社保卡COS关键模块的设计与实现
|
摘要
社保卡是由人力资源和社会保障部统一规划,由各地社会保障部门公开发行,用于劳动和社会保障各项业务领域的集成电路卡。它是智能卡在社会保障领域的一个具体应用。一个完整的社保卡应用系统是由社保卡、设备终端和与设备终端相连的后台服务器三部分组成。其中就社保卡来说具体又可分为硬件部分和软件部分。硬件部分是指社保卡的芯片和卡基,它是软件部分的载体。软件部分即是指本文所要设计与实现的COS (Chip Operating System),它是社保卡的“灵魂”。论文首先重点分析了与社保卡COS设计密切相关的ISO/IEC7816协议和《社会保障(个人)卡规范》。在此基础上,简要介绍了COS开发所用到的软硬件平台并对社保卡COS的需求做了深入探讨,最终确定整体设计方案。论文的重点是对社保卡COS所包含的通信管理模块、命令管理模块、安全管理模块和文件管理模块等四大模块进行了深入分析,并分别给出了具体的设计方案。安全管理模块和文件管理模块作为COS的核心部分,本文对其作了详细的分析和深入研究。对于安全管理模块,论文设计并实现了符合ISO/IEC7816协议和社保卡规范的安全机制。文件管理模块是COS设计中最为灵活的部分,本文在深入分析目前所出现的三种设计方案优缺点的基础上,确定了与硬件资源和社保规范要求最为贴合的一种方案,对其进行适当的改进,并最终实现。论文最后还对社保卡COS的调试与测试方法做了简要介绍。
Social Security Card is schemed by the Human Resources and Social Security Department uniformly. It is publicly issued by the local Social Security Departments for the field of labor and social security.It is a kind of the integrated circuit card and a specific application of smart card in the field of social security.A complete Social Security Card application system is composed by three parts of the Social Security Card, Terminal Equipment and Backend Server connecting with the Terminal Equipment. Social security card for the specific can be divided into a hardware part and software part. The hardware part of the social security card chip and card-based, is the carrier of the software part. The software part is the COS designed in the paper, it is the soul of Social Security Card.The paper first analyzes ISO/IEC7816Agreements and Social Security (personal)Card Norms which are closely related to the Social Security Card COS design. On this basis, a brief introduction to hardware and software platforms used by the COS development and a in-depth discussions on the needs of Social Security Card COS are made to finalize the overall design scheme. The focus of the paper is the in-depth analysis and specific design of the four modules as communication management module, command management module, security management module and file management module which are contained in the Social Security Card COS.The security management module and file management module as the core part of COS, this paper made a detailed analysis and in-depth study. For the security management module, a kind of security mechanisms in line with ISO/IEC7816Agreements and Social Security Card Norms is designed and implemented in the paper. The design of the file management module is the most flexible part in the COS, in-depth analysis of the advantages and disadvantages of the three design,based on the hardware resources and Social Security Card Norms requirements we select the most fit scheme and ultimately realize.In the end of this paper, we also give a brief introduction on the debugging and testing methods of Social Security Card COS.
Social Security Card is schemed by the Human Resources and Social Security Department uniformly. It is publicly issued by the local Social Security Departments for the field of labor and social security.It is a kind of the integrated circuit card and a specific application of smart card in the field of social security.A complete Social Security Card application system is composed by three parts of the Social Security Card, Terminal Equipment and Backend Server connecting with the Terminal Equipment. Social security card for the specific can be divided into a hardware part and software part. The hardware part of the social security card chip and card-based, is the carrier of the software part. The software part is the COS designed in the paper, it is the soul of Social Security Card.The paper first analyzes ISO/IEC7816Agreements and Social Security (personal)Card Norms which are closely related to the Social Security Card COS design. On this basis, a brief introduction to hardware and software platforms used by the COS development and a in-depth discussions on the needs of Social Security Card COS are made to finalize the overall design scheme. The focus of the paper is the in-depth analysis and specific design of the four modules as communication management module, command management module, security management module and file management module which are contained in the Social Security Card COS.The security management module and file management module as the core part of COS, this paper made a detailed analysis and in-depth study. For the security management module, a kind of security mechanisms in line with ISO/IEC7816Agreements and Social Security Card Norms is designed and implemented in the paper. The design of the file management module is the most flexible part in the COS, in-depth analysis of the advantages and disadvantages of the three design,based on the hardware resources and Social Security Card Norms requirements we select the most fit scheme and ultimately realize.In the end of this paper, we also give a brief introduction on the debugging and testing methods of Social Security Card COS.
引文
[1]杨秀莲.浅谈磁卡[J].现代化工,1992,(01):61-63.
[2]杨晓明,王丹宁.智能卡系列讲座(一)带电脑芯片的印刷品——智能卡[J].印刷杂志,1999,(06):39-41.
[3]杨景超.智能卡AES加解密协处理器VLSI设计与实现[D]. [硕士学位论文].上海交通大学,2007.
[4]王涛,梅怡红.关于逻辑加密卡一种安全方案的设计[J].电子工程师,2002,(08):10-12.
[5]北京天石科技有限责任公司.CPU卡:最高级的IC卡[N].中国计报,2003-02-17(E03).
[6]贺利芳,范俊波.非接触式IC卡技术及其发展和应用[J].通信与信息技术,2003,(06):42-44.
[7]全球智能卡市场发展概述[J].中国电子商情(基础电子),2010,(03):24-25.
[8]刘文博,刘宏伟.动态多应用智能卡文件系统的研究与设计[J].微计算机信息,2009,(29):204-206.
[9]吴晓秋Java智能卡技术研究[J].科技创新导报,2011,(12):16.
[10]乔思.哈尔滨:将发放“五合一”社保卡[J].劳动保障世界,2009,(01):14.
[11]社会保障卡建设总体规划[J].金卡工程,2002,(01):23-27.
[12]秦新.基于安全智能卡系统的身份认证研究与实现[D].[硕士学位论文].北京邮电大学,2010.
[13]International Standard ISO/IEC7816.Identification cards. Integrated circuit(s)cards. Part3:Cards with contact-Electrical interface and transmission protocols,1997.
[14]李喆腾.用户识别模块的测试技术研究[D].[硕士学位论文].北京邮电大学,2008.
[15]吴凡.智能卡身份认证技术研究与实现[D].[硕士学位论文].厦门大学,2008.
[16]车平跃.智能卡操作系统内核的研究与实现[D].[硕士学位论文].北京邮电大学,2010.
[17]吴烜辉.智能卡操作系统传输及文件系统模块的研究[D].[硕士学位论文].华中科技大学,2007.
[18]International Standard ISO/IEC7816.Identification cards. Integrated circuit(s)cards. Part4:Organization,security and commands for interchange,1995.
[19]International Standard ISO/IEC,14443.Identification cards. Contactless integrated circuit(s)Cards-Proximiyt Cards.Part3:Initialization and anticollision,2001.
[20]陈海进.智能卡数据安全技术研究及RSA密钥生成器设计[D].[硕士学位论文].南京理工大学.2002.
[21]刘志武.3G智能卡COS安全的研究与实现[D].[硕士学位论文].广东工业大学,2009.
[22]聂景丰.智能卡操作系统安全模块研究与实现[D].[硕士学位论文].西南交通学,2006.
[23]党岚君.智能卡安全技术的探索与改进[D].[硕士学位论文].西安电子科技大学,2005.
[24]许志杰,雷菁,李永彬.智能卡安全技术研究[J].现代电子技术,2005,(15):50-53.
[25]罗怡辰.USB接口加密设备的设计与实现[D].[硕士学位论文].电子科技大学,2002.
[26]智能卡操作系统COS[J]金卡工程,2003,(02):49-53.
[27]王贵智.基于安全COS的智能卡认证研究与实现[D].[硕士学位论文].北京交通大学,2007.
[28]夏莉英,邬丽娜.基于IC卡的税务征收管理系统[J].山西电子术,2009,(01):32-33.
[29]王玉厚.智能IC卡关键技术研究与应用[D].[硕士学位论文].南京工业大学,2006.
[30]耿力,宋晔.CPU卡操作系统及其检测方法[J].信息技术与标准化,2004,(03):28-31.
[31]孙建,林平分.双界面智能卡操作系统的设计与测试[J].信息与电脑(理论版),2011,(01):27.
[2]杨晓明,王丹宁.智能卡系列讲座(一)带电脑芯片的印刷品——智能卡[J].印刷杂志,1999,(06):39-41.
[3]杨景超.智能卡AES加解密协处理器VLSI设计与实现[D]. [硕士学位论文].上海交通大学,2007.
[4]王涛,梅怡红.关于逻辑加密卡一种安全方案的设计[J].电子工程师,2002,(08):10-12.
[5]北京天石科技有限责任公司.CPU卡:最高级的IC卡[N].中国计报,2003-02-17(E03).
[6]贺利芳,范俊波.非接触式IC卡技术及其发展和应用[J].通信与信息技术,2003,(06):42-44.
[7]全球智能卡市场发展概述[J].中国电子商情(基础电子),2010,(03):24-25.
[8]刘文博,刘宏伟.动态多应用智能卡文件系统的研究与设计[J].微计算机信息,2009,(29):204-206.
[9]吴晓秋Java智能卡技术研究[J].科技创新导报,2011,(12):16.
[10]乔思.哈尔滨:将发放“五合一”社保卡[J].劳动保障世界,2009,(01):14.
[11]社会保障卡建设总体规划[J].金卡工程,2002,(01):23-27.
[12]秦新.基于安全智能卡系统的身份认证研究与实现[D].[硕士学位论文].北京邮电大学,2010.
[13]International Standard ISO/IEC7816.Identification cards. Integrated circuit(s)cards. Part3:Cards with contact-Electrical interface and transmission protocols,1997.
[14]李喆腾.用户识别模块的测试技术研究[D].[硕士学位论文].北京邮电大学,2008.
[15]吴凡.智能卡身份认证技术研究与实现[D].[硕士学位论文].厦门大学,2008.
[16]车平跃.智能卡操作系统内核的研究与实现[D].[硕士学位论文].北京邮电大学,2010.
[17]吴烜辉.智能卡操作系统传输及文件系统模块的研究[D].[硕士学位论文].华中科技大学,2007.
[18]International Standard ISO/IEC7816.Identification cards. Integrated circuit(s)cards. Part4:Organization,security and commands for interchange,1995.
[19]International Standard ISO/IEC,14443.Identification cards. Contactless integrated circuit(s)Cards-Proximiyt Cards.Part3:Initialization and anticollision,2001.
[20]陈海进.智能卡数据安全技术研究及RSA密钥生成器设计[D].[硕士学位论文].南京理工大学.2002.
[21]刘志武.3G智能卡COS安全的研究与实现[D].[硕士学位论文].广东工业大学,2009.
[22]聂景丰.智能卡操作系统安全模块研究与实现[D].[硕士学位论文].西南交通学,2006.
[23]党岚君.智能卡安全技术的探索与改进[D].[硕士学位论文].西安电子科技大学,2005.
[24]许志杰,雷菁,李永彬.智能卡安全技术研究[J].现代电子技术,2005,(15):50-53.
[25]罗怡辰.USB接口加密设备的设计与实现[D].[硕士学位论文].电子科技大学,2002.
[26]智能卡操作系统COS[J]金卡工程,2003,(02):49-53.
[27]王贵智.基于安全COS的智能卡认证研究与实现[D].[硕士学位论文].北京交通大学,2007.
[28]夏莉英,邬丽娜.基于IC卡的税务征收管理系统[J].山西电子术,2009,(01):32-33.
[29]王玉厚.智能IC卡关键技术研究与应用[D].[硕士学位论文].南京工业大学,2006.
[30]耿力,宋晔.CPU卡操作系统及其检测方法[J].信息技术与标准化,2004,(03):28-31.
[31]孙建,林平分.双界面智能卡操作系统的设计与测试[J].信息与电脑(理论版),2011,(01):27.