CN106209835B - Peer-to-peer network communication system and method - Google Patents

Peer-to-peer network communication system and method Download PDF

Info

Publication number
CN106209835B
CN106209835B CN201610538484.4A CN201610538484A CN106209835B CN 106209835 B CN106209835 B CN 106209835B CN 201610538484 A CN201610538484 A CN 201610538484A CN 106209835 B CN106209835 B CN 106209835B
Authority
CN
China
Prior art keywords
channel
customer end
telecommunication customer
public
private key
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201610538484.4A
Other languages
Chinese (zh)
Other versions
CN106209835A (en
Inventor
南野
卢小明
陈姝
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
BEIJING ZHONGXIANG BIT TECHNOLOGY Co Ltd
Original Assignee
BEIJING ZHONGXIANG BIT TECHNOLOGY Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by BEIJING ZHONGXIANG BIT TECHNOLOGY Co Ltd filed Critical BEIJING ZHONGXIANG BIT TECHNOLOGY Co Ltd
Priority to CN201610538484.4A priority Critical patent/CN106209835B/en
Publication of CN106209835A publication Critical patent/CN106209835A/en
Application granted granted Critical
Publication of CN106209835B publication Critical patent/CN106209835B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • H04L63/061Network architectures or network communication protocols for network security for supporting key management in a packet data network for key exchange, e.g. in peer-to-peer networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3247Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer And Data Communications (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The present invention provides a kind of peer-to-peer network communication system and method, the system comprises peer-to-peer networks and several telecommunication customer ends, the telecommunication customer end includes: that initiation unit is built in channel, for generating the first public private key pair, occasional passage identity information is sent by forward node to establish occasional passage, public key is exchanged by occasional passage, generates and sends formal channel identity information and third public private key pair to establish formal channel;Response unit is built in channel, for generating the second public private key pair, is received occasional passage identity information to establish occasional passage, is exchanged public key by occasional passage, receive formal channel identity information and third public private key pair to establish formal channel;Communication unit, for sending third public key to forward node for verifying;It receives message and is decrypted with private key;With the obtained public key encryption message to be sent of exchange, and with third private key signature, sent by formal channel.The present invention is not necessarily to centralized server, while operating without registering and logging.

Description

Peer-to-peer network communication system and method
Technical field
This application involves technical field of network communication, and in particular to a kind of peer-to-peer network communication system and method.
Background technique
The communication mode of current 90% instant message applications (Instant Messaging, abbreviation IM) be all it is centralized, Its login mode requires user and carries out authentication, such as need to log in by phone number login, username and password etc.. Current authentication mode is relatively simple, requires to be verified by centralized server.It is exemplified below two kinds presently the most Common login mode.
One, centralised login mode
By taking MSN Messenger as an example, the program on user's microcomputer is referred to as MSN Messenger client, the visitor Family end is connected to a MSN Messenger server by Internet.That is, the client passes through the server and its His client interactive information.The client of user conversates with server, these session informations are then handled by server And notify the client of other users.
Fig. 1 is the communication schematic diagram that MSN Messenger client logs in.As shown in Figure 1, the service implement body packet It includes:
Dispatching server (Dispatch Server, abbreviation DS server).DS server is the clothes that client initially connects Business device is responsible for distributing suitable notice server to client.Domain name is messenger.hotmail.com, standards service end Mouth is 1863.After task is sent in completion, TCP connection is cut off.
It notifies server (Notification Server, abbreviation NS server).The purpose of NS server mainly retains The online information of user, there are also the information of other users important persons of concern.Including logging in, change state, obtain user List, initiates chat, receives calling, mail notification, exits modification user information.Notice server equally also provides other Notice service, such as the new mail prompt and creation or addition session of Hotmail etc..Serve port is specified by dispatching server, Generally also 1863.
Wiring server (Switchboard Server, abbreviation SS server).SS server is for saving each user's Instant session information, in other words, the user in each MSN are correspondingly connected with into the session of a shared power board.Therefore, this In be also considered as chatting between client the transfer server used.
By the above MSN communication process logged in it is found that centralised login mode is needed through centralized server come complete At, while logging in and username and password is needed to be verified.
Two, open authorization login mode
Open authorization (Open Authorization, abbreviation OAuth) is pacified for the Authorization definition of user resources one Entirely, open and simple standard, third party are not necessarily to know the account and password of user, so that it may get the authorization message of user.
Fig. 2 is a kind of schematic diagram of open authorization login mode.As shown in Fig. 2, most common in currently available technology open Authorization login mode is put to include the following steps (by taking QQ is authorized as an example):
User accesses third party website, which provides the login mode logged in using QQ;
After user clicks QQ login, third party website server will connect authorized party's (QQ) server and make requests;
User gives authorized party (QQ) server authorization third party website in the page jumped out and accesses user information Permission;
Authorized party's (QQ) server provides the user information by authorization to third party website server.
Above-mentioned login mode also needs the authorized party's server and third-party server of centralization, and logs in and need to pass through The verifying of authorized party's server.
Summary of the invention
In view of drawbacks described above in the prior art or deficiency, one kind is intended to provide without centralized server, is not necessarily to simultaneously User, which carries out registering and logging operation, can ensure the peer-to-peer network communication system and method for communication security.
In a first aspect, the present invention provides a kind of telecommunication customer end, the telecommunication customer end includes:
Initiation unit is built in channel, for generating the first public private key pair, is communicated by several forward node to second Client sends occasional passage identity information to establish occasional passage, passes through leading to for the occasional passage and the second telecommunication customer end Response unit exchange public key is built in road, generates and sends formal channel identity information and the public and private key of third corresponding to formal channel To establish formal channel;Wherein, first public private key pair includes the first public key and the first private key;
Response unit is built in channel, for generating the second public private key pair, is received the first telecommunication customer end and is passed through several forwardings The occasional passage identity information that node is sent passes through the occasional passage and first telecommunication customer end to establish occasional passage Channel build and initiate elements exchange public key, and receive formal channel identity information and the public and private key of third corresponding to formal channel To establish formal channel;Wherein, second public private key pair includes the second public key and the second private key;
Communication unit, for sending third public key to each forward node, so that each forward node verifying turns The message of hair;The message sent by the formal channel is received, the first private key initiating unit and holding is built with the channel Or the channel builds the second private key that response unit is held and decrypts the message;And initiation unit is built with the channel It exchanges the second obtained public key or the channel is built the first public key that response unit exchanges and added to message to be sent It is close, and signed with third private key to the message to be sent, the message to be sent is sent by the formal channel.
Second aspect, the present invention provide a kind of peer-to-peer network, including several forward node, and the forward node includes:
Retransmission unit, the information for forwarding telecommunication customer end to send is to establish occasional passage and formal channel, Xiang Suoshu Telecommunication customer end obtains third public key, and the telecommunication customer end described in the third public key verifications is sent by the formal channel Message: verifying is legal, is forwarded;
Wherein, the message sent by the formal channel is signed by the telecommunication customer end with third private key The third public private key pair of name, the third public key and third private key composition corresponds to the formal channel.
The third aspect, the present invention provide a kind of peer-to-peer network communication system, and the system comprises several above-mentioned communication visitors Family end and above-mentioned peer-to-peer network.
Fourth aspect, the present invention provide a kind of peer-to-peer network means of communication, which comprises
Generate the first public private key pair;
Occasional passage identity information is sent to establish interim lead to the second telecommunication customer end by several forward node Road;
Response unit is built with the channel of the second telecommunication customer end by the occasional passage and exchanges public key, is generated and sent Formal channel identity information and corresponding to the third public private key pair in formal channel to establish formal channel;
Third public key is sent to each forward node, so that each forward node verifies forwarded message;
Message to be sent is encrypted with the second public key that exchange obtains, and with third private key to the message to be sent It signs, the message to be sent is sent by the formal channel;
The message sent by the formal channel is received, decrypts the message with the first private key.
Wherein, first public private key pair includes the first public key and the first private key.
5th aspect, the present invention provide a kind of peer-to-peer network means of communication, which comprises
Generate the second public private key pair;
It is interim logical to establish to receive the occasional passage identity information that the first telecommunication customer end is sent by several forward node Road;
It is built by the channel of the occasional passage and first telecommunication customer end and initiates elements exchange public key, and received Formal channel identity information and corresponding to the third public private key pair in formal channel to establish formal channel;
Third public key is sent to each forward node, so that each forward node verifies forwarded message;
Message to be sent is encrypted with the first public key that exchange obtains, and with third private key to the message to be sent It signs, the message to be sent is sent by the formal channel;
The message sent by the formal channel is received, decrypts the message with the second private key.
Wherein, second public private key pair includes the second public key and the second private key.
6th aspect, the present invention provide a kind of peer-to-peer network means of communication, which comprises
The information for forwarding the first telecommunication customer end to send is to establish occasional passage;
The information for forwarding the first telecommunication customer end and the second telecommunication customer end to send respectively is to establish formal channel;
Third public key is obtained to first telecommunication customer end or second telecommunication customer end;
The first telecommunication customer end described in the third public key verifications or second telecommunication customer end pass through described formal The message that channel is sent: verifying is legal, is forwarded.
Wherein, the message sent by the formal channel is by first telecommunication customer end or second communication Client is signed with third private key, and the third public private key pair of the third public key and third private key composition corresponds to institute State formal channel.
The peer-to-peer network communication system and method that many embodiments of the present invention provide are built by establishing occasional passage with interacting The information in formula of attentioning channel, at the same in occasional passage exchange both sides' telecommunication customer end public key, and correspond to formal channel Third public private key pair, while forward node into peer-to-peer network provides third public key, to send in formal channel logical Cross the public key encryption of exchange, while passing through the information of third private key signature: on the one hand, forward node can be carried out using third public key Verifying, is just forwarded, to ensure the legitimacy in channel if being verified;On the other hand, the communication client of information is received End can be decrypted information using the private key of itself, to ensure the safety of information;It finally realizes without centralization Server, while safety communication can be carried out without user's progress registering and logging operation;
The peer-to-peer network communication system and method that some embodiments of the invention provide further pass through transmission and correspond to temporarily The two dimensional code of channel identity code establishes occasional passage, improves the safety of communication.
Detailed description of the invention
By reading a detailed description of non-restrictive embodiments in the light of the attached drawings below, the application's is other Feature, objects and advantages will become more apparent upon:
Fig. 1 is the communication schematic diagram that MSN Messenger client logs in.
Fig. 2 is a kind of schematic diagram of open authorization login mode.
Fig. 3 is the structural schematic diagram of telecommunication customer end in one embodiment of the invention.
Fig. 4 is a kind of flow chart of the peer-to-peer network means of communication in one embodiment of the invention.
Fig. 5 is the flow chart of another peer-to-peer network means of communication in one embodiment of the invention.
Fig. 6 is the flow chart of step S12 in method shown in Fig. 4.
Fig. 7 is the flow chart of step S22 in method shown in Fig. 5.
Fig. 8 is the flow chart of step S13 in method shown in Fig. 4.
Fig. 9 is the flow chart of step S23 in method shown in Fig. 5.
Figure 10 is the schematic diagram that the process in formal channel is generated in one embodiment of the invention.
Figure 11 is the flow chart of step S14 in method shown in Fig. 4.
Figure 12 is the flow chart of step S24 in method shown in Fig. 5.
Figure 13 is the structural schematic diagram of peer-to-peer network in one embodiment of the invention.
Figure 14 is a kind of flow chart of the peer-to-peer network means of communication in one embodiment of the invention.
Figure 15 is the flow chart of step S31 in method shown in Figure 14.
Figure 16 is the flow chart of step S32 in method shown in Figure 14.
Figure 17 is the structural schematic diagram of peer-to-peer network communication system in one embodiment of the invention.
Specific embodiment
The application is described in further detail with reference to the accompanying drawings and examples.It is understood that this place is retouched The specific embodiment stated is used only for explaining related invention, rather than the restriction to the invention.It also should be noted that in order to Convenient for description, part relevant to invention is illustrated only in attached drawing.
It should be noted that in the absence of conflict, the features in the embodiments and the embodiments of the present application can phase Mutually combination.The application is described in detail below with reference to the accompanying drawings and in conjunction with the embodiments.
Fig. 3 is the structural schematic diagram of telecommunication customer end in one embodiment of the invention.
As shown in figure 3, in the present embodiment, telecommunication customer end 10 provided by the invention includes that initiation unit is built in channel 11, response unit 12 and communication unit 13 are built in channel.
In the present embodiment, each telecommunication customer end 10 is mutually communicated by several forward node of peer-to-peer network.
Channel, which is built, initiates unit 11 for generating the first public private key pair, is communicated by several forward node to second Client 10 sends occasional passage identity information to establish occasional passage, passes through the occasional passage and the second telecommunication customer end 10 Channel build response unit 12 exchange public key, generate and send formal channel identity information and the third corresponding to formal channel Public private key pair is to establish formal channel.Wherein, first public private key pair includes the first public key and the first private key.
Channel build response unit 12 for generate the second public private key pair, receive the first telecommunication customer end 10 by several turns The occasional passage identity information of node transmission is sent out to establish occasional passage, passes through the occasional passage and the first telecommunication customer end 10 Channel build and initiate unit 11 and exchange public key, and receive formal channel identity information and third corresponding to formal channel is public and private Key is to establish formal channel.Wherein, second public private key pair includes the second public key and the second private key.
Communication unit 13 is used to send third public key to each forward node, so that each forward node verifying turns The message of hair;Receive the message sent by the formal channel, with channel build the first private key that initiation unit 11 is held or It builds the second private key that response unit 12 is held and decrypts the message in channel;And initiation unit 11 is built with channel and is exchanged To the second public key or channel build response unit 12 and exchange obtained the first public key message to be sent is encrypted, and with the Three private keys sign to the message to be sent, send the message to be sent by the formal channel.
Fig. 4 is a kind of flow chart of the peer-to-peer network means of communication in one embodiment of the invention.Peer-to-peer network shown in Fig. 4 is logical Communication method can be corresponded to build applied to the channel of above-mentioned telecommunication customer end 10 and be initiated in unit 11 and communication unit 13.
As shown in figure 4, in the present embodiment, the peer-to-peer network means of communication provided by the invention include:
S11: the first public private key pair is generated;
S12: occasional passage identity information is sent to the second telecommunication customer end by several forward node and is faced with establishing Shi Tongdao;
S13: response unit is built with the channel of the second telecommunication customer end by the occasional passage and exchanges public key, is generated simultaneously Send formal channel identity information and corresponding to the third public private key pair in formal channel to establish formal channel;
S14: sending third public key to each forward node, so that each forward node verifies forwarded message;
S15: message to be sent is encrypted with the second public key that exchange obtains, and with third private key to described to be sent Message is signed, and sends the message to be sent by the formal channel;
S16: receiving the message sent by the formal channel, decrypts the message with the first private key.
Wherein, first public private key pair includes the first public key and the first private key.
Fig. 5 is the flow chart of another peer-to-peer network means of communication in one embodiment of the invention.Method shown in fig. 5 can be right It builds in response unit 12 and communication unit 13 in the channel that should be applied to above-mentioned telecommunication customer end 10.
As shown in figure 5, in the present embodiment, the another kind peer-to-peer network means of communication provided by the invention include:
S21: the second public private key pair is generated;
S22: it receives the occasional passage identity information that the first telecommunication customer end is sent by several forward node and is faced with establishing Shi Tongdao;
S23: being built by the channel of the occasional passage and first telecommunication customer end and initiate elements exchange public key, and Receive formal channel identity information and corresponding to the third public private key pair in formal channel to establish formal channel;
S24: sending third public key to each forward node, so that each forward node verifies forwarded message;
S25: message to be sent is encrypted with the first public key that exchange obtains, and with third private key to described to be sent Message is signed, and sends the message to be sent by the formal channel;
S26: receiving the message sent by the formal channel, decrypts the message with the second private key.
Wherein, second public private key pair includes the second public key and the second private key.
Specifically, in the present embodiment, the first telecommunication customer end and the second telecommunication customer end are respectively in respective initialization Generate the first public private key pair and the second public private key pair.In step S11, the channel of the first telecommunication customer end is built initiation unit 11 and is obtained The first public private key pair for taking the initialization of the first telecommunication customer end to generate;In step S12, sound is built in the channel of the second telecommunication customer end Unit 12 is answered to obtain the second public private key pair that the initialization of the second telecommunication customer end generates.
In a preferred embodiment, initiation unit 11 is built in channel and channel is built response unit 12 and can be distinguished voluntarily initially Metaplasia obtains the public and private key that initialization generates at the first public private key pair and the second public private key pair in step S11 and S12 respectively It is right.
In another preferred embodiment, initiation unit 11 is built in channel and channel is built response unit 12 and can taken every time Occasional passage and formal channel previous existence are built into different public private key pairs, i.e., it is public to generate first when executing step S11/S12 every time Private key is right/the second public private key pair.
In step s 12, the channel of the first telecommunication customer end build initiate unit 11 by several forward node to It builds response unit 12 and sends occasional passage identity information in the channel of second telecommunication customer end;Accordingly, in step S22, the It builds response unit 12 and receives the occasional passage identity information to obtain occasional passage identity code in the channel of two telecommunication customer ends Temp_channel_id, to establish occasional passage.
In step S13 and step S23, the channel of the first telecommunication customer end, which is built, initiates unit 11 and the second communication client It builds response unit 12 and the public key respectively held is exchanged by occasional passage in the channel at end;It takes in the channel of first telecommunication customer end Build initiate unit 11 also generate formal channel identity information and corresponding to formal channel third public private key pair and by temporarily leading to Build response unit 12 in the channel that road is sent to the second telecommunication customer end;Build response unit 12 in the channel of second telecommunication customer end Formal channel identity code channel_id is obtained according to formal channel identity information, to establish formal channel.
In step S14 and step S24, the channel of the first telecommunication customer end, which is built, initiates unit 11 and the second telecommunication customer end Channel build response unit 12 and monitor formal channel respectively, and provide third public key for each forward node.
In step S15 and step S25, the channel of the first telecommunication customer end, which is built, initiates unit 11 and the second telecommunication customer end Channel build response unit 12 respectively with the second public key and the first public key exchanged in step S13 and S23 to be sent Information is encrypted, and is signed with third private key to information to be sent, then sent by formal channel.
When forward node receives the information sent above by formal channel, forward node with above-mentioned steps S14 or The third public key obtained in S24 verifies received information: be forwarded if being verified, authentication failed without Forwarding, to guarantee the legitimacy in channel.
In step S16 and S26, the channel of the first telecommunication customer end, which is built, initiates unit 11 and the second telecommunication customer end It builds response unit 12 and received information is decrypted with the first private key and the second private key respectively held respectively in channel.
Telecommunication customer end and the peer-to-peer network means of communication provided by the above embodiment are built by establishing occasional passage with interacting The information in formula of attentioning channel, at the same in occasional passage exchange both sides' telecommunication customer end public key, and correspond to formal channel Third public private key pair, while forward node into peer-to-peer network provides third public key, to send in formal channel logical Cross the public key encryption of exchange, while passing through the information of third private key signature: on the one hand, forward node can be carried out using third public key Verifying, is just forwarded, to ensure the legitimacy in channel if being verified;On the other hand, the communication client of information is received End can be decrypted information using the private key of itself, to ensure the safety of information;It finally realizes without centralization Server, while safety communication can be carried out without user's progress registering and logging operation.
Fig. 6 is the flow chart of step S12 in method shown in Fig. 4.
As shown in fig. 6, in a preferred embodiment, step S12 includes:
S121: occasional passage identity code and corresponding two dimensional code are generated;
S122: the two dimensional code is sent to the second telecommunication customer end by several forward node, for described second Telecommunication customer end obtains the occasional passage identity code by scanning the two dimensional code, to establish occasional passage.
Fig. 7 is the flow chart of step S22 in method shown in Fig. 5.
As shown in fig. 7, with step S12 shown in Fig. 6 correspondingly, in a preferred embodiment, the occasional passage identity Information is two dimensional code, and step S22 includes:
S221: received two dimensional code is scanned to obtain occasional passage identity code, to establish occasional passage.
Fig. 8 is the flow chart of step S13 in method shown in Fig. 4.
As shown in figure 8, in a preferred embodiment, step S13 includes:
S131: monitoring the occasional passage, and the channel for receiving the second telecommunication customer end builds response unit and passes through several institutes State the second public key of forward node return;
S132: formal channel identity information and the third public private key pair corresponding to formal channel are generated;
S133: by the occasional passage to the channel of the second telecommunication customer end build response unit send it is described formal logical Road identity information, third public private key pair and the first public key.
Fig. 9 is the flow chart of step S23 in method shown in Fig. 5.
As shown in figure 9, with step S13 shown in Fig. 8 correspondingly, in a preferred embodiment, step S23 includes:
S231: it is built by the occasional passage to the channel of first telecommunication customer end and initiates the second public affairs of unit transmission Key;
S232: monitoring the occasional passage, and the channel for receiving first telecommunication customer end, which is built, initiates what unit was sent Formal channel identity information, third public private key pair and the first public key.
Figure 10 is the schematic diagram that the process in formal channel is generated in one embodiment of the invention.
Specifically, as illustrated in figures 6-10, in step S12 and step S22, initiation is built in the channel of the first telecommunication customer end Unit 11 sends occasional passage identity code in the form of two dimensional code;In step S131 and step S232, the second communication client It builds response unit 12 and second public key is returned to by occasional passage in the channel at end;In step S132, the first telecommunication customer end It builds initiation unit 11 and generates formal channel identity information and the third public private key pair corresponding to formal channel in channel;In step In S133 and step S232, the channel of the first telecommunication customer end, which is built, initiates unit 11 with received second public key to described formal Channel identity information, third public private key pair and the first public key are encrypted, then are sent by occasional passage, the second communication visitor The channel at family end, which builds response unit 12 and receives the second private key held after above-mentioned every encryption information with itself, to be decrypted.
Above-described embodiment, which further passes through to send, establishes occasional passage corresponding to the two dimensional code of occasional passage identity code, and leads to The formal channel identity information of the second public key encryption, third public private key pair and the first public key for crossing occasional passage transmission, improve logical The safety of news.
Figure 11 is the flow chart of step S14 in method shown in Fig. 4.Figure 12 is the process of step S24 in method shown in Fig. 5 Figure.
As is illustrated by figs. 11 and 12, in step S14 and step S24, it is single that initiation is built in the channel of the first telecommunication customer end It builds response unit 12 and performs following steps respectively in the channel of member 11 and the second telecommunication customer end:
Monitor the formal channel;
Receive the third public key request that each forward node is sent;
Third public key is returned to each forward node, so that each forward node verifies forwarded message.
Figure 13 is the structural schematic diagram of peer-to-peer network in one embodiment of the invention.
As shown in figure 13, in the present embodiment, peer-to-peer network 20 provided by the invention includes several forward node 21.
Forward node 21 includes: retransmission unit, and the information for forwarding telecommunication customer end 10 to send is to establish occasional passage And formal channel, third public key is obtained to telecommunication customer end 10, is passed through with the third public key verifications telecommunication customer end 10 described The message that formal channel is sent: verifying is legal, is forwarded.
Wherein, the message sent by the formal channel is signed by telecommunication customer end 10 with third private key, The third public private key pair of the third public key and third private key composition corresponds to the formal channel.
Figure 14 is a kind of flow chart of the peer-to-peer network means of communication in one embodiment of the invention.Peer-to-peer network shown in Figure 14 The means of communication can be corresponded to applied in forward node 21 shown in Figure 13.
As shown in figure 14, in the present embodiment, the peer-to-peer network means of communication provided by the invention include:
S31: the information that the first telecommunication customer end of forwarding is sent is to establish occasional passage;
S32: the information for forwarding the first telecommunication customer end and the second telecommunication customer end to send respectively is to establish formal channel;
S33: Xiang Suoshu first telecommunication customer end or second telecommunication customer end obtain third public key;
S34: the first telecommunication customer end described in the third public key verifications or second telecommunication customer end are described in The message that formal channel is sent: verifying is legal, is forwarded.
Wherein, the message sent by the formal channel is by first telecommunication customer end or second communication Client is signed with third private key, and the third public private key pair of the third public key and third private key composition corresponds to institute State formal channel.
Peer-to-peer network and the peer-to-peer network means of communication provided by the above embodiment are realized without centralized server, simultaneously Safety communication can be carried out by carrying out registering and logging operation without user.
In a preferred embodiment, the information that the forwarding telecommunication customer end is sent includes: forwarding to establish occasional passage The two dimensional code that first telecommunication customer end is sent, so that the second telecommunication customer end is corresponding interim by scanning the two dimensional code acquisition Channel identity code, to establish occasional passage.
Figure 15 is the flow chart of step S31 in method shown in Figure 14.Method shown in figure 15 can be corresponded to applied to above-mentioned excellent It selects in the peer-to-peer network of embodiment.
As shown in figure 15, in a preferred embodiment, step S31 includes:
S311: the two dimensional code that the first telecommunication customer end of forwarding is sent, so that the second telecommunication customer end passes through scanning described two It ties up code and obtains corresponding occasional passage identity code, to establish occasional passage.
In a preferred embodiment, the information that the forwarding telecommunication customer end is sent includes: forwarding to establish formal channel The second public key that second telecommunication customer end returns;Forward formal channel identity information, the third of the transmission of the first telecommunication customer end public Private key to and the first public key.
Figure 16 is the flow chart of step S32 in method shown in Figure 14.Method shown in Figure 16 can be corresponded to applied to above-mentioned excellent It selects in the peer-to-peer network of embodiment.
As shown in figure 16, in a preferred embodiment, step S32 includes:
S321: the second public key that the second telecommunication customer end of forwarding returns;
S322: formal channel identity information, third public private key pair and the first public key that the first telecommunication customer end of forwarding is sent.
Figure 17 is the structural schematic diagram of peer-to-peer network communication system in one embodiment of the invention.
As shown in figure 17, in the present embodiment, peer-to-peer network communication system provided by the invention includes any of the above-described implementation Telecommunication customer end described in peer-to-peer network described in example and several any of the above-described embodiments.
Peer-to-peer network communication system provided by the above embodiment is realized without centralized server, at the same without user into The operation of row registering and logging can carry out safety communication.
Flow chart and block diagram in attached drawing are illustrated according to the system of various embodiments of the invention, method and computer journey The architecture, function and operation in the cards of sequence product.In this regard, each box in flowchart or block diagram can generation A part of one module, program segment or code of table, a part of the module, program segment or code include one or more Executable instruction for implementing the specified logical function.It should also be noted that in some implementations as replacements, institute in box The function of mark can also occur in a different order than that indicated in the drawings.For example, two boxes succeedingly indicated are practical On can be basically executed in parallel, they can also be executed in the opposite order sometimes, this is depending on related function. It should be noted that the combination of each box in block diagram and or flow chart and the box in block diagram and or flow chart, it can be with It is realized by executing the dedicated hardware based system of defined functions or operations, or specialized hardware and meter can be passed through The combination of calculation machine instruction is realized.
Being described in the embodiment of the present application involved unit or module can be realized by way of software, can also be with It is realized by way of hardware.Described unit or module also can be set in the processor, for example, communication unit can be with It is the software program being arranged in computer or intelligent movable equipment, is also possible to the hardware chip individually communicated.Wherein, The title of these units or module does not constitute the restriction to the unit or module itself under certain conditions, for example, channel is taken It builds initiation unit and channel is built response unit and is also described as " for adding good friend's adding unit of communication good friend ".
As on the other hand, present invention also provides a kind of computer readable storage medium, the computer-readable storage mediums Matter can be computer readable storage medium included in device described in above-described embodiment;It is also possible to individualism, not The computer readable storage medium being fitted into equipment.Computer-readable recording medium storage has one or more than one journey Sequence, described program are used to execute the formula input method for being described in the application by one or more than one processor.
Above description is only the preferred embodiment of the application and the explanation to institute's application technology principle.Those skilled in the art Member is it should be appreciated that invention scope involved in the application, however it is not limited to technology made of the specific combination of above-mentioned technical characteristic Scheme, while should also cover in the case where not departing from the inventive concept, it is carried out by above-mentioned technical characteristic or its equivalent feature Any combination and the other technical solutions formed.Such as features described above has similar function with (but being not limited to) disclosed herein Can technical characteristic replaced mutually and the technical solution that is formed.

