CN101272594B - Method for filtering enciphered contents, filter device and contents consuming device - Google Patents
Method for filtering enciphered contents, filter device and contents consuming device Download PDFInfo
- Publication number
- CN101272594B CN101272594B CN2007100646502A CN200710064650A CN101272594B CN 101272594 B CN101272594 B CN 101272594B CN 2007100646502 A CN2007100646502 A CN 2007100646502A CN 200710064650 A CN200710064650 A CN 200710064650A CN 101272594 B CN101272594 B CN 101272594B
- Authority
- CN
- China
- Prior art keywords
- content
- filtration
- filtering
- filter plant
- mark
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Abstract
The invention relates to a method for filtering encrypted content, a filtering device and a content consuming device, wherein, the method comprises the following steps: responding information of presorted content which contains encrypted content and is sent to the content consuming device is captured; the sorted result is analyzed according to the responding information; according to the sorted result, the encrypted content is filtered to generate filtering marks; the filtering marks and the encrypted content are sent to the content consuming device; the content consuming device analyzes the filtering marks; whether the content is to be consumed is determined according to the analysis result of the filtering marks. The filtering device consists of a receiving and sending module, a filtering module and a password module. The content consuming device comprises an application module, a decrypting module and a filtering client end. By setting the filtering marks after the encrypted content, the invention can carry out filtering processing on the encrypted content without decrypting; in addition, through further comparing content characteristics, the content change is avoided, thus maximally improving the safety for filtering the encrypted content.
Description
Technical field
The present invention relates to a kind of method and apparatus that content is filtered, method, filter plant and the content consumption equipment of a kind of filtering enciphered content of particularly encrypted content being filtered.
Background technology
Along with the enhancing of capacity of mobile terminal, the mobile subscriber can enjoy various colourful mobile services, but invalid informations such as following spam, mobile phone viruses and Pornograph are disturbing user's life.Not only the mobile subscriber more and more hopes to break away from the puzzlement of invalid information, and mobile operator also hopes to protect its network to avoid the attack of invalid information, for the contracted user provides high quality services, to improve income.For satisfying the demand, the Open Mobile Alliance tissue has been set up and has been filtered based on classified content that (Categorization-Based Content Screening, CBCS) working group provide a kind of to filter method expressly.With the Proxy mode among the CBCS is example, and the flow process of this filter method is:
The first step, content provider/information filtering requestor provides business tine to user terminal.The form of this content can be literal, picture, audio frequency, video, unified resource identifier (URI), HTML(Hypertext Markup Language) etc.; Content can but do not rely on note (SMS), multi-media messaging system (MMS), instant message (IM), HTTP(Hypertext Transport Protocol), (Push) and carry; The content provider can be an application server, also can be other user terminal.
Second step, CBCS service equipment intercepted content, the filtering rule of setting according to classifying content result and CBCS user filters content.Wherein the classifying content result is provided by classification entity, and the filtering rule that the user formulates is set by the user, and table 1 is a classifying content example as a result, the filtering rule example that table 2 is formulated for the user.
Table 1, classifying content be example as a result
Content (sign) type classification rank
3 grades of 123EXXX picture violences
Pornographic 0 grade
The filtering rule example that table 2, user formulate
User's (sign) filters classification and filters rank
4 grades of 13966376859 violences
Pornographic 3 grades
3 grades in rubbish
In the 3rd step, the result of CBCS service equipment after with information filtering is transmitted to user terminal.If content does not belong to the filtration category, then content is issued user terminal according to original protocol.If content belongs to the filtration category, then tackle this content.What the CBCS service equipment also can be selected sends an information to the user, and the description reason of being tackled.If just partly belong to the filtration category in the content; In a HTML, word segment is a The profile, and just picture belongs to pornographic scope; Satisfy the condition of " the filtering eroticism picture " of user's setting; Then only filter the picture among this HTML, word segment is remained, and send to user terminal according to former protocols having.
For the content of encrypting, for example digital copyright management (DRM) content because filtering server does not have the authority decryption content, can't learn also whether content satisfies user's filter condition, and the CBCS service equipment can't filter encrypted content.Existing way is that a configuration file is set in filtering server, the content of acquiescence interception or all encryptions of acquiescence clearance.Obviously, this filter method of prior art has bigger limitation in actual use.
Summary of the invention
The embodiment of the invention provides a kind of method, filter plant and content consumption equipment of filtering enciphered content; Through additional information is set behind encrypted content; Realized need can not filtering encrypted content according to additional information under the deciphering situation, effectively solved the technological deficiency that prior art can not be filtered encrypted content.
The embodiment of the invention provides a kind of method of filtering enciphered content, comprising: intercept and capture the content response message and parse classification results according to said response message of presorting that contains encrypted content mail to content consumption equipment; Encrypted content is carried out filtration treatment and generates filter mark according to classification results; Said filtration mark and encrypted content are sent to the content consumer device; The said filtration mark of content consumption device parses is according to the analysis result that filters mark is judged whether to consume this content.
The embodiment of the invention also provides a kind of method of filtering enciphered content; Comprise: intercept and capture the pre-filtering content response message that contains encrypted content that mails to content consumption equipment; Judge whether said encrypted content carries the filtration mark, as do not have, tackle said encrypted content; If any, said filtration mark and encrypted content are sent to the content consumer device; The said filtration mark of content consumption device parses is according to the analysis result that filters mark is judged whether to consume this content.
The embodiment of the invention provides a kind of filter plant, comprising:
Transceiver module is used to receive the content response message of presorting that contains encrypted content that mails to content consumption equipment, resolves said information and sending analysis result;
Filtering module is used to receive the analysis result that said transceiver module sends, and judges whether said encrypted content carries the classification signature, as does not find the classification signature, and then tackle this encrypted content, as finding the classification signature, the signature of then will classifying sends;
Crypto module is used to receive the classification signature that said filtering module sends, and the classification results that from said classification signature, decrypts returns to filtering module;
The classification results that filtering module returns according to said crypto module; Use preset filtering rule to carry out filtration treatment;, content tackles this content when meeting filtercondition; Filter mark otherwise generate, said encrypted content and filtration mark are encapsulated and send to content consumption equipment through said transceiver module.
The embodiment of the invention also provides a kind of filter plant, comprising:
Transceiver module is used to receive the pre-filtering content response message that contains encrypted content that mails to content consumption equipment, resolves said information and sending analysis result;
Judge module; Be used to receive the analysis result that said transceiver module sends; Judge whether said encrypted content carries the filtration mark, as do not find the filtration mark, then tackle this encrypted content; As find to filter mark, then encrypted content and filtration mark are encapsulated and send to content consumption equipment through transceiver module.
The embodiment of the invention provides a kind of content consumption equipment, comprising:
Application module is used for the message that receiving filtration equipment sends, and sends after parsing encrypted content and filtering mark;
Deciphering module is used to receive said encrypted content, carries out decryption processing and returns deciphering back content;
Filter client, be used to receive the encrypted content and filtration mark that said application module sends, content after said deciphering module sends encrypted content and receiving and deciphering judges whether to consume this content based on the analysis result to said filtration mark.
