CN105096184B - The method of smart television high security level payment - Google Patents
The method of smart television high security level payment Download PDFInfo
- Publication number
- CN105096184B CN105096184B CN201510542823.1A CN201510542823A CN105096184B CN 105096184 B CN105096184 B CN 105096184B CN 201510542823 A CN201510542823 A CN 201510542823A CN 105096184 B CN105096184 B CN 105096184B
- Authority
- CN
- China
- Prior art keywords
- signature password
- signature
- password
- application
- secure
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Landscapes
- Storage Device Security (AREA)
Abstract
The invention discloses a kind of methods of smart television high security level payment to set the signature password of each starting step according to the Booting sequence of intelligent television system, can be effectively prevented third party's brush machine, be for Secure boot;Using signature password encryption upgrade file, third party's upgrading, root can be effectively limited, is for Secure upgrade.Third party's brush machine, upgrading, root are prevented, guarantees the advanced security of intelligent television system first;According to the characteristic applied in intelligent television system, encrypted signature is carried out to application.The application of user installation encrypted signature, application can obtain permission, when installation is using encryption of unsigning, then without permission.It effectively can prevent malicious application from influencing, guarantee the safety of payment environment in intelligent television system;The private informations such as user account, signature password are stored in Sceure stroage, private information is effectively prevent to be stolen, distort.
Description
Technical field
The present invention relates to the technical fields of on-line payment when passing through smart television online shopping, and in particular to a kind of intelligence electricity
Depending on the method for high security level payment.
Background technique
With the development of smart television industry, more and more families use smart television.Simultaneously with Alibaba, rise
The promotion of the electric business such as news, Jingdone district, smart television electric business by be online shopping important channel.Therefore, ensure that user passes through intelligence
Fund security when TV online shopping will be particularly important.
Summary of the invention
The present invention overcomes the deficiencies in the prior art, provide a kind of method of smart television high security level payment, are used for
Ensure fund security when user passes through smart television online shopping.
In view of the above problem of the prior art, according to one aspect of the present disclosure, the present invention uses following technology
Scheme:
A kind of method of smart television high security level payment, it includes:
I) according to the Booting sequence of intelligent television system, the signature password of each starting step is set, it is close using signing
Code encryption upgrade file;
II) encrypted signature is carried out to application, the application of user installation encrypted signature, application can obtain permission, when installation
Using encryption of unsigning, then permission cannot be obtained;
III) private informations such as user account, signature password are stored in Sceure stroage, for preventing secret from believing
Breath is stolen or distorts.
In order to which the present invention is better achieved, further technical solution is:
An embodiment according to the present invention, the I) include:
1) generate first signature password, second signature password, third sign password, by first signature password save to
The ROM CODE module of Secure IC simultaneously uses the first signature password encryption Pre-loader data, and the second signature password is protected
It deposits to Pre-loader module and using the second signature password encryption Loader data, upgrading bag data, third is signed password
It saves to Loader module and using third signature password encryption U-boot data;
2) when smart television starts, the first signature password being stored in ROM CODE module is obtained, and use first
Password of signing decrypts Pre-loader data;If successful decryption, into next step;If decryption is unsuccessful, exit;
3) the second signature password for being stored in Pre-loader is obtained, searches for the root of External memory equipment, lookup is
It is no to have upgrade file, it if there is upgrade file, is decrypted using the second signature password, if successful decryption, into upgrading mould
Formula, if decryption failure, into next step;If without upgrade file, into next step;
4) Loader data are decrypted using the second signature password;If successful decryption, into next step;If decryption not at
Function then exits;
5) the third signature password for being stored in Loader module is obtained, and decrypts U-boot number using third signature password
According to;If successful decryption, into next step;If decryption is unsuccessful, exit.
Another embodiment according to the present invention, the II) include:
1) before application publication, application is encrypted using the 4th password;
2) it when application installation, is decrypted using the 4th password;If successful decryption, which is installed and authorizes permission;
If decryption is unsuccessful, prompts user to apply and choose whether to install by user without certification, user selects installation, then installs this and answer
With but do not authorize permission, user's selection is not installed, then is not installed.
The present invention may also is that
Another embodiment according to the present invention, the III) include:
Sceure stroage subregion is opened up in stroage, by the 4th signature password, Chip id, UUID, user's account
The private informations such as family are stored therein, and are accessed by Secure driver;Unsign using no Secure driver permission,
Sceure stroage can not be accessed.
Another embodiment according to the present invention, it further includes simultaneously binding user account and Secure IC, is used for
Guarantee the high security of private data.
Compared with prior art, beneficial effects of the present invention first is that:
A kind of method of smart television high security level payment of the invention, comprising:
1) third party's brush machine, upgrading, root are prevented, ensure that the advanced security of intelligent television system;
2) by way of encrypted signature, it effectively can prevent malicious application from influencing, ensure that in intelligent television system and prop up
Pay the safety of environment;
3) by the way that the private informations such as user account, signature password are stored in Sceure stroage, it effectively prevent private
Confidential information is stolen, distorts, and ensure that the high security of private information in intelligent television system.
Detailed description of the invention
Illustrate present specification embodiment or technical solution in the prior art in order to clearer, it below will be to embodiment
Or attached drawing needed in the description of the prior art is briefly described, it should be apparent that, the accompanying drawings in the following description is only
It is the reference to embodiments some in present specification, for those skilled in the art, what is do not made the creative labor
In the case of, other attached drawings can also be obtained according to these attached drawings.
Fig. 1 is the first part Secure paid according to the smart television high security level of one embodiment of the invention
The flow diagram of boot, Secure upgrade.
Fig. 2 a is to compile partial schematic diagram according to the system upgrade packet of one embodiment of the invention.
Fig. 2 b is the system upgrade packet installation section schematic diagram according to one embodiment of the invention.
Fig. 3 a is to compile partial schematic diagram according to the application upgrade packet of one embodiment of the invention.
Fig. 3 b is the application upgrade packet installation section schematic diagram according to one embodiment of the invention.
Fig. 4 is the Part III Secure storage that the smart television high security level of one embodiment of the invention is paid
Schematic illustration figure.
Fig. 5 is common smart television Boot, upgrade flow diagram.
Fig. 6 is common APP, upgrade package flow diagram.
Fig. 7 is the schematic illustration of the storage of common smart television.
Specific embodiment
The present invention is described in further detail below with reference to embodiment, embodiments of the present invention are not limited thereto.
The present invention relates to a kind of methods of smart television high security level payment, comprising:
First part: Secure boot and Secure upgrade, management booting and upgrading process are used, third is prevented
Square brush machine, upgrading;
Second part: using signature password, application permission is managed, malicious application is prevented;
Part III: using Sceure stroage, stores private information, private information is prevented to be stolen, distort.
Specifically: I) according to the Booting sequence of intelligent television system, the signature password of each starting step is set, can be had
Third party's brush machine is prevented to effect, is for Secure boot;Using signature password encryption upgrade file, third party can be effectively limited
Upgrading, root, are for Secure upgrade.Third party's brush machine, upgrading, root are prevented, guarantees intelligent television system first
Advanced security.
II) according to the characteristic applied in intelligent television system, encrypted signature is carried out to application.User installation encrypted signature
Application, application can obtain permission, when the application of installation is unsigned encryption, then without permission.Malicious application can effectively be prevented
It influences, guarantees the safety of payment environment in intelligent television system.
III) private informations such as user account, signature password are stored in Sceure stroage, it effectively prevent secret to believe
Breath is stolen, distorts.Guarantee the high security of private information in intelligent television system.
As shown in FIG. 1, FIG. 1 is the first parts of smart television high security level according to an embodiment of the invention payment
The flow diagram of Secure boot, Secure upgrade.This method first part includes several steps such as encryption and decryption
Suddenly, each encryption and decryption processes are described in detail separately below.
Fig. 5 is common smart television Boot, upgrade flow diagram, and common smart television Booting sequence includes
Intelligence ROM CODE module, Loader module, U-boot module.In the method, shown in Figure 1, started according to smart television
Process increases Pre-loader module and carries out upgrade package management, and carries out nested partitions method to each step using signature password,
ROM CODE module decrypts Pre-loader module, and Pre-loader module decrypts Loader module, and so on.It is specific and
Speech:
1. generate first signature password, second signature password, third sign password, by first signature password save to
The ROM CODE module of Secure IC simultaneously uses the first signature password encryption Pre-loader data, and the second signature password is protected
It deposits to Pre-loader module and using the second signature password encryption Loader data, upgrading bag data, third is signed password
It saves to Loader module and using third signature password encryption U-boot data.
2. obtaining the first signature password being stored in ROM CODE module, and use first when smart television starting
Password of signing decrypts Pre-loader data.If successful decryption, into next step;If decryption is unsuccessful, exit.
3. obtaining the second signature password for being stored in Pre-loader, the root of External memory equipment is searched for, lookup is
It is no to have upgrade file.As shown in Fig. 2, be decrypted if there is upgrade file using the second signature password, if successful decryption,
Into upgrade mode, if decryption failure, into next step;If without upgrade file, into next step.This step is realized
Secure upgrade。
4. decrypting Loader data using the second signature password.If successful decryption, into next step;If decryption not at
Function then exits.
5. obtaining the third signature password for being stored in Loader module, and U-boot number is decrypted using third signature password
According to.If successful decryption, into next step;If decryption is unsuccessful, exit.To sum up step realizes Secure boot.
As shown in figure 5, common smart television is not to ROM CODE module, Loader module, U-boot module, upgrading
The modules such as packet are encrypted, and third party's module, third party's upgrade package can be run, and smart television is easy to be brushed by third party
Machine, upgrading, root.
This method sets the signature password of each starting step according to the Booting sequence of intelligent television system, can be effective
Ground prevents third party's brush machine, is for Secure boot;Using signature password encryption upgrade file, third party's liter can be effectively limited
Grade, is for Secure upgrade.Third party's brush machine, upgrading, root are prevented, guarantees the advanced security of intelligent television system.
Fig. 3 a, Fig. 3 b are the stream for the second part APP that the smart television high security level of one embodiment of the invention is paid
Journey schematic diagram.As shown in Figure 3a, 3b, this method second part includes application compiling, using the two parts such as installation, concrete principle
It is described below:
1. before application publication, being encrypted using the 4th password to application.
2. being decrypted when application installation using the 4th password.If successful decryption, which is installed and authorizes permission;
If decryption is unsuccessful, prompts user to apply and choose whether to install by user without certification, user selects installation, then installs this and answer
With but do not authorize permission, user's selection is not installed, then is not installed.
As shown in fig. 6, Fig. 6 is common APP, upgrade package flow diagram, common smart television does not carry out APP
Encrypted signature, malicious application can be run on smart television, obtain system permission, and system is dangerous.
This method carries out encrypted signature according to the characteristic applied in intelligent television system, to application, upgrade package etc..User's peace
The application of encrypted signature is filled, application can obtain permission;When installation is using encryption of unsigning, then without permission;Unsigned
Third party's upgrade package is unable to run, and prevents root.The influence of malicious application is effectively prevented, guarantees to pay in intelligent television system
The safety of environment.
Fig. 4 is the Part III Secure storage that the smart television high security level of one embodiment of the invention is paid
Schematic illustration figure.As shown in figure 4, this method Part III includes Sceure stroage, Secure driver, Chip
The parts such as id and UUID, concrete principle are described below:
Chip id is the unique identification of Secure IC, generates UUID by privately owned algorithm, UUID is payment platform identification
The unique identification of intelligent television equipment.UUID and user account binding, it is stolen to can effectively prevent user account.
Sceure stroage subregion is opened up in stroage simultaneously, by the 4th signature password, Chip id, UUID, use
The private informations such as family account are stored therein, and are accessed by Secure driver.Unsign using no Secure driver
Permission can not access Sceure stroage, can effectively prevent private information and be stolen, distort.
As shown in fig. 7, Fig. 7 is the schematic illustration of common storage, the private informations such as account are stored in common storage
In region, other APP can be accessed, and the easily stolen use of user account, private information is easy to be compromised.
This method is arranged Secure storage subregion, private information is deposited according to the characteristic of smart television partition holding
Wherein, the specific application for only possessing permission could access for storage, while user account and Secure IC being bound, and guarantee private
The high security of ciphertext data.
Each embodiment in this specification is described in a progressive manner, the highlights of each of the examples are with it is other
The difference of embodiment, the same or similar parts in each embodiment cross-reference.
" one embodiment " for being spoken of in the present specification, " another embodiment ", " embodiment ", etc., refer to tying
Specific features, structure or the feature for closing embodiment description include at least one embodiment described in the application generality
In.It is not centainly to refer to the same embodiment that statement of the same race, which occur, in multiple places in the description.Appoint furthermore, it is understood that combining
When one embodiment describes a specific features, structure or feature, to be advocated be realized in conjunction with other embodiments it is this
Feature, structure or feature are also fallen within the scope of the present invention.
Although reference be made herein to invention has been described for multiple explanatory embodiments of the invention, however, it is to be understood that
Those skilled in the art can be designed that a lot of other modification and implementations, these modifications and implementations will fall in this Shen
It please be within disclosed scope and spirit.It more specifically, within the scope of the present disclosure and claims, can be to master
The building block and/or layout for inscribing composite configuration carry out a variety of variations and modifications.In addition to what is carried out to building block and/or layout
Outside variations and modifications, to those skilled in the art, other purposes also be will be apparent.
Claims (2)
1. a kind of method of smart television high security level payment, it is characterised in that it includes:
I) according to the Booting sequence of intelligent television system, the signature password of each starting step is set, signature password encryption is used
Upgrade file;
II) encrypted signature is carried out to application, the application of user installation encrypted signature, application can obtain permission, when the application of installation
It unsigns encryption, then cannot obtain permission;
III) user account, signature password private information are stored in Secure storage, for preventing private information stolen
It takes or distorts;
The II) include:
1) before application publication, application is encrypted using the 4th password;
2) it when application installation, is decrypted using the 4th password;If successful decryption, which is installed and authorizes permission;If
It decrypts unsuccessful, then prompts user using no certification, choose whether to install by user, user selects installation, then installs the application
But permission is not authorized, user's selection is not installed, then is not installed;
The III) include:
Secure storage subregion is opened up in storage, the 4th signature password, Chip id, UUID, user account is private
Confidential information is stored therein, and is accessed by Secure driver;Unsign using no Secure driver permission, Wu Fafang
Ask Secure storage;User account and Secure IC are bound simultaneously, for guaranteeing the high security of private data.
2. the method for smart television high security level payment according to claim 1, it is characterised in that the I) include:
1) the first signature password, the second signature password, third signature password are generated, the first signature password is saved to Secure
The ROM CODE module of IC simultaneously uses the first signature password encryption Pre-loader data, and the second signature password is saved to Pre-
Loader module simultaneously using second signature password encryption Loader data, upgrading bag data, by third signature password save to
Loader module simultaneously uses third signature password encryption U-boot data;
2) when smart television starts, the first signature password being stored in ROM CODE module is obtained, and use the first signature
Password decrypts Pre-loader data;If successful decryption, into next step;If decryption is unsuccessful, exit;
3) the second signature password for being stored in Pre-loader is obtained, the root of External memory equipment is searched for, has searched whether
Upgrade file is decrypted, if successful decryption, into upgrade mode, such as if there is upgrade file using the second signature password
Fruit decryption failure, into next step;If without upgrade file, into next step;
4) Loader data are decrypted using the second signature password;If successful decryption, into next step;If decryption is unsuccessful,
Then exit;
5) the third signature password for being stored in Loader module is obtained, and decrypts U-boot data using third signature password;Such as
Fruit successful decryption, into next step;If decryption is unsuccessful, exit.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510542823.1A CN105096184B (en) | 2015-08-28 | 2015-08-28 | The method of smart television high security level payment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510542823.1A CN105096184B (en) | 2015-08-28 | 2015-08-28 | The method of smart television high security level payment |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN105096184A CN105096184A (en) | 2015-11-25 |
| CN105096184B true CN105096184B (en) | 2019-02-12 |
Family
ID=54576544
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510542823.1A Active CN105096184B (en) | 2015-08-28 | 2015-08-28 | The method of smart television high security level payment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105096184B (en) |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN112995768A (en) * | 2019-12-17 | 2021-06-18 | 青岛海尔多媒体有限公司 | Television upgrade control method and device and television |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102546604A (en) * | 2011-12-22 | 2012-07-04 | 四川长虹电器股份有限公司 | Security control method of intelligent television application program |
| CN103473498A (en) * | 2013-09-12 | 2013-12-25 | 深圳市文鼎创数据科技有限公司 | Application program security verification method and terminal |
| CN104778424A (en) * | 2015-03-24 | 2015-07-15 | 四川长虹电器股份有限公司 | Method for preventing ROM (Read Only Memory) root obtaining on basis of smart television |
-
2015
- 2015-08-28 CN CN201510542823.1A patent/CN105096184B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102546604A (en) * | 2011-12-22 | 2012-07-04 | 四川长虹电器股份有限公司 | Security control method of intelligent television application program |
| CN103473498A (en) * | 2013-09-12 | 2013-12-25 | 深圳市文鼎创数据科技有限公司 | Application program security verification method and terminal |
| CN104778424A (en) * | 2015-03-24 | 2015-07-15 | 四川长虹电器股份有限公司 | Method for preventing ROM (Read Only Memory) root obtaining on basis of smart television |
Also Published As
| Publication number | Publication date |
|---|---|
| CN105096184A (en) | 2015-11-25 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| KR101712784B1 (en) | System and method for key management for issuer security domain using global platform specifications | |
| US10778663B2 (en) | Network token authentication scheme | |
| US8555059B2 (en) | Secure local update of content management software | |
| CN104639506B (en) | Method, system and the terminal for carrying out management and control are installed to application program | |
| CN106454528A (en) | Service processing method based on trusted execution environment and client side | |
| RU2740298C2 (en) | Protection of usage of key store content | |
| CN103995991A (en) | Method for binding hardware information and secret keys in software copyright protection | |
| US9008304B2 (en) | Content protection key management | |
| CN111311258B (en) | Block chain-based trusted transaction method, device, system, equipment and medium | |
| CN104008342A (en) | Method for achieving safe and trusted authentication through BIOS and kernel | |
| CN104021335B (en) | Password service method based on extensible password service framework | |
| CN108229144B (en) | Verification method of application program, terminal equipment and storage medium | |
| CN109086578A (en) | A kind of method that soft ware authorization uses, equipment and storage medium | |
| US20190318078A1 (en) | Application security authentication method, terminal and storage medium | |
| US20170201528A1 (en) | Method for providing trusted service based on secure area and apparatus using the same | |
| CN104022886A (en) | Safety authentication method applied to parking lot as well as related device and system | |
| JP2019508981A (en) | Cable modem cloning measures | |
| CN109889334A (en) | Embedded firmware encrypting method, apparatus, wifi equipment and storage medium | |
| CN105096184B (en) | The method of smart television high security level payment | |
| CN107636672A (en) | Method in electronic equipment and electronic equipment | |
| KR101711024B1 (en) | Method for accessing temper-proof device and apparatus enabling of the method | |
| CN102968588A (en) | Intelligent terminal system | |
| CN114816549B (en) | Method and system for protecting bootloader and environment variable thereof | |
| CN102542698B (en) | Safety protective method of electric power mobile payment terminal | |
| US9507955B2 (en) | System and method for executing code securely in general purpose computer |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |