公开(公告)号：US20240281534A1

公开(公告)日：2024-08-22

申请号：US18570417

申请日：2022-08-15

Applicant: CHINA UNIONPAY CO., LTD.

Inventor： Fen ZOU ,  Chengqian CHEN ,  Dingzhou LI ,  Xin WANG

IPC: G06F21/57 ,  G06F21/53

CPC classification number: G06F21/57 ,  G06F21/53 ,  G06F2221/033

Abstract: An electronic device and a trusted application calling method are provided. After a client application initiates call information, a trusted application development platform receives the call information, determines a native trusted application corresponding to first identification information of the electronic device carried by the calling information from native trusted applications corresponding to at least two (or more) TEE OSs connected to the trusted application development platform, and sends the calling information to the native trusted applications corresponding to the first identification information. The native trusted application corresponding to the first identification information receives the calling information, determines a bytecode trusted application corresponding to the second identification information from at least one bytecode trusted application installed in the native trusted application according to the second identification information carried by the calling information, and calls the bytecode trusted application corresponding to the second identification information.

公开(公告)号：US20160062784A1

公开(公告)日：2016-03-03

申请号：US14781644

申请日：2014-04-11

Applicant: CHINA UNIONPAY CO., LTD.

Inventor： Hongfeng CHAI ,  Zhijun LU ,  Shuo HE ,  Wei GUO ,  Yu ZHOU ,  Dingzhou LI

IPC: G06F9/455 ,  G06F21/57 ,  H04W12/04

Abstract: The invention discloses a method for realizing virtual secure element (VSE), which comprises the following steps: a secure element manager (SEM) generates a request which comprises virtualized configuration information; and a virtual machine monitor in a hypervisor allocates an address space for the VSE according to the above request.

Abstract translation: 本发明公开了一种实现虚拟安全元件（VSE）的方法，包括以下步骤：安全元件管理器（SEM）生成包含虚拟化配置信息的请求; 并且虚拟机管理程序中的虚拟机监视器根据上述请求分配VSE的地址空间。

公开(公告)号：US20210256499A1

公开(公告)日：2021-08-19

申请号：US16973759

申请日：2019-04-12

Applicant: China UnionPay Co., Ltd.

Inventor： Dingzhou LI ,  Shuo HE ,  Cheng PENG ,  Jintan WU ,  Quan SUN ,  Wei GUO ,  Limin ZHANG

IPC: G06Q20/32 ,  G06Q20/34 ,  H04W12/02 ,  H04W4/80 ,  H04L29/06

Abstract: A non-contact communication method and a communication device are presented. The communication device includes a trusted execution environment (TEE). A first security application and a second security application are provided in a security element of the communication device. The first security application and an application in the trusted execution environment are communicationally connected by means of a first communication channel. The second security application and a near-field communication (NFC) module provided in the communication device are communicationally connected by means of a second communication channel. The first security application and the second security application are communicationally connected by means of a security channel. Using the non-contact communication method and the communication device, a security channel may be established between NFC and a TEE, which may enable NFC non-contact card reading for a TEE application.

公开(公告)号：US20250005135A1

公开(公告)日：2025-01-02

申请号：US18689281

申请日：2022-08-15

Applicant: CHINA UNIONPAY CO., LTD.

Inventor： Fen ZOU ,  Chengqian CHEN ,  Dingzhou LI ,  Xin WANG

IPC: G06F21/53

Abstract: An electronic device, a trusted application calling method and apparatus, a device, and a medium are disclosed. Because a trusted application development platform is linked with native trusted applications respectively corresponding to multiple trusted execution environment operating systems (TEE OS), based on the trusted application development platform, a bytecode trusted application can be applicable to any TEE OS, and for different TEE OS hardware platforms, only one corresponding bytecode trusted application needs to be developed for one application. Moreover, the trusted application development platform and the byte code trusted application can be applied to electronic devices (terminals) of different TEE OSs.

公开(公告)号：US20160119334A1

公开(公告)日：2016-04-28

申请号：US14787193

申请日：2014-04-30

Applicant: CHINA UNIONPAY CO., LTD.

Inventor： Hongfeng CHAI ,  Zhijun Lu ,  Shuo He ,  Yu Zhou ,  Wei Guo ,  Dingzhou LI

IPC: H04L29/06

CPC classification number: H04L63/0853 ,  H04L63/0869 ,  H04W12/06 ,  H04W88/02

Abstract: The invention relates to communication technology, and in particular, to a method of establishing communication connection between a mobile device and a secure element as well as a mobile device for implementing the method. The method comprises the following steps: when the mobile device detects that there is a secure element which establishes a physical connection with it, the mobile device performs a secure authentication on the secure element; if the secure authentication passes, the mobile device determines whether there is configuration information inside it which is required for establishing the communication connection between the mobile device and the secure element; and if there is the required configuration information inside the mobile device, the mobile device uses the configuration information to establish the communication connection with the secure element; otherwise, the mobile device obtains required configuration information from the secure element to establish the communication connection with the secure element.

Abstract translation: 本发明涉及通信技术，特别涉及一种在移动设备和安全元件之间建立通信连接的方法以及用于实现该方法的移动设备。 该方法包括以下步骤：当移动设备检测到存在与其建立物理连接的安全元件时，移动设备对安全元件执行安全认证; 如果安全认证通过，则移动设备确定在其内部是否存在建立移动设备和安全元件之间的通信连接所需的配置信息; 并且如果在移动设备内存在所需的配置信息，则移动设备使用配置信息来建立与安全元件的通信连接; 否则，移动设备从安全元件获得所需的配置信息，以建立与安全元件的通信连接。