JP7251082B2 - ELECTRONIC INFORMATION STORAGE MEDIUM, IC CARD, TIME DATA UPDATE METHOD, AND PROGRAM - Google Patents

Description

The present invention relates to the technical field of electronic information storage media such as IC cards for verifying electronic certificates.

Conventionally, IC cards for verifying electronic certificates are known. For example, the non-contact IC card disclosed in Patent Document 1 confirms the validity of the signature value from the random number received from the terminal device, the signature value, and the server certificate. confirms the validity of the server certificate from the terminal device, and if the confirmation fails, a failure notification is transmitted to the terminal device (see FIG. 7 of Patent Document 1).

JP 2009-140275 A

By the way, when verifying an electronic certificate, it is necessary to determine the expiration date of the electronic certificate, so it is necessary to hold time data. However, since the IC card is not equipped with a crystal oscillator (crystal oscillator) due to power consumption, the IC card cannot count the time and update the time data by itself. Therefore, the IC card cannot detect the revocation of the electronic certificate.

Accordingly, the present invention has been made in view of the above points, and provides an electronic information storage medium capable of holding appropriate time data used for judging the expiration date of an electronic certificate and periodically updating it. , an IC card, a time data update method, and a program.

The invention according to claim 1 is an electronic information storage medium comprising a non-volatile memory that stores time data used to determine the expiration date of an electronic certificate, and is a security device for ensuring security with an external device. Processing means for performing processing, the processing means for performing verification including inspection of the expiration date of the electronic certificate of the external device using the time data stored in the nonvolatile memory in the security processing, and the verification The current time data acquired by the clock function of the external device whose security is ensured by the result of the verification being successful is received from the external device, and the received current time data is stored in the non-volatile memory. updating means for updating time data, wherein the processing means rechecks the expiration date of the electronic certificate of the external device using the received current time data, and when the expiration date has passed If yes, the verification success is canceled.

According to a second aspect of the present invention, in the electronic information storage medium according to the first aspect, the updating means causes the time indicated by the received current time data to be indicated by the time data stored in the nonvolatile memory. The time data stored in the non-volatile memory is updated with the received current time data only when it is later than the time.

According to a third aspect of the present invention, there is provided the electronic information storage medium according to the first aspect, wherein the update means updates the time indicated by the received current time data to the time indicated by the time data stored in the nonvolatile memory. If it is earlier than the time, error processing is performed without updating the time data stored in the nonvolatile memory.

According to a fourth aspect of the present invention , there is provided an IC card having a non-volatile memory for storing time data used to determine the expiration date of an electronic certificate, and performing security processing for ensuring security with an external device. processing means for performing verification including inspection of the expiration date of the electronic certificate of the external device using the time data stored in the nonvolatile memory in the security processing; and a result of the verification receives the current time data acquired by the clock function of the external device whose security is ensured by the successful verification, and the time data stored in the non-volatile memory based on the received current time data and updating means for updating, wherein the processing means rechecks the expiration date of the electronic certificate of the external device using the received current time data, and if the expiration date has passed , canceling the verification success.

According to a fifth aspect of the present invention , there is provided a time data update method executed by a computer included in an electronic information storage medium having a nonvolatile memory for storing time data used for determining the expiration date of an electronic certificate, A processing step of performing security processing for ensuring security with a device, wherein the time data stored in the nonvolatile memory is used in the security processing to check the expiration date of the electronic certificate of the external device. and receiving current time data acquired by the clock function of the external device whose security is ensured by the result of the verification being verification success, from the external device, and received and updating the time data stored in the non-volatile memory with the current time data, wherein in the processing step, the received current time data is used to update the expiration date of the electronic certificate of the external device. If re-inspection is executed and the expiration date has passed, the verification success is canceled.

According to the sixth aspect of the present invention, a computer included in an electronic information storage medium having a nonvolatile memory that stores time data used to determine the expiration date of an electronic certificate is used to ensure security with an external device. a processing means for performing the security processing of (1), wherein in the security processing, the time data stored in the non-volatile memory is used to perform verification including inspection of the expiration date of the electronic certificate of the external device; receiving the current time data acquired by the clock function of the external device whose security is ensured by the result of the verification being verification success, from the external device, and storing the received current time data in the non-volatile memory; wherein the processing means uses the received current time data to recheck the expiration date of the electronic certificate of the external device and confirms the validity of the certificate. It is characterized by canceling the successful verification if the time limit has passed.

According to the present invention, it is possible to retain and periodically update appropriate time data used to determine the expiration date of an electronic certificate.

It is a figure which shows the hardware structural example of SE. It is a figure which shows an example of the external authentication using a common key cryptosystem. It is a figure which shows an example of the external authentication using a public key cryptosystem. FIG. 10 is a diagram showing an example of time data update processing when external authentication using a common key cryptosystem is applied; FIG. 10 is a diagram showing an example of time data update processing when external authentication using public key cryptography is applied; FIG. 10 is a diagram showing a format example of a time data update command; FIG. FIG. 10 illustrates an example of certificate verification processing;

BEST MODE FOR CARRYING OUT THE INVENTION Hereinafter, embodiments of the present invention will be described in detail with reference to the drawings. The embodiment described below is an embodiment in which the present invention is applied to a secure element (hereinafter referred to as "SE").

[1. Configuration and functions of SE]
First, referring to FIG. 1, the configuration and functions of an SE (an example of an electronic information storage medium of the present invention) according to this embodiment will be described. FIG. 1 is a diagram showing a hardware configuration example of an SE. As shown in FIG. 1, SE includes CPU (Central Processing Unit) 10, RAM (Random Access Memory) 11, ROM (Read Only Memory) 12, NVM (Nonvolatile Memory) 13 (nonvolatile memory), and I/O It is configured with a circuit 14 and the like. However, the ROM 12 may not be provided in some cases. Since the SE is not equipped with a crystal oscillator or the like, it cannot count (measure) the time itself (that is, it does not have a clock function). The SE may be mounted on an IC card as an IC chip, or may be mounted on an embedded board as an eUICC (Embedded Universal Integrated Circuit Card) so that it cannot be easily removed or replaced from the terminal (i.e. integrated with the terminal). may be formed).

The I/O circuit 14 serves as an interface with an external device with which the SE communicates. Examples of interfaces include an ISO7816 interface, an SWP (Single Wire Protocol) interface, and an SPI (Serial Peripheral Interface). Examples of external devices include servers and terminals. Note that the I/O circuit 14 may include, for example, an antenna and a modulation/demodulation circuit.

The CPU 10 is a processor (computer) that executes various programs stored in the ROM 12 or NVM 13 . The RAM 11 is used as working memory. A flash memory, for example, is applied to the NVM 13 . The NVM 13 may be "Electrically Erasable Programmable Read-Only Memory". Various programs (including the program of the present invention) and data are stored in the NVM 13 . Various programs include an operating system, an application program, and the like. A part of various programs and data stored in the NVM 13 may be stored in the ROM 12 .

The NVM 13 also stores time data used to check the expiration date of a PKI (Public Key Infrastructure) electronic certificate (digital certificate). Here, the time data is data indicating the time (year/month/date, month/date/time, or date/time), and is obtained from an external device that has a clock function and ensures security (i.e., is reliable). . A digital certificate is issued by a predetermined certificate authority. An electronic certificate describes a public key, information about the owner of the private key corresponding to the public key, an expiration date, etc., and is given the electronic signature of the certificate authority that issued the electronic certificate.

The CPU 10 functions as processing means and update means in the present invention according to the program of the present invention. More specifically, the CPU 10 performs security processing for ensuring security with the external device. Then, the CPU 10 receives the current time data acquired by the clock function of the external device whose security is ensured through the security processing, from the external device, and converts the time data stored in the NVM 13 based on the received current time data. Update (overwrite).

Here, examples of security processing include external authentication using a common key cryptosystem and external authentication using a public key cryptosystem. External authentication using common key cryptography encrypts data such as random numbers with a common key shared with external devices, and authenticates when the encrypted data match. be. On the other hand, external authentication using public key cryptography verifies the electronic certificate of PKI (including checking the expiration date of the electronic certificate), and authenticates with successful verification of the electronic certificate. method.

FIG. 2 is a diagram showing an example of external authentication using a common key cryptosystem. In the example of FIG. 2, each of the SE and the external device stores a common key K of the SE and the external device (that is, a common key K shared by both). In the example of FIG. 2, the external device generates a random number 1 (step S1) and transmits the random number 1 to the SE (step S2). Next, the SE generates a random number 2, encrypts the received random number 1 using the common key K (step S3), and encrypts the random number 2 and the encrypted random number 1 (hereinafter referred to as "encrypted random number 1”) to the external device (step S4). Next, the external device decrypts the received encrypted random number 1 using the common key K, compares the decrypted random number 1 with the random number 1 generated in step S1 (step S5), If 1 matches, it is determined that the SE has been successfully authenticated.

Then, when the external device determines that the authentication is successful, the external device encrypts the received random number 2 using the common key K (step S6), and converts the encrypted random number 2 (hereinafter referred to as "encrypted random number 2") to Send to SE (step S7). Next, the SE decrypts the received encrypted random number 2 using the common key K, compares the decrypted random number 2 with the random number 2 generated in step S3 (step S8), If the random numbers 2 match each other, it is determined that the authentication of the external device has succeeded. The SE then transmits the authentication result to the external device (step S9). In this way, the SE authenticates the external device using the common key K, and the security of the external device is ensured when the authentication succeeds.

On the other hand, FIG. 3 is a diagram showing an example of external authentication using public key cryptography. In the example of FIG. 3, the SE stores the SE's electronic certificate and the public key of the certificate authority that issued the electronic certificate, and the external device stores the electronic certificate of the external device and the electronic certificate. The public key of the certificate authority that issued the is stored. The SE stores the private key of the SE and the public key of the external device, and the external device stores the private key of the external device and the public key of the SE. In the example of FIG. 3, the external device transmits its own electronic certificate to the SE (step S11). Next, as verification of the received electronic certificate (electronic certificate of the external device), the SE checks the expiration date of the electronic certificate using the time data stored in the NVM 13 (step S12), and Signature verification of the certificate authority's electronic signature attached to the electronic certificate is executed using the certificate authority's public key (step S13). Then, when the expiration date has not passed and the signature verification of the electronic signature is successful, the SE determines that the verification of the electronic certificate is successful (in other words, the authentication of the external device is successful). If the time limit has passed or the signature verification of the electronic signature fails, it is determined that the verification of the electronic certificate has failed (in other words, the authentication of the external device has failed).

The SE then transmits the verification result and its own electronic certificate to the external device (step S14). In this way, the SE verifies the electronic certificate of the external device using the time data and the public key of the certification authority, and the security of the external device is provisionally secured when the verification result is successful. will be However, since the time data used in step S12 may be old, the SE rechecks the expiration date of the electronic certificate of the external device using the current time data received after the verification is successful. If the expiration date has passed, it is preferable to cancel the successful verification. In this case, the time data is not updated with the received current time data. In verifying the electronic certificate, in addition to the above, the SE receives the signature data attached with the electronic signature of the external device (signed with the private key of the external device) from the external device, and uses the public key of the external device. may be used to perform signature verification of the electronic signature on the signature data, in which case the SE must verify that the validity period has not passed and that the signature verification of the respective electronic signatures of the certification authority and the external device has not been completed. If successful, it is determined that the verification of the electronic certificate has succeeded.

On the other hand, as verification of the received electronic certificate (SE electronic certificate), the external device checks the expiration date of the electronic certificate using the current time data acquired by the clock function (step S15), and Signature verification of the electronic signature of the certificate authority attached to the electronic certificate is executed using the public key of the certificate authority (step S16). Then, if the validity period has not passed and the signature verification of the electronic signature is successful, the external device determines that the verification of the electronic certificate has succeeded. If the signature verification of the electronic signature fails, it is determined that the verification of the electronic certificate has failed. In the verification of the electronic certificate, in addition to the above, the external device receives the signature data to which the SE's electronic signature (signed with the SE's private key) is attached from the SE, and uses the SE's public key to Signature verification of the electronic signature in the signature data may be performed.

[2. Operation when time data is updated in SE]
Next, the operation of updating the time data in the SE will be described with reference to FIGS. 4 and 5. FIG. FIG. 4 is a diagram showing an example of time data update processing when external authentication using a common key cryptosystem is applied, and FIG. 5 shows time data update processing when external authentication using a public key cryptosystem is applied. It is a figure which shows an example of an update process.

First, the time data update process shown in FIG. 4 is started when an external authentication command is received from an external device. An example of the external authentication command is the "EXTERNAL AUTHENTICATE command" specified by ISO7816. 4. When the process shown in FIG. 4 is started, as the security process, as described with reference to FIG. It is determined whether or not the result of authentication is authentication success (step S102).

Then, when the SE determines that the authentication result is authentication success (step S102: YES), it transmits a response indicating the authentication result (authentication success) to the external device (step S103). On the other hand, if the SE determines that the result of authentication is not successful (step S102: NO), it proceeds to step S108.

When the external device receives a response indicating the authentication result (authentication success), it transmits a time data update command (UPDATE TIME command) to the SE. FIG. 6 is a diagram showing a format example of the time data update command. In the example of FIG. 6, the UPDATE TIME command consists of a header section (CLA (command class), INS (command code), P1 (command parameter 1), and P2 (command parameter 2)) and a data section (Lc (data length ) and Data). Data "YYYYMMDDTTTT" (eg, 6 bytes) in the data portion of the UPDATE TIME command is current time data.

When the SE receives the time data update command from the external device (step S104), the time indicated by the current time data included in the received time data update command is later than the time indicated by the time data stored in the NVM 13. (that is, whether the vehicle is progressing) or not (step S105). In other words, it is determined whether the value indicated by the received current time data (for example, 20180101 1300) is greater than the value indicated by the stored time data (for example, 20180101 1200). This determination can prevent the time data from being illegally updated.

Then, the SE determines that the time indicated by the received current time data is later than the time indicated by the stored time data (in other words, the value indicated by the current time data is greater than the value indicated by the time data). If so (step S105: YES), the process proceeds to step S106. On the other hand, if the SE determines that the time indicated by the received current time data is not later than the time indicated by the stored time data (that is, is earlier (past) than the time indicated by the time data) (step S105: NO), and proceeds to step S108.

In step S106, the SE updates (overwrites) the time data stored in the NVM 13 with the current time data received in step S104. Next, the SE transmits a response indicating normal termination (for example, SW9000) to the external device (step S107), and terminates (normally terminates) the time data update process. Thus, the received current time data is newly stored in the NVM 13 as time data.

In step S108, the SE performs error processing without updating the time data, and terminates abnormally. In this error processing, the SE, for example, transmits a response (error SW) indicating an error (authentication failure or current time data abnormality) to the external device. Also, in this error processing, the SE may, for example, lock the function for determining the expiration date of the electronic certificate (for example, lock it until the time data update processing is completed normally).

Next, the time data update process shown in FIG. 5 is started when a certificate verification command is received from an external device. An example of a certificate verification command is the "CERTIFICATE VERIFY command" specified by ISO7816. When the process shown in FIG. 5 is started, as the security process, as described with reference to FIG. It is determined whether or not the result of verification is verification success (step S112).

Then, when the SE determines that the verification result is verification success (step S112: YES), the SE transmits a response indicating the verification result (verification success) to the external device (step S113). On the other hand, if the SE determines that the verification result is not successful (step S112: NO), it proceeds to step S120.

When the external device receives a response indicating the verification result (verification success), it transmits a time data update command (UPDATE TIME command) to the SE. When the SE receives the time data update command (step S114), the time indicated by the current time data included in the received time data update command is later than the time indicated by the time data stored in the NVM 13, as in step S105. It is determined whether or not (step S115).

If the SE determines that the time indicated by the received current time data is later than the time indicated by the stored time data (step S115: YES), the SE proceeds to step S116. On the other hand, when the SE determines that the time indicated by the received current time data is not later than the time indicated by the stored time data (step S115: NO), the SE proceeds to step S120.

In step S116, the SE uses the current time data received in step S114 to reexamine the expiration date of the electronic certificate of the external device to determine whether the expiration date of the electronic certificate of the external device has passed. determine whether

If the SE determines that the expiration date of the electronic certificate of the external device has passed (that is, the time indicated by the current time data is later than the expiration date) (step S116: YES), the verification is successful. is canceled (step S117), and the process proceeds to step S120. On the other hand, if it is determined that the expiration date of the electronic certificate of the external device has not passed (step S116: NO), the process proceeds to step S118.

In step S118, the SE updates (overwrites) the time data stored in the NVM 13 with the current time data received in step S114. Next, the SE transmits a response indicating normal termination (for example, SW9000) to the external device (step S119), and terminates (normally terminates) the time data update process. Thus, the received current time data is newly stored in the NVM 13 as time data.

In step S120, the SE performs error processing without updating the time data, and terminates abnormally. In this error processing, the SE, for example, transmits a response (error SW) indicating an error (verification failure, current time data abnormality, or verification success cancellation) to the external device. Also, in this error processing, the SE may, for example, lock the function for determining the expiration date of the electronic certificate (for example, lock it until the time data update processing is completed normally).

[3. Operation when using time data in SE]
Next, with reference to FIG. 7, the operation of the SE when using time data will be described. FIG. 7 is a diagram illustrating an example of certificate verification processing. For example, the certificate verification process shown in FIG. 7 is performed by an external device (e.g., terminal ) when a certificate verification command is received from It should be noted that the electronic certificate of another external device is received by the SE together with the certificate verification command or separately from the certificate verification command.

When the process shown in FIG. 7 is started, the SE uses the time data stored in the NVM 13 to check the expiration date of the electronic certificate of the other external device, It is determined whether or not the expiration date has passed (step S201).

If the SE determines that the expiration date of the electronic certificate of the other external device has passed (that is, the time indicated by the time data is later than the expiration date) (step S201: YES), step S204 proceed to On the other hand, if it is determined that the expiration date of the electronic certificate of the other external device has not passed (step S201: NO), the process proceeds to step S202.

In step S202, the SE uses the public key of the certification authority to verify the signature of the certification authority's electronic signature attached to the electronic certificate of the other external device, and determines whether the signature verification of the electronic signature was successful. judge.

Then, when the SE determines that the signature verification of the electronic signature of the certificate authority has succeeded (step S202: YES), the SE transmits a response indicating normal termination to the other external device (step S203), and terminates the certificate verification. (ends normally). On the other hand, when the SE determines that the signature verification of the certificate authority's electronic signature is not successful (step S202: NO), the SE proceeds to step S204.

In step S204, the SE transmits a response indicating an error (verification failure) to the other external device, and terminates abnormally.

As described above, according to the above embodiment, the SE that stores the time data used to determine the expiration date of the electronic certificate executes security processing for ensuring security with the external device, Current time data acquired by a clock function of an external device whose security is ensured through processing is received from the external device, and the stored time data is updated with the received current time data. Therefore, it is possible to hold and periodically update the appropriate time data used to determine the expiration date of the electronic certificate.

10 CPUs
11 RAM
12 ROMs
13 NVM
14 I/O circuit

Claims (6)

An electronic information storage medium comprising a non-volatile memory that stores time data used to determine the expiration date of an electronic certificate,
A processing means for performing security processing for ensuring security with an external device, wherein the time data stored in the nonvolatile memory is used in the security processing to determine the expiration date of the electronic certificate of the external device. a processing means for performing verification, including checking;
receiving the current time data acquired by the clock function of the external device whose security is ensured by the result of the verification being verification success, from the external device, and storing the received current time data in the non-volatile memory; updating means for updating the time data received;
with
The processing means re-examines the expiration date of the electronic certificate of the external device using the received current time data, and cancels the successful verification if the expiration date has passed. electronic information storage medium. Only when the time indicated by the received current time data is later than the time indicated by the time data stored in the nonvolatile memory, the updating means updates the nonvolatile memory with the received current time data. 2. The electronic information storage medium according to claim 1 , wherein the time data stored in the electronic information storage medium is updated. The updating means does not update the time data stored in the nonvolatile memory when the time indicated by the received current time data is earlier than the time indicated by the time data stored in the nonvolatile memory. 2. The electronic information storage medium according to claim 1 , wherein error processing is performed on each error. An IC card comprising a non-volatile memory that stores time data used to determine the expiration date of an electronic certificate,
A processing means for performing security processing for ensuring security with an external device, wherein the time data stored in the nonvolatile memory is used in the security processing to determine the expiration date of the electronic certificate of the external device. a processing means for performing verification, including checking;
receiving the current time data acquired by the clock function of the external device whose security is ensured by the result of the verification being verification success, from the external device, and storing the received current time data in the non-volatile memory; updating means for updating the time data received;
with
The processing means re-examines the expiration date of the electronic certificate of the external device using the received current time data, and cancels the successful verification if the expiration date has passed. IC card. A method for updating time data executed by a computer included in an electronic information storage medium having a non-volatile memory for storing time data used to determine the expiration date of an electronic certificate,
A processing step of performing security processing for ensuring security with an external device, wherein the time data stored in the nonvolatile memory is used in the security processing to determine the expiration date of the electronic certificate of the external device. a processing step to perform verification, including checking;
receiving the current time data acquired by the clock function of the external device whose security is ensured by the result of the verification being verification success, from the external device, and storing the received current time data in the non-volatile memory; a step of updating the time data obtained from the
including
In the processing step, the validity period of the electronic certificate of the external device is re-examined using the received current time data, and if the validity period has passed, the successful verification is cancelled. Time data update method. A computer included in an electronic information storage medium equipped with a non-volatile memory that stores time data used to determine the expiration date of an electronic certificate,
A processing means for performing security processing for ensuring security with an external device, wherein the time data stored in the nonvolatile memory is used in the security processing to determine the expiration date of the electronic certificate of the external device. a processing means for performing verification, including checking;
receiving the current time data acquired by the clock function of the external device whose security is ensured by the result of the verification being verification success, from the external device, and storing the received current time data in the non-volatile memory; A program functioning as updating means for updating time data obtained by
The processing means re-examines the expiration date of the electronic certificate of the external device using the received current time data, and cancels the successful verification if the expiration date has passed. A program characterized by:

Images