KR101553116B1 - Method for Updating Encryption Key between Card and Device - Google Patents

Abstract

The present invention relates to a method for updating a cryptographic key between a card and a terminal, and a program installed in a terminal equipped with an NFC module and a chip module of a contactless card perform noncontact interfacing with a half-duplex communication structure, Contact card with the chip module of the contactless card via the module and the chip module of the contactless card contactlessly interfaced with the terminal checks whether the two effective cryptographic keys are stored in the pre-designated keyset storage area in response to the contactless interface The chip module simultaneously generates two valid cryptographic keys R1 and R2 when two valid cryptographic keys are not stored in the keyset storage area, and when two valid cryptographic keys are stored in the keyset storage area Generates a valid new cryptographic key R3, The chip module stores the cipher keys R1 and R2 in the keyset storage area by giving an update order to the cipher keys R1 and R2, And the program receives cryptographic keys R1 and R2 generated through the chip module from the noncontact-interfaced chip module, and the program causes the received cryptographic keys R1 and R2 are given and stored in an update order synchronized with an update order given by the chip module and stored, and when the chip module generates the valid one new cipher key R3, the chip module stores the new cipher key R3 stored in the keyset storage area And encrypts the new cipher key R3 via R1 and R2, and the chip module sends the encrypted new cipher key R 3 to the terminal, and the program receives a new encryption key R3 generated from the non-contact interface chip module through the chip module and encrypted with the encryption keys R1 and R2, and the program is transmitted to the terminal side 8b) decrypting the new cryptographic key R3 using the stored R1 and R2 and transmitting the key update acknowledgment message for the decrypted new cryptographic key R3 to the non-contact interface chip module; The chip module reads the update order of the cipher keys R1 and R2, discards any cipher key corresponding to the order in which the cipher keys R1 and R2 are updated first, and then updates The new encryption key R3 and the new encryption key R3 are renewed and stored, and the chip module Contacted interface, the response corresponding to the update and storing of the new cipher key R3 on the basis of the key renewal approval message to the non-contact interface terminal, the program receiving the response from the non-contact interface chip module, Reads the update order of the cipher keys R1 and R2 on the basis of the received response, discards a cipher key corresponding to the order in which the cipher key is first updated, and transmits the cipher key corresponding to the updated order and the new cipher key R3 to the chip The update sequence given by the module and the update sequence synchronized with the update sequence are stored and updated.

Description

(Method for Updating Encryption Key between Card and Device)

The present invention relates to a method for performing a non-contact interface between a program installed in a terminal equipped with an NFC module and a chip module of a contactless card in a half-duplex communication structure, And a chip module of a noncontact type card contactlessly interfaced with the terminal checks whether two valid cryptographic keys are stored in a preset keyset storage area in response to the contactless interface, If two valid cryptographic keys are not stored, generates two valid cryptographic keys R1 and R2 simultaneously and generates a valid one new cryptographic key R3 when two valid cryptographic keys are stored in the keyset storage area, In the chip module, the valid two cipher keys R1 and R2 are simultaneously The chip module provides the cipher keys R1 and R2 with an update order and stores the cipher keys R1 and R2 in the keyset storage area, and the chip module transmits cipher keys R1 and R2 And the program receives cryptographic keys R1 and R2 generated from the non-contact interface chip module via the chip module, and the program causes the received cryptographic keys R1 and R2 to synchronize with the update sequence given by the chip module And the chip module encrypts the new encryption key R3 via R1 and R2 stored in the keyset storage area when the chip module generates the valid one new encryption key R3 , The chip module transmits the encrypted new cryptographic key R3 to the terminal in the contactless interface terminal, A new cryptographic key R3 generated through the chip module from the non-contacted chip module and encrypted through the cipher keys R1 and R2 is received, and the new cipher key R3 To the non-contact interface chip module, a key renewal approval message for the decrypted new cipher key R3, and the chip module transmits a key update request message for the new cipher key R3 from the terminal The chip module reads the update order of the cipher keys R1 and R2, discards a cipher key corresponding to the order in which the cipher key is first updated, and then updates the cipher key corresponding to the updated order and the new cipher key R3, and the chip module updates the new encryption key based on the key update acknowledgment message, R3 is updated and stored, and the program receives the response from the non-contact interface chip module, and the program causes the cryptographic keys R1 and R2 And a cryptographic key corresponding to the renewed sequence and a renewal sequence synchronized with the renewal sequence given by the chip module to the new cryptographic key R3 are given And a method for updating the encryption key between the card and the terminal.

Wireless communication using radio frequency signals has a security problem in a hacking attempt such as an RF dump in a communication structure. In particular, security vulnerabilities are fatal in the case of cards used for various security tools and financial transaction tools. In order to solve such a problem, in some cards, a terminal and a cryptographic key are shared and stored, and encrypted communication is performed using a shared cryptographic key.

However, the card operates with a tag of the wireless communication standard and performs half-duplex communication (for example, when the terminal transmits a command, the card responds to the command) in response to the radio frequency signal of the terminal. Therefore, even if the encryption key is stored in the card and encrypted communication is performed through the stored encryption key, if a repetitive RF dump is attempted due to the characteristics of the half-duplex communication structure responding to the external RF signal, And thus the encryption key is finally exposed.
On the other hand, it is also difficult to apply the encryption communication rule applied to the full-duplex communication, such as the conventional client-server system, to the half-duplex communication structure because of the characteristics of the half-duplex communication structure between the card and the terminal. Full duplex communication can request communication from either side of the mutually communicating side to the other side first. In this case, it is possible to start the encrypted communication (for example, start the exchange of the encryption / decryption key) at a side that requests communication first. For example, in the case of a conventional client-server system, when a communication is requested from a client to a server, the client can initiate the encrypted communication. On the other hand, when the server requests communication (for example, pushing) Lt; / RTI >
On the other hand, in the case of the half-duplex communication between the card and the terminal, it is relatively easy to start the encrypted communication at the terminal since the terminal always starts communication for injecting the command into the card. However, It is technically very difficult to initiate encrypted communication first on the responding card. However, when the terminal first initiates the encrypted communication in the half-duplex communication structure between the card and the terminal, the confidentiality and reliability of the encrypted communication between the card and the terminal are damaged due to terminal hacking or RF dump.

In order to solve the above problems, an object of the present invention is to provide a method for performing a non-contact interface between a program installed in a terminal equipped with an NFC module and a chip module of a contactless card, Contactless interface with the chip module of the contactless card through the contactless card and a chip module of the contactless card which is in contactless contact with the terminal in response to the contactless interface, And the chip module generates two valid cryptographic keys R1 and R2 at the same time when two valid cryptographic keys are not stored in the keyset storage area, When a key is stored, one valid new encryption key R3 is generated If the two effective cryptographic keys R1 and R2 are concurrently generated in the chip module, the chip module assigns an update order to the cryptographic keys R1 and R2 and stores them in the keyset storage area A step 5a in which the chip module responds to the noncontact-interfaced terminal with the cipher keys R1 and R2 to which the update order is assigned in step 4a, and a step 5a in which the program is transmitted from the non- A step (6a) of receiving the cipher keys (R1 and R2) and a step (7a) in which the program gives the received cipher keys (R1 and R2) an update order synchronized with an update order given by the chip module, When the module generates the valid one new cipher key R3, the chip module transmits the new cipher key R3 via R1 and R2 stored in the key set storage area (B) transmitting the encrypted new cryptographic key R3 to the terminal by the chip module via the chip module from the non-contact-interfaced chip module, and A step 6b of receiving a new cipher key R3 encrypted by the cipher keys R1 and R2 and a step 7b of decrypting the new cipher key R3 by using the programs R1 and R2 stored in the terminal side, A step 8b of transmitting the key renewal approval message for the decrypted new cryptographic key R3 to the non-contact interface chip module, and a step 9b for receiving the key renewal approval message for the new crypt key R3 from the terminal And the chip module reads the update order of the cipher keys R1 and R2, A step 10b of discarding a cipher key and then updating and storing the cipher key corresponding to the renewed order later and the new cipher key R3 with a new renewal order; Contacted interface, a response corresponding to the update and storage of the key R3 to the noncontact interfaceed terminal, a step 12b of receiving the response from the noncontact-interfaced chip module by the program, Reads out the update order of the cipher keys R1 and R2, discards a cipher key corresponding to the order in which the cipher key is updated first, and updates the cipher key corresponding to the updated order later and the renewal sequence And a step 13b for updating and storing the update order by synchronizing the card with the terminal, It provides a method to provide.

A method for updating a cryptographic key between a card and a terminal according to the present invention is a method for performing a program in a terminal equipped with an NFC module and a chip module of a contactless card in a non- Contactless interface with the chip module of the contactless card through the contactless card and a chip module of the contactless card which is in contactless contact with the terminal in response to the contactless interface, And the chip module generates two valid cryptographic keys R1 and R2 at the same time when two valid cryptographic keys are not stored in the keyset storage area, When a key is stored in advance, a valid new encryption key R3 is generated If the two effective cryptographic keys R1 and R2 are concurrently generated in the chip module, the chip module assigns an update order to the cryptographic keys R1 and R2 and stores them in the keyset storage area A step 5a in which the chip module responds to the noncontact-interfaced terminal with the cipher keys R1 and R2 to which the update order is assigned in step 4a, and a step 5a in which the program is transmitted from the non- A step (6a) of receiving the cipher keys (R1 and R2) and a step (7a) in which the program gives the received cipher keys (R1 and R2) an update order synchronized with an update order given by the chip module, When the module generates the valid one new cipher key R3, the chip module transmits the new cipher key R3 via R1 and R2 stored in the key set storage area A step 4b in which the chip module transmits the encrypted new cipher key R3 to the non-contact interface terminal, and a step 5b in which the chip module transmits the encrypted new cipher key R3 to the terminal, and the program is generated through the chip module from the non- A step 6b of receiving a new cipher key R3 encrypted by the cipher keys R1 and R2 and a step 7b of decrypting the new cipher key R3 by using the programs R1 and R2 stored in the terminal side, A step 8b of transmitting the key renewal approval message for the decrypted new cryptographic key R3 to the non-contact interface chip module, and a step 9b for receiving the key renewal approval message for the new crypt key R3 from the terminal And the chip module reads the updating order of the cipher keys R1 and R2 and updates the order of updating A step 10b of discarding a cipher key and then updating and storing the cipher key corresponding to the renewed order later and the new cipher key R3 with a new renewal order; Contacted interface, a response corresponding to the update and storage of the key R3 to the noncontact interfaceed terminal, a step 12b of receiving the response from the noncontact-interfaced chip module by the program, Reads out the update order of the cipher keys R1 and R2, discards a cipher key corresponding to the order in which the cipher key is updated first, and updates the cipher key corresponding to the updated order later and the renewal sequence And an update order synchronized with the update order, and updating and storing the update order.

