KR20130085504A - System and method for providing of interface using rights - Google Patents
System and method for providing of interface using rights Download PDFInfo
- Publication number
- KR20130085504A KR20130085504A KR1020110134009A KR20110134009A KR20130085504A KR 20130085504 A KR20130085504 A KR 20130085504A KR 1020110134009 A KR1020110134009 A KR 1020110134009A KR 20110134009 A KR20110134009 A KR 20110134009A KR 20130085504 A KR20130085504 A KR 20130085504A
- Authority
- KR
- South Korea
- Prior art keywords
- application
- interface
- terminal
- information
- authentication information
- Prior art date
Links
- 238000000034 method Methods 0.000 title claims description 30
- 238000004891 communication Methods 0.000 claims description 8
- 238000013475 authorization Methods 0.000 description 8
- 238000010586 diagram Methods 0.000 description 2
- 238000012795 verification Methods 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/10—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
- G06F21/12—Protecting executable software
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/42—User authentication using separate channels for security data
- G06F21/43—User authentication using separate channels for security data wireless channels
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
Abstract
When the authority providing system calls an interface for any application executed in the terminal in order to provide the terminal with the authority to use the interface, it is checked whether the signature information is included in the arbitrary application. If the signature information is included, it is checked whether the application information of the application including the signature information is stored in advance, and if the application information is stored, the terminal provides a right to use an interface for executing an arbitrary application.
Description
The present invention relates to a system and method for providing a right to use an interface.
In order for the terminal to execute the application, the terminal must have both the system permission of the communication company for the execution of the application and the use authority of the application framework. In order for the terminal to have the right to use at the same time, the application code-signed with the certificate of the communication company, the code is signed by the manufacturer certificate of the manufacturer of the terminal running the application again.
As such, when two codes are signed, a problem arises in that the terminal must perform a complicated certificate management procedure.
Accordingly, the present invention provides a system and method for providing a right to use an interface that provides a terminal with a right to use an API (Application Programming Interface) through signature information inserted into an application.
The method for providing an interface use authority for executing an application to a terminal by an authority providing system which is one feature of the present invention for achieving the technical problem of the present invention,
Calling an interface for any application executed in the terminal; Checking whether the arbitrary application includes signature information; If the signature information is included, checking whether application information of an application including the signature information is stored in advance; And if the application information is stored, providing the terminal with the right to use an interface for executing the arbitrary application.
Determining whether the application information is stored in advance, and if the application information is not stored, determining that the arbitrary application is a duplicated application; And not providing an interface use right for executing the arbitrary application to the terminal.
After checking whether the signature information is included, if the signature information is not included in the application, collecting authentication information about the terminal; Determining whether an interface for the application can be provided to the terminal based on the authentication information; If the interface can be provided, collecting authentication information of the application; And if the authentication information of the terminal and the authentication information of the application are the same, providing the terminal with a right to use an interface for executing the arbitrary application.
In the determining of whether the interface for the application can be provided, if the interface cannot be provided, the method may include not providing the terminal with an authority to use an interface for executing the arbitrary application.
If the authentication information for the terminal is not the same as the authentication information of the application, the method may include providing the terminal with no right to use an interface for executing the arbitrary application.
Authentication information of the application may be generated based on the authentication information for the terminal.
In another aspect of the present invention for achieving the technical problem of the present invention, a system for providing an interface use right to a terminal in conjunction with a communication server and an app providing server,
An application executor configured to call an interface allocated corresponding to the executed application when a previously stored application is executed; An authentication information storage unit for storing manufacturer authentication information of the terminal; And when the interface is called by the application execution unit, confirms whether signature information is stored in application information of the executed application or whether to provide a use authority of the application based on manufacturer authentication information of the terminal. And an authority check unit for determining whether to provide an application use authority to the terminal.
The application information may include at least one of use authority information of the interface, signature information signed with a certificate of a communication company providing the interface, or authentication information about an application generated based on manufacturer authentication information of the terminal.
The application usage right providing system may include an application storage unit for storing information of an application embedded in the terminal, or storing and managing an application received from the app providing server together with application information.
According to the present invention, even in the case of signing an application with one certificate, the terminal can be given different interface usage rights, thereby simplifying the application authentication procedure and increasing convenience of certificate management.
1 is an exemplary view showing an interface right providing environment according to an embodiment of the present invention.
2 is a structural diagram of an authority providing system according to an exemplary embodiment of the present invention.
3 is a flowchart illustrating a method for providing an interface right according to an embodiment of the present invention.
DETAILED DESCRIPTION Hereinafter, exemplary embodiments of the present invention will be described in detail with reference to the accompanying drawings so that those skilled in the art may easily implement the present invention. The present invention may, however, be embodied in many different forms and should not be construed as limited to the embodiments set forth herein. In the drawings, parts irrelevant to the description are omitted in order to clearly describe the present invention, and like reference numerals designate like parts throughout the specification.
Throughout the specification, when a part is said to "include" a certain component, it means that it can further include other components, without excluding other components unless specifically stated otherwise.
In this specification, a terminal includes a mobile station (MS), a mobile terminal (MT), a subscriber station (SS), a portable subscriber station (PSS) An access terminal (AT), and the like, and may include all or some of functions of a mobile terminal, a subscriber station, a mobile subscriber station, a user equipment, and the like.
Hereinafter, a system and method for providing an interface use right will be described with reference to the drawings.
1 is an exemplary view showing an interface right providing environment according to an embodiment of the present invention.
As shown in FIG. 1, the
Such an interface is provided from the
The structure of the
2 is a structural diagram of an authority providing system according to an exemplary embodiment of the present invention.
As shown in FIG. 2, the
The
Here, the authentication information of the application refers to authentication information generated based on authentication information of the terminal manufacturer for the terminal on which the application is to be executed by the application developer's terminal when the application is generated by the application developer. Therefore, in the embodiment of the present invention, the authentication information of the application will be described as an example that corresponds to the authentication information of the terminal, but is not necessarily limited to this.
The
The authentication
That is, in the embodiment of the present invention, if the signature information is not included in the application, whether the authority to use the interface is provided to the
In other words, if the application information does not include the signature information signed with the carrier's certificate, the
When the
If the carrier's signature information is included, the signature information is transmitted to the authentication
In addition, if the
A method of confirming authentication information of an application and providing a right to use an interface to the
3 is a flowchart illustrating a method for providing an interface right according to an embodiment of the present invention.
As shown in FIG. 3, when the
The
If the
After performing the authentication of the application through the step S130, the
Therefore, the
On the other hand, in the step of determining whether the
To this end, the terminal manufacturer and the telecommunication company may execute an interface provided by the telecommunication company through a terminal manufactured by the terminal manufacturer through a contract or the like in advance. For example, the information may be embodied in a form inserted in advance in the manufacturer authentication information, but is not necessarily limited thereto.
If it is determined that the corresponding terminal is authorized to execute the interface through the authentication information of the manufacturer, the
If it is authenticated with the same authentication information, the
While the present invention has been particularly shown and described with reference to exemplary embodiments thereof, it is to be understood that the invention is not limited to the disclosed exemplary embodiments, It belongs to the scope of right.
Claims (10)
Calling an interface for any application executed in the terminal;
Checking whether the arbitrary application includes signature information;
If the signature information is included, checking whether application information of an application including the signature information is stored in advance; And
If the application information is stored, providing an interface use right for executing the arbitrary application to the terminal.
Interface permission providing method comprising a.
In the step of checking whether the application information is stored in advance,
If the application information is not stored, determining that the arbitrary application is a duplicated application; And
Not providing an interface use right to execute the arbitrary application to the terminal
Interface permission providing method comprising a.
After checking whether the signature information is included,
If the signature information is not included in the application, collecting authentication information about the terminal;
Determining whether an interface for the application can be provided to the terminal based on the authentication information;
If the interface can be provided, collecting authentication information of the application; And
If the authentication information of the terminal and the authentication information of the application are the same, providing the terminal with a right to use an interface for executing the arbitrary application;
Interface permission providing method comprising a.
In determining whether to provide an interface to the application,
If the interface cannot be provided, providing the terminal with no right to use an interface for executing the arbitrary application;
Interface permission providing method comprising a.
If the authentication information for the terminal and the authentication information of the application are not the same, not providing the terminal with the right to use an interface for executing the arbitrary application.
Interface permission providing method comprising a.
The authentication information of the application is the interface usage right providing method generated based on the authentication information for the terminal.
