Search

US-12626248-B2 - Method for signing application, and service platform

US12626248B2US 12626248 B2US12626248 B2US 12626248B2US-12626248-B2

Abstract

The present application provides a method for signing an application, and a transaction terminal. The method includes receiving a download request that is sent by a transaction terminal, and the download request comprising an identification of an application to be installed, and determining an installation package of the application to be installed corresponding to the download request according to the identification, and obtaining signature data associated with the installation package and sending the installation package and the signature data to the transaction terminal, the installation package and the signature data indicating that the transaction terminal obtains a signed application package by combining the installation package and the signature data and installs the installation package after the signed application package is verified.

Inventors

  • Zhihao WANG

Assignees

  • Shenzhen Zolon Technology Co., Ltd.

Dates

Publication Date
20260512
Application Date
20221018
Priority Date
20211228

Claims (3)

  1. 1 . A method for signing an application, applied in a service platform, the service platform is communicatively connected with a transaction terminal, the method comprising: receiving a download request that is sent by the transaction terminal, and the download request comprising an identification of an application to be installed and agent information belongs to the transaction terminal; sending a certificate of an agent to the transaction terminal according to the agent information, wherein the certificate of the agent is obtained by signing a public key of the agent through a private key of a manufacturer, and the public key of the agent is generated by the service platform for the agent; determining an installation package of the application to be installed corresponding to the download request according to the identification; signing the application to be installed with the private key of the manufacturer according to the identification of the application to be installed and generating the signature file of the manufacturer that is associated with the application to be installed; signing the application to be installed with a private key of the agent according to the agent information of the download request and generating the signature file of the agent that is associated with the application to be installed; obtaining signature data associated with the installation package and sending the installation package and the signature data to the transaction terminal, the installation package and the signature data indicating that the transaction terminal obtains a signed application package by combining the installation package and the signature data and installs the installation package after the signed application package is verified, the signature data comprises the signature file of the manufacturer and the signature file of the agent.
  2. 2 . A method for signing an application, applied in a transaction terminal, the transaction terminal is communicatively connected with a service platform, the method comprising: sending a download request to the service platform, and the download request comprising an identification of an application to be installed and agent information belongs to the transaction terminal; receiving a certificate of an agent sent by a service platform according to the agent information, wherein the certificate of the agent is obtained by signing a public key of the agent through a private key of a manufacturer, and the public key of the agent is generated by the service platform for the agent; receiving an installation package and signature data of the application to be installed corresponding to the download request, which is sent by the service platform according to the identification of the download request, wherein the signature data comprises a signature file of the manufacturer and a signature file of the agent; combining the signature data and the installation package and obtaining a signed application package; verifying the signed application package and installing the installation package after the signed application package is verified, wherein the verifying the signed application package comprises: verifying the signature file of the manufacturer by using a certificate of the manufacturer and determining that the installation package comprises the signature of the manufacturer in response to a verification of the signature file of the manufacturer being passed; verifying the certificate of the agent by using the certificate of the manufacturer and determining that the certificate of the agent is obtained by signing the private key of the manufacturer in response to a verification of the certificate of the agent being passed; verifying the signature file of the agent by using a verified certificate of the agent and determining that the signature file of the agent is obtained by signing the private key of the agent in response to a verification of the signature file of the agent being passed.
  3. 3 . A service platform, wherein the service platform comprises a storage device, a processor, and a computer program stored in the storage device and executable on the processor, the processor is caused to: receive a download request that is sent by a transaction terminal, and the download request comprises an identification of an application to be installed and agent information belongs to the transaction terminal; send a certificate of the agent to the transaction terminal according to the agent information, wherein the certificate of the agent is obtained by signing a public key of the agent through a private key of the manufacturer, and the public key of the agent is generated by the service platform for the agent; determine an installation package of the application to be installed corresponding to the download request according to the identification; sign the application to be installed with the private key of the manufacturer according to the identification of the application to be installed and generate the signature file of the manufacturer that is associated with the application to be installed; sign the application to be installed with a private key of the agent according to the agent information of the download request and generate the signature file of the agent that is associated with the application to be installed; obtain signature data associated with the installation package and send the installation package and the signature data to the transaction terminal, the installation package and the signature data indicating that the transaction terminal obtains a signed application package by combining the installation package and the signature data and installs the installation package after the signed application package is verified, the signature data comprises the signature file of the manufacturer and the signature file of the agent.

