CN108600248A - A kind of communication security protection method and device - Google Patents

A kind of communication security protection method and device Download PDF

Info

Publication number
CN108600248A
CN108600248A CN201810419243.7A CN201810419243A CN108600248A CN 108600248 A CN108600248 A CN 108600248A CN 201810419243 A CN201810419243 A CN 201810419243A CN 108600248 A CN108600248 A CN 108600248A
Authority
CN
China
Prior art keywords
signal
rule
subsegment
processing
remote terminal
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201810419243.7A
Other languages
Chinese (zh)
Other versions
CN108600248B (en
Inventor
林冠强
张元彦
谢炜俊
王晓光
黄俊辉
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Guangdong Power Grid Co Ltd
Huizhou Power Supply Bureau of Guangdong Power Grid Co Ltd
Original Assignee
Guangdong Power Grid Co Ltd
Huizhou Power Supply Bureau of Guangdong Power Grid Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Guangdong Power Grid Co Ltd, Huizhou Power Supply Bureau of Guangdong Power Grid Co Ltd filed Critical Guangdong Power Grid Co Ltd
Priority to CN202110281576.XA priority Critical patent/CN112887336B/en
Priority to CN201810419243.7A priority patent/CN108600248B/en
Publication of CN108600248A publication Critical patent/CN108600248A/en
Application granted granted Critical
Publication of CN108600248B publication Critical patent/CN108600248B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0876Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/20Network architectures or network communication protocols for network security for managing network security; network security policies in general
    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y04INFORMATION OR COMMUNICATION TECHNOLOGIES HAVING AN IMPACT ON OTHER TECHNOLOGY AREAS
    • Y04SSYSTEMS INTEGRATING TECHNOLOGIES RELATED TO POWER NETWORK OPERATION, COMMUNICATION OR INFORMATION TECHNOLOGIES FOR IMPROVING THE ELECTRICAL POWER GENERATION, TRANSMISSION, DISTRIBUTION, MANAGEMENT OR USAGE, i.e. SMART GRIDS
    • Y04S40/00Systems for electrical power generation, transmission, distribution or end-user application management characterised by the use of communication or information technologies, or communication or information technology specific aspects supporting them
    • Y04S40/20Information technology specific aspects, e.g. CAD, simulation, modelling, system security

Abstract

The present invention provides a kind of communication security protection method and device, which includes:When carrying out serial communication with remote terminal, the serial ports analog signal of receiving modem transmission;Segment processing is carried out to serial ports analog signal according to pre-stored chopping rule, obtain include multiple subsegment signals a block signal, and carry out replacement Treatment according to the part subsegment signal in block signal of pre-stored replacement rule pair, obtain processing signal, and processing signal is handled into line disturbance according to pre-stored upset rule, obtain coded signal;Coded signal is sent to remote terminal.Communication security protection method provided by the invention can reinforce the safety of serial port communication data, and then improve communication security.

Description

A kind of communication security protection method and device
Technical field
The present invention relates to fields of communication technology, in particular to a kind of communication security protection method and device.
Background technology
With the high speed development of wireless communication technique, mobile broadband connection is ubiquitous, and the thing followed is the peace of base station Full property receives more threats, and power scheduling main station system telecommunication uses a variety of safety prevention measures, such as:For The electric power encryption device of dispatch data net is used for the public network encryption device of outer net, both in electric power networks digital signal Security protection.And for IEC101 serial ports analog signals, always be by it is bright it is logical in a manner of communicated, lack direct Encipherment protection measure to serial data.In practice, serial ports outgoi8ng data in base station is relevant with inside of base station relevant information, If utilized by crime of illegal collecting and supplying blood, there will be great security breaches, security risks are very big.
Invention content
In view of the above problems, the present invention provides a kind of communication security protection method and device, serial communication can be reinforced The safety of data, and then improve communication security.
To achieve the goals above, the present invention adopts the following technical scheme that:
First aspect present invention discloses a kind of communication security protection method, including:
When carrying out serial communication with remote terminal, the serial ports analog signal of receiving modem transmission;
The encryption rule stored in communication security protection device is obtained, the encryption rule includes chopping rule, displacement rule Then and upset regular;
Segment processing is carried out to the serial ports analog signal according to pre-stored chopping rule, obtains including multiple subsegments One block signal of signal, and according to pre-stored replacement rule to the part subsegment in one block signal Signal carries out replacement Treatment, obtains processing signal, and disturbed to the processing signal according to pre-stored upset rule Disorderly processing, obtains coded signal;
The coded signal is sent to the remote terminal.
As an alternative embodiment, in the first aspect, it is described according to pre-stored chopping rule to described Serial ports analog signal carry out segment processing, obtain include multiple subsegment signals a block signal, including:
Fast Fourier Transform (FFT) processing is carried out to the serial ports analog signal, obtains transformation signal;
The Fourier coefficient of the transformation signal is obtained, and according to the chopping rule and the Fourier coefficient to institute State transformation signal carry out segment processing, obtain include multiple subsegment signals a block signal.
As an alternative embodiment, in the first aspect, it is described according to pre-stored replacement rule to described The part subsegment signal in one block signal carries out replacement Treatment, obtains processing signal, including:
The signal energy for calculating each subsegment signal in one block signal obtains the letter of each subsegment signal Number energy;
Determine that all signal energies are less than the subsegment signal to be replaced of energy threshold in one block signal;
All subsegment signals to be replaced are subjected to replacement Treatment with signal is replaced, obtain processing signal.
As an alternative embodiment, in the first aspect, in the serial ports mould that the receiving modem is sent Before quasi- signal, the method further includes:
Judge whether to receive the access request of remote terminal, wherein the access request includes the remote terminal Terminal iidentification;
If receiving the access request of the remote terminal, judge whether the terminal iidentification is legal mark;
If the terminal iidentification is the legal mark, establishes and communicate to connect with the remote terminal.
As an alternative embodiment, in the first aspect, it is described to establish communication connection with the remote terminal Afterwards, and before the serial ports analog signal that the receiving modem is sent, the method further includes:
The terminal iidentification is added in grant column list, and generates and stores the encryption to match with the terminal iidentification and advise Then, the encryption rule includes the chopping rule, the replacement rule and upset rule;
The mark of the encryption rule is sent to the remote terminal, so that the remote terminal is advised according to the encryption Mark then transfers decryption rule corresponding with the encryption rule from the treaty rule table that the remote terminal stores.
Second aspect of the present invention discloses a kind of communication security protection device, including:
Receiving unit, for the serial ports simulation that when carrying out serial communication with remote terminal, receiving modem is sent Signal;
First processing units carry out segment processing to the serial ports analog signal according to pre-stored chopping rule, obtain To a block signal including multiple subsegment signals;
Second processing unit is used for according to pre-stored replacement rule to described in the part in one block signal Subsegment signal carries out replacement Treatment, obtains processing signal;
Third processing unit is obtained for being handled into line disturbance the processing signal according to pre-stored upset rule To coded signal;
Transmission unit, for the coded signal to be sent to the remote terminal.
As an alternative embodiment, in the first aspect, the first processing units include:
First subelement obtains transformation signal for carrying out Fast Fourier Transform (FFT) processing to the serial ports analog signal;
Second subelement, the Fourier coefficient for obtaining the transformation signal, and according to the chopping rule and institute State Fourier coefficient to the transformation signal carry out segment processing, obtain include multiple subsegment signals a block signal.
As an alternative embodiment, in the first aspect, the second processing unit includes:
Third subelement, the signal energy for calculating each subsegment signal in one block signal obtain described The signal energy of each subsegment signal;And determine that all signal energies are waited for less than energy threshold in one block signal Replace subsegment signal;
4th subelement is obtained for all subsegment signals to be replaced to be carried out replacement Treatment with signal is replaced Handle signal.
The third aspect, the present invention provides a kind of mobile terminal, including memory and processor, the memory is used for Computer program is stored, the processor runs the computer program so that disclosed in the mobile terminal execution first aspect The some or all of communication security protection method.
Fourth aspect is stored with institute in above-mentioned mobile terminal the present invention provides a kind of computer readable storage medium The computer program used.
According to communication security protection method and device provided by the invention, when carrying out serial communication with remote terminal, when When communication security protection device receives the serial ports analog signal of modem transmission, first according to pre-stored chopping rule To serial ports analog signal carry out segment processing, obtain include multiple subsegment signals a block signal;Further, communication peace Full protection device carries out replacement Treatment according still further to pre-stored replacement rule to the part subsegment signal in block signal, obtains Signal is handled, while the processing signal is handled into line disturbance according still further to pre-stored upset rule, obtains coded signal;Most Coded signal is sent to remote terminal by communication security protection device afterwards.As it can be seen that implementing technical scheme of the present invention can pass through Serial ports analog signal is encrypted, to reinforce the safety of serial port communication data, avoids the potential safety danger of plaintext communication Danger, and then improve communication security.
To enable the above objects, features and advantages of the present invention to be clearer and more comprehensible, preferred embodiment cited below particularly, and coordinate Appended attached drawing, is described in detail below.
Description of the drawings
In order to illustrate the technical solution of the embodiments of the present invention more clearly, below will be to needed in the embodiment attached Figure is briefly described, it should be understood that the following drawings illustrates only certain embodiments of the present invention, therefore is not construed as pair The restriction of the scope of the invention.
Fig. 1 is serial communication system structural schematic diagram provided by the invention;
Fig. 2 is the flow diagram for the communication security protection method that the embodiment of the present invention one provides;
Fig. 3 is the flow diagram of communication security protection method provided by Embodiment 2 of the present invention;
Fig. 4 is the structural schematic diagram for the communication security protection device that the embodiment of the present invention three provides;
Fig. 5 is the structural schematic diagram for the communication security protection device that the embodiment of the present invention four provides.
Specific implementation mode
Below in conjunction with attached drawing in the embodiment of the present invention, technical solution in the embodiment of the present invention carries out clear, complete Ground describes, it is clear that described embodiments are only a part of the embodiments of the present invention, instead of all the embodiments.Usually exist The component of the embodiment of the present invention described and illustrated in attached drawing can be arranged and be designed with a variety of different configurations herein.Cause This, the detailed description of the embodiment of the present invention to providing in the accompanying drawings is not intended to limit claimed invention below Range, but it is merely representative of the selected embodiment of the present invention.Based on the embodiment of the present invention, those skilled in the art are not doing The every other embodiment obtained under the premise of going out creative work, shall fall within the protection scope of the present invention.
For the problems of the prior art, the present invention provides a kind of communication security protection method and devices;With it is long-range When terminal carries out serial communication, when communication security protection device receives the serial ports analog signal of modem transmission, first Segment processing is carried out to serial ports analog signal according to pre-stored chopping rule, obtains including one point of multiple subsegment signals Segment signal;Further, communication security protection device is sub to the part in block signal according still further to pre-stored replacement rule Segment signal carries out replacement Treatment, obtains processing signal, while according still further to rule is upset to the processing signal into line disturbance processing, obtaining To coded signal;Coded signal is sent to remote terminal by last communication security protection device.As it can be seen that implementing the technology of the present invention Scheme, to reinforce the safety of serial port communication data, can avoid plaintext communication by the way that serial ports analog signal is encrypted Potential danger, and then improve communication security.Also, relevant software or hardware realization may be used in the technology, under Face is described by embodiment.
Embodiment 1
Referring to Fig. 2, Fig. 2 is the flow diagram for the communication security protection method that the embodiment of the present invention one provides.Such as Fig. 2 Shown, which can be with following steps:
S101, with remote terminal carry out serial communication when, receiving modem send serial ports analog signal.
In the present embodiment, serial communication refers to by data signal line, ground wire or control line etc., and step-by-step carries out data biography A kind of defeated communication mode.In telecommunication, communications cost can be saved by the way of serial communication.
In the present embodiment, which is transmitting terminal modem, can carry out signal modulation to digital signal Processing, analog signal is converted to by the digital signal.
As an alternative embodiment, when the modem is receiving terminal modem, this can be received The decryption analog signal that communication security protection device is sent, and signal demodulation process can be carried out to the decryption analog signal, it will The decryption analog signal is converted to decryption digital signal.
In the embodiment of the present invention, which includes memory and processor.Wherein, which uses In storage computer program, processor runs the computer program so that the communication security protection device executes the present embodiment and retouched The some or all of communication security protection method stated.
Referring to Fig. 1, Fig. 1 is serial communication system structural schematic diagram provided by the invention.As shown in Figure 1, the serial ports is logical Letter system includes modem 401, communication security protection device 402 and remote terminal 403.Wherein, modem 401 Serial ports analog signal is sent to communication security protection device 402, communication security protection device 402 can be to the serial ports analog signal It is encrypted, obtains coded signal, then the coded signal can be sent to remote terminal by the communication security protection device 402 403。
As further alternative embodiment, when carrying out serial communication with remote terminal, communication security protection device When receiving the encryption analog signal of remote terminal transmission, it can also include the following steps:
The terminal iidentification of the remote terminal is obtained, and obtains the decryption rule to match with the terminal iidentification;
The encryption analog signal is decrypted according to the decryption rule, obtains decryption analog signal;
The decryption analog signal is sent to the modem.
In the present embodiment, modem can be telecommunication modem or optic communication modem, specifically Can be amplitude-modulating modulation demodulator, FM demodulator, phase modulation modem and orthogonal modulation modem etc., this hair Bright embodiment is not construed as limiting.
In the embodiment of the present invention, encryption rule is stored in communication security protection device.The encryption rule includes that segmentation is advised Then, replacement rule and upset rule.
In the embodiment of the present invention, to improve the communications security of serial communication, which can store More set encryption rules, it includes different chopping rules, different replacement rules and different upsets rule often to cover encryption rule Then.Can be according to different situations, the encryption series etc. as entrained by different call duration times, different serial ports analog signals, From determine a set of suitable encryption rule in the encryption rule of set more than storage volume, the serial ports analog signal received is added Close processing.
As an alternative embodiment, the communication security protection method can also include the following steps:
Obtain the device identification for the mobile device for receiving the serial ports analog signal;
Using the encryption rule table of comparisons that prestores as foundation, the mark of encryption rule corresponding with the device identification is determined, it should The encryption rule table of comparisons that prestores includes the mark of the device identification and encryption rule corresponding with the device identification;
The encryption rule is obtained from the rule base to prestore according to the mark of the encryption rule, and executes step S102.
S102, segment processing is carried out to serial ports analog signal according to pre-stored chopping rule, obtains including multiple sons One block signal of segment signal, and according to the part subsegment signal in block signal of pre-stored replacement rule pair into Line replacement processing obtains processing signal, and is handled into line disturbance processing signal according to pre-stored upset rule, obtains Coded signal.
As an alternative embodiment, being carried out at segmentation to serial ports analog signal according to pre-stored chopping rule Reason, obtain include multiple subsegment signals a block signal, may comprise steps of:
Serial ports analog signal is subjected to Fourier transformation processing, obtains frequency-region signal;
The Fourier coefficient of the frequency-region signal is obtained, and determines the total number of the Fourier coefficient;
To the frequency-region signal carry out segment processing, obtain include multiple subsegment signals a block signal, wherein each The number of the Fourier coefficient of subsegment signal is five.
In the above-described embodiments, the number of the Fourier coefficient of each subsegment signal is five, in fact, being by the frequency Domain signal is divided into including multiple subband spectrums, wherein the number of the Fourier coefficient of each subband spectrum is five.
In the above-described embodiments, for example, when it is 80 to determine the total number of the Fourier coefficient, can incite somebody to action The frequency-region signal is divided into 17 subband spectrums, and the Fourier coefficient of 17 subband spectrums is five.
In the embodiment of the present invention, the chopping rule that encryption rule includes can be:It first treats coded signal and carries out Fourier Conversion process obtains spectrum signal corresponding with the signal to be encrypted;Then the Fourier coefficient of the spectrum signal is obtained, and really The total number of the fixed Fourier coefficient;Segment processing is finally carried out to the spectrum signal according to predetermined coefficient number, including The block signal of multiple subsegment signals, wherein the number of the Fourier coefficient of each subsegment signal is the predetermined coefficient number. Predetermined coefficient number included by the chopping rule can be 2,3,4 etc., and the embodiment of the present invention is not construed as limiting.
In the embodiment of the present invention, the chopping rule that encryption rule includes can be:It first calculates every in a block signal The signal energy of a sub- segment signal obtains the signal energy of each subsegment signal;Then determination is believed from a block signal Number energy is less than all subsegment signals of energy threshold, as signal to be replaced;Further, all signals to be replaced are used Default signal of replacing carries out replacement Treatment, obtains processing signal.For example, when the above-mentioned frequency-region signal is divided into 17 After subband spectrum, calculate have in 17 subband spectrums ten subband spectrums signal energy be less than energy threshold when, It can be default replacement signal by ten subband spectrum faithful permutations of this in block signal, obtain processing signal, processing letter Number including that seven subband spectrum signals and ten are default replaces signals.
As an alternative embodiment, the upset rule that encryption rule includes can be:Include according to processing signal Subsegment signal and the default sequencing for replacing signal, subsegment signal and default signal of replacing are put on into serial number one by one;By sequence It number extracts and is arranged again by serial number is descending for the signal segment of odd number, obtain singular signal block, meanwhile, by sequence It number extracts and is arranged again by serial number is ascending for the signal segment of even numbers, obtain even numbers signal block;Further, The odd number signal block is inserted into the section tail of even numbers signal block, merges into coded signal, the wherein section of even numbers signal block Tail is one end where the maximum signal segment of serial number.
In the above-described embodiments, for example, when obtaining, to include that seven subband spectrum signals and ten are default replace signals Handle signal processing signal after, according to processing signal in each signal segment sequencing, by 17 signal segments by One puts on serial number:No. 1, No. 2, No. 3, No. 4, No. 5, No. 6, No. 7, No. 8, No. 9, No. 10, No. 11, No. 12, No. 13, No. 14,15 Number, No. 16, No. 17;Then by the signal segment of serial number odd number extract it is descending arrange, it is total to obtain singular signal Section, the serial number of signal segment is arranged as in the odd number signal block:No. 15, No. 13, No. 11, No. 9, No. 7, No. 5, No. 3, No. 1;Together When, the signal segment of serial number even numbers is extracted and is arranged again by serial number is ascending, even numbers signal block is obtained, it should The serial number of signal segment is arranged as in even numbers signal block:No. 2, No. 4, No. 6, No. 8, No. 10, No. 12, No. 14, No. 16;Further The odd number signal block will be inserted into the section tail of even numbers signal block, merges into coded signal by ground.It can be seen that serial number One end where No. 16 signal segments is the section tail of the even numbers signal block, then to coded signal in signal segment serial number row It is classified as:No. 2, No. 4, No. 6, No. 8, No. 10, No. 12, No. 14, No. 16, No. 15, No. 13, No. 11, No. 9, No. 7, No. 5, No. 3, No. 1.
In the embodiment of the present invention, the serial ports analog signal is encrypted by above-mentioned encryption rule, obtains coded signal, Cipher round results are good, while in decrypting process, to the decryption signal that coded signal is decrypted, with former serial ports analog signal phase Than reducing degree is high, is conducive to promote communications security and communication quality.
S103, coded signal is sent to remote terminal.
As it can be seen that implement Fig. 2 described in communication security protection method, can by the way that serial ports analog signal is encrypted, To reinforce the safety of serial port communication data, the potential danger of plaintext communication is avoided, and then improves communication security.
Embodiment 2
Referring to Fig. 3, Fig. 3 is the flow diagram of communication security protection method provided by Embodiment 2 of the present invention.Such as Fig. 3 Shown, which may comprise steps of:
S201, judge whether to receive the access request of remote terminal, if received, execute step S202;If not It receives, executes step S201 and continue to determine whether to receive the access request of remote terminal.
In the present embodiment, access request includes the terminal iidentification of remote terminal.
S202, judge whether terminal iidentification is legal mark, if so, executing step S203~step S212;If not, Terminate this flow.
The legal home banking as an alternative embodiment, the communication security protection device prestores.Judging the terminal Identify whether for legal mark when, as long as the terminal iidentification of the remote terminal is not found in the legal home banking, it is determined that should Terminal iidentification is not legal mark, i.e., the remote terminal is not legal terminal.
S203, communication connection is established with remote terminal.
S204, terminal iidentification is added in grant column list, generates and stores the encryption rule to match with terminal iidentification.
In the embodiment of the present invention, which includes chopping rule, replacement rule and upsets regular.The communication security Protective device can carry out legal verification to the remote terminal accessed for the first time, and can carry out communication to legal remote terminal and award Power will not authorize its access communications, and then safeguard communication environment if being not legal remote terminal, ensure communication Safety.
S205, the mark of encryption rule is sent to remote terminal so that remote terminal according to the mark of encryption rule from Decryption rule corresponding with encryption rule is transferred in the treaty rule table of remote terminal storage.
In the present embodiment, for the remote terminal accessed for the first time, communication security protection device needs access for the first time with this Interconnection configuration is encrypted in remote terminal, which is judging that the terminal iidentification is the same of legal mark When, additionally it is possible to security classification corresponding with the terminal iidentification is obtained from the legal home banking, then, communication security protection dress The encryption rule to match with the remote terminal can be generated according to the security classification by setting, and above-mentioned legal home banking includes terminal Legal mark and security classification corresponding with the legal mark.
S206, with remote terminal carry out serial communication when, receiving modem send serial ports analog signal.
S207, Fast Fourier Transform (FFT) processing is carried out to serial ports analog signal, obtains transformation signal.
S208, the Fourier coefficient for obtaining transformation signal, and according to chopping rule and Fourier coefficient to converting signal Segment processing is carried out, obtains including one block signal of multiple subsegment signals.
In the embodiment of the present invention, implement above-mentioned steps S207~step S208, it can be according to pre-stored chopping rule To serial ports analog signal carry out segment processing, obtain include multiple subsegment signals a block signal.
S209, the signal energy for calculating each subsegment signal in a block signal, obtain the signal of each subsegment signal Energy.
S210, determine that all signal energies are less than the subsegment signal to be replaced of energy threshold in a block signal;And it will All subsegment signals to be replaced carry out replacement Treatment with signal is replaced, and obtain processing signal.
In the embodiment of the present invention, implement above-mentioned steps S209~step S210, it can be according to pre-stored replacement rule Replacement Treatment is carried out to the part subsegment signal in a block signal, obtains processing signal.
S211, processing signal is handled according to pre-stored upset rule into line disturbance, obtains coded signal.
As an alternative embodiment, processing signal is handled into line disturbance according to pre-stored upset rule, Coded signal is obtained, may comprise steps of:
The subsegment signal and the default sequencing for replacing signal for including according to processing signal replace subsegment signal with default It changes signal and puts on serial number one by one;
The signal segment of serial number odd number is extracted and is arranged again by serial number is descending, it is total to obtain singular signal Section;
The signal segment of serial number even numbers is extracted and is arranged again by serial number is ascending, it is total to obtain even numbers signal Section;
The odd number signal block is inserted into the paragraph header of even numbers signal block, merges into coded signal, wherein even numbers signal The paragraph header of block is one end where the signal segment of serial number minimum.
S212, coded signal is sent to remote terminal.
As it can be seen that communication security protection method described in implementing Fig. 3, can by the way that serial ports analog signal is encrypted, To reinforce the safety of serial port communication data, the potential danger of plaintext communication is avoided, and then improves communication security.
Embodiment 3
Referring to Fig. 4, Fig. 4 is the structural schematic diagram for the communication security protection device that the embodiment of the present invention three provides.Such as Fig. 4 Shown, which includes:
Receiving unit 301, for the serial ports mould that when carrying out serial communication with remote terminal, receiving modem is sent Quasi- signal.
In the embodiment of the present invention, receiving unit 301 is after the serial ports analog signal for receiving modem transmission, also First processing units 302 can be triggered, segment processing is carried out to serial ports analog signal according to pre-stored chopping rule, be wrapped Include a block signal of multiple subsegment signals.
First processing units 302, for carrying out segment processing to serial ports analog signal according to pre-stored chopping rule, Obtain include multiple subsegment signals a block signal.
Second processing unit 303, for according to the part subsegment in block signal of pre-stored replacement rule pair Signal carries out replacement Treatment, obtains processing signal.
Third processing unit 304, for according to rule is upset to processing signal into line disturbance processing, obtaining coded signal.
Transmission unit 305, for coded signal to be sent to remote terminal.
In the embodiment of the present invention, which can be smart mobile phone (such as Android phone, iOS mobile phones), tablet The intelligent remotes such as computer, palm PC and mobile internet device (Mobile Internet Devices, MID), PC are whole End, the embodiment of the present invention are not construed as limiting.Wherein, the operating system of all kinds of remote terminals may include but be not limited to Android operations System, IOS operating system, Symbian (Saipan) operating system, Black Berry (blackberry, blueberry) operating system, Windows Phone8 operating systems etc., the embodiment of the present invention does not limit.
As it can be seen that implement Fig. 4 described in communication security protection device, can by the way that serial ports analog signal is encrypted, To reinforce the safety of serial port communication data, the potential danger of plaintext communication is avoided, and then improves communication security.
Embodiment 4
Referring to Fig. 5, Fig. 5 is the structural schematic diagram for the communication security protection device that the embodiment of the present invention three provides.Wherein, Communication security protection device shown in fig. 5 is that communication security protection device as shown in Figure 4 optimizes.Such as Fig. 5 institutes Show, first processing units 302 include:
First subelement 3021 obtains transformation signal for carrying out Fast Fourier Transform (FFT) processing to serial ports analog signal.
Second subelement 3022, the Fourier coefficient for obtaining transformation signal, and according to chopping rule and Fourier Coefficient carries out segment processing to transformation signal, obtains including one block signal of multiple subsegment signals.
In the embodiment of the present invention, second processing unit 303 includes:
Third subelement 3031, the signal energy for calculating each subsegment signal in a block signal, obtains each The signal energy of subsegment signal;And determine that all signal energies are less than the subsegment to be replaced of energy threshold in a block signal Signal.
4th subelement 3032 is obtained for all subsegment signals to be replaced to be carried out replacement Treatment with signal is replaced Handle signal;Wherein, replacement rule includes energy threshold and replacement signal.
As an alternative embodiment, the communication security protection device further includes:
First judging unit 306 connects before the serial ports analog signal that receiving modem is sent for judging whether The access request of remote terminal is received, which includes the terminal iidentification of remote terminal.
Second judgment unit 307 judges end after judging to receive access request in the first judging unit 306 End identifies whether as legal mark.
Connection establishment unit 308, for second judgment unit 307 judge the terminal iidentification be legal mark when, with Remote terminal establishes communication connection.
As further alternative embodiment, which further includes:
Generation unit 309 is encrypted, after establishing communication connection with remote terminal, and sent in receiving modem Before serial ports analog signal, for will terminal iidentification be added grant column list in, generate and store with terminal iidentification match plus Close rule;The encryption rule includes chopping rule, replacement rule and upsets regular.
In the present embodiment, connection establishment unit 308 can also trigger encryption after establishing communication connection with remote terminal Terminal iidentification is added in grant column list generation unit 309, and generates the encryption rule to match with terminal iidentification.
Transmission unit 305 is additionally operable to the mark of encryption rule being sent to remote terminal, so that remote terminal is according to encryption The mark of rule transfers decryption rule corresponding with encryption rule from the treaty rule table that remote terminal stores.
As it can be seen that implement Fig. 5 described in communication security protection device, can by the way that serial ports analog signal is encrypted, To reinforce the safety of serial port communication data, the potential danger of plaintext communication is avoided, and then improves communication security.
In addition, the present invention also provides a kind of mobile terminals.The mobile terminal includes memory and processor, and memory can For storing computer program, processor by running the computer program, to make the mobile terminal execution above method or The function of each unit in the above-mentioned communication security protection device of person.
Memory may include storing program area and storage data field, wherein storing program area can storage program area, at least Application program (such as sound-playing function, image player function etc.) needed for one function etc.;Storage data field can store root Created data (such as audio data, phone directory etc.) etc. are used according to mobile terminal.In addition, memory may include high speed Random access memory, can also include nonvolatile memory, a for example, at least disk memory, flush memory device or Other volatile solid-state parts.
The present embodiment additionally provides a kind of computer storage media, for storing the computer used in above-mentioned mobile terminal Program.
In several embodiments provided herein, it should be understood that disclosed device and method can also pass through Other modes are realized.The apparatus embodiments described above are merely exemplary, for example, the flow chart in attached drawing and structure Figure show the device of multiple embodiments according to the present invention, method and computer program product system frame in the cards Structure, function and operation.In this regard, each box in flowchart or block diagram can represent a module, section or code A part, the part of the module, section or code includes one or more for implementing the specified logical function Executable instruction.It should also be noted that in the realization method as replacement, the function of being marked in box can also be to be different from The sequence marked in attached drawing occurs.For example, two continuous boxes can essentially be basically executed in parallel, they are sometimes It can execute in the opposite order, this is depended on the functions involved.It is also noted that in structure chart and/or flow chart The combination of each box and the box in structure chart and/or flow chart can use the special of function or action as defined in executing Hardware based system realize, or can realize using a combination of dedicated hardware and computer instructions.
In addition, each function module or unit in each embodiment of the present invention can integrate and to form an independence Part, can also be modules individualism, can also two or more modules be integrated to form an independent part.
It, can be with if the function is realized and when sold or used as an independent product in the form of software function module It is stored in a computer read/write memory medium.Based on this understanding, technical scheme of the present invention is substantially in other words The part of the part that contributes to existing technology or the technical solution can be expressed in the form of software products, the meter Calculation machine software product is stored in a storage medium, including some instructions are used so that a computer equipment (can be intelligence Can mobile phone, personal computer, server or network equipment etc.) execute each embodiment the method for the present invention whole or Part steps.And storage medium above-mentioned includes:USB flash disk, mobile hard disk, read-only memory (ROM, Read-Only Memory), Random access memory (RAM, Random Access Memory), magnetic disc or CD etc. are various can to store program code Medium.
The above description is merely a specific embodiment, but scope of protection of the present invention is not limited thereto, any Those familiar with the art in the technical scope disclosed by the present invention, can easily think of the change or the replacement, and should all contain Lid is within protection scope of the present invention.Therefore, the protection scope of the present invention shall be subject to the protection scope of the claims.

Claims (10)

1. a kind of communication security protection method, which is characterized in that including:
When carrying out serial communication with remote terminal, the serial ports analog signal of receiving modem transmission;
Segment processing is carried out to the serial ports analog signal according to pre-stored chopping rule, obtains including multiple subsegment signals A block signal, and according to pre-stored replacement rule to the part subsegment signal in one block signal Carry out replacement Treatment, obtain processing signal, and according to pre-stored upsets it is regular to the processing signal at line disturbance Reason, obtains coded signal;
The coded signal is sent to the remote terminal.
2. communication security protection method according to claim 1, which is characterized in that described to be advised according to pre-stored segmentation Then to the serial ports analog signal carry out segment processing, obtain include multiple subsegment signals a block signal, including:
Fast Fourier Transform (FFT) processing is carried out to the serial ports analog signal, obtains transformation signal;
The Fourier coefficient of the transformation signal is obtained, and according to the chopping rule and the Fourier coefficient to the change Change signal carry out segment processing, obtain include multiple subsegment signals a block signal.
3. communication security protection method according to claim 1, which is characterized in that described to be advised according to pre-stored displacement Replacement Treatment then is carried out to the part subsegment signal in one block signal, obtains processing signal, including:
The signal energy for calculating each subsegment signal in one block signal obtains the signal energy of each subsegment signal Amount;
Determine that all signal energies are less than the subsegment signal to be replaced of energy threshold in one block signal;
All subsegment signals to be replaced are subjected to replacement Treatment with signal is replaced, obtain processing signal.
4. communication security protection method according to claim 1, which is characterized in that sent in the receiving modem Serial ports analog signal before, the method further includes:
Judge whether to receive the access request of remote terminal, wherein the access request includes the terminal of the remote terminal Mark;
If receiving the access request of the remote terminal, judge whether the terminal iidentification is legal mark;
If the terminal iidentification is the legal mark, establishes and communicate to connect with the remote terminal.
5. communication security protection method according to claim 4, which is characterized in that described established with the remote terminal is led to After letter connection, and before the serial ports analog signal that the receiving modem is sent, the method further includes:
The terminal iidentification is added in grant column list, the encryption rule to match with the terminal iidentification, institute are generated and store It includes the chopping rule, the replacement rule and upset rule to state encryption rule;
The mark of the encryption rule is sent to the remote terminal, so that the remote terminal is according to the encryption rule Mark transfers decryption rule corresponding with the encryption rule from the treaty rule table that the remote terminal stores.
6. a kind of communication security protection device, which is characterized in that including:
Receiving unit, for the serial ports analog signal that when carrying out serial communication with remote terminal, receiving modem is sent;
First processing units are obtained for carrying out segment processing to the serial ports analog signal according to pre-stored chopping rule To a block signal including multiple subsegment signals;
Second processing unit is used for according to pre-stored replacement rule to the part subsegment in one block signal Signal carries out replacement Treatment, obtains processing signal;
Third processing unit is added for being handled into line disturbance the processing signal according to pre-stored upset rule Secret letter number;
Transmission unit, for the coded signal to be sent to the remote terminal.
7. communication security protection device according to claim 6, which is characterized in that the first processing units include:
First subelement obtains transformation signal for carrying out Fast Fourier Transform (FFT) processing to the serial ports analog signal;
Second subelement, the Fourier coefficient for obtaining the transformation signal, and according to the chopping rule and Fu In leaf system number to the transformation signal carry out segment processing, obtain include multiple subsegment signals a block signal.
8. communication security protection device according to claim 6, which is characterized in that the second processing unit includes:
Third subelement, the signal energy for calculating each subsegment signal in one block signal obtain described each The signal energy of subsegment signal;And determine that all signal energies are to be replaced less than energy threshold in one block signal Subsegment signal;
4th subelement is handled for all subsegment signals to be replaced to be carried out replacement Treatment with signal is replaced Signal.
9. a kind of mobile terminal, which is characterized in that including memory and processor, the memory is for storing computer journey Sequence, the processor runs the computer program so that the mobile terminal execution is according to any one of claim 1 to 5 institute The communication security protection method stated.
10. a kind of computer readable storage medium, which is characterized in that it is stored with institute in the mobile terminal described in claim 9 The computer program used.
CN201810419243.7A 2018-05-04 2018-05-04 Communication safety protection method and device Active CN108600248B (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN202110281576.XA CN112887336B (en) 2018-05-04 2018-05-04 Communication safety protection method and device
CN201810419243.7A CN108600248B (en) 2018-05-04 2018-05-04 Communication safety protection method and device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201810419243.7A CN108600248B (en) 2018-05-04 2018-05-04 Communication safety protection method and device

Related Child Applications (1)

Application Number Title Priority Date Filing Date
CN202110281576.XA Division CN112887336B (en) 2018-05-04 2018-05-04 Communication safety protection method and device

Publications (2)

Publication Number Publication Date
CN108600248A true CN108600248A (en) 2018-09-28
CN108600248B CN108600248B (en) 2021-04-13

Family

ID=63620794

Family Applications (2)

Application Number Title Priority Date Filing Date
CN202110281576.XA Active CN112887336B (en) 2018-05-04 2018-05-04 Communication safety protection method and device
CN201810419243.7A Active CN108600248B (en) 2018-05-04 2018-05-04 Communication safety protection method and device

Family Applications Before (1)

Application Number Title Priority Date Filing Date
CN202110281576.XA Active CN112887336B (en) 2018-05-04 2018-05-04 Communication safety protection method and device

Country Status (1)

Country Link
CN (2) CN112887336B (en)

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO1998051067A1 (en) * 1997-05-09 1998-11-12 Epigram, Inc. Method and apparatus for reducing signal processing requirements for transmitting packet-based data with a modem
CN101136201A (en) * 2006-08-11 2008-03-05 美国博通公司 System and method for perform replacement to considered loss part of audio signal
CN102624518A (en) * 2012-03-05 2012-08-01 华中科技大学 Voice encryption and decryption method
CN104378198A (en) * 2014-10-16 2015-02-25 南京中科龙脉物联网技术有限公司 Voice encryption method based on block cipher system
CN104393958A (en) * 2014-11-28 2015-03-04 成都航天通信设备有限责任公司 Data frame transmitting method and receiving method based on pipelining

Family Cites Families (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
FR2804813B1 (en) * 2000-02-03 2002-09-06 Cit Alcatel ENCODING METHOD FOR FACILITATING THE SOUND RESTITUTION OF DIGITAL SPOKEN SIGNALS TRANSMITTED TO A SUBSCRIBER TERMINAL DURING TELEPHONE COMMUNICATION BY PACKET TRANSMISSION AND EQUIPMENT USING THE SAME
EP1887729A3 (en) * 2006-03-21 2011-07-13 Irdeto Access B.V. Method of providing an encrypted data stream
CN101242453B (en) * 2007-02-08 2011-07-27 联想(北京)有限公司 A transmission method and system for dual-audio multi-frequency signal
CN101388688B (en) * 2008-11-05 2012-09-05 北京理工大学 Frequency scanning interference suspending method for direct sequence spread spectrum communication system
CN104967582B (en) * 2015-07-22 2018-02-27 浙江大学 Channel estimation methods based on odd-even alternation pilot frequency sequence in NAVDAT
CN105050082B (en) * 2015-09-11 2019-10-25 成都汇研科技有限公司 Voice communication method and device
CN106254327A (en) * 2016-07-28 2016-12-21 努比亚技术有限公司 Information processor and method
CN106101147B (en) * 2016-08-12 2019-04-23 北京同余科技有限公司 A kind of method and system for realizing smart machine and the communication of remote terminal dynamic encryption
CN106412024B (en) * 2016-09-07 2019-10-15 网易无尾熊(杭州)科技有限公司 A kind of page acquisition methods and device
CN107172108A (en) * 2017-07-26 2017-09-15 成都三零盛安信息系统有限公司 Data encryption, decryption method, data encryption, decryption device and communication system
CN107579961B (en) * 2017-08-23 2020-05-08 电子科技大学 Information secret transmission method of access network

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO1998051067A1 (en) * 1997-05-09 1998-11-12 Epigram, Inc. Method and apparatus for reducing signal processing requirements for transmitting packet-based data with a modem
CN101136201A (en) * 2006-08-11 2008-03-05 美国博通公司 System and method for perform replacement to considered loss part of audio signal
CN102624518A (en) * 2012-03-05 2012-08-01 华中科技大学 Voice encryption and decryption method
CN104378198A (en) * 2014-10-16 2015-02-25 南京中科龙脉物联网技术有限公司 Voice encryption method based on block cipher system
CN104393958A (en) * 2014-11-28 2015-03-04 成都航天通信设备有限责任公司 Data frame transmitting method and receiving method based on pipelining

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
金堃: "移动通信网中的端到端语音加密技术研究", 《中国优秀硕士学位论文全文数据库(电子期刊)》 *

Also Published As

Publication number Publication date
CN108600248B (en) 2021-04-13
CN112887336A (en) 2021-06-01
CN112887336B (en) 2023-05-05

Similar Documents

Publication Publication Date Title
CN104283853B (en) A kind of method, terminal device and network equipment for improving Information Security
EP3257194A1 (en) Systems and methods for securely managing biometric data
CN110266682B (en) Data encryption method and device, mobile terminal and decryption method
CN104468937A (en) Data encryption and decryption methods and devices for mobile terminal and protection system
CN105488875B (en) A kind of gate inhibition's verification method and device
CN107786331A (en) Data processing method, device, system and computer-readable recording medium
US9065635B2 (en) Information processing apparatus, IC chip, and information processing method
CN108647262A (en) A kind of picture management method, device, computer equipment and storage medium
CN104144174B (en) Protect method, user equipment and the server of privacy of user data
CN107395603A (en) The encryption and decryption method of control instruction transmission, terminal device/server
CN105808998A (en) Fingerprint identification device
CN109068284A (en) The physical layer authentication method and system connected based on group between internet of things equipment
CN110266653B (en) Authentication method, system and terminal equipment
CN105306200B (en) The encryption method and device of network account password
CN107196973A (en) A kind of data encryption, decryption method and device
CN105022965B (en) A kind of data ciphering method and device
CN106022158A (en) A takeout management system for file datas
CN106161036B (en) A kind of mobile station (MS) state transition method and system of credit
Yadav et al. Analysis of ICMetrics features/technology for wearable devices IOT sensors
CN116471120A (en) Data encryption method and related device for secondary security system of power grid
CN107527084A (en) Electronic card processing method and processing device
CN104053152B (en) A kind of identification and method for distributing key towards body area network
CN108600248A (en) A kind of communication security protection method and device
CN108337233B (en) Method for encrypting content information, electronic equipment and storage medium
CN107995616A (en) The processing method and device of user behavior data

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant