JP3526287B2 - Portable electronic device and data writing method thereof - Google Patents

Description

Detailed Description of the Invention

[0001]

BACKGROUND OF THE INVENTION The present invention relates to, for example, writing / writing.
An IC (integrated circuit) chip having a rewritable non-volatile memory and a control element such as a CPU is built in, and the non-volatile memory is accessed based on command data supplied from the outside to execute various processes. The present invention relates to a portable electronic device and a data writing method thereof.

[0002]

2. Description of the Related Art In recent years, as a portable electronic device, a rewritable nonvolatile data memory and a CPU (Central Processing Unit) for controlling the rewritable nonvolatile data memory have been provided to input / output data from the outside. I with means
So-called IC cards with built-in C chips have been developed in various industrial fields. Generally, this type of IC card is issued by using an issuing device installed in a card issuing company or the like. In such an issuing device, for example, JP-A-11-
As described in Japanese Patent No. 53480, the instruction data including the instruction code and the accompanying data is created and transmitted to the IC card, and the accompanying data is written in the data memory of the IC card.

[0003]

However, in the case of the prior art as described above, all the data related to manufacturing or issuing is transmitted from the external device to the IC card, so that the data accompanying the manufacturing or issuing of one IC card. There is a problem in that it takes a long time to transmit, and it is not suitable for mass production of IC cards. In addition, there is a possibility that the data relating to manufacturing or issuance may be falsified during transmission to the IC card, resulting in poor security.

The present invention has been made in view of the above points, and it is an object of the present invention to provide a portable electronic device capable of shortening the time required for manufacturing or issuing while maintaining security, and a data writing method thereof. To aim.

[0005]

In order to achieve the above object, a portable electronic device of the present invention comprises a rewritable nonvolatile memory in a portable electronic device that operates based on command data received from the outside. , Non-rewritable fixed memory in which a plurality of application data are stored, and instruction data including instruction information specifying the application data to be written from the outside while instructing the data writing from the fixed memory to the nonvolatile memory When receiving means for receiving and instruction data for instructing data writing by the receiving means, application data designated by designation information in the received instruction data is read from the fixed memory to the nonvolatile memory. And a control unit for controlling writing. In order to achieve the above object, a data writing method of the present invention includes a rewritable non-volatile memory, a non-rewritable fixed memory storing application data and identification information, and a reception for receiving command data from the outside. In the method for writing data in a portable electronic device having means, a receiving step of receiving, by the receiving means, command data instructing data writing from the fixed memory to the nonvolatile memory; Of the identification information stored in the fixed memory and the identification information stored in the fixed memory. If the identification information is determined to match as a result of the determination step, the identification information stored in the fixed memory is stored. Reading the written application data and writing the application data in the nonvolatile memory. In order to achieve the above object, a data writing method of the present invention includes a rewritable nonvolatile memory, a non-rewritable fixed memory that stores a plurality of application data, and a receiving unit that receives command data from the outside. A data writing method in a portable electronic device having: a step of instructing data writing from the fixed memory to the non-volatile memory and receiving instruction data including designation information designating application data to be written; Reading the application data designated by the designation information in the received command data from the fixed memory and writing the application data to the nonvolatile memory.

[0006]

BEST MODE FOR CARRYING OUT THE INVENTION (First Embodiment) A first embodiment according to the present invention will be described in detail below with reference to the drawings. FIG. 2 is a diagram for explaining a system configuration using an IC card 1 (including both contact type and wireless type) and a reader / writer 4 (including both contact type and wireless type) as a portable electronic device according to the present invention. Is.

As shown in FIG. 2, a system using the IC card 1 includes a host computer 3 as a host device having an internal memory (not shown), and a reader / writer as a terminal device connected to the host computer 3. 4 and
It has a display device 5, a keyboard 6, and a printer 7.

The reader / writer 4 has an internal memory and an IC
Reading and writing (sending and receiving) electronic messages to and from the card 1
Is performed by contact or non-contact. The display device 5 informs the operator of the operating procedure and operating state. The keyboard 6 is operated and input by an operator. The printer 7 prints the instructed information according to the operation instruction of the operator.

When the contact type IC card is used, an IC card insertion portion (not shown) for inserting the contact type IC card is provided in the reader / writer 4, and the wireless type I
When the C card is used, the reader / writer 4 and the wireless I
A communication unit (not shown) for communicating with the C card is provided.

FIG. 3 is a diagram schematically showing the functional blocks of the IC card 1 which constitutes the system of FIG. As shown in FIG. 3, the IC card 1 includes a read / write unit (R /
W part) 11, password setting / password collating part 12, encryption /
It is composed of a portion that executes basic functions such as the decoding unit 13 and a supervisor 14 that manages these basic functions.

The R / W unit 11 has a function of reading, writing, or erasing data with respect to a data memory or the like. The PIN setting / PIN collation unit 12 performs a process of storing and reading the personal identification number set by the user and, after setting the personal identification number, collating the personal identification number with a personal identification number input from an external device, and subsequent processing. It has the function of giving permission.

The encryption / decryption unit 13 communicates with the reader / writer 4 via a communication line or by wireless communication.
It has a function of performing encryption and decryption for preventing leakage and forgery of communication data when transmitting / receiving data to / from the C card 1.

The encryption / decryption unit 13 also has a function of performing encryption on the transmission data and decrypting the encrypted data. The supervisor 14 has a function of decoding an instruction code input from the reader / writer 4 or an instruction code added with data and executing this instruction. The encryption / decryption unit 13 constitutes the decryption means of the present invention.

FIG. 4 shows a schematic control block diagram of the IC card 1. As shown in FIG. 4, at least one or more applications can be registered in both the wireless type and the contact type IC card, and in order to execute various functions as shown in FIG. The device 15 includes a data memory 16 serving as various storage units, a program memory 18, a working memory 17, a receiving unit for exchanging signals with the reader / writer 4, and a communication unit 19 serving as an output unit.

In the case of the wireless IC card 1, the communication section 19 is configured as an antenna section so as to receive the modulated wave transmitted from the reader / writer 4 in a non-contact manner or to transmit the modulated wave to the outside. There is. Further, a power supply and a clock for supplying the internal circuit with the modulated wave received by the antenna unit 19 are generated. Contact IC
In the case of the card 1, it is configured as a contact part, and a power source and a clock are obtained by contacting with an IC card terminal part (not shown) provided in the reader / writer 4.

Of these configurations, the control element 15, the data memory 16, the program memory 18, and the working memory 17 are composed of one IC chip (or a plurality of IC chips) 20 and are embedded in the IC card body. There is. The control element 15 is a control unit that performs various types of determination processing / determination processing and data processing such as writing to and reading from a memory.

The program memory 18 is, for example, a mask R.
It is composed of a non-rewritable fixed memory such as an OM, and stores a control program of the control element 15 having a subroutine for realizing each basic function as described above.

Further, the program memory 1 of the present embodiment
In addition to the control program of the control element 15, the reference numeral 8 stores a program number a for identifying a single ROM in an area 181 as shown in FIG. 5, and an area 182 stores data transfer / writing in a nonvolatile memory. The non-volatile memory data b for storing is stored. This non-volatile memory data b
For example, system data c for managing the entire card, and user data including application data A such as a credit function and a debit function are stored.

The data memory 16 is used for storing various data such as application data, and is, for example, EEPR.
It is composed of erasable (rewritable) nonvolatile memory such as OM. As shown in FIG. 6, the data memory 16 of the present embodiment is initialized (formatted), and the file generation / system data c and the application data A are written, so that the system area 161 for storing the system data c. And a user data area 163 for storing the application data A and a file definition data area 162 for storing data for managing the user data area 163.

The working memory 17 is a working memory for temporarily holding processing data when the control element 15 performs processing, and is composed of a volatile memory such as a RAM.

FIG. 7 shows the manufacturing and / or manufacturing of the IC card 1.
It is a figure which shows the structure of the command data which instruct | indicates issuing processing. The command data has a command header 21 including a command code for instructing manufacturing and / or issuing processing, and card individual data 24 including a manufacturing number and the like.

Further, in this embodiment, the command data includes the program number 22 and the key data 23. The program number 22 is identification information for identifying the program memory (ROM) 18 alone which is the target of the manufacturing / issuing process. The key data 23 is used for collation and the like when accessing the data transferred and written from the program memory 18 to the data memory 16, and is used as a security attribute of the data memory 1
It is written in 6. Therefore, in this embodiment, the program number 2 also included in the instruction data
2 is used to encrypt the key data, and the key data is inserted into the command data as encrypted data.

An outline of the manufacturing and / or issuing process of the IC card 1 thus constructed will be described with reference to FIG. As shown in FIG. 8, when the instruction data including the command instructing the manufacturing and / or issuing process is received, the IC
The card 1 stores the nonvolatile memory data b stored in the area 182 of the program memory 18 into the data memory 1
Data is transferred to and written in each of the areas 161, 162, and 163 corresponding to each of the six areas. Then, when the transfer / writing of data from the program memory 18 to the data memory 16 is normally completed, the key data 23 and the card unique data 24 included in the instruction data are written to the data memory 16 and the IC card 1 itself is stored. Manufacturing and / or issuance is complete.

In the present embodiment, as a result of this manufacturing and / or issuing process, the program memory 18 of the IC card 1 is
Therefore, the same data exists in the data memory 16. Then, when the process using this data is executed thereafter, the control element 15 utilizes the data stored in the data memory 16 and changes the data as necessary.

FIG. 1 shows an embodiment of a data writing method of the present invention, in which IC card 1 manufactures and / or issues when command data instructing IC card manufacture and / or issuance processing is received. It is a flowchart figure which shows a process. As shown in FIG. 1, when the instruction data indicating issuance is received (ST11), the control element 15 of the IC card 1 is received.
Retrieves the program number 22 from the instruction data and compares it with the program number a stored in the area 181 of the program memory 18 (ST12).

If the program numbers do not match as a result of the comparison in ST12, it is determined that the command data to the wrong ROM (program memory) has been transmitted, and error processing (transmission of an error response) is executed. Then, a series of processing is stopped (ST14).

If the program numbers match as a result of the comparison in ST12, the control element 15 extracts the encrypted data from the received command data, and the program number 22 (or the program memory 18) also included in the command data. The encrypted data is decrypted using the program number a) stored in (1) and key data is taken out (ST15).

Next, the control element 15 fetches the non-volatile memory data b from the area 182 of the program memory 18, transfers the data to the data memory 16, and non-volatiles the corresponding areas 161, 162, 163 of the data memory 16. Write memory data.

That is, the system data c is taken out from the area 182 and written in the system area 161 of the data memory 16. Next, the application data A is taken out from the area 182 and written into the user data area 163 of the data memory 16 to create a file, and the definition data of this file is written into the file definition data area 162.

When this data transfer / writing is normally completed, the control element 15 further uses the key data 23 decrypted in ST15 as the security attribute of the file of the application data A written in the data memory 16 to the user data of the data memory 16. The area 163 is written, and the definition data is written in the file definition data area 162 (ST16).

When the writing of the key data 23 to the data memory 16 in ST16 is completed normally, the control element 15
Writes the card individual data 24 indicating the manufacturing number and the like included in the received command data to the data memory 16 in the system area 161, and ends the manufacturing and / or issuing processing (ST17). ).

Next, another embodiment of the data writing method shown in FIG. 1 will be described with reference to FIG. FIG. 9 is a flowchart showing another embodiment of the manufacturing and / or issuing process by the IC card 1 when the command data instructing the manufacturing and / or issuing process of the IC card is received.

In another embodiment shown in FIG. 9, as compared with FIG. 1, initialization of the data memory 16 which is a transfer destination before data transfer from the ROM (ST18) and hardware check in the IC chip ( The difference is that the processing of (ST19) is added, but other than that is the same as in FIG.

As shown in FIG. 9, when the instruction data having the same program number is received and the key data 23 is taken out (ST11 to ST15), the data memory 16 of the transfer destination is transferred before the data transfer from the ROM. Initialization (formatting) is executed (ST18). ST
When the initialization of 18 is completed normally, the IC chip 20
A check is performed on various kinds of hardware built in (ST19).

When the data memory 16 is initialized in ST18 and the result of the check in ST19 is that the IC card 1 is in a state in which data can be normally transferred, the program memory 18 transfers the nonvolatile memory data b to the data memory 16. Data transfer / writing (ST16), and writing, manufacturing and / or issuing processing of the card individual data 24 are completed (ST17).

The IC chip 20 in this ST19
Checking various hardware built in is, for example,
There are basic operation confirmation of the control element 15, data memory operation confirmation, work memory operation confirmation, and the like.

In the present embodiment, it is manufactured and / or manufactured from the program memory by an instruction from one instruction data from the outside.
Alternatively, the data associated with the issue is transferred / written to the nonvolatile memory. In another embodiment shown in FIG. 9, the IC card 1 starts from the initialization of the non-volatile memory, checks the hardware in the IC chip, and then performs the program Transfers data from memory from manufacturing and issuing to non-volatile memory /
I am writing.

Therefore, it is possible to instruct the IC card from the outside with one instruction data for the IC card, and the manufacturing and issuing process is executed only within the IC card. This has the effect of keeping security high.

(Second Embodiment) Next, a second embodiment according to the present invention will be described in detail with reference to the drawings with reference to FIGS. 2 to 4 and 6 are the same as those in the first embodiment, the description thereof will be omitted. Also, with respect to the other configurations, the same numbers are given to the same parts as in the first embodiment.

In the second embodiment, the program memory 18 includes the control program of the control element 15 as well as that shown in FIG.
A program number a for identifying a single ROM is stored in the area 181 as shown in FIG. In addition, the area 18
2 stores non-volatile memory data b for data transfer / writing in the non-volatile memory. As the non-volatile memory data b, for example, system data c and a plurality of application data A to E are stored in the areas 184 to 18 respectively.
8 is stored.

The system data c is data that is always transferred / written from the program memory 18 to the data memory 16. The application data A to E are, for example, application data of credit functions corresponding to different credit companies.

Further, in the second embodiment, the command data contains the application identifier 30 as shown in FIG.
Is given. This application identifier 30
Is designation information for designating an application to be issued from a plurality of application data stored in the program data 16.

That is, as shown in FIG. 10, the application identifier 30 is composed of a bit string corresponding to a plurality of application data stored in the program data 16. This bit indicates that the corresponding application is "issued" when the bit is "1", and indicates that the corresponding application is not issued when the bit is "0". As a result, in the second embodiment, the IC card 1 can issue for at least one application and at most five applications.

For example, in the case of FIG. 10, since the application identifier 30 is composed of "10010", the issuance of the application B and the application E is instructed. Therefore, as shown in FIG. 12, the IC card 1 that has received the instruction data including the application identifier displays the system data c stored in the program memory 18, the application B and the application E designated by the application identifier 30. Each corresponding area 161, 16 of the data memory 16
Transfer and write to 2,163. Then, when the transfer / writing of data from the program memory 18 to the data memory 16 is normally completed, the key data 23 and the card unique data 24 included in the instruction data are written in the data memory 16 and the IC card 1 itself is stored. Manufacture and / or issuance is complete.

FIG. 13 shows an IC according to the second embodiment.
It is a flowchart figure which shows the manufacturing and / or issuing process by the IC card 1 when the command data which instruct the manufacturing and / or issuing process of a card are received. The same step numbers are assigned to the same processes as those in the first embodiment.

As shown in FIG. 13, when the instruction data indicating issuance is received (ST11), the control element 15 of the IC card 1 retrieves the program number 22 from the instruction data and stores the program number stored in the program memory 18. It is compared whether or not it matches a (ST12).

If the program numbers do not match as a result of the comparison in ST12, it is determined that the command data to the wrong ROM (program memory) has been transmitted, and error processing (transmission of an error response) is executed. Then, a series of processing is stopped (ST14).

When the program numbers match as a result of the comparison in ST12, the control element 15 extracts the encrypted data from the received command data, and the program number 22 (or the program memory 18) also included in the command data. The encrypted data is decrypted using the program number a) stored in (1) and key data is taken out (ST15).

Next, the control element 15 extracts the application identifier 30 from the received command data and identifies the application instructed to be issued (ST21).
Then, the system data c is fetched from the program memory 18, is written in the system area 161 of the data memory 16, the specified application data (B, E) identified is fetched from the program memory 18, and is written in the user data area 163 of the data memory 16. The management data accompanying the writing of the application data is written in the file definition data area 162 (ST22).

When this data transfer / writing is completed normally, the control element 15 further writes the key data 23 decrypted in ST15 in the file definition data area 162 of the data memory 16 as the security attribute of the file of the issued application data. (ST16).

When the writing of the key data 23 to the data memory 16 in ST16 is completed normally, the control element 15
Writes the card individual data 24 indicating the manufacturing number and the like included in the received command data to the data memory 16 and ends the manufacturing and / or issuing process (ST17).

Next, another embodiment of the data writing method shown in FIG. 13 will be described with reference to FIG. Figure 14 shows the IC
It is a flowchart figure which shows another Example of the manufacture and / or the issuing process by the IC card 1 when the command data which instruct the manufacture and / or the issuing process of a card are received.

In this other embodiment, as compared with FIG. 13, initialization of a data memory as a write destination before writing data from the ROM (ST18) and hardware check processing in the IC chip (ST19). 13 is the same as that shown in FIG. 13 except that it is added, and the same step numbers are given, and the description thereof will be omitted.

As shown in FIG. 14, when the instruction data having the same program number is received and the key data is taken out (ST11 to ST15), before the data is written from the ROM, the data memory 16 which is the writing destination is initialized. (ST18).
When the initialization in ST18 is completed normally, next, various hardware built in the IC chip 20 is checked (ST19).

When the data memory 16 is initialized in ST18 and the result of the check in ST19 is that the IC card 1 is in a state in which data can be written normally, the system data c is identified from the program memory 18 to the data memory 16. The designated application data (B, E) are transferred / written (ST21, ST22), and subsequently the key data 23 and the card individual data 24 are written (ST17).

In the second embodiment, in addition to the effects of the first embodiment, a plurality of application data are stored in advance in the program memory of the IC card, and which application is included in the command data transmitted from the outside. By instructing whether to issue the IC card, it is possible to issue the IC card in which only the designated application is valid.

Therefore, it is possible to store the same data in the program memory of the IC chip, enable only the desired application with one command data at the manufacturing / issuing stage, and easily customize the IC card. Play.

In the first and second embodiments, the non-volatile memory data, the key data, and the card individual data are sequentially written in the non-volatile memory. When the non-volatile memory data is transferred to the memory, it is possible to incorporate the key data and the card individual data into the non-volatile memory data and write them in the data memory at once. Further, even if the writing order is changed, the intention of the present application does not change at all.

[0059]

As described above, according to the present invention,
The time required for manufacturing or issuing can be shortened while maintaining security.

[Brief description of drawings]

FIG. 1 is a flowchart diagram for explaining a data writing method of the present invention and for explaining an issue command process in an IC card 1 according to a portable electronic device of the present invention.

FIG. 2 is a diagram for schematically explaining a system configuration using an IC card 1 and a reader / writer 4.

FIG. 3 is a diagram showing basic functional blocks of the IC card 1.

FIG. 4 is a diagram showing a control block of the IC card 1.

FIG. 5 is a diagram for explaining a configuration of a program memory 18 of the IC card 1.

FIG. 6 is a diagram for explaining a configuration of a data memory 16 of the IC card 1.

FIG. 7 is a diagram showing a configuration of instruction data related to an issuing command of the IC card 1.

FIG. 8 is a diagram conceptually illustrating data transfer accompanying issuance of the IC card 1.

FIG. 9 is a flow chart for explaining another embodiment of the issuing command processing in the IC card 1.

FIG. 10 is a diagram for explaining another configuration of the program memory 18 of the IC card 1.

FIG. 11 is a diagram showing another configuration of instruction data relating to the issuing command of the IC card 1.

FIG. 12 is a diagram conceptually illustrating data transfer accompanying issuance of the IC card 1.

FIG. 13 is a flow chart for explaining another embodiment of the issue command processing in the IC card 1.

FIG. 14 is a flow chart for explaining another embodiment of the issue command processing in the IC card 1.

[Explanation of symbols]

A, B, C, D, E application data a, 22 Program number b Non-volatile memory data c System data 1 IC card 4 Reader / Writer 16 data memory (non-volatile memory) 17 Working memory (RAM) 18 Program memory (ROM) 23 key data 24 card individual data 30 application identifier 161 system area 162 file definition data area 163 User data area

Front page continuation (58) Fields surveyed (Int.Cl. ⁷ , DB name) G06K 17/00 G06K 19/00-19/08 G06F 12/14

Claims (11)

(57) [Claims] 1. In a portable electronic device that operates based on command data received from the outside, a rewritable non-volatile memory, a non-rewritable fixed memory in which a plurality of application data are stored, and the fixed memory Receiving means for instructing data writing to the nonvolatile memory and externally receiving instruction data including designation information for designating application data to be written, and instruction data for instructing data writing are received by the receiving means. And a control means for controlling the application data designated by the designation information in the received command data to be read from the fixed memory and written in the nonvolatile memory. 2. A portable electronic device that operates based on command data received from the outside, wherein a rewritable nonvolatile memory, data relating to the manufacture and / or issuance of the portable electronic device, and the portable electronic device. Alternatively, the non-rewritable fixed memory in which identification information for identifying the fixed memory is stored and the identification information indicating the target portable electronic device or the fixed memory are included. Receiving means for externally receiving instruction data for instructing data writing, and when the instruction data for instructing data writing is received by the receiving means, stored in the fixed memory and identification information in the received instruction data. Determination means for determining whether or not the identification information that has been identified matches the identification information that is determined by this determination means. And when it is determined, a portable electronic apparatus characterized by comprising a control means for controlling to write the data stored in the fixed memory to read the nonvolatile memory. 3. The command data includes key data, and the control means controls to read the data stored in the fixed memory and write the data in the non-volatile memory, and the key in the received command data. A contract characterized by controlling to write data to the non-volatile memory.
The portable electronic device according to claim 1. 4. The control data includes encrypted key data, and has a decryption unit for decrypting the encrypted key data included in the instruction data received by the reception unit. The means controls the data stored in the fixed memory to be read and written to the non-volatile memory, and the key data decrypted by the decryption means to be written to the non-volatile memory.
The portable electronic device according to claim 1 . 5. The command data includes key data encrypted using the identification information, and when the determination means determines that the identification information matches, the encryption data included in the instruction data. Decoding means for decrypting the encrypted key data using the identification information, the control means controls the data stored in the fixed memory to be read and written in the nonvolatile memory, and It is characterized in that the key data decrypted by the decryption means is controlled to be written in the nonvolatile memory.
The portable electronic device according to claim 2 . 6. The command data includes individual information to be written in the portable electronic device, and the control means receives the data according to the write control of the data stored in the fixed memory to the nonvolatile memory. The portable electronic device according to any one of claims 1 to 5 , wherein the individual information in the command data is controlled to be written in the nonvolatile memory. 7. The portable electronic device according to claim 6, wherein the individual information is serial number information. 8. The initialization means executes initialization of the non-volatile memory when the reception means receives instruction data for instructing data writing, and the control means is initialized by the initialization means. of the ends, portable electronic device according to any one of claims 1 to 7, characterized in that controls to write the data stored in the fixed memory to read the nonvolatile memory. 9. When the initialization of the nonvolatile memory by the initialization means is completed, a check means for checking whether the hardware built in the portable electronic device operates normally, and the control means, 9. The portable electronic device according to claim 8, wherein when the check by the checking means is completed normally, the data stored in the fixed memory is read out and written in the nonvolatile memory. 10. Data writing in a portable electronic device having a rewritable non-volatile memory, a non-rewritable fixed memory storing application data and identification information, and receiving means for receiving command data from the outside. In the method, a receiving step of receiving, by the receiving means, command data instructing data writing from the fixed memory to the nonvolatile memory, identification information in the received command data, and storing in the fixed memory. If it is determined that the identification information matches, as a result of this determination step, the application data stored in the fixed memory is read and written to the nonvolatile memory. And a writing step of the portable electronic device. 11. A data writing method in a portable electronic device having a rewritable nonvolatile memory, a non-rewritable fixed memory storing a plurality of application data, and a receiving means for receiving command data from the outside. In the step of instructing data writing from the fixed memory to the non-volatile memory and receiving instruction data including designation information designating application data to be written, and designating by the designation information in the received command data. And writing the stored application data from the fixed memory to the nonvolatile memory.