Description

The present application claims the priority to Chinese patent application with application No. 202111633858.8, filed on Dec. 28, 2021, the content of the present application is incorporated herein by reference. FIELD The present application relates to a field of computer application technology, and specifically to a method for signing an application, and a service platform. BACKGROUND With development of Internet, use of a terminal device has become increasingly popular in all walks of life. In a field of payment transaction, in order to meet different needs of users, a transaction terminal can have multiple functions such as transaction, payment, industry applications, and social networking. Security and trustworthiness of an application software of the transaction terminal have become extremely important and requirements for controlling the security of the transaction terminal are getting higher and higher. Therefore, it is extremely important to ensure that the application software installed on the transaction terminal in various industries is safely and reliably. BRIEF DESCRIPTION OF THE DRAWINGS In order to more clearly illustrate technical solutions in the embodiments of the present application, the drawings required for use in the embodiments, or the description of prior art will be briefly introduced below. Obviously, drawings described below are only some embodiments of the present application. For ordinary technicians in this field, other drawings can be obtained based on the drawings without paying any creative labor. FIG. 1 is an architectural diagram of an application scenario of a system provided by an embodiment of the present application. FIG. 2 is a schematic diagram of an implementation flowchart of an application signing method provided by an embodiment of the present application. FIG. 3 is a schematic diagram of an interface for generating signature data by a service platform provided by an embodiment of the present application. FIG. 4 is a schematic diagram of an implementation flowchart of a method for signing an application provided by an embodiment of the present application. FIG. 5 is a schematic diagram of an interface flowchart of a method for signing an application provided by an embodiment of the present application. FIG. 6 is a schematic diagram of a structural of a service platform provided by an embodiment of the present application. FIG. 7 is a schematic diagram of a structural of a transaction terminal provided by an embodiment of the present application. DESCRIPTION In following description, for a purpose of explanation rather than limitation, specific detail such as specific system structure and technology are provided to provide a thorough understanding of an embodiment of present application. However, it will be apparent to those skilled in art that the present application may be practiced in other embodiments without the specific detail. In other instances, detailed description of well-known system, device, circuit, and method are omitted so as not to obscure the description of the present application with unnecessary detail. It should be understood that when used in this specification and the appended claims, the term “comprising” indicates presence of described features, integers, steps, operations, elements and/or components, but does not exclude the presence or addition of one or more other features, integers, steps, operations, elements, elements and/or components thereof. It will also be understood that a term “and/or” as used in the specification and the appended claims refers to and includes any and all possible combinations of one or more of the associated listed items. As used in the specification and the appended claims of the present application, the term “if” can be interpreted as “when . . . ” or “once” or “in response to determining” or “in response to detecting” depending on context. Similarly, a phrase “if it is determined” or “if it is detected [the described condition or event]” can be interpreted as meaning “once it is determined” or “in response to determining” or “once it is detected [the described condition or event]” or “in response to detecting [the described condition or event]” depending on the context. In addition, in the description of the specification and the appended claims of the present application, the terms “first”, “second”, “third”, etc. are only used to distinguish description and cannot be understood as indicating or implying relative importance. The reference to “one embodiment” or “some embodiments” etc. described in the specification of the present application means that one or more embodiments of the present application include specific features, structures or characteristics described in conjunction with the embodiment. Therefore, the sentences “in one embodiment”, “in some embodiments”, “in some other embodiments”, “in other embodiments”, etc. appearing in different embodiments of the specification do not necessarily refer