JP2006325040A - Ip phone - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a technology of facilitating user's operations associated with encryption of a voice speech in an IP phone. <P>SOLUTION: The IP phone includes: an encryption user database 13 for registering encryption object telephone numbers being objects of communication encryption for speeches by the IP phone as encryption object telephone number records; and a signal detection section 12 for encrypting the speech by the IP phone started in succession to a fact of detection that a telephone number inputted by a user is coincident with any of the encryption object telephone numbers registered in the encryption user database 13. <P>COPYRIGHT: (C)2007,JPO&INPIT

Description

  The present invention relates to an IP telephone apparatus, and more particularly to an apparatus for performing communication encryption of a voice call by an IP telephone.

In recent years, IP telephones that transmit voice using an IP network such as the Internet have attracted attention as a new telephone form to replace conventional subscriber telephones, and have already been put into practical use (Japanese Patent Laid-Open No. 2005-45382). Issue gazette).
A general IP telephone system will be described with reference to FIG. 14. The IP telephone adapter performs necessary processing on dial signals and voice signals from the telephone, packetizes them, and transmits them to the IP network. Control of outgoing and incoming calls (call control) in the IP network is performed by a call control server, and voice packets of an IP telephone during a call are directly exchanged without going through the call control server.

  Next, a general connection sequence of an IP phone will be briefly described with reference to FIG. First, as an initial setting, the user sets the IP telephone number assigned by the IP telephone service provider in the IP telephone adapter, and then connects the IP telephone adapter to the IP network. Thereafter, the IP telephone adapter automatically acquires an IP address and registers the IP address and IP telephone number in the call control server. When user A raises the handset of telephone A, IP telephone adapter A sends a dial tone to telephone A. Thereafter, when the other party telephone number is dialed, IP telephone adapter A transmits the other party telephone number to the call control server in a call request protocol connection request message. The call control server manages a correspondence table of IP telephone numbers and IP addresses as shown in FIG. The call control server checks the IP address corresponding to the destination telephone number, and transmits a connection request message to the IP address.

  The IP telephone adapter B that has received the connection request message sends a ring tone to the telephone B to notify the incoming call, and transmits a message indicating that the call is being made to the IP telephone adapter A via the call control server. To do. In response, IP telephone adapter A sends a ringing tone to telephone A. When user B picks up the handset of telephone B, IP telephone adapter B transmits a connection response message to IP telephone adapter A via the call control server. The IP telephone adapter A that has received the continuous response message notifies the telephone A of the response, and the call is started.

  Next, the configuration of a general IP telephone adapter 1 is shown in FIG. The signal detector 2 detects the signal from the telephone 6 and determines the content of the signal. The call control unit 3 controls connection and disconnection with the party with whom the call is made. In addition, most commercially available IP telephone adapters 1 have a function of using a public telephone network for destinations that cannot make IP telephone calls. The audio processing unit 4 performs analog / digital signal conversion and audio encoding / decoding. The packet processing unit 5 packetizes / depackets the call control signal and the voice signal.

The main features of the IP phone described above are: (1) A user of an IP phone service provided by the same provider can make a call for free or at a low charge regardless of time or distance. (2) By using 050 number, there is no need to change the phone number even if you move or move, etc. (3) There is great potential for new services that merge IP phone and other applications. There are some points.
However, since IP phones use Internet technology, there is a problem that they are easily wiretapped. Therefore, the Internet Engineering Task Force (IETF), which is a standard organization for Internet performance, has SRTP (Secure Real-time), a technology for encrypting packets.
Transport Protocol) is standardized (RFC3711). SRTP is a technology that mainly encrypts real-time communications such as voice and video, and is expected as an encryption method for IP phones.

  Therefore, FIG. 17 shows a configuration of a general IP telephone adapter equipped with an encryption function. The encryption processing unit 7 encrypts / decrypts the audio signal according to the user setting value. The encrypted information database 8 generally has the configuration shown in FIG. 18 and can be set by the database management unit 9 from a personal computer PC connected by the I / O unit 10. Examples of encryption parameters include the validity / invalidity of the encryption function, the algorithm used for encryption, the update lifetime of the encryption key, and the like. The default setting value means a setting value at the time of factory shipment, and the user setting value means a value that the user has independently changed the setting. FIG. 18 shows an example in which the user has independently changed the encryption valid / invalid setting, which is an encryption parameter, from “invalid” to “valid”.

  When encrypting an IP phone, negotiate encryption information with the other party. As one of the negotiation methods, the transmission side IP telephone adapter adds the encryption information to the connection request message and transmits it. The encryption information at this time is an encryption parameter group reflecting the user setting value. The incoming IP telephone adapter sends the connection response message with the encrypted information if the encrypted information is acceptable, and returns an error message if it is not accepted or has no encryption function. To finish.

By the way, in order to make a call encrypted by the IP phone adapter, after connecting a PC to the IP phone adapter, the IP phone adapter is accessed from the PC PC, and the WEB interface of the setting screen displayed on the PC PC Usually, the encryption setting is performed via the. Similarly, various encryption parameters for the IP telephone adapter are set using a personal computer PC.
However, if the setting of whether or not to encrypt a voice call using an IP phone is purposely performed by starting the personal computer PC, there is a problem that it is very troublesome and troublesome. In particular, since it takes time to start up the personal computer PC, the user is stressed, and the user who is unfamiliar with the personal computer operation cannot perform the encryption setting itself. Also, when changing the setting of the encryption parameter related to the encryption setting, if it must be performed from the personal computer PC, it cannot be said that the operability is good.
JP-A-2005-45382 SIP textbook (supervised by Yasufumi Chimura, Toshifumi Murata, IDG Japan, May 2003)

  The present invention has been made in view of the above problems, and an object of the present invention is to facilitate user operations related to encryption of voice calls in IP telephones.

In order to solve the above problems, the present invention provides an encrypted user database for registering an encryption target telephone number as an encryption target telephone number record, which is a target for performing communication encryption of an IP telephone call,
When detecting that the telephone number input by the user matches the telephone number to be encrypted registered in the encrypted user database, the signal detection for encrypting the call by the IP telephone starting from the detection. And
An IP telephone device characterized by comprising:

With the above configuration, the user does not have to bother to access from a personal computer or the like and set the start of encryption, and the IP phone call is automatically encrypted according to the destination telephone number. Significant simplification can be achieved.
The IP telephone device may be a separate IP telephone adapter from the telephone body, or may be integrated with the telephone body. Also, the dial code is preferably one using numbers 0 to 9 and symbols * and #. Needless to say, the present invention can be applied to both a push phone and a dial phone.

An encryption information database in which a plurality of setting values are registered as options for each encryption parameter used for the communication encryption, and the encryption information database encrypts a dial code for identifying the type of the encryption parameter Assigned as a parameter identification code, and assigned as a setting value identification code a dial code that identifies the type of each setting value,
In the encryption target telephone number record of the encryption user database, the setting value selected from the encryption information database for each encryption target telephone number is registered as the encryption parameter,
It is preferable that the IP telephone call is encrypted using the encryption parameter registered in the encrypted user database.

  With the above configuration, since the setting value of the encryption parameter used for encryption is included in the encryption target telephone number record of the encryption user database, for example, the setting value of each encryption parameter different for each destination telephone number is set. This can be applied automatically, and the encryption parameter setting operation can be simplified. Examples of encryption parameters include the validity / invalidity of the encryption function, the type of encryption algorithm, the update lifetime of the encryption key, the type of authentication algorithm for the encrypted data, and the like.

The encryption information database registers a dial code as a registration identification code, which is a signal for registering the encryption target telephone number record in the encryption user database,
When it is detected that the dial code input by the user matches the registration identification code, the telephone number input subsequent to the registration identification code is registered in the encrypted user database as the telephone number to be encrypted. It is preferable that an identification code determination unit is provided.

  With the above configuration, when registering a destination telephone number that is automatically encrypted for a call in the encrypted user database, registration work can be performed only by telephone operation, so even a user unfamiliar with a personal computer or the like can resist. The user's operability and versatility are dramatically improved.

In the encryption information database, a dial code serving as a cue to delete the encryption target telephone number record registered in the encryption user database is registered as a deletion identification code.
When it is detected that the dial code input by the user matches the deletion identification code, the encryption target telephone number record corresponding to the telephone number input following the deletion identification code is stored in the encrypted user database. It is preferable that an identification code determination unit to be deleted from is provided.

  With the above configuration, when deleting a destination telephone number to be encrypted that has already been registered in the encrypted user database, it can be deleted only by telephone operation, so even a user unfamiliar with a personal computer can operate without resistance. The user operability and versatility are greatly improved.

In the encryption information database, a dial code serving as a cue to delete all encryption target telephone number records registered in the encryption user database is registered as a collective deletion identification code,
When it is detected that the dial code input by the user matches the batch deletion identification code, an identification code determination unit is provided that deletes all the encryption target telephone number records registered in the encrypted user database. It is preferable.

  With the above configuration, when multiple destination telephone numbers to be encrypted are registered in the encrypted user database, it is possible to delete all the phone numbers to be encrypted because it can be deleted at once by simple telephone operation. In this case, it is not necessary to perform the deletion operation for each record, and the operability is improved.

The encryption information database registers, as a change identification code, a dial code serving as a cue to change a setting value of an encryption parameter of an encryption target telephone number record registered in the encryption user database,
When it is detected that the dial code input by the user matches the change identification code, the encryption identification telephone number record corresponding to the telephone number input after the change identification code An identification code determination unit that changes an encryption parameter corresponding to the encryption parameter identification code input later to a setting value corresponding to the setting value identification code input after the encryption parameter identification code; And preferred.

  With the above configuration, the user does not have to access and change the setting values of various encryption parameters from a personal computer or the like, and can be performed only by dialing, so the encryption setting work can be greatly simplified. This dramatically improves user operability.

  The identification code determination unit corresponds to a plurality of encryption parameters corresponding to the set value identification code by determining a plurality of dial codes that are dialed with the encryption parameter identification code and the set value identification code as one set. It is preferable that the setting value is changed to the set value.

  With the above configuration, it is possible to collectively change the setting of a plurality of encryption parameters by a series of dial operations, and the operability for the user is further improved.

  As is apparent from the above description, according to the present invention, the user does not have to bother to access the personal computer from the personal computer or the like to set the start of encryption, and automatically makes an IP phone call according to the destination telephone number. Since encryption is performed, the encryption setting work can be greatly simplified.

Embodiments of the present invention will be described with reference to the drawings.
1 to 6 show a first embodiment.
The IP telephone adapter 11 (IP telephone apparatus) of the embodiment is applied to the IP telephone system shown in FIG. 14, and the overall configuration of the system is the same as that of FIG.

As shown in FIG. 1, the IP telephone adapter 11 includes a signal detection unit 12, a call control unit 3, a voice processing unit 4, a packet processing unit 5, an encryption processing unit 7, an encrypted user database 13, and the like. The encrypted information database 14 and the identification code determination unit 15 are provided.
The signal detector 12 has a function of detecting a dial signal and a voice signal transmitted from the telephone 6, and a function of collating a dialed telephone number with the encrypted user database 13 as will be described later. The call control unit 3 has functions of digitizing dial signals other than voice and creating a connection request message including a destination telephone number to be transmitted to the call control server when a call is started. The voice processing unit 4 has a function of converting voice data transmitted from the telephone 6 from analog to digital. The packet processing unit 5 has a function of packetizing data transmitted from the call control unit 3 and the voice processing unit 4 and transmitting the packet to the IP network, or depacketizing data received from the IP network. The encryption processing unit 7 has a function of performing encryption / decryption of audio data based on the setting contents registered in the encryption information database 14.

  As shown in FIG. 2, the encrypted user database 13 registers, as a record, an encryption target telephone number that is a target for performing communication encryption of a call using an IP phone. Therefore, the signal detection unit 12 determines whether or not the telephone number input by the user matches the encryption target telephone number registered in the encrypted user database 13, and if there is a match, the process starts next. IP phone calls are encrypted.

  As shown in FIG. 3, the encryption information database 14 includes a type of encryption parameter, a default setting value that is a setting content at the time of shipment of each encryption parameter, and a user-customized setting content for each encryption parameter. The user setting value is registered. Specifically, the encryption parameters include encryption enable / disable setting, encryption key update lifetime (time to update an encryption key generated by a random number), encryption algorithm, and the like. The default setting value of each encryption parameter is that the encryption algorithm is DES (Data Encryption Standard), the update lifetime of the encryption key is one day, and the encryption is valid. As for the user setting value of each parameter, the encryption algorithm is 3DES, the lifetime of the encryption key is one day, and the encryption is valid.

  The encryption parameter is provided with a registration identification code, a deletion identification code, and a collective deletion identification code. The registration identification code means a dial code serving as a cue to register the telephone number input subsequently to the encrypted user database 13 as an encryption target telephone number. The deletion identification code means a dial code serving as a cue to delete the telephone number inputted subsequently from the encrypted user database 13. The collective deletion identification code means a dial code serving as a cue to delete all the encryption target telephone number records registered in the encrypted user database 13. The default setting values of the encryption parameters are, for example, a registration identification code “777”, a deletion identification code “888”, and a batch deletion identification code “999”. The user setting value of each parameter has a registration identification code “500”, a deletion identification code “600”, and a batch deletion identification code “601”. In the present embodiment, each identification code is only a number, but a symbol such as * or # may be used.

  When the identification code determination unit 15 detects that the dial code transmitted from the telephone 6 by a user operation matches the registration identification code, the deletion identification code, or the collective deletion identification code registered in the encryption information database 14, It has a function of performing predetermined registration work and deletion work to the encrypted user database 13. Specifically, when the identification code determination unit 15 detects that the dial code input by the user matches the registered identification code, the telephone number input following the registered identification code is used as the encryption target telephone number. It is registered in the encrypted user database 13. When the identification code determination unit 15 detects that the dial code input by the user matches the deletion identification code, the telephone number input following the deletion identification code is deleted from the encrypted user database 13. To do. When the identification code determination unit 15 detects that the dial code input by the user matches the batch deletion identification code, all the encryption target telephone numbers are deleted from the encryption user database 13.

Next, a call start operation using an IP phone will be described.
As shown in FIG. 4, when the calling side user lifts the handset from the telephone 6 (step S1) and dials the destination telephone number (step S2), the signal detection unit 2 of the IP telephone adapter 11 receives the encrypted user database 13. It is determined whether the telephone number dialed with reference to is an encryption target telephone number (step S3). If it matches the encryption target telephone number registered in the encrypted user database 13, the signal detection unit 12 informs the call control unit 3 of the contents of the user setting values of each encryption parameter in the encryption information database 14. Is requested to create a connection request message to which encrypted information reflecting the above is added (step S4). If the signal detection unit determines that the dialed telephone number does not match the encryption target telephone number registered in the encrypted user database, a normal connection request message that is not encrypted is created (step S5). Finally, the connection request message is transmitted to the call control server to start connection processing (step S6).

  With the above configuration, the user does not have to bother to access from a personal computer or the like to set encryption start, and the IP phone call is automatically encrypted according to the destination telephone number. As a result, the user operability is greatly improved. The IP telephone adapter 11 may be integrated with the telephone 6.

Next, the registration operation to the encrypted user database 13 will be described.
As shown in FIG. 5, the calling user lifts the handset from the telephone 6 (step S10), first dials the registration identification code “500”, and then dials the destination telephone number (step S11). (Step S12). The IP telephone adapter 11 sends the dial signal detected by the signal detection unit 12 to the identification code determination unit 15. The identification code determination unit 15 refers to the encryption information database 14, and the first code of the dialed code is registered. It is determined whether it is an identification code (step S13). If it is determined that it matches the registration identification code, it is determined whether the telephone number input subsequent to the registration identification code has already been registered in the encryption user database 13 as an encryption target telephone number (step S14). If it is determined that the telephone number is not yet registered, the telephone number is registered in the encrypted user database 13 as an encryption target telephone number (step S15). On the other hand, if it has already been registered, the process ends.

Next, the deletion operation from the encrypted user database 13 will be described.
As shown in FIG. 6, the calling user lifts the handset from the telephone 6 (step S20), first dials the deletion identification code “600”, and then dials the destination telephone number (step S21). (Step S22). The IP telephone adapter 11 sends the dial signal detected by the signal detection unit 12 to the identification code determination unit 15. The identification code determination unit 15 refers to the encryption information database 14 and deletes the first code of the dialed code. It is determined whether it is an identification code (step S23). If it is determined that it matches the deletion identification code, it is determined whether the telephone number input following the deletion identification code has already been registered in the encryption user database 13 as an encryption target telephone number (step S24). If it is determined that it is registered, the telephone number is deleted from the encrypted user database 13 (step S25). On the other hand, if it is not registered, the process is terminated as it is.
If the identification code determination unit 14 determines that the user has dialed only the collective deletion identification code and placed the handset, all of the encryption target telephone numbers registered in the encrypted user database 14 are deleted collectively. I am doing so.

4 to 13 show a second embodiment.
The difference from the first embodiment is that a plurality of encryption parameter setting value options are prepared in the encryption information database 14 ′, and the encryption parameter is set for each telephone number to be encrypted in the encryption user database 13 ′. It is a point.

  The configuration of the IP telephone adapter 11 is the same as that in FIG. 1, and the contents of the encrypted information database 14 ', the encrypted user database 13', and the identification code determination unit 15 'are different. As shown in FIG. 8, a plurality of setting values corresponding to each encryption parameter are registered in advance in the encryption information database 14 'of this embodiment. For example, two types of setting values, DES and 3DES, are prepared for the encryption algorithm, and the update lifetime of the encryption key is set to 1H (1 hour), 5H (5 hours), 1 day, 3 days 4 There are two types of encryption, and two types of valid / invalid encryption are available as set values.

In the encryption information database 14 ′, a dial code for identifying the type of each encryption parameter is assigned as an encryption parameter identification code for each encryption parameter. For example, the encryption parameter identification code is “301” for the encryption algorithm, “302” for the update lifetime of the encryption key, and “303” for the validity / invalidity of the encryption.
Further, a dial code that is a branch number for identifying the type of each setting value corresponding to the encryption parameter is assigned as a setting value identification code for each setting value. For example, regarding the encryption algorithm, DES is set to “1”, 3DES is set to “2”, and regarding the update lifetime of the encryption key, 1H is “1”, 5H is “2”, 1 day is “3”, 3 days. Is set to “4”, and the set value identification code is set to “1” for the validity and “2” for the invalidity regarding the validity / invalidity of the encryption. In the encryption information database 14 ′, initial setting values of encryption parameters when registering a new encryption target telephone number in the encryption user database 13 ′ described later are registered as user setting values.

  Further, as a difference from the first embodiment, the encryption information database 14 'is provided with a change identification code for the encryption parameter. The change identification code means a dial code serving as a cue to change the setting contents of the encryption parameter for the telephone number to be encrypted that is subsequently input. In the present embodiment, for example, the user setting value of the change identification code is “700”.

  As shown in FIG. 7, in the encrypted user database 13 ′, setting values selected from the encryption information database 14 ′ for each encryption target telephone number are registered as encryption parameters as encryption target telephone number records. ing. For example, for the encryption target telephone number 050-1234-6789, the encryption parameter is set such that the encryption algorithm is DES and the update lifetime of the encryption key is one day.

  The identification code determination unit 15 ′ detects that the dial code transmitted from the telephone 6 by the user operation is a change identification code, and subsequently, the encryption target telephone number, the encryption parameter identification code, and the set value identification code Is detected, the encryption parameter corresponding to the encryption parameter identification code of the encryption target telephone number is changed to a set value corresponding to the set value identification code.

Next, a call start operation of the IP telephone adapter according to the second embodiment will be described.
As shown in FIG. 9, when the calling side user lifts the handset from the telephone 6 (step S30) and dials the destination telephone number (step S31), the signal detection unit 2 refers to the encrypted user database 13 ′. It is determined whether the dialed telephone number is an encryption target telephone number (step S32). If it matches the encryption target telephone number registered in the encrypted user database 13 ′, the signal detection unit 12 registers with the call control unit 3 for each encryption target telephone number in the encrypted user database 13 ′. Request is made to create a connection request message to which the encryption information reflecting the contents of the encrypted parameter is added (step S33). If the signal detector 12 determines that the dialed telephone number does not match the encryption target telephone number registered in the encrypted user database 13 ', a normal connection request message that is not encrypted is created (step S1). S34). Finally, the connection request message is transmitted to the call control server to start the connection process (step S35).

  With the above configuration, different encryption parameters can be automatically applied for each destination telephone number, the encryption setting work is greatly simplified, and the user operability is greatly improved.

Next, the registration operation in the encrypted user database 13 ′ will be described.
As shown in FIG. 10, the calling user lifts the handset from the telephone 6 (step S40), first dials the registration identification code “500”, and then dials the destination telephone number (step S41). (Step S42). The IP telephone adapter sends the dial signal detected by the signal detection unit 12 to the identification code determination unit 15 ′, and refers to the encryption information database 14 ′ in the identification code determination unit 15 ′. Is a registration identification code (step S43). If it is determined that it matches the registration identification code, it is determined whether the telephone number input subsequent to the registration identification code has already been registered as an encryption target telephone number in the encrypted user database 13 '(step S44). If it is determined that the telephone number is not yet registered, the telephone number is registered in the encrypted user database 13 ′ as an encryption target telephone number (step S55). At this time, the user setting value of the encryption information database 14 ′ is applied as the encryption parameter of the encryption information registered as the encryption target telephone number record. On the other hand, if it has already been registered, the process ends.

Next, the deletion operation from the encrypted user database 13 ′ will be described.
As shown in FIG. 11, the calling user lifts the handset from the telephone 6 (step S50), first dials the deletion identification code "600", and then dials the destination telephone number (step S51). (Step S52). The IP telephone adapter sends the dial signal detected by the signal detection unit 12 to the identification code determination unit 15 ′, and refers to the encryption information database 14 ′ in the identification code determination unit 15 ′. Is a deletion identification code (step S53). If it is determined that it matches the deletion identification code, it is determined whether the telephone number input subsequent to the deletion identification code has already been registered as an encryption target telephone number in the encrypted user database 13 ′ (step S54). If it is determined that it is registered, the encryption target telephone number record corresponding to the telephone number is deleted from the encrypted user database 13 ′ (step S55). On the other hand, if it is not registered, the process is terminated as it is.
If the identification code determination unit 14 'determines that the user has dialed only the collective deletion identification code and placed the handset, all of the encryption target telephone number records registered in the encrypted user database 14' are stored. I'm trying to delete all at once.

  Next, an operation for changing the setting of the encryption parameter of the encrypted user database 13 'will be described.

  As shown in FIG. 12, when encrypting an IP telephone call, the calling user lifts the handset from the telephone 6 (step S60), first dials the change identification code "700", and then encrypts it. The telephone number whose parameter is to be changed is dialed, the encryption parameter identification code corresponding to the encryption parameter to be changed is subsequently dialed, and then the setting value identification code corresponding to the setting value to be changed is dialed (step S61). ) Place the handset (step S62). As shown in FIG. 12, a plurality of encryption parameters can be changed.

  After detecting the dial signal, the signal detector 12 of the IP telephone adapter sends the dial signal to the identification code determination unit 15. The identification code determination unit 15 refers to the change identification code registered in the encryption information database 14 ', and determines whether or not the first code of the dialed code is the change identification code (step S63). If the first code does not match the change identification code, the process is terminated as it is.

  On the other hand, when the first code matches the change identification code, the identification number determination unit 15 encrypts the telephone number dialed subsequent to the change identification code in the encrypted user database 13 ′. It is determined whether the telephone number is a target telephone number (step S64). If it is not an encryption target telephone number, the error processing is terminated (step S69). If the dialed telephone number matches the telephone number to be encrypted, it is determined whether the subsequent dial code is an encryption parameter identification code (step S65). If it is not an encryption parameter identification code, the error processing ends (step S69).

  On the other hand, when the dial code matches the encryption parameter identification code, it is determined that the dial code following the encryption parameter identification code is valid as the set value identification code registered in the encryption information database 14 ′. In this case (step S66), the encryption user database 13 ′ reflects the change to the set value specified by the set value identification code of the encryption parameter corresponding to the encryption parameter identification code for the encryption target telephone number. (Step S67). If the dialed code is not valid as the set value identification code, for example, if the set value identification code for the encryption parameter of the encryption algorithm is not 1 or 2, the process ends as error processing (step S69).

Further, it is determined whether an encryption parameter identification code registered in the encryption information database 14 ′ is detected after the effectively detected set value identification code (step S68). If the encryption parameter identification code is not detected, the process ends.
On the other hand, when the encryption parameter identification code is detected after the effectively detected set value identification code, steps S66 and S67 are repeated as described above.

Next, as a more specific example, a procedure for changing the encryption parameter setting for the encryption target telephone number 050-2345-3456 when the encryption information database 13 ′ is represented in FIG. 7 will be described.
For example, assume that the encryption key update lifetime is to be changed from 5H (5 hours) to 3 days. At this time, the user may dial as follows.
700-050-2345-3456-302-4

  That is, after dialing the change identification code “700”, the destination telephone number 050-2345-3456 is dialed, and then the encryption parameter identification code “302” indicating the update lifetime of the encryption key of the encryption parameter. ", And a set value identification code" 4 "representing the set value 3 days is dialed. As a result, the encrypted user database 13 'is changed as shown in FIG. In addition, when it is desired to change the setting of a plurality of encryption parameters of one encryption target telephone number at once by one dial operation, an encryption parameter identification code and a set value identification code are set after the dial. What is necessary is just to input continuously.

It is a block diagram which shows the IP telephone adapter of 1st Embodiment of this invention. It is drawing which shows an encryption user database. It is drawing which shows an encryption information database. It is a flowchart explaining encryption start operation | movement. It is a flowchart explaining the registration operation | movement of the telephone number for encryption. It is a flowchart explaining the deletion operation | movement of the telephone number for encryption. It is drawing which shows the encryption user database of 2nd Embodiment. It is drawing which shows an encryption information database. It is a flowchart explaining encryption start operation | movement. It is a flowchart explaining the registration operation | movement of the telephone number for encryption. It is a flowchart explaining the deletion operation | movement of the telephone number for encryption. It is a flowchart explaining the change operation | movement of the encryption parameter of an encryption user database. It is drawing which shows the encryption user database after a setting change. 1 is a schematic diagram of an IP telephone system. It is drawing which shows the sequence in the case of calling from the telephone A to the telephone B. It is a block diagram which shows the IP telephone adapter of a prior art example. It is a block diagram which shows the IP telephone adapter of another prior art example. It is drawing which shows the conventional encryption information database.

Explanation of symbols

3 Call control unit 4 Voice processing unit 5 Packet processing unit 6 Telephone 7 Encryption processing unit 11 IP telephone adapter (IP telephone apparatus)
12 Signal Detection Unit 13 Encrypted User Database 14 Encrypted Information Database 15 Identification Code Determination Unit

Claims (7)

An encrypted user database for registering an encryption target telephone number as an encryption target telephone number record, which is a target for performing communication encryption of an IP telephone call;
When detecting that the telephone number input by the user matches the telephone number to be encrypted registered in the encrypted user database, the signal detection for encrypting the call by the IP telephone starting from the detection. And
An IP telephone apparatus comprising: An encryption information database in which a plurality of setting values are registered as options for each encryption parameter used for the communication encryption, and the encryption information database encrypts a dial code for identifying the type of the encryption parameter Assigned as a parameter identification code, and assigned as a setting value identification code a dial code that identifies the type of each setting value,
In the encryption target telephone number record of the encryption user database, the setting value selected from the encryption information database for each encryption target telephone number is registered as the encryption parameter,
2. The IP telephone apparatus according to claim 1, wherein an IP telephone apparatus is configured to encrypt a telephone call by using an encryption parameter registered in the encrypted user database. The encryption information database registers a dial code as a registration identification code, which is a signal for registering the encryption target telephone number record in the encryption user database,
Identification that registers a telephone number input after the registration identification code as the encryption target telephone number in the encrypted user database when it is detected that a dial code input by the user matches the registration identification code The IP telephone apparatus according to claim 1, further comprising a code determination unit. In the encryption information database, a dial code serving as a cue to delete the encryption target telephone number record registered in the encryption user database is registered as a deletion identification code.
When it is detected that the dial code input by the user matches the deletion identification code, the encryption target telephone number record corresponding to the telephone number input after the deletion identification code is stored in the encrypted user database. The IP telephone apparatus according to claim 1, further comprising an identification code determination unit to be deleted. In the encryption information database, a dial code serving as a cue to delete all encryption target telephone number records registered in the encryption user database is registered as a collective deletion identification code,
When it is detected that the dial code input by the user matches the batch deletion identification code, an identification code determination unit is provided that deletes all the encryption target telephone number records registered in the encrypted user database. The IP telephone apparatus according to claim 1 or 2. The encryption information database registers, as a change identification code, a dial code serving as a cue to change a setting value of an encryption parameter of an encryption target telephone number record registered in the encryption user database,
When it is detected that the dial code input by the user matches the change identification code, the encryption identification telephone number record corresponding to the telephone number input after the change identification code An identification code determination unit that changes an encryption parameter corresponding to the encryption parameter identification code input later to a setting value corresponding to the setting value identification code input after the encryption parameter identification code; The IP telephone apparatus according to any one of claims 2 to 5.   The identification code determination unit corresponds to a plurality of encryption parameters corresponding to the set value identification code by determining a plurality of dial codes that are dialed with the encryption parameter identification code and the set value identification code as one set. The IP telephone apparatus according to claim 6, wherein the IP telephone apparatus is configured to be changed to a set value.

Images