CN101882233A - Multifunctional chip card - Google Patents
Multifunctional chip card Download PDFInfo
- Publication number
- CN101882233A CN101882233A CN2010101909297A CN201010190929A CN101882233A CN 101882233 A CN101882233 A CN 101882233A CN 2010101909297 A CN2010101909297 A CN 2010101909297A CN 201010190929 A CN201010190929 A CN 201010190929A CN 101882233 A CN101882233 A CN 101882233A
- Authority
- CN
- China
- Prior art keywords
- module
- card
- chip card
- control module
- information
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Abstract
The invention discloses a multifunctional chip card which comprises a non-contact radio frequency interface, a USB interface, an SD card interface, an identity information management module, an electronic wallet management module, a control module, a safety management module and a storage module, and the memory of the chip card has the serial number of a user SIM card, wherein user identity information is placed in the identity information management module; the electronic wallet management module is used for managing the data, such as trades, balances, recharging, consumption and the like of an electronic wallet; and the safety management module is used for carrying out safety management for the information input by the outside. The chip card further comprises a card-based interface. The invention not only solves the problem that the close-distance, middle-distance and far-distance payment of a payment card can coexist on a terminal, but also solves the safety management problem of the payment card, realizes the effective combination of a financial card and a mobile communication network and achieves the purpose of one card for multiple uses.
Description
Technical field
The present invention relates to a kind of chip card, belong to semiconductor applications.
Background technology
At present, mobile e-business is flourish, mobile payment has become the modes of payments of new generation, Mobile banking, mobile phone electronic wallet are flourish at home and abroad, bank, mobile operator and a lot of third party enterprise are all in online huge The Study on Resources and pilot mobile e-business, mobile payment and the mobile many application systems of dropping into of mobile internet, because mobile communications network and banking network are relatively independent, government bodies supervise mobile communication service sector and financial services industry respectively.Therefore, stride the application of finance, communication system simultaneously, the safety between present various mobile phone non-contact technologies are difficult to solve, the conflict and the cooperation problem of application management aspect for mobile-phone payment, Mobile banking etc.Such as the safety of financial system is different with the demand for security of communication system, security guarantee in mobile phone of Financial Information, the management subject of stored value card etc.For these problems, at present no matter be NFC technology, RFSIM technology, SIMPASS double-interface card technology, or paste card technology, they all can not fundamentally overcome the above problems, and therefore, seriously limit and have hindered the mobile e-business of China, the development of mobile electronic payment.
Summary of the invention
Technology of the present invention is dealt with problems and is: overcome the deficiencies in the prior art, a kind of multifunctional chip card is provided, not only having solved Payment Card can be closely on terminal, middle distance, the problem of paying and depositing at a distance, and solved the safety management problem of Payment Card, realize effective combination of fiscard and mobile communications network, reach the purpose of one card for multiple uses.
Technical solution of the present invention is: a kind of multifunctional chip card provided by the invention, comprise non-contact radio-frequency interface, USB interface, SD card, identity information management module, wallet administration module, control module, safety management module and memory module, described chip card internal memory has the sequence number of user's SIM card; Wherein,
Described identity information management module: be built-in with subscriber identity information, under the control of control module, it is verified subscriber identity information;
Described wallet administration module: under the control of control module, to transaction, the remaining sum of stored value card, supplement with money and data such as consumption manage, and result is fed back to control module;
Described control module: the information of outside input is sent into safety management module, carry out corresponding operating according to feedback result control identity information management module, wallet administration module and the memory module of safety management module, or do not carry out any operation;
Described safety management module: the information to the outside input is carried out security monitoring, if the legal control module that then allows of information is carried out corresponding operating, does not forbid control module execution corresponding operating if information conforms to rule; Also security information is carried out preliminary examinationization and revise being provided with, described security information mainly is meant key information and operation permission information;
Described memory module: under the control of control module, information is stored.
Further, described chip card also comprises the card base interface; So-called card base is meant an equipment that is similar to card of mainly being made up of radio-frequency antenna and tandem circuit, and this equipment can not work independently, and must combine with chip card and could work.
Card frequency after described chip card combines with described card is basic is 13.56MHz.
Again further, described chip card also comprises the digital certificate module, and it is controlled by control module, is used for the digital signature of Internet bank's payment, and described network comprises cable network and wireless network.
Again further, described chip card also comprises the payment limiting module, and it is controlled by control module, and under passive mode, if payment or payment number of times exceed the scope of parameter limit, then described payment limiting module will lock payment function temporarily.
Described payment limiting module comprises single consumption restriction, cumulative consumption restriction, the restriction of cumulative consumption number of times, odd-numbered day consumption restriction and odd-numbered day consumption number of times limiting parameter.
The sequence number of described user's SIM card can be stored in the described memory module, also can be stored in the described identity information management module.
Design concept of the present invention is: the special chip card that is built-in with Financial Information by issued by banks, bank carries out initialization to chip card, the user inserts (special handset is meant the mobile phone that can support this chip card) in the special handset with chip card then, and the user can realize on-site payment, remote payment and the electronic purse function of mobile phone easily like this.The user also can link this chip card and other counting equipment or card base that possesses standard interface, perhaps links by the counting equipment of mobile phone radio frequency antenna with the band antenna, finishes functions such as payment, ecommerce, electronic bill.The inner all right integrated user's of chip card identity information is used for functions such as medical treatment, insurance, authentication, gate inhibition's identification.Chip card can also utilize the radio communication function (note, GPRS etc.) of mobile phone, realizes that OTA supplements with money, wireless network is used payment, downloads electronic bill etc.
The present invention compared with prior art has following advantage:
(1) prior art mainly contains two big classes, one class is based on embedded in mobile phone RFID chip technology, an other class is based on the RFID chip technology of SIM card, these two kinds of technology all exist the setting of the Financial Information on the chip, safely, the insurmountable difficulty of dispute after going wrong; Because the enterprise of maintenance may be cell phone manufacturer or SIM card merchant, the Financial Information in the chip belongs to bank, but bank does not have ability to finish the maintenance of mobile phone and SIM card.Adopt after this programme, the information security on the chip card is out of joint, can finely define problem, or the problem of mobile phone of SIM, or user oneself is from other channel leakage.This programme has fundamentally solved the problems referred to above, and financial institution is the chip card card sending mechanism, and chip card is responsible for, and cell phone manufacturer is responsible to mobile phone, SIM card merchant is responsible for SIM card.Like this, if out of joint, then have clear and definite party responsible to be responsible for, simultaneously, financial institution can independently carry out various operations such as safety management, security control, initialization, information rewriting to chip card, thereby guarantees the information security of chip card.
(2) prior art can not solve the problem of mobile phone and computer payment unification.Existing mobile phone radio frequency closely payment technology all can not be supported the computer payment simultaneously.Chip card of the present invention is supported the USB standard interface, can directly be inserted on the computer and use as USBKey (USB flash disk digital certificates), also can directly detain expense in the stored value card, perhaps supplement with money, the transaction (download and use) of electronic bill by USB interface.
(3) prior art holder networking network payment technology not.Internet of Things is emerging technology, there is not unified payment technology standard at present, the present invention provides the payment interface of multiple standards for Internet of Things, as USB interface, SD card, card base interface, can provide the payment interface that meets financial standard for Internet of Things, following pay TV, water meter, ammeter, gas meter, the heating meter, add oil meter, parking table or the like, all can finish charge by such interface.
(4) not supporting chip and antenna isolation technics of prior art.The existing payment card sheet all is that payment module and radio-frequency antenna are integrated on the card basically, and supporting chip and antenna does not separate.Chip card of the present invention can insert in the card base of the novel kilocalorie that has radio-frequency antenna, is together to form the non-contact radio-frequency card of an able to make payment, authentication security ability.
(5) chip card of the present invention possesses the function of authentication, stored value card, electronic bill, the unification of safe control, and problems such as maintenance, chip that existing mobile-phone payment technology can't solve the distribution of card, many application managements, key decentralized management, stored value card and separating of antenna.
(6) chip card of the present invention can also be applied to all kinds of counting equipments with standard interface, and as water meter, gas meter, ammeter, fuel charger etc., it is as the security tool that solves internet payment.
Description of drawings
Fig. 1 is the multifunctional chip card block diagram of the specific embodiment of the invention.
Embodiment
Below with reference to accompanying drawing embodiments of the invention are described.
Multifunctional chip card comprises non-contact radio-frequency interface, USB interface, SD card, identity information management module, wallet administration module, control module, safety management module and memory module in the embodiment, described chip card internal memory has the sequence number of user's SIM card, the sequence number of SIM card can be stored in the described memory module, also can be stored in the described identity information management module.
Wherein, the SD card is the interface module of described chip card and mobile phone.The non-contact radio-frequency interface ISO14443 agreement of adopting international standards.The non-contact radio-frequency interface is actually the coupling part of chip card and the built-in radio-frequency antenna of mobile phone terminal, and this coupling part is a baseband chip, the radio frequency card that chip card, base band, the common formation of radio-frequency antenna have the RFID ability.
Described identity information management module: be built-in with subscriber identity information, under the control of control module, it is verified subscriber identity information;
Described wallet administration module: under the control of control module, to transaction, the remaining sum of stored value card, supplement with money and data such as consumption manage, and result is fed back to control module;
Described control module: be the core processing module of chip card; Its information with the outside input is sent into safety management module, carries out corresponding operating according to feedback result control identity information management module, wallet administration module and the memory module of safety management module, or does not carry out any operation;
Described safety management module: the information to the outside input is carried out security monitoring, if the legal control module that then allows of information is carried out corresponding operating, does not forbid control module execution corresponding operating if information conforms to rule; Also security information is carried out preliminary examinationization and revise being provided with, the security information here mainly is meant key information and operating right information;
Described memory module: under the control of control module, information is stored.
In practice, chip card can be divided into a plurality of application regions, and a plurality of application files can be stored in each zone, as identity information, stored value card and storage area; Each application region is separate, can not visit between mutually, has safe access control.
The core of chip card is actually a miniature operating system, the storage of application partition management, cipher controlled and information in the chip etc. all is to carry out with the control module in the operating system, and safety management module mainly is that transaction security, communication security, authentication information etc. are carried out safety management.
For the function of extended chip card, described chip card also comprises the card base interface.So-called card base, be meant an equipment that is similar to card of mainly forming by radio-frequency antenna and tandem circuit, this equipment can not work independently, must combine with chip card and could work, in conjunction with after the card frequency be 13.56MHz, under passive states, work, can regard uses such as mass transit card, bank card, social security card, campus card, enterprises employee job card.
Function for the extended chip card, described chip card also comprises the digital certificate module, the digital certificate module is solidificated in the storage hardware, it is controlled by control module, the digital signature that is used for Internet bank's payment, increasing the digital certificate module is in order to ensure security, and described network comprises cable network and wireless network.Chip card is deposited digital certificate in the bank, and when the user carried out e-Bank payment, the digital certificate module guaranteed the encryption of user cipher and data message, thereby guarantees data security and transaction security.
For the function of extended chip card, described chip card also comprises the payment limiting module, and the payment limiting module is solidificated in the storage hardware.It is controlled by control module, and under passive mode, if payment or payment number of times exceed the scope of parameter limit, then described payment limiting module will lock payment function temporarily.Described payment limiting module can comprise single consumption restriction, cumulative consumption restriction, the restriction of cumulative consumption number of times, odd-numbered day consumption restriction and odd-numbered day consumption number of times limiting parameter.
Chip card is with after mobile phone terminal combines, do not have at mobile phone terminal under the situation of electricity, chip card will be concluded the business under passive mode, the security of concrete transaction is by the payment limiting module decision of chip card, there is single consumption restriction in the payment limiting module, the cumulative consumption restriction, the restriction of cumulative consumption number of times, odd-numbered day consumption restriction, parameters such as odd-numbered day consumption number of times restriction, in case payment or payment number of times reach any one parameter limit, then chip card will lock payment function temporarily, again start shooting and successfully pass through safety certification until mobile phone terminal, through safety certification, mobile phone terminal can be with the amount of money in the chip card or the zero clearing again of inferior counter.
Embodiment one: chip card of the present invention uses as Payment Card
As shown in Figure 1, the process of paying with chip card is:
(1) peripherals sends Payment Request APDU (Application Protocol Data Unit, Application Protocol Data Unit) instruction by interface module to the control module (core processing module of chip card) of chip card.Command content is: 805401000F0000000120100412160000AD8FE92B.
Particularly, if peripherals is mobile phone terminal, then mobile phone terminal sends instruction by non-contact interface and SD card to the control module of chip card; If peripherals is the card base, then the card base sends instruction by non-contact interface to the control module of chip card; If peripherals is USB device, then USB device sends instruction by SD card or USB interface to the control module of chip card.
(2) control module is resolved command content, and whether decision instruction standard, and safety management module is given in the instruction after will resolving.Analysis mode mainly is the APDU instruction with reference to defined in the PBOC2.0 standard of People's Bank of China's formulation, and whether the control module analysis instruction is legal, whether belongs to the already present instruction set of COS in the chip simultaneously.
Chip card is in the process of exchange of paying, and concrete payment instruction content is carried out preliminary examination and parsing by control module, mainly comprises the payment initialization, specifically pays two processes and handle.Carry out detailed narration with regard to these two processes respectively below.
A, payment initialization
Control module receives after the payment initialization directive, at first preliminary examination is carried out in APDU instruction, checks whether meet CLA, INS, P1, P2, LC, DATA, LE form, to incongruent instruction with direct hint instructions format error.After the order format preliminary examination is correct, will resolves and check that main what check is the cipher key index that provides in whether supporting in the control module to order number to command content.If do not support, then loopback status word ' 9403 ' (unsupported cipher key index), but other data of not loopback.Concrete payment initialization directive is: 805001020B01000001000000000000000F.
B, payment
Control module is after receiving concrete payment instruction, to APDU instruction carrying out preliminary examination, check whether meet CLA, INS, P1, P2, LC, DATA, LE form, if correct format, then control module will be resolved concrete data, mainly be that the data of DATA data field are verified, check whether the data field data are made up of terminal transaction sequence number+4 byte trade dates+3 byte exchange hours+4 byte MAC 1 of 4 bytes, to incongruent instruction, safety control module will directly be notified chip core processing module, instruction errors.Concrete payment instruction is: 805401000F0000000120100506161010E193F23A08.
(3) safety management module instruction that control module is sent here is verified, whether decision instruction has the authority of operation wallet administration module, and judged result is fed back to control module; If instruction has the authority of operation wallet administration module, then feedback result is a "Yes", if instruction does not have the authority of operation wallet administration module, then feedback result is a "No".
Safety management module checks whether the instruction that control module is sent has the authority information of operating stored value card.Whether meet the stored value card module is carried out a read message, only addible information, the restriction of updated information, four aspects of information that can't read only; Simultaneously, pay for wholesale, safety management module will limit Payment Request, need the user that PIN (Personal Identification Number, PIN (Personal Identification Number) abbreviation) is provided authentication, PIN code is 4 to 8 a numeral, the numeral of having only input is by authentication, just allow sticking into line operate, if the digital authenticating mistake of input 3 times, then card is with locked; After necessary authority restriction was satisfied in safety management module validation of payment instruction, control module just can be to the stored value card operation of paying.Otherwise safety management module will be pointed out the error message of insufficient permission.
