CN115080078B - Method for updating operating system and related equipment - Google Patents
Method for updating operating system and related equipment Download PDFInfo
- Publication number
- CN115080078B CN115080078B CN202110268271.5A CN202110268271A CN115080078B CN 115080078 B CN115080078 B CN 115080078B CN 202110268271 A CN202110268271 A CN 202110268271A CN 115080078 B CN115080078 B CN 115080078B
- Authority
- CN
- China
- Prior art keywords
- operating system
- euicc
- ods
- updating
- installation
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F8/00—Arrangements for software engineering
- G06F8/60—Software deployment
- G06F8/65—Updates
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/33—User authentication using certificates
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/44—Program or device authentication
- G06F21/445—Program or device authentication by mutual authentication, e.g. between devices or programs
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F8/00—Arrangements for software engineering
- G06F8/60—Software deployment
- G06F8/61—Installation
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Software Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Computer Hardware Design (AREA)
- Stored Programmes (AREA)
Abstract
The present disclosure provides a system, method, apparatus and non-transitory computer readable storage medium for updating an operating system, relating to the field of terminals. Wherein the system includes: an ODS configured to: generating an operating system installation package; performing two-way authentication with SM-SR; sending an eUICC operating system update request to the SM-SR, wherein the eUICC operating system update request contains an identifier of the eUICC and a space required by operating system installation; SM-SR configured to: judging whether the installation requirement of the new operating system is met according to the identification; under the condition that the installation requirement is met, sending a data short message to the eUICC, wherein the data short message comprises an ODS address; an eUICC configured to: establishing connection with ODS and performing mutual authentication; negotiating a session key with the ODS and establishing an operating system update session; acquiring an operating system installation package from the ODS; the operating system is updated. The method and the device can solve the problems that the IOT type eUICC operating system without LPA assistance is difficult to realize and the cost is too high.
Description
Technical Field
The present disclosure relates to the field of terminals, and in particular, to a method and apparatus for updating an operating system, and a non-transitory computer readable storage medium.
Background
The eUICC is usually embedded on a motherboard of the terminal device in an SMD manner, and cannot plug and replace a new card like a common SIM card. If the eUICC card operating system (eUICC OS) itself is problematic or the eUICC card capabilities need to be extended (e.g., support new algorithms), the cost of replacing the new card is very high. The eUICC technology of GSMA recognizes the need for online updates of the eUICC operating system, but the update scheme is not defined in detail.
At present, a part of domestic patents already provide a method for updating an eUICC operating system, and the existing method solves the problems of downloading, installing and guaranteeing safety of a consumer electronic eUICC (refer to GSMA sgp.21 series standard) operating system, and needs LPA as an intermediary to inquire SM-DS and acquire an operating system file from ODS and forward the operating system file to the eUICC.
However, the conventional method fails to solve the problem of updating an operating system of an eUICC (refer to GSMA sgp.02 series standard) of the internet of things type without LPA assistance. Compared with consumer equipment (such as mobile phones and intelligent watches) with LPA and user cooperation, the Internet of things equipment (such as vehicle-mounted equipment and water, electricity and gas meters) without LPA is difficult to detach/move, and does not have active cooperation of the user, so that the updating cost of the OS of the carried eUICC is higher, and the requirements and the related capabilities of the OS are more important and urgent.
Disclosure of Invention
The technical problem solved by the present disclosure is how to solve the problems of difficulty in implementing and high cost of the IOT eUICC operating system without LPA assistance.
According to one aspect of the present disclosure, there is provided a system for updating an operating system, comprising: an operating system distribution server ODS configured to: generating an operating system installation package; performing mutual authentication with a subscriber subscription data management-security route SM-SR; sending an embedded universal integrated circuit card (eUICC) operating system update request to the SM-SR, wherein the eUICC operating system update request contains an identifier of the eUICC and a space required by operating system installation; SM-SR configured to: judging whether the installation requirement of the new operating system is met according to the identification; under the condition that the installation requirement is met, sending a data short message to the eUICC, wherein the data short message comprises an ODS address; an eUICC configured to: establishing connection with ODS and performing mutual authentication; negotiating a session key with the ODS and establishing an operating system update session; acquiring an operating system installation package from the ODS; the operating system is updated.
