JP2018136835A - IC card and IC card issuing system, IC card issuing method - Google Patents

Abstract

PROBLEM TO BE SOLVED: To surely delete unnecessary application software remaining in a storage means of an IC card.SOLUTION: An IC card comprises a communication unit, a control unit, a storage unit, and an unnecessary application deleting means, wherein lifecycle data of the IC card is stored in a system storage area of the storage means, and the unnecessary application deleting unit uses an IC card that searches for and removes application software remaining in the storage unit without being installed in the IC card, when the life cycle data is rewritten.SELECTED DRAWING: Figure 3

Description

  The present invention relates to an IC card, an IC card issuing system, and an IC card issuing method.

  Conventionally, an IC card, like Patent Document 1, requires some processing at the start of use of the IC card. For example, an IC card is manufactured at a manufacturer's production factory, and the memory area in the IC card is shipped with system data stored in the system storage area. This state is also referred to as zero-order issue.

  The card issuer performs a primary issue process on the IC card issued in the 0th order. That is, after formatting the user data storage area of the IC card storage means, application software (application) common to all IC cards, for example, a financial card such as a cash card or a credit card, Primary issuance processing that performs initial settings to write common data such as transportation card such as commuter pass and balance type ticket, basic resident register card, insurance card, public card program such as driver's license and passport I do.

  Next, an installation process for activating the application software and making it usable is performed.

  Next, the card contractor performs a secondary issuance process on the IC card that has been primarily issued. That is, personal information of individual users is written in the user data storage area of the storage means of the IC card, data necessary for the individual user to operate the IC card is stored, and the life of the operation phase is stored in the IC card. A secondary issue process for performing personalization processing for writing cycle data is performed.

  The IC card that has been subjected to such personalization processing allows the user to operate various applications of the IC card. For example, it is possible to actually exchange money as a cash card or a credit card.

JP 2001-222688 A

  If the application software required for each IC card is selected when performing the primary issue processing of the IC card, a plurality of issue processing programs are required, the issue processing becomes complicated, and confusion is likely to occur. There's a problem.

  Therefore, the IC card primary issuance process is usually performed after unnecessary application software is written to the IC card after a plurality of pieces of application software that the IC card may use, regardless of whether application software is necessary or not. You are removing the software later.

That is, later, unnecessary application software is deleted by a delete command specifying application software that has not yet been installed.

  However, there is a possibility that unnecessary application software may be deleted due to human error. In that case, since the function of the IC card operates normally, there is a problem that it is difficult to find omission of deletion of unnecessary application software depending on the subsequent issuance processing and operation.

  If deletion of unnecessary application software is leaked in the primary issuance process, an unexpected application that is not supposed to remain in the IC card will be put on the market, resulting in the following risks.

(1) There is a risk that an IC card using an unnecessary application that has been deleted is illegally used.
(2) Since memory is consumed by unnecessary applications, an operation abnormality that causes a memory shortage occurs when other applications write data during operation.

  An object of the present invention is to solve the above problems and to reliably find and delete unnecessary application software remaining in the storage means of the IC card even when deletion of unnecessary application software leaks due to human error. Is an issue.

In order to solve the above problems, the present invention is an IC card including a communication unit, a control unit, and a storage unit,
The life cycle data of the IC card is stored in the system storage area of the storage means, and has unnecessary application deletion means,
In the IC card, when the life cycle data is rewritten, the unnecessary application deleting unit searches for and deletes application software remaining in the storage unit without being installed in the IC card.

  According to this configuration, the present invention has an effect of reliably deleting unnecessary application software remaining in the storage means of the issued IC card.

The present invention is an IC card issuing system having a card issuer host computer and a card contractor host computer,
The life cycle data is stored in the IC card, and includes unnecessary application deletion means,
When the card issuer host computer or the card contractor host computer rewrites the life cycle data of the IC card,
In the IC card issuing system, the unnecessary application deleting unit of the IC card searches for and deletes application software remaining in the storage unit without being installed in the IC card.

  The present invention is the IC card issuing system described above, wherein the card issuer host computer does not transmit an unnecessary application software deletion command to the IC card in the primary issuing process. It is a card issuing system.

Further, the present invention is an IC card issuing method using a card issuer host computer and a card contractor host computer,
The life cycle data is stored in the IC card, and includes unnecessary application deletion means,
When the card issuer host computer or the card contractor host computer rewrites the life cycle data of the IC card,
In the IC card issuing method, the unnecessary application deleting unit of the IC card searches for and deletes application software remaining in the storage unit without being installed in the IC card.

  The present invention is the IC card issuing method described above, wherein the card issuer host computer does not transmit an unnecessary application software deletion command to the IC card in the primary issuing process. It is a card issue method.

  The IC card, the IC card issuing system, and the IC card issuing method according to the present invention confirm whether or not the IC card 1 has the unnecessary application deletion means operated and the application software is installed (is active). Then, the data of the application software that has not been installed is deleted from the storage means.

  With this configuration, the present invention can surely delete unnecessary application software remaining in the storage means of the issued IC card, and can eliminate omissions of unnecessary application software due to human error. There is.

  In addition, there is an effect of eliminating the risk of unauthorized use of an IC card in which unnecessary application software that has been deleted is used.

  In addition, because unnecessary application software that has been deleted occupies the storage area of the storage means of the IC card, abnormal operation due to insufficient storage capacity of the storage means when writing data to the storage means during operation of other application software There is an effect that can eliminate the risk of occurrence.

It is a figure which shows the structure of the IC card issue system of embodiment of this invention. It is a block diagram which shows the structure of the IC card of the 0th issue state of embodiment of this invention. It is a block diagram which shows the structure of the IC card of the primary issue state of embodiment of this invention. It is a block diagram which shows the structure of the IC card of the secondary issue state of embodiment of this invention. It is a flowchart (the 1) which shows the operation | movement procedure of the IC card issue system of embodiment of this invention. It is a flowchart (the 2) which shows the operation | movement procedure of the IC card issue system of embodiment of this invention.

  Hereinafter, embodiments of the present invention will be described with reference to FIGS.

<First Embodiment>
FIG. 1 is a diagram illustrating a configuration of an IC card issuing system according to the first embodiment. As shown in FIG. 1, the IC card issuing system includes an IC card 10 manufactured at a production factory of an IC card manufacturer, a card issuer host computer 100, an IC card primary issuing device 110, and a card contractor host computer. 200, an IC card secondary issuing device 210, and a communication network 300.

(Block configuration of IC card 10)
The block diagram of FIG. 2 shows the hardware configuration of the IC card 10 and the block configuration of the storage area of the storage means 13 at the shipping stage when the IC card 10 is manufactured at the manufacturer's production factory. The hardware configuration of the IC card 10 includes a communication unit 11 for exchanging data and messages with external devices, a control unit 12 such as a microprocessor, a volatile memory RAM, and a nonvolatile storage unit group. The storage means 13 is provided.

  The IC card 10 executes a program (software) stored in the storage unit 13 by the control unit 12 to execute a secure communication process, a mutual authentication process with an external device, and other application software (application) programs. Run.

(Storage means 13)
The storage means 13 includes, for example, a read-only memory ROM, and is composed of an EEPROM (Electrically Erasable and Programmable ROM), a flash memory, and the like.

(Configuration of storage area of storage means of IC card 10)
The block diagram of FIG. 3 shows the block configuration of the storage area after the primary issue. The storage area of the storage means 13 is divided into a system storage area 13a, a file area 13b, and a buffer area 13c.

(System storage area 13a)
In the system storage area 13a, card operation software (card OS) including the card manager 14 is written. The card manager 14 manages the application program of the IC card 10. In the zero-order issue state, only the system storage area 13a is written as shown in FIG.

(Card Manager 14)
The card manager 14 of the IC card 10 manages the life cycle data 15, the registered application table 16, and the load file management table 16 b of the IC card 10. Further, the card manager 14 has unnecessary application deletion means 17.

  The card manager 14 records a file identifier (referred to as an application ID (AID)) that is an application identifier of the application program installed by the card manager 14 in the registered application table 16.

(Buffer area 13c)
The card manager 14 manages the file structure of the buffer area 13c. In accordance with the load command from the IC card primary issuing device 110, the card manager 14 receives the load file, which is divided binary data of the application software, from the IC card primary issuing device 110 and stores it in the buffer area 13c. .

  After storing the load file, the card manager 14 creates an application program constituting the application based on the loaded load file in accordance with an installation command from the IC card primary issuing device 110, and stores the file file in the file area 13b. Store in the dedicated file DF.

(File area 13b)
The file structure of the file area 13b is managed by the card manager 14, and a dedicated file DF (Dedicated File) and a basic file EF (Elementary File) are arranged in the file area 13b below the MF (Master File) hierarchy. . The dedicated file DF in the file area 13b is generated by installing an application program.

  The card manager 14 of the IC card 10 installs a program of application software (application), and forms a dedicated file DF in the file area 13b.

  A file identifier that is an application identifier is assigned to the dedicated file DF. By performing this installation process, the application software is activated, and the control unit 12 can execute the dedicated file DF (application program) in the file area 13b.

(0th issue status)
The IC card 10 is in the manufacturing phase at the shipping stage of the IC card manufacturer's production factory, and only the system storage area 13a is set in the storage means 13 as shown in FIG. The state of the IC card 10 in the manufacturing phase is also referred to as 0th issue.

  In the zero-order issue state, the main file (MF), which is the rewritable file area 13b of the data in the storage means 13 of the IC card 10, is in a state where the format process has not been performed.

(System storage area 13a)
In the zero-order issue state, as shown in FIG. 2, card operation software (card OS) including the card manager 14 is written in the system storage area 13a.

  Further, the unique issuer key 20 of the IC card 10 is recorded in the rewritable storage area of the system storage area 13a, and the IC card 10 is individualized. As for the issuer key 20, only the IC card service issuer who knows the correct issuer key 20 is authorized to create and write dedicated files (DF1 to DFn) in the main file MF of the file area 13b. It is data for authentication to give.

  That is, the contents of each file in the system storage area 13a cannot be read from a device external to the IC card 10. Only the IC card service issuer who knows the correct issuer key 20 can read and write the contents of the main file MF which is the file area 13b.

(Life cycle data 15)
The following five life cycle statuses and transition conditions are defined by the industry standard card specifications proposed by Global Platform, an international organization that develops open standards for IC cards. The life cycle status is managed by writing the life cycle status in the life cycle data 15 of the IC card 10.

1) The initial manufacturing phase (OP READY) manufactured by the 0th issue.
2) State initialized by primary issue (INITIALIZED).
3) A safe operational state (SECURED) that has been transitioned by secondary issue.
4) The card is locked (CARD LOCKED).
5) A state where the function is completed and the card is discarded (TERMINATED).

  The life cycle data 15 is stored in the system storage area 13 a by the card manager 14 and manages changes in the life cycle data 15. The contents of the life cycle data 15 are divided into a manufacturing phase (OP READY) before the primary issue, a primary issue phase (INITIALIZED) after the primary issue, and an operation phase (SECURED) after the secondary issue.

(Manufacturing phase)
The IC card 10 is in the zero-order issue state at the shipment stage of the production factory of the IC card manufacturer, and the life cycle of the IC card 10 is in the manufacturing phase. The IC card production factory writes the manufacturing phase (OP READY) in the life cycle data 15 of the IC card 10.

  In addition, the IC card production factory ships the IC card 10 in which the issuer key 20 issued by the production factory as a transport key (temporary key) is written and delivers it to the card issuer. The issuer key 20 which is this transport key (temporary key) is rewritten to the issuer key 20b by the card issuer.

(Issue phase)
When the card issuer who receives the IC card 10 shipped from the production factory writes an application on the IC card 10, the life cycle of the IC card 10 enters the issue phase.

  The issue phase of the IC card 10 can be subdivided into a primary issue phase and a secondary issue phase. In the primary issue phase, first, a load file of application software is stored in the buffer area 13c of the IC card 10 as shown in FIG.

  Next, the load file is installed, and a dedicated file DF (application) is formed under the main file MF in the file area 13b. In the secondary issue phase, personal data is written in a file under the dedicated file DF of the IC card 10 and various data including important data are set.

(Primary issue phase)
In the primary issue phase, as shown in FIG. 1, the card issuer host computer 100 of the card issuer first uses the IC card primary issuer 110 to first load the application software load command to the card manager 14 of the IC card 10. Is commanded. That is, the card issuer host computer 100 collectively writes a plurality of application software that can be used by the IC card in the buffer area 13c of the IC card regardless of whether application software is necessary or not.

  That is, the card manager 14 receives a load file that is divided binary data of the application software from the IC card primary issuing device 110 according to the load command from the IC card primary issuing device 110, and receives the buffer file 13c. To remember.

  The load file stored in the buffer area 13c of the IC card 10 is application software common to all IC cards 10 of the card issuer, for example, a financial card such as a cash card or a credit card, a commuter pass, and a balance type. Stores load files such as applications for transportation cards such as tickets, public resident register cards, insurance card cards, and public card programs such as driver's licenses and passports.

  The card manager 14 records and manages the load file stored in the buffer area 13c in the load file management table 16b.

(Installation process)
Next, the card issuer host computer 100 transmits an installation command to the card manager 14 of the IC card 10 to instruct the application so that the card manager 14 configures the application based on the loaded file. By executing the program installation process, a dedicated file DF is generated in the file area 13b.

(Registered application table 16)
The card manager 14 records the data of the application identifier AID of the installed application software in the registered application table 16.

  Here, among the plurality of application software loaded together in the buffer area 13 c of the IC card 10, application software that has not yet been installed is not recorded in the registered application table 16.

(Card life cycle transition)
Next, the card issuer host computer 100 transmits a card life cycle transition command to the card manager 14 of the IC card 10. This card life cycle transition command instructs the IC card 10 to rewrite the life cycle data 15 stored in the IC card 10 to the primary issue phase (INITIALIZED).

(Unnecessary application deletion means 17)
The card manager 14 of the IC card 10 that has received the card life cycle transition command operates the unnecessary application deletion means 17.

  When the life cycle data 15 of the IC card 10 is in the manufacturing phase (OP READY), the unnecessary application deleting unit 17 does not perform installation processing that is not recorded in the registered application table 16 from the load file management table 16b. Search for the load file of inactive application software.

  When the unnecessary application deletion unit 17 finds an inactive load file that has not been installed, the unnecessary application deletion unit 17 automatically deletes the load file from the buffer area 13 c of the storage unit 13.

  The primary issued IC card 10 is in a state where processing associated with the user of the IC card 10 cannot be performed, and the IC card 10 cannot be used originally. The primary issued IC card 10 is delivered from a card issuer to a card contract operator (often also served by a card issuer).

(Secondary Issuance Phase) Operation Phase As shown in FIG. 1, in the secondary issuance phase, the card contractor host computer 200 of the card contractor uses the IC card secondary issuer 210 to perform the initial setting of the IC. The card manager 14 of the card 10 is instructed to provide an internal basic file IEF and a work basic file WEF under the dedicated file DF as shown in FIG.

  The card manager 14 of the IC card 10 stores the individual data 19 for the user in the work basic file WEF, and stores the key information for authenticating the access right for the external device to read the WEF information in the internal basic file IEF. Process.

  Then, the card issuer host computer 100 transmits a card life cycle transition command to the card manager 14 of the IC card 10. The card life cycle transition command instructs the IC card 10 to rewrite the life cycle data 15 stored in the card manager 14 of the IC card 10 to the secondary issue phase, that is, the operation phase (SECURED).

  Upon receiving the card life cycle transition command, the card manager 14 of the IC card 10 rewrites the life cycle data 15 stored in the card manager 14 to the operation phase (SECURED) after the secondary issue.

  Then, the card contractor host computer 200 registers the start of operation of the IC card 10 and passes the IC card 10 to the user. Thereby, the IC card 10 provides the user with a normal IC card 10 transaction service, for example, a transaction service such as cash exchange or certification as a cash card or a credit card.

(Modification 1)
In the first modified example, when the card manager 14 of the IC card 10 receives a card life cycle transition command to the operation phase (SECURED) from the card issuer host computer 100 after the personalization processing of the IC card 10, the unnecessary application is deleted. The means 17 is operated.

  The unnecessary application deletion means 17 searches the load file management table 16b for a load file of application software in an inactive state that is not recorded in the registered application table 16 and has not been installed.

  Then, when there is an inactive load file that has not been installed, the unnecessary application deletion unit 17 automatically deletes the load file from the buffer area 13 c of the storage unit 13.

(Card issue processing procedure)
The flow of issuing the IC card 10 of the IC card issuing system in the first embodiment of the present invention will be described below with reference to the flowcharts of FIGS.

(0th issue)
At an IC card manufacturer's production plant, first, the IC card 10 is individually written by writing the unique issuer key 20 of the IC card 10 into the system storage area 13a of the storage means 13 in the IC card 10. The 0th order issue process is performed. The IC card 10 is shipped to the card issuer.

  Here, the issuer key 20 written by the IC card manufacturer's production factory is used as a transport key (temporary key), and the card issuer receiving the IC card 10 is used as the card issuer's issue key. Let them be rewritten.

(Primary issue)
FIG. 3 is a diagram showing the configuration of the storage means 13 of the IC card 10 after the primary issue process by the card issuer.

  The IC card 10 that has been issued with the 0th order is transported from the production factory to the card issuer, and the card issuer host computer 100 of the card issuer performs the primary issue of the IC card 10 according to the flowchart of FIG. In the primary issue process, as shown in FIG. 3, the issuer key 20 which is the transport key (temporary key) written by the production factory is rewritten to the issuer key 20b of the card issuer.

  In the primary issue process, the life cycle data 15 stored in the card manager 14 of the IC card 10 is rewritten to the primary issue phase (INITIALIZED).

  In the primary issue process, the card issuer host computer 100 instructs the card manager 14 of the IC card 10 by a load command, so that the IC card 10 is used in the buffer area 13c of the storage means 13 of the IC card 10. Write common data including application software that is commonly required.

  Next, when the card issuer host computer 100 instructs the card manager 14 of the IC card 10 with an install command, the application that configures the application on the card manager 14 based on the load file loaded in the buffer area 13c. A program is created and stored in the storage means 13, and a dedicated file DF is created.

  By this installation process, the card manager 14 installs the application software program, and creates a dedicated file DF for the application under the main file MF in the file area 13b as shown in FIG.

  Then, an internal basic file IEF and a work basic file WEF are created in the dedicated file DF (DF1 to DF2), and an application key (AP key) 18 corresponding to the application program is stored in the internal basic file IEF.

  Then, the IC card 10 in the primary issue state is handed over to a card contractor (often used by a card issuer). Specifically, the IC card primary issue processing is performed according to the process of the flowchart of FIG.

(Step S1) Mutual Authentication Processing The card issuer host computer 100 uses the IC card primary issuing device 110 to communicate with the IC card 10 as shown in FIG. The IC card manufacturer performs mutual authentication using the issuer key 20 set in the IC card 10 as a transport key.

(Step S2) Load Processing Next, the card issuer host computer 100 collects a plurality of application software load files that the IC card 10 may use regardless of whether application software is necessary or not. It is stored in the buffer area 13c.

  In other words, the card issuer host computer 100 instructs the card manager 14 of the IC card 10 by a load command, whereby a plurality of application software of the card issuer, such as a cash card or credit card, is stored in the buffer area 13c of the IC card 10. Applications such as financial cards represented by cards, transportation cards such as commuter passes and balance-type tickets, basic resident register cards, insurance card cards, and public card programs such as driver's licenses and passports Performs load processing to write files in a batch.

  The loaded plurality of application software is recorded in the load file management table 16b.

(Step S3) Installation Processing Next, the card issuer host computer 100 instructs the card manager 14 of the IC card 10 with an installation command, whereby an application program of application software is stored in the file area 13b of the storage means 13 of the IC card 10. Perform the installation process to write to.

  In accordance with an installation command from the card issuer host computer 100, the card manager 14 of the IC card 10 performs application (VISA, MasterCard, JCB, etc.) under the main file MF in the file area 13b of the IC card 10 as shown in FIG. .) For the dedicated file DF (DF1 to DFn).

  Then, an application program is written in the dedicated file DF (DF1 to DFn), and internal basic files (IEF1 to IEFn) and work basic files (WEF1 to WEFn) below the dedicated file DF are created.

  The AP (application) key 18 is stored in the internal basic file (IEF1 to IEFn), and the common data of the application (VISA, MasterCard, JCB, etc.) is stored in the work basic file (WEF1 to WEFn). Remember.

  In this way, the card manager 14 writes the application program in the file area 13 b and registers the data of the application identifier AID of the installed application software in the registered application table 16. Through the above installation process, the application software is activated.

(Step S4) Rewriting the transport key The card issuer host computer 100 uses the issuer key 20 which is the transport key (temporary key) written by the IC card manufacturer's production factory as the card issuer's issuer key 20b. Rewrite to In this state, the IC card 10 cannot be used originally.

(Step S5)
The card issuer host computer 100 transmits a card life cycle transition command to the card manager 14 of the IC card 10. The card life cycle transition command instructs the card manager 14 of the IC card 10 to rewrite the life cycle data 15 to the primary issue phase (INITIALIZED).

(Step S5 ′)
Upon receiving the card life cycle transition command, the card manager 14 of the IC card 10 rewrites the life cycle data 15 to the primary issue phase (INITIALIZED).

(Step S6)
When the life cycle data 15 is in the manufacturing phase (OP READY) when the card manager 14 of the IC card 10 receives the card life cycle transition command, the card manager 14 operates the unnecessary application deletion means 17.

  The unnecessary application deletion means 17 searches the load file management table 16b for a load file of application software in an inactive state that is not recorded in the registered application table 16 and has not been installed. If there is an inactive load file that has not been installed, the load file is automatically deleted from the buffer area 13 c of the storage unit 13.

  According to the present invention, it is not necessary to transmit an unnecessary application software deletion (DELETE) command from the card issuer host computer 100 to the IC card 10 in the primary issue processing. This has the effect of shortening the issue time.

  Further, according to the present invention, since the unnecessary application deleting means 17 searches for and deletes unnecessary load files that have not been installed, unnecessary loads that could remain in the IC card 10 without being deleted due to human error in the past. There is an effect that the file can be surely deleted.

(Secondary issue)
The IC card 10 in the primary issue state is transferred from the card issuer to the card contract operator (often used by the card issuer), and the process proceeds to the secondary issue process. For example, the IC card 10 issued primarily by the card issuer can be transported to a card contractor such as a consumer electronics store, and the card contractor can perform the secondary issue process.

  In the secondary issuance process, the card contractor host computer 200 of the card contractor uses the IC card secondary issuer 210 to transfer the individual data 19 for the user to the work basic file WEF of the dedicated file DF of the application of the IC card 10. Write. Specifically, the secondary issue processing of the IC card 10 is performed by the following procedure according to the flowchart of FIG.

(Step S11) Issuing Request Processing of IC Card 10 The user receives data of personal information (for example, name, address, telephone number, date of birth, etc.) and information about the desired application (for example, type, application name, etc.). At the same time, the card contractor is requested to issue and use the IC card 10.

(Step S <b> 12) User Information Registration The card contractor registers the user information of the IC card 10 in the card contractor host computer 200 based on the information related to the issuance request of the IC card 10 from the user.

  The user information registered by the card contractor host computer 200 includes, for example, a user code, an address, a name, a telephone number, a date of birth, or a personal identification number (PIN: Personal Identification Number) that identifies the user, and a service application. It is information such as the type.

(Step S13) Mutual Authentication Processing The card contractor host computer 200 uses the IC card secondary issuing device 210 to issue an issuer key 20b, which is a transport key rewritten by the card issuer, with the IC card 10. Use mutual authentication.

(Step S14) Writing of Individual User Data 19 The card contractor host computer 200 uses the IC card secondary issuer 210, and the card contractor host computer 200 uses the IC card secondary issuer 210 to change the IC The state of the card 10 is confirmed, and an application written in the IC card 10 is selected.

  Then, individual user data 19 (individual information such as PAN, expiration date, cardholder name, etc.) is written in the work basic files WEF1 to WEFn related to the application, and personal setting of the holder is performed.

  Here, the card contractor host computer 200, as user information, the IC card 10 status information, the ID of the IC card 10, the name of the card issuer who issued the IC card 10 primarily, and the user information that requested the IC card 10 to be issued. Etc. can be registered and stored.

(Step S15) Rewriting Transport Key During this secondary issuance process, the issuer key 20b, which is a transport key (temporary key), is rewritten to the issuer key 20c of the card contractor as necessary.

  In this way, the card contractor host computer 200 uses the IC card secondary issuing device 210 to perform personalization processing for secondary issue of the IC card 10.

  By performing this personalization process, the IC card 10 is secondarily issued. For example, financial cards such as cash cards and credit cards, transportation cards such as commuter passes and balance-type tickets, basic resident register Various applications such as cards, insurance cards, public cards such as driver's licenses and passports can be executed.

(Step S16)
The card contractor host computer 200 transmits a card life cycle transition command to the card manager 14 of the IC card 10. The card life cycle transition command instructs the card manager 14 of the IC card 10 to rewrite the life cycle data 15 to the operation phase (SECURED).

(Step S16 ')
The card manager 14 of the IC card 10 that has received the card life cycle transition command operates the unnecessary application deletion means 17 when the life cycle data 15 is in the primary issue phase (INITIALIZED). In addition, the life cycle data 15 is rewritten to the operation phase (SECURED).

(Step S17)
The unnecessary application deletion means 17 searches the load file management table 16b for a load file of application software in an inactive state that is not recorded in the registered application table 16 and has not been installed.

  Then, when there is an inactive load file that has not been installed, the unnecessary application deletion unit 17 automatically deletes the load file from the buffer area 13 c of the storage unit 13.

(Hand over IC card to user)
The IC card 10 for which secondary issuance has been completed is delivered from the card contractor to the IC card user.

  In the present invention, as described above, the IC card 10 operates the unnecessary application deletion unit 17 to check whether application software is installed (is in an active state), and application software that is not installed. Are deleted from the storage means 13.

  In the present invention, when the IC card 10 operates the unnecessary application deletion means 17 to search and delete unnecessary application software, the card issuer host computer 100 or the card contractor host as in the above embodiment. The present invention is not limited to the case where the card life cycle transition command is received from the computer 200.

  For example, after being passed to the user, the unnecessary application deleting means 17 of the IC card 10 can search for unnecessary application software and delete it.

The unnecessary application deleting means 17 of the IC card 10 can search for unnecessary application software in an inactive state and delete it at a predetermined timing after the IC card 10 is delivered to the user. .

DESCRIPTION OF SYMBOLS 10 ... IC card 11 ... Communication part 12 ... Control means 13 ... Storage means 13a ... System storage area 13b ... File area 13c ... Buffer area 14 ... Card manager 15 ... Lifecycle data 16 ... Registered application table 16b ... Load file management table 17 ... Unnecessary application deletion means 18 ... AP key 19 ... User individual data 20 ... (card manufacture) Issuer key 20b ... (card issuer) issuer key 20c ... (card contractor) issuer key 100 ... card issuer host computer 110 ... IC card primary Issuing device 200 ... card contractor host computer 210 ... IC card secondary issuing device 300 ... communication network DF DF1, DF2 ··· dedicated file IEF1, IEF2 ··· internal underlying file RAM ··· volatile memory WEF1, WEF2 ··· work underlying file

Claims (5)

An IC card comprising a communication unit, a control means and a storage means,
The life cycle data of the IC card is stored in the system storage area of the storage means, and has unnecessary application deletion means,
The IC card, wherein when the life cycle data is rewritten, the unnecessary application deletion unit searches for and deletes application software remaining in the storage unit without being installed in the IC card. An IC card issuing system having a card issuer host computer and a card contractor host computer,
The life cycle data is stored in the IC card, and includes unnecessary application deletion means,
When the card issuer host computer or the card contractor host computer rewrites the life cycle data of the IC card,
The IC card issuing system, wherein the unnecessary application deleting unit of the IC card searches for and deletes application software remaining in the storage unit without being installed in the IC card.   3. The IC card issuing system according to claim 2, wherein in the primary issuing process, the card issuer host computer does not transmit an unnecessary application software deletion command to the IC card. . An IC card issuing method using a card issuer host computer and a card contractor host computer,
The life cycle data is stored in the IC card, and includes unnecessary application deletion means,
When the card issuer host computer or the card contractor host computer rewrites the life cycle data of the IC card,
The IC card issuance method, wherein the unnecessary application deletion unit of the IC card searches for and deletes application software remaining in the storage unit without being installed in the IC card.   5. The IC card issuing method according to claim 4, wherein, in the primary issuing process, the card issuer host computer does not transmit an unnecessary application software deletion command to the IC card. .

Images