Claims (19)

1. a kind of telecommunication customer end, which is characterized in that each telecommunication customer end by several forward node of peer-to-peer network into Row mutually communication, the telecommunication customer end include:
Initiation unit is built in channel, for generating the first public private key pair, communicates client to second by several forward node End sends occasional passage identity information to establish occasional passage, is taken by the channel of the occasional passage and the second telecommunication customer end Build response unit exchange public key, generate and send formal channel identity information and corresponding to formal channel third public private key pair with Establish formal channel;Wherein, first public private key pair includes the first public key and the first private key;
Response unit is built in channel, for generating the second public private key pair, is received the first telecommunication customer end and is passed through several forward node The occasional passage identity information of transmission passes through the logical of the occasional passage and first telecommunication customer end to establish occasional passage Road build initiate elements exchange public key, and receive formal channel identity information and corresponding to formal channel third public private key pair with Establish formal channel;Wherein, second public private key pair includes the second public key and the second private key;
Communication unit is forwarded for sending third public key to each forward node for each forward node verifying Message;The message sent by the formal channel is received, the first private key or institute for initiating that unit is held are built with the channel It states channel and builds the second private key decryption message that response unit is held;And initiation elements exchange is built with the channel Obtained the second public key or the channel is built the first public key that response unit exchanges and is encrypted to message to be sent, and It is signed with third private key to the message to be sent, the message to be sent is sent by the formal channel.
2. telecommunication customer end according to claim 1, which is characterized in that the occasional passage identity information is two dimensional code;
It is described to send occasional passage identity information to the second telecommunication customer end to establish interim lead to by several forward node Road includes:
Generate occasional passage identity code and corresponding two dimensional code;
The two dimensional code is sent to the second telecommunication customer end by several forward node, for second telecommunication customer end The occasional passage identity code is obtained by scanning the two dimensional code, to establish occasional passage;
It is described to receive the occasional passage identity information that the first telecommunication customer end is sent by several forward node to establish interim lead to Road includes:
Received two dimensional code is scanned to obtain occasional passage identity code, to establish occasional passage.
3. telecommunication customer end according to claim 1, which is characterized in that described to be communicated by the occasional passage and second Response unit exchange public key is built in the channel of client, generates and sends formal channel identity information and corresponding to formal channel Third public private key pair includes: to establish formal channel
The occasional passage is monitored, the channel for receiving the second telecommunication customer end builds response unit and passes through several forward node The second public key returned;
Generate formal channel identity information and the third public private key pair corresponding to formal channel;
Response unit, which is built, to the channel of the second telecommunication customer end by the occasional passage sends the formal channel identity letter Breath, third public private key pair and the first public key;
The channel by the occasional passage and first telecommunication customer end, which is built, initiates elements exchange public key, and receives Formal channel identity information and corresponding to the third public private key pair in formal channel include: to establish formal channel
It is built by the occasional passage to the channel of first telecommunication customer end and initiates unit the second public key of transmission;
The occasional passage is monitored, the channel for receiving first telecommunication customer end, which is built, initiates the formal channel body that unit is sent Part information, third public private key pair and the first public key.
4. telecommunication customer end according to claim 1, which is characterized in that described to send third public affairs to each forward node Key, verifying forwarded message for each forward node includes:
Monitor the formal channel;
Receive the third public key request that each forward node is sent;
Third public key is returned to each forward node, so that each forward node verifies forwarded message.
5. a kind of peer-to-peer network, which is characterized in that including several forward node, the forward node includes:
Retransmission unit, the information for forwarding telecommunication customer end to send is to establish occasional passage and formal channel, to the communication Client obtains third public key, and the telecommunication customer end described in the third public key verifications is disappeared by what the formal channel was sent Breath: verifying is legal, is forwarded;
Wherein, the message sent by the formal channel is signed by the telecommunication customer end with third private key, institute The third public private key pair for stating third public key and third private key composition corresponds to the formal channel, and the occasional passage is used for The information in formal channel is established in interaction, while exchanging the public key of both sides' telecommunication customer end, and corresponding to the third in formal channel Public private key pair, while the forward node into peer-to-peer network provides third public key.
6. peer-to-peer network according to claim 5, which is characterized in that the information that the forwarding telecommunication customer end is sent is to build Vertical occasional passage includes:
The two dimensional code for forwarding the first telecommunication customer end to send, so that the second telecommunication customer end is by scanning the two dimensional code acquisition pair The occasional passage identity code answered, to establish occasional passage.
7. peer-to-peer network according to claim 5, which is characterized in that the information that the forwarding telecommunication customer end is sent is to build The formula channel of attentioning includes:
The second public key for forwarding the second telecommunication customer end to return;
Formal channel identity information, third public private key pair and the first public key for forwarding the first telecommunication customer end to send.
8. a kind of peer-to-peer network communication system, which is characterized in that the system comprises described in several claims any one of 1-4 Telecommunication customer end and the described in any item peer-to-peer networks of claim 5-7.
9. a kind of peer-to-peer network means of communication, which is characterized in that the described method includes:
Generate the first public private key pair;
Occasional passage identity information is sent to establish occasional passage to the second telecommunication customer end by several forward node;
Response unit is built with the channel of the second telecommunication customer end by the occasional passage and exchanges public key, is generated and sent formal Channel identity information and corresponding to the third public private key pair in formal channel to establish formal channel;
Third public key is sent to each forward node, so that each forward node verifies forwarded message;
Message to be sent is encrypted with the second public key that exchange obtains, and the message to be sent is carried out with third private key Signature sends the message to be sent by the formal channel;
The message sent by the formal channel is received, decrypts the message with the first private key;
Wherein, first public private key pair includes the first public key and the first private key.
10. the peer-to-peer network means of communication according to claim 9, which is characterized in that described to be saved by several forwardings O'clock sending occasional passage identity information to the second telecommunication customer end to establish occasional passage includes:
Generate occasional passage identity code and corresponding two dimensional code;
The two dimensional code is sent to the second telecommunication customer end by several forward node, for second telecommunication customer end The occasional passage identity code is obtained by scanning the two dimensional code, to establish occasional passage.
11. the peer-to-peer network means of communication according to claim 9, which is characterized in that it is described by the occasional passage with Response unit exchange public key is built in the channel of second telecommunication customer end, is generated and sent formal channel identity information and is corresponded to just The third public private key pair in formula channel includes: to establish formal channel
The occasional passage is monitored, the channel for receiving the second telecommunication customer end builds response unit and passes through several forward node The second public key returned;
Generate formal channel identity information and the third public private key pair corresponding to formal channel;
Response unit, which is built, to the channel of the second telecommunication customer end by the occasional passage sends the formal channel identity letter Breath, third public private key pair and the first public key.
12. the peer-to-peer network means of communication according to claim 9, which is characterized in that described to be sent out to each forward node Third public key is sent, verifying forwarded message for each forward node includes:
Monitor the formal channel;
Receive the third public key request that each forward node is sent;
Third public key is returned to each forward node, so that each forward node verifies forwarded message.
13. a kind of peer-to-peer network means of communication, which is characterized in that the described method includes:
Generate the second public private key pair;
Occasional passage identity information that the first telecommunication customer end is sent by several forward node is received to establish occasional passage;
It is built by the channel of the occasional passage and first telecommunication customer end and initiates elements exchange public key, and received formal Channel identity information and corresponding to the third public private key pair in formal channel to establish formal channel;
Third public key is sent to each forward node, so that each forward node verifies forwarded message;
Message to be sent is encrypted with the first public key that exchange obtains, and the message to be sent is carried out with third private key Signature sends the message to be sent by the formal channel;
The message sent by the formal channel is received, decrypts the message with the second private key;
Wherein, second public private key pair includes the second public key and the second private key.
14. the peer-to-peer network means of communication according to claim 13, which is characterized in that the occasional passage identity information is Two dimensional code, the reception occasional passage identity information include: to establish occasional passage
Received two dimensional code is scanned to obtain occasional passage identity code, to establish occasional passage.
15. the peer-to-peer network means of communication according to claim 13, which is characterized in that it is described by the occasional passage with Corresponding channel, which is built, initiates elements exchange public key, and receives formal channel identity information and the third public affairs corresponding to formal channel Private key includes: to establish formal channel
It is built by the occasional passage to the channel of first telecommunication customer end and initiates unit the second public key of transmission;
The occasional passage is monitored, the channel for receiving first telecommunication customer end, which is built, initiates the formal channel body that unit is sent Part information, third public private key pair and the first public key.
16. the peer-to-peer network means of communication according to claim 13, which is characterized in that described to be sent out to each forward node Third public key is sent, verifying forwarded message for each forward node includes:
Monitor the formal channel;
Receive the third public key request that each forward node is sent;
Third public key is returned to each forward node, so that each forward node verifies forwarded message.
17. a kind of peer-to-peer network means of communication, which is characterized in that the described method includes:
The information for forwarding the first telecommunication customer end to send establishes occasional passage to the second telecommunication customer end, and the occasional passage is used The information in formal channel is established in interaction, while exchanging the public key of the first telecommunication customer end and the second telecommunication customer end and right Should be in the third public private key pair in formal channel, while the forward node into peer-to-peer network provides third public key;
The information for forwarding the first telecommunication customer end and the second telecommunication customer end to send respectively is to establish formal channel;
Third public key is obtained to first telecommunication customer end or second telecommunication customer end;
The first telecommunication customer end described in the third public key verifications or second telecommunication customer end pass through the formal channel The message of transmission: verifying is legal, is forwarded;
Wherein, the message sent by the formal channel is by first telecommunication customer end or the second communication client End is signed with third private key, the third public key and the third private key composition third public private key pair correspond to it is described just Formula channel.
18. the peer-to-peer network means of communication according to claim 17, which is characterized in that the first telecommunication customer end of the forwarding The information of transmission includes: to establish occasional passage
The two dimensional code for forwarding the first telecommunication customer end to send, so that the second telecommunication customer end is by scanning the two dimensional code acquisition pair The occasional passage identity code answered, to establish occasional passage.
19. the peer-to-peer network means of communication according to claim 17, which is characterized in that the first communication of forwarding respectively visitor The information that family end and the second telecommunication customer end are sent includes: to establish formal channel
The second public key for forwarding the second telecommunication customer end to return;
Formal channel identity information, third public private key pair and the first public key for forwarding the first telecommunication customer end to send.
CN201610538484.4A 2016-07-08 2016-07-08 Peer-to-peer network communication system and method Active CN106209835B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201610538484.4A CN106209835B (en) 2016-07-08 2016-07-08 Peer-to-peer network communication system and method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201610538484.4A CN106209835B (en) 2016-07-08 2016-07-08 Peer-to-peer network communication system and method

Publications (2)

Publication Number Publication Date
CN106209835A CN106209835A (en) 2016-12-07
CN106209835B true CN106209835B (en) 2019-11-22

Family

ID=57474179

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201610538484.4A Active CN106209835B (en) 2016-07-08 2016-07-08 Peer-to-peer network communication system and method

Country Status (1)

Country Link
CN (1) CN106209835B (en)

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106919384B (en) * 2017-02-13 2020-09-15 浙江慧脑信息科技有限公司 Browser system capable of transmitting user information
CN108449357B (en) * 2018-04-08 2021-05-28 武汉斗鱼网络科技有限公司 Authorized login method and device, intelligent device and storage medium
CN111385278B (en) * 2018-12-29 2021-11-30 西安华为技术有限公司 Message forwarding method and device
CN111148094B (en) * 2019-12-30 2023-11-21 全链通有限公司 Registration method of 5G user terminal, user terminal equipment and medium
CN111148098A (en) * 2019-12-30 2020-05-12 江苏全链通信息科技有限公司 5G terminal equipment registration method, equipment and storage medium

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1925393A (en) * 2006-09-08 2007-03-07 苏州胜联电子信息有限公司 Point-to-point network identity authenticating method
EP1865656A1 (en) * 2006-06-08 2007-12-12 BRITISH TELECOMMUNICATIONS public limited company Provision of secure communications connection using third party authentication
CN103746770A (en) * 2013-12-20 2014-04-23 浙江工业大学 Message authentication code and probability secret key distribution mechanism-based anti-pollution network coding method
CN105191172A (en) * 2013-05-16 2015-12-23 三星电子株式会社 Communication method and device
CN105656624A (en) * 2016-02-29 2016-06-08 浪潮(北京)电子信息产业有限公司 Client side, server and data transmission method and system

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1865656A1 (en) * 2006-06-08 2007-12-12 BRITISH TELECOMMUNICATIONS public limited company Provision of secure communications connection using third party authentication
CN1925393A (en) * 2006-09-08 2007-03-07 苏州胜联电子信息有限公司 Point-to-point network identity authenticating method
CN105191172A (en) * 2013-05-16 2015-12-23 三星电子株式会社 Communication method and device
CN103746770A (en) * 2013-12-20 2014-04-23 浙江工业大学 Message authentication code and probability secret key distribution mechanism-based anti-pollution network coding method
CN105656624A (en) * 2016-02-29 2016-06-08 浪潮(北京)电子信息产业有限公司 Client side, server and data transmission method and system

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
《基于P2P网络的可验证门限群签名方案》;杨柳 等;《计算机应用与软件》;20090731;第26卷(第7期);全文 *

Also Published As

Publication number Publication date
CN106209835A (en) 2016-12-07

Similar Documents

Publication Publication Date Title
CN106209835B (en) Peer-to-peer network communication system and method
CN103069772B (en) The method and apparatus found automatically in communication network
CN107094156B (en) Secure communication method and system based on P2P mode
CN105337740B (en) A kind of auth method, client, trunking and server
CN109245993A (en) Instant communication method and device based on block chain
US10742426B2 (en) Public key infrastructure and method of distribution
CN101405759A (en) Method and apparatus for user centric private data management
CN102984127A (en) User-centered mobile internet identity managing and identifying method
CN105391676A (en) Instant communication message processing method, device and system
CN110166577A (en) Distributed Application cluster conversation processing system and method
CN108927808A (en) A kind of communication means, authentication method and the device of ROS node
CN115913790B (en) Data transmission method based on privacy computing network, electronic equipment and storage medium
CN109792433A (en) Method and apparatus for equipment application to be tied to network service
Voss et al. A privacy preserving reputation system for mobile information dissemination networks
CN102893579B (en) For provide method, node and the equipment of bill in communication system
CN114390524B (en) Method and device for realizing one-key login service
Ouda et al. Security protocols in service-oriented architecture
CN112927026A (en) Coupon processing method and device, electronic equipment and computer storage medium
Bian et al. Off-the-record instant messaging for group conversation
CN106357669A (en) Web system logging-in method and logging-in assisting system
Beato et al. Virtualfriendship: Hiding interactions on online social networks
JP2012181662A (en) Account information cooperation system
Oppliger Providing certified mail services on the internet
AlSabah et al. PriviPK: Certificate-less and secure email communication
CN108289100B (en) A kind of safety access method, terminal device and system

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant