Patents by Inventor Hongfeng Chai
Hongfeng Chai has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 10678577Abstract: The invention discloses a method for realizing virtual secure element (VSE), which comprises the following steps: a secure element manager (SEM) generates a request which comprises virtualized configuration information; and a virtual machine monitor in a hypervisor allocates an address space for the VSE according to the above request.Type: GrantFiled: April 11, 2014Date of Patent: June 9, 2020Assignee: CHINA UNIONPAY CO., LTD.Inventors: Hongfeng Chai, Zhijun Lu, Shuo He, Wei Guo, Yu Zhou, Dingzhou Li
-
Patent number: 10623530Abstract: A device and method for supporting communication between various types of secure elements is provided.Type: GrantFiled: June 25, 2014Date of Patent: April 14, 2020Assignee: CHINA UNIONPAY CO., LTD.Inventors: Hongfeng Chai, Zhijun Lu, Shuo He, Wei Guo, Yu Zhou, Chengqian Chen
-
Patent number: 10528378Abstract: The application discloses a load evaluation system for virtual machines in a cloud environment, comprising: a monitored data collecting module which is configured to collect monitored data from one or more virtual machines in a cloud data center; a monitored data processing module which is coupled with the monitored data collecting module and is configured to: perform aggregated grouping on the monitored data by using a first KMeans algorithm for each of the one or more virtual machines, each group having a center point coordinate, and calculate a performance characteristic of each virtual machine of the one or more virtual machines according to the grouping and the center point coordinates of individual groups, i.e.Type: GrantFiled: September 2, 2015Date of Patent: January 7, 2020Assignee: CHINA UNIONPAY CO., LTD.Inventors: Hongfeng Chai, Chengrong Wu, Jinzhi Hua, Zhenfang Wang, Yang Yang, Jun Zhang
-
Patent number: 10445746Abstract: The invention provides a compliance detecting method of payment applications in a virtualized environment, and pertains to the field of security technology of payment applications. The detecting method is used for compliance detection for PCI DSS isolation demands. The detecting method can determine whether it is a compliance state by analyzing the current virtual machine domain and its connection from data stream, and can also determine whether it is a compliance state by analyzing the purity of network flow of virtual machines. The detecting method is suitable for a virtualized environment and makes the detection of compliance accurate in the virtualized environment, thus being advantageous for guaranteeing the security of payment applications.Type: GrantFiled: October 20, 2014Date of Patent: October 15, 2019Assignee: CHINA UNIONPAY CO., LTD.Inventors: Hongfeng Chai, Chengrong Wu, Zhijun Lu, Jie Wu, Dongjie He, Jianping Zeng
-
Patent number: 10169572Abstract: The invention relates to management of programs on a mobile device, and in particular, to a method for activating application programs on a mobile device, and a mobile device based on this method. The method for activating application programs on a mobile device according to an embodiment of the invention comprises the following steps: receiving an application request from a device which is located outside the mobile device; identifying a transmission protocol associated with the application request; and if there are a plurality of safety entities in the mobile device which support the transmission protocol and store application programs associated with the application request, activating an application program associated with the application request in a default safety entity.Type: GrantFiled: March 17, 2014Date of Patent: January 1, 2019Assignee: CHINA UNIONPAY CO., LTD.Inventors: Hongfeng Chai, Zhijun Lu, Shuo He, Yu Zhou, Wei Guo, Dingzhou Li
-
Patent number: 10120672Abstract: The present invention proposes a method for offline upgrading virtual machine mirror images. The method comprises: an mirror image security server collecting virtual machine mirror images, and extracting and storing the information of the collected virtual machine mirror images; and the mirror image security server executing an upgrade operation of virtual machine mirror images in an offline way based on the information of the collected virtual machine mirror images. The method for offline upgrading virtual machine mirror images disclosed in the present invention has higher upgrade efficiency and is capable of upgrading the virtual machine mirror images in an offline way.Type: GrantFiled: November 21, 2014Date of Patent: November 6, 2018Assignee: CHINA UNIONPAY CO., LTD.Inventors: Hongfeng Chai, Chengrong Wu, Zhijun Lu, Jie Wu, Mingbo Wang, Zhihui Lv
-
Patent number: 10095576Abstract: The invention proposes a virtual machine abnormity recovering method in distributed environment, comprising: running an independent computing assembly on each physical machine on which a virtual machine resides, wherein the computing assembly periodically reports the current running state of the corresponding physical machine to a state database; periodically polling the state database by a highly available controller so as to check the running state of all the physical machines in a physical machine group under the control of the highly available controller; and executing subsequent abnormity processing operation if the running state of only one physical machine in the physical machine group is abnormal so as to ensure that virtual machines on the physical machine whose running state is abnormal continues running normally.Type: GrantFiled: May 5, 2015Date of Patent: October 9, 2018Assignee: CHINA UNIONPAY CO., LTD.Inventors: Hongfeng Chai, Zhijun Lu, Lijun Zu, Yixing Yan
-
Security information interaction system, device and method based on active command of secure carrier
Patent number: 9985990Abstract: The invention proposes a security information interaction system, apparatus and method based on security carrier's active command. The method comprises: an information interaction terminal, based on a user's command, establishes a security dialog channel between the information interaction terminal and a security carrier so as to perform a security information interaction process, wherein the user's command indicates a target application associated with the security information interaction process; and the security carrier activates the target application during the establishment of the security dialog channel and then executes the security information interaction process based on the security dialog channel. In the security information interaction system, apparatus and method based on security carrier active command disclosed in the invention, the security carrier can initiate an active command to the information interaction terminal.Type: GrantFiled: April 1, 2014Date of Patent: May 29, 2018Assignee: China UnionPay Co., Ltd.Inventors: Hongfeng Chai, Zhijun Lu, Shuo He, Yu Zhou, Wei Guo, Dingzhou Li -
Publication number: 20180089690Abstract: The present invention relates to a mobile payment device, comprising: a data exchange module, which is used for exchanging data with the external device; a security management module, which is used for installing and managing applications for electronic transactions, the security management module comprises a Security Element, which is used for storing information of user's transaction account; and an identity verification module, which is used for verifying information of user identity; wherein, both the security management module and the identity verification module operates under a Trusted execution environment, the data exchange module operates under a Rich execution environment, the Trusted execution environment and the Rich execution environment being active non-simultaneously. The complete flow of the transaction is under safety protection.Type: ApplicationFiled: April 14, 2016Publication date: March 29, 2018Applicant: CHINA UNIONPAY CO., LTD.Inventors: Sishuang WAN, Hongfeng Chai, Zhijun Lu, Shuo He, Yawei Yin, Guobao Liu, Wei Guo
-
Patent number: 9880597Abstract: The invention discloses a method and terminal device for continuously supplying power to external element. The method comprises the following steps: when a terminal device switches from a first operating system to a second operating system, a proxy external element application is generated in the second operating system so that the proxy external element application is associated with an external element; by means of this proxy external element application, the external element which is associated with the application in the first operating system before the above switch operation is continuously supplied with power after the above switch operation.Type: GrantFiled: April 11, 2014Date of Patent: January 30, 2018Assignee: China UnionPay Co., Ltd.Inventors: Hongfeng Chai, Zhijun Lu, Shuo He, Yu Zhou, Wei Guo, Xiangxiang Yan
-
Publication number: 20170286147Abstract: The application discloses a load evaluation system for virtual machines in a cloud environment, comprising: a monitored data collecting module which is configured to collect monitored data from one or more virtual machines in a cloud data center; a monitored data processing module which is coupled with the monitored data collecting module and is configured to: perform aggregated grouping on the monitored data by using a first KMeans algorithm for each of the one or more virtual machines, each group having a center point coordinate, and calculate a performance characteristic of each virtual machine of the one or more virtual machines according to the grouping and the center point coordinates of individual groups, i.e.Type: ApplicationFiled: September 2, 2015Publication date: October 5, 2017Applicant: China Unionpay Co., Ltd.Inventors: Hongfeng CHAI, Chengrong WU, Jinzhi HUA, Zhenfang WANG, Yang YANG, Jun ZHANG
-
Patent number: 9756044Abstract: The invention relates to communication technology, and in particular, to a method of establishing communication connection between a mobile device and a secure element as well as a mobile device for implementing the method.Type: GrantFiled: April 30, 2014Date of Patent: September 5, 2017Assignee: CHINA UNIONPAY CO., LTDInventors: Hongfeng Chai, Zhijun Lu, Shuo He, Yu Zhou, Wei Guo, Dingzhou Li
-
Patent number: 9712518Abstract: The invention provides an apparatus used for security information interaction comprising a first system management device for providing an operational environment for routine applications and a second system management device for providing an operational environment in a safe mode for security applications so as to perform a security information interaction process. The apparatus used for security information interaction disclosed by the invention has a high safety and a wide applicability and is low in cost.Type: GrantFiled: March 3, 2014Date of Patent: July 18, 2017Assignee: China Unionpay Co., Ltd.Inventors: Hongfeng Chai, Zhijun Lu, Shuo He, Wei Guo, Yu Zhou, Chengqian Chen, Jianbin Zheng, Xiangxiang Yan, Bin Yu, Dingzhou Li
-
Patent number: 9697513Abstract: The invention provides a user terminal and a payment system. The user terminal comprises an input device, a multi-channel selection switch, an application module, a processor, a password processing module, and a security IC chip containing information on user's ID and/or banking card therein, wherein the multi-channel selection switch is coupled with the input device, the password processing module and the processor, the password processing module is coupled with the processor, and the security IC chip is coupled with the password processing module; the application module controls the multi-channel selection switch via the processor so as to place the user terminal in a password input mode or in a normal input mode. The invention ensures the safety in entering the user's password in hardware configuration so that even when software system of the user terminal is not safe in itself, the safety of input password can be ensured.Type: GrantFiled: May 4, 2012Date of Patent: July 4, 2017Assignee: CHINA UNIONPAY CO., LTD.Inventors: Hongfeng Chai, Zhijun Lu, Shuo He
-
Publication number: 20170060671Abstract: The invention proposes a virtual machine abnormity recovering method in distributed environment, comprising: running an independent computing assembly on each physical machine on which a virtual machine resides, wherein the computing assembly periodically reports the current running state of the corresponding physical machine to a state database; periodically polling the state database by a highly available controller so as to check the running state of all the physical machines in a physical machine group under the control of the highly available controller; and executing subsequent abnormity processing operation if the running state of only one physical machine in the physical machine group is abnormal so as to ensure that virtual machines on the physical machine whose running state is abnormal continues running normally.Type: ApplicationFiled: May 5, 2015Publication date: March 2, 2017Applicant: CHINA UNIONPAY CO., LTD.Inventors: Hongfeng Chai, Zhijun Lu, Lijun Zu, Yixing Yan
-
Publication number: 20160378456Abstract: The present invention proposes a method for offline upgrading virtual machine mirror images. The method comprises: an mirror image security server collecting virtual machine mirror images, and extracting and storing the information of the collected virtual machine mirror images; and the mirror image security server executing an upgrade operation of virtual machine mirror images in an offline way based on the information of the collected virtual machine mirror images. The method for offline upgrading virtual machine mirror images disclosed in the present invention has higher upgrade efficiency and is capable of upgrading the virtual machine mirror images in an offline way.Type: ApplicationFiled: November 21, 2014Publication date: December 29, 2016Applicant: CHINA UNIONPAY CO., LTD.Inventors: Hongfeng CHAI, Chengrong Wu, Zhijun Lu, Jie Wu, Mingbo Wang, Zhihui Lv
-
Patent number: 9503309Abstract: The present invention is directed to an Ethernet communication method and system which are based on the MMC/SD interface. In the invention, the communication system includes at least one master device and at least one slave device, the at least one master device and the at least one slave device are connected via MMC/SD interface and communicate with each other on the Ethernet. The Ethernet communication method and system disclosed herein enables the device with the MMC/SD interface to act as a node in the network, and thus greatly expanding the application domain of such devices.Type: GrantFiled: September 15, 2011Date of Patent: November 22, 2016Assignees: CHINA UNIONPAY CO., LTD., EASTCOMPEACE SMART CARD CO., LTD.Inventors: Hongfeng Chai, Zhongguo Zhou, Zhijun Lu, Hongwen Meng, Wei Guo, Shuo He, Yunfeng Xu
-
Patent number: 9459937Abstract: The invention discloses a method for using a shared apparatus in a device capable of running two operating systems, which includes using a first application in a first operating system to communicate with the share apparatus, and when the first operating system is switched to a second operating system, sending associated information on the shared apparatus to a second application in the second operating system so that the second application can use the associated information to communicate with the shared apparatus.Type: GrantFiled: May 30, 2014Date of Patent: October 4, 2016Assignee: China UnionPay Co., Ltd.Inventors: Hongfeng Chai, Zhijun Lu, Shuo He, Wei Guo, Yu Zhou, Chengqian Chen
-
Publication number: 20160283949Abstract: The invention provides a compliance detecting method of payment applications in a virtualized environment, and pertains to the field of security technology of payment applications. The detecting method is used for compliance detection for PCI DSS isolation demands. The detecting method can determine whether it is a compliance state by analyzing the current virtual machine domain and its connection from data stream, and can also determine whether it is a compliance state by analyzing the purity of network flow of virtual machines. The detecting method is suitable for a virtualized environment and makes the detection of compliance accurate in the virtualized environment, thus being advantageous for guaranteeing the security of payment applications.Type: ApplicationFiled: October 20, 2014Publication date: September 29, 2016Applicant: CHINA UNIONPAY CO., LTD.Inventors: Hongfeng Chai, Chengrong Wu, Zhijun Lu, Jie Wu, Dongjie He, Jianping Zeng
-
Publication number: 20160227012Abstract: The invention relates to a switch device for automatically connecting to NFC chip and capable of switching a plurality of secure elements, comprising: a slave port for communicatively connecting to the NFC chip; master ports for communicatively connecting to the plurality of secure elements respectively; a registry unit, in which connection information of each secure element and application information of all the applications in each secure element are stored; and a master controller for controlling the switch device to establish a first channel with the NFC via the slave port and to establish a second channel with the secure element via the master port. The invention supports SWP connection of a plurality of secure elements, and can automatically select a corresponding secure element according to a command sent from the card reader and activate communication.Type: ApplicationFiled: September 11, 2014Publication date: August 4, 2016Applicant: CHINA UNIONPAY CO., LTD.Inventors: Hongfeng CHAI, Zhijun LU