriate disk should also be stated.
  • The Task is solved by a method according to claim 1 or a data carrier according to Claim B. Advantageous embodiments of the invention are in the dependent claims specified.
  • claim 1 provides a method for querying the system configuration of a native volume. The disk is equipped with an operating system and an instruction set provided by the operating system, through the functionalities of the volume provided are. According to the invention In the method, the system configuration is used a functionality from the instruction set of the volume queried. In response to the query, information about the System configuration provided.
  • Thereby, that query directly in the disk, using a functionality of the operating system, the system configuration can be alone on the hand of the data medium and with a commercial one reader for disk. An expensive specially designed interrogator is not required.
  • Therefore is according to claim 1 created an efficient method with which the system configuration a native volume can be determined.
  • The (Information about the) system configuration can in particular (information about) one or more of the following configurations include: resources used such as. Memory, the version of data implemented, user settings such as. IP addresses or other interface addresses, for disposal standing functionalities in the form of e.g. Hardware and / or software interfaces and / or Libraries.
  • at a preferred embodiment the method according to the invention the system configuration is done using a command the instruction set of the volume queried. The query can be done with a single command or alternatively with a sequence of commands. For example, the command may especially with a data carrier according to the Global Platform specification, similar be designed as the command GET STATUS and example as Command GET SYSTEM STATUS be designed.
  • Optional are the queriable system configuration information in at least a specific file stored within the volume. The file can, for example, especially for a disk according to ISO / IEC 7816, a similar one File as the directory file EF_DIR, and as a system directory file EF_System_DIR be designed. The system directory file EF_System_DIR contains information about the System configuration of the volume. On the other hand contains a possibly existing directory file EF_DIR information about the application configuration of the data carrier.
  • The System optionally includes, in addition to Operating system, further one or more of the following system components: Interfaces, libraries, in particular cryptography libraries, storage administrations. The interfaces can in particular have one or more of the following: ISO / IEC interfaces, TCP / IP interfaces, contactless interfaces, user interfaces.
  • Preferably, the system configuration is first interrogated and / or the information about the system configuration is provided only after or as soon as a successful authentication against the data carrier has taken place. In other words, a user who wants to query the system configuration in order to obtain the information about the system configuration must first successfully authenticate himself to the data carrier. Optionally, the use of the functionality (eg of the command) from the command set is only successful after successful authentication; to query the system configuration. Alternatively, the use of the Functionality (eg of the command) is possible even without authentication, however, in response to the query, no valid information about the system configuration is provided, but, for example, a standard response without information content about the system configuration.
  • Preferably Be the information about the system configuration via output a secure information channel from the data carrier, for example, to a reader.
  • Of the Inventive disk is characterized in that in its instruction set a functionality - e.g. Command - provided is with which the system configuration of the volume is queried, where in Respond to the query information about the system configuration to be provided. Possibly. is an authentication like the one above described required.
  • in the The following is the invention with reference to embodiments and below Reference to the drawing closer explains in the show:
  • 1 a smart card according to an embodiment of the invention.
  • 1 shows, schematically, a smart card 1 according to an embodiment of the invention. In the chip card 1 is a system with an operating system and a command set 3 implemented. The instruction set 3 is useful for storing data in an application store 2 the data carrier according to the Funkti onalities of the instruction set 3 to edit. The instruction set contains a special GET SYSTEM STATUS command, which can be used to query the system configuration of the system. Information about the system configuration that can be queried with GET SYSTEM STATUS is stored in the operating system. In the example off 1 the queryable information is more accurate in a special elementary file of the smart card, namely the system directory file EF_System_DIR 4 , saved.
  • at alternative embodiments can they queryable information about the system configuration may be accessible to the operating system in other ways, optionally be stored in the operating system.

Claims (8)

  1. Method for querying the system configuration a native volume with a system having an operating system and one through the Operating command provided by the functionalities of the disk in the method, the system configuration is queried using functionality from the instruction set of the volume and in response to the query information about the system configuration to be provided.
  2. The method of claim 1, wherein the system configuration using a command (GET SYSTEM STATUS) from the instruction set of the disk is queried.
  3. Method according to claim 1 or 2, wherein the information for system configuration in at least one specific file (EF_System_DIR) within the volume are stored.
  4. Method according to one of claims 1 to 3, wherein the information - about the System Configuration Information about one or more of the following System components include: interfaces, in particular hardware interfaces and / or Software interfaces, libraries, memory usage.
  5. Method according to one of claims 1 to 4, wherein the system configuration is only queriable and / or the information about the system configuration be provided only after or as soon as a successful Authentication to the disk is done.
  6. Method according to one of claims 1 to 5, wherein the information about the System configuration are output from the disk.
  7. The method of claim 6, wherein the information about a secured information channel.
  8. disk, set up for implementation A method according to any one of claims 1 to 7, as well as having a an operating system and one by the operating system provided instruction set, the instruction set having a functionality, with which the system configuration of the data carrier can be queried, whereby in Respond to the query information about the system configuration to be provided.
DE200410054068 2004-11-09 2004-11-09 A method for querying the system configuration of a volume Ceased DE102004054068A1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
DE200410054068 DE102004054068A1 (en) 2004-11-09 2004-11-09 A method for querying the system configuration of a volume

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
DE200410054068 DE102004054068A1 (en) 2004-11-09 2004-11-09 A method for querying the system configuration of a volume
EP05813584A EP1844452A1 (en) 2004-11-09 2005-11-08 Method for questioning the system configuration of a data carrier
PCT/EP2005/011946 WO2006050912A1 (en) 2004-11-09 2005-11-08 Method for questioning the system configuration of a data carrier

Publications (1)

Publication Number Publication Date
DE102004054068A1 true DE102004054068A1 (en) 2006-05-11

Family

ID=35677475

Family Applications (1)

Application Number Title Priority Date Filing Date
DE200410054068 Ceased DE102004054068A1 (en) 2004-11-09 2004-11-09 A method for querying the system configuration of a volume

Country Status (3)

Country Link
EP (1) EP1844452A1 (en)
DE (1) DE102004054068A1 (en)
WO (1) WO2006050912A1 (en)

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CA2168434A1 (en) * 1993-07-30 1995-09-02 Quentin Rees Oliver Device and method for programmable functions
EP0790551A1 (en) * 1996-02-16 1997-08-20 Koninklijke PTT Nederland N.V. Method of modifying the instruction set of a smart card
FR2806188A1 (en) * 2000-03-10 2001-09-14 Schlumberger Systems & Service Integrated circuit for smart card has application program with list of command pointers, chaining list for commands each of which has a class which has a list of configurable parameters
GB2384332B (en) * 2002-01-21 2004-03-17 Sun Microsystems Inc Computer configuration

Non-Patent Citations (5)

* Cited by examiner, † Cited by third party
Title
ecam 3.11,2004, *
GEMPLUS,et.al.:Over-The-Air (OTA) technology.In:Discussion and decision, 3GGP TSG SA WG3 Security-S.3#30,6.-10.Oct.2003,Povoa de Varzim,Portugal, online Internet:URL:http//www.3gpp.org/ftp/tsg_sa/WG3_Sec meetings/TSGS3_30_Povoa/Docs/PDF/S3-030534.pdf;rec am 3.11,2004,
GEMPLUS,et.al.:Over-The-Air (OTA) technology.In:Discussion and decision, 3GGP TSG SA WG3 Security-S.3#30,6.-10.Oct.2003,Povoa de Varzim,Portugal, online Internet:URL:http//www.3gpp.org/ftp/tsg_sa/WG3_Secmeetings/TSGS3_30_Povoa/Docs/PDF/S3-030534.pdf *
input paper aims at providing an overview of the Over-The-Air technology *
input paper aims at providing an overview of the Over-The-Air technology;

Also Published As

Publication number Publication date
EP1844452A1 (en) 2007-10-17
WO2006050912A1 (en) 2006-05-18

Similar Documents

Publication Publication Date Title
KR101097367B1 (en) Memory cards including a standard security function
JP3015377B2 (en) IC card
US6865659B2 (en) Using short references to access program elements in a large address space
KR100315838B1 (en) Expanded smart card communication architecture and procedure for communicating between smart card application and data carrier
US6880155B2 (en) Token-based linking
AU666269B2 (en) Reading data from a smart card
US6480935B1 (en) Smart card memory management system and method
KR100417502B1 (en) Data excange system comprising portable data processing units
EP0785514B1 (en) Method of implementing a secure program in a microprocessor card, and microprocessor card including a secure program
JP5123524B2 (en) Smart card with protected memory access
US7447821B2 (en) U3 adapter
EP2082359B1 (en) Method and device for customising a portable electronic entity
US20120066412A1 (en) Media card command pass through methods
KR100689741B1 (en) Non-contact ic tag system
US20070253251A1 (en) Ic module and cellular phone
US20190179654A1 (en) Information Processing Device, Information Processing Method And Program
JP2005322109A (en) Ic card module
KR100505106B1 (en) Smart card with enhanced security
US5754762A (en) Secure multiple application IC card using interrupt instruction issued by operating system or application program to control operation flag that determines the operational mode of bi-modal CPU
DE60210416T2 (en) Memory card
CN101965597B (en) Method and devices for installing and retrieving linked MIFARE applications
KR960008610A (en) Self-configuring data processing system
JP5329884B2 (en) Portable electronic device and data processing method in portable electronic device
US8296752B2 (en) Implementation of in-system programming to update firmware on memory cards
US5252812A (en) Program control system for portable data storage device

Legal Events

Date Code Title Description
OM8 Search report available as to paragraph 43 lit. 1 sentence 1 patent law
R012 Request for examination validly filed

Effective date: 20111018

R002 Refusal decision in examination/registration proceedings
R003 Refusal decision now final

Effective date: 20140604