The embodiment of the invention provides a kind of method, filter plant and content consumption equipment of filtering enciphered content; Through the filtration mark is set behind encrypted content; Can be under situation about need not decipher; Can filter or filter judgement to encrypted content according to filtering mark, realize filtration treatment encrypted content.Filtering mark can be to filter signature or routing label, can after clear content is filtered, generate, and forms a kind of pre-filtering method of filtering enciphered content; Also can classification results be filtered the back generate, form a kind of method of presorting of filtering enciphered content, efficiently solve the technological deficiency that prior art can not be filtered encrypted content to after the clear content classification.
Through accompanying drawing and embodiment, technical scheme of the present invention is done further detailed description below.
Description of drawings
Fig. 1 is the embodiment flow chart of the method for the filtering enciphered content of the present invention;
Fig. 2 is the flow chart of method embodiment of presorting;
Fig. 3 filters the embodiment flow chart of signature for content consumption device authentication of the present invention;
Fig. 4 is another embodiment flow chart of the method for the filtering enciphered content of the present invention;
Fig. 5 is the flow chart of pre-filtering method embodiment;
Fig. 6 is the example structure sketch map of filter plant of the present invention;
Fig. 7 is another example structure sketch map of filter plant of the present invention;
Fig. 8 is the example structure sketch map of content consumption equipment of the present invention;
Fig. 9 filters the example structure sketch map of client for the present invention.
Embodiment
In the related technical scheme of the embodiment of the invention, content consumption equipment is meant has subscribed to the professional equipment of CBCS.Content consumption equipment is subscribed to the professional subscription flow process of CBCS can have multiple implementation; The most important purpose of subscribing to is on content consumption equipment, to set up the information of filter plant; This information includes but not limited to the address information of filter plant; Like the URI (unified resource identifier) of filter plant, the IP address of filter plant etc., the PKI of filter plant, the information stores of this filter plant is in the filtration client on the content consumption equipment.
For example, CBCS service subscribing flow process can be: content consumption equipment is to the filter plant CBCS business that pulls subscription, content consumer device sign and CBCS service identification in this request; Filter plant sends the subscription response that has state information to the content consumer device, is " success " like state, then comprises the information of filter plant in this response message, and content consumption equipment is filtering this message stores in the client.
This filtration client can be just preset when content consumption equipment dispatches from the factory, and also can be filter plant is handed down to content consumption equipment in subscription response client software.After this, the application module of content consumption equipment all can call the filtration client before work.For example, the player of content consumption equipment can call the filtration client before playing certain media file, judge whether this media file passes through the filtration of filter plant, thereby whether decision allows this media file of player plays, whether allows to be shown to the user.Wherein, Content consumption equipment may further include the user filtering rule that content consumption equipment holder is provided with in filter plant pulls subscription the professional request of CBCS; At this moment; Filter plant is kept at this user filtering rule in the user filtering rule database, and this filtering rule is corresponding one by one with the content consumption device identification.
Fig. 1 is the embodiment flow chart of the method for the filtering enciphered content of the present invention; Be a kind of method of presorting; Content provides service equipment before the content consumer device provides encrypted content, the classification entity request of having trusted to filter plant to the classification of clear content; The encrypted content that content provides service equipment to provide is subsidiary to have classification to sign, and filter plant carries out filtration treatment according to classification results after intercepting and capturing encrypted content, generates the message that mails to content consumption equipment.As shown in Figure 1, its processing procedure is: intercept and capture the content response message and parse classification results according to said response message of presorting that contains encrypted content mail to content consumption equipment; Encrypted content is carried out filtration treatment and generates filter mark according to classification results; Said filtration mark and encrypted content are sent to the content consumer device; The said filtration mark of content consumption device parses is according to the analysis result that filters mark is judged whether to consume this content.
Wherein, said intercepting and capturing the presorting of encrypted content of containing of mailing to content consumption equipment also comprises before the content response message:
Content is sent the request of presorting to classification entity after the content requests that service equipment receives that content consumption equipment sends is provided;
After classification entity is accomplished classifying content, provide service equipment to send the classification signature of classification entity to classification results and content characteristic to content;
Content provides service equipment that contents processing is become encrypted content, generates the content response message of presorting by encrypted content with the classification signature and sends to the content consumer device.
Saidly encrypted content is carried out filtration treatment and generate to filter mark be specially: judge based on classification results and preset filtering rule whether content meets filtercondition, as meet, tackle this content based on classification results; As do not meet, generate the filtration mark of filter plant.
Fig. 2 is the flow chart of method embodiment of presorting, and is specially:
After step 13, classification entity are accomplished the clear content classification, provide service equipment to send classification signature to classification results and content characteristic to content;
Content-encrypt became encrypted content after step 14, content provided service equipment to classify, and generated the content response message of presorting by encrypted content and classification signature, sent to the content consumer device;
Step 15, filter plant are intercepted and captured this content response message of presorting, and are parsed content consumption device identification, encrypted content, classification results and content characteristic;
Step 16, filter plant are judged according to classification results and filtering rule whether content meets filtercondition, as are not met execution in step 17; As meet, filter plant is then tackled encrypted content, process ends;
Step 17, filter plant generate filters mark, and will filter mark and encrypted content sends to the content consumer device;
Step 18, content consumption device parses go out encrypted content and filter mark, according to the result of filtering mark is judged whether to consume this content.
After content provides service equipment to receive content request message; Find that according to content identification this content is an encrypted content; By the address information of filter plant, the holder who judges this content consumption equipment is a CBCS user again, therefore need classification results be provided to encrypted content.Content provides the address information of service equipment according to filter plant, finds the classification entity that this filter plant is trusted, and therefrom selecting a content provides the attachable classification entity of service equipment to carry out obtaining the classification results of content alternately.Wherein, content providing server equipment can be the equipment of content supplier/carrier server side, also can be terminal equipment.
The mode that content provides service equipment that classification results is provided has two kinds; A kind of is that service equipment is provided is the entity that filter plant is trusted to content; The function that content provides service equipment itself also to bear classification entity, promptly among Fig. 2 classification entity and content service equipment is provided is same physical entity; Another kind of situation is that content provides service equipment after receiving content requests, and again to classification entity request categorised content, shown in step 12 and 13, service equipment is provided is two physical entities for classification entity and content in this case.Content provides service equipment to seek the believable classification entity of filter plant has multiple solution; The first has special authoritative classification entity to be trusted by all filter plants at network side, and content provides the service equipment can be to so authoritative classification entity request content sorting result; It two is that content provides service equipment itself to safeguard a database, is a map index relation between the classification entity of filter plant and trust in this database.
The signature of classifying in the step 13 is actually classification entity and with its private key classification results and content characteristic two partial contents is signed, and obtains the classification signature of classification entity.And content characteristic can be a synopsis expressly, also can be content identification.
The parsing of classification results is specially in the step 15: adopt the public-key process classification signature of classification entity, parse classification results and content characteristic.Wherein, the PKI of classification entity can be that filter plant just is retained in this locality in advance, also can be that the mutual back of filter plant and classification entity obtains.
In the step 17, the content-based consumer device sign of filter plant is searched for its corresponding user filtering rule.If user's filtering rule is arranged, then judge according to the filtering rule of user's setting and the classification results of content whether this content meets filtercondition, if meet, then directly tackle this content, process ends.If do not meet filtercondition, promptly content is to be fit to the user, then generates and filters mark, and encrypted content and filtration mark are mail to content consumption equipment.If there is not user's filtering rule, filtering rule and the filtering enciphered content of classifying content result then given tacit consent to according to filter plant.
Wherein, filtering mark can be the filtration signature of filter plant to content characteristic, also can be the route record that comprises the filter plant address information.When filtering mark is when filtering signature, also can be the filtration signature of filter plant to filtration indication and content characteristic, and said filtration indication is when the part element meets filtercondition, the indication of the interception part element that filter plant generates.Wherein, Filter plant generates to filter to indicate and is specially: filter plant judges according to classification results and filtering rule whether content meets filtercondition; Meet filtercondition like the part element; Then generate the filtration indication of interception part element, the filtration signature that generate this moment is that filter plant is to filtering the filtration signature of indication and content characteristic.Wherein, comprise the address information of filter plant in the route record, this information can be but be not limited to URI address or IP address, the evidence that has filtered as encrypted content.
In step 18; The content consumption device parses goes out encrypted content and filters mark; Store the relevant information of filter plant on the content consumption equipment; Comprise the PKI of filter plant and the address of filter plant etc., content consumption equipment is according to the result of filtering mark is judged whether to consume this content.Said consumption is meant that content consumption equipment is to deciphering the processing such as demonstration, broadcast or printing of back content.
Particularly; Be labeled as when filtering signature when judging to filter,, encrypted content carried out decryption processing according to filtering the PKI that signature just can obtain the filter plant of content consumption equipment preservation; To decipher the back content and send, accomplish the operation of whole filtering enciphered content to application module.
At this moment, can also comprise the operation of content consumption device authentication filtration signature, make content consumption equipment filter to sign and judge the true and false of encrypted content through checking.The operation that signature is filtered in the content consumption device authentication is specially: content behind the receiving and deciphering; Calculate content characteristic based on deciphering back content; And with the content characteristic comparison that from filter signature, parses, inconsistent like content characteristic, interception deciphering back content then; Like the content characteristic unanimity, deciphering back content is sent to the upper application module of content consumption equipment.
Fig. 3 filters the embodiment flow chart of signing for content consumption device authentication of the present invention, is specially:
Content behind step 181, the receiving and deciphering;
Clear content is sent in step 184, filtration signature verification success, and proof procedure finishes;
Content consumption equipment parses encrypted content and filters signature and preserve after receiving message; During the access encrypted content, at first search for the corresponding filtration signature of this encrypted content, and encrypted content is deciphered through the PKI of filter plant.Afterwards, filter client and calculate content characteristic H according to this deciphering back content
2, and with from filtering the content characteristic H that signature parses
1Comparison if the two is inconsistent, is filtered the signature verification failure, filters this content of client interception, and proof procedure finishes; If the two unanimity is filtered the signature verification success, filter client this content is sent to the upper application module of content consumption equipment, proof procedure finishes.
In this embodiment, content characteristic can be content identification, also can be synopsis.When content characteristic is content identification, can directly from clear content, extract content identification.When content characteristic was synopsis, concrete handling process was: decipher this encrypted content, obtain deciphering the back content; To the computing of making a summary of this clear content, obtain content characteristic.Can also comprise the step of sending error reporting to upper layer application in the step 185.
Comparison content identification H
1With content identification H
2Purpose be in order to prevent content changing, therefore, this embodiment has thoroughly been stopped content to be provided content that service equipment offers content consumption equipment and sends to the inconsistent phenomenon of content that the filter plant request is filtered, and has guaranteed content quality.
In addition; After content consumption equipment receives content response message; If the application on the content consumption equipment is not this encrypted content of zero access; Then on content consumption equipment, set up this encrypted content and the index relative of filtering signature, with encrypted content with filter signature be kept at acquiescence/address of appointment.Upper layer application comprises browser, multimedia, Multimedia Message equipment MMS, exploitation mobile alliance OMA download etc.
On present embodiment technique scheme basis, can also comprise that content consumption equipment is according to the operation of filtering indication interception part element.Be specially: judgement is filtered and to be had in the signature when filtering indication, content behind the receiving and deciphering, and according to the part element that filters in the content of indication interception deciphering back, other elements of letting pass send to interception back content the upper application module of content consumption equipment.
At this moment; In the step 17 in the embodiment shown in Figure 2; Also comprise in the message that filter plant generates and filter indication; Be that filter plant is also signed to filtering indication, be specially: the privacy key of filter plant is held characteristic and is filtered indication and handle together, obtains the filtration signature of filter plant.Therefore; In judging the filtration signature, comprise when filtering indication; Then can directly carry out the interception of part element to deciphering the back content; Also can be after the content characteristic consistency checking pass through, the part element according to filtering in the indication intercepted content returns the content after tackling the part element to upper application module at last.
Filter when being labeled as route record when judging, comparing in the address of the filter plant of preserving according to the address and the content consumption equipment of the filter plant of route record record, when address information is inconsistent, tackles encrypted content; When address information is consistent, obtain the PKI of the filter plant of content consumption equipment preservation, encrypted content is carried out decryption processing, will decipher the back content and send, accomplish the operation of whole filtering enciphered content to application module.
Further specify such scheme with filtration treatment below to the digital publishing rights managing drm content.
The filtering rule of supposing user's setting is following:
To pornographic rank is that 3 grades and above picture filter, and filters the text description of relevant violence, and the URI that possibly point to rubbish SP is filtered.
The user provides one of service equipment request to be encrypted as 3 grades porny (possibly be the picture that receives the DRM protection) through browser to content now, also has the background text description to picture in this picture, and this word segment is healthier.In the method for presorting of filtering enciphered content, the classification results that content provides service equipment or classification entity to provide is as shown in table 3.
Table 3, classification results
Content (sign) element classification rank
Pornographic 3 grades of 123EXXX picture
0 grade of literal violence
The filtration indication of filter plant:
Filter plant is according to the classification results shown in the table 3, and the filtering rule of user's setting, and judgement needs interception picture, the literal of can letting pass.And should filter indication (as shown in table 4) and sign with content characteristic, issue content consumption equipment together with the picture of encrypting.Content consumption equipment can with the picture interception, only return to browser with word content according to filtering indication after having verified processes such as filtering signature, present to the user.
The filtration indication of table 4, filter plant
Content (sign) element filter result
The interception of 123EXXX picture
The literal literal
Fig. 4 is another embodiment flow chart of the method for the filtering enciphered content of the present invention; Be a kind of pre-filtering method; Content provides service equipment before the content consumer device provides encrypted content, the filter plant request of having trusted to the content consumer device to the filtration of clear content; The encrypted content that content provides service equipment to provide is subsidiary to be had as the filtration mark that filters label, after filter plant is intercepted and captured encrypted content, as finds the filtration mark, this encrypted content of then letting pass.As shown in Figure 4, its processing procedure is: intercept and capture the pre-filtering content response message that contains encrypted content that mails to content consumption equipment, judge whether said encrypted content carries the filtration mark, as do not have, tackle said encrypted content; If any, said filtration mark and encrypted content are sent to the content consumer device; The said filtration mark of content consumption device parses is according to the analysis result that filters mark is judged whether to consume this content.
Wherein, said filter plant also comprises before intercepting and capturing the pre-filtering content response message that contains encrypted content that mails to content consumption equipment:
Content is sent the pre-filtering request to filter plant after the content requests that service equipment receives that content consumption equipment sends is provided;
After filter plant is accomplished information filtering, provide service equipment to send the filtration mark that filters back content and filter plant to content;
Content provides service equipment that contents processing is become encrypted content, generates pre-filtering content response message by encrypted content and filtration mark and sends to the content consumer device.
Fig. 5 is the flow chart of pre-filtering method embodiment, is specially:
After step 23, filter plant are accomplished the clear content filtration, the content after content provides service equipment transmission filtration and the filtration mark of filter plant;
Contents processing became encrypted content after step 24, content provided service equipment to filter, and generated pre-filtering content response message by encrypted content and filtration mark, sent to the content consumer device;
After content provides service equipment to receive content request message; Parse address information, content identification and the content consumption device identification of filter plant; Find that according to content identification this content is an encrypted content; Judge that by the address information of filter plant the holder of content consumption equipment is a CBCS user again, therefore before encrypted content is sent to content consumption equipment, should filter clear content to the indicated filter plant request of the address information of filter plant earlier.Wherein, content providing server equipment can be the equipment of content supplier/carrier server side, also can be terminal equipment.
After filter plant receives the pre-filtering request; Parse wherein content consumption device identification and content/content characteristic; Undertaken obtaining the classification results of content alternately by filter plant and classification entity, and the filtering rule that the user is provided with is obtained in device identification according to content consumption.If user's filtering rule is arranged, the filtering rule filtering content that then is provided with, and the filtration mark of filter plant according to the user; If there is not user's filtering rule, the filtering rule filtering content of then giving tacit consent to according to filter plant.Above-mentioned classification entity can be that filter plant is built-in, also can be that filter plant is outside.
After content provides service equipment to receive to filter the back content and filter mark, utilize the encrypted content private key to handle and filter the back content, and the encrypted content after will handling with filter mark and send to the content consumer device as element generation pre-filtering content response message.
Filter plant judges when including encrypted content after intercepting and capturing pre-filtering response contents message, further judges the whether subsidiary mark that filters of this encrypted content, if any filtering mark, shows that this encrypted content has been crossed in advance to filter filter plant this content of then letting pass; As do not filter mark, then tackle encrypted content; The content consumption device parses goes out encrypted content and filters mark, according to the result of filtering mark is judged whether to consume this content.
In the above-mentioned embodiment, filtering mark can be the filtration signature of filter plant to content characteristic, also can be the route record that comprises the filter plant address information.Filter plant is the digital signature to content characteristic to the filtration signature essence of filtering the back content, and this content characteristic both can be content identification, also can be synopsis.When content characteristic is content identification, can directly from clear content, extracts content characteristic and obtain to filter signature; When content characteristic was synopsis, concrete handling process was: to filtering the computing of making a summary of back content, obtain content characteristic; This content characteristic of the encrypted private key of filter plant, the filtration that obtains filter plant is signed.The address information that comprises filter plant in the route record, this information can be but be not limited to URI address or IP address, the evidence that has filtered as encrypted content.
In step 28; The content consumption device parses goes out encrypted content and filters mark; Store the relevant information of filter plant on the content consumption equipment; Comprise the PKI of filter plant and the address of filter plant etc., just can obtain the above-mentioned information of filter plant, finally judge whether to consume this content according to result to the filtration mark according to filtering mark.Said consumption is meant that content consumption equipment is to deciphering the processing such as demonstration, broadcast or printing of back content.
Particularly; Be labeled as when filtering signature when judging to filter,, encrypted content carried out decryption processing according to filtering the PKI that signature just can obtain the filter plant of content consumption equipment preservation; To decipher the back content and send, accomplish the operation of whole filtering enciphered content to application module.
In the case, step 28 can also comprise the operation of content consumption device authentication filtration signature, makes content consumption equipment filter to sign through checking and judges the true and false of encrypted content.The operation that signature is filtered in the content consumption device authentication is specially: content behind the receiving and deciphering; Calculate content characteristic based on deciphering back content; And with the content characteristic comparison that from filter signature, parses, inconsistent like content characteristic, interception deciphering back content then; Like the content characteristic unanimity, deciphering back content is sent to the upper application module of content consumption equipment.It is as shown in Figure 3 that the practical implementation flow process of signing is filtered in the content consumption device authentication, repeats no more.
Filter when being labeled as route record when judging, comparing in the address of the filter plant of preserving according to the address and the content consumption equipment of the filter plant of route record record, when address information is inconsistent, tackles encrypted content; When address information is consistent, obtain the PKI of the filter plant of content consumption equipment preservation, encrypted content is carried out decryption processing, will decipher the back content and send, accomplish the operation of whole filtering enciphered content to application module.
Fig. 6 is the example structure sketch map of filter plant of the present invention.Filter plant comprises transceiver module 11, filtering module 12 and crypto module 13, and transceiver module 11 is used for receiving and resolving message, will resolve the back content and send to filtering module 12; Filtering module 12 is used to judge whether encrypted content carries the classification signature, as does not find the classification signature, then tackles this encrypted content, and as finding the classification signature, the signature of then will classifying sends to crypto module 13; Crypto module 13 is used for deciphering, and classification results that decrypts and content characteristic are returned to filtering module 12; Filtering module 12 carries out filtration treatment according to classification results and preset filtering rule;, content tackles this content when meeting filtercondition; Otherwise generate the filtration mark of filter plant, encrypted content and filtration mark are encapsulated and send to content consumption equipment through transceiver module 11.
Wherein, filtering module 12 comprises interception unit, filter element and generation unit; Interception unit is used to receive the analysis result that transceiver module 11 sends, and judges whether encrypted content carries the classification signature, as does not find the classification signature, and then tackle this encrypted content, as finding the classification signature, the signature of then will classifying sends; Filter element is used for receiving the classification signature; The classification signature is sent and receives the classification results that returns from crypto module to crypto module; Filtering rule according to preset judges whether said classification results meets filtercondition; When content meets filtercondition, call this content of interception unit interception, otherwise send filter result; Generation unit is used for the filter result that the receiving filtration unit sends, and generates to filter mark and transmission.Further, the filter result that filter element sends can be that content does not meet filtercondition fully, also can be that the part element in the content meets filtercondition.Generation unit can comprise filtration signature subelement, and this filtration signature subelement is used for when content does not meet filtercondition fully, generates to filter according to content characteristic and signs.Generation unit also can comprise filtration indication subelement, and this filtration indication subelement is used for when the part element of content meets filtercondition, and the filtration of generation interception part element is indicated, and generates the filtration signature according to content characteristic with filtering to indicate.Generation unit can also comprise route record subelement and address information subelement, and this route record subelement is used for when content does not meet filtercondition fully, according to the filter plant address information generation route record of address information subelement record.
This shows that filtering mark can be the filtration signature of filter plant to content characteristic, also can be the route record that comprises the filter plant address information.When filtering mark is when filtering signature, also can be the filtration signature of filter plant to filtration indication and content characteristic, and said filtration indication is when the part element meets filtercondition, the indication of the interception part element that filter plant generates.The address information that comprises filter plant in the route record, this information can be but be not limited to the URI address of equipment or the IP address of equipment, the evidence that has filtered as encrypted content.
On the present embodiment basis, can also comprise an information filtering module, be used for clear content being filtered, and content encapsulates and sends to content consumption equipment through transceiver module after will filtering according to filtering rule.Concrete workflow is: transceiver module 11 receives and resolves message, and analysis result is sent to filtering module 12; Whether filtering module 12 judge analysis results are encrypted content, as not being that clear content is transmitted to the content filtering module; The information filtering module is filtered clear content according to filtering rule, and content encapsulates and send to content consumption equipment through transceiver module after will filtering; Encrypted content is judged then whether this encrypted content carries the classification signature, as is not found the classification signature in this way, and then tackle this encrypted content, as finding the classification signature, the signature of then will classifying sends to crypto module 13; Crypto module 13 is used for deciphering, and classification results that decrypts and content characteristic are returned to filtering module 12; Filtering module 12 carries out filtration treatment according to classification results and filtering rule;, content tackles this content when meeting filtercondition; Otherwise generate the filtration mark of filter plant, encrypted content and filtration mark are encapsulated and send to content consumption equipment through transceiver module 11.No matter the above-mentioned flow process of present embodiment makes filter plant of the present invention still is that encrypted content all can carry out filtration treatment to clear content, makes filter plant of the present invention have extensive applicability.
Fig. 7 is another example structure sketch map of filter plant of the present invention.Filter plant comprises transceiver module 31 and judge module 32, and transceiver module 31 is used for receiving and resolving message, and analysis result is sent to judge module 32; Judge module 32 is used to judge whether encrypted content carries the filtration mark, as does not find the filtration mark, then tackles this encrypted content, as finding to filter mark, encrypted content and filtration mark is encapsulated and send to content consumption equipment through transceiver module 31;
Wherein, filtering mark can be the filtration signature of filter plant to content characteristic, also can be the route record that comprises the filter plant address information.The address information that comprises filter plant in the route record, this information can be but be not limited to the URI address of equipment or the IP address of equipment, the evidence that has filtered as encrypted content.
On the present embodiment basis, can also comprise an information filtering module, be used for clear content being filtered, and content encapsulates and sends to content consumption equipment through transceiver module after will filtering according to filtering rule.Concrete workflow is: transceiver module 31 receives and resolves message, and analysis result is sent to judge module 32; Whether judge module 32 judge analysis results are encrypted content, as not being that clear content is transmitted to the content filtering module; The information filtering module is filtered clear content according to filtering rule, and content encapsulates and send to content consumption equipment through transceiver module after will filtering; Encrypted content is judged then whether encrypted content carries the filtration mark, as is not found the filtration mark in this way, then tackles this encrypted content, as finding to filter mark, encrypted content and filtration mark is encapsulated and send to content consumption equipment through transceiver module 31.
Fig. 8 is the example structure sketch map of content consumption equipment of the present invention, and Fig. 9 filters the example structure sketch map of client for the present invention.Like Fig. 8, shown in Figure 9, content consumption equipment comprises application module 21, filters client 22 and deciphering module 23, and application module 21 is used for the message that receiving filtration equipment sends, and parses encrypted content and sends to filtering client 22 with the filtration mark; Deciphering module 23 is used for encrypted content is carried out decryption processing and returns deciphering back content; Filter client 22 and be used to receive the encrypted content and filtration mark that application module 21 sends, content after deciphering module 23 sends encrypted contents and receiving and deciphering is according to the analysis result that filters mark is judged whether to consume this content.Filtering mark can be the filtration signature of filter plant to content characteristic, also can be the route record that comprises the filter plant address information.
Filter client 22 and comprise resolution unit 222 and filter plant information bank 223, wherein, filter plant information bank 223 is used for the relevant information of stored filter equipment, and said relevant information comprises the PKI of filter plant; Resolution unit 222 is used to receive the encrypted content and filtration mark that application module sends; Resolve and to filter mark; According to the PKI that the analysis result that filters mark is obtained filter plant from filter plant information bank 223, and with encrypted content through sending to deciphering module 23.Resolution unit 222 can comprise that filtering signature resolves subelement or route record parsing subelement; Filtering signature resolves subelement and is used for resolving and filters mark and therefrom identify and filter signature; From the filter plant information bank, obtain the PKI of filter plant based on filtering to sign, and send to deciphering module with encrypted content; Route record is resolved subelement and is used for resolving the filtration mark and therefrom identifies route record; From the filter plant information bank, obtain the address of filter plant based on route record; And the filter plant address comparison corresponding with the route record record, interception encrypted content when address information is inconsistent; When address information is consistent, from the filter plant information bank, obtain the PKI of filter plant, and send to deciphering module with encrypted content.That is to say, when the judgement filtration is labeled as the filtration signature, sign from the PKI of filter plant information bank 223 acquisition filter plants, and PKI, encrypted content and filtration are signed together through sending to deciphering module 23 based on filtration.In addition; The relevant information of filter plant information bank record also comprises the address of filter plant; Resolution unit 222 is judged when filtration is labeled as route record; From the filter plant information bank, obtain the address of filter plant, and with route record in the filter plant address comparison of writing down, interception encrypted content when address information is inconsistent; When address information is consistent, from the filter plant information bank, obtain the PKI of filter plant, and send to deciphering module with encrypted content.
When resolution unit comprises that filtering signature resolves subelement; Resolution unit also comprises content characteristic parsing subelement and comparer unit; Content characteristic is resolved subelement and is used for parsing content characteristic from filtering signature; The comparer unit is used to receive from content after the deciphering of deciphering module; Calculate content characteristic according to deciphering back content; And the content characteristic that parses with content characteristic subelement comparison; If content characteristic is inconsistent; Then tackle this content; If consistent, then will decipher the back content and return to application module.Specifically, after CBCS service subscribing response arrives content consumption equipment, filter client 22 and receive " information of filter plant " from application module 21 (downloading), and this information sent in the filter plant information bank store like OMA.After application module 21 receives message, with wherein encrypted content with filter signature and parse.When the user capture downloaded contents, application module 21 at first calls and filters client 22, judges that whether this content is through filtering (A as shown in Figure 8).Find that when filtering client 22 this content is an encrypted content; Then seek the corresponding filtration mark of this encrypted content and whether exist,, filter 22 of clients and think that this encrypted content is not through filtering if can not find the filtration mark; Tackle this encrypted content, to application module 21 report error messages; If find and filter to be labeled as and filter signature, filter 22 PKIs of client, filter signature and encrypted content (B as shown in Figure 8) and send to deciphering module 23 and let its deciphering filter plant.Deciphering module 23 will be deciphered the back content, content characteristic returns to and filters client 22 (C as shown in Figure 8).Filter client 22 and calculate content characteristic based on this deciphering back content; If the content characteristic that calculates is consistent with the content characteristic that returns from deciphering module 23; Then filter the signature verification success; Filtration client 22 should be deciphered the back content and sent to application module 21, supplied the upper layer application of content consumption equipment; If the content characteristic of the two is inconsistent, then filter the signature verification failure, filter client 22 these contents of interception, can send error reporting (D as shown in Figure 8) to application module 21 simultaneously.If the user is not the zero access downloaded contents, 21 of application modules are set up this encrypted content and the index relative of filtering signature on content consumption equipment, with encrypted content with filter signature be kept at acquiescence/address of appointment.Application module 21 comprises browser, multimedia, MMS, OMA download etc.
In the operation of filtering client 22 checking filtration signatures; Application module 21 is issued resolution unit 222 with encrypted content; After resolution unit 222 judgements are encrypted content; Can seek its corresponding filtration signature according to this encrypted content, the PKI and the encrypted content that filter signature, filter plant are sent to deciphering module 23.After deciphering module 23 deciphering, deciphering back content is sent out to the comparer unit.The comparer unit calculates content characteristic according to deciphering back content, and whether the content characteristic that comparison calculates is consistent with the content characteristic that content characteristic parsing subelement parses, if consistent, then content returned to application module 21; If inconsistent, then tackle this content, and send error reporting to application module 21.Present embodiment can thoroughly have been stopped content service equipment content that offers content consumption equipment and the inconsistent phenomenon of content that sends to filter plant request filtration are provided, and has guaranteed content quality.
When resolution unit comprises that filtering signature resolves subelement; Resolution unit also comprises content characteristic parsing subelement and indication subelement, and filtration indication parsing subelement is used for parsing the filtration indication from filtering signature, at this moment; This filtration signature is that filter plant is to filtering the filtration signature of indication and content characteristic; Filtering indication is when the part element meets filtercondition, the indication of the interception part element that filter plant generates, and the indication subelement is used to receive from content after the deciphering of deciphering module; The part element in the content of back is deciphered in filtration indication interception according to filtration indication parsing subelement parses, and content returns to application module after will tackling.Particularly, in filtering signature, have when filtering indication, receive from content after the deciphering of deciphering module 23, according to the part element that filters in the indication intercepted content, other elements of letting pass send to application module 21 with the content after the interception of part element.Wherein, filtering indication is the indication that is used to tackle the part element that filter plant generates.The technical scheme of present embodiment makes content consumption equipment of the present invention can receive the information of various states neatly, makes content consumption equipment have extensive applicability.
On above-mentioned embodiment basis, the present invention can also form a kind of system that presorts of filtering enciphered content and the pre-filtration system of filtering enciphered content.
The system of presorting of filtering enciphered content comprises that content provides service equipment, filter plant, content consumption equipment and classification entity, and wherein, filter plant is the structure of embodiment shown in Figure 6, and content consumption equipment is the structure of Fig. 8, embodiment shown in Figure 9.Its course of work is: content consumption equipment provides service equipment to send content requests to content, comprises the address information of content identification, content consumption device identification, filter plant in this request; Content provides service equipment to send the request of presorting to classification entity, comprises in this request of presorting and wants classified content or content characteristic; After classification entity is accomplished the clear content classification, send classification signature to classification results and content characteristic to the content consumer device; Content-encrypt became encrypted content after content consumption equipment will be classified, and generated the content response message of presorting by encrypted content and classification signature, and sent to the content consumer device; Filter plant is intercepted and captured this message, and parses content consumption device identification, classification results and encrypted content; Filter plant judges whether classification results meets filtercondition, as meets, and then tackles encrypted content, process ends; As do not meet, generate and filter mark, will filter mark and encrypted content and send to the content consumer device; Content consumption equipment carries out decryption processing according to filtering mark to encrypted content.
The pre-filtration system of filtering enciphered content comprises that content provides service equipment, filter plant and content consumption equipment, and wherein, filter plant is the structure of embodiment shown in Figure 7, and content consumption equipment is the structure of Fig. 8, embodiment shown in Figure 9.Its course of work is: content consumption equipment provides service equipment to send content requests to content, comprises the URI of content identification, content consumption device identification, filter plant in this request; Content provides service equipment to send the pre-filtering request to filter plant, comprises interior perhaps content characteristic, the content consumption device identification that will filter in this pre-filtering request; After filter plant is accomplished the clear content filtration, provide service equipment to send the filtration mark that filters back content and filter plant to content; Contents processing became encrypted content after content provided service equipment to filter, and generated pre-filtering content response message by encrypted content with filtering to sign, and sent to the content consumer device; Filter plant is intercepted and captured this message, judges that whether encrypted content attaches the filtration mark, as not filtering mark, then tackles this encrypted content, process ends; If any filtering mark, filter plant is transmitted this message to the content consumer device; Content consumption equipment carries out decryption processing according to filtering mark to encrypted content.
Above-mentioned one or more embodiment shows; The embodiment of the invention is through being provided with the filtration mark behind encrypted content; Can be under situation about need not decipher; Can judge encrypted content according to filtering mark, realize filtration treatment, efficiently solve the technological deficiency that prior art can not be filtered encrypted content encrypted content.Further; Whether consume the embodiment of this content through checking filtration signature and judges; Can prevent content changing, thoroughly stop to offer user's the content and the inconsistent phenomenon of content of request filtration, improve the fail safe that encrypted content filters to greatest extent.
It should be noted last that; Above embodiment is only unrestricted in order to the technical scheme of the explanation embodiment of the invention; Although the embodiment of the invention is specified with reference to preferred embodiment; Those of ordinary skill in the art should be appreciated that and can make amendment or be equal to replacement the technical scheme of the embodiment of the invention, and do not break away from the spirit and the scope of its technical scheme.
Claims (23)
1. the method for a filtering enciphered content is characterized in that, comprising:
Filter plant is intercepted and captured the content response message of presorting that contains encrypted content and classification signature that mails to content consumption equipment, and parses classification results according to the signature of the classification in the said response message;
Said filter plant judges according to classification results and preset filtering rule whether content meets filtercondition, as meets, and tackles this content; As do not meet, generate the filtration mark of said filter plant;
Said filter plant sends said filtration mark and encrypted content to the content consumer device;
The said filtration mark of content consumption device parses is according to the analysis result that filters mark is judged whether to consume this content.
2. the method for filtering enciphered content as claimed in claim 1 is characterized in that, said filter plant also comprises before intercepting and capturing the content response message of presorting that contains encrypted content and classification signature that mails to content consumption equipment:
Content is sent the request of presorting to classification entity after the content requests that service equipment receives that content consumption equipment sends is provided;
After classification entity is accomplished classifying content, provide service equipment to send the classification signature of classification entity to classification results and content characteristic to content;
Content provides service equipment that contents processing is become encrypted content, generates the content response message of presorting by encrypted content with the classification signature and sends to the content consumer device.
3. like the method for the arbitrary described filtering enciphered content of claim 1~2, it is characterized in that said filtration is labeled as the filtration signature of filter plant to content characteristic; Said basis judges whether that to the analysis result that filters mark consuming this content is specially: obtain the filter plant PKI that content consumption equipment is preserved according to said filtration signature, encrypted content is deciphered.
4. the method for filtering enciphered content as claimed in claim 3; It is characterized in that said basis judges whether to consume this content to the analysis result that filters mark and also comprises: calculate content characteristic according to deciphering back content, and with the content characteristic comparison that from said filtration signature, parses; Inconsistent like content characteristic; Then interception deciphering back content is consistent like content characteristic, shows deciphering back content.
5. the method for filtering enciphered content as claimed in claim 1; It is characterized in that; The filtration mark of the said filter plant of said generation also comprises: when the part element meets filtercondition; Generate the filtration indication of interception part element, and generate filter plant content characteristic and the filtration signature that filters indication; Said basis judges whether that to the analysis result that filters mark consuming this content comprises: obtain the filter plant PKI that content consumption equipment is preserved according to said filtration signature; Encrypted content is deciphered, according to the part element that filters in the content of indication interception deciphering back.
6. like the method for the arbitrary described filtering enciphered content of claim 1~2, it is characterized in that said filtration is labeled as the route record that comprises the filter plant address information; Said basis judges whether that to the analysis result that filters mark consuming this content is specially: comparing in the filter plant address according to the filter plant address and the content consumption equipment of said route record record are preserved, when address information is consistent encrypted content is deciphered.
7. the method for a filtering enciphered content is characterized in that, comprising:
Filter plant is intercepted and captured the pre-filtering content response message that contains encrypted content that mails to content consumption equipment, judges whether said encrypted content carries the filtration mark, as does not have, and tackles said encrypted content; If any, said filtration mark and encrypted content are sent to the content consumer device;
The said filtration mark of content consumption device parses is according to the analysis result that filters mark is judged whether to consume this content.
8. the method for filtering enciphered content as claimed in claim 7 is characterized in that, the pre-filtering content response message that contains encrypted content that content consumption equipment is mail in said intercepting and capturing also comprises before:
Content is sent the pre-filtering request to filter plant after the content requests that service equipment receives that content consumption equipment sends is provided;
After filter plant is accomplished information filtering, provide service equipment to send the filtration mark that filters back content and filter plant to content;
Content provides service equipment that contents processing is become encrypted content, generates pre-filtering content response message by encrypted content and filtration mark and sends to the content consumer device.
9. like the method for claim 7 or 8 described filtering enciphered contents, it is characterized in that said filtration is labeled as the filtration signature of filter plant to content characteristic; Said basis judges whether that to the analysis result that filters mark consuming this content is specially: obtain the filter plant PKI that content consumption equipment is preserved according to said filtration signature, encrypted content is deciphered.
10. the method for filtering enciphered content as claimed in claim 9; It is characterized in that said basis judges whether to consume this content to the analysis result that filters mark and also comprises: calculate content characteristic according to deciphering back content, and with the content characteristic comparison that from said filtration signature, parses; Inconsistent like content characteristic; Then interception deciphering back content is consistent like content characteristic, shows deciphering back content.
11. the method like claim 7 or 8 described filtering enciphered contents is characterized in that said filtration is labeled as the route record that comprises the filter plant address information; Said basis judges whether that to the analysis result that filters mark consuming this content is specially: comparing in the filter plant address according to the filter plant address and the content consumption equipment of said route record record are preserved, when address information is consistent encrypted content is deciphered.
12. a filter plant is characterized in that, comprising:
Transceiver module is used to receive the content response message of presorting that contains encrypted content that mails to content consumption equipment, resolves said information and sending analysis result;
Filtering module is used to receive the analysis result that said transceiver module sends, and judges whether said encrypted content carries the classification signature, as does not find the classification signature, and then tackle this encrypted content, as finding the classification signature, the signature of then will classifying sends;
Crypto module is used to receive the classification signature that said filtering module sends, and the classification results that from said classification signature, decrypts returns to filtering module;
The classification results that filtering module returns according to said crypto module; Use preset filtering rule to carry out filtration treatment;, content tackles this content when meeting filtercondition; Filter mark otherwise generate, said encrypted content and filtration mark are encapsulated and send to content consumption equipment through said transceiver module.
13. filter plant as claimed in claim 12 is characterized in that, said filtering module comprises:
Interception unit is used to receive the analysis result that said transceiver module sends, and judges whether said encrypted content carries the classification signature, as does not find the classification signature, and then tackle this encrypted content, as finding the classification signature, the signature of then will classifying sends;
Filter element; Be used to receive said classification signature; The classification signature is sent and receives the classification results that returns from crypto module to crypto module; Filtering rule according to preset judges whether said classification results meets filtercondition, calls this content of interception unit interception when meeting filtercondition, otherwise sends filter result;
Generation unit is used for the filter result that the receiving filtration unit sends, and generates to filter mark and transmission.
14. filter plant as claimed in claim 13; It is characterized in that; Said generation unit comprises and filters the signature subelement, when said filtration signature subelement identifies content in the said filter result and do not meet filtercondition fully, generates according to content characteristic and to filter signature.
15. like claim 13 or 14 described filter plants; It is characterized in that; Said generation unit comprises filtering indicates subelement; When said filtration indication subelement identifies part element in the content in the said filter result and meets filtercondition, generate the filtration indication of interception part element, and according to content characteristic with filter indication and generate and filter signature.
16. filter plant as claimed in claim 13 is characterized in that, said generation unit comprises:
The address information subelement has write down the filter plant address in the said address information subelement;
When route record subelement, said route record subelement identify content in the said filter result and do not meet filtercondition fully, generate route record according to the filter plant address information of said address information subelement record.
17. a filter plant is characterized in that, comprising:
Transceiver module is used to receive the pre-filtering content response message that contains encrypted content that mails to content consumption equipment, resolves said information and sending analysis result;
Judge module; Be used to receive the analysis result that said transceiver module sends; Judge whether said encrypted content carries the filtration mark, as do not find the filtration mark, then tackle this encrypted content; As find to filter mark, then encrypted content and filtration mark are encapsulated and send to content consumption equipment through transceiver module.
18. a content consumption equipment is characterized in that, comprising:
Application module is used for the message that receiving filtration equipment sends, and sends after parsing encrypted content and filtering mark;
Filter client, be used to receive the encrypted content and filtration mark that said application module sends, send encrypted content;
Deciphering module is used for receiving said encrypted content from said filtration client, carries out decryption processing and returns deciphering back content;
Said filtration client receives the decryption content that said deciphering module returns, and judges whether to consume this content according to the analysis result to said filtration mark.
19. content consumption equipment as claimed in claim 18 is characterized in that, said filtration client comprises:
The filter plant information bank is used for the relevant information of stored filter equipment, and said relevant information comprises the PKI of filter plant;
Resolution unit; Be used to receive the encrypted content and filtration mark that said application module sends; Resolve said filtration mark; According to the PKI that the analysis result of said filtration mark is obtained filter plant from said filter plant information bank, and said PKI and encrypted content sent to said deciphering module.
20. content consumption equipment as claimed in claim 19 is characterized in that, said resolution unit comprises:
Filtering signs resolves subelement, is used for parsing and filters mark and therefrom identify the filtration signature, and signing based on said filtration obtains the PKI of filter plant from the filter plant information bank, and said PKI and encrypted content are sent to deciphering module.
21. content consumption equipment as claimed in claim 19 is characterized in that said relevant information also comprises the address of filter plant, said resolution unit comprises:
Route record is resolved subelement; Be used for resolving and filter mark and therefrom identify route record; From the filter plant information bank, obtain the address of filter plant according to said route record; And the filter plant address comparison corresponding with said route record record, interception encrypted content when address information is inconsistent; When address information is consistent, from the filter plant information bank, obtain the PKI of filter plant, and said PKI and encrypted content are sent to deciphering module.
22. content consumption equipment as claimed in claim 20 is characterized in that, said resolution unit also comprises:
Content characteristic is resolved subelement, is used for parsing content characteristic from said filtration signature;
The comparer unit; Be used to receive from content after the deciphering of deciphering module, calculate content characteristic, and compare with the content characteristic that the content characteristic subelement parses according to deciphering back content; If content characteristic is inconsistent; Then tackle this content,, then will decipher the back content and return to application module if consistent.
23. content consumption equipment as claimed in claim 20 is characterized in that, said resolution unit also comprises:
Filter indication and resolve subelement, be used for parsing the filtration indication from said filtration signature;
The indication subelement is used to receive from content after the deciphering of deciphering module, deciphers the part element in the content of back according to the filtration indication interception that filtration indication parsing subelement parses, and content returns to application module after will tackling.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2007100646502A CN101272594B (en) | 2007-03-22 | 2007-03-22 | Method for filtering enciphered contents, filter device and contents consuming device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2007100646502A CN101272594B (en) | 2007-03-22 | 2007-03-22 | Method for filtering enciphered contents, filter device and contents consuming device |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101272594A CN101272594A (en) | 2008-09-24 |
| CN101272594B true CN101272594B (en) | 2012-04-25 |
Family
ID=40006221
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2007100646502A Active CN101272594B (en) | 2007-03-22 | 2007-03-22 | Method for filtering enciphered contents, filter device and contents consuming device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101272594B (en) |
Families Citing this family (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP5587085B2 (en) * | 2010-07-27 | 2014-09-10 | パナソニック株式会社 | COMMUNICATION SYSTEM, CONTROL DEVICE, AND CONTROL PROGRAM |
| CN107371141B (en) * | 2016-05-11 | 2022-06-10 | 中兴通讯股份有限公司 | Junk information monitoring method and device and communication system |
| CN107547478B (en) * | 2016-06-28 | 2020-09-11 | 华为技术有限公司 | Message transmission method, device and system |
| CN109672704B (en) * | 2017-10-16 | 2022-02-25 | 阿里巴巴集团控股有限公司 | Message processing method and device and electronic equipment |
| EP3683784A1 (en) * | 2019-01-21 | 2020-07-22 | Ngrave bvba | Long-term offline management of cryptographic parameters |
| CN109905412B (en) * | 2019-04-28 | 2021-06-01 | 山东渔翁信息技术股份有限公司 | Network data parallel encryption and decryption processing method, device and medium |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2003056751A1 (en) * | 2001-12-28 | 2003-07-10 | Nortel Networks Limited | Method, mobile telecommunication network, and node for authenticating an originator of a data transfer |
| CN1670736A (en) * | 2004-03-15 | 2005-09-21 | 胡晓东 | An anti-spam method and system |
| WO2006076803A1 (en) * | 2005-01-20 | 2006-07-27 | Certicom Corp. | Method and system of managing and filtering electronic messages using cryptographic techniques |
| CN1885836A (en) * | 2006-07-04 | 2006-12-27 | 华为技术有限公司 | Information filtering and secret-keeping method and apparatus in instantaneous communication |
| GB2430335A (en) * | 2005-09-16 | 2007-03-21 | Jeroen Oostendorp | Pre-filtering of digital messages |
-
2007
- 2007-03-22 CN CN2007100646502A patent/CN101272594B/en active Active
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2003056751A1 (en) * | 2001-12-28 | 2003-07-10 | Nortel Networks Limited | Method, mobile telecommunication network, and node for authenticating an originator of a data transfer |
| CN1670736A (en) * | 2004-03-15 | 2005-09-21 | 胡晓东 | An anti-spam method and system |
| WO2006076803A1 (en) * | 2005-01-20 | 2006-07-27 | Certicom Corp. | Method and system of managing and filtering electronic messages using cryptographic techniques |
| GB2430335A (en) * | 2005-09-16 | 2007-03-21 | Jeroen Oostendorp | Pre-filtering of digital messages |
| CN1885836A (en) * | 2006-07-04 | 2006-12-27 | 华为技术有限公司 | Information filtering and secret-keeping method and apparatus in instantaneous communication |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101272594A (en) | 2008-09-24 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US9892273B2 (en) | Provision of RSS feeds based on classification of content | |
| US7380126B2 (en) | Methods and apparatus for controlling the transmission and receipt of email messages | |
| US7774604B2 (en) | Verifying captured objects before presentation | |
| US7954155B2 (en) | Identifying unwanted electronic messages | |
| US7113948B2 (en) | Methods and systems for email attachment distribution and management | |
| US20040203589A1 (en) | Method and system for controlling messages in a communication network | |
| CN101272594B (en) | Method for filtering enciphered contents, filter device and contents consuming device | |
| US9479522B1 (en) | Method and apparatus for managing content distribution using content signatures | |
| EP1532545A1 (en) | Method and system for managing cookies according to a privacy policy | |
| US20070263259A1 (en) | E-Mail Transmission System | |
| US20060010322A1 (en) | Record management of secured email | |
| Symington | Delay-Tolerant Networking Metadata Extension Block | |
| JP2011522336A (en) | Method for tracking and restoring a pseudonym stream on a communication network, and method for transmitting an information stream capable of securely protecting data traffic and its address | |
| CN107463848A (en) | A kind of application oriented cipher text searching method, apparatus, proxy server and system | |
| CA2862557A1 (en) | Method for certifying the sending of electronic mail | |
| Alexander et al. | Web services transfer (WS-transfer) | |
| Muftic et al. | Business information exchange system with security, privacy, and anonymity | |
| US8375089B2 (en) | Methods and systems for protecting E-mail addresses in publicly available network content | |
| US20020013810A1 (en) | Electronic document mapping | |
| JP2007140760A (en) | E-mail communication support method, e-mail communication support system, and e-mail communication support program | |
| EP2605477A1 (en) | Proxy server operation | |
| CA2631374C (en) | Provision of secure rss feeds using a secure rss catcher | |
| Guan et al. | Research and Design of Secure Data Exchange Model Based on the Interactivity Environment of Energy Internet | |
| van Brandenburg et al. | RFC 9246 URI Signing for Content Delivery Network Interconnection (CDNI) | |
| Symington | RFC 6258: Delay-Tolerant Networking Metadata Extension Block |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |