JP2015125473A - Portable terminal, authentication system, authentication method and authentication program - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide a portable terminal, an authentication system, an authentication method and an authentication program capable of enhancing security with regard to application software stored in a storage part of a portable terminal body.SOLUTION: A portable terminal 10 has a SIM card 14. A main body of the portable terminal 10 includes a body storage part 13 for storing application software. The SIM card 14 includes: a SIM control part 15 configured to authenticate the application software stored in the body storage part 13; and a SIM storage part 16 that stores a program for causing the SIM control part 15 to authenticate the application software.

Description

  The technology of the present disclosure relates to a mobile terminal including a SIM card, an authentication system using the mobile terminal, an authentication method, and an authentication program.

  A portable terminal such as a smartphone includes a SIM card (Subscriber Identity Module Card). The SIM card is a kind of IC card, and includes a storage unit that stores identification information for specifying the telephone number of the mobile terminal. The SIM card also includes a cryptographic processor that performs cryptographic processing necessary for authentication of the portable terminal, and authenticates the portable terminal using identification information stored in the storage unit and cryptographic processing performed by the cryptographic processor.

  Thus, the authentication by the SIM card through the cryptographic processing of the cryptographic processor has higher security against external access than the processing executed by the mobile terminal body. Therefore, in recent years when the storage capacity of the storage unit of the SIM card has increased, in addition to the above identification information, for example, card information of a credit card used for a payment processing service or the like has a high importance in the storage unit of the SIM card. Data is also stored (see, for example, Patent Document 1).

JP 2009-237973 A

  By the way, as the convenience of the mobile terminal increases, a large number of application software is installed in the mobile terminal. Such a large number of application software is normally stored in the storage unit of the mobile terminal body. As described above, the storage unit of the mobile terminal body is more suitable for writing and reading information than the storage unit of the SIM card. Security is low. Therefore, in the above-described portable terminal, there is an increased risk of installation of application software including an illegal program, falsification of installed application software, and the like.

  On the other hand, if the application software can be stored in the storage unit of the SIM card, such a risk can be reduced. However, although the storage capacity tends to increase, the storage capacity of the storage unit of the SIM card is very small compared to the storage capacity of the storage unit of the mobile terminal body, and application software that can be stored in the storage unit of the SIM card The number of is limited. After all, since the storage part of the SIM card cannot store a large number of application software, the above-mentioned danger still remains.

  An object of the technology of the present disclosure is to provide a mobile terminal, an authentication system, an authentication method, and an authentication program that can enhance security of application software stored in a storage unit of a mobile terminal body.

  A mobile terminal for solving the above-described problem is a mobile terminal including a SIM card, wherein the main body of the mobile terminal includes a main body storage unit for storing application software, and the SIM card includes the application software. A SIM storage unit that stores a program for performing authentication, and a SIM control unit that performs the authentication according to the program.

  An authentication system for solving the above-described problem includes a portable terminal including a SIM card, a server included in a certificate authority that creates an electronic signature, and a certificate authority server connected to the portable terminal via a network. Including authentication system. The main body of the portable terminal includes a main body storage unit for storing application software, the SIM card includes a SIM storage unit that stores a program for authenticating the application software, and the certification authority stores a secret key. Obtaining an electronic signature associated with the application software and a public key corresponding to the private key, and verifying the electronic signature using the public key. And a SIM control unit that performs authentication of the application software by performing according to a program.

  An authentication method for solving the above problem is performed by a portable terminal including a SIM card and a server included in a certificate authority that creates an electronic signature, the certificate authority server being connected to the portable terminal via a network. This is an application software authentication method. The SIM card includes a SIM control unit and a SIM storage unit that stores a program for authenticating the application software, and the SIM control unit uses a secret key according to the program. Using the public key, the step of obtaining an electronic signature associated with the application software, the step of obtaining a public key corresponding to the private key from the certificate authority server, and the public key And performing the authentication by verifying the electronic signature.

  An authentication program that solves the above problem is a program stored in a SIM card included in a mobile terminal, and the main body of the mobile terminal includes a main body storage unit for storing application software. The program obtains an electronic signature associated with the application software and the key used for verifying the electronic signature, and verifies the electronic signature using the key. To function as a SIM control unit for authenticating the application software.

  According to each said structure, since a SIM control part authenticates based on the program memorize | stored in the SIM memory | storage part with higher security than a main body memory | storage part, the reliability of the authentication result increases. Since the application software stored in the main body storage unit is authenticated by the SIM control unit, the security of the application software stored in the main body storage unit is also increased.

  In the portable terminal, it is preferable that the SIM control unit authenticates the application software when the activation of the application software stored in the main body storage unit is requested.

  According to the above configuration, when activation of the application software stored in the main body storage unit is requested, the application software is authenticated. Therefore, the application software is authenticated before the application software performs its function. Is done. Therefore, for example, it is also possible to suppress activation of application software that does not match the authentication conditions by determining whether or not activation is possible according to the authentication result.

  In the portable terminal, the portable terminal is connected via a network to a certificate authority server included in a certificate authority that creates an electronic signature, and the main body storage unit includes the application software, and the certificate authority uses a secret key. And stores the created electronic signature in association with each other, and the SIM control unit obtains the electronic signature from the main body storage unit, obtains the public key corresponding to the private key from the certificate authority server, and It is preferable to authenticate the application software by performing verification of the electronic signature using a public key according to the program.

According to the above configuration, since the application software is authenticated by verifying the electronic signature created by the certificate authority, the reliability of the authentication result is improved.
In the portable terminal, the main body storage unit stores the application software and an electronic signature in association with each other, the SIM storage unit stores a key used for verification of the electronic signature, and the SIM control unit includes: The application software is authenticated by performing acquisition of the electronic signature from the main body storage unit, acquisition of the key from the SIM storage unit, and verification of the electronic signature using the key according to the program. It is preferable.

  According to the above configuration, since the application software is authenticated by verifying the electronic signature, the reliability of the authentication result is increased. In addition, since the key used for verification of the electronic signature is stored in the SIM storage unit, the reliability of the authentication result is further improved.

  In the mobile terminal, the SIM control unit preferably authenticates the application software when the mobile terminal is requested to download the application software.

  According to the above configuration, since the application software is authenticated when download of the application software to be authenticated is requested, the application software is authenticated before the application software is downloaded. Therefore, for example, by determining whether download is possible according to the authentication result, it is possible to suppress downloading of application software that does not match the authentication conditions.

  In the portable terminal, the portable terminal is connected to a certificate authority server included in a certificate authority that creates an electronic signature and an application providing server that provides the application software via a network, and the SIM control unit To obtain from the application providing server an electronic signature created by the certificate authority using a secret key and associated with the application software; from the certificate authority server, the secret key It is preferable to authenticate the application software by obtaining a public key corresponding to, and verifying the electronic signature using the public key.

According to the above configuration, since the application software is authenticated by verifying the electronic signature created by the certificate authority, the reliability of the authentication result is improved.
In the mobile terminal, the mobile terminal is connected to an application providing server that provides the application software via a network, and the SIM storage unit is an electronic signature that is associated with the application software in the application providing server. The SIM control unit acquires the electronic signature associated with the application software from the application providing server according to the program, and the SIM storage unit acquires the electronic signature associated with the application software. It is preferable to authenticate the application software by obtaining a key and verifying the electronic signature using the key.

  According to the above configuration, since the application software is authenticated by verifying the electronic signature, the reliability of the authentication result is increased. In addition, since the key used for verification of the electronic signature is stored in the SIM storage unit, the reliability of the authentication result is further improved.

In the portable terminal, the SIM control unit preferably determines that the authentication of the application software has failed when the electronic signature cannot be obtained.
According to the above configuration, when the electronic signature created by the certificate authority is not associated with the application software, it is determined that the authentication of the application software has failed. Therefore, since whether or not the certificate authority has created an electronic signature for the application software is reflected in the authentication result, the reliability of the authentication result is improved.

  According to the technology of the present disclosure, it is possible to increase the security of application software stored in the storage unit of the mobile terminal body.

It is a system configuration figure showing the composition of the authentication system in a 1st embodiment in the art of this indication. It is a flowchart which shows the procedure of the authentication in the authentication system of 1st Embodiment. It is a system block diagram which shows the structure of the authentication system in 2nd Embodiment in the technique of this indication. It is a flowchart which shows the procedure of the authentication in the authentication system of 2nd Embodiment.

(First embodiment)
A first embodiment of a mobile terminal, an authentication system, an authentication method, and an authentication program will be described with reference to FIGS. 1 and 2.

[Configuration of authentication system]
With reference to FIG. 1, the structure of an authentication system and the structure of the portable terminal contained in an authentication system are demonstrated.

  As shown in FIG. 1, the authentication system includes a mobile terminal 10 and one or more certificate authority servers 20. The mobile terminal 10 and the certificate authority server 20 are connected to a network NW including a network such as the Internet or a mobile phone communication network, and the mobile terminal 10 transmits and receives data to and from the certificate authority server 20. One or more application providing servers 30 are connected to the network NW. The application providing server 30 transmits / receives data to / from each of the mobile terminal 10 and the certificate authority server 20.

  The mobile terminal 10 is a terminal capable of transmitting and receiving data using a mobile phone communication network, and is embodied in, for example, a smartphone or a tablet terminal. The mobile terminal 10 includes a SIM card. The SIM card is an IC card including a storage unit that stores identification information used to identify the mobile terminal 10 during communication using a mobile phone communication network. The SIM card also includes a cryptographic processor that executes cryptographic processing necessary for authentication of the mobile terminal 10, and performs authentication of the mobile terminal 10 using the identification information and the cryptographic processing executed by the cryptographic processor. The shape and communication method of the SIM card are not particularly limited, and the SIM card includes a micro SIM card, a UIM card (User Identity Module Card), and the like.

Hereinafter, a specific configuration example of the mobile terminal 10 will be described.
The portable terminal 10 includes a communication unit 11, a main body control unit 12, a main body storage unit 13, and the above-described SIM card 14.

The SIM card 14 includes a SIM control unit 15 and a SIM storage unit 16.
The SIM control unit 15 performs various processes using the data stored in the SIM storage unit 16, including the process related to the authentication of the mobile terminal 10, according to the program stored in the SIM storage unit 16. A part of the SIM control unit 15 functions as an authentication processing unit 15 a that authenticates a general application that is application software stored in the main body storage unit 13 as a configuration that realizes an authentication method using an authentication system.

