公开(公告)号：US09712518B2

公开(公告)日：2017-07-18

申请号：US14772514

申请日：2014-03-03

Applicant: CHINA UNIONPAY CO., LTD.

Inventor： Hongfeng Chai ,  Zhijun Lu ,  Shuo He ,  Wei Guo ,  Yu Zhou ,  Chengqian Chen ,  Jianbin Zheng ,  Xiangxiang Yan ,  Bin Yu ,  Dingzhou Li

IPC: H04L29/00 ,  H04L29/06 ,  G06F21/74 ,  G06Q20/32 ,  G06Q20/38

CPC classification number: H04L63/0823 ,  G06F21/74 ,  G06Q20/3276 ,  G06Q20/382 ,  H04L63/0281 ,  H04L63/04

Abstract: The invention provides an apparatus used for security information interaction comprising a first system management device for providing an operational environment for routine applications and a second system management device for providing an operational environment in a safe mode for security applications so as to perform a security information interaction process. The apparatus used for security information interaction disclosed by the invention has a high safety and a wide applicability and is low in cost.

公开(公告)号：US12242596B2

公开(公告)日：2025-03-04

申请号：US18689281

申请日：2022-08-15

Applicant: CHINA UNIONPAY CO., LTD.

Inventor： Fen Zou ,  Chengqian Chen ,  Dingzhou Li ,  Xin Wang

IPC: G06F21/53

Abstract: An electronic device, a trusted application calling method and apparatus, a device, and a medium are disclosed. Because a trusted application development platform is linked with native trusted applications respectively corresponding to multiple trusted execution environment operating systems (TEE OS), based on the trusted application development platform, a bytecode trusted application can be applicable to any TEE OS, and for different TEE OS hardware platforms, only one corresponding bytecode trusted application needs to be developed for one application. Moreover, the trusted application development platform and the byte code trusted application can be applied to electronic devices (terminals) of different TEE OSs.

公开(公告)号：US11775956B2

公开(公告)日：2023-10-03

申请号：US16973759

申请日：2019-04-12

Applicant: China UnionPay Co., Ltd.

Inventor： Dingzhou Li ,  Shuo He ,  Cheng Peng ,  Jintan Wu ,  Quan Sun ,  Wei Guo ,  Limin Zhang

IPC: G06Q20/00 ,  G06Q20/32 ,  H04W4/80 ,  G06Q20/34 ,  H04L9/40 ,  H04W12/02

CPC classification number: G06Q20/3278 ,  G06Q20/352 ,  H04L63/0884 ,  H04W4/80 ,  H04W12/02

Abstract: A non-contact communication method and a communication device are presented. The communication device includes a trusted execution environment (TEE). A first security application and a second security application are provided in a security element of the communication device. The first security application and an application in the trusted execution environment are communicationally connected by means of a first communication channel. The second security application and a near-field communication (NFC) module provided in the communication device are communicationally connected by means of a second communication channel. The first security application and the second security application are communicationally connected by means of a security channel. Using the non-contact communication method and the communication device, a security channel may be established between NFC and a TEE, which may enable NFC non-contact card reading for a TEE application.

公开(公告)号：US10169572B2

公开(公告)日：2019-01-01

申请号：US14779211

申请日：2014-03-17

Applicant: CHINA UNIONPAY CO., LTD.

Inventor： Hongfeng Chai ,  Zhijun Lu ,  Shuo He ,  Yu Zhou ,  Wei Guo ,  Dingzhou Li

IPC: G06F21/00 ,  H04L29/06 ,  G06F21/51 ,  H04W12/06 ,  H04L12/64

Abstract: The invention relates to management of programs on a mobile device, and in particular, to a method for activating application programs on a mobile device, and a mobile device based on this method. The method for activating application programs on a mobile device according to an embodiment of the invention comprises the following steps: receiving an application request from a device which is located outside the mobile device; identifying a transmission protocol associated with the application request; and if there are a plurality of safety entities in the mobile device which support the transmission protocol and store application programs associated with the application request, activating an application program associated with the application request in a default safety entity.

公开(公告)号：US20160050232A1

公开(公告)日：2016-02-18

申请号：US14780669

申请日：2014-04-01

Applicant: CHINA UNIONPAY CO., LTD.

Inventor： Hongfeng Chai ,  Zhijun Lu ,  Shuo He ,  Yu Zhou ,  Wei Guo ,  Dingzhou Li

IPC: H04L29/06

CPC classification number: H04L63/18 ,  H04L63/00 ,  H04L63/04

Abstract: The invention proposes a security information interaction system, apparatus and method based on security carrier's active command. The method comprises: an information interaction terminal, based on a user's command, establishes a security dialogue channel between the information interaction terminal and a security carrier so as to perform a security information interaction process, wherein the user's command indicates a target application associated with the security information interaction process; and the security carrier activates the target application during the establishment of the security dialogue channel and then executes the security information interaction process based on the security dialogue channel. In the security information interaction system, apparatus and method based on security carrier active command disclosed in the invention, the security carrier can initiate an active command to the information interaction terminal.

Abstract translation: 本发明提出了一种基于安全载体的主动命令的安全信息交互系统，装置和方法。 该方法包括：基于用户的命令的信息交互终端在信息交互终端和安全载体之间建立安全对话信道，以便执行安全信息交互过程，其中用户的命令指示与 安全信息交互过程; 并且安全运营商在建立安全对话信道期间激活目标应用，然后基于安全对话信道执行安全信息交互过程。 在本发明公开的安全信息交互系统，基于安全载体主动命令的装置和方法中，安全载体可以向信息交互终端发起主动命令。

公开(公告)号：US20160014115A1

公开(公告)日：2016-01-14

申请号：US14772514

申请日：2014-03-03

Applicant: CHINA UNIONPAY CO., LTD.

Inventor： Hongfeng Chai ,  Zhijun Lu ,  Shuo He ,  Wei Guo ,  Yu Zhou ,  Chengqian Chen ,  Jianbin Zheng ,  Xiangxiang Yan ,  Bin Yu ,  Dingzhou Li

IPC: H04L29/06

CPC classification number: H04L63/0823 ,  G06F21/74 ,  G06Q20/3276 ,  G06Q20/382 ,  H04L63/0281 ,  H04L63/04

Abstract: The invention provides an apparatus used for security information interaction comprising a first system management device for providing an operational environment for routine applications and a second system management device for providing an operational environment in a safe mode for security applications so as to perform a security information interaction process. The apparatus used for security information interaction disclosed by the invention has a high safety and a wide applicability and is low in cost.

Abstract translation: 本发明提供了一种用于安全信息交互的装置，其包括用于为常规应用提供操作环境的第一系统管理装置和用于为安全应用提供安全模式的操作环境的第二系统管理装置，以便执行安全信息交互 处理。 用于本发明公开的安全信息交互的装置具有高安全性和广泛的适用性，成本低。

公开(公告)号：US10678577B2

公开(公告)日：2020-06-09

申请号：US14781644

申请日：2014-04-11

Applicant: CHINA UNIONPAY CO., LTD.

Inventor： Hongfeng Chai ,  Zhijun Lu ,  Shuo He ,  Wei Guo ,  Yu Zhou ,  Dingzhou Li

IPC: G06F9/455 ,  G06F21/57 ,  G06F21/53 ,  H04W12/08 ,  H04W12/04 ,  H04W12/10 ,  H04W12/00

Abstract: The invention discloses a method for realizing virtual secure element (VSE), which comprises the following steps: a secure element manager (SEM) generates a request which comprises virtualized configuration information; and a virtual machine monitor in a hypervisor allocates an address space for the VSE according to the above request.

公开(公告)号：US09985990B2

公开(公告)日：2018-05-29

申请号：US14780669

申请日：2014-04-01

Applicant: CHINA UNIONPAY CO., LTD.

Inventor： Hongfeng Chai ,  Zhijun Lu ,  Shuo He ,  Yu Zhou ,  Wei Guo ,  Dingzhou Li

IPC: H04L29/06

CPC classification number: H04L63/18 ,  H04L63/00 ,  H04L63/04

Abstract: The invention proposes a security information interaction system, apparatus and method based on security carrier's active command. The method comprises: an information interaction terminal, based on a user's command, establishes a security dialog channel between the information interaction terminal and a security carrier so as to perform a security information interaction process, wherein the user's command indicates a target application associated with the security information interaction process; and the security carrier activates the target application during the establishment of the security dialog channel and then executes the security information interaction process based on the security dialog channel. In the security information interaction system, apparatus and method based on security carrier active command disclosed in the invention, the security carrier can initiate an active command to the information interaction terminal.

公开(公告)号：US09756044B2

公开(公告)日：2017-09-05

申请号：US14787193

申请日：2014-04-30

Applicant: CHINA UNIONPAY CO., LTD.

Inventor： Hongfeng Chai ,  Zhijun Lu ,  Shuo He ,  Yu Zhou ,  Wei Guo ,  Dingzhou Li

IPC: H04L29/06 ,  H04W12/06 ,  H04W88/02

CPC classification number: H04L63/0853 ,  H04L63/0869 ,  H04W12/06 ,  H04W88/02

Abstract: The invention relates to communication technology, and in particular, to a method of establishing communication connection between a mobile device and a secure element as well as a mobile device for implementing the method. The method comprises the following steps: when the mobile device detects that there is a secure element which establishes a physical connection with it, the mobile device performs a secure authentication on the secure element; if the secure authentication passes, the mobile device determines whether there is configuration information inside it which is required for establishing the communication connection between the mobile device and the secure element; and if there is the required configuration information inside the mobile device, the mobile device uses the configuration information to establish the communication connection with the secure element; otherwise, the mobile device obtains required configuration information from the secure element to establish the communication connection with the secure element.