JP2007122289A - Ic card having a plurality of operating systems, and ic card program - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide an IC card having a plurality of OSs that can conform to standards preventing the execution of other commands during a series command sequence. <P>SOLUTION: Every time OSa 30 (OSb 40) processes a command, a command history storage means 31 (command history storage means 41) stores command history information 71 representing the program (OS or application) that has processed the command in a command history area 70. When a command is assigned to OSa 30, a command management means 32 and a command management means 51 of application A 50 refer to the command history information 71 to manage the execution of the command, and a delegation management means 33 refers to the command history information 71 to manage the delegation of command processing to OSb 40. <P>COPYRIGHT: (C)2007,JPO&INPIT

Description

  The present invention relates to an IC card in which a plurality of operating systems are mounted and an IC card program incorporated in the IC card.

  A plurality of applications can be mounted on a multi-application IC card on which a platform type operating system (hereinafter referred to as OS: Operating System) represented by Java (registered trademark) and MULTIS (registered trademark) is mounted.

In such a multi-application IC card, a plurality of applications can be simultaneously executed by using a logical channel defined by ISO / IEC7816.
However, as described in Non-Patent Document 1, in order to maintain security during application execution, the multi-application IC card supports only one logical channel, and the number of applications that can be executed simultaneously is one. Often limited.

  On the other hand, with the advancement of semiconductor technology, a one-chip microcomputer (integrated CPU, ROM, RAM, EEPROM, I / F) for IC cards having a lot of memory has been developed and disclosed in Patent Document 1 It is also possible to mount a plurality of OSs on a single IC card by using the present invention.

  In an IC card (hereinafter referred to as a multi-OS card) in which a plurality of OSs are mounted, even if the number of applications that can be simultaneously executed for each OS is one, the plurality of OSs can be executed simultaneously, As a result, a plurality of applications can be executed simultaneously.

As an application standard, when execution of other commands is prohibited during a series of command sequences, if multiple applications can be executed simultaneously, other commands can be executed during the series of command sequences. In the case of a multi-OS card, there is a case where an application standard is violated.
Marutos Promotion Council MULTIS Developer Guide 1.3 (Section 2.4.3) JP 2003-76954 A

  Therefore, in view of the above-described problems, the present invention is a case where even in a multi-OS card in which a plurality of OSs are mounted, execution of other commands is prohibited during a series of command sequences according to the OS or application standards. An object of the present invention is to provide a multi-IC card that is compatible with the standard and an IC card program incorporated in the multi-IC card.

  According to a first aspect of the present invention for solving the above-described problem, in an IC card on which a plurality of OSs are mounted, when each OS mounted on the IC card processes a command received from the terminal device, the terminal device A command processing history storage means for storing in a memory of the IC card, command processing history information indicating either the OS or an application running on the OS; The card is an IC card comprising command execution management means for managing command processing based on the command processing history information stored in the command processing history storage means and a predetermined rule. is there.

  In the first invention, the IC card may be any one of a contact IC card, a contactless IC card, or a dual interface IC card having two communication functions of contact data communication and contactless data communication. In addition, the shape of the IC card may be a SIM (Subscriber Identity Module) that is a shape obtained by cutting the vicinity of the IC module of the IC card into a strip shape.

  According to a second aspect of the present invention, there is provided the IC card according to the first aspect, wherein the OS provided in the IC card includes the command execution management means.

  According to a third aspect of the present invention, there is provided the IC card according to the first aspect, wherein the application included in the IC card includes the command execution management unit.

  According to a fourth aspect of the present invention, there is provided the IC card according to the first aspect, wherein the OS and the application included in the IC card include the command execution management unit. is there.

  The fifth invention is the IC card according to any one of the first to fourth inventions, wherein the OS includes a delegation function for delegating command processing to another OS, and the command An IC card comprising: a delegation management unit that manages execution of the delegation function based on the command processing history information stored in the processing history storage unit and a predetermined rule.

  According to a sixth aspect of the present invention, in the IC card according to the fifth aspect, the delegation management means provided in the OS manages at least delegation of command processing for selectively executing an application to the other OS. This is an IC card characterized by the above.

  The seventh invention is the IC card according to any one of the first to sixth inventions, wherein a volatile memory of the IC card is provided with an area for storing the command processing history. It is an IC card characterized by the above.

An eighth invention is an IC card program mounted on an IC card of an IC card on which a plurality of OSs are mounted, wherein the IC chip is
When the command received from the terminal device is processed, the program that has processed the command received from the terminal device, that is, the command processing history information indicating either the OS or the application running on the OS is stored in the IC card. Command processing history storage means for storing in memory;
Command execution management means for managing command processing based on the command processing history information stored in the command processing history storage means and predetermined rules;
Is an IC card program for functioning as

The ninth invention is the IC card program according to the eighth invention, wherein the IC card has a delegation function for delegating command processing to the other OS, and the IC chip is
An IC card program for functioning as a delegation management means for managing execution of the delegation function based on the command processing history information and a predetermined rule.

  According to the present invention described above, the IC card includes the command processing history storage unit that stores the command processing history information and the command execution management unit, and the IC card includes the command processing history storage unit. By referring to the stored command processing history information, command processing can be managed based on a predetermined command sequence.

  Further, by setting an area in which the IC card stores the command processing history information in a volatile memory, the command processing history information is erased when the IC card is deactivated, and malfunction due to the previous history Can be prevented.

  In addition, the IC card includes the delegation management unit and manages the selection and execution of other applications, so that the applications running on the other OS can be prevented from being executed when necessary.

  A multi-OS card, which is an IC card to which the present invention is applied and a plurality of OSs are mounted, will be described in detail with reference to the drawings. FIG. 1 is a diagram for explaining hardware resources of an IC chip 10 mounted on a multi-OS card to which the present invention is applied.

  The IC chip 10 has hardware resources such as a central processing unit 11 (Central Processing Unit, hereinafter referred to as CPU), a read-only memory 13 (Read Only Memory, hereinafter referred to as ROM), and an EEPROM 14 (Electrically Erasable Programmable as rewritable memory). Read-Only Memory), random access memory 12 (Random Access Memory, hereinafter referred to as RAM) as volatile memory, I / Fa 15 and I / Fb 16 which are communication interface circuits for data communication with a terminal device (not shown) It has.

The I / Fa 15 and I / Fb 16 provided in the IC chip 10 are different communication I / F circuits. For example, the I / Fa 15 is a contact I / F circuit conforming to ISO / IEC 7816, and the I / Fb 16 is a non-contact I / F circuit conforming to ISO / IEC 14443 to which an antenna is connected.
The IC chip 10 includes two communication I / F circuits, I / Fa 15 and I / Fb 16, but the I / Fa 15 and I / Fb 16 do not operate simultaneously, and the IC chip 10 activates the IC chip 10. The communication I / F operates.

  Note that the present invention does not limit the specifications of the IC chip 10 mounted on the multi-OS card, and the IC chip 10 having specifications suitable for the use of the multi-OS card can be selected. For example, the capacities of the ROM 13 and the EEPROM 14 are not limited, and the rewritable memory may be a memory other than the EEPROM such as a ferroelectric memory or a flash memory. The IC chip 10 may include other devices (not shown) such as a timer circuit and a cryptographic operation circuit.

  FIG. 2 is a diagram showing a software configuration of the multi-OS card. The multi-OS card according to the present invention includes a kernel 20 (Kernel) that is a program group for using the hardware resources of the IC chip 10 shown in FIG. 1, OSa 30 and OSb 40 as OSs that use the kernel 20, An application a50 that operates on the OSa30 and an application b60 that operates on the OSb40 are implemented as software.

  The kernel 20 is a program that provides the OS with functions for controlling hardware resources of the IC chip 10 such as a function of writing data to the EEPROM 14 that is hardware resources of the IC chip 10.

  The kernel 20 uses the communication I / F circuit that is a hardware resource of the IC chip 10 to control the I / Fa 15 of the IC chip 10 as a transmission control module for data communication with a terminal device (not shown). The I / Fa module 21 that is a program that realizes data communication using the I / Fa 15 and the I / Fb 16 that controls the I / Fb 16 of the IC chip 10 and realizes data communication corresponding to the I / Fb 16 The module 22 includes two transmission control modules.

  Further, the kernel 20 has a function of distributing the command received by the I / Fa module 21 or the I / Fb module 22 to the OSa 30 or the OSb 40. The kernel 20 operates when the IC chip 10 is operating on the I / Fa 15. The command is distributed to the OSa 30, and when the IC chip 10 is operating at the I / Fb 16, the command is distributed to the OSb 40.

  OSa30 and OSb40 are different OSes. Each OS has a function for managing a memory used by an application running on the OS, a function for operating hardware resources of the IC chip 10 using the kernel 20, and a command that cannot be processed. This is a program having a delegation function for delegating processing to another OS.

The delegation function possessed by the OSa 30 and the OSb 40 is a function of delegating command processing to another OS via the kernel 20 when a command distributed from the kernel 20 cannot be processed.
That is, when OSa 30 cannot process a command, command processing is delegated to OSb 40, and when OSb 40 cannot process a command, command processing is delegated to OSa 30.

Since the OSa 30 and the OSb 40 have this delegation function, the OSa 30 and the OSb 40 operate regardless of the communication I / F of the I / Fa 15 or the I / Fb 16.
This delegation function is realized by applying the invention of Patent Document 2.
Special table 2001-527647

In addition, as shown in FIG. 2, the OSa 30 includes a command history storage unit 31 that stores a history of command processing, a command management unit 32 that manages execution of commands, and a delegation management unit 33 that manages delegation functions. I have.
The OSb 40 includes a command history storage unit 41, a command management unit 42, and a delegation management unit 43.
From here, the above-mentioned means will be described. The command history storage means 31 and the command history storage means 41, the command management means 32 and the command management means 42, and the delegation management means 33 and the delegation management means 43 have the same functions. Therefore, only each means provided in the OSa 30 will be described here.

  The command history storage means 31 provided in the OSa 30 is a means for storing command history information 71 indicating a program (OSa 30 or application a 50 in this case) that has processed a command.

  In order to store the command history information 71, the RAM 12 of the multi-OS card is provided with a command history area 70 that is accessible from both the OSa 30 and the OSb 40 and is an area for storing the command history information 71.

  FIG. 3 is a diagram for explaining the command history area 70. In the command history area 70 provided in the RAM 12, command history information 71, which is information indicating a program that has processed a command distributed from the kernel 20 by the OSa 30, is stored each time a command is processed.

For example, when the OSa 30 processes a command, command history information 71 indicating that the OSa 30 has processed the command is added to the command history area 70. When the application a50 processes a command, command history information 71 indicating that the application a50 has processed the command is added to the command history area 70.
When the OSa 30 delegates command processing to the OSb 40, the OSb 40 stores the command history information 71 in the command history area 70.

The command management unit 32 provided in the OSa 30 refers to a unit that manages execution of commands distributed from the kernel 20 with reference to the command history area 70 provided in the RAM 12.
When the command management unit 32 of the OSa 30 manages the execution of the command, the OSa 30 refers to the previous command history information 71 from the command history area 70 to manage the execution of the command of the OSa 30.

  For example, as the standard of OSa30, when the operation of other commands is prohibited during a series of command sequences of OSa30, the command management unit 32 of OSa30 can refer to the command history information 71 so that the series of OSa30 If another command is operating during the command sequence, the operation of the other command is prohibited.

  The delegation management means provided in the OSa 30 is a means for managing the execution of the delegation function of the OSa 30. When the OSa 30 delegates a command distributed from the kernel 20 to the OSb 40, the command history information 71 stored in the command history area 70 is referred to and the delegation to the OSb 40 is managed.

  For example, when the number of supported logical channels is one as the standard of OSa30, and the application a50 is operating on the OSa30 and the execution of other applications is prohibited, the OSa30 selects and executes the application. The operation of delegating command processing to the OSb 40 is not performed.

As shown in FIG. 2, the command management means 51 for managing the execution of the command of the application a50 is provided, and the application b60 is provided with the command management means 61.
Since the command management means 51 and the command management means 61 have the same function, only the command management means 51 provided in the application a50 will be described here.

  When the command is processed by the application a50, the command history information 71 stored in the command history area 70 is delivered along with the command from the OSa30 to the application a50.

  As a standard of the application a50, command history information 71 indicating that the application b60 has performed a command processing in the I / Fa15 even though execution of another application is prohibited during the execution of the application a50 is a command history area. If it is stored in 70, the command management means 51 prohibits subsequent processing of the application a50.

  From here, a procedure for managing execution of commands and delegation functions in the multi-OS card will be described. FIG. 4 is a flowchart showing a procedure in which the OSa 30 manages execution of commands and delegation functions when the multi-OS card is operating at the I / Fa 15.

  The first step S1 of this procedure is a step in which the multi-OS card receives a command from the terminal device. In this step, the I / Fa module 21 of the kernel 20 of the multi-OS card receives a command from the terminal device.

  The next step S2 is a step in which the processing of the command received in step S1 is distributed. In this step, since the multi-OS card is operating on the I / Fa 15, the kernel 20 distributes commands to the OSa 30.

The next step S3 is a step in which the OSa 30 translates the command. In this step, the OSa 30 interprets the identifier of the command to be executed (eg, CLA or INS of ISO / IEC7816), and if it is an OSa30 command or a command that cannot be interpreted, the process proceeds to step S4. If it is a command, the command is delivered to the application a50, and an application process (S10), which is a process in which the application processes the command, is executed.
If the command cannot be interpreted by the OSa 30, the OSa 30 delegates command processing to the OSb 40 via the kernel 20.

  Step S4 refers to the command history area 70 and manages the execution of the command or the delegation. In this step, the OSa 30 refers to the command history information 71 stored in the command history area 70, and when OSa30 command execution or command delegation is permitted by a predetermined rule (for example, the standard of OSa30). In step S5, if not permitted, the response data returned to the terminal device is used as an error message, and the flow advances to step S9.

  In step S5, the OSa 30 determines whether to execute the command of the OSa or to delegate the command processing of the OSb 40. If the command can be interpreted as an OSa30 command in step S3, the process proceeds to step S6. If the command process is delegated, the process proceeds to step S7.

  In step S6, the OSa 30 processes the command and proceeds to step S8. In step S7, the OSa 30 delegates command processing to the OSb 40, and the command received in step S1 is processed by the OSb 40 or the application 60, and the process proceeds to step S8.

  Step S 8 is a step in which command history information 71 of the processed command is stored in the command history area 70. In this step, when the OSa 30 or the application 50 processes the command, the OSa 30 stores the command history information 71 in the command history area 70 when the OSb 40 or the application 60 processes the command.

Step S9 is a step in which command response data is returned. In this step, the kernel 20 receives response data from the OSa 30, and the I / Fa module 21 returns response data.
The response data returned by the I / Fa module 21 in this step is response data when any of the OSa 30, the application 50, the OSb 40, or the application 60 processes the command, or an error message when the command cannot be processed. It is. With this step, the procedure shown in FIG. 4 ends.

  FIG. 5 is a flowchart showing the procedure of the application process shown in FIG. In the first step S11 of this procedure, the command management means 51 of the application a50 refers to the command history information 71 stored in the command history area 70 delivered from the OSa30, and determines a predetermined rule (for example, application When the execution of the command is permitted according to the standard (a50), the process proceeds to step S12. When the command is not permitted, an error message indicating that the command processing is not permitted is delivered to the OSa 30, and this procedure is terminated.

  In the next step S12, the application a50 processes the command, delivers response data to the OSa30, and ends this procedure.

The figure explaining a hardware resource. The figure which showed the software structure of the multi-OS card. The figure for demonstrating a command log | history area | region. The flowchart which showed the procedure which manages execution of a command execution and a delegation function. The flowchart which showed the procedure of the application process.

Explanation of symbols

10 IC chip 12 RAM
15 I / Fa, 16 I / Fb
20 Kernel 21 I / Fa module, 22 I / Fb module 30 OSa
40 OSb
50 Application a
60 Application b
31, 41 Command history storage means 32, 42, 51, 61 Command management means 33, 43 Delegation function management means 70 Command history area 71 Command history information

Claims (9)

  In an IC card on which a plurality of OSs are mounted, each OS mounted on the IC card processes a command received from a terminal device when processing a command received from the terminal device, that is, the program Command processing history storage means for storing command processing history information indicating either an OS or an application running on the OS in a memory of the IC card, the IC card stored in the command processing history storage means An IC card comprising command execution management means for managing command processing based on the command processing history information and predetermined rules.   2. The IC card according to claim 1, wherein the OS provided in the IC card includes the command execution management unit.   2. The IC card according to claim 1, wherein the application included in the IC card includes the command execution management unit.   2. The IC card according to claim 1, wherein the OS and the application provided in the IC card include the command execution management unit.   5. The IC card according to claim 1, wherein the OS includes a delegation function for delegating command processing to another OS, and the command processing stored in the command processing history storage unit. An IC card, comprising: a delegation management unit that manages execution of the delegation function based on history information and a predetermined rule.   6. The IC card according to claim 5, wherein the delegation management means provided in the OS manages at least delegation of command processing for selectively executing an application to another OS.   7. The IC card according to claim 1, wherein an area for storing the command processing history is provided in a volatile memory of the IC card. An IC card program mounted on an IC card of an IC card on which a plurality of OSs are mounted, wherein the IC chip is
When the command received from the terminal device is processed, the program that has processed the command received from the terminal device, that is, the command processing history information indicating either the OS or the application running on the OS is stored in the IC card. Command processing history storage means for storing in memory;
Command execution management means for managing command processing based on the command processing history information stored in the command processing history storage means and predetermined rules;
IC card program to function as 9. The IC card program according to claim 8, wherein the IC card has a delegation function for delegating command processing to another OS, and the IC chip is
An IC card program for functioning as a delegation management means for managing the execution of the delegation function based on the command processing history information and predetermined rules.

Images