  When the activation of the general application is requested, the authentication processing unit 15a acquires information from the main body storage unit 13 and the certificate authority server 20 via the main body control unit 12, and performs authentication using the acquired information. Specifically, the authentication processing unit 15a acquires an electronic certificate stored in association with the general application from the main body storage unit 13, and from the certificate authority server 20, the private key used for creating the electronic certificate. Get the public key corresponding to. And the authentication process part 15a authenticates by verifying the electronic signature contained in an electronic certificate using the acquired public key through the process of the said encryption processor.

  The SIM storage unit 16 stores data used for processing of the SIM control unit 15 temporarily or permanently. The data stored in the SIM storage unit 16 includes identification information used for identifying the mobile terminal 10. The SIM storage unit 16 stores an authentication application that is application software including an authentication program that causes the SIM control unit 15 to function as the authentication processing unit 15a. The authentication application may be installed in the SIM card 14 in advance, or may be installed in the SIM card 14 by being downloaded according to a user operation. The authentication application is stored in the SIM storage unit 16 after receiving predetermined authentication.

The communication unit 11 executes a connection process between the mobile terminal 10 and a connection destination device. The communication unit 11 transmits and receives data between the mobile terminal 10 and a connection destination device.
The main body control unit 12 controls the functions of the mobile terminal 10 in an integrated manner by controlling the functions of the configuration electrically connected to the main body control unit 12. The main body control unit 12 includes an activation processing unit 12a as a configuration for realizing an authentication method using an authentication system.

  When the activation request for the general application is input to the activation processing unit 12a, the activation processing unit 12a notifies the authentication processing unit 15a of the SIM control unit 15 that the activation has been requested. In response to a request from the authentication processing unit 15a, the activation processing unit 12a acquires information such as an electronic certificate and a public key from the main body storage unit 13 and the certificate authority server 20, and sends the acquired information to the authentication processing unit 15a. Output. When authentication by the authentication processing unit 15a is successful, the activation processing unit 12a activates the general application.

  The main body storage unit 13 temporarily or permanently stores data used for processing of the main body control unit 12. For example, the main body storage unit 13 stores application software downloaded from the application providing server 30 as a general application. The main body storage unit 13 stores the electronic certificate acquired from the application providing server 30 together with the general application and the identification information of the certificate authority that issued the electronic certificate in association with the general application.

  In addition, the function with which the main body control part 12 is provided may be actualized by various hardwares, such as several CPU and memory, and may be materialized by the software which gives several functions to one common hardware. . Of the functions provided in the main body control unit 12, when the function that operates in cooperation with the authentication processing unit 15a of the SIM control unit 15 as the activation processing unit 12a is embodied by software, the software is stored in advance in the mobile terminal 10 It may be installed on the main body, and when the authentication application is downloaded and installed on the SIM card 14, it may be downloaded together with the authentication application and installed on the main body of the mobile terminal 10.

  The certificate authority server 20 is a certificate authority server that issues an electronic certificate that guarantees the validity of the application software provided by the application providing server 30. The certificate authority is an organization that issues an electronic certificate with a legitimate authority. The electronic certificate includes an electronic signature that is data encrypted using a private key held by the certificate authority. The certificate authority server 20 stores a public key corresponding to the secret key, and transmits the public key to the mobile terminal 10 in response to a request from the mobile terminal 10.

  The application providing server 30 is a server that provides application software to the mobile terminal 10. The application providing server 30 stores application software, an electronic certificate issued from the certificate authority to the application software, and identification information of the certificate authority that issued the electronic certificate. In response, the application software, the electronic certificate, and the identification information of the certificate authority are transmitted to the mobile terminal 10.

Subsequently, the procedure of the authentication method by the authentication system will be described.
In the following description, it is assumed that the provider of application software that creates and distributes application software includes a good intention provider and a malicious provider. The bona fide provider performs processing necessary for determining that the application software is legitimate application software by the authentication of the authentication system, and distributes the application software. On the other hand, a malicious provider distributes application software without performing the above-described processing.

First, a procedure for issuing an electronic certificate and downloading application software prior to authentication by the authentication system will be described.
[Issuing an electronic certificate]
After the application software is created, the good faith provider requests the certificate authority to issue an electronic certificate that guarantees the validity of the application software. The certificate authority examines information related to the provider and the contents of the application software and issues an electronic certificate.

  The electronic certificate includes an electronic signature of a certificate authority. Data included in the electronic certificate other than the electronic signature is not particularly limited, but the electronic certificate includes, for example, data such as provider information and certificate authority information. The certificate authority's digital signature is the hash value of all or part of the data other than the digital signature included in the electronic certificate, or the hash value of all or part of the program included in the application software, using the private key held by the certificate authority. It is encrypted data.

  The data that is the basis of the hash value is selected according to the purpose of authentication by the authentication system. For example, when the purpose of authentication is to verify whether the provider of the application software is a provider guaranteed by a certificate authority, the data that is the source of the hash value is not an electronic signature included in the electronic certificate. It may be all or part of the data, or all or part of the program included in the application software. Further, for example, when the verification of the presence / absence of falsification of application software is intended for authentication, the data that is the basis of the hash value may be all or part of the program included in the application software.

  Alternatively, when the purpose of authentication is to verify whether the provider of the application software is a provider guaranteed by a certificate authority, the data obtained by encrypting the target data itself without using the hash value is electronic It may be a signature.

  Note that the secret key used for encryption by the certificate authority and the public key used for decrypting data encrypted with the secret key are a secret key and a public key used in a public key encryption scheme. The encryption method used for generating the electronic signature is not particularly limited as long as it is a public key encryption method. For example, RSA encryption is used. Further, the calculation method of the hash value is not particularly limited, and an appropriate hash function may be used.

  Application software provided by a bona fide provider is managed by a bona fide provider in association with the digital certificate issued to the application software and the identification information of the certificate authority that issued the digital certificate. Stored in the application providing server 30. The identification information of the certificate authority may be included in the electronic certificate. In short, the application software, the digital signature of the certificate authority, and information that can identify the certificate authority that created the digital signature need only be stored in the application providing server 30 so as to be downloadable.

  On the other hand, the malicious provider has not received an electronic certificate from the certificate authority for the application software created by the provider. Therefore, the application software provided by the malicious provider is stored in the application providing server 30 managed by the malicious provider without being associated with the electronic certificate.

[Download application software]
Application software stored in the application providing server 30 is downloaded and installed in the mobile terminal 10. The application software to be downloaded may be selected by the user of the mobile terminal 10 through, for example, an application software distribution site, or may be downloaded regardless of the user's intention. Note that the function of the downloaded application software is not particularly limited.

  When application software is downloaded from the application providing server 30 managed by a bona fide provider, the electronic certificate associated with the application software in the application providing server 30 and the identification information of the certificate authority are included together with the application software. Downloaded to the mobile terminal 10. The downloaded application software, the electronic certificate, and the identification information of the certificate authority are associated with each other and stored as a general application in the main body storage unit 13 of the mobile terminal 10.

  When the application software is downloaded from the application providing server 30 managed by the malicious provider, only the application software is downloaded to the mobile terminal 10, and the electronic certificate and the certificate authority identification information are not downloaded to the mobile terminal 10. The downloaded application software is stored as a general application in the main body storage unit 13 of the mobile terminal 10.

[Authentication by authentication system]
With reference to FIG. 2, the procedure of the authentication method by the authentication system will be described. The flow shown in FIG. 2 is a process that is performed each time the authentication processing unit 15a of the SIM control unit 15 of the mobile terminal 10 is notified that a general application activation request has been received.

  For example, when the user performs an operation for instructing activation of the general application to the mobile terminal 10, a request for activation of the general application is input to the activation processing unit 12 a of the main body control unit 12. When the activation request is input, the activation processing unit 12a notifies the authentication processing unit 15a that there has been a request for activation of a general application.

  Upon receiving the notification of the request for starting the general application, the authentication processing unit 15a attempts to acquire the electronic certificate and the identification information of the certificate authority from the main body storage unit 13 via the activation processing unit 12a in step S10. That is, the authentication processing unit 15a requests the activation processing unit 12a to obtain an electronic certificate and certificate authority identification information. Upon receiving a request from the authentication processing unit 15a, the activation processing unit 12a attempts to acquire from the main body storage unit 13 an electronic certificate and certificate authority identification information associated with the general application for which activation is requested.

  When the general application that is requested to be activated is application software provided by a bona fide provider, the main body storage unit 13 stores an electronic certificate and identification information of a certificate authority in association with the application software. Has been. In this case, the activation processing unit 12a acquires the electronic certificate and certificate authority identification information from the main body storage unit 13, and outputs the acquired electronic certificate and certificate authority identification information to the authentication processing unit 15a. As a result, the authentication processing unit 15a acquires the electronic certificate and the identification information of the certificate authority, and an affirmative determination is made regarding the presence or absence of the electronic certificate in step S11.

  On the other hand, when the general application requested to be activated is application software provided by a malicious provider, the main body storage unit 13 does not store the electronic certificate and the certificate authority identification information. In this case, the activation processing unit 12a notifies the authentication processing unit 15a that there is no electronic certificate and identification information of the certificate authority. As a result, the authentication processing unit 15a cannot acquire the electronic certificate and the identification information of the certificate authority, and a negative determination is made regarding the presence or absence of the electronic certificate in step S11.

  If an affirmative determination is made regarding the presence or absence of the electronic certificate in step S11, the process proceeds to step S12. In step S12, the authentication processing unit 15a acquires a public key from the certificate authority server 20 via the activation processing unit 12a. That is, the authentication processing unit 15a requests the activation processing unit 12a to acquire a public key, and the activation processing unit 12a requests the certification authority server 20 to transmit the public key via the communication unit 11, thereby A public key is obtained from the certificate authority server 20. The certificate authority server 20 as a public key request destination is determined based on the identification information of the certificate authority. The activation processing unit 12a outputs the acquired public key to the authentication processing unit 15a. As a result, the authentication processing unit 15a acquires a public key corresponding to the private key used for encrypting the electronic signature included in the electronic certificate.

  When the public key is acquired, the process proceeds to step S13, and the authentication processing unit 15a verifies the electronic signature included in the electronic certificate using the public key. In other words, the authentication processing unit 15a compares the hash value obtained by decrypting the electronic signature using the public key with the hash value calculated by the authentication processing unit 15a from the data that is the basis of the hash value, and the application software Verify the validity of. If the digital signature can be decrypted with the public key acquired from the certificate authority server 20, it is confirmed that the issuer of the electronic certificate is the certificate authority, and the provider of the application software is guaranteed by the certificate authority. Confirmed to be a provider. Further, when the hash value is calculated from the program included in the application software, if the hash values match, it is confirmed that the application software has not been tampered with.

If necessary, the authentication processing unit 15a acquires data from the main body storage unit 13 via the activation processing unit 12a when calculating the hash value.
If the validity of the application software is confirmed as a result of the verification of the electronic signature, an affirmative determination is made regarding the success or failure of the authentication in step S14, and the process proceeds to step S15. On the other hand, if the validity of the application software is denied as a result of the verification of the electronic signature, a negative determination is made regarding the success or failure of the authentication in step S14, and the process proceeds to step S16.

  In step S15, the authentication processing unit 15a notifies the activation processing unit 12a that the authentication has been successful, and ends the process. When receiving the notification that the authentication is successful, the activation processing unit 12a activates the general application for which activation is requested. At this time, the activation processing unit 12a may notify the user that the safety of the application software has been confirmed.

  If a negative determination is made in step S11 and a negative determination is made in step S14, in step S16, the authentication processing unit 15a notifies the activation processing unit 12a that the authentication has failed, and processing is performed. finish. Upon receiving the notification that the authentication has failed, the activation processing unit 12a does not activate the general application that is requested to be activated, and the user is informed that the application software cannot be activated because the safety of the application software cannot be confirmed. Notify Alternatively, upon receiving notification that the authentication has failed, the activation processing unit 12a notifies the user that the safety of the application software cannot be confirmed, and causes the user to select whether to activate the application software. May be.

[Operation of authentication system]
The operation of the first embodiment will be described.
In the first embodiment, when the general application stored in the main body storage unit 13 is activated, the authentication processing unit 15a of the SIM control unit 15 performs authentication. A program that causes the authentication processing unit 15a to perform authentication is stored in the SIM storage unit 16 as an authentication application.

  As described above, the SIM storage unit 16 has higher security against writing and reading of information than the main body storage unit 13. Therefore, compared with the general application stored in the main body storage unit 13, the possibility that the authentication application is falsified is small. Thus, since the authentication processing unit 15a authenticates the general application based on the authentication application with high security, the reliability of the authentication result of the authentication processing unit 15a is increased. Then, when the general application is authenticated by the authentication processing unit 15a, the security of the general application stored in the main body storage unit 13 is also increased.

  Specifically, the authentication processing unit 15a verifies the electronic signature included in the electronic certificate issued by the certificate authority for the general application, thereby authenticating the general application, that is, authenticating the provider of the general application. It can be confirmed that the provider is guaranteed by the station and that the general application has not been tampered with. As a result, it is possible to suppress activation of a general application created by a provider not guaranteed by the certificate authority, or activation of a general application that has been tampered before or after downloading. Therefore, activation of application software that may include an unauthorized program is suppressed.

  In addition, since authentication by the authentication processing unit 15a is performed when activation of a general application is requested, when the purpose of authentication is to check whether or not the general application has been tampered with, The presence or absence of tampering can be checked each time a general application is activated.

As described above, according to the first embodiment, the following effects can be obtained.
(1) Since the application software stored in the main body storage unit 13 is authenticated by the authentication processing unit 15a based on the authentication program stored in the SIM storage unit 16, the security of the application software stored in the main body storage unit 13 Will increase.

  (2) Since authentication is performed when activation of application software stored in the main body storage unit 13 is requested, authentication can be performed before the application software performs its function.

(3) Since the authentication processing unit 15a authenticates the application software by verifying the electronic signature created by the certificate authority, the reliability of the authentication result is improved.
(4) When the digital signature cannot be acquired, the authentication processing unit 15a determines that the authentication of the application software has failed. Therefore, when the application software is not associated with the electronic signature created by the certificate authority, it is determined that the authentication has failed. As a result, whether or not the certificate authority has created an electronic signature for the application software is reflected in the authentication result, thereby improving the reliability of the authentication result.

The first embodiment can be implemented with the following modifications.
The authentication processing unit 15a may perform authentication only when the activation of the general application is requested for the first time after the general application is installed in the main body of the mobile terminal 10. If the purpose of authentication is that the provider of the general application is a provider guaranteed by a certificate authority or that the general application has not been tampered with before downloading, authentication is only performed when the general application is first launched. Even if it is performed, the effect is sufficiently obtained.

  When authentication by the authentication processing unit 15a is performed every time activation of a general application is requested, the public key acquired from the certificate authority server 20 in the first authentication is stored in the main body storage unit 13, and 2 In the authentication after the first time, the authentication processing unit 15a may acquire the public key from the main body storage unit 13 and verify the electronic signature. However, in the case where the authentication processing unit 15a obtains the public key from the certificate authority server 20 every time authentication is performed, the possibility that the public key is stored in the main body storage unit 13 is reduced. Therefore, the reliability of the authentication result is further increased.

  Instead of notifying the activation processing unit 12a that the activation of the general application is requested to the authentication processing unit 15a, the authentication processing unit 15a monitors the signal input to the activation processing unit 12a. It may be detected that activation of a general application is requested. In short, as long as the authentication processing unit 15a performs authentication when the activation processing unit 12a is requested to start a general application, the mode of cooperation between the activation processing unit 12a and the authentication processing unit 15a is described above. It is not limited to the embodiment.

(Second Embodiment)
With reference to FIG. 3 and FIG. 4, 2nd Embodiment of a portable terminal, an authentication system, an authentication method, and an authentication program is described. The second embodiment differs from the first embodiment in the timing at which authentication is performed. Below, it demonstrates centering on difference with 1st Embodiment, about the structure similar to 1st Embodiment, the same code | symbol is attached | subjected and the description is abbreviate | omitted.

[Configuration of authentication system]
As shown in FIG. 3, the mobile terminal 10 included in the authentication system of the second embodiment includes a download processing unit 12b instead of the activation processing unit 12a.

  In the second embodiment, the authentication processing unit 15a included in the SIM control unit 15 of the SIM card 14 is connected via the main body control unit 12 when a download of a general application to be stored in the main body storage unit 13 is requested. Information is acquired from the application providing server 30 and the certificate authority server 20, and authentication is performed using the acquired information. Specifically, the authentication processing unit 15a acquires an electronic certificate stored in association with the general application from the application providing server 30, and from the certificate authority server 20, the secret key used for creating the electronic certificate. Get the public key corresponding to. And the authentication process part 15a authenticates by verifying the electronic signature contained in an electronic certificate using the acquired public key.

  When a download request for a general application is input to the download processing unit 12b, the download processing unit 12b included in the main body control unit 12 notifies the authentication processing unit 15a of the SIM control unit 15 that there has been a download request. . Also, the download processing unit 12b acquires information such as an electronic certificate and a public key from the application providing server 30 and the certificate authority server 20 in response to a request from the authentication processing unit 15a, and sends the acquired information to the authentication processing unit 15a. Output. When the authentication processing unit 15a is successfully authenticated, the activation processing unit 12a downloads the general application from the application providing server 30. The downloaded general application is stored in the main body storage unit 13 and installed in the main body of the mobile terminal 10.

  Of the functions of the main body control unit 12, when the function that operates as the download processing unit 12b in cooperation with the authentication processing unit 15a of the SIM control unit 15 is embodied by software, 10 may be installed on the main body of the mobile terminal 10, and when the authentication application is downloaded and installed on the SIM card 14, it may be downloaded together with the authentication application and installed on the main body of the mobile terminal 10.

Subsequently, the procedure of the authentication method by the authentication system will be described.
Also in the second embodiment, as in the first embodiment, a bona fide provider of application software receives an electronic certificate from a certificate authority. The application software provided by the bona fide provider is associated with the digital certificate issued to the application software and the identification information of the certificate authority that issued the digital certificate. Is stored in the application providing server 30 managed by.

On the other hand, the application software provided by the malicious provider is stored in the application providing server 30 managed by the malicious provider without being associated with the electronic certificate.
[Authentication by authentication system]
With reference to FIG. 4, the procedure of the authentication method by the authentication system will be described. The flow shown in FIG. 4 is a process performed whenever the authentication processing unit 15a of the SIM control unit 15 of the mobile terminal 10 is notified that a request for downloading a general application has been received.

  For example, when the user selects application software to be downloaded through an application software distribution site or the like and performs an operation for instructing downloading of the application software to the mobile terminal 10, a request for downloading a general application is downloaded from the main body control unit 12. The data is input to the processing unit 12b. When a download request is input, the download processing unit 12b notifies the authentication processing unit 15a that there has been a request for downloading a general application.

  Upon receiving the notification of the request for downloading the general application, the authentication processing unit 15a tries to acquire the electronic certificate and the identification information of the certificate authority from the application providing server 30 via the download processing unit 12b in step S20. That is, the authentication processing unit 15a requests the download processing unit 12b to acquire an electronic certificate and certificate authority identification information. Upon receiving a request from the authentication processing unit 15a, the download processing unit 12b sends, to the application providing server 30, via the communication unit 11, an electronic certificate and authentication associated with the general application that is requested to be downloaded. Requests transmission of station identification information. In the download processing unit 12b, the trigger for requesting transmission of the electronic certificate and the identification information of the certificate authority is not limited to the request from the authentication processing unit 15a, but may be an input of a download request to the download processing unit 12b.

  When the general application that is requested to be downloaded is application software provided by a bona fide provider, the application providing server 30 responds to the request from the download processing unit 12b and the electronic software associated with the application software. The certificate and the identification information of the certificate authority are transmitted to the mobile terminal 10. The download processing unit 12b outputs the electronic certificate and certificate authority identification information received from the application providing server 30 to the authentication processing unit 15a. As a result, the authentication processing unit 15a acquires the electronic certificate and the identification information of the certificate authority, and an affirmative determination is made regarding the presence or absence of the electronic certificate in step S21.

  On the other hand, when the general application requested to be downloaded is application software provided by a malicious provider, the application providing server 30 does not have the electronic certificate and the certificate authority identification information. 30 does not respond to a request from the download processing unit 12b. The download processing unit 12b notifies the authentication processing unit 15a that the electronic certificate and the identification information of the certificate authority cannot be acquired. As a result, the authentication processing unit 15a cannot acquire the electronic certificate and the identification information of the certificate authority, and makes a negative determination as to whether or not the electronic certificate exists in step S21.

  If an affirmative determination is made regarding the presence or absence of the electronic certificate in step S21, the process proceeds to step S22. In step S22, the authentication processing unit 15a acquires a public key from the certificate authority server 20 via the download processing unit 12b. That is, the authentication processing unit 15a requests the download processing unit 12b to acquire a public key, and the download processing unit 12b requests the certificate authority server 20 to transmit the public key via the communication unit 11, thereby A public key is obtained from the certificate authority server 20. The certificate authority server 20 as a public key request destination is determined based on the identification information of the certificate authority. The download processing unit 12b outputs the acquired public key to the authentication processing unit 15a. As a result, the authentication processing unit 15a acquires a public key corresponding to the private key used for encrypting the electronic signature included in the electronic certificate.

  When the public key is acquired, the process proceeds to step S23, and the authentication processing unit 15a verifies the electronic signature included in the electronic certificate using the public key. In other words, the authentication processing unit 15a compares the hash value obtained by decrypting the electronic signature using the public key with the hash value calculated by the authentication processing unit 15a from the data that is the basis of the hash value, and the application software Verify the validity of.

  If the validity of the application software is confirmed as a result of the verification of the electronic signature, an affirmative determination is made regarding the success or failure of the authentication in step S24, and the process proceeds to step S25. On the other hand, if the validity of the application software is denied as a result of the verification of the electronic signature, a negative determination is made regarding the success or failure of the authentication in step S24, and the process proceeds to step S26.

  In step S25, the authentication processing unit 15a notifies the download processing unit 12b that the authentication has been successful, and ends the process. When receiving the notification that the authentication is successful, the download processing unit 12b accesses the application providing server 30 and starts downloading the general application. At this time, the activation processing unit 12a may notify the user that the safety of the application software has been confirmed.

  If a negative determination is made in step S21 and a negative determination is made in step S24, in step S26, the authentication processing unit 15a notifies the download processing unit 12b that the authentication has failed, and processing is performed. finish. Upon receiving the notification that the authentication has failed, the download processing unit 12b notifies the user that the download cannot be performed because the download of the general application is not started and the safety of the application software cannot be confirmed. Alternatively, upon receiving notification that the authentication has failed, the download processing unit 12b notifies the user that the safety of the application software cannot be confirmed, and causes the user to select whether to download the application software. May be.

[Operation of authentication system]
The operation of the second embodiment will be described.
In the second embodiment, when the general application scheduled to be stored in the main body storage unit 13 is downloaded, the authentication processing unit 15a of the SIM control unit 15 performs authentication. A program that causes the authentication processing unit 15a to perform authentication is stored in the SIM storage unit 16 as an authentication application.

  Therefore, as in the first embodiment, since the authentication processing unit 15a performs authentication based on a highly secure authentication application, the reliability of the authentication result is increased. Then, when the general application is downloaded, the authentication processing unit 15a performs authentication, so that security regarding downloading of the general application is increased.

  Specifically, the authentication processing unit 15a verifies the electronic signature included in the electronic certificate issued by the certificate authority for the general application, thereby authenticating the general application, that is, authenticating the provider of the general application. It can be confirmed that the provider is guaranteed by the bureau. As a result, since a general application created by a provider that is not guaranteed by the certificate authority is prevented from being downloaded to the mobile terminal 10, application software that may contain an unauthorized program is downloaded to the mobile terminal 10. It can be suppressed.

As described above, according to the second embodiment, in addition to the effects (1), (3), and (4) of the first embodiment, the following effects can be obtained.
(5) Since the authentication is performed when the download of the application software scheduled to be stored in the main body storage unit 13 is requested, the authentication can be performed before the application software is downloaded.

The second embodiment can be implemented with the following modifications.
The authentication processing unit 15a may authenticate the general application after downloading the general application and before installing. In this case, the download processing unit 12b downloads the application software, the electronic certificate, and the identification information of the certificate authority from the application providing server 30, and the authentication processing unit 15a uses the public key acquired from the certificate authority server 20, Authentication is performed by verifying the electronic signature included in the downloaded electronic certificate. If the authentication is successful, the general application is installed. If the authentication is unsuccessful, the general application is not installed, or the user is requested to select whether or not to install. According to this, installation of a general application created by a provider not guaranteed by the certificate authority or a general application that has been tampered with can be suppressed.

  Instead of notifying the authentication processing unit 15a that the download of the general application is requested by the download processing unit 12b, the authentication processing unit 15a monitors the signal input to the download processing unit 12b, It may be detected that a general application download is requested. In short, if the authentication processing unit 15a performs authentication when the download processing unit 12b is requested to download a general application, the manner of cooperation between the download processing unit 12b and the authentication processing unit 15a is described above. It is not limited to the embodiment.

Further, the first and second embodiments can be implemented with the following modifications.
-1st Embodiment and 2nd Embodiment may be combined. That is, the authentication processing unit 15a may perform authentication when a download of a general application is requested and when activation of a general application is requested. According to this, the security of the general application is further increased.

  The mode of authentication performed by the authentication processing unit 15a is not limited to verification of an electronic signature using a public key. For example, the general application may be stored in the main body storage unit 13 in a state encrypted with the private key of the certificate authority, and the authentication processing unit 15a may decrypt the general application using the acquired public key as authentication.

  -If the certificate authority that issues the electronic certificate is limited, such as when the key used for verifying the electronic signature or decrypting the general application as described above is specified in advance, the key is It may be stored in the SIM storage unit 16. For example, when the authentication application is stored in the SIM storage unit 16, the key is also stored in the SIM storage unit 16. In this case, when authentication is performed by the authentication processing unit 15a, the authentication processing unit 15a acquires the key from the SIM storage unit 16 instead of the certificate authority server 20. Further, in this case, since the identification information of the certificate authority is not used for the authentication by the authentication processing unit 15a, the identification information of the certificate authority may not be associated with the general application.

  For example, as in the first embodiment, when the authentication processing unit 15a authenticates the general application when the activation of the general application is requested, the authentication processing unit 15a receives the electronic signature from the main body storage unit 13. The general application is authenticated by acquiring the key from the SIM storage unit 16 and verifying the electronic signature using the key according to the authentication program. Further, for example, as in the second embodiment, when the authentication processing unit 15a authenticates the general application when the download of the general application is requested, the authentication processing unit 15a receives the electronic application from the application providing server 30. The general application is authenticated by acquiring the signature, acquiring the key from the SIM storage unit 16, and verifying the electronic signature using the key according to the authentication program.

  The effect of said (1)-(5) is acquired also by such a form. In addition, since the key used for verifying the electronic signature and decrypting the general application is stored in the SIM storage unit 16, the risk of key tampering is reduced, and the reliability of the authentication result is improved. Further, since it is not necessary to communicate with the certificate authority server 20 when authenticating the general application, the load on the communication is reduced, and the mobile terminal 10 in a situation where the communication environment is not prepared is also used for the general application. Authentication can be performed.

  DESCRIPTION OF SYMBOLS 10 ... Portable terminal, 11 ... Communication part, 12 ... Main body control part, 12a ... Startup process part, 12b ... Download process part, 13 ... Main body memory | storage part, 14 ... SIM card, 15 ... SIM control part, 15a ... Authentication process part , 16 ... SIM storage unit, 20 ... certificate authority server, 30 ... application providing server.

Claims (11)

A mobile terminal equipped with a SIM card,
The main body of the portable terminal is
A main body storage unit for storing application software;
The SIM card is
A SIM storage unit for storing a program for authenticating the application software;
And a SIM control unit that performs the authentication according to the program. The SIM control unit
The portable terminal according to claim 1, wherein when the activation of the application software stored in the main body storage unit is requested, the application software is authenticated. The portable terminal is
It is connected via a network to a certificate authority server that has a certificate authority that creates an electronic signature,
The main body storage unit
Storing the application software and the electronic signature created by the certificate authority using a secret key in association with each other;
The SIM control unit
By obtaining the electronic signature from the main body storage unit, obtaining a public key corresponding to the private key from the certificate authority server, and performing verification of the electronic signature using the public key according to the program, The mobile terminal according to claim 2, wherein authentication of the application software is performed. The main body storage unit
Storing the application software and an electronic signature in association with each other;
The SIM storage unit stores a key used for verifying the electronic signature;
The SIM control unit
The application software is authenticated by performing acquisition of the electronic signature from the main body storage unit, acquisition of the key from the SIM storage unit, and verification of the electronic signature using the key according to the program. The mobile terminal according to claim 2. The SIM control unit
The mobile terminal according to claim 1, wherein when the download of the application software is requested in the mobile terminal, the application software is authenticated. The portable terminal is
A certificate authority server that has a certificate authority that creates an electronic signature, and an application providing server that provides the application software are connected via a network,
The SIM control unit
In accordance with the program, from the application providing server, obtaining an electronic signature created by the certificate authority using a secret key and associated with the application software, from the certificate authority server, The mobile terminal according to claim 5, wherein the application software is authenticated by acquiring a public key corresponding to a secret key and verifying the electronic signature using the public key. The portable terminal is
Connected to an application providing server that provides the application software via a network;
The SIM storage unit stores a key used for verification of an electronic signature associated with the application software in the application providing server,
The SIM control unit
According to the program, obtaining the electronic signature associated with the application software from the application providing server, obtaining the key from the SIM storage unit, and using the key to obtain the electronic signature The mobile terminal according to claim 5, wherein the application software is authenticated by verifying. The SIM control unit
The mobile terminal according to any one of claims 3, 4, 6, and 7, wherein when the electronic signature cannot be acquired, the authentication of the application software is determined to have failed. A mobile terminal equipped with a SIM card;
A certificate authority that creates a digital signature, and is a certificate authority server that includes a certificate authority server connected to the mobile terminal via a network,
The main body of the portable terminal is
A main body storage unit for storing application software;
The SIM card is
A SIM storage unit for storing a program for authenticating the application software;
An electronic signature created by the certificate authority using a private key, and an electronic signature associated with the application software and a public key corresponding to the private key are obtained, and the public key is used. A SIM control unit that authenticates the application software by performing verification of the electronic signature according to the program;
An authentication system comprising: A mobile terminal equipped with a SIM card;
A certificate authority that creates an electronic signature, the certificate authority server connected to the mobile terminal via a network;
An application software authentication method performed by
The SIM card is
A SIM controller;
A SIM storage unit that stores a program for authenticating the application software,
According to the program, the SIM control unit
Obtaining an electronic signature associated with the application software, which is an electronic signature created by the certificate authority using a private key;
Obtaining a public key corresponding to the secret key from the certificate authority server;
Performing the authentication by verifying the electronic signature using the public key;
An authentication method characterized by including: A program stored in a SIM card included in a mobile terminal,
The main body of the mobile terminal includes a main body storage unit for storing application software,
The SIM card,
SIM control for obtaining an electronic signature associated with the application software and a key used for verifying the electronic signature, and authenticating the application software by verifying the electronic signature using the key An authentication program characterized in that it functions as a part.

Images