JP2011066757A - Portable terminal, and management program - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To more appropriately acquire additional information. <P>SOLUTION: When a predetermined event occurs, a list management program 150 compares a service ID of service set in an IC card 500 with a service ID of service stored in a storage section 105. When there is a mismatched service ID, the list management program 150 requests acquisition of the additional information to a management server 20. <P>COPYRIGHT: (C)2011,JPO&INPIT

Description

  The present invention relates to a technique for using an IC card in a mobile terminal.

  An IC card function built in a mobile terminal, such as mobile FeliCa (registered trademark), is known. Normally, a single IC card with an IC chip built into a plastic card is used to read and write data using a dedicated reader / writer, but an IC card function with an IC chip built into a portable terminal. On the other hand, in addition to reading and writing data using an external reader / writer, it is possible to read and write data from the mobile terminal body. Many portable terminals have a function of performing communication via a network, and various services can be provided by a communication function and an IC card function. In a portable terminal incorporating an IC card function, dedicated application software is used for reading and writing data of the IC card function.

  On the other hand, Patent Literature 1 discloses a technique for displaying an execution result of an APDU (Application Protocol Data Unit), which is a message transmitted from a terminal device to an IC card function, on a web browser. (In particular, paragraphs 0020-0022). Patent Document 2 discloses a technique for displaying a list of installable IC card applications in a mobile phone equipped with an IC card function. Patent Document 3 discloses that when receiving a list display command, it is determined whether the latest display data has been downloaded, and if there is no latest display data, the latest display data is downloaded.

JP 2006-244211 A JP 2007-206893 A JP 2003-216529 A

  When one of the script that can be executed from the software for performing communication via the network and the dedicated software can be used as software for reading / writing data to / from the IC card, switching between these is complicated. there were.

  The present invention provides a technique for automatically switching software for reading and writing data to an IC card in accordance with an instruction from a server.

The present invention provides a communication means for communicating via a network, a first application program for executing a specific process, a second application program different from the first application program, a script, and the second application First control means for executing a first management program for managing a program, an antenna, a memory having a plurality of storage areas in which access restrictions can be individually set, a signal from the antenna, or the first control An IC card function unit having a second control unit that accesses the memory in accordance with a signal from the unit and outputs the access result to the first control unit; and a storage area set in the memory A first identifier to be identified and a storage area identified by the first identifier A storage means for storing a list including a second identifier indicating accessible software, wherein the second application program is a program for accessing one storage area of the plurality of storage areas. And the script includes a group of instructions for accessing the one storage area, and the first control unit executing the first management program functions as a first management unit, and The first management means requests the first server connected to the network at the first timing to query the list via the communication means, and the first management means A mobile terminal is provided, which receives a response to the inquiry from a first server, and wherein the first management means updates the list according to the response.
According to this portable terminal, the list is automatically updated according to the response from the first server.

In a preferred aspect, the storage means stores additional information used in the script or the second application program in association with a third identifier that specifies a service related to data stored in the storage area. The storage area stores the third identifier, and the first management means is one second identifier to be processed among the second identifiers included in the updated list. And the first management means stores the additional information used in the target software indicated by the one second identifier at the second timing in the storage means or in the storage means. Based on the third identifier stored and the third identifier stored in the storage area accessed by the target software. If it is determined that the additional information used in the target software is not stored in the storage unit, the first management unit sends the communication unit to the second server connected to the network. And transmitting the third identifier corresponding to the target software, and the first management means sends the additional information transmitted from the second server according to the third identifier to the communication means. The first management means may store the received additional information in the storage means.
According to this portable terminal, the missing additional information is automatically acquired at a predetermined timing after the list is updated.

In a preferred aspect, the mobile terminal includes display means for displaying information, and the first management program includes a command group for executing display processing for displaying the contents of the list on the display means, The second timing may be a timing at which the start of the display process is instructed.
According to this portable terminal, additional information is acquired when displaying the contents of the list.

In another preferred aspect, the storage means stores information indicating a time when the inquiry was last performed, and the inquiry in which the first timing is indicated by the information stored in the storage means is performed last time. It may be a timing at which a condition that a predetermined time has elapsed from a certain time is satisfied.
According to this portable terminal, the additional information is updated to information within a predetermined time.

In still another preferred aspect, the communication means receives a message including an instruction for starting the first management program via the network, and the first timing is a timing at which the message is received. There may be.
According to this portable terminal, the list update is inquired even if the user does not start the first program.

The present invention also provides a communication means for communicating via a network, a first application program for executing a specific process, a second application program different from the first application program, a script, and the second First control means for executing a first management program for managing the application program, an antenna, a memory having a plurality of storage areas in which access restrictions can be individually set, a signal from the antenna, or the first An IC card function unit having a second control unit that accesses the memory in response to a signal from the control unit and outputs the access result to the first control unit, and a memory set in the memory A first identifier for specifying an area and a storage area specified by the first identifier; Storage means for storing a list including a second identifier indicating accessible software, and the second application program accesses a storage area of the plurality of storage areas The script includes a command group for accessing the one storage area, and the first control unit transmits the first server to the first server connected to the network at a first timing. On the other hand, requesting the inquiry of the list via the communication means, the step of the first control means receiving a response to the inquiry from the first server, and the first control means Provides a management program for executing the step of updating the list in response to the response.
According to this management program, the list is automatically updated in response to a response from the first server.

It is a figure which shows the structure of the communication system which concerns on one Embodiment. 1 is an external view of a mobile phone 10. FIG. 2 is a diagram showing a hardware configuration of a mobile phone 10. FIG. 2 is a diagram showing a configuration of an IC card 500. FIG. 5 is a diagram illustrating a configuration of a storage area of a memory 504. FIG. It is a figure which shows Java execution environment. 3 is a diagram showing a software configuration of the mobile phone 10. FIG. 2 is a diagram illustrating a configuration of a management server 20. FIG. 2 is a diagram illustrating a configuration of a service server 30. FIG. 2 is a diagram showing a configuration of a remote issuing server 40. FIG. 2 is a diagram illustrating a configuration of a service server 50. FIG. It is a sequence diagram which shows the process by a registration script. It is a figure which illustrates the HTML data which instruct | indicates the reading of a registration script. It is a sequence diagram which shows the process by a read script. It is a sequence diagram which shows the process by a writing script. It is a sequence diagram which shows the process by a deletion script. It is a figure which illustrates an IC card list. It is a figure which illustrates the screen displayed according to an IC card list. It is a sequence diagram which shows the registration process of browser mode. It is a sequence diagram which shows the registration process of application mode. It is a figure which shows the switching process from browser mode to application mode. It is a figure which shows the switching process from application mode to browser mode. It is a flowchart which shows the process which starts a browser or an application program from an IC card list. FIG. 4 is a diagram illustrating an example of stored contents in the mobile phone 10. It is a flowchart which shows the acquisition process of additional information. It is a figure which illustrates the management table which management server 20 has memorized. It is a flowchart which shows the detail of the update process of an IC card list. It is a figure which shows the state after the list of FIG. 24 was updated. It is a figure which illustrates the memory content in the mobile telephone 10 after additional information acquisition. It is a figure which shows the outline | summary of the encryption technique used in a communication system.

1. Configuration FIG. 1 is a diagram showing a configuration of a communication system according to an embodiment of the present invention. This communication system includes a mobile phone 10, a management server 20, a service server 30, a remote issuing server 40, and a service server 50. The management server 20, service server 30, remote issuing server 40 and service server 50 are connected via a network 70. The reader / writer 510 performs wireless communication with an IC (Integrated Circuit) card 500 built in the mobile phone 10 to read / write data.

1-1. Mobile phone 10
FIG. 2 is an external view of the mobile phone 10. The mobile phone 10 is an example of a mobile terminal according to the present invention. The mobile phone 10 has a housing 9A and a housing 9B. The housing 9 </ b> A and the housing 9 </ b> B are connected via the hinge 3. The mobile phone 10 is a so-called foldable mobile phone. The user of the mobile phone 10 performs voice communication and data communication with the housing 9A and the housing 9B opened as shown in FIG.

  The housing 9A includes a speaker 6, an antenna 7, and a display device 8. The speaker 6 outputs voice of a call, operation sound, music sound, and the like. The antenna 7 performs wireless communication with the wireless base station. The display device 8 displays characters and images. The housing 9 </ b> B has a keypad 4 and a microphone 5. The keypad 4 outputs a signal corresponding to a user operation. The microphone 5 converts the input sound into an electric signal and outputs it.

  FIG. 3 is a diagram illustrating a hardware configuration of the mobile phone 10. A CPU (Central Processing Unit) 102 is a control device that controls each component of the mobile phone 10. A ROM (Read Only Memory) 103 is a storage device that stores programs and data necessary for basic operations of the mobile phone 10. The ROM 103 stores, for example, an IPL (Initial Program Loader), an OS (Operating System) program, and Java (registered trademark) platform software. The IPL is a program for reading a program that is executed first when the mobile phone 10 is powered on. In this embodiment, the IPL reads the OS program. The OS program is a program for realizing input / output of data, access to a storage device, execution of various programs, voice communication, data communication, and other basic functions of the mobile phone 10. Java (registered trademark) platform software is a program and data for realizing a Java execution environment on the OS. The Java execution environment will be described later.

  A RAM (Random Access Memory) 104 is a storage device that functions as a work area when the CPU 102 executes a program. The storage unit 105 is a storage device that stores application programs and data. The storage unit 105 includes a nonvolatile memory such as a flash memory. In the present embodiment, the storage unit 105 stores a browser program. The browser program is a program for receiving HTML (HyperText Markup Language) data via a network and causing the display device 8 to display information corresponding to the received HTML data (an example of a first application program). The storage unit 105 stores an e-mail program. The e-mail program (mailer) is a program for sending and receiving e-mails via a network and displaying and editing the sent and received e-mails. It is possible to attach image data and address book data as an attached file to the e-mail. In this example, the browser and mailer are Java application programs.

  The operation unit 106 outputs a signal corresponding to a user operation. The operation unit 106 has an input device such as a keypad (keypad 4 in FIG. 2) including a numeric keypad, a call key, an end key, a clear key, a cursor key, a power key, and other keys for performing input. . The user inputs an instruction to the mobile phone 10 by operating the keypad. The display unit 107 displays characters and images. The display unit 107 includes a display device (display device 8 in FIG. 2) such as a liquid crystal display. The display unit 107 displays information processed by the running application program. The display unit 107 includes a display body such as an LCD (liquid crystal display) and a drive circuit that drives the display body. The communication unit 108 performs voice communication or data communication via a radio base station via an antenna (antenna 7 in FIG. 2). The bus 109 is a transmission path for transmitting signals and data exchanged between components. Furthermore, the mobile phone 10 has an IC card 500. The above components are connected via a bus 109. In this specification, “IC card” indicates a functional block (functional component) having a function as an IC card.

  FIG. 4 is a diagram illustrating a configuration of the IC card 500. The antenna 501 is used for transmitting / receiving a radio signal to / from the reader / writer 510. The IC chip 502 performs processing according to the signal received by the antenna 501. The IC chip 502 includes a processor 503 (an example of second control means) and a memory 504.

  The IC card 500 has a signal line 505 used for data transmission / reception with the CPU 102. The processor 503 accesses the memory 504 in accordance with a signal received by the antenna 501 or a signal from the CPU 102, and reads or writes data. The processor 503 executes processing associated with data reading or writing, such as data encryption or decryption.

  FIG. 5 is a diagram illustrating the configuration of the storage area of the memory 504. In this example, two areas of a common area and a free area are set in the memory 504 in the initial state (FIG. 5A). The common area is an area where an area is set for each service and data is written by a predetermined operator (in this example, an operator that manages and operates the remote issuing server 40). The free area is an area where data can be written regardless of the operator.

  The common area can be further divided into a plurality of areas, and data of different services, for example, electronic money data of company A and electronic money of company B can be stored in each area (FIG. 5). (B)). Hereinafter, electronic money provided by Company A and Company B will be referred to as “Company A Money” and “Company B Money”, respectively. Access restrictions (security) can be set for each area individually. Thereby, data used in a plurality of services can be managed in one card, and security of data between services is ensured.

  FIG. 6 is a diagram showing a Java execution environment. When the CPU 102 executes the Java (registered trademark) platform software, the Java execution environment 114 shown in FIG. 6 is realized on the OS 111. The Java execution environment 114 includes a class library 117, a JVM (Java Virtual Machine) 118, and a JAM (Java Application Manager) 119. The class library 117 is a group of program modules (classes) having specific functions combined into one file. The JVM 118 has a function of interpreting and executing bytecode provided as a Java application program. The JAM 119 has a function of managing the download, installation, activation, termination, and other operations of the Java application program (an example of a second management program).

  The JAM 119 includes an API (Application Program Interface) group 120 for accessing the IC card 500. The API group 120 includes, for example, a server communication start API for starting communication with the server, a data read API for reading data from the IC card 500, a data write API for writing data to the IC card 500, and the like. Is included.

  The client software 121 is software for relaying communication with a server such as the remote issuing server 40. The device driver 122 is a driver program for accessing the IC card 500.

  The first storage 115 is an area for storing a Java application program (Jar file and ADF (Application Descriptive File)) downloaded under the management of the JAM 119. The second storage 116 is an area for storing data generated when the Java application program is executed after the end. In the second storage 116, a separate storage area is allocated for each installed Java application program. The data in the storage area allocated to a certain Java application program can be rewritten only while the Java application program is being executed, and another Java application program cannot be rewritten.

  When the CPU 102 executes the Java application program under the Java execution environment 114, the application 112 and the application 113 are realized.

  FIG. 7 is a diagram illustrating a software configuration of the mobile phone 10. An application program such as the browser 130 operates on the OS 111. The browser 130 has a function of causing the display device 8 to display information corresponding to the HTML data. The browser 130 has a function related to a function of displaying information, such as a function of receiving HTML data from the network. The script processing engine 131 is one of such related functions, and has a function of interpreting a Java script and executing a process according to an instruction described in the Java script. The script processing engine 131 includes an API group 132 for accessing the IC card 500. The API group 132 includes, for example, a server communication start API for starting communication with the server, a data read API for reading data from the IC card 500, a data write API for writing data to the IC card 500, and the like. Is included.

  The dedicated application 140 is an application program for accessing the IC card 500 in a specific service such as Company A money or Company B money (an example of a second application program). The dedicated application 140 is a dedicated program specialized for a specific service. For example, A company money and B company money each have their own dedicated application 140. In this example, the dedicated application 140 is a Java application program.

  A list management program 150 (an example of a first management program) is a program for managing an IC card list. The IC card list is a list indicating services registered (or scheduled to be registered) in the mobile phone 10 (details will be described later). The list management program 150 controls the update of the IC card list and the activation of the script processing engine 131 and the dedicated application 140 based on the IC card list.

1-2. Management server 20
The management server 20 is a server for performing processing such as authentication and billing when the mobile phone 10 performs communication via a network. In this example, the management server 20 manages additional information. Details of the additional information will be described later.

  FIG. 8 is a diagram illustrating the configuration of the management server. The management server 20 is a server that is managed and operated by a telecommunications carrier that provides mobile communication services to the mobile phone 10. The management server 20 includes a management table that records a service ID and an activation mode corresponding to the service ID, a service ID, a database that records additional information corresponding to the service ID, and a server that functions as a server. The program is stored in a storage unit 201 such as an HDD. The management server 20 includes a communication unit 202 such as a communication interface used for communication via a network, and a control unit 203 such as a CPU that executes a program. When the control unit 203 executes the server program and controls the storage unit 201 and the communication unit 202, the management server 20 has a function of transmitting a response according to a request from the mobile phone 10.

1-3. Service server 30
FIG. 9 is a diagram illustrating a configuration of the service server 30. The service server 30 is a server that is managed and operated by company A, which is a provider that provides electronic money services. The service server 30 includes HTML data for providing information related to the service, various scripts (balance display script, settlement script, charge script, and deletion script) used for the electronic money service, and a server program for causing the server to function. Are stored in storage means 301 such as an HDD. Details of these scripts will be described later. The service server 30 includes a communication unit 302 such as a communication interface used for communication via a network, and a control unit 303 such as a CPU that executes a program. When the control unit 303 executes the server program and controls the storage unit 301 and the communication unit 302, the service server 30 has a function of transmitting HTML data and a script in response to a request from the mobile phone 10.

1-4. Remote issuing server 40
FIG. 10 is a diagram showing the configuration of the remote issuing server 40. The remote issue server 40 is a server that is managed and operated by a provider that provides the platform of the IC card 500. The remote issuance server 40 executes a process used for the service of the IC card 500 such as a database for recording information related to a service provided by a business operator, a process for registering information in the database, and an authentication process for registration and settlement. Are stored in a storage unit 401 such as an HDD. The remote issuing server 40 includes a communication unit 402 such as a communication interface used for communication via a network, and a control unit 403 such as a CPU that executes a program. A function that performs processing such as service registration and authentication in response to a request from the mobile phone 10 when the control unit 403 executes the server program and controls the storage unit 401 and the communication unit 402. Have

1-5. Service server 50
FIG. 11 is a diagram illustrating a configuration of the service server 50. The service server 50 is a server that is managed and operated by Company B, which is a provider that provides electronic money services. The service server 50 includes HTML data for providing service-related information, various scripts (balance display script, settlement script, charge script, and deletion script) used for the electronic money service, and a server program for causing the server to function. Are stored in storage means 501 such as an HDD. Details of these scripts will be described later. The service server 50 also includes a communication unit 502 such as a communication interface used for communication via a network, and a control unit 503 such as a CPU that executes a program. When the control unit executes the server program and controls the storage unit 501 and the communication unit 502, the service server 50 has a function of transmitting HTML data and a script in response to a request from the mobile phone 10.

2. Operation 2-1. Script The mobile phone 10 can be accessed from the browser 130 (more specifically, the script processing engine 1
It has a function of executing a script). In this example, the script is described by a Java (registered trademark) script which is an object-oriented programming language. Here, the script executed from the browser includes a script for accessing the IC card 500. “Accessing the IC card 500” means setting a storage area in the memory 504 of the IC card 500, reading data from the set storage area, writing data to the storage area, or storing It means to erase the data stored in the area. The script for accessing the IC card 500 includes a script for performing new registration (hereinafter referred to as “registration script”), a script for reading data (hereinafter referred to as “read script”), and a script for writing data. (Hereinafter referred to as “write script”) and scripts for deleting registered data (hereinafter referred to as “delete script”).

2-1-1. Registration Script The registration script is a script for setting a new storage area in the memory 504 of the IC card 500 and writing initial data in the set storage area. The registration script is used when “issuing” electronic money or an electronic ticket.

  FIG. 12 is a sequence diagram showing processing by a registration script. In the following, software such as “browser”, “mailer”, “script processing engine”, “API”, “script”, “OS”, etc. will be described as the subject of processing. This means that the CPU 102 that executes the instructions included in the command performs processing in cooperation with hardware resources such as the RAM 104, the display unit 107, and the communication unit 108. For example, when it is described that “the browser displays a page according to the HTML data”, the CPU 102 executing the browser program interprets the HTML data and causes the display unit 107 to display a page (image) corresponding to the HTML data. Means that. Alternatively, when it is described that “API delivers data to the browser”, the CPU 102 executing the API stores the data in a predetermined storage area, then executes the browser and reads the data from the storage area. means. In addition, when it is described that “the mailer displays an e-mail message”, the CPU 102 executing the e-mail program interprets the e-mail data and displays an image indicating the content of the e-mail on the display unit 107. It means that In FIG. 12, the browser 130 and the script processing engine 131 are described separately, but the script processing engine 131 is a part of the function of the browser 130 as described above.

  In step S100, the browser 130 reads a registration script. That is, the browser 130 requests the service server 30 to transmit a registration script. When receiving the request for transmitting the registration script from the mobile phone 10, the service server 30 transmits the registration script to the mobile phone 10 (step S101). The browser 130 passes the read registration script to the script processing engine 131 (step S102).

  FIG. 13 is a diagram illustrating a specific example of HTML data for instructing reading of a registration script. In this example, the script is called as an external link using an HTML object tag. If the HTML of a single page includes two links, a balance display script of company A and a balance display script of company B, these scripts are based on predetermined rules (for example, the order described in HTML). Is called in turn. Hereinafter, description will be made with reference to FIG. 12 again.

When the registration script is received, the script processing engine 131 performs processing in accordance with an instruction described in the script. In step S103, the script processing engine 13
1 transmits a ticketing request to the remote issuing server 40. Specifically, it is as follows. The registration script includes a command group for calling a server communication start API from the API group 132. When the CPU 102 executes these command groups, the server communication start API is activated. The server communication API calls the client software 121. The client software 121 communicates with the remote issuing server 40 via the communication unit 108. That is, the client software 121 transmits a ticket issuing request to the remote issuing server 40. The ticketing request includes information used for processing in the remote issuing server 40, for example, an identifier for identifying the service of company A and information indicating the user's attributes (hereinafter referred to as “user information”). In FIG. 12, processing such as an API or a device driver called from the registration script is also described as processing of the script processing engine 131 that executes the registration script. The same applies to the other drawings.

  When the ticket issuing request is received, the remote issuing server 40 generates information used for the ticket issuing process (hereinafter referred to as “ticket issuing information”) (step S104). The ticket issuing information includes, for example, an identifier for specifying a service and a user, and initial data written in the IC card 500. When the ticket issuing information is generated, the remote issuing server 40 stores the generated ticket issuing information and corresponding user information. The remote issuing server 40 transmits the ticket issue information to the mobile phone 10 (step S105). The client software 121 of the mobile phone 10 receives the ticket issue information and delivers the received ticket issue information to the script processing engine 131.

  In step S106, the script processing engine 131 performs ticketing processing using the ticketing information. That is, the CPU 102 executing the registration script sets a service area for company A in the memory 504 of the IC card 500, and specifies an identifier for specifying the service of company A and the mobile phone 10 in the set area. A command for writing the identifier is transmitted to the IC chip 502. Upon receiving an instruction from the CPU 102, the processor 503 of the IC chip 502 sets an area for company A's service in the memory 504, and specifies an identifier for identifying the company A's service and the mobile phone 10 in the set area. Write the identifier. Furthermore, the processor 503 receives an instruction from the CPU 102 and writes an initial value of service data for the company A (hereinafter, this data is referred to as “service data”) in the memory 504. Taking the case where the service of company A is electronic money as an example, the service data is data on the balance of electronic money. Alternatively, in another example, if the service is a point card, the service data is a balance of points, and if the service is a ticket issuing service such as an admission ticket or a ticket, the service data includes information identifying the ticket ( Date, seat, etc.).

  When the ticketing process is completed, the script processing engine 131 transmits a notification to the effect that the ticketing has been completed to the remote issuing server 40 (step S107). This notification includes an identifier that identifies the issued service and the mobile phone 10.

  Further, the script processing engine 131 transmits information used for service registration, in this example, user information, an identifier for identifying the service of company A, and an identifier for identifying the mobile phone 10 to the service server 30 (step S108). The service server 30 stores (registers) the information received from the mobile phone 10 (step S109). When the registration of the information is completed, the service server 30 transmits a notification that the registration is completed to the mobile phone 10 (step S110). This notification includes HTML data for displaying the registered information. Upon receiving this notification, the script processing engine 131 passes the HTML data included in the notification to the browser 130 (step S111), and ends the processing by the registered script. The browser 130 displays information according to the acquired HTML data. The processes of steps S103, S106, S107, S108, and S111 are processes performed by the script processing engine 131 in accordance with instructions described in the registration script.

2-1-2. Read Script FIG. 14 is a sequence diagram showing processing by the read script. The read script is a script for reading data from a storage area already set in the memory 504 of the IC card 500. Specific examples of the read script include a “balance display script” for displaying the balance of electronic money and point cards, and a “content display script” for confirming the contents of the electronic ticket.

  The read script includes a group of instructions for calling a data read API for reading service data. The data read API is executed by the CPU 102 executing these instruction groups.

  In step S200, the browser 130 reads the read script. That is, the browser 130 requests the service server 30 to transmit a read script. When receiving the request for transmitting the read script from the mobile phone 10, the service server 30 transmits the read script to the mobile phone 10 (step S201). The browser 130 passes the read script that has been read to the script processing engine 131 (step S202).

  When the read script is received, the script processing engine 131 performs processing in accordance with an instruction described in the script. In step S203, the script processing engine delivers an identifier (hereinafter referred to as “service ID”) for identifying the service of company A to the reading API (that is, identifies the service). The service ID is included in the script itself, the file name of the script, or the HTML tag. The data reading API transmits a request to deliver the service data read from the storage area corresponding to the service ID to the IC chip 502 of the IC card 500. This request includes the service ID of company A.

  In step S <b> 204, the script processing engine 131 reads service data from the IC chip 502. Specifically, it is as follows. Upon receiving a data delivery request from the data read API, the processor 503 of the IC chip 502 reads service data (in this example, electronic money balance) from the storage area corresponding to the service ID included in the request in the memory 504. The read service data is delivered to the data read API. The data read API passes the acquired service data to the script processing engine 131.

  In step S205, the script processing engine 131 delivers the acquired service data to the browser 130, and ends the read script processing. The browser 130 displays information based on the acquired service data. The processes in steps S203 to S205 are processes performed by the script processing engine 131 in accordance with instructions described in the read script.

2-1-3. Write Script FIG. 15 is a sequence diagram showing processing by a write script. The writing script is a script for writing data in a storage area already set in the memory 504 of the IC card 500 or rewriting data already stored. Specific examples of the writing script include a charge script for “charging” electronic money and point cards (processing to increase the balance), “settlement” and “using points” for electronic money and point cards (processing to reduce the balance) There is a settlement script to do this.

  In step S300, the browser 130 reads the writing script. That is, the browser 130 requests the service server 30 to transmit a write script. When receiving the request for sending the write script from the mobile phone 10, the service server 30 sends the write script to the mobile phone 10 (step S301). The browser 130 passes the read writing script to the script processing engine 131 (step S302).

  In step S303, the script processing engine 131 calls the data writing API, and delivers the service ID of company A and the target data to be written (for example, data indicating the amount to be settled or the amount to be charged) to the data writing API. The data writing API transmits a request to write the target data to the storage area corresponding to the service ID to the IC chip 502 of the IC card 500. This request includes an identifier for identifying the service of company A and target data.

  Upon receiving a data write request, the processor 503 of the IC chip 502 determines whether the write request satisfies a predetermined constraint (step S304). For example, in the case where the write request is a process of reducing the balance indicated by the service data such as “settlement” or “use of points”, the constraint condition is a value to be subtracted from the service data (amount of settlement or used Point) is less than the balance of the service data. Alternatively, the constraint condition is a condition that, in the case of processing for increasing the balance indicated by the service data such as “charge” as the write request, the balance after processing is equal to or less than a predetermined upper limit value. Note that, depending on the type of write request, it is not necessary to perform the process of determining whether or not the constraint condition is satisfied.

  If it is determined that the write request satisfies the constraint condition (S304: YES), the processor 503 moves the process to step S305. When it is determined that the write request does not satisfy the constraint condition (S304: NO), the processor 503 transmits an error message indicating that to the script processing engine 131 via the data write API. Upon receiving the error message, the script processing engine 131 notifies the browser 130 that an error has occurred (step S312), and ends the process.

  In step S <b> 305, the processor 503 transmits a data write request to the remote issuing server 40. Specifically, it is as follows. The processor 503 calls a server communication API. The server communication API calls the client software 121. The client software 121 communicates with the remote issuing server 40 via the communication unit 108. That is, the client software 121 transmits a data write request to the remote issuing server 40. The write request includes information used for authentication in the remote issuing server 40, for example, the service ID of company A and the identifier of the mobile phone 10.

  When receiving the data write request from the mobile phone 10, the remote issuing server 40 authenticates the received write request (step S306). For the authentication, an encryption technique and an electronic signature technique described later are used. Alternatively, information such as the service ID of company A and the identifier of the mobile phone 10 may be used for authentication. When the authentication process is performed, the remote issuing server 40 transmits the authentication result to the mobile phone 10 (step S307).

The processor 503 of the IC chip 502 receives the authentication result from the remote issuing server 40 (via the server communication API and the client software 121). The processor 503 determines a process to be performed next according to the authentication result (depending on whether the constraint condition is satisfied) (step S308). When the authentication is successful (step S308: YES), the processor 503 writes the target data in a storage area corresponding to the service of company A in the memory 504 (step S309). When the target data is written in the storage area, the processor 503 transmits a notification to the effect that the writing has been completed to the script processing engine 131 (step S310). When the script processing engine 131 receives the notification that the writing has been completed, the script processing engine 131 notifies the browser 130 that the writing has been completed (hand over HTML data indicating that) (step S311), and ends the processing by the writing script. .

  If the authentication has failed (step S308: NO), the processor 503 does not write the target data in the memory 504, and transmits a notification that the authentication has failed to the script processing engine 131. When the script processing engine 131 receives the notification that the authentication has failed, the script processing engine 131 notifies the browser 130 that the authentication has failed (error message) (step S313), and ends the processing by the writing script. The processes in steps S303, S311, S312 and S313 described above are processes performed by the script processing engine 131 in accordance with the instructions described in the writing script.

2-1-4. Deletion Script The deletion script is a script for deleting data in the storage area set in the memory 504 of the IC card 500 and deleting a service corresponding to the storage area from the IC card 500. The deletion script is used when “deleting” electronic money or an electronic ticket.

  FIG. 16 is a sequence diagram showing processing by a deletion script. In step S400, the browser 130 reads the deletion script. That is, the browser 130 requests the service server 30 to transmit a deletion script. When receiving the request for transmission of the deletion script from the mobile phone 10, the service server 30 transmits the deletion script to the mobile phone 10 (step S401). The browser 130 passes the read deletion script to the script processing engine 131 (step S402).

  When the deletion script is received, the script processing engine 131 performs processing according to an instruction described in the script. In step S <b> 403, the script processing engine 131 transmits a deletion request to the remote issuing server 40. The deletion request includes information used for processing in the remote issuing server 40, for example, the service ID of the company A and user information.

  When receiving the deletion request, the remote issuing server 40 generates information used for the deletion process (hereinafter referred to as “deletion information”) (step S404). The deletion information includes, for example, an identifier that identifies a service and a user to be deleted. When the deletion information is generated, the remote issuing server 40 deletes the stored user information from the storage means such as the HDD. The remote issuing server 40 transmits the deletion information to the mobile phone 10 (step S405). The client software 121 of the mobile phone 10 receives the deletion information and passes the received deletion information to the script processing engine 131.

  In step S406, the script processing engine 131 performs a deletion process using the deletion information. That is, the CPU 102 executing the deletion script transmits to the IC chip 502 a command for deleting the service area for Company A set in the memory 504 of the IC card 500. In response to an instruction from the CPU 102, the processor 503 of the IC chip 502 deletes (deletes) all data stored in the service area for Company A set in the memory 504.

When the deletion process is completed, the script processing engine 131 transmits a notification that the deletion is completed to the remote issuing server 40 (step S407). This notification includes an identifier that identifies the deleted service and the mobile phone 10.

  Further, the script processing engine 131 transmits information for identifying the deleted service, in this example, user information, a service ID of company A, and an identifier for identifying the mobile phone 10 to the service server 30 (step S408). The service server 30 deletes the data stored in the storage means such as the HDD using the information received from the mobile phone 10 (step S409). When the deletion of information is completed, the service server 30 transmits a notification that the deletion is completed to the mobile phone 10 (step S410). This notification includes HTML data for displaying that the service has been deleted. Upon receiving this notification, the script processing engine 131 passes the HTML data included in the notification to the browser 130 (step S411), and ends the processing by the deletion script. The browser 130 displays information according to the acquired HTML data. The processes in steps S403, S406, S407, S408, and S411 are processes performed by the script processing engine 131 in accordance with the instructions described in the deletion script.

2-2. IC card list 2-2-1. Outline of IC Card List In this example, in the mobile phone 10, services registered in the IC card 500 are managed using the IC card list.

  FIG. 17 is a diagram illustrating an IC card list. The IC card list is stored in the storage unit 105. In this example, the IC card list includes records of “area ID”, “service ID”, “activation mode”, “URL”, and “ticketed”. “Area ID” is an identifier for specifying a storage area in the memory 504. “Service ID” is an identifier for identifying a service registered in the storage area. The “startup mode” is an identifier indicating whether the software that can access the storage area (access is permitted) is a script or a dedicated application. In this example, the identifier “application” can be accessed by a dedicated application program (hereinafter this state is referred to as “application mode”), and the identifier “browser” can be accessed by script (hereinafter this state). "Browser mode"). The application mode and the browser mode are collectively referred to as “startup mode”. “URL” is information indicating the location of a script when the accessible software is a script. “Ticketed” is a flag indicating whether or not ticketing has been completed for the corresponding service. The flag “Done” indicates that ticketing has been completed. The flag “incomplete” indicates that ticketing has not been completed.

  In this example, data related to the service specified by the service ID “A company money” is stored in the storage area specified by the area ID “0001”. Further, it is indicated that the startup mode of the company A money is the application mode. In the storage area specified by the area ID “0002”, data related to the service specified by the service ID “B company money” is stored. Further, it is indicated that the startup mode of the B company money is the browser mode. Furthermore, it is indicated that the location of this script is “http://www.b-money.com/”. In this example, for the browser mode service, there is no distinction between issued and unissued tickets, and the record is blank.

  FIG. 18 is a diagram illustrating a screen displayed on display unit 107 in accordance with the IC card list. FIG. 18 shows a screen displayed according to the IC card list of FIG. Character strings 601, 602, 603 and 604 are character strings indicating service IDs. The icon 605 is an image indicating that the activation mode is the application mode. The icon 606 is an image indicating that the activation mode is the browser mode. The icon 607 is an image indicating that the corresponding service has been issued. The icon 608 is an image indicating that the corresponding service has not been issued. The image display shown in FIG. 18 is performed by a list management program. In this example, there is no distinction between issued and unissued tickets in the browser mode, but an icon 607 is displayed for convenience. As for the application mode service, since the ticket is issued and not issued, an icon corresponding to the ticket issuing state is displayed.

  Icons 610, 612, 613, and 614 are images specific to the service, such as logo marks. Icons 610, 612, 613, and 614 are examples of additional information of an application program or script that accesses the IC card 500. Details of the additional information will be described later. In the screen illustrated in FIG. 18, icons 610, 612, 613, and 614 indicating services may be integrated with icons 607 and 608 indicating ticket issue / unissued tickets. That is, a single image in which an image for specifying a service and an image indicating ticketing / not-issuing are integrated may be used as an icon.

2-2-2. Registration to IC card list (browser mode)
FIG. 19 is a sequence diagram showing registration processing of a new service (browser mode) to the IC card list. In this example, registration of a new service in the IC card list is performed in accordance with the ticketing process in step S106 of FIG. In this example, the registration script downloaded in step S101 in FIG. 12 includes data for registering a service in the IC card list, for example, an area ID, a service ID, and a URL.

  In step S <b> 501, the script processing engine 131 acquires ticketing information from the remote issuing server 40. When the ticket issuing information is acquired, the script processing engine 131 instructs the IC card 500 to issue a ticket (step S502). When receiving an instruction from the script processing engine 131, the processor 503 of the IC card 500 sets an area in the memory 504, and writes initial data in the set area (step S503). When the writing of the initial data is completed, the processor 503 notifies the script processing engine 131 to that effect.

  When the ticketing process is completed, the script processing engine 131 instructs the list management program 150 to register the service in the IC card list (step S504). The instruction from the script processing engine 131 to the list management program 150 includes information used for registration in the IC card list, in this example, an area ID, a service ID, and a URL.

  When the script processing engine 131 is instructed to register a service, the list management program 150 updates the IC card list using information included in the instruction (step S505). When a service is newly registered, the list management program 150 newly creates a record including the area ID included in the instruction in step S504 in the IC card list, and registers the service ID in this record. In this example, the “startup mode” is set to “browser”. When the update of the IC card list is completed, the list management program 150 notifies the script processing engine 131 that the update of the IC card list is completed (step S506). When the update completion is notified from the list management program 150, the script processing engine 131 notifies the remote issuing server 40 that the ticketing process is completed (step S507). This process corresponds to the process in step S107 of FIG. The processes in steps S501 to S506 are performed along with the process in step S106 in FIG. Thereafter, the process shown in FIG. 12 is performed.

2-2-3. Registration to IC card list (application mode)
FIG. 20 is a sequence diagram showing registration processing of a new service (application mode) in the IC card list. In this example, registration of a new service to the IC card list is performed with the installation of the dedicated application 140.

  When a predetermined event (for example, an event that a button for starting a new registration of an application mode service is pressed on the screen displayed by the browser) occurs, the browser 130 is dedicated from a server connected to the network 70. The application 140 is downloaded (step S601).

  In this example, the installation of the dedicated application 140 uses three files: an ADF (Application Descriptor File), an SDF (Security Descriptor File), and a Jar (Java ARchive) file. The ADF is a file that defines application program attributes. The ADF includes information specifying the URL of the SDF and the Jar file. The SDF is a file including information for specifying a Jar file. The Jar file is an application program entity file. In step S601, the ADF is downloaded. When the ADF is downloaded, the browser 130 instructs the JAM 119 to install the dedicated application 140 using the ADF. When receiving the instruction, the JAM 119 installs the dedicated application 140 using the ADF.

  The installation of the dedicated application 140 in step S602 is performed as follows, for example. The JAM 119 acquires the SDF from the resource specified by the URL described in the acquired ADF. The JAM 119 confirms that the Jar file specified by the information described in the ADF and the Jar file specified by the information described in the SDF are the same. When it is confirmed that the Jar files specified by the ADF and the SDF are the same, the JAM 119 acquires the Jar file. The URL of the Jar file is described in ADF.

  When acquiring the Jar file, the JAM 119 installs the dedicated application 140. Installation refers to storing information used to start an application program and an entity file of the application program in the storage unit 105.

  When the installation is completed, the JAM 119 instructs the list management program 150 to register the service in the IC card list (step S603). The instruction from the JAM 119 to the list management program 150 includes information used for registration in the IC card list, in this example, an area ID and a service ID.

  When the JAM 119 is instructed to register a service, the list management program 150 updates the IC card list using information included in the instruction (step S604). When a service is newly registered, the list management program 150 newly creates a record including the area ID included in the instruction in step S603 in the IC card list, and registers the service ID in this record. In this example, “activation mode” is set to “application”. At this time, the “issued ticket” flag is set to “incomplete”. When the update of the IC card list is completed, the list management program 150 notifies the JAM 119 that the update of the IC card list is completed (step S605).

  When notified of the completion of the update of the IC card list, the JAM 119 activates the dedicated application 140 in order to perform ticketing processing (step S606). Alternatively, the dedicated application 140 may be manually activated by the user. In this case, the JAM 119 or the OS 111 displays a message prompting the user to start the dedicated application 140. When activated, the dedicated application 140 performs ticketing processing. Although the subject of the ticketing process is not the script processing engine 131 but the dedicated application 140, the contents of the ticketing process are the same as those described in steps S103 to S106 of FIG. That is, the dedicated application 140 communicates with the remote issuing server 140 and acquires ticketing information (step S607). When the ticket issuing information is acquired, the dedicated application 140 instructs the IC card 500 to issue a ticket (step S608). Upon receiving a ticketing instruction, the processor 503 of the IC card 500 sets an area in the memory 504 and writes initial data (step S609).

  When the ticketing process is completed, the dedicated application 140 notifies the list management program 150 that the ticketing process has been completed. The notification from the dedicated application 140 to the list management program 150 includes information used for registration in the IC card list, in this example, an area ID and a service ID.

  When the completion of the ticketing process is notified from the dedicated application 140, the list management program 150 updates the IC card list using the information included in the notification (step S610). Here, the value of the flag “issued ticket” is set to “completed”. When the update of the IC card list is completed, the list management program 150 notifies the dedicated application 140 that the update of the IC card list is completed (step S611). When the update completion is notified from the list management program 150, the dedicated application 140 notifies the remote issuing server 40 that the ticketing process has been completed (step S612). Thereafter, processing according to the operation of the dedicated application 140 is performed.

2-2-4. Switching from Browser Mode to Application Mode FIG. 21 is a diagram illustrating a process for switching from the browser mode to the application mode. Here, a case where the service of company B can be switched from the browser mode to the application mode will be described as an example. Switching from the browser mode to the application mode is performed when the browser 130 receives HTML data that triggers the switching. Details are as follows.

  In step S701, the browser 130 receives HTML data from the service server 50 (the service server of company B). The HTML data includes information that triggers switching to the application mode, for example, a link to an instruction to download a dedicated application of company B (hereinafter referred to as “dedicated application 140B”). This link includes an identifier indicating that the application program to be downloaded is an application program for accessing the IC card 500. This identifier is included in the file name of the application program, for example. Alternatively, this identifier may be included in the HTML tag of the link. Further alternatively, this identifier may be included in the ADF or SDF.

  When the download of the dedicated application 140B is requested, the browser 130 notifies the list management program 150 to that effect (step S702). Upon receiving the notification from the browser 130, the list management program 150 confirms whether the service corresponding to the dedicated application to be downloaded is already registered in the IC card list in either the browser mode or the application mode (step S703). . That is, the list management program 150 reads the IC card list from the storage unit 105, and the service ID corresponding to the dedicated application 140B (in this example, “B company money”) is already registered in the read IC card list. Judge whether it has been.

  The service ID of the dedicated application to be downloaded is included in, for example, a link, a file name, or an HTML tag. Alternatively, the service ID may be included in ADF or SDF. In this case, the browser 130 downloads ADF or SDF prior to the determination in step S703.

  When the service corresponding to the dedicated application to be downloaded is already registered in the IC card list in the application mode (S703: application mode), the list management program 150 displays that fact and cancels the download. The browser 130 is instructed (step S704). In response to this instruction, the browser 130 displays that the service has already been registered in the application mode, and stops the download (step S705). Thus, double registration of the dedicated application 140B is prevented. When the download is stopped, the browser 130 or the OS 111 activates the dedicated application 140B.

If the service corresponding to the dedicated application to be downloaded is already registered in the browser mode in the IC card list (S703: browser mode), the list management program 150 instructs the browser 130 to change the activation mode (step) S706). In response to this instruction, the browser 130 displays that the activation mode is switched to the application mode (step S707). Furthermore, the browser 130 downloads the dedicated application 140B (step S708). Note that the process of step S707 may be omitted. Alternatively, in step S707, the browser 130 may request the user to approve the activation mode change, and if approved, the browser 130 may shift the process to step S708.

  After downloading the dedicated application 140B in step S708, the dedicated application 140B is installed in the same manner as the flow of FIG. However, in this case, the service (the service with the service ID “B company money” in this example) is not newly registered, but is already registered in the IC card list. If it is not a new registration of the service, the area is already set in the IC card 500 and the initial data is written, so the processes of steps S605, 606, 607, 608, and 609 are not performed. That is, when registration to the IC card list is instructed in step S603, the list management program 150 determines whether the registration instruction is for new registration or activation mode switching. In the case of new registration, the list management program 150 operates as already described in the flow of FIG. In the case of switching the activation mode, the list management program rewrites the activation mode of the IC card list in step S604, and then skips the processes in steps S605 to S609 and moves the process to step S610.

  When it is determined that the service corresponding to the dedicated application to be downloaded is not yet registered in the IC card list (S703: unregistered), the list management program 150 instructs the browser 130 to download the dedicated application 140. (Step S709). In response to this instruction, the browser 130 downloads the dedicated application 140B (step S710).

  After downloading the dedicated application 140B in step S710, the dedicated application 140B is installed according to the flow of FIG. Along with the installation, new registration of the service to the IC card list is performed. Note that the JAM 119 or the OS 111 may activate the dedicated application 140B after the installation of the dedicated application 140B is completed.

2-2-5. Switching from Application Mode to Browser Mode FIG. 22 is a diagram illustrating a switching process from the application mode to the browser mode. Switching from the application mode to the browser mode is performed when the browser 130 receives HTML data that triggers the switching. Details are as follows. In FIG. 22, processing by the browser 130 and the script processing engine 131 is described as browser processing. Here, a case where the service of company A is switched from the application mode to the browser mode will be described as an example.

In step S801, the browser 130 receives HTML data from the service server 30 (the service server of company A). The HTML data includes information for triggering switching to the browser mode, for example, a script for accessing the service of company A (hereinafter simply referred to as “script of company A”). This HTML data includes an identifier indicating that the script to be activated is a script for accessing the IC card 500. This identifier is included in the file name of the script, for example. Alternatively, this identifier may be included in the HTML tag of the link. Further alternatively, this identifier may be included in the script itself. When the user performs an operation of selecting this link, the browser 130 requests the script processing engine 131 to start the script of company A according to this instruction. When the script of the company A is requested to be activated, the script processing engine 131 instructs the list management program 150 to determine whether the activation mode needs to be changed (step S802).

  When receiving an instruction from the script processing engine 131, the list management program 150 confirms whether the service corresponding to the script to be started is already registered in the IC card list in either the browser mode or the application mode (step S803). ). That is, the list management program 150 reads the IC card list from the storage unit 105, and the service ID (in this example, “A company money”) corresponding to the script of company A is already included in the read IC card list. Determine if it is registered. The service ID of the script to be started is included in, for example, the script itself, the script file name, or the HTML tag.

  If it is determined that the service corresponding to the script to be activated is not yet registered in the IC card list (S803: not registered), or the service corresponding to the script to be activated is already in the IC card list in the browser mode. If registered (S803: browser mode), the list management program 150 instructs the browser 130 to execute the script (step S804). Upon receiving this instruction, the browser 130 delivers the script to the script processing engine 131. Thereafter, the script is executed according to the flow of any of the processes after step S103 in FIG. 12 and the processes after steps S203, S303, and S403 in FIGS. If the service has not yet been registered in the IC card list, registration in the IC card list is performed according to the flow of FIG. Note that if the registration script is already registered in the IC card list in the browser mode, there is a possibility that double registration occurs and a problem may occur, so the list management program 150 may prohibit the execution of the registration script. .

  When the service corresponding to the script to be activated is already registered in the IC card list in the application mode (S803: application mode), the list management program 150 instructs the browser 130 to change the activation mode ( Step S805). In response to this instruction, the browser 130 displays that the activation mode is switched to the browser mode (step S806). In addition, the list management program 150 shifts the processing to step S807. The browser 130 may reject the mode switching according to a user instruction or the like. In this case, the browser 130 notifies the list management program 150 that mode switching has been rejected before the process of step S807. Further, the browser 130 (script processing engine 131) executes the script as much as possible (for example, the registration script is not executed, but the read script is executed). Alternatively, the browser 130 may display that a script execution error has occurred.

  In step S807, the list management program 150 rewrites the IC card list). That is, in the IC card list, the list management program 150 sets the startup mode of the A company money to “browser”, and records the URL of the script of the A company in the “URL” record. The URL of the script of company A is included in the instruction in step S802, for example. Alternatively, at this stage, the list management program 150 may acquire the URL of the script of company A from the browser 130. When the IC card list is updated, the list management program 150 moves the process to step S804. Thereafter, as already described, the processes of FIGS. 12 and 14-16 are performed according to the type of script.

  The list management program 150 may instruct the JAM 119 to uninstall the dedicated application 140 whose activation mode has been rewritten to the browser mode after the rewriting of the IC card list in step S807 is completed. Upon receiving this instruction, the JAM 119 uninstalls the corresponding dedicated application 140.

2-2-6. Activation from IC Card List FIG. 23 is a flowchart showing processing for activating a browser or an application program from the IC card list. Here, the state where the screen of FIG. 18 is displayed by the list management program 150 will be described as an example.

  In step S901, the list management program 150 selects one item (service) from the IC card list in accordance with a user operation. The list display application activates software corresponding to the selected item.

  When starting the software, the list management program 150 determines the next process according to the type of software to be started (step S902). When activation of a script is requested (step S902: script), the list management program 150 shifts the processing to step S903. If activation of the application program is requested (step S902: application), the list management program 150 shifts the processing to step S905.

  In step S903, the list management program 150 acquires a script and requests the browser 130 to execute the acquired script. This request includes the URL of the script. The browser 130 acquires a script from the URL included in the request. The script processing engine 131 activates and executes the acquired script (step S904).

  In step S905, the list management program 150 activates and executes the requested dedicated application 140.

2-2-7. Management of Additional Information in IC Card List In this example, the list management program 150 uses additional information when displaying a screen according to the IC card list (hereinafter referred to as “list screen”, for example, FIG. 18). The additional information refers to image, sound, character string, parameter, and other information unique to each software used when the list management program 150 displays a list screen. Here, an example in which an image (icon) is used as additional information will be described. In this example, the additional information includes information indicating the activation mode of the service.

  FIG. 24 is a diagram illustrating contents stored in the mobile phone 10. In this example, the IC card 500 (more precisely, the memory 504) has four service IDs identified by service IDs “A company money”, “B company money”, “D company point card”, and “E social worker card”. The service is set up. As described above, the service ID and service data are stored in the storage area of each service.

  The storage unit 105 includes two storage areas, an application storage area 1051 and a list storage area 1052. The application storage area 1051 is a storage area for storing application programs (corresponding to the first storage 115 in FIG. 6). In this example, in particular, an application program for accessing the IC card 500 is shown. Application programs corresponding to the service IDs “A company money” and “D company point card” are stored in association with the service ID. List storage area 1052 is a storage area for storing a list of IC cards. In this example, the IC card list includes additional information corresponding to the service in addition to the information illustrated in FIG. In FIG. 24, among the information included in the IC card list, in particular, additional information and a startup mode are illustrated. In the IC card list, additional information corresponding to service IDs “A company money”, “B company money”, and “D company point card” is stored in association with the service ID. In FIG. 24, the additional information and the activation mode are shown separately, but the activation mode is included in the additional information as described above.

  In this example, when the software that accesses the IC card 500 is an application program, the additional information recorded in the IC card list is acquired along with the installation of the application program. For example, the additional information is included as part of the entity file of the application program, and the JAM 119 extracts the additional information from the entity file and stores the extracted additional information in the list storage area 1052. On the other hand, when the software that accesses the IC card 500 is a script (runs on the browser), the additional information is acquired when the service is registered in the IC card list and written in the IC card list. Alternatively, when the software that accesses the IC card 500 is a browser, processing such as registration, reading, writing, and deletion with respect to the IC chip 500 is encrypted between the IC chip 500 and the remote issuing server (that is, confidential). Have been done). In such a case, the software executed by the CPU 102 of the mobile phone 10 may not be able to know the content of processing (command content) being executed on the IC chip 500. In such a case, the process being performed on the IC chip 500 cannot be used as an opportunity for acquiring additional information. In that case, the list management program may be activated as an opportunity to acquire additional information.

  FIG. 25 is a flowchart showing additional information acquisition processing. In step S1001, the list management program 150 determines whether a condition for performing a list inquiry to the server is satisfied. As a condition for performing the list inquiry, any of the following (1) to (4) is used, for example. (1) When the previous inquiry time and the current time satisfy a predetermined condition, for example, when a certain time has passed since the previous inquiry time. For example, when the list management program 150 is started for the first time in the month. In this case, the list management program 150 stores the time (or year, month, day, etc.) at the time of the previous inquiry, and determines whether the condition is satisfied by comparing the stored time with the current time. (2) When the list management program 150 is started a certain number of times since the previous inquiry. For example, the 21st time after starting the list management program 150 20 times since the previous inquiry. When the list management program 150 is started. In this case, the list management program 150 stores the number of activations of the knowledge program 150 after the previous inquiry, and it is determined whether the condition is satisfied by comparing the stored number of times with a predetermined threshold value. To do. (3) When the mobile phone 10 receives an instruction from an external device. For example, when an SMS (Short Message Service) message is pushed and distributed. In this case, the program such as the OS 111 has a function of starting the application program in response to the SMS message. The OS 111 determines that the condition is satisfied and starts the list management program 150. (4) When the user inputs a list inquiry instruction.

  When it is determined that the condition for performing the list inquiry is not satisfied (S1001: NO), the list management program 150 waits until the condition is satisfied. When it is determined that the condition for performing the list inquiry is satisfied (S1001: YES), the list management program 150 displays the service registered in the IC card 500 and the IC card list stored in the list storage area 1052. Matching is performed (step S1002). Details are as follows. The list management program 150 determines whether additional information corresponding to all services set in the IC card 500 is stored in the storage unit 105. Details are as follows. The list management program 150 requests the IC card 500 to transmit service IDs of all set services. Upon receiving this request, the processor 503 of the IC card 500 reads the service ID from each storage area of the memory 504 and transmits the read service ID to the list management program 150 that is the request source. The list management program 150 stores the service ID acquired from the IC card 500. The list management program 150 reads a service ID corresponding to the stored additional information from the list storage area 1052, and stores the read service ID as current information. The current status information is information indicating the current status of the IC card list. The current status information includes a service ID and an activation mode corresponding to the service ID. If there is a service ID for which the corresponding additional information is not stored, the list management program 150 does not store the service ID as current information. The list management program 150 compares the service ID acquired from the IC card 500 with the service ID read from the list storage area 1052. This comparison is performed by specifying service IDs to be dealt with one by one in order according to a predetermined algorithm (for example, an algorithm for specifying in order from the top of the IC card list). If there is a service ID acquired from the IC card 500 that is not stored in the list storage area 1052, the list management program 150 determines that there is a service that does not store additional information. The list management program 150 stores a service ID of a service for which additional information is not stored as difference information. The difference information refers to information indicating a difference between information related to the service registered in the IC card 500 and information included in the IC card list stored in the list storage area 1052. Specifically, the difference information includes a service ID of a service that is determined not to store additional information. When all the service IDs acquired from the IC card 500 are also stored in the list storage area 1052, the list management program 150 stores additional information of all services set in the IC card 500 in the storage unit 105. Judge that In this case, the content of the difference information is empty.

  In step S <b> 1003, the list management program 150 transmits an IC card list inquiry request to the management server 20. This request includes current status information and difference information.

  When receiving the request for inquiry of the IC card list, the management server 20 determines whether there is a service whose activation mode is to be changed in the IC card list (step S1004). This determination is performed as follows, for example. The management server 20 stores a management table in which service IDs are associated with activation modes for services that can be used by the mobile phone 10.

  FIG. 26 is a diagram illustrating a management table stored in the management server 20. In this example, the information stored in the management table indicates that the activation mode of the service ID “Company A money” is “browser”. This indicates the intention of the company A or the telecommunications carrier to change the startup mode of the “company A money” to the browser mode. Similarly, in this example, it is indicated that the activation mode of the service ID “E member ID” is “browser”. Further, it is indicated that the activation modes of the service IDs “B company money” and “D company point card” are not designated.

  Refer to FIG. 25 again. The management server 20 compares the current status information included in the received request with the contents stored in the management table. Here, in particular, a comparison is made regarding the activation mode. In this comparison, according to a predetermined algorithm, target service IDs are identified one by one from the service IDs included in the current status information included in the request, and the target service IDs are included in the current status information. It is determined whether the activation mode matches the activation mode included in the management table. If there is a difference between the information included in the request and the content stored in the management table, the management server 20 determines that the activation mode needs to be changed (S1004: YES). When it is determined that the activation mode needs to be changed, the management server 20 moves the process to step S1005. If there is no difference between the information included in the request and the content stored in the management table, the management server 20 determines that the IC card list does not need to be updated (S1004: NO). If it is determined that it is not necessary to change the startup mode, the management server 20 moves the process to step S1008. In this example, the request received from the mobile phone 10 includes information indicating that the activation mode of the service ID “A company money” is the application mode. On the other hand, according to the management table, the startup mode of “Company A money” is the browser mode. Since the two do not match, the management server 20 determines that the activation mode needs to be changed. In this example, the management table indicates that the activation mode is not designated for the service IDs “B company money” and “D company point card”. Don't be. Further, for the service ID “E member ID”, since the service is not registered in the IC card list, it is not determined whether or not it is necessary to change the service ID.

  In step S <b> 1005, the management server 20 transmits an activation mode change instruction to the mobile phone 10 that is the transmission source of the request. This instruction includes at least a service ID and information indicating an activation mode corresponding to the service ID.

  When receiving the instruction from the management server 20, the list management program 150 updates the IC card list according to the content of the instruction (step S1006).

  FIG. 27 is a flowchart showing details of the IC card list update processing in step S1006. In step S1101, the list management program specifies a service ID to be processed according to a predetermined algorithm (for example, an algorithm for specifying a service ID in order from the top of a response).

  In step S1102, the list management program 150 determines whether to change the service ID to be processed from the application mode to the browser mode or from the browser mode to the application mode based on information included in the instruction. When changing from the application mode to the browser mode (S1102: B), the list management program 150 shifts the processing to step S1103. When the browser mode is changed to the application mode (S1102: A), the list management program 150 shifts the processing to step S1106.

  In step S1103, the list management program 150 deletes the additional information of the application program corresponding to the service to be changed from the IC card list in the list storage area 1052. The list management program 150 adds new additional information of this service to the IC card list (step S1104). Details are as follows. The list management program 150 requests the management server 20 to transmit additional information. This request includes a service ID of a service for which additional information is not stored (in this example, a service ID “A company money”). When receiving this request, the management server 20 searches the database for additional information corresponding to the service ID included in the request. When the desired additional information is included in the database, the management server 20 extracts the additional information from the database. The management server 20 transmits a response including the extracted additional information and the corresponding service ID to the mobile phone 10 that is the transmission source of the request. If the desired additional information is not included in the database, the management server 20 transmits a response including the service ID and the fact that there is no additional information corresponding to the service ID to the mobile phone 10. Upon receiving this response, the list management program 150 extracts additional information and a service ID from the received response, and stores the extracted additional information in the list storage area 1052. In this way, the list management program acquires additional information that is missing in the IC card list. When receiving a response including that there is no requested additional information, the list management program stores in the list storage area 1052 that the additional information has not been acquired for the service ID.

  When acquiring the additional information, the list management program 150 also acquires the URL of the script. The list management program 150 adds the acquired additional information and the URL of the script to the IC card list. When the rewriting of the IC card list is completed, the list management program 150 requests the JAM 119 to uninstall the application program corresponding to this service. Upon receiving this request, the JAM 119 uninstalls the target application program (step S1105).

  In step S1106, the list management program 150 requests the JAM 119 to install an application program corresponding to the service to be changed. The request to JAM 119 includes the ADF URL of the application program to be installed. This URL is acquired by communicating with the management server 20 at this stage, for example. Alternatively, this URL may be included in the instruction in step S1005. Upon receiving this request, the JAM 119 installs the target application program. In step S1107, the list management program deletes the additional information of this service from the IC card list. In step S1108, the list management program 150 adds the additional information acquired with the installation of the application program to the IC card list. If the process between the IC card 500 and the management server 20 is kept secret from the list management program 150, the process of step S1107 is not performed.

  In step S1109, the list management program 150 determines whether processing has been completed for all service IDs included in the response. If there is a service ID that has not been processed yet (S1109: NO), the list management program shifts the process to step S1101 again. When the processing is completed for all service IDs (S1109: YES), the list management program ends the processing in FIG.

  In this example, the activation mode of the service ID “Company A money” is changed from an application to a browser. That is, in the IC card list, the activation mode corresponding to the service ID “Company A money” is rewritten to “browser”, and the URL included in the response from the management server 20 is written in the “URL” field. Information about the service IDs “B company money” and “D company point card” is not changed.

  FIG. 28 is a diagram showing a state after the list of FIG. 24 is updated in step S1006. Compared with FIG. 24, the application program corresponding to the service ID “A company money” is deleted from the application storage area, and the additional information corresponding to the service ID “A company money” is deleted from the list storage area 1052.

  Refer to FIG. 25 again. In step S <b> 1007, the list management program 150 transmits a response indicating that the list update is completed to the management server 20.

  When it is determined in step S1104 that it is not necessary to change the activation mode, or when an update completion response is received from the list management program 150, the management server 20 determines whether there is an unmatch between the IC card 500 and the IC card list. That is, it is determined whether there is a service whose information is not recorded in the IC card list among the services set in the IC card 500 (step S1008). This determination is performed using the difference information included in the request in step S1003. When it is determined that there is an unmatch (S1008: YES), the management server 20 moves the process to step S1009. When it is determined that there is no unmatch (S1008: NO), the management server 20 ends the process of FIG.

  In step S <b> 1009, the management server 20 transmits information that is lacking in the IC card list to the mobile phone 10. The management server 20 stores a database relating to IC card services that can be used in the communication system. The management server 20 extracts information that is lacking in the IC card list from this database, and transmits the extracted information to the mobile phone 10. When the target service is recorded as the application mode in the management table of FIG. 26, the information transmitted to the mobile phone 10 includes the URL of the ADF of the dedicated application 140 or the link to the ADF of the dedicated application 140. URL of the page that has been edited. When the target service is recorded as the browser mode in the management table, the information transmitted to the mobile phone 10 includes the URL of the script. When the target service is recorded in the management table as no activation mode specified, the information transmitted to the mobile phone 10 includes information in either the application mode or the browser mode.

  In this example, the difference information includes the service ID “E member ID”, and the management table indicates that the activation mode of “E member ID” is the browser mode. Therefore, the management server 20 transmits data including information for registering the service related to the service ID “E member ID” in the browser mode to the mobile phone 10.

  In step S1010, the list management program 150 updates the IC card list. The update is performed in the same manner as the flow in FIG. When a browser mode service is newly added, the processing of steps S1103 to S1105 is performed. When the application mode service is newly added, processing of steps S1106 to S1108 is performed. When the list update is completed, the list management program 150 transmits a response indicating that the update is completed to the management server 20 (step S1011).

  When the update completion response is received, the management server 20 performs a final check of the IC card list (step S1012). The final check includes, for example, confirmation whether information regarding all service IDs included in the difference information has been added to the IC card list. If there is a service that could not be added to the IC card list because the information is not recorded in the database of the management server 20, the management server 20 determines that the IC card list is incomplete (S1012: NG). When it is determined that the IC card list is incomplete, the management server 20 transmits an error notification to the mobile phone 10 (step S1013). When receiving the error notification from the management server 20, the list management program 150 displays a screen indicating that an error has occurred on the display unit 107 (step S1013), and ends the flow of FIG. When all the check items are passed, the management server 20 determines that there is no defect in the IC card list (S1012: OK). When it is determined that the IC card list is incomplete, the management server 20 ends the flow of FIG.

  FIG. 29 is a diagram exemplifying storage contents in the mobile phone 10 after acquisition of additional information. Additional information corresponding to the service IDs “A company money” and “E social worker ID”, which was missing from the IC card list before the processing (FIG. 28), is acquired and the missing part is replenished. As for the service with the service ID “E company money”, the ticket was issued to the IC card 500 before processing, but the service ID was not recorded in the IC card list. The service with the service ID “E company money” is not described in the management table.

  When the acquisition of the additional information is completed, the list management program 150 uses the acquired additional information. That is, the list management program 150 displays a list screen using the additional information stored in the list storage area 1052.

  When communication via the network 70 occurs as in steps S1003 and S1009, the list management program 150 may ask the user for permission of communication before performing communication. When the user permits communication, the list management program 150 performs communication. When the user permits communication, the list management program 150 proceeds with processing without performing communication. There are cases where additional information cannot be acquired, for example, when the user does not permit communication or when the mobile phone 10 is out of the range of wireless communication. In such a case, the list management program 150 may store information indicating that the additional information could not be acquired in the list storage area 1052 together with the corresponding service ID. When information indicating that the additional information could not be acquired is stored, the list management program 150 indicates that a service that cannot be specified is set (for example, “? Unknown service?” Or a predetermined icon) ) Is displayed on the list screen.

  As described above, according to this process, the management server 20 can control the operation mode of the service registered in the IC card 500 of the mobile phone 10. Further, even when an unmatch occurs between the service registered in the IC card 500 and the IC card list, it can be automatically recovered so that the two match.

3. Security Next, the security of the service described above will be described. Although detailed description has been omitted so far, encryption technology is used for accessing the IC card 500 by a script.

  FIG. 30 is a diagram showing an outline of the encryption technique used in the communication system. The certificate authority CA is a certificate authority that is managed and operated by a predetermined operator (for example, a line operator of the mobile phone 10). The certificate authority CA issues the certificate authority's private key KprCA and public key KpubCA. Further, the certificate authority CA issues an electronic certificate Sm to the mobile phone 10. The electronic certificate Sm includes the electronic signature of the certificate authority CA and the public key KpubCA. The mobile phone 10 stores an electronic certificate Dm.

  The certificate authority CA issues a secret key KprCP and a public key KpubCP to the service provider. In FIG. 30, company A operating the service server 30 is illustrated as a service provider. The service provider that has received the key application applies to the certification authority CA to use the IC card service. This use application includes the public key KpubCP. Upon receiving the application for use, the certificate authority CA issues an electronic certificate SCP and ID data indicating the ID of the service provider. The electronic certificate SCP includes the electronic signature of the certificate authority CA and the public key KpubCP. The digital signature of the certificate authority CA is obtained by encrypting the message digest of the public key KpubCP using a hash function with the secret key KprCA. The service server 30 stores a secret key KprCP, a public key public key KpubCP, an electronic certificate SCP, and ID data.

  The script that the service server 30 transmits to the mobile phone 10 is a package of an execution code (script body), an electronic certificate SCP, and ID data. When receiving the script, the mobile phone 10 extracts the electronic certificate SCP from the package. The mobile phone 10 decrypts the electronic signature included in the extracted electronic certificate SCP with the public key KpubCA included in the electronic certificate Dm, and obtains a message digest. Furthermore, the mobile phone 10 applies a hash function to the public key KpubCA included in the electronic certificate Dm, and generates a message digest. The mobile phone 10 compares the generated message digest with the message digest obtained by decryption. If the two match, the mobile phone 10 determines that the script is valid and executes the execution code. If the two do not match, the mobile phone 10 determines that the script is invalid and does not execute the execution code. In the mobile phone 10, these processes are performed by software.

  The above is the technology for confirming the validity of the script received from the service server 30. However, communication using the encryption technology is similarly performed between the IC card 500 and the remote issuing server 40. The IC card 500 stores software for encrypted communication, and performs encrypted communication with the remote issuing server 40 using the software. The specific processing of the encrypted communication described above is merely an example, and other encryption techniques may be used as long as the validity of the communication partner can be confirmed.

4). Other Embodiments The present invention is not limited to the above-described embodiments, and various modifications can be made. Hereinafter, some modifications will be described. Two or more of the following modifications may be used in combination.

4-1. Modification 1
The timing at which the management server 20 instructs the mobile phone 10 to change the activation mode and the timing at which new additional information is transmitted are not limited to those described in the embodiment. In the embodiment, the activation mode change instruction (FIG. 25: step S1005) and the new additional information instruction (FIG. 27: steps S1104 and S1108) are performed at different timings. However, new additional information may be included in the activation mode change instruction. That is, the mobile phone 10 may acquire the start mode change instruction and the additional information at the same time.

4-2. Modification 2
The entity that determines whether the IC card list needs to be updated is not limited to that described in the embodiment. For example, the mobile phone 10 may determine whether the IC card list needs to be updated. In this case, the mobile phone 10 receives from the management server 20 a response including information used for querying the list, for example, information specifying the activation mode corresponding to the service ID included in the request. The list management program 150 stores information for specifying the activation mode from the received response and compares it with the contents of the IC card list. If they are different, the list management program 150 determines that updating is necessary.

4-3. Modification 3
In the embodiment, the management server 20 performs both inquiry of the IC card list and management of the additional information. However, these processes may be performed by different server devices.

4-4. Modification 4
In the embodiment, the service set in the IC card 500 and the additional information stored in the storage unit 105 are compared using the service ID. However, another identifier other than the service ID may be used for this comparison.

4-5. Modification 5
In the embodiment, the example in which the additional information is part of the information on the IC card list has been described. However, the additional information may be data different from the IC card list stored in a storage area different from the IC card list.

4-6. Modification 6
In the embodiment, the example in which the table used for determining whether or not the IC card list needs to be updated (the management table in FIG. 26) and the database used for searching additional information has been described. However, the database used for searching for additional information may include information corresponding to the management table. In this case, the management server 20 refers to the database to determine whether or not the IC card list needs to be updated.

4-7. Modification 7
The timing at which the additional information is acquired is not limited to that illustrated in FIG. The list management program 150 may request the management server 20 to update the additional information that satisfies the same conditions as the list update conditions in step S1001, such as those for which a predetermined time has elapsed since the previous update. In this case, the management server 20 transmits additional information in response to a request from the mobile phone 10. According to this configuration, the possibility that the latest additional information can be used is increased.

4-8. Modification 8
The error processing when the additional information cannot be acquired is not limited to that described in the embodiment. If the additional information cannot be acquired, an unauthorized service that is not managed by the management server 20 may be set in the IC card 500. Therefore, in such a case, the management server 20 locks, forcibly resets, or disables the mobile phone 10 (part of its function) by remote control using SMS or the like. May be performed.

4-9. Modification 9
12 and 16-16, the operation of each script has been described separately for the function of the script itself and the API and device driver functions called from the script. However, the distribution of functions is limited to that described in the embodiment. Not. For example, a group of instructions for realizing the function described as the API function in the embodiment may be described in the script body. That is, the script body may have the function. Alternatively, a group of instructions for realizing the function described as the script function in the embodiment may be described in an API, a module, another script, a function, or the like other than the script body. In short, as long as the processing shown in FIGS. 12 and 16-16 is realized by a group of instructions described directly or indirectly in the script body, any division of roles among software may be used.

4-10. Modification 10
The programming language for describing the script is not limited to the Java script. Other object-oriented programming languages such as C ++ and browser content such as Flash may be used. Alternatively, a non-object oriented programming language may be used.

4-11. Modification 11
The location information indicating the location of the script is not limited to the URL. Any information may be used as long as the location of the script can be specified.

4-12. Modification 12
The “IC card” in this paper does not necessarily have a card shape. The “card” is a word symbolizing the function of the IC card 500 and does not specify the shape. The IC card accesses the memory in accordance with an antenna, a memory having a plurality of storage areas in which access restrictions can be individually set, and a signal from the antenna or a signal from the first control means (CPU 102 in the embodiment). As long as it has the second control means (the processor 503 in the embodiment), its shape may be any. Further, the configuration of the storage area of the memory 504 of the IC card 500 is not limited to that shown in FIG. The memory 504 may not have a free area. Alternatively, the memory 504 may have another third area in addition to the free area.

4-13. Modification 13
The hardware configuration of the mobile phone 10 is not limited to that described with reference to FIG. The mobile phone 10 may have any hardware configuration as long as necessary functions can be realized. In particular, when the mobile phone 10 has a multiprocessor (a plurality of processors) as a configuration that enables parallel processing by a plurality of programs, the plurality of processors as a whole corresponds to the “first control means” in this paper. In this case, each processor may execute a different program. For example, the first processor may execute JAM, and the second processor may execute an application program such as a browser. In this example, the first processor that executes JAM functions as “management means”, and the second processor that executes the browser functions as “first application means”. “The first application means sends data to the management means” means that signals are exchanged between the first processor and the second processor.

4-14. Modification 14
The programming language for describing the application program is not limited to Java (registered trademark). Other object-oriented programming languages such as C ++ may be used. Alternatively, a non-object oriented programming language may be used. In addition, the process of installing the application program described in steps S601-602 is merely an example, and the file configuration of the application program and the installation procedure are not limited thereto.

4-15. Modification 15
In the above-described embodiment, the program executed by the CPU 102 includes a magnetic recording medium (magnetic tape, magnetic disk (HDD (Hard Disk Drive), FD (Flexible Disk)), etc.), optical recording medium (optical disk (CD (Compact Disk)). , DVD (Digital Versatile Disk), etc.), magneto-optical recording medium, semiconductor memory (flash ROM, etc.) and the like. The program may be downloaded via a network such as the Internet.

DESCRIPTION OF SYMBOLS 3 ... Hinge, 4 ... Keypad, 5 ... Microphone, 6 ... Speaker, 7 ... Antenna, 8 ... Display device, 10 ... Mobile phone, 20 ... Management server, 30 ... Service server, 40 ... Remote issue server, 50 ... Service Server, 60 ... Service server, 70 ... Network, 102 ... CPU, 103 ... ROM, 104 ... RAM, 105 ... Storage unit, 106 ... Operation unit, 107 ... Display unit, 108 ... Communication unit, 109 ... Bus, 111 ... OS 112 ... Application, 113 ... Application, 114 ... Java execution environment, 115 ... First storage, 116 ... Second storage, 117 ... Class library, 118 ... JVM, 119 ... JAM, 120 ... API group, 121 ... Client software, 122 ... Device driver, 500 ... IC card, 501 ... Antenna, 502 ... IC chip, 503 ... processor, 504 ... memory, 510 ... reader / writer, 601 ... string, 605 ... icon 606 ... icon 607 ... icon 608 ... icon

Claims (6)

A communication means for communicating via a network;
A first application program for executing a specific process, a second application program different from the first application program, and a first management program for managing a script and the second application program Control means,
An antenna, a memory having a plurality of storage areas in which access restrictions can be individually set, the memory is accessed according to a signal from the antenna or a signal from the first control means, and the access result is An IC card function unit having second control means for outputting to one control means;
A memory for storing a list including a first identifier for specifying a storage area set in the memory and a second identifier indicating software accessible to the storage area specified by the first identifier Means and
The second application program is a program for accessing a storage area of the plurality of storage areas;
The script includes a group of instructions for accessing the one storage area,
The first control means executing the first management program functions as a first management means;
The first management means requests the first server connected to the network at the first timing to query the list via the communication means;
The first management means receives a response to the inquiry from the first server;
The mobile terminal characterized in that the first management means updates the list according to the response. The storage means stores additional information used in the script or the second application program in association with a third identifier for specifying a service related to data stored in the storage area;
The storage area stores the third identifier,
The first management means identifies one second identifier to be processed among the second identifiers included in the updated list,
The first management means stores the additional information used in the target software indicated by the first second identifier at the second timing, or is stored in the storage means. Determining based on a third identifier and a third identifier stored in the storage area accessed by the target software;
When it is determined that the additional information used in the target software is not stored in the storage unit, the first management unit sends the second server connected to the network via the communication unit. , Transmitting the third identifier corresponding to the target software,
The first management means receives the additional information transmitted from the second server according to the third identifier via the communication means,
The mobile terminal according to claim 1, wherein the first management unit stores the received additional information in the storage unit. Having display means for displaying information;
The first management program includes a group of instructions for causing display processing to display the contents of the list on the display unit,
The portable terminal according to claim 2, wherein the second timing is a timing at which the start of the display process is instructed. The storage means stores information indicating a time when the inquiry was last performed;
The first timing is a timing at which a condition that a predetermined time has elapsed from a time when the inquiry indicated by the information stored in the storage unit is performed last time is satisfied. The portable terminal as described in any one of Claims 1-3. The communication means receives a message including a command for starting the first management program via the network,
The portable terminal according to any one of claims 1 to 3, wherein the first timing is a timing at which the message is received. A communication means for communicating via a network;
A first application program for executing a specific process, a second application program different from the first application program, and a first management program for managing a script and the second application program Control means,
An antenna, a memory having a plurality of storage areas in which access restrictions can be individually set, the memory is accessed according to a signal from the antenna or a signal from the first control means, and the access result is An IC card function unit having second control means for outputting to one control means;
A memory for storing a list including a first identifier for specifying a storage area set in the memory and a second identifier indicating software accessible to the storage area specified by the first identifier Means,
Have
The second application program is a program for accessing a storage area of the plurality of storage areas;
The script includes a command group for accessing the one storage area.
The first control means requesting the first server connected to the network at a first timing to query the list via the communication means;
The first control means receiving a response to the inquiry from the first server;
A management program for causing the first control means to execute a step of updating the list according to the response.

Images