According to the present invention, when the chip module and the terminal are contactlessly interfaced, the chip module exchanges a designated key value with the terminal to authenticate the validity of the terminal.

According to the present invention, the step (b) further includes the step of verifying the validity of the decrypted new cryptographic key R3.

According to the present invention, the step 8b may further include the step of encrypting the key renewal approval message through the new encryption key R3.

delete

According to the present invention, when the chip module and the terminal are contactlessly interfaced with each other, the program further comprises the step of authenticating the validity of the chip module by exchanging a designated key value with the non-contact-interfaced chip module .

According to the present invention, in the step (4a), an order of updating is given to any one of the cipher keys R1 and R2, and a later updated order is assigned to another cipher key.

According to the present invention, the step 9b may further include, when the key renewal approval message is encrypted, decrypting the encrypted renewal approval message through the new encryption key R3.

According to the present invention, by storing a cipher key set including a plurality of cipher keys on a card, it is more secure than when a single cipher key is stored, and is included in a cipher key set every time the card and the terminal perform specified secure communication It is advantageous to implement a secure communication between the card and the terminal even in the case of a hacking attempt.

1 is a diagram showing a configuration of a card for updating a cryptographic key set according to an embodiment of the present invention.
2 is a diagram illustrating a configuration of a terminal for updating a card and a cipher key according to an embodiment of the present invention and a functional configuration of a program provided in the terminal.
3 is a diagram illustrating a process of generating and exchanging a cryptographic key set according to an embodiment of the present invention.
4 is a diagram illustrating a cryptographic key set update process according to an embodiment of the present invention.

The operation principle of the preferred embodiment of the present invention will be described in detail with reference to the accompanying drawings and description. It should be understood, however, that the drawings and the following detailed description are exemplary and explanatory and are intended to provide further explanation of the invention, and are not to be construed as limiting the present invention.

In the following description of the present invention, a detailed description of known functions and configurations incorporated herein will be omitted when it may make the subject matter of the present invention rather unclear. The terms used below are defined in consideration of the functions of the present invention, which may vary depending on the user, intention or custom of the operator. Therefore, the definition should be based on the contents throughout the present invention.

As a result, the technical idea of the present invention is determined by the claims, and the following embodiments are merely means for effectively explaining the technical idea of the present invention to a person having ordinary skill in the art to which the present invention belongs Only.

1 is a diagram showing a configuration of a card 100 for updating a cipher key set according to an embodiment of the present invention.

More specifically, in FIG. 1, after storing the encryption keys R1 and R2 in the card 100 and the terminal 200, a new encryption key R3 is generated in the card 100 and encrypted using the stored encryption keys R1 and R2 The terminal 200 decrypts the encrypted new cipher key R3 received from the card 100 through the previously stored cipher keys R1 and R2 stored in the terminal 200 and transmits the decrypted new cipher key R3 When the card 100 and the terminal 200 discard the cipher key R1 and store R2 and R3 as a new cipher key set when the card 100 receives the key renewal approval message for the card 100, Those skilled in the art will be able to refer to and / or modify Figure 1 to illustrate various implementations of the configuration of the card 100 (e.g., Or fragmented, or combined) Would be able to infer, the present invention is made, including any exemplary way in which the inference, to which the technical feature that is not limited to the exemplary method shown in the figure 1.

According to the present invention, the card 100 includes an antenna unit 185 for transmitting and receiving a radio frequency signal to and from a terminal 200 in proximity to the terminal 200, and an antenna unit 185 for interfacing with the terminal 200 through the antenna unit 185. [ And a chip module 105 for performing a procedure for exchanging and updating the cipher key set with the terminal 200. Preferably, the card 100 may include an NFC card, an RF card, a contactless IC card, or the like.

The antenna unit 185 is built in the card 100 and transmits and receives a radio frequency signal to and from a terminal 200 of a close distance (for example, 10 cm).

Referring to FIG. 1, the chip module 105 generates an inductive current based on a radio frequency signal received by the antenna unit 185, and when the radio frequency signal is modulated according to a designated radio standard, A memory unit 175 for storing various information necessary for the operation of the chip module 105 and a cipher key set, an operation unit 150 for operating the chip module 105, And performing a procedure of generating, exchanging, and updating the cryptographic key set.

The RF unit 180 generates an induced current based on the radio frequency signal when the card 100 is in the effective range of the electromagnetic wave energy field and a radio frequency signal is received by the antenna unit 185. The induced current is used for the operation of the chip module 105.

