Multi-party authorized APK signature method and system

A multi-party, signed data technology, applied in transmission systems, digital transmission systems, instruments, etc., can solve problems such as inconsistent file formats, large maintenance costs, cumbersome maintenance work of acquiring institutions, etc., to ensure integrity and legitimacy, reduce The effect of maintenance costs

Active Publication Date: 2014-07-23
FUJIAN LANDI COMML EQUIP CO LTD
View PDF7 Cites 38 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

In addition, due to the different implementation mechanisms of manufacturers, the APKs that could have been downloaded and installed on POS terminals with Android systems from different manufacturers have inconsistent file formats after signing. As a result, acquiring organizations purchasing POS terminals with Android systems from different manufacturers need to maintain different signatures at the same time. The tool Android system and the maintenance of different versions of signed APK files for the same APK bring cumbersome maintenance work and huge maintenance costs to the acquirer. Therefore, it is necessary to propose an APK signature solution to reduce the cost of the acquirer. The maintenance cost of APK signature

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Multi-party authorized APK signature method and system
  • Multi-party authorized APK signature method and system
  • Multi-party authorized APK signature method and system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment approach 1

[0052] On the basis of the above solution, this embodiment also includes the following steps before step S1:

[0053] The signing server of the acquirer fills the tail of the original APK file with 0x00 four bytes to ensure that the tail of the original APK file ends with 0x00 as the signed data;

[0054] Step S3 also includes:

[0055] S31: The signature server of the acquirer writes the identification and version of the signed data and the length and check value of the original APK file into the basic file;

[0056] The "determining whether there is terminal equipment manufacturer signature data corresponding to the terminal equipment in the signed APK file" described in step S4 is specifically:

[0057] According to the identification and version of different signed data in the basic file of the signature file header in the signed APK file, it is judged whether there is signature data belonging to the own terminal device.

[0058] In this embodiment, while the terminal de...

Embodiment approach 2

[0060] On the basis of the above-mentioned scheme, this embodiment also includes the step S1 in which "signature servers of different terminal equipment manufacturers use their respective private keys to sign the signed data including the original APK file to generate signature data of different terminal equipment manufacturers". include:

[0061] The signing server of different terminal equipment manufacturers will include the signed data of the original APK file to calculate the hash to obtain the hash value HASH1; fill the hash value HASH1 according to a certain signature filling method to obtain the signed APK file; use the terminal to use the signed APK file The respective working private keys of the equipment manufacturer's signature server perform the signature operation to generate signature data of different terminal equipment manufacturers.

[0062] This embodiment realizes that the terminal devices of different manufacturers perform signature verification to obtain ...

Embodiment approach 3

[0065] On the basis of the above solution, this embodiment also includes specifically including in step S5:

[0066] S51: Determine whether the manufacturer's work public key certificate is pre-installed in the terminal device, if yes, obtain the manufacturer's work public key certificate, and proceed to step S53; if not, locate and obtain the device terminal corresponding Manufacturer's signature data;

[0067] S52: Obtain the manufacturer's working public key certificate in the manufacturer's signature data; the terminal device uses the pre-installed manufacturer's root public key certificate to verify the legality of the manufacturer's working public key certificate in the manufacturer's signature data, and enter step S53 after the verification is passed;

[0068] S53: The terminal device extracts the working public key in the manufacturer's working public key certificate to verify the signature data and calculate the hash to obtain the hash value HASH2; determine whether t...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides a multi-party authorized APK signature method and system. The multi-party authorized APK signature method includes the steps that different terminal device manufacturer signature servers conduct signature on signed data containing an original ARK file through respective work key pairs to generate different terminal device manufacturer signature data, and manufacturer work public key certificates are put into the terminal device manufacturer signature data or are preinstalled in terminal devices; an acquirer signature server combines the different terminal device manufacturer signature data in the form of DER according to the sequence of signature time to form a signed APK file; the signed APK file comprises the original APK file and a signature file header, the signature file header comprises a file for marking the files subjected to signature operation and a file for marking the numbers of the corresponding manufacturer signature data of the different terminals and marking the specific positions of the corresponding manufacturer signature data of the different terminals in the signed APK file; the terminal devices acquire the signed APK file and conduct verification after judging that the manufacturer signature data generated by the corresponding terminal device manufacturers of the terminal devices exist in the signed APK file, and after the verification is successful, installation and operation are allowed.

Description

technical field [0001] The invention relates to the field of APK signature authentication, in particular to an APK signature method and system authorized by multiple parties. Background technique [0002] Bank card (BANK Card) is becoming more and more popular as a payment tool. Common bank card payment systems include point of sale terminals (Point Of Sale, POS), POS acquiring system (POSP), password keyboard (PIN PAD) and hardware encryption machine (Hardware and Security Module, HSM). Among them, the POS terminal can accept bank card information, has communication function, and accepts the instructions of the teller to complete the financial transaction information and related information exchange equipment; the POS acquiring system centrally manages the POS terminal, including parameter download, key download, acceptance, It is a system for centralized management and transaction processing to process or forward the transaction request of the POS terminal and return the ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L29/08G07G1/00G06F9/445G06F21/51
CPCH04L9/40
Inventor 苏文龙孟陆强陈菲菲
Owner FUJIAN LANDI COMML EQUIP CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap