| Smart card is equipped with data storage and automatic computing capacity, especially suitable for storing privacy information. Hence, it is widely used in financial, medical, and consuming area, which facilitates people’s life. However, with the popularity of smart card technology, there is yet no unified solution for constructing smart card application system. Despite of restrictions in the software and hardware architecture of smart card, there are lots of standards and specifications involved during the development phase. Security requirements of the system, diversified in different services, have to be satisfied at the same time. Thus, the constructing of the system is more difficult and costly than common ones. In addition, as the back-end architecture of the system is independent of one other, cards need to be separately issued to users when they register to a certain service. With the accumulation of cards, it is more difficult to for users to manage piles of cards. Problems like loss and misuse are occurred with user-experience seriously affected. The original intention that single card with multiple applications is violated.In order to address problems existing in the building of smart card application system, this thesis proposes a universal storage application system based on the research of secure element architecture and smart card file system. The system is composed of card side, terminal side and back-end system. The card acts as the data carrier while corresponding service logics are controlled by the back-end system. The client application has established a secured and transparent tunnel between the back-end system and the card, which implements their communications beyond distance. The major tasks of this thesis are stated as follows: 1. This thesis proposes an innovative model of universal storage application system. Based on the service duty model of the back-end system, refined and unified management of the resources, provided by the universal storage space, is achieved. The intention that single card with multiple applications is implemented in a very real sense. Combing with the research and analysis of the card, terminal and back-end system, modeling of key processes of the system is performed. Besides, security-related problems confronting the system are tackled by formulating certain security strategies. 2. A smart card file-system with complete functionalities is implemented based on researches about the architecture of smart card file-system and technical difficulties involved in the modeling process. According to associated standards and specifications, a set of APDU commands are designed for the file system. Meanwhile, the security issues of the system are analyzed, with which, security strategies for implementing anti-clone, anti-forgery, and tamper-proof features are formulated. 3. In terms of generating APDU commands in the back-end system, this thesis proposes a universal component for producing APDUs, which simplifies the procedure for assembling APDUs. Morever, a novel framework for accessing SE is proposed based on exiting secure element access interfaces on Android devices, integrating the communication interfaces for various categories of secure elements. 4. In accordance with the IC card specification published by People’s Bank of China, this thesis proposed a fast payment mode based on the contactless transaction of financial IC card. This new kind of payment mode simplifies the complex procedures existing in traditional payment methods. User-experience associated with mobile payment is incredibly improved. 5. By making use of achievements in the thesis, an e-coupon application system is implemented so that the applicability, validity and performance of the system are verified. |
PDF Full Text Request