The memory unit 175 stores various information necessary for the operation of the chip module 105 (not shown) and has a key set storage area for storing an encryption key set including encryption keys R1 and R2. Preferably, the memory unit 175 may store a serial number that uniquely identifies the chip module 105 (or the card 100).

The control unit 110 controls the operation of the chip module 105 through the information stored in the memory unit 175 using the induction current as an operation power source and includes a processor and an execution memory in hardware, And a logic circuit. And may include program code that is loaded into the execution memory in software and is operated by the processor. Hereinafter, the functional unit corresponding to the program code or logic circuit performing the procedure for creating, exchanging and updating the cipher key set will be described in the control unit 110 for convenience.

Referring to FIG. 1, the controller 110 of the chip module 105, when interfaced with the terminal 200, includes a status check unit 115 (not shown) for checking whether cryptographic keys R1 and R2 are stored in a designated key set storage area And a terminal authentication unit 120 for authenticating the interfaced terminal 200 when the encryption keys R1 and R2 are not stored in the keyset storage area.

When the radio frequency signal is received through the antenna unit 185 and is interfaced with the terminal 200, the state check unit 115 stores the cipher keys R1 and R2 in the designated key set storage area of the memory unit 175 . If the encryption keys R1 and R2 are not stored in the key set storage area, the terminal authentication unit 120 performs a procedure for authenticating the interfaced terminal 200. [

The terminal authentication unit 120 exchanges the designated key value with the program 210 of the terminal 200 to authenticate the validity of the program 210 provided in the terminal 200 When the program 210 provided in the terminal 200 is authenticated, the terminal 200 can be regarded as being validated. Alternatively, the terminal authentication unit 120 may transmit the serial number of the memory unit 175 to the terminal 200. In this case, the terminal 200 performs an authentication procedure designated as a designated management server, The terminal authentication unit 120 receives a key value that can be verified by the terminal authentication unit 120 from the management server and transmits the key value to the card 100. The terminal authentication unit 120 authenticates the key value, Validity can be verified. However, the procedure of authenticating the terminal 200 by the terminal authentication unit 120 is not limited to the above-described method, and various methods of modifying or applying the above-described method may be used. For example, it is possible to authenticate the terminal 200 in a form of authenticating a PIN input from the terminal 200.

If the cryptographic keys R1 and R2 are stored in the keyset storage area as a result of checking by the state checking unit 115, a procedure for updating the cryptographic keys R1 and R2 stored in the keyset storage area may be performed.

Referring to FIG. 1, a control unit 110 of the chip module 105 includes a keyset generation unit 125 for generating cryptographic keys R1 and R2, a key generation unit 125 for assigning an update order to the cryptographic keys R1 and R2, And a key set transfer unit 135 for transferring the cipher keys R1 and R2 to the terminal 200. The key set transfer unit 135 transfers the cipher keys R1 and R2 to the terminal 200, The key set generation unit 125, the key set storage unit 130 and the key set transmission unit 135 may be provided in the terminal 200 according to another embodiment of the present invention. In this case, the chip module 105 The control unit 110 may include a key set receiving unit 220 and a key set registering unit 225.

The key set generation unit 125 generates the key set for the card 100 if the encryption keys R1 and R2 are not stored in the key set storage area or the terminal 200 is authenticated through the terminal authentication unit 120. [ And an encryption key set including encryption keys R1 and R2 to be exchanged with each other. The cryptographic keys R1 and R2 are not duplicated, and R2 can not be deduced through R1, and R2 is generated as a distinct value that can not infer R1.

The keyset storage unit 130 stores the generated encryption keys R1 and R2 in a designated key set storage area, and stores the encryption keys R1 and R2 in a predetermined update sequence.

According to an embodiment of the present invention, the keyset storage area may include an R1 storage area for storing the updated encryption key and an R2 storage area for storing the updated encryption key, 125), the cryptographic key stored in the R1 storing area corresponds to the first updated cryptographic key, and the cryptographic key stored in the R2 storing area corresponds to a later-updated cryptographic key even if R1 and R2 are simultaneously generated and updated .

Alternatively, the keyset storage unit 130 can store the generated encryption keys R1 and R2 in the keyset storage area by assigning an index to identify the update order, Even if R1 and R2 are simultaneously generated and updated, the encryption key to which the previous index is assigned corresponds to the updated encryption key, and the encryption key to which the later index is assigned corresponds to the updated encryption key.

The key set transmission unit 135 transmits the cipher keys R1 and R2 to the terminal 200, to which the terminal 200 has been updated. According to the embodiment of the present invention, the key set transmission unit 135 transmits the program 210 of the terminal 200 to identify the update order of the cipher keys R1 and R2. For example, if it is defined that the cryptographic key transmitted and received with the program 210 of the terminal 200 is first identified as an updated cryptographic key and the cryptographic key transmitted and received later is identified as a cryptographic key that is later updated, the cryptographic keys R1 and R2 The program 210 of the terminal 200 can identify the update order of the encryption keys R1 and R2.

1, the control unit 110 of the chip module 105 includes a new key generation unit 140 for generating a new encryption key R3 when interfaced with the terminal 200, A new key cipher 145 for encrypting the generated new cipher key R3 and a new key transmitting unit 150 for transmitting the encrypted new cipher key R3 to the terminal 200. [

In the case of interfacing with the terminal 200, if the encryption keys R1 and R2 are stored in the designated key set storage area, the new key generation unit 140 generates a new encryption key R3. The new cryptographic key R3 is not duplicated with the cryptographic keys R1 and R2 and is generated with a different value that can not infer R1 or R2.

The new key cipher unit 145 confirms the cipher keys R1 and R2 stored in the designated key set storage area and encrypts the generated new cipher key R3 via the confirmed R1 and R2. The new key transmission unit 150 transmits the encrypted new encryption key R3 to the terminal 200. [

According to the embodiment of the present invention, the new key cipher 145 includes a validity verification value (e.g., a checksum value or a hash value obtained by hashing the R3 with a specified hash function, etc.) for the new cipher key R3 In this case, the program 210 of the terminal 200 may verify the validity of the decrypted new cryptographic key R3 through the decryption of the encrypted new cryptographic key R3.

1, a control unit 110 of the chip module 105 includes a message receiving unit 155 for receiving a key update acknowledgment message for the new encryption key R3 from the terminal 200, And a message decryption unit (160) for decrypting the encrypted key renewal acknowledgment message through the new encryption key (R3) if the renewal acknowledgment message is encrypted, and for verifying the validity of the decrypted key renewal acknowledgment message (Not shown).

After the new cipher key R3 is transmitted to the terminal 200, the message receiving unit 155 receives a key renewal approval message for the new cipher key R3 from the interfaced terminal 200. [ If the key renewal acknowledgment message is encrypted with the new cipher key R3, the message decryption unit 160 decrypts the encrypted renewal acknowledgment message through the new cipher key R3 sent to the terminal 200. [

If the decrypted key update grant message includes a validity value, the message validation unit 165 may verify the validity of the decrypted key update grant message using the validity value.

Referring to FIG. 1, when the key update acknowledgment message is received or decrypted, the controller 110 of the chip module 105 reads the update order of the cipher keys R1 and R2, And a key set updating unit 170 for updating and storing an update order by assigning an update order to R3.

If the key update acknowledgment message is received or an encrypted key update acknowledgment message is decrypted through the new cipher key R3, the key set updater 170 reads the update order of the cipher keys R1 and R2, The updated R1 is discarded, and the update order assigned to R2 and R3 is assigned to update and store.

According to the embodiment of the present invention, the key set updater 170 may update the R2 with the updated R1 first, and update and store the new cipher key R3 with the updated R2 later.

2 is a diagram illustrating a configuration of a terminal 200 for updating a card 100 and an encryption key according to an embodiment of the present invention and a functional configuration of a program 210 provided in the terminal 200. As shown in FIG.

More specifically, FIG. 2 stores the encryption keys R1 and R2 in the card 100 and the terminal 200, respectively, and then generates a new encryption key R3 from the card 100 and encrypts the new encryption key R3 using the stored encryption keys R1 and R2 The terminal 200 decrypts the encrypted new cipher key R3 received from the card 100 through the previously stored cipher keys R1 and R2 stored in the terminal 200 and transmits the decrypted new cipher key R3 When the card 100 and the terminal 200 reject the encryption key R1 and store R2 and R3 as a new encryption key set, The terminal 200 and the program 210 may be implemented by referring to and / or modifying the diagram of FIG. 2 by a person skilled in the art to which the present invention belongs. It will be appreciated that various embodiments of the invention It is made, including any exemplary way in which the inference, to which the technical feature that is not limited to the exemplary method shown in the figure 2. 2 is a block diagram illustrating an embodiment of the present invention, in which the terminal 200 is a wireless terminal including at least one of various smart phones, tablet PCs, PDAs, and cellular phones.

2, the terminal 200 includes a control unit 201, a memory unit 209, a screen output unit 202, a key input unit 203, a sound input / output unit 204, an NFC module 205, A wireless communication unit 207, a USIM reader unit 208, and the like, and has a battery 206 for power supply.

The control unit 201 is a general term for controlling the operation of the terminal 200. The control unit 201 includes at least one processor and an execution memory. Lt; / RTI > According to the present invention, the control unit 201 loads at least one program code provided in the terminal 200 through the processor, and loads the program code into the execution memory and outputs the result to at least one constituent unit And controls the operation of the terminal 200. Hereinafter, the functional configuration of the program 210 of the present invention will be described in the present control unit 201 for convenience.

The memory unit 209 is a general term of the nonvolatile memory included in the terminal 200 and stores at least one program code executed through the control unit 201 and at least one data set used by the program code Respectively. The memory unit 209 basically includes a system program code and a system data set corresponding to an operating system of the terminal 200, a communication program code and a communication data set for processing a wireless communication connection of the terminal 200, An application program code and an application data set, and the program code and data set corresponding to the program 210 of the present invention are also stored in the memory unit 209. [

The screen output unit 202 includes a screen output unit such as a liquid crystal display (LCD) provided in the terminal 200 and a driving module for driving the screen output unit 202. The control unit 201, 201) to the screen output device.

