CN108228211B - Smart card, and method and system for safely updating data of smart card - Google Patents
Smart card, and method and system for safely updating data of smart card Download PDFInfo
- Publication number
- CN108228211B CN108228211B CN201711349386.7A CN201711349386A CN108228211B CN 108228211 B CN108228211 B CN 108228211B CN 201711349386 A CN201711349386 A CN 201711349386A CN 108228211 B CN108228211 B CN 108228211B
- Authority
- CN
- China
- Prior art keywords
- card
- writing
- message
- initiator
- authentication code
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F8/00—Arrangements for software engineering
- G06F8/60—Software deployment
- G06F8/65—Updates
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/602—Providing cryptographic facilities or services
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Software Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Health & Medical Sciences (AREA)
- Bioethics (AREA)
- General Health & Medical Sciences (AREA)
- Computer Hardware Design (AREA)
- Storage Device Security (AREA)
Abstract
The invention relates to a smart card, and a method and a system for safely updating data of the smart card. The method comprises the following steps: acquiring personalized information of a card writing initiator and identification code information of equipment/an intelligent card; generating a card writing message according to the personalized information of the card writing initiator and the identification code information of the equipment/the intelligent card; retrieving a preset authorization mode according to the personalized information of the card writing initiator; confirming whether the card writing initiator is the equipment owner or not according to the authorization mode; if yes, writing the card writing message into the smart card for data updating. The invention can confirm whether the card writing initiator is the equipment owner according to the preset authorization mode of the equipment owner, and the sensitive operations such as updating of core data including authentication data can update the data of the intelligent card through the authorization party of the equipment owner, thereby preventing the intelligent card from being illegally or maliciously written by other people and comprehensively ensuring the use safety of the equipment.
Description
Technical Field
The invention relates to the technical field of wireless data services, in particular to an intelligent card, and a method and a system for safely updating data of the intelligent card.
Background
With the high-speed development of the internet of things technology, machines such as intelligent furniture and wearable equipment are continuously emerging on machine (M2M) products, and the safety requirement on equipment use is higher and higher due to the popularization of the eSIM technology.
At present, data updating operation of the smart card is mainly divided into two types, one type is that an operator dominates writing of authentication data, for example, a mobile terminal SIM/USIM card, a bus card, a bank card and the like; another type is core data related to the application, e.g. a Near Field Communication (NFC) wallet, which is responsible for data update operations by the application provider. The control right of the data updating operation is all held in the hands of an operator or an application provider, and the risk of illegal or malicious card writing exists without the authorization of the equipment owner.
Disclosure of Invention
It is an object of the present invention to provide a smart card that is capable of confirming whether a card writing initiator is the device owner.
It is another object of the present invention to provide a method for securely updating data of a smart card, which requires that the data of the smart card can be updated by an authorized party of the owner of the device.
Another object of the present invention is to provide a system for securely updating data of a smart card, which is capable of confirming whether a card writing initiator is a device owner according to an authorization mode preset by the device owner, so that the device owner controls a data updating process of the smart card to ensure orderly and secure use of the device.
In a first aspect, an embodiment of the present invention provides a method for securely updating data of a smart card, including the following steps: acquiring personalized information of a card writing initiator and identification code information of equipment/an intelligent card; generating a card writing message according to the personalized information of the card writing initiator and the identification code information of the equipment/the intelligent card; retrieving a preset authorization mode according to the personalized information of the card writing initiator; confirming whether the card writing initiator is the equipment owner or not according to the authorization mode; if yes, writing the card writing message into the smart card for data updating.
According to an aspect of the embodiment of the present invention, confirming whether the card writing initiator is the device owner according to the authorization mode includes: if the authorization mode is binding authorization, retrieving a pre-stored binding relation table according to the identification code information of the equipment/the intelligent card, wherein the binding relation table comprises the identification code information of the equipment/the intelligent card and the personalized information of the corresponding equipment owner; verifying whether the personalized information of the card writing initiator is consistent with the personalized information of the equipment owner; if so, the card writing initiator is confirmed to be the device owner.
According to an aspect of the embodiment of the present invention, confirming whether the card writing initiator is the device owner according to the authorization mode includes: if the authorization mode is owner authentication authorization, retrieving a preset security mode and prestored key information according to the personalized information of the card writing initiator; if the security mode is that the authorization server uses a key, carrying out encryption operation on the card writing message according to key information to obtain a first message authentication code; sending the card writing message and the first message authentication code to the smart card; obtaining a check result whether the card writing initiator fed back by the intelligent card is the equipment owner, wherein the check result is obtained by checking whether a first message authentication code received by the intelligent card is consistent with a second message authentication code calculated by the intelligent card, and the second message authentication code is obtained by carrying out encryption operation on a received card writing message by the intelligent card according to prestored secret key information; and if the verification result confirms that the card writing initiator is the equipment owner, writing the card writing message into the intelligent card for data updating.
According to an aspect of the embodiments of the present invention, further comprising: if the security mode is that the server is not authorized to use the secret key, sending the card writing message to a secret key tool; acquiring a first message authentication code fed back by the key tool, wherein the first message authentication code is obtained by the key tool through carrying out encryption operation on a received card writing message according to key information input by the card writing initiator; sending the card writing message and the first message authentication code to the smart card; obtaining a check result whether the card writing initiator fed back by the intelligent card is the equipment owner, wherein the check result is obtained by checking whether a first message authentication code received by the intelligent card is consistent with a second message authentication code calculated by the intelligent card, and the second message authentication code is obtained by carrying out encryption operation on a received card writing message by the intelligent card according to prestored secret key information; and if the verification result confirms that the card writing initiator is the equipment owner, writing the card writing message into the intelligent card for data updating.
According to one aspect of the embodiment of the invention, the personalized information of the card writing initiator comprises an identity card number, a mobile phone number and a mailbox address of the card writing initiator.
In a second aspect, an embodiment of the present invention provides a smart card, configured in a device, and including a transceiver unit and an owner identification unit, where the transceiver unit is configured to receive a card writing message and first message authentication code information sent by a server; the owner identification unit is prestored with key information and used for carrying out encryption operation on the card writing message received by the receiving and sending unit according to the prestored key information so as to obtain a second message authentication code, and the owner identification unit is further used for verifying the second message authentication code and the first message authentication code received by the receiving and sending unit, if the second message authentication code and the first message authentication code are verified to be consistent, the card writing initiator is confirmed to be the equipment owner, and the receiving and sending unit sends the verification result to the server.
In a third aspect, an embodiment of the present invention further provides a system for safely updating data of a smart card, including an apparatus terminal and a server, where the apparatus terminal is configured with the smart card, and the server is configured to obtain personalized information of a card writing initiator and identification code information of the apparatus terminal/the smart card, and generate a card writing message according to the personalized information of the card writing initiator and the identification code information of the apparatus terminal/the smart card; the server is further used for presetting an authorization mode, confirming whether the card writing initiator is the equipment owner or not according to the authorization mode, and writing the card writing message into the smart card for data updating if the card writing initiator is the equipment owner.
According to an aspect of the embodiment of the present invention, if the authorization mode is binding authorization, the server is further configured to retrieve a pre-stored binding relationship table according to the identification code information of the device terminal/smart card to check whether the personalized information of the write card initiator is consistent with the personalized information of the device owner, where the binding relationship table includes the identification code information of the device terminal/smart card and the personalized information of the corresponding device owner; and if so, confirming that the card writing initiator is the equipment owner.
According to an aspect of the embodiment of the present invention, if the authorization mode is owner authentication authorization, the server is further configured to preset security mode information and pre-stored key information, and if the security mode is that the authorization server uses a key, perform encryption operation on the card writing message according to the pre-stored key information to obtain a first message authentication code, and send the card writing message and the first message authentication code to the smart card; the smart card is used for carrying out encryption operation on the received card writing message according to prestored key information so as to obtain a second message authentication code; the smart card is further used for verifying the second message authentication code and the received first message authentication code, if the second message authentication code and the received first message authentication code are verified to be consistent, the card writing initiator is confirmed to be the equipment owner, and the verification result is sent to the server.
According to an aspect of the embodiment of the present invention, the card writing system further comprises a key tool in communication connection with the server, wherein the key tool is capable of receiving key information input by the card writing initiator.
According to one aspect of the embodiment of the invention, if the security mode is that the server is not authorized to use the key, the server is configured to send the card writing message to the key tool, the key tool performs encryption operation on the received card writing message according to the key information input by the card writing initiator to obtain the first message authentication code, and returns the first message authentication code to the server, and the server sends the card writing message and the first message authentication code to the smart card; the smart card is used for carrying out encryption operation on the received card writing message according to prestored key information so as to obtain a second message authentication code; the smart card is further used for verifying the second message authentication code and the received first message authentication code, if the second message authentication code and the received first message authentication code are verified to be consistent, the card writing initiator is confirmed to be the equipment owner, and the verification result is sent to the server.
The smart card provided by the embodiment of the invention is additionally provided with the owner identification unit on the basis of the existing smart card software and hardware architecture, and the owner identification unit can confirm whether the card writing initiator is the equipment owner, so that a security system taking the equipment owner as a core is established in the smart card, and the use security of the equipment is improved. In addition, the method and the system for safely updating the data of the smart card provided by the embodiment of the invention can confirm whether the card writing initiator is the equipment owner according to the authorization mode preset by the equipment owner, and the data of the smart card can be updated through the authorization party of the equipment owner when sensitive operations such as updating of core data including authentication data need to be performed, so that the smart card is prevented from being illegally or maliciously written by other people, and the use safety of the equipment is comprehensively ensured.
Drawings
Features, advantages and technical effects of exemplary embodiments of the present invention will be described below with reference to the accompanying drawings.
Fig. 1 is a flow chart of a method for securely updating data of a smart card according to an embodiment of the present invention;
FIG. 2 is a schematic block diagram of a smart card provided by an embodiment of the present invention;
fig. 3 is a schematic functional block diagram of a system for securely updating data of a smart card according to an embodiment of the present invention.
Detailed Description
The embodiments of the present invention will be described in further detail with reference to the drawings and examples. The following detailed description of the embodiments and the accompanying drawings are provided to illustrate the principles of the invention and are not intended to limit the scope of the invention, i.e., the invention is not limited to the described embodiments.
In the description of the present invention, it should be noted that the terms "first", "second", "third", and the like are used for descriptive purposes only and are not to be construed as indicating or implying relative importance, unless otherwise stated.
For better understanding of the present invention, the smart card, the method and the system for securely updating data of the smart card according to the embodiment of the present invention are described in detail below with reference to fig. 1 to 3.
Referring to fig. 1, an embodiment of the present invention provides a method for securely updating data of a smart card, including the following steps:
and step 110, acquiring personalized information of a card writing initiator and identification code information of the equipment/intelligent card.
Specifically, when the card writing initiator applies for network access, the card writing initiator may log in an online business hall or a palm business hall by using a login number, a service password, and the like, input personalized information of the card writing initiator, such as an identity card number, a mobile phone number, a mailbox address, and the like, fill in an identification code of a device/smart card, such as an international mobile equipment identification code (IMEI), a serial number of the smart card (SIM/USIM/eSIM card), and obtain the information by a server.
And step 120, generating a card writing message according to the personalized information of the card writing initiator and the identification code information of the equipment/the intelligent card.
The server inquires preset authentication data according to the acquired personalized information of the card writing initiator and the identification code information of the equipment/the intelligent card, and generates a card writing message according to the authentication data. Taking the SIM card of the mobile device terminal as an example, the authentication data includes information such as an International Mobile Subscriber Identity (IMSI), an authentication algorithm key (Opc), a Personal Identification Number (PIN), and the like, and is used for the network to authenticate the validity of the mobile device terminal.
And step 130, retrieving a preset authorization mode according to the personalized information of the card writing initiator.
And 150, if so, writing the card writing message into the smart card for data updating.
Further, in step 140, confirming whether the card writing initiator is the device owner according to the authorization mode includes:
and step 141, if the authorization mode is binding authorization, retrieving a pre-stored binding relationship table according to the identification code information of the device/smart card, wherein the binding relationship table comprises the identification code information of the device/smart card and the personalized information of the corresponding device owner. For example, the USIM card number of the smart band may be bound to the identity card number of the device owner or the mobile phone number.
Step 142, checking whether the personalized information of the card writing initiator is consistent with the personalized information of the equipment owner;
and step 143, if yes, confirming that the card writing initiator is the device owner.
Therefore, if the card writing initiator applying for network access and the equipment owner are the same person, the personalized information of the card writing initiator retrieved by the server according to the pre-stored binding relation table is necessarily consistent with the personalized information of the equipment owner; if the personalized information of the card writing initiator is not consistent with the personalized information of the owner of the equipment when the equipment is accessed to the network through retrieval by the server after the equipment is acquired by other people, the server cannot generate a card writing message, so that the condition that the intelligent card is illegally or maliciously written is limited, the data updating of the intelligent card cannot be carried out, and the use safety of the equipment is improved.
As an optional implementation manner, in step 140, confirming whether the card writing initiator is the device owner according to the authorization mode includes:
and step 141', if the authorization mode is owner authentication authorization, retrieving the preset security mode and the pre-stored key information according to the personalized information of the card writing initiator.
The preset security mode includes an authorized server use key and an unauthorized server use key. The safety mode is set by the owner of the equipment according to personal use requirements and can be modified at any time according to specific use occasions.
The pre-stored key information includes an initial key, which is generally a random or fixed key, and for security, the initial key generally cannot be used for data updating operation of the smart card, and the initial key generally needs to be modified when the device owner purchases the device/smart card for the first time, and the modified key is used for subsequent operations such as encryption operation, data updating and the like on the card writing message.
And 142', if the security mode is that the authorization server uses the key, performing encryption operation on the card writing message according to the key information to obtain a first message authentication code.
And step 143', sending the card writing message and the first message authentication code to the smart card. Specifically, the server sends the card writing message and the first message authentication code to the smart card in a wired, wireless or short message manner.
144', obtaining a check result of whether the card writing initiator fed back by the smart card is the device owner, wherein the check result is obtained by the smart card checking whether the received first message authentication code is consistent with the calculated second message authentication code, and the second message authentication code is obtained by the smart card performing encryption operation on the received card writing message according to the pre-stored key information.
And 145', if the verification result confirms that the card writing initiator is the equipment owner, writing the card writing message into the intelligent card for data updating. And if the verification result confirms that the card writing initiator is not the equipment owner, refusing to update the data, and preventing the smart card from being illegally or maliciously written by others.
Therefore, when the authorization mode is owner authentication authorization and the security mode is an authorization server using a key, if the card writing initiator applying for network access and the equipment owner are the same person, the server and the smart card perform encryption operation on the same card writing message by using the same prestored key information and encryption algorithm, and the obtained message authentication codes are necessarily consistent; if the equipment is acquired by others, because the card writing initiator applying for network access is different from the personalized information of the equipment owner, the server cannot generate a card writing message, so that the smart card is limited from being illegally or maliciously written by others, the smart card cannot update data, and the use safety of the equipment is improved.
As an alternative embodiment, in step 141', if the security mode is that the server is not authorized to use the key, the method includes:
step 1411, sending the card writing message to the key tool. The key tool may be an authorization tool configured with the device, and in general, the user does not have to carry around, and only uses the key when the security mode needs to be set or changed to an unauthorized server.
In step 1412, a first message authentication code fed back by the key tool is obtained, where the first message authentication code is obtained by the key tool performing an encryption operation on the received card writing message according to the key information input by the card writing initiator.
And step 143', sending the card writing message and the first message authentication code to the smart card. Specifically, the server sends the card writing message and the first message authentication code to the smart card in a wired, wireless or short message manner.
144', obtaining a check result of whether the card writing initiator fed back by the smart card is the device owner, wherein the check result is obtained by the smart card checking whether the received first message authentication code is consistent with the calculated second message authentication code, and the second message authentication code is obtained by the smart card performing encryption operation on the received card writing message according to the pre-stored key information.
And 145', if the verification result confirms that the card writing initiator is the equipment owner, writing the card writing message into the intelligent card for data updating. And if the verification result confirms that the card writing initiator is not the equipment owner, refusing to update the data, and preventing the smart card from being illegally or maliciously written by others.
Therefore, when the authorization mode is owner authentication authorization and the security mode is an unauthorized server using the key, if the equipment is acquired by other users and meanwhile personalized information of the equipment owner is stolen by other users, even if the server can generate a card writing message, the identity verification can be performed only by inputting the key information according to the equipment owner by the key tool, if the equipment owner does not input the key information, the identity verification cannot be performed, the smart card can still be limited from being illegally or maliciously written by other people, so that the data updating of the smart card cannot be performed, and the use security of the equipment is further improved.
In addition, if the device is acquired by others, the preset security mode is that the authorized server uses the key, the owner of the device can log in the online business hall or the palm business hall in time to modify the security mode into that the unauthorized server uses the key, so that the smart card is prevented from being illegally or maliciously written to the smart card to the maximum extent, and the use security of the device is comprehensively guaranteed.
It will be appreciated that the method of calculating the first message authentication code described above is the same as the method of calculating the second message authentication code. Under the condition of not adjusting the existing card writing system architecture, the encryption algorithm in the smart card can be realized by adopting a symmetric key system, such as a ciphertext block chaining mode (DES-CBC) algorithm, and can also be realized by adopting an asymmetric key system, such as a digital signature, a digital certificate and the like. The following describes a method for performing encryption operation on a card writing message to obtain a first message authentication code/a second message authentication code by taking a ciphertext block chaining mode (DES-CBC) algorithm as an example, and the method comprises the following steps:
and step A, grouping the card writing messages according to a group of 8 bytes, and dividing the card writing messages into N groups of data. If the data length of the card writing message is not the integral multiple of 8, the card writing message is automatically filled according to the data length so that the data length is the integral multiple of 8.
In step B, 8 bytes of initial data, for example, 8 bytes of "0X 00", are obtained.
Step C, carrying out encryption operation on the data subjected to the XOR between the first group of data and the initial data by using prestored key information;
and D, continuing to use the pre-stored key information to perform encryption operation on the data subjected to the XOR between each group of data and the previous group of data.
And E, outputting the result of the encryption operation of the Nth group of data to obtain a first message authentication code/a second message authentication code.
It is understood that the security level of the data update when the authorization mode is binding authorization is consistent with the security level when the authorization mode is owner authentication authorization and the security mode is authorization server using the key, and the smart card can be limited from being illegally or maliciously written by others when only the device is lost. However, if the device is lost and the personalized information of the owner of the device, such as the identification number or the mobile phone number, is stolen by others, the smart card has a risk of being illegally or maliciously written by others. When the authorization mode is owner authentication and authorization and the security mode is an unauthorized server key use mode, even if the equipment is lost and the personalized information is also stolen, the smart card can still be limited from being illegally or maliciously written by others, and the use security of the equipment is comprehensively guaranteed.
The method for safely updating the data of the intelligent card provided by the embodiment of the invention can confirm whether the card writing initiator is the equipment owner or not according to the authorization mode preset by the equipment owner, and the sensitive operations such as updating of core data including authentication data can update the data of the intelligent card through the authorization party of the equipment owner, so that the intelligent card is prevented from being illegally or maliciously written by others, and the use safety of the equipment is comprehensively ensured.
Referring to fig. 2, an embodiment of the present invention further provides a smart card 10 configured in a device, which includes: a transceiver unit 1 and an owner identification unit 2.
The transceiving unit 1 is configured to receive a card writing message and first message authentication code information sent by a server.
The owner identification unit 2 is pre-stored with key information and an encryption algorithm, and is configured to perform encryption operation on the card writing message received by the transceiver unit 1 according to the pre-stored key information to obtain a second message authentication code, and the owner identification unit 2 is further configured to verify the second message authentication code and the first message authentication code received by the transceiver unit 1, and if the two are verified to be consistent, it is determined that the card writing initiator is the device owner, and the transceiver unit 1 sends the verification result to the server.
The smart card 10 provided by the embodiment of the invention is additionally provided with the owner identification unit 2 on the basis of the existing smart card software and hardware architecture, establishes a security system taking the owner of the device as the core, and improves the safety of the use of the device.
Referring to fig. 3, an embodiment of the present invention further provides a system for securely updating data of a smart card, including a device terminal 100 and a server 200.
The device terminal 100 is provided with a smart card 10 as described before.
The server 200 is configured to obtain personalized information of a card writing initiator and identification code information of the device terminal 100/the smart card 10, and generate a card writing message according to the personalized information of the card writing initiator and the identification code information of the device terminal 100/the smart card 10; the server 200 is further configured to preset an authorization mode, and confirm whether the card writing initiator is the device owner according to the authorization mode, and if so, write a card writing message into the smart card 10 for data updating.
Further, if the authorization mode is binding authorization, the server 200 is further configured to retrieve a pre-stored binding relationship table according to the identification code information of the device terminal 100/smart card 10, so as to check whether the personalized information of the card writing initiator is consistent with the personalized information of the device owner, where the binding relationship table includes the identification code information of the device terminal 100/smart card 10 and the personalized information of the corresponding device owner; and if so, confirming that the card writing initiator is the equipment owner.
Further, if the authorization mode is owner authentication authorization, the server 200 is further configured to preset security mode information and pre-stored key information, and if the security mode is authorization for the server to use a key, perform encryption operation on the card writing message according to the pre-stored key information to obtain a first message authentication code, and send the card writing message and the first message authentication code to the smart card 10. The smart card 10 is configured to perform encryption operation on the received card writing message according to pre-stored key information to obtain a second message authentication code; the smart card 10 is further configured to verify the second message authentication code with the received first message authentication code, and if the second message authentication code and the received first message authentication code are verified to be identical, confirm that the card writing initiator is the device owner, and send the verification result to the server 200.
As an optional implementation manner, the system for securely updating data of a smart card according to the embodiment of the present invention further includes a key tool 300 in communication connection with the server 200, where the key tool is capable of receiving key information input by the card writing initiator. The key utility 300 may be an authorized utility configured with the device, and typically, the user does not have to carry around, but only when the security mode needs to be set or changed to an unauthorized server to use the key.
Further, if the security mode is that the server uses the key without authorization, the server 200 is configured to send the card writing message to the key tool 300, the key tool 300 performs an encryption operation on the received card writing message according to the key information input by the card writing initiator to obtain a first message authentication code, and returns the first message authentication code to the server 200, and the server 200 sends the card writing message and the first message authentication code to the smart card 10. The smart card 10 is configured to perform encryption operation on the received card writing message according to pre-stored key information to obtain a second message authentication code; the smart card 10 is further configured to verify the second message authentication code with the received first message authentication code, and if the second message authentication code and the received first message authentication code are verified to be identical, confirm that the card writing initiator is the device owner, and send the verification result to the server 200.
It can be understood that the system for safely updating data of a smart card provided in the embodiment of the present invention is an execution main body of the method for safely updating data of a smart card, and for specific execution modes of each device, reference may be made to the contents of the method for safely updating data of a smart card, which are not described herein again.
In order to facilitate understanding, the embodiment of the invention takes a smart bracelet special for the internet of things as an example, and describes a method and a system for safely updating data of the smart card in combination with an actual use scenario.
User A has purchased a smart band with a built-in USIM card, which has owner identification capabilities and is equipped with a key tool.
The user A logs in an online business hall or a palm business hall and the like by using a login number, a customer service password and the like, inputs personalized information of the user A, such as an identity card number, a mobile phone number, a mailbox address and the like, fills in an identification code IMEI or a USIM serial number of the smart bracelet according to requirements, and initiates a network access application to the server. Meanwhile, the user A also sets an authorization mode and a security mode, modifies an initial key, pre-stores the initial key in a server, and establishes the home relationship of the smart band. And the server acquires preset authentication data according to the acquired personalized information of the user A and the identification code IMEI or USIM serial number information of the smart band, and generates a card writing message.
Assume that the authorization mode set by the user a is the owner authentication mode, and the owner identification function of the smart band is turned on at the same time.
In a security mode that the authorization server uses the secret key, if the smart band is acquired by the user B and the personalized information input when the user B applies for network access is different from the user A, the server cannot generate a card writing message, so that the USIM card is limited from being illegally or maliciously written by the user B, and further data updating cannot be performed. However, if the personalized information of the user a is also stolen by the user B, the USIM card is at risk of being illegally or maliciously written by the user B.
Under the security mode that the key is used by the unauthorized server, if the smart band is acquired by the user B and the personalized information of the user A is stolen by the user B, even if the server can generate a card writing message, the identity authentication can be performed only after the user A uses the key tool and inputs the key information, if the user A does not input the key information, the identity authentication cannot be performed, the USIM card can still be limited from being illegally or maliciously written by the user B, so that the data updating cannot be performed, and the use security of the smart band is comprehensively improved.
In addition, it is assumed that the authorization mode set by the user a is a binding authorization mode, or the authorization mode is an owner authentication mode but the owner identification function of the smart band is not turned on. In this case, if the smart band is acquired by the user B, since the personalized information input when the user B applies for network entry is different from the user a, the server is also unable to generate a card writing message, thereby limiting illegal or malicious card writing of the USIM card by the user B.
Similar to the foregoing security mode in which the owner identification function of the smart band is turned on and the authorization server uses the secret key, if the personalized information of the user a is stolen by the user B while the smart band is acquired by the user B, the USIM card also has a risk of being illegally written or maliciously written by the user B.
Therefore, the owner who opens intelligent bracelet discerns the function and changes the security mode into unauthorized server use key when intelligent bracelet loses immediately, can guarantee the security that intelligent bracelet used comprehensively.
It should be noted that the data updating operation described in the embodiment of the present invention mainly relates to a process of writing data, such as an International Mobile Subscriber Identity (IMSI), an authentication algorithm key (Opc), and a Personal Identification Number (PIN) code, related to a mobile number and used for network authentication, into the above carrier, or modifying/deleting data in the carrier, but is not limited to the data, and also includes a process of writing various types of data in the smart card through air and contact after the smart card leaves a factory. The written carrier is not limited to a SIM/USIM card but also includes all carriers carrying sensitive data.
While the invention has been described with reference to a preferred embodiment, various modifications may be made and equivalents may be substituted for elements thereof without departing from the scope of the invention. In particular, the technical features mentioned in the embodiments can be combined in any way as long as there is no structural conflict. The present invention is not limited to the predetermined embodiments disclosed herein but encompasses all technical solutions falling within the scope of the claims.
Claims (6)
1. A method for safely updating data of a smart card is characterized in that the data of the smart card is authentication data, and the method comprises the following steps:
acquiring personalized information of a card writing initiator and identification code information of equipment/an intelligent card;
generating a card writing message according to the personalized information of the card writing initiator and the identification code information of the equipment/the intelligent card;
retrieving a preset authorization mode according to the personalized information of the card writing initiator;
if the authorization mode is binding authorization, retrieving a pre-stored binding relation table according to the identification code information of the equipment/intelligent card so as to check whether the personalized information of the card writing initiator is consistent with the personalized information of the equipment owner;
if the authorization mode is owner authentication authorization, retrieving a preset security mode and prestored key information according to the personalized information of the card writing initiator; if the security mode is that the authorization server uses a key, carrying out encryption operation on the card writing message according to the pre-stored key information to obtain a first message authentication code; sending the card writing message and the first message authentication code to the smart card; obtaining a check result of whether the card writing initiator fed back by the smart card is the equipment owner, wherein the check result is obtained by checking whether the received first message authentication code is consistent with a second message authentication code calculated by the smart card, and the second message authentication code is obtained by encrypting the received card writing message by the smart card according to prestored secret key information; and if the verification result confirms that the card writing initiator is the equipment owner, writing the card writing message into the intelligent card for data updating.
2. The method for securely updating data of a smart card according to claim 1, further comprising:
if the security mode is that the server is not authorized to use the secret key, the card writing message is sent to a secret key tool;
acquiring a first message authentication code fed back by the key tool, wherein the first message authentication code is obtained by the key tool through encryption operation on the received card writing message according to the key information input by the card writing initiator;
sending the card writing message and the first message authentication code to the smart card;
obtaining a check result of whether the card writing initiator fed back by the smart card is the equipment owner, wherein the check result is obtained by checking whether the received first message authentication code is consistent with a second message authentication code calculated by the smart card, and the second message authentication code is obtained by encrypting the received card writing message by the smart card according to prestored secret key information;
and if the verification result confirms that the card writing initiator is the equipment owner, writing the card writing message into the intelligent card for data updating.
3. The method for safely updating the data of the smart card according to the claim 1 or 2, wherein the personalized information of the card writing initiator comprises the identity card number, the mobile phone number and the mailbox address of the card writing initiator.
4. A system for safely updating smart card data comprises a device terminal (100) and a server (200), and is characterized in that the smart card data is authentication data;
the device terminal (100) is configured with a smart card (10);
the server (200) is used for acquiring personalized information of a card writing initiator and identification code information of the equipment terminal (100)/the intelligent card (10), and generating a card writing message according to the personalized information of the card writing initiator and the identification code information of the equipment terminal (100)/the intelligent card (10); the server (200) is further used for presetting an authorization mode, confirming whether the card writing initiator is an equipment owner according to the authorization mode, and if so, writing the card writing message into the smart card (100) for data updating; if the authorization mode is binding authorization, the server (200) is further configured to retrieve a pre-stored binding relationship table according to the identification code information of the device terminal (100)/smart card (10) to check whether the personalized information of the card writing initiator is consistent with the personalized information of the device owner, where the binding relationship table includes the identification code information of the device terminal (100)/smart card (10) and the personalized information of the corresponding device owner; if the data is consistent with the data, the card writing initiator is confirmed to be the equipment owner; if the authorization mode is owner authentication authorization, the server (200) is further used for presetting security mode information and pre-stored key information, if the security mode is authorization server use key, encryption operation is carried out on the card writing message according to the pre-stored key information to obtain a first message authentication code, and the card writing message and the first message authentication code are sent to the smart card (10); the smart card (10) is used for carrying out encryption operation on the received card writing message according to prestored key information so as to obtain a second message authentication code; the smart card (10) is further configured to verify the second message authentication code with the received first message authentication code, and if the second message authentication code and the received first message authentication code are verified to be consistent, confirm that the card writing initiator is the device owner, and send the verification result to the server (200).
5. The system for securely updating data of a smart card according to claim 4, further comprising a key tool (300) communicatively connected to said server (200), said key tool (300) being capable of receiving key information input by a card writing initiator.
6. The system for securely updating data of a smart card according to claim 5, wherein if the security mode is that an unauthorized server uses a key, the server (200) is configured to send the card writing message to the key tool (300), the key tool (300) performs an encryption operation on the received card writing message according to key information input by the card writing initiator to obtain a first message authentication code, and returns the first message authentication code to the server (200), and the server (200) sends the card writing message and the first message authentication code to the smart card (10);
the smart card (10) is used for carrying out encryption operation on the received card writing message according to prestored key information so as to obtain a second message authentication code; the smart card (10) is further configured to verify the second message authentication code with the received first message authentication code, and if the second message authentication code and the received first message authentication code are verified to be consistent, confirm that the card writing initiator is the device owner, and send the verification result to the server (200).
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201711349386.7A CN108228211B (en) | 2017-12-15 | 2017-12-15 | Smart card, and method and system for safely updating data of smart card |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201711349386.7A CN108228211B (en) | 2017-12-15 | 2017-12-15 | Smart card, and method and system for safely updating data of smart card |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN108228211A CN108228211A (en) | 2018-06-29 |
| CN108228211B true CN108228211B (en) | 2021-05-25 |
Family
ID=62652229
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201711349386.7A Active CN108228211B (en) | 2017-12-15 | 2017-12-15 | Smart card, and method and system for safely updating data of smart card |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN108228211B (en) |
Families Citing this family (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109167788B (en) * | 2018-09-07 | 2020-05-19 | 飞天诚信科技股份有限公司 | Financial IC card personalization method and system with dynamic verification code |
| CN111093190B (en) * | 2019-12-10 | 2024-02-20 | 爱讯智联科技(北京)有限公司 | Method, device, system, electronic equipment and storage medium for writing key data |
| CN111768523B (en) * | 2020-06-10 | 2022-07-26 | 福建新大陆通信科技股份有限公司 | CTID-based NFC intelligent door lock unlocking method, system, equipment and medium |
| CN112099834A (en) * | 2020-09-25 | 2020-12-18 | 恒宝股份有限公司 | Smart card, smart card application and upgrading method and system thereof |
| CN113067701B (en) * | 2021-03-29 | 2022-09-02 | 武汉天喻信息产业股份有限公司 | Method and device for updating binding relationship |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101815292A (en) * | 2010-04-22 | 2010-08-25 | 中兴通讯股份有限公司 | Device and method for protecting data of mobile terminal |
| CN101635075B (en) * | 2009-05-31 | 2013-08-14 | 飞天诚信科技股份有限公司 | Trading method and trading system |
| KR20150084153A (en) * | 2014-01-13 | 2015-07-22 | 종 해 김 | System and method for security of mobile terminal. |
| CN106330968A (en) * | 2016-10-31 | 2017-01-11 | 杭州迪普科技有限公司 | Access device identity authentication method and device |
| CN106507334A (en) * | 2016-12-30 | 2017-03-15 | 维沃移动通信有限公司 | A kind of identity identifying method and mobile terminal |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1196361C (en) * | 2001-05-04 | 2005-04-06 | Lg电子株式会社 | Device and method of verifying subscriber identifying module card |
-
2017
- 2017-12-15 CN CN201711349386.7A patent/CN108228211B/en active Active
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101635075B (en) * | 2009-05-31 | 2013-08-14 | 飞天诚信科技股份有限公司 | Trading method and trading system |
| CN101815292A (en) * | 2010-04-22 | 2010-08-25 | 中兴通讯股份有限公司 | Device and method for protecting data of mobile terminal |
| KR20150084153A (en) * | 2014-01-13 | 2015-07-22 | 종 해 김 | System and method for security of mobile terminal. |
| CN106330968A (en) * | 2016-10-31 | 2017-01-11 | 杭州迪普科技有限公司 | Access device identity authentication method and device |
| CN106507334A (en) * | 2016-12-30 | 2017-03-15 | 维沃移动通信有限公司 | A kind of identity identifying method and mobile terminal |
Also Published As
| Publication number | Publication date |
|---|---|
| CN108228211A (en) | 2018-06-29 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN108228211B (en) | Smart card, and method and system for safely updating data of smart card | |
| US8375432B2 (en) | Methods, apparatus, and computer program products for subscriber authentication and temporary code generation | |
| CN103812871B (en) | Development method and system based on mobile terminal application program security application | |
| CN101641976B (en) | An authentication method | |
| KR102304778B1 (en) | System and method for initially establishing and periodically confirming trust in a software application | |
| US20150339474A1 (en) | User authentication system | |
| US10050791B2 (en) | Method for verifying the identity of a user of a communicating terminal and associated system | |
| US9445269B2 (en) | Terminal identity verification and service authentication method, system and terminal | |
| KR20090031672A (en) | Authentication method for wireless transactions | |
| CN105450416A (en) | Security authentication method and apparatus | |
| CN102984335B (en) | Dial the identity identifying method of landline telephone, equipment and system | |
| CN107333263B (en) | Improved SIM card and mobile communication identity recognition method and system | |
| WO2019109640A1 (en) | Method and device for locking sim card | |
| CN111552935A (en) | Block chain data authorization access method and device | |
| CN103974248A (en) | Terminal security protection method, device and system in ability open system | |
| TW201729562A (en) | Server, mobile terminal, and internet real name authentication system and method | |
| JP2006050523A (en) | Authentication vector generation device, subscriber authentication module, mobile communication system, authentication vector generation method, calculation method, and subscriber authentication method | |
| CN104301886A (en) | Short message reading method and system, terminal and wearable device | |
| CN104796262B (en) | Data ciphering method and terminal system | |
| EP2767065A1 (en) | System for secure id authentication | |
| CN109587683B (en) | Method and system for preventing short message from being monitored, application program and terminal information database | |
| US9832649B1 (en) | Secure ID authentication | |
| KR101548933B1 (en) | System for securiting mobile and method therefor | |
| CN103312678A (en) | Client security login method, device and system | |
| CN105828324A (en) | Method and device of obtaining virtual subscriber identity |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |