CN108600248A - A kind of communication security protection method and device - Google Patents
A kind of communication security protection method and device Download PDFInfo
- Publication number
- CN108600248A CN108600248A CN201810419243.7A CN201810419243A CN108600248A CN 108600248 A CN108600248 A CN 108600248A CN 201810419243 A CN201810419243 A CN 201810419243A CN 108600248 A CN108600248 A CN 108600248A
- Authority
- CN
- China
- Prior art keywords
- signal
- rule
- subsegment
- processing
- remote terminal
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0876—Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/20—Network architectures or network communication protocols for network security for managing network security; network security policies in general
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y04—INFORMATION OR COMMUNICATION TECHNOLOGIES HAVING AN IMPACT ON OTHER TECHNOLOGY AREAS
- Y04S—SYSTEMS INTEGRATING TECHNOLOGIES RELATED TO POWER NETWORK OPERATION, COMMUNICATION OR INFORMATION TECHNOLOGIES FOR IMPROVING THE ELECTRICAL POWER GENERATION, TRANSMISSION, DISTRIBUTION, MANAGEMENT OR USAGE, i.e. SMART GRIDS
- Y04S40/00—Systems for electrical power generation, transmission, distribution or end-user application management characterised by the use of communication or information technologies, or communication or information technology specific aspects supporting them
- Y04S40/20—Information technology specific aspects, e.g. CAD, simulation, modelling, system security
Abstract
The present invention provides a kind of communication security protection method and device, which includes:When carrying out serial communication with remote terminal, the serial ports analog signal of receiving modem transmission;Segment processing is carried out to serial ports analog signal according to pre-stored chopping rule, obtain include multiple subsegment signals a block signal, and carry out replacement Treatment according to the part subsegment signal in block signal of pre-stored replacement rule pair, obtain processing signal, and processing signal is handled into line disturbance according to pre-stored upset rule, obtain coded signal;Coded signal is sent to remote terminal.Communication security protection method provided by the invention can reinforce the safety of serial port communication data, and then improve communication security.
Description
Technical field
The present invention relates to fields of communication technology, in particular to a kind of communication security protection method and device.
Background technology
With the high speed development of wireless communication technique, mobile broadband connection is ubiquitous, and the thing followed is the peace of base station
Full property receives more threats, and power scheduling main station system telecommunication uses a variety of safety prevention measures, such as:For
The electric power encryption device of dispatch data net is used for the public network encryption device of outer net, both in electric power networks digital signal
Security protection.And for IEC101 serial ports analog signals, always be by it is bright it is logical in a manner of communicated, lack direct
Encipherment protection measure to serial data.In practice, serial ports outgoi8ng data in base station is relevant with inside of base station relevant information,
If utilized by crime of illegal collecting and supplying blood, there will be great security breaches, security risks are very big.
Invention content
In view of the above problems, the present invention provides a kind of communication security protection method and device, serial communication can be reinforced
The safety of data, and then improve communication security.
To achieve the goals above, the present invention adopts the following technical scheme that:
First aspect present invention discloses a kind of communication security protection method, including:
When carrying out serial communication with remote terminal, the serial ports analog signal of receiving modem transmission;
The encryption rule stored in communication security protection device is obtained, the encryption rule includes chopping rule, displacement rule
Then and upset regular;
Segment processing is carried out to the serial ports analog signal according to pre-stored chopping rule, obtains including multiple subsegments
One block signal of signal, and according to pre-stored replacement rule to the part subsegment in one block signal
Signal carries out replacement Treatment, obtains processing signal, and disturbed to the processing signal according to pre-stored upset rule
Disorderly processing, obtains coded signal;
The coded signal is sent to the remote terminal.
As an alternative embodiment, in the first aspect, it is described according to pre-stored chopping rule to described
Serial ports analog signal carry out segment processing, obtain include multiple subsegment signals a block signal, including:
Fast Fourier Transform (FFT) processing is carried out to the serial ports analog signal, obtains transformation signal;
The Fourier coefficient of the transformation signal is obtained, and according to the chopping rule and the Fourier coefficient to institute
State transformation signal carry out segment processing, obtain include multiple subsegment signals a block signal.
As an alternative embodiment, in the first aspect, it is described according to pre-stored replacement rule to described
The part subsegment signal in one block signal carries out replacement Treatment, obtains processing signal, including:
The signal energy for calculating each subsegment signal in one block signal obtains the letter of each subsegment signal
Number energy;
Determine that all signal energies are less than the subsegment signal to be replaced of energy threshold in one block signal;
All subsegment signals to be replaced are subjected to replacement Treatment with signal is replaced, obtain processing signal.
As an alternative embodiment, in the first aspect, in the serial ports mould that the receiving modem is sent
Before quasi- signal, the method further includes:
Judge whether to receive the access request of remote terminal, wherein the access request includes the remote terminal
Terminal iidentification;
If receiving the access request of the remote terminal, judge whether the terminal iidentification is legal mark;
If the terminal iidentification is the legal mark, establishes and communicate to connect with the remote terminal.
As an alternative embodiment, in the first aspect, it is described to establish communication connection with the remote terminal
Afterwards, and before the serial ports analog signal that the receiving modem is sent, the method further includes:
The terminal iidentification is added in grant column list, and generates and stores the encryption to match with the terminal iidentification and advise
Then, the encryption rule includes the chopping rule, the replacement rule and upset rule;
The mark of the encryption rule is sent to the remote terminal, so that the remote terminal is advised according to the encryption
Mark then transfers decryption rule corresponding with the encryption rule from the treaty rule table that the remote terminal stores.
Second aspect of the present invention discloses a kind of communication security protection device, including:
Receiving unit, for the serial ports simulation that when carrying out serial communication with remote terminal, receiving modem is sent
Signal;
First processing units carry out segment processing to the serial ports analog signal according to pre-stored chopping rule, obtain
To a block signal including multiple subsegment signals;
Second processing unit is used for according to pre-stored replacement rule to described in the part in one block signal
Subsegment signal carries out replacement Treatment, obtains processing signal;
Third processing unit is obtained for being handled into line disturbance the processing signal according to pre-stored upset rule
To coded signal;
Transmission unit, for the coded signal to be sent to the remote terminal.
As an alternative embodiment, in the first aspect, the first processing units include:
First subelement obtains transformation signal for carrying out Fast Fourier Transform (FFT) processing to the serial ports analog signal;
Second subelement, the Fourier coefficient for obtaining the transformation signal, and according to the chopping rule and institute
State Fourier coefficient to the transformation signal carry out segment processing, obtain include multiple subsegment signals a block signal.
As an alternative embodiment, in the first aspect, the second processing unit includes:
Third subelement, the signal energy for calculating each subsegment signal in one block signal obtain described
The signal energy of each subsegment signal;And determine that all signal energies are waited for less than energy threshold in one block signal
Replace subsegment signal;
4th subelement is obtained for all subsegment signals to be replaced to be carried out replacement Treatment with signal is replaced
Handle signal.
The third aspect, the present invention provides a kind of mobile terminal, including memory and processor, the memory is used for
Computer program is stored, the processor runs the computer program so that disclosed in the mobile terminal execution first aspect
The some or all of communication security protection method.
Fourth aspect is stored with institute in above-mentioned mobile terminal the present invention provides a kind of computer readable storage medium
The computer program used.
According to communication security protection method and device provided by the invention, when carrying out serial communication with remote terminal, when
When communication security protection device receives the serial ports analog signal of modem transmission, first according to pre-stored chopping rule
To serial ports analog signal carry out segment processing, obtain include multiple subsegment signals a block signal;Further, communication peace
Full protection device carries out replacement Treatment according still further to pre-stored replacement rule to the part subsegment signal in block signal, obtains
Signal is handled, while the processing signal is handled into line disturbance according still further to pre-stored upset rule, obtains coded signal;Most
Coded signal is sent to remote terminal by communication security protection device afterwards.As it can be seen that implementing technical scheme of the present invention can pass through
Serial ports analog signal is encrypted, to reinforce the safety of serial port communication data, avoids the potential safety danger of plaintext communication
Danger, and then improve communication security.
To enable the above objects, features and advantages of the present invention to be clearer and more comprehensible, preferred embodiment cited below particularly, and coordinate
Appended attached drawing, is described in detail below.
Description of the drawings
In order to illustrate the technical solution of the embodiments of the present invention more clearly, below will be to needed in the embodiment attached
Figure is briefly described, it should be understood that the following drawings illustrates only certain embodiments of the present invention, therefore is not construed as pair
The restriction of the scope of the invention.
Fig. 1 is serial communication system structural schematic diagram provided by the invention;
Fig. 2 is the flow diagram for the communication security protection method that the embodiment of the present invention one provides;
Fig. 3 is the flow diagram of communication security protection method provided by Embodiment 2 of the present invention;
Fig. 4 is the structural schematic diagram for the communication security protection device that the embodiment of the present invention three provides;
Fig. 5 is the structural schematic diagram for the communication security protection device that the embodiment of the present invention four provides.
Specific implementation mode
Below in conjunction with attached drawing in the embodiment of the present invention, technical solution in the embodiment of the present invention carries out clear, complete
Ground describes, it is clear that described embodiments are only a part of the embodiments of the present invention, instead of all the embodiments.Usually exist
The component of the embodiment of the present invention described and illustrated in attached drawing can be arranged and be designed with a variety of different configurations herein.Cause
This, the detailed description of the embodiment of the present invention to providing in the accompanying drawings is not intended to limit claimed invention below
Range, but it is merely representative of the selected embodiment of the present invention.Based on the embodiment of the present invention, those skilled in the art are not doing
The every other embodiment obtained under the premise of going out creative work, shall fall within the protection scope of the present invention.
For the problems of the prior art, the present invention provides a kind of communication security protection method and devices;With it is long-range
When terminal carries out serial communication, when communication security protection device receives the serial ports analog signal of modem transmission, first
Segment processing is carried out to serial ports analog signal according to pre-stored chopping rule, obtains including one point of multiple subsegment signals
Segment signal;Further, communication security protection device is sub to the part in block signal according still further to pre-stored replacement rule
Segment signal carries out replacement Treatment, obtains processing signal, while according still further to rule is upset to the processing signal into line disturbance processing, obtaining
To coded signal;Coded signal is sent to remote terminal by last communication security protection device.As it can be seen that implementing the technology of the present invention
Scheme, to reinforce the safety of serial port communication data, can avoid plaintext communication by the way that serial ports analog signal is encrypted
Potential danger, and then improve communication security.Also, relevant software or hardware realization may be used in the technology, under
Face is described by embodiment.
