[go: up one dir, main page]
More Web Proxy on the site http://driver.im/

WO2016168989A1 - Contactless front-end configuration method and terminal - Google Patents

Contactless front-end configuration method and terminal Download PDF

Info

Publication number
WO2016168989A1
WO2016168989A1 PCT/CN2015/077113 CN2015077113W WO2016168989A1 WO 2016168989 A1 WO2016168989 A1 WO 2016168989A1 CN 2015077113 W CN2015077113 W CN 2015077113W WO 2016168989 A1 WO2016168989 A1 WO 2016168989A1
Authority
WO
WIPO (PCT)
Prior art keywords
target
clf
configuration
contactless
mode
Prior art date
Application number
PCT/CN2015/077113
Other languages
French (fr)
Chinese (zh)
Inventor
李国庆
梅敬青
赵晓娜
Original Assignee
华为技术有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 华为技术有限公司 filed Critical 华为技术有限公司
Priority to CN201580035335.XA priority Critical patent/CN106462845B/en
Priority to PCT/CN2015/077113 priority patent/WO2016168989A1/en
Publication of WO2016168989A1 publication Critical patent/WO2016168989A1/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06KGRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
    • G06K7/00Methods or arrangements for sensing record carriers, e.g. for reading patterns
    • G06K7/10Methods or arrangements for sensing record carriers, e.g. for reading patterns by electromagnetic radiation, e.g. optical sensing; by corpuscular radiation
    • G06K7/10009Methods or arrangements for sensing record carriers, e.g. for reading patterns by electromagnetic radiation, e.g. optical sensing; by corpuscular radiation sensing by radiation using wavelengths larger than 0.1 mm, e.g. radio-waves or microwaves
    • G06K7/10198Methods or arrangements for sensing record carriers, e.g. for reading patterns by electromagnetic radiation, e.g. optical sensing; by corpuscular radiation sensing by radiation using wavelengths larger than 0.1 mm, e.g. radio-waves or microwaves setting parameters for the interrogator, e.g. programming parameters and operating modes
    • G06K7/10227Methods or arrangements for sensing record carriers, e.g. for reading patterns by electromagnetic radiation, e.g. optical sensing; by corpuscular radiation sensing by radiation using wavelengths larger than 0.1 mm, e.g. radio-waves or microwaves setting parameters for the interrogator, e.g. programming parameters and operating modes loading programming parameters or programs into the interrogator, e.g. for configuring the interrogator

Definitions

  • the present invention relates to the field of mobile payment technologies, and in particular, to a method and a terminal for configuring a contactless front end.
  • the mobile payment terminal generally includes a security unit (English: Secure Element, SE for short), a non-contact front end (English: Contactless Front-End, CLF for short), an NFC antenna, and the like, and a non-contact application installed in the SE (for example, Software such as payment applications such as virtual bank cards and control interfaces installed in the terminal operating system.
  • SE Secure Element
  • CLF Contactless Front-End
  • the terminal can integrate a management entity (English: Managing Entity, ME for short) for serving multiple SEs and multiple applications.
  • a management entity English: Managing Entity, ME for short
  • the ME has a graphical user interface (English: Graphical User Interface, GUI for short) interface and SE interface, which can receive and process the control commands sent by the user through the GUI, and can receive from The SE message analyzes and processes these messages to configure the CLF so that multiple SEs and multiple payment applications can simultaneously serve users.
  • GUI Graphical User Interface
  • CLF supports contactless communication technologies such as Type A (ISO/IEC 14443A), Type B (ISO/IEC 14443B), and Type F (ISO/IEC 18092). These technologies have different physical layers and link layers, but they are capable of Provide the underlying link for contactless applications.
  • the SE is a non-contact application installation entity that can install contactless applications based on the above three protocols, which have different parameters for the underlying communication protocol. Therefore, when the user activates a contactless application or activates an SE, according to the currently activated SE and the contactless application activated on each SE, it is necessary to perform collision detection by the ME or SE, and the ME compares the target application to be activated. The parameter requirements are in conflict with the parameter requirements of the activated application (already configured to the CLF). If there is a conflict, the conflict needs to be resolved. After the solution, the CLF is configured with the newly calculated parameters.
  • conflict detection and contactless protocols are required when activating a contactless application or SE Parameter calculation.
  • the SE needs to perform N collision detection.
  • the CLF may need to be reconfigured, and the efficiency is low.
  • the embodiment of the invention provides a method and a terminal for configuring a non-contact front end to improve the configuration efficiency of the non-contact front end.
  • a method for configuring a contactless front end CLF comprising:
  • the management entity ME obtains an identifier and a state of the first target security unit SE, the state including an activated state and a deactivated state;
  • the first target SE When the first target SE is in a deactivated state, the first target SE is activated;
  • the ME query saves a first CLF configuration, where the first CLF configuration includes a set of contactless protocol parameters applicable to the first target SE;
  • the ME configures the CLF using the set of contactless protocol parameters.
  • the method before the first target SE is activated, the method further includes: before the first target SE is in a deactivated state, the method further includes: the ME is according to a current non-active state The working mode of the target SE and/or the working mode of the first target SE determines and deactivates the non-target SE that is currently active.
  • the method further includes :
  • the ME queries whether the CLF configuration mode of the non-target SE that is currently in an active state is an ME configuration CLF;
  • the ME If the result of the query is that the ME configures the CLF, the ME generates or updates the second CLF configuration according to all contactless protocol parameters applicable to the CLF of the non-target SE that is currently in the active state.
  • the ME obtains the identifier of the first target SE and Status, including:
  • the ME receives a request to activate a first SE, the request including a target of the first target SE knowledge,
  • the ME receives a request to activate at least one contactless application, and the ME determines that the SE where the at least one contactless application is located is the first target SE and obtains an identifier of the first target SE;
  • the ME queries the status of the first target SE according to the identifier of the first target SE.
  • determining, by the ME according to the working mode of the SE that is currently in an active state and/or the working mode of the first target SE, to deactivate the non-target SE that is currently in an active state including:
  • the ME determines that the working mode of the non-target SE that is currently in an active state is a non-aggregated mode and/or the working mode of the first target SE is a non-aggregated mode, the ME determines to deactivate the current A non-target SE that is active.
  • the method further includes:
  • the ME performs a collision detection and a contactless protocol parameter calculation according to the first target SE, and determines a set of contactless protocol parameters applicable to the first target SE;
  • the ME configures the CLF using a calculated set of contactless protocol parameters.
  • the first or second CLF configuration further includes an identifier of the activated first SE, and the activated first non-contact The identity of the application and the priority of the first contactless application.
  • the method further includes:
  • the ME grants the CLF configuration authority to the first target SE and records the identifier of the first target SE.
  • the method also includes:
  • the ME determines and deactivates a non-target SE that is currently in an active state, and changes an operating mode of the first target SE;
  • the ME configures the CLF using a set of contactless protocol parameters in the queried third CLF configuration.
  • the protocol parameters include:
  • the method further includes:
  • the ME queries that the first target SE is in an active state, or the first target SE is in a deactivated state, and the ME determines that the working mode of the first target SE is an aggregation mode, the ME Querying whether the first contactless application is provided with a quick activation flag;
  • the ME configures the CLF using the first CLF configuration that is queried, and activates the first SE and/or included in the first CLF configuration.
  • the first non-contact application If the first contactless application is provided with the quick activation flag, the ME configures the CLF using the first CLF configuration that is queried, and activates the first SE and/or included in the first CLF configuration. The first non-contact application.
  • the second aspect provides a terminal, where the terminal includes: a management entity ME, a contactless front end CLF, and a first security unit SE, where the ME includes:
  • a first acquiring unit configured to obtain an identifier and a state of the first target security unit SE, where the state includes an activated state and a deactivated state;
  • a first activation unit configured to activate the first target SE
  • a first query unit configured to query whether a first CLF configuration is saved, where the first CLF configuration includes a set of contactless protocol parameters applicable to the first target SE;
  • a first configuration unit configured to configure the CLF by using the set of non-contact protocol parameters if the first CLF configuration is queried.
  • the ME further includes:
  • a first determining unit configured to: when the first target SE is in a deactivated state, according to an operating mode of the non-target SE currently in an activated state and/or an operating mode of the first target SE;
  • the first activation unit is further configured to deactivate the non-target SE that is currently in an active state.
  • the ME further includes:
  • a second query unit configured to query whether the CLF configuration mode of the non-target SE that is currently in an active state is an ME configuration CLF;
  • the first acquiring unit includes:
  • a receiving unit configured to receive a request to activate the first SE, where the request includes an identifier of the first target SE
  • the receiving unit is further configured to receive a request to activate at least one contactless application
  • a second determining unit configured to determine that the SE where the at least one non-contact application is located is the first Target SE
  • a second acquiring unit configured to obtain an identifier of the first target SE
  • the third query unit is configured to query the status of the first target SE according to the identifier of the first target SE.
  • the first determining unit includes:
  • a third determining unit configured to determine an operating mode of the non-target SE that is currently in an active state
  • a fourth determining unit configured to determine an operating mode of the first target SE according to a service policy and/or an attribute of the first target SE
  • a fifth determining unit configured to determine to deactivate the current if the working mode of the non-target SE that is currently in an active state is determined to be a non-aggregating mode and/or the working mode of the first target SE is a non-aggregating mode A non-target SE that is active.
  • the ME further includes:
  • a sixth determining unit configured to determine a set of non-contact protocol parameters applicable to the first target SE according to the first target SE performing collision detection and contactless protocol parameter calculation if the first CLF configuration is not queried;
  • a second configuration unit configured to configure the CLF using the calculated set of non-contact protocol parameters.
  • the first or second CLF configuration further includes an identifier of the activated first SE, and the activated first non-contact The identity of the application and the priority of the first contactless application.
  • the ME further includes:
  • a seventh determining unit configured to determine a CLF configuration manner of the first target SE
  • a granting unit configured to grant a CLF configuration right to the first target SE if the CLF configuration mode of the first target SE is a non-ME configuration CLF;
  • a recording unit configured to record an identifier of the first target SE.
  • the ME also includes:
  • An eighth determining unit configured to: when the first target SE is in an active state, determine to deactivate a non-target SE that is currently in an active state;
  • a second activation unit configured to deactivate a non-target SE that is currently in an active state
  • a change unit configured to change an operation mode of the first target SE
  • a fourth query unit configured to query whether a third CLF configuration is saved
  • a third configuration unit configured to configure the CLF by using a set of non-contact protocol parameters in the queried third CLF configuration, if the third CLF configuration is queried.
  • the ME further includes:
  • a ninth determining unit configured to determine that the first target SE included in the first/third CLF configuration is available.
  • the ME further includes:
  • a fourth query unit configured to: if it is found that the first target SE is in an activated state, or the first target SE is in a deactivated state, and the ME determines that the working mode of the first target SE is Aggregating mode, querying whether the first contactless application is provided with a quick activation flag;
  • a fourth configuration unit configured to configure the CLF by using the first CLF configuration that is queried if the first non-contact application is configured with the quick activation flag
  • a third activation unit configured to activate the first SE and/or the first contactless application included in the first CLF configuration.
  • a third aspect provides a terminal, where the terminal includes: a memory, a processor, a contactless front end CLF, and at least one security unit SE, where the processor is configured to perform the following steps:
  • the first target SE When the first target SE is in a deactivated state, the first target SE is activated;
  • the CLF is configured using the set of contactless protocol parameters.
  • the processor is configured to perform the step of activating the first target SE when the first target SE is in a deactivated state, and is further configured to perform the following steps: Determining and deactivating the currently active non-target SE by the operating mode of the SE currently active and/or the operating mode of the first target SE
  • the second CLF configuration is generated or updated according to all contactless protocol parameters applicable to the CLF of the non-target SE that is currently active, so that the processor activates the second CLF configuration again. Used when the first SE is applied.
  • the processor is configured to perform the obtaining the first The steps of the identity of the target SE and its status, including:
  • a fourth possible implementation manner the step of determining, by the processor, the deactivating the non-target SE that is currently in an active state according to the working mode of the SE that is currently in an active state and/or the working mode of the first target SE, including:
  • Determining to deactivate the currently active non-target SE if it is determined that the working mode of the non-target SE currently in an active state is a non-aggregated mode and/or the working mode of the first target SE is a non-aggregating mode .
  • the processor is further configured to perform the following steps:
  • the first CLF configuration If the first CLF configuration is not queried, perform collision detection and contactless protocol parameter calculation according to the first target SE, and determine a set of non-contact protocol parameters applicable to the first target SE;
  • the CLF is configured using a calculated set of contactless protocol parameters.
  • the first or second CLF configuration further includes an identifier of the activated first SE, and the activated first non-contact The identity of the application and the priority of the first contactless application.
  • the processor is further configured to perform the following steps:
  • the CLF configuration authority is granted to the first target SE and the identifier of the first target SE is recorded.
  • the processor is also used to perform the following steps:
  • the CLF is configured using a set of contactless protocol parameters in the queried third CLF configuration.
  • the processor is further configured to perform the following steps:
  • the first CLF configuration configures the CLF and activates the first SE and/or the first contactless application included in the first CLF configuration.
  • a method and a terminal for configuring a contactless front end when the management entity determines that one or more target security units on the terminal are in a deactivated state, the management entity may query and save the applicable one for the one. Or the non-contact front-end configuration of the plurality of target security units, and configuring the non-contact front-end using a set of non-contact protocol parameters in the contactless front-end configuration, without conflict detection and non-contact protocol parameter calculation, greatly improving The efficiency of the configuration of the contactless front end.
  • FIG. 1 is a schematic diagram of an interface and a function of a management entity
  • FIG. 2 is a schematic flowchart of a method for configuring a contactless front end according to an embodiment of the present invention
  • FIG. 3 is a schematic flowchart diagram of another method for configuring a contactless front end according to an embodiment of the present disclosure
  • FIG. 4 is a schematic structural diagram of a terminal according to an embodiment of the present disclosure.
  • FIG. 5 is a schematic structural diagram of a management entity in another terminal according to an embodiment of the present disclosure.
  • FIG. 6 is a schematic structural diagram of still another terminal according to an embodiment of the present invention.
  • the terminal in the embodiment of the present invention refers to a terminal having an NFC payment function, such as an NFC mobile phone, an NFC tablet, an NFC watch, or the like.
  • the terminal can be connected to one or more SEs, and one SE can be installed.
  • SE refers to a tamper-proof operating environment, usually a secure microcontroller chip. The chip can safely store and run applications, save application-related keys, certificates and other data without being tampered with and illegally accessed, and the chip can also save confidential data access rules.
  • SE is a concept in the specification developed by the Global Platform International Standards Organization (GP).
  • SE is related to CEE (Card Emulation Environment) and can refer to each other; SE can also communicate with the near field communication execution environment ( English: NFC Execution Environment, referred to as: NFCEE), HCI host and other concepts refer to each other.
  • NFCEE is a term used in the NCI specification developed by the NFC Forum; the HCI host refers to the universal integrated circuit card in the HCI specification developed by the European Telecommunication Standards Institute (ETSI).
  • UICC Universal Integrated Circuit Card
  • eSE Embedded Secure Element
  • eSE Secure Digital Memory Card
  • Host Host .
  • CLF refers to a physical module in the terminal, which is used for analog signal processing and transmission protocol processing of near field communication. Through this module, the card reader can exchange data with the SE on the terminal.
  • the CLF is a concept in the relevant specifications developed by ETSI, which is equivalent to the NFC Controller (NFC Controller) in the specifications developed by the NFC Forum.
  • Contactless Application (English: Contactless Application, CL App for short) generally refers to an application installed in the SE and can be exchanged with a card reader using the contactless interface provided by CLF, for example, a universal integrated circuit card installed in a mobile phone. :Universal Integrated Circuit Card, referred to as: UICC)
  • the bus card application and electronic cash card application in SE are non-contact applications.
  • Contactless applications are concepts defined in the specifications developed by the GP and are also referred to as NFC services in the relevant specifications developed by the NFC Forum.
  • the ME of the embodiment of the present invention has two working modes: an Aggregated mode and a Non-Aggregated mode:
  • the ME aggregation mode is a working mode when the ME manages multiple SEs.
  • users can select multiple applications installed on multiple SEs to activate and use these services at the same time. Users cannot perceive these services from Multiple SEs.
  • multiple SEs can be activated simultaneously in this mode, and applications on different SEs can be activated simultaneously.
  • the ME needs to configure the CLF based on all activated contactless applications.
  • the non-aggregation mode of the ME is another mode of operation when the ME manages multiple SEs.
  • the user can only select a group of applications from the same SE and activate.
  • more in this mode The SEs cannot be activated at the same time, only one SE can be activated, and only the applications on the activated SE can be selected, activated, and served by the user.
  • the CLF can only be configured by the ME. In this mode, only the ME entity can collect the Contactless Protocol Parameter requirements from multiple SEs. In Non-Aggregated mode, since only one SE can be activated, the CLF can be configured by the ME or configured by the SE.
  • the aggregation mode and the non-aggregation mode are for both ME and SE.
  • the SE can be divided according to whether the interface with the ME is supported. If the SE supports the interface with the ME, the SE can work in both the aggregated and non-aggregated modes, and the SE can send a request to the ME through the interface with the ME, and the work is required to be specific. In the mode, the SE that does not support the ME interface cannot use the conflict detection function of the ME. It can only work in the non-aggregation mode and configure the CLF by itself.
  • the working mode of the active SE is consistent with the working mode of the ME.
  • the management entity ME in the present invention is an entity for multiple SEs and contactless application management on the same terminal.
  • the ME can be run on the terminal controller DH (Device Host), and the DH is responsible for the entire Management of equipment, including management of NFC controllers, such as initialization, configuration or power management.
  • the main controller DH can correspond to the CPU of the mobile phone;
  • DH is a term used in the NCI specification developed by the NFC Forum, and can correspond to the HCI developed by the European Telecommunication Standards Institute (ETSI).
  • the terminal host in the specification (Terminal Host); in addition, the management entity (ME, Managing Entity) in the specification developed by the Global Platform International Standards Organization (GP) can also be called DH if it is implemented on the Terminal Host.
  • Management Host (MH, Managing Host)
  • the ME can also operate on the Near Field Communication Controller NFCC (NFC Controller), which is the entity responsible for data transmission of the NFC chip, and is usually used directly to refer to the NFC chip.
  • NFC Controller Near Field Communication Controller
  • the NFCC is a term used in the NCI specification developed by the NFC Forum to correspond to the Contactless Front-end (CLF, Contactless Front-end) in the HCI specification developed by the European Telecommunication Standards Institute (ETSI).
  • ETSI European Telecommunication Standards Institute
  • the ME may even run in the Secure Element SE (Secure Element).
  • the management entity may query for protection.
  • a non-contact front-end configuration applicable to the one or more target security units configured by using a set of non-contact protocol parameters in the contactless front-end configuration, without conflict detection and contactless protocol parameters The calculation greatly improves the configuration efficiency of the non-contact front end.
  • FIG. 2 is a schematic flowchart of a method for configuring a contactless front end according to an embodiment of the present invention. The method includes the following steps:
  • Step S101 the management entity ME obtains the identifier and status of the first target security unit SE, and the status includes an activated state and a deactivated state.
  • the ME obtains the identifier of the first target SE, and the ME may receive the request for activating one or more SEs from the GUI interface, and the SE corresponding to the SE identifier included in the request is the target SE to be activated, that is, the target SE; After receiving the request for activating the one or more contactless applications, the ME obtains the identifier of the SE where the one or more contactless applications are located, and the SE corresponding to the SE identifier is the target SE; the ME can use the target SE The identity of the query is queried to the status of the target SE.
  • Step S102 When the first target SE is in a deactivated state, the first target SE is activated.
  • the non-target SE needs to be deactivated before the first target SE is activated.
  • the specific scenario of deactivating a non-target SE that is currently active is as follows:
  • the ME needs to determine to deactivate the currently active SE according to the working mode of the SE currently in the active state or the working mode of the target SE, and activate the target SE.
  • the SE in the active state is in the non-aggregation mode
  • the CLF configuration mode is the ME configuration CLF or the non-ME configuration CLF
  • the target SE is required to work in the aggregation mode
  • the CLF configuration mode is the ME configuration CLF.
  • the non-aggregated mode only one SE can be activated, and the target SE is in a deactivated state.
  • the currently active SE is not the same SE as the target SE.
  • Another scenario is that the target SE is required to work in the non-aggregation mode regardless of the working mode and the CLF configuration mode of the currently active SE, and the CLF configuration mode is configured for the ME by the CLF, because the target SE works in the non-aggregated mode and It is deactivated and does not allow other SEs to be activated at the same time as this target SE, so it is necessary to deactivate the SE that is currently active.
  • Step S103 the ME queries whether a first CLF configuration is saved, and the first CLF configuration includes a set of contactless protocol parameters applicable to the first target SE.
  • the terminal pre-stores the configuration of the CLF in a specific scenario, and the CLF configurations may be saved as a CLF profile, where the CLF configuration includes one or more SE identifiers activated in a specific scenario, and one or more activated ones.
  • the target SE when the target SE is configured for CLF, it is queried whether the CLF configuration including the target SE identifier is saved. If the ME receives the request to activate the contactless application, the ME queries the CLF configuration to query whether the target SE identifier and the identifier of the contactless application to be activated are included in the CLF configuration. Since the saved CLF configuration including the target SE identifier may be more than one, when selecting the saved CLF configuration, the CLF configuration is required to include the target SE identifier, and the SE identifiers other than the target SE identifier are included as little as possible.
  • Step S104 If the first CLF configuration is queried, the ME configures the CLF by using the set of non-contact protocol parameters.
  • the ME configures the CLF using the set of non-contact protocol parameters in the saved CLF configuration, and does not need to perform conflict detection and non-contact protocol parameter calculation, and directly configures to the CLF, which greatly improves the non-contact front end. Configuration efficiency.
  • the management entity when the management entity determines that one or more target security units on the terminal are in a deactivated state, the management entity may query the saved ones for the one or more targets.
  • the non-contact front-end configuration of the security unit configures the non-contact front end by using a set of non-contact protocol parameters in the contactless front-end configuration, without conflict detection and non-contact protocol parameter calculation, which greatly improves the non-contact front end. Configuration efficiency.
  • FIG. 3 is a schematic flowchart of another method for configuring a non-contact front end according to an embodiment of the present invention. The method includes the following steps:
  • Step S201 the ME receives a request to activate at least one contactless application, and the ME determines at least one The SE where the contactless application is located is the first target SE and obtains the identifier of the first target SE.
  • the contactless application has a unique application identifier (English: Application Identifier, AID for short).
  • the ME receives an activation request of the contactless application through the GUI interface, and the request carries the AID.
  • the contactless application to be activated here may be one or more.
  • the ME queries the target SE where the contactless application AID is located, and the plurality of contactless applications may be located on one target SE or on multiple target SEs.
  • Step S202 The ME queries whether the first target SE is in an active state according to the identifier of the first target SE. If not, the process goes to step S203; if yes, the process goes to step S212 or S215.
  • the ME queries the activation state of the target SE, and performs different processing according to the activation state of the target SE.
  • step S203 the ME determines whether the working mode of the first target SE is the non-aggregation mode. If yes, the process goes to step S204; otherwise, the process goes to step S212.
  • the ME When the ME queries that the target SE is in the deactivated state, the ME further determines the working mode of the target SE.
  • the ME may determine the working mode of the target SE according to the service policy and/or the attributes of the target SE:
  • Service strategies can include:
  • the ME works in a non-aggregated mode corresponding to activating a single SE, which can reduce the impact of other SEs on the target SE;
  • the attributes of the target SE including:
  • the target SE only supports the non-aggregation mode, and the CLF is configured by the SE;
  • the target SE only supports the non-aggregation mode, and the CLF can be configured by the ME;
  • the target SE supports both aggregation and non-aggregation modes, and the ME can be configured using the ME.
  • scenario A The target SE only supports the non-aggregation mode, and the working mode of the SE or the ME can be determined according to the attribute. It should be noted that the working mode of the SE in the activated state is consistent with the working mode of the ME; scenario B: The service policy is that the most required SEs work at the same time. If the SE supports aggregation or non-aggregation, the ME determines that the ME and the SE should work in the aggregation mode.
  • scenario C The service policy requires that an application on one SE be used as much as possible. The SE supports aggregation and non-aggregation. Polymerization, then ME and SE should work in non-polymerization Combined mode.
  • Different processing is performed depending on whether the working mode of the target SE is an aggregation mode or a non-aggregation mode.
  • Step S204 If the ME determines that the working mode of the non-target SE that is currently in the active state is the non-aggregation mode and/or the working mode of the first target SE is the non-aggregation mode, the ME determines to deactivate the non-target SE that is currently in the active state.
  • the ME can query the working mode of the SE that is currently active. This step is the same as step S102 of the foregoing embodiment, and details are not described herein again.
  • Step S205 If the ME queries the CLF configuration mode of the non-target SE that is currently in the active state to configure the CLF for the ME, the ME generates or updates the second according to all non-contact protocol parameters applicable to the CLF of the non-target SE that is currently in the active state. CLF configuration.
  • the ME Before deactivating a non-target SE that is currently active, if the ME queries that the CLF configuration mode of the non-target SE that is currently active is the ME configuration CLF, the ME is used according to the CLF applicable to the non-target SE that is currently active. All of the contactless protocol parameters generate or update the second CLF configuration, ie, if the second CLF configuration does not exist, generate a second CLF configuration according to all contactless protocol parameters applicable to the CLF of the non-target SE that is currently active. If the second CLF configuration already exists, the corresponding configuration parameters in the second CLF configuration are updated according to all contactless protocol parameters applicable to the CLF of the non-target SE that is currently active. This can be used directly when activating the first SE to which this CLF configuration applies.
  • the saved CLF configuration includes an identifier of one or more SEs currently activated, one or more contactless application identifiers currently activated, priorities of these contactless applications, and usage of CLF configurations according to these SEs and contactless applications.
  • a set of contactless protocol parameters is a set of contactless protocol parameters.
  • step S206 the ME queries whether the first target SE uses the ME to configure the CLF, and if yes, proceeds to step S207; otherwise, proceeds to step S211.
  • the CEF configuration mode of the target SE may be two, that is, the ME configuration CLF or the non-ME configuration CLF, and the non-ME configuration CLF generally refers to the configuration by the SE. CLF.
  • CLF There are two different ways of processing depending on the configuration of the target SE's CLF.
  • step S207 the ME queries whether the first CLF configuration is saved. If yes, the process goes to step S208; otherwise, the process goes to step S213.
  • Step S208 the ME determines that the first target SE included in the first CLF configuration is available.
  • the ME may query that there are multiple CLF configurations that contain the target SE identifier.
  • the ME selects the saved CLF configuration, the ME includes the least SE identifiers other than the target SE identifier. Then, the ME needs to determine that each SE included in the CLF configuration to be used is available, and can be activated.
  • step S209 the ME configures the CLF using a set of non-contact protocol parameters.
  • Steps S207 and S209 are the same as steps S103 and S104 of the foregoing embodiment, and details are not described herein again.
  • Step S210 the ME activates the first SE and the first contactless application included in the first CLF configuration.
  • each SE included in the CLF configuration After the ME determines that each SE included in the CLF configuration is available, configure the CLF by using the non-contact protocol parameters in the CLF configuration, and activate all SEs included in the CLF configuration, or if all SEs included in the CLF configuration are activated, Then activate the contactless application that requested activation.
  • Step S211 the ME grants the CLF configuration authority to the first target SE and records the identifier of the first SE.
  • the ME queries the target SE to use the non-ME configuration CLF, that is, the SE configures the CLF
  • the ME grants the CLF configuration authority to the target SE, performs the CLF configuration by the SE itself, and records the identity of the target SE.
  • step S212 the ME queries whether the first contactless application is provided with a quick activation flag, and if yes, proceeds to step S213; otherwise, proceeds to step S210.
  • the ME finds that the target SE is in the active state, or the target SE is in the deactivated state, and the ME determines that the working mode of the target SE is the aggregation mode, the ME queries whether the contactless application to be activated is set to be activated quickly. Marking, that is, for the scenario in which the target SE is in an active state, there is no need to deactivate the target SE. For the scenario in which the working mode of the target SE is the aggregation mode, the target SE can coexist with the SE currently in the active state, then the non-contact can be considered. The application and/or target SE performs a quick activation. Of course, if the non-contact application does not set the quick activation flag, then go to step S213, and the ME performs regular collision detection and non-contact protocol parameter calculation on the target SE.
  • the non-contact application When a certain condition is met, the non-contact application is quickly activated, and the CLF configuration is configured by using the saved CLF configuration, which can further improve the CLF configuration efficiency.
  • Step S213 the ME performs conflict detection and contactless protocol parameter calculation according to the first target SE, and determines a set of contactless protocol parameters applicable to the first target SE.
  • step S214 the ME configures the CLF using the calculated set of non-contact protocol parameters.
  • the ME performs collision detection and contactless protocol parameter calculation according to the target SE and the application to be activated, and the conflict detection refers to activating the AID of the application on the target SE. Whether it conflicts or conflicts with the AID of the currently activated application, and whether the protocol parameters conflict; the contactless protocol parameter calculation refers to a set of contactless protocol parameters calculated by the ME for all SEs and contactless applications currently activated. .
  • the CLF is configured using the set of non-contact protocol parameters.
  • the ME determines and deactivates the non-target SE that is currently in the active state, and changes the working mode of the first target SE.
  • the ME queries the target SE to be in an active state in step S202, but the ME receives a request to change the working mode of the target SE (for example, the aggregation mode is changed to the non-aggregation mode), at this time, the SE in the active state may be more than the target. SE, then the ME deactivates the non-target SE that is currently active.
  • Step S216 If the ME queries to save the third CLF configuration, the ME configures the CLF by using a set of non-contact protocol parameters in the queried third CLF configuration.
  • the third CLF configuration is a CLF configuration suitable for the target SE.
  • the ME query saves the CLF configuration including the target SE, and uses a set of non-contact protocol parameter configurations in the queried CLF configuration. CLF, you can quickly configure the CLF.
  • the CLF configuration mode is the ME configuration CLF
  • the target SE working mode is the non-aggregation mode
  • the CLF configuration mode is the non-ME configuration CLF, or, the current The active mode of the SE is in the non-aggregation mode.
  • the CLF configuration mode is that the ME is configured with the CLF, and the target SE is in the non-aggregation mode.
  • the CLF configuration mode is the non-ME configuration CLF, or the saved CLF configuration. To configure the CLF.
  • a method for configuring a contactless front end according to an active mode of a non-target SE and a target SE currently in an active state, and a CLF configuration manner thereof, when it is determined that the non-target security currently in an active state needs to be deactivated
  • the unit is configured, and the CLF can be configured by using the saved non-contact front-end configuration applicable to the target SE, the non-contact front end is configured by a set of non-contact protocol parameters in the non-contact front-end configuration, and no conflict detection and contactless protocol is required. Parameter calculation can greatly improve the configuration efficiency of the non-contact front end.
  • the terminal for implementing the configuration method of the non-contact front end provided by the embodiment of the present invention is described in detail below with reference to FIG. 4-6.
  • FIG. 4 is a schematic structural diagram of a terminal according to an embodiment of the present invention.
  • the terminal 1000 includes a management entity ME11, a security unit SE12 and a non-contact front end CLF13 respectively connected to the ME11, and the SE12 is connected to the CLF13.
  • the ME11 includes:
  • the first obtaining unit 111 is configured to obtain an identifier and a state of the first target security unit SE, where the state includes an activated state and a deactivated state.
  • the first obtaining unit 111 obtains the identifier of the first target SE, and the ME may receive a request to activate one or more SEs from the GUI interface, and the SE corresponding to the SE identifier included in the request is the SE to be activated, that is, the target SE;
  • the ME may obtain the identifier of the SE where the one or more non-contact applications are located after the ME receives the request for activating the one or more non-contact applications, and the SE corresponding to the SE identifier is the target SE;
  • Unit 111 may query the status of the target SE using the identity of the target SE.
  • the first activation unit 112 is configured to activate the first target SE.
  • the non-target SE in the active state may not be present on the terminal, or may have the non-target SE in the active state. At this time, before the activation of the first target SE, it is necessary to deactivate the non-target SE.
  • Target SE The specific scenario of deactivating a non-target SE that is currently active is as follows:
  • the SE in the active state is in the non-aggregation mode
  • the CLF configuration mode is the ME configuration CLF or the non-ME configuration CLF
  • the target SE is required to work in the aggregation mode
  • the CLF configuration mode is the ME configuration CLF.
  • the non-aggregated mode only one SE can be activated, and the target SE is in a deactivated state.
  • the currently active SE is not the same SE as the target SE.
  • the first activation unit 112 needs to deactivate the SE that is currently in the active state.
  • Another scenario is that the target SE is required to work in the non-aggregation mode regardless of the working mode and the CLF configuration mode of the currently active SE, and the CLF configuration mode is configured for the ME by the CLF, because the target SE works in the non-aggregated mode and In the deactivated state, other SEs are not allowed to be activated simultaneously with this target SE, so the first activation unit 113 needs to deactivate the SE that is currently active.
  • the first query unit 113 is configured to query whether a first CLF configuration is saved, and the first CLF configuration includes a set of contactless protocol parameters applicable to the first target SE.
  • the terminal pre-stores the configuration of the CLF in a specific scenario, and the CLF configurations may be saved as a CLF profile, where the CLF configuration includes one or more SE identifiers activated in a specific scenario, and one or more activated ones.
  • the first query unit 114 queries whether the CLF configuration including the target SE identifier is saved. If the ME receives the request to activate the contactless application, the ME queries the CLF configuration to query whether the target SE identifier and the identifier of the contactless application to be activated are included in the CLF configuration. Since the saved CLF configuration including the target SE identifier may be more than one, when selecting the saved CLF configuration, the CLF configuration is required to include the target SE identifier, and the SE identifiers other than the target SE identifier are included as little as possible.
  • the first configuration unit 114 is configured to configure the CLF by using the set of non-contact protocol parameters if the first CLF configuration is queried.
  • the first configuration unit 115 configures the CLF using the set of non-contact protocol parameters in the saved CLF configuration, and does not need to perform conflict detection and non-contact protocol parameter calculation, and directly configures to the CLF, which greatly improves the configuration. The efficiency of the configuration of the contactless front end.
  • the management entity when the management entity determines that one or more target security units on the terminal are in a deactivated state, the management entity may query the saved non-contact applicable to the one or more target security units.
  • the front-end configuration configures the non-contact front end by using a set of non-contact protocol parameters in the contactless front-end configuration, and does not need to perform collision detection and non-contact protocol parameter calculation, thereby greatly improving the configuration efficiency of the non-contact front end.
  • FIG. 5 is a schematic structural diagram of a management entity in another terminal according to an embodiment of the present invention.
  • the terminal also includes a management entity ME21, a security unit SE connected to the ME21, and a non-contact front end CLF, and the SE and the CLF. connection.
  • the management entity 21 includes:
  • the first obtaining unit 211 is configured to obtain an identifier and a state of the first target security unit SE, where the state includes an activated state and a deactivated state.
  • the first obtaining unit 211 includes a receiving unit 2111 and a second determining unit 2112.
  • the receiving unit 2111 is configured to receive a request to activate at least one contactless application.
  • the contactless application has a unique application identifier (English: Application Identifier, AID for short).
  • the receiving unit 2111 receives an activation request of the contactless application through the GUI interface, and the request carries the AID.
  • the contactless application to be activated here may be one or more.
  • the second determining unit 2112 is configured to determine that the SE where the at least one non-contact application is located is the target SE.
  • the second obtaining unit 2113 is configured to obtain an identifier of the target SE.
  • the second determining unit 2112 determines the target SE where the contactless application AID is located, and the plurality of contactless applications may be located on one target SE or may be located on multiple target SEs.
  • the third query unit 2114 is configured to query the status of the first target SE according to the identifier of the first target SE.
  • the third query unit 2114 queries the activation state of the target SE, and performs different processing according to the activation state of the target SE.
  • the receiving unit 2111 is further configured to receive a request to activate the first SE, where the request includes an identifier of the first target SE.
  • the receiving unit 2111 directly connects to the third query unit 2114.
  • the first determining unit 212 is configured to: when the first target SE is in a deactivated state, determine to deactivate the current according to an operating mode of the SE currently in an activated state and/or an operating mode of the first target SE A non-target SE that is active.
  • the first determining unit 212 includes a third determining unit 2121, a fourth determining unit 2122, and a fifth determining unit 2123.
  • the third determining unit 2121 is configured to determine an operating mode of the non-target SE that is currently in an active state.
  • the ME can query the working mode of the SE that is currently active.
  • the fourth determining unit 2122 is configured to determine an operating mode of the first target SE according to the service policy and/or the attribute of the first target SE.
  • the fourth determining unit 2122 further determines the working mode of the target SE.
  • the fourth determining unit 2122 may determine the target SE according to the service policy and/or the attribute of the target SE. Operating mode:
  • Service strategies can include:
  • the ME works in a non-aggregated mode corresponding to activating a single SE, which can reduce the impact of other SEs on the target SE;
  • the attributes of the target SE including:
  • the target SE only supports the non-aggregation mode, and the CLF is configured by the SE;
  • the target SE only supports the non-aggregation mode, and the CLF can be configured by the ME;
  • the target SE supports both aggregation and non-aggregation modes, and the ME can be configured using the ME.
  • scenario A The target SE only supports the non-aggregation mode, and the working mode of the SE or the ME can be determined according to the attribute. It should be noted that the working mode of the SE in the activated state is consistent with the working mode of the ME; scenario B: The service policy is that the most required SEs work at the same time. If the SE supports aggregation or non-aggregation, the ME determines that the ME and the SE should work in the aggregation mode.
  • scenario C The service policy requires that an application on one SE be used as much as possible. The SE supports aggregation and non-aggregation. For aggregation, ME and SE should work in non-aggregate mode.
  • Different processing is performed depending on whether the working mode of the target SE is an aggregation mode or a non-aggregation mode.
  • a fifth determining unit 2123 configured to: if it is determined that the working mode of the non-target SE that is currently in an active state is a non-aggregating mode and/or the working mode of the first target SE is a non-aggregating mode, determining to deactivate the A non-target SE that is currently active.
  • the first activation unit 213 is configured to deactivate the non-target SE that is currently in an active state, and activate the first target SE.
  • the first query unit 214 is configured to query whether a first CLF configuration is saved, and the first CLF configuration includes a set of contactless protocol parameters applicable to the first target SE.
  • the first query unit 214 queries that there may be multiple CLF configurations that contain the target SE identifier.
  • the ME selects the saved CLF configuration, the ME includes the least SE identifiers other than the target SE identifier.
  • the ninth determining unit 215 is configured to determine that the first target SE included in the first/third CLF configuration is available.
  • the ninth determining unit 215 needs to determine that each SE included in the CLF configuration to be used is available, that is, can be activated.
  • the first configuration unit 216 is configured to configure the CLF by using the set of non-contact protocol parameters if the first CLF configuration is queried.
  • the first configuration unit 216 performs CLF configuration on the target SE. After the ME determines that each SE included in the CLF configuration is available, configure the CLF by using the non-contact protocol parameters in the CLF configuration, and activate all SEs included in the CLF configuration, or if all SEs included in the CLF configuration are activated, Then activate the contactless application that requested activation.
  • the ME query saves the CLF configuration including the target SE, and uses a set of non-contact protocol parameter configurations in the queried CLF configuration. CLF, you can quickly configure the CLF.
  • the fourth query unit 217 is configured to: if the ME queries that the first target SE is in an activated state, or the first target SE is in a deactivated state, and the ME determines an operating mode of the first target SE In the aggregation mode, it is queried whether the first contactless application is provided with a quick activation flag.
  • the fourth configuration unit 218 is configured to configure the CLF by using the queried first CLF configuration if the first contactless application is configured with the quick activation flag.
  • the third activation unit 219 is configured to activate the first SE and/or the first contactless application included in the first CLF configuration.
  • the ME queries whether the contactless application to be activated is set with the quick activation flag, that is, The target SE is in an active state, and the target SE does not need to be activated.
  • the target SE can coexist with the currently active SE, then the contactless application and/or The target SE performs a quick activation.
  • the ME performs regular collision detection and contactless protocol parameter calculation on the target SE.
  • the non-contact application When a certain condition is met, the non-contact application is quickly activated, and the CLF configuration is configured by using the saved CLF configuration, which can further improve the CLF configuration efficiency.
  • the second query unit 220 is configured to query whether the CLF configuration mode of the non-target SE that is currently in an active state is an ME configuration CLF.
  • the generating or updating unit 221 is configured to: if the result of the query is a CLF configured by the ME, generate or update the second CLF configuration according to all the contactless protocol parameters used by the current CLF, so that the ME activates the second again. Used when the first SE is applied to the CLF configuration.
  • the ME Before deactivating the non-target SE that is currently in the active state, if the ME queries the CLF configuration mode of the non-target SE that is currently active, the ME configures the CLF, and the ME generates or updates according to all the non-contact protocol parameters used by the current CLF.
  • the second CLF configuration that is, if the second CLF configuration does not exist, the second CLF configuration is generated according to all the non-contact protocol parameters used by the current CLF; if the second CLF configuration already exists, all the non-contact protocol parameters used by the current CLF are updated. Corresponding configuration parameters in the second CLF configuration. This can be used directly when activating the first SE to which this CLF configuration applies.
  • the saved CLF configuration includes an identifier of one or more SEs currently activated, one or more contactless application identifiers currently activated, priorities of these contactless applications, and usage of CLF configurations according to these SEs and contactless applications.
  • a set of contactless protocol parameters is a set of contactless protocol parameters.
  • the seventh determining unit 222 is configured to determine a CLF configuration manner of the first target SE.
  • the granting unit 223 is configured to grant the CLF configuration authority to the first target SE if the CLF configuration mode of the first target SE is a non-ME configuration CLF.
  • the recording unit 224 is configured to record the identifier of the first target SE.
  • the CEF configuration mode of the target SE may be two, that is, the ME configuration CLF or the non-ME configuration CLF, and the non-ME configuration CLF generally refers to the CLF configured by the SE. There are two different ways of processing depending on the configuration of the target SE's CLF.
  • the ME queries the target SE to use the non-ME configuration CLF, that is, the SE configures the CLF
  • the ME grants the CLF configuration authority to the target SE, performs the CLF configuration by the SE itself, and records the identity of the target SE.
  • the eighth determining unit 225 is configured to determine to deactivate the non-target SE that is currently in an active state when the first target SE is in an active state.
  • the second activation unit 226 is configured to deactivate the non-target SE that is currently in an active state.
  • the changing unit 227 is configured to change the working mode of the first target SE.
  • the fourth query unit 228 is configured to query whether a third CLF configuration is saved.
  • the third configuration unit 229 is configured to configure the CLF by using a set of non-contact protocol parameters in the queried third CLF configuration if the third CLF configuration is queried.
  • the ME If the ME queries that the target SE is in the active state, but the ME receives a request to change the working mode of the target SE (for example, the aggregation mode is changed to the non-aggregation mode), at this time, the SE in the active state may be more than the target SE, then the ME Deactivate the non-target SE that is currently active.
  • the sixth determining unit 230 is configured to: if the first CLF configuration is not queried, perform conflict detection and contactless protocol parameter calculation according to the first target SE, and determine a set of non-contact protocol parameters applicable to the first target SE. ;
  • the second configuration unit 231 is configured to configure the CLF using the calculated set of non-contact protocol parameters.
  • the ME performs collision detection and contactless protocol parameter calculation according to the target SE and the application to be activated, and the conflict detection refers to whether the AID of the application on the target SE is activated or not Whether there is a conflict with the AID of the currently activated application, and whether the protocol parameters conflict;
  • the contactless protocol parameter calculation refers to a set of contactless protocol parameters calculated by the ME suitable for all currently activated SE and contactless applications.
  • the CLF is configured using the set of non-contact protocol parameters.
  • the CLF configuration mode is the ME configuration CLF
  • the target SE working mode is the non-aggregation mode
  • the CLF configuration mode is the non-ME configuration CLF, or, the current The active mode of the SE is in the non-aggregation mode.
  • the CLF configuration mode is that the ME is configured with the CLF, and the target SE is in the non-aggregation mode.
  • the CLF configuration mode is the non-ME configuration CLF, or the saved CLF configuration. To configure the CLF.
  • a terminal is configured to deactivate a non-target security unit that is currently in an active state according to an active mode of a non-target SE and a target SE that is currently in an active state and a CLF configuration manner thereof, and may
  • the CLF is configured by using the saved non-contact front-end configuration for the target SE
  • the non-contact front end is configured by using a set of non-contact protocol parameters in the non-contact front-end configuration, and the conflict detection and non-contact protocol parameter calculation are not required, and the CLF can be extremely The earth improves the efficiency of the configuration of the non-contact front end.
  • FIG. 6 is a schematic structural diagram of still another terminal according to an embodiment of the present invention.
  • the terminal 3000 includes a memory 31, a processor 32, a security unit SE33, and a non-contact front end CLF34.
  • the processor 32 is respectively connected to the memory 31 and the security unit.
  • the SE33 is connected to the non-contact front end CLF34.
  • the processor 32 can be DH or NFCC, or even a microprocessor internal to the SE.
  • the processor 32 is configured to perform the following steps:
  • the first target SE When the first target SE is in a deactivated state, the first target SE is activated;
  • the CLF is configured using the set of contactless protocol parameters.
  • the processor 32 is configured to perform the following steps before the step of activating the first target SE when the first target SE is in a deactivated state:
  • the non-target SE that is currently active is determined and deactivated according to an operating mode of the non-target SE currently in an active state and/or an operating mode of the first target SE.
  • the processor 32 is configured to perform the following steps before the performing the using the set of contactless protocol parameters to configure the CLF:
  • the second CLF configuration is generated or updated according to all contactless protocol parameters applicable to the CLF of the non-target SE that is currently active, so that the processor activates the second CLF configuration again. Used when the first SE is applied.
  • the processor 32 is configured to perform the step of obtaining the identifier of the first target SE and its status, including:
  • the processor 32 is configured to perform the deactivating the currently active state according to an operating mode of an SE that is currently in an active state and/or an operating mode of the first target SE.
  • Non-target SE including:
  • Determining to deactivate the currently active non-target SE if it is determined that the working mode of the non-target SE currently in an active state is a non-aggregated mode and/or the working mode of the first target SE is a non-aggregating mode .
  • processor 32 is further configured to perform the following steps:
  • the first CLF configuration is not queried, determining, according to the first target SE, a collision detection and a contactless protocol parameter calculation, determining a set of contactless protocol parameters applicable to the first target SE;
  • the CLF is configured using a calculated set of contactless protocol parameters.
  • the first or second CLF configuration further includes an identifier of the activated first SE, an identifier of the activated first contactless application, and a priority of the first contactless application.
  • processor 32 is further configured to perform the following steps:
  • the CLF configuration authority is granted to the first target SE and the identifier of the first target SE is recorded.
  • processor 32 is further configured to perform the following steps:
  • the CLF is configured using a set of contactless protocol parameters in the queried third CLF configuration.
  • the processor 32 is configured to perform the step of whether the query saves the first/third CLF configuration, and the processor is configured to perform the first using the query Before the step of configuring the CLF by a set of non-contact protocol parameters in the third CLF configuration, the following steps are also performed:
  • processor 32 is further configured to perform the following steps:
  • the first non-contact application Querying whether the first non-contact application is queried if the first target SE is in an activated state, or the first target SE is in a deactivated state, and it is determined that the working mode of the first target SE is an aggregation mode Set with a quick activation tag;
  • the first CLF configuration configures the CLF and activates the first SE and/or the first contactless application included in the first CLF configuration.
  • the saved non-target SE may be used.
  • the front-end configuration is configured to configure the CLF
  • the non-contact front end is configured by using a set of non-contact protocol parameters in the non-contact front-end configuration, and collision detection and non-contact protocol parameter calculation are not required, which can greatly improve the configuration efficiency of the non-contact front end.
  • Computer readable media includes both computer storage media and communication media including any medium that facilitates transfer of a computer program from one location to another.
  • a storage medium may be any available media that can be accessed by a computer.
  • the computer readable medium may include a random access memory (RAM), a read-only memory (ROM), and an electrically erasable programmable read-only memory (Electrically Erasable Programmable).
  • EEPROM Electrically Error Read-Only Memory
  • CD-ROM Compact Disc Read-Only Memory
  • Any connection may suitably be a computer readable medium.
  • the software uses coaxial cable, fiber optic cable, twisted pair, Digital Subscriber Line (DSL), or wireless such as infrared, radio, and microwave Where technology is transmitted from a website, server or other remote source, then coaxial cable, fiber optic cable, twisted pair, DSL or wireless technologies such as infrared, wireless and microwave are included in the fixing of the associated medium.
  • DSL Digital Subscriber Line
  • a disk and a disc include a compact disc (CD), a laser disc, a compact disc, a digital versatile disc (DVD), a floppy disk, and a Blu-ray disc, wherein the disc is usually magnetically copied, and the disc is The laser is used to optically replicate the data. Combinations of the above should also be included within the scope of the computer readable media.

Landscapes

  • Engineering & Computer Science (AREA)
  • Health & Medical Sciences (AREA)
  • Toxicology (AREA)
  • Physics & Mathematics (AREA)
  • Software Systems (AREA)
  • Electromagnetism (AREA)
  • General Health & Medical Sciences (AREA)
  • Artificial Intelligence (AREA)
  • Computer Vision & Pattern Recognition (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

A contactless front-end (CLF) configuration method and terminal. When a managing entity (ME) determines that one or more target secure elements (SE) on a terminal are in a deactivated state, the ME queries a stored CLF configuration applicable to the one or more target SEs, and configures the CLF by utilizing a set of contactless protocol parameters in the found CLF configuration without performing conflict detection and contactless protocol parameter calculation, thus greatly improving efficiency of CLF configuration.

Description

一种非接触前端的配置方法及终端Non-contact front end configuration method and terminal 技术领域Technical field
本发明涉及移动支付技术领域,尤其涉及一种非接触前端的配置方法及终端。The present invention relates to the field of mobile payment technologies, and in particular, to a method and a terminal for configuring a contactless front end.
背景技术Background technique
近年来,基于近距离无线通信(英文:Near Field Communication,简称:NFC)技术的移动支付逐渐普及,支持NFC的移动支付终端通过NFC接口与读卡器(如,商场中部署的非接触POS机)通信完成支付交易。移动支付终端一般包括安全单元(英文:Secure Element,简称:SE)、非接触前端(英文:Contactless Front-End,简称:CLF)、NFC天线等硬件,以及安装在SE中的非接触应用(例如,虚拟银行卡等支付应用)和安装到终端操作系统中的控制界面等软件。随着移动支付产业的发展,市场上逐渐出现了支持多个SE的终端,此时多个SE以及每个SE中的多个应用的管理比单个SE场景更加复杂。为了管理这种多SE场景下的支付行为,终端可集成用于为多SE和多应用服务的管理实体(英文:Managing Entity,简称:ME)。如图1所示为ME接口及功能示意图,ME有图形用户界面(英文:Graphical User Interface,简称:GUI)接口和SE接口,既可以接收和处理用户通过GUI发送的控制命令,又可以接收来自SE的消息,对这些消息进行分析和处理后对CLF进行配置,以便多SE和多个支付应用可同时为用户服务。In recent years, mobile payment based on Near Field Communication (NFC) technology has become popular, and NFC-enabled mobile payment terminals use NFC interfaces and card readers (for example, non-contact POS machines deployed in shopping malls). ) The communication completes the payment transaction. The mobile payment terminal generally includes a security unit (English: Secure Element, SE for short), a non-contact front end (English: Contactless Front-End, CLF for short), an NFC antenna, and the like, and a non-contact application installed in the SE (for example, Software such as payment applications such as virtual bank cards and control interfaces installed in the terminal operating system. With the development of the mobile payment industry, terminals supporting multiple SEs have emerged in the market, and management of multiple SEs and multiple applications in each SE is more complicated than a single SE scenario. In order to manage the payment behavior in such a multi-SE scenario, the terminal can integrate a management entity (English: Managing Entity, ME for short) for serving multiple SEs and multiple applications. As shown in Figure 1, the ME interface and function diagram, the ME has a graphical user interface (English: Graphical User Interface, GUI for short) interface and SE interface, which can receive and process the control commands sent by the user through the GUI, and can receive from The SE message analyzes and processes these messages to configure the CLF so that multiple SEs and multiple payment applications can simultaneously serve users.
CLF支持Type A(ISO/IEC 14443A)、Type B(ISO/IEC 14443B)和Type F(ISO/IEC 18092)等非接触通信技术,这些技术的物理层和链路层各有不同,但都能够为非接触应用提供底层链路。SE是非接触应用安装的实体,可以安装基于上述三种协议的非接触应用,这些应用对底层通信协议的参数需求不尽相同。因此,当用户激活一个非接触应用或激活一个SE时,根据当前已经激活的SE以及每个SE上已经激活的非接触应用,需要由ME或SE执行冲突检测,以及ME比较要激活的目标应用的参数需求与已经激活的应用的参数需求(已经配置到了CLF)是否有冲突,如果有冲突还需要冲突解决,解决之后用新计算出的参数来配置CLF。CLF supports contactless communication technologies such as Type A (ISO/IEC 14443A), Type B (ISO/IEC 14443B), and Type F (ISO/IEC 18092). These technologies have different physical layers and link layers, but they are capable of Provide the underlying link for contactless applications. The SE is a non-contact application installation entity that can install contactless applications based on the above three protocols, which have different parameters for the underlying communication protocol. Therefore, when the user activates a contactless application or activates an SE, according to the currently activated SE and the contactless application activated on each SE, it is necessary to perform collision detection by the ME or SE, and the ME compares the target application to be activated. The parameter requirements are in conflict with the parameter requirements of the activated application (already configured to the CLF). If there is a conflict, the conflict needs to be resolved. After the solution, the CLF is configured with the newly calculated parameters.
依据现有技术,激活非接触应用或SE时需要进行冲突检测和非接触协议 参数计算,激活N个应用时SE需要进行N次冲突检测,根据冲突检测结果,可能需要重配置CLF,效率较低。According to the prior art, conflict detection and contactless protocols are required when activating a contactless application or SE Parameter calculation. When N applications are activated, the SE needs to perform N collision detection. According to the conflict detection result, the CLF may need to be reconfigured, and the efficiency is low.
发明内容Summary of the invention
本发明实施例提供了一种非接触前端的配置方法及终端,以提高非接触前端的配置效率。The embodiment of the invention provides a method and a terminal for configuring a non-contact front end to improve the configuration efficiency of the non-contact front end.
第一方面,提供了一种非接触前端CLF的配置方法,所述方法包括:In a first aspect, a method for configuring a contactless front end CLF is provided, the method comprising:
管理实体ME获得第一目标安全单元SE的标识及状态,所述状态包括激活状态和去激活状态;The management entity ME obtains an identifier and a state of the first target security unit SE, the state including an activated state and a deactivated state;
当所述第一目标SE是去激活状态时,激活所述第一目标SE;When the first target SE is in a deactivated state, the first target SE is activated;
所述ME查询是否保存有第一CLF配置,所述第一CLF配置包括适用于所述第一目标SE的一组非接触协议参数;Whether the ME query saves a first CLF configuration, where the first CLF configuration includes a set of contactless protocol parameters applicable to the first target SE;
若查询到所述第一CLF配置,则所述ME使用所述一组非接触协议参数配置所述CLF。If the first CLF configuration is queried, the ME configures the CLF using the set of contactless protocol parameters.
在第一种可能的实现方式中,所述当所述第一目标SE是去激活状态时,激活所述第一目标SE之前,所述方法还包括:所述ME根据当前处于激活状态的非目标SE的工作模式和/或所述第一目标SE的工作模式,确定并去激活所述当前处于激活状态的非目标SE。In a first possible implementation manner, before the first target SE is activated, the method further includes: before the first target SE is in a deactivated state, the method further includes: the ME is according to a current non-active state The working mode of the target SE and/or the working mode of the first target SE determines and deactivates the non-target SE that is currently active.
结合第一方面或第一方面的第一种可能的实现方式,在第二种可能的实现方式中,所述ME使用所述一组非接触协议参数配置所述CLF之前,所述方法还包括:With reference to the first aspect or the first possible implementation manner of the first aspect, in a second possible implementation manner, before the ME configures the CLF by using the set of non-contact protocol parameters, the method further includes :
所述ME查询所述当前处于激活状态的非目标SE的CLF配置方式是否为ME配置CLF;The ME queries whether the CLF configuration mode of the non-target SE that is currently in an active state is an ME configuration CLF;
若查询的结果为ME配置CLF,则所述ME根据适用于所述当前处于激活状态的非目标SE的CLF使用的全部非接触协议参数生成或更新第二CLF配置。If the result of the query is that the ME configures the CLF, the ME generates or updates the second CLF configuration according to all contactless protocol parameters applicable to the CLF of the non-target SE that is currently in the active state.
结合第一方面或第一方面的第一种可能的实现方式或第一方面的第二种可能的实现方式,在第三种可能的实现方式中,所述ME获得第一目标SE的标识及状态,包括:With reference to the first aspect, or the first possible implementation manner of the first aspect, or the second possible implementation manner of the first aspect, in a third possible implementation manner, the ME obtains the identifier of the first target SE and Status, including:
所述ME接收激活第一SE的请求,所述请求包括所述第一目标SE的标 识,The ME receives a request to activate a first SE, the request including a target of the first target SE knowledge,
或者所述ME接收激活至少一个非接触应用的请求,所述ME确定所述至少一个非接触应用所在的SE为所述第一目标SE并获得所述第一目标SE的标识;Or the ME receives a request to activate at least one contactless application, and the ME determines that the SE where the at least one contactless application is located is the first target SE and obtains an identifier of the first target SE;
所述ME根据所述第一目标SE的标识,查询所述第一目标SE的状态。The ME queries the status of the first target SE according to the identifier of the first target SE.
结合第一方面或第一方面的第一种可能的实现方式或第一方面的第二种可能的实现方式或第一方面的第三种可能的实现方式,在第四种可能的实现方式中,所述ME根据当前处于激活状态的SE的工作模式和/或所述第一目标SE的工作模式,确定去激活所述当前处于激活状态的非目标SE,包括:In conjunction with the first aspect or the first possible implementation of the first aspect or the second possible implementation of the first aspect or the third possible implementation of the first aspect, in a fourth possible implementation And determining, by the ME according to the working mode of the SE that is currently in an active state and/or the working mode of the first target SE, to deactivate the non-target SE that is currently in an active state, including:
所述ME确定所述当前处于激活状态的非目标SE的工作模式;Determining, by the ME, an operating mode of the non-target SE that is currently in an active state;
所述ME根据服务策略和/或所述第一目标SE的属性,确定所述第一目标SE的工作模式;Determining, by the ME, an operating mode of the first target SE according to a service policy and/or an attribute of the first target SE;
若所述ME确定所述当前处于激活状态的非目标SE的工作模式为非聚合模式和/或所述第一目标SE的工作模式为非聚合模式,则所述ME确定去激活所述当前处于激活状态的非目标SE。If the ME determines that the working mode of the non-target SE that is currently in an active state is a non-aggregated mode and/or the working mode of the first target SE is a non-aggregated mode, the ME determines to deactivate the current A non-target SE that is active.
结合第一方面或第一方面的第一种可能的实现方式或第一方面的第二种可能的实现方式或第一方面的第三种可能的实现方式或第一方面的第四种可能的实现方式,在第五种可能的实现方式中,所述方法还包括:Combining the first aspect or the first possible implementation of the first aspect or the second possible implementation of the first aspect or the third possible implementation of the first aspect or the fourth possible implementation of the first aspect In a fifth possible implementation manner, the method further includes:
若未查询到所述第一CLF配置,所述ME根据所述第一目标SE执行冲突检测和非接触协议参数计算,确定适用于第一目标SE的一组非接触协议参数;If the first CLF configuration is not queried, the ME performs a collision detection and a contactless protocol parameter calculation according to the first target SE, and determines a set of contactless protocol parameters applicable to the first target SE;
所述ME使用计算出的一组非接触协议参数配置所述CLF。The ME configures the CLF using a calculated set of contactless protocol parameters.
结合第一方面或第一方面的第一种可能的实现方式或第一方面的第二种可能的实现方式或第一方面的第三种可能的实现方式或第一方面的第四种可能的实现方式或第一方面的第五种可能的实现方式,在第六种可能的实现方式中,所述第一或第二CLF配置还包括激活的第一SE的标识、激活的第一非接触应用的标识和所述第一非接触应用的优先级。Combining the first aspect or the first possible implementation of the first aspect or the second possible implementation of the first aspect or the third possible implementation of the first aspect or the fourth possible implementation of the first aspect The implementation manner or the fifth possible implementation manner of the first aspect, in the sixth possible implementation manner, the first or second CLF configuration further includes an identifier of the activated first SE, and the activated first non-contact The identity of the application and the priority of the first contactless application.
结合第一方面或第一方面的第一种可能的实现方式或第一方面的第二种可能的实现方式或第一方面的第三种可能的实现方式或第一方面的第四种可能的实现方式或第一方面的第五种可能的实现方式或第一方面的第六种可能的实现方式,在第七种可能的实现方式中,所述方法还包括: Combining the first aspect or the first possible implementation of the first aspect or the second possible implementation of the first aspect or the third possible implementation of the first aspect or the fourth possible implementation of the first aspect The implementation may be the fifth possible implementation of the first aspect or the sixth possible implementation of the first aspect. In a seventh possible implementation, the method further includes:
所述ME确定所述第一目标SE的CLF配置方式;Determining, by the ME, a CLF configuration manner of the first target SE;
若所述第一目标SE的CLF配置方式为非ME配置CLF,则所述ME将CLF配置权限授予所述第一目标SE并记录所述第一目标SE的标识。If the CLF configuration mode of the first target SE is a non-ME configuration CLF, the ME grants the CLF configuration authority to the first target SE and records the identifier of the first target SE.
结合第一方面或第一方面的第一种可能的实现方式或第一方面的第二种可能的实现方式或第一方面的第三种可能的实现方式或第一方面的第四种可能的实现方式或第一方面的第五种可能的实现方式或第一方面的第六种可能的实现方式或第一方面的第七种可能的实现方式,在第八种可能的实现方式中,所述方法还包括:Combining the first aspect or the first possible implementation of the first aspect or the second possible implementation of the first aspect or the third possible implementation of the first aspect or the fourth possible implementation of the first aspect The implementation of the fifth possible implementation of the first aspect or the sixth possible implementation of the first aspect or the seventh possible implementation of the first aspect, in an eighth possible implementation manner, The method also includes:
当所述第一目标SE处于激活状态时,所述ME确定并去激活当前处于激活状态的非目标SE,并变更所述第一目标SE的工作模式;When the first target SE is in an active state, the ME determines and deactivates a non-target SE that is currently in an active state, and changes an operating mode of the first target SE;
所述ME查询是否保存有第三CLF配置;Whether the ME query saves a third CLF configuration;
若查询到所述第三CLF配置,则所述ME使用所述查询到的第三CLF配置中的一组非接触协议参数配置所述CLF。If the third CLF configuration is queried, the ME configures the CLF using a set of contactless protocol parameters in the queried third CLF configuration.
结合第一方面或第一方面的第一种可能的实现方式或第一方面的第二种可能的实现方式或第一方面的第三种可能的实现方式或第一方面的第四种可能的实现方式或第一方面的第五种可能的实现方式或第一方面的第六种可能的实现方式或第一方面的第七种可能的实现方式或第一方面的第八种可能的实现方式,在第九种可能的实现方式中,所述ME查询是否保存有第一/第三CLF配置之后,以及所述ME使用所述查询到的第一/第三CLF配置中的一组非接触协议参数配置所述CLF之前,还包括:Combining the first aspect or the first possible implementation of the first aspect or the second possible implementation of the first aspect or the third possible implementation of the first aspect or the fourth possible implementation of the first aspect Implementation or a fifth possible implementation of the first aspect or a sixth possible implementation of the first aspect or a seventh possible implementation of the first aspect or an eighth possible implementation of the first aspect In a ninth possible implementation manner, after the ME query saves the first/third CLF configuration, and the ME uses a set of non-contact in the first/third CLF configuration that is queried Before configuring the CLF, the protocol parameters include:
确定所述第一/第三CLF配置中包括的第一目标SE可用。It is determined that the first target SE included in the first/third CLF configuration is available.
结合第一方面或第一方面的第一种可能的实现方式或第一方面的第二种可能的实现方式或第一方面的第三种可能的实现方式或第一方面的第四种可能的实现方式或第一方面的第五种可能的实现方式或第一方面的第六种可能的实现方式或第一方面的第七种可能的实现方式或第一方面的第八种可能的实现方式或第一方面的第九种可能的实现方式,在第十种可能的实现方式中,所述方法还包括:Combining the first aspect or the first possible implementation of the first aspect or the second possible implementation of the first aspect or the third possible implementation of the first aspect or the fourth possible implementation of the first aspect Implementation or a fifth possible implementation of the first aspect or a sixth possible implementation of the first aspect or a seventh possible implementation of the first aspect or an eighth possible implementation of the first aspect Or the ninth possible implementation manner of the first aspect, in the tenth possible implementation manner, the method further includes:
若所述ME查询到所述第一目标SE处于激活状态,或所述第一目标SE处于去激活状态,且所述ME确定所述第一目标SE的工作模式为聚合模式,则所述ME查询所述第一非接触应用是否设置有快速激活标记; If the ME queries that the first target SE is in an active state, or the first target SE is in a deactivated state, and the ME determines that the working mode of the first target SE is an aggregation mode, the ME Querying whether the first contactless application is provided with a quick activation flag;
若所述第一非接触应用设置有所述快速激活标记,所述ME使用查询到的所述第一CLF配置配置所述CLF,并激活所述第一CLF配置包含的第一SE和/或第一非接触应用。If the first contactless application is provided with the quick activation flag, the ME configures the CLF using the first CLF configuration that is queried, and activates the first SE and/or included in the first CLF configuration. The first non-contact application.
第二方面,提供了一种终端,所述终端包括:管理实体ME、非接触前端CLF和第一安全单元SE,所述ME包括:The second aspect provides a terminal, where the terminal includes: a management entity ME, a contactless front end CLF, and a first security unit SE, where the ME includes:
第一获取单元,用于获得第一目标安全单元SE的标识及状态,所述状态包括激活状态和去激活状态;a first acquiring unit, configured to obtain an identifier and a state of the first target security unit SE, where the state includes an activated state and a deactivated state;
第一激活单元,用于激活所述第一目标SE;a first activation unit, configured to activate the first target SE;
第一查询单元,用于查询是否保存有第一CLF配置,所述第一CLF配置包括适用于所述第一目标SE的一组非接触协议参数;a first query unit, configured to query whether a first CLF configuration is saved, where the first CLF configuration includes a set of contactless protocol parameters applicable to the first target SE;
第一配置单元,用于若查询到所述第一CLF配置,则使用所述一组非接触协议参数配置所述CLF。And a first configuration unit, configured to configure the CLF by using the set of non-contact protocol parameters if the first CLF configuration is queried.
在第一种可能的实现方式中,所述ME还包括:In a first possible implementation manner, the ME further includes:
第一确定单元,用于当所述第一目标SE是去激活状态时,根据当前处于激活状态的非目标SE的工作模式和/或所述第一目标SE的工作模式;a first determining unit, configured to: when the first target SE is in a deactivated state, according to an operating mode of the non-target SE currently in an activated state and/or an operating mode of the first target SE;
所述第一激活单元还用于去激活所述当前处于激活状态的非目标SE。The first activation unit is further configured to deactivate the non-target SE that is currently in an active state.
结合第二方面或第二方面的第一种可能的实现方式,在第二种可能的实现方式中,所述ME还包括:With reference to the second aspect or the first possible implementation manner of the second aspect, in a second possible implementation manner, the ME further includes:
第二查询单元,用于查询所述当前处于激活状态的非目标SE的CLF配置方式是否为ME配置CLF;a second query unit, configured to query whether the CLF configuration mode of the non-target SE that is currently in an active state is an ME configuration CLF;
生成或更新单元,用于若查询的结果为ME配置CLF,则根据适用于所述当前处于激活状态的非目标SE的CLF使用的全部非接触协议参数生成或更新第二CLF配置。Generating or updating a unit for generating or updating a second CLF configuration according to all contactless protocol parameters applicable to the CLF of the non-target SE currently in an active state if the result of the query is a CLF configured by the ME.
结合第二方面或第二方面的第一种可能的实现方式或第二方面的第二种可能的实现方式,在第三种可能的实现方式中,所述第一获取单元包括:With reference to the second aspect, the first possible implementation of the second aspect, or the second possible implementation of the second aspect, in a third possible implementation, the first acquiring unit includes:
接收单元,用于接收激活第一SE的请求,所述请求包括所述第一目标SE的标识,a receiving unit, configured to receive a request to activate the first SE, where the request includes an identifier of the first target SE,
或者所述接收单元还用于接收激活至少一个非接触应用的请求;Or the receiving unit is further configured to receive a request to activate at least one contactless application;
第二确定单元,用于确定所述至少一个非接触应用所在的SE为所述第一 目标SE;a second determining unit, configured to determine that the SE where the at least one non-contact application is located is the first Target SE;
第二获取单元,用于获得所述第一目标SE的标识;a second acquiring unit, configured to obtain an identifier of the first target SE;
第三查询单元,用于根据所述第一目标SE的标识,查询所述第一目标SE的状态。The third query unit is configured to query the status of the first target SE according to the identifier of the first target SE.
结合第二方面或第二方面的第一种可能的实现方式或第二方面的第二种可能的实现方式或第二方面的第三种可能的实现方式,在第四种可能的实现方式中,所述第一确定单元包括:With reference to the second aspect or the first possible implementation of the second aspect or the second possible implementation of the second aspect or the third possible implementation of the second aspect, in a fourth possible implementation manner The first determining unit includes:
第三确定单元,用于确定所述当前处于激活状态的非目标SE的工作模式;a third determining unit, configured to determine an operating mode of the non-target SE that is currently in an active state;
第四确定单元,用于根据服务策略和/或所述第一目标SE的属性,确定所述第一目标SE的工作模式;a fourth determining unit, configured to determine an operating mode of the first target SE according to a service policy and/or an attribute of the first target SE;
第五确定单元,用于若确定所述当前处于激活状态的非目标SE的工作模式为非聚合模式和/或所述第一目标SE的工作模式为非聚合模式,则确定去激活所述当前处于激活状态的非目标SE。a fifth determining unit, configured to determine to deactivate the current if the working mode of the non-target SE that is currently in an active state is determined to be a non-aggregating mode and/or the working mode of the first target SE is a non-aggregating mode A non-target SE that is active.
结合第二方面或第二方面的第一种可能的实现方式或第二方面的第二种可能的实现方式或第二方面的第三种可能的实现方式或第二方面的第四种可能的实现方式,在第五种可能的实现方式中,所述ME还包括:Combining the second aspect or the first possible implementation of the second aspect or the second possible implementation of the second aspect or the third possible implementation of the second aspect or the fourth possible implementation of the second aspect In an implementation manner, in a fifth possible implementation manner, the ME further includes:
第六确定单元,用于若未查询到所述第一CLF配置,根据所述第一目标SE执行冲突检测和非接触协议参数计算,确定适用于第一目标SE的一组非接触协议参数;a sixth determining unit, configured to determine a set of non-contact protocol parameters applicable to the first target SE according to the first target SE performing collision detection and contactless protocol parameter calculation if the first CLF configuration is not queried;
第二配置单元,用于使用计算出的一组非接触协议参数配置所述CLF。And a second configuration unit, configured to configure the CLF using the calculated set of non-contact protocol parameters.
结合第二方面或第二方面的第一种可能的实现方式或第二方面的第二种可能的实现方式或第二方面的第三种可能的实现方式或第二方面的第四种可能的实现方式或第二方面的第五种可能的实现方式,在第六种可能的实现方式中,所述第一或第二CLF配置还包括激活的第一SE的标识、激活的第一非接触应用的标识和所述第一非接触应用的优先级。Combining the second aspect or the first possible implementation of the second aspect or the second possible implementation of the second aspect or the third possible implementation of the second aspect or the fourth possible implementation of the second aspect The implementation manner or the fifth possible implementation manner of the second aspect, in the sixth possible implementation manner, the first or second CLF configuration further includes an identifier of the activated first SE, and the activated first non-contact The identity of the application and the priority of the first contactless application.
结合第二方面或第二方面的第一种可能的实现方式或第二方面的第二种可能的实现方式或第二方面的第三种可能的实现方式或第二方面的第四种可能的实现方式或第二方面的第五种可能的实现方式或第二方面的第六种可能的实现方式,在第七种可能的实现方式中,所述ME还包括:Combining the second aspect or the first possible implementation of the second aspect or the second possible implementation of the second aspect or the third possible implementation of the second aspect or the fourth possible implementation of the second aspect The fifth possible implementation manner of the second aspect or the sixth possible implementation manner of the second aspect, in a seventh possible implementation manner, the ME further includes:
第七确定单元,用于确定所述第一目标SE的CLF配置方式; a seventh determining unit, configured to determine a CLF configuration manner of the first target SE;
授予单元,用于若所述第一目标SE的CLF配置方式为非ME配置CLF,则将CLF配置权限授予所述第一目标SE;a granting unit, configured to grant a CLF configuration right to the first target SE if the CLF configuration mode of the first target SE is a non-ME configuration CLF;
记录单元,用于记录所述第一目标SE的标识。a recording unit, configured to record an identifier of the first target SE.
结合第二方面或第二方面的第一种可能的实现方式或第二方面的第二种可能的实现方式或第二方面的第三种可能的实现方式或第二方面的第四种可能的实现方式或第二方面的第五种可能的实现方式或第二方面的第六种可能的实现方式或第二方面的第七种可能的实现方式,在第八种可能的实现方式中,所述ME还包括:Combining the second aspect or the first possible implementation of the second aspect or the second possible implementation of the second aspect or the third possible implementation of the second aspect or the fourth possible implementation of the second aspect The implementation of the fifth possible implementation of the second aspect or the sixth possible implementation of the second aspect or the seventh possible implementation of the second aspect, in an eighth possible implementation manner, The ME also includes:
第八确定单元,用于当所述第一目标SE处于激活状态时,确定去激活当前处于激活状态的非目标SE;An eighth determining unit, configured to: when the first target SE is in an active state, determine to deactivate a non-target SE that is currently in an active state;
第二激活单元,用于去激活当前处于激活状态的非目标SE;a second activation unit, configured to deactivate a non-target SE that is currently in an active state;
变更单元,用于变更所述第一目标SE的工作模式;a change unit, configured to change an operation mode of the first target SE;
第四查询单元,用于查询是否保存有第三CLF配置;a fourth query unit, configured to query whether a third CLF configuration is saved;
第三配置单元,用于若查询到所述第三CLF配置,则使用所述查询到的第三CLF配置中的一组非接触协议参数配置所述CLF。And a third configuration unit, configured to configure the CLF by using a set of non-contact protocol parameters in the queried third CLF configuration, if the third CLF configuration is queried.
结合第二方面或第二方面的第一种可能的实现方式或第二方面的第二种可能的实现方式或第二方面的第三种可能的实现方式或第二方面的第四种可能的实现方式或第二方面的第五种可能的实现方式或第二方面的第六种可能的实现方式或第二方面的第七种可能的实现方式或第二方面的第八种可能的实现方式,在第九种可能的实现方式中,所述ME还包括:Combining the second aspect or the first possible implementation of the second aspect or the second possible implementation of the second aspect or the third possible implementation of the second aspect or the fourth possible implementation of the second aspect Implementation or a fifth possible implementation of the second aspect or a sixth possible implementation of the second aspect or a seventh possible implementation of the second aspect or an eighth possible implementation of the second aspect In a ninth possible implementation manner, the ME further includes:
第九确定单元,用于确定所述第一/第三CLF配置中包括的第一目标SE可用。And a ninth determining unit, configured to determine that the first target SE included in the first/third CLF configuration is available.
结合第二方面或第二方面的第一种可能的实现方式或第二方面的第二种可能的实现方式或第二方面的第三种可能的实现方式或第二方面的第四种可能的实现方式或第二方面的第五种可能的实现方式或第二方面的第六种可能的实现方式或第二方面的第七种可能的实现方式或第二方面的第八种可能的实现方式或第二方面的第九种可能的实现方式,在第十种可能的实现方式中,所述ME还包括:Combining the second aspect or the first possible implementation of the second aspect or the second possible implementation of the second aspect or the third possible implementation of the second aspect or the fourth possible implementation of the second aspect Implementation or a fifth possible implementation of the second aspect or a sixth possible implementation of the second aspect or a seventh possible implementation of the second aspect or an eighth possible implementation of the second aspect Or the ninth possible implementation manner of the second aspect, in the tenth possible implementation manner, the ME further includes:
第四查询单元,用于若查询到所述第一目标SE处于激活状态,或所述第一目标SE处于去激活状态,且所述ME确定所述第一目标SE的工作模式为 聚合模式,则查询所述第一非接触应用是否设置有快速激活标记;a fourth query unit, configured to: if it is found that the first target SE is in an activated state, or the first target SE is in a deactivated state, and the ME determines that the working mode of the first target SE is Aggregating mode, querying whether the first contactless application is provided with a quick activation flag;
第四配置单元,用于若所述第一非接触应用设置有所述快速激活标记,所述ME使用查询到的所述第一CLF配置配置所述CLF;a fourth configuration unit, configured to configure the CLF by using the first CLF configuration that is queried if the first non-contact application is configured with the quick activation flag;
第三激活单元,用于激活所述第一CLF配置包含的第一SE和/或第一非接触应用。And a third activation unit, configured to activate the first SE and/or the first contactless application included in the first CLF configuration.
第三方面,提供了一种终端,所述终端包括:存储器、处理器、非接触前端CLF和至少一个安全单元SE,所述处理器用于执行如下步骤:A third aspect provides a terminal, where the terminal includes: a memory, a processor, a contactless front end CLF, and at least one security unit SE, where the processor is configured to perform the following steps:
获得第一目标安全单元SE的标识及状态,所述状态包括激活状态和去激活状态;Obtaining an identifier and a state of the first target security unit SE, the state including an activated state and a deactivated state;
当所述第一目标SE是去激活状态时,激活所述第一目标SE;When the first target SE is in a deactivated state, the first target SE is activated;
查询是否保存有第一CLF配置,所述第一CLF配置包括适用于所述第一目标SE的一组非接触协议参数;Querying whether a first CLF configuration is saved, the first CLF configuration including a set of contactless protocol parameters applicable to the first target SE;
若查询到所述第一CLF配置,则使用所述一组非接触协议参数配置所述CLF。If the first CLF configuration is queried, the CLF is configured using the set of contactless protocol parameters.
在第一种可能的实现方式中,所述处理器用于执行所述当所述第一目标SE是去激活状态时,激活所述第一目标SE的步骤之前,还用于执行如下步骤:根据当前处于激活状态的SE的工作模式和/或所述第一目标SE的工作模式,确定并去激活所述当前处于激活状态的非目标SEIn a first possible implementation, the processor is configured to perform the step of activating the first target SE when the first target SE is in a deactivated state, and is further configured to perform the following steps: Determining and deactivating the currently active non-target SE by the operating mode of the SE currently active and/or the operating mode of the first target SE
结合第三方面或第三方面的第一种可能的实现方式,在第二种可能的实现方式中,所述处理器用于执行所述使用所述一组非接触协议参数配置所述CLF之前,还用于执行如下步骤:With reference to the third aspect, or the first possible implementation manner of the third aspect, in a second possible implementation manner, before the processor is configured to perform the configuring the CLF by using the set of contactless protocol parameters, Also used to perform the following steps:
查询所述当前处于激活状态的非目标SE的CLF配置方式是否为处理器配置CLF;Query whether the CLF configuration mode of the non-target SE that is currently active is a processor configuration CLF;
若查询的结果为处理器配置CLF,则根据适用于所述当前处于激活状态的非目标SE的CLF使用的全部非接触协议参数生成或更新第二CLF配置,以便处理器再次激活第二CLF配置适用的第一SE时使用。If the result of the query is a processor configuration CLF, the second CLF configuration is generated or updated according to all contactless protocol parameters applicable to the CLF of the non-target SE that is currently active, so that the processor activates the second CLF configuration again. Used when the first SE is applied.
结合第三方面或第三方面的第一种可能的实现方式或第三方面的第二种可能的实现方式,在第三种可能的实现方式中,所述处理器用于执行所述获得第一目标SE的标识及其状态的步骤,包括: With reference to the third aspect, or the first possible implementation manner of the third aspect, or the second possible implementation manner of the third aspect, in a third possible implementation manner, the processor is configured to perform the obtaining the first The steps of the identity of the target SE and its status, including:
接收激活第一SE的请求,所述请求包括所述第一目标SE的标识,Receiving a request to activate a first SE, the request including an identifier of the first target SE,
或者接收激活至少一个非接触应用的请求,确定所述至少一个非接触应用所在的SE为所述第一目标SE并获得所述第一目标SE的标识;Or receiving a request to activate the at least one contactless application, determining that the SE where the at least one contactless application is located is the first target SE and obtaining the identifier of the first target SE;
根据所述第一目标SE的标识,查询所述第一目标SE的状态。And querying, according to the identifier of the first target SE, a status of the first target SE.
结合第三方面或第三方面的第一种可能的实现方式或第三方面的第二种可能的实现方式或第三方面的第三种可能的实现方式,在第四种可能的实现方式中,所述处理器用于执行所述根据当前处于激活状态的SE的工作模式和/或所述第一目标SE的工作模式,确定去激活所述当前处于激活状态的非目标SE的步骤,包括:With reference to the third aspect or the first possible implementation manner of the third aspect or the second possible implementation manner of the third aspect or the third possible implementation manner of the third aspect, in a fourth possible implementation manner And the step of determining, by the processor, the deactivating the non-target SE that is currently in an active state according to the working mode of the SE that is currently in an active state and/or the working mode of the first target SE, including:
确定所述当前处于激活状态的非目标SE的工作模式;Determining an operating mode of the non-target SE that is currently in an active state;
根据服务策略和/或所述第一目标SE的属性,确定所述第一目标SE的工作模式;Determining an operation mode of the first target SE according to a service policy and/or an attribute of the first target SE;
若确定所述当前处于激活状态的非目标SE的工作模式为非聚合模式和/或所述第一目标SE的工作模式为非聚合模式,则确定去激活所述当前处于激活状态的非目标SE。Determining to deactivate the currently active non-target SE if it is determined that the working mode of the non-target SE currently in an active state is a non-aggregated mode and/or the working mode of the first target SE is a non-aggregating mode .
结合第三方面或第三方面的第一种可能的实现方式或第三方面的第二种可能的实现方式或第三方面的第三种可能的实现方式或第三方面的第四种可能的实现方式,在第五种可能的实现方式中,所述处理器还用于执行如下步骤:Combining the third aspect or the first possible implementation of the third aspect or the second possible implementation of the third aspect or the third possible implementation of the third aspect or the fourth possible implementation of the third aspect In a fifth possible implementation manner, the processor is further configured to perform the following steps:
若未查询到所述第一CLF配置,根据所述第一目标SE执行冲突检测和非接触协议参数计算,确定适用于第一目标SE的一组非接触协议参数;If the first CLF configuration is not queried, perform collision detection and contactless protocol parameter calculation according to the first target SE, and determine a set of non-contact protocol parameters applicable to the first target SE;
使用计算出的一组非接触协议参数配置所述CLF。The CLF is configured using a calculated set of contactless protocol parameters.
结合第三方面或第三方面的第一种可能的实现方式或第三方面的第二种可能的实现方式或第三方面的第三种可能的实现方式或第三方面的第四种可能的实现方式或第三方面的第五种可能的实现方式,在第六种可能的实现方式中,所述第一或第二CLF配置还包括激活的第一SE的标识、激活的第一非接触应用的标识和所述第一非接触应用的优先级。Combining the third aspect or the first possible implementation of the third aspect or the second possible implementation of the third aspect or the third possible implementation of the third aspect or the fourth possible implementation of the third aspect The implementation manner or the fifth possible implementation manner of the third aspect, in a sixth possible implementation manner, the first or second CLF configuration further includes an identifier of the activated first SE, and the activated first non-contact The identity of the application and the priority of the first contactless application.
结合第三方面或第三方面的第一种可能的实现方式或第三方面的第二种可能的实现方式或第三方面的第三种可能的实现方式或第三方面的第四种可能的实现方式或第三方面的第五种可能的实现方式或第三方面的第六种可能的实现方式,在第七种可能的实现方式中,所述处理器还用于执行如下步骤: Combining the third aspect or the first possible implementation of the third aspect or the second possible implementation of the third aspect or the third possible implementation of the third aspect or the fourth possible implementation of the third aspect The implementation of the fifth possible implementation of the third aspect or the sixth possible implementation of the third aspect. In a seventh possible implementation, the processor is further configured to perform the following steps:
确定所述第一目标SE的CLF配置方式;Determining a CLF configuration manner of the first target SE;
若所述第一目标SE的CLF配置方式为非处理器配置CLF,则将CLF配置权限授予所述第一目标SE并记录所述第一目标SE的标识。If the CLF configuration mode of the first target SE is a non-processor configuration CLF, the CLF configuration authority is granted to the first target SE and the identifier of the first target SE is recorded.
结合第三方面或第三方面的第一种可能的实现方式或第三方面的第二种可能的实现方式或第三方面的第三种可能的实现方式或第三方面的第四种可能的实现方式或第三方面的第五种可能的实现方式或第三方面的第六种可能的实现方式或第三方面的第七种可能的实现方式,在第八种可能的实现方式中,所述处理器还用于执行如下步骤:Combining the third aspect or the first possible implementation of the third aspect or the second possible implementation of the third aspect or the third possible implementation of the third aspect or the fourth possible implementation of the third aspect The fifth possible implementation manner of the third aspect or the sixth possible implementation manner of the third aspect or the seventh possible implementation manner of the third aspect, in the eighth possible implementation manner, The processor is also used to perform the following steps:
当所述第一目标SE处于激活状态时,确定并去激活当前处于激活状态的非目标SE,并变更所述第一目标SE的工作模式;Determining and deactivating a non-target SE that is currently in an active state when the first target SE is in an active state, and changing an operating mode of the first target SE;
查询是否保存有第三CLF配置;Whether the query saves the third CLF configuration;
若查询到所述第三CLF配置,则使用所述查询到的第三CLF配置中的一组非接触协议参数配置所述CLF。If the third CLF configuration is queried, the CLF is configured using a set of contactless protocol parameters in the queried third CLF configuration.
结合第三方面或第三方面的第一种可能的实现方式或第三方面的第二种可能的实现方式或第三方面的第三种可能的实现方式或第三方面的第四种可能的实现方式或第三方面的第五种可能的实现方式或第三方面的第六种可能的实现方式或第三方面的第七种可能的实现方式或第三方面的第八种可能的实现方式,在第九种可能的实现方式中,所述处理器用于执行所述查询是否保存有第一/第三CLF配置的步骤之后,以及所述处理器用于执行所述使用所述查询到的第一/第三CLF配置中的一组非接触协议参数配置所述CLF的步骤之前,还用于执行如下步骤:Combining the third aspect or the first possible implementation of the third aspect or the second possible implementation of the third aspect or the third possible implementation of the third aspect or the fourth possible implementation of the third aspect Implementation or a fifth possible implementation of the third aspect or a sixth possible implementation of the third aspect or a seventh possible implementation of the third aspect or an eighth possible implementation of the third aspect In a ninth possible implementation manner, after the step of the processor for performing whether the query saves the first/third CLF configuration, and the processor is configured to perform the using the query Before the step of configuring the CLF in a set of non-contact protocol parameters in the first/third CLF configuration, the following steps are also performed:
确定所述第一/第三CLF配置中包括的第一目标SE可用。It is determined that the first target SE included in the first/third CLF configuration is available.
结合第三方面或第三方面的第一种可能的实现方式或第三方面的第二种可能的实现方式或第三方面的第三种可能的实现方式或第三方面的第四种可能的实现方式或第三方面的第五种可能的实现方式或第三方面的第六种可能的实现方式或第三方面的第七种可能的实现方式或第三方面的第八种可能的实现方式或第三方面的第九种可能的实现方式,在第十种可能的实现方式中,所述处理器还用于执行如下步骤:Combining the third aspect or the first possible implementation of the third aspect or the second possible implementation of the third aspect or the third possible implementation of the third aspect or the fourth possible implementation of the third aspect Implementation or a fifth possible implementation of the third aspect or a sixth possible implementation of the third aspect or a seventh possible implementation of the third aspect or an eighth possible implementation of the third aspect Or the ninth possible implementation manner of the third aspect, in the tenth possible implementation manner, the processor is further configured to perform the following steps:
若查询到所述第一目标SE处于激活状态,或所述第一目标SE处于去激活状态,且确定所述第一目标SE的工作模式为聚合模式,则查询所述第一非 接触应用是否设置有快速激活标记;Querying the first non-query if the first target SE is in an activated state, or the first target SE is in a deactivated state, and it is determined that the working mode of the first target SE is an aggregation mode Whether the contact application is provided with a quick activation flag;
若所述第一非接触应用设置有所述快速激活标记,使用查询到的所述If the first contactless application is provided with the quick activation flag, using the queried
第一CLF配置配置所述CLF,并激活所述第一CLF配置包含的第一SE和/或第一非接触应用。The first CLF configuration configures the CLF and activates the first SE and/or the first contactless application included in the first CLF configuration.
可见,根据本发明实施例提供的一种非接触前端的配置方法及终端,当管理实体确定终端上的一个或多个目标安全单元为去激活状态时,管理实体可查询保存的适用于该一个或多个目标安全单元的非接触前端配置,使用查询到的该非接触前端配置中的一组非接触协议参数配置该非接触前端,无需进行冲突检测和非接触协议参数计算,极大地提高了非接触前端的配置效率。It can be seen that, according to an embodiment of the present invention, a method and a terminal for configuring a contactless front end, when the management entity determines that one or more target security units on the terminal are in a deactivated state, the management entity may query and save the applicable one for the one. Or the non-contact front-end configuration of the plurality of target security units, and configuring the non-contact front-end using a set of non-contact protocol parameters in the contactless front-end configuration, without conflict detection and non-contact protocol parameter calculation, greatly improving The efficiency of the configuration of the contactless front end.
附图说明DRAWINGS
为了更清楚地说明本发明实施例或现有技术中的技术方案,下面将对实施例中所需要使用的附图作简单地介绍,显而易见地,下面描述中的附图仅仅是本发明的一些实施例,对于本领域普通技术人员来讲,在不付出创造性劳动的前提下,还可以根据这些附图获得其他的附图。In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings to be used in the embodiments will be briefly described below. Obviously, the drawings in the following description are only some of the present invention. For the embodiments, those skilled in the art can obtain other drawings according to the drawings without any creative work.
图1为管理实体的接口及功能示意图;FIG. 1 is a schematic diagram of an interface and a function of a management entity;
图2为本发明实施例提供的一种非接触前端的配置方法的流程示意图;2 is a schematic flowchart of a method for configuring a contactless front end according to an embodiment of the present invention;
图3为本发明实施例提供的另一种非接触前端的配置方法的流程示意图;FIG. 3 is a schematic flowchart diagram of another method for configuring a contactless front end according to an embodiment of the present disclosure;
图4为本发明实施例提供的一种终端的结构示意图;FIG. 4 is a schematic structural diagram of a terminal according to an embodiment of the present disclosure;
图5为本发明实施例提供的另一种终端中的管理实体的结构示意图;FIG. 5 is a schematic structural diagram of a management entity in another terminal according to an embodiment of the present disclosure;
图6为本发明实施例提供的又一种终端的结构示意图。FIG. 6 is a schematic structural diagram of still another terminal according to an embodiment of the present invention.
具体实施方式detailed description
下面将结合本发明实施例中的附图,对本发明实施例中的技术方案进行清楚、完整地描述,显然,所描述的实施例仅仅是本发明一部分实施例,而不是全部的实施例。基于本发明中的实施例,本领域普通技术人员在没有作出创造性劳动前提下所获得的所有其他实施例,都属于本发明保护的范围。The technical solutions in the embodiments of the present invention are clearly and completely described in the following with reference to the accompanying drawings in the embodiments of the present invention. It is obvious that the described embodiments are only a part of the embodiments of the present invention, but not all embodiments. All other embodiments obtained by those skilled in the art based on the embodiments of the present invention without creative efforts are within the scope of the present invention.
本发明实施例的终端是指具有NFC支付功能的终端,如NFC手机、NFC平板、NFC手表等。该终端可以连接一个或多个SE,一个SE上又可以安装 一个或多个非接触应用,由ME对终端上的SE和应用进行管理。SE是指一种防篡改运行环境,通常是一个安全的微控制器芯片。该芯片可以安全地存储和运行应用,保存应用相关的密钥、证书等数据不被篡改和非法访问,同时该芯片还可以保存机密数据访问规则等。SE是全球平台国际标准组织(GP,Global Platform)制定的规范中的概念,在GP相关规范中SE与CEE(Card Emulation Environment)相关,可互相指代;SE还可以与近场通信执行环境(英文:NFC Execution Environment,简称:NFCEE)、HCI主机等概念互相指代。NFCEE是在NFC论坛(NFC Forum)制定的NCI规范中使用的术语;HCI主机指的是欧洲电信标准协会(英文:European Telecommunication Standards Institute,简称:ETSI)制定的HCI规范中的通用集成电路卡(英文:Universal Integrated Circuit Card,简称:UICC)、嵌入式安全单元(英文:Embedded Secure Element,简称:eSE)、安全数码内存卡(英文:Secure Digital Memory Card,简称:SD卡)等主机(Host)。CLF是指终端中的一个物理模块,该模块用于近场通信的模拟信号处理和传输协议处理,通过该模块,读卡器可以与终端上的SE进行数据交换。CLF是ETSI制定的相关规范中的概念,它等同于NFC论坛制定的规范中的NFC控制器(NFC Controller)。非接触应用(英文:Contactless Application,简称:CL App)一般是指安装到SE中并且可以使用CLF提供的非接触接口与读卡器进行交易的应用,例如,安装到手机通用集成电路卡(英文:Universal Integrated Circuit Card,简称:UICC)SE中的公交卡应用、电子现金卡应用都是非接触应用。非接触应用是GP制定的规范中定义的概念,在NFC论坛制定的相关规范中也被称为NFC服务(NFC Service)。The terminal in the embodiment of the present invention refers to a terminal having an NFC payment function, such as an NFC mobile phone, an NFC tablet, an NFC watch, or the like. The terminal can be connected to one or more SEs, and one SE can be installed. One or more contactless applications, the ME manages the SE and applications on the terminal. SE refers to a tamper-proof operating environment, usually a secure microcontroller chip. The chip can safely store and run applications, save application-related keys, certificates and other data without being tampered with and illegally accessed, and the chip can also save confidential data access rules. SE is a concept in the specification developed by the Global Platform International Standards Organization (GP). In the GP related specifications, SE is related to CEE (Card Emulation Environment) and can refer to each other; SE can also communicate with the near field communication execution environment ( English: NFC Execution Environment, referred to as: NFCEE), HCI host and other concepts refer to each other. NFCEE is a term used in the NCI specification developed by the NFC Forum; the HCI host refers to the universal integrated circuit card in the HCI specification developed by the European Telecommunication Standards Institute (ETSI). English: Universal Integrated Circuit Card (UICC), Embedded Secure Element (English: Embedded Secure Element (eSE), Secure Digital Memory Card (English: Secure Digital Memory Card): Host . CLF refers to a physical module in the terminal, which is used for analog signal processing and transmission protocol processing of near field communication. Through this module, the card reader can exchange data with the SE on the terminal. The CLF is a concept in the relevant specifications developed by ETSI, which is equivalent to the NFC Controller (NFC Controller) in the specifications developed by the NFC Forum. Contactless Application (English: Contactless Application, CL App for short) generally refers to an application installed in the SE and can be exchanged with a card reader using the contactless interface provided by CLF, for example, a universal integrated circuit card installed in a mobile phone. :Universal Integrated Circuit Card, referred to as: UICC) The bus card application and electronic cash card application in SE are non-contact applications. Contactless applications are concepts defined in the specifications developed by the GP and are also referred to as NFC services in the relevant specifications developed by the NFC Forum.
本发明实施例的ME具有聚合(Aggregated)模式和非聚合(Non-Aggregated)模式两种工作模式:The ME of the embodiment of the present invention has two working modes: an Aggregated mode and a Non-Aggregated mode:
ME的聚合模式是ME管理多个SE时的一种工作模式,在这种模式下,用户可以选择安装在多个SE上的多个应用同时激活并使用这些服务,用户感知不到这些服务来自多个SE。换言之,此模式下多个SE可以同时激活,不同SE上的应用也可以同时激活。此模式下ME需要根据所有激活的非接触应用对CLF进行配置。The ME aggregation mode is a working mode when the ME manages multiple SEs. In this mode, users can select multiple applications installed on multiple SEs to activate and use these services at the same time. Users cannot perceive these services from Multiple SEs. In other words, multiple SEs can be activated simultaneously in this mode, and applications on different SEs can be activated simultaneously. In this mode, the ME needs to configure the CLF based on all activated contactless applications.
ME的非聚合模式是ME管理多个SE时的另一种工作模式。在这种模式下,用户只能选中一组来自于同一个SE的应用并激活。换言之,此模式下多 个SE不能同时被激活,仅有一个SE可以被激活,仅有该激活的SE上的应用可以被用户选中、激活并为用户提供服务。The non-aggregation mode of the ME is another mode of operation when the ME manages multiple SEs. In this mode, the user can only select a group of applications from the same SE and activate. In other words, more in this mode The SEs cannot be activated at the same time, only one SE can be activated, and only the applications on the activated SE can be selected, activated, and served by the user.
在Aggregated模式下,只能由ME来配置CLF,此模式下只有ME实体可以收集来自多个SE的非接触协议参数(Contactless Protocol Parameter)需求。而在Non-Aggregated模式下,因只有一个SE可以激活,因此可以由ME配置CLF或由SE配置CLF。In Aggregated mode, the CLF can only be configured by the ME. In this mode, only the ME entity can collect the Contactless Protocol Parameter requirements from multiple SEs. In Non-Aggregated mode, since only one SE can be activated, the CLF can be configured by the ME or configured by the SE.
而聚合模式和非聚合模式既针对ME,又针对SE。可以依据是否支持与ME的接口来划分SE,如果SE支持与ME的接口,那么该SE可以工作在聚合与非聚合两种模式,SE可以通过与ME的接口向ME发送请求,要求工作在特定的模式下;而不支持ME接口的SE,则无法利用ME的冲突检测功能,只能工作在非聚合模式并自行配置CLF。处于激活状态的SE的工作模式与ME的工作模式是一致的。The aggregation mode and the non-aggregation mode are for both ME and SE. The SE can be divided according to whether the interface with the ME is supported. If the SE supports the interface with the ME, the SE can work in both the aggregated and non-aggregated modes, and the SE can send a request to the ME through the interface with the ME, and the work is required to be specific. In the mode, the SE that does not support the ME interface cannot use the conflict detection function of the ME. It can only work in the non-aggregation mode and configure the CLF by itself. The working mode of the active SE is consistent with the working mode of the ME.
本发明中的管理实体ME是一种用于同一终端上的多个SE及非接触应用管理的实体,具体地,ME可以运行于终端的主控制器DH(Device Host),DH用于负责整个设备的管理,其中包括NFC控制器的管理,如初始化,配置或电源管理等。在智能手机中,主控制器DH可以对应手机的CPU;DH是在NFC论坛(NFC Forum)制定的NCI规范中使用的术语,可以对应欧洲电信标准协会(ETSI,European Telecommunication Standards Institute)制定的HCI规范中的终端主机(Terminal Host);此外,全球平台国际标准组织(GP,Global Platform)制定的规范中的管理实体(ME,Managing Entity)若实现在Terminal Host上,则也可以将DH称为管理主机(MH,Managing Host)The management entity ME in the present invention is an entity for multiple SEs and contactless application management on the same terminal. Specifically, the ME can be run on the terminal controller DH (Device Host), and the DH is responsible for the entire Management of equipment, including management of NFC controllers, such as initialization, configuration or power management. In the smartphone, the main controller DH can correspond to the CPU of the mobile phone; DH is a term used in the NCI specification developed by the NFC Forum, and can correspond to the HCI developed by the European Telecommunication Standards Institute (ETSI). The terminal host in the specification (Terminal Host); in addition, the management entity (ME, Managing Entity) in the specification developed by the Global Platform International Standards Organization (GP) can also be called DH if it is implemented on the Terminal Host. Management Host (MH, Managing Host)
ME也可以运行于近场通信控制器NFCC(NFC Controller),NFCC是NFC芯片的负责数据传输的实体,通常直接用它来指代NFC芯片。NFCC是在NFC论坛(NFC Forum)制定的NCI规范中使用的术语,它可以对应欧洲电信标准协会(ETSI,European Telecommunication Standards Institute)制定的HCI规范中的非接触前端(CLF,Contactless Front-end),此时,HCI中主机控制器(Host Controller)要实现在NFCC上。The ME can also operate on the Near Field Communication Controller NFCC (NFC Controller), which is the entity responsible for data transmission of the NFC chip, and is usually used directly to refer to the NFC chip. The NFCC is a term used in the NCI specification developed by the NFC Forum to correspond to the Contactless Front-end (CLF, Contactless Front-end) in the HCI specification developed by the European Telecommunication Standards Institute (ETSI). At this time, the host controller of the HCI is implemented on the NFCC.
ME甚至可能运行于安全单元SE(Secure Element)内。The ME may even run in the Secure Element SE (Secure Element).
本发明在当ME确定终端上的一个或多个目标安全单元为去激活状态时,若确定需要去激活当前处于激活状态的非目标安全单元,则管理实体可查询保 存的适用于该一个或多个目标安全单元的非接触前端配置,使用查询到的该非接触前端配置中的一组非接触协议参数配置该非接触前端,无需进行冲突检测和非接触协议参数计算,极大地提高了非接触前端的配置效率。When the ME determines that one or more target security units on the terminal are in a deactivated state, if it is determined that the non-target security unit currently in the active state needs to be deactivated, the management entity may query for protection. A non-contact front-end configuration applicable to the one or more target security units, configured by using a set of non-contact protocol parameters in the contactless front-end configuration, without conflict detection and contactless protocol parameters The calculation greatly improves the configuration efficiency of the non-contact front end.
下面结合图2-图3,对本发明实施例提供的非接触前端的配置方法进行详细描述:The configuration method of the non-contact front end provided by the embodiment of the present invention is described in detail below with reference to FIG. 2 to FIG. 3:
请参阅图2,为本发明实施例提供的一种非接触前端的配置方法的流程示意图,该方法包括以下步骤:FIG. 2 is a schematic flowchart of a method for configuring a contactless front end according to an embodiment of the present invention. The method includes the following steps:
步骤S101,管理实体ME获得第一目标安全单元SE的标识及状态,所述状态包括激活状态和去激活状态。Step S101, the management entity ME obtains the identifier and status of the first target security unit SE, and the status includes an activated state and a deactivated state.
ME获得第一目标SE的标识,可以是ME从GUI接口接收到激活一个或多个SE的请求,所述请求中包含的SE标识对应的SE为要激活的SE即目标SE;也可以是ME从GUI接口接收到激活一个或多个非接触应用的请求后,ME获得此一个或多个非接触应用所在的SE的标识,此SE标识对应的SE为目标SE;ME可以使用所述目标SE的标识查询到目标SE的状态。The ME obtains the identifier of the first target SE, and the ME may receive the request for activating one or more SEs from the GUI interface, and the SE corresponding to the SE identifier included in the request is the target SE to be activated, that is, the target SE; After receiving the request for activating the one or more contactless applications, the ME obtains the identifier of the SE where the one or more contactless applications are located, and the SE corresponding to the SE identifier is the target SE; the ME can use the target SE The identity of the query is queried to the status of the target SE.
步骤S102,当所述第一目标SE是去激活状态时,激活所述第一目标SE。Step S102: When the first target SE is in a deactivated state, the first target SE is activated.
激活第一目标SE之前,终端上可以没有处于激活状态的非目标SE,也可以具有处于激活状态的非目标SE,此时,在激活第一目标SE之前,需要去激活非目标SE。具体的去激活当前处于激活状态的非目标SE的场景如下:Before the first target SE is activated, there may be no non-target SE in the active state on the terminal, or a non-target SE in the active state. At this time, the non-target SE needs to be deactivated before the first target SE is activated. The specific scenario of deactivating a non-target SE that is currently active is as follows:
在本实施例的场景中,ME需要根据当前处于激活状态的SE的工作模式或目标SE的工作模式确定去激活当前处于激活状态的SE,并激活目标SE。一种场景是,当前处于激活状态的SE工作在非聚合模式,其CLF配置方式是ME配置CLF或者非ME配置CLF,而目标SE要求工作在聚合模式,其CLF配置方式是ME配置CLF。非聚合模式下仅一个SE可激活,而目标SE为去激活状态,显然当前处于激活状态的SE与目标SE不是同一个SE。而当前处于激活状态的SE工作在非聚合模式,则当前处于激活状态的SE只有一个,因此,需要去激活当前处于激活状态的SE。另一种场景是,不论当前处于激活状态的SE是何种工作模式和CLF配置方式,目标SE要求工作在非聚合模式,其CLF配置方式为ME配置CLF,由于目标SE工作在非聚合模式且处于去激活状态,不允许其他SE与此目标SE同时激活,所以需要去激活当前处于激活状态的SE。 In the scenario of the embodiment, the ME needs to determine to deactivate the currently active SE according to the working mode of the SE currently in the active state or the working mode of the target SE, and activate the target SE. In one scenario, the SE in the active state is in the non-aggregation mode, and the CLF configuration mode is the ME configuration CLF or the non-ME configuration CLF, and the target SE is required to work in the aggregation mode, and the CLF configuration mode is the ME configuration CLF. In the non-aggregated mode, only one SE can be activated, and the target SE is in a deactivated state. Obviously, the currently active SE is not the same SE as the target SE. While the currently active SE works in the non-aggregation mode, there is only one SE that is currently active, and therefore, the SE that is currently active needs to be deactivated. Another scenario is that the target SE is required to work in the non-aggregation mode regardless of the working mode and the CLF configuration mode of the currently active SE, and the CLF configuration mode is configured for the ME by the CLF, because the target SE works in the non-aggregated mode and It is deactivated and does not allow other SEs to be activated at the same time as this target SE, so it is necessary to deactivate the SE that is currently active.
步骤S103,所述ME查询是否保存有第一CLF配置,所述第一CLF配置包括适用于所述第一目标SE的一组非接触协议参数。Step S103, the ME queries whether a first CLF configuration is saved, and the first CLF configuration includes a set of contactless protocol parameters applicable to the first target SE.
由于当前处于激活状态的SE均被去激活,无法确定当前配置到CLF的非接触协议参数适用于新的激活的目标SE,因此,需要依据新的激活的目标SE对CLF重新进行配置。Since the currently active SEs are all deactivated, it is not possible to determine that the non-contact protocol parameters currently configured to the CLF are applicable to the new activated target SE. Therefore, the CLF needs to be reconfigured according to the new activated target SE.
本实施例中终端会预先保存特定场景下CLF的配置,这些CLF配置可以保存为CLF配置文件(profile),这些CLF配置包括特定场景下激活的一个或多个SE的标识、激活的一个或多个非接触应用的标识以及这些非接触应用的优先级,以及根据这些SE和非接触应用进行CLF配置时使用的一组非接触协议参数。In this embodiment, the terminal pre-stores the configuration of the CLF in a specific scenario, and the CLF configurations may be saved as a CLF profile, where the CLF configuration includes one or more SE identifiers activated in a specific scenario, and one or more activated ones. The identity of the contactless applications and the priority of these contactless applications, as well as a set of contactless protocol parameters used in CLF configuration based on these SE and contactless applications.
本实施例中要对目标SE进行CLF配置时,查询是否保存有包含目标SE标识的CLF配置。若ME收到的是激活非接触应用的请求,则ME查询CLF配置时应查询CLF配置中是否包含目标SE标识和要激活的非接触应用的标识。由于保存的包含目标SE标识的CLF配置可能不止一个,在选择保存的CLF配置时,要求该CLF配置包含目标SE标识,且包含目标SE标识之外其它的SE标识尽可能少。In this embodiment, when the target SE is configured for CLF, it is queried whether the CLF configuration including the target SE identifier is saved. If the ME receives the request to activate the contactless application, the ME queries the CLF configuration to query whether the target SE identifier and the identifier of the contactless application to be activated are included in the CLF configuration. Since the saved CLF configuration including the target SE identifier may be more than one, when selecting the saved CLF configuration, the CLF configuration is required to include the target SE identifier, and the SE identifiers other than the target SE identifier are included as little as possible.
步骤S104,若查询到所述第一CLF配置,则所述ME使用所述一组非接触协议参数配置所述CLF。Step S104: If the first CLF configuration is queried, the ME configures the CLF by using the set of non-contact protocol parameters.
若查询到保存的CLF配置,则ME使用保存的CLF配置中的该组非接触协议参数配置CLF,无需进行冲突检测和非接触协议参数计算,直接配置到CLF,极大地提高了非接触前端的配置效率。If the saved CLF configuration is queried, the ME configures the CLF using the set of non-contact protocol parameters in the saved CLF configuration, and does not need to perform conflict detection and non-contact protocol parameter calculation, and directly configures to the CLF, which greatly improves the non-contact front end. Configuration efficiency.
根据本发明实施例提供的一种非接触前端的配置方法,当管理实体确定终端上的一个或多个目标安全单元为去激活状态时,管理实体可查询保存的适用于该一个或多个目标安全单元的非接触前端配置,使用查询到的该非接触前端配置中的一组非接触协议参数配置该非接触前端,无需进行冲突检测和非接触协议参数计算,极大地提高了非接触前端的配置效率。According to a method for configuring a contactless front end according to an embodiment of the present invention, when the management entity determines that one or more target security units on the terminal are in a deactivated state, the management entity may query the saved ones for the one or more targets. The non-contact front-end configuration of the security unit configures the non-contact front end by using a set of non-contact protocol parameters in the contactless front-end configuration, without conflict detection and non-contact protocol parameter calculation, which greatly improves the non-contact front end. Configuration efficiency.
请参阅图3,为本发明实施例提供的另一种非接触前端的配置方法的流程示意图,该方法包括以下步骤:FIG. 3 is a schematic flowchart of another method for configuring a non-contact front end according to an embodiment of the present invention. The method includes the following steps:
步骤S201,ME接收激活至少一个非接触应用的请求,ME确定至少一个 非接触应用所在的SE为第一目标SE并获得第一目标SE的标识。Step S201, the ME receives a request to activate at least one contactless application, and the ME determines at least one The SE where the contactless application is located is the first target SE and obtains the identifier of the first target SE.
本实施例以激活非接触应用为例进行描述。非接触应用具有唯一的应用标识符(英文:Application Identifier,简称:AID)。ME通过GUI接口接收非接触应用的激活请求,该请求中携带该AID。这里要激活的非接触应用可以是一个,也可以是多个。This embodiment is described by taking an activation non-contact application as an example. The contactless application has a unique application identifier (English: Application Identifier, AID for short). The ME receives an activation request of the contactless application through the GUI interface, and the request carries the AID. The contactless application to be activated here may be one or more.
ME查询非接触应用AID所在的目标SE,多个非接触应用可以位于一个目标SE上,也可以位于多个目标SE上。The ME queries the target SE where the contactless application AID is located, and the plurality of contactless applications may be located on one target SE or on multiple target SEs.
步骤S202,ME根据第一目标SE的标识,查询第一目标SE是否处于激活状态,若否,则转至步骤S203;若是,转至步骤S212或S215。Step S202: The ME queries whether the first target SE is in an active state according to the identifier of the first target SE. If not, the process goes to step S203; if yes, the process goes to step S212 or S215.
ME查询目标SE的激活状态,根据目标SE的激活状态的不同,进行不同的处理。The ME queries the activation state of the target SE, and performs different processing according to the activation state of the target SE.
步骤S203,ME确定第一目标SE的工作模式是否为非聚合模式,若是,则转至步骤S204;否则,转至步骤S212。In step S203, the ME determines whether the working mode of the first target SE is the non-aggregation mode. If yes, the process goes to step S204; otherwise, the process goes to step S212.
当ME查询到目标SE处于去激活状态时,ME进一步确定目标SE的工作模式。When the ME queries that the target SE is in the deactivated state, the ME further determines the working mode of the target SE.
ME可以根据服务策略和/或目标SE的属性,确定目标SE的工作模式:The ME may determine the working mode of the target SE according to the service policy and/or the attributes of the target SE:
服务策略可包括:Service strategies can include:
a)确保同一个服务运营商提供的尽量多的服务同时可用,此时对应于激活单个SE,ME工作在非聚合模式,这样可以减少其他SE对目标SE的影响;a) Ensure that as many services as possible provided by the same service provider are available at the same time. In this case, the ME works in a non-aggregated mode corresponding to activating a single SE, which can reduce the impact of other SEs on the target SE;
b)确保多个服务运营商提供的服务同时可用,此时对应于聚合模式,多个SE上的服务都有机会被使用,此时可以确保兼顾多个服务运营商的利益;b) Ensure that the services provided by multiple service operators are available at the same time. In this case, corresponding to the aggregation mode, services on multiple SEs have opportunities to be used, and at this time, it is possible to ensure the interests of multiple service operators;
目标SE的属性,包括:The attributes of the target SE, including:
a)目标SE只支持非聚合模式,且由SE配置CLF;a) The target SE only supports the non-aggregation mode, and the CLF is configured by the SE;
b)目标SE只支持非聚合模式,可以由ME配置CLF;b) The target SE only supports the non-aggregation mode, and the CLF can be configured by the ME;
c)目标SE支持聚合与非聚合模式,可以使用ME配置CLF。c) The target SE supports both aggregation and non-aggregation modes, and the ME can be configured using the ME.
例如,场景A:目标SE只支持非聚合模式,则根据属性即可确定SE或ME的工作模式,需要说明的是,激活状态的SE的工作模式与ME的工作模式是一致的;场景B:服务策略是要求最多的SE同时工作,SE支持聚合或非聚合,则ME确定此时ME和SE应工作在聚合模式;场景C:服务策略要求尽量使用一个SE上的应用,SE支持聚合和非聚合,则ME和SE应工作在非聚 合模式。For example, scenario A: The target SE only supports the non-aggregation mode, and the working mode of the SE or the ME can be determined according to the attribute. It should be noted that the working mode of the SE in the activated state is consistent with the working mode of the ME; scenario B: The service policy is that the most required SEs work at the same time. If the SE supports aggregation or non-aggregation, the ME determines that the ME and the SE should work in the aggregation mode. Scenario C: The service policy requires that an application on one SE be used as much as possible. The SE supports aggregation and non-aggregation. Polymerization, then ME and SE should work in non-polymerization Combined mode.
根据目标SE的工作模式是聚合模式还是非聚合模式,进行不同的处理。Different processing is performed depending on whether the working mode of the target SE is an aggregation mode or a non-aggregation mode.
步骤S204,若ME确定当前处于激活状态的非目标SE的工作模式为非聚合模式和/或第一目标SE的工作模式为非聚合模式,则ME确定去激活当前处于激活状态的非目标SE。Step S204: If the ME determines that the working mode of the non-target SE that is currently in the active state is the non-aggregation mode and/or the working mode of the first target SE is the non-aggregation mode, the ME determines to deactivate the non-target SE that is currently in the active state.
ME可以查询到当前处于激活状态的SE的工作模式。本步骤与前述实施例的步骤S102相同,在此不再赘述。The ME can query the working mode of the SE that is currently active. This step is the same as step S102 of the foregoing embodiment, and details are not described herein again.
步骤S205,若ME查询当前处于激活状态的非目标SE的CLF配置方式为ME配置CLF,则ME根据适用于当前处于激活状态的非目标SE的CLF使用的全部非接触协议参数生成或更新第二CLF配置。Step S205: If the ME queries the CLF configuration mode of the non-target SE that is currently in the active state to configure the CLF for the ME, the ME generates or updates the second according to all non-contact protocol parameters applicable to the CLF of the non-target SE that is currently in the active state. CLF configuration.
在去激活当前处于激活状态的非目标SE之前,若ME查询到当前处于激活状态的非目标SE的CLF配置方式为ME配置CLF,则ME根据适用于当前处于激活状态的非目标SE的CLF使用的全部非接触协议参数生成或更新第二CLF配置,即,若第二CLF配置不存在,则根据适用于当前处于激活状态的非目标SE的CLF使用的全部非接触协议参数生成第二CLF配置;若第二CLF配置已经存在则根据适用于当前处于激活状态的非目标SE的CLF使用的全部非接触协议参数更新第二CLF配置中相应的配置参数。从而可以在激活此CLF配置适用的第一SE时直接使用。保存的该CLF配置包括当前激活的一个或多个SE的标识、当前激活的一个或多个非接触应用标识、这些非接触应用的优先级以及根据这些SE和非接触应用进行CLF配置时使用的一组非接触协议参数。Before deactivating a non-target SE that is currently active, if the ME queries that the CLF configuration mode of the non-target SE that is currently active is the ME configuration CLF, the ME is used according to the CLF applicable to the non-target SE that is currently active. All of the contactless protocol parameters generate or update the second CLF configuration, ie, if the second CLF configuration does not exist, generate a second CLF configuration according to all contactless protocol parameters applicable to the CLF of the non-target SE that is currently active. If the second CLF configuration already exists, the corresponding configuration parameters in the second CLF configuration are updated according to all contactless protocol parameters applicable to the CLF of the non-target SE that is currently active. This can be used directly when activating the first SE to which this CLF configuration applies. The saved CLF configuration includes an identifier of one or more SEs currently activated, one or more contactless application identifiers currently activated, priorities of these contactless applications, and usage of CLF configurations according to these SEs and contactless applications. A set of contactless protocol parameters.
步骤S206,ME查询第一目标SE是否使用ME配置CLF,若是,则转至步骤S207;否则,转至步骤S211。In step S206, the ME queries whether the first target SE uses the ME to configure the CLF, and if yes, proceeds to step S207; otherwise, proceeds to step S211.
由于步骤S204中ME已经确定目标SE的工作模式为非聚合模式,那么,目标SE的CLF配置方式可以有两种,即ME配置CLF或非ME配置CLF,非ME配置CLF一般是指由SE配置CLF。根据目标SE的CLF配置方式的不同,可以有两种不同的处理方式。Since the ME has determined that the working mode of the target SE is the non-aggregation mode in the step S204, the CEF configuration mode of the target SE may be two, that is, the ME configuration CLF or the non-ME configuration CLF, and the non-ME configuration CLF generally refers to the configuration by the SE. CLF. There are two different ways of processing depending on the configuration of the target SE's CLF.
步骤S207,ME查询是否保存有第一CLF配置,若是,则转至步骤S208;否则,转至步骤S213。In step S207, the ME queries whether the first CLF configuration is saved. If yes, the process goes to step S208; otherwise, the process goes to step S213.
步骤S208,ME确定第一CLF配置中包括的第一目标SE可用。 Step S208, the ME determines that the first target SE included in the first CLF configuration is available.
ME查询到保存有包含目标SE标识的CLF配置可能有多个,ME在选择保存的CLF配置时,以该CLF配置包含最少的除目标SE标识之外其他SE标识为原则。然后,ME需要确定待使用的该CLF配置中包含的每个SE均可用,即可激活。The ME may query that there are multiple CLF configurations that contain the target SE identifier. When the ME selects the saved CLF configuration, the ME includes the least SE identifiers other than the target SE identifier. Then, the ME needs to determine that each SE included in the CLF configuration to be used is available, and can be activated.
步骤S209,ME使用一组非接触协议参数配置CLF。In step S209, the ME configures the CLF using a set of non-contact protocol parameters.
若ME查询到目标SE是使用ME配置CLF,则ME对目标SE进行CLF配置。步骤S207和S209分别与前述实施例的步骤S103和S104相同,在此不再赘述。If the ME queries the target SE to configure the CLF using the ME, the ME performs CLF configuration on the target SE. Steps S207 and S209 are the same as steps S103 and S104 of the foregoing embodiment, and details are not described herein again.
步骤S210,ME激活第一CLF配置包含的第一SE和第一非接触应用。Step S210, the ME activates the first SE and the first contactless application included in the first CLF configuration.
ME确定CLF配置中包含的每个SE均可用后,采用该CLF配置中的非接触协议参数配置CLF,并激活CLF配置包含的所有SE,或者若该CLF配置包含的所有SE都处于激活状态,则激活请求激活的非接触应用。After the ME determines that each SE included in the CLF configuration is available, configure the CLF by using the non-contact protocol parameters in the CLF configuration, and activate all SEs included in the CLF configuration, or if all SEs included in the CLF configuration are activated, Then activate the contactless application that requested activation.
步骤S211,ME将CLF配置权限授予第一目标SE并记录第一SE的标识。Step S211, the ME grants the CLF configuration authority to the first target SE and records the identifier of the first SE.
当ME查询到目标SE是使用非ME配置CLF,即SE配置CLF时,则ME将CLF配置权限授予目标SE,由SE自身进行CLF配置,并记录目标SE的标识。When the ME queries the target SE to use the non-ME configuration CLF, that is, the SE configures the CLF, the ME grants the CLF configuration authority to the target SE, performs the CLF configuration by the SE itself, and records the identity of the target SE.
步骤S212,ME查询第一非接触应用是否设置有快速激活标记,若是,则转至步骤S213;否则,转至步骤S210。In step S212, the ME queries whether the first contactless application is provided with a quick activation flag, and if yes, proceeds to step S213; otherwise, proceeds to step S210.
若在步骤S202中ME查询到目标SE处于激活状态,或者目标SE处于去激活状态,且ME确定目标SE的工作模式为聚合模式,此时,ME查询要激活的非接触应用是否设置有快速激活标记,即对于目标SE处于激活状态的情景,不需要再去激活目标SE,对于目标SE的工作模式为聚合模式的情景,目标SE可以和当前处于激活状态的SE共存,则可考虑对非接触应用和/或目标SE进行快速激活。当然,若非接触应用没有设置快速激活标记,则转至步骤S213,ME对目标SE执行常规的冲突检测和非接触协议参数计算。If the ME finds that the target SE is in the active state, or the target SE is in the deactivated state, and the ME determines that the working mode of the target SE is the aggregation mode, the ME queries whether the contactless application to be activated is set to be activated quickly. Marking, that is, for the scenario in which the target SE is in an active state, there is no need to deactivate the target SE. For the scenario in which the working mode of the target SE is the aggregation mode, the target SE can coexist with the SE currently in the active state, then the non-contact can be considered. The application and/or target SE performs a quick activation. Of course, if the non-contact application does not set the quick activation flag, then go to step S213, and the ME performs regular collision detection and non-contact protocol parameter calculation on the target SE.
在满足一定的条件的情况下,对非接触应用进行快速激活,且采用保存的CLF配置对CLF进行配置,可以进一步提高CLF配置效率。When a certain condition is met, the non-contact application is quickly activated, and the CLF configuration is configured by using the saved CLF configuration, which can further improve the CLF configuration efficiency.
步骤S213,ME根据第一目标SE执行冲突检测和非接触协议参数计算,确定适用于第一目标SE的一组非接触协议参数。Step S213, the ME performs conflict detection and contactless protocol parameter calculation according to the first target SE, and determines a set of contactless protocol parameters applicable to the first target SE.
步骤S214,ME使用计算出的一组非接触协议参数配置CLF。 In step S214, the ME configures the CLF using the calculated set of non-contact protocol parameters.
若步骤S207中ME未查询到保存有适用于目标SE的CLF配置,则ME根据目标SE及要激活的应用执行冲突检测和非接触协议参数计算,冲突检测是指激活目标SE上的应用的AID是否冲突或与当前已经激活应用的AID是否有冲突,以及协议参数是否有冲突;非接触协议参数计算是指ME计算出的适合于当前激活的所有SE和非接触应用的一组非接触协议参数。ME计算出一组非接触协议参数后,采用该组非接触协议参数配置CLF。步骤S215,ME确定并去激活当前处于激活状态的非目标SE,并变更第一目标SE的工作模式。If the ME does not query to save the CLF configuration applicable to the target SE in step S207, the ME performs collision detection and contactless protocol parameter calculation according to the target SE and the application to be activated, and the conflict detection refers to activating the AID of the application on the target SE. Whether it conflicts or conflicts with the AID of the currently activated application, and whether the protocol parameters conflict; the contactless protocol parameter calculation refers to a set of contactless protocol parameters calculated by the ME for all SEs and contactless applications currently activated. . After the ME calculates a set of non-contact protocol parameters, the CLF is configured using the set of non-contact protocol parameters. In step S215, the ME determines and deactivates the non-target SE that is currently in the active state, and changes the working mode of the first target SE.
若在步骤S202中ME查询到目标SE处于激活状态,但ME接收到要变更目标SE的工作模式(例如,聚合模式变更为非聚合模式)的请求,此时,处于激活状态的SE可能不止目标SE,则ME去激活当前处于激活状态的非目标SE。If the ME queries the target SE to be in an active state in step S202, but the ME receives a request to change the working mode of the target SE (for example, the aggregation mode is changed to the non-aggregation mode), at this time, the SE in the active state may be more than the target. SE, then the ME deactivates the non-target SE that is currently active.
步骤S216,若ME查询到保存有第三CLF配置,则ME采用查询到的第三CLF配置中的一组非接触协议参数配置CLF。所述第三CLF配置是适用于目标SE的一个CLF配置。Step S216: If the ME queries to save the third CLF configuration, the ME configures the CLF by using a set of non-contact protocol parameters in the queried third CLF configuration. The third CLF configuration is a CLF configuration suitable for the target SE.
ME去激活当前处于激活状态的非目标SE后,只剩下处于激活状态的目标SE,则ME查询保存有包含目标SE的CLF配置,采用查询到的CLF配置中的一组非接触协议参数配置CLF,可以快速地对CLF进行配置。After the ME deactivates the non-target SE that is currently active, only the target SE in the active state remains, and the ME query saves the CLF configuration including the target SE, and uses a set of non-contact protocol parameter configurations in the queried CLF configuration. CLF, you can quickly configure the CLF.
除以上情境外,若当前处于激活状态的SE的工作模式为聚合模式,CLF配置方式为ME配置CLF,而目标SE的工作模式为非聚合模式,CLF配置方式为非ME配置CLF,或者,当前处于激活状态的SE的工作模式为非聚合模式,CLF配置方式为ME配置CLF,而目标SE的工作模式为非聚合模式,CLF配置方式为非ME配置CLF,也可以采用以保存的CLF配置的来配置CLF。In addition to the above scenario, if the working mode of the currently active SE is the aggregation mode, the CLF configuration mode is the ME configuration CLF, and the target SE working mode is the non-aggregation mode, the CLF configuration mode is the non-ME configuration CLF, or, the current The active mode of the SE is in the non-aggregation mode. The CLF configuration mode is that the ME is configured with the CLF, and the target SE is in the non-aggregation mode. The CLF configuration mode is the non-ME configuration CLF, or the saved CLF configuration. To configure the CLF.
根据本发明实施例提供的一种非接触前端的配置方法,根据当前处于激活状态的非目标SE和目标SE的工作模式及其CLF配置方式,当确定需要去激活当前处于激活状态的非目标安全单元时,且可以采用保存的适用于目标SE的非接触前端配置来配置CLF时,采用该非接触前端配置中的一组非接触协议参数配置该非接触前端,无需进行冲突检测和非接触协议参数计算,可以极大地提高非接触前端的配置效率。According to an embodiment of the present invention, a method for configuring a contactless front end, according to an active mode of a non-target SE and a target SE currently in an active state, and a CLF configuration manner thereof, when it is determined that the non-target security currently in an active state needs to be deactivated When the unit is configured, and the CLF can be configured by using the saved non-contact front-end configuration applicable to the target SE, the non-contact front end is configured by a set of non-contact protocol parameters in the non-contact front-end configuration, and no conflict detection and contactless protocol is required. Parameter calculation can greatly improve the configuration efficiency of the non-contact front end.
下面结合图4-图6,对本发明实施例提供的实现上述非接触前端的配置方法的终端进行详细描述: The terminal for implementing the configuration method of the non-contact front end provided by the embodiment of the present invention is described in detail below with reference to FIG. 4-6.
请参阅图4,为本发明实施例提供的一种终端的结构示意图,该终端1000包括管理实体ME11、分别与ME11连接的安全单元SE12和非接触前端CLF13,SE12与CLF13连接。其中,该ME11包括:FIG. 4 is a schematic structural diagram of a terminal according to an embodiment of the present invention. The terminal 1000 includes a management entity ME11, a security unit SE12 and a non-contact front end CLF13 respectively connected to the ME11, and the SE12 is connected to the CLF13. Among them, the ME11 includes:
第一获取单元111,用于获得第一目标安全单元SE的标识及状态,所述状态包括激活状态和去激活状态。The first obtaining unit 111 is configured to obtain an identifier and a state of the first target security unit SE, where the state includes an activated state and a deactivated state.
第一获取单元111获得第一目标SE的标识,可以是ME从GUI接口接收到激活一个或多个SE的请求,所述请求中包含的SE标识对应的SE为要激活的SE即目标SE;也可以是ME从GUI接口接收到激活一个或多个非接触应用的请求后,ME获得此一个或多个非接触应用所在的SE的标识,此SE标识对应的SE为目标SE;第一获取单元111可以使用所述目标SE的标识查询到目标SE的状态。The first obtaining unit 111 obtains the identifier of the first target SE, and the ME may receive a request to activate one or more SEs from the GUI interface, and the SE corresponding to the SE identifier included in the request is the SE to be activated, that is, the target SE; The ME may obtain the identifier of the SE where the one or more non-contact applications are located after the ME receives the request for activating the one or more non-contact applications, and the SE corresponding to the SE identifier is the target SE; Unit 111 may query the status of the target SE using the identity of the target SE.
第一激活单元112,用于激活所述第一目标SE。The first activation unit 112 is configured to activate the first target SE.
第一激活单元112激活第一目标SE之前,终端上可以没有处于激活状态的非目标SE,也可以具有处于激活状态的非目标SE,此时,在激活第一目标SE之前,需要去激活非目标SE。具体的去激活当前处于激活状态的非目标SE的场景如下:Before the first activation unit 112 activates the first target SE, the non-target SE in the active state may not be present on the terminal, or may have the non-target SE in the active state. At this time, before the activation of the first target SE, it is necessary to deactivate the non-target SE. Target SE. The specific scenario of deactivating a non-target SE that is currently active is as follows:
在本实施例的场景中,需要根据当前处于激活状态的SE的工作模式或目标SE的工作模式确定去激活当前处于激活状态的SE,并激活目标SE。一种场景是,当前处于激活状态的SE工作在非聚合模式,其CLF配置方式是ME配置CLF或者非ME配置CLF,而目标SE要求工作在聚合模式,其CLF配置方式是ME配置CLF。非聚合模式下仅一个SE可激活,而目标SE为去激活状态,显然当前处于激活状态的SE与目标SE不是同一个SE。而当前处于激活状态的SE工作在非聚合模式,则当前处于激活状态的SE只有一个,因此,第一激活单元112需要去激活当前处于激活状态的SE。另一种场景是,不论当前处于激活状态的SE是何种工作模式和CLF配置方式,目标SE要求工作在非聚合模式,其CLF配置方式为ME配置CLF,由于目标SE工作在非聚合模式且处于去激活状态,不允许其他SE与此目标SE同时激活,所以第一激活单元113需要去激活当前处于激活状态的SE。In the scenario of the embodiment, it is required to deactivate the currently active SE according to the working mode of the SE currently in the active state or the working mode of the target SE, and activate the target SE. In one scenario, the SE in the active state is in the non-aggregation mode, and the CLF configuration mode is the ME configuration CLF or the non-ME configuration CLF, and the target SE is required to work in the aggregation mode, and the CLF configuration mode is the ME configuration CLF. In the non-aggregated mode, only one SE can be activated, and the target SE is in a deactivated state. Obviously, the currently active SE is not the same SE as the target SE. While the currently active SE works in the non-aggregation mode, there is only one SE currently active, and therefore, the first activation unit 112 needs to deactivate the SE that is currently in the active state. Another scenario is that the target SE is required to work in the non-aggregation mode regardless of the working mode and the CLF configuration mode of the currently active SE, and the CLF configuration mode is configured for the ME by the CLF, because the target SE works in the non-aggregated mode and In the deactivated state, other SEs are not allowed to be activated simultaneously with this target SE, so the first activation unit 113 needs to deactivate the SE that is currently active.
第一查询单元113,用于查询是否保存有第一CLF配置,所述第一CLF配置包括适用于所述第一目标SE的一组非接触协议参数。The first query unit 113 is configured to query whether a first CLF configuration is saved, and the first CLF configuration includes a set of contactless protocol parameters applicable to the first target SE.
由于当前处于激活状态的SE均被去激活,无法确定当前配置到CLF的非 接触协议参数适用于新的激活的目标SE,因此,需要依据新的激活的目标SE对CLF重新进行配置。Since the currently active SEs are deactivated, it is not possible to determine the current configuration to the CLF. The contact protocol parameters apply to the new activated target SE, so the CLF needs to be reconfigured according to the new activated target SE.
本实施例中终端会预先保存特定场景下CLF的配置,这些CLF配置可以保存为CLF配置文件(profile),这些CLF配置包括特定场景下激活的一个或多个SE的标识、激活的一个或多个非接触应用的标识以及这些非接触应用的优先级,以及根据这些SE和非接触应用进行CLF配置时使用的一组非接触协议参数。In this embodiment, the terminal pre-stores the configuration of the CLF in a specific scenario, and the CLF configurations may be saved as a CLF profile, where the CLF configuration includes one or more SE identifiers activated in a specific scenario, and one or more activated ones. The identity of the contactless applications and the priority of these contactless applications, as well as a set of contactless protocol parameters used in CLF configuration based on these SE and contactless applications.
本实施例中要对目标SE进行CLF配置时,第一查询单元114查询是否保存有包含目标SE标识的CLF配置。若ME收到的是激活非接触应用的请求,则ME查询CLF配置时应查询CLF配置中是否包含目标SE标识和要激活的非接触应用的标识。由于保存的包含目标SE标识的CLF配置可能不止一个,在选择保存的CLF配置时,要求该CLF配置包含目标SE标识,且包含目标SE标识之外其它的SE标识尽可能少。In the embodiment, when the target SE is configured for CLF, the first query unit 114 queries whether the CLF configuration including the target SE identifier is saved. If the ME receives the request to activate the contactless application, the ME queries the CLF configuration to query whether the target SE identifier and the identifier of the contactless application to be activated are included in the CLF configuration. Since the saved CLF configuration including the target SE identifier may be more than one, when selecting the saved CLF configuration, the CLF configuration is required to include the target SE identifier, and the SE identifiers other than the target SE identifier are included as little as possible.
第一配置单元114,用于若查询到所述第一CLF配置,则使用所述一组非接触协议参数配置所述CLF。The first configuration unit 114 is configured to configure the CLF by using the set of non-contact protocol parameters if the first CLF configuration is queried.
若查询到保存的CLF配置,则第一配置单元115使用保存的CLF配置中的该组非接触协议参数配置CLF,无需进行冲突检测和非接触协议参数计算,直接配置到CLF,极大地提高了非接触前端的配置效率。If the saved CLF configuration is queried, the first configuration unit 115 configures the CLF using the set of non-contact protocol parameters in the saved CLF configuration, and does not need to perform conflict detection and non-contact protocol parameter calculation, and directly configures to the CLF, which greatly improves the configuration. The efficiency of the configuration of the contactless front end.
根据本发明实施例提供的一种终端,当管理实体确定终端上的一个或多个目标安全单元为去激活状态时,管理实体可查询保存的适用于该一个或多个目标安全单元的非接触前端配置,使用查询到的该非接触前端配置中的一组非接触协议参数配置该非接触前端,无需进行冲突检测和非接触协议参数计算,极大地提高了非接触前端的配置效率。According to an embodiment of the present invention, when the management entity determines that one or more target security units on the terminal are in a deactivated state, the management entity may query the saved non-contact applicable to the one or more target security units. The front-end configuration configures the non-contact front end by using a set of non-contact protocol parameters in the contactless front-end configuration, and does not need to perform collision detection and non-contact protocol parameter calculation, thereby greatly improving the configuration efficiency of the non-contact front end.
请参阅图5,为本发明实施例提供的另一种终端中的管理实体的结构示意图,该终端也包括管理实体ME21、分别与ME21连接的安全单元SE和非接触前端CLF,SE又与CLF连接。其中,该管理实体21包括:FIG. 5 is a schematic structural diagram of a management entity in another terminal according to an embodiment of the present invention. The terminal also includes a management entity ME21, a security unit SE connected to the ME21, and a non-contact front end CLF, and the SE and the CLF. connection. The management entity 21 includes:
第一获取单元211,用于获得第一目标安全单元SE的标识及状态,所述状态包括激活状态和去激活状态。The first obtaining unit 211 is configured to obtain an identifier and a state of the first target security unit SE, where the state includes an activated state and a deactivated state.
在本实施例中,第一获取单元211包括接收单元2111、第二确定单元2112、 第二获取单元2113和第三查询单元2114。In this embodiment, the first obtaining unit 211 includes a receiving unit 2111 and a second determining unit 2112. The second obtaining unit 2113 and the third query unit 2114.
接收单元2111,用于接收激活至少一个非接触应用的请求。The receiving unit 2111 is configured to receive a request to activate at least one contactless application.
本实施例以激活非接触应用为例进行描述。非接触应用具有唯一的应用标识符(英文:Application Identifier,简称:AID)。接收单元2111通过GUI接口接收非接触应用的激活请求,该请求中携带该AID。这里要激活的非接触应用可以是一个,也可以是多个。This embodiment is described by taking an activation non-contact application as an example. The contactless application has a unique application identifier (English: Application Identifier, AID for short). The receiving unit 2111 receives an activation request of the contactless application through the GUI interface, and the request carries the AID. The contactless application to be activated here may be one or more.
第二确定单元2112,用于确定至少一个非接触应用所在的SE为目标SE。The second determining unit 2112 is configured to determine that the SE where the at least one non-contact application is located is the target SE.
第二获取单元2113,用于获得目标SE的标识。The second obtaining unit 2113 is configured to obtain an identifier of the target SE.
第二确定单元2112确定非接触应用AID所在的目标SE,多个非接触应用可以位于一个目标SE上,也可以位于多个目标SE上。The second determining unit 2112 determines the target SE where the contactless application AID is located, and the plurality of contactless applications may be located on one target SE or may be located on multiple target SEs.
第三查询单元2114,用于根据第一目标SE的标识,查询第一目标SE的状态。The third query unit 2114 is configured to query the status of the first target SE according to the identifier of the first target SE.
第三查询单元2114查询目标SE的激活状态,根据目标SE的激活状态的不同,进行不同的处理。The third query unit 2114 queries the activation state of the target SE, and performs different processing according to the activation state of the target SE.
在另一种实施方式中,接收单元2111还用于接收激活第一SE的请求,所述请求包括所述第一目标SE的标识。In another implementation, the receiving unit 2111 is further configured to receive a request to activate the first SE, where the request includes an identifier of the first target SE.
则接收单元2111直接连接第三查询单元2114。Then, the receiving unit 2111 directly connects to the third query unit 2114.
第一确定单元212,用于当所述第一目标SE是去激活状态时,根据当前处于激活状态的SE的工作模式和/或所述第一目标SE的工作模式,确定去激活所述当前处于激活状态的非目标SE。The first determining unit 212 is configured to: when the first target SE is in a deactivated state, determine to deactivate the current according to an operating mode of the SE currently in an activated state and/or an operating mode of the first target SE A non-target SE that is active.
在本实施例中,第一确定单元212包括第三确定单元2121、第四确定单元2122和第五确定单元2123。In the present embodiment, the first determining unit 212 includes a third determining unit 2121, a fourth determining unit 2122, and a fifth determining unit 2123.
第三确定单元2121,用于确定所述当前处于激活状态的非目标SE的工作模式。The third determining unit 2121 is configured to determine an operating mode of the non-target SE that is currently in an active state.
ME可以查询到当前处于激活状态的SE的工作模式。The ME can query the working mode of the SE that is currently active.
第四确定单元2122,用于根据服务策略和/或所述第一目标SE的属性,确定所述第一目标SE的工作模式。The fourth determining unit 2122 is configured to determine an operating mode of the first target SE according to the service policy and/or the attribute of the first target SE.
当第三查询单元2114查询到目标SE处于去激活状态时,第四确定单元2122进一步确定目标SE的工作模式。When the third query unit 2114 queries that the target SE is in the deactivated state, the fourth determining unit 2122 further determines the working mode of the target SE.
第四确定单元2122可以根据服务策略和/或目标SE的属性,确定目标SE的 工作模式:The fourth determining unit 2122 may determine the target SE according to the service policy and/or the attribute of the target SE. Operating mode:
服务策略可包括:Service strategies can include:
a)确保同一个服务运营商提供的尽量多的服务同时可用,此时对应于激活单个SE,ME工作在非聚合模式,这样可以减少其他SE对目标SE的影响;a) Ensure that as many services as possible provided by the same service provider are available at the same time. In this case, the ME works in a non-aggregated mode corresponding to activating a single SE, which can reduce the impact of other SEs on the target SE;
b)确保多个服务运营商提供的服务同时可用,此时对应于聚合模式,多个SE上的服务都有机会被使用,此时可以确保兼顾多个服务运营商的利益;b) Ensure that the services provided by multiple service operators are available at the same time. In this case, corresponding to the aggregation mode, services on multiple SEs have opportunities to be used, and at this time, it is possible to ensure the interests of multiple service operators;
目标SE的属性,包括:The attributes of the target SE, including:
a)目标SE只支持非聚合模式,且由SE配置CLF;a) The target SE only supports the non-aggregation mode, and the CLF is configured by the SE;
b)目标SE只支持非聚合模式,可以由ME配置CLF;b) The target SE only supports the non-aggregation mode, and the CLF can be configured by the ME;
c)目标SE支持聚合与非聚合模式,可以使用ME配置CLF。c) The target SE supports both aggregation and non-aggregation modes, and the ME can be configured using the ME.
例如,场景A:目标SE只支持非聚合模式,则根据属性即可确定SE或ME的工作模式,需要说明的是,激活状态的SE的工作模式与ME的工作模式是一致的;场景B:服务策略是要求最多的SE同时工作,SE支持聚合或非聚合,则ME确定此时ME和SE应工作在聚合模式;场景C:服务策略要求尽量使用一个SE上的应用,SE支持聚合和非聚合,则ME和SE应工作在非聚合模式。For example, scenario A: The target SE only supports the non-aggregation mode, and the working mode of the SE or the ME can be determined according to the attribute. It should be noted that the working mode of the SE in the activated state is consistent with the working mode of the ME; scenario B: The service policy is that the most required SEs work at the same time. If the SE supports aggregation or non-aggregation, the ME determines that the ME and the SE should work in the aggregation mode. Scenario C: The service policy requires that an application on one SE be used as much as possible. The SE supports aggregation and non-aggregation. For aggregation, ME and SE should work in non-aggregate mode.
根据目标SE的工作模式是聚合模式还是非聚合模式,进行不同的处理。Different processing is performed depending on whether the working mode of the target SE is an aggregation mode or a non-aggregation mode.
第五确定单元2123,用于若确定所述当前处于激活状态的非目标SE的工作模式为非聚合模式和/或所述第一目标SE的工作模式为非聚合模式,则确定去激活所述当前处于激活状态的非目标SE。a fifth determining unit 2123, configured to: if it is determined that the working mode of the non-target SE that is currently in an active state is a non-aggregating mode and/or the working mode of the first target SE is a non-aggregating mode, determining to deactivate the A non-target SE that is currently active.
第一激活单元213,用于去激活所述当前处于激活状态的非目标SE,并激活所述第一目标SE。The first activation unit 213 is configured to deactivate the non-target SE that is currently in an active state, and activate the first target SE.
第一查询单元214,用于查询是否保存有第一CLF配置,所述第一CLF配置包括适用于所述第一目标SE的一组非接触协议参数。The first query unit 214 is configured to query whether a first CLF configuration is saved, and the first CLF configuration includes a set of contactless protocol parameters applicable to the first target SE.
第一查询单元214查询到保存有包含目标SE标识的CLF配置可能有多个,ME在选择保存的CLF配置时,以该CLF配置包含最少的除目标SE标识之外其他SE标识为原则。The first query unit 214 queries that there may be multiple CLF configurations that contain the target SE identifier. When the ME selects the saved CLF configuration, the ME includes the least SE identifiers other than the target SE identifier.
第九确定单元215,用于确定所述第一/第三CLF配置中包括的第一目标SE可用。The ninth determining unit 215 is configured to determine that the first target SE included in the first/third CLF configuration is available.
第九确定单元215需要确定待使用的该CLF配置中包含的每个SE均可用,即可激活。 The ninth determining unit 215 needs to determine that each SE included in the CLF configuration to be used is available, that is, can be activated.
第一配置单元216,用于若查询到所述第一CLF配置,则使用所述一组非接触协议参数配置所述CLF。The first configuration unit 216 is configured to configure the CLF by using the set of non-contact protocol parameters if the first CLF configuration is queried.
若第一查询单元214查询到目标SE是使用ME配置CLF,则第一配置单元216对目标SE进行CLF配置。ME确定CLF配置中包含的每个SE均可用后,采用该CLF配置中的非接触协议参数配置CLF,并激活CLF配置包含的所有SE,或者若该CLF配置包含的所有SE都处于激活状态,则激活请求激活的非接触应用。If the first query unit 214 queries the target SE to use the ME configuration CLF, the first configuration unit 216 performs CLF configuration on the target SE. After the ME determines that each SE included in the CLF configuration is available, configure the CLF by using the non-contact protocol parameters in the CLF configuration, and activate all SEs included in the CLF configuration, or if all SEs included in the CLF configuration are activated, Then activate the contactless application that requested activation.
ME去激活当前处于激活状态的非目标SE后,只剩下处于激活状态的目标SE,则ME查询保存有包含目标SE的CLF配置,采用查询到的CLF配置中的一组非接触协议参数配置CLF,可以快速地对CLF进行配置。After the ME deactivates the non-target SE that is currently active, only the target SE in the active state remains, and the ME query saves the CLF configuration including the target SE, and uses a set of non-contact protocol parameter configurations in the queried CLF configuration. CLF, you can quickly configure the CLF.
第四查询单元217,用于若所述ME查询到所述第一目标SE处于激活状态,或所述第一目标SE处于去激活状态,且所述ME确定所述第一目标SE的工作模式为聚合模式,则查询所述第一非接触应用是否设置有快速激活标记。The fourth query unit 217 is configured to: if the ME queries that the first target SE is in an activated state, or the first target SE is in a deactivated state, and the ME determines an operating mode of the first target SE In the aggregation mode, it is queried whether the first contactless application is provided with a quick activation flag.
第四配置单元218,用于若所述第一非接触应用设置有所述快速激活标记,所述ME使用查询到的所述第一CLF配置配置所述CLF。The fourth configuration unit 218 is configured to configure the CLF by using the queried first CLF configuration if the first contactless application is configured with the quick activation flag.
第三激活单元219,用于激活所述第一CLF配置包含的第一SE和/或第一非接触应用。The third activation unit 219 is configured to activate the first SE and/or the first contactless application included in the first CLF configuration.
若ME查询到目标SE处于激活状态,或者目标SE处于去激活状态,且ME确定目标SE的工作模式为聚合模式,此时,ME查询要激活的非接触应用是否设置有快速激活标记,即对于目标SE处于激活状态的情景,不需要再去激活目标SE,对于目标SE的工作模式为聚合模式的情景,目标SE可以和当前处于激活状态的SE共存,则可考虑对非接触应用和/或目标SE进行快速激活。当然,若非接触应用没有设置快速激活标记,则ME对目标SE执行常规的冲突检测和非接触协议参数计算。If the ME queries that the target SE is in the active state, or the target SE is in the deactivated state, and the ME determines that the working mode of the target SE is the aggregation mode, at this time, the ME queries whether the contactless application to be activated is set with the quick activation flag, that is, The target SE is in an active state, and the target SE does not need to be activated. For the scenario where the target SE works in the aggregation mode, the target SE can coexist with the currently active SE, then the contactless application and/or The target SE performs a quick activation. Of course, if the non-contact application does not set the quick activation flag, the ME performs regular collision detection and contactless protocol parameter calculation on the target SE.
在满足一定的条件的情况下,对非接触应用进行快速激活,且采用保存的CLF配置对CLF进行配置,可以进一步提高CLF配置效率。When a certain condition is met, the non-contact application is quickly activated, and the CLF configuration is configured by using the saved CLF configuration, which can further improve the CLF configuration efficiency.
第二查询单元220,用于查询所述当前处于激活状态的非目标SE的CLF配置方式是否为ME配置CLF。The second query unit 220 is configured to query whether the CLF configuration mode of the non-target SE that is currently in an active state is an ME configuration CLF.
生成或更新单元221,用于若查询的结果为ME配置CLF,则根据当前CLF使用的全部非接触协议参数生成或更新第二CLF配置,以便ME再次激活第二 CLF配置适用的第一SE时使用。The generating or updating unit 221 is configured to: if the result of the query is a CLF configured by the ME, generate or update the second CLF configuration according to all the contactless protocol parameters used by the current CLF, so that the ME activates the second again. Used when the first SE is applied to the CLF configuration.
在去激活当前处于激活状态的非目标SE之前,若ME查询到当前处于激活状态的非目标SE的CLF配置方式为ME配置CLF,则ME根据当前CLF使用的全部非接触协议参数生成或更新第二CLF配置,即,若第二CLF配置不存在,则根据当前CLF使用的全部非接触协议参数生成第二CLF配置;若第二CLF配置已经存在则根据当前CLF使用的全部非接触协议参数更新第二CLF配置中相应的配置参数。从而可以在激活此CLF配置适用的第一SE时直接使用。保存的该CLF配置包括当前激活的一个或多个SE的标识、当前激活的一个或多个非接触应用标识、这些非接触应用的优先级以及根据这些SE和非接触应用进行CLF配置时使用的一组非接触协议参数。Before deactivating the non-target SE that is currently in the active state, if the ME queries the CLF configuration mode of the non-target SE that is currently active, the ME configures the CLF, and the ME generates or updates according to all the non-contact protocol parameters used by the current CLF. The second CLF configuration, that is, if the second CLF configuration does not exist, the second CLF configuration is generated according to all the non-contact protocol parameters used by the current CLF; if the second CLF configuration already exists, all the non-contact protocol parameters used by the current CLF are updated. Corresponding configuration parameters in the second CLF configuration. This can be used directly when activating the first SE to which this CLF configuration applies. The saved CLF configuration includes an identifier of one or more SEs currently activated, one or more contactless application identifiers currently activated, priorities of these contactless applications, and usage of CLF configurations according to these SEs and contactless applications. A set of contactless protocol parameters.
第七确定单元222,用于确定所述第一目标SE的CLF配置方式。The seventh determining unit 222 is configured to determine a CLF configuration manner of the first target SE.
授予单元223,用于若所述第一目标SE的CLF配置方式为非ME配置CLF,则将CLF配置权限授予所述第一目标SE。The granting unit 223 is configured to grant the CLF configuration authority to the first target SE if the CLF configuration mode of the first target SE is a non-ME configuration CLF.
记录单元224,用于记录所述第一目标SE的标识。The recording unit 224 is configured to record the identifier of the first target SE.
由于ME已经确定目标SE的工作模式为非聚合模式,那么,目标SE的CLF配置方式可以有两种,即ME配置CLF或非ME配置CLF,非ME配置CLF一般是指由SE配置CLF。根据目标SE的CLF配置方式的不同,可以有两种不同的处理方式。Since the ME has determined that the working mode of the target SE is the non-aggregation mode, the CEF configuration mode of the target SE may be two, that is, the ME configuration CLF or the non-ME configuration CLF, and the non-ME configuration CLF generally refers to the CLF configured by the SE. There are two different ways of processing depending on the configuration of the target SE's CLF.
当ME查询到目标SE是使用非ME配置CLF,即SE配置CLF时,则ME将CLF配置权限授予目标SE,由SE自身进行CLF配置,并记录目标SE的标识。When the ME queries the target SE to use the non-ME configuration CLF, that is, the SE configures the CLF, the ME grants the CLF configuration authority to the target SE, performs the CLF configuration by the SE itself, and records the identity of the target SE.
第八确定单元225,用于当所述第一目标SE处于激活状态时,确定去激活当前处于激活状态的非目标SE。The eighth determining unit 225 is configured to determine to deactivate the non-target SE that is currently in an active state when the first target SE is in an active state.
第二激活单元226,用于去激活当前处于激活状态的非目标SE。The second activation unit 226 is configured to deactivate the non-target SE that is currently in an active state.
变更单元227,用于变更所述第一目标SE的工作模式。The changing unit 227 is configured to change the working mode of the first target SE.
第四查询单元228,用于查询是否保存有第三CLF配置。The fourth query unit 228 is configured to query whether a third CLF configuration is saved.
第三配置单元229,用于若查询到所述第三CLF配置,则使用所述查询到的第三CLF配置中的一组非接触协议参数配置所述CLF。The third configuration unit 229 is configured to configure the CLF by using a set of non-contact protocol parameters in the queried third CLF configuration if the third CLF configuration is queried.
若ME查询到目标SE处于激活状态,但ME接收到要变更目标SE的工作模式(例如,聚合模式变更为非聚合模式)的请求,此时,处于激活状态的SE可能不止目标SE,则ME去激活当前处于激活状态的非目标SE。 If the ME queries that the target SE is in the active state, but the ME receives a request to change the working mode of the target SE (for example, the aggregation mode is changed to the non-aggregation mode), at this time, the SE in the active state may be more than the target SE, then the ME Deactivate the non-target SE that is currently active.
第六确定单元230,用于若未查询到所述第一CLF配置,根据所述第一目标SE执行冲突检测和非接触协议参数计算,确定适用于第一目标SE的一组非接触协议参数;The sixth determining unit 230 is configured to: if the first CLF configuration is not queried, perform conflict detection and contactless protocol parameter calculation according to the first target SE, and determine a set of non-contact protocol parameters applicable to the first target SE. ;
第二配置单元231,用于使用计算出的一组非接触协议参数配置所述CLF。The second configuration unit 231 is configured to configure the CLF using the calculated set of non-contact protocol parameters.
若ME未查询到保存有适用于目标SE的CLF配置,则ME根据目标SE及要激活的应用执行冲突检测和非接触协议参数计算,冲突检测是指激活目标SE上的应用的AID是否冲突或与当前已经激活应用的AID是否有冲突,以及协议参数是否有冲突;非接触协议参数计算是指ME计算出的适合于当前激活的所有SE和非接触应用的一组非接触协议参数。ME计算出一组非接触协议参数后,采用该组非接触协议参数配置CLF。If the ME does not query to save the CLF configuration applicable to the target SE, the ME performs collision detection and contactless protocol parameter calculation according to the target SE and the application to be activated, and the conflict detection refers to whether the AID of the application on the target SE is activated or not Whether there is a conflict with the AID of the currently activated application, and whether the protocol parameters conflict; the contactless protocol parameter calculation refers to a set of contactless protocol parameters calculated by the ME suitable for all currently activated SE and contactless applications. After the ME calculates a set of non-contact protocol parameters, the CLF is configured using the set of non-contact protocol parameters.
除以上情境外,若当前处于激活状态的SE的工作模式为聚合模式,CLF配置方式为ME配置CLF,而目标SE的工作模式为非聚合模式,CLF配置方式为非ME配置CLF,或者,当前处于激活状态的SE的工作模式为非聚合模式,CLF配置方式为ME配置CLF,而目标SE的工作模式为非聚合模式,CLF配置方式为非ME配置CLF,也可以采用以保存的CLF配置的来配置CLF。In addition to the above scenario, if the working mode of the currently active SE is the aggregation mode, the CLF configuration mode is the ME configuration CLF, and the target SE working mode is the non-aggregation mode, the CLF configuration mode is the non-ME configuration CLF, or, the current The active mode of the SE is in the non-aggregation mode. The CLF configuration mode is that the ME is configured with the CLF, and the target SE is in the non-aggregation mode. The CLF configuration mode is the non-ME configuration CLF, or the saved CLF configuration. To configure the CLF.
根据本发明实施例提供的一种终端,根据当前处于激活状态的非目标SE和目标SE的工作模式及其CLF配置方式,当确定需要去激活当前处于激活状态的非目标安全单元时,且可以采用保存的适用于目标SE的非接触前端配置来配置CLF时,采用该非接触前端配置中的一组非接触协议参数配置该非接触前端,无需进行冲突检测和非接触协议参数计算,可以极大地提高非接触前端的配置效率。According to an embodiment of the present invention, a terminal is configured to deactivate a non-target security unit that is currently in an active state according to an active mode of a non-target SE and a target SE that is currently in an active state and a CLF configuration manner thereof, and may When the CLF is configured by using the saved non-contact front-end configuration for the target SE, the non-contact front end is configured by using a set of non-contact protocol parameters in the non-contact front-end configuration, and the conflict detection and non-contact protocol parameter calculation are not required, and the CLF can be extremely The earth improves the efficiency of the configuration of the non-contact front end.
请参阅图6,为本发明实施例提供的又一种终端的结构示意图,该终端3000包括存储器31、处理器32、安全单元SE33和非接触前端CLF34,处理器32分别与存储器31、安全单元SE33和非接触前端CLF34连接。FIG. 6 is a schematic structural diagram of still another terminal according to an embodiment of the present invention. The terminal 3000 includes a memory 31, a processor 32, a security unit SE33, and a non-contact front end CLF34. The processor 32 is respectively connected to the memory 31 and the security unit. The SE33 is connected to the non-contact front end CLF34.
该处理器32可以是DH或者NFCC,甚至可以是SE内部的微处理器。The processor 32 can be DH or NFCC, or even a microprocessor internal to the SE.
其中,处理器32用于执行以下步骤:The processor 32 is configured to perform the following steps:
获得第一目标安全单元SE的标识及状态,所述状态包括激活状态和去激活状态;Obtaining an identifier and a state of the first target security unit SE, the state including an activated state and a deactivated state;
当所述第一目标SE是去激活状态时,激活所述第一目标SE; When the first target SE is in a deactivated state, the first target SE is activated;
查询是否保存有第一CLF配置,所述第一CLF配置包括适用于所述第一目标SE的一组非接触协议参数;Querying whether a first CLF configuration is saved, the first CLF configuration including a set of contactless protocol parameters applicable to the first target SE;
若查询到所述第一CLF配置,则使用所述一组非接触协议参数配置所述CLF。If the first CLF configuration is queried, the CLF is configured using the set of contactless protocol parameters.
在一种实施方式中,所述处理器32用于执行所述当所述第一目标SE是去激活状态时,激活所述第一目标SE的步骤之前,还用于执行如下步骤:In an embodiment, the processor 32 is configured to perform the following steps before the step of activating the first target SE when the first target SE is in a deactivated state:
根据当前处于激活状态的非目标SE的工作模式和/或所述第一目标SE的工作模式,确定并去激活所述当前处于激活状态的非目标SE。The non-target SE that is currently active is determined and deactivated according to an operating mode of the non-target SE currently in an active state and/or an operating mode of the first target SE.
在另一种实施方式中,所述处理器32用于执行所述使用所述一组非接触协议参数配置所述CLF之前,还用于执行如下步骤:In another embodiment, the processor 32 is configured to perform the following steps before the performing the using the set of contactless protocol parameters to configure the CLF:
查询所述当前处于激活状态的非目标SE的CLF配置方式是否为处理器配置CLF;Query whether the CLF configuration mode of the non-target SE that is currently active is a processor configuration CLF;
若查询的结果为处理器配置CLF,则根据适用于所述当前处于激活状态的非目标SE的CLF使用的全部非接触协议参数生成或更新第二CLF配置,以便处理器再次激活第二CLF配置适用的第一SE时使用。If the result of the query is a processor configuration CLF, the second CLF configuration is generated or updated according to all contactless protocol parameters applicable to the CLF of the non-target SE that is currently active, so that the processor activates the second CLF configuration again. Used when the first SE is applied.
在另一种实施方式中,所述处理器32用于执行所述获得第一目标SE的标识及其状态的步骤,包括:In another embodiment, the processor 32 is configured to perform the step of obtaining the identifier of the first target SE and its status, including:
接收到激活第一SE的请求,所述请求包括所述第一目标SE的标识,Receiving a request to activate a first SE, the request including an identifier of the first target SE,
或者接收到激活至少一个非接触应用的请求,确定所述至少一个非接触应用所在的SE为所述第一目标SE并获得所述第一目标SE的标识;Or receiving a request to activate the at least one contactless application, determining that the SE where the at least one contactless application is located is the first target SE and obtaining the identifier of the first target SE;
根据所述第一目标SE的标识,查询所述第一目标SE的状态。And querying, according to the identifier of the first target SE, a status of the first target SE.
在又一种实施方式中,所述处理器32用于执行所述根据当前处于激活状态的SE的工作模式和/或所述第一目标SE的工作模式,确定去激活所述当前处于激活状态的非目标SE,包括:In still another embodiment, the processor 32 is configured to perform the deactivating the currently active state according to an operating mode of an SE that is currently in an active state and/or an operating mode of the first target SE. Non-target SE, including:
确定所述当前处于激活状态的非目标SE的工作模式;Determining an operating mode of the non-target SE that is currently in an active state;
根据服务策略和/或所述第一目标SE的属性,确定所述第一目标SE的工作模式;Determining an operation mode of the first target SE according to a service policy and/or an attribute of the first target SE;
若确定所述当前处于激活状态的非目标SE的工作模式为非聚合模式和/或所述第一目标SE的工作模式为非聚合模式,则确定去激活所述当前处于激活状态的非目标SE。 Determining to deactivate the currently active non-target SE if it is determined that the working mode of the non-target SE currently in an active state is a non-aggregated mode and/or the working mode of the first target SE is a non-aggregating mode .
在又一种实施方式中,所述处理器32还用于执行如下步骤:In still another embodiment, the processor 32 is further configured to perform the following steps:
若未查询到所述第一CLF配置,根据所述第一目标SE用于执行冲突检测和非接触协议参数计算,确定适用于第一目标SE的一组非接触协议参数;If the first CLF configuration is not queried, determining, according to the first target SE, a collision detection and a contactless protocol parameter calculation, determining a set of contactless protocol parameters applicable to the first target SE;
使用计算出的一组非接触协议参数配置所述CLF。The CLF is configured using a calculated set of contactless protocol parameters.
在又一种实施方式中,所述第一或第二CLF配置还包括激活的第一SE的标识、激活的第一非接触应用的标识和所述第一非接触应用的优先级。In still another embodiment, the first or second CLF configuration further includes an identifier of the activated first SE, an identifier of the activated first contactless application, and a priority of the first contactless application.
在又一种实施方式中,所述处理器32还用于执行如下步骤:In still another embodiment, the processor 32 is further configured to perform the following steps:
确定所述第一目标SE的CLF配置方式;Determining a CLF configuration manner of the first target SE;
若所述第一目标SE的CLF配置方式为非处理器配置CLF,则将CLF配置权限授予所述第一目标SE并记录所述第一目标SE的标识。If the CLF configuration mode of the first target SE is a non-processor configuration CLF, the CLF configuration authority is granted to the first target SE and the identifier of the first target SE is recorded.
在又一种实施方式中,所述处理器32还用于执行如下步骤:In still another embodiment, the processor 32 is further configured to perform the following steps:
当所述第一目标SE处于激活状态时,确定并去激活当前处于激活状态的非目标SE,并变更所述第一目标SE的工作模式;Determining and deactivating a non-target SE that is currently in an active state when the first target SE is in an active state, and changing an operating mode of the first target SE;
查询是否保存有第三CLF配置;Whether the query saves the third CLF configuration;
若查询到所述第三CLF配置,则使用所述查询到的第三CLF配置中的一组非接触协议参数配置所述CLF。If the third CLF configuration is queried, the CLF is configured using a set of contactless protocol parameters in the queried third CLF configuration.
在又一种实施方式中,所述处理器32用于执行所述查询是否保存有第一/第三CLF配置的步骤之后,以及所述处理器用于执行所述使用所述查询到的第一/第三CLF配置中的一组非接触协议参数配置所述CLF的步骤之前,还用于执行如下步骤:In still another embodiment, the processor 32 is configured to perform the step of whether the query saves the first/third CLF configuration, and the processor is configured to perform the first using the query Before the step of configuring the CLF by a set of non-contact protocol parameters in the third CLF configuration, the following steps are also performed:
确定所述第一/第三CLF配置中包括的第一目标SE可用。It is determined that the first target SE included in the first/third CLF configuration is available.
在又一种实施方式中,所述处理器32还用于执行如下步骤:In still another embodiment, the processor 32 is further configured to perform the following steps:
若查询到所述第一目标SE处于激活状态,或所述第一目标SE处于去激活状态,且确定所述第一目标SE的工作模式为聚合模式,则查询所述第一非接触应用是否设置有快速激活标记;Querying whether the first non-contact application is queried if the first target SE is in an activated state, or the first target SE is in a deactivated state, and it is determined that the working mode of the first target SE is an aggregation mode Set with a quick activation tag;
若所述第一非接触应用设置有所述快速激活标记,使用查询到的所述If the first contactless application is provided with the quick activation flag, using the queried
第一CLF配置配置所述CLF,并激活所述第一CLF配置包含的第一SE和/或第一非接触应用。The first CLF configuration configures the CLF and activates the first SE and/or the first contactless application included in the first CLF configuration.
根据本发明实施例提供的一种终端,根据当前处于激活状态的非目标SE和目标SE的工作模式及其CLF配置方式,可以采用保存的适用于目标SE的非 接触前端配置来配置CLF时,采用该非接触前端配置中的一组非接触协议参数配置该非接触前端,无需进行冲突检测和非接触协议参数计算,可以极大地提高非接触前端的配置效率。According to the embodiment of the present invention, according to the working mode of the non-target SE and the target SE that are currently in the active state and the CLF configuration mode, the saved non-target SE may be used. When the front-end configuration is configured to configure the CLF, the non-contact front end is configured by using a set of non-contact protocol parameters in the non-contact front-end configuration, and collision detection and non-contact protocol parameter calculation are not required, which can greatly improve the configuration efficiency of the non-contact front end.
需要说明的是,对于前述的各方法实施例,为了简单描述,故将其都表述为一系列的动作组合,但是本领域技术人员应该知悉,本发明并不受所描述的动作顺序的限制,因为根据本发明,某些步骤可以采用其他顺序或者同时进行。其次,本领域技术人员也应该知悉,说明书中所描述的实施例均属于优选实施例,所涉及的动作和模块并不一定是本发明所必须的。It should be noted that, for the foregoing method embodiments, for the sake of simple description, they are all expressed as a series of action combinations, but those skilled in the art should understand that the present invention is not limited by the described action sequence. Because certain steps may be performed in other sequences or concurrently in accordance with the present invention. In addition, those skilled in the art should also understand that the embodiments described in the specification are all preferred embodiments, and the actions and modules involved are not necessarily required by the present invention.
在上述实施例中,对各个实施例的描述都各有侧重,某个实施例中没有详述的部分,可以参见其他实施例的相关描述。In the above embodiments, the descriptions of the various embodiments are different, and the details that are not detailed in a certain embodiment can be referred to the related descriptions of other embodiments.
本发明实施例方法中的步骤可以根据实际需要进行顺序调整、合并和删减。The steps in the method of the embodiment of the present invention may be sequentially adjusted, merged, and deleted according to actual needs.
本发明实施例装置中的单元可以根据实际需要进行合并、划分和删减。本领域的技术人员可以将本说明书中描述的不同实施例以及不同实施例的特征进行结合或组合。The units in the apparatus of the embodiment of the present invention may be combined, divided, and deleted according to actual needs. Those skilled in the art can combine or combine the different embodiments described in the specification and the features of the different embodiments.
通过以上的实施方式的描述,所属领域的技术人员可以清楚地了解到本发明可以用硬件实现,或固件实现,或它们的组合方式来实现。当使用软件实现时,可以将上述功能存储在计算机可读介质中或作为计算机可读介质上的一个或多个指令或代码进行传输。计算机可读介质包括计算机存储介质和通信介质,其中通信介质包括便于从一个地方向另一个地方传送计算机程序的任何介质。存储介质可以是计算机能够存取的任何可用介质。以此为例但不限于:计算机可读介质可以包括随机存取存储器(Random Access Memory,RAM)、只读存储器(Read-Only Memory,ROM)、电可擦可编程只读存储器(Electrically Erasable Programmable Read-Only Memory,EEPROM)、只读光盘(Compact Disc Read-Only Memory,CD-ROM)或其他光盘存储、磁盘存储介质或者其他磁存储设备、或者能够用于携带或存储具有指令或数据结构形式的期望的程序代码并能够由计算机存取的任何其他介质。此外。任何连接可以适当的成为计算机可读介质。例如,如果软件是使用同轴电缆、光纤光缆、双绞线、数字用户线(Digital Subscriber Line,DSL)或者诸如红外线、无线电和微波之类的无线 技术从网站、服务器或者其他远程源传输的,那么同轴电缆、光纤光缆、双绞线、DSL或者诸如红外线、无线和微波之类的无线技术包括在所属介质的定影中。如本发明所使用的,盘(Disk)和碟(disc)包括压缩光碟(CD)、激光碟、光碟、数字通用光碟(DVD)、软盘和蓝光光碟,其中盘通常磁性的复制数据,而碟则用激光来光学的复制数据。上面的组合也应当包括在计算机可读介质的保护范围之内。Through the description of the above embodiments, those skilled in the art can clearly understand that the present invention can be implemented in hardware, firmware implementation, or a combination thereof. When implemented in software, the functions described above may be stored in or transmitted as one or more instructions or code on a computer readable medium. Computer readable media includes both computer storage media and communication media including any medium that facilitates transfer of a computer program from one location to another. A storage medium may be any available media that can be accessed by a computer. For example, but not limited to, the computer readable medium may include a random access memory (RAM), a read-only memory (ROM), and an electrically erasable programmable read-only memory (Electrically Erasable Programmable). Read-Only Memory (EEPROM), Compact Disc Read-Only Memory (CD-ROM) or other optical disc storage, disk storage media or other magnetic storage devices, or can be used to carry or store an instruction or data structure. The desired program code and any other medium that can be accessed by the computer. Also. Any connection may suitably be a computer readable medium. For example, if the software uses coaxial cable, fiber optic cable, twisted pair, Digital Subscriber Line (DSL), or wireless such as infrared, radio, and microwave Where technology is transmitted from a website, server or other remote source, then coaxial cable, fiber optic cable, twisted pair, DSL or wireless technologies such as infrared, wireless and microwave are included in the fixing of the associated medium. As used in the present invention, a disk and a disc include a compact disc (CD), a laser disc, a compact disc, a digital versatile disc (DVD), a floppy disk, and a Blu-ray disc, wherein the disc is usually magnetically copied, and the disc is The laser is used to optically replicate the data. Combinations of the above should also be included within the scope of the computer readable media.
总之,以上所述仅为本发明技术方案的较佳实施例而已,并非用于限定本发明的保护范围。凡在本发明的精神和原则之内,所作的任何修改、等同替换、改进等,均应包含在本发明的保护范围之内。 In summary, the above description is only a preferred embodiment of the technical solution of the present invention, and is not intended to limit the scope of the present invention. Any modifications, equivalent substitutions, improvements, etc. made within the spirit and scope of the present invention are intended to be included within the scope of the present invention.

Claims (33)

  1. 一种非接触前端CLF的配置方法,其特征在于,所述方法包括:A method for configuring a non-contact front-end CLF, the method comprising:
    管理实体ME获得第一目标安全单元SE的标识及状态,所述状态包括激活状态和去激活状态;The management entity ME obtains an identifier and a state of the first target security unit SE, the state including an activated state and a deactivated state;
    当所述第一目标SE是去激活状态时,激活所述第一目标SE;When the first target SE is in a deactivated state, the first target SE is activated;
    所述ME查询是否保存有第一CLF配置,所述第一CLF配置包括适用于所述第一目标SE的一组非接触协议参数;Whether the ME query saves a first CLF configuration, where the first CLF configuration includes a set of contactless protocol parameters applicable to the first target SE;
    若查询到所述第一CLF配置,则所述ME使用所述一组非接触协议参数配置所述CLF。If the first CLF configuration is queried, the ME configures the CLF using the set of contactless protocol parameters.
  2. 如权利要求1所述的方法,其特征在于,还包括:The method of claim 1 further comprising:
    所述ME根据当前处于激活状态的非目标SE的工作模式和/或所述第一目标SE的工作模式,确定并去激活所述当前处于激活状态的非目标SE。The ME determines and deactivates the non-target SE that is currently in an active state according to an operating mode of the non-target SE that is currently in an active state and/or an operating mode of the first target SE.
  3. 如权利要求2所述的方法,其特征在于,所述ME使用所述一组非接触协议参数配置所述CLF之前,所述方法还包括:The method of claim 2, wherein before the ME configures the CLF using the set of contactless protocol parameters, the method further comprises:
    所述ME查询所述当前处于激活状态的非目标SE的CLF配置方式是否为ME配置CLF;The ME queries whether the CLF configuration mode of the non-target SE that is currently in an active state is an ME configuration CLF;
    若查询的结果为ME配置CLF,则所述ME根据适用于所述当前处于激活状态的非目标SE的CLF使用的全部非接触协议参数生成或更新第二CLF配置。If the result of the query is that the ME configures the CLF, the ME generates or updates the second CLF configuration according to all contactless protocol parameters applicable to the CLF of the non-target SE that is currently in the active state.
  4. 如权利要求1-3任意一项所述的方法,其特征在于,所述ME获得第一目标SE的标识及状态,包括:The method according to any one of claims 1-3, wherein the ME obtains the identifier and status of the first target SE, including:
    所述ME接收激活第一SE的请求,所述请求包括所述第一目标SE的标识,Receiving, by the ME, a request to activate a first SE, where the request includes an identifier of the first target SE,
    或者所述ME接收激活至少一个非接触应用的请求,所述ME确定所述至少一个非接触应用所在的SE为所述第一目标SE并获得所述第一目标SE的标识; Or the ME receives a request to activate at least one contactless application, and the ME determines that the SE where the at least one contactless application is located is the first target SE and obtains an identifier of the first target SE;
    所述ME根据所述第一目标SE的标识,查询所述第一目标SE的状态。The ME queries the status of the first target SE according to the identifier of the first target SE.
  5. 如权利要求1-4任意一项所述的方法,其特征在于,所述ME根据当前处于激活状态的非目标SE的工作模式和/或所述第一目标SE的工作模式,确定去激活所述当前处于激活状态的非目标SE,包括:The method according to any one of claims 1 to 4, wherein the ME determines the deactivation according to an operation mode of the non-target SE currently in an activated state and/or an operation mode of the first target SE. The non-target SE that is currently active, including:
    所述ME确定所述当前处于激活状态的非目标SE的工作模式;Determining, by the ME, an operating mode of the non-target SE that is currently in an active state;
    所述ME根据服务策略和/或所述第一目标SE的属性,确定所述第一目标SE的工作模式;Determining, by the ME, an operating mode of the first target SE according to a service policy and/or an attribute of the first target SE;
    若所述ME确定所述当前处于激活状态的非目标SE的工作模式为非聚合模式和/或所述第一目标SE的工作模式为非聚合模式,则所述ME确定去激活所述当前处于激活状态的非目标SE。If the ME determines that the working mode of the non-target SE that is currently in an active state is a non-aggregated mode and/or the working mode of the first target SE is a non-aggregated mode, the ME determines to deactivate the current A non-target SE that is active.
  6. 如权利要求1-5任意一项所述的方法,其特征在于,所述方法还包括:The method of any of claims 1-5, wherein the method further comprises:
    若未查询到所述第一CLF配置,所述ME根据所述第一目标SE执行冲突检测和非接触协议参数计算,确定适用于第一目标SE的一组非接触协议参数;If the first CLF configuration is not queried, the ME performs a collision detection and a contactless protocol parameter calculation according to the first target SE, and determines a set of contactless protocol parameters applicable to the first target SE;
    所述ME使用计算出的一组非接触协议参数配置所述CLF。The ME configures the CLF using a calculated set of contactless protocol parameters.
  7. 如权利要求1-6任意一项所述的方法,其特征在于,所述第一或第二CLF配置还包括激活的第一SE的标识、激活的第一非接触应用的标识和所述第一非接触应用的优先级。The method of any of claims 1-6, wherein the first or second CLF configuration further comprises an identification of the activated first SE, an identification of the activated first contactless application, and the The priority of a contactless application.
  8. 如权利要求1-7任意一项所述的方法,其特征在于,所述方法还包括:The method of any of claims 1-7, wherein the method further comprises:
    所述ME确定所述第一目标SE的CLF配置方式;Determining, by the ME, a CLF configuration manner of the first target SE;
    若所述第一目标SE的CLF配置方式为非ME配置CLF,则所述ME将CLF配置权限授予所述第一目标SE并记录所述第一目标SE的标识。If the CLF configuration mode of the first target SE is a non-ME configuration CLF, the ME grants the CLF configuration authority to the first target SE and records the identifier of the first target SE.
  9. 如权利要求1-8任意一项所述的方法,其特征在于,所述方法还包括:The method of any of claims 1-8, wherein the method further comprises:
    当所述第一目标SE处于激活状态时,所述ME确定并去激活当前处于激活状态的非目标SE,并变更所述第一目标SE的工作模式;When the first target SE is in an active state, the ME determines and deactivates a non-target SE that is currently in an active state, and changes an operating mode of the first target SE;
    所述ME查询是否保存有第三CLF配置; Whether the ME query saves a third CLF configuration;
    若查询到所述第三CLF配置,则所述ME使用所述查询到的第三CLF配置中的一组非接触协议参数配置所述CLF。If the third CLF configuration is queried, the ME configures the CLF using a set of contactless protocol parameters in the queried third CLF configuration.
  10. 如权利要求1-9任意一项所述的方法,其特征在于,所述ME查询是否保存有第一/第三CLF配置之后,以及所述ME使用所述查询到的第一/第三CLF配置中的一组非接触协议参数配置所述CLF之前,还包括:The method according to any one of claims 1-9, wherein the ME query whether the first/third CLF configuration is saved, and the ME uses the queried first/third CLF Before configuring a set of contactless protocol parameters in the configuration, the CLF also includes:
    确定所述第一/第三CLF配置中包括的第一目标SE可用。It is determined that the first target SE included in the first/third CLF configuration is available.
  11. 如权利要求1-10任意一项所述的方法,其特征在于,所述方法还包括:The method of any of claims 1-10, wherein the method further comprises:
    若所述ME查询到所述第一目标SE处于激活状态,或所述第一目标SE处于去激活状态,且所述ME确定所述第一目标SE的工作模式为聚合模式,则所述ME查询所述第一非接触应用是否设置有快速激活标记;If the ME queries that the first target SE is in an active state, or the first target SE is in a deactivated state, and the ME determines that the working mode of the first target SE is an aggregation mode, the ME Querying whether the first contactless application is provided with a quick activation flag;
    若所述第一非接触应用设置有所述快速激活标记,所述ME使用查询到的所述第一CLF配置配置所述CLF,并激活所述第一CLF配置包含的第一SE和/或第一非接触应用。If the first contactless application is provided with the quick activation flag, the ME configures the CLF using the first CLF configuration that is queried, and activates the first SE and/or included in the first CLF configuration. The first non-contact application.
  12. 一种终端,所述终端包括:管理实体ME、非接触前端CLF和第一安全单元SE,其特征在于,所述ME包括:A terminal, the terminal includes: a management entity ME, a contactless front end CLF, and a first security unit SE, wherein the ME includes:
    第一获取单元,用于获得第一目标安全单元SE的标识及状态,所述状态包括激活状态和去激活状态;a first acquiring unit, configured to obtain an identifier and a state of the first target security unit SE, where the state includes an activated state and a deactivated state;
    第一激活单元,用于当所述第一目标SE是去激活状态时,激活所述第一目标SE;a first activation unit, configured to activate the first target SE when the first target SE is in a deactivated state;
    第一查询单元,用于查询是否保存有第一CLF配置,所述第一CLF配置包括适用于所述第一目标SE的一组非接触协议参数;a first query unit, configured to query whether a first CLF configuration is saved, where the first CLF configuration includes a set of contactless protocol parameters applicable to the first target SE;
    第一配置单元,用于若查询到所述第一CLF配置,则使用所述一组非接触协议参数配置所述CLF。And a first configuration unit, configured to configure the CLF by using the set of non-contact protocol parameters if the first CLF configuration is queried.
  13. 如权利要求12所述的终端,其特征在于,所述ME还包括: The terminal of claim 12, wherein the ME further comprises:
    第一确定单元,用于根据当前处于激活状态的非目标SE的工作模式和/或所述第一目标SE的工作模式,确定去激活所述当前处于激活状态的非目标SE;a first determining unit, configured to determine to deactivate the non-target SE that is currently in an active state according to an operating mode of the non-target SE that is currently in an active state and/or an operating mode of the first target SE;
    所述第一激活单元还用于去激活所述当前处于激活状态的非目标SE。The first activation unit is further configured to deactivate the non-target SE that is currently in an active state.
  14. 如权利要求13所述的终端,其特征在于,所述ME还包括:The terminal of claim 13, wherein the ME further comprises:
    第二查询单元,用于查询所述当前处于激活状态的非目标SE的CLF配置方式是否为ME配置CLF;a second query unit, configured to query whether the CLF configuration mode of the non-target SE that is currently in an active state is an ME configuration CLF;
    生成或更新单元,用于若查询的结果为ME配置CLF,则根据适用于所述当前处于激活状态的非目标SE的CLF使用的全部非接触协议参数生成或更新第二CLF配置。Generating or updating a unit for generating or updating a second CLF configuration according to all contactless protocol parameters applicable to the CLF of the non-target SE currently in an active state if the result of the query is a CLF configured by the ME.
  15. 如权利要求12-14任意一项所述的终端,其特征在于,所述第一获取单元包括:The terminal according to any one of claims 12 to 14, wherein the first obtaining unit comprises:
    接收单元,用于接收激活第一SE的请求,所述请求包括所述第一目标SE的标识,a receiving unit, configured to receive a request to activate the first SE, where the request includes an identifier of the first target SE,
    或者所述接收单元还用于接收激活至少一个非接触应用的请求;Or the receiving unit is further configured to receive a request to activate at least one contactless application;
    第二确定单元,用于确定所述至少一个非接触应用所在的SE为所述第一目标SE;a second determining unit, configured to determine that the SE where the at least one non-contact application is located is the first target SE;
    第二获取单元,用于获得所述第一目标SE的标识;a second acquiring unit, configured to obtain an identifier of the first target SE;
    第三查询单元,用于根据所述第一目标SE的标识,查询所述第一目标SE的状态。The third query unit is configured to query the status of the first target SE according to the identifier of the first target SE.
  16. 如权利要求12-15任意一项所述的终端,其特征在于,所述第一确定单元包括:The terminal according to any one of claims 12-15, wherein the first determining unit comprises:
    第三确定单元,用于确定所述当前处于激活状态的非目标SE的工作模式;a third determining unit, configured to determine an operating mode of the non-target SE that is currently in an active state;
    第四确定单元,用于根据服务策略和/或所述第一目标SE的属性,确定所述第一目标SE的工作模式;a fourth determining unit, configured to determine an operating mode of the first target SE according to a service policy and/or an attribute of the first target SE;
    第五确定单元,用于若所述当前处于激活状态的非目标SE的工作模式为非聚合模式和/或所述第一目标SE的工作模式为非聚合模式,则确定去激活所 述当前处于激活状态的非目标SE。a fifth determining unit, configured to determine, if the working mode of the non-target SE that is currently in an active state is a non-aggregating mode, and/or the working mode of the first target SE is a non-aggregating mode, determine to deactivate the A non-target SE that is currently active.
  17. 如权利要求12-16任意一项所述的终端,其特征在于,所述ME还包括:The terminal according to any one of claims 12-16, wherein the ME further comprises:
    第六确定单元,用于若未查询到所述第一CLF配置,根据所述第一目标SE执行冲突检测和非接触协议参数计算,确定适用于第一目标SE的一组非接触协议参数;a sixth determining unit, configured to determine a set of non-contact protocol parameters applicable to the first target SE according to the first target SE performing collision detection and contactless protocol parameter calculation if the first CLF configuration is not queried;
    第二配置单元,用于使用计算出的一组非接触协议参数配置所述CLF。And a second configuration unit, configured to configure the CLF using the calculated set of non-contact protocol parameters.
  18. 如权利要求12-17任意一项所述的终端,其特征在于,所述第一或第二CLF配置还包括激活的第一SE的标识、激活的第一非接触应用的标识和所述第一非接触应用的优先级。The terminal according to any one of claims 12-17, wherein the first or second CLF configuration further comprises an identifier of the activated first SE, an identifier of the activated first contactless application, and the The priority of a contactless application.
  19. 如权利要求12-18任意一项所述的终端,其特征在于,所述ME还包括:The terminal according to any one of claims 12 to 18, wherein the ME further comprises:
    第七确定单元,用于确定所述第一目标SE的CLF配置方式;a seventh determining unit, configured to determine a CLF configuration manner of the first target SE;
    授予单元,用于若所述第一目标SE的CLF配置方式为非ME配置CLF,则将CLF配置权限授予所述第一目标SE;a granting unit, configured to grant a CLF configuration right to the first target SE if the CLF configuration mode of the first target SE is a non-ME configuration CLF;
    记录单元,用于记录所述第一目标SE的标识。a recording unit, configured to record an identifier of the first target SE.
  20. 如权利要求12-19任意一项所述的终端,其特征在于,所述ME还包括:The terminal according to any one of claims 12 to 19, wherein the ME further comprises:
    第八确定单元,用于当所述第一目标SE处于激活状态时,确定去激活当前处于激活状态的非目标SE;An eighth determining unit, configured to: when the first target SE is in an active state, determine to deactivate a non-target SE that is currently in an active state;
    第二激活单元,用于去激活当前处于激活状态的非目标SE;a second activation unit, configured to deactivate a non-target SE that is currently in an active state;
    变更单元,用于变更所述第一目标SE的工作模式;a change unit, configured to change an operation mode of the first target SE;
    第四查询单元,用于查询是否保存有第三CLF配置;a fourth query unit, configured to query whether a third CLF configuration is saved;
    第三配置单元,用于若查询到所述第三CLF配置,则使用所述查询到的第三CLF配置中的一组非接触协议参数配置所述CLF。 And a third configuration unit, configured to configure the CLF by using a set of non-contact protocol parameters in the queried third CLF configuration, if the third CLF configuration is queried.
  21. 如权利要求12-20任意一项所述的终端,其特征在于,所述ME还包括:The terminal according to any one of claims 12 to 20, wherein the ME further comprises:
    第九确定单元,用于确定所述第一/第三CLF配置中包括的第一目标SE可用。And a ninth determining unit, configured to determine that the first target SE included in the first/third CLF configuration is available.
  22. 如权利要求12-20任意一项所述的终端,其特征在于,所述ME还包括:The terminal according to any one of claims 12 to 20, wherein the ME further comprises:
    第四查询单元,用于若查询到所述第一目标SE处于激活状态,或所述第一目标SE处于去激活状态,且所述ME确定所述第一目标SE的工作模式为聚合模式,则查询所述第一非接触应用是否设置有快速激活标记;a fourth query unit, configured to: if it is queried that the first target SE is in an activated state, or the first target SE is in a deactivated state, and the ME determines that the working mode of the first target SE is an aggregation mode, Then querying whether the first contactless application is provided with a quick activation flag;
    第四配置单元,用于若所述第一非接触应用设置有所述快速激活标记,所述ME使用查询到的所述第一CLF配置配置所述CLF;a fourth configuration unit, configured to configure the CLF by using the first CLF configuration that is queried if the first non-contact application is configured with the quick activation flag;
    第三激活单元,用于激活所述第一CLF配置包含的第一SE和/或第一非接触应用。And a third activation unit, configured to activate the first SE and/or the first contactless application included in the first CLF configuration.
  23. 一种终端,所述终端包括:处理器存储器、处理器、非接触前端CLF和至少一个安全单元SE,其特征在于,处理器所述处理器用于执行如下步骤:A terminal, comprising: a processor memory, a processor, a contactless front end CLF and at least one security unit SE, wherein the processor is configured to perform the following steps:
    获得第一目标安全单元SE的标识及状态,所述状态包括激活状态和去激活状态;Obtaining an identifier and a state of the first target security unit SE, the state including an activated state and a deactivated state;
    当所述第一目标SE是去激活状态时,激活所述第一目标SE;When the first target SE is in a deactivated state, the first target SE is activated;
    查询是否保存有第一CLF配置,所述第一CLF配置包括适用于所述第一目标SE的一组非接触协议参数;Querying whether a first CLF configuration is saved, the first CLF configuration including a set of contactless protocol parameters applicable to the first target SE;
    若查询到所述第一CLF配置,则使用所述一组非接触协议参数配置所述CLF。If the first CLF configuration is queried, the CLF is configured using the set of contactless protocol parameters.
  24. 如权利要求23所述的终端,其特征在于,所述处理器用于执行所述当所述第一目标SE是去激活状态时,激活所述第一目标SE的步骤之前,还用于执行如下步骤:The terminal according to claim 23, wherein the processor is configured to perform the step of activating the first target SE when the first target SE is in a deactivated state, and is further configured to perform the following step:
    根据当前处于激活状态的非目标SE的工作模式和/或所述第一目标SE的工作模式,确定并去激活所述当前处于激活状态的非目标SE。 The non-target SE that is currently active is determined and deactivated according to an operating mode of the non-target SE currently in an active state and/or an operating mode of the first target SE.
  25. 如权利要求24所述的终端,其特征在于,所述处理器用于执行所述使用所述一组非接触协议参数配置所述CLF之前,还用于执行如下步骤:The terminal according to claim 24, wherein the processor is further configured to perform the following steps before the performing the using the set of contactless protocol parameters to configure the CLF:
    查询所述当前处于激活状态的非目标SE的CLF配置方式是否为处理器配置CLF;Query whether the CLF configuration mode of the non-target SE that is currently active is a processor configuration CLF;
    若查询的结果为处理器配置CLF,则根据适用于所述当前处于激活状态的非目标SE的CLF使用的全部非接触协议参数生成或更新第二CLF配置。If the result of the query is a processor configuration CLF, the second CLF configuration is generated or updated according to all contactless protocol parameters applicable to the CLF of the non-target SE that is currently active.
  26. 如权利要求23-25任意一项所述的终端,其特征在于,所述处理器用于执行所述获得第一目标SE的标识及其状态的步骤,包括:The terminal according to any one of claims 23-25, wherein the processor is configured to perform the step of obtaining the identifier of the first target SE and its status, including:
    接收激活第一SE的请求,所述请求包括所述第一目标SE的标识;Receiving a request to activate a first SE, the request including an identifier of the first target SE;
    或者接收激活至少一个非接触应用的请求,确定所述至少一个非接触应用所在的SE为所述第一目标SE并获得所述第一目标SE的标识;Or receiving a request to activate the at least one contactless application, determining that the SE where the at least one contactless application is located is the first target SE and obtaining the identifier of the first target SE;
    根据所述第一目标SE的标识,查询所述第一目标SE的状态。And querying, according to the identifier of the first target SE, a status of the first target SE.
  27. 如权利要求23-26任意一项所述的终端,其特征在于,所述处理器用于执行所述根据当前处于激活状态的SE的工作模式和/或所述第一目标SE的工作模式,确定去激活所述当前处于激活状态的非目标SE的步骤,包括:The terminal according to any one of claims 23-26, wherein the processor is configured to perform the determining according to an operating mode of an SE currently in an active state and/or an operating mode of the first target SE, The step of deactivating the non-target SE that is currently active includes:
    确定所述当前处于激活状态的非目标SE的工作模式;Determining an operating mode of the non-target SE that is currently in an active state;
    根据服务策略和/或所述第一目标SE的属性,确定所述第一目标SE的工作模式;Determining an operation mode of the first target SE according to a service policy and/or an attribute of the first target SE;
    若确定所述当前处于激活状态的非目标SE的工作模式为非聚合模式和/或所述第一目标SE的工作模式为非聚合模式,则确定去激活所述当前处于激活状态的非目标SE。Determining to deactivate the currently active non-target SE if it is determined that the working mode of the non-target SE currently in an active state is a non-aggregated mode and/or the working mode of the first target SE is a non-aggregating mode .
  28. 如权利要求23-27任意一项所述的终端,其特征在于,所述处理器还用于执行如下步骤:The terminal according to any one of claims 23-27, wherein the processor is further configured to perform the following steps:
    若未查询到所述第一CLF配置,根据所述第一目标SE执行冲突检测和非接触协议参数计算,确定适用于第一目标SE的一组非接触协议参数;If the first CLF configuration is not queried, perform collision detection and contactless protocol parameter calculation according to the first target SE, and determine a set of non-contact protocol parameters applicable to the first target SE;
    使用计算出的一组非接触协议参数配置所述CLF。 The CLF is configured using a calculated set of contactless protocol parameters.
  29. 如权利要求23-28任意一项所述的终端,其特征在于,所述第一或第二CLF配置还包括激活的第一SE的标识、激活的第一非接触应用的标识和所述第一非接触应用的优先级。The terminal according to any one of claims 23 to 28, wherein the first or second CLF configuration further comprises an identifier of the activated first SE, an identifier of the activated first contactless application, and the The priority of a contactless application.
  30. 如权利要求23-29任意一项所述的终端,其特征在于,所述处理器还用于执行如下步骤:The terminal according to any one of claims 23 to 29, wherein the processor is further configured to perform the following steps:
    确定所述第一目标SE的CLF配置方式;Determining a CLF configuration manner of the first target SE;
    若所述第一目标SE的CLF配置方式为非处理器配置CLF,则将CLF配置权限授予所述第一目标SE并记录所述第一目标SE的标识。If the CLF configuration mode of the first target SE is a non-processor configuration CLF, the CLF configuration authority is granted to the first target SE and the identifier of the first target SE is recorded.
  31. 如权利要求23-30任意一项所述的终端,其特征在于,所述处理器还用于执行如下步骤:The terminal according to any one of claims 23-30, wherein the processor is further configured to perform the following steps:
    当所述第一目标SE处于激活状态时,确定并去激活当前处于激活状态的非目标SE,并变更所述第一目标SE的工作模式;Determining and deactivating a non-target SE that is currently in an active state when the first target SE is in an active state, and changing an operating mode of the first target SE;
    查询是否保存有第三CLF配置;Whether the query saves the third CLF configuration;
    若查询到所述第三CLF配置,则使用所述查询到的第三CLF配置中的一组非接触协议参数配置所述CLF。If the third CLF configuration is queried, the CLF is configured using a set of contactless protocol parameters in the queried third CLF configuration.
  32. 如权利要求23-31任意一项所述的终端,其特征在于,所述处理器用于执行所述查询是否保存有第一/第三CLF配置的步骤之后,以及所述处理器用于执行所述使用所述查询到的第一/第三CLF配置中的一组非接触协议参数配置所述CLF的步骤之前,还用于执行如下步骤:The terminal according to any one of claims 23 to 31, wherein the processor is configured to perform a step of whether the query has a first/third CLF configuration, and the processor is configured to perform the The step of configuring the CLF using a set of contactless protocol parameters in the first/third CLF configuration that is queried is also used to perform the following steps:
    确定所述第一/第三CLF配置中包括的第一目标SE可用。It is determined that the first target SE included in the first/third CLF configuration is available.
  33. 如权利要求23-32任意一项所述的终端,其特征在于,所述处理器还用于执行如下步骤:The terminal according to any one of claims 23 to 32, wherein the processor is further configured to perform the following steps:
    若查询到所述第一目标SE处于激活状态,或所述第一目标SE处于去激活状态,且确定所述第一目标SE的工作模式为聚合模式,则查询所述第一非接触应用是否设置有快速激活标记;Querying whether the first non-contact application is queried if the first target SE is in an activated state, or the first target SE is in a deactivated state, and it is determined that the working mode of the first target SE is an aggregation mode Set with a quick activation tag;
    若所述第一非接触应用设置有所述快速激活标记,使用查询到的所述 第一CLF配置配置所述CLF,并激活所述第一CLF配置包含的第一SE和/或第一非接触应用。 If the first contactless application is provided with the quick activation flag, using the queried The first CLF configuration configures the CLF and activates the first SE and/or the first contactless application included in the first CLF configuration.
PCT/CN2015/077113 2015-04-21 2015-04-21 Contactless front-end configuration method and terminal WO2016168989A1 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN201580035335.XA CN106462845B (en) 2015-04-21 2015-04-21 Configuration method of non-contact front end and terminal
PCT/CN2015/077113 WO2016168989A1 (en) 2015-04-21 2015-04-21 Contactless front-end configuration method and terminal

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/CN2015/077113 WO2016168989A1 (en) 2015-04-21 2015-04-21 Contactless front-end configuration method and terminal

Publications (1)

Publication Number Publication Date
WO2016168989A1 true WO2016168989A1 (en) 2016-10-27

Family

ID=57142819

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2015/077113 WO2016168989A1 (en) 2015-04-21 2015-04-21 Contactless front-end configuration method and terminal

Country Status (2)

Country Link
CN (1) CN106462845B (en)
WO (1) WO2016168989A1 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10397276B2 (en) 2014-04-01 2019-08-27 Huawei Device Co., Ltd. Secure element management method and terminal

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110807502B (en) * 2019-10-31 2024-04-09 天星数科科技有限公司 NFC intelligent card configuration method and device

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20120094603A1 (en) * 2010-10-19 2012-04-19 Vodafone Holding Gmbh Device and method for contactless short range communication
CN103222291A (en) * 2010-11-17 2013-07-24 捷讯研究有限公司 Application routing configuration for NFC controller supporting multiple NFC execution environments NFCEE
KR20140091138A (en) * 2013-01-08 2014-07-21 엘지이노텍 주식회사 Management system of product and Operating Method thereof
CN104463255A (en) * 2013-09-12 2015-03-25 中国银联股份有限公司 Switching apparatus and method capable of realizing automatic connection with NFC chip and switching security elements
CN104471600A (en) * 2014-04-01 2015-03-25 华为终端有限公司 Safety unit management method and terminal

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101241541B (en) * 2008-02-27 2010-08-18 上海复旦微电子股份有限公司 Device and method suitable for NFC terminal for storing, substituting and accessing application data
CN101901362B (en) * 2010-07-16 2012-07-25 上海复旦微电子股份有限公司 Automatic switching method and device of non-contact application
CN102999768B (en) * 2011-09-15 2016-08-10 中国银联股份有限公司 For the mutual device of contactless safety information, system and method

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20120094603A1 (en) * 2010-10-19 2012-04-19 Vodafone Holding Gmbh Device and method for contactless short range communication
CN103222291A (en) * 2010-11-17 2013-07-24 捷讯研究有限公司 Application routing configuration for NFC controller supporting multiple NFC execution environments NFCEE
KR20140091138A (en) * 2013-01-08 2014-07-21 엘지이노텍 주식회사 Management system of product and Operating Method thereof
CN104463255A (en) * 2013-09-12 2015-03-25 中国银联股份有限公司 Switching apparatus and method capable of realizing automatic connection with NFC chip and switching security elements
CN104471600A (en) * 2014-04-01 2015-03-25 华为终端有限公司 Safety unit management method and terminal

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10397276B2 (en) 2014-04-01 2019-08-27 Huawei Device Co., Ltd. Secure element management method and terminal

Also Published As

Publication number Publication date
CN106462845A (en) 2017-02-22
CN106462845B (en) 2020-01-17

Similar Documents

Publication Publication Date Title
US10902411B2 (en) Host-formatted select proximity payment system environment response
US9225710B2 (en) Secure elements broker (SEB) for application communication channel selector optimization
KR102589503B1 (en) Method and electric device for configuring a sharing target device sharing data usage
US10645568B2 (en) Carrier configuration processing method, device and system, and computer storage medium
US9992616B2 (en) Information processing method and NFC terminal
CN107251069B (en) Near field communication payment method and terminal
KR102105498B1 (en) Nfc device comprising configurable notification means
KR20170000671A (en) Service system and method for transmitting push message based on user location, user equipment and computer readable medium having computer program recorded therefor
KR20170100473A (en) System and method for location-based security
US20150365827A1 (en) Methods and systems for authentication of a communication device
US9516006B2 (en) Re-programmable secure cryptographic device
US20170103237A1 (en) Electronic device, system and method for nfc
JP6923582B2 (en) Information processing equipment, information processing methods, and programs
JP7432738B2 (en) Information processing method, apparatus, device, and medium
JP6858200B2 (en) Methods for routing data frames, near field communication controllers, and terminals
WO2016168989A1 (en) Contactless front-end configuration method and terminal
US20210194679A1 (en) Electronic device sharing key with external electronic device and operating method for electronic device
CN109076428B (en) Data processing method and related device
CN104301343A (en) Database updating method and relevant equipment and system
CN108038403B (en) Card reading method based on NFC technology and client
AU2020258279B2 (en) System and method for control policy retention
KR20160134419A (en) Method for changing the subscriber identification information of terminal using smart card including multiple subscriber identification information, terminal and computer program thereof
EP3376458B1 (en) Nfc device and initialization method
CN105046136A (en) Identity card information obtaining method, terminal and identity card information obtaining system
CN107911785A (en) The operating method and device that NFC is applied in a kind of electric terminal

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 15889478

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 15889478

Country of ref document: EP

Kind code of ref document: A1