KR100627835B1 - Method and system for controlling swsl to execute application in wireless internet - Google Patents

Abstract

A method and a system for controlling an SWSL executing application during a wireless Internet service are provided to dynamically add a new algorithm to the SWSL and dynamically update the algorithm which is newly added to the SWSL, thereby realizing data security and communication security by adding a security function at a WIPI platform and providing an integrated security interface and an API(Application Program Interface) necessary for security management. A system(200) for controlling an SWSL(SKT WIPI(Wireless Internet Platform for Interoperability) Security Library)(250) executing application during a wireless Internet service comprises the followings: an RAN(Radio Access Network); a mobile radio communication network; a web server(210) which is interworked with the SWSL(250) and generates a WML(Wireless Markup Language) page, requiring security, before storing the generated WML page; a download server(220) which is interworked with the SWSL(250) and provides a mobile communication terminal with various contents necessary for the wireless Internet service; and a WAM(WIPI Application Manager)(240) which controls installation and management of the WIPI-based application.

Description

Method and System for Controlling SWSL to Execute Application in Wireless Internet for Running Applications in the Process of Using Wireless Internet Services

1 is a view conceptually illustrating a wireless Internet standard platform of a mobile communication terminal;

2 is a diagram illustrating a control system of SWSL for executing an application in a process of using a wireless Internet service according to an embodiment of the present invention;

3 is a diagram illustrating a control method of SWSL for executing an application in a process of using a wireless Internet service according to an embodiment of the present invention.

<Description of Symbols for Main Parts of Drawings>

110: application program 120: basic API

130: WIPI 140: HAL

150: terminal basic software 160: handset hardware

200: SWSL control system 210: web server

220: download server 230: NGB

240: WAM 250: Application Library

260: SWSL 270: Plug-in Algorithm Library

The present invention relates to a control method and system of SWSL for executing an application in the process of using a wireless Internet service. More specifically, new algorithms are dynamically added to the Sktelecom WIPI Security Library (SWSL), which is a security library installed in mobile communication terminals in a wireless Internet environment, and dynamically updated for the newly added algorithms in SWSL, thereby providing security functions in the WIPI platform. To implement data security and communication security, and to control the SWSL to execute applications in the process of using the wireless Internet service that provides the integrated security interface and API (Application Program Interface, hereinafter called 'API') required for security management. It's about the system.

As the number of mobile phone subscribers exploded, interest in the wireless Internet is increasing. As the number of mobile phone subscribers is four times higher than the number of PCs, wireless communication is in line with the user's desire to access the Internet from the mobile communication terminal and the intention of the service provider to form a new market using the mobile communication terminal. The Internet market has spread rapidly.

Wireless Internet (Mobile Internet or Wireless Internet) can be defined as using data communication or Internet service by accessing the Internet using mobile terminal and wireless data communication network. Unlike wired internet, it is a wireless connection method that does not require cabling. At the same time, they have two meanings: they can be moved and used instead of being fixed in one place.

In addition, the wireless Internet can be defined by two meanings, consultation and broad, which is a traditional wireless Internet based on a mobile terminal. Broad wireless refers to a laptop as well as a mobile terminal based wireless internet. Broadband wireless communication technologies, such as public wireless LAN service or portable Internet service, which can be connected to a mobile computing terminal such as / PDA, are widely included.

Unlike the wired Internet, which is restricted from moving to places, wireless Internet can be used anytime and anywhere, so it is easy to obtain information quickly. And since the user of the mobile communication terminal is clearly defined, it is possible to provide differentiated services to individuals, and high value-added services such as geographic information service, location-based service, navigation, target advertisement and marketing by using the user's current location information. It can be provided. In addition, the wired Internet keeps sessions connected to the Internet only while it is in use, so most of the full-service services require the information they need at the time they need it, whereas the wireless Internet keeps users on standby. Push type services can be easily provided.

WIPI (Wireless Internet Platform for Interoperability, hereinafter referred to as `` WIPI '') stands for Wireless Internet Platform Standard Specification, and its development began in July 2001 with the need for standardization of the wireless Internet market. Specifications have been made. The WIPI has attracted a great deal of attention from the international community, and the development of WIPI-related platforms internally for international standardization is carried out by three mobile operators.

The birth of WIPI eliminates the obstacles of wireless Internet activation caused by the adoption of different wireless application protocols by mobile operators and the development environment of CPs (Content Providers, hereinafter referred to as CPs). It can give meaning to development and openness. In this regard, the emergence of WIPI played a significant role in activating the wireless Internet market because the proportion of users of mobile communication terminals equipped with WIPI is increasing.

WIPI is a wireless internet standard platform that solves the problems of various wireless internet platforms. WIPI is a standardization standard for application execution environment for mobile communication terminals. It has standardized specifications for wireless Internet platform, service development environment, compatibility evaluation tool (application certification, platform certification) and service application. The Korea Telecommunications Technology Association (TTA) was adopted as a group standard on May 7, 2002.

WIPI is designed to balance platform standardization by balancing the standardization considering mobile service provider's differentiated service demand and interoperability and strengthening the security function of contents. The WIPI is designed to coexist with platforms already adopted as 3GPP standards such as WAP and J2ME, and to be independent from the mobile terminal OS or the air interface. WIPI includes a set of APIs that can embrace a wide range of content and application developers, complementing the shortcomings of existing platforms and reflecting next-generation service technologies.

1 is a diagram conceptually illustrating a wireless Internet standard platform of a mobile communication terminal.

As shown in FIG. 1, the wireless Internet standard platform of the mobile communication terminal includes an application program 110, a basic API 120, a WIPI 130, a handset adaptation layer (HAL) 140, a terminal basic software 150, and a handset. Hardware 160.

The application program 110 is a program designed to directly perform a function specific to a user or another application program. The basic API 120 is used as a means for the application program 110 to request or communicate work with another program.

The WIPI 130 is a wireless Internet standard platform standard and is a standardized standard for executing an application program for a mobile communication terminal. HAL 140 is a layer to support hardware independence in wireless Internet platform porting.

The terminal basic software 150 includes an operating system, a communication function, and various device drivers of a simple mobile communication terminal. The handset hardware 160 refers to a mobile communication terminal supporting the wireless Internet.

The basic API 120 is composed of C and Java APIs. The C and Java APIs provide equivalent APIs in terms of functionality. The Wireless Internet Platform Specification specifies that programs for the Java language, like C language programs, run in binary, so developers can develop in their preferred language. In general, the Java language produces most applications, while the C language produces various speed-sensitive multimedia codecs and security modules.

An abstraction for the mobile communication terminal is made through the HAL 140, and the platform is configured independently of hardware. In the case of a domestic CDMA mobile communication terminal, porting the HAL 140 on the Qualcomm operating system becomes a platform for the mobile communication terminal, and Windows porting the HAL 140 becomes an emulator for Windows. Therefore, when the mobile terminal manufacturer implements only once according to the HAL 140 API, various platform implementations have an advantage of being quickly ported.

The terminal basic software 150 may vary in function or scale depending on the manufacturer of the mobile communication terminal. However, the terminal basic software 150 may have a HAL 140 layer to abstract the terminal software viewed by the platform. The platform seen by the application developer is the basic API 120 layer.

Currently, mobile platforms running on mobile communication terminals include BREW (Binary Runtime Environment for Wireless) developed by Qualcomm, and WIPI jointly developed by the Korea Electronics and Telecommunications Research Institute and the Korea Wireless Internet Standardization Forum.

Therefore, the application programs running in the mobile communication terminal should be produced to be interoperable according to the mobile platform, and should be produced in different ways according to the type of mobile platform.

If the developer of an application program has only a few trusted businesses, the developer can write an application program to run on a mobile platform and then test it and make it available to mobile terminal users. Providing services to people may not be a big problem.

However, many developers produce application programs, and most developers have a process of verifying that the application program works properly in accordance with the requirements specified in the mobile platform, and that the operations defined in the application program work well. There is not enough human and physical resources to run a separate team to do this, so developers are absolutely confident in the results of self-testing and there is a problem in providing users with application programs developed by developers.

The WIPI platform does not provide secure ciphers by default. However, as services that require security functions such as payment in various wireless services increase, there is a need to support security functions at the platform level. Accordingly, SWSL (Sktelecom WIPI Security Library, hereinafter referred to as SWSL), which is a terminal security library, has been developed so that software operating in a mobile communication terminal can implement a security function such as encryption. SWSL is a key module in the development of the WIPI security platform. Therefore, consider carefully the structure of the API provided. SWSL provides only essential APIs and selects and adds functions suitable for the wireless environment not provided by the encryption module of the existing wired environment. SWSL provides an easy API that can be used by developers without security knowledge, provides various functions at once, and sets the purpose of use in a structure that suits the purpose.

SWSL's APIs are not classified by specific cryptographic algorithms, but are classified according to functions such as signature and signature verification so that users do not need to distinguish the characteristics of cryptographic algorithms. It directly receives externally viewed data without detailed PKI manipulation, processes it internally, and provides a high level of functionality to enable the development of high-level PKI applications.

However, SWSL is designed to raise the full version of SWSL when adding new algorithms structurally, causing a problem of transferring costs to users.

In order to solve the above problems, the present invention dynamically adds a new algorithm to the SWSL (Sktelecom WIPI Security Library), which is a security library mounted on a mobile communication terminal in a wireless Internet environment, and dynamically updates a new algorithm added to the SWSL. In order to implement data security and communication security by adding security functions in the WIPI platform and to use the wireless Internet service that provides an integrated security interface and API (Application Program Interface, hereinafter called 'API') for security management, It is an object of the present invention to provide a control method and system for executing SWSL.

According to a first object of the present invention, there is provided a system for controlling a SWSL (SKT WIPI Security Library), which is a security library of a wireless Internet platform mounted on a mobile communication terminal in a wireless Internet environment, based on a predetermined protocol. A terrestrial infrastructure for transmitting and receiving data wirelessly, the wireless access network including a handoff and a radio support management function and relaying a control signal for controlling the SWSL to the mobile communication terminal; A mobile telecommunications network operated by a mobile telecommunications operator, the mobile telecommunications network providing policy information necessary to control the SWSL as a set of telecommunication facilities providing voice telephone or data exchange services to an unspecified number of subscribers through an exchange station; A web server interworking with the SWSL and generating and storing a wireless markup language (WML) page requiring security; A download server interworking with the SWSL and providing various contents necessary for providing a wireless Internet service to the mobile communication terminal; And a WAM (WIPI Application Manager) for controlling the installation and management of the WIPI-based application. The object of the present invention is to provide a control system of SWSL for executing an application in the process of using a wireless Internet service.

According to a second object of the present invention, there is provided a method of controlling SWSL (SKT WIPI Security Library), which is a security library of a wireless Internet platform mounted on a mobile communication terminal in a wireless Internet environment, comprising: (a) Download Description from a web server; Downloading a Wireless Markup Language (WML) page that links the file; (b) downloading URL and MIME type information of the DD file from a WAM while executing the WML page; (c) analyzing the DD file through a DD analyzer to determine whether to install a plug-in library; And (d) downloading and executing an application required to use a wireless Internet service in association with the WAM, and providing a control method of SWSL for executing the application in the process of using the wireless Internet service. There is a purpose.

Hereinafter, exemplary embodiments of the present invention will be described in detail with reference to the accompanying drawings. First of all, in adding reference numerals to the components of each drawing, it should be noted that the same reference numerals are used as much as possible even if displayed on different drawings. In addition, in describing the present invention, when it is determined that the detailed description of the related well-known configuration or function may obscure the gist of the present invention, the detailed description thereof will be omitted.

2 is a diagram illustrating a control system of SWSL for executing an application in a process of using a wireless Internet service according to an exemplary embodiment of the present invention.

As shown in FIG. 2, the control system 200 of SWSL for executing an application in the process of using a wireless Internet service according to an exemplary embodiment of the present invention includes a web server 210 and a download server. ) 220, NGB (Next Generation Browser) 230, WIPI Application Manager (WAM) 240, an application library 250, a SWSL 260, and a plug-in algorithm library 270.

The web server 210 creates and stores a Wireless Markup Language (WML) page having a Uniform Resource Locator (URL) and a Multipurpose Internet Mail Extension (MIME) type information of a download description (DD) file. DD is the installation information file that is downloaded first to install the application. The download server 220 is a content server provided by SKT to download content from a mobile communication terminal, and produces and stores an application and a plug-in algorithm.

NGB 230 is a WIPI WAP (Wireless Application Protocol) browser. WAM 240 is an integrated application manager that controls the installation and management of WIPI-based applications.

The application library 250 downloads and stores an application from the WAM 240. The SWSL 260 is a terminal security library that enables software operating in a mobile communication terminal to implement security functions such as encryption. The plug-in algorithm library 260 downloads and stores the plug-in algorithm stored in the download server 220 through the WAM 240.

The web server 210 receives the request of the NGB 230 and NGB 230 the WML page containing the URL and MIME type information of the DD file containing the installation information of the application using the algorithm added to the SWSL 260. To transmit.

The download server 220 receives the WAM request and transmits an application using the algorithm added to the SWSL 250, the SWSL, the newly added plug-in algorithm, and each DD file to the WAM 240.

The NGB 230 obtains the URL and MIME type information of the DD file from the WML page received from the web server 210 and transmits the information to the WAM.

The WAM 240 downloads the DD through the URL of the DD file received from the NGB 230 and determines whether to install the URL of the application, the SWSL and the plug-in algorithm library 260 through the DD analyzer, and installs it if necessary.

3 is a flowchart illustrating a control method of SWSL for executing an application in a process of using a wireless Internet service according to a preferred embodiment of the present invention.

In response to the emergence of new security algorithm specifications or user requests, plug-ins are developed and uploaded to the SKT application download server. Add the URL of the plug-in DD file and the plug-in version to the DD file of the application that uses the plug-in and upload it to the SKT application download server. Create a WML page linking the DD file to the web server, request a WML page, the user downloads the WML page through the NGB (S302).

Choose to install the application from the WML page that the user browsed through NGB. The NGB obtains the URL and MIME type information of the application DD file through the WML page downloaded from the web server, transfers the information to the WAM, and downloads the information (S304). The WAM determines whether to install or not based on the library ID and version information of the plug-in obtained by analyzing the application DD through the DD analyzer (S306).

SWSL and plug-ins should be installed when algorithms are added and modified according to the needs of the application, government or SKT policy changes, increased security, and new algorithm standards.

The WAM downloads the plug-in DD file through the URL of the plug-in DD file obtained through the application DD file (S308). The URL information of the SWSL and the plug-in is obtained by analyzing the downloaded plug-in DD file (S310). And download the SWSL and plug-in (S312).

Install the downloaded SWSL and plug-in (S314). The WAM downloads the application from the download server (S316). Install the downloaded application (S318).

In step S306, the library ID and version information of the plug-in obtained by analyzing the application DD are checked. If the plug-in does not need to be installed, the application is downloaded and installed without installing the SWSL and the plug-in.

The above description is merely illustrative of the technical idea of the present invention, and those skilled in the art to which the present invention pertains may make various modifications and changes without departing from the essential characteristics of the present invention. Therefore, the embodiments disclosed in the present invention are not intended to limit the technical idea of the present invention but to describe the present invention, and the scope of the technical idea of the present invention is not limited by these embodiments. The protection scope of the present invention should be interpreted by the following claims, and all technical ideas within the equivalent scope should be interpreted as being included in the scope of the present invention.

As described above, according to the present invention, it is possible to dynamically add a new algorithm to SWSL, and to dynamically update a new algorithm added to SWSL.

Claims (11)

In the system for controlling the SWSL (SKT WIPI Security Library) which is a security library of the wireless Internet platform mounted on the mobile terminal in a wireless Internet environment, A ground infrastructure that exchanges data wirelessly with the mobile communication terminal based on a predetermined protocol, and includes a handoff and wireless support management function, and relays a control signal for controlling the SWSL with the mobile communication terminal. Wireless access network; A mobile telecommunications network operated by a mobile telecommunications operator, the mobile telecommunications network providing policy information necessary to control the SWSL as a set of telecommunication facilities providing voice telephone or data exchange services to an unspecified number of subscribers through an exchange station; A web server interworking with the SWSL and generating and storing a wireless markup language (WML) page requiring security; A download server interworking with the SWSL and providing various contents necessary for providing a wireless Internet service to the mobile communication terminal; And WIPI Application Manager (WAM) to control the installation and management of the above WIPI-based applications SWSL control system for executing an application in the process of using a wireless Internet service comprising a. The method of claim 1, The system includes a WIPI WAP (Wireless Application Protocol) browser, and further includes a next generation browser (NGB) for receiving the WML page and analyzing the URL and MIME type information of a DD file to the web server. SWSL control system that executes an application in the process of using a wireless Internet service. The method of claim 1, The download server receives a request of the WAM and transmits an application using an algorithm added to the SWSL, a newly added SWSL, a newly added plug-in algorithm library and a DD file to the WAM. SWSL control system for running applications on Windows. The method of claim 1, And the web server executes an application in the process of using a wireless Internet service, wherein the web server transmits the WML page including the URL and MIME type information of a DD file to the NGB in response to an NGB request. The method of claim 3, wherein The DD file has the installation information of the application using the algorithm added to the SWSL control system of the SWSL to execute the application in the process of using the wireless Internet service. The method of claim 1, The WAM control system of the SWSL to execute the application in the process of using the wireless Internet service, characterized in that to download the DD file via the URL of the DD file received from the NGB. The method of claim 1, The WAM is a control system of the SWSL to run the application in the process of using the wireless Internet service, characterized in that the DD file received from the NGB determines the installation of the URL, SWSL and plug-in algorithm library of the application through a DD analyzer. The method of claim 1, wherein the mobile communication terminal, An application library for downloading and storing the application stored in the download server through the WAM; A plug-in algorithm library for downloading and storing the plug-in algorithm stored in the download server through the WAM; And SWSL, a terminal security library for granting security functions to software running on the mobile communication terminal SWSL control system for executing an application in the process of using a wireless Internet service comprising a. In the method of controlling the SWSL (SKT WIPI Security Library) which is a security library of the wireless Internet platform mounted on the mobile terminal in a wireless Internet environment, (a) downloading a Wireless Markup Language (WML) page that links a Download Description (DD) file from a web server; (b) downloading URL and MIME type information of the DD file from a WAM while executing the WML page; (c) analyzing the DD file through a DD analyzer to determine whether to install a plug-in library; And (d) downloading and executing an application required to use a wireless Internet service in association with the WAM; SWSL control method for executing an application in the process of using a wireless Internet service comprising a. The method of claim 9, wherein step (c) comprises: (c1) determining whether the SWSL algorithm is added and modified according to the needs of the application, policy changes, security strength enhancements, and the establishment of new algorithm standards; And (c2) if it is determined in step (c1) that the SWSL algorithm is added and modified, downloading the SWSL and the plug-in SWSL control method for executing an application in the process of using a wireless Internet service comprising a. The method of claim 9, wherein step (c) (c3) when the ID and version information of the plug-in included in the DD file of the application are not checked and the plug-in is not required to be installed, the application is executed after downloading the application without installing the SWSL and the plug-in. SWSL control method for executing an application in the process of using a wireless Internet service.

Images