【摘要】 为克服现有的智能卡及其芯片操作系统所存在的安全缺陷,提出了一种支持一卡多用和用户下载程序的新型安全智能卡结构,增加了硬件中断、操作标志,以及内存地址比较寄存器、程序地址比较寄存器和数据地址比较寄存器,从硬件上为实现多应用的隔离、确保用户程序和数据的安全提供了保证.新型安全智能卡在CPU中增加若干新指令,将操作模式分为系统模式和用户模式,由特殊的状态标志位来决定是用户模式还是系统模式,以实现系统模式和用户模式间的相互转换.指令区分为普遍指令和特殊指令,只有系统程序可以使用特殊指令,并增加硬件中断以防止用户程序访问地址比较寄存器范围以外的地址空间.最后给出了新型安全智能卡的应用实例.更多还原

【Abstract】 With the increasing needs for multi-application integrated on one smart card,we present a new structure of smart cards in order to overcome the security limitations in current smart cards and their chip operating systems.By using the smart cards with this new secure structure,we can easily integrate multi-application on one smart card and allow users to download their customized programs.In this paper,we discuss from hardware and software aspects the structure of the new smart card and the measures to protect and isolate one application from the others.We also present the application instances of the new secure smart card.更多还原