CN100440775C - Encryption communication method and device - Google Patents
Encryption communication method and device Download PDFInfo
- Publication number
- CN100440775C CN100440775C CNB021474648A CN02147464A CN100440775C CN 100440775 C CN100440775 C CN 100440775C CN B021474648 A CNB021474648 A CN B021474648A CN 02147464 A CN02147464 A CN 02147464A CN 100440775 C CN100440775 C CN 100440775C
- Authority
- CN
- China
- Prior art keywords
- new key
- key
- new
- cipher key
- receiving terminal
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Landscapes
- Storage Device Security (AREA)
Abstract
The present invention relates to an encryption communication method and a device, which are applied to the field of communication. The encryption communication device provided by the present invention comprises a transmitting terminal device and a receiving terminal device, wherein the transmitting terminal device comprises a new cipher key requester, a new cipher key memory group, an encryption cipher key memory, an encryption cipher key updating decision device and an encipherer; the receiving terminal device comprises a new cipher key generator, a new cipher key memory, a decryption cipher key memory, a decipherer and a decryption cipher key updating decision device. The encryption communication method provided by the present invention comprises the following steps: a new cipher key request is transmitted by a transmitting terminal; a new cipher key is transmitted by a receiving terminal; the new cipher key is received by the transmitting terminal; if the new cipher key is examined to be correct, the new cipher key is started to be used to encrypt and send out information being required to be encrypted; the encrypted information is respectively decrypted by a new cipher key and an old cipher key by the receiving terminal; if the decryption result of the new cipher key is examined to be correct, the new cipher key is started to be used, and correct decryption information is output. The present invention is characterized in that cipher key updating steps in encryption communication are simplified, and a synchronous clock system is not required to be used so as to increase communication efficiency and reduce communication costs.
Description
Technical field
The present invention relates to communication technique field, be specifically related to a kind of encipher communication method and device.
Background technology
In the modern society, information security is more and more important, in order to guarantee the information security of both sides in the communication system, need encrypt communication information, and the coded communication technology has just been arisen at the historic moment.
In the present encipher communication method, comparatively common method may further comprise the steps:
A sending direction recipient sends the new key request;
B recipient receives the new key request, produces and the storage new key, and the receive direction transmit leg sends repeatedly new key continuously;
The C transmit leg is received repeatedly new key, when the new key of repeatedly receiving whole or most of when identical, then to a plurality of key updating information of recipient's fixed cycle sending order numbering, and enable new key after one period designated time after distributing last key updating message;
D recipient whenever receives a key updating information, then sends the key updating acknowledge message to transmit leg, and according to the numbering that key updating information is carried, extrapolate with transmit leg synchronous enable the new key time point, enable new key at this time point.
The E transmit leg sends to the recipient after with new key the need enciphered message being encrypted.The recipient is decrypted the acquisition decryption information with new key after receiving enciphered message.
Certainly, be correctness and the fail safe that guarantees encryption communication better, in the step A, transmit leg can be encrypted the new key request and send; In the step B, the recipient can encrypt new key and send.
Adopt the shortcoming of above key updating method to be, after transmit leg is received new key, before using new key, must correctly be no less than once key updating information and key updating acknowledge message alternately with the recipient, the step complexity, efficient is lower.
Summary of the invention
The invention provides a kind of encipher communication method and device, to solve the lower problem of key updating efficient in the existing encipher communication method.
For achieving the above object, it is as described below that the present invention proposes a kind of technical scheme:
Encipher communication method may further comprise the steps:
The A transmitting terminal sends the new key request to receiving terminal;
The B receiving terminal is received the new key request, generates and the storage new key, and new key is sent to transmitting terminal, and number of times is no less than three times;
The C transmitting terminal is received new key, and the new key at every turn received of storage, the new key of receiving is compared, when two or more identical new keys, transmitting terminal just is changed to current encryption key with described identical new key, and with current encryption key the need enciphered message is encrypted the back and send to receiving terminal;
The D receiving terminal is received the enciphered message that transmitting terminal sends, the new key that generates and store with current decruption key and described receiving terminal is decrypted respectively, and two kinds of decryption informations are checked, when described receiving terminal generates and the check result of the new key decryption information of storage when correct, this new key decryption information is exported as final decryption information, and the new key that described receiving terminal is generated and stores is changed to current decruption key.
The encryption communication device comprises transmitting terminal device and receiving end device.
Wherein the transmitting terminal device comprises: the new key requester is used to produce the new key request and exports receiving terminal to; The new key memory set is used to receive and store the new key that receiving terminal sends; The encryption key memory is used to store current encryption key; Encryption key upgrades decision-making device, is used for contrasting the new key of new key memory set, when two or more identical new keys, just described identical new key is write the encryption key memory; Encryption equipment is used for current encryption key the need enciphered message of input being exported to receiving end device after encrypting.
Wherein receiving end device comprises: the new key maker, and be used for receiving the new key request, and generate new key from transmitting terminal, write the new key memory, send to the transmitting terminal device; The new key memory is used to store new key; The decruption key memory is used to store current decruption key; Decipher is used for encrypted information is decrypted, and outputs to decruption key renewal decision-making device; Decruption key upgrades decision-making device, be used for decipher is checked with the information that current decruption key and the stored new key of described new key memory are deciphered respectively, when correct with the information check result of the stored new key deciphering of described new key memory, just this new key decryption information is exported as final decryption information, and the stored new key of described new key memory is write the decruption key memory.
Because the present invention has adopted technique scheme, so have following advantage:
1, because after transmit leg receives new key, omit the step with recipient interaction key updating information and key updating acknowledge message, thereby reached simplification key updating step, improve the purpose of key updating efficient in the encryption communication.
2, owing to do not need to use synchronized clock system, thereby reduce the software and hardware expense, reduced the system complex degree, reduced the communication cost.
The present invention is described in detail below in conjunction with embodiment.
Description of drawings
Fig. 1 is an encipher communication method simplified schematic diagram of the present invention;
Fig. 2 is an encryption communication apparatus structure sketch of the present invention.
Embodiment
The specific embodiment of the present invention one is as follows:
Please refer to Fig. 1 and Fig. 2, in the ATM-PON communication system, optical line terminal sends ATM cell with carrying for information about with the optical network unit of broadcast mode on communication network, by guarantee the fail safe of transmission information, need encrypt link layer, thereby be provided with the encryption communication device to support encryption communication at optical line terminal and optical network unit.
The encryption communication device comprises transmitting terminal device and two parts of receiving end device, the transmitting terminal device is positioned at optical line terminal, receiving end device is positioned at optical network unit, and wherein the transmitting terminal device comprises that new key requester, new key memory set, encryption key memory, encryption key upgrade decision-making device and encryption equipment.Wherein receiving end device comprises that new key maker, new key memory, decruption key memory, decipher and decruption key upgrade decision-making device.
The encryption communication device is finished the encryption communication work at optical line terminal and optical network unit two ends by following steps.
At first, if carry out encryption communication between transmitting terminal need and the receiving terminal, the new key requester in the transmitting terminal device promptly produces a new key request, and sends to receiving end device;
Secondly, after the new key maker in the receiving end device is received the new key request, check its correctness and legitimacy, if this new key request is correct and legal, then generate a new key, deposit it in new key memory, and new key is sent three times continuously to the transmitting terminal device;
Once more, the new key memory set in the transmitting terminal device is stored the new key of receiving at every turn; Encryption key renewal decision-making device is checked three new keys in the new key memory set then, finds that second is identical with the 3rd new key, then writes the encryption key memory with this new key as current encryption key; Encryption equipment is encrypted the need enciphered message with the current encryption key in the encryption key memory, and sends to receiving end device;
At last, the decipher in the receiving end device is received enciphered message, with the key in decruption key memory and the new key memory enciphered message is decrypted respectively, and two kinds of decrypted results are outputed to decruption key renewal decision-making device; Decruption key upgrades decision-making device and two kinds of preliminary decryption informations is carried out the FCS verification inspection of mac frame respectively, check result shows, preliminary decryption information with the new key deciphering has data integrity and correlation, then should export as final decryption information by preliminary decryption information, and new key is write the decruption key memory as current decruption key.
The specific embodiment of the present invention two and above-mentioned embodiment one are basic identical, and its difference is:
Encryption equipment in the transmitting terminal device adds that with the former enciphered message that needs current encryption key in the encryption key memory as the need enciphered message, encrypts the back and sends to receiving end device;
Decruption key in the receiving end device upgrades decision-making device, two kinds of preliminary decryption informations to decipher output are checked, check result shows, comprise new key in the preliminary decryption information of new key deciphering, then should export as final decryption information by kind of preliminary decryption information, and new key is write the decruption key memory as current decruption key.
Although the present invention is had been described in detail with reference to preferred embodiment, those of ordinary skill in the art is to be understood that, above embodiment is only unrestricted in order to explanation the present invention, can carry out various modifications or be equal to replacement embodiments of the invention according to principle of the present invention and spirit, and not breaking away from the spirit and scope of the present invention, it all should be encompassed in the middle of the claim scope of the present invention.
Claims (5)
1, a kind of encipher communication method may further comprise the steps:
The A transmitting terminal sends the new key request to receiving terminal;
The B receiving terminal is received the new key request, generates and the storage new key, and new key is sent to transmitting terminal, and number of times is no less than three times;
The C transmitting terminal is received new key, and the new key at every turn received of storage, the new key of receiving is compared, when two or more identical new keys, transmitting terminal just is changed to current encryption key with described identical new key, and with current encryption key the need enciphered message is encrypted the back and send to receiving terminal;
The D receiving terminal is received the enciphered message that transmitting terminal sends, the new key that generates and store with current decruption key and described receiving terminal is decrypted respectively, and two kinds of decryption informations are checked, when described receiving terminal generates and the check result of the new key decryption information of storage when correct, this new key decryption information is exported as final decryption information, and the new key that described receiving terminal is generated and stores is changed to current decruption key.
2, encipher communication method as claimed in claim 1 is characterized in that: need enciphered message to comprise described current encryption key described in the C step.
3, encipher communication method as claimed in claim 2, it is characterized in that: in the D step, described receiving terminal is checked the new key that whether comprises described receiving terminal generation and storage in two kinds of decryption informations, described receiving terminal generates and the new key of storage when decryption information comprises, and thinks that then check result is correct.
4, encipher communication method as claimed in claim 1 or 2, it is characterized in that: in the D step, described receiving terminal is checked the data integrity or the correlation of two kinds of decryption informations, when decryption information has data integrity or correlation, thinks that then check result is correct.
5, a kind of encryption communication device of implementing the described method of claim 1 comprises transmitting terminal device and receiving end device, and wherein the transmitting terminal device comprises:
The new key requester is used to produce the new key request and exports receiving terminal to;
The new key memory set is used to receive and store the new key that receiving terminal sends;
The encryption key memory is used to store current encryption key;
Encryption equipment is used for current encryption key the need enciphered message of input being exported to receiving end device after encrypting;
Wherein receiving end device comprises:
The new key maker is used for receiving the new key request from transmitting terminal, and generates new key, writes the new key memory, sends to the transmitting terminal device;
The new key memory is used to store new key;
The decruption key memory is used to store current decruption key;
Decipher is used for encrypted information is decrypted, and outputs to decruption key renewal decision-making device;
It is characterized in that:
Described transmitting terminal device comprises that also encryption key upgrades decision-making device, is used for contrasting the new key of new key memory set, as two or more identical new keys, just described identical new key is write the encryption key memory;
Described receiving end device comprises that also decruption key upgrades decision-making device, be used for decipher is checked with the information that the new key of current decruption key and described new key memory storage is deciphered respectively, when correct with the information check result of the new key of described new key memory storage deciphering, just this new key decryption information is exported as final decryption information, and the new key of described new key memory storage is write the decruption key memory.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB021474648A CN100440775C (en) | 2002-10-31 | 2002-10-31 | Encryption communication method and device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB021474648A CN100440775C (en) | 2002-10-31 | 2002-10-31 | Encryption communication method and device |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN1494252A CN1494252A (en) | 2004-05-05 |
| CN100440775C true CN100440775C (en) | 2008-12-03 |
Family
ID=34232985
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNB021474648A Expired - Fee Related CN100440775C (en) | 2002-10-31 | 2002-10-31 | Encryption communication method and device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN100440775C (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105471900A (en) * | 2015-12-29 | 2016-04-06 | 畅捷通信息技术股份有限公司 | Method and device for encrypting and decrypting data |
| CN111010373A (en) * | 2019-11-21 | 2020-04-14 | 电子科技大学 | Privacy security coding method based on sink anchor |
Families Citing this family (17)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN100454320C (en) * | 2005-11-28 | 2009-01-21 | 华为技术有限公司 | Key management method and apparatus for digital copyright management |
| CN103840891B (en) * | 2013-07-24 | 2015-09-09 | 深圳光启智能光子技术有限公司 | Loose decryption method in visible light communication system and device |
| WO2014019526A1 (en) | 2012-07-31 | 2014-02-06 | 深圳光启创新技术有限公司 | Visible light encryption method, decryption method, communication device and communication system |
| CN103595529B (en) | 2012-08-13 | 2016-12-21 | 西安西电捷通无线网络通信股份有限公司 | The changing method of a kind of one-pass key and realize device |
| CN103595527B (en) | 2012-08-13 | 2016-12-21 | 西安西电捷通无线网络通信股份有限公司 | The changing method of a kind of two-way key and realize device |
| US9843446B2 (en) | 2014-10-14 | 2017-12-12 | Dropbox, Inc. | System and method for rotating client security keys |
| CN108183972B (en) * | 2014-11-19 | 2019-08-30 | Oppo广东移动通信有限公司 | Document handling method and terminal |
| CN105262756B (en) | 2015-10-28 | 2017-07-18 | 广东欧珀移动通信有限公司 | The encryption and decryption approaches and encryption and decryption devices of data |
| CN105262759B (en) * | 2015-10-29 | 2018-11-27 | 桂林力拓信息科技有限公司 | A kind of method and system of coded communication |
| CN106803783A (en) * | 2015-11-26 | 2017-06-06 | 深圳市中兴微电子技术有限公司 | A kind of encrypting and decrypting method, encrypting and decrypting device and data transmission system |
| CN106790255A (en) * | 2017-01-24 | 2017-05-31 | 北京元心科技有限公司 | End to end security communication means and system |
| US11063772B2 (en) * | 2017-11-24 | 2021-07-13 | Ememory Technology Inc. | Multi-cell per bit nonvolatile memory unit |
| CN108189689B (en) * | 2017-12-29 | 2021-07-16 | 智车优行科技(北京)有限公司 | Battery management device and method of integrated safety unit |
| CN109246695A (en) * | 2018-10-24 | 2019-01-18 | 深圳市鼎晟开元科技有限公司 | Data transmission method, device and computer readable storage medium |
| CN112735007A (en) * | 2020-12-25 | 2021-04-30 | 熵基科技股份有限公司 | Access control method, software platform and access control system |
| CN113347165A (en) * | 2021-05-24 | 2021-09-03 | 交通银行股份有限公司 | Method and device for seamlessly replacing secret key, server side and data interaction method |
| CN116155491B (en) * | 2023-02-02 | 2024-03-08 | 广州万协通信息技术有限公司 | Symmetric key synchronization method of security chip and security chip device |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1159108A (en) * | 1995-12-18 | 1997-09-10 | 阿尔卡塔尔Cit有限公司 | Encryption device and decryption device for information conveyed by asynchronous transfer mode cells |
| CN1184386A (en) * | 1996-10-31 | 1998-06-10 | 松下电器产业株式会社 | Encrypted telecommunication system capable of suppressing damaged range while deciphering |
| CN1283906A (en) * | 1999-07-28 | 2001-02-14 | 朗迅科技公司 | Method and device for replacting secret keys by two-way confirmation |
| JP2002217884A (en) * | 2001-01-19 | 2002-08-02 | Murata Mach Ltd | Method/equipment for cipher communication, decoder and recording medium |
| EP1249964A2 (en) * | 2001-04-12 | 2002-10-16 | Matsushita Electric Industrial Co., Ltd. | Reception terminal, key management apparatus, and key updating method for public key cryptosystem |
-
2002
- 2002-10-31 CN CNB021474648A patent/CN100440775C/en not_active Expired - Fee Related
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1159108A (en) * | 1995-12-18 | 1997-09-10 | 阿尔卡塔尔Cit有限公司 | Encryption device and decryption device for information conveyed by asynchronous transfer mode cells |
| CN1184386A (en) * | 1996-10-31 | 1998-06-10 | 松下电器产业株式会社 | Encrypted telecommunication system capable of suppressing damaged range while deciphering |
| CN1283906A (en) * | 1999-07-28 | 2001-02-14 | 朗迅科技公司 | Method and device for replacting secret keys by two-way confirmation |
| JP2002217884A (en) * | 2001-01-19 | 2002-08-02 | Murata Mach Ltd | Method/equipment for cipher communication, decoder and recording medium |
| EP1249964A2 (en) * | 2001-04-12 | 2002-10-16 | Matsushita Electric Industrial Co., Ltd. | Reception terminal, key management apparatus, and key updating method for public key cryptosystem |
Non-Patent Citations (2)
| Title |
|---|
| IKE中的身份认证技术研究. 师成江等.计算机应用研究. 2001 |
| IKE中的身份认证技术研究. 师成江等.计算机应用研究. 2001 * |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105471900A (en) * | 2015-12-29 | 2016-04-06 | 畅捷通信息技术股份有限公司 | Method and device for encrypting and decrypting data |
| CN111010373A (en) * | 2019-11-21 | 2020-04-14 | 电子科技大学 | Privacy security coding method based on sink anchor |
| CN111010373B (en) * | 2019-11-21 | 2020-10-09 | 电子科技大学 | Privacy security coding method based on sink anchor |
Also Published As
| Publication number | Publication date |
|---|---|
| CN1494252A (en) | 2004-05-05 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN100440775C (en) | Encryption communication method and device | |
| CN109495274B (en) | Decentralized intelligent lock electronic key distribution method and system | |
| US6052466A (en) | Encryption of data packets using a sequence of private keys generated from a public key exchange | |
| CN1224211C (en) | Sychronization of session keys | |
| US6683956B1 (en) | Encrypting conversion apparatus, decrypting conversion apparatus, cryptographic communication system, and electronic toll collection apparatus | |
| CN113114460B (en) | Quantum encryption-based power distribution network information secure transmission method | |
| WO2023082599A1 (en) | Blockchain network security communication method based on quantum key | |
| CN108809636B (en) | Communication system for realizing message authentication between members based on group type quantum key card | |
| CN111698084B (en) | Block chain-based concealed communication method | |
| CN113612608A (en) | Method and system for realizing cluster encryption of dual-mode interphone based on public network | |
| CN103117850B (en) | A kind of method for building up of the cryptographic system based on random sequence database | |
| CN101931623A (en) | Safety communication method suitable for remote control with limited capability at controlled end | |
| CN111049652A (en) | Data transmission method and device, electronic equipment and computer readable storage medium | |
| CN114499857A (en) | Method for realizing data correctness and consistency in big data quantum encryption and decryption | |
| CN112565285B (en) | Communication encryption method suitable for rail transit | |
| CN1820449B (en) | Method for encoded data transmission via a communication network | |
| CN115484033A (en) | PMU power system communication method based on state cryptographic algorithm | |
| CN108900307A (en) | FPGA (field programmable Gate array) implementation method for PGP (packet data protocol) key management authentication password recovery algorithm | |
| CN110047181B (en) | Intelligent door lock safety control method based on Zigbee | |
| CN114362936A (en) | Secret key relay method in communication network based on quantum secrecy | |
| JPS63161745A (en) | Terminal equipment for cryptographic communication | |
| CN112039663A (en) | Data transmission method and system | |
| CN100583743C (en) | Distributing method for transmission key | |
| JPH0897811A (en) | Data service system | |
| CN114124369B (en) | Multi-group quantum key cooperation method and system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20081203 Termination date: 20151031 |
|
| EXPY | Termination of patent right or utility model |