CN108683641A - A kind of data communications method, device, unmanned plane and computer storage media - Google Patents
A kind of data communications method, device, unmanned plane and computer storage media Download PDFInfo
- Publication number
- CN108683641A CN108683641A CN201810373252.7A CN201810373252A CN108683641A CN 108683641 A CN108683641 A CN 108683641A CN 201810373252 A CN201810373252 A CN 201810373252A CN 108683641 A CN108683641 A CN 108683641A
- Authority
- CN
- China
- Prior art keywords
- unmanned plane
- earth station
- symmetric key
- data
- ssl
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 230000006854 communication Effects 0.000 title claims abstract description 148
- 238000004891 communication Methods 0.000 title claims abstract description 142
- 238000000034 method Methods 0.000 title claims abstract description 121
- 238000003860 storage Methods 0.000 title claims abstract description 23
- 230000004044 response Effects 0.000 claims abstract description 31
- 230000005540 biological transmission Effects 0.000 claims abstract description 27
- 238000007689 inspection Methods 0.000 claims description 8
- 238000004590 computer program Methods 0.000 claims description 7
- 230000008569 process Effects 0.000 description 16
- 238000013461 design Methods 0.000 description 10
- 238000012795 verification Methods 0.000 description 10
- 230000009931 harmful effect Effects 0.000 description 4
- 230000007246 mechanism Effects 0.000 description 4
- GOLXNESZZPUPJE-UHFFFAOYSA-N spiromesifen Chemical compound CC1=CC(C)=CC(C)=C1C(C(O1)=O)=C(OC(=O)CC(C)(C)C)C11CCCC1 GOLXNESZZPUPJE-UHFFFAOYSA-N 0.000 description 4
- 230000001052 transient effect Effects 0.000 description 4
- 238000010586 diagram Methods 0.000 description 2
- 235000013399 edible fruits Nutrition 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 230000006870 function Effects 0.000 description 1
- 230000014759 maintenance of location Effects 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0876—Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
- H04L63/0435—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply symmetric encryption, i.e. same key used for encryption and decryption
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/12—Applying verification of the received information
- H04L63/123—Applying verification of the received information received data contents, e.g. message integrity
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L69/00—Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
- H04L69/16—Implementation or adaptation of Internet protocol [IP], of transmission control protocol [TCP] or of user datagram protocol [UDP]
- H04L69/161—Implementation details of TCP/IP or UDP/IP stack architecture; Specification of modified or new header fields
- H04L69/162—Implementation details of TCP/IP or UDP/IP stack architecture; Specification of modified or new header fields involving adaptations of sockets based mechanisms
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0861—Generation of secret information including derivation or calculation of cryptographic keys or passwords
- H04L9/0869—Generation of secret information including derivation or calculation of cryptographic keys or passwords involving random numbers or seeds
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04B—TRANSMISSION
- H04B7/00—Radio transmission systems, i.e. using radiation field
- H04B7/14—Relay systems
- H04B7/15—Active relay systems
- H04B7/185—Space-based or airborne stations; Stations for satellite systems
- H04B7/18502—Airborne stations
- H04B7/18506—Communications with or from aircraft, i.e. aeronautical mobile service
Abstract
The invention discloses a kind of data communications method, device, unmanned plane and computer storage medias, belong to unmanned plane field.A kind of data communications method is applied to unmanned plane, the method includes:After the unmanned plane receives the transmission SSL authentication handshake request messages of earth station, response message is sent to the earth station;The unmanned plane receives the symmetric key that the earth station sends;The unmanned plane uses the symmetric key and the earth station into row data communication.A kind of data communications method, device, unmanned plane and computer storage media provided by the invention, so as to improve the safety of unmanned aerial vehicle data communication.
Description
Technical field
The present invention relates to unmanned plane field, more particularly to a kind of unmanned plane and foundation are in SSL (Secure Sockets
Layer Secure Socket Layer) encrypted tunnel data communications method and computer storage media.
Background technology
Currently, plaintext transmission is usually used in the data with earth station communicate in unmanned plane.It is bright in transmission process
Literary data are exposed to interconnection transfers on network and are easy to be attacked by malicious person scholar, common example such as data tampering,
Forged identity etc., in extreme circumstances unmanned plane may be held as a hostage even it is out of hand, this certainly will greatly influence flight safety
Property even result in unmanned plane crash.
Therefore establishing the communication encryption means of a unmanned plane and earth station seems necessary, to improve unmanned plane and ground
The safety of face station data communication.
Invention content
In view of this, the purpose of the present invention is to provide the storages of a kind of data communications method, device, unmanned plane and computer
Medium, so as to improve the safety of unmanned aerial vehicle data communication.
Technical solution is as follows used by the present invention solves above-mentioned technical problem:
According to an aspect of the present invention, a kind of data communications method is provided, unmanned plane is applied to, the method includes:
After the unmanned plane receives the transmission SSL authentication handshake request messages of earth station, sends and ring to the earth station
Answer message;
The unmanned plane receives the symmetric key that the earth station sends;
The unmanned plane uses the symmetric key and the earth station into row data communication.
In a possible design, the request message includes:
Client Hello message for the request of SSL authentication handshakes;Wherein, include the ground in the request message
Stand the random number R andom generated;
It is described to include to earth station transmission response message:Server Hello message is sent to the earth station,
In, the response message contains the unmanned plane exclusive identification code Copter_ID.
In a possible design, the unmanned plane receives the symmetric key that the earth station sends and includes:It is described right
Claim key by the earth station using the encrypted symmetric cryptography according to the generating random number of the Copter_ID and
At.
In a possible design, the unmanned plane, which uses, presets symmetric key and the earth station into row data communication
Including:It is sent to the data of the unmanned plane using the symmetric key encryption, is received using the symmetric key decryption
The data that unmanned plane is sent.
In a possible design, the method still further comprises:The unmanned plane using the symmetric key with
While earth station carries out data communication, the inspection of communication integrality is carried out.
In a possible design, the method still further comprises:The unmanned plane is closed after disconnecting communication every time
Window is connected, the preset time is waited for reactivate connection window.
According to another aspect of the present invention, a kind of data communication system is provided, including:One unmanned plane and several ground
Stand, the unmanned plane using data communications method according to any one of claim 1 to 6 and several earth stations into
Row data transmission.
According to another aspect of the present invention, a kind of data communication equipment is provided, unmanned plane, described device packet are applied to
It includes:First authentication module, the first receiving module, data communication module, wherein:
First authentication module receives the transmission SSL authentication handshake request messages of earth station for the unmanned plane
Afterwards, response message is sent to the earth station;
First receiving module receives the symmetric key that the earth station sends for the unmanned plane;
The data communication module carries out data using the symmetric key and the earth station for the unmanned plane and leads to
Letter.
According to an aspect of the present invention, a kind of unmanned plane is provided, including:Memory, processor and it is stored in described deposit
In reservoir and one or more computer program that can run on the processor, one or more of computer journeys
When sequence is executed by the processor with realize first embodiment of the invention provide the data communications method the step of.
According to an aspect of the present invention, a kind of computer readable storage medium, the computer-readable storage medium are provided
It is stored with data communication program in matter, realizes that first embodiment of the invention provides when the data communication program is executed by processor
The data communications method the step of, alternatively, realize first embodiment of the invention provide the data communications method
The step of.
Compared with prior art, a kind of data communications method provided by the invention, device, unmanned plane and computer storage are situated between
Matter carries out SSL authentication handshakes by using unmanned plane using ssl protocol and earth station, and it is identical right that SSL certifications use after passing through
Claim key and earth station in the SSL encryption channel of foundation into the data transmission method of row data communication, it is logical not increasing unmanned plane
In the case of believing protocol complexity, the safety that unmanned plane is communicated with earth station data is improved, the usage experience of user is promoted, increasing
Unmanned plane value-added content of product is added.
Description of the drawings
Fig. 1 is a kind of flow chart for data communications method that first embodiment of the invention provides;
Fig. 2 is a kind of structural schematic diagram for data communication system that second embodiment of the invention provides;
Fig. 3 is a kind of flow chart for data communications method that third embodiment of the invention provides;
Fig. 4 is a kind of flow chart for data communications method that fourth embodiment of the invention provides.
The embodiments will be further described with reference to the accompanying drawings for the realization, the function and the advantages of the object of the present invention.
Specific implementation mode
In order to keep technical problems, technical solutions and advantages to be solved clearer, clear, tie below
Drawings and examples are closed, the present invention will be described in further detail.It should be appreciated that specific embodiment described herein is only
To explain the present invention, it is not intended to limit the present invention.
In subsequent description, using for indicating that the suffix of such as " module ", " component " or " unit " of element is only
The explanation for being conducive to the present invention, itself does not have a specific meaning.Therefore, " module ", " component " or " unit " can mix
Ground uses.
The present invention provides a kind of data communications method established in SSL encryption channel, the method includes:
In unmanned plane is communicated with the data of earth station, the encrypted tunnel of data bottom is done using SSL, number between the two
It is encrypted using identical default symmetric key based on SSL encryption channel according to communication, wherein unmanned plane is as passive connection pair
Role as playing the part of SSL service end, and earth station is then used as SSL clients, entire communication process to be held using unidirectional SSL certifications
Hand.
Data communications method based on above-mentioned foundation in SSL encryption channel proposes each embodiment of the method for the present invention.
It please refers to Fig.1.Fig. 1 is that a kind of data of the foundation of first embodiment of the invention offer in SSL encryption channel communicate
The flow chart of method.
A kind of data communications method established in SSL encryption channel, is applied to unmanned plane, the method includes:
After S1, the unmanned plane receive the transmission SSL authentication handshake request messages of earth station, sent to the earth station
Response message;
S2, the unmanned plane receive the symmetric key that the earth station sends;
S3, the unmanned plane use the symmetric key and the earth station into row data communication.
Further, the request message includes:
Client Hello message for the request of SSL authentication handshakes;Wherein, include the ground in the request message
Stand the random number R andom generated;
It is described to include to earth station transmission response message:Server Hello message is sent to the earth station,
In, the response message contains the unmanned plane exclusive identification code Copter_ID.
Further, the unmanned plane receives the symmetric key (S2) that the earth station sends, and specifically includes:It is described symmetrical
Key is formed using the Copter_ID is encrypted according to a symmetric cryptography of the generating random number by the earth station.
Further, the unmanned plane, which uses, presets symmetric key and the earth station into row data communication (S3), specifically
Including:It is sent to the data of the unmanned plane using the symmetric key encryption, is received using the symmetric key decryption
The data that unmanned plane is sent.
Further, the method still further comprises:The unmanned plane is carried out using the symmetric key and earth station
While data communication, the inspection of communication integrality is carried out.
Preferably, the method still further comprises:The unmanned plane closes connection window after disconnecting communication every time, waits for
The preset time reactivates connection window.
For unmanned plane in the air it is possible that signal (such as WIFI or 4G) transient loss and cause frequently to hold again
The harmful effect of hand, unmanned plane use avoidance mechanism, close connection window after broken string every time, wait for a period of time (such as 10 seconds)
Reactivate connection window.Forbid all SSL earth stations client connections during this period.
Further, which can allow more earth stations to connect, the communications of the unmanned plane and more earth stations
Method is identical as single data communications method of earth station as the unmanned plane, which is authenticated logical one by one with more earth stations
Letter, specific implementation process refers to above method embodiment, and the technical characteristic in embodiment of the method is more in unmanned plane connection
Corresponding in the embodiment of earth station to be applicable in, which is not described herein again.
Preferably, this method further comprises:When more earth stations connect same unmanned plane, in order to mitigate many-one
Pressure of shaking hands, unmanned plane can skip the authentication of earth station, this is because in SSL unilateral authentication flows, server
It is to allow optionally whether to require client identity certification.
It please refers to Fig.3.Fig. 3 is that a kind of data of the foundation of third embodiment of the invention offer in SSL encryption channel communicate
The flow chart of method.
In an embodiment of the present invention, in unmanned plane is communicated with the data of earth station, adding for data bottom, is done using SSL
Close channel, data communication between the two are encrypted based on SSL encryption channel using identical default symmetric key, wherein
Unmanned plane plays the part of the role at SSL service end as passive connecting object, and earth station is then used as SSL clients, entirely communicates
The unidirectional SSL authentication handshakes of Cheng Caiyong.
A kind of data communications method established in SSL encryption channel is applied to unmanned plane, including:
S110, earth station send Client Hello message to unmanned plane, are asked for SSL authentication handshakes;Wherein, should
Client Hello message contains the random number R andom of earth station's generation;
After S120, unmanned plane receive the Client Hello message of SSL authentication handshakes request of earth station, Server is sent
Hello message establishes SSL authentication handshakes to earth station, with earth station;Wherein, which contains unmanned plane
Exclusive identification code Copter_ID;
S130, earth station using unmanned plane be transmitted through come Server Hello information authentications communication connection legitimacy, such as
Fruit legitimate verification is not over communication connection will be switched off.
S140, earth station's one symmetric cryptography of random output, add the symmetric cryptography using unmanned plane Copter_ID
It is close, symmetric key is formed, the symmetric key is then sent to unmanned plane.
S150, earth station send information to unmanned plane, indicate that earth station carries out data using the symmetric key and unmanned plane
Communication, while notifying unmanned plane, earth station SSL authentication handshake processes terminate.
S160, unmanned plane ground station send message, indicate that unmanned plane carries out data using the symmetric key and earth station
Communication, while notifying earth station, unmanned plane SSL authentication handshake processes terminate.
S170, SSL authentication handshake terminate, and start the data communication of SSL escape ways, earth station and unmanned plane begin to use
Identical symmetric key is carried out at the same time the inspection of communication integrality into row data communication.So far, unmanned plane and earth station all pass through
Two parameters (Random, Copter_ID) generate symmetric key, and the encryption and decryption of the secure data communication for ssl protocol is logical
Letter.
Preferably, this method still further comprises:The unmanned plane closes connection window after disconnecting communication every time, waits for pre-
If time reactivate connection window.
For unmanned plane in the air it is possible that signal (such as WIFI or 4G) transient loss and cause frequently to hold again
The harmful effect of hand, unmanned plane use avoidance mechanism, close connection window after broken string every time, wait for a period of time (such as 10 seconds)
Reactivate connection window.Forbid all SSL earth stations client connections during this period.
Further, which can allow more earth stations to connect, the communications of the unmanned plane and more earth stations
Method is identical as single data communications method of earth station as the unmanned plane, which is authenticated logical one by one with more earth stations
Letter, specific implementation process refers to above method embodiment, and the technical characteristic in embodiment of the method is more in unmanned plane connection
Corresponding in the embodiment of earth station to be applicable in, which is not described herein again.
Preferably, this method further comprises:When more earth stations connect same unmanned plane, in order to mitigate many-one
Pressure of shaking hands, unmanned plane can skip the authentication of earth station, this is because in SSL unilateral authentication flows, server
It is to allow optionally whether to require client identity certification.
It please refers to Fig.2.Fig. 2 is that a kind of data of the foundation of second embodiment of the invention offer in SSL encryption channel communicate
The structural schematic diagram of system.
In an embodiment of the present invention, in unmanned plane is communicated with the data of earth station, adding for data bottom, is done using SSL
Close channel, data communication between the two are encrypted based on SSL encryption channel using identical default symmetric key, wherein
Unmanned plane plays the part of the role at SSL service end as passive connecting object, and earth station is then used as SSL clients, entirely communicates
The unidirectional SSL authentication handshakes of Cheng Caiyong.
A kind of data communication system established in SSL encryption channel, the system include:Unmanned plane 200 and earth station 300;
Wherein:
The unmanned plane 200 uses ssl protocol to carry out SSL authentication handshakes with the earth station 300, and using symmetric key and is somebody's turn to do
Earth station 300 is into row data communication;
Wherein, which carries out SSL authentication handshakes using ssl protocol and the earth station 300, specifically includes:
The Client Hello message for the request of SSL authentication handshakes that 200 satellite receiver 300 of unmanned plane is sent;Its
In, which contains the random number R andom of earth station's generation;
After unmanned plane receives the Client Hello message of SSL authentication handshakes request of earth station, Server is sent
Hello message establishes SSL authentication handshakes to earth station, with earth station;Wherein, which contains unmanned plane
Exclusive identification code Copter_ID.
Wherein, which uses symmetric key and the earth station 300 into row data communication;It specifically includes:
The symmetric key for the coded communication that unmanned plane satellite receiver is sent, wherein the symmetric key is by earth station
One symmetric cryptography of random output, using what is generated after unmanned plane Copter_ID encryptions, between unmanned plane and earth station
Data encryption communicates;
Unmanned plane ground station sends message, indicate unmanned plane using the symmetric key and earth station into row data communication,
Earth station, SSL authentication handshake processes is notified to terminate simultaneously.So far, unmanned plane and earth station establish the data of SSL escape ways
Communication, unmanned plane use identical symmetric key and earth station into row data communication.
The earth station 300 carries out SSL authentication handshakes using ssl protocol and unmanned plane, and uses symmetric key and unmanned plane
It stands into row data communication.Wherein:
The earth station 300 carries out SSL authentication handshakes using ssl protocol and unmanned plane;It specifically includes:
Earth station sends Client Hello message to unmanned plane, is asked for SSL authentication handshakes;Wherein, the Client
Hello message contains the random number R andom of earth station's generation;
Ground station reception unmanned plane sends the Server Hello message returned, and SSL authentication handshakes are established with earth station;Its
In, which contains unmanned plane exclusive identification code Copter_ID;
Earth station using unmanned plane be transmitted through come Server Hello information authentications communication connection legitimacy, if legal
Property verification not over communication connection will be switched off.
The earth station 300 uses symmetric key and unmanned plane station into row data communication;It specifically includes:
Earth station's one symmetric cryptography of random output, is encrypted the symmetric cryptography using unmanned plane Copter_ID, shape
At symmetric key, the symmetric key is then sent to unmanned plane;
Earth station sends information to unmanned plane, indicate earth station using the symmetric key and unmanned plane into row data communication,
Unmanned plane, earth station SSL authentication handshake processes is notified to terminate simultaneously.So far, earth station and unmanned plane establish SSL escape ways
Data communication, earth station is using identical symmetric key and unmanned plane into row data communication.
In addition, the embodiment of the present invention also provides a kind of data communication equipment, it is applied to unmanned plane, described device includes:The
One authentication module, the first receiving module, data communication module, wherein:
First authentication module, after the transmission SSL authentication handshake request messages that earth station is received for the unmanned plane,
Response message is sent to the earth station;
First receiving module receives the symmetric key that the earth station sends for the unmanned plane;
The data communication module carries out data using the symmetric key and the earth station for the unmanned plane and leads to
Letter.
Further, the request message includes:
Client Hello message for the request of SSL authentication handshakes;Wherein, include the ground in the request message
Stand the random number R andom generated;
It is described to include to earth station transmission response message:Server Hello message is sent to the earth station,
In, the response message contains the unmanned plane exclusive identification code Copter_ID.
Further, first receiving module, specifically includes:The symmetric key is described in earth station utilization
Copter_ID is encrypted to be formed according to a symmetric cryptography of the generating random number.
Further, the data communication module, specifically includes:Using the symmetric key encryption be sent to it is described nobody
The data of machine, the data sent using the unmanned plane that the symmetric key decryption receives.
Further, the data communication equipment still further comprises:Inspection module, described in unmanned plane use
While symmetric key carries out data communication with earth station, the inspection of communication integrality is carried out.
Preferably, first authentication module still further comprises:The unmanned plane closes connection after disconnecting communication every time
Window waits for the preset time to reactivate connection window.
It should be noted that above-mentioned data communication equipment embodiment belongs to same design with first method embodiment, have
Body realizes that process refers to first method embodiment, and the technical characteristic in first method embodiment is in data communication equipment embodiment
In it is corresponding be applicable in, which is not described herein again.
In addition, the embodiment of the present invention also provides a kind of unmanned plane, which includes:Memory, processor and storage
It is one or more of in the memory and one or more computer program that can run on the processor
To realize the following step of the data communications method of first embodiment of the invention offer when computer program is executed by the processor
Suddenly:
After S1, the unmanned plane receive the transmission SSL authentication handshake request messages of earth station, sent to the earth station
Response message;
S2, the unmanned plane receive the symmetric key that the earth station sends;
S3, the unmanned plane use the symmetric key and the earth station into row data communication.
Further, the request message includes:
Client Hello message for the request of SSL authentication handshakes;Wherein, include the ground in the request message
Stand the random number R andom generated;
It is described to include to earth station transmission response message:Server Hello message is sent to the earth station,
In, the response message contains the unmanned plane exclusive identification code Copter_ID.
Further, the unmanned plane receives the symmetric key (S2) that the earth station sends, and specifically includes:It is described symmetrical
Key is formed using the Copter_ID is encrypted according to a symmetric cryptography of the generating random number by the earth station.
Further, the unmanned plane, which uses, presets symmetric key and the earth station into row data communication (S3), specifically
Including:It is sent to the data of the unmanned plane using the symmetric key encryption, is received using the symmetric key decryption
The data that unmanned plane is sent.
Further, the method still further comprises:The unmanned plane is carried out using the symmetric key and earth station
While data communication, the inspection of communication integrality is carried out.
Preferably, the method still further comprises:The unmanned plane closes connection window after disconnecting communication every time, waits for
The preset time reactivates connection window.
For unmanned plane in the air it is possible that signal (such as WIFI or 4G) transient loss and cause frequently to hold again
The harmful effect of hand, unmanned plane use avoidance mechanism, close connection window after broken string every time, wait for a period of time (such as 10 seconds)
Reactivate connection window.Forbid all SSL earth stations client connections during this period.
Further, which can allow more earth stations to connect, the communications of the unmanned plane and more earth stations
Method is identical as single data communications method of earth station as the unmanned plane, which is authenticated logical one by one with more earth stations
Letter, specific implementation process refers to above method embodiment, and the technical characteristic in embodiment of the method is more in unmanned plane connection
Corresponding in the embodiment of earth station to be applicable in, which is not described herein again.
Preferably, this method further comprises:When more earth stations connect same unmanned plane, in order to mitigate many-one
Pressure of shaking hands, unmanned plane can skip the authentication of earth station, this is because in SSL unilateral authentication flows, server
It is to allow optionally whether to require client identity certification.
It should be noted that above-mentioned unmanned aerial vehicle example belongs to same design with first method embodiment, implement
Process refers to first method embodiment, and the technical characteristic in first method embodiment is corresponding suitable in unmanned aerial vehicle example
With which is not described herein again.
In addition, the embodiment of the present invention additionally provides a kind of computer readable storage medium, the computer-readable storage medium
One or more transmission program established in the data communications method in SSL encryption channel is stored in matter, the foundation is in SSL
To realize the embodiment of the present invention when one or more transmission program of the data communications method of encrypted tunnel is executed by processor
Following steps of the foundation of offer in the data communications method in SSL encryption channel:
A kind of data communications method established in SSL encryption channel, is applied to unmanned plane, the method includes:
After S1, the unmanned plane receive the transmission SSL authentication handshake request messages of earth station, sent to the earth station
Response message;
S2, the unmanned plane receive the symmetric key that the earth station sends;
S3, the unmanned plane use the symmetric key and the earth station into row data communication.
Further, the request message includes:
Client Hello message for the request of SSL authentication handshakes;Wherein, include the ground in the request message
Stand the random number R andom generated;
It is described to include to earth station transmission response message:Server Hello message is sent to the earth station,
In, the response message contains the unmanned plane exclusive identification code Copter_ID.
Further, the unmanned plane receives the symmetric key (S2) that the earth station sends, and specifically includes:It is described symmetrical
Key is formed using the Copter_ID is encrypted according to a symmetric cryptography of the generating random number by the earth station.
Further, the unmanned plane, which uses, presets symmetric key and the earth station into row data communication (S3), specifically
Including:It is sent to the data of the unmanned plane using the symmetric key encryption, is received using the symmetric key decryption
The data that unmanned plane is sent.
Further, the method still further comprises:The unmanned plane is carried out using the symmetric key and earth station
While data communication, the inspection of communication integrality is carried out.
Preferably, the method still further comprises:The unmanned plane closes connection window after disconnecting communication every time, waits for
The preset time reactivates connection window.
For unmanned plane in the air it is possible that signal (such as WIFI or 4G) transient loss and cause frequently to hold again
The harmful effect of hand, unmanned plane use avoidance mechanism, close connection window after broken string every time, wait for a period of time (such as 10 seconds)
Reactivate connection window.Forbid all SSL earth stations client connections during this period.
Further, which can allow more earth stations to connect, the communications of the unmanned plane and more earth stations
Method is identical as single data communications method of earth station as the unmanned plane, which is authenticated logical one by one with more earth stations
Letter, specific implementation process refers to above method embodiment, and the technical characteristic in embodiment of the method is more in unmanned plane connection
Corresponding in the embodiment of earth station to be applicable in, which is not described herein again.
Preferably, this method further comprises:When more earth stations connect same unmanned plane, in order to mitigate many-one
Pressure of shaking hands, unmanned plane can skip the authentication of earth station, this is because in SSL unilateral authentication flows, server
It is to allow optionally whether to require client identity certification.
It should be noted that the data communication party of foundation on above computer readable storage medium storing program for executing in SSL encryption channel
Method embodiment belongs to same design with first method embodiment, and specific implementation process refers to first method embodiment, and first
Technical characteristic in embodiment of the method is corresponding applicable in the embodiment of above computer readable storage medium storing program for executing, no longer superfluous here
It states.
It please refers to Fig.4.Fig. 4 is that a kind of data of the foundation of fourth embodiment of the invention offer in SSL encryption channel communicate
The flow chart of method.
A kind of data communications method established in SSL encryption channel, is applied to earth station, the method includes:
S50, the earth station carry out SSL authentication handshakes using Secure Socket Layer ssl protocol and unmanned plane;
S60, the earth station generate symmetric key, and the symmetric key are sent to the unmanned plane;
S70, the earth station use the symmetric key and the unmanned plane into row data communication.
Further, the earth station carries out SSL authentication handshakes (S50) using ssl protocol and unmanned plane, specifically includes:
S501, the earth station send the request message for SSL authentication handshakes to the unmanned plane;Wherein, described to ask
It includes the random number that the earth station generates to seek message;
The response message that unmanned plane described in S502, the ground station reception is sent, SSL authentication handshakes are established with unmanned plane;
Wherein, include the unmanned plane exclusive identification code Copter_ID in the response message;
S503, the earth station according to the response message verification communication connection legitimacy, if verification not over,
The communication connection with the unmanned plane is then disconnected, otherwise establishes SSL traffic link with the unmanned plane.
Further, earth station's generation symmetric key includes:The earth station is according to the generating random number one
Symmetric cryptography is encrypted using the unmanned plane Copter_ID, forms symmetric key.
Further, the earth station is included using the symmetric key and unmanned plane progress data communications packets:It is described
Earth station is sent to the data of the unmanned plane using the symmetric key encryption, is received using the symmetric key decryption
The data that unmanned plane is sent.
In addition, the embodiment of the present invention also provides a kind of data communication equipment, it is applied to earth station, including:Second certification mould
Block, Symmetric key generation module, symmetric key sending module, data transmission module, wherein:
Second authentication module, for carrying out SSL authentication handshakes using Secure Socket Layer ssl protocol and unmanned plane;
The Symmetric key generation module, for generating symmetric key;
The symmetric key sending module, for the symmetric key to be sent to the unmanned plane;
The data transmission module, for using the symmetric key and the unmanned plane into row data communication.
Further, second authentication module includes:Request unit, receiving unit, link establishment unit, wherein:
The request unit, for sending the request message for SSL authentication handshakes to the unmanned plane;Wherein, described
Request message includes the random number that the earth station generates;
The receiving unit, the corresponding message sent for receiving the unmanned plane, establishes SSL certifications with unmanned plane and holds
Hand;Wherein, include the unmanned plane exclusive identification code CopterID in the response message;
The link establishment unit, for the legitimacy according to response message verification communication connection, if verification does not have
Have and pass through, then disconnects the communication connection with the unmanned plane, otherwise establish SSL traffic link with the unmanned plane.
Further, the Symmetric key generation module is specifically used for:The earth station is according to the generating random number one
A symmetric cryptography is encrypted using the unmanned plane Copter_ID, forms symmetric key.
Further, the data transmission module is specifically used for:The earth station is sent using the symmetric key encryption
To the data of the unmanned plane, the data sent using the unmanned plane that the symmetric key decryption receives.
In addition, the embodiment of the present invention also provides a kind of earth station, which includes:Memory, processor and storage
It is one or more of in the memory and one or more computer program that can run on the processor
When computer program is executed by the processor with realize fourth embodiment of the invention provide the data communications method with
Lower step:
S50, the earth station carry out SSL authentication handshakes using Secure Socket Layer ssl protocol and unmanned plane;
S60, the earth station generate symmetric key, and the symmetric key are sent to the unmanned plane;
S70, the earth station use the symmetric key and the unmanned plane into row data communication.
Further, the earth station carries out SSL authentication handshakes (S50) using ssl protocol and unmanned plane, specifically includes:
S501, the earth station send the request message for SSL authentication handshakes to the unmanned plane;Wherein, described to ask
It includes the random number that the earth station generates to seek message;
The response message that unmanned plane described in S502, the ground station reception is sent, SSL authentication handshakes are established with unmanned plane;
Wherein, include the unmanned plane exclusive identification code Copter_ID in the response message;
S503, the earth station according to the response message verification communication connection legitimacy, if verification not over,
The communication connection with the unmanned plane is then disconnected, otherwise establishes SSL traffic link with the unmanned plane.
Further, earth station's generation symmetric key includes:The earth station is according to the generating random number one
Symmetric cryptography is encrypted using the unmanned plane Copter_ID, forms symmetric key.
Further, the earth station is included using the symmetric key and unmanned plane progress data communications packets:It is described
Earth station is sent to the data of the unmanned plane using the symmetric key encryption, is received using the symmetric key decryption
The data that unmanned plane is sent.
It should be noted that above-mentioned earth station's embodiment belongs to same design with fourth method embodiment, implement
Process refers to fourth method embodiment, and the technical characteristic in fourth method embodiment is corresponding suitable in earth station's embodiment
With which is not described herein again.
In addition, the embodiment of the present invention also provides a kind of computer readable storage medium, the computer readable storage medium
On be stored with data communication program, when the data communication program is executed by processor realize fourth embodiment of the invention provide institute
The following steps for the data communications method stated:
S50, the earth station carry out SSL authentication handshakes using Secure Socket Layer ssl protocol and unmanned plane;
S60, the earth station generate symmetric key, and the symmetric key are sent to the unmanned plane;
S70, the earth station use the symmetric key and the unmanned plane into row data communication.
Further, the earth station carries out SSL authentication handshakes (S50) using ssl protocol and unmanned plane, specifically includes:
S501, the earth station send the request message for SSL authentication handshakes to the unmanned plane;Wherein, described to ask
It includes the random number that the earth station generates to seek message;
The response message that unmanned plane described in S502, the ground station reception is sent, SSL authentication handshakes are established with unmanned plane;
Wherein, include the unmanned plane exclusive identification code Copter_ID in the response message;
S503, the earth station according to the response message verification communication connection legitimacy, if verification not over,
The communication connection with the unmanned plane is then disconnected, otherwise establishes SSL traffic link with the unmanned plane.
Further, earth station's generation symmetric key includes:The earth station is according to the generating random number one
Symmetric cryptography is encrypted using the unmanned plane Copter_ID, forms symmetric key.
Further, the earth station is included using the symmetric key and unmanned plane progress data communications packets:It is described
Earth station is sent to the data of the unmanned plane using the symmetric key encryption, is received using the symmetric key decryption
The data that unmanned plane is sent.
It should be noted that earth station of the foundation in SSL encryption channel on above computer readable storage medium storing program for executing communicates
Transmission method embodiment belongs to same design with fourth method embodiment, and specific implementation process refers to fourth method embodiment,
And the technical characteristic in fourth method embodiment is corresponding applicable in the embodiment of above computer readable storage medium storing program for executing, here
It repeats no more.
A kind of data communications method, device, unmanned plane, earth station and computer storage media provided by the invention, pass through
SSL authentication handshakes are carried out using ssl protocol and earth station using unmanned plane, SSL certifications use identical default symmetrical after passing through
Key and earth station, into the data transmission method of row data communication, are not increasing UAV Communication in the SSL encryption channel of foundation
In the case of protocol complexity, the safety that unmanned plane is communicated with earth station data is improved, the usage experience of user is promoted, increase
Unmanned plane value-added content of product.
It should be noted that herein, the terms "include", "comprise" or its any other variant are intended to non-row
His property includes, so that process, method, article or device including a series of elements include not only those elements, and
And further include other elements that are not explicitly listed, or further include for this process, method, article or device institute it is intrinsic
Element.In the absence of more restrictions, the element limited by sentence "including a ...", it is not excluded that including this
There is also other identical elements in the process of element, method, article or device.
The embodiments of the present invention are for illustration only, can not represent the quality of embodiment.
Through the above description of the embodiments, those skilled in the art can be understood that above-described embodiment side
Method can add the mode of required general hardware platform to realize by software, naturally it is also possible to by hardware, but in many cases
The former is more preferably embodiment.Based on this understanding, technical scheme of the present invention substantially in other words does the prior art
Going out the part of contribution can be expressed in the form of software products, which is stored in a storage medium
In (such as ROM/RAM, magnetic disc, CD), including some instructions are used so that a station terminal (can be mobile phone, computer, service
Device, air conditioner or network equipment etc.) execute method described in each embodiment of the present invention.
The embodiment of the present invention is described with above attached drawing, but the invention is not limited in above-mentioned specific
Embodiment, the above mentioned embodiment is only schematical, rather than restrictive, those skilled in the art
Under the inspiration of the present invention, without breaking away from the scope protected by the purposes and claims of the present invention, it can also make very much
Form, all of these belong to the protection of the present invention.
Claims (10)
1. a kind of data communications method is applied to unmanned plane, which is characterized in that the method includes:
After the unmanned plane receives the transmission Secure Socket Layer SSL authentication handshake request messages of earth station, to the earth station
Send response message;
The unmanned plane receives the symmetric key that the earth station sends;
The unmanned plane uses the symmetric key and the earth station into row data communication.
2. data communications method according to claim 1, which is characterized in that the request message includes:
Client Hello message for the request of SSL authentication handshakes;Wherein, it is given birth to comprising the earth station in the request message
At random number R andom;
It is described to include to earth station transmission response message:Server Hello message is sent to the earth station, wherein institute
It states response message and contains the unmanned plane exclusive identification code Copter_ID.
3. data communications method according to claim 2, which is characterized in that the unmanned plane receives the earth station and sends
Symmetric key include:The symmetric key is encrypted according to the random number using the Copter_ID by the earth station
The symmetric cryptography generated forms.
4. data communications method according to claim 3, which is characterized in that the unmanned plane using preset symmetric key and
The earth station carries out data communications packets and includes:The data of the unmanned plane are sent to using the symmetric key encryption, using institute
State the data that the unmanned plane that symmetric key decryption receives is sent.
5. data communications method according to claim 3, which is characterized in that the method still further comprises:The nothing
While the man-machine use symmetric key carries out data communication with earth station, the inspection of communication integrality is carried out.
6. data communications method according to claim 1, which is characterized in that the method still further comprises:The nothing
Connection window is closed after man-machine each disconnection communication, the preset time is waited for reactivate connection window.
7. a kind of data communication system, which is characterized in that including:One unmanned plane and several earth stations, the unmanned plane use root
Carry out data transmission according to data communications method according to any one of claims 1 to 6 and several earth stations.
8. a kind of data communication equipment, it is applied to unmanned plane, which is characterized in that described device includes:First authentication module, first
Receiving module, data communication module, wherein:
First authentication module, after the transmission SSL authentication handshake request messages that earth station is received for the unmanned plane, to
The earth station sends response message;
First receiving module receives the symmetric key that the earth station sends for the unmanned plane;
The data communication module uses the symmetric key and the earth station into row data communication for the unmanned plane.
9. a kind of unmanned plane, which is characterized in that including:It memory, processor and is stored in the memory and can be described
One or more computer program run on processor, one or more of computer programs are held by the processor
To realize such as the step of data communications method according to any one of claims 1 to 6 when row.
10. a kind of computer readable storage medium, which is characterized in that it is logical to be stored with data on the computer readable storage medium
Believe program, realizes that data according to any one of claims 1 to 6 such as communicate when the data communication program is executed by processor
The step of method, alternatively, the step of realizing data communications method as claimed in claim 7.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810373252.7A CN108683641A (en) | 2018-04-24 | 2018-04-24 | A kind of data communications method, device, unmanned plane and computer storage media |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810373252.7A CN108683641A (en) | 2018-04-24 | 2018-04-24 | A kind of data communications method, device, unmanned plane and computer storage media |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN108683641A true CN108683641A (en) | 2018-10-19 |
Family
ID=63801564
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201810373252.7A Pending CN108683641A (en) | 2018-04-24 | 2018-04-24 | A kind of data communications method, device, unmanned plane and computer storage media |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN108683641A (en) |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111002846A (en) * | 2019-12-13 | 2020-04-14 | 王晰 | Control method and system of unmanned aerial vehicle |
| WO2020132978A1 (en) * | 2018-12-26 | 2020-07-02 | 深圳市大疆创新科技有限公司 | Encrypted communication method, apparatus and system, and computer storage medium |
| CN112637845A (en) * | 2020-12-18 | 2021-04-09 | 深圳市赛为智能股份有限公司 | Unmanned aerial vehicle interactive authentication method and device, computer equipment and storage medium |
| CN114679268A (en) * | 2022-03-29 | 2022-06-28 | 湖北工业大学 | Method for mutual authentication and key agreement between unmanned aerial vehicles and storable medium |
| CN114726628A (en) * | 2022-04-11 | 2022-07-08 | 广东电网有限责任公司佛山供电局 | Unmanned aerial vehicle inspection system and encryption method thereof, unmanned aerial vehicle and ground terminal |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104994112A (en) * | 2015-07-23 | 2015-10-21 | 陈昊 | Method for encrypting communication data chain between unmanned aerial vehicle and ground station |
| CN106161363A (en) * | 2015-04-03 | 2016-11-23 | 上海庆科信息技术有限公司 | A kind of method and system of SSL connection establishment |
| CN106790090A (en) * | 2016-12-23 | 2017-05-31 | 北京奇虎科技有限公司 | Communication means, apparatus and system based on SSL |
| CN107104948A (en) * | 2017-03-21 | 2017-08-29 | 深圳洲际通航投资控股有限公司 | unmanned aerial vehicle data transmission method and unmanned aerial vehicle data transmission system |
| WO2017200323A1 (en) * | 2016-05-18 | 2017-11-23 | 삼성전자주식회사 | Electronic device for storing user data, and method therefor |
-
2018
- 2018-04-24 CN CN201810373252.7A patent/CN108683641A/en active Pending
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106161363A (en) * | 2015-04-03 | 2016-11-23 | 上海庆科信息技术有限公司 | A kind of method and system of SSL connection establishment |
| CN104994112A (en) * | 2015-07-23 | 2015-10-21 | 陈昊 | Method for encrypting communication data chain between unmanned aerial vehicle and ground station |
| WO2017200323A1 (en) * | 2016-05-18 | 2017-11-23 | 삼성전자주식회사 | Electronic device for storing user data, and method therefor |
| CN106790090A (en) * | 2016-12-23 | 2017-05-31 | 北京奇虎科技有限公司 | Communication means, apparatus and system based on SSL |
| CN107104948A (en) * | 2017-03-21 | 2017-08-29 | 深圳洲际通航投资控股有限公司 | unmanned aerial vehicle data transmission method and unmanned aerial vehicle data transmission system |
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2020132978A1 (en) * | 2018-12-26 | 2020-07-02 | 深圳市大疆创新科技有限公司 | Encrypted communication method, apparatus and system, and computer storage medium |
| CN111002846A (en) * | 2019-12-13 | 2020-04-14 | 王晰 | Control method and system of unmanned aerial vehicle |
| CN112637845A (en) * | 2020-12-18 | 2021-04-09 | 深圳市赛为智能股份有限公司 | Unmanned aerial vehicle interactive authentication method and device, computer equipment and storage medium |
| CN112637845B (en) * | 2020-12-18 | 2022-07-26 | 深圳市赛为智能股份有限公司 | Unmanned aerial vehicle interactive authentication method and device, computer equipment and storage medium |
| CN114679268A (en) * | 2022-03-29 | 2022-06-28 | 湖北工业大学 | Method for mutual authentication and key agreement between unmanned aerial vehicles and storable medium |
| CN114726628A (en) * | 2022-04-11 | 2022-07-08 | 广东电网有限责任公司佛山供电局 | Unmanned aerial vehicle inspection system and encryption method thereof, unmanned aerial vehicle and ground terminal |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN108683641A (en) | A kind of data communications method, device, unmanned plane and computer storage media | |
| US11025414B2 (en) | Key exchange method and apparatus | |
| CN102916869B (en) | Instant messaging method and system | |
| CN101340443B (en) | Session key negotiating method, system and server in communication network | |
| US8605904B2 (en) | Security method in wireless communication system having relay node | |
| CN102594555B (en) | Security protection method for data, entity on network side and communication terminal | |
| CN110463270A (en) | System and method for dynamic data relaying | |
| CN105610783B (en) | A kind of data transmission method and Internet of things system | |
| EP2713546A1 (en) | Method and device for data transmission | |
| CN104080086B (en) | Wireless connecting establishment method and wireless connection establish device | |
| CN108432338A (en) | A kind of data transmission system, method and apparatus | |
| CN112104604A (en) | System and method for realizing safety access service based on electric power internet of things management platform | |
| CN103795966B (en) | A kind of security video call implementing method and system based on digital certificate | |
| CN107181770A (en) | Method of data synchronization and system | |
| CN108781110A (en) | For the system and method by relay in telecommunication network data | |
| CN110300396A (en) | The WIFI distribution method, apparatus and terminal of smart machine | |
| CN110958308B (en) | Method for network distribution, Internet of things equipment and access equipment | |
| CN103312677B (en) | Terminal, server and the method for building up of communication connection | |
| CN104243146A (en) | Encryption communication method and device and terminal | |
| CN102271330A (en) | Terminal, network server and method for communication between terminal and network server | |
| CN108600221A (en) | A kind of data communications method, device, earth station and computer storage media | |
| CN104735037A (en) | Network authentication method, device and system | |
| CN102869009A (en) | Communication encryption application method and communication system | |
| CN110300110A (en) | A kind of encryption and decryption control method, charging pile and charging equipment | |
| CN105049201A (en) | Mobile equipment secret communication system based on quantum cryptography and mobile equipment secret communication method based on quantum cryptography |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20181019 |