摘要
移动通信系统多使用UICC来存储用户的信息、鉴权密钥、用户的电话簿、短信数据及运营商的定制参数等信息,以便实现用户身份和用户数据的可携带性以及运营商间的差异化定制。随着物联网技术的不断发展,尤其是终端经常被部署在不方便进行人工插卡或换卡的地点,为了有效地降低终端中卡被偷盗或挪用的风险,嵌入式UICC应运而生。然而,嵌入式UICC这个新的生态系统由于进行终端的激活、配置、码号变更及运营商变更等操作,并随着远程文件配置而导致巨大的安全问题。从现有的用户签约管理部署网络架构出发,分析现有的需求,提出了安全的Profile配置架构,更好地保证了远程Profile的配置安全。
Most mobile communication systems usually used UICC to store user's information,authentication keys, user's phonebook, SMS data, customizable parameters for the operator and other information in order to achieve portability of user identity and user data, and also achieve differentiated customization between operators. With the continuous development of Internet of things technology,especially the terminals were often deployed in artificial inconvenient location for card plug-in or replacement, in order to effectively reduce the risk of stolen or misappropriation, embedded UICC came into being. However, due to the activation of the terminal, configuration, change the code number and carrier changes and other operations, embedded UICC this new eco-system was accompanied by a remote file configurations which may lead to security problems. From an existing deployment network infrastructure of user's subscription management, the existing requirements were analyzed, and the secure profile configuration architecture was proposed to ensure security configuration of remote profile.
出处
《互联网天地》
2015年第1期13-17,共5页
China Internet
关键词
嵌入式UICC
物联网
安全技术
embedded UICC,Internet of things,security technology