And the signature information is information signed with a certificate of a telecommunication company that provides the interface.
An application executor configured to call an interface allocated corresponding to the executed application when a previously stored application is executed;
An authentication information storage unit for storing manufacturer authentication information of the terminal; And
When the application execution unit calls the interface, it is checked whether signature information is stored in the application information of the executed application or whether the terminal provides the authority to use the application based on manufacturer authentication information of the terminal. Authority to determine whether to provide the application permission to the local system
Interface permission provision system comprising a.
The application information includes at least one of usage information of the interface, signature information signed with a certificate of a communication company providing the interface, or authentication information for an application generated based on manufacturer authentication information of the terminal. Provide system.
Application storage unit for storing the information of the application embedded in the terminal, or stores and manages the application received from the app providing server with the application information
Interface permission provision system comprising a.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020110134009A KR20130085504A (en) | 2011-12-13 | 2011-12-13 | System and method for providing of interface using rights |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020110134009A KR20130085504A (en) | 2011-12-13 | 2011-12-13 | System and method for providing of interface using rights |
Publications (1)
Publication Number | Publication Date |
---|---|
KR20130085504A true KR20130085504A (en) | 2013-07-30 |
Family
ID=48995658
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
KR1020110134009A KR20130085504A (en) | 2011-12-13 | 2011-12-13 | System and method for providing of interface using rights |
Country Status (1)
Country | Link |
---|---|
KR (1) | KR20130085504A (en) |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR102269363B1 (en) * | 2020-10-29 | 2021-06-25 | (주)아이트로 | External control board installed smart information display device and method of controlling it |
WO2023013886A1 (en) * | 2021-08-05 | 2023-02-09 | 삼성전자주식회사 | Electronic device using separation authority and operation method thereof |
-
2011
- 2011-12-13 KR KR1020110134009A patent/KR20130085504A/en not_active Application Discontinuation
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR102269363B1 (en) * | 2020-10-29 | 2021-06-25 | (주)아이트로 | External control board installed smart information display device and method of controlling it |
WO2023013886A1 (en) * | 2021-08-05 | 2023-02-09 | 삼성전자주식회사 | Electronic device using separation authority and operation method thereof |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
ES2802265T3 (en) | Authorization method of an operation to be performed on a target computing device | |
US9432086B2 (en) | Method and system for authorizing execution of an application in an NFC device | |
ES2893529T3 (en) | Mobile communication device and method of operation thereof | |
US10064240B2 (en) | Mobile communication device and method of operating thereof | |
EP2063378B1 (en) | Telecommunications device security | |
CN103312515B (en) | The generation method of authorization token, generating apparatus, authentication method and Verification System | |
KR20120134509A (en) | Apparatus and method for generating and installing application for device in application development system | |
CN109196841B (en) | Method and apparatus for issuing assertions in distributed databases of a mobile telecommunications network and for personalizing internet of things devices | |
CN103415016A (en) | Mobile WIFI hotspot connection processing method and system | |
CN101226575A (en) | Method for locking application program | |
CN103530534A (en) | Android program ROOT authorization method based on signature verification | |
CN103677892A (en) | Authorization scheme to enable special privilege mode in secure electronic control unit | |
JP2019524016A (en) | Methods for managing the status of connected devices | |
CN103744686A (en) | Control method and system for installing application in intelligent terminal | |
KR101250661B1 (en) | Security apparatus and method for mobile platform | |
CN106133739A (en) | Data are to the safeguard protection of the loading in the nonvolatile memory of safety element | |
CN106897606A (en) | A kind of brush machine means of defence and device | |
JP2017073611A (en) | Information processing system, radio communication chip, peripheral equipment, server, application program, and information processing method | |
JP4732805B2 (en) | Service usage method and terminal | |
JP2017073610A (en) | Information processing system, peripheral equipment, radio communication chip, application program, and information processing method | |
KR20130085504A (en) | System and method for providing of interface using rights | |
CN106576239B (en) | Method and device for managing content in security unit | |
KR20130085544A (en) | Apparatus and method for control of applications using application sign authentication | |
CN102187345B (en) | Midlet signing and revocation | |
CN106326723A (en) | Method and device for certifying APK (Android Package) signature |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
WITN | Withdrawal due to no request for examination |