In some embodiments, the ODS is configured to: the two-way authentication is performed with the SM-SR by exchanging public key infrastructure PKI certificates and checking the PKI certificates.
In some embodiments, the SM-SR is configured to: reading the eUICC information set according to the identification; and judging whether the installation requirement of the new operating system is met or not according to the residual available space in the eUICC information set.
In some embodiments, the eUICC is configured to: and initiating an opening channel to the ODS through an ISD-R (integrated service-related device-to-ODS) management method of the operator data profile, and establishing communication connection with the ODS.
In some embodiments, the eUICC is configured to: judging whether the residual space of the eUICC is enough to install a new operating system or not; under the condition that the residual space is enough to install a new operating system, decompressing an operating system installation package to obtain an operating system installation file; sending a first initialization request to the terminal equipment so that the terminal equipment controls the eUICC to restart; explaining an operating system installation file through an OSSB and controlling to update the operating system; deleting the operating system installation package after the new operating system is installed; and initiating a second initialization request to the terminal equipment so that the terminal equipment registers the eUICC with the network equipment.
In some embodiments, the eUICC is configured to: the operating system installation package is interpreted by OSSB to read the space requirements in the operating system installation package.
In some embodiments, the eUICC is further configured to: in the event that there is insufficient room left to install a new operating system, update operating system failure information is returned.
In some embodiments, the ODS is further configured to: the operating system installation package is stored encrypted.
In some embodiments, the SM-SR is further configured to: and returning failure information of updating the operating system under the condition that the installation requirement is not met.
In some embodiments, the eUICC is further configured to: returning a result of updating the operating system to the SM-SR; the SM-SR is further configured to: the result of updating the operating system is returned to the ODS.
In some embodiments, the SM-SR is further configured to: the remaining available space in the eUICC information set is updated.
According to another aspect of the present disclosure, there is provided a method of updating an operating system, comprising: the operating system distribution server ODS generates an operating system installation package; ODS and user subscription data management-security route SM-SR make mutual authentication; ODS sends an embedded universal integrated circuit card eUICC operating system update request to SM-SR, wherein the eUICC operating system update request contains the identifier of the eUICC and the space required by the installation of the operating system; the SM-SR judges whether the installation requirement of the new operating system is met according to the identification; under the condition that the installation requirement is met, the SM-SR sends a data short message to the eUICC, wherein the data short message comprises an ODS address; the eUICC establishes connection with the ODS and performs bidirectional authentication; the eUICC negotiates a session key with the ODS and establishes an operating system update session; the eUICC obtains an operating system installation package from the ODS; the eUICC updates the operating system.
In some embodiments, the ODS performing mutual authentication with the user subscription data management-security route SM-SR includes: the ODS and the SM-SR perform mutual authentication by exchanging public key infrastructure PKI certificates and checking the PKI certificates.
In some embodiments, the SM-SR determining whether the installation requirements of the new operating system are met based on the identification comprises: the SM-SR reads the eUICC information set according to the identification; and the SM-SR judges whether the installation requirement of the new operating system is met according to the residual available space in the eUICC information set.
In some embodiments, the eUICC establishing the connection with the ODS comprises: the eUICC initiates an opening channel to the ODS through an ISD-R management method of the operator data profile, and establishes communication connection with the ODS.
In some embodiments, the eUICC performing the operating system update includes: the eUICC judges whether the residual space of the eUICC is enough to install a new operating system; under the condition that the residual space is enough to install a new operating system, the eUICC decompresses the operating system installation package to acquire an operating system installation file; the eUICC sends a first initialization request to the terminal equipment; the terminal equipment controls the eUICC to restart; the eUICC interprets the installation file of the operating system through the OSSB and controls the updating of the operating system; after the new operating system is installed, the eUICC deletes the operating system installation package; the eUICC initiates a second initialization request to the terminal equipment; the terminal device registers the eUICC with the network device.
In some embodiments, the eUICC determining whether the remaining space of the eUICC is sufficient to install a new operating system comprises: the eUICC interprets the operating system installation package through OSSB to read the space requirements in the operating system installation package.
In some embodiments, the eUICC performing the operating system update further comprises: in the event that the remaining space is insufficient to install a new operating system, the eUICC returns updated operating system failure information.
In some embodiments, further comprising: ODS encrypts storage operating system installation packages.
In some embodiments, further comprising: and returning failure information of updating the operating system under the condition that the installation requirement is not met.
In some embodiments, further comprising: the eUICC returns a result of updating the operating system to the SM-SR; the SM-SR returns the results of updating the operating system to the ODS.
In some embodiments, further comprising: the SM-SR updates the remaining available space in the eUICC information set.
According to yet another aspect of the present disclosure, there is provided an apparatus for updating an operating system, including: a memory; and a processor coupled to the memory, the processor configured to perform the aforementioned method of updating an operating system based on instructions stored in the memory.
According to yet another aspect of the present disclosure, there is provided a non-transitory computer readable storage medium storing computer instructions which, when executed by a processor, implement the aforementioned method of updating an operating system.
The method can solve the problems that the IOT type eUICC operating system without LPA assistance is difficult to realize and the cost is too high.
Other features of the present disclosure and its advantages will become apparent from the following detailed description of exemplary embodiments of the disclosure, which proceeds with reference to the accompanying drawings.
Drawings
In order to more clearly illustrate the embodiments of the present disclosure or the technical solutions in the related art, the drawings that are required to be used in the embodiments or the related technical descriptions will be briefly described below, and it is apparent that the drawings in the following description are only some embodiments of the present disclosure, and other drawings may be obtained according to the drawings without inventive effort to those of ordinary skill in the art.
FIG. 1 illustrates a schematic architecture of a system for updating an operating system in accordance with some embodiments of the present disclosure.
FIG. 2 illustrates a flow diagram of a method of updating an operating system in accordance with some embodiments of the present disclosure.
FIG. 3 illustrates a flow diagram of a method of updating an operating system in accordance with further embodiments of the present disclosure.
Fig. 4 illustrates a schematic structural diagram of an apparatus for updating an operating system according to some embodiments of the present disclosure.
Detailed Description
The following description of the technical solutions in the embodiments of the present disclosure will be made clearly and completely with reference to the accompanying drawings in the embodiments of the present disclosure, and it is apparent that the described embodiments are only some embodiments of the present disclosure, not all embodiments. The following description of at least one exemplary embodiment is merely illustrative in nature and is in no way intended to limit the disclosure, its application, or uses. All other embodiments, which can be made by one of ordinary skill in the art based on the embodiments in this disclosure without inventive faculty, are intended to fall within the scope of this disclosure.
Some embodiments of a system for updating an operating system of the present disclosure are first described in connection with fig. 1.
FIG. 1 illustrates a schematic architecture of a system for updating an operating system in accordance with some embodiments of the present disclosure. As shown in fig. 1, a system for updating an operating system includes: an operating system distribution server ODS configured to: generating an operating system installation package; performing mutual authentication with a subscriber subscription data management-security route SM-SR; sending an embedded universal integrated circuit card (eUICC) operating system update request to the SM-SR, wherein the eUICC operating system update request contains an identifier of the eUICC and a space required by operating system installation; SM-SR configured to: judging whether the installation requirement of the new operating system is met according to the identification; under the condition that the installation requirement is met, sending a data short message to the eUICC, wherein the data short message comprises an ODS address; an eUICC configured to: establishing connection with ODS and performing mutual authentication; negotiating a session key with the ODS and establishing an operating system update session; acquiring an operating system installation package from the ODS; the operating system is updated.
In some embodiments, the ODS is configured to: the two-way authentication is performed with the SM-SR by exchanging public key infrastructure PKI certificates and checking the PKI certificates.
In some embodiments, the SM-SR is configured to: reading the eUICC information set according to the identification; and judging whether the installation requirement of the new operating system is met or not according to the residual available space in the eUICC information set.
In some embodiments, the eUICC is configured to: and initiating an opening channel to the ODS through an ISD-R (integrated service-related device-to-ODS) management method of the operator data profile, and establishing communication connection with the ODS.
In some embodiments, the eUICC is configured to: judging whether the residual space of the eUICC is enough to install a new operating system or not; under the condition that the residual space is enough to install a new operating system, decompressing an operating system installation package to obtain an operating system installation file; sending a first initialization request to the terminal equipment so that the terminal equipment controls the eUICC to restart; explaining an operating system installation file through an OSSB and controlling to update the operating system; deleting the operating system installation package after the new operating system is installed; and initiating a second initialization request to the terminal equipment so that the terminal equipment registers the eUICC with the network equipment.
In some embodiments, the eUICC is configured to: the operating system installation package is interpreted by OSSB to read the space requirements in the operating system installation package.
In some embodiments, the eUICC is further configured to: in the event that there is insufficient room left to install a new operating system, update operating system failure information is returned.
In some embodiments, the ODS is further configured to: the operating system installation package is stored encrypted.
In some embodiments, the SM-SR is further configured to: and returning failure information of updating the operating system under the condition that the installation requirement is not met.
In some embodiments, the eUICC is further configured to: returning a result of updating the operating system to the SM-SR; the SM-SR is further configured to: the result of updating the operating system is returned to the ODS.
In some embodiments, the SM-SR is further configured to: the remaining available space in the eUICC information set is updated.
As can be seen from fig. 1, on the eUICC side: an ISD-R security domain of an eUICC (GSMA SGP.02) of the Internet of things is added with an operating system service OSSB (OS Service Block) module which is responsible for receiving an operating system update instruction, establishing a secure connection with an ODS, acquiring an operating system installation package from the ODS, and explaining and installing the operating system installation package. On the platform side: the operating system distribution server ODS is responsible for generating operating system installation packages. The file includes metadata, a Card Operating System (COS) and may contain user subscription data Profile stored in an encrypted manner. The ODS supports the completion of mutual authentication with the eUICC through the PKI certificate, receives a request for the eUICC to establish a secure channel, receives an operating system acquisition request for the eUICC, and provides an operating system installation package to the eUICC.
The embodiment triggers the eUICC to establish a secure connection with the ODS platform through the SMs-SR to issue the data sms_mt, and the eUICC obtains a new operating system from the ODS and completes updating. Because the whole process does not need the support and the cooperation of LPA, the problem of updating the operation system of the IOT type eUICC which is not assisted and supported by LPA and is more difficult to replace/detach can be solved. Meanwhile, the embodiment judges whether the spare space of the eUICC is enough or not based on the EIS (eUICC Information Set ) through the SM-SR, so that failure in the updating process of the operating system can be avoided, the flow is simplified, and the safety is improved.
Some embodiments of a method of updating an operating system of the present disclosure are described below in conjunction with FIG. 2.
FIG. 2 illustrates a flow diagram of a method of updating an operating system in accordance with some embodiments of the present disclosure. As shown in fig. 2, the method includes steps S201 to S212.
In step S201, the operating system distribution server ODS generates an operating system installation package.
In some embodiments, the ODS encrypts the storage operating system installation package.
In step S202, the ODS performs mutual authentication with the subscriber subscription data management-security route SM-SR.
For example, the ODS and the SM-SR perform mutual authentication by exchanging public key infrastructure PKI certificates and checking the PKI certificates.
In step S203, the ODS sends an embedded universal integrated circuit card eUICC operating system update request to the SM-SR, the eUICC operating system update request containing an identification of the eUICC, space required for operating system installation.
In step S204, the SM-SR determines whether the installation requirement of the new operating system is satisfied according to the identification.
