TWI387294B - Wireless data security transmission system with zigbee chips - Google Patents
Wireless data security transmission system with zigbee chips Download PDFInfo
- Publication number
- TWI387294B TWI387294B TW96141077A TW96141077A TWI387294B TW I387294 B TWI387294 B TW I387294B TW 96141077 A TW96141077 A TW 96141077A TW 96141077 A TW96141077 A TW 96141077A TW I387294 B TWI387294 B TW I387294B
- Authority
- TW
- Taiwan
- Prior art keywords
- data
- network
- network key
- compacted
- key
- Prior art date
Links
Landscapes
- Mobile Radio Communication Systems (AREA)
Description
本發明係關於一種安全的無線網路傳輸系統,特別是指一種利用ZigBee做定時更新之加密網路金錀的傳送,接收端也以ZigBee對加密網路金錀解密,資料再以解密的網路金鑰來結合演算法進行壓密,再利用另一種wifi(wireless fidelity)晶片傳送。The invention relates to a secure wireless network transmission system, in particular to a transmission of an encrypted network using ZigBee for timing update, and the receiving end also decrypts the encrypted network with ZigBee, and the data is decrypted. The road key is combined with the algorithm for compaction, and then transmitted by another wifi (wireless fidelity) chip.
近年來,個人電腦已然成為最普及的一種家電產品。個人電腦由過去多媒體功能為主要,發展至今幾乎所有被售出的電腦都已內建網路功能。筆記型電腦更進一步地具有無線上網的功能。個人使用者藉由電腦的網路功能連接網際網路搜尋或交換資訊,商品、電子郵信收發、投資國內外有價證卷,或進行交談,而使得網路兩端使用者猶如上下樓層的鄰居。此外,小型、中小型及大型企業的電腦除了具備以上功能外,更提供了內部網部以提供員工彼此交換資料檔案、員工存取公司伺服器資料庫的管道。In recent years, personal computers have become the most popular home appliances. Personal computers are dominated by multimedia functions in the past, and almost all computers that have been sold have built-in network functions. The notebook computer further has the function of wireless Internet access. Individual users use the Internet function of the computer to connect to the Internet to search or exchange information, send and receive goods, e-mails, invest in domestic and foreign securities, or talk, so that the users at both ends of the network are like the neighbors on the lower floor. . In addition, in addition to the above functions, computers in small, medium, and large enterprises provide an internal network department to provide employees with the means to exchange data files and access the company's server database.
網際網路的功能是無遠弗界的,它不但提供人們利用網路收集資訊。時至今日,它其實已更進一步成為影像、聲音交換平台(布落格blog)。使用者只需將他的電腦經由網路線連接ADSL數據線或者有線電視電纜線就可傳輸到網際網路。一般而言,只要兩台電腦的網路卡經由網路線連接上網際網路或者企業內部的伺服器,就可以將儲存於一台電腦的檔案傳給另一台電腦。更有甚者,隨者,無線通訊進步的神速,有愈來愈多的個人使用者及企業已正在使用,或考慮使用無線網路,以減少受到網路線的羈絆。The function of the Internet is far-reaching, it not only provides people to use the Internet to collect information. Today, it has actually become a platform for video and audio exchange (Bugege blog). The user simply connects his computer to the Internet via a network connection to an ADSL data cable or cable TV cable. Generally speaking, as long as the network cards of two computers are connected to the Internet or the internal server via the network route, the files stored in one computer can be transmitted to another computer. What's more, wireless communication is progressing rapidly, and more and more individual users and enterprises are already using it, or consider using a wireless network to reduce the embarrassment of the network route.
無線網路可以用來傳送各種資料,包含影像格式檔案、聲音格式、或影音混合格式、文件格式檔案,或應用程式格式皆可以。不過,無線網路和實體連線網路相比,其網路安全性,常成為無線網路使用之反對族群所堅持的重要理由之一,特別是,無線網路比有線網路更不被放心的理由之一是:資料傳送途中被攔截而寄件人及被指定的收受人卻不知情。The wireless network can be used to transmit a variety of data, including image format files, sound formats, or video and audio formats, file format files, or application formats. However, compared with physical networking networks, wireless network security is often one of the important reasons for the opposition of wireless networks. In particular, wireless networks are less than wired networks. One of the reasons for reassurance is that the data transmission was intercepted and the sender and the designated recipient were unaware of it.
儘管,已知的無線網路基地台和用戶端之間可以使用網路金鑰來保護網路的安全性。然而,習知技術中,就發明人之知識所及,這些網路金鑰一旦被設定後多屬固定式的。惟有在一段時間後才會再次變更,這樣的結果,很容易就有可能成為網路駭客攻擊的對像。另一種是使用者必需接近基地台,才可以強制變更網路金鑰。因此,這種方式是不方便的。此外,網路金鑰傳送本身的安全性也常是一個重要的課題。Although a known wireless network base station and a client can use a network key to protect the security of the network. However, in the prior art, as far as the inventor's knowledge is concerned, these network keys are mostly fixed once they are set. Only after a period of time will it change again. As a result, it is easy to become an object of Internet hacking attacks. The other is that the user must be close to the base station to force the change of the network key. Therefore, this method is inconvenient. In addition, the security of the network key transmission itself is often an important issue.
本發明是利用ZigBee/802.15.4通訊協定的ZigBee晶片來進行網路金鑰的壓密與解密。ZigBee晶片可以很容易和微處理器結合,以存取數位資料並進行資料之壓密與解密。ZigBee晶片使用2.4-2.5 GHz之間頻段傳輸。此外,利用網路金鑰再和待傳的資料以wifi晶片壓密及解密。駭客必須同時破解兩種不同晶片所壓密的資料才得以得到明文資料。The invention utilizes the ZigBee chip of the ZigBee/802.15.4 communication protocol for the compaction and decryption of the network key. ZigBee chips can be easily combined with microprocessors to access digital data and perform data compaction and decryption. ZigBee chips are transmitted in the frequency band between 2.4 and 2.5 GHz. In addition, the network key is used to re-encrypt and decrypt the data to be transmitted with the wifi chip. The hacker must simultaneously crack the data compacted by two different wafers to obtain clear text.
因此,本發明之一目的便是提供使用者有更方便、更安全的一種資料傳輸方式。Therefore, it is an object of the present invention to provide a data transmission method that is more convenient and safe for a user.
本發明之一目的是提供一種無線網路安全傳輸之系統,藉由此一系統資料可以安全無慮地由甲地傳輸至乙地。An object of the present invention is to provide a system for secure transmission of wireless networks, whereby a system data can be safely transmitted from a land to a ground.
本發明揭露一種無線網路資料安全傳輸之系統,包含:一網路金鑰中控端包含第一Zigbee晶片及一電腦終端機介面,一網路金鑰演算程式,以提供一使用者利用網路金鑰演算程式設定網路金鑰每變更一次的預定單位時間及變更所依據的參數,並據以在每預定單位時間時產生一壓密之網路金鑰並分送至一資料發送端,及至少一資料接收端。資料發送端包含第二Zigbee晶片,第一wifi晶片及一待傳送之資料,或動態產生影音資料。第二Zigbee晶片將壓密之網路金鑰解密為明文網路金鑰後據以將待傳送之資料,或動態產生之影音資料以第一wifi晶片壓密為64位元密文,再以第一wifi晶片傳送密文至資料接收端。資料接收端包含第三Zigbee晶片,第二wifi晶片。第三Zigbee晶片,在接收該壓密之網路金鑰後將解密為明文網路金鑰密,該第二wifi晶片依據該明文網路金鑰將該密文解密為明文資料。The invention discloses a system for secure transmission of wireless network data, comprising: a network key central control end comprising a first Zigbee chip and a computer terminal interface, and a network key calculation program to provide a user utilization network The road key calculus program sets a predetermined unit time and a parameter according to the change of the network key, and generates a compact network key every predetermined unit time and distributes it to a data transmitting end. And at least one data receiving end. The data sending end includes a second Zigbee chip, a first wifi chip and a data to be transmitted, or dynamically generated video and audio data. The second Zigbee chip decrypts the compacted network key into a plaintext network key, and then compacts the data to be transmitted or the dynamically generated audio and video data into a 64-bit ciphertext by using the first wifi chip, and then The first wifi chip transmits the ciphertext to the data receiving end. The data receiving end includes a third Zigbee chip and a second wifi chip. The third Zigbee chip is decrypted into a plaintext network key after receiving the compacted network key, and the second wifi chip decrypts the ciphertext into plaintext data according to the plaintext network key.
本發明提供一種利用無線網路晶片(例如像是符合wIFI的晶片)傳輸被壓密的資料,以ZigBee晶片以無線通訊的方式傳輸壓密的網路金鑰至資料的發送端及各個接收端,以提發送端據以進行資料加密,與接收端據以資料解密。The invention provides a method for transmitting compressed data by using a wireless network chip (for example, a wafer conforming to wIFI), and transmitting the compressed network key to the transmitting end and each receiving end of the data by using a ZigBee chip in a wireless communication manner. In order to encrypt the data transmitted by the sender, and decrypt the data with the receiver.
本發明之一系統架構請參考圖1所示的示意圖。它包含了一網路金鑰的產生端10、資料發送端20及若干個接收端30、40,例如,第一資料接收端30、第二資料接收端40。網路金鑰的產生端10的配備是一台電腦或終端機10d、一ZigBee晶片10a、天線10b。資料發送端20則包含一ZigBee晶片20a、一天線20b、一wifi晶片20c。第一資料接收端30與資料發送端20有相同的配備,包含一ZigBee晶片30a、一天線30b、一wifi晶片30c。第二資料接收端40也有相同的配備,包含一ZigBee晶片40a、一天線40b、一wifi晶片40c。Please refer to the schematic diagram shown in FIG. 1 for a system architecture of the present invention. It includes a network key generation terminal 10, a data transmitting end 20 and a plurality of receiving ends 30, 40, for example, a first data receiving end 30 and a second data receiving end 40. The network key generation terminal 10 is provided with a computer or terminal 10d, a ZigBee chip 10a, and an antenna 10b. The data transmitting end 20 includes a ZigBee chip 20a, an antenna 20b, and a wifi chip 20c. The first data receiving end 30 has the same configuration as the data transmitting end 20, and includes a ZigBee chip 30a, an antenna 30b, and a wifi chip 30c. The second data receiving end 40 also has the same equipment, and includes a ZigBee chip 40a, an antenna 40b, and a wifi chip 40c.
其中,ZigBee晶片10a、20a、30a、40a請參考圖2,都包含有相同的模組:一接收模組(receiving module)70、一發射模組(transmission module)75,一MAC(media access control)模組80、一發射/接收/MAC控制介面85、一傳輸通道偵測模組90及一MCU(微處理器)95。發射/接收/MAC控制介面85包含了與MCU 60之I/O埠65連接之介面。The ZigBee chips 10a, 20a, 30a, 40a, please refer to FIG. 2, all including the same module: a receiving module 70, a transmission module 75, a MAC (media access control) The module 80, a transmit/receive/MAC control interface 85, a transmission channel detection module 90, and an MCU (microprocessor) 95. The Transmit/Receive/MAC Control Interface 85 includes an interface to the I/O port 65 of the MCU 60.
網路金鑰的產生端10是由一使用者利用一電腦10d或一終端機,利用一網路金鑰演算法程式產生,使用者可以輸入例如像是生日、日期、時間、或數字等與數目有關的數據做為演算法的參數來產生網路金鑰,並且在網路金鑰第一次產生後每一單位時間後再變換成另一網路金鑰。網路金鑰會由ZigBee晶片10a的會以AES(advanced encryption standard)128位元方式壓密成射頻信號封包後,再藉由天線10b同時發送至資料發送端20及第一資料接收端30與第二資料接收端40。網路金鑰之產生及壓密可以由MCU 60來執行,藉由MCU 60之I/O埠65取得使用者輸入之數據由MAC模組80,轉成射頻信號,再經由發射模組75傳送出去。The generation terminal 10 of the network key is generated by a user using a computer 10d or a terminal, and is generated by a network key algorithm program, and the user can input, for example, a birthday, a date, a time, or a number. The number-related data is used as a parameter of the algorithm to generate the network key, and is converted to another network key after each unit time after the network key is first generated. The network key is compressed by the ZigBee chip 10a into an RF signal packet by an AES (advanced encryption standard) 128 bit, and then simultaneously transmitted to the data transmitting end 20 and the first data receiving end 30 by the antenna 10b. The second data receiving end 40. The generation and compaction of the network key can be performed by the MCU 60. The data input by the user by the I/O 埠 65 of the MCU 60 is converted into a radio frequency signal by the MAC module 80, and then transmitted through the transmitting module 75. Go out.
資料發送端20的天線20b接收射頻信號封包後,ZigBee晶片20a的接收模組70經MAC模組80將AES 128位元壓密的網路金鑰解調,以還原為明文的網路金鑰,再經由MCU 60提供給資料發送端20的wifi晶片20c。資料發送端的資料可以是任何的影像格式資料、聲音格式資料或影音混合格式資料或圖形格式、或文字格式或包含上述格式資料的一種或多種。資料發送端的資料和明文的網路金鑰結合經由MCU 60之I/O埠65傳給wifi晶片20c壓密成64位元的壓密資料,再藉由天線20a發送出去。After the antenna 20b of the data transmitting end 20 receives the radio frequency signal packet, the receiving module 70 of the ZigBee chip 20a demodulates the AES 128-bit compacted network key via the MAC module 80 to restore the network key of the plaintext. And then supplied to the wifi chip 20c of the data transmitting terminal 20 via the MCU 60. The data at the data transmitting end may be any image format data, sound format data or audio-video mixed format data or graphic format, or text format or one or more of the above-mentioned format data. The data of the data sender and the plaintext network key are transmitted to the wifi chip 20c via the I/O port 65 of the MCU 60 to compact the 64-bit compacted data, and then transmitted through the antenna 20a.
第一資料接收端30之天線30b在接收到AES 128位元方式壓密之射頻信號封包後,ZigBee晶片30b先解調為數位信號,並解密為明文網路金鑰。另一者,第一資料接收端30之wifi晶片30c利用明文網路金鑰對64位元的壓密資料進行解密,以解密為明文資料。After receiving the AES 128-bit compacted RF signal packet, the antenna 30b of the first data receiving end 30 demodulates the digital signal into a digital signal and decrypts it into a plaintext network key. Alternatively, the wifi chip 30c of the first data receiving terminal 30 decrypts the 64-bit compacted data using the plaintext network key to decrypt the plaintext data.
同樣的事,亦在第二資料接收端40進行。第一資料接收端40之天線40b在接收到AES 128位元方式壓密之射頻信號封包後,ZigBee晶片40b先解調為數位信號,並解密為明文網路金鑰。另一者,第二資料接收端40之wifi晶片40c利用明文網路金鑰對64位元的壓密資料進行解密,以解密為明文資料。The same thing is also performed at the second data receiving end 40. After the antenna 40b of the first data receiving end 40 receives the radio frequency signal packet compacted by the AES 128 bit mode, the ZigBee chip 40b is first demodulated into a digital signal and decrypted into a clear text network key. Alternatively, the wifi chip 40c of the second data receiving terminal 40 decrypts the 64-bit compacted data using the plaintext network key to decrypt the plaintext data.
依據,本發明之一較佳實施例,網路金鑰是每單位時間都會被變更一次,並一次發送給資料傳送端與第一資料接收端30,及第二、甚至第三資料接收端,甚至更多的資料接收端。According to a preferred embodiment of the present invention, the network key is changed once per unit time, and is sent to the data transmitting end and the first data receiving end 30, and the second or even the third data receiving end at a time. Even more data receivers.
因此,本發明具有以下之優點:1、網路金鑰被傳送時都是壓密的。Therefore, the present invention has the following advantages: 1. The network key is compacted when transmitted.
2、壓密的網路金鑰與壓密的資料是由不同的晶片所發送的,因此,更安全可靠。2. The compact network key and the compacted data are sent by different chips, so it is safer and more reliable.
本發明雖以較佳實例闡明如上,然其並非用以限定本發明精神與發明實體僅止於上述實施例爾。是以,在不脫離本發明之精神與範圍內所作之修改,均應包含在下述申請專利範圍內。The present invention has been described above by way of a preferred example, and it is not intended to limit the spirit of the invention and the inventive subject matter. Modifications made without departing from the spirit and scope of the invention are intended to be included within the scope of the appended claims.
網路金鑰的產生端...10The generation of the network key. . . 10
ZigBee晶片...10a、20a、30a、40aZigBee chip. . . 10a, 20a, 30a, 40a
資料發送端...20Data sender. . . 20
天線...10b、20b、30b、40bantenna. . . 10b, 20b, 30b, 40b
第一資料接收端...30The first data receiving end. . . 30
wifi晶片...30c、40cWifi chip. . . 30c, 40c
第二資料接收端...40The second data receiving end. . . 40
電腦或終端機...10dComputer or terminal. . . 10d
接收模組...70Receive module. . . 70
發射模組...75Launch module. . . 75
MAC模組...80MAC module. . . 80
發射/接收/MAC控制介面...85Transmit/receive/MAC control interface. . . 85
I/O埠...65I/O埠. . . 65
MCU...60MCU. . . 60
藉由以下詳細之描述結合所附圖式,將可輕易明瞭上述內容及此項發明之諸多優點,其中:圖1示依據本發明之無線網路安全傳輸系統的示意圖。The above and other advantages of the invention will be readily apparent from the following detailed description in conjunction with the accompanying drawings in which: FIG. 1 is a schematic diagram of a wireless network secure transmission system in accordance with the present invention.
圖2示,Zigbee晶片功能方塊示意圖。Figure 2 shows a functional block diagram of the Zigbee chip.
網路金鑰的產生端...10The generation of the network key. . . 10
ZigBee晶片...10a、20a、30a、40aZigBee chip. . . 10a, 20a, 30a, 40a
資料發送端...20Data sender. . . 20
天線...10b、20b、30b、40bantenna. . . 10b, 20b, 30b, 40b
第一資料接收端...30The first data receiving end. . . 30
wifi晶片...30c、40cWifi chip. . . 30c, 40c
第二資料接收端...40The second data receiving end. . . 40
電腦或終端機...10dComputer or terminal. . . 10d
Claims (8)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
TW96141077A TWI387294B (en) | 2007-10-31 | 2007-10-31 | Wireless data security transmission system with zigbee chips |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
TW96141077A TWI387294B (en) | 2007-10-31 | 2007-10-31 | Wireless data security transmission system with zigbee chips |
Publications (2)
Publication Number | Publication Date |
---|---|
TW200920064A TW200920064A (en) | 2009-05-01 |
TWI387294B true TWI387294B (en) | 2013-02-21 |
Family
ID=44727313
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
TW96141077A TWI387294B (en) | 2007-10-31 | 2007-10-31 | Wireless data security transmission system with zigbee chips |
Country Status (1)
Country | Link |
---|---|
TW (1) | TWI387294B (en) |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20050180447A1 (en) * | 2004-02-12 | 2005-08-18 | Samsung Electronics Co., Ltd. | Multicast method in zigbee network |
US20060019700A1 (en) * | 2004-07-22 | 2006-01-26 | Korea Electronics Technology Institute | Multi-band zigbee transceiver supporting IEEE 802.15.4 wireless communication |
US20060174030A1 (en) * | 2005-02-03 | 2006-08-03 | Samsung Electronics Co., Ltd. | Coordinator's data transmission method, device's data reception method, coordinator using the coordinator's data transmission method, and device using the device's data reception method in zigbee system |
US20060186973A1 (en) * | 2005-01-05 | 2006-08-24 | Oki Electric Industry Co., Ltd. | Radio frequency integrated circuit having a physical layer portion integrated therein |
-
2007
- 2007-10-31 TW TW96141077A patent/TWI387294B/en not_active IP Right Cessation
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20050180447A1 (en) * | 2004-02-12 | 2005-08-18 | Samsung Electronics Co., Ltd. | Multicast method in zigbee network |
US20060019700A1 (en) * | 2004-07-22 | 2006-01-26 | Korea Electronics Technology Institute | Multi-band zigbee transceiver supporting IEEE 802.15.4 wireless communication |
US20060186973A1 (en) * | 2005-01-05 | 2006-08-24 | Oki Electric Industry Co., Ltd. | Radio frequency integrated circuit having a physical layer portion integrated therein |
US20060174030A1 (en) * | 2005-02-03 | 2006-08-03 | Samsung Electronics Co., Ltd. | Coordinator's data transmission method, device's data reception method, coordinator using the coordinator's data transmission method, and device using the device's data reception method in zigbee system |
Non-Patent Citations (1)
Title |
---|
Dominguez, J. et al.,"Smart Wireless Impulse Radio Sensor Networks",2006. ISWCS '06. 3rd International Symposium on Wireless Communication Systems, 6-8 Sept. 2006. Ferrari, M. et al., * |
Also Published As
Publication number | Publication date |
---|---|
TW200920064A (en) | 2009-05-01 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN100431292C (en) | Encrypting, decoding, and wireless communication device | |
CN101197674B (en) | Encrypted communication method, server and encrypted communication system | |
CN103338437B (en) | The encryption method of a kind of mobile instant message and system | |
CN102088441B (en) | Data encryption transmission method and system for message-oriented middleware | |
CN101442409A (en) | Encipher method and system for B2B data exchange | |
JPH05227152A (en) | Method and device for establishing privacy communication link | |
GEP20094692B (en) | Method of encrypting and transferring data between sender and receiver using network | |
CN100365971C (en) | Method for encoding and decoding communication data | |
US20120076300A1 (en) | Key information management method, content transmission method, key information management apparatus, license management apparatus, content transmission system, and terminal apparatus | |
US20040196979A1 (en) | Encryption/decryption device and method for a wireless local area network | |
CN101707767B (en) | Data transmission method and devices | |
CN102811215A (en) | Wireless transmission of protected content | |
CN102088352B (en) | Data encryption transmission method and system for message-oriented middleware | |
JP4125564B2 (en) | Encryption / decryption key key generation method, encryption / decryption key key generation apparatus, encryption / decryption key key generation program, and computer-readable recording medium | |
CN111884802A (en) | Media stream encryption transmission method, system, terminal and electronic equipment | |
JP2004350044A (en) | Transmitter, receiver, communication system, and communication method | |
CN103067897A (en) | Asymmetrical mobile phone short message encryption method | |
CN1661954B (en) | Method of generating a cryptosynchronism | |
CN105827601A (en) | Data encryption application method and system of mobile device | |
TWI387294B (en) | Wireless data security transmission system with zigbee chips | |
CN101426199B (en) | ZigBee wireless network data safe transmission system | |
CN106060801B (en) | Data communication method, device and system based on Wi-Fi device | |
CN110650121A (en) | Stream media data security system based on distributed system | |
JP2007507146A (en) | Data encryption method and apparatus | |
JP2001345795A (en) | Apparatus and method for radio communication |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
MM4A | Annulment or lapse of patent due to non-payment of fees |