Smart card service method and apparatus for performing the same
First Claim
Patent Images
1. A smart card service method, which is performed in an apparatus enabling processing of digital data and having a hardware, the hardware including a memory and a processor, the smart card service method comprising:
- receiving a certificate generation request from a terminal by a security/authentication interface unit which operates on the hardware and is connected to a terminal interface unit of the terminal through a network;
generating a virtual machine associated with the terminal on the hardware to support security or authentication service to at least one application of the terminal when the virtual machine associated with the terminal does not exist in a cloud server included in the apparatus and configured in the form of a virtualization server that supports a virtualization function to the terminal;
transmitting the certificate generation request to a security/authentication management device which is connected to the security/authentication interface unit through a network;
storing credential information with respect to a certificate in the virtual machine, wherein the certificate is generated in response to a certificate generation success message provided from the security/authentication management device;
receiving a certificate deletion request from the terminal;
acquiring the credential information from the virtual machine associated with the terminal;
transmitting the certificate deletion request to the security/authentication management device using the acquired credential information;
receiving a certificate deletion result from the security/authentication management device;
verifying the credential information in the virtual machine associated with the terminal; and
when the credential information does not exist, deleting the virtual machine associated with the terminal,wherein the virtual machine is generated to correspond to a subscriber identity module of the terminal, and is located in the cloud server of the apparatus.
1 Assignment
0 Petitions
Accused Products
Abstract
Provided are a smart card service method and an apparatus for performing the same. The smart card service method includes receiving a certificate generation request from a terminal, transmitting the certificate generation request to an authentication processing device, and storing credential information with respect to the generated certificate in a virtual machine associated with the terminal in response to a certificate generation success message provided from the authentication processing device. Thus, it is possible to reduce costs in accordance with manufacturing smart card hardware, and support smart card services in a more enhanced security environment.
27 Citations
6 Claims
-
1. A smart card service method, which is performed in an apparatus enabling processing of digital data and having a hardware, the hardware including a memory and a processor, the smart card service method comprising:
-
receiving a certificate generation request from a terminal by a security/authentication interface unit which operates on the hardware and is connected to a terminal interface unit of the terminal through a network; generating a virtual machine associated with the terminal on the hardware to support security or authentication service to at least one application of the terminal when the virtual machine associated with the terminal does not exist in a cloud server included in the apparatus and configured in the form of a virtualization server that supports a virtualization function to the terminal; transmitting the certificate generation request to a security/authentication management device which is connected to the security/authentication interface unit through a network; storing credential information with respect to a certificate in the virtual machine, wherein the certificate is generated in response to a certificate generation success message provided from the security/authentication management device; receiving a certificate deletion request from the terminal; acquiring the credential information from the virtual machine associated with the terminal; transmitting the certificate deletion request to the security/authentication management device using the acquired credential information; receiving a certificate deletion result from the security/authentication management device; verifying the credential information in the virtual machine associated with the terminal; and when the credential information does not exist, deleting the virtual machine associated with the terminal, wherein the virtual machine is generated to correspond to a subscriber identity module of the terminal, and is located in the cloud server of the apparatus. - View Dependent Claims (2)
-
-
3. A smart card service apparatus enabling processing of digital data and having a hardware, the hardware including a memory and a processor, comprising:
-
a cloud server configured to include a plurality of virtual machines respectively comprising credential information of each of a plurality of user terminals and respectively executing a smart card function of each of the user terminals, and a virtual machine monitor configured to perform a function of a virtual platform for simultaneously performing the plurality of virtual machines; and a security/authentication interface unit configured to communicate with a security/authentication management device so as to receive a request for a process associated with authentication from a user terminal and perform the received request for the process using credential information included in a virtual machine associated with the user terminal, wherein the virtual machine is generated to correspond to a subscriber identity module of the terminal, and is located in the cloud server, wherein the security/authentication interface unit receives a certificate generation request from the user terminal, transmits the certificate generation request to the security/authentication management device, and stores credential information with respect to a certificate in the virtual machine associated with the user terminal, the certificate being generated based on a certificate generation success message provided from the security/authentication management device, wherein the security/authentication interface unit receives a certificate deletion request from the user terminal, acquires the credential information from the virtual machine associated with the user terminal, and transmits the certificate deletion request to the security/authentication management device using the acquired credential information, wherein the security/authentication interface unit receives a message indicating that certificate deletion is successfully performed from the security/authentication management device, verifies the credential information in the virtual machine associated with the user terminal, and when the credential information does not exist, deleting the virtual machine associated with the user terminal. - View Dependent Claims (4, 5, 6)
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeElectronics and Telecommunications Research Institute
-
Original AssigneeElectronics and Telecommunications Research Institute
-
InventorsJung, Young Woo, Ahn, Chang Won, Lee, Joong Soo
-
Primary Examiner(s)Kim, Tae
-
Application NumberUS14/056,124Publication NumberTime in Patent Office1,132 DaysField of SearchUS Class Current1/1CPC Class CodesH04L 63/0823 using certificates cryptogr...H04L 63/0853 using an additional device,...H04L 67/10 in which an application is ...H04W 4/60 Subscription-based services...
