CN101908120B - Method for realizing all-in-one function of single intelligent card - Google Patents
Method for realizing all-in-one function of single intelligent card Download PDFInfo
- Publication number
- CN101908120B CN101908120B CN 200910052398 CN200910052398A CN101908120B CN 101908120 B CN101908120 B CN 101908120B CN 200910052398 CN200910052398 CN 200910052398 CN 200910052398 A CN200910052398 A CN 200910052398A CN 101908120 B CN101908120 B CN 101908120B
- Authority
- CN
- China
- Prior art keywords
- card
- file
- function
- smart card
- realizes
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Landscapes
- Storage Device Security (AREA)
Abstract
The invention discloses a method for realizing all-in-one function of a single intelligent card. Tree directory structures of a plurality of cards are combined, directory file structures respectively representing different cards are written into the independent space of the same intelligent card, different MFs represent payment (or application) environments of various industries and various card issue parties, the names of the MFs are specified as the names of the payment (or application) environments of the various industries and various card issue parties, attributes such as space, an instruction set, communication interface and protocol types, safety access right and the like required by application of each industry are configured to a corresponding MF, and the function of storing the plurality of cards (namely all-in-one function) can be realized on the single CPU intelligent card.
Description
Technical field
The present invention relates to a kind of method that realizes the all-in-one card function at single smart card.
Background technology
Development along with informationization technology, the application of IC-card is constantly expanded, the market volume of holding of IC-card constantly increases, particularly in fields such as telecommunications card, social security card, public transport card, campus card, Internet bar's card, access cards, card and the system quantity of its application are considerable, but also in the impetus that continues to keep expansion.IC-card is divided into memory card and CPU card, and on market, the CPU card is because safe, and function is strong, and the data reliability advantages of higher after cost descends gradually, will be employed more and more.
Accelerated development along with the national information process, people are growing to the demand of information consumption, the applied environment of IC-card also trends towards complicated, diversified, the multifunctional application of IC-card becomes the direction of following smart card techniques development, advancing IC-card " one card for multiple uses " to reach " multifunction card " is the link that can not be ignored in the current development of information, also is the important mission with epoch symbol.
Read write line is by the CPU card being sent order, in the mode of service data file the data in the CPU card is conducted interviews.The data structure of CPU card is tree directory structure, and the root of tree is the master file (MF) of card, and it is equivalent to the root directory of file system.Under the MF of card, can set up a plurality of basic document (EF) and private file (DF).Wherein basic document (EF) have different file types and at the unique file identifier of same level file (FID), the actual data of its storage.Private file (DF) also has title except file identifier is arranged, private file provides the data space of basic document and relevant file index information, is equivalent to the catalogue of file system.
When using the situation that needs a shared physics card, a plurality of independent card issuers suit very much.When using same CPU card smart card to realize such as urban public transport card and social security card, two different distribution units can carry out hair fastener to the same card sheet independently, and the card of separately distribution is carried out safety management and relevant serving with card is provided.Along with the large-scale application of IC-card in every field such as telecommunications, social security, public transport card, campus, Internet bar, gate inhibitions, because present CPU card can only be realized the function of single industry, cause the user need to face with many cards the application of different industries, carry with inconvenient problem with use and will become comparatively outstanding.Way to solve the problem is to realize safely original many functions that card could be realized on single CPU card smart card.And field and the scope used along with the CPU card increase rapidly, and the demand of the common hair fastener of a plurality of card issuers of same industry also becomes more and more, finish originally the function that many cards just can finish with a CPU card and become very urgent.Simultaneously, many engagings are not once being simply many cards to be merged to a card can solve, and must involve the problems such as mutually access between different cards, safety isolation and resource distribution, how rationally and safely to realize that at a CPU card smart card application demand of many cards is brand-new problems.
When CPU is stuck in the different industries use, the communication interface that the read-write terminal of corresponding industry is at first stipulated by industry standard, USB interface, ISO7816 serial line interface or contactless ISO14443typeA interface such as contact, use corresponding interface communications protocol such as USB-ICC, ISO7816T=0 agreement or ISO14443 T=CL agreement, card is sent the select File order realize blocking the access of interior application.The file select command is referred to as the filename command parameter with payment or the applied environment name of concrete industry, if specify the interior application catalogue of filename and card to be complementary in the parameter, then card enters this application catalogue work and sends correct response, then waits for next bar instruction of terminal.
Take the trading card standards such as PBOC standard, social security card standard, Ministry of Construction's standard as the basis CPU card COS (Chip Operating System) in, because every profession and trade is used independent mutually, when defined instruction and file structure and security system, have a style of one's own, do not consider to share with other industry the situation of a card, so be difficult to compatibility between the instruction between every profession and trade and file structure and the card management.In addition, even adopt same industry standard, when the publisher surpassed a side, the card management security system required the management functions such as lifetime of card level to be grasped by a side, and other each side will be in the status of being arranged.
There are at present some schemes, come the respectively application of corresponding different industries as under the master file (MF) of same card, setting up a plurality of catalogue private files (DDF), realize again the requirement of a plurality of sector applications according to different DDF, can realize to a certain extent that a plurality of sector applications coexist at a card.But the problem that this mode exists is to only have a MF in the card, the card issuer who has this MF administration authority, when carrying out the bookkeeping such as card locking or deletion card, can cause the locked or deletion of all DDF under the MF, make its applied environment can't be accessed again, thereby damage other independent card issuer's interests.In fact this mode can only be applied in the occasion of only having a card issuer, can't realize the multi-use card requirement by a plurality of card issuer's independence hair fasteners and secure access.
Summary of the invention
A kind of method that realizes the all-in-one card function at single smart card provided by the invention is applicable to a plurality of card issuers use same physics card at the application needs of same industry or different industries situation.Adopt unique COS file structure and a plurality of routine processes modules that satisfy the every profession and trade standard that adapt with it, and be the basis thus, in realizing smart card in safe establishment, deletion and the lock function of a plurality of cards, satisfy the requirement of the safe independent utility of a plurality of cards unifications that many card issuers conglomerate uses.
In order to achieve the above object, the invention provides a kind of method that realizes the all-in-one card function at the single cpu smart card, this single cpu smart card is called and closes card, and the method includes the steps of:
Step 1, initialization CPU smart card;
This moment the closing in the card without any the card of reality of CPU smart card, inner any effective card and the data of not containing except the data storage space are only supported the function of the new card of establishment;
Step 2, establishment card;
Each card has the card file system that jointly is comprised of the well-determined master file of card master file MF title and son file at different levels thereof that independently meets industry standard separately and the hardware communication interface of the command processor of industry and operation sheet and the software protocol type attributes such as various security permissions required with accessing card under corresponding card is used with it;
The single card that closes in the card embodies by the files at different levels under its MF and the MF, different cards has different MF, each MF has title, file identifier FID, space size, the application industry type, communication interface and protocol type, the attribute such as establishment and deleted file or card requested permissions under MF, the title of MF has uniqueness in closing card, various authorities under the MF require to be expressed as different security level requireds, when hair fastener, specified by the user, when card is carried out certain bar instruction, must meet the authority requirement of command operating, the level of security that is the current operation of card must reach level of security corresponding to this instruction execution authority, must carry out in advance the operation of the change level of securitys such as key authentication for this reason;
After step 2.1, CPU smart card receive the instruction of the establishment card that the smart card read-write terminal sends, close card and create first card, this card is necessary for control card, and the MF of control card has the FID of the MF of system default, can create new card;
This first card obtains to close all data spaces in the card, and becomes system default card (Default Card);
This first card has hardware communication interface and the software protocol type of this card use and accesses the required attributes such as various security permissions of this card.
Behind the smart card electrification reset, if the acquiescence card exists, then it becomes active card (ActiveCard) automatically, its MF becomes movable DF, card has the minimum safe authority in minimum level of security operation, and it is movable that a certain moment only has a card at the most;
Step 2.2, close card and continue to create other cards;
The founder is called father's card, and the card that is created is called subcard, and the data space of subcard is provided by father's card when creating and returns subcard to own after establishment, namely becomes independently card after subcard creates successfully, and father's card can't visit again the data space of subcard;
Step 2.2.1, CPU smart card judge whether active card is control card after receiving the establishment card instruction that the smart card read-write terminal sends, and whether its MF be the DF of current active, if not, stop to create card, if forward step 2.2.2 to;
Whether whether step 2.2.2, the current safety rank of judging card run satisfy creates the authority of card and has enough data spaces to create new card under the MF, if not, stop to create card, if forward step 2.2.3 to;
Whether the MF card that step 2.2.3, judgement have identical DF title exists, if exist, then creates unsuccessfully, stops, if do not exist, forwards step 2.2.4 to;
Step 2.2.4, establishment neocaine create in the instruction and contain the parameters such as FID and DF title;
FID can be the FID of the MF of system default, and then new card is control card; FID also can not be the FID of the MF of system default, and then new card is generic card, and generic card can not create new card;
Step 2.2.5, forward step 2.2.1 to, continue to create neocaine;
If satisfy the condition that creates new card, father's card can create a plurality of subcards;
Step 3, close card and choose different cards;
Step 3.1, the different choosing method of selection if select to choose card in MF title mode, then forward step 3.2 to, if select to choose card in the FID mode, then forward step 3.3 to;
Step 3.2, choose card in MF title mode;
Step 3.2.1, the data field parameter that the select File order is set are the MF title of card to be selected;
Whether step 3.2.2, CPU smart card travel through all cards after receiving the instruction of the selection card that the smart card read-write terminal sends, judge and specify the card of MF title to exist, if do not exist, then to choose failure, if exist, then to choose this card;
Whether the card that step 3.2.3, judgement are chosen is active card, if, continue, if not, the card of then choosing becomes active card, and its MF becomes movable DF, and active card originally is no longer movable;
Step 3.3, choose card in the FID mode;
Step 3.3.1, the data field parameter that the select File order is set are the FID parameter of card to be selected, or parameters (being equivalent to use default parameters) not;
After step 3.3.2, CPU smart card receive the select File order that the smart card read-write terminal sends, whether the FID parameter among the determining step 3.3.1 arranges, then use this FID parameter if arrange, otherwise the FID of the MF of use system default is as the FID parameter;
Step 3.3.3, judge that the FID of MF of active card is whether consistent with the FID parameter that arranges, if, then choose the MF of active card, if not, forward step 3.3.4 to;
Step 3.3.4, judge the whether FID of the MF of system default of FID parameter, if not, then choose failure.If, judge whether father's card exists, if exist, then choose father's card of active card, if father's card does not exist, then seek step by step the higher level ancestors, until first ancestors if all ancestors all do not exist, then choose failure;
Step 4, close card according to the card chosen, call in the card under the command processor of industry, realize different card functions;
The method that realizes the all-in-one card function at single smart card provided by the invention also comprises:
Step 5, close card acquiescence card is changed;
Step 5.1, CPU smart card receive the acquiescence card change directive that the smart card read-write terminal sends, and have indicated the MF title of new acquiescence card in the instruction;
Whether step 5.2, judgement acquiescence card are active card, if, forward step 5.3 to, if not, stop;
Step 5.3, acceptance acquiescence card change directive judge whether to satisfy the authority requirement that instruction is carried out, and judge whether the card of create name in the change directive exists, if satisfy command request, and the existence of the card of create name, then specify new acquiescence card;
Carry out acquiescence card change directive identical with the authority of carrying out deletion card command request, can reach the required level of security of operation by key authentication;
The method that realizes the all-in-one card function at single smart card provided by the invention also comprises:
Step 6.1, CPU smart card receive the card lock instruction that the smart card read-write terminal sends, and perhaps cause carrying out the card lock operation because of faulty operation;
Described faulty operation, refer to for example when needs use safe packet to carry out the file write operation, repeatedly use and contain the instruction of vicious safe packet and the maximal value of the number of attempt that errors number reaches permission, then this operation is regarded as card has been carried out security attack, so CPU smart card locking card prevents that the sensitive data in the card from illegally being distorted;
Step 6.2, active card is locked, the card after the locking only supports to choose the function of card, can choose other card or is chosen by other card;
The method that realizes the all-in-one card function at single smart card provided by the invention also comprises:
Card in step 7, the deletion CPU smart card;
The deletion of closing card in the card realizes by deleting its MF;
Step 7.1, CPU smart card receive the deletion card instruction that the smart card read-write terminal sends;
Step 7.2, judge whether the card that will delete is active card, and whether its MF be movable DF, if, forward step 7.3 to, if not, this card can not be deleted;
Whether the card that step 7.3, judgement will be deleted is not locked, and whether satisfied its MF of deletion operates desired authority, if, forward step 7.4 to, if not, this card can not be deleted;
Step 7.4, card are deleted, and its legacy data is eliminated;
Step 7.5, determine the successor of original resource of deleted card;
Whether specified the successor of card resource in the deletion card instruction in step 7.5.1, the determining step 7.1, design parameter is successor's MF title, if card to be named if not, forwards step 7.5.2 to as the successor;
Step 7.5.2, judge whether the father card of deleted card exists, if then his father's card is as the successor, if not, then its resource is by closing card recovery;
The successor becomes active card after former card is deleted, if former card is the acquiescence card, then the successor also becomes new acquiescence card, if there is not the successor, then specifies an acquiescence card by the CPU smart card; Block existence if former card is control card and his father, then deleted rear its descendants becomes the descendants of his father's card; Close in the card all cards deleted after, close card and be returned to original state;
Described key authentication process comprises following steps:
Step 8.1, smart card read-write terminal read the random number that smart card produces, and use relevant key that this random number is encrypted, and the result after then will encrypting sends it back smart card;
Step 8.2, smart card carry out identical cryptographic operation to the same random number that produces;
The result that step 8.3, smart card verification step 8.1 and step 8.2 produce, if come to the same thing, then key authentication passes through, and changes current runlevel and be the level of security behind the authenticate key, otherwise key authentication unsuccessfully.
The present invention organically combines the tree directory structure of a plurality of cards, these directory file structure that represent respectively different cards are written in the separate space of the same card smart card, represent each card issuer's of every profession and trade payment (or application) environment with different MF, and the name of specifying MF is called each card issuer's of every profession and trade payment (or application) environment title, again every profession and trade is used required space size, instruction set, communication interface and protocol type, the attribute configuration such as secure access authority just can realize many cards of storage (being multi-use card) at the single cpu smart card to corresponding MF.
Description of drawings
Fig. 1 is one embodiment of the present of invention, is the CPU smart card of E-consumer card, social security card and the combination of e-credit function;
Fig. 2 is an alternative embodiment of the invention, the CPU smart card of being combined with the campus card function for the urban public transport card;
Fig. 3 is an alternative embodiment of the invention, is the conglomerate CPU smart card of built-in safety door inhibition card.
Embodiment
Following according to Fig. 1~Fig. 3, specify better embodiment of the present invention:
A kind of method that realizes the all-in-one card function at single smart card comprises following steps:
Step 1, initialization CPU smart card;
This moment the closing in the card without any the card of reality of CPU smart card, inner any effective card and the data of not containing except the data storage space are only supported the function of the new card of establishment;
Step 2, establishment card;
Each card have the card file system 6 that independently meets industry standard separately and under corresponding card is used with it the hardware communication interface of the command processor of industry and operation sheet with the software protocol type with access the required attributes such as various security permissions of card;
Wherein said card file system 6 is made of jointly the well-determined master file of card master file MF title and son file at different levels thereof;
The all or part of set of the composition of the various communication interfaces that described hardware communication interface can provide for CPU the core of the card sheet hardware;
The required various security permissions of described access card are included in and create son file, deletion son file under the card MF, reach and create new card, delete the authorities such as this card;
Various authorities under the described MF require to be expressed as different security level requireds, when hair fastener, specified in the parameter that creates card by the user, in the data field of the instruction of the concrete MF that passes through at the establishment card, except containing FID, the MF title, outside the parameters such as space size, also contain every kind of authority with the security level required of numeral;
