CN106911476A - A kind of ciphering and deciphering device and method - Google Patents

A kind of ciphering and deciphering device and method Download PDF

Info

Publication number
CN106911476A
CN106911476A CN201510971267.XA CN201510971267A CN106911476A CN 106911476 A CN106911476 A CN 106911476A CN 201510971267 A CN201510971267 A CN 201510971267A CN 106911476 A CN106911476 A CN 106911476A
Authority
CN
China
Prior art keywords
ciphering
master control
terminal equipment
terminal
pin
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201510971267.XA
Other languages
Chinese (zh)
Other versions
CN106911476B (en
Inventor
郑文德
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing WatchSmart Technologies Co Ltd
Original Assignee
Beijing WatchSmart Technologies Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing WatchSmart Technologies Co Ltd filed Critical Beijing WatchSmart Technologies Co Ltd
Priority to CN201510971267.XA priority Critical patent/CN106911476B/en
Publication of CN106911476A publication Critical patent/CN106911476A/en
Application granted granted Critical
Publication of CN106911476B publication Critical patent/CN106911476B/en
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3234Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving additional secure or trusted devices, e.g. TPM, smartcard, USB or software token
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/602Providing cryptographic facilities or services
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0894Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage
    • H04L9/0897Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage involving additional devices, e.g. trusted platform module [TPM], smartcard or USB
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2107File encryption

Abstract

The invention discloses a kind of ciphering and deciphering device and method, belong to data safety technical field of memory.Master control safety chip (1) of the ciphering and deciphering device including the PIN that is stored with, the USB interface (2) and wireless communication module (3) being connected with master control safety chip (1) respectively, also include the rechargeable battery (4) for being powered for device, rechargeable battery (4) is connected with the master control safety chip (1) and wireless communication module (3) respectively.Using ciphering and deciphering device provided by the present invention and method; encryption and decryption operation easily can be carried out to the data in the terminal devices such as PC or mobile phone; and protect encryption after ciphertext data in the presence without ciphering and deciphering device; the access to ciphertext data cannot be realized, the security of the data stored in terminal device is substantially increased.

Description

A kind of ciphering and deciphering device and method
Technical field
The present invention relates to data safety technical field of memory, and in particular to a kind of ciphering and deciphering device and method.
Background technology
Currently, with the fast development of electronic equipment, user can typically store same part data file To in different electronic equipments, the data in PC are such as will be stored in, also are stored in the mobile phone of oneself, To facilitate checking at any time to data.And user is to oneself private data, vital document, confidential data Security etc. information is also increasingly paid attention to, it is undesirable to which individual or entity without permission accesses and reads this A little information.Although user can be encrypted storage by the way of encryption software to data, in hand After machine is lost or be stolen, lawless person is still able to crack encryption data.Therefore, it is badly in need of a kind of good adding Manner of decryption so that even if lawless person steals user mobile phone, to the important personal letter stored in mobile phone Breath also cannot normally be accessed and read.The new encryption and decryption that the present invention is exactly proposed regarding to the issue above Device and method.
The content of the invention
For defect present in prior art, it is an object of the invention to provide a kind of ciphering and deciphering device and Method, using the device and method, even if the terminal device of storage user is lost, the ciphertext number in equipment According to cannot also be accessed by lawless person.
To achieve the above object, the technical solution adopted by the present invention is as follows:
A kind of ciphering and deciphering device, including the PIN that is stored with master control safety chip, respectively with master control The USB interface and wireless communication module of safety chip connection, also including chargeable for what is powered for device Battery, rechargeable battery is connected with the master control safety chip and wireless communication module respectively.
Further, a kind of ciphering and deciphering device as described above, the device also includes carrying out rechargeable battery Charge and power supply management power management module, rechargeable battery by power management module respectively with master control Safety chip and wireless communication module are connected.
Further, a kind of ciphering and deciphering device as described above, the power management module includes Power convert Circuit and the charge management circuit of charge protection is carried out to rechargeable battery, rechargeable battery is turned by power supply Change circuit to be connected with master control safety chip and wireless communication module respectively, charge management circuit and chargeable electricity Pond connects.
Further, a kind of ciphering and deciphering device as described above, the device also includes connecting with master control safety chip The display module for connecing, the charge management circuit is also connected with master control safety chip.
Further, a kind of ciphering and deciphering device as described above, the power management module is included for controlling Whether it is that the powering mode that master control safety chip is powered controls circuit, the power supply by rechargeable battery Mode circuit is connected with rechargeable battery and USB interface respectively.
Further, a kind of ciphering and deciphering device as described above, the master control safety chip is built-in TimeCOS The safety chip of smart card operating system.
Further, a kind of ciphering and deciphering device as described above, the wireless communication module is Wif i communication moulds Block or bluetooth communication.
Further, a kind of ciphering and deciphering device as described above, the device medium of the ciphering and deciphering device is can The apparatus carriers of wearable intelligent equipment.
Based on above-mentioned ciphering and deciphering device, present invention also offers a kind of encipher-decipher method, including will be to be encrypted The step of data are encrypted and are decrypted encryption data, the mode that be-encrypted data is encrypted Including:
(1) terminal device is connected by USB interface or wireless communication module with ciphering and deciphering device, and to adding Decryption device sends device authentication request;The device authentication request includes the PIN of encryption;
(2) ciphering and deciphering device receiving terminal apparatus send device authentication request, master control safety chip according to The PIN encrypted described in its decryption key decryption for prestoring, and compare the PIN after decryption Whether the PIN with its storage inside is identical, if so, then enter next step, if it is not, then master control Safety chip sends authentication error and points out to terminal device;The decruption key is ciphering and deciphering device and terminal The decruption key corresponding with the key of terminal device encryption PIN of equipment agreement;
(3) be-encrypted data is sent to master control safety chip by terminal device, and master control safety chip will be to be added Terminal device is returned to after ciphertext data encryption;
The mode that encryption data is decrypted is included:
1) terminal device is connected by USB interface or wireless communication module with ciphering and deciphering device, and is solved to adding Close device sends device authentication request;The device authentication request includes the PIN of encryption;
2) the device authentication request that decryption device receiving terminal apparatus send, master control safety chip is pre- according to its Described in the decryption key decryption deposited encrypt PIN, and compare decryption after PIN and its Whether the PIN of storage inside is identical, if so, then enter next step, if it is not, then master control safety Chip sends authentication error and points out to terminal device;
3) encryption data is sent to ciphering and deciphering device by terminal device, and master control safety chip is by encryption data solution Terminal device is returned to after close.
Present invention also offers another encipher-decipher method, including be-encrypted data is encrypted and will added The step of ciphertext data is decrypted, the mode that be-encrypted data is encrypted is included:
(1) the first terminal equipment with USB interface is connected by USB interface with ciphering and deciphering device, tool The second terminal equipment for having wireless communication module is connected by wireless communication module with ciphering and deciphering device, and first Terminal device and second terminal equipment send device authentication and ask to ciphering and deciphering device respectively;The equipment is tested Card request includes the PIN of encryption;
(2) ciphering and deciphering device receives the device authentication that first terminal equipment and second terminal equipment send respectively Request, what the first decryption key decryption first terminal equipment that master control safety chip prestores according to it sent adds Close PIN, the personal of the encryption sent using the second decryption key decryption second terminal equipment is known Other code, and be respectively compared PIN that first terminal equipment and second terminal equipment sends with its inside The PIN of storage whether all same, if so, then enter next step, if it is not, the then safe core of master control Piece sends authentication error and points out to the terminal device for differing;
First decruption key is that ciphering and deciphering device is arranged with first terminal equipment and first terminal sets The corresponding decruption key of the standby key for encrypting PIN;Second decruption key is filled for encryption and decryption The key for putting arrange with second terminal equipment and second terminal equipment encryption PIN is corresponding Decruption key;
(3) first terminal equipment sends to ciphering and deciphering device and for be-encrypted data to be safely stored into second terminal The instruction of equipment, master control safety chip according to the instruction of first terminal equipment, after be-encrypted data is encrypted It is sent to second terminal equipment;
The mode that encryption data is decrypted is included:
1) the first terminal equipment with USB interface is connected by USB interface with ciphering and deciphering device, is had The second terminal equipment of wireless communication module is connected by wireless communication module with ciphering and deciphering device, and first eventually End equipment and second terminal equipment send device authentication and ask to ciphering and deciphering device respectively;The device authentication Request includes the PIN of encryption;
2) ciphering and deciphering device receives first terminal equipment respectively and the device authentication of second terminal equipment transmission please Ask, the encryption that the first decryption key decryption first terminal equipment that master control safety chip prestores according to it sends PIN, the personal identification of the encryption sent using the second decryption key decryption second terminal equipment Code, and be respectively compared PIN that first terminal equipment and second terminal equipment sends with its inside deposit The PIN of storage whether all same, if so, then enter next step, if it is not, master control safety chip to The terminal device for differing sends authentication error prompting;
3) second terminal equipment is sent to first terminal and sets after being sent to ciphering and deciphering device and decrypting encryption data Standby instruction, master control safety chip sends according to the instruction of second terminal equipment after encryption data is decrypted To first terminal equipment.
The beneficial effects of the present invention are:Ciphering and deciphering device provided by the present invention and method, can be conveniently The data in the terminal devices such as PC or mobile phone are carried out with encryption and decryption operation, and protect the ciphertext after encryption Data are in the presence without ciphering and deciphering device, it is impossible to realize the access to ciphertext data, substantially increase The security of the data stored in terminal device.
Brief description of the drawings
Fig. 1 is a kind of structural representation of ciphering and deciphering device in the specific embodiment of the invention;
Fig. 2 is a kind of flow chart of encipher-decipher method of offer in the specific embodiment of the invention;
Fig. 3 is the flow chart of another encipher-decipher method of offer in the specific embodiment of the invention.
Specific embodiment
With reference to Figure of description, the present invention is described in further detail with specific embodiment.
Fig. 1 shows a kind of structural representation of the ciphering and deciphering device provided in the specific embodiment of the invention Figure, as can be seen from Figure, the ciphering and deciphering device includes master control safety chip 1, respectively with master control safety The USB interface 2 and wireless communication module 3 of the connection of chip 1, also including for filling for being powered for device Battery 4, rechargeable battery 4 is connected with the master control safety chip 1 and wireless communication module 3 respectively; Master control safety chip 1 is stored with PIN PIN code, realizes being filled with encryption and decryption by PIN Put the authentication of the terminal device of connection.
In present embodiment, master control safety chip 1 can be using built-in TimeCOS smart card operations system The safety chip of system, be stored with safely various keys, PIN code and associated documents in master control safety chip 1, Possess the security algorithms such as encryption, decryption, signature and checking, therefore, exterior terminal equipment can be by the It is real by master control safety chip 1 after USB interface 2 or wireless communication module 3 are connected with ciphering and deciphering device Now the safety to data is encrypted, and the data after encryption only have by the master control safety chip of the ciphering and deciphering device 1 can decrypt, therefore, using the device, even if the terminal device of user is lost or stolen, equipment The encryption data of middle storage cannot also be accessed.
As shown in figure 1, in present embodiment, the ciphering and deciphering device also includes carrying out rechargeable battery 4 The power management module 5 charged with power supply management, rechargeable battery 4 is distinguished by power management module 5 It is connected with master control safety chip 1 and wireless communication module 2.
Wherein, the power management module 5 includes power-switching circuit 6 and rechargeable battery 4 is carried out The charge management circuit 7 of charge protection, rechargeable battery 4 by power-switching circuit 6 respectively with master control Safety chip 1 and wireless communication module 3 are connected, and charge management circuit 7 is connected with rechargeable battery 4.
Master control safety chip 1 and wireless communication module 3 are respectively by rechargeable battery 4 through power-switching circuit 6 voltage stabilizings are powered into after the operating voltage of master control safety chip 1 and wireless communication module 2.Such as master control safety The operating voltage of chip 1 is 3.3V, then rechargeable battery 4 exports 3.3V after power-switching circuit 6 Voltage, to master control safety chip 1, is that master control safety chip 1 is powered.The power-switching circuit 6 can be with Using low pressure difference linear voltage regulator LDO, it would however also be possible to employ dc voltage changer DC/DC.
In present embodiment, the charge management circuit 7 can also be connected with master control safety chip 1, When being charged to rechargeable battery 4, master control safety chip 1 is supervised by monitoring charge management circuit 7 Whether control rechargeable battery 4 is full of, full of when can on a display screen show the prompt message that has been filled with, Therefore, the ciphering and deciphering device can also include the display module 8 being connected with master control safety chip 1.
The power management module 5 can also be included for controlling whether by rechargeable battery 4 as master control is pacified The powering mode control circuit 9 that full chip 1 is powered, the powering mode control circuit 9 respectively with Rechargeable battery 4 and USB interface 2 are connected.Powering mode control circuit 9 can use analog switch To realize, it is by USB interface 2 and outside to monitor ciphering and deciphering device in powering mode control circuit 9 When terminal device is connected, the operating voltage of master control safety chip 2 can pass through USB by exterior terminal equipment Interface 2 is provided, and the powering mode control control of circuit 9 disconnects rechargeable battery 4 and master control safety chip 1 Connection.
In present embodiment, the wireless communication module 3 can be Wifi communication modules or Bluetooth communication mould Block or other wireless communication modules.The device medium of the ciphering and deciphering device is setting for wearable smart machine Standby carrier, that is to say, that the ciphering and deciphering device can be fabricated to the form of wearable device, such as bracelet or Wrist-watch, is convenient for carrying.
Based on the ciphering and deciphering device shown in Fig. 1, present embodiment additionally provides a kind of encipher-decipher method, Stored safely after the data encryption that the encipher-decipher method needs terminal device suitable for user, even if terminal Device losses are stolen, and other lawless persons cannot also access the data.The method is included number to be encrypted The step of according to being encrypted and being decrypted the data after encryption.Wherein, be-encrypted data is added Close mode is as shown in Fig. 2 mainly include the following steps that:
Step S11:Terminal device is connected by USB interface or wireless communication module with ciphering and deciphering device, And the PIN of encryption is sent to ciphering and deciphering device;
Step S12:The PIN that master control safety chip is sent by comparison terminal equipment with its inside Whether the PIN of storage is identical to be verified to terminal device;
Terminal device with USB interface and/or wireless communication module, by the USB of ciphering and deciphering device Interface or wireless communication module are connected with ciphering and deciphering device, and after connection, terminal device is sent out to ciphering and deciphering device Device authentication is sent to ask, device authentication request includes the PIN of encryption, the PIN is used In authentication of the ciphering and deciphering device to equipment, verify whether user is validated user.In practical application, Installing terminal equipment encryption and decryption client software corresponding with the ciphering and deciphering device, by USB interface with plus Decryption device carries out data interaction.
After ciphering and deciphering device receives the device authentication request of the transmission of terminal device, master control safety chip is adopted The PIN encrypted is decrypted with its decruption key for prestoring, obtains the individual of terminal device transmission People's identification code, will decrypt the PIN prestored in the PIN and ciphering and deciphering device for obtaining Compare, if two PINs are consistent, after terminal device can be carried out by ciphering and deciphering device Continuous operation, if it is inconsistent, ciphering and deciphering device does not pass through to terminal device checking, master control safety chip Authentication error is sent to terminal device to point out.
The decruption key is that ciphering and deciphering device is arranged with terminal device and terminal device encryption is personal knows The corresponding decruption key of the key of other code.Carry out encryption key or decryption involved during device authentication The key that be-encrypted data is encrypted or decrypts is different from follow-up ciphering and deciphering device by key.
Step S13:After terminal device is verified, be-encrypted data is sent to master control peace by terminal device Full chip, master control safety chip returns to terminal device after be-encrypted data is encrypted.
After terminal device is verified, ciphering and deciphering device meeting prompt terminal equipment sends be-encrypted data Prompting, after ciphering and deciphering device receives the be-encrypted data of terminal device transmission, master control safety chip is to data It is encrypted, in retransmiting back terminal device after encryption.
When terminal device needs to access the data for reading it after being encrypted by ciphering and deciphering device, the encryption and decryption The mode that be decrypted for encryption data by method is similar with above-mentioned cipher mode, mainly includes the following steps that:
(1) terminal device is connected by USB interface or wireless communication module with ciphering and deciphering device, and to adding Decryption device sends device authentication request;The device authentication request includes the PIN of encryption;
(2) the device authentication request that decryption device receiving terminal apparatus send, master control safety chip is according to it Described in the decryption key decryption for prestoring encrypt PIN, and compare decryption after PIN with Whether the PIN of its storage inside is identical, if so, then enter next step, if it is not, then master control peace Full chip sends authentication error and points out to terminal device;
(3) encryption data is sent to ciphering and deciphering device by terminal device, and master control safety chip is by encryption data Terminal device is returned to after decryption.
By the above-mentioned encipher-decipher method shown in Fig. 2, the data of safety storage will be needed in terminal device In being then stored into the terminal device after ciphering and deciphering device is encrypted, and reading is needed to be somebody's turn to do in the terminal device During data, the data after decryption are returned to again after the secure decryption of data is encrypted by ciphering and deciphering device The terminal device, realizes the safety storage of data in terminal device and accesses.For example, for need by When being stored after the significant data encryption on a PC, PC is connect by USB interface with ciphering and deciphering device It is logical, and data are sent to ciphering and deciphering device by encryption and decryption client software by PC by USB interface, The master control safety chip of ciphering and deciphering device leads to again after the key and AES of its internal memory are to data encryption Cross USB interface and return to PC.Equally, when user needs to deposit the significant data encryption in a mobile phone Chu Shi, after device encryption can be transmitted data to after wireless communication module is connected with ciphering and deciphering device, Encryption data is returned to mobile phone storage by device again.
Another encipher-decipher method that present embodiment is also provided, the encipher-decipher method needs suitable for user To be stored securely in another terminal device after a data encryption for terminal device.The method also includes will The step of be-encrypted data is encrypted and is decrypted the data after encryption.Wherein, by number to be encrypted According to the mode being encrypted as shown in figure 3, mainly including the following steps that:
Step S21:Two terminal devices are connected with ciphering and deciphering device respectively, and respectively to encryption and decryption equipment Send the PIN of encryption;
Step S22:Ciphering and deciphering device compare that first terminal equipment and second terminal equipment sends respectively The PIN that people's identification code is stored with it whether all same;
First terminal equipment with USB interface is connected by USB interface with ciphering and deciphering device, with nothing The second terminal equipment of line communication module is connected by wireless communication module with ciphering and deciphering device, after connection, First terminal equipment and second terminal equipment send device authentication and ask to ciphering and deciphering device respectively, wherein, Device authentication request includes the PIN of encryption, and the PIN sets for ciphering and deciphering device pair Standby checking.
Ciphering and deciphering device receives the checking PIN that first terminal equipment and second terminal equipment send Request after, master control safety chip is known using the first decruption key to the personal of the encryption of first terminal equipment Other code is decrypted, and the PIN of first terminal equipment transmission is obtained, using the second decruption key pair The PIN of the encryption that second terminal equipment sends is decrypted, and obtains the transmission of second terminal equipment PIN, and respectively by the PIN of first terminal equipment transmission and the transmission of second terminal equipment PIN be compared with the PIN for prestoring with it, only two comparative results are equal Identical i.e. two terminal devices are by after checking, can just carry out next step, otherwise, master control safety chip The terminal device not passed through to checking sends authentication error and points out.
Wherein, the first decruption key is that ciphering and deciphering device is arranged with first terminal equipment and first terminal The corresponding decruption key of key of equipment encryption PIN;Second decruption key is encryption and decryption The key of device is arranged with second terminal equipment and second terminal equipment encryption PIN is corresponding Decruption key.In actual applications, the first decruption key can also may be used with the second decruption key with identical With difference.
Step S23:After two terminal device checkings pass through, first terminal equipment is sent out to ciphering and deciphering device Sending the instruction that be-encrypted data is safely stored into second terminal equipment, instruction includes be-encrypted data, Master control safety chip is sent to second eventually according to the instruction of first terminal equipment after be-encrypted data is encrypted End equipment.
It is corresponding with the encryption method shown in Fig. 3, the mode that encryption data is decrypted is included:
(1) the first terminal equipment with USB interface is connected by USB interface with ciphering and deciphering device, tool The second terminal equipment for having wireless communication module is connected by wireless communication module with ciphering and deciphering device, and first Terminal device and second terminal equipment send device authentication and ask to ciphering and deciphering device respectively;The equipment is tested Card request includes the PIN of encryption;
(2) ciphering and deciphering device receives the device authentication that first terminal equipment and second terminal equipment send respectively Request, what the first decryption key decryption first terminal equipment that master control safety chip prestores according to it sent adds Close PIN, the personal of the encryption sent using the second decryption key decryption second terminal equipment is known Other code, and be respectively compared PIN that first terminal equipment and second terminal equipment sends with its inside The PIN of storage whether all same, if so, then enter next step, if it is not, master control safety chip Authentication error is sent to the terminal device for differing to point out;
(3) second terminal equipment is sent to first terminal after being sent to ciphering and deciphering device and decrypting encryption data The instruction of equipment, master control safety chip includes encryption data according to the instruction of second terminal equipment, instruction, First terminal equipment is sent to after encryption data is decrypted.
By the encipher-decipher method shown in Fig. 3, the data in first terminal equipment are filled by encryption and decryption To put be sent in second terminal equipment after encryption carries out safety and can store, and reading is needed in first terminal equipment During the data, again will after secure decryption is carried out to the encryption data in second terminal equipment by ciphering and deciphering device Data after decryption return to first terminal equipment, realize data in first terminal equipment are whole second Safety is separately deposited and access in end equipment.For example, when user is needed the significant data encryption on a PC After store when on mobile phone, PC is connected by USB interface with ciphering and deciphering device, by its encryption and decryption visitor Family end software will store data is activation on mobile phone to ciphering and deciphering device, and ciphering and deciphering device enters to data It is sent in mobile phone by wireless communication module after row encryption and is stored.
When in actual applications, using above two encipher-decipher method provided by the present invention, encryption and decryption dress Put only to be carried out to terminal device in terminal recognition First Contact Connections terminal device by PIN Checking, after being verified for the first time, can give tacit consent to terminal device and encryption and decryption apparatus bound, and terminal sets It is to verify again for ciphering and deciphering device is reused, to improve efficiency.
Using ciphering and deciphering device provided by the present invention and method, the terminal device such as mobile phone or PC with plus When decryption device communication carries out data encryption or reads ciphertext data, it is required for first carrying out PIN code checking Operation below can be carried out, there is no the participation of ciphering and deciphering device, the encryption number stored in mobile phone or PC According to that cannot access, other users pass through the data encrypted in can not at will reading mobile phone or PC, realize The safety storage of data in equipment.
Ciphering and deciphering device proposed by the present invention can solve user in terminal device safe data storage will Ask, and the composition device of device is few, can be fabricated to small volume, bracelet easy to carry or other just Portable device.By the use of " bracelet ", PC can be needed data file to be protected by user In storing mobile phone after encryption.The user of " bracelet " must be can be used by authentication rear, for example PIN code is verified.The user for holding " bracelet " can be easily by the encryption and decryption client of mobile phone terminal Access the encryption data in mobile phone.
Obviously, those skilled in the art can carry out various changes and modification without deviating from this to the present invention The spirit and scope of invention.So, if these modifications of the invention and modification belong to right of the present invention and want Ask and its equivalent technology within the scope of, then the present invention be also intended to comprising these change and modification.

Claims (10)

1. a kind of ciphering and deciphering device, it is characterised in that:The safe core of master control including the PIN that is stored with Piece (1), the USB interface (2) and wireless communication module (3) being connected with master control safety chip (1) respectively, Also include the rechargeable battery (4) for powering for device, rechargeable battery (4) respectively with the master Control safety chip (1) and wireless communication module (3) connection.
2. a kind of ciphering and deciphering device according to claim 1, it is characterised in that:The device also includes The power management module (5) for rechargeable battery (4) charge with power supply management, rechargeable battery (4) by power management module (5) respectively with master control safety chip (1) and wireless communication module (3) Connection.
3. a kind of ciphering and deciphering device according to claim 2, it is characterised in that:The power management Module (5) carries out the charging of charge protection including power-switching circuit (6) and to rechargeable battery (4) Management circuit (7), rechargeable battery (4) by power-switching circuit (6) respectively with the safe core of master control Piece (1) and wireless communication module (3) connection, charge management circuit (7) and rechargeable battery (4) Connection.
4. a kind of ciphering and deciphering device according to claim 3, it is characterised in that:The device also includes The display module (8) being connected with master control safety chip (1), the charge management circuit (7) also with master Control safety chip (1) connection.
5. a kind of ciphering and deciphering device according to claim 3, it is characterised in that:The power management Module (5) is including for controlling whether by rechargeable battery (4) as master control safety chip (1) is supplied The powering mode of electricity controls circuit (9), the powering mode control circuit (9) respectively with rechargeable battery (4) connected with USB interface (2).
6. a kind of ciphering and deciphering device according to claim 1, it is characterised in that:The master control safety Chip (1) is the safety chip of built-in TimeCOS smart card operating systems.
7. according to a kind of ciphering and deciphering device of claim 1, it is characterised in that:The wireless communication module (3) It is Wifi communication modules or bluetooth communication.
8. according to a kind of ciphering and deciphering device that one of claim 1 to 7 is described, it is characterised in that:It is described The device medium of ciphering and deciphering device is the apparatus carriers of wearable smart machine.
9. a kind of a kind of encipher-decipher method of the ciphering and deciphering device being based on described in claim 1, including will treat The step of encryption data is encrypted and is decrypted encryption data, it is characterised in that:By number to be encrypted Include according to the mode being encrypted:
(1) terminal device is connected by USB interface or wireless communication module with ciphering and deciphering device, and to adding Decryption device sends device authentication request;The device authentication request includes the PIN of encryption;
(2) ciphering and deciphering device receiving terminal apparatus send device authentication request, master control safety chip according to The PIN encrypted described in its decryption key decryption for prestoring, and compare the PIN after decryption Whether the PIN with its storage inside is identical, if so, then enter next step, if it is not, then master control Safety chip sends authentication error and points out to terminal device;The decruption key is ciphering and deciphering device and terminal The decruption key corresponding with the key of terminal device encryption PIN of equipment agreement;
(3) be-encrypted data is sent to master control safety chip by terminal device, and master control safety chip will be to be added Terminal device is returned to after ciphertext data encryption;
The mode that encryption data is decrypted is included:
1) terminal device is connected by USB interface or wireless communication module with ciphering and deciphering device, and is solved to adding Close device sends device authentication request;The device authentication request includes the PIN of encryption;
2) the device authentication request that decryption device receiving terminal apparatus send, master control safety chip is pre- according to its Described in the decryption key decryption deposited encrypt PIN, and compare decryption after PIN and its Whether the PIN of storage inside is identical, if so, then enter next step, if it is not, then master control safety Chip sends authentication error and points out to terminal device;
3) encryption data is sent to ciphering and deciphering device by terminal device, and master control safety chip is by encryption data solution Terminal device is returned to after close.
10. a kind of a kind of encipher-decipher method of the ciphering and deciphering device being based on described in claim 1, including will The step of be-encrypted data is encrypted and is decrypted encryption data, it is characterised in that:Will be to be encrypted The mode that data are encrypted includes:
(1) the first terminal equipment with USB interface is connected by USB interface with ciphering and deciphering device, tool The second terminal equipment for having wireless communication module is connected by wireless communication module with ciphering and deciphering device, and first Terminal device and second terminal equipment send device authentication and ask to ciphering and deciphering device respectively;The equipment is tested Card request includes the PIN of encryption;
(2) ciphering and deciphering device receives the device authentication that first terminal equipment and second terminal equipment send respectively Request, what the first decryption key decryption first terminal equipment that master control safety chip prestores according to it sent adds Close PIN, the personal of the encryption sent using the second decryption key decryption second terminal equipment is known Other code, and be respectively compared PIN that first terminal equipment and second terminal equipment sends with its inside The PIN of storage whether all same, if so, then enter next step, if it is not, the then safe core of master control Piece sends authentication error and points out to the terminal device for differing;
First decruption key is that ciphering and deciphering device is arranged with first terminal equipment and first terminal sets The corresponding decruption key of the standby key for encrypting PIN;Second decruption key is filled for encryption and decryption The key for putting arrange with second terminal equipment and second terminal equipment encryption PIN is corresponding Decruption key;
(3) first terminal equipment sends to ciphering and deciphering device and for be-encrypted data to be safely stored into second terminal The instruction of equipment, master control safety chip according to the instruction of first terminal equipment, after be-encrypted data is encrypted It is sent to second terminal equipment;
The mode that encryption data is decrypted is included:
1) the first terminal equipment with USB interface is connected by USB interface with ciphering and deciphering device, is had The second terminal equipment of wireless communication module is connected by wireless communication module with ciphering and deciphering device, and first eventually End equipment and second terminal equipment send device authentication and ask to ciphering and deciphering device respectively;The device authentication Request includes the PIN of encryption;
2) ciphering and deciphering device receives first terminal equipment respectively and the device authentication of second terminal equipment transmission please Ask, the encryption that the first decryption key decryption first terminal equipment that master control safety chip prestores according to it sends PIN, the personal identification of the encryption sent using the second decryption key decryption second terminal equipment Code, and be respectively compared PIN that first terminal equipment and second terminal equipment sends with its inside deposit The PIN of storage whether all same, if so, then enter next step, if it is not, master control safety chip to The terminal device for differing sends authentication error prompting;
3) second terminal equipment is sent to first terminal and sets after being sent to ciphering and deciphering device and decrypting encryption data Standby instruction, master control safety chip sends according to the instruction of second terminal equipment after encryption data is decrypted To first terminal equipment.
CN201510971267.XA 2015-12-22 2015-12-22 Encryption and decryption device and method Expired - Fee Related CN106911476B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201510971267.XA CN106911476B (en) 2015-12-22 2015-12-22 Encryption and decryption device and method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201510971267.XA CN106911476B (en) 2015-12-22 2015-12-22 Encryption and decryption device and method

Publications (2)

Publication Number Publication Date
CN106911476A true CN106911476A (en) 2017-06-30
CN106911476B CN106911476B (en) 2020-01-17

Family

ID=59199813

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201510971267.XA Expired - Fee Related CN106911476B (en) 2015-12-22 2015-12-22 Encryption and decryption device and method

Country Status (1)

Country Link
CN (1) CN106911476B (en)

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108601008A (en) * 2018-05-04 2018-09-28 济南浪潮高新科技投资发展有限公司 It is a kind of based on encryption device of the quantum true random number with bluetooth
CN108696351A (en) * 2018-05-04 2018-10-23 济南浪潮高新科技投资发展有限公司 A kind of encryption device based on quantum true random number
CN108819486A (en) * 2018-05-11 2018-11-16 杭州旗捷科技有限公司 Consumable chip and its communication means, consumable chip and imaging device communication system, method
CN109743533A (en) * 2018-11-23 2019-05-10 浙江星月安防科技有限公司 Intelligent anti-theft door
CN110061894A (en) * 2019-03-29 2019-07-26 国民技术股份有限公司 A kind of appliance control method, system and household master control set
CN112260721A (en) * 2020-10-21 2021-01-22 深圳创维-Rgb电子有限公司 A-CAS communication circuit, control method and A-CAS communication device
CN113312648A (en) * 2021-06-23 2021-08-27 山西科潮科技有限公司 Communication module and communication method based on data encryption

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20090113093A1 (en) * 2007-10-29 2009-04-30 Mike Chen Mobile storage device
CN201601679U (en) * 2010-01-18 2010-10-06 北京天地融科技有限公司 Electronic signature tool supporting wireless communication
CN104063646A (en) * 2013-03-19 2014-09-24 优比泰克(北京)科技有限公司 Wireless USB key supporting mobile terminals
CN104182676A (en) * 2014-09-04 2014-12-03 北京邮电大学 Intelligent terminal data encryption method and device

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20090113093A1 (en) * 2007-10-29 2009-04-30 Mike Chen Mobile storage device
CN201601679U (en) * 2010-01-18 2010-10-06 北京天地融科技有限公司 Electronic signature tool supporting wireless communication
CN104063646A (en) * 2013-03-19 2014-09-24 优比泰克(北京)科技有限公司 Wireless USB key supporting mobile terminals
CN104182676A (en) * 2014-09-04 2014-12-03 北京邮电大学 Intelligent terminal data encryption method and device

Cited By (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108601008A (en) * 2018-05-04 2018-09-28 济南浪潮高新科技投资发展有限公司 It is a kind of based on encryption device of the quantum true random number with bluetooth
CN108696351A (en) * 2018-05-04 2018-10-23 济南浪潮高新科技投资发展有限公司 A kind of encryption device based on quantum true random number
CN108819486A (en) * 2018-05-11 2018-11-16 杭州旗捷科技有限公司 Consumable chip and its communication means, consumable chip and imaging device communication system, method
CN108819486B (en) * 2018-05-11 2019-06-21 杭州旗捷科技有限公司 Consumable chip and its communication means, consumable chip and imaging device communication system, method
CN109743533A (en) * 2018-11-23 2019-05-10 浙江星月安防科技有限公司 Intelligent anti-theft door
CN109743533B (en) * 2018-11-23 2021-07-23 浙江星月安防科技有限公司 Intelligent anti-theft door
CN110061894A (en) * 2019-03-29 2019-07-26 国民技术股份有限公司 A kind of appliance control method, system and household master control set
CN112260721A (en) * 2020-10-21 2021-01-22 深圳创维-Rgb电子有限公司 A-CAS communication circuit, control method and A-CAS communication device
CN112260721B (en) * 2020-10-21 2022-08-02 深圳创维-Rgb电子有限公司 A-CAS communication circuit, control method and A-CAS communication device
CN113312648A (en) * 2021-06-23 2021-08-27 山西科潮科技有限公司 Communication module and communication method based on data encryption
CN113312648B (en) * 2021-06-23 2023-10-31 国网黑龙江省电力有限公司绥化供电公司 Communication module and communication method based on data encryption

Also Published As

Publication number Publication date
CN106911476B (en) 2020-01-17

Similar Documents

Publication Publication Date Title
CN106911476A (en) A kind of ciphering and deciphering device and method
CN103826221B (en) Encryption communication method, related system and method based on bluetooth
CN105631298B (en) A kind of ciphering and deciphering device and method
CN104636777B (en) ID card information obtains system
CN110084054A (en) A kind of data privacy device, method, electronic equipment and storage medium
CN106611310B (en) Data processing method, wearable electronic device and system
CN103503366A (en) Managing data for authentication devices
CN110188564B (en) Mobile data storage terminal based on quantum key encryption
CN103488920B (en) A kind of wireless messages safety equipment realize method and system
CN102867157B (en) Mobile terminal and data guard method
CN103838988B (en) Information safety protecting method and device
CN101488111A (en) Identification authentication method and system
CN104504563A (en) Mobile information safety equipment and working method thereof
CN106909824A (en) A kind of ciphering and deciphering device and method
TW201603551A (en) Wireless power transfer with improved device identification and signaling link security
JP2000069568A (en) Method for revising cryptographic key in charging state
CN101661563B (en) Safe multi-interface certificate mobile inquiry system and method thereof
CN104867004A (en) Mobile payment system and mobile payment method thereof
KR20140017035A (en) Audio security storage system and method for managing certification using the same
CN202406118U (en) Intelligent cipher key and electronic transaction system
CN103281182B (en) Conversion equipment and display system
CN209803799U (en) Mobile data storage terminal based on quantum key encryption
CN109447221A (en) A kind of wearable intelligent U-shield
CN105654294A (en) Safety authentication method, apparatus and mobile terminal thereof
CN104732134B (en) Information safety devices and its authentication method with software protection function

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant
CF01 Termination of patent right due to non-payment of annual fee
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20200117

Termination date: 20211222