WO2016177172A1 - Management method, system and terminal, key management system and terminal manufacturer system - Google Patents

Management method, system and terminal, key management system and terminal manufacturer system Download PDF

Info

Publication number
WO2016177172A1
WO2016177172A1 PCT/CN2016/077376 CN2016077376W WO2016177172A1 WO 2016177172 A1 WO2016177172 A1 WO 2016177172A1 CN 2016077376 W CN2016077376 W CN 2016077376W WO 2016177172 A1 WO2016177172 A1 WO 2016177172A1
Authority
WO
WIPO (PCT)
Prior art keywords
application
key
terminal
partition
verification
Prior art date
Application number
PCT/CN2016/077376
Other languages
French (fr)
Chinese (zh)
Inventor
李楠
章强
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2016177172A1 publication Critical patent/WO2016177172A1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/30Public key, i.e. encryption algorithm being computationally infeasible to invert or user's encryption keys not requiring secrecy
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computing Systems (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • General Engineering & Computer Science (AREA)
  • Stored Programmes (AREA)

Abstract

Provided are a management method, system and terminal, key management system and terminal manufacturer system. The method comprises: receiving and storing, by a key management system, a public key of an application key uploaded by an application developer, and feeding back an application identifier corresponding to the application to the application developer; transmitting, by a terminal manufacturer system, a key download request to the key management system, receiving the public key of the application key returned by the key management system, and writing into a key partition of the terminal; acquiring, by the terminal, an application identifier of an application to be installed, searching, in the key partition, for the public key of the application key corresponding to the application identifier, conducting a signature verification of a private key of the application to be installed, and managing, according to a verification result, the installation of the application to be installed. By implementing the present invention, when installing the application, the terminal conducts, based on the public key of the application key of a stored valid application, a signature verification of the private key of the application, and manages, according to the verification result, the installation of the application, thus addressing the problem in which a related terminal is unable to verify the validity of an application.

Description

管理方法及系统、终端、密钥管理系统及终端厂商系统Management method and system, terminal, key management system and terminal manufacturer system 技术领域Technical field
本发明涉及应用安装的管理领域,尤其涉及一种管理方法及系统、终端、密钥管理系统及终端厂商系统。The present invention relates to the field of application installation management, and in particular, to a management method and system, a terminal, a key management system, and a terminal vendor system.
背景技术Background technique
目前安卓系统平台是最受用户欢迎的手机平台,作为全部开源的代码,安卓平台的应用,应用程序开发者可以随意开发,并且可以下载网络的应用进行反编译修改内部源码再进行发布,若某些应用开发者对某些受欢迎的应用修改增加木马程序后,用户安装此类应用将导致下载安装后被扣费、扣流量等。At present, the Android system platform is the most popular mobile phone platform for users. As an open source code, the application of the Android platform, application developers can develop at will, and can download the network application to decompile and modify the internal source code and then release it. After some application developers modify the Trojans for some popular applications, users installing such applications will result in deductions, deductions, etc. after downloading and installing.
目前应用软件在各个网站都有下载,用户无法区分哪些是正规机构发布的,哪些是被恶意注入和篡改的盗版应用;若用户下载并安装盗版应用,轻者可以导致用户下载安装后被扣费、扣流量等,重者支付宝、手机银行盗取银行密码信息,财物受到严重损失。At present, the application software is downloaded on various websites. Users cannot distinguish which are published by the formal institutions and which are pirated applications that are maliciously injected and tampered with; if the user downloads and installs the pirated application, the lighter can cause the user to be charged after downloading and installing. , deduction of traffic, etc., heavy Alipay, mobile banking stealing bank password information, property suffered serious losses.
因此,如何提供一种可以对应用进行校验的应用安装的管理方法,是本领域技术人员亟待解决的技术问题。Therefore, how to provide a management method for an application installation that can verify an application is a technical problem to be solved by those skilled in the art.
发明内容Summary of the invention
本发明实施例提供了一种管理方法及系统、终端、密钥管理系统及终端厂商系统,以解决相关终端无法对应用合法性进行校验的问题。The embodiment of the invention provides a management method and system, a terminal, a key management system and a terminal manufacturer system, so as to solve the problem that the relevant terminal cannot verify the validity of the application.
本发明实施例提供了一种用于管理应用安装的管理方法,其包括:The embodiment of the invention provides a management method for managing application installation, which includes:
获取待安装应用的应用标识;Obtain an application identifier of the application to be installed;
在密钥分区查找与应用标识对应的应用密钥的公钥;密钥分区用于存储合法应用的应用密钥的公钥;Searching for the public key of the application key corresponding to the application identifier in the key partition; the key partition is used to store the public key of the application key of the legal application;
根据应用密钥的公钥对待安装应用的私钥进行签名校验;Signature verification of the private key of the application to be installed according to the public key of the application key;
根据校验结果管理待安装应用的安装。Manage the installation of the application to be installed based on the verification result.
可选的,还包括:若未在密钥分区查找到与应用标识对应的应用密钥的公钥,则更新密钥分区,或者提示待安装应用为危险应用。 Optionally, the method further includes: if the public key of the application key corresponding to the application identifier is not found in the key partition, updating the key partition, or prompting the application to be installed as a dangerous application.
可选的,还包括:周期性或者实时获取密钥差分升级包,基于密钥分区当前存储的所有合法应用的应用密钥的公钥,利用密钥差分升级包更新密钥分区。Optionally, the method further includes: acquiring the key differential upgrade package periodically or in real time, and updating the key partition by using the key differential upgrade package based on the public key of the application key of all legal applications currently stored in the key partition.
可选的,根据校验结果管理待安装应用的安装包括:当校验结果为校验成功时,安装待安装应用;当校验结果为校验失败时,提示待安装应用为危险应用。Optionally, the installation of the application to be installed according to the verification result includes: when the verification result is that the verification is successful, the application to be installed is installed; when the verification result is a verification failure, the application to be installed is prompted to be a dangerous application.
可选的,在提示待安装应用为危险应用之前,还包括:更新密钥分区,重新查找与应用标识对应的应用密钥的公钥,并再次进行签名校验,若校验成功,则安装待安装应用,若校验失败,则提示待安装应用为危险应用。Optionally, before the application to be installed is a dangerous application, the method further includes: updating the key partition, re-finding the public key of the application key corresponding to the application identifier, and performing signature verification again. If the verification succeeds, the installation is performed. If the application is to be installed, if the verification fails, the application to be installed is prompted to be a dangerous application.
可选的,在更新密钥分区之前,还包括:比较密钥分区最后一次的更新时间与待安装应用的上传时间,若更新时间早于上传时间时,则更新密钥分区,若更新时间晚于上传时间时,则不更新密钥分区。Optionally, before updating the key partition, the method further includes: comparing the last update time of the key partition with the upload time of the application to be installed, and updating the key partition if the update time is earlier than the upload time, if the update time is later The key partition is not updated at the time of upload.
可选的,在提示待安装应用为危险应用之后,还包括:提示是否进行危险应用的安装,若是,则安装待安装应用,并进行危险标识。Optionally, after prompting the application to be installed as a dangerous application, the method further includes: prompting whether the installation of the dangerous application is performed, and if yes, installing the application to be installed and performing the danger identification.
本发明实施例提供了一种用于管理应用安装的管理方法,其包括:The embodiment of the invention provides a management method for managing application installation, which includes:
接收并存储应用开发者上传的应用密钥的公钥,向应用开发者反馈应用对应的应用标识;Receiving and storing the public key of the application key uploaded by the application developer, and feeding back the application identifier corresponding to the application to the application developer;
在接收到终端厂商系统的密钥下载请求后,将所存储的所有应用密钥的公钥发送终端厂商系统,供终端厂商系统写入终端密钥分区。After receiving the key download request of the terminal manufacturer system, the public key of all stored application keys is sent to the terminal manufacturer system for the terminal manufacturer system to write the terminal key partition.
可选的,还包括:当接收到新的应用密钥或者应用密钥变化时,生成并发送密钥差分升级包至终端厂商系统和/或终端。Optionally, the method further includes: generating and transmitting a key differential upgrade package to the terminal manufacturer system and/or the terminal when receiving the new application key or the application key change.
本发明实施例提供了一种用于管理应用安装的管理方法,其包括:The embodiment of the invention provides a management method for managing application installation, which includes:
向密钥管理系统发送密钥下载请求;Sending a key download request to the key management system;
接收密钥管理系统返回的应用密钥的公钥,并写入终端的密钥分区。Receive the public key of the application key returned by the key management system and write it to the key partition of the terminal.
可选的,还包括:当接收到新的应用密钥或者应用密钥变化时,生成密钥差分升级包,或者接收密钥管理系统发送的密钥差分升级包;发送密钥差分升级包至终端。Optionally, the method further includes: generating a key differential upgrade package when receiving a new application key or an application key change, or receiving a key differential upgrade package sent by the key management system; sending the key differential upgrade package to terminal.
本发明实施例提供了一种用于管理应用安装的管理方法,其包括:The embodiment of the invention provides a management method for managing application installation, which includes:
密钥管理系统接收并存储应用开发者上传的应用密钥的公钥,向应用开发者反馈应用对应的应用标识; The key management system receives and stores the public key of the application key uploaded by the application developer, and feeds back the application identifier corresponding to the application to the application developer;
终端厂商系统向密钥管理系统发送密钥下载请求,接收密钥管理系统返回的应用密钥的公钥,并写入终端的密钥分区;The terminal manufacturer system sends a key download request to the key management system, receives the public key of the application key returned by the key management system, and writes the key partition of the terminal;
终端获取待安装应用的应用标识,在密钥分区查找与应用标识对应的应用密钥的公钥,密钥分区用于存储合法应用的应用密钥的公钥,根据应用密钥的公钥对待安装应用的私钥进行签名校验,根据校验结果管理待安装应用的安装。The terminal obtains the application identifier of the application to be installed, searches for the public key of the application key corresponding to the application identifier in the key partition, and uses the key partition to store the public key of the application key of the legal application, and treats the public key according to the application key. Install the application's private key for signature verification, and manage the installation of the application to be installed according to the verification result.
本发明实施例提供了一种终端,其包括:An embodiment of the present invention provides a terminal, including:
获取模块,设置为获取待安装应用的应用标识;Obtaining a module, configured to obtain an application identifier of the application to be installed;
查找模块,设置为在密钥分区查找与应用标识对应的应用密钥的公钥;密钥分区用于存储合法应用的应用密钥的公钥;a search module, configured to search for a public key of an application key corresponding to the application identifier in the key partition; the key partition is configured to store a public key of the application key of the legal application;
校验模块,设置为根据应用密钥的公钥对待安装应用的私钥进行签名校验;The verification module is configured to perform signature verification on the private key of the application to be installed according to the public key of the application key;
管理模块,设置为根据校验结果管理待安装应用的安装。The management module is configured to manage the installation of the application to be installed according to the verification result.
可选的,查找模块还设置为若未在密钥分区查找到与应用标识对应的应用密钥的公钥,则更新密钥分区,或者提示待安装应用为危险应用。Optionally, the searching module is further configured to update the key partition if the public key of the application key corresponding to the application identifier is not found in the key partition, or prompt the application to be installed as a dangerous application.
可选的,查找模块还设置为周期性或者实时获取密钥差分升级包,基于密钥分区当前存储的所有合法应用的应用密钥的公钥,利用密钥差分升级包更新密钥分区。Optionally, the searching module is further configured to obtain a key differential upgrade package periodically or in real time, and update the key partition by using the key differential upgrade package based on the public key of the application key of all legal applications currently stored in the key partition.
可选的,管理模块设置为当校验结果为校验成功时,安装待安装应用;当校验结果为校验失败时,提示待安装应用为危险应用。Optionally, the management module is configured to: when the verification result is successful, install the application to be installed; when the verification result is verification failure, prompt the application to be installed as a dangerous application.
可选的,在提示待安装应用为危险应用之前,查找模块还设置为更新密钥分区,重新查找与应用标识对应的应用密钥的公钥,并再次进行签名校验,若校验成功,则安装待安装应用,若校验失败,则提示待安装应用为危险应用。Optionally, before the user is prompted to install the application as a dangerous application, the search module is further configured to update the key partition, re-search the public key of the application key corresponding to the application identifier, and perform signature verification again. Then install the application to be installed. If the verification fails, the application to be installed is prompted to be a dangerous application.
可选的,查找模块在更新密钥分区之前,还设置为比较密钥分区最后一次的更新时间与待安装应用的上传时间,若更新时间早于上传时间时,则更新密钥分区,若更新时间晚于上传时间时,则不更新密钥分区。Optionally, before the update key partition is updated, the search module is further configured to compare the last update time of the key partition with the upload time of the application to be installed, and if the update time is earlier than the upload time, update the key partition, if the update is performed. When the time is later than the upload time, the key partition is not updated.
可选的,管理模块在提示待安装应用非法之后,还设置为提示是否进行危险应用的安装,若是,则安装待安装应用,并进行危险标识。Optionally, after the management module prompts that the application to be installed is illegal, the management module is further configured to prompt whether to install the dangerous application, and if yes, install the application to be installed and perform the danger identification.
本发明实施例提供了一种密钥管理系统,其包括:The embodiment of the invention provides a key management system, which includes:
存储模块,设置为接收并存储应用开发者上传的应用密钥的公钥,向应用开发者反馈应 用对应的应用标识;a storage module configured to receive and store a public key of an application key uploaded by an application developer, and feed back to the application developer Use the corresponding application identifier;
下发模块,设置为在接收到终端厂商系统的密钥下载请求后,将所存储的所有应用密钥的公钥发送终端厂商系统,供终端厂商系统写入终端密钥分区。The issuing module is configured to, after receiving the key download request of the terminal manufacturer system, send the stored public key of all application keys to the terminal manufacturer system for the terminal manufacturer system to write the terminal key partition.
可选的,下发模块还设置为当接收到新的应用密钥或者应用密钥变化时,生成并发送密钥差分升级包至终端厂商系统和/或终端。Optionally, the sending module is further configured to generate and send the key differential upgrade package to the terminal manufacturer system and/or the terminal when receiving the new application key or the application key change.
本发明实施例提供了一种终端厂商系统,其包括:The embodiment of the invention provides a terminal manufacturer system, which includes:
请求模块,设置为向密钥管理系统发送密钥下载请求;a request module, configured to send a key download request to the key management system;
写入模块,设置为接收密钥管理系统返回的应用密钥的公钥,并写入终端的密钥分区。The write module is configured to receive the public key of the application key returned by the key management system and write the key partition of the terminal.
可选的,写入模块还设置为当接收到新的应用密钥或者应用密钥变化时,生成密钥差分升级包,或者接收密钥管理系统发送的密钥差分升级包;发送密钥差分升级包至终端。Optionally, the writing module is further configured to generate a key differential upgrade package when receiving a new application key or an application key change, or receive a key differential upgrade package sent by the key management system; and send the key difference Upgrade the package to the terminal.
本发明实施例提供了一种用于管理应用安装的管理系统,其包括:密钥管理系统、终端厂商系统及终端;其中,An embodiment of the present invention provides a management system for managing application installation, including: a key management system, a terminal manufacturer system, and a terminal;
密钥管理系统,设置为接收并存储应用开发者上传的应用密钥的公钥,向应用开发者反馈应用对应的应用标识;a key management system, configured to receive and store a public key of an application key uploaded by an application developer, and feed back an application identifier corresponding to the application to the application developer;
终端厂商系统,设置为向密钥管理系统发送密钥下载请求,接收密钥管理系统返回的应用密钥的公钥,并写入终端的密钥分区;The terminal manufacturer system is configured to send a key download request to the key management system, receive the public key of the application key returned by the key management system, and write the key partition of the terminal;
终端,设置为获取待安装应用的应用标识,在密钥分区查找与应用标识对应的应用密钥的公钥,密钥分区用于存储合法应用的应用密钥的公钥,根据应用密钥的公钥对待安装应用的私钥进行签名校验,根据校验结果管理待安装应用的安装。The terminal is configured to obtain an application identifier of the application to be installed, and find a public key of the application key corresponding to the application identifier in the key partition, and the key partition is used to store the public key of the application key of the legal application, according to the application key The public key performs signature verification on the private key of the installed application, and manages the installation of the application to be installed according to the verification result.
在本发明实施例中,还提供了一种计算机存储介质,该计算机存储介质可以存储有执行指令,该执行指令用于执行上述实施例中的管理方法。In the embodiment of the present invention, a computer storage medium is further provided, and the computer storage medium may store an execution instruction for executing the management method in the foregoing embodiment.
本发明实施例的有益效果:Advantageous effects of embodiments of the present invention:
本发明实施例提供了一种管理方法,用户下载某应用之后,在安装该应用时,终端基于终端内存储的合法应用的应用密钥的公钥对该应用的私钥进行签名校验,判断该应用是否是合法开发者开发的应用,以实现对应用合法性的校验,并且根据校验结果管理该应用的安装,合法应用直接安装,非法应用提示该应用为危险应用,解决了相关终端无法对应用合法性进行校验的问题,增强了用户的使用体验。 The embodiment of the present invention provides a management method. After the user downloads an application, the terminal performs signature verification on the private key of the application based on the public key of the application key of the legal application stored in the terminal. Whether the application is an application developed by a legitimate developer to verify the validity of the application, and manage the installation of the application according to the verification result, and the legal application is directly installed, and the illegal application prompts the application as a dangerous application, and the related terminal is solved. The problem of not being able to verify the validity of the application enhances the user experience.
附图说明DRAWINGS
图1为本发明第一实施例提供的管理系统的结构示意图;1 is a schematic structural diagram of a management system according to a first embodiment of the present invention;
图2为本发明第二实施例提供的管理方法的流程图;2 is a flowchart of a management method according to a second embodiment of the present invention;
图3为本发明第三实施例提供的管理方法的流程图。FIG. 3 is a flowchart of a management method according to a third embodiment of the present invention.
具体实施方式detailed description
现通过具体实施方式结合附图的方式对本发明做出进一步的诠释说明。The invention will now be further illustrated by way of specific embodiments in conjunction with the accompanying drawings.
第一实施例:First embodiment:
图1为本发明第一实施例提供的管理系统的结构示意图,由图1可知,在本实施例中,本发明实施例提供的管理系统包括:密钥管理系统1、终端厂商系统2及终端3,其中,FIG. 1 is a schematic structural diagram of a management system according to a first embodiment of the present invention. As shown in FIG. 1, in the embodiment, the management system provided by the embodiment of the present invention includes: a key management system 1, a terminal manufacturer system 2, and a terminal. 3, among them,
密钥管理系统1,设置为接收并存储应用开发者上传的应用密钥的公钥,向应用开发者反馈应用对应的应用标识;The key management system 1 is configured to receive and store a public key of an application key uploaded by an application developer, and feed back an application identifier corresponding to the application to the application developer;
终端厂商系统2,设置为向密钥管理系统1发送密钥下载请求,接收密钥管理系统1返回的应用密钥的公钥,并写入终端3的密钥分区;The terminal manufacturer system 2 is configured to send a key download request to the key management system 1, receive the public key of the application key returned by the key management system 1, and write the key partition of the terminal 3;
终端3,设置为获取待安装应用的应用标识,在密钥分区查找与应用标识对应的应用密钥的公钥,密钥分区用于存储合法应用的应用密钥的公钥,根据应用密钥的公钥对待安装应用的私钥进行签名校验,根据校验结果管理待安装应用的安装。The terminal 3 is configured to obtain an application identifier of the application to be installed, and search for a public key of the application key corresponding to the application identifier in the key partition, and the key partition is used to store the public key of the application key of the legal application, according to the application key. The public key performs signature verification on the private key of the installed application, and manages the installation of the application to be installed according to the verification result.
在一些实施例中,如图1所示,本发明实施例提供的终端3包括:In some embodiments, as shown in FIG. 1, the terminal 3 provided by the embodiment of the present invention includes:
获取模块31,设置为获取待安装应用的应用标识;The obtaining module 31 is configured to obtain an application identifier of the application to be installed;
查找模块32,设置为在密钥分区查找与应用标识对应的应用密钥的公钥;密钥分区用于存储合法应用的应用密钥的公钥;The searching module 32 is configured to: in the key partition, find a public key of an application key corresponding to the application identifier; the key partition is configured to store a public key of the application key of the legal application;
校验模块33,设置为根据应用密钥的公钥对待安装应用的私钥进行签名校验;同一应用秘钥包括公钥及私钥,公钥及私钥基于相同的算法生成,若用户被其他开发者修改后上传,应用安装包内携带的私钥就会改变,此时签名验证就不能通过,对应的,若应用秘钥被非法修改,应用安装包内携带的私钥不会改变,此时签名验证就能通过;The verification module 33 is configured to perform signature verification on the private key of the application to be installed according to the public key of the application key; the same application key includes a public key and a private key, and the public key and the private key are generated based on the same algorithm, if the user is After the other developers modify and upload, the private key carried in the application installation package will change. At this time, the signature verification cannot be passed. Correspondingly, if the application key is illegally modified, the private key carried in the application installation package will not change. At this point, the signature verification can be passed;
管理模块34,设置为根据校验结果管理待安装应用的安装。The management module 34 is configured to manage the installation of the application to be installed according to the verification result.
在一些实施例中,上述实施例中的查找模块32还设置为若未在密钥分区查找到与应用标识对应的应用密钥的公钥,则更新密钥分区,或者提示待安装应用为危险应用。In some embodiments, the lookup module 32 in the above embodiment is further configured to update the key partition if the public key of the application key corresponding to the application identifier is not found in the key partition, or prompt the application to be installed as a danger. application.
在一些实施例中,上述实施例中的查找模块32还设置为周期性或者实时获取密钥差分升 级包,基于密钥分区当前存储的所有合法应用的应用密钥的公钥,利用密钥差分升级包更新密钥分区。In some embodiments, the lookup module 32 in the above embodiment is further configured to acquire the key differential liters periodically or in real time. The level packet, based on the public key of the application key of all legitimate applications currently stored by the key partition, updates the key partition by using the key differential upgrade package.
在一些实施例中,上述实施例中的管理模块34设置为当校验结果为校验成功时,安装待安装应用;当校验结果为校验失败时,提示待安装应用为危险应用。In some embodiments, the management module 34 in the foregoing embodiment is configured to install the application to be installed when the verification result is that the verification is successful; and when the verification result is the verification failure, the application to be installed is prompted to be a dangerous application.
在一些实施例中,在提示待安装应用为危险应用之前,上述实施例中的查找模块32还设置为更新密钥分区,重新查找与应用标识对应的应用密钥的公钥,并再次进行签名校验,若校验成功,则安装待安装应用,若校验失败,则提示待安装应用为危险应用。In some embodiments, before prompting the application to be installed as a dangerous application, the searching module 32 in the above embodiment is further configured to update the key partition, re-find the public key of the application key corresponding to the application identifier, and sign again. If the verification is successful, the application to be installed is installed. If the verification fails, the application to be installed is prompted to be a dangerous application.
在一些实施例中,上述实施例中的查找模块32在更新密钥分区之前,还设置为比较密钥分区最后一次的更新时间与待安装应用的上传时间,若更新时间早于上传时间时,则更新密钥分区,若更新时间晚于上传时间时,则不更新密钥分区。In some embodiments, the lookup module 32 in the above embodiment is further configured to compare the last update time of the key partition with the upload time of the application to be installed before updating the key partition, and if the update time is earlier than the upload time, The key partition is updated, and if the update time is later than the upload time, the key partition is not updated.
在一些实施例中,上述实施例中的管理模块34在提示待安装应用非法之后,还设置为提示是否进行危险应用的安装,若是,则安装待安装应用,并进行危险标识。In some embodiments, after the management module 34 in the above embodiment prompts that the application to be installed is illegal, it is further set to prompt whether to install the dangerous application, and if so, install the application to be installed and perform the danger identification.
在一些实施例中,如图1所示,本发明实施例提供的密钥管理系统1,其包括:In some embodiments, as shown in FIG. 1, the key management system 1 provided by the embodiment of the present invention includes:
存储模块11,设置为接收并存储应用开发者上传的应用密钥的公钥,向应用开发者反馈应用对应的应用标识;The storage module 11 is configured to receive and store a public key of an application key uploaded by the application developer, and feed back an application identifier corresponding to the application to the application developer;
下发模块12,设置为在接收到终端厂商系统2的密钥下载请求后,将所存储的所有应用密钥的公钥发送终端厂商系统2,供终端厂商系统写入终端密钥分区。The delivery module 12 is configured to, after receiving the key download request of the terminal manufacturer system 2, send the stored public key of all application keys to the terminal manufacturer system 2 for the terminal manufacturer system to write the terminal key partition.
在一些实施例中,上述实施例中的下发模块12还设置为当接收到新的应用密钥或者应用密钥变化时,生成并发送密钥差分升级包至终端厂商系统2和/或终端3。In some embodiments, the sending module 12 in the above embodiment is further configured to generate and send a key differential upgrade package to the terminal manufacturer system 2 and/or the terminal when receiving a new application key or an application key change. 3.
在一些实施例中,如图1所示,本发明实施例提供的终端厂商系统2,其包括:In some embodiments, as shown in FIG. 1, the terminal manufacturer system 2 provided by the embodiment of the present invention includes:
请求模块21,设置为向密钥管理系统1发送密钥下载请求;The requesting module 21 is configured to send a key download request to the key management system 1;
写入模块22,设置为接收密钥管理系统1返回的应用密钥的公钥,并写入终端3的密钥分区。The writing module 22 is arranged to receive the public key of the application key returned by the key management system 1 and write it to the key partition of the terminal 3.
在一些实施例中,上述实施例中的写入模块22还设置为当接收到新的应用密钥或者应用密钥变化时,生成密钥差分升级包,或者接收密钥管理系统1发送的密钥差分升级包;发送密钥差分升级包至终端3。In some embodiments, the writing module 22 in the above embodiment is further configured to generate a key differential upgrade package when receiving a new application key or application key change, or receive the secret sent by the key management system 1. Key differential upgrade package; send key differential upgrade package to terminal 3.
在本发明实施例中,还提供了一种计算机存储介质,该计算机存储介质可以存储有执行指令,该执行指令用于执行上述实施例中的方法。In the embodiment of the present invention, a computer storage medium is further provided, and the computer storage medium may store an execution instruction for executing the method in the foregoing embodiment.
第二实施例:Second embodiment:
图2为本发明第二实施例提供的管理方法的流程图,由图2可知,在本实施例中,本发明提供的管理方法包括以下步骤: FIG. 2 is a flowchart of a management method according to a second embodiment of the present invention. As shown in FIG. 2, in the embodiment, the management method provided by the present invention includes the following steps:
S201:密钥管理系统接收并存储应用开发者上传的应用密钥的公钥,向应用开发者反馈应用对应的应用标识;S201: The key management system receives and stores the public key of the application key uploaded by the application developer, and feeds back the application identifier corresponding to the application to the application developer;
S202:终端厂商系统向密钥管理系统发送密钥下载请求,接收密钥管理系统返回的应用密钥的公钥,并写入终端的密钥分区;S202: The terminal manufacturer system sends a key download request to the key management system, receives the public key of the application key returned by the key management system, and writes the key partition of the terminal;
S203:终端获取待安装应用的应用标识,在密钥分区查找与应用标识对应的应用密钥的公钥,密钥分区用于存储合法应用的应用密钥的公钥,根据应用密钥的公钥对待安装应用的私钥进行签名校验,根据校验结果管理待安装应用的安装。S203: The terminal acquires an application identifier of the application to be installed, and searches for a public key of the application key corresponding to the application identifier in the key partition, where the key partition is used to store the public key of the application key of the legal application, according to the public key of the application key. The key performs signature verification on the private key of the installed application, and manages the installation of the application to be installed according to the verification result.
在一些实施例中,本发明实施例提供了一种管理应用安装的管理方法,其包括:In some embodiments, an embodiment of the present invention provides a management method for managing application installation, including:
获取待安装应用的应用标识;Obtain an application identifier of the application to be installed;
在密钥分区查找与应用标识对应的应用密钥的公钥;密钥分区用于存储合法应用的应用密钥的公钥;Searching for the public key of the application key corresponding to the application identifier in the key partition; the key partition is used to store the public key of the application key of the legal application;
根据应用密钥的公钥对待安装应用的私钥进行签名校验;Signature verification of the private key of the application to be installed according to the public key of the application key;
根据校验结果管理待安装应用的安装。Manage the installation of the application to be installed based on the verification result.
在一些实施例中,上述实施例中的方法还包括:若未在密钥分区查找到与应用标识对应的应用密钥的公钥,则更新密钥分区,或者提示待安装应用为危险应用。In some embodiments, the method in the foregoing embodiment further includes: if the public key of the application key corresponding to the application identifier is not found in the key partition, updating the key partition, or prompting the application to be installed as a dangerous application.
在一些实施例中,上述实施例中的方法还包括:周期性或者实时获取密钥差分升级包,基于密钥分区当前存储的所有合法应用的应用密钥的公钥,利用密钥差分升级包更新密钥分区。In some embodiments, the method in the foregoing embodiment further includes: acquiring the key differential upgrade package periodically or in real time, and using the key differential upgrade package based on the public key of the application key of all legal applications currently stored in the key partition. Update the key partition.
在一些实施例中,上述实施例中的根据校验结果管理待安装应用的安装包括:当校验结果为校验成功时,安装待安装应用;当校验结果为校验失败时,提示待安装应用为危险应用。In some embodiments, the installing the application to be installed according to the verification result in the foregoing embodiment includes: when the verification result is that the verification is successful, installing the application to be installed; when the verification result is a verification failure, prompting to wait Install the application as a hazardous application.
在一些实施例中,上述实施例中的方法在提示待安装应用为危险应用之前,还包括:更新密钥分区,重新查找与应用标识对应的应用密钥的公钥,并再次进行签名校验,若校验成功,则安装待安装应用,若校验失败,则提示待安装应用为危险应用。In some embodiments, the method in the foregoing embodiment further includes: updating the key partition, re-finding the public key of the application key corresponding to the application identifier, and performing signature verification again before prompting the application to be installed as a dangerous application. If the verification is successful, install the application to be installed. If the verification fails, the application to be installed is prompted to be a dangerous application.
在一些实施例中,上述实施例中的方法在更新密钥分区之前,还包括:比较密钥分区最后一次的更新时间与待安装应用的上传时间,若更新时间早于上传时间时,则更新密钥分区,若更新时间晚于上传时间时,则不更新密钥分区。In some embodiments, before updating the key partition, the method in the foregoing embodiment further includes: comparing the last update time of the key partition with the upload time of the application to be installed, and updating if the update time is earlier than the upload time. Key partitioning, if the update time is later than the upload time, the key partition is not updated.
在一些实施例中,上述实施例中的方法在提示待安装应用为危险应用之后,还包括:提示是否进行危险应用的安装,若是,则安装待安装应用,并进行危险标识。In some embodiments, after the method in the foregoing embodiment prompts that the application to be installed is a dangerous application, the method further includes: prompting whether to install the dangerous application, and if yes, installing the application to be installed and performing the danger identification.
在一些实施例中,本发明实施例提供了一种管理应用安装的管理方法,其包括:In some embodiments, an embodiment of the present invention provides a management method for managing application installation, including:
接收并存储应用开发者上传的应用密钥的公钥,向应用开发者反馈应用对应的应用标识;Receiving and storing the public key of the application key uploaded by the application developer, and feeding back the application identifier corresponding to the application to the application developer;
在接收到终端厂商系统的密钥下载请求后,将所存储的所有应用密钥的公钥发送终端厂 商系统,供终端厂商系统写入终端密钥分区。After receiving the key download request of the terminal manufacturer system, the public key of all stored application keys is sent to the terminal factory. The merchant system is used by the terminal manufacturer system to write the terminal key partition.
在一些实施例中,上述实施例中的方法还包括:当接收到新的应用密钥或者应用密钥变化时,生成并发送密钥差分升级包至终端厂商系统和/或终端。In some embodiments, the method in the above embodiments further includes generating and transmitting a key differential upgrade package to the terminal vendor system and/or the terminal when a new application key or application key change is received.
在一些实施例中,本发明实施例提供了一种用于管理应用安装的管理方法,其包括:In some embodiments, an embodiment of the present invention provides a management method for managing an application installation, including:
向密钥管理系统发送密钥下载请求;Sending a key download request to the key management system;
接收密钥管理系统返回的应用密钥的公钥,并写入终端的密钥分区。Receive the public key of the application key returned by the key management system and write it to the key partition of the terminal.
在一些实施例中,上述实施例中的方法还包括:当接收到新的应用密钥或者应用密钥变化时,生成密钥差分升级包,或者接收密钥管理系统发送的密钥差分升级包;发送密钥差分升级包至终端。In some embodiments, the method in the foregoing embodiment further includes: generating a key differential upgrade package when receiving a new application key or applying a key change, or receiving a key differential upgrade package sent by the key management system. Send the key differential upgrade package to the terminal.
现结合具体应用场景对本发明实施例做进一步的诠释说明。The embodiments of the present invention are further explained in conjunction with specific application scenarios.
第三实施例:Third embodiment:
本实施例是为了建立一种新的手机应用使用规范模式,建立第三方密钥管理机构数据库,即本发明实施例提供的密钥管理系统,由应用开发者上传密钥到数据库后即可发布应用在网络上面。只有手机生产厂商,即本发明实施例提供的终端厂商系统,可以通过正规申请渠道,拥有数据库的下载访问和下载权限,并把密钥数据库保存在手机本地,随着科技的发展,手机的存储空间已经不再是一个限制问题,用户安装从网络下载的应用的时候查询手机安全分区的数据库密钥来校验签名,正规在密钥管理机构上传过密钥的软件才属于正规可以安装软件,否则不可以安装成功并根据应用发布时间进行查询,是否联网升级密钥安全分区,升级后再次安装,校验成功即为安全软件,校验仍然失败,即为危险软件,建议不安装,提示用户是否进行危险软件安装,如果选择是,则允许用户安装成功,并在软件图标上进行危险标识。This embodiment is to establish a new mobile phone application usage specification mode, and establish a third-party key management authority database, that is, the key management system provided by the embodiment of the present invention, which can be released by the application developer after uploading the key to the database. Applied on the network. Only the mobile phone manufacturer, that is, the terminal manufacturer system provided by the embodiment of the present invention, can have the download access and download permission of the database through the formal application channel, and save the key database in the mobile phone local. With the development of technology, the storage of the mobile phone Space is no longer a limitation problem. When users install an application downloaded from the network, they query the database key of the mobile security partition to verify the signature. The software that has been uploaded by the key management authority is a formal software that can be installed. Otherwise, the installation cannot be successful and the query is based on the application release time. Whether the network upgrade key security partition is installed, and the installation is performed again after the upgrade. The verification succeeds as the security software. The verification still fails. It is dangerous software. It is recommended not to install, prompting the user. Whether to install dangerous software, if yes, allow the user to install successfully and perform dangerous identification on the software icon.
具体的,密钥管理系统为新建立的第三方密钥管理机构,管理所有应用开发者上传的密钥;应用开发者有上传密钥到第三方密钥管理机构的权限,拥有唯一的id账号,没有修改和下载权限;只有正规的手机生产厂商通过正规申请流程,获取第三方密钥管理机构的下载权限。随着科技发展,手机存储空间已经不再是一种约束条件的情况,手机会建立一个安全密钥分区来保存下载的密钥数据库;手机在出厂烧录的时候在安全分区会烧录一个最新的数据库供用户使用并进行后续升级,手机厂商会对于这个分区定时发布升级包,类似针对这个分区的fota差分升级包,手机生产厂商定期在第三方密钥管理架构下载并制作升级包,供用户在线差分升级。Specifically, the key management system is a newly established third-party key management organization that manages keys uploaded by all application developers; the application developer has the right to upload a key to a third-party key management authority, and has a unique id account. There is no modification and download permission; only the regular mobile phone manufacturer obtains the download permission of the third-party key management organization through the formal application process. With the development of technology, mobile phone storage space is no longer a constraint. The mobile phone will establish a secure key partition to store the downloaded key database. The mobile phone will burn a newest version in the secure partition when it is burned in the factory. The database is available for users to use for subsequent upgrades. The mobile phone manufacturer will periodically release an upgrade package for this partition. Similar to the fata differential upgrade package for this partition, the mobile phone manufacturer periodically downloads and creates an upgrade package for the third-party key management architecture. Online differential upgrade.
如图3所示,本发明实施例提供的应用管理方法包括以下步骤:As shown in FIG. 3, the application management method provided by the embodiment of the present invention includes the following steps:
S301-S302:应用软件开发者在制作完成后,上传密钥证书到密钥管理系统,并把应用加入发布时间和上传密钥的id账号,然后上传应用到各大网站供用户下载;S301-S302: After the application software developer completes the application, upload the key certificate to the key management system, and add the application to the id account of the publishing time and the uploading key, and then upload and apply the application to each major website for the user to download;
S303-S308:终端厂商系统在终端出厂时,获取密钥管理系统已经存储的合法应用的密钥, 并烧录到终端内,当检测到密钥管理系统出现新密钥时,制作差分升级包供终端下载升级;S303-S308: The terminal manufacturer system acquires the key of the legal application already stored by the key management system when the terminal leaves the factory. And burning into the terminal, when detecting the new key of the key management system, making a differential upgrade package for the terminal to download and upgrade;
S309-S318:用户下载到一个应用后,手机在进行安装,安装过程中系统会基于唯一的id号查找安全密钥分区的密钥进行验证,校验成功即可以安装,提示为正规软件;如果安装失败,读取应用的发布时间,如果应用的发布时间2015的3月,密钥分区的数据库时间为2015年4月,则提示用户为非法软件,安装失败;如果应用的发布时间为2015年9月,而密钥分区的数据库时间为2015年8月,则提示用户可以联网进行安全密钥分区的差分升级,升级成功后再次进行签名校验,如果校验成功,则提示安全软件,如果校验仍然失败,则提示非法软件,安装失败。提示用户是否进行危险软件安装,如果选择是,则允许用户安装成功,并在软件图标上进行危险标识。S309-S318: After the user downloads to an application, the mobile phone is installed. During the installation process, the system will search for the key of the security key partition based on the unique id number for verification. If the verification is successful, the system can be installed, and the prompt is formal software; The installation fails. The application publishing time is read. If the application is published in March 2015 and the database time of the key partition is April 2015, the user is prompted to be illegal and the installation fails. If the application is published in 2015. In September, the database time of the key partition is August 2015, prompting the user to network to perform differential upgrade of the security key partition. After the upgrade is successful, the signature verification is performed again. If the verification is successful, the security software is prompted. If the verification still fails, the illegal software is prompted and the installation fails. Prompt the user whether to install dangerous software. If yes, allow the user to install successfully and perform danger identification on the software icon.
基于本发明实施例,开发者需要遵循规范,创建好自己的签名,给应用签名后,到第三方网站备案自己的应用及开发者等信息,并上传对应密钥到第三方密钥管理机构。Based on the embodiment of the present invention, the developer needs to follow the specification, create his own signature, sign the application, record the application and developer information to the third-party website, and upload the corresponding key to the third-party key management organization.
针对终端侧,当用户在通过某渠道获取了某应用,在安装此应用时,本发明实施例提供的应用管理方法包括:用户通过某渠道获取了此应用;用户点击安装此应用;终端在安装过程中会对于手机安全密钥分区进行查找,找到对应密钥后进行应用密钥签名校验;校验成功后提示为正规应用开发软件,可以正常安装,否则,根据应用发布时间提示用户是否进行联网升级安全密钥分区,升级后再次安装,校验成功即为安全软件,校验仍然失败,即为危险软件,建议不安装,提示用户是否进行危险软件安装,如果选择是,则允许用户安装成功,并在软件图标上进行危险标识。For the terminal side, when the user obtains an application through a certain channel, the application management method provided by the embodiment of the present invention includes: the user obtains the application through a certain channel; the user clicks to install the application; the terminal is installed. During the process, the security key partition of the mobile phone is searched, and the key signature verification is performed after the corresponding key is found. After the verification succeeds, the application is developed as a normal application development software, and the user can be installed normally. Otherwise, the user is prompted according to the application release time. Network upgrade upgrade security key partition, install again after upgrade, the verification is successful security software, the verification still fails, that is, dangerous software, it is recommended not to install, prompt the user whether to install dangerous software, if yes, allow users to install Success and risk identification on the software icon.
综上可知,通过本发明实施例的实施,至少存在以下有益效果:In summary, through the implementation of the embodiments of the present invention, at least the following beneficial effects exist:
本发明实施例提供了一种管理方法,用户下载某应用之后,在安装该应用时,终端基于终端内存储的合法应用的应用密钥的公钥对该应用安装包内的私钥进行签名校验,判断该应用是否是合法开发者开发的应用,实现对应用合法性的校验,并且根据校验结果管理该应用的安装,合法应用直接安装,非法应用提示该应用为危险应用,解决了相关终端无法对应用合法性进行校验的问题,增强了用户的使用体验。The embodiment of the present invention provides a management method. After the user downloads an application, the terminal signs the private key in the application installation package based on the public key of the application key of the legal application stored in the terminal. Check whether the application is an application developed by a legitimate developer, verify the validity of the application, and manage the installation of the application according to the verification result. The legal application is directly installed, and the illegal application prompts the application as a dangerous application, and the problem is solved. The related terminal cannot verify the validity of the application, which enhances the user experience.
以上仅是本发明的具体实施方式而已,并非对本发明做任何形式上的限制,凡是依据本发明的技术实质对以上实施方式所做的任意简单修改、等同变化、结合或修饰,均仍属于本发明技术方案的保护范围。The above is only a specific embodiment of the present invention, and is not intended to limit the present invention in any way. Any simple modification, equivalent change, combination or modification of the above embodiments in accordance with the technical spirit of the present invention is still in the present invention. The scope of protection of the technical solution of the invention.
需要说明的是,上述各个模块是可以通过软件或硬件来实现的,对于后者,可以通过以下方式实现,但不限于此:上述模块均位于同一处理器中;或者,上述模块分别位于多个处理器中。It should be noted that each of the above modules may be implemented by software or hardware. For the latter, the foregoing may be implemented by, but not limited to, the foregoing modules are all located in the same processor; or, the modules are located in multiple In the processor.
本发明的实施例还提供了一种存储介质。可选地,在本实施例中,上述存储介质可以被设置为存储用于执行以下步骤的程序代码:Embodiments of the present invention also provide a storage medium. Optionally, in the embodiment, the foregoing storage medium may be configured to store program code for performing the following steps:
S1,获取待安装应用的应用标识; S1. Obtain an application identifier of the application to be installed.
S2,在密钥分区查找与应用标识对应的应用密钥的公钥;密钥分区用于存储合法应用的应用密钥的公钥;S2. Search for a public key of an application key corresponding to the application identifier in the key partition; the key partition is used to store a public key of the application key of the legal application;
S3,根据应用密钥的公钥对待安装应用的私钥进行签名校验;S3, performing signature verification on the private key of the application to be installed according to the public key of the application key;
S4,根据校验结果管理待安装应用的安装。S4, managing the installation of the application to be installed according to the verification result.
可选地,在本实施例中,上述存储介质可以包括但不限于:U盘、只读存储器(ROM,Read-Only Memory)、随机存取存储器(RAM,Random Access1Memory)、移动硬盘、磁碟或者光盘等各种可以存储程序代码的介质。Optionally, in this embodiment, the foregoing storage medium may include, but is not limited to, a USB flash drive, a Read-Only Memory (ROM), a Random Access Memory (RAM), a mobile hard disk, and a magnetic disk. Or a variety of media such as optical discs that can store program code.
可选地,本实施例中的具体示例可以参考上述实施例及可选实施方式中所描述的示例,本实施例在此不再赘述。For example, the specific examples in this embodiment may refer to the examples described in the foregoing embodiments and the optional embodiments, and details are not described herein again.
显然,本领域的技术人员应该明白,上述的本发明的各模块或各步骤可以用通用的计算装置来实现,它们可以集中在单个的计算装置上,或者分布在多个计算装置所组成的网络上,可选地,它们可以用计算装置可执行的程序代码来实现,从而,可以将它们存储在存储装置中由计算装置来执行,并且在某些情况下,可以以不同于此处的顺序执行所示出或描述的步骤,或者将它们分别制作成各个集成电路模块,或者将它们中的多个模块或步骤制作成单个集成电路模块来实现。这样,本发明不限制于任何特定的硬件和软件结合。It will be apparent to those skilled in the art that the various modules or steps of the present invention described above can be implemented by a general-purpose computing device that can be centralized on a single computing device or distributed across a network of multiple computing devices. Alternatively, they may be implemented by program code executable by the computing device such that they may be stored in the storage device by the computing device and, in some cases, may be different from the order herein. The steps shown or described are performed, or they are separately fabricated into individual integrated circuit modules, or a plurality of modules or steps thereof are fabricated as a single integrated circuit module. Thus, the invention is not limited to any specific combination of hardware and software.
以上所述仅为本发明的优选实施例而已,并不用于限制本发明,对于本领域的技术人员来说,本发明可以有各种更改和变化。凡在本发明的精神和原则之内,所作的任何修改、等同替换、改进等,均应包含在本发明的保护范围之内。The above description is only the preferred embodiment of the present invention, and is not intended to limit the present invention, and various modifications and changes can be made to the present invention. Any modifications, equivalent substitutions, improvements, etc. made within the spirit and scope of the present invention are intended to be included within the scope of the present invention.
工业实用性Industrial applicability
在本发明实施例中,用户下载某应用之后,在安装该应用时,终端基于终端内存储的合法应用的应用密钥的公钥对该应用的私钥进行签名校验,判断该应用是否是合法开发者开发的应用,以实现对应用合法性的校验,并且根据校验结果管理该应用的安装,合法应用直接安装,非法应用提示该应用为危险应用,解决了相关终端无法对应用合法性进行校验的问题,增强了用户的使用体验。 In the embodiment of the present invention, after the user downloads the application, the terminal performs signature verification on the private key of the application based on the public key of the application key of the legal application stored in the terminal, and determines whether the application is An application developed by a legitimate developer to verify the validity of the application, and manage the installation of the application according to the verification result. The legal application is directly installed, and the illegal application prompts the application as a dangerous application, and the related terminal cannot be legally applied. The problem of verifying the sex enhances the user experience.

Claims (24)

  1. 一种用于管理应用安装的管理方法,包括:A management method for managing application installations, including:
    获取待安装应用的应用标识;Obtain an application identifier of the application to be installed;
    在密钥分区查找与所述应用标识对应的应用密钥的公钥;所述密钥分区用于存储合法应用的应用密钥的公钥;Searching, in a key partition, a public key of an application key corresponding to the application identifier; the key partition is configured to store a public key of an application key of a legal application;
    根据所述应用密钥的公钥对所述待安装应用的私钥进行签名校验;Performing signature verification on the private key of the application to be installed according to the public key of the application key;
    根据校验结果管理所述待安装应用的安装。The installation of the application to be installed is managed according to the verification result.
  2. 如权利要求1所述的管理方法,其中,还包括:若未在所述密钥分区查找到与所述应用标识对应的应用密钥的公钥,则更新所述密钥分区,或者提示所述待安装应用为危险应用。The management method according to claim 1, further comprising: if the public key of the application key corresponding to the application identifier is not found in the key partition, updating the key partition, or prompting the location Describe the installation application as a hazardous application.
  3. 如权利要求1所述的管理方法,其中,还包括:周期性或者实时获取密钥差分升级包,基于所述密钥分区当前存储的所有合法应用的应用密钥的公钥,利用所述密钥差分升级包更新所述密钥分区。The management method according to claim 1, further comprising: acquiring a key differential upgrade package periodically or in real time, and using the public key of the application key of all legal applications currently stored by the key partition, using the secret The key differential upgrade package updates the key partition.
  4. 如权利要求1至3任一项所述的管理方法,其中,所述根据校验结果管理所述待安装应用的安装包括:当所述校验结果为校验成功时,安装所述待安装应用;当所述校验结果为校验失败时,提示所述待安装应用为危险应用。The management method according to any one of claims 1 to 3, wherein the managing the installation of the to-be-installed application according to the verification result comprises: installing the to-be-installed when the verification result is that the verification is successful Application; when the verification result is a verification failure, the application to be installed is prompted to be a dangerous application.
  5. 如权利要求4所述的管理方法,其中,在提示所述待安装应用为危险应用之前,还包括:更新所述密钥分区,重新查找与所述应用标识对应的应用密钥的公钥,并再次进行签名校验,若校验成功,则安装所述待安装应用,若校验失败,则提示所述待安装应用为危险应用。The management method of claim 4, wherein before the prompting that the application to be installed is a dangerous application, the method further comprises: updating the key partition, and re-finding a public key of an application key corresponding to the application identifier, The signature verification is performed again. If the verification is successful, the application to be installed is installed. If the verification fails, the application to be installed is prompted to be a dangerous application.
  6. 如权利要求5所述的管理方法,其中,在更新所述密钥分区之前,还包括:比较所述密钥分区最后一次的更新时间与所述待安装应用的上传时间,若所述更新时间早于所述上传时间时,则更新所述密钥分区,若所述更新时间晚于所述上传时间时,则不更新所述密钥分区。The management method according to claim 5, wherein before updating the key partition, the method further comprises: comparing a last update time of the key partition with an uploading time of the to-be-installed application, if the update time When the upload time is earlier, the key partition is updated, and if the update time is later than the upload time, the key partition is not updated.
  7. 如权利要求4所述的管理方法,其中,在提示所述待安装应用为危险应用之后,还包括:提示是否进行危险应用的安装,若是,则安装所述待安装应用,并进行危险标识。The management method according to claim 4, wherein after prompting the application to be installed as a dangerous application, the method further comprises: prompting whether to install the dangerous application, and if yes, installing the application to be installed and performing a dangerous identification.
  8. 一种用于管理应用安装的管理方法,包括:A management method for managing application installations, including:
    接收并存储应用开发者上传的应用密钥的公钥,向所述应用开发者反馈应用对应的应用标识;Receiving and storing a public key of an application key uploaded by an application developer, and feeding back, to the application developer, an application identifier corresponding to the application;
    在接收到终端厂商系统的密钥下载请求后,将所存储的所有应用密钥的公钥发送至所述终端厂商系统,供所述终端厂商系统写入终端密钥分区。After receiving the key download request of the terminal manufacturer system, the stored public key of all application keys is sent to the terminal manufacturer system for the terminal manufacturer system to write the terminal key partition.
  9. 如权利要求8所述的管理方法,其中,还包括:当接收到新的应用密钥或者应用密钥变 化时,生成并发送密钥差分升级包至所述终端厂商系统和/或终端。The management method according to claim 8, further comprising: when a new application key or an application key is changed When generated, a key differential upgrade package is generated and transmitted to the terminal vendor system and/or terminal.
  10. 一种用于管理应用安装的管理方法,包括:A management method for managing application installations, including:
    向密钥管理系统发送密钥下载请求;Sending a key download request to the key management system;
    接收所述密钥管理系统返回的应用密钥的公钥,并写入终端的密钥分区。Receiving the public key of the application key returned by the key management system and writing the key partition of the terminal.
  11. 如权利要求10所述的管理方法,其中,还包括:当接收到新的应用密钥或者应用密钥变化时,生成密钥差分升级包,或者接收所述密钥管理系统发送的所述密钥差分升级包;发送所述密钥差分升级包至所述终端。The management method according to claim 10, further comprising: generating a key differential upgrade package when receiving a new application key or an application key change, or receiving the secret sent by the key management system Key differential upgrade package; sending the key differential upgrade package to the terminal.
  12. 一种用于管理应用安装的管理方法,包括:A management method for managing application installations, including:
    密钥管理系统接收并存储应用开发者上传的应用密钥的公钥,向所述应用开发者反馈应用对应的应用标识;The key management system receives and stores the public key of the application key uploaded by the application developer, and feeds back to the application developer the application identifier corresponding to the application;
    终端厂商系统向所述密钥管理系统发送密钥下载请求,接收所述密钥管理系统返回的应用密钥的公钥,并写入终端的密钥分区;The terminal manufacturer system sends a key download request to the key management system, receives the public key of the application key returned by the key management system, and writes the key partition of the terminal;
    所述终端获取待安装应用的应用标识,在密钥分区查找与所述应用标识对应的密钥;所述密钥分区用于存储合法应用的应用密钥的公钥;根据所述应用密钥的公钥对所述待安装应用的私钥进行签名校验;根据校验结果管理所述待安装应用的安装。The terminal acquires an application identifier of the application to be installed, and searches for a key corresponding to the application identifier in the key partition; the key partition is used to store a public key of an application key of the legal application; according to the application key The public key performs signature verification on the private key of the application to be installed; and manages installation of the application to be installed according to the verification result.
  13. 一种终端,包括:A terminal comprising:
    获取模块,设置为获取待安装应用的应用标识;Obtaining a module, configured to obtain an application identifier of the application to be installed;
    查找模块,设置为在密钥分区查找与所述应用标识对应的应用密钥的公钥;所述密钥分区用于存储合法应用的应用密钥的公钥;a search module, configured to search for a public key of an application key corresponding to the application identifier in a key partition; the key partition is configured to store a public key of an application key of a legal application;
    校验模块,设置为根据所述应用密钥的公钥对所述待安装应用的私钥进行签名校验;a verification module, configured to perform signature verification on the private key of the application to be installed according to the public key of the application key;
    管理模块,设置为根据校验结果管理所述待安装应用的安装。The management module is configured to manage the installation of the to-be-installed application according to the verification result.
  14. 如权利要求13所述的终端,其中,所述查找模块还设置为若未在所述密钥分区查找到与所述应用标识对应的应用密钥的公钥,则更新所述密钥分区,或者提示所述待安装应用为危险应用。The terminal according to claim 13, wherein the searching module is further configured to update the key partition if a public key of an application key corresponding to the application identifier is not found in the key partition, Or suggesting that the application to be installed is a dangerous application.
  15. 如权利要求13所述的终端,其中,所述查找模块还设置为周期性或者实时获取密钥差分升级包,基于所述密钥分区当前存储的所有合法应用的应用密钥的公钥,利用所述密钥差分升级包更新所述密钥分区。The terminal according to claim 13, wherein the searching module is further configured to acquire a key differential upgrade package periodically or in real time, and utilize the public key of the application key of all legal applications currently stored by the key partition. The key differential upgrade package updates the key partition.
  16. 如权利要求13至15任一项所述的终端,其中,所述管理模块设置为当所述校验结果为校验成功时,安装所述待安装应用;当所述校验结果为校验失败时,提示所述待安装应用为危险应用。 The terminal according to any one of claims 13 to 15, wherein the management module is configured to install the to-be-installed application when the verification result is that the verification is successful; when the verification result is a verification Upon failure, the application to be installed is prompted to be a dangerous application.
  17. 如权利要求16所述的终端,其中,在提示所述待安装应用为危险应用之前,所述查找模块还设置为更新所述密钥分区,重新查找与所述应用标识对应的应用密钥的公钥,并再次进行签名校验,若校验成功,则安装所述待安装应用,若校验失败,则提示所述待安装应用为危险应用。The terminal according to claim 16, wherein the finding module is further configured to update the key partition and re-look the application key corresponding to the application identifier before prompting the application to be installed as a dangerous application. If the verification succeeds, the application to be installed is installed, and if the verification fails, the application to be installed is prompted to be a dangerous application.
  18. 如权利要求17所述的终端,其中,所述查找模块在更新所述密钥分区之前,还设置为比较所述密钥分区最后一次的更新时间与所述待安装应用的上传时间,若所述更新时间早于所述上传时间时,则更新所述密钥分区,若所述更新时间晚于所述上传时间时,则不更新所述密钥分区。The terminal according to claim 17, wherein the searching module further sets, before updating the key partition, a comparison between a last update time of the key partition and an uploading time of the application to be installed, if When the update time is earlier than the upload time, the key partition is updated, and if the update time is later than the upload time, the key partition is not updated.
  19. 如权利要求16所述的终端,其中,所述管理模块在提示所述待安装应用非法之后,还设置为提示是否进行危险应用的安装,若是,则安装所述待安装应用,并进行危险标识。The terminal according to claim 16, wherein the management module is further configured to prompt whether to install the dangerous application after prompting the application to be installed to be illegal, and if yes, installing the application to be installed and performing dangerous identification .
  20. 一种密钥管理系统,包括:A key management system comprising:
    存储模块,设置为接收并存储应用开发者上传的应用密钥的公钥,向所述应用开发者反馈应用对应的应用标识;a storage module, configured to receive and store a public key of an application key uploaded by the application developer, and feed back, to the application developer, an application identifier corresponding to the application;
    下发模块,设置为在接收到终端厂商系统的密钥下载请求后,将所存储的所有应用密钥的公钥发送至所述终端厂商系统,供所述终端厂商系统写入终端密钥分区。The issuing module is configured to: after receiving the key download request of the terminal manufacturer system, send the stored public key of all application keys to the terminal manufacturer system, where the terminal manufacturer system writes the terminal key partition .
  21. 如权利要求20所述的密钥管理系统,其中,所述下发模块还设置为当接收到新的应用密钥或者应用密钥变化时,生成并发送密钥差分升级包至所述终端厂商系统和/或终端。The key management system according to claim 20, wherein said issuing module is further configured to generate and transmit a key differential upgrade package to said terminal manufacturer when a new application key or application key change is received System and / or terminal.
  22. 一种终端厂商系统,包括:A terminal vendor system that includes:
    请求模块,设置为向密钥管理系统发送密钥下载请求;a request module, configured to send a key download request to the key management system;
    写入模块,设置为接收所述密钥管理系统返回的应用密钥的公钥,并写入终端的密钥分区。The writing module is configured to receive the public key of the application key returned by the key management system and write the key partition of the terminal.
  23. 如权利要求22所述的终端厂商系统,其中,所述写入模块还设置为当接收到新的应用密钥或者应用密钥变化时,生成密钥差分升级包,或者接收所述密钥管理系统发送的所述密钥差分升级包;发送所述密钥差分升级包至所述终端。The terminal manufacturer system of claim 22, wherein the writing module is further configured to generate a key differential upgrade package or receive the key management when a new application key or application key change is received The key differential upgrade package sent by the system; sending the key differential upgrade package to the terminal.
  24. 一种用于管理应用安装的管理系统,包括:密钥管理系统、终端厂商系统及终端;其中,A management system for managing application installation, comprising: a key management system, a terminal manufacturer system, and a terminal; wherein
    所述密钥管理系统,设置为接收并存储应用开发者上传的应用密钥的公钥,向所述应用开发者反馈应用对应的应用标识;The key management system is configured to receive and store a public key of an application key uploaded by an application developer, and feed back, to the application developer, an application identifier corresponding to the application;
    所述终端厂商系统,设置为向所述密钥管理系统发送密钥下载请求,接收所述密钥管理系统返回的应用密钥的公钥,并写入终端的密钥分区;The terminal manufacturer system is configured to send a key download request to the key management system, receive a public key of an application key returned by the key management system, and write the key partition of the terminal;
    所述终端,设置为获取待安装应用的应用标识,在密钥分区查找与所述应用标识对应的密钥;所述密钥分区用于存储合法应用的应用密钥的公钥;根据所述应用密钥的公钥对所述待安装应用的私钥进行签名校验;根据校验结果管理所述待安装应用的安装。 The terminal is configured to obtain an application identifier of an application to be installed, and search for a key corresponding to the application identifier in a key partition; the key partition is configured to store a public key of an application key of a legal application; The public key of the application is used to perform signature verification on the private key of the application to be installed; and the installation of the application to be installed is managed according to the verification result.
PCT/CN2016/077376 2015-10-21 2016-03-25 Management method, system and terminal, key management system and terminal manufacturer system WO2016177172A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201510690408.0 2015-10-21
CN201510690408.0A CN106612179A (en) 2015-10-21 2015-10-21 A management method and system, a terminal, a secret key management system and a terminal manufacturer system

Publications (1)

Publication Number Publication Date
WO2016177172A1 true WO2016177172A1 (en) 2016-11-10

Family

ID=57217503

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2016/077376 WO2016177172A1 (en) 2015-10-21 2016-03-25 Management method, system and terminal, key management system and terminal manufacturer system

Country Status (2)

Country Link
CN (1) CN106612179A (en)
WO (1) WO2016177172A1 (en)

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN202197405U (en) * 2011-08-05 2012-04-18 常钧 Wireless safe secret key apparatus and electronic business system
WO2013044088A1 (en) * 2011-09-23 2013-03-28 Research In Motion Limited Managing mobile device applications in a wireless network
CN104331658A (en) * 2014-11-14 2015-02-04 北京视博数字电视科技有限公司 Installing verification method for intelligent terminal application program and system
CN104639506A (en) * 2013-11-13 2015-05-20 中国电信股份有限公司 Terminal and application program installation controlling method and system
CN104683303A (en) * 2013-11-28 2015-06-03 天津三星电子有限公司 APP (application) management method

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN202197405U (en) * 2011-08-05 2012-04-18 常钧 Wireless safe secret key apparatus and electronic business system
WO2013044088A1 (en) * 2011-09-23 2013-03-28 Research In Motion Limited Managing mobile device applications in a wireless network
CN104639506A (en) * 2013-11-13 2015-05-20 中国电信股份有限公司 Terminal and application program installation controlling method and system
CN104683303A (en) * 2013-11-28 2015-06-03 天津三星电子有限公司 APP (application) management method
CN104331658A (en) * 2014-11-14 2015-02-04 北京视博数字电视科技有限公司 Installing verification method for intelligent terminal application program and system

Also Published As

Publication number Publication date
CN106612179A (en) 2017-05-03

Similar Documents

Publication Publication Date Title
US11178121B2 (en) Secure software updates
US9871821B2 (en) Securely operating a process using user-specific and device-specific security constraints
KR101861401B1 (en) Binding applications to device capabilities
US10671372B2 (en) Blockchain-based secure customized catalog system
JP5314016B2 (en) Information processing apparatus, encryption key management method, computer program, and integrated circuit
US8874922B2 (en) Systems and methods for multi-layered authentication/verification of trusted platform updates
CN109313690A (en) Self-contained encryption boot policy verifying
CN105164633B (en) The configuration and verifying carried out by trusted provider
EP2278520A2 (en) Modular software protection
JP2020524836A (en) System and method for software activation and license tracking
TW201415280A (en) A method and service for securing a system networked to a cloud computing environment from malicious code attacks
KR20210151926A (en) Version history management using blockchain
WO2019195957A1 (en) Mobile terminal access control method, device, terminal and storage medium
US20140149737A1 (en) Controlling application access to mobile device functions
US20060075401A1 (en) Patch installation control
JP2011003210A (en) License external memory
US20130067533A1 (en) Generating a test license for a developer application
KR102124330B1 (en) Method for updating of application and apparatus for the same
KR101711024B1 (en) Method for accessing temper-proof device and apparatus enabling of the method
WO2016177172A1 (en) Management method, system and terminal, key management system and terminal manufacturer system
WO2017220014A1 (en) System permission management method and apparatus, and intelligent terminal
KR101265887B1 (en) Renewable and individualizable elements of a protected computing environment
US9792417B2 (en) Methods for controlling software usage
US11790057B2 (en) Controlling program execution using an access key
KR102369874B1 (en) A system for remote attestation, os deployment server, attestation target device and method for updating operating system and integrity information simultaneously

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 16789166

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 16789166

Country of ref document: EP

Kind code of ref document: A1