CN103020536A - Terminal equipment - Google Patents
Terminal equipment Download PDFInfo
- Publication number
- CN103020536A CN103020536A CN2012105591386A CN201210559138A CN103020536A CN 103020536 A CN103020536 A CN 103020536A CN 2012105591386 A CN2012105591386 A CN 2012105591386A CN 201210559138 A CN201210559138 A CN 201210559138A CN 103020536 A CN103020536 A CN 103020536A
- Authority
- CN
- China
- Prior art keywords
- ciphering unit
- terminal device
- virtual machine
- processing unit
- encrypted
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Abstract
The invention discloses terminal equipment. The terminal equipment comprises a processing unit and an encryption unit, wherein the processing unit is used for establishing a conversation link between the terminal equipment and a virtual machine running in a server side, and generating a data packet which is sent to the virtual machine and based on the conversation link; the encryption unit is used for encrypting the data packet by adopting an encryption algorithm; and the processing unit is further used for sending the data packet encrypted by the encryption unit to the virtual machine through a sending unit. By adopting the terminal equipment provided by the invention, the security for the communication between the terminal equipment and the virtual machine running in the server side can be improved.
Description
Technical field
The present invention relates to the computer security technique field, more specifically, relate to a kind of terminal device.
Background technology
Under the scene of existing cloud computing, adopt by the virtual machine that moves in the thin-client of simplifying and the server communicated by letter more.Yet for the high environment of some safety requirements, still there are safety problem in existing thin-client and virtual machine direct communication.For example, thin-client (Thin Client) is by virtual network Computation Protocol (Virtual Network Computing, VNC) virtual machine with server end carries out data communication, the public encrypted transmission technology in the virtual network Computation Protocol is adopted in the data communication of thin-client and virtual machine substantially, is easy to be cracked by the people.This obviously can not meet the demands for the high business of present security requirement.
Summary of the invention
The technical problem to be solved in the present invention is to provide a kind of terminal device, makes it possible to improve the security of data traffic transmission.
The embodiment of the invention provides a kind of terminal device, comprising:
Processing unit be used for setting up the session connection between the virtual machine that terminal device and server end move, and generation sends to the packet of described virtual machine based on described session connection;
Ciphering unit is used for using cryptographic algorithm that described packet is encrypted;
Described processing unit also is used for the packet after the described ciphering unit encryption is sent to described virtual machine by transmitting element.
In optional embodiment, described ciphering unit and described processing unit are arranged on the same integrated circuit board of described encryption terminal inner, and described ciphering unit is by pci interface or PCI-E interface and described processing unit physical connection.
In optional embodiment, described ciphering unit is the encrypted card of USB interface, and described encrypted card is connected with described terminal device by described USB interface;
Described terminal equipment configuration has the performance element that makes described ciphering unit work, and described processing unit is communicated by letter with described ciphering unit by described performance element.
In optional embodiment, described ciphering unit disposes multiple encryption algorithms; Described performance element also is used for providing the encryption control that described ciphering unit is controlled interface, and receives the user by described encryption control interface the selection one of in the described multiple encryption algorithms is indicated.Described ciphering unit use cryptographic algorithm comprises being encrypted to described data and comprises: described ciphering unit is according to selecting indication to use corresponding cryptographic algorithm that described packet is encrypted.
The present invention is by ciphering unit or the encrypted card of specific setting, so that terminal can be encrypted by specific cryptographic algorithm specially with the communicating by letter of virtual machine in the server.Because cryptographic algorithm is special setting the as required, generally speaking, the malice user is difficult to crack the information content of the packet after the encryption, therefore, and for communicating by letter between terminal and the server end improved security.
Description of drawings
Fig. 1 is the structural representation of terminal device according to an embodiment of the invention.
Fig. 2 is the terminal device synoptic diagram of communicating by letter with the virtual machine of server end according to an embodiment of the invention.
Fig. 3 is the structural representation of terminal device according to another embodiment of the present invention.
Embodiment
Below in conjunction with accompanying drawing the embodiment of the invention is elaborated.
Fig. 1 is the structural representation of terminal device according to an embodiment of the invention.Fig. 2 is the terminal device synoptic diagram of communicating by letter with the virtual machine of server end according to an embodiment of the invention.As shown in Figure 1, the terminal device 10 of the embodiment of the invention comprises processing unit 110, ciphering unit 120 and transmitting element 130.As shown in Figure 2, terminal device 10 can be set up session connection with the first virtual machine 210 or second virtual machine 220 of operation in the server end 20.In certain embodiments, terminal device 10 also can be set up session connection simultaneously with the first virtual machine 210 and the second virtual machine 220.
In embodiments of the present invention, processing unit 110 is for the session connection between the virtual machine (for example the first virtual machine 210) of setting up terminal and server end 20 operations, and generation sends to the packet of the first virtual machine 210 based on described session connection.Ciphering unit 120 is used for using cryptographic algorithm that described packet is encrypted.Described processing unit 110 also is used for the packet after ciphering unit 120 encryptions is sent to the first virtual machine 210 by transmitting element 130.
In embodiments of the present invention, processing unit 110 and ciphering unit 120 can be arranged on the same integrated circuit board of described encryption terminal inner, and ciphering unit 120 is by pci interface or PCI-E interface and processing unit 110 physical connections.
This is because only adopt the packet that is encrypted in the existing international communication agreement to be easy to be cracked by the user.Therefore can set a special encrypting module, be used for using specific encryption technology to be encrypted to communicating by letter in the session connection between terminal device and the virtual machine that server end moves, can improve like this security of communication.
Fig. 3 is the structural representation of terminal device according to another embodiment of the present invention.As shown in Figure 3, terminal device 30 comprises processing unit 110, transmitting element 130.The outside of terminal device also is provided with the encrypted card 122 that connects by USB interface.In optional example, described terminal device can be portable terminal, such as mobile phone, Ipad, notebook computer etc.; It can also be individual PC computer.
Further, dispose the performance element 150 that makes described encrypted card work on the described terminal device, processing unit 110 is communicated by letter with encrypted card 122 by performance element 150.
In optional embodiment, dispose one or more cryptographic algorithm in the described ciphering unit.Performance element 150 also is used for providing the encryption control that ciphering unit 120 or 122 is controlled interface, and receives the user to the selection indication one of in the described multiple encryption algorithms by encrypting the control interface.Ciphering unit 120 or 122 use cryptographic algorithm comprise being encrypted to data and comprise: ciphering unit 120 or 122 is according to selecting indication to use corresponding cryptographic algorithm that packet is encrypted.
In optional embodiment, can be provided with decipherment algorithm in the described ciphering unit, thereby the packet that terminal device can receive the virtual machine from server end is decrypted.
One of ordinary skill in the art will appreciate that, can adaptively change and they are arranged in one or more equipment different from this embodiment the module in the equipment among the embodiment.Can be combined into a module or unit or parts to the module among the embodiment or unit or assembly, and can be divided into a plurality of submodules or subelement or subassembly to them in addition.In such feature and/or process or unit at least some are mutually repelling, and can adopt any combination to disclosed all features in this instructions (comprising claim, summary and the accompanying drawing followed) and so all processes or the unit of disclosed any method or equipment make up.Unless in addition clearly statement, disclosed each feature can be by providing identical, being equal to or the alternative features of similar purpose replaces in this instructions (comprising claim, summary and the accompanying drawing followed).
The above only is preferred embodiment of the present invention, and is in order to limit the present invention, within the spirit and principles in the present invention not all, any modification of doing, is equal to replacement, improvement etc., all should be included within protection scope of the present invention.
Claims (4)
1. terminal device comprises:
Processing unit be used for setting up the session connection between the virtual machine that terminal device and server end move, and generation sends to the packet of described virtual machine based on described session connection;
Ciphering unit is used for using cryptographic algorithm that described packet is encrypted;
Described processing unit also is used for the packet after the described ciphering unit encryption is sent to described virtual machine by transmitting element.
2. terminal device according to claim 1, it is characterized in that, described ciphering unit and described processing unit are arranged on the same integrated circuit board of described encryption terminal inner, and described ciphering unit is by pci interface or PCI-E interface and described processing unit physical connection.
3. terminal device according to claim 1 is characterized in that, described ciphering unit is the encrypted card of USB interface, and described encrypted card is connected with described terminal device by described USB interface;
Described terminal equipment configuration has the performance element that makes described encrypted card work, and described processing unit is communicated by letter with described encrypted card by described performance element.
4. it is characterized in that according to claim 1 or 3 described terminal devices:
Dispose multiple encryption algorithms in the described ciphering unit;
Described performance element also is used for providing the encryption control that described ciphering unit is controlled interface, and receives the user by described encryption control interface the selection one of in the described multiple encryption algorithms is indicated;
Described ciphering unit use cryptographic algorithm comprises being encrypted to described data and comprises:
Described ciphering unit is according to selecting indication to use corresponding cryptographic algorithm that described packet is encrypted.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2012105591386A CN103020536A (en) | 2012-12-20 | 2012-12-20 | Terminal equipment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2012105591386A CN103020536A (en) | 2012-12-20 | 2012-12-20 | Terminal equipment |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN103020536A true CN103020536A (en) | 2013-04-03 |
Family
ID=47969131
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2012105591386A Pending CN103020536A (en) | 2012-12-20 | 2012-12-20 | Terminal equipment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103020536A (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105471977A (en) * | 2015-11-18 | 2016-04-06 | 国网北京市电力公司 | File transmission system for electric power system |
| CN110808975A (en) * | 2019-10-31 | 2020-02-18 | 广州润铂晟信息技术有限公司 | Sensitive data transmission method and device, computer equipment and storage medium |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1748206A (en) * | 2003-02-07 | 2006-03-15 | 松下电器产业株式会社 | Terminal device and data protection system having it |
| CN101169815A (en) * | 2007-11-27 | 2008-04-30 | 华为技术有限公司 | Computer system and data input method |
| CN102200900A (en) * | 2010-03-25 | 2011-09-28 | 佳能株式会社 | Image forming apparatus, image processing system and method for controlling image processing system |
| CN102279813A (en) * | 2011-08-12 | 2011-12-14 | 无锡城市云计算中心有限公司 | Protecting method of system inside encryption card |
-
2012
- 2012-12-20 CN CN2012105591386A patent/CN103020536A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1748206A (en) * | 2003-02-07 | 2006-03-15 | 松下电器产业株式会社 | Terminal device and data protection system having it |
| CN101169815A (en) * | 2007-11-27 | 2008-04-30 | 华为技术有限公司 | Computer system and data input method |
| CN102200900A (en) * | 2010-03-25 | 2011-09-28 | 佳能株式会社 | Image forming apparatus, image processing system and method for controlling image processing system |
| CN102279813A (en) * | 2011-08-12 | 2011-12-14 | 无锡城市云计算中心有限公司 | Protecting method of system inside encryption card |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105471977A (en) * | 2015-11-18 | 2016-04-06 | 国网北京市电力公司 | File transmission system for electric power system |
| CN105471977B (en) * | 2015-11-18 | 2018-11-09 | 国网北京市电力公司 | Document transmission system for electric system |
| CN110808975A (en) * | 2019-10-31 | 2020-02-18 | 广州润铂晟信息技术有限公司 | Sensitive data transmission method and device, computer equipment and storage medium |
| CN110808975B (en) * | 2019-10-31 | 2021-11-19 | 广州润铂晟信息技术有限公司 | Sensitive data transmission method and device, computer equipment and storage medium |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US20170193702A1 (en) | Head-mounted display device and method for interaction between head-mounted display device and intelligent terminal | |
| CN104144049A (en) | Encryption communication method, system and device | |
| CN111125763A (en) | Method, device, equipment and medium for processing private data | |
| CN105634737A (en) | Data transmission method, terminals and system thereof | |
| CN104917807A (en) | Resource transfer method, apparatus and system | |
| EP2710776A1 (en) | Anonymous signalling | |
| CN107579903B (en) | Picture message secure transmission method and system based on mobile device | |
| CN104243281A (en) | Voice communication method based on mobile Internet | |
| CN110505066A (en) | A kind of data transmission method, device, equipment and storage medium | |
| CN107204853A (en) | A kind of wireless digital signature method of use mobile phone | |
| CN112272254A (en) | Terminal device positioning method, terminal device, system and server | |
| CN103139179A (en) | Multi-channel active type network identity verification system and network identity verification device | |
| CN103458401B (en) | A kind of voice encryption communication system and communication means | |
| CN102271330A (en) | Terminal, network server and method for communication between terminal and network server | |
| CN103036897A (en) | Communication method based on long distance desktop connection between thin client-side and server-side | |
| CN112534790B (en) | Encryption device, communication system and method for exchanging encrypted data in a communication network | |
| CN110995648A (en) | Secure encryption method | |
| CN104506509B (en) | A kind of authentication method based on multifunctional safe certification terminal | |
| CN110247959A (en) | A kind of data transmission method and device | |
| CN103020536A (en) | Terminal equipment | |
| EP3163831A1 (en) | Challenge-response-test image to phone for secure pairing | |
| CN113905258A (en) | Video playing method, network device and storage medium | |
| CN102833243B (en) | A kind of communication means utilizing finger print information | |
| CN202918498U (en) | SIM card adapter, mobile terminal and digital signature authentication system | |
| CN105827601A (en) | Data encryption application method and system of mobile device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C12 | Rejection of a patent application after its publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20130403 |