(4) control module is according to the feedback result of safety management module, and whether decision sends Payment Request to the wallet administration module.
(5) if feedback result is a "Yes", then control module sends Payment Request to the wallet administration module, the instruction that the wallet administration module is sent here according to the control module processing of paying, and result returned to control module in the mode of instruction stream.
(6) if feedback result is a "No", then control module does not send Payment Request to the wallet administration module.
(7) control module returns to peripherals with payment result by the non-contact radio-frequency interface, and payment flow finishes.
Herein non-contact radio-frequency interface is actually and transmits in the electromagnetic wave mode by electromagnetic wave induction between chip and the peripherals.
Embodiment two: chip card of the present invention is supplemented with money
As shown in Figure 1, the process of supplementing with money with chip card is:
(1) peripherals sends charging request APDU (Application Protocol Data Unit, Application Protocol Data Unit) instruction by interface module to the control module (core processing module of chip card) of chip card.Command content is: 805200000B20100412160000AD8FE92B04.
Particularly, if peripherals is mobile phone terminal, then mobile phone terminal sends instruction by non-contact interface and SD card to the control module of chip card; If peripherals is the card base, then the card base sends instruction by non-contact interface to the control module of chip card; If peripherals is USB device, then USB device sends instruction by SD card or USB interface to the control module of chip card.
(2) control module is resolved command content, and whether decision instruction standard, and safety management module is given in the instruction after will resolving.Analysis mode mainly is the APDU instruction with reference to defined in the PBOC2.0 standard of People's Bank of China's formulation, and whether the control module analysis instruction is legal, whether belongs to the already present instruction set of COS in the chip simultaneously.
Chip card is in carrying out the recharging payment process, and the concrete command content of supplementing with money is carried out preliminary examination and parsing by control module, mainly comprises supplementing initialization with money, specifically supplementing two processes with money and handle.Carry out detailed narration with regard to these two processes respectively below.
A, supplement initialization with money
Control module receives supplements with money after the initialization directive, at first preliminary examination is carried out in APDU instruction, checks whether meet CLA, INS, P1, P2, LC, DATA, LE form, to incongruent instruction with direct hint instructions format error.After the order format preliminary examination is correct, will resolves and check that main what check is the cipher key index that provides in whether supporting in the control module to order number to command content.If do not support, then loopback status word ' 9403 ' (unsupported cipher key index), but other data of not loopback.Concrete payment initialization directive is: 805000020B010000001000000000000010.
B, supplement with money
Control module receive concrete supplement instruction with money after, to APDU instruction carrying out preliminary examination, check whether meet CLA, INS, P1, P2, LC, DATA, LE form, if correct format, then control module will be resolved concrete data, mainly be that the data of DATA data field are verified, check whether the data field data are made up of terminal transaction sequence number+4 byte trade dates+3 byte exchange hours+4 byte MAC 2 of 4 bytes, to incongruent instruction, safety control module will directly be notified chip core processing module, instruction errors.Concrete payment instruction is: 805200000B20100506161010F901E2AC04.
(3) safety management module instruction that control module is sent here is verified, whether decision instruction has the authority of operation wallet administration module, and judged result is fed back to control module; If instruction has the authority of operation wallet administration module, then feedback result is a "Yes", if instruction does not have the authority of operation wallet administration module, then feedback result is a "No".
Safety management module checks whether the instruction that control module is sent has the authority information of operating stored value card.Whether meet the stored value card module is carried out a read message, only addible information, the restriction of updated information, four aspects of information that can't read only; After necessary authority restriction was satisfied in the instruction of safety management module validation of payment, control module just can be supplemented operation with money to stored value card.Otherwise safety management module will be pointed out the error message of insufficient permission.
(4) control module is according to the feedback result of safety management module, and whether decision sends charging request to the wallet administration module;
(5) if feedback result is a "Yes", then control module sends charging request to the wallet administration module, and processing is supplemented in the instruction that the wallet administration module is sent here according to control module with money, and result is returned to control module in the mode of instruction stream;
(6) if feedback result is a "No", then control module does not send charging request to the wallet administration module;
(7) control module returns to peripherals with recharging result by the non-contact radio-frequency interface, and recharge procedure finishes.
Embodiment three: chip card of the present invention uses as ID (identity number) card
As shown in Figure 1, the acquisition process of identity information is:
(1) peripherals sends charging request APDU (Application Protocol Data Unit, Application Protocol Data Unit) instruction by interface module to the control module (core processing module of chip card) of chip card.Command content is: 00B0C001000000.
Particularly, if peripherals is mobile phone terminal, then mobile phone terminal sends instruction by non-contact interface and SD card to the control module of chip card; If peripherals is the card base, then the card base sends instruction by non-contact interface to the control module of chip card; If peripherals is USB device, then USB device sends instruction by SD card or USB interface to the control module of chip card.
(2) control module is resolved command content, and whether decision instruction standard, and safety management module is given in the instruction after will resolving.Analysis mode mainly is the APDU instruction with reference to defined in the PBOC2.0 standard of People's Bank of China's formulation, and whether the control module analysis instruction is legal, whether belongs to the already present instruction set of COS in the chip simultaneously;
Chip card is carrying out in the middle of the information access process, concrete information is obtained command content and is carried out preliminary examination and parsing by control module, the control module information of receiving is obtained after the instruction, at first to APDU instruction carrying out preliminary examination, check whether meet CLA, INS, P1, P2, LC, DATA, LE form, to incongruent instruction with direct hint instructions format error.After the order format preliminary examination is correct, will resolve and check that what mainly check is the file data blocks controlled variable that provides in whether supporting in the control module to order to command content.If support, then allow the file data blocks of visit appointment, otherwise return miscue information.Concrete information is obtained instruction: 00B0C001000000.
(3) safety management module instruction that control module is sent here is verified, whether decision instruction has the authority of operation identity information management module, and judged result is fed back to control module; If instruction has the authority of operation identity information management module, then feedback result is a "Yes", if instruction does not have the authority of operation identity information management module, then feedback result is a "No".
Safety management module checks whether instruction that control module sends has the authority information of operation identity information module, from the scope aspect of limited chip card user, mainly comprises the protection of card body itself, as obtaining of public information etc.; Read from restriction on the mode of smart card information, can be divided into a read message, only addible information, updated information, four aspects such as information that can't read only.Whether the safety management module decision instruction satisfies the restriction of above-mentioned authority, if satisfy, then the information that the identity information module is carried out in-scope is obtained operation, otherwise safety management module will return the miscue information of insufficient permission.
(4) control module is according to the feedback result of safety management module, and whether decision sends information acquisition request to the identity information management module;
(5) if feedback result is a "Yes", then control module sends information acquisition request to the identity information management module, information acquisition process is carried out in the instruction that the identity information management module is sent here according to control module, and result is returned to control module in the mode of instruction stream;
(6) if feedback result is a "No", then control module does not send information acquisition request to the identity information management module;
(7) control module is obtained the result with information and is returned to peripherals by the non-contact radio-frequency interface, and recharge procedure finishes.
The change flow of identity information is:
(1) peripherals sends charging request APDU (Application Protocol Data Unit, Application Protocol Data Unit) instruction by interface module to the control module (core processing module of chip card) of chip card.Command content is:
04D6C0010A I.D. AD8FE92B00
Particularly, if peripherals is mobile phone terminal, then mobile phone terminal sends instruction by non-contact interface and SD card to the control module of chip card; If peripherals is the card base, then the card base sends instruction by non-contact interface to the control module of chip card; If peripherals is USB device, then USB device sends instruction by SD card or USB interface to the control module of chip card.
(2) control module is resolved command content, and whether decision instruction standard, and safety management module is given in the instruction after will resolving.Analysis mode mainly is the APDU instruction with reference to defined in the PBOC2.0 standard of People's Bank of China's formulation, and whether the control module analysis instruction is legal, whether belongs to the already present instruction set of COS in the chip simultaneously;
Chip card is carrying out in the middle of the information change process, concrete information change command content is carried out preliminary examination and parsing by control module, control module receives after the information change instruction, at first to APDU instruction carrying out preliminary examination, check whether meet CLA, INS, P1, P2, LC, DATA, LE form, to incongruent instruction with direct hint instructions format error.After the order format preliminary examination is correct, will resolve and check that what mainly check is the file data blocks controlled variable that provides in whether supporting in the control module to order to command content.If support, then allow the file data blocks of visit appointment, otherwise return miscue information.Concrete information change instruction is: 04D6C0010A123456789012A0B1C2D300.
(3) safety management module instruction that control module is sent here is verified, whether decision instruction has the authority of operation identity information management module, and judged result is fed back to control module; If instruction has the authority of operation identity information management module, then feedback result is a "Yes", if instruction does not have the authority of operation identity information management module, then feedback result is a "No".
Safety management module checks whether the instruction that control module sends has the authority information that upgrades the identity information module, at first whether checking is verified by PIN, the PIN checking is meant that mainly the user imports 4 to 8 numeral, the numeral of having only input is by authentication, just allow sticking into line operate, if the digital authenticating mistake of input 3 times, then card is with locked; Whether next is to verify to authenticate by credit card issuer, is meant that mainly card must pass through the cipher authentication of 16-32 position, promptly after the external authentication, just can change the identity information module; Read on the mode of smart card information from restriction at last, whether checking meets is satisfied a read message, only addible information, updated information, four the aspects restrictions such as information that can't read only.Whether the safety management module decision instruction satisfies above-mentioned authority restriction, if satisfy, then the identity information module is carried out the change operation of in-scope, otherwise safety management module will return the miscue information of insufficient permission.
(4) control module is according to the feedback result of safety management module, and whether decision sends the information change request to the identity information management module;
(5) if feedback result is a "Yes", then control module sends the information change request to the identity information management module, the instruction that the identity information management module is sent here according to control module is carried out information change and is handled, and result is returned to control module in the mode of instruction stream;
(6) if feedback result is a "No", then control module does not send the information change request to the identity information management module;
(7) control module returns to peripherals with the information updating result by the non-contact radio-frequency interface, and recharge procedure finishes.
Embodiment four: chip card of the present invention uses as USB flash disk
As shown in Figure 1, the chip card process that storage is used as USB flash disk is:
(1) peripherals (as USB device) sends information stores application request APDU instruction by USB interface to the control module (core processing module of chip card) of chip card, and command content is: 00B00000010000.
(2) control module is resolved command content, and whether decision instruction standard, and safety management module is given in the instruction after will resolving.Analysis mode mainly is whether checking USB operational order meets APDU order format, and whether the control module analysis instruction is legal, whether belongs to the already present instruction set of COS in the chip simultaneously;
The USB device of integrated chip card is after inserting peripherals such as computing machine, the control module of chip card inside is being subjected to the request of peripheral USB interface, to initiatively send an instruction to control module, command content is 00B00000010000, and this instruction is whether the request external unit can visit memory module; Control module receives after the instruction, at first preliminary examination is carried out in APDU instruction, checks whether meet CLA, INS, P1, P2, LC, DATA, LE form, to incongruent instruction with direct hint instructions format error.After the order format preliminary examination is correct, will resolve and check what mainly check is whether to support this order in the control module, check simultaneously whether memory management module allows visit command content.If support, then allow the storage file of visit appointment, otherwise return miscue information.
(3) safety management module instruction that control module is sent here verifies whether decision instruction has the authority of operation store module, and judged result is fed back to control module; If instruction has the authority of memory module, then feedback result is a "Yes", if instruction does not have the authority of operation store module, then feedback result is a "No".
Whether the instruction that safety management module inspection control module is sent has the authority information of operation store module.Whether meet memory module is carried out a read message, only addible information, the restriction of updated information, four aspects of information that can't read only; Whether the safety management module decision instruction satisfies above-mentioned authority restriction, if satisfy, then memory module is carried out the operation of in-scope, otherwise safety management module will return the miscue information of insufficient permission.
(4) control module returns to peripherals with feedback result by USB interface again, peripherals according to feedback result whether judge can the access chip card storage area;
(5) if feedback result is a "Yes", then control module sends read-write requests to memory module, and processing is read and write in the instruction that memory module is sent here according to control module;
(6) if feedback result is a "No", then control module does not send read-write requests to memory module;
(7) control module will be read and write the result and return to peripherals by USB interface, and browsing process finishes.
Embodiment five: chip card of the present invention is as Net silver authentication use
As shown in Figure 1, the chip card process that authentication is used as Net silver is:
(1) peripherals (as USB device) sends the application request APDU instruction that information data is signed by USB interface to the control module (core processing module of chip card) of chip card, and command content is: 00D00000010000.
(2) control module is resolved command content, and whether decision instruction standard, and safety management module is given in the instruction after will resolving.Analysis mode mainly is whether checking USB operational order meets APDU order format, and whether the control module analysis instruction is legal, whether belongs to the already present instruction set of COS in the chip simultaneously;
The USB device of integrated chip card is after inserting peripherals such as computing machine, peripheral software in the computing machine sends the request APDU instruction of information data signature to the control module of chip card by interface module, instruction arrives first control module by core processing module and carries out pre-service and parsing, concrete command content is 00D00000010000, this instruction is that peripheral data content is carried out data signature by appointed bank's certificate, control module receives after the instruction, at first to APDU instruction carrying out preliminary examination, check and whether meet CLA, INS, P1, P2, LC, DATA, the LE form, to incongruent instruction with direct hint instructions format error.After the order format preliminary examination is correct, will resolves and check what mainly check is whether to support this order in the control module, checks simultaneously whether the bank certificate index of appointment exists to command content.If exist, then allow the bank certificate of visit appointment, otherwise return miscue information.
(3) safety management module instruction that control module is sent here verifies whether decision instruction can use the bank certificate of appointment, and whether has operating right, and judged result is fed back to control module; If instruction has the authority of memory module, then feedback result is a "Yes", if instruction does not have the authority of operation store module, then feedback result is a "No".
Safety management module checks whether the instruction that control module is sent has the authority information of operating appointed bank's certificate.Whether meet memory module is carried out a read message, only addible information, the restriction of updated information, four aspects of information that can't read only; Whether the safety management module decision instruction satisfies above-mentioned authority restriction, if satisfy, then bank certificate is carried out the operation of in-scope, otherwise safety management module will return the miscue information of insufficient permission.
(4) control module is according to the feedback result of safety management module, data signed with the financial instruments of appointment and signed data is returned to peripherals by USB interface;
(5) obtaining the data signature flow process finishes.
The content that is not described in detail in the instructions of the present invention belongs to this area professional and technical personnel's known technology.
The foregoing description is used for the present invention that explains, rather than limits the invention, and in the protection domain of spirit of the present invention and claim, any modification and change to the present invention makes all fall into protection scope of the present invention.
Claims (8)
1. multifunctional chip card, it is characterized in that: comprise non-contact radio-frequency interface, USB interface, SD card, identity information management module, wallet administration module, control module, safety management module and memory module, described chip card internal memory has the sequence number of user's SIM card; Wherein,
Described identity information management module: be built-in with subscriber identity information, under the control of control module, it is verified subscriber identity information;
Described wallet administration module: under the control of control module, to transaction, the remaining sum of stored value card, supplement with money and data such as consumption manage, and result is fed back to control module;
Described control module: the information of outside input is sent into safety management module, carry out corresponding operating according to feedback result control identity information management module, wallet administration module and the memory module of safety management module, or do not carry out any operation;
Described safety management module: the information to the outside input is carried out security monitoring, if the legal control module that then allows of information is carried out corresponding operating, does not forbid control module execution corresponding operating if information conforms to rule; Also security information is carried out preliminary examinationization and revises being provided with;
Described memory module: under the control of control module, information is stored.
2. multifunctional chip card according to claim 1 is characterized in that: described chip card also comprises the card base interface; So-called card base is meant an equipment that is similar to card of mainly being made up of radio-frequency antenna and tandem circuit, and this equipment can not work independently, and must combine with chip card and could work.
3. multifunctional chip card according to claim 2 is characterized in that: the card frequency after described chip card combines with described card is basic is 13.56MHz.
4. multifunctional chip card according to claim 1 and 2 is characterized in that: described chip card also comprises the digital certificate module, and it is controlled by control module, is used for the digital signature of Internet bank's payment, and described network comprises cable network and wireless network.
5. multifunctional chip card according to claim 1 and 2, it is characterized in that: described chip card also comprises the payment limiting module, it is controlled by control module, under passive mode, if payment or payment number of times exceed the scope of parameter limit, then described payment limiting module will lock payment function temporarily.
6. multifunctional chip card according to claim 5 is characterized in that: described payment limiting module comprises single consumption restriction, cumulative consumption restriction, the restriction of cumulative consumption number of times, odd-numbered day consumption restriction and odd-numbered day consumption number of times limiting parameter.
7. multifunctional chip card according to claim 1 and 2 is characterized in that: the sequence number of described user's SIM card is stored in described memory module or the described identity information management module.
8. multifunctional chip card according to claim 1 and 2 is characterized in that: described security information mainly is meant key information and operation permission information.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2010101909297A CN101882233A (en) | 2010-06-02 | 2010-06-02 | Multifunctional chip card |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2010101909297A CN101882233A (en) | 2010-06-02 | 2010-06-02 | Multifunctional chip card |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN101882233A true CN101882233A (en) | 2010-11-10 |
Family
ID=43054245
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2010101909297A Pending CN101882233A (en) | 2010-06-02 | 2010-06-02 | Multifunctional chip card |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101882233A (en) |
Cited By (14)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102215053A (en) * | 2011-06-03 | 2011-10-12 | 惠州Tcl移动通信有限公司 | Near field communication terminal with security mechanism |
| CN102542323A (en) * | 2010-11-16 | 2012-07-04 | 北京中电华大电子设计有限责任公司 | Multifunctional visual intelligent card |
| CN102685073A (en) * | 2011-03-11 | 2012-09-19 | 中国移动通信集团公司 | Secure payment method and mobile terminal |
| CN103164738A (en) * | 2013-02-06 | 2013-06-19 | 厦门盛华电子科技有限公司 | Mobile phone user identification card based on mobile payment multichannel digital certificate |
| WO2013097467A1 (en) * | 2011-12-26 | 2013-07-04 | 东信和平科技股份有限公司 | Smart card and security implementation method for application terminal accessing smart card |
| CN103400266A (en) * | 2013-07-22 | 2013-11-20 | 孙伟 | Dual-interface card module combination equipment and card service implementation system and method |
| CN103530672A (en) * | 2013-10-21 | 2014-01-22 | 镇江三鑫科技信息有限公司 | School one-card |
| CN104123646A (en) * | 2014-07-21 | 2014-10-29 | 深圳前海君浩银通科技发展有限公司 | Composite type mobile uKey and electronic wallet payment system |
| CN104242990A (en) * | 2013-06-24 | 2014-12-24 | 上海海尔集成电路有限公司 | Power line carrier communication chip |
| CN104700269A (en) * | 2015-03-31 | 2015-06-10 | 小米科技有限责任公司 | Mobile payment method and device |
| WO2015101166A1 (en) * | 2013-12-30 | 2015-07-09 | 中国银联股份有限公司 | Method for detecting false card risk and transaction processing system for implementing same |
| WO2015113319A1 (en) * | 2014-01-28 | 2015-08-06 | 上海复旦微电子集团股份有限公司 | Device having storage function |
| CN108027951A (en) * | 2015-09-03 | 2018-05-11 | 武礼伟仁株式会社 | A kind of multifunction card and card settlement terminal and card settling account system |
| CN108846662A (en) * | 2018-05-29 | 2018-11-20 | 数字乾元科技有限公司 | wireless payment method and wearable device |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US5748737A (en) * | 1994-11-14 | 1998-05-05 | Daggar; Robert N. | Multimedia electronic wallet with generic card |
| CN101105776A (en) * | 2007-01-10 | 2008-01-16 | 上海瀚银信息技术有限公司 | Standard extension card with embedded CPU IC and method for realizing electronic payment |
-
2010
- 2010-06-02 CN CN2010101909297A patent/CN101882233A/en active Pending
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US5748737A (en) * | 1994-11-14 | 1998-05-05 | Daggar; Robert N. | Multimedia electronic wallet with generic card |
| CN101105776A (en) * | 2007-01-10 | 2008-01-16 | 上海瀚银信息技术有限公司 | Standard extension card with embedded CPU IC and method for realizing electronic payment |
Cited By (19)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102542323A (en) * | 2010-11-16 | 2012-07-04 | 北京中电华大电子设计有限责任公司 | Multifunctional visual intelligent card |
| CN102685073B (en) * | 2011-03-11 | 2016-04-27 | 中国移动通信集团公司 | Safe payment method and mobile terminal |
| CN102685073A (en) * | 2011-03-11 | 2012-09-19 | 中国移动通信集团公司 | Secure payment method and mobile terminal |
| CN102215053A (en) * | 2011-06-03 | 2011-10-12 | 惠州Tcl移动通信有限公司 | Near field communication terminal with security mechanism |
| WO2013097467A1 (en) * | 2011-12-26 | 2013-07-04 | 东信和平科技股份有限公司 | Smart card and security implementation method for application terminal accessing smart card |
| CN103164738A (en) * | 2013-02-06 | 2013-06-19 | 厦门盛华电子科技有限公司 | Mobile phone user identification card based on mobile payment multichannel digital certificate |
| CN103164738B (en) * | 2013-02-06 | 2015-09-30 | 厦门盛华电子科技有限公司 | A kind of cellphone subscriber's identification card based on the certification of mobile payment multi-channel digital |
| WO2014121603A1 (en) * | 2013-02-06 | 2014-08-14 | 厦门盛华电子科技有限公司 | Mobile phone subscriber identity card based on multichannel digital authentication of mobile payment |
| CN104242990A (en) * | 2013-06-24 | 2014-12-24 | 上海海尔集成电路有限公司 | Power line carrier communication chip |
| CN104242990B (en) * | 2013-06-24 | 2016-05-18 | 上海东软载波微电子有限公司 | power line carrier communication chip |
| CN103400266A (en) * | 2013-07-22 | 2013-11-20 | 孙伟 | Dual-interface card module combination equipment and card service implementation system and method |
| CN103530672A (en) * | 2013-10-21 | 2014-01-22 | 镇江三鑫科技信息有限公司 | School one-card |
| TWI621082B (en) * | 2013-12-30 | 2018-04-11 | Method for monitoring pseudo card risk and transaction processing system implementing the method | |
| WO2015101166A1 (en) * | 2013-12-30 | 2015-07-09 | 中国银联股份有限公司 | Method for detecting false card risk and transaction processing system for implementing same |
| WO2015113319A1 (en) * | 2014-01-28 | 2015-08-06 | 上海复旦微电子集团股份有限公司 | Device having storage function |
| CN104123646A (en) * | 2014-07-21 | 2014-10-29 | 深圳前海君浩银通科技发展有限公司 | Composite type mobile uKey and electronic wallet payment system |
| CN104700269A (en) * | 2015-03-31 | 2015-06-10 | 小米科技有限责任公司 | Mobile payment method and device |
| CN108027951A (en) * | 2015-09-03 | 2018-05-11 | 武礼伟仁株式会社 | A kind of multifunction card and card settlement terminal and card settling account system |
| CN108846662A (en) * | 2018-05-29 | 2018-11-20 | 数字乾元科技有限公司 | wireless payment method and wearable device |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101882233A (en) | Multifunctional chip card | |
| US8215547B2 (en) | Data communicating apparatus and method for managing memory of data communicating apparatus | |
| ES2526641T3 (en) | Communication procedure, communication device and secure processor | |
| CN101917216A (en) | System and method for realizing safe mobile application by adopting Bluetooth intelligent card | |
| KR101389468B1 (en) | Method for issuing mobile credit card in portable terminal using credit card and credit card for the same | |
| CN106327175A (en) | Mobile payment application architecture | |
| KR20110005889A (en) | An electronic payment system | |
| CN105814590A (en) | Person-to-person payments using electronic devices | |
| CN101655949A (en) | Intelligent card charging system and method thereof | |
| CN101783040B (en) | Smart card swipe machine and information exchange method | |
| WO2009147548A2 (en) | Method for storing nfc applications in a secure memory device | |
| CN108519905A (en) | Information processing equipment and method, IC chip and storage medium | |
| EP2048591B1 (en) | Method for communication, communication device and secure processor | |
| CN101807424B (en) | Multifunctional U disk and U disk system | |
| CN102722813A (en) | Hierarchical multiple electronic currency device and multiple electronic currency management method | |
| CN201780624U (en) | Multifunctional chip card | |
| CN107229962A (en) | A kind of universal smart card based on mobile terminal | |
| JP6043709B2 (en) | Information processing apparatus, information processing method, and program | |
| CN103186805A (en) | Smart card and signature authentication method based on smart card | |
| CN106295289B (en) | A kind of message processing module | |
| CN102315936A (en) | Authentication processing device and relevant movement device thereof | |
| Chirico | Smart card programming | |
| CN201607736U (en) | Multi-functional U disc and U disc system | |
| CN103778530A (en) | Industry application account over-the-air transferring method, system and apparatus | |
| CN103379190B (en) | Running gear, transaction system and method for transmitting signals |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20101110 |