JP2022050945A - Electronic information storage medium, information processing method, and program - Google Patents

Abstract

To provide an electronic information storage medium, an information processing method, and a program that can shorten a time until authentication with a base station by reducing the number of times of communication between the electronic information storage medium and a communication apparatus.SOLUTION: A SIM card 2 acquires type data indicating a type of an identification number of a communication apparatus 1 from the communication apparatus 1, requests the identification number of the communication apparatus 1 if the acquired type data indicates a first type and the first type matches a type of an identification number stored in the SIM card 2, on the other hand sets so that authentication is a failure without requesting the identification number of the communication apparatus 1 if the first type does not match the type of the identification number stored in the SIM card 2, and requests the identification number of the communication apparatus 1 regardless of whether or not a second type matches the type of the identification number stored in the communication apparatus 1 if the acquired type data indicates the second type.SELECTED DRAWING: Figure 7

Description

The present invention relates to a technical field such as an electronic information storage medium such as a SIM (Subscriber Identity Module) card that stores the identification number of a communication device to which connection is permitted in advance.

Conventionally, a SIM card provided by a telecommunications carrier has been installed in a communication device such as a smartphone, and authentication is performed between the communication device and the base station owned by the telecommunications carrier. Communication equipment can use a wireless communication network via a base station and can receive various services. In recent years, such SIM cards have been used for various purposes such as being mounted on IoT (Internet of Things) devices, which are a kind of communication devices. Patent Document 1 discloses an IoT device on which a SIM card is mounted, which makes it possible to realize secure communication with a server.

On the other hand, even if the SIM card removed from the communication device (for example, stolen) is mounted on another communication device, there is a problem that the authentication with the base station is normally performed. USAT Pairing was newly established in the standard specification 3GPP TS 31.102 V14.7.0 as a countermeasure for the problem. In such USAT Pairing, the identification number (also referred to as an individual number) of the communication device to which the connection is permitted is stored in the SIM card in advance as a connection permission list. Then, after the power is turned on, the SIM card acquires the identification number of the communication device, compares the acquired identification number with the identification number stored in advance, and switches the authentication result with the base station according to the comparison result. .. That is, if the identification numbers do not match, the authentication fails.

Japanese Unexamined Patent Publication No. 2019-057784

By the way, there are two types of identification numbers for communication equipment handled by USAT Pairing, IMEI (International Mobile Equipment Identifier) and IMEISV (IMEI Software Version), but SIM cards can only request one type of identification number at a time. It has become like. Therefore, when the connection permission list of the two types of identification numbers is stored in the SIM card, the SIM card needs to communicate multiple times between the communication devices, and the SIM card needs to communicate with the base station from the start of the power supply. There was a problem that it took time to authenticate.

Therefore, the present invention has been made in view of the above problems and the like, and it is possible to shorten the time required for authentication with the base station by reducing the number of communications between the electronic information storage medium and the communication device. It is an object of the present invention to provide an information storage medium, an information processing method, and a program.

In order to solve the above problems, the invention according to claim 1 can be connected to a communication device having at least one of a plurality of types of identification numbers, and the communication device can connect to a base station. An electronic information storage medium for storing data used for authentication for using a wireless communication network via the electronic information storage medium, and a memory for storing in advance an identification number of a communication device permitted to use the electronic information storage medium, and the above-mentioned. A type of identification number of a communication device to which an electronic information storage medium is connected, which is an acquisition means for acquiring type data indicating at least one of the plurality of types from the communication device, and an acquisition means acquired by the acquisition means. When the type data indicates the first type and the first type matches the type of the identification number stored in the memory, the communication device is requested with the identification number of the communication device, while the first type is requested. When the type 1 does not match the type of the identification number stored in the memory, the first processing means for setting the authentication to fail without requesting the identification number of the communication device and the acquisition means. When the acquired type data indicates a second type, the identification number of the communication device is used as the communication device regardless of whether or not the second type matches the type of the identification number stored in the memory. It is characterized by comprising a second processing means required for the above.

The invention according to claim 2 is the electronic information storage medium according to claim 1, wherein the first processing means stores the identification number acquired from the communication device and the memory in response to the request for the identification number. It is characterized in that a comparison process is performed using the identified identification number and a normal termination is returned to the communication device.

According to the third aspect of the present invention, in the electronic information storage medium according to the second aspect, the respective identification numbers of the plurality of types are stored separately for each record in the memory, and the first process is described. The means compares the type of the identification number acquired from the communication device with the type of the identification number stored in the memory for each record, and performs the comparison process according to the comparison result of the type. When the comparison result of the identification number in all the records shows a failure, or when the comparison result of the identification number in any one of the records shows success, the communication device is characterized by a normal termination response. And.

The invention according to claim 4 is the electronic information storage medium according to claim 1, wherein the second processing means stores the identification number acquired from the communication device and the memory in response to the request for the identification number. It is characterized in that a comparison process is performed using the identified identification number and a normal termination is returned to the communication device.

The invention according to claim 5 is the electronic information storage medium according to claim 4, wherein the second processing means has the type of the acquired identification number and the type of the identification number stored in the memory. If they match, the comparison process is characterized in that the entire identification number acquired from the communication device is compared with the entire identification number stored in the memory, and the comparison result is stored.

The invention according to claim 6 is the electronic information storage medium according to claim 4, wherein the second processing means has the type of the acquired identification number and the type of the identification number stored in the memory. If they do not match, in the comparison process, a part of the identification number acquired from the communication device is compared with a part of the identification number stored in the memory, and the comparison result is stored. ..

The invention according to claim 7 is the electronic information storage medium according to any one of claims 4 to 6, wherein the respective identification numbers of the plurality of types are stored separately for each record in the memory. The second processing means compares the type of the identification number acquired from the communication device with the type of the identification number stored in the memory for each record, and according to the comparison result of the type. If the comparison process is performed and the comparison result of the identification number in all the records shows a failure, or if the comparison result of the identification number in any one of the records shows success, the communication device is normal. It is characterized by responding to the end.

The invention according to claim 8 is the electronic information storage medium according to any one of claims 1 to 7, wherein the identification number of the first type is IMEI and the identification number of the second type is It is characterized by being an IMEI SV.

The invention according to claim 9 can be connected to a communication device having at least one of a plurality of types of identification numbers, and the communication device uses a wireless communication network via a base station. An information processing method performed by an electronic information storage medium that stores data used for authentication, wherein the identification number of a communication device that is permitted to use the electronic information storage medium is stored in the memory in advance. A step of acquiring type data indicating at least one of the plurality of types of identification numbers of a communication device to which an electronic information storage medium is connected from the communication device, and the type data being the first type. And when the first type matches the type of the identification number stored in the memory, the identification number of the communication device is requested from the communication device, while the first type is stored in the memory. A step of setting the authentication to fail without requesting the identification number of the communication device if it does not match the type of the stored identification number, and the first if the type data indicates a second type. It is characterized by including a step of requesting the identification number of the communication device from the communication device regardless of whether or not the type of 2 matches the type of the identification number stored in the memory.

The invention according to claim 10 can be connected to a communication device having at least one of a plurality of types of identification numbers, and the communication device uses a wireless communication network via a base station. A step of preliminarily storing an identification number of a communication device permitted to use the electronic information storage medium in a computer included in the electronic information storage medium for storing data used for authentication, and the electronic information storage medium. Is the type of the identification number of the connected communication device, and the step of acquiring the type data indicating at least one of the plurality of types from the communication device, and the type data indicating the first type, and When the first type matches the type of the identification number stored in the memory, the identification number of the communication device is requested from the communication device, while the first type is the identification stored in the memory. If it does not match the type of the number, the step of setting the authentication to fail without requesting the identification number of the communication device, and if the type data indicates the second type, the second type is It is characterized in that the step of requesting the identification number of the communication device from the communication device is executed regardless of whether or not it matches the type of the identification number stored in the memory.

According to the present invention, it is possible to shorten the time until authentication with the base station by reducing the number of communications between the electronic information storage medium and the communication device.

It is a figure which shows the outline structure example of the communication system S. It is a figure which shows the functional block example of a communication device 1 and a SIM card 2. It is a figure which shows an example of the data structure of IMEI and IMEISV. It is a figure which shows an example of the license list stored in NVM24. It is a sequence diagram which shows the general flow in the communication from the power-up of the communication device 1 to the completion of the authentication with the base station B. It is a figure which shows the combination for comparing the identification number acquired from the communication device and the identification number stored in the license list, and the processing content in each combination. It is a sequence diagram which shows the operation of the communication system S in Example 1. FIG. It is a sequence diagram which shows the operation of the communication system S in Example 2. FIG. It is a sequence diagram which shows the operation of the communication system S in Example 3. FIG. It is a sequence diagram which shows the operation of the communication system S in Example 4. FIG. It is a sequence diagram which shows the operation of the communication system S in Example 5. FIG.

Hereinafter, embodiments of the present invention will be described in detail with reference to the drawings. The embodiments described below are embodiments when the present invention is applied to a communication system.

[1. Overview of communication system S]
First, with reference to FIG. 1, the outline configuration of the communication system S according to the present embodiment will be described. FIG. 1 is a diagram showing a schematic configuration example of the communication system S. The communication system S includes a communication device 1 and a SIM card 2 (an example of an electronic information storage medium of the present invention) provided by a communication carrier. An example of the communication device 1 is a mobile terminal such as a smartphone, an IoT device, or the like. The SIM card 2 can be detachably mounted on the communication device 1. The communication device 1 and the SIM card 2 are connected to each other via a predetermined interface, and USAT Pairing is executed. With the success of USAT Pairing, the communication device 1 can use the wireless communication network NW after authentication with the base station B in the wireless communication network NW (for example, 3G, 4G, or 5G network). Become.

FIG. 2 is a diagram showing an example of functional blocks of the communication device 1 and the SIM card 2. As shown in FIG. 2, the communication device 1 includes an I / F unit 11, a wireless communication unit 12, a storage unit 13, a control unit 14, and a battery 15 that supplies power to each of these units. The communication device 1 may be provided with an input unit having a button for receiving an input from a user and a display unit having a display (for example, a touch panel) for displaying information. The I / F unit 11 serves as an interface with the SIM card 2. This interface is, for example, the ISO7816 interface.

The wireless communication unit 12 is a communication module for connecting to the wireless communication network NW, and includes a modem that detects a base station B in the area. As a result, the wireless communication unit 12 modulates the data designated by the control unit 14, transmits the radio wave (carrier wave) to the base station B via the antenna, and transmits the radio wave from the base station B to the antenna. Data is taken out and transmitted to the control unit 14 by receiving and demodulating the data via the radio wave.

The storage unit 13 is composed of an HDD (Hard Disk Drive), an SSD (Solid State Drive), an NVM (Nonvolatile Memory), or the like, and stores an OS (Operating System), an application program, and data. Further, the storage unit 13 stores at least one type of identification number (individual number) among the plurality of types of identification numbers of the communication device 1. There are two types of such identification numbers, IMEI and IMEISV, which are also used for USAT Pairing. The IMEI or IMEISV is configured to be output to the SIM card 2 in response to a request from the SIM card 2. The IMEI generally represents a combination of a country code, a business operator number, and an individual number.

FIG. 3 is a diagram showing an example of the data structures of IMEI and IMEISV. As shown in FIG. 3, the IMEI is composed of an 8-digit Type Allocation Code (for example, a manufacturer's unique number), a 6-digit Serial Number, and a 1-digit Spare Digit (or Check Digit). On the other hand, the IMEISV is composed of an 8-digit Type Allocation Code, a 6-digit Serial Number, and a 2-digit Software Version Number. That is, IMEI and IMEISV use a common number (item) up to 14 digits (7 bytes). When the communication device 1 uses both IMEI and IMEISV, the IMEI and IMEISV of the communication device 1 have the same value up to 14 digits (7 bytes).

The control unit 14 is composed of, for example, a CPU (Central Processing Unit), a RAM (Random Access Memory), a ROM (Read Only Memory), and the like. The control unit 14 communicates between the communication device 1 and the SIM card 2 and between the communication device 1 and the server connected to the wireless communication network NW according to the OS and the application program stored in the storage unit 13. Performs various processes in the communication of. Communication between the control unit 14 and the SIM card 2 is performed according to the APDU (Application Protocol Data Unit) protocol defined in ISO7816.

On the other hand, as shown in FIG. 2, the SIM card 2 includes an I / F unit 21, a RAM 22, a ROM 23, an NVM 24, a CPU 25 (an example of a computer), and the like. The I / F unit 21 serves as an interface with the communication device 1 (that is, the control unit 14). The NVM 24 is a non-volatile memory such as a flash memory. The NVM 24 may be an "Electrically Erasable Programmable Read-Only Memory". The OS and application programs (including the program of the present invention) are stored in the ROM 23 or the NVM 24.

Further, the NVM 24 stores authentication data used for authentication for the communication device 1 to use the wireless communication network via the base station B. Such authentication data includes, for example, an encryption key for establishing a secure channel, a MAC (Message Authentication Code) key, and the like. Further, the NVM 24 stores in advance a list of identification numbers of one or a plurality of communication devices (hereinafter referred to as "use permission list") in which the use of the SIM card 2 is permitted. Further, the NVM 24 may store a usage permission list of the value range (for example, from the lower limit value to the upper limit value) of the identification number of the communication device to which the SIM card 2 is permitted to be used. As such a license list, it is preferable that the EF (Elementary File) _{IWL (IMEI (SV) White Lists)} that stores the value range of the identification number and the like in the TLV format is stored in the NVM24. EF _IWL is defined in 3GPPTS 31.102 V14.7.0 and has a record structure.

FIG. 4 is a diagram showing an example of a license list stored in the NVM 24. In the example of FIG. 4, the license list (EF _IWL ) is composed of three records, and each record has a Tag indicating the type of identification number, a Length indicating the data length of the record, and a value range of the identification number. It is composed of the indicated Values. As described above, in the example of FIG. 4, in the license list, two types of identification numbers, IMEI and IMEISV, are stored separately for each record. In FIG. 4, Tag “80” in Records No. 1 and No. 3 indicates the type of IMEI (first type, in other words, an identifier for identifying that the type of identification number is IMEI). The 15th digit is Spare Digit (or Check Digit) for both the upper and lower limits of Value in records No. 1 and No. 3, and the 16th digit is "F", which has no particular meaning. On the other hand, Tag "81" in record No. 2 indicates the type of IMEISV (second type, in other words, an identifier for identifying that the type of identification number is IMEISV). The 15th and 16th digits of both the upper and lower limits of Value in record No. 2 are Software Version Numbers.

The CPU 25 executes various processes in communication between the communication device 1 and the SIM card 2 according to the OS and the application program stored in the ROM 23 or the NVM 24. FIG. 5 is a sequence diagram showing a general flow in communication from the power-up of the communication device 1 to the completion of authentication with the base station B.

In FIG. 5, first, when the power is turned on in the communication device 1, the power is supplied from the communication device 1 to the SIM card 2 (step S1). Next, when the power is supplied, the SIM card 2 (CPU 25) transmits an ATR (Answer To Reset) to the communication device 1 (step S2). Next, when the communication device 1 receives the ATR, it transmits a TERMINAL PROFILE command to the SIM card 2 (step S3). The TERMINAL PROFILE command includes type data indicating the type (identifier) of the identification number that can be output by the communication device 1.

Next, when the SIM card 2 receives the TERMINAL PROFILE command, it acquires type data from the TERMINAL PROFILE command, analyzes whether the communication device 1 can output IMEI or IMEISV from the acquired type data, and obtains IMEI. Create PROVIDE LOCAL INFORMATION indicating the request of either one of IMEISV (step S4). From the specification ETSI TS 102 223 V14.0.0, Chapter 5.3, the meaning of the Data part of the TERMINAL PROFILE command is prepared for each bit. IMEI indicates that output is possible when b7 of the 4th byte is "1" (output is not possible when b7 is "0"). On the other hand, IMEISV indicates that it is possible to output when the bit of the 18th byte b7 is "1". Next, the SIM card 2 transmits a response including the SW (status word) 91XX (step S5). Here, SW 91XX indicates that there is data (PROVIDE LOCAL INFORMATION) having a data length of "XX" in the SIM card 2.

Next, when the communication device 1 receives the response including the SW 91XX, it transmits a FETCH command to the SIM card 2 (step S6). Next, when the SIM card 2 receives the FETCH command, it transmits the PROACTIVE command including the PROVIDE LOCAL INFORMATION created in step S4 to the communication device 1 (step S7). Next, when the communication device 1 receives the PROACTIVE command, it transmits a TERMINAL RESPONSE command including the IMEI or IMEISV of the communication device 1 to the SIM card 2 (step S8).

Next, when the SIM card 2 receives the TERMINAL RESPONSE command, it acquires IMEI or IMEISV from the TERMINAL RESPONSE command, and compares the acquired IMEI or IMEISV with the identification number stored in the license list (EF _IWL ). Then, the comparison result is stored (step S9). For example, if the acquired IMEI or IMEISV is included in the license list (EF _IWL ), the above comparison results indicate success. On the other hand, if the acquired IMEI or IMEISV is not included in the license list (EF _IWL ), the above comparison result indicates failure.

If the communication device 1 can output both IMEI and IMEISV, the SIM card 2 returns to step S4 and shows a request for an identification number (that is, IMEI or IMEISV) that has not been acquired yet. An INFORMATION is created, processing is performed in the same manner as described above, and a response including SW 9000 (normal end) is transmitted to the communication device 1 (step S10).

Then, when the communication device 1 receives the response including the SW 9000, the communication device 1 starts the authentication process for using the wireless communication network NW via the base station B. In such an authentication process, the communication device 1 transmits an AUTHENTICATE command from the base station B to the SIM card 2. Next, when the SIM card 2 receives the AUTHENTICATE command, the SIM card 2 collates the ciphertext included in the AUTHENTICATE command with the ciphertext generated by using the authentication data stored in the NVM 24. Since such an authentication process is known, detailed description thereof will be omitted. Then, the SIM card 2 switches the response value to the AUTHENTICATE command according to the comparison result stored in step S9. The response value is, for example, the SW included in the response.

By the way, in USAT Pairing defined in 3GPP TS 31.102 V14.7.0, it is not necessary to compare and confirm IMEI's Spare Digit (or Check Digit) stored in the license list (EF _IWL ). In other words, it is sufficient to compare common numbers up to 14 digits. Therefore, when the IME ISV is obtained from the communication device, it is possible to compare both the IMEI and the IME ISV stored in the license list (EF _IWL ). On the other hand, the IMEI obtained from the communication device cannot be compared with the IME ISV stored in the license list (EF _IWL ).

FIG. 6 is a diagram showing a combination for comparing the identification number acquired from the communication device and the identification number stored in the license list, and the processing content in each combination. As shown in FIG. 6, the processing content of the combination of the IMEI acquired from the communication device and the IME ISV stored in the license list (EF _IWL ) is set to "set so that authentication fails". .. On the other hand, the processing content of the combination of the IME ISV acquired from the communication device and the IMEI stored in the license list (EF _IWL ) is "comparing the common number (up to 14 digits) between the IME ISV and IMEI" (that is,). , Adjust the length to compare).

In the present embodiment, in consideration of the contents shown in FIG. 6, in order to improve the processing contents in the communication from the power-up of the communication device 1 to the completion of the authentication with the base station B, the CPU 25 is the present invention. It functions as an acquisition means, a first processing means, a second processing means, and the like. Specifically, the type data acquired from the TERMINAL PROFILE command from the communication device 1 indicates the IMEI type "4th byte b7 = 1", and the type "80" is the type of the identification number stored in the NVM24. If they match, the CPU 25 (first processing means) requests the communication device 1 for the IMEI of the communication device 1. Here, the type of the identification number stored in the NVM 24 is, for example, a Tag in at least one record of the license list (EF _IWL ). Further, the IMEI request of the communication device 1 is performed, for example, by transmitting the PROVIDE LOCAL INFORMATION indicating the IMEI request to the communication device 1.

Then, the CPU 25 (first processing means) performs comparison processing using the IMEI acquired from the communication device 1 in response to the request of the IMEI and the IMEI stored in the NVM 24, and terminates normally to the communication device 1. respond. For example, a response including SW 9000 is transmitted to the communication device 1. Here, in the above comparison process, for example, a part of the acquired IMEI (up to 14 digits) and a part of the IMEI stored in the NVM 24 (up to 14 digits) are compared, and the comparison result (success or failure) is compared. Show) is memorized.

On the other hand, the type data acquired from the TERMINAL PROFILE command from the communication device 1 indicates the IMEI type "4th byte b7 = 1", and the type is the type of the identification number stored in the NVM24 (for example, the permission list (for example). If it does not match the Tag) in all the records of EF _IWL ), the CPU 25 (first processing means) is set so that the above authentication fails without requesting the identification number of the communication device 1. That is, it is set so that the subsequent authentication with the base station B fails. For example, the authentication failure flag is set from "0" to "1". As a result, the number of times of communication between the communication device 1 and the SIM card 2 can be reduced as compared with the conventional case.

On the other hand, when the type data acquired from the TERMINAL PROFILE command from the communication device 1 indicates the IMEISV type "4th byte b7 = 1", the CPU 25 (second processing means) has an identification number in which the type is stored in the NVM24. The IMEISV of the communication device 1 is requested from the communication device 1 regardless of whether or not it matches the type. For example, PROVIDE LOCAL INFORMATION indicating the IMEISV request is transmitted to the communication device 1. As a result, it is possible to reduce the load on the matching determination of the types of identification numbers. If both IMEI and IMEISV are not stored in the NVM 24, the authentication is set to fail without requesting the identification number of the communication device 1.

Then, the CPU 25 (second processing means) performs comparison processing using the IMEISV acquired from the communication device 1 in response to the request of the IMEISV and the identification number stored in the NVM 24, and normally terminates to the communication device 1. Respond. For example, a response including SW 9000 is transmitted to the communication device 1. Here, when the type of the IMEISV acquired from the communication device 1 and the type of the identification number stored in the NVM 24 match (that is, when the IMEISV is stored in the NVM 24), in the above comparison process, for example, The entire IMEISV acquired from the communication device 1 and the entire IMEISV stored in the NVM 24 are compared, and the comparison result is stored. For example, if the whole IMEISV and the whole IMEISV stored in the NVM24 do not match, the comparison result indicating the failure is stored.

On the other hand, when the type of IMEISV acquired from the communication device 1 and the type of the identification number stored in the NVM 24 do not match (that is, when the IMEI is stored in the NVM 24), in the above comparison process, for example, communication A part of the IMEISV acquired from the device 1 (common number body up to 14 digits) and a part of the IMEI stored in the NVM 24 (common number body up to 14 digits) are compared, and the comparison result is stored. To. For example, if a part of the IMEISV and a part of the IMEI stored in the NVM24 do not match, the comparison result indicating the failure is stored.

[2. Operation of communication system S]
Next, the operation of the communication system S will be described separately in Examples 1 to 5.

(Example 1)
First, the operation of the communication system S in the first embodiment will be described with reference to FIG. 7. FIG. 7 is a sequence diagram showing the operation of the communication system S in the first embodiment. In addition, Example 1 is an Example in which the communication device 1 can output both IMEI and IMEISV, and the above-mentioned comparison result shows success. Further, in the first embodiment, it is assumed that the license list (EF _IWL ) shown in FIG. 4 is stored in the NVM 24 of the SIM card 2.

In FIG. 7, when power is supplied to the communication device 1 while the communication device 1 and the SIM card 2 are connected, or when the reset button or the like provided on the communication device 1 is pressed, the communication device 1 is subjected to. , A start command (reset command) is transmitted to the SIM card 2 (step S21). Next, when the SIM card 2 receives the activation command (reset command), it transmits the ATR to the communication device 1 (step S22). Next, when the communication device 1 receives the ATR, it transmits a TERMINAL PROFILE command to the SIM card 2 (step S23). The Data part of the TERMINAL PROFILE command indicates the IMEI type "4th byte b7 = 1" and the IMEISV type "18byte b7 = 1" as the type of identification number that can be output by the communication device 1. Contains type data.

Next, when the SIM card 2 receives the TERMINAL PROFILE command, it acquires type data from the TERMINAL PROFILE command and analyzes the outputable identification number of the communication device 1 from the acquired type data. As described above, the SIM card 2 is shown in FIG. 7 because the IMEI type “4th byte b7 = 1” and the IMEISV type “18th byte b7 = 1” are shown in the type data. As shown in the reference numeral 51 part (example) of No. 51, a PROVIDE LOCAL INFORMATION indicating the request of IMEISV is created (step S24). That is, in this case, the SIM card 2 does not need to create a PROVIDE LOCAL INFORMATION indicating the IMEI request. As a result, the number of times of communication between the communication device 1 and the SIM card 2 can be reduced as compared with the conventional case.

Next, the SIM card 2 transmits a response including SW 910B (step S25). Next, when the communication device 1 receives the response including the SW 910B, the communication device 1 transmits a FETCH command to the SIM card 2 (step S26). Next, when the SIM card 2 receives the FETCH command, it transmits a response (PROACTIVE command) including the PROVIDE LOCAL INFORMATION and SW 9000 created in step S24 to the communication device 1 (step S27). Next, when the communication device 1 receives the PROACTIVE command, it transmits a TERMINAL RESPONSE command including the IMEISV “1122334455664501” of the communication device 1 to the SIM card 2 as shown in reference numeral 52 (example) of FIG. 7 (step S28). ).

Next, when the SIM card 2 receives the TERMINAL RESPONSE command, it acquires the IMEISV "1122334455664501" from the TERMINAL RESPONSE command, and the type of the acquired IMEISV "1122334455664501" and the record No. 1 of the license list (EF _IWL ). Compare with Tag “80” in, and perform comparison processing using the acquired IMEISV “1122334455664501” and Value in record No. 1 of the license list (EF _IWL ) according to the comparison result (step S29). ). Since the types of identification numbers do not match in record No. 1, in the SIM card 2, a part of the IMEISV "1122334455664501"("11223344556645" up to 14 digits) is a record in the license list (EF _IWL ) in the above comparison process. It is determined whether or not it is included in the range from a part of the lower limit value (“11223344556600” up to 14 digits) to a part of the upper limit value (“11223344556610” up to 14 digits) in No.1. That is, it is determined whether or not "11223344556645" matches a part of the identification number in the range. In this case, the IME ISV "11223344556645" is not included in the range of a part of the lower limit value to a part of the upper limit value in the record No. 1 of the license list (EF _IWL ), so the comparison result indicating the failure is stored.

If the comparison result of the identification number in the record No. 1 shows a failure, the process is moved to the next record, and the SIM card 2 is transferred to the above-acquired IME ISV "1122334455664501" type and the record No. of the license list (EF _IWL ). Compare with Tag "81" in 2, and perform comparison processing using the acquired IMEISV "1122334455664501" and Value in record No. 2 of the license list (EF _IWL ) according to the comparison result (step). S29). Since the types of identification numbers match in record No. 2, the SIM card 2 has the lower limit value "1122334455662001" in record No. 2 of the license list (EF _IWL ) for the entire IME ISV "1122334455664501" in the above comparison process. Judge whether it is included in the range of the upper limit value "1122334455663010". In this case, the IME ISV "1122334455664501" is not included in the range of the lower limit to the upper limit in record No. 2 of the license list (EF _IWL ), so the comparison result indicating the failure is stored. Also here, the comparison result indicating the failure does not have to be stored (because the comparison result indicating the failure is stored first), and the comparison result stored earlier (that is, the comparison result indicating the failure). May be overwritten with.

If the comparison result of the identification number in record No. 2 shows a failure, it is moved to the next record, and the SIM card 2 is transferred to the above-acquired IME ISV "1122334455664501" type and the record No. of the license list (EF _IWL ). Compare with Tag "80" in 3, and perform comparison processing using the acquired IMEISV "1122334455664501" and Value in record No. 3 of the license list (EF _IWL ) according to the comparison result (step). S29). Since the types of identification numbers do not match in record No. 3, in the SIM card 2, a part of the IMEISV "1122334455664501"("11223344556645" up to 14 digits) is a record in the license list (EF _IWL ) in the above comparison process. It is determined whether or not it is included in the range from a part of the lower limit value (“11223344556640” up to 14 digits) to a part of the upper limit value (“11223344556650” up to 14 digits) in No.3. In this case, the IME ISV “11223344556645” is included in the range from a part of the lower limit to a part of the upper limit in record No. 3 of the license list (EF _IWL ), so the comparison result indicating success is stored. The comparison result indicating success may be overwritten with the previously stored comparison result (that is, the comparison result indicating failure), or the previously stored comparison result is the memory following the stored memory address. It may be stored in the address.

When the comparison process for the last record No. 3 is completed, the SIM card 2 transmits a response including SW 9000 to the communication device 1 (step S30). In the above example, the case where the comparison result in record No. 1 and No. 2 shows a failure has been described, but when the comparison result in record No. 1 shows success, the comparison process for record No. 2 is executed. The response including SW 9000 is transmitted to the communication device 1 without being performed. Further, as described in the third embodiment described later, when the comparison result in the record No. 2 shows success, the comparison process for the record No. 3 is not executed, and the response including the SW 9000 is the communication device 1. Will be sent to. On the other hand, even when the comparison result of the identification number in the record No. 3 indicates a failure, the response including the SW 9000 is transmitted to the communication device 1. That is, if the comparison result of the identification number in all the records shows a failure, or if the comparison result of the identification number in any one record shows a success, the response including SW 9000 is transmitted to the communication device 1.

Next, when the communication device 1 receives the response including the SW 9000, the communication device 1 starts the authentication process for using the wireless communication network NW via the base station B, and SIMs the AUTHENTICATE command from the base station B. It is transmitted to the card 2 (step S31). Next, when the SIM card 2 receives the AUTHENTICATE command, it collates the ciphertext included in the AUTHENTICATE command with the ciphertext generated using the authentication data stored in the NVM 24, and when both match. Temporarily determines that the authentication is successful, but if the comparison result of the identification number is stored as described above, the response value to the AUTHENTICATE command is switched according to the latest comparison result. That is, in the first embodiment, since the comparison result indicating success in the comparison process in step S29 is stored, a response including DATA + SW 9000 (normal end) is finally transmitted to the communication device 1 as the authentication success (normal end). Step S32). In the above authentication process, if the ciphertexts do not match each other, a response including SW 6300 (verification mismatch) may be transmitted to the communication device 1 as an authentication failure.

(Example 2)
Next, the operation of the communication system S in the second embodiment will be described with reference to FIG. FIG. 8 is a sequence diagram showing the operation of the communication system S in the second embodiment. Note 2 is an example in which the communication device 1 can output both IMEI and IMEISV, and the above-mentioned comparison result indicates a failure. Further, in the second embodiment, it is assumed that the license list (EF _IWL ) shown in FIG. 4 is stored in the NVM 24 of the SIM card 2.

The processing of steps S41 to S47 shown in FIG. 8 in Example 2 is the same as the processing of steps S21 to S27 shown in FIG. 7 in Example 1. Upon receiving the PROACTIVE command, the communication device 1 transmits a TERMINAL RESPONSE command including the IMEISV “1122334455665101” of the communication device 1 to the SIM card 2 as shown in reference numeral 53 (example) in FIG. 8 (step S48).

Next, when the SIM card 2 receives the TERMINAL RESPONSE command, it acquires the IMEISV "1122334455665101" from the TERMINAL RESPONSE command, and the type of the acquired IMEISV "1122334455665101" and the record No. 1 of the license list (EF _IWL ). Compare with Tag "80" in, and perform comparison processing using the acquired IMEISV "1122334455665101" and Value in record No. 1 of the license list (EF _IWL ) according to the comparison result (step S49). ). Since the types of identification numbers do not match in record No. 1, in the SIM card 2, a part of the IMEISV "1122334455665101"("11223344556651" up to 14 digits) is a record in the license list (EF _IWL ) in the above comparison process. It is determined whether or not it is included in the range from a part of the lower limit value (“11223344556600” up to 14 digits) to a part of the upper limit value (“11223344556610” up to 14 digits) in No.1. In this case, the IME ISV "11223344556651" is not included in the range from a part of the lower limit value to a part of the upper limit value in the record No. 1 of the license list (EF _IWL ), so the comparison result indicating the failure is stored.

If the comparison result of the identification number in record No. 1 shows a failure, it is moved to the next record, and the SIM card 2 is transferred to the above-acquired IME ISV "1122334455665101" type and the record No. of the license list (EF _IWL ). Compare with Tag "81" in 2, and perform comparison processing using the acquired IMEISV "1122334455665101" and Value in record No. 2 of the license list (EF _IWL ) according to the comparison result (step). S49). Since the types of identification numbers match in record No. 2, the SIM card 2 has the lower limit value "1122334455662001" in record No. 2 of the license list (EF _IWL ) for the entire IME ISV "1122334455665101" in the above comparison process. Judge whether it is included in the range of the upper limit value "1122334455663010". In this case, the IME ISV “1122334455665101” is not included in the range of the lower limit to the upper limit in record No. 2 of the license list (EF _IWL ), so the comparison result indicating the failure is stored.

If the comparison result of the identification number in record No. 2 shows a failure, it is moved to the next record, and the SIM card 2 is transferred to the above-acquired IME ISV "1122334455665101" type and the record No. of the license list (EF _IWL ). Compare with Tag "80" in 3, and perform comparison processing using the acquired IMEISV "1122334455665101" and Value in record No. 3 of the license list (EF _IWL ) according to the comparison result (step). S49). Since the types of identification numbers do not match in record No. 3, in the SIM card 2, a part of the IMEISV "1122334455665101"("11223344556651" up to 14 digits) is a record in the license list (EF _IWL ) in the above comparison process. It is determined whether or not it is included in the range from a part of the lower limit value (“11223344556640” up to 14 digits) to a part of the upper limit value (“11223344556650” up to 14 digits) in No.3. In this case, the IME ISV “11223344556651” is not included in the range from a part of the lower limit to a part of the upper limit in record No. 3 of the license list (EF _IWL ), so the comparison result indicating the failure is stored.

When the comparison process for the last record No. 3 is completed, the SIM card 2 transmits a response including SW 9000 to the communication device 1 (step S50). That is, even when the comparison result of the identification number in all the records indicates a failure, the response including SW 9000 is transmitted to the communication device 1.

Next, when the communication device 1 receives the response including the SW 9000, the communication device 1 starts the authentication process for using the wireless communication network NW via the base station B, and SIMs the AUTHENTICATE command from the base station B. It is transmitted to the card 2 (step S51). Next, when the SIM card 2 receives the AUTHENTICATE command, it collates the ciphertext included in the AUTHENTICATE command with the ciphertext generated using the authentication data stored in the NVM 24, and when both match. Temporarily determines that the authentication is successful, but if the comparison result of the identification number is stored as described above, the response value to the AUTHENTICATE command is switched according to the latest comparison result. That is, in the second embodiment, since the comparison result indicating the failure in the comparison process in step S49 is stored, a response including DATA + SW 6985 (error) is finally transmitted to the communication device 1 as an authentication failure (step). S52). If the ciphertexts do not match each other in the authentication process, a response including SW 6300 (verification mismatch) may be transmitted to the communication device 1 as an authentication failure regardless of the comparison result.

(Example 3)
Next, the operation of the communication system S in the third embodiment will be described with reference to FIG. FIG. 9 is a sequence diagram showing the operation of the communication system S in the third embodiment. Note that Example 3 is an example in which the communication device 1 can output only the IMEISV, and the above-mentioned comparison result shows success. Further, in the third embodiment, it is assumed that the license list (EF _IWL ) shown in FIG. 4 is stored in the NVM 24 of the SIM card 2.

The processing of steps S61 to S62 shown in FIG. 9 in Example 3 is the same as the processing of steps S21 to S22 shown in FIG. 7 in Example 1. Upon receiving the ATR, the communication device 1 transmits a TERMINAL PROFILE command to the SIM card 2 (step S63). The TERMINAL PROFILE command includes type data indicating only the IMEISV type “18th byte b7 = 1” as the type of identification number that can be output by the communication device 1.

Next, when the SIM card 2 receives the TERMINAL PROFILE command, it acquires type data from the TERMINAL PROFILE command and analyzes the outputable identification number of the communication device 1 from the acquired type data. As described above, since the IMEISV type “18th byte b7 = 1” is indicated in the type data, the SIM card 2 creates a PROVIDE LOCAL INFORMATION indicating the IMEISV request (step S64).

Next, the SIM card 2 transmits a response including SW 910B (step S65). Next, when the communication device 1 receives the response including the SW 910B, the communication device 1 transmits a FETCH command to the SIM card 2 (step S66). Next, when the SIM card 2 receives the FETCH command, it transmits a response (PROACTIVE command) including the PROVIDE LOCAL INFORMATION and SW 9000 created in step S64 to the communication device 1 (step S67). Next, as shown in reference numeral 54 (example) of FIG. 9, the communication device 1 transmits a TERMINAL RESPONSE command including the IMEISV “1122334455662307” of the communication device 1 to the SIM card 2 (step S68).

Next, when the SIM card 2 receives the TERMINAL RESPONSE command, it acquires the IMEISV "1122334455662307" from the TERMINAL RESPONSE command, and the type of the acquired IMEISV "1122334455662307" and the record No. 1 of the license list (EF _IWL ). Compare with Tag "80" in, and perform comparison processing using the acquired IMEISV "1122334455662307" and Value in record No. 1 of the license list (EF _IWL ) according to the comparison result (step S69). ). Since the types of identification numbers do not match in record No. 1, in the SIM card 2, a part of the IMEISV "1122334455662307"("11223344556623" up to 14 digits) is a record in the license list (EF _IWL ) in the above comparison process. It is determined whether or not it is included in the range from a part of the lower limit value (“11223344556600” up to 14 digits) to a part of the upper limit value (“11223344556610” up to 14 digits) in No.1. In this case, the IME ISV “11223344556623” is not included in the range from a part of the lower limit value to a part of the upper limit value in the record No. 1 of the license list (EF _IWL ), so the comparison result indicating the failure is stored.

If the comparison result of the identification number in record No. 1 shows a failure, it is moved to the next record, and the SIM card 2 is transferred to the above-acquired IME ISV "1122334455662307" type and the record No. of the license list (EF _IWL ). Compare with Tag "81" in 2, and perform comparison processing using the acquired IMEISV "1122334455662307" and Value in record No. 2 of the license list (EF _IWL ) according to the comparison result (step). S69). Since the types of identification numbers match in record No. 2, the SIM card 2 has the lower limit value "1122334455662001" in record No. 2 of the license list (EF _IWL ) for the entire IME ISV "1122334455662307" in the above comparison process. Judge whether it is included in the range of the upper limit value "1122334455663010". In this case, the IME ISV “1122334455662307” is included in the range from the lower limit to the upper limit in record No. 2 of the license list (EF _IWL ), so the comparison result indicating success is stored.

If the comparison result of the identification number in the record No. 2 shows success, the SIM card 2 transmits the response including the SW 9000 to the communication device 1 without executing the comparison process for the record No. 3 (step). S70). The processing of steps S71 to S72 shown in FIG. 9 in Example 3 is the same as the processing of steps S31 to S32 shown in FIG. 7 in Example 1.

(Example 4)
Next, the operation of the communication system S in the fourth embodiment will be described with reference to FIG. FIG. 10 is a sequence diagram showing the operation of the communication system S in the fourth embodiment. Note that Example 4 is an example in which the communication device 1 can output only the IMEI, and the above-mentioned comparison result indicates a failure. Further, in the fourth embodiment, it is assumed that the license list (EF _IWL ) shown in FIG. 4 is stored in the NVM 24 of the SIM card 2.

The processing of steps S81 to S82 shown in FIG. 10 in Example 4 is the same as the processing of steps S21 to S22 shown in FIG. 7 in Example 1. Upon receiving the ATR, the communication device 1 transmits a TERMINAL PROFILE command to the SIM card 2 (step S83). The TERMINAL PROFILE command includes type data indicating only the IMEI type “4th byte b7 = 1” as the type of identification number that can be output by the communication device 1.

Next, when the SIM card 2 receives the TERMINAL PROFILE command, it acquires type data from the TERMINAL PROFILE command and analyzes the outputable identification number of the communication device 1 from the acquired type data. As described above, the IMEI type "4th byte b7 = 1" is shown in the type data, which is the Tag "80" in the records No. 1 and No. 3 of the license list (EF _IWL ). Therefore, the SIM card 2 creates a PROVIDE LOCAL INFORMATION indicating the IMEI request (step S84), as shown in reference numeral 55 (example) of FIG.

The SIM card 2 then transmits a response including SW 910B (step S85). Next, when the communication device 1 receives the response including the SW 910B, the communication device 1 transmits a FETCH command to the SIM card 2 (step S86). Next, when the SIM card 2 receives the FETCH command, it transmits a response (PROACTIVE command) including the PROVIDE LOCAL INFORMATION and SW 9000 created in step S84 to the communication device 1 (step S87). Next, the communication device 1 transmits a TERMINAL RESPONSE command including the IMEI “112233445566211F” of the communication device 1 to the SIM card 2 as shown in the reference numeral 56 part (example) of FIG. 10 (step S88).

Next, when the SIM card 2 receives the TERMINAL RESPONSE command, it acquires IMEI "112233445566211F" from the TERMINAL RESPONSE command, and the type of the acquired IMEI "112233445566211F" and the record No. 1 of the license list (EF _IWL ). Compare with Tag "80" in, and perform comparison processing using the acquired IMEI "112233445566211F" and Value in record No. 1 of the license list (EF _IWL ) according to the comparison result (step S89). ). Although the types of identification numbers match in record No. 1, the IMEI Spare Digit (or Check Digit) does not need to be compared and confirmed as described above, so the SIM card 2 is the IMEI “112233445566211F” in the above comparison process. Part of (“11223344556621” up to 14digit) is part of the lower limit (“11223344556600” up to 14digit) in record No. 1 of the license list (EF _IWL ) to part of the upper limit (“11223344556610” up to 14digit) It is determined whether or not it is included in the range of "). In this case, IMEI "11223344556621" is not included in the range of a part of the lower limit value to a part of the upper limit value in the record No. 1 of the license list (EF _IWL ), so the comparison result indicating the failure is stored.

If the comparison result of the identification number in record No. 1 shows a failure, it is moved to the next record, and the SIM card 2 is transferred to the IMEI "112233445566211F" type acquired above and the record No. of the license list (EF _IWL ). The tag “81” in 2 is compared, but since the types of identification numbers do not match in record No. 2, the identification number comparison process is not performed and the next record is moved to. Since the records are skipped in this way, the load related to the identification number comparison process can be reduced.

Then, the SIM card 2 compares the type of IMEI "112233445566211F" acquired above with Tag "80" in record No. 3 of the license list (EF _IWL ), and acquires the SIM card 2 according to the comparison result. A comparison process is performed using IMEI “112233445566211F” and Value in record No. 3 of the license list (EF _IWL ) (step S89). Although the types of identification numbers match in record No. 3, the IMEI Spare Digit (or Check Digit) does not need to be compared and confirmed as described above, so the SIM card 2 is the IMEI “112233445566211F” in the above comparison process. Part of (“11223344556621” up to 14digit) is part of the lower limit (“11223344556640” up to 14digit) to part of the upper limit (“11223344556650” up to 14digit) in record No. 3 of the license list (EF _IWL ). It is determined whether or not it is included in the range of "). In this case, IMEI "11223344556621" is not included in the range of a part of the lower limit value to a part of the upper limit value in the record No. 3 of the license list (EF _IWL ), so the comparison result indicating the failure is stored.

When the comparison process for the last record No. 3 is completed, the SIM card 2 transmits a response including SW 9000 to the communication device 1 (step S90). The processing of steps S91 to S92 shown in FIG. 10 in Example 4 is the same as the processing of steps S51 to S52 shown in FIG. 8 in Example 2.

(Example 5)
Next, the operation of the communication system S in the fifth embodiment will be described with reference to FIG. FIG. 11 is a sequence diagram showing the operation of the communication system S in the fifth embodiment. Note 5 is an example in which the communication device 1 can output only the IMEI and the identification number comparison process is not performed. Further, in the fifth embodiment, the NVM24 of the SIM card 2 stores only the record No. 2 among the records No. 1 to the record No. 3 of the license list (EF _IWL ) shown in FIG. And.

The processing of steps S101 to S103 shown in FIG. 11 in Example 5 is the same as the processing of steps S21 to S23 shown in FIG. 7 in Example 1. When the SIM card 2 receives the TERMINAL PROFILE command, it acquires type data from the TERMINAL PROFILE command and analyzes the outputable identification number of the communication device 1 from the acquired type data. Similar to Example 4, the type data shows the IMEI type “4th byte b7 = 1”, which matches Tag “81” in record No. 2 of the license list (EF _IWL ). Therefore, the SIM card 2 is set so that the above authentication fails without creating the PROVIDE LOCAL INFORMATION (that is, without requesting the identification number of the communication device 1) (for example, the authentication failure flag is set to "0"). To "1"), and the response including SW 9000 is transmitted to the communication device 1 (step S104).

Next, when the communication device 1 receives the response including the SW 9000, the communication device 1 starts the authentication process for using the wireless communication network NW via the base station B, and SIMs the AUTHENTICATE command from the base station B. It is transmitted to the card 2 (step S105). Next, when the SIM card 2 receives the AUTHENTICATE command, it collates the encrypted text included in the AUTHENTICATE command with the encrypted text generated by using the authentication data stored in the NVM 24, and when both match. Temporarily determines that the authentication was successful, but since the authentication failure flag is set to "1", the response including DATA + SW 6985 (error) is finally transmitted to the communication device 1 as the authentication failure (step S106). ).

As described above, according to the above embodiment, if the communication device 1 can output both IMEI and IMEISV, the SIM card 2 may request only the IMEISV from the communication device 1 (IMEI's). (Reduces communication related to requests), and if communication device 1 can output only IMEI and only IMEISV is stored in the license list, the above authentication can be performed without requesting IMEI to communication device 1. Since it is configured to fail, the number of communications between the SIM card 2 and the communication device 1 can be reduced, and the time from the power-up of the communication device 1 to the authentication with the base station B is shortened. can do.

According to the above embodiment, the case where the identification number of the first type is IMEI and the identification number of the second type is IMEISV has been described, but as in the relationship between IMEI and IMEISV, the number The present invention can be applied in the same manner as in the above embodiment as long as a plurality of types of identification numbers having a common number body and the same number body are used. Further, even if the SIM card 2 is not used as in the above embodiment, the present invention can be applied as long as it is an electronic information storage medium that can be connected to a communication device.

1 Communication device 2 SIM card 11 I / F unit 12 Wireless communication unit 13 Storage unit 14 Control unit 15 Battery 21 I / F unit 22 RAM
23 ROM
24 NVM
25 CPU
NW wireless communication network B base station S communication system

Claims (10)

It is possible to connect to a communication device having at least one type of identification number among a plurality of types of identification numbers, and store data used for authentication for the communication device to use a wireless communication network via a base station. It is an electronic information storage medium that
A memory that stores in advance the identification number of a communication device that is permitted to use the electronic information storage medium, and
An acquisition means for acquiring type data indicating at least one of the plurality of types of the identification number of the communication device to which the electronic information storage medium is connected from the communication device.
When the type data acquired by the acquisition means indicates the first type and the first type matches the type of the identification number stored in the memory, the identification number of the communication device is used as the identification number of the communication device. On the other hand, if the first type does not match the type of the identification number stored in the memory, the first process of setting the authentication to fail without requesting the identification number of the communication device. Means and
When the type data acquired by the acquisition means indicates a second type, the identification number of the communication device is not limited to whether or not the second type matches the type of the identification number stored in the memory. The second processing means for requesting the communication device, and
An electronic information storage medium characterized by comprising. The first processing means performs comparison processing using the identification number acquired from the communication device and the identification number stored in the memory in response to the request for the identification number, and responds to the communication device with normal termination. The electronic information storage medium according to claim 1, wherein the electronic information storage medium is characterized by the above. In the memory, each of the plurality of types of identification numbers is stored separately for each record.
The first processing means compares the type of the identification number acquired from the communication device with the type of the identification number stored in the memory for each record, and the comparison is made according to the comparison result of the type. When processing is performed and the comparison result of the identification number in all the records shows a failure, or when the comparison result of the identification number in any one of the records shows success, a normal termination is returned to the communication device. The electronic information storage medium according to claim 2, wherein the electronic information storage medium is characterized by the above. The second processing means performs comparison processing using the identification number acquired from the communication device and the identification number stored in the memory in response to the request for the identification number, and responds to the communication device with normal termination. The electronic information storage medium according to claim 1, wherein the electronic information storage medium is characterized by the above. When the type of the acquired identification number and the type of the identification number stored in the memory match, the second processing means includes the entire identification number acquired from the communication device in the comparison process. The electronic information storage medium according to claim 4, wherein the entire identification number stored in the memory is compared and the comparison result is stored. When the type of the acquired identification number and the type of the identification number stored in the memory do not match, the second processing means is a part of the identification number acquired from the communication device in the comparison process. The electronic information storage medium according to claim 4, wherein the electronic information storage medium is compared with a part of the identification number stored in the memory, and the comparison result is stored. In the memory, each of the plurality of types of identification numbers is stored separately for each record.
The second processing means compares the type of the identification number acquired from the communication device with the type of the identification number stored in the memory for each record, and the comparison is made according to the comparison result of the type. When processing is performed and the comparison result of the identification number in all the records shows a failure, or when the comparison result of the identification number in any one of the records shows success, a normal termination is returned to the communication device. The electronic information storage medium according to any one of claims 4 to 6, wherein the electronic information storage medium is characterized by the above. The electronic information storage medium according to any one of claims 1 to 7, wherein the identification number of the first type is IMEI, and the identification number of the second type is IMEISV. It is possible to connect to a communication device having at least one type of identification number among a plurality of types of identification numbers, and store data used for authentication for the communication device to use a wireless communication network via a base station. It is an information processing method performed by an electronic information storage medium.
A step of preliminarily storing an identification number of a communication device permitted to use the electronic information storage medium in a memory, and
A step of acquiring type data indicating at least one of the plurality of types of the identification number of the communication device to which the electronic information storage medium is connected from the communication device.
When the type data indicates a first type and the first type matches the type of the identification number stored in the memory, the communication device is requested to have the identification number of the communication device, while the communication device is requested. If the first type does not match the type of the identification number stored in the memory, the step of setting the authentication to fail without requesting the identification number of the communication device, and
When the type data indicates a second type, the communication device is requested to have the identification number of the communication device regardless of whether or not the second type matches the type of the identification number stored in the memory. Steps to do and
An information processing method characterized by including. It is possible to connect to a communication device having at least one of a plurality of types of identification numbers, and store data used for authentication for the communication device to use a wireless communication network via a base station. To the computer included in the electronic information storage medium
A step of preliminarily storing an identification number of a communication device permitted to use the electronic information storage medium in a memory, and
A step of acquiring type data indicating at least one of the plurality of types of the identification number of the communication device to which the electronic information storage medium is connected from the communication device.
When the type data indicates a first type and the first type matches the type of the identification number stored in the memory, the communication device is requested to have the identification number of the communication device, while the communication device is requested. If the first type does not match the type of the identification number stored in the memory, the step of setting the authentication to fail without requesting the identification number of the communication device, and
When the type data indicates a second type, the communication device is requested to have the identification number of the communication device regardless of whether or not the second type matches the type of the identification number stored in the memory. Steps to do and
A program characterized by executing.

Images