The method for expressing of level of security has multiple, such as Fig. 1~shown in Figure 3, it is 16 ranks that the level of security of card is divided into, 0-F represents with 16 systems numeral, the authority of certain operation requires to represent with a byte, and left nibble represents to allow the maximum level of security that moves, the right to represent to allow the minimum safe rank of moving, when (containing minimum and maximum level of security) between the minimum safe rank and maximum level of security that level of security is allowing to move, be and satisfy the authority requirement.For example, 0xF0 represents that the level of security that allows is that 0x0-0xF is (more than or equal to 0x0, less than or equal to 0xF) between, namely all ranks all can be moved, 0xEF represents that all ranks all can not be moved and (does not exist more than or equal to 0xF, number less than or equal to 0xE), 0xAA namely requires the level of security of card run to be necessary for 0xA (more than or equal to 0xA, less than or equal to 0xA);
When card is carried out certain bar instruction, must meet the authority requirement of command operating, namely the current level of security of card must reach and carry out level of security corresponding to this instruction authority, must carry out in advance the operation of the change level of securitys such as key authentication for this reason.Suppose that the current safety rank is 0x0, there are many keys in the card, a cipher key setting is wherein arranged for by reaching level of security 0xA after the authentication, if the level of security of follow-up action need is 0xA, then only need to reach corresponding operating right by the authentication of this key;
Step 2.1, close card and create first card, this card is necessary for control card, and the MF of control card has the FID of the MF of system default, can create new card;
This first card obtains to close all data spaces in the card, and becomes the system default card;
E-consumer card among Fig. 1 is first card, and it also is the acquiescence card;
Behind the smart card electrification reset, if the acquiescence card exists, then it becomes active card automatically, and its MF becomes movable DF, and it is movable that a certain moment only has a card at the most;
Step 2.2, close card and continue to create other cards;
The founder is called the father and blocks 4, and the card that is created is called subcard 5, and the data space of subcard is provided by father's card when creating and returns subcard to own after establishment, namely becomes independently card after subcard creates successfully, and father's card can't visit again the data space of subcard;
Step 2.2.1, judge whether active card is control card, and whether its MF be the DF of current active, if not, stop to create card, if forward step 2.2.2 to;
Step 2.2.2, judge whether to satisfy under the MF authority 0xAA that creates file, and the required data space requirement of new card, if not, stop to create card, if forward step 2.2.3 to;
Whether the MF card that step 2.2.3, judgement have identical DF title exists, if exist, then creates unsuccessfully, stops, if do not exist, forwards step 2.2.4 to;
Step 2.2.4, establishment neocaine create in the instruction and contain the parameters such as FID and DF title;
FID can be the FID=0x3F00 of the MF of system default, and then new card is control card; FID also can not be the FID=0x3F00 of the MF of system default, and then new card is generic card, and generic card can not create new card;
E-consumer card as shown in Figure 1 and social security card are control card, and e-credit is generic card;
Step 2.2.5, forward step 2.2.1 to, continue to create neocaine;
If satisfy the condition that creates new card, father's card can create a plurality of subcards;
As shown in Figure 1, " 1PAY.SYS.DDF01 ", " sxl.sh. social security ", " 1PAY.SYS.DDF02 ", be the MF title of different cards, represent respectively an E-consumer card, a social security card and an e-credit, respectively by market, social security center and issued by banks;
The data space of the total 16K of this CPU intelligence engaging card, the E-consumer card is first card, it has the space of 16K automatically when creating, after having created the social security card subcard in 12K space under first card, the E-consumer card is the data space of surplus 4K only, has created again the e-credit subcard of 4K under social security card, the space of social security card becomes 8K, in Fig. 1, the E-consumer card is father's card of social security card, and social security card is father's card of e-credit;
The name of E-consumer card is called " 1PAY.SYS.DDF01 ", the FID of its MF is 0x3F00 (FID of the MF of system default), be control card, space size is 4K, has the sector application type that meets PBOC2.0 electronic bankbook/stored value card standard, use non-contact interface and T=CL communications protocol, the card security permission that establishment card, deletion card require to reach is 0xAA, calls the subroutine that meets PBOC2.0 electronic bankbook/stored value card standard when CPU intelligence is stuck in the application of processing this card;
The name of social security card is called " sxl.sh. social security ", the FID of MF is 0x3F00, be control card, space size is 12K, has the sector application type that meets social security card individual calliper model, use contact interface and T=0 communications protocol, the card security permission that establishment card, deletion card require to reach is 0xAA, calls the subroutine that meets the individual calliper model of social security card when CPU intelligence is stuck in the application of processing this card;
The name of e-credit is called " 1PAY.SYS.DDF02 ", FID is 0x5F00, be generic card, space size is 4K, has the sector application type that meets PBOC2.0 debt-credit note standard, support USB (USB-ICC agreement), contact (T=0 communications protocol) and contactless (T=CL communications protocol) multiple interfaces, the card security permission that establishment card, deletion card require to reach is 0xAA, calls when CPU intelligence is stuck in the application of processing this card to meet the subroutine that PBOC2.0 borrows or lends money the note standard;
Step 3, close card and choose different cards;
Step 3.1, the different choosing method of selection if when selection is chosen card in MF title mode, then forward step 3.2 to, if select in the FID mode, then forward step 3.3 to;
Step 3.2, choose card in MF title mode;
Step 3.2.1, the data field parameter that the select File order is set are the MF title of card to be selected;
Whether step 3.2.2, CPU smart card travel through all cards after receiving the instruction of the selection card that the smart card read-write terminal sends, judge and specify the card of MF title to exist, if do not exist, then to choose failure, if exist, then to choose this card;
Whether the card that step 3.2.3, judgement are chosen is active card, if, continue, if not, the card of then choosing becomes active card, and its MF becomes movable DF, and active card originally is no longer movable;
Step 3.3, choose card in the FID mode;
Step 3.3.1, the data field parameter that the select File order is set are the FID parameter of card to be selected, or parameters (being equivalent to use default parameters) not;
After step 3.3.2, CPU smart card receive the select File order that the smart card read-write terminal sends, whether the FID parameter among the determining step 3.3.1 arranges, then use this FID parameter if arrange, otherwise the FID of the MF of use system default is as the FID parameter;
Step 3.3.3, judge that the FID of MF of active card is whether consistent with the FID parameter that arranges, if, then choose the MF of active card, if not, forward step 3.3.4 to;
Step 3.3.4, judge whether father card exists, if exist, then choose father's card of active card, if father's card does not exist, then seek step by step the higher level ancestors, until first ancestors if all ancestors all do not exist, then choose failure;
As shown in Figure 1, can pass through MF title " 1PAY.SYS.DDF01 ", " sxl.sh. social security ", " 1PAY.SYS.DDF02 ", remove to select respectively three different cards; When E-consumer card or social security card are active card, carry out the MF file when selecting with FID=0x3F00, selection be that active card is the MF of himself; When e-credit is active card, carry out the MF file when selecting with FID=0x5F00, selection be that active card is the MF of himself, carry out the MF file when selecting with FID=0x3F00, selection be the MF that his father blocks social security card;
Step 4, close card according to the card chosen, call in the card under the command processor of industry, realize different card functions;
The method that realizes the all-in-one card function at single smart card provided by the invention also comprises:
Step 5, close card acquiescence card is changed;
Step 5.1, CPU smart card receive the acquiescence card change directive that the smart card read-write terminal sends, and indicate the MF title of new acquiescence card in the instruction;
Whether step 5.2, judgement acquiescence card are active card, if, forward step 5.3 to, if not, stop;
Step 5.3, acceptance acquiescence card change directive judge whether to satisfy the authority requirement that instruction is carried out, and judge whether the card of create name in the change directive exists, if satisfy command request, and the existence of the card of create name, then specify new acquiescence card;
Carry out acquiescence card change directive identical with the authority of carrying out deletion card command request, among Fig. 1, first card E-consumer card is the acquiescence card, if change acquiescence card, the level of security of card reaches and deletes card when operation desired level of security, i.e. 0xA;
The method that realizes the all-in-one card function at single smart card provided by the invention also comprises:
Step 6.1, CPU smart card receive the card lock instruction that the smart card read-write terminal sends, and perhaps cause carrying out the card lock operation because of faulty operation;
Described faulty operation, refer to for example when needs use safe packet to carry out the file write operation, repeatedly use and contain the instruction of vicious safe packet and the maximal value of the number of attempt that errors number reaches permission, then this operation is regarded as card has been carried out security attack, so CPU smart card locking card prevents that the sensitive data in the card from illegally being distorted;
Step 6.2, active card is locked, the card after the locking only supports to choose the function of card, can choose other card or is chosen by other card;
The method that realizes the all-in-one card function at single smart card provided by the invention also comprises:
Card in step 7, the deletion CPU smart card;
The deletion of closing card in the card realizes by deleting its MF;
Step 7.1, CPU smart card receive the deletion card instruction that the smart card read-write terminal sends;
Step 7.2, judge whether the card that will delete is active card, and whether its MF be movable DF, if, forward step 7.3 to, if not, this card can not be deleted;
Whether the card that step 7.3, judgement will be deleted is not locked, and whether satisfied its MF of deletion operates desired authority 0xAA, if, forward step 7.4 to, if not, this card can not be deleted;
Step 7.4, card are deleted, and its legacy data is eliminated;
Step 7.5, determine the successor of original resource of deleted card;
Whether specified the successor of card resource in the deletion card instruction in step 7.5.1, the determining step 7.1, design parameter is successor's MF title, if card to be named if not, forwards step 7.5.2 to as the successor;
Step 7.5.2, judge whether the father card of deleted card exists, if then his father's card is as the successor, if not, then its resource is by closing card recovery;
The successor becomes active card after former card is deleted, if former card is the acquiescence card, then the successor also becomes new acquiescence card, if there is not the successor, then specifies an acquiescence card by the CPU smart card; Block existence if former card is control card and his father, then deleted rear its descendants becomes the descendants of his father's card; Close in the card all cards deleted after, close card and be returned to original state;
Described key authentication process comprises following steps:
Step 8.1, smart card read-write terminal read the random number that smart card produces, and use relevant key that this random number is encrypted, and the result after then will encrypting sends it back smart card;
Step 8.2, smart card carry out identical cryptographic operation to the same random number that produces;
The result that step 8.3, smart card verification step 8.1 and step 8.2 produce, if come to the same thing, then key authentication passes through, and changes current runlevel and be the level of security behind the authenticate key, otherwise key authentication unsuccessfully.
As shown in Figure 1: if only delete social security card and do not specify the successor, then after the social security card deletion, the space of E-consumer card becomes 12K, and e-credit becomes its subcard simultaneously; If deleting the E-consumer card and specifying social security card is the successor, then the social security card space becomes 12K, and becomes the acquiescence card; If do not specify the successor during deletion E-consumer card, then then reclaim by closing card in its space, and the CPU smart card specifies social security card to become the acquiescence card.
As shown in Figure 2, a concrete application example is the multi-use card CPU card of urban public transport card and campus card unification, these two independent utility should meet corresponding national standard respectively, wherein the urban public transport card meets the CPU card standard of the Ministry of Construction, and campus card need meet the CPU card standard of PBOC.The campus card that this example is used for the support conglomerate of sending in certain school, wherein the campus card function is necessary, whether public transport card merit needs to open can be selected by user oneself.Fig. 2 has provided main Cavan part structure, and wherein to be called the card in " campus " be control card to the MF name, comprises the application in campus, and the file that the MF name that is created by its is called in the card of " Ministry of Construction " is the public transport card.During actual distribution, by school side create first campus card and under files at different levels, and if the information in the initialization campus card is the additional traffic card function of user selection, then create again blank transportation card, entrust school side to transportation card company distribution transportation card by the user or by the user.
As shown in Figure 3, another has particular application as the conglomerate CPU card of built-in safety door inhibition card function, " gate inhibition " shown in Figure 3 card and " user's definition " are stuck in card have been created when dispatching from the factory, wherein " gate inhibition " card is the generic card in 1K space, the gate control system that is used for the high strength safe authentication, " user's definition " card is the control card in 15K space, and it can be continued to create by the user card of other application type.
Although content of the present invention has been done detailed introduction by above preferred embodiment, will be appreciated that above-mentioned description should not be considered to limitation of the present invention.After those skilled in the art have read foregoing, for multiple modification of the present invention with to substitute all will be apparent.Therefore, protection scope of the present invention should be limited to the appended claims.
Claims (20)
1. method that realizes the all-in-one card function at the single cpu smart card, this single cpu smart card are called closes card, it is characterized in that, described method comprises following steps:
Step 1, initialization CPU smart card;
This moment the closing in the card without any the card of reality of CPU smart card, inner any effective card and the data of not containing except the data storage space are only supported the function of the new card of establishment;
Step 2, establishment card;
Each card has the card file system (6) that independently meets industry standard separately and the hardware communication interface of the command processor of industry and operation sheet is with the software protocol type with access the required various security permission attributes of card under corresponding card is used with it, and wherein said card file system (6) is made of jointly the well-determined master file of card master file MF title and son file at different levels thereof;
Step 3, close card and choose different cards;
Step 4, close card according to the card chosen, call in the card under the command processor of industry, realize different card functions.
2. the method that realizes the all-in-one card function at the single cpu smart card as claimed in claim 1 is characterized in that, whole set that the various communication interfaces that described hardware communication interface can provide for CPU the core of the card sheet hardware form.
3. the method that realizes the all-in-one card function at the single cpu smart card as claimed in claim 1 is characterized in that, the part set that the various communication interfaces that described hardware communication interface can provide for CPU the core of the card sheet hardware form.
4. the method that realizes the all-in-one card function at the single cpu smart card as claimed in claim 1, it is characterized in that, the required various security permissions of described access card are included in and create son file, deletion son file under the card master file MF, reach and create new card, delete this card authority.
5. the method that realizes the all-in-one card function at the single cpu smart card as claimed in claim 4, it is characterized in that, various authorities under the described master file MF require to be expressed as different security level requireds, when hair fastener, specified in the parameter that creates card by the user, when card is carried out certain bar instruction, must meet the authority requirement of command operating, be that the current level of security of card must reach level of security corresponding to this instruction authority of execution, must carry out in advance the operation that key authentication changes level of security for this reason.
6. the method that realizes the all-in-one card function at the single cpu smart card as claimed in claim 5 is characterized in that, described key authentication process comprises following steps:
Step 8.1, smart card read-write terminal read the random number that smart card produces, and use relevant key that this random number is encrypted, and the result after then will encrypting sends it back smart card;
Step 8.2, smart card carry out identical cryptographic operation to the same random number that produces;
The result that step 8.3, smart card verification step 8.1 and step 8.2 produce, if come to the same thing, then key authentication passes through, and changes current runlevel and be the level of security behind the authenticate key, otherwise key authentication unsuccessfully.
7. the method that realizes the all-in-one card function at the single cpu smart card as claimed in claim 1 is characterized in that, described step 2 comprises following steps:
Step 2.1, close after clamping receives the instruction of the establishment card that the smart card read-write terminal sends, create first card, this card is necessary for control card, and the master file MF of control card has the file identifier FID of the master file MF of system default, can create new card;
Described first card obtains to close all data spaces in the card, and becomes the system default card;
Behind the smart card electrification reset, if the acquiescence card exists, then it becomes active card automatically, and its master file MF becomes activity-specific file DF, and it is movable that a certain moment only has a card at the most;
Step 2.2, close card and continue to create other cards;
The founder is called father's card (4), the card that is created is called subcard (5), the data space of subcard is provided by father's card when creating and returns subcard to own after establishment, namely becomes independently card after subcard creates successfully, and father's card can't visit again the data space of subcard.
8. the method that realizes the all-in-one card function at the single cpu smart card as claimed in claim 7 is characterized in that, described step 2.2 comprises following steps:
Step 2.2.1, close be stuck in the instruction that receives the establishment card that the smart card read-write terminal sends after, judge whether active card is control card, and whether its master file MF is the private file DF of current active, if not, stop to create card, if forward step 2.2.2 to;
Step 2.2.2, judge that whether the current residing level of security of master file MF satisfies the authority that creates new card and require and the required data space requirement of new card, if not, stop to create card, if forward step 2.2.3 to;
Whether the master file MF card that step 2.2.3, judgement have identical private file DF title exists, if exist, then creates unsuccessfully, stops, if do not exist, forwards step 2.2.4 to;
Step 2.2.4, establishment neocaine create the various attributes that contain file identifier FID, private file DF title and neocaine in the instruction;
If file identifier FID is the file identifier FID of the master file MF of system default, then new card is control card; If file identifier FID is not the file identifier FID of the master file MF of system default, then new card is generic card, and generic card can not create new card;
Step 2.2.5, forward step 2.2.1 to, continue to create neocaine;
If satisfy the condition that creates new card, then father's card can create a plurality of subcards.
9. the method that realizes the all-in-one card function at the single cpu smart card as claimed in claim 8 is characterized in that, described step 3 comprises following steps:
Step 3.1, the different choosing method of selection are if when selection is chosen card in master file MF title mode, then forward step 3.2 to, if when selection is chosen card in file identifier FID mode, then forward step 3.3 to;
Step 3.2, choose card in master file MF title mode;
Step 3.3, choose card in file identifier FID mode.
10. the method that realizes the all-in-one card function at the single cpu smart card as claimed in claim 9 is characterized in that, described step 3.2 comprises following steps:
Step 3.2.1, the data field parameter that the select File order is set are the master file MF title of card to be selected;
Step 3.2.2, close after clamping receives the instruction of the selection card that the smart card read-write terminal sends, travel through all cards, judge and specify the card of master file MF title whether to exist, if do not exist, then to choose failure, if exist, then to choose this card;
Whether the card that step 3.2.3, judgement are chosen is active card, if, continue, if not, the card of then choosing becomes active card, and its master file MF becomes activity-specific file DF, and active card originally is no longer movable.
11. the method that realizes the all-in-one card function at the single cpu smart card as claimed in claim 10 is characterized in that, described step 3.3 comprises following steps:
Step 3.3.1, the data field parameter that the select File order is set are the file identifier FID parameter of card to be selected, or parameters not, use default parameters;
Step 3.3.2, close after clamping receives the instruction of the selection card that the smart card read-write terminal sends, whether the file identifier FID parameter among the determining step 3.3.1 arranges, then use this file identifier FID parameter if arrange, otherwise the file identifier FID of the master file MF of use system default is as file identifier FID parameter;
Step 3.3.3, judge that the file identifier FID of master file MF of active card is whether consistent with the file identifier FID parameter that arranges, if, then choose the master file MF of active card, if not, forward step 3.3.4 to;
Step 3.3.4, judge the whether file identifier FID of the master file MF of system default of file identifier FID parameter, if not, then choose failure; If, judge whether father's card exists, if exist, then choose father's card of active card, if father's card does not exist, then seek step by step the higher level ancestors, until first ancestors if all ancestors all do not exist, then choose failure.
12. the method that realizes the all-in-one card function at the single cpu smart card as claimed in claim 11 is characterized in that, described method in single smart card realization all-in-one card function also comprises:
Step 5, close card acquiescence card is changed.
13. the method that realizes the all-in-one card function at the single cpu smart card as claimed in claim 12 is characterized in that, described step 5 also comprises following steps:
Step 5.1, CPU smart card receive the acquiescence card change directive that the smart card read-write terminal sends, and have indicated the master file MF title of new acquiescence card in the instruction;
Whether step 5.2, judgement acquiescence card are active card, if, forward step 5.3 to, if not, stop;
Step 5.3, acceptance acquiescence card change directive judge whether to satisfy the authority requirement that instruction is carried out, and judge whether the card of create name in the change directive exists, if satisfy command request, and the existence of the card of create name, then specify new acquiescence card;
Carry out acquiescence card change directive identical with the authority of carrying out deletion card command request.
14. the method that realizes the all-in-one card function at the single cpu smart card as claimed in claim 13 is characterized in that, described method in single smart card realization all-in-one card function also comprises:
Step 6, card locking.
15. the method that realizes the all-in-one card function at the single cpu smart card as claimed in claim 14 is characterized in that, described step 6 also comprises following steps:
Step 6.1, CPU smart card receive the card lock instruction that the smart card read-write terminal sends, and perhaps cause carrying out the card lock operation because of faulty operation;
Step 6.2, active card is locked, the card after the locking only supports to choose the function of card, can choose other card or is chosen by other card.
16. the method that realizes the all-in-one card function at the single cpu smart card as claimed in claim 15, it is characterized in that, described faulty operation refers to when needs use safe packet to carry out the file write operation, repeatedly use and contain the instruction of vicious safe packet and the maximal value of the number of attempt that errors number reaches permission, then this operation is regarded as card has been carried out security attack, so COS locking card prevents that the sensitive data in the card from illegally being distorted.
17. the method that realizes the all-in-one card function at the single cpu smart card as claimed in claim 16 is characterized in that, the described method that realizes the all-in-one card function at single smart card also comprises:
Card in step 7, the deletion CPU smart card, the deletion of closing card in the card realizes by deleting its master file MF.
18. the method that realizes the all-in-one card function at the single cpu smart card as claimed in claim 17 is characterized in that, described step 7 also comprises following steps:
Step 7.1, CPU smart card receive the deletion card instruction that the smart card read-write terminal sends;
Step 7.2, judge whether the card that will delete is active card, and whether its master file MF be movable private file DF, if, forward step 7.3 to, if not, this card can not be deleted;
Whether the card that step 7.3, judgement will be deleted is not locked, and whether satisfied its master file of deletion MF operates desired authority, if, forward step 7.4 to, if not, this card can not be deleted;
Step 7.4, card are deleted, and its legacy data is eliminated;
Step 7.5, determine the successor of original resource of deleted card.
19. the method that realizes the all-in-one card function at the single cpu smart card as claimed in claim 18 is characterized in that, described step 7.5 also comprises following steps:
Whether specified the successor of card resource in the deletion card instruction in step 7.5.1, the determining step 7.1, design parameter is successor's master file MF title, if card to be named if not, forwards step 7.5.2 to as the successor;
Step 7.5.2, judge whether the father card of deleted card exists, if then his father's card is as the successor, if not, then its resource is by closing card recovery.
20. the method that realizes the all-in-one card function at the single cpu smart card as claimed in claim 19, it is characterized in that, in the described step 7.5, the successor becomes active card after former card is deleted, if former card is the acquiescence card, then the successor also becomes new acquiescence card, if there is not the successor, then specifies an acquiescence card by the CPU smart card; Block existence if former card is control card and his father, then deleted rear its descendants becomes the descendants of his father's card; Close in the card all cards deleted after, close card and be returned to original state.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 200910052398 CN101908120B (en) | 2009-06-02 | 2009-06-02 | Method for realizing all-in-one function of single intelligent card |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 200910052398 CN101908120B (en) | 2009-06-02 | 2009-06-02 | Method for realizing all-in-one function of single intelligent card |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101908120A CN101908120A (en) | 2010-12-08 |
| CN101908120B true CN101908120B (en) | 2013-04-10 |
Family
ID=43263577
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN 200910052398 Active CN101908120B (en) | 2009-06-02 | 2009-06-02 | Method for realizing all-in-one function of single intelligent card |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101908120B (en) |
Families Citing this family (13)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102647809B (en) * | 2011-02-16 | 2015-06-17 | 深圳市证通金信科技有限公司 | Method for implanting PBOC (People's Bank Of China) data processing module into mobile communication terminal |
| CN102087716B (en) * | 2011-03-02 | 2013-02-13 | 武汉天喻信息产业股份有限公司 | Multi-application Java smart card |
| JP5659051B2 (en) | 2011-03-17 | 2015-01-28 | 株式会社東芝 | COMMUNICATION MEDIUM, IC CARD, AND COMMUNICATION METHOD |
| CN105337944B (en) * | 2014-08-12 | 2020-02-21 | 格马尔托股份有限公司 | Method for managing several profiles in a secure element |
| CN105991529A (en) * | 2014-11-07 | 2016-10-05 | 天地融科技股份有限公司 | Data interaction method and system |
| CN105225107A (en) * | 2015-09-23 | 2016-01-06 | 恒宝股份有限公司 | Based on the communication interaction method of integrated card, method for secure transactions and system thereof |
| WO2017166071A1 (en) * | 2016-03-29 | 2017-10-05 | 李昕光 | Smart card service system and method |
| WO2017166065A1 (en) * | 2016-03-29 | 2017-10-05 | 李昕光 | Smart card service system and method |
| WO2017166053A1 (en) * | 2016-03-29 | 2017-10-05 | 李昕光 | Smart card service system and method |
| WO2017166062A1 (en) * | 2016-03-29 | 2017-10-05 | 李昕光 | Smart card service system and method |
| CN105894426A (en) * | 2016-03-30 | 2016-08-24 | 广州星海数字电视金卡有限公司 | Resident information sharing, storing, and managing system based on CPU chip card |
| CN107590149B (en) * | 2016-07-07 | 2021-01-08 | 北京数码视讯科技股份有限公司 | File directory creation method and device in smart card |
| CN107229962A (en) * | 2017-07-03 | 2017-10-03 | 智坤(江苏)半导体有限公司 | A kind of universal smart card based on mobile terminal |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1851759A (en) * | 2006-05-30 | 2006-10-25 | 北京飞天诚信科技有限公司 | Method and device for realizing combined card operating system |
| CN1900982A (en) * | 2006-07-05 | 2007-01-24 | 北京飞天诚信科技有限公司 | Method for supporting multiple financial standard by single sheet smart card |
| CN101089877A (en) * | 2006-06-14 | 2007-12-19 | 普天信息技术研究院 | Method for dynamic aggregating multiple intelligent card function module based on memory card |
-
2009
- 2009-06-02 CN CN 200910052398 patent/CN101908120B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1851759A (en) * | 2006-05-30 | 2006-10-25 | 北京飞天诚信科技有限公司 | Method and device for realizing combined card operating system |
| CN101089877A (en) * | 2006-06-14 | 2007-12-19 | 普天信息技术研究院 | Method for dynamic aggregating multiple intelligent card function module based on memory card |
| CN1900982A (en) * | 2006-07-05 | 2007-01-24 | 北京飞天诚信科技有限公司 | Method for supporting multiple financial standard by single sheet smart card |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101908120A (en) | 2010-12-08 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101908120B (en) | Method for realizing all-in-one function of single intelligent card | |
| CN109214197B (en) | Method, apparatus and storage medium for processing private data based on block chain | |
| US6296191B1 (en) | Storing data objects in a smart card memory | |
| CN101042736B (en) | Smart card and method for accessing objects in smart card | |
| CN102307185B (en) | Data isolation method used in storage cloud | |
| CN101042738B (en) | Method for implementing smart card multi-application and data processing apparatus | |
| US6430561B1 (en) | Security policy for protection of files on a storage device | |
| CN103065100B (en) | Container-based method of users to protect private data | |
| US7490333B2 (en) | Capability-based access control for applications in particular co-operating applications in a chip card | |
| CN101120355B (en) | System for creating control structure for versatile content control | |
| CN101042737B (en) | Smart card and method for creating application and insertion objects in smart card | |
| CN101853416B (en) | Physical smart card with virtual smart cards and configuration method of virtual smart card | |
| CN102257483A (en) | Managing access to an address range in a storage device | |
| CN102782732A (en) | Protected mode for global platform compliant smart cards | |
| CN102882923A (en) | Secure storage system and method for mobile terminal | |
| CN101218609B (en) | Portable data carrier featuring secure data processing | |
| CN101950342B (en) | Device and method for managing access control permission of integrated circuit card | |
| CN109255262A (en) | Data guard method and solid state hard disk | |
| CN101866411B (en) | Security certification and encryption method and system of multi-application noncontact-type CPU card | |
| US8281150B2 (en) | Smart card and access method thereof | |
| CN201742425U (en) | Non-contact type CPU card multi-application security authentication and encryption system | |
| CN101751450B (en) | Information sharing realizing method for CPU card with multi-application COS | |
| CN102945334A (en) | Safety equipment with virtual on-chip operating system, safety device with virtual on-chip operating system, systems and methods | |
| CN102663473B (en) | Method for realizing chip operating system (COS) safety mechanism of intelligent card | |
| KR102084200B1 (en) | Method for managing identifiers in an integrated circuit board and corresponding integrated circuit board |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |