Summary of the invention
The objective of the invention is on the basis of the existing short message of smart mobile phone, Email and voice communication technology, provide a kind of method that under the support of safety TF card, realizes based on enhancing smart mobile phone short message, Email and the voice communication fail safe of safety TF card.According to present case; Most of smart mobile phones can be supported Micro SD (being TF) card; Through TF card safe in utilization; And the method that proposes among combination the present invention, can use the security module of safe TF card as smart mobile phone, thereby for to the processing of short message, Email and voice communication corresponding cryptographic service being provided.Below will pass through the smart mobile phone that this method strengthened fail safe and abbreviate the safe and intelligent mobile phone as.
The objective of the invention is to realize like this:
A kind of method that strengthens smart mobile phone short message, Email and voice communication fail safe, this method is characterized in that based on safety TF card:
When sending note; After weaving in the note processing components of note via smart mobile phone; Before sending, use the note session key to call the SMS encryption assembly and send to safe short messaging gateway after to information encryption by the note processing components; After safe short messaging gateway is received the note that smart mobile phone sends, will number do different processing according to the purpose smart mobile phone in the note;
When send Email, after weaving in the email disposal assembly of Email via smart mobile phone, before sending, use the mail session key to call the email encryption assembly and send to e-mail server after to email encryption by the mail treatment assembly; E-mail server is done different processing according to the purpose addresses of items of mail in the mail after receiving the Email that smart mobile phone sends;
When initiating voice communication, voice communication content uses the voice communication session key to call encrypted component via the voice communication processing components of smart mobile phone and sends to the voice communications services device after to the speech data stream encryption; The voice communications services device is done different processing according to the purpose call address in the audio data stream after receiving the audio data stream that smart mobile phone sends.
Before further being included in the transmission note; If do not carry out the encryption and decryption key agreement; Then the safety short messaging gateway is initiated the key agreement note by the note processing components of smart mobile phone; Between smart mobile phone and safe short messaging gateway, set up the note session key then, this key is all used in later note session encryption and decryption operation.
Note session key after the negotiation imports in the safe TF card and preserves, and said note session key upgrades after can manually upgrading and perhaps can setting the regular hour automatically.
Said note comprises purpose smart mobile phone number and actual short message content two parts.
If note issues safe short messaging gateway, then the purpose smart mobile phone number is the short message port number of safe short messaging gateway; If note is to issue other smart mobile phone, then the purpose smart mobile phone number is the number of said other smart mobile phones.
Saidly will number do different processing according to the purpose smart mobile phone in the note and be specially: if the purpose smart mobile phone number is exactly the short message port number of safe short messaging gateway self, then said note need not be transmitted and directly self handled by the safety short messaging gateway; If the purpose smart mobile phone number is other purpose smart mobile phones, then safe short messaging gateway is done this note to be transmitted to the corresponding target smart mobile phone after corresponding encryption and decryption is handled.
Said safe short messaging gateway be meant telecom operators or service provider or group user place be used to handle and smart mobile phone between the server of short message affairs.
Further comprise:
After the note processing components of smart mobile phone is received the note that safe short messaging gateway sends, use the note session key to call the note decryption component and at first supply the user to check on the smart mobile phone interface being shown to by the note processing components again after the decrypts information.
Further comprise:
When the note processing components is stored short message content on said smart mobile phone, call the SMS encryption assembly earlier and store after to information encryption; When said smart mobile phone extracts the encryption short message content of storage, call the note decryption component earlier decrypts information is carried out corresponding operating then.
Before send Email, through confirming to be used for the mail session key of mail encryption and decryption with outer mode, direct generation mail session key and depositing in the safe TF card when providing safe TF card for the user.
Saidly do different processing according to the purpose addresses of items of mail in the mail and be specially:
If the purpose addresses of items of mail is the address of this mail server self, then handle by mail server self; If the purpose addresses of items of mail is other purpose mailbox, then e-mail server is first with current electronic mail conversation secret key decryption with this Mail Contents, and then the pairing session key of application target mailbox is done to transmit the corresponding target mailbox after the encryption.
Further comprise:
After the email disposal assembly of smart mobile phone is received the mail that e-mail server sends, use the mail session key to call the mail decryption component and at first supply the user to check on the smart mobile phone mail interface being shown to again after the mail deciphering.
Further comprise:
The email disposal assembly calls the email encryption assembly earlier and Mail Contents is encrypted is remake storage then on said smart mobile phone during the storage of e-mails content; When said smart mobile phone extracts the encrypted E-mail content of storage, call the mail decryption component earlier to mail deciphering carrying out then corresponding operating.
Before carrying out voice communication, at first through confirming to be used for the session key of speech data encryption and decryption with outer mode, direct generation voice communication session key and depositing in the safe TF card when providing safe TF card for the user.
Speech data comprises purpose smart mobile phone number and actual speech data content two parts.
If the call intent number is the secure voice communication server self, then the purpose smart mobile phone number is the number of the secure voice communication server; If the call intent number is other smart mobile phone, then the purpose smart mobile phone number is the number of said other smart mobile phones.
Saidly do different processing according to the purpose call address in the audio data stream and be specially:
If the purpose call address is exactly the address of this voice communications services device self, then self handle by the voice communications services device; If the purpose call address is other terminal number; Then the voice communications services device is first with current voice communication session secret key decryption with this speech data content, and then the pairing voice communication session key of application target terminal number is done to transmit the corresponding target terminal after the encryption.
After the voice communication processing components of smart mobile phone is received the audio data stream that the voice communications services device sends, use the voice communication session key to call the voice decryption component at first to playing to the user through terminal system again after the speech data deciphering.
Safe TF card is that corresponding smart mobile phone provides corresponding calling interface storehouse, and smart mobile phone is realized calling session key in the safety TF card through these interface libraries.
Said safe TF card is selected crypto chip, SD controller and Flash for use and is packaged together, and adopts TF interface packing forms, supports symmetry, asymmetric cryptographic algorithm and digest algorithm, but the store session key.
The present invention has following good effect: the present invention is applied to strengthen smart mobile phone short message, Email and voice communication fail safe with safe TF card; Through TF card safe in utilization; And the method that proposes among combination the present invention; Can realize encryption and decryption operation to short message, Email and voice communication; Thereby ensured the confidentiality of short message, Email and the voice communication information in transmission course forcefully, also can't actually crack its true content even make malice third party in the transmission course intercept and capture this short message, Email and voice communication data stream.Simultaneously; Because this method is encrypted the destination address and the information content of the note of reality simultaneously; Malice third party can recognize on the information of intercepting and capturing be exactly at most note be to have issued safe Short Message Service Gateway; And he can not really know the actual purpose address of information, thereby has well avoided the flow analysis attack.In addition; Because short message, Email have also carried out encryption when smart mobile phone carries out this locality storage; So avoided third party's program steal information of the malice on this machine of smart mobile phone, and, lose even smart mobile phone is unfortunate; Because other people do not have decruption key, the enciphered message of being stored in the smart mobile phone remains safe.
Embodiment
A kind of method that strengthens smart mobile phone short message, Email and voice communication fail safe, this method is characterized in that based on safety TF card:
When sending note; After weaving in the note processing components of note via smart mobile phone; Before sending, use the note session key to call the SMS encryption assembly and send to safe short messaging gateway after to information encryption by the note processing components; After safe short messaging gateway is received the note that smart mobile phone sends, will number do different processing according to the purpose smart mobile phone in the note;
When send Email, after weaving in the email disposal assembly of Email via smart mobile phone, before sending, use the mail session key to call the email encryption assembly and send to e-mail server after to email encryption by the mail treatment assembly; E-mail server is done different processing according to the purpose addresses of items of mail in the mail after receiving the Email that smart mobile phone sends;
When initiating voice communication, voice communication content uses the voice communication session key to call encrypted component via the voice communication processing components of smart mobile phone and sends to the voice communications services device after to the speech data stream encryption; The voice communications services device is done different processing according to the purpose call address in the audio data stream after receiving the audio data stream that smart mobile phone sends.
Before further being included in the transmission note; If do not carry out the encryption and decryption key agreement; Then the safety short messaging gateway is initiated the key agreement note by the note processing components of smart mobile phone; Between smart mobile phone and safe short messaging gateway, set up the note session key then, this key is all used in later note session encryption and decryption operation.
Note session key after the negotiation imports in the safe TF card and preserves, and said note session key upgrades after can manually upgrading and perhaps can setting the regular hour automatically.
Said note comprises purpose smart mobile phone number and actual short message content two parts.
If note issues safe short messaging gateway, then the purpose smart mobile phone number is the short message port number of safe short messaging gateway; If note is to issue other smart mobile phone, then the purpose smart mobile phone number is the number of said other smart mobile phones.
Saidly will number do different processing according to the purpose smart mobile phone in the note and be specially:
If the purpose smart mobile phone number is exactly the short message port number of safe short messaging gateway self, then said note need not be transmitted and directly self handled by the safety short messaging gateway; If the purpose smart mobile phone number is other purpose smart mobile phones, then safe short messaging gateway is done this note to be transmitted to the corresponding target smart mobile phone after corresponding encryption and decryption is handled.
Said safe short messaging gateway be meant telecom operators or service provider or group user place be used to handle and smart mobile phone between the server of short message affairs.
Further comprise:
After the note processing components of smart mobile phone is received the note that safe short messaging gateway sends, use the note session key to call the note decryption component and at first supply the user to check on the smart mobile phone interface being shown to by the note processing components again after the decrypts information.
Further comprise:
When the note processing components is stored short message content on said smart mobile phone, call the SMS encryption assembly earlier and store after to information encryption; When said smart mobile phone extracts the encryption short message content of storage, call the note decryption component earlier decrypts information is carried out corresponding operating then.
Before send Email, through confirming to be used for the mail session key of mail encryption and decryption with outer mode, direct generation mail session key and depositing in the safe TF card when providing safe TF card for the user.
Saidly do different processing according to the purpose addresses of items of mail in the mail and be specially:
If the purpose addresses of items of mail is the address of this mail server self, then handle by mail server self; If the purpose addresses of items of mail is other purpose mailbox, then e-mail server is first with current electronic mail conversation secret key decryption with this Mail Contents, and then the pairing session key of application target mailbox is done to transmit the corresponding target mailbox after the encryption.
Further comprise:
After the email disposal assembly of smart mobile phone is received the mail that e-mail server sends, use the mail session key to call the mail decryption component and at first supply the user to check on the smart mobile phone mail interface being shown to again after the mail deciphering.
Further comprise:
The email disposal assembly calls the email encryption assembly earlier and Mail Contents is encrypted is remake storage then on said smart mobile phone during the storage of e-mails content; When said smart mobile phone extracts the encrypted E-mail content of storage, call the mail decryption component earlier to mail deciphering carrying out then corresponding operating.
Before carrying out voice communication, at first through confirming to be used for the session key of speech data encryption and decryption with outer mode, direct generation voice communication session key and depositing in the safe TF card when providing safe TF card for the user.
Speech data comprises purpose smart mobile phone number and actual speech data content two parts.
If the call intent number is the secure voice communication server self, then the purpose smart mobile phone number is the number of the secure voice communication server; If the call intent number is other smart mobile phone, then the purpose smart mobile phone number is the number of said other smart mobile phones.
Saidly do different processing according to the purpose call address in the audio data stream and be specially:
If the purpose call address is exactly the address of this voice communications services device self, then self handle by the voice communications services device; If the purpose call address is other terminal number; Then the voice communications services device is first with current voice communication session secret key decryption with this speech data content, and then the pairing voice communication session key of application target terminal number is done to transmit the corresponding target terminal after the encryption.
After the voice communication processing components of smart mobile phone is received the audio data stream that the voice communications services device sends, use the voice communication session key to call the voice decryption component at first to playing to the user through terminal system again after the speech data deciphering.
Should it is characterized in that based on the method for enhancing smart mobile phone short message, Email and the voice communication fail safe of safety TF card: the method TF card safe in utilization of this enhancings smart mobile phone short message, Email and voice communication fail safe increase as the cryptographic service module, in the note processing section of smart mobile phone to the encryption and decryption processing components of information and to the calling of assembly, the short message service server end increase increase in safe short messaging gateway, the email disposal part at smart mobile phone to the encryption and decryption processing components of information and to the calling of assembly, the e-mail server end increase the encryption and decryption processing components that increases in safety E-mail processing components, the voice communication processing section information at smart mobile phone reach to assembly call and in seven steps of voice communications services device end increase secure voice communication process assembly.Basic sketch map is as shown in Figure 1.
Described safe TF card is a kind of safe and intelligent TF card class password product, and safe and intelligent TF card is selected crypto chip, SD controller and Flash for use and is packaged together, and the interface packing forms of safe and intelligent TF card is TF.Safe TF card is supported symmetry, asymmetric cryptographic algorithm and digest algorithm; Can store user certificate; Be used for user identity identification, the safe storage of safety control strategy and corresponding security algorithm and user's important information and Transaction Information is provided; Safe TF card is that corresponding smart mobile phone provides corresponding calling interface storehouse, and smart mobile phone is realized the operation to safety TF card through these interface libraries.
The described encryption and decryption processing components that in the note processing section of smart mobile phone, increases information is divided into the increase encrypted component specifically and increases decryption component.Calling of the cryptographic service that these two assemblies that increase are used for safety TF card is provided, as shown in Figure 2.
After increasing these two assemblies, the note processing section need by following basic step realize to the calling of corresponding assembly (processing of this part be with the safety short messaging gateway be corresponding to the processing of short message.For example, safe short messaging gateway transmitting short message is encrypted during to smart mobile phone, and then smart mobile phone is received after the note with regard to decryption processing):
The first step is before beginning to receive and dispatch note, if the encryption and decryption key of negotiation information is not then initiated the key agreement note by the note processing components of smart mobile phone to the safety short messaging gateway.Then between is set up the note session key, and this key is all used in the operation of later encryption and decryption, and this key both can manually upgrade, and upgrades automatically after also can setting the regular hour.Note session key after the negotiation imports in the safe TF card and carries out safe preservation.From the needs to effective management of key, each smart mobile phone only keeps the note session key between itself and the safe short messaging gateway.So, for realizing the safe short message in this method.Each smart mobile phone only carries out short message communication with the safety short messaging gateway.The encryption note that is each smart mobile phone only mails to safe short messaging gateway.For this reason, the messaging format (corresponding to the content part of conventional note) of design this method is following two parts:
1. purpose smart mobile phone number (such as the purpose phone number).
2. actual short message content.
Comprising two kinds of situation:
1. if note itself is issued safe short messaging gateway self, then the purpose smart mobile phone number still is the short message port number of safe short messaging gateway.
2. if note is issued other smart mobile phone, then the purpose smart mobile phone number be the number of that smart mobile phone of reality.
After safe short messaging gateway is received the note that smart mobile phone sends, will number do different processing according to the above-mentioned purpose smart mobile phone in the note.If the purpose smart mobile phone number is exactly the short message port number of safe short messaging gateway self, explain that then this note issues safety short messaging gateway self, so this note need not be transmitted and directly self handled by the safety short messaging gateway; If the purpose smart mobile phone number is other purpose smart mobile phone, then safe short messaging gateway is done this note to be transmitted to the corresponding target smart mobile phone after corresponding encryption and decryption is handled.
In second step, after the note processing components is received the note that safe short messaging gateway sends, use the note session key to call decryption component and at first supply the user to check on the smart mobile phone interface being shown to by the note processing components again after the decrypts information.
In the 3rd step, when sending note, after note weaves in the note processing components via the user, before sending, use the note session key to call encrypted component and send to safe short messaging gateway after to information encryption by the note processing components.
In the 4th step, when the note processing components is stored short message content on this machine, call encrypted component earlier information encryption is remake storage then.Prevent the rogue program steal information content on the smart mobile phone with this.
In the 5th step, when the note processing components is extracted the encryption short message content of storage from this machine, call decryption component earlier decrypts information is made corresponding operating then in said note processing components, such as being shown to the user.
Described safe short messaging gateway be meant telecom operators or service provider or group user place be used to handle and smart mobile phone between the server of short message affairs.Its function comprises that transmitting short message is given smart mobile phone, handled note that smart mobile phone sends, forwarding short message breath etc. between smart mobile phone.In these processing procedures, all to carry out the safety operation of corresponding encryption and decryption.
Increase encryption and decryption processing components in the described email disposal part at smart mobile phone, be divided into specifically and increase E-mail enciphered assembly and increase Email decryption component information.Calling of the cryptographic service that these two assemblies that increase are used for safety TF card is provided, as shown in Figure 3.
After increasing these two assemblies, email disposal part need by following basic step realization to the calling of corresponding assembly (processing of this part be with e-mail server be corresponding through the processing of calling to Email to the safety E-mail processing components.For example, if e-mail server was encrypted when sending an email to smart mobile phone, then smart mobile phone is just made decryption processing after receiving Email):
The first step, the electronic mail conversation key through confirming to be used for the mail encryption and decryption with outer mode (for example can through when providing safe TF card for the user directly the generation session key and deposit in the safe TF card).The electronic mail conversation key that different smart mobile phones is corresponding different.E-mail server will be done different processing according to the above-mentioned purpose addresses of items of mail in the mail after receiving the safety E-mail that smart mobile phone sends.If the purpose addresses of items of mail is exactly the address of e-mail server self, explain that then this mail issues this mail server self, make corresponding decryption processing by mail server self this moment; If the purpose addresses of items of mail is other purpose mailbox; Then e-mail server is first with current electronic mail conversation secret key decryption with this Mail Contents, and then the pairing electronic mail conversation key of application target mailbox is done to transmit the corresponding target mailbox after the encryption.
In second step, after terminal electronic mail treatment assembly is received the mail that e-mail server sends, use the electronic mail conversation key to call decryption component at first to supplying the user to check use on the smart mobile phone mail interface by being shown to again after the decrypts information.
The 3rd step; At the terminal during send Email; After Email weaves in the mail treatment assembly via the user, before sending, use the electronic mail conversation key to call encrypted component and send to e-mail server after to information encryption by terminal mail treatment assembly.
In the 4th step, when terminal electronic mail treatment assembly was stored Mail Contents on this machine, encryption remake storage then to Mail Contents to call encrypted component earlier.Prevent that with this rogue program on smart mobile phone from stealing the e-mail messages content.
In the 5th step, when terminal electronic mail treatment assembly extracts the privacy enhanced mail content of storage from this machine, call decryption component earlier decrypts information is made corresponding operating then in said email disposal assembly, such as being shown to the user.
Described e-mail server end safety E-mail processing components is meant the encryption and decryption processing components that increases Email at the e-mail server end; So that the information encryption and decryption to the corresponding security component of terminal electronic mail treatment component call is done is carried out corresponding encryption and decryption processing, and is as shown in Figure 4.
The described encryption and decryption processing components that in the voice communication processing section of smart mobile phone, increases information is divided into increase voice communication encrypted component specifically and increases the voice communication decryption component.Calling of the cryptographic service that these two assemblies that increase are used for safety TF card is provided, as shown in Figure 5.
After increasing these two assemblies, the voice communication processing section need by following basic step realize to the calling of corresponding assembly (processing of this part be with the voice communications services device be corresponding through the processing of calling to voice communication to secure voice communication process assembly.For example, encrypt if the voice communications services device sends when speech data flows to smart mobile phone, then smart mobile phone is just made decryption processing after receiving audio data stream):
The first step, the voice communication session key through confirming to be used for the voice communication encryption and decryption with outer mode (for example can through when providing safe TF card for the user directly generation voice communication session key and deposit in the safe TF card).The corresponding different voice communication session keys of different smart mobile phones.From the needs to effective management of key, each smart mobile phone only keeps the voice communication session key between itself and the secure voice communication server.So, for realizing the secure voice communication in this method.Each smart mobile phone only carries out communicating by letter of speech data with the secure voice communication server.The encrypted speech data that are each smart mobile phone only mail to the secure voice communication server.For this reason, the speech data form of design this method is following two parts:
1. purpose smart mobile phone number (such as the purpose phone number).
2. actual speech data content.
Comprising two kinds of situation:
1. if the call intent number itself is exactly the secure voice communication server self, then the purpose smart mobile phone number still is the number of the secure voice communication server.
2. if the call intent number is other smart mobile phone, then the purpose smart mobile phone number be the number of that smart mobile phone of reality.
The voice communications services device will be done different processing according to the purpose call address in the speech data after receiving the secure voice data that smart mobile phone sends.If the purpose call address is exactly the address of voice communications services device self, explain that then this speech data issues this voice communications services device self, self make corresponding decryption processing by the speech data server this moment; If the purpose call address is other terminal number; Then the speech data server is first with current voice communication session secret key decryption with this voice content, and then the pairing voice communication session key of application target terminal number is done to transmit the corresponding target terminal after the encryption.
In second step, after terminal voice communication processing components is received the speech data that the voice communications services device sends, use the voice communication session key to call decryption component at first to playing to the user by terminal system again after the decrypts information.
In the 3rd step, when initiating audio call at the terminal, speech data uses the voice communication session key to call via the user in the voice communication processing components and sends to the voice communications services device after encrypted component is encrypted data.
Described voice communications services device end secure voice communication process assembly is meant the encryption and decryption processing components that increases voice communication at voice communications services device end; Carry out corresponding encryption and decryption and handle so that terminal voice communication processing components is called speech data encryption and decryption that corresponding security component does, as shown in Figure 6.
Embodiment 1: a kind of method that strengthens smart mobile phone short message, Email and voice communication fail safe, and this method is characterized in that based on safety TF card:
When sending note; After weaving in the note processing components of note via smart mobile phone; Before sending, use the note session key to call the SMS encryption assembly and send to safe short messaging gateway after to information encryption by the note processing components; After safe short messaging gateway is received the note that smart mobile phone sends, will number do different processing according to the purpose smart mobile phone in the note;
When send Email, after weaving in the email disposal assembly of Email via smart mobile phone, before sending, use the mail session key to call the email encryption assembly and send to e-mail server after to email encryption by the mail treatment assembly; E-mail server is done different processing according to the purpose addresses of items of mail in the mail after receiving the Email that smart mobile phone sends;
When initiating voice communication, voice communication content uses the voice communication session key to call encrypted component via the voice communication processing components of smart mobile phone and sends to the voice communications services device after to the speech data stream encryption; The voice communications services device is done different processing according to the purpose call address in the audio data stream after receiving the audio data stream that smart mobile phone sends.
Before further being included in the transmission note; If do not carry out the encryption and decryption key agreement; Then the safety short messaging gateway is initiated the key agreement note by the note processing components of smart mobile phone; Between smart mobile phone and safe short messaging gateway, set up the note session key then, this key is all used in later note session encryption and decryption operation.
Further comprise: when the note processing components is stored short message content on said smart mobile phone, call the SMS encryption assembly earlier and store after to information encryption; When said smart mobile phone extracts the encryption short message content of storage, call the note decryption component earlier decrypts information is carried out corresponding operating then.
Said note comprises purpose smart mobile phone number and actual short message content two parts.
If note issues safe short messaging gateway, then the purpose smart mobile phone number is the short message port number of safe short messaging gateway; If note is to issue other smart mobile phone, then the purpose smart mobile phone number is the number of said other smart mobile phones.
Saidly will number do different processing according to the purpose smart mobile phone in the note and be specially: if the purpose smart mobile phone number is exactly the short message port number of safe short messaging gateway self, then said note need not be transmitted and directly self handled by the safety short messaging gateway; If the purpose smart mobile phone number is other purpose smart mobile phones, then safe short messaging gateway is done this note to be transmitted to the corresponding target smart mobile phone after corresponding encryption and decryption is handled.
Said safe short messaging gateway be meant telecom operators or service provider or group user place be used to handle and smart mobile phone between the server of short message affairs.
After the note processing components of smart mobile phone is received the note that safe short messaging gateway sends, use the note session key to call the note decryption component and at first supply the user to check on the smart mobile phone interface being shown to by the note processing components again after the decrypts information.
Before send Email, through confirming to be used for the mail session key of mail encryption and decryption with outer mode, direct generation mail session key and depositing in the safe TF card when providing safe TF card for the user.
Note session key after the negotiation imports in the safe TF card and preserves, and said note session key upgrades after can manually upgrading and perhaps can setting the regular hour automatically.
Saidly do different processing according to the purpose addresses of items of mail in the mail and be specially:, then handle by mail server self if the purpose addresses of items of mail is the address of this mail server self; If the purpose addresses of items of mail is other purpose mailbox, then e-mail server is first with current electronic mail conversation secret key decryption with this Mail Contents, and then the pairing session key of application target mailbox is done to transmit the corresponding target mailbox after the encryption.
After the email disposal assembly of smart mobile phone is received the mail that e-mail server sends, use the mail session key to call the mail decryption component and at first supply the user to check on the smart mobile phone mail interface being shown to again after the mail deciphering.
The email disposal assembly calls the email encryption assembly earlier and Mail Contents is encrypted is remake storage then on said smart mobile phone during the storage of e-mails content; When said smart mobile phone extracts the encrypted E-mail content of storage, call the mail decryption component earlier to mail deciphering carrying out then corresponding operating.
Before carrying out voice communication, at first through confirming to be used for the session key of speech data encryption and decryption with outer mode, direct generation voice communication session key and depositing in the safe TF card when providing safe TF card for the user.
Speech data comprises purpose smart mobile phone number and actual speech data content two parts.
If the call intent number is the secure voice communication server self, then the purpose smart mobile phone number is the number of the secure voice communication server; If the call intent number is other smart mobile phone, then the purpose smart mobile phone number is the number of said other smart mobile phones.
Saidly do different processing according to the purpose call address in the audio data stream and be specially:
If the purpose call address is exactly the address of this voice communications services device self, then self handle by the voice communications services device; If the purpose call address is other terminal number; Then the voice communications services device is first with current voice communication session secret key decryption with this speech data content, and then the pairing voice communication session key of application target terminal number is done to transmit the corresponding target terminal after the encryption.
Safe TF card is that corresponding smart mobile phone provides corresponding calling interface storehouse, and smart mobile phone is realized calling session key in the safety TF card through these interface libraries.
Said safe TF card is selected crypto chip, SD controller and Flash for use and is packaged together, and adopts TF interface packing forms, supports symmetry, asymmetric cryptographic algorithm and digest algorithm, but the store session key.
Embodiment 2: a kind of method that strengthens smart mobile phone short message, Email and voice communication fail safe, and this method is characterized in that based on safety TF card:
When sending note; After weaving in the note processing components of note via smart mobile phone; Before sending, use the note session key to call the SMS encryption assembly and send to safe short messaging gateway after to information encryption by the note processing components; After safe short messaging gateway is received the note that smart mobile phone sends, will number do different processing according to the purpose smart mobile phone in the note;
When send Email, after weaving in the email disposal assembly of Email via smart mobile phone, before sending, use the mail session key to call the email encryption assembly and send to e-mail server after to email encryption by the mail treatment assembly; E-mail server is done different processing according to the purpose addresses of items of mail in the mail after receiving the Email that smart mobile phone sends;
When initiating voice communication, voice communication content uses the voice communication session key to call encrypted component via the voice communication processing components of smart mobile phone and sends to the voice communications services device after to the speech data stream encryption; The voice communications services device is done different processing according to the purpose call address in the audio data stream after receiving the audio data stream that smart mobile phone sends.
Before send Email, through confirming to be used for the mail session key of mail encryption and decryption with outer mode, direct generation mail session key and depositing in the safe TF card when providing safe TF card for the user.
Safe TF card is that corresponding smart mobile phone provides corresponding calling interface storehouse, and smart mobile phone is realized calling session key in the safety TF card through these interface libraries.
Said safe TF card is selected crypto chip, SD controller and Flash for use and is packaged together, and adopts TF interface packing forms, supports symmetry, asymmetric cryptographic algorithm and digest algorithm, but the store session key.
Embodiment 3: a kind of method that strengthens smart mobile phone short message, Email and voice communication fail safe, and this method is characterized in that based on safety TF card:
When sending note; After weaving in the note processing components of note via smart mobile phone; Before sending, use the note session key to call the SMS encryption assembly and send to safe short messaging gateway after to information encryption by the note processing components; After safe short messaging gateway is received the note that smart mobile phone sends, will number do different processing according to the purpose smart mobile phone in the note;
When send Email, after weaving in the email disposal assembly of Email via smart mobile phone, before sending, use the mail session key to call the email encryption assembly and send to e-mail server after to email encryption by the mail treatment assembly; E-mail server is done different processing according to the purpose addresses of items of mail in the mail after receiving the Email that smart mobile phone sends;
When initiating voice communication, voice communication content uses the voice communication session key to call encrypted component via the voice communication processing components of smart mobile phone and sends to the voice communications services device after to the speech data stream encryption; The voice communications services device is done different processing according to the purpose call address in the audio data stream after receiving the audio data stream that smart mobile phone sends.
Before carrying out voice communication, at first through confirming to be used for the session key of speech data encryption and decryption with outer mode, direct generation voice communication session key and depositing in the safe TF card when providing safe TF card for the user.
Safe TF card is that corresponding smart mobile phone provides corresponding calling interface storehouse, and smart mobile phone is realized calling session key in the safety TF card through these interface libraries.
Said safe TF card is selected crypto chip, SD controller and Flash for use and is packaged together, and adopts TF interface packing forms, supports symmetry, asymmetric cryptographic algorithm and digest algorithm, but the store session key.