The content of the invention
The present invention propose can dynamic load application system and method, low-level hardware can be directed to and matched somebody with somebodyThe wearable intelligent equipment put realizes dynamic load and the safety management of application.
According to an aspect of the invention, there is provided a kind of system of dynamic load application, including:WearWear formula smart machine;Terminal device, applies for being downloaded for wearable intelligent equipment;And trust clothesBusiness management platform, is connected by network with terminal device, and trust service management platform is used to be set for terminalIt is standby that application is provided.
Preferably, wearable intelligent equipment by bluetooth, WiFi (Wireless Fidelity, Wireless Fidelity),ZigBee (purple honeybee), USB (Universal Serial Bus, USB) or ISO7816 (marksQuasi- agreement) passage communicated with terminal device.
Additionally, wearable intelligent equipment includes:Communication module, for being communicated with terminal device;Memory module, for storing the application downloaded by terminal device;And security module, for completing to believeAppoint service management platform to the authentication operation of wearable intelligent equipment.
Additionally, trust service management platform includes:Application issuance managing device, carries for managing applicationThere is provided and apply related service for the application that business, examination & verification application provider provide, and user oriented;AndSecurity module managing device, the peace for controlling and managing the application data in trust service management platformEntirely.
According to another aspect of the present invention, there is provided a kind of method of dynamic load application, including:WearFormula smart machine is worn to be connected with terminal device foundation;Under terminal device sends to trust service management platformCarry the request of application;Trust service management platform is verified to wearable intelligent equipment;And recognizingIn the case that card passes through, terminal device is downloaded from trust service management platform and applied.
Preferably, wearable intelligent equipment set up with the terminal device be connected including:Terminal device toWearable intelligent equipment sends connection request;And wearable intelligent equipment replies connection request and endEnd equipment set up connection, wherein wearable intelligent equipment by bluetooth, WiFi (Wireless Fidelity,Wireless Fidelity), ZigBee (purple honeybee), USB (Universal Serial Bus, USB)Or ISO7816 (standard agreement) passage is communicated with terminal device.
Preferably, trust service management platform carries out checking to wearable intelligent equipment includes:Trust clothesBusiness management platform sends safety certification request to terminal device;Terminal device sends safety certification requestTo wearable intelligent equipment;Wearable intelligent equipment processes certification request and provides certification to terminal deviceInformation;Authentication information is sent to trust service management platform by terminal device;Trust service management platformTreatment authentication information simultaneously feeds back authentication result to terminal device;And in the case where certification passes through,Download channel is set up between trust service management platform and terminal device.
Preferably, authentication information includes security domain key, the personal identification of each trust service management platformAuthentication information, equipment safety information, equipment storage resource information.
Preferably, terminal device is downloaded application and is included from trust service management platform:Terminal device is to letterAppoint service management platform to send and download application identity;Trust service management platform sends to terminal device shouldUse data;And the application data is sent supply wearable intelligent equipment by terminal device.
Additionally, application data is sent to after wearable intelligent equipment in mobile terminal, the method is alsoIncluding:Wearable intelligent equipment receives application data;And wearable intelligent equipment to terminal device andThe result of trust service management platform passback application loading.
As described above, the present invention is that wearable intelligent equipment downloads application, Neng Gouzhen by terminal deviceFor dynamic load and safety management that the wearable intelligent equipment that low-level hardware is configured realizes application.
Specific embodiment
The present invention is described in detail below in conjunction with accompanying drawing.
Fig. 1 is the block diagram of the system of dynamic load application of the invention.Fig. 2 is according to the present inventionThe dynamic load application by taking Intelligent bracelet and mobile phone as an example system schematic diagram.
As shown in figure 1, dynamic load application system 10 of the invention includes:Wearable intelligent equipment 12;Terminal device 14, applies for being downloaded for wearable intelligent equipment 10;And trust service management platform16, it is connected with terminal device 14 by network, TSM (Trusted Service Management, letterAppoint service management platform) 16 be used for for terminal device 14 provide application.
Wearable intelligent equipment mentioned herein can by radio channel (such as bluetooth, WiFi,ZigBee passages etc.) and wired paths (USB, ISO7816 passage etc.) enter with terminal deviceRow communication.But it will be understood by those skilled in the art that can be applied to appointing for system and method for the inventionWhat channel mode is included within the scope of the present invention.
Additionally, terminal device mentioned herein can be mobile phone, panel computer, desktop computer, notesThe terminal devices such as this computer but not limited to this, can be applied to any terminal of system and method for the inventionEquipment is included within the scope of the present invention.
Additionally, wearable intelligent equipment mentioned herein can be intelligent watch, Intelligent bracelet, many work(Can java cards etc. but not limited to this, it is any to can be applied to wearable intelligent equipment of the invention and includeWithin the scope of the invention.
As shown in Fig. 2 Intelligent bracelet is set as wearable intelligent equipment and using mobile phone as terminalIt is standby to show system of the invention.In this case, TSM can be by network transmission application to shiftingDynamic terminal, mobile terminal is downloaded to application by the communication channel such as bluetooth or WiFi or ZigBee againIntelligent bracelet.
Specifically, as known to those skilled in the art, wearable intelligent equipment is (such as intelligent handTable/bracelet, multi-functional java cards) internal processes framework be from top to bottom:Chip processor, javaVirtual machine, javaAPI interfaces and java application, what is be previously mentioned in the wherein java applications exactly present invention is dynamicThe application of state loading.Additionally, wearable intelligent equipment on hardware configuration in addition to main control chip,Also there is communication module, memory module, the power module being connected with main control chip, wherein power moduleGive other module for power supply.The frequency of main control module can run the set framework by as little as tens MHz;It is logicalNews module can be attached communication with terminal device, and can use bluetooth, WiFi (WirelessFidelity, Wireless Fidelity), ZigBee (purple honeybee), USB (Universal Serial Bus, general stringRow bus) or the communication mode such as ISO7816 (standard agreement);Be stored with memory module storage program,Using, authentication information etc., its space achieved that within 1MByte the programs such as virtual machine and it is multiple shouldStorage management.Additionally, the wearable intelligent equipment also includes security module, for completing to trustService management platform is for example received when application is downloaded and come to the authentication operation of wearable intelligent equipmentThe certification request of TSM platforms, processes the certification request and provides authentication information.
Terminal device (such as mobile terminal such as mobile phone, PAD, or desktop computer, notebook computerDeng immobile terminal) interface management as man-machine interaction and the intermediate hub of communication, can be withWearable intelligent equipment is communicated, to can above be communicated with TSM platforms, and also can bandThere is application control to manage the management that APP is used as interpersonal interactive interface.
It is all kinds of service providers and user directly safe bridge that TSM platforms are provided, and including:ShouldWith distribution managing device, for the application for managing application provider, examination & verification application provider provides, andUser oriented is provided and applies related service;And security module managing device, for controlling and managing letterAppoint the safety of the application data in service management platform.
Specifically, used as third party's management platform, main offer accepts business to Application issuance managing deviceThe access of platform, is registered to application provider, is audited and configuration management, while be responsible for examination & verification shouldWith the legitimacy of the application of provider's offer, security and normalization, there is provided the pipe of application and security domainManage and issue, and also the inquiry of user oriented offer registration, cancellation, logout and application data,The responsibility such as back up, report the loss, making up.
Security module managing device has following functions:Control and the master control key of management safety applications;Application data is loaded, installs or deleted in security module by technical approach such as aerial downloads and is matched somebody with somebodyThe account data of set;And security module application message is managed collectively, including data message pipeReason, escape way management and safety applications management etc..
Based on above-mentioned framework, method proposed by the present invention is:Terminal device exists with wearable intelligent terminalSet up after connection, the application management program APP of terminal device sends the request for downloading application, wearingFormula intelligent terminal sends authenticated data and is given to TSM platforms by terminal device, and TSM platforms obtain certificationInformation simultaneously gives terminal device download application mandate after the authentication has been successful, and terminal device sends downloads what is appliedIndicate and give TSM platforms, TSM platforms according to application identity to passing corresponding application under terminal device,Then during application is downloaded to wearable intelligent terminal by terminal device again.
The method of the present invention is described in detail below in conjunction with Fig. 3 and Fig. 4.
Fig. 3 is the flow chart of the method for dynamic load application of the invention.
As shown in figure 3, dynamic load application process of the invention includes:Step S30, WearableSmart machine is set up with terminal device and is connected;S32, under terminal device sends to trust service management platformCarry the request of application;S34, trust service management platform is verified to wearable intelligent equipment;AndS36, in the case where certification passes through, terminal device is downloaded from trust service management platform and applied.
Specifically, wearable intelligent equipment set up with terminal device be connected including:Terminal device is to wearingFormula smart machine sends connection request;And wearable intelligent equipment replies connection request to be set with terminalStandby foundation connects, wherein wearable intelligent equipment by bluetooth, WiFi (Wireless Fidelity, wirelesslyFidelity), ZigBee (purple honeybee), USB (Universal Serial Bus, USB) or ISO7816Passages such as (standard agreements) is communicated with terminal device.
Additionally, trust service management platform carries out checking to wearable intelligent equipment including:Trust serviceManagement platform sends safety certification request to terminal device;Be sent to for safety certification request by terminal deviceWearable intelligent equipment;Wearable intelligent equipment processes certification request and provides certification to terminal device to be believedBreath;Authentication information is sent to trust service management platform by terminal device;At trust service management platformReason authentication information simultaneously feeds back authentication result to terminal device;And in the case where certification passes through, in letterAppoint and download channel is set up between service management platform and terminal device.Wherein, at wearable intelligent equipmentCertification request is managed including being decrypted, determining TSM platforms need which authentication information etc. to certification request,This is well known to the skilled artisan, therefore is no longer described in detail.
It should be noted that authentication information mentioned here includes that the security domain of each trust service management platform is closeKey, personal identification information, equipment safety information, equipment storage resource information etc., these certificationsInformation is all stored in advance in wearable intelligent equipment.
Specifically, terminal device is downloaded application and is included from trust service management platform:Terminal device is to letterAppoint service management platform to send and download application identity;Trust service management platform sends to terminal device shouldUse data;And application data is sent supply wearable intelligent equipment by terminal device.
Additionally, application data is sent to after wearable intelligent equipment in mobile terminal, the method is alsoIncluding:Wearable intelligent equipment receives application data;And wearable intelligent equipment to terminal device andThe result of trust service management platform passback application loading.Additionally, wearable intelligent equipment is being receivedAlso need to store and process application data after application data, treatment mentioned here is included to application numberAccording to the treatment such as being decrypted, storing it at relative address, this is to those skilled in the artIt is known, therefore is no longer described in detail.
Fig. 4 is the flow chart of the method for the dynamic load application for being shown specifically according to embodiments of the present invention,Comprise the following steps:
The first step:Terminal device is set up with wearable intelligent equipment and is connected;
Second step:The application management program APP of terminal device sends the request for downloading application to TSM,TSM upon receiving a request, sends the safety certification request to wearable intelligent equipment;
3rd step:By terminal device transparent transmission, wearable intelligent equipment receives the certification request and processesCertification request, then sends the authentication information of correlation to TSM;
4th step:Legitimacy, the security of TSM certification wearable intelligent equipments, and result is fed backTo terminal device, if certification passes through, complete whole download channel and set up;
5th step:Terminal device transmission gives TSM platforms corresponding to the download application identity of downloaded application,TSM responses download application request to find related application data, and related application data are recalled into transmissionTo terminal device;
6th step:Data are transmitted to wearable intelligent equipment by terminal device, wearable intelligent equipment receives,Store and process the application of correlation.
Additionally, can increase passback response message after the 6th step, i.e., wearable intelligent equipment sendsUsing the result of loading to terminal device and TSM.
Additionally, in addition to needing to carry out safety certification to wearable intelligent equipment, in addition it is also necessary to terminalDownload channel between equipment and TSM is authenticated, and this can be applied by any in the prior artMode realize, be not discussed here.
Additionally, the authentication information sent in the 3rd step can include each TSM security domain keys, the individual personThe information such as part authentication information, equipment safety information, equipment storage resource information.Also, for differenceThe certification of content can repeat second step and the 3rd step so that verify different content every time.
As described above, by the present invention in that being that wearable intelligent equipment downloads application, energy with terminal deviceThe wearable intelligent equipment for being enough directed to low-level hardware configuration realizes the dynamic load and bursting tube of applicationReason.
It should be noted that each embodiment above by reference to described by accompanying drawing is only used to illustrate the present inventionThe scope being not intended to limit the present invention, it will be understood by those within the art that, do not departing from this hairThe modification carried out to the present invention on the premise of bright spirit and scope or equivalent, all should coverWithin the scope of the present invention.Additionally, signified outer unless the context, the word bag for occurring in the singularPlural form is included, vice versa.In addition, unless stated otherwise, then the whole of any embodiment orA part can combine any other embodiment all or part of use.