The key input unit 203 includes at least one user input device (e.g., a button, a keypad, a touch pad, a touch screen, etc.) provided in the terminal 200 and a drive module And inputs a command for instructing various operations of the control unit 201 in cooperation with the control unit 201 or inputs data necessary for the operation of the control unit 201. [

The sound input / output unit 204 is composed of a speaker, a microphone, and a driving module for driving the speaker 200 and the microphone 200. The sound input / output unit 204 is connected to the control unit 201, And outputs the corresponding calculation result through the speaker or transmits the sound data input through the microphone to the controller 201. [ The driving module decodes sound data to be output through the speaker and converts the sound data into a sound signal or encodes a sound signal input through the microphone to encode the sound signal.

The NFC module 205 may be configured to communicate with a component that processes one or more of the proximity wireless communications using bi-directional proximity wireless communication, full-duplex proximity wireless communication, and half-duplex proximity wireless communication using a radio frequency signal as a communication medium at a close distance (e.g., As a general term, it is possible to process the proximity wireless communication according to the NFC (Near Field Communication) standard of the 13.56 Mz frequency band.

The wireless communication unit 207 collectively refers to a communication unit that connects the terminal 200 to a wireless communication network via a base station. The wireless communication unit 207 includes an antenna for transmitting and receiving a radio frequency signal of a specific frequency band, an RF module, a baseband module, And is connected to the control unit 201 to transmit operation results corresponding to wireless communication among various operation results of the controller 201 through a wireless communication network or receive data through a wireless communication network, To the control unit 201, and performs the connection, registration, communication, and handoff procedures of the wireless communication. Preferably, the wireless network communication unit includes a mobile communication unit configured to perform at least one of connection, location registration, call processing, call connection, data communication, and handoff to a mobile communication network according to a CDMA / WCDMA / LTE standard. According to an embodiment of the present invention, the wireless communication unit 207 may further include a wireless communication function for connecting a wireless AP within a predetermined distance (for example, 10 m) to a communication network.

The USIM reader unit 208 is a collective term for a configuration in which at least one data set is exchanged with a universal subscriber identity module that is mounted or detached from the terminal 200 based on the ISO / IEC 7816 standard , The data set is exchanged in a half-duplex communication manner through an APDU (Application Protocol Data Unit).

The program 210 of the present invention is downloaded from an application providing server (e.g., an Apple App Store or the like), installed in the terminal 200 according to a designated procedure, is driven according to a designated procedure, do.

2, if the program 210 of the terminal 200 is interfaced with the card 100, the program 210 performs an authentication procedure of the terminal 200 in cooperation with the terminal authentication unit 120 of the card 100 And an authentication procedure execution unit 215 for performing authentication.

When the terminal authentication unit 120 exchanges the designated key value and authenticates the terminal 200, the authentication procedure execution unit 215 performs the authentication procedure using the terminal authentication unit 120 of the card 100, A procedure for exchanging the data can be performed. Alternatively, when the terminal authentication unit 120 transmits the serial number, the authentication procedure performing unit 215 performs the authentication procedure of the terminal 200 with respect to the designated management server and transmits the serial number to the specified management server And can report the key value that can be verified through the terminal authenticating unit 120 to the management server and report it to the card 100. [ However, the procedure of authenticating the terminal 200 by the terminal authentication unit 120 is not limited to the above-described method, and various methods of modifying or applying the above-described method may be used. For example, the authentication procedure execution unit 215 may receive the PIN and provide the PIN to the card 100 to authenticate the terminal 200.

Referring to FIG. 2, the program 210 of the terminal 200 includes a key set receiving unit 220 for receiving the cipher keys R1 and R2 from the card 100 interfaced with the card 100, And a key set registration unit 225 for registering the received encryption keys R1 and R2 in an update order. According to another embodiment of the present invention, the key set receiving unit 220 and the key set registration unit 225 may be provided in the card 100. In this case, the program 210 may include a key set generating unit 125, And may include a storage unit 130 and a key set transfer unit 135.

When the card 100 is interfaced with the card 100, when the card 100 generates and transmits the cipher keys R1 and R2, the keyset receiving unit 220 receives the cipher keys R1 and R2 from the interfaced card 100 .

The key set registration unit 225 stores the received cipher keys R1 and R2 in a designated key set storage area of the memory unit 209 and stores the received cipher keys R1 and R2 Confirms the update order, and stores the affirmative update order to the encryption keys R1 and R2. According to the embodiment of the present invention, the keyset registration unit 225 may store the received encryption keys R1 and R2 in an index for identifying the update order and store the index in the keyset storage area.

2, when the card 100 and the terminal 200 are interfaced, the program 210 of the terminal 200 transmits a newly generated cryptographic key R3 from the interfaced card 100 to the R1 And a new key decryption unit (230) for decrypting the encrypted new encryption key (R3) via the stored R1 and R2, wherein the new key decryption unit (230) decrypts the decrypted new encryption key And a new key verifying unit 235 for verifying the validity of the encryption key R3.

When the card 100 is interfaced with the card 100, the card 100 generates a new encryption key R3 and encrypts and transmits the new encryption key R3 via the previously stored encryption keys R1 and R2, From the card 100, the new cipher key R3 via the R1 and R2.

The new key decryption unit 230 decrypts the encrypted new encryption key R3 via the stored R1 and R2. If the decrypted new encryption key R3 includes a validity verification value, the new key verification unit 235 can verify the validity of the decrypted new encryption key R3 using the validity verification value.

Referring to FIG. 2, the program 210 of the terminal 200 includes a message transmission unit 245 for transmitting a key renewal approval message for the decrypted new encryption key R3 to the interfaced card 100 And a message encryption unit 240 encrypting the key renewal approval message through the new encryption key R3.

When the new encryption key R3 is decrypted or the validity of the decrypted new encryption key R3 is verified, the message transmission unit 245 generates a key renewal approval message for the decrypted new encryption key R3, To the card 100. [

According to the embodiment of the present invention, the message encryption unit 240 can encrypt the key renewal acknowledgment message through the decrypted new encryption key R3. In this case, the message transmission unit 245 transmits the new encryption key And transmits the encrypted key update acknowledgment message to the card 100 via R3.

According to an embodiment of the present invention, the message encryption unit 240 includes a validity verification value (e.g., a checksum value or a hash value obtained by hashing a key update approval message with a specified hash function, etc.) .

Referring to FIG. 2, the program 210 of the terminal 200 reads the updating order of the cipher keys R1 and R2 when the key renewal approval message is transmitted, discards the first updated R1, And a keyset update unit 250 for updating and storing the update sequence.

When the key update message is transmitted to the interfaced card 100, the keyset update unit 250 reads the update order of the cipher keys R1 and R2, discards the first updated R1, and updates And stores them in an order.

According to the embodiment of the present invention, the key set update unit 250 may update and store the updated R2 as the first updated key R1, and update and store the new encrypted key R3 as the updated updated R2.

FIG. 3 is a diagram illustrating a process of generating and exchanging a cryptographic key set according to an embodiment of the present invention.

More specifically, in FIG. 3, when the cipher keys R1 and R2 are not stored in the key set storage area of the card 100, the cipher keys R1 and R2 are generated in the card 100 and stored in the key set storage area And transmits the cryptographic key set to the terminal 200 and stores the cryptographic key set in the terminal 200. The cryptographic key set generating and exchanging process according to the present invention will now be described with reference to FIG. It is to be understood that the invention may be practiced otherwise than as specifically described herein, but it is to be understood that the invention may be practiced otherwise than as specifically described herein, The technical features are not limited by the method alone.

Referring to FIG. 3, the chip module 105 of the card 100 confirms whether it is interfaced with the terminal 200 (300). If the card 100 is interfaced with the terminal 200, the chip module 105 of the card 100 determines whether an encryption key set including encryption keys R1 and R2 is stored in a designated key set storage area (305).

If the cipher key set including the cipher keys R1 and R2 is not stored in the key set storage area, the chip module 105 of the card 100 generates a cipher key set including the cipher keys R1 and R2 (315), stores the cipher keys R1 and R2 in an update order and stores them in a designated key set storage area (315), transmits the cipher keys R1 and R2 with the renewed order to the interfaced terminal 200 (320).

The program 210 of the terminal 200 determines whether it is interfaced with the card 100 (325). If the card 100 is interfaced with the card 100, the program 210 of the terminal 200 receives (330) ciphering keys R1 and R2 from the card 100 and transmits the ciphering keys R1 and R2 to the card 100 (335), and stores the updated sequence in synchronization with the update sequence given in (335).

4 is a diagram illustrating a process of updating a cryptographic key set according to an embodiment of the present invention.

4 is a flowchart illustrating a process of generating a new encryption key R3 from the card 100 and storing the new encryption key R3 in the card 100 and the terminal 200 after storing the encryption keys R1 and R2 in the card 100 and the terminal 200, The terminal 200 decrypts the encrypted new cipher key R3 received from the card 100 through the previously stored cipher keys R1 and R2 in the terminal 200 and transmits the decrypted new cipher key R3 to the terminal 200 , The card 100 and the terminal 200 discard the encryption key R1 and store R2 and R3 as a new encryption key set in the card 100. [ It will be understood by those skilled in the art that various modifications and variations of the cryptographic key set update procedure (e.g., some steps may be omitted, Or a method in which the order is changed) Would be able to infer, the present invention is made, including any exemplary way in which the inference, to which the technical feature that is not limited to the exemplary method shown in the figure 4.

Referring to FIG. 4, the chip module 105 of the card 100 confirms whether it is interfaced with the terminal 200 (400). If the card 100 is interfaced with the terminal 200, the chip module 105 of the card 100 determines whether an encryption key set including encryption keys R1 and R2 is stored in the designated key set storage area (405).

If the cipher key set including the cipher keys R1 and R2 is stored in the key set storage area, the chip module 105 of the card 100 generates a new cipher key R3 (410) After encrypting the new encryption key R3 via R1 and R2 (step 415), the encrypted new encryption key R3 is transmitted to the interfaced terminal 200 (step 420).

The program 210 of the terminal 200 determines whether it is interfaced with the card 100 (425). If the card 100 is interfaced with the card 100, the program 210 of the terminal 200 receives the encrypted new encryption key R3 from the card 100 (430) (435), and verifies the validity of the decrypted new cipher key (R3) (440). If the validity of the new encryption key R3 is verified, the program 210 of the terminal 200 generates a key renewal approval message for the new encryption key R3 (445) After the update approval message is encrypted (450), the key update approval message is transmitted to the interface card (455). The program 210 of the terminal 200 transmits the key renewal acknowledgment message to the card 100 (or when the updating of the cryptographic key set is confirmed in the card 100) The update order is read, the updated R1 is discarded, the update order is assigned to R2 and R3, and the update order is stored (470). Preferably, the program 210 of the terminal 200 updates and stores the R 2 with the first updated R 1, and updates and stores the new encrypted key R 3 with the updated R 2 later.

The chip module 105 of the card 100 receives the key renewal approval message for the new cryptographic key R3 (460) and decrypts the key renewal approval message via the new cryptographic key R3 (465). If the key update acknowledgment message is decrypted through the new encryption key R3, the chip module 105 of the card 100 reads the updating order of the encryption keys R1 and R2, discards the updated R1, And updates and stores them. Preferably, the chip module 105 of the card 100 updates and stores the R2 with the first updated R1, and updates and stores the new cipher key R3 with the updated R2 later.

100: card 105: chip module
115: status checking unit 125: keyset generating unit
130: Keyset storage unit 135: Keyset transmission unit
140: New key generation unit 145: New key encryption unit
150: New key transmitting unit 155: Message receiving unit
160: Message decryption unit 165: Message verification unit
170: Keyset update unit 200:
210: Program 220: Keyset receiver
225: Keyset registration unit 230: New key decryption unit
235: New key verification unit 240: Message encryption unit
245: message transmission unit 250: key set update unit

Claims (8)

A method for performing a program installed in a terminal having an NFC module and a chip module of a contactless card in a noncontact interface and performing a half duplex communication structure,
A first step in which the program of the terminal makes a contactless contact with a chip module of the contactless card through an NFC module;
A second step of checking whether the chip module of the contactless card which is in noncontact contact with the terminal stores two effective cryptographic keys in a preset keyset storage area in response to the contactless interface; And
The chip module generates two valid cryptographic keys R1 and R2 at the same time when two valid cryptographic keys are not stored in the keyset storage area and generates a valid one if the two valid cryptographic keys are stored in the keyset storage area And a third step of generating a new encryption key R3 of the second encryption key R3,
When the valid two cryptographic keys R1 and R2 are simultaneously generated in the chip module,
A step 4a in which the chip module assigns update orders to the cipher keys R1 and R2 and stores them in the keyset storage area;
A step 5a in which the chip module responds to the noncontact-interfaced terminal with the encryption keys R1 and R2 to which the update order is assigned;
(C) receiving the cryptographic keys R1 and R2 generated from the non-contact interface chip module through the chip module; And
And storing the encrypted keys R1 and R2 in an update sequence synchronized with the update sequence given by the chip module,
When the chip module generates the valid one new encryption key R3,
(B) encrypting the new encryption key R3 through R1 and R2 stored in the keyset storage area by the chip module;
(B) transmitting, by the chip module, the encrypted new encryption key R3 to the non-contact interface terminal;
(B) receiving the new cipher key (R3) generated through the chip module from the non-contact interface chip module and encrypted through the cipher keys (R1 and R2);
(B) decrypting the new cipher key R3 using the programs R1 and R2 stored in the terminal;
(B) transmitting the key renewal approval message for the decrypted new cryptographic key R3 to the non-contact interface chip module; And
9b) in which the chip module receives a key update acknowledgment message for the new encryption key R3 from the terminal; And
The chip module reads the update order of the cipher keys R1 and R2 and discards any cipher key corresponding to the order in which the cipher key was first updated and then updates the cipher key corresponding to the updated order and the new cipher key R3 with a new update order And updating and storing the updated data.
A step 11b in which the chip module responds to the noncontact interface terminal with a response corresponding to the renewal and storage of the new encryption key R3 based on the key renewal approval message;
(B) the program receiving the response from the non-contact-interfaced chip module;
The program reads the update order of the cipher keys R1 and R2 based on the received response, discards a cipher key corresponding to the order in which the cipher key is first updated, And updating and storing the update order and the update order synchronized with the update order given by the chip module in step (b).
The method according to claim 1,
Further comprising the step of: if the chip module and the terminal are contactlessly interfaced, the chip module exchanges a designated key value with the terminal to authenticate the validity of the terminal.
2. The method of claim 1,
And verifying the validity of the decrypted new encryption key (R3).
2. The method of claim 1,
And encrypting the key renewal acknowledgment message through the new encryption key (R3).
delete The method according to claim 1,
Further comprising the step of authenticating the validity of the chip module by exchanging a designated key value with the non-contact interface chip module when the chip module and the terminal are contactlessly interfaced. How to update the key.
The method as claimed in claim 1,
Wherein a renewed order is given to any one of the cipher keys R1 and R2 and a later renewed order is given to another cipher key.
2. The method of claim 1,
And decrypting the encrypted key renewal acknowledgment message through the new cryptographic key (R3) when the key renewal acknowledgment message is encrypted.

Images