Embodiment 1
Referring to Fig. 2, Fig. 2 is the flow diagram for the communication security protection method that the embodiment of the present invention one provides.Such as Fig. 2
Shown, which can be with following steps:
S101, with remote terminal carry out serial communication when, receiving modem send serial ports analog signal.
In the present embodiment, serial communication refers to by data signal line, ground wire or control line etc., and step-by-step carries out data biography
A kind of defeated communication mode.In telecommunication, communications cost can be saved by the way of serial communication.
In the present embodiment, which is transmitting terminal modem, can carry out signal modulation to digital signal
Processing, analog signal is converted to by the digital signal.
As an alternative embodiment, when the modem is receiving terminal modem, this can be received
The decryption analog signal that communication security protection device is sent, and signal demodulation process can be carried out to the decryption analog signal, it will
The decryption analog signal is converted to decryption digital signal.
In the embodiment of the present invention, which includes memory and processor.Wherein, which uses
In storage computer program, processor runs the computer program so that the communication security protection device executes the present embodiment and retouched
The some or all of communication security protection method stated.
Referring to Fig. 1, Fig. 1 is serial communication system structural schematic diagram provided by the invention.As shown in Figure 1, the serial ports is logical
Letter system includes modem 401, communication security protection device 402 and remote terminal 403.Wherein, modem 401
Serial ports analog signal is sent to communication security protection device 402, communication security protection device 402 can be to the serial ports analog signal
It is encrypted, obtains coded signal, then the coded signal can be sent to remote terminal by the communication security protection device 402
403。
As further alternative embodiment, when carrying out serial communication with remote terminal, communication security protection device
When receiving the encryption analog signal of remote terminal transmission, it can also include the following steps:
The terminal iidentification of the remote terminal is obtained, and obtains the decryption rule to match with the terminal iidentification;
The encryption analog signal is decrypted according to the decryption rule, obtains decryption analog signal;
The decryption analog signal is sent to the modem.
In the present embodiment, modem can be telecommunication modem or optic communication modem, specifically
Can be amplitude-modulating modulation demodulator, FM demodulator, phase modulation modem and orthogonal modulation modem etc., this hair
Bright embodiment is not construed as limiting.
In the embodiment of the present invention, encryption rule is stored in communication security protection device.The encryption rule includes that segmentation is advised
Then, replacement rule and upset rule.
In the embodiment of the present invention, to improve the communications security of serial communication, which can store
More set encryption rules, it includes different chopping rules, different replacement rules and different upsets rule often to cover encryption rule
Then.Can be according to different situations, the encryption series etc. as entrained by different call duration times, different serial ports analog signals,
From determine a set of suitable encryption rule in the encryption rule of set more than storage volume, the serial ports analog signal received is added
Close processing.
As an alternative embodiment, the communication security protection method can also include the following steps:
Obtain the device identification for the mobile device for receiving the serial ports analog signal;
Using the encryption rule table of comparisons that prestores as foundation, the mark of encryption rule corresponding with the device identification is determined, it should
The encryption rule table of comparisons that prestores includes the mark of the device identification and encryption rule corresponding with the device identification;
The encryption rule is obtained from the rule base to prestore according to the mark of the encryption rule, and executes step S102.
S102, segment processing is carried out to serial ports analog signal according to pre-stored chopping rule, obtains including multiple sons
One block signal of segment signal, and according to the part subsegment signal in block signal of pre-stored replacement rule pair into
Line replacement processing obtains processing signal, and is handled into line disturbance processing signal according to pre-stored upset rule, obtains
Coded signal.
As an alternative embodiment, being carried out at segmentation to serial ports analog signal according to pre-stored chopping rule
Reason, obtain include multiple subsegment signals a block signal, may comprise steps of:
Serial ports analog signal is subjected to Fourier transformation processing, obtains frequency-region signal;
The Fourier coefficient of the frequency-region signal is obtained, and determines the total number of the Fourier coefficient;
To the frequency-region signal carry out segment processing, obtain include multiple subsegment signals a block signal, wherein each
The number of the Fourier coefficient of subsegment signal is five.
In the above-described embodiments, the number of the Fourier coefficient of each subsegment signal is five, in fact, being by the frequency
Domain signal is divided into including multiple subband spectrums, wherein the number of the Fourier coefficient of each subband spectrum is five.
In the above-described embodiments, for example, when it is 80 to determine the total number of the Fourier coefficient, can incite somebody to action
The frequency-region signal is divided into 17 subband spectrums, and the Fourier coefficient of 17 subband spectrums is five.
In the embodiment of the present invention, the chopping rule that encryption rule includes can be:It first treats coded signal and carries out Fourier
Conversion process obtains spectrum signal corresponding with the signal to be encrypted;Then the Fourier coefficient of the spectrum signal is obtained, and really
The total number of the fixed Fourier coefficient;Segment processing is finally carried out to the spectrum signal according to predetermined coefficient number, including
The block signal of multiple subsegment signals, wherein the number of the Fourier coefficient of each subsegment signal is the predetermined coefficient number.
Predetermined coefficient number included by the chopping rule can be 2,3,4 etc., and the embodiment of the present invention is not construed as limiting.
In the embodiment of the present invention, the chopping rule that encryption rule includes can be:It first calculates every in a block signal
The signal energy of a sub- segment signal obtains the signal energy of each subsegment signal;Then determination is believed from a block signal
Number energy is less than all subsegment signals of energy threshold, as signal to be replaced;Further, all signals to be replaced are used
Default signal of replacing carries out replacement Treatment, obtains processing signal.For example, when the above-mentioned frequency-region signal is divided into 17
After subband spectrum, calculate have in 17 subband spectrums ten subband spectrums signal energy be less than energy threshold when,
It can be default replacement signal by ten subband spectrum faithful permutations of this in block signal, obtain processing signal, processing letter
Number including that seven subband spectrum signals and ten are default replaces signals.
As an alternative embodiment, the upset rule that encryption rule includes can be:Include according to processing signal
Subsegment signal and the default sequencing for replacing signal, subsegment signal and default signal of replacing are put on into serial number one by one;By sequence
It number extracts and is arranged again by serial number is descending for the signal segment of odd number, obtain singular signal block, meanwhile, by sequence
It number extracts and is arranged again by serial number is ascending for the signal segment of even numbers, obtain even numbers signal block;Further,
The odd number signal block is inserted into the section tail of even numbers signal block, merges into coded signal, the wherein section of even numbers signal block
Tail is one end where the maximum signal segment of serial number.
In the above-described embodiments, for example, when obtaining, to include that seven subband spectrum signals and ten are default replace signals
Handle signal processing signal after, according to processing signal in each signal segment sequencing, by 17 signal segments by
One puts on serial number:No. 1, No. 2, No. 3, No. 4, No. 5, No. 6, No. 7, No. 8, No. 9, No. 10, No. 11, No. 12, No. 13, No. 14,15
Number, No. 16, No. 17;Then by the signal segment of serial number odd number extract it is descending arrange, it is total to obtain singular signal
Section, the serial number of signal segment is arranged as in the odd number signal block:No. 15, No. 13, No. 11, No. 9, No. 7, No. 5, No. 3, No. 1;Together
When, the signal segment of serial number even numbers is extracted and is arranged again by serial number is ascending, even numbers signal block is obtained, it should
The serial number of signal segment is arranged as in even numbers signal block:No. 2, No. 4, No. 6, No. 8, No. 10, No. 12, No. 14, No. 16;Further
The odd number signal block will be inserted into the section tail of even numbers signal block, merges into coded signal by ground.It can be seen that serial number
One end where No. 16 signal segments is the section tail of the even numbers signal block, then to coded signal in signal segment serial number row
It is classified as:No. 2, No. 4, No. 6, No. 8, No. 10, No. 12, No. 14, No. 16, No. 15, No. 13, No. 11, No. 9, No. 7, No. 5, No. 3, No. 1.
In the embodiment of the present invention, the serial ports analog signal is encrypted by above-mentioned encryption rule, obtains coded signal,
Cipher round results are good, while in decrypting process, to the decryption signal that coded signal is decrypted, with former serial ports analog signal phase
Than reducing degree is high, is conducive to promote communications security and communication quality.
S103, coded signal is sent to remote terminal.
As it can be seen that implement Fig. 2 described in communication security protection method, can by the way that serial ports analog signal is encrypted,
To reinforce the safety of serial port communication data, the potential danger of plaintext communication is avoided, and then improves communication security.
Embodiment 2
Referring to Fig. 3, Fig. 3 is the flow diagram of communication security protection method provided by Embodiment 2 of the present invention.Such as Fig. 3
Shown, which may comprise steps of:
S201, judge whether to receive the access request of remote terminal, if received, execute step S202;If not
It receives, executes step S201 and continue to determine whether to receive the access request of remote terminal.
In the present embodiment, access request includes the terminal iidentification of remote terminal.
S202, judge whether terminal iidentification is legal mark, if so, executing step S203~step S212;If not,
Terminate this flow.
The legal home banking as an alternative embodiment, the communication security protection device prestores.Judging the terminal
Identify whether for legal mark when, as long as the terminal iidentification of the remote terminal is not found in the legal home banking, it is determined that should
Terminal iidentification is not legal mark, i.e., the remote terminal is not legal terminal.
S203, communication connection is established with remote terminal.
S204, terminal iidentification is added in grant column list, generates and stores the encryption rule to match with terminal iidentification.
In the embodiment of the present invention, which includes chopping rule, replacement rule and upsets regular.The communication security
Protective device can carry out legal verification to the remote terminal accessed for the first time, and can carry out communication to legal remote terminal and award
Power will not authorize its access communications, and then safeguard communication environment if being not legal remote terminal, ensure communication
Safety.
S205, the mark of encryption rule is sent to remote terminal so that remote terminal according to the mark of encryption rule from
Decryption rule corresponding with encryption rule is transferred in the treaty rule table of remote terminal storage.
In the present embodiment, for the remote terminal accessed for the first time, communication security protection device needs access for the first time with this
Interconnection configuration is encrypted in remote terminal, which is judging that the terminal iidentification is the same of legal mark
When, additionally it is possible to security classification corresponding with the terminal iidentification is obtained from the legal home banking, then, communication security protection dress
The encryption rule to match with the remote terminal can be generated according to the security classification by setting, and above-mentioned legal home banking includes terminal
Legal mark and security classification corresponding with the legal mark.
S206, with remote terminal carry out serial communication when, receiving modem send serial ports analog signal.
S207, Fast Fourier Transform (FFT) processing is carried out to serial ports analog signal, obtains transformation signal.
S208, the Fourier coefficient for obtaining transformation signal, and according to chopping rule and Fourier coefficient to converting signal
Segment processing is carried out, obtains including one block signal of multiple subsegment signals.
In the embodiment of the present invention, implement above-mentioned steps S207~step S208, it can be according to pre-stored chopping rule
To serial ports analog signal carry out segment processing, obtain include multiple subsegment signals a block signal.
S209, the signal energy for calculating each subsegment signal in a block signal, obtain the signal of each subsegment signal
Energy.
S210, determine that all signal energies are less than the subsegment signal to be replaced of energy threshold in a block signal;And it will
All subsegment signals to be replaced carry out replacement Treatment with signal is replaced, and obtain processing signal.
In the embodiment of the present invention, implement above-mentioned steps S209~step S210, it can be according to pre-stored replacement rule
Replacement Treatment is carried out to the part subsegment signal in a block signal, obtains processing signal.
S211, processing signal is handled according to pre-stored upset rule into line disturbance, obtains coded signal.
As an alternative embodiment, processing signal is handled into line disturbance according to pre-stored upset rule,
Coded signal is obtained, may comprise steps of:
The subsegment signal and the default sequencing for replacing signal for including according to processing signal replace subsegment signal with default
It changes signal and puts on serial number one by one;
The signal segment of serial number odd number is extracted and is arranged again by serial number is descending, it is total to obtain singular signal
Section;
The signal segment of serial number even numbers is extracted and is arranged again by serial number is ascending, it is total to obtain even numbers signal
Section;
The odd number signal block is inserted into the paragraph header of even numbers signal block, merges into coded signal, wherein even numbers signal
The paragraph header of block is one end where the signal segment of serial number minimum.
S212, coded signal is sent to remote terminal.
As it can be seen that communication security protection method described in implementing Fig. 3, can by the way that serial ports analog signal is encrypted,
To reinforce the safety of serial port communication data, the potential danger of plaintext communication is avoided, and then improves communication security.
Embodiment 3
Referring to Fig. 4, Fig. 4 is the structural schematic diagram for the communication security protection device that the embodiment of the present invention three provides.Such as Fig. 4
Shown, which includes:
Receiving unit 301, for the serial ports mould that when carrying out serial communication with remote terminal, receiving modem is sent
Quasi- signal.
In the embodiment of the present invention, receiving unit 301 is after the serial ports analog signal for receiving modem transmission, also
First processing units 302 can be triggered, segment processing is carried out to serial ports analog signal according to pre-stored chopping rule, be wrapped
Include a block signal of multiple subsegment signals.
First processing units 302, for carrying out segment processing to serial ports analog signal according to pre-stored chopping rule,
Obtain include multiple subsegment signals a block signal.
Second processing unit 303, for according to the part subsegment in block signal of pre-stored replacement rule pair
Signal carries out replacement Treatment, obtains processing signal.
Third processing unit 304, for according to rule is upset to processing signal into line disturbance processing, obtaining coded signal.
Transmission unit 305, for coded signal to be sent to remote terminal.
In the embodiment of the present invention, which can be smart mobile phone (such as Android phone, iOS mobile phones), tablet
The intelligent remotes such as computer, palm PC and mobile internet device (Mobile Internet Devices, MID), PC are whole
End, the embodiment of the present invention are not construed as limiting.Wherein, the operating system of all kinds of remote terminals may include but be not limited to Android operations
System, IOS operating system, Symbian (Saipan) operating system, Black Berry (blackberry, blueberry) operating system, Windows
Phone8 operating systems etc., the embodiment of the present invention does not limit.
As it can be seen that implement Fig. 4 described in communication security protection device, can by the way that serial ports analog signal is encrypted,
To reinforce the safety of serial port communication data, the potential danger of plaintext communication is avoided, and then improves communication security.
Embodiment 4
Referring to Fig. 5, Fig. 5 is the structural schematic diagram for the communication security protection device that the embodiment of the present invention three provides.Wherein,
Communication security protection device shown in fig. 5 is that communication security protection device as shown in Figure 4 optimizes.Such as Fig. 5 institutes
Show, first processing units 302 include:
First subelement 3021 obtains transformation signal for carrying out Fast Fourier Transform (FFT) processing to serial ports analog signal.
Second subelement 3022, the Fourier coefficient for obtaining transformation signal, and according to chopping rule and Fourier
Coefficient carries out segment processing to transformation signal, obtains including one block signal of multiple subsegment signals.
In the embodiment of the present invention, second processing unit 303 includes:
Third subelement 3031, the signal energy for calculating each subsegment signal in a block signal, obtains each
The signal energy of subsegment signal;And determine that all signal energies are less than the subsegment to be replaced of energy threshold in a block signal
Signal.
4th subelement 3032 is obtained for all subsegment signals to be replaced to be carried out replacement Treatment with signal is replaced
Handle signal;Wherein, replacement rule includes energy threshold and replacement signal.
As an alternative embodiment, the communication security protection device further includes:
First judging unit 306 connects before the serial ports analog signal that receiving modem is sent for judging whether
The access request of remote terminal is received, which includes the terminal iidentification of remote terminal.
Second judgment unit 307 judges end after judging to receive access request in the first judging unit 306
End identifies whether as legal mark.
Connection establishment unit 308, for second judgment unit 307 judge the terminal iidentification be legal mark when, with
Remote terminal establishes communication connection.
As further alternative embodiment, which further includes:
Generation unit 309 is encrypted, after establishing communication connection with remote terminal, and sent in receiving modem
Before serial ports analog signal, for will terminal iidentification be added grant column list in, generate and store with terminal iidentification match plus
Close rule;The encryption rule includes chopping rule, replacement rule and upsets regular.
In the present embodiment, connection establishment unit 308 can also trigger encryption after establishing communication connection with remote terminal
Terminal iidentification is added in grant column list generation unit 309, and generates the encryption rule to match with terminal iidentification.
Transmission unit 305 is additionally operable to the mark of encryption rule being sent to remote terminal, so that remote terminal is according to encryption
The mark of rule transfers decryption rule corresponding with encryption rule from the treaty rule table that remote terminal stores.
As it can be seen that implement Fig. 5 described in communication security protection device, can by the way that serial ports analog signal is encrypted,
To reinforce the safety of serial port communication data, the potential danger of plaintext communication is avoided, and then improves communication security.
In addition, the present invention also provides a kind of mobile terminals.The mobile terminal includes memory and processor, and memory can
For storing computer program, processor by running the computer program, to make the mobile terminal execution above method or
The function of each unit in the above-mentioned communication security protection device of person.
Memory may include storing program area and storage data field, wherein storing program area can storage program area, at least
Application program (such as sound-playing function, image player function etc.) needed for one function etc.;Storage data field can store root
Created data (such as audio data, phone directory etc.) etc. are used according to mobile terminal.In addition, memory may include high speed
Random access memory, can also include nonvolatile memory, a for example, at least disk memory, flush memory device or
Other volatile solid-state parts.
The present embodiment additionally provides a kind of computer storage media, for storing the computer used in above-mentioned mobile terminal
Program.
In several embodiments provided herein, it should be understood that disclosed device and method can also pass through
Other modes are realized.The apparatus embodiments described above are merely exemplary, for example, the flow chart in attached drawing and structure
Figure show the device of multiple embodiments according to the present invention, method and computer program product system frame in the cards
Structure, function and operation.In this regard, each box in flowchart or block diagram can represent a module, section or code
A part, the part of the module, section or code includes one or more for implementing the specified logical function
Executable instruction.It should also be noted that in the realization method as replacement, the function of being marked in box can also be to be different from
The sequence marked in attached drawing occurs.For example, two continuous boxes can essentially be basically executed in parallel, they are sometimes
It can execute in the opposite order, this is depended on the functions involved.It is also noted that in structure chart and/or flow chart
The combination of each box and the box in structure chart and/or flow chart can use the special of function or action as defined in executing
Hardware based system realize, or can realize using a combination of dedicated hardware and computer instructions.
In addition, each function module or unit in each embodiment of the present invention can integrate and to form an independence
Part, can also be modules individualism, can also two or more modules be integrated to form an independent part.
It, can be with if the function is realized and when sold or used as an independent product in the form of software function module
It is stored in a computer read/write memory medium.Based on this understanding, technical scheme of the present invention is substantially in other words
The part of the part that contributes to existing technology or the technical solution can be expressed in the form of software products, the meter
Calculation machine software product is stored in a storage medium, including some instructions are used so that a computer equipment (can be intelligence
Can mobile phone, personal computer, server or network equipment etc.) execute each embodiment the method for the present invention whole or
Part steps.And storage medium above-mentioned includes:USB flash disk, mobile hard disk, read-only memory (ROM, Read-Only Memory),
Random access memory (RAM, Random Access Memory), magnetic disc or CD etc. are various can to store program code
Medium.
The above description is merely a specific embodiment, but scope of protection of the present invention is not limited thereto, any
Those familiar with the art in the technical scope disclosed by the present invention, can easily think of the change or the replacement, and should all contain
Lid is within protection scope of the present invention.Therefore, the protection scope of the present invention shall be subject to the protection scope of the claims.
Claims (10)
1. a kind of communication security protection method, which is characterized in that including:
When carrying out serial communication with remote terminal, the serial ports analog signal of receiving modem transmission;
Segment processing is carried out to the serial ports analog signal according to pre-stored chopping rule, obtains including multiple subsegment signals
A block signal, and according to pre-stored replacement rule to the part subsegment signal in one block signal
Carry out replacement Treatment, obtain processing signal, and according to pre-stored upsets it is regular to the processing signal at line disturbance
Reason, obtains coded signal;
The coded signal is sent to the remote terminal.
2. communication security protection method according to claim 1, which is characterized in that described to be advised according to pre-stored segmentation
Then to the serial ports analog signal carry out segment processing, obtain include multiple subsegment signals a block signal, including:
Fast Fourier Transform (FFT) processing is carried out to the serial ports analog signal, obtains transformation signal;
The Fourier coefficient of the transformation signal is obtained, and according to the chopping rule and the Fourier coefficient to the change
Change signal carry out segment processing, obtain include multiple subsegment signals a block signal.
3. communication security protection method according to claim 1, which is characterized in that described to be advised according to pre-stored displacement
Replacement Treatment then is carried out to the part subsegment signal in one block signal, obtains processing signal, including:
The signal energy for calculating each subsegment signal in one block signal obtains the signal energy of each subsegment signal
Amount;
Determine that all signal energies are less than the subsegment signal to be replaced of energy threshold in one block signal;
All subsegment signals to be replaced are subjected to replacement Treatment with signal is replaced, obtain processing signal.
4. communication security protection method according to claim 1, which is characterized in that sent in the receiving modem
Serial ports analog signal before, the method further includes:
Judge whether to receive the access request of remote terminal, wherein the access request includes the terminal of the remote terminal
Mark;
If receiving the access request of the remote terminal, judge whether the terminal iidentification is legal mark;
If the terminal iidentification is the legal mark, establishes and communicate to connect with the remote terminal.
5. communication security protection method according to claim 4, which is characterized in that described established with the remote terminal is led to
After letter connection, and before the serial ports analog signal that the receiving modem is sent, the method further includes:
The terminal iidentification is added in grant column list, the encryption rule to match with the terminal iidentification, institute are generated and store
It includes the chopping rule, the replacement rule and upset rule to state encryption rule;
The mark of the encryption rule is sent to the remote terminal, so that the remote terminal is according to the encryption rule
Mark transfers decryption rule corresponding with the encryption rule from the treaty rule table that the remote terminal stores.
6. a kind of communication security protection device, which is characterized in that including:
Receiving unit, for the serial ports analog signal that when carrying out serial communication with remote terminal, receiving modem is sent;
First processing units are obtained for carrying out segment processing to the serial ports analog signal according to pre-stored chopping rule
To a block signal including multiple subsegment signals;
Second processing unit is used for according to pre-stored replacement rule to the part subsegment in one block signal
Signal carries out replacement Treatment, obtains processing signal;
Third processing unit is added for being handled into line disturbance the processing signal according to pre-stored upset rule
Secret letter number;
Transmission unit, for the coded signal to be sent to the remote terminal.
7. communication security protection device according to claim 6, which is characterized in that the first processing units include:
First subelement obtains transformation signal for carrying out Fast Fourier Transform (FFT) processing to the serial ports analog signal;
Second subelement, the Fourier coefficient for obtaining the transformation signal, and according to the chopping rule and Fu
In leaf system number to the transformation signal carry out segment processing, obtain include multiple subsegment signals a block signal.
8. communication security protection device according to claim 6, which is characterized in that the second processing unit includes:
Third subelement, the signal energy for calculating each subsegment signal in one block signal obtain described each
The signal energy of subsegment signal;And determine that all signal energies are to be replaced less than energy threshold in one block signal
Subsegment signal;
4th subelement is handled for all subsegment signals to be replaced to be carried out replacement Treatment with signal is replaced
Signal.
9. a kind of mobile terminal, which is characterized in that including memory and processor, the memory is for storing computer journey
Sequence, the processor runs the computer program so that the mobile terminal execution is according to any one of claim 1 to 5 institute
The communication security protection method stated.
10. a kind of computer readable storage medium, which is characterized in that it is stored with institute in the mobile terminal described in claim 9
The computer program used.
Priority Applications (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202110281576.XA CN112887336B (en) | 2018-05-04 | 2018-05-04 | Communication safety protection method and device |
CN201810419243.7A CN108600248B (en) | 2018-05-04 | 2018-05-04 | Communication safety protection method and device |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201810419243.7A CN108600248B (en) | 2018-05-04 | 2018-05-04 | Communication safety protection method and device |
Related Child Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN202110281576.XA Division CN112887336B (en) | 2018-05-04 | 2018-05-04 | Communication safety protection method and device |
Publications (2)
Publication Number | Publication Date |
---|---|
CN108600248A true CN108600248A (en) | 2018-09-28 |
CN108600248B CN108600248B (en) | 2021-04-13 |
Family
ID=63620794
Family Applications (2)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN202110281576.XA Active CN112887336B (en) | 2018-05-04 | 2018-05-04 | Communication safety protection method and device |
CN201810419243.7A Active CN108600248B (en) | 2018-05-04 | 2018-05-04 | Communication safety protection method and device |
Family Applications Before (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN202110281576.XA Active CN112887336B (en) | 2018-05-04 | 2018-05-04 | Communication safety protection method and device |
Country Status (1)
Country | Link |
---|---|
CN (2) | CN112887336B (en) |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO1998051067A1 (en) * | 1997-05-09 | 1998-11-12 | Epigram, Inc. | Method and apparatus for reducing signal processing requirements for transmitting packet-based data with a modem |
CN101136201A (en) * | 2006-08-11 | 2008-03-05 | 美国博通公司 | System and method for perform replacement to considered loss part of audio signal |
CN102624518A (en) * | 2012-03-05 | 2012-08-01 | 华中科技大学 | Voice encryption and decryption method |
CN104378198A (en) * | 2014-10-16 | 2015-02-25 | 南京中科龙脉物联网技术有限公司 | Voice encryption method based on block cipher system |
CN104393958A (en) * | 2014-11-28 | 2015-03-04 | 成都航天通信设备有限责任公司 | Data frame transmitting method and receiving method based on pipelining |
Family Cites Families (11)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
FR2804813B1 (en) * | 2000-02-03 | 2002-09-06 | Cit Alcatel | ENCODING METHOD FOR FACILITATING THE SOUND RESTITUTION OF DIGITAL SPOKEN SIGNALS TRANSMITTED TO A SUBSCRIBER TERMINAL DURING TELEPHONE COMMUNICATION BY PACKET TRANSMISSION AND EQUIPMENT USING THE SAME |
EP1887729A3 (en) * | 2006-03-21 | 2011-07-13 | Irdeto Access B.V. | Method of providing an encrypted data stream |
CN101242453B (en) * | 2007-02-08 | 2011-07-27 | 联想(北京)有限公司 | A transmission method and system for dual-audio multi-frequency signal |
CN101388688B (en) * | 2008-11-05 | 2012-09-05 | 北京理工大学 | Frequency scanning interference suspending method for direct sequence spread spectrum communication system |
CN104967582B (en) * | 2015-07-22 | 2018-02-27 | 浙江大学 | Channel estimation methods based on odd-even alternation pilot frequency sequence in NAVDAT |
CN105050082B (en) * | 2015-09-11 | 2019-10-25 | 成都汇研科技有限公司 | Voice communication method and device |
CN106254327A (en) * | 2016-07-28 | 2016-12-21 | 努比亚技术有限公司 | Information processor and method |
CN106101147B (en) * | 2016-08-12 | 2019-04-23 | 北京同余科技有限公司 | A kind of method and system for realizing smart machine and the communication of remote terminal dynamic encryption |
CN106412024B (en) * | 2016-09-07 | 2019-10-15 | 网易无尾熊(杭州)科技有限公司 | A kind of page acquisition methods and device |
CN107172108A (en) * | 2017-07-26 | 2017-09-15 | 成都三零盛安信息系统有限公司 | Data encryption, decryption method, data encryption, decryption device and communication system |
CN107579961B (en) * | 2017-08-23 | 2020-05-08 | 电子科技大学 | Information secret transmission method of access network |
-
2018
- 2018-05-04 CN CN202110281576.XA patent/CN112887336B/en active Active
- 2018-05-04 CN CN201810419243.7A patent/CN108600248B/en active Active
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO1998051067A1 (en) * | 1997-05-09 | 1998-11-12 | Epigram, Inc. | Method and apparatus for reducing signal processing requirements for transmitting packet-based data with a modem |
CN101136201A (en) * | 2006-08-11 | 2008-03-05 | 美国博通公司 | System and method for perform replacement to considered loss part of audio signal |
CN102624518A (en) * | 2012-03-05 | 2012-08-01 | 华中科技大学 | Voice encryption and decryption method |
CN104378198A (en) * | 2014-10-16 | 2015-02-25 | 南京中科龙脉物联网技术有限公司 | Voice encryption method based on block cipher system |
CN104393958A (en) * | 2014-11-28 | 2015-03-04 | 成都航天通信设备有限责任公司 | Data frame transmitting method and receiving method based on pipelining |
Non-Patent Citations (1)
Title |
---|
金堃: "移动通信网中的端到端语音加密技术研究", 《中国优秀硕士学位论文全文数据库(电子期刊)》 * |
Also Published As
Publication number | Publication date |
---|---|
CN108600248B (en) | 2021-04-13 |
CN112887336A (en) | 2021-06-01 |
CN112887336B (en) | 2023-05-05 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN104283853B (en) | A kind of method, terminal device and network equipment for improving Information Security | |
EP3257194A1 (en) | Systems and methods for securely managing biometric data | |
CN110266682B (en) | Data encryption method and device, mobile terminal and decryption method | |
CN104468937A (en) | Data encryption and decryption methods and devices for mobile terminal and protection system | |
CN105488875B (en) | A kind of gate inhibition's verification method and device | |
CN107786331A (en) | Data processing method, device, system and computer-readable recording medium | |
US9065635B2 (en) | Information processing apparatus, IC chip, and information processing method | |
CN108647262A (en) | A kind of picture management method, device, computer equipment and storage medium | |
CN104144174B (en) | Protect method, user equipment and the server of privacy of user data | |
CN107395603A (en) | The encryption and decryption method of control instruction transmission, terminal device/server | |
CN105808998A (en) | Fingerprint identification device | |
CN109068284A (en) | The physical layer authentication method and system connected based on group between internet of things equipment | |
CN110266653B (en) | Authentication method, system and terminal equipment | |
CN105306200B (en) | The encryption method and device of network account password | |
CN107196973A (en) | A kind of data encryption, decryption method and device | |
CN105022965B (en) | A kind of data ciphering method and device | |
CN106022158A (en) | A takeout management system for file datas | |
CN106161036B (en) | A kind of mobile station (MS) state transition method and system of credit | |
Yadav et al. | Analysis of ICMetrics features/technology for wearable devices IOT sensors | |
CN116471120A (en) | Data encryption method and related device for secondary security system of power grid | |
CN107527084A (en) | Electronic card processing method and processing device | |
CN104053152B (en) | A kind of identification and method for distributing key towards body area network | |
CN108600248A (en) | A kind of communication security protection method and device | |
CN108337233B (en) | Method for encrypting content information, electronic equipment and storage medium | |
CN107995616A (en) | The processing method and device of user behavior data |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |