-
公开(公告)号:US20110280406A1
公开(公告)日:2011-11-17
申请号:US13125542
申请日:2009-07-24
申请人: Jingwang Ma , Wantao Yu , Qian Jia
发明人: Jingwang Ma , Wantao Yu , Qian Jia
IPC分类号: H04L9/08
CPC分类号: H04B5/02 , H04L9/083 , H04L9/0877 , H04L9/3263 , H04L2209/56 , H04L2209/805
摘要: The present invention discloses a key distribution method and system, the method includes: a card issuer management platform informing a supplementary security domain corresponding to an application provider of generating in a smart card a public/private key pair including a public key and a private key, receiving the public key returned from the supplementary security domain, importing a public key for trust point for external authentication into the supplementary security domain, and transmitting the information of the supplementary security domain and the public key to the application provider management platform; the application provider management platform receiving the information of the supplementary security domain and the public key from the card issuer management platform, and selecting the supplementary security domain of the smart card by a service terminal according to the information of the supplementary security domain and the public key; the application provider management platform informing the supplementary security domain of regenerating a public key and a private key, generating a supplementary security domain certificate according to the regenerated public key which is returned from the supplementary security domain, and achieving the supplementary security domain key distribution by transmitting the supplementary security domain certificate to the supplementary security domain. The present invention can improve the security of the supplementary security domain key distribution.
摘要翻译: 本发明公开了一种密钥分配方法和系统,该方法包括:发卡管理平台,通知与应用提供商对应的补充安全域,在智能卡中生成包括公开密钥和私钥的公钥/私钥对 接收从补充安全域返回的公开密钥,将用于外部认证的信任点的公开密钥输入到补充安全域中,并将补充安全域和公钥的信息发送到应用提供商管理平台; 应用提供商管理平台从卡发行商管理平台接收补充安全域的信息和公开密钥,并且根据补充安全域和公众的信息,由服务终端选择智能卡的补充安全域 键; 应用提供商管理平台通知补充安全域重新生成公钥和私钥,根据从补充安全域返回的再生公钥生成补充安全域证书,并通过以下方式实现补充安全域密钥分发 将补充安全域证书发送到补充安全域。 本发明可以提高补充安全域密钥分发的安全性。
-
公开(公告)号:US08781131B2
公开(公告)日:2014-07-15
申请号:US13125872
申请日:2009-08-12
申请人: Jingwang Ma , Qian Jia , Wantao Yu
发明人: Jingwang Ma , Qian Jia , Wantao Yu
CPC分类号: H04L9/083 , H04L2209/56 , H04L2209/805
摘要: The present invention discloses a key distribution method and system, and the method includes: a card issuer management platform generating initial keys of a supplementary security domain corresponding to an application provider, importing the initial keys and a Trust Point's public key for external authentication to the supplementary security domain, and sending the information of the supplementary security domain and the initial keys to the application provider management platform (202); the application provider management platform receiving the information of the supplementary security domain and the initial keys, and selecting the supplementary security domain of the smart card by a service terminal according to the information of the supplementary security domain and the initial keys (204); the application provider management platform generating a public key and a private key of the supplementary security domain as well as a certificate of the supplementary security domain, and encrypting the public key and the private key as well as the certificate of the supplementary security domain and then sending them to the supplementary security domain (206). Through the above processing, the security of the key distribution for the supplementary security domain can be improved.
摘要翻译: 本发明公开了一种密钥分发方法和系统,其特征在于,该方法包括:生成与应用提供者对应的辅助安全域的初始密钥的卡片发行者管理平台,导入初始密钥和用于外部认证的信任点的公开密钥, 补充安全域,并将补充安全域的信息和初始密钥发送到应用提供商管理平台(202); 所述应用提供商管理平台接收所述补充安全域的信息和所述初始密钥,并且根据所述补充安全域的信息和所述初始密钥(204),由服务终端选择所述智能卡的补充安全域。 应用提供商管理平台生成补充安全域的公开密钥和私钥,以及补充安全域的证书,加密公钥和私钥以及补充安全域的证书,然后 将其发送到补充安全域(206)。 通过上述处理,可以提高补充安全域密钥分发的安全性。
-
公开(公告)号:US20110211699A1
公开(公告)日:2011-09-01
申请号:US13126174
申请日:2009-08-12
申请人: Jingwang Ma , Qian Jia , Wantao Yu
发明人: Jingwang Ma , Qian Jia , Wantao Yu
IPC分类号: H04L9/08
CPC分类号: H04L9/3268 , H04L9/0819 , H04L9/0822 , H04L9/0825 , H04L9/0877 , H04L9/30
摘要: This invention discloses a key distribution method and system. The method includes: notifying, by an application provider management platform, a supplementary security domain of an application provider that is set on a smart card and corresponds to the application provider management platform to generate a public/private key pair including a public cryptographic key and a private cryptographic key; receiving, by the application provider management platform, the public cryptographic key from the supplementary security domain of the application provider that has been encrypted by the public key of the application provider obtained in advance and has been signed by a Controlling Authority Security Domain (CASD) on the smart card through a card issuer management platform; authenticating, by the application provider management platform, a signature and using the private key of the application provider to perform decryption to obtain the public cryptographic key; and sending, by the application provider management platform, a trust point's public is key used for external authentication and a certificate of the supplementary security domain of the application provider to the supplementary security domain of the application provider after the trust point's public key and the certificate have been encrypted by the public cryptographic key of the supplementary security domain of the application provider and the encrypted data have been signed by the private key of the application provider, to complete distribution of a key of the supplementary security domain.
摘要翻译: 本发明公开了一种密钥分发方法和系统。 该方法包括:由应用提供商管理平台通知设置在智能卡上并对应于应用提供商管理平台的应用提供商的补充安全域,以生成包括公共密钥的公/密钥对,以及 私人加密密钥; 由应用提供商管理平台从应用提供商的补充安全域接收已经由预先获得的应用提供商的公钥加密并已经由控制机构安全域(CASD)签名的公钥密钥, 在智能卡上通过发卡行管理平台; 由应用提供商管理平台进行签名并使用应用提供商的私钥进行解密以获得公共密钥; 并且由应用提供商管理平台将信任点的公共密钥用于外部认证和应用提供商的补充安全域的证书到信任点的公共密钥和证书之后的应用提供商的补充安全域 已经通过应用提供商的补充安全域的公共密钥加密,并且加密的数据已经由应用提供商的私钥签名,以完成补充安全域的密钥的分配。
-
公开(公告)号:US08532301B2
公开(公告)日:2013-09-10
申请号:US13126174
申请日:2009-08-12
申请人: Jingwang Ma , Qian Jia , Wantao Yu
发明人: Jingwang Ma , Qian Jia , Wantao Yu
IPC分类号: H04L29/06
CPC分类号: H04L9/3268 , H04L9/0819 , H04L9/0822 , H04L9/0825 , H04L9/0877 , H04L9/30
摘要: This invention discloses a key distribution method and system. The method includes: notifying, by an application provider management platform, a supplementary security domain of an application provider that is set on a smart card and corresponds to the application provider management platform to generate a public/private key pair including a public cryptographic key and a private cryptographic key; receiving, by the application provider management platform, the public cryptographic key from the supplementary security domain of the application provider that has been encrypted by the public key of the application provider obtained in advance and has been signed by a Controlling Authority Security Domain (CASD) on the smart card through a card issuer management platform; authenticating, by the application provider management platform, a signature and using the private key of the application provider to perform decryption to obtain the public cryptographic key; and sending, by the application provider management platform, a trust point's public key used for external authentication and a certificate of the supplementary security domain of the application provider to the supplementary security domain of the application provider after the trust point's public key and the certificate have been encrypted by the public cryptographic key of the supplementary security domain of the application provider and the encrypted data have been signed by the private key of the application provider, to complete distribution of a key of the supplementary security domain.
摘要翻译: 本发明公开了一种密钥分发方法和系统。 该方法包括:由应用提供商管理平台通知设置在智能卡上并对应于应用提供商管理平台的应用提供商的补充安全域,以生成包括公共密钥的公/密钥对,以及 私人加密密钥; 由应用提供商管理平台从应用提供商的补充安全域接收已经由预先获得的应用提供商的公钥加密并已经由控制机构安全域(CASD)签名的公钥密钥, 在智能卡上通过发卡行管理平台; 由应用提供商管理平台进行签名并使用应用提供商的私钥进行解密以获得公共密钥; 并且在信任点的公共密钥和证书具有的应用提供商管理平台之后,将用于外部认证的信任点的公钥和应用提供者的补充安全域的证书发送到应用提供商的补充安全域 由应用提供商的补充安全域的公共密钥加密,加密数据由应用提供商的私钥签名,以完成补充安全域的密钥分发。
-
公开(公告)号:US20110255696A1
公开(公告)日:2011-10-20
申请号:US13125872
申请日:2009-08-12
申请人: Jingwang Ma , Qian Jia , Wantao Yu
发明人: Jingwang Ma , Qian Jia , Wantao Yu
CPC分类号: H04L9/083 , H04L2209/56 , H04L2209/805
摘要: The present invention discloses a key distribution method and system, and the method includes: a card issuer management platform generating initial keys of a supplementary security domain corresponding to an application provider, importing the initial keys and a Trust Point's public key for external authentication to the supplementary security domain, and sending the information of the supplementary security domain and the initial keys to the application provider management platform (202); the application provider management platform receiving the information of the supplementary security domain and the initial keys, and selecting the supplementary security domain of the smart card by a service terminal according to the information of the supplementary security domain and the initial keys (204); the application provider management platform generating a public key and a private key of the supplementary security domain as well as a certificate of the supplementary security domain, and encrypting the public key and the private key as well as the certificate of the supplementary security domain and then sending them to the supplementary security domain (206). Through the above processing, the security of the key distribution for the supplementary security domain can be improved.
摘要翻译: 本发明公开了一种密钥分发方法和系统,其特征在于,该方法包括:生成与应用提供者对应的补充安全域的初始密钥的卡片发行者管理平台,导入初始密钥和用于外部认证的信任点的公开密钥, 补充安全域,并将补充安全域的信息和初始密钥发送到应用提供商管理平台(202); 所述应用提供商管理平台接收所述补充安全域的信息和所述初始密钥,并且根据所述补充安全域的信息和所述初始密钥(204),由服务终端选择所述智能卡的补充安全域。 应用提供商管理平台生成补充安全域的公开密钥和私钥,以及补充安全域的证书,加密公钥和私钥以及补充安全域的证书,然后 将其发送到补充安全域(206)。 通过上述处理,可以提高补充安全域密钥分发的安全性。
-
6.发明申请公开(公告)号:US20110312271A1
公开(公告)日:2011-12-22
申请号:US13201269
申请日:2009-08-25
申请人: Jingwang Ma , Qian Jia
发明人: Jingwang Ma , Qian Jia
IPC分类号: H04B5/00
CPC分类号: H04B1/3816 , G06K7/10237 , G06K7/10247 , G06K7/10297 , G06K19/0723 , G06Q20/3278 , H04B5/00 , Y02D70/166 , Y02D70/40 , Y02D70/42
摘要: The present invention provides a terminal supporting eNFC and its processing method, in which a card emulation mode is disabled when a user card does not support SWP, and NFC in non card emulation modes can further be supported. A mobile terminal disabling/enabling the NFC function is implemented by the interaction of the mobile terminal with a NFC emulation front end chip therein. When the terminal determines that the user card does not support the SWP interface, it disables the NFC function. If the terminal is required to work in a non card emulation mode, the terminal starts a NFC application in the non card emulation, mode, and enables the NFC function when determining that the NFC function is in a disabled state; after the NFC ends, the terminal disables the NFC function when determining that the user card does not support the SWP interface.
摘要翻译: 本发明提供了一种支持eNFC的终端及其处理方法,其中当用户卡不支持SWP时禁用卡仿真模式,并且可以进一步支持非卡仿真模式中的NFC。 通过移动终端与其中的NFC仿真前端芯片的交互来实现禁用/启用NFC功能的移动终端。 当终端确定用户卡不支持SWP接口时,它会禁用NFC功能。 如果终端需要工作在非卡模拟模式,则终端在非卡仿真模式下启动NFC应用,并且当确定NFC功能处于禁用状态时启用NFC功能; 在NFC结束之后,当确定用户卡不支持SWP接口时,终端禁用NFC功能。
-
公开(公告)号:US09037857B2
公开(公告)日:2015-05-19
申请号:US13202231
申请日:2009-12-11
申请人: Qian Jia , Jingwang Ma
发明人: Qian Jia , Jingwang Ma
IPC分类号: H04L9/32 , H04L29/08 , G06Q20/32 , G06Q20/34 , G07F7/10 , H04M15/00 , H04W4/00 , H04L29/06 , H04W12/04 , H04W12/06
CPC分类号: H04L67/34 , G06Q20/32 , G06Q20/3229 , G06Q20/3552 , G06Q20/3563 , G07F7/1008 , H04L63/04 , H04L63/061 , H04L63/0853 , H04M15/00 , H04M15/68 , H04W4/50 , H04W4/60 , H04W12/04 , H04W12/06
摘要: A method for downloading an application is disclosed by the present invention which is implemented based on an application downloading system including a smart card, a mobile terminal, an Over The Air (OTA) server and an outside-card entity management platform. The outside-card entity management platform establishes a connection with the smart card through the OTA server and mobile terminal, selects a security domain for application downloading in the smart card after receiving an application downloading request from the smart card, establishes a security channel with the smart card, and downloads the application to the smart card based on the security channel. By using the system and method for downloading an application of the present invention, the application may be downloaded to the smart card over a mobile communication network at a high speed, in real time, conveniently and safely, with user experience being improved.
摘要翻译: 通过本发明公开了一种用于下载应用的方法,该方法基于包括智能卡,移动终端,空中(OTA)服务器和外部卡实体管理平台的应用下载系统来实现。 外卡实体管理平台通过OTA服务器和移动终端建立与智能卡的连接,在从智能卡接收到应用下载请求之后,在智能卡中选择安全域进行应用下载,建立安全通道 智能卡,并根据安全通道将应用程序下载到智能卡。 通过使用用于下载本发明的应用的系统和方法,可以通过移动通信网络以实时,便利且安全的方式将应用程序下载到智能卡,同时改善用户体验。
-
8.发明授权公开(公告)号:US08532704B2
公开(公告)日:2013-09-10
申请号:US13201269
申请日:2009-08-25
申请人: Jingwang Ma , Qian Jia
发明人: Jingwang Ma , Qian Jia
CPC分类号: H04B1/3816 , G06K7/10237 , G06K7/10247 , G06K7/10297 , G06K19/0723 , G06Q20/3278 , H04B5/00 , Y02D70/166 , Y02D70/40 , Y02D70/42
摘要: The present invention provides a terminal supporting eNFC and its processing method, in which a card emulation mode is disabled when a user card does not support SWP, and NFC in non card emulation modes can further be supported. A mobile terminal disabling/enabling the NFC function is implemented by the interaction of the mobile terminal with a NFC emulation front end chip therein. When the terminal determines that the user card does not support the SWP interface, it disables the NFC function. If the terminal is required to work in a non card emulation mode, the terminal starts a NFC application in the non card emulation, mode, and enables the NFC function when determining that the NFC function is in a disabled state; after the NFC ends, the terminal disables the NFC function when determining that the user card does not support the SWP interface.
摘要翻译: 本发明提供了一种支持eNFC的终端及其处理方法,其中当用户卡不支持SWP时禁用卡仿真模式,并且可以进一步支持非卡仿真模式中的NFC。 通过移动终端与其中的NFC仿真前端芯片的交互来实现禁用/启用NFC功能的移动终端。 当终端确定用户卡不支持SWP接口时,它会禁用NFC功能。 如果终端需要工作在非卡模拟模式,则终端在非卡仿真模式下启动NFC应用,并且当确定NFC功能处于禁用状态时启用NFC功能; 在NFC结束之后,当确定用户卡不支持SWP接口时,终端禁用NFC功能。
-
9.发明申请Enhanced near field communication terminal, smart card and communication method thereof 有权增强近场通信终端,智能卡及其通信方法公开(公告)号:US20120021683A1
公开(公告)日:2012-01-26
申请号:US13258470
申请日:2009-12-18
申请人: Jingwang Ma , Qian Jia
发明人: Jingwang Ma , Qian Jia
IPC分类号: H04B5/00 , G06K19/073
CPC分类号: G07F7/1008 , G06Q20/3278 , H04L63/0876 , H04W4/80
摘要: The present invention discloses a smart card communication method, a smart card, and an enhanced near field communication NFC terminal. The method is used for communication between the smart card and an NFC contactless front-end chip; when installing a contactless payment application, the smart card records a communication standard adopted by a contactless payment system corresponding to the contactless payment application, wherein the communication standard is identified by identification information provided by the contactless payment application; it further comprises: for each card application gate, the smart card judges whether a contactless payment application corresponding to the card application gate exists based on the identification information; if yes, creating a pipe between the card application gate and a corresponding card RF gate in the NFC contactless front-end chip.
摘要翻译: 本发明公开了一种智能卡通信方法,智能卡和增强型近场通信NFC终端。 该方法用于智能卡和NFC非接触式前端芯片之间的通信; 在安装非接触支付应用时,智能卡记录与非接触式支付应用相对应的非接触支付系统所采用的通信标准,其中通过非接触式支付应用提供的识别信息识别通信标准; 它还包括:对于每个卡应用门,智能卡基于识别信息判断是否存在与卡应用门对应的非接触式支付应用; 如果是,在NFC非接触式前端芯片之间的卡应用门和相应的卡RF门之间创建管道。
-
10.发明授权Enhanced near field communication terminal, smart card and communication method thereof 有权增强近场通信终端,智能卡及其通信方法公开(公告)号:US08768250B2
公开(公告)日:2014-07-01
申请号:US13258470
申请日:2009-12-18
申请人: Jingwang Ma , Qian Jia
发明人: Jingwang Ma , Qian Jia
IPC分类号: H04W4/00
CPC分类号: G07F7/1008 , G06Q20/3278 , H04L63/0876 , H04W4/80
摘要: The present invention discloses a smart card communication method, a smart card, and an enhanced near field communication NFC terminal. The method is used for communication between the smart card and an NFC contactless front-end chip; when installing a contactless payment application, the smart card records a communication standard adopted by a contactless payment system corresponding to the contactless payment application, wherein the communication standard is identified by identification information provided by the contactless payment application; it further comprises: for each card application gate, the smart card judges whether a contactless payment application corresponding to the card application gate exists based on the identification information; if yes, creating a pipe between the card application gate and a corresponding card RF gate in the NFC contactless front-end chip.
摘要翻译: 本发明公开了一种智能卡通信方法,智能卡和增强型近场通信NFC终端。 该方法用于智能卡和NFC非接触式前端芯片之间的通信; 在安装非接触支付应用时,智能卡记录与非接触式支付应用相对应的非接触支付系统所采用的通信标准,其中通过非接触式支付应用提供的识别信息识别通信标准; 它还包括:对于每个卡应用门,智能卡基于识别信息判断是否存在与卡应用门对应的非接触式支付应用; 如果是,在NFC非接触式前端芯片之间的卡应用门和相应的卡RF门之间创建管道。
-
-
-
-
-
-
-
-
-
搜索结果
16 条记录 (耗时 0.018 秒)