For example, the SM-SR can read the eUICC information set according to the identity. And then, the SM-SR judges whether the installation requirement of the new operating system is met according to the residual available space in the eUICC information set.
When the mounting requirement is satisfied, steps S205 to S209 are performed. And returning failure information of updating the operating system under the condition that the installation requirement is not met.
In step S205, the SM-SR sends a data short message to the eUICC, the data short message including an ODS address.
In step S206, the eUICC establishes a connection with the ODS and performs mutual authentication.
The eUICC initiates a channel opening to the ODS through an operator data profile management method ISD-R, and establishes communication connection with the ODS.
In step S207, the eUICC negotiates a session key with the ODS and establishes an operating system update session.
In step S208, the eUICC obtains an operating system installation package from the ODS.
In step S209, the eUICC updates the operating system.
In some embodiments, steps S210 to S212 are further included.
In step S210, the eUICC returns the result of updating the operating system to the SM-SR.
In step S211, the SM-SR returns the result of updating the operating system to the ODS.
In step S212, the SM-SR updates the remaining available space in the eUICC information set.
Further embodiments of the method of updating an operating system of the present disclosure are described below in conjunction with FIG. 3.
FIG. 3 illustrates a flow diagram of a method of updating an operating system in accordance with further embodiments of the present disclosure. As shown in fig. 3, the method includes steps 0 to 8.
In step S3091, the eUICC determines whether the remaining space of the eUICC is sufficient to install a new operating system.
For example, the eUICC interprets the operating system installation package through OSSB to read the space requirements in the operating system installation package.
In the case where the remaining space is enough to install a new operating system, step S3092 is performed. In the event that the remaining space is insufficient to install a new operating system, the eUICC returns updated operating system failure information.
In step S3092, the eUICC decompresses the operating system installation package to obtain an operating system installation file.
In step S3093, the eUICC sends a first initialization request to the terminal device.
In step S3094, the terminal device controls the eUICC to restart.
In step S3095, the eUICC interprets the operating system installation file through OSSB and controls updating the operating system.
In step S3096, the eUICC deletes the operating system installation package after the new operating system installation is completed.
In step S3097, the eUICC initiates a second initialization request to the terminal device.
In step S3098, the terminal device registers the eUICC with the network device.
In the several embodiments provided in the present application, it should be understood that the disclosed technology may be implemented in other manners. The above-described embodiments of the apparatus are merely exemplary, and the division of the units, for example, may be a logic function division, and may be implemented in another manner, for example, a plurality of units or components may be combined or may be integrated into another system, or some features may be omitted, or not performed. Alternatively, the coupling or direct coupling or communication connection shown or discussed with each other may be through some interfaces, units or modules, or may be in electrical or other forms.
The units described as separate parts may or may not be physically separate, and parts displayed as units may or may not be physical units, may be located in one place, or may be distributed on a plurality of units. Some or all of the units may be selected according to actual needs to achieve the purpose of the solution of this embodiment.
In addition, each functional unit in the embodiments of the present invention may be integrated in one processing unit, or each unit may exist alone physically, or two or more units may be integrated in one unit. The integrated units may be implemented in hardware or in software functional units.
Some embodiments of an apparatus for updating an operating system of the present disclosure are described below in conjunction with FIG. 4.
Fig. 4 illustrates a schematic structural diagram of an apparatus for updating an operating system according to some embodiments of the present disclosure. As shown in fig. 4, the apparatus 40 for updating an operating system includes: a memory 410 and a processor 420 coupled to the memory 410, the processor 420 being configured to perform the method of updating an operating system in any of the foregoing embodiments based on instructions stored in the memory 410.
The memory 410 may include, for example, system memory, fixed nonvolatile storage media, and the like. The system memory stores, for example, an operating system, application programs, boot Loader (Boot Loader), and other programs.
The device 40 for updating an operating system may also include an input-output interface 430, a network interface 440, a storage interface 450, and the like. These interfaces 430, 440, 450 and the memory 410 and processor 420 may be connected, for example, by a bus 460. The input/output interface 430 provides a connection interface for input/output devices such as a display, a mouse, a keyboard, a touch screen, and the like. Network interface 440 provides a connection interface for various networking devices. Storage interface 450 provides a connection interface for external storage devices such as SD cards, U-discs, and the like.
The present disclosure also includes a non-transitory computer readable storage medium having stored thereon computer instructions that, when executed by a processor, implement the method of updating an operating system in any of the foregoing embodiments.
The aforementioned integrated units, if implemented in the form of software functional units and sold or used as stand-alone products, may be stored in a computer readable storage medium. Based on such understanding, the technical solution of the present invention may be embodied essentially or in part or all of the technical solution or in part in the form of a software product stored in a storage medium, including instructions for causing a computer device (which may be a personal computer, a server, or a network device, etc.) to perform all or part of the steps of the method according to the embodiments of the present invention. And the aforementioned storage medium includes: a usb disk, a Read-Only Memory (ROM), a random access Memory (RAM, random Access Memory), a removable hard disk, a magnetic disk, or an optical disk, or other various media capable of storing program codes.
The present disclosure is described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems), and computer program products according to embodiments of the disclosure. It will be understood that each flow and/or block of the flowchart illustrations and/or block diagrams, and combinations of flows and/or blocks in the flowchart illustrations and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction means which implement the function specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
It should be noted that the terms "first," "second," and the like in the description and the claims of the present application and the above figures are used for distinguishing between similar objects and not necessarily for describing a particular sequential or chronological order. It is to be understood that the data so used may be interchanged where appropriate in order to describe the embodiments of the application herein. Furthermore, the terms "comprises," "comprising," and "having," and any variations thereof, are intended to cover a non-exclusive inclusion, such that a process, method, system, article, or apparatus that comprises a list of steps or elements is not necessarily limited to those steps or elements expressly listed but may include other steps or elements not expressly listed or inherent to such process, method, article, or apparatus.
It should also be noted that the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrase "comprising one … …" does not exclude the presence of other like elements in a process, method, article, or apparatus that comprises an element.
The foregoing description of the preferred embodiments of the present disclosure is not intended to limit the disclosure, but rather to enable any modification, equivalent replacement, improvement or the like, which fall within the spirit and principles of the present disclosure.
Claims (24)
1. A system for updating an operating system, comprising:
An operating system distribution server ODS configured to: generating an operating system installation package; performing mutual authentication with a subscriber subscription data management-security route SM-SR; sending an embedded universal integrated circuit card (eUICC) operating system update request to an SM-SR, wherein the eUICC operating system update request contains an identifier of the eUICC and a space required by operating system installation;
SM-SR configured to: judging whether the installation requirement of the new operating system is met or not according to the identification; under the condition that the installation requirement is met, sending a data short message to the eUICC, wherein the data short message comprises an ODS address;
An eUICC configured to: establishing connection with ODS and performing mutual authentication; negotiating a session key with the ODS and establishing an operating system update session; acquiring an operating system installation package from the ODS; the operating system is updated.
2. The system of claim 1, wherein the ODS is configured to:
The two-way authentication is performed with the SM-SR by exchanging public key infrastructure PKI certificates and checking the PKI certificates.
3. The system of claim 1, wherein the SM-SR is configured to:
reading the eUICC information set according to the identification;
And judging whether the installation requirement of the new operating system is met or not according to the residual available space in the eUICC information set.
4. The system of claim 1, wherein the eUICC is configured to:
and initiating an opening channel to the ODS through an ISD-R (integrated service-related device-to-ODS) management method of the operator data profile, and establishing communication connection with the ODS.
5. The system of claim 1, wherein the eUICC is configured to:
Judging whether the residual space of the eUICC is enough to install a new operating system or not; under the condition that the residual space is enough to install a new operating system, decompressing an operating system installation package to obtain an operating system installation file; sending a first initialization request to the terminal equipment so that the terminal equipment controls the eUICC to restart; explaining an operating system installation file through an OSSB and controlling to update the operating system; deleting the operating system installation package after the new operating system is installed; and initiating a second initialization request to the terminal equipment so that the terminal equipment registers the eUICC with the network equipment.
6. The system of claim 5, wherein the eUICC is configured to:
The operating system installation package is interpreted by OSSB to read the space requirements in the operating system installation package.
7. The system of claim 5, wherein the eUICC is further configured to:
In the event that there is insufficient room left to install a new operating system, update operating system failure information is returned.
8. The system of claim 1, wherein the ODS is further configured to:
The operating system installation package is stored encrypted.
9. The system of claim 1, wherein the SM-SR is further configured to:
and returning failure information of updating the operating system under the condition that the installation requirement is not met.
10. The system of claim 1, wherein,
The eUICC is also configured to: returning a result of updating the operating system to the SM-SR;
the SM-SR is further configured to: the result of updating the operating system is returned to the ODS.
11. The system of claim 10, wherein the SM-SR is further configured to:
And updating the remaining available space in the eUICC information set.
12. A method of updating an operating system, comprising:
the operating system distribution server ODS generates an operating system installation package;
ODS and user subscription data management-security route SM-SR make mutual authentication;
ODS sends an embedded universal integrated circuit card eUICC operating system update request to SM-SR, wherein the eUICC operating system update request contains the identifier of the eUICC and the space required by operating system installation;
The SM-SR judges whether the installation requirement of the new operating system is met according to the identification;
Under the condition that the installation requirement is met, the SM-SR sends a data short message to the eUICC, wherein the data short message comprises an ODS address;
the eUICC establishes connection with the ODS and performs bidirectional authentication;
the eUICC negotiates a session key with the ODS and establishes an operating system update session;
The eUICC obtains an operating system installation package from the ODS;
the eUICC updates the operating system.
13. The method of claim 12, wherein the ODS mutual authentication with a subscriber subscription data management-security route SM-SR comprises:
the ODS and the SM-SR perform mutual authentication by exchanging public key infrastructure PKI certificates and checking the PKI certificates.
14. The method of claim 12, wherein the SM-SR determining whether installation requirements of a new operating system are met based on the identification comprises:
the SM-SR reads the eUICC information set according to the identification;
and the SM-SR judges whether the installation requirement of the new operating system is met or not according to the residual available space in the eUICC information set.
15. The method of claim 12, wherein the eUICC establishing a connection with an ODS comprises:
The eUICC initiates an opening channel to the ODS through an ISD-R management method of the operator data profile, and establishes communication connection with the ODS.
16. The method of claim 12, wherein the eUICC performing an operating system update comprises:
The eUICC judges whether the residual space of the eUICC is enough to install a new operating system;
Under the condition that the residual space is enough to install a new operating system, the eUICC decompresses the operating system installation package to acquire an operating system installation file;
The eUICC sends a first initialization request to the terminal equipment;
the terminal equipment controls the eUICC to restart;
The eUICC interprets the installation file of the operating system through the OSSB and controls the updating of the operating system;
after the new operating system is installed, the eUICC deletes the operating system installation package;
the eUICC initiates a second initialization request to the terminal equipment;
The terminal device registers the eUICC with the network device.
17. The method of claim 16, wherein the eUICC determining whether a remaining space of the eUICC is sufficient to install a new operating system comprises:
the eUICC interprets the operating system installation package through OSSB to read the space requirements in the operating system installation package.
18. The method of claim 16, wherein the eUICC performing an operating system update further comprises:
in the event that the remaining space is insufficient to install a new operating system, the eUICC returns updated operating system failure information.
19. The method of claim 12, further comprising:
ODS encrypts storage operating system installation packages.
20. The method of claim 12, further comprising:
and returning failure information of updating the operating system under the condition that the installation requirement is not met.
21. The method of claim 12, further comprising:
the eUICC returns a result of updating the operating system to the SM-SR;
the SM-SR returns the results of updating the operating system to the ODS.
22. The method of claim 21, further comprising:
the SM-SR updates the remaining available space in the eUICC information set.
23. An apparatus for updating an operating system, comprising:
A memory; and
A processor coupled to the memory, the processor configured to perform the method of updating an operating system of any of claims 12 to 22 based on instructions stored in the memory.
24. A non-transitory computer readable storage medium storing computer instructions which, when executed by a processor, implement a method of updating an operating system as claimed in any one of claims 12 to 22.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110268271.5A CN115080078B (en) | 2021-03-12 | 2021-03-12 | Method for updating operating system and related equipment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110268271.5A CN115080078B (en) | 2021-03-12 | 2021-03-12 | Method for updating operating system and related equipment |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN115080078A CN115080078A (en) | 2022-09-20 |
| CN115080078B true CN115080078B (en) | 2024-08-06 |
Family
ID=83241519
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202110268271.5A Active CN115080078B (en) | 2021-03-12 | 2021-03-12 | Method for updating operating system and related equipment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN115080078B (en) |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106790724A (en) * | 2017-03-23 | 2017-05-31 | 中国联合网络通信集团有限公司 | Configuration file method for down loading and device |
| CN108701017A (en) * | 2017-03-21 | 2018-10-23 | 华为技术有限公司 | Method and device for updating operating system |
Family Cites Families (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US9949113B1 (en) * | 2017-06-02 | 2018-04-17 | Apple Inc. | Updating profiles for secondary wireless devices |
| CN109739540B (en) * | 2019-01-03 | 2022-03-18 | 中国联合网络通信集团有限公司 | Data update method, data update device and data update system of eUICC module |
-
2021
- 2021-03-12 CN CN202110268271.5A patent/CN115080078B/en active Active
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108701017A (en) * | 2017-03-21 | 2018-10-23 | 华为技术有限公司 | Method and device for updating operating system |
| CN106790724A (en) * | 2017-03-23 | 2017-05-31 | 中国联合网络通信集团有限公司 | Configuration file method for down loading and device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN115080078A (en) | 2022-09-20 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| EP3429243B1 (en) | Remote management method and device | |
| CN111935704B (en) | Profile downloading method, device and equipment | |
| CN113014568B (en) | Account login method, equipment and server | |
| US11282056B2 (en) | Method, servers and system for downloading an updated profile | |
| CN104469737B (en) | A kind of universal embedded integrated circuit card and its user signing contract information Activiation method | |
| US8213991B2 (en) | Mobile terminal, associated storage devices and methods of using the same | |
| CN105308907B (en) | Installation package authorization method and device | |
| EP1937008A1 (en) | Method and system for bootstrap of a communication device | |
| KR20130116905A (en) | System and method for managing mobile wallet and its related credentials | |
| US11272370B2 (en) | Method for managing profiles in embedded universal integrated circuit cards | |
| KR20160093692A (en) | Security control method for euicc, and euicc | |
| CN111818518B (en) | 5G message receiving method and device based on application software and storage medium | |
| US10009891B2 (en) | Communication method, server and terminal | |
| CN103813303A (en) | eSIM card subscription relation updating method and system and corresponding device | |
| EP2727384B1 (en) | Method for accessing at least one service and corresponding system | |
| US20140273973A1 (en) | Method and system for replacing key deployed in se of mobile terminal | |
| CN113993124B (en) | Number portability method, number portability device, communication terminal and storage medium | |
| US10262254B2 (en) | Information processing apparatus, information processing method, and program | |
| CN102088694B (en) | Mobile terminal and method for downloading subscriber identity module (SIM) application | |
| CN115080078B (en) | Method for updating operating system and related equipment | |
| CN109871218A (en) | The method and apparatus for managing smart machine | |
| CN104918230A (en) | Card writing method, device and system | |
| CN108200046B (en) | Registration method and device of terminal equipment, terminal equipment and proxy server | |
| CN115499821A (en) | An eSIM subscription method and device | |
| US11698994B2 (en) | Method for a first start-up operation of a secure element which is not fully customized |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |