CN103297940A - Short message encryption communication system and method - Google Patents
Short message encryption communication system and method Download PDFInfo
- Publication number
- CN103297940A CN103297940A CN2013102694559A CN201310269455A CN103297940A CN 103297940 A CN103297940 A CN 103297940A CN 2013102694559 A CN2013102694559 A CN 2013102694559A CN 201310269455 A CN201310269455 A CN 201310269455A CN 103297940 A CN103297940 A CN 103297940A
- Authority
- CN
- China
- Prior art keywords
- note
- short message
- portable terminal
- teleaction service
- account
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Abstract
The invention discloses a short message encryption communication system and method. The system architecture of the short message encryption communication system is formed on the basis of an account processing unit, a remote service unit, a short message content processing unit, a short message processing platform and a mobile terminal. Short message encryption communication is achieved by additionally arranging the account processing unit on the basis of system architecture of traditional short message communication and perfecting a comprehensive mechanism related to identification generation, binding and verification of an instruction terminal of the remote service unit. According to the short message encryption technology of the short message encryption communication system and method, an encrypted short message can only be opened on a designated mobile terminal in a communication process, and the short message cannot be decrypted even though the content of short message is intercepted and captured by hackers or Trojans, so that the communication safety of short message verification codes applied to the field of mobile payment is greatly improved and the realization costs are relatively low.
Description
Technical field
The present invention relates to a kind of safe improvement scheme of SMS communication, relate in particular to hardware structure and implementation method thereof that a kind of SMS encryption communication realizes.
Background technology
Along with advancing by leaps and bounds of modern communications technology, note is as being the generally accepted a kind of communication modes of people the earliest, and current still possess stronger survival activity, and application is constantly expanded.For example, the short-message verification sign indicating number is the main verification modes of application scenarios such as existing Web bank, Mobile banking, brings the certain safety of user and experiences.But the user tends to ignore wherein unsafe factor under the safety of presentation is experienced, and when those short-message verification sign indicating numbers transmit via note processing platform and short message channel thereof, is attacked or kidnap phenomenon easily, influences the user and finishes operations such as mobile payment.
Along with smart mobile phone is more and more universal as portable terminal, because more or less there are a lot of leaks in the operating system that carries, has therefore increased the security risk of mobile payment, but also provide powerful hardware foundation for security mechanism perfect to a certain extent.
Summary of the invention
The present invention is directed to the potential safety hazard in the existing SMS communication, innovation has proposed a kind of SMS encryption communication system and the means of communication, solves the SMS communication safety problem.
Above-mentioned first purpose of the present invention " SMS encryption communication system ", its hardware structure of realizing of relying comprises: the account processing unit, refer to the server of mobile payment transaction network networking mechanism, the account of user or the corresponding binding of portable terminal is managed; The teleaction service unit transmits data mutually by note processing platform and short message channel thereof and portable terminal, respectively with the communication that links to each other with the short message content processing unit of account processing unit, and calls self set encrypting module and generates based on account and encrypt note; The short message content processing unit, obtains, handles note at the generation that is associated with the teleaction service unit; The note processing platform refers to the gateway that mobile operator develops and manages, and carries out note according to the form of arranging between portable terminal and teleaction service unit and transmits; And portable terminal, the user is taken this by encryption note and teleaction service unit mutual, and described mutual finger is initiated request, the answer of receiving remote business unit feedback, and call deciphering module and handle generation expressly.
Above-mentioned second purpose of the present invention " the SMS encryption means of communication " realizes based on said short message encryption communication system, and it mainly comprises registration, sends and encrypt note, reception encryption note three parts.
Registration S1, the user uses portable terminal register and set up account in the teleaction service unit, and hardware, software information that the teleaction service unit obtains portable terminal generate unique terminal iidentification, and transmission is stored in account management unit and binds mutually with account in also.
Send and encrypt note S2, teleaction service cell call short message content processing unit generates short message content, and the set encrypting module of teleaction service cell call self is encrypted short message content based on the accounts information of account processing unit feedback, be sent to portable terminal by the note processing platform again, wherein the encryption factor that short message content is encrypted comprises terminal iidentification, time, accounts information at least.
Receive and encrypt note S3, after portable terminal receives and comes from the encryption note of note processing platform, call deciphering module and be decrypted processing based on the terminal iidentification that the teleaction service unit returns to encrypting note, generate normal short message content.
Further, registration S1 comprises the steps: S11, utilizes mobile terminal accessing teleaction service unit (ONU) registration as portable terminal holder's user, sets up New Account; S12, portable terminal hardware, software attributes are gathered in the teleaction service unit, generate unique terminal iidentification; S13, the account processing unit is set up binding relationship, above account of a mobile terminal binding according to portable terminal and terminal iidentification thereof and newly-built account; S14, the account processing unit returns Account Registration information by the teleaction service unit to portable terminal.
Further, send encryption note S2 and comprise the steps: S21, portable terminal calls the business service of teleaction service unit; S22, teleaction service cell call short message content processing unit sends the request of obtaining short message content to be sent; S23, the short message content processing unit returns short message content to the teleaction service unit; S24, teleaction service cell call account processing unit sends the request of obtaining accounts information; S25, the account processing unit returns accounts information to the teleaction service unit; S26, teleaction service cell call encrypting module is encrypted short message content; S27, the teleaction service unit sends to portable terminal by the note processing platform and encrypts note.
Further, receive encryption note S3 and comprise the steps: S31, after note was encrypted in reception, portable terminal sent the request of obtaining terminal iidentification to the teleaction service unit; S32, the teleaction service unit returns terminal iidentification to portable terminal; S33, portable terminal call deciphering module and are decrypted processing based on terminal iidentification to encrypting note, generate normal short message content.
Further, receive and encrypt among the note S3, after portable terminal received the encryption note, portable terminal was used by SMS interception mode automatic screening and is encrypted note or import the encryption note by manual mode, then carries out deciphering.
Further, between note processing platform and teleaction service unit, adopt the escape way comprise VPN or security protocol HTTPS at least to communicate, and adopt message authentication code or the mode unification of digital signature, the message of completeization communication.
Use the technical scheme of SMS encryption of the present invention: encrypting note in communication process can only open at the portable terminal of appointment, even hacker or wooden horse are intercepted and captured short message content, also can't decipher note, improved the communication security of the short-message verification sign indicating number that is applied to the mobile payment field thus greatly, and realized that cost is lower.
Description of drawings
Fig. 1 is the configuration diagram of SMS encryption communication system of the present invention.
Fig. 2 is the simulation schematic diagram of registration part in the means of communication of the present invention.
Fig. 3 is for sending the simulation schematic diagram of encrypting the note part in the means of communication of the present invention.
Fig. 4 is for receiving the simulation schematic diagram of encrypting the note part in the means of communication of the present invention.
Embodiment
The present invention innovates and has proposed a kind of SMS encryption communication system and the means of communication, for the information interaction of note identifying code in the mobile payment provides more perfect safeguard protection scheme.
This encryption note is that the back transmission is encrypted with short message content in the backstage, and portable terminal (or manual) automatically will generate expressly after the decrypt ciphertext.Short message content is not limited to transaction verification sign indicating number, payment sign indicating number, preferential sign indicating number etc.Encrypt note and can only even hacker or wooden horse are intercepted and captured short message content, also can't decipher note specifying portable terminal to open.
As shown in Figure 1, the configuration diagram of SMS encryption communication system of the present invention as seen, it comprises following part.
The account processing unit refers to the server of mobile payment transaction network networking mechanism, and the account of user or the corresponding binding of portable terminal is managed.
The teleaction service unit transmits data mutually by note processing platform and short message channel thereof and portable terminal, respectively with the communication that links to each other with the short message content processing unit of account processing unit, and calls self set encrypting module and generates based on account and encrypt note.
The short message content processing unit, obtains, handles note at the generation that is associated with the teleaction service unit.
The note processing platform refers to the gateway that mobile operator develops and manages, and carries out note according to the form of arranging between portable terminal and teleaction service unit and transmits.
Portable terminal, the user is taken this by encryption note and teleaction service unit mutual, and described mutual finger is initiated request, the answer of receiving remote business unit feedback, and call deciphering module and handle generation expressly.
Understand the business processing flow of the SMS encryption means of communication of the present invention again in depth.The content that relates to comprises the portable terminal registration, sends to encrypt note and receive and encrypt note.
Teleaction service based on the encryption note is to be registered as the basis with portable terminal in the teleaction service unit.The user uses portable terminal to register and set up number of the account in the teleaction service unit, and hardware, software information that the teleaction service unit obtains portable terminal form unique identification, and bind with number of the account, and realization can only specified the portable terminal login account.Concrete binding relationship safeguards that by the number of the account processing unit specifically details are as follows to register S1 as shown in Figure 2.
S11 utilizes mobile terminal accessing teleaction service unit (ONU) registration as portable terminal holder's user, sets up New Account; S12, portable terminal hardware, software attributes are gathered in the teleaction service unit, generate unique terminal iidentification; S13, the account processing unit is set up binding relationship, above account of a mobile terminal binding according to portable terminal and terminal iidentification thereof and newly-built account; S14, the account processing unit returns Account Registration information by the teleaction service unit to portable terminal.
Abnormality processing is returned the prompting of registered other number of the account to portable terminal according to configuration.
Teleaction service cell call short message content processing unit generates short message content when needs send message.The teleaction service cell call is encrypted SMS module short message content is encrypted, and is sent to portable terminal by the note processing platform.Encrypt SMS module and comprise the following encryption factor at least: terminal iidentification, time and accounts information.Specifically details are as follows to send encryption note S2 as shown in Figure 3.
S21, portable terminal call the business service of teleaction service unit; S22, teleaction service cell call short message content processing unit sends the request of obtaining short message content to be sent; S23, the short message content processing unit returns short message content to the teleaction service unit; S24, teleaction service cell call account processing unit sends the request of obtaining accounts information; S25, the account processing unit returns accounts information to the teleaction service unit; S26, teleaction service cell call encrypting module is encrypted short message content; S27, the teleaction service unit sends to portable terminal by the note processing platform and encrypts note.
Abnormality processing after obtaining short message content and exceeding length restriction, is encrypted note and is moved operator and is divided into two notes automatically, may cause and can't correctly decipher.
After receive encrypting note, portable terminal is used and can be adopted SMS interception mode automatic screening to encrypt note, calls deciphering module and will encrypt note and become normal note in the application internal conversion.Simultaneously, application also needs to provide manual the importing to encrypt short message mode.Specifically details are as follows to receive encryption note S3 as shown in Figure 3.
S31, after note was encrypted in reception, portable terminal sent the request of obtaining terminal iidentification to the teleaction service unit; S32, the teleaction service unit returns terminal iidentification to portable terminal; S33, portable terminal call deciphering module and are decrypted processing based on terminal iidentification to encrypting note, generate normal short message content.
Abnormality processing is encrypted note and may be caused and can't decipher note because the note processing platform generation short message content of mobile operator is imperfect, needs to increase the integrality that safety check mechanism guarantees to encrypt note.
For other safety requirements, mainly comprise following encryption note processing requirements: the note transmission should be adopted healthy and strong communication transport protocols, guarantees transmission reliability; Control, guarantee information access control are implemented in the visit in data memory area territory; Between note processing platform and the teleaction service unit, should adopt escape way (VPN, security protocol HTTPS etc.) to communicate, guarantee the transmission confidentiality; Message between note processing platform and the teleaction service unit should adopt message authentication code or digital signature, guarantees consistency and the integrality of message.In addition, in encrypting note reception flow process, note may be moved terminal applies (for example anti-refuse messages is used) interception, therefore needs to point out the user that SMS sender number is added white list or manually imports and encrypts note.
Use the technical scheme of SMS encryption communication of the present invention: the sharp note of encrypting in communication process can only be opened at the portable terminal of appointment, even hacker or wooden horse are intercepted and captured short message content, also can't decipher note, improved the communication security of the short-message verification sign indicating number that is applied to the mobile payment field thus greatly, and realized that cost is lower.
Claims (7)
1. SMS encryption communication system is characterized in that comprising:
The account processing unit refers to the server of mobile payment transaction network networking mechanism, and the account of user or the corresponding binding of portable terminal is managed;
The teleaction service unit transmits data mutually by note processing platform and short message channel thereof and portable terminal, respectively with the communication that links to each other with the short message content processing unit of account processing unit, and calls self set encrypting module and generates based on account and encrypt note;
The short message content processing unit, obtains, handles note at the generation that is associated with the teleaction service unit;
The note processing platform refers to the gateway that mobile operator develops and manages, and carries out note according to the form of arranging between portable terminal and teleaction service unit and transmits;
And portable terminal, the user is taken this by encryption note and teleaction service unit mutual, and described mutual finger is initiated request, the answer of receiving remote business unit feedback, and call deciphering module and handle generation expressly.
2. SMS encryption means of communication realize based on the described SMS encryption communication system of claim 1, it is characterized in that mainly comprising registration, send and encrypt note, reception encryption note three parts, wherein:
Registration S1, the user uses portable terminal register and set up account in the teleaction service unit, and hardware, software information that the teleaction service unit obtains portable terminal generate unique terminal iidentification, and transmission is stored in account management unit and binds mutually with account in also;
Send and encrypt note S2, teleaction service cell call short message content processing unit generates short message content, and the set encrypting module of teleaction service cell call self is encrypted short message content based on the accounts information of account processing unit feedback, be sent to portable terminal by the note processing platform again, wherein the encryption factor that short message content is encrypted comprises terminal iidentification, time, accounts information at least;
Receive and encrypt note S3, after portable terminal receives and comes from the encryption note of note processing platform, call deciphering module and be decrypted processing based on the terminal iidentification that the teleaction service unit returns to encrypting note, generate normal short message content.
3. according to the described SMS encryption means of communication of claim 2, it is characterized in that registering S1 and comprise the steps:
S11 utilizes mobile terminal accessing teleaction service unit (ONU) registration as portable terminal holder's user, sets up New Account;
S12, portable terminal hardware, software attributes are gathered in the teleaction service unit, generate unique terminal iidentification;
S13, the account processing unit is set up binding relationship, above account of a mobile terminal binding according to portable terminal and terminal iidentification thereof and newly-built account;
S14, the account processing unit returns Account Registration information by the teleaction service unit to portable terminal.
4. according to the described SMS encryption means of communication of claim 2, it is characterized in that sending encryption note S2 and comprise the steps:
S21, portable terminal call the business service of teleaction service unit;
S22, teleaction service cell call short message content processing unit sends the request of obtaining short message content to be sent;
S23, the short message content processing unit returns short message content to the teleaction service unit;
S24, teleaction service cell call account processing unit sends the request of obtaining accounts information;
S25, the account processing unit returns accounts information to the teleaction service unit;
S26, teleaction service cell call encrypting module is encrypted short message content;
S27, the teleaction service unit sends to portable terminal by the note processing platform and encrypts note.
5. according to the described SMS encryption means of communication of claim 2, it is characterized in that receiving encryption note S3 and comprise the steps:
S31, after note was encrypted in reception, portable terminal sent the request of obtaining terminal iidentification to the teleaction service unit;
S32, the teleaction service unit returns terminal iidentification to portable terminal;
S33, portable terminal call deciphering module and are decrypted processing based on terminal iidentification to encrypting note, generate normal short message content.
6. according to the described SMS encryption means of communication of claim 2, it is characterized in that receiving and encrypt among the note S3, after portable terminal received and encrypts note, the portable terminal application imported by SMS interception mode automatic screening encryption note or by manual mode and encrypts note, execution deciphering then.
7. according to the described SMS encryption means of communication of claim 2, it is characterized in that: between note processing platform and teleaction service unit, adopt the escape way comprise VPN or security protocol HTTPS at least to communicate, and adopt message authentication code or the mode unification of digital signature, the message of completeization communication.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2013102694559A CN103297940A (en) | 2013-07-01 | 2013-07-01 | Short message encryption communication system and method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2013102694559A CN103297940A (en) | 2013-07-01 | 2013-07-01 | Short message encryption communication system and method |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN103297940A true CN103297940A (en) | 2013-09-11 |
Family
ID=49098131
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2013102694559A Pending CN103297940A (en) | 2013-07-01 | 2013-07-01 | Short message encryption communication system and method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103297940A (en) |
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103763686A (en) * | 2013-12-23 | 2014-04-30 | 北京奇虎科技有限公司 | Processing method and device for short messages |
| CN103781064A (en) * | 2014-01-02 | 2014-05-07 | 张鹏 | Short message verification system and verification method |
| CN105337941A (en) * | 2014-08-04 | 2016-02-17 | 阿里巴巴集团控股有限公司 | Method and device for providing device identifier |
| CN105578433A (en) * | 2014-10-17 | 2016-05-11 | 中兴通讯股份有限公司 | Short message protection method and device of terminal |
| CN106027376A (en) * | 2016-06-30 | 2016-10-12 | 深圳市金立通信设备有限公司 | Instant communication message processing method and terminal |
| CN109831750A (en) * | 2018-12-24 | 2019-05-31 | 安徽省信盾科技有限公司 | A kind of Unionpay secret emissary system and its processing method |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101867894A (en) * | 2009-07-10 | 2010-10-20 | 深圳市安捷信联科技有限公司 | Short message consumption method and server thereof |
| CN102143482A (en) * | 2011-04-13 | 2011-08-03 | 中国工商银行股份有限公司 | Method and system for authenticating mobile banking client information, and mobile terminal |
| CN102262759A (en) * | 2010-05-26 | 2011-11-30 | 中兴通讯股份有限公司 | Transaction system and method using electronic tickets |
| CN102880960A (en) * | 2012-09-26 | 2013-01-16 | 深圳市亚略特生物识别科技有限公司 | Short message payment method and system based on fingerprint identifying mobile phone |
-
2013
- 2013-07-01 CN CN2013102694559A patent/CN103297940A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101867894A (en) * | 2009-07-10 | 2010-10-20 | 深圳市安捷信联科技有限公司 | Short message consumption method and server thereof |
| CN102262759A (en) * | 2010-05-26 | 2011-11-30 | 中兴通讯股份有限公司 | Transaction system and method using electronic tickets |
| CN102143482A (en) * | 2011-04-13 | 2011-08-03 | 中国工商银行股份有限公司 | Method and system for authenticating mobile banking client information, and mobile terminal |
| CN102880960A (en) * | 2012-09-26 | 2013-01-16 | 深圳市亚略特生物识别科技有限公司 | Short message payment method and system based on fingerprint identifying mobile phone |
Cited By (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103763686A (en) * | 2013-12-23 | 2014-04-30 | 北京奇虎科技有限公司 | Processing method and device for short messages |
| CN103781064A (en) * | 2014-01-02 | 2014-05-07 | 张鹏 | Short message verification system and verification method |
| CN105337941A (en) * | 2014-08-04 | 2016-02-17 | 阿里巴巴集团控股有限公司 | Method and device for providing device identifier |
| CN105337941B (en) * | 2014-08-04 | 2019-01-15 | 阿里巴巴集团控股有限公司 | A kind of device identification providing method and device |
| CN105578433A (en) * | 2014-10-17 | 2016-05-11 | 中兴通讯股份有限公司 | Short message protection method and device of terminal |
| CN106027376A (en) * | 2016-06-30 | 2016-10-12 | 深圳市金立通信设备有限公司 | Instant communication message processing method and terminal |
| CN109831750A (en) * | 2018-12-24 | 2019-05-31 | 安徽省信盾科技有限公司 | A kind of Unionpay secret emissary system and its processing method |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN105337740B (en) | A kind of auth method, client, trunking and server | |
| CN103886661B (en) | Access control management method and system | |
| CN103415008A (en) | Encryption communication method and encryption communication system | |
| CN103297940A (en) | Short message encryption communication system and method | |
| CN101771973B (en) | Data short message processing method, data short message processing equipment and data short message processing system | |
| CN105207774A (en) | Key negotiation method and device of verification information | |
| CN103067158A (en) | Encryption and decryption method, terminal device, gateway device and key management system | |
| CN103780620B (en) | Network security method and network security system | |
| CN103458400A (en) | Key management method for voice encryption communication system | |
| CN102045715B (en) | Method, device and system for realizing mobile signature | |
| CN106572427A (en) | Establishment method and device for establishing short-range communication | |
| CN102118385A (en) | Security domain management method and device | |
| CN102075615A (en) | Method for sending and receiving short messages and subscriber identity module (SIM) | |
| CN105516943A (en) | Short message encryption system on the basis of domestic commercial crypto chip and realization method thereof | |
| CN102647279A (en) | Encryption method, encryption card, terminal equipment and machine-card interlocking device | |
| CN102869009B (en) | Communication encryption application process and communication system | |
| CN102098307A (en) | Password type instant message (IM) encryption method and system in self-service bank | |
| CN106027560A (en) | Intelligent terminal oriented security transmission method and system | |
| CN103916834A (en) | Short message encryption method and system allowing user to have exclusive secret key | |
| CN103945348A (en) | Asymmetrical secret key short message encryption method and system | |
| CN106789000A (en) | A kind of secret phone system and method based on TEE technologies and wearable device | |
| CN104506509B (en) | A kind of authentication method based on multifunctional safe certification terminal | |
| CN101500231A (en) | Mobile terminal, audio data processing method and system | |
| CN110166410A (en) | A kind of method of safety-oriented data transfer, terminal and multi-mode communication terminal | |
| CN101378551A (en) | WAP business system and method |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| ASS | Succession or assignment of patent right |
Owner name: WANG DEJIA Free format text: FORMER OWNER: SUZHOU PAYEGIS INFORMATION TECHNOLOGY CO., LTD. Effective date: 20140212 |
|
| COR | Change of bibliographic data |
Free format text: CORRECT: ADDRESS; FROM: 215123 SUZHOU, JIANGSU PROVINCE TO: 215125 SUZHOU, JIANGSU PROVINCE |
|
| TA01 | Transfer of patent application right | ||
| TA01 | Transfer of patent application right |
Effective date of registration: 20140212 Address after: Xinping Street Industrial Park of Suzhou city in Jiangsu province 215125 No. 388 takeoff Innovation Park Building 6 4F, 5F Applicant after: Wang Dejia Address before: Xinghu Street Industrial Park of Suzhou city in Jiangsu province 215123 No. 328 Creative Industry Park 1-B501 Applicant before: Suzhou PayEgis Information Technology Co., Ltd. |
|
| ASS | Succession or assignment of patent right |
Owner name: JIANGSU TONGFUDUN INFORMATION TECHNOLOGY CO., LTD. Free format text: FORMER OWNER: WANG DEJIA Effective date: 20141114 |
|
| C41 | Transfer of patent application or patent right or utility model | ||
| TA01 | Transfer of patent application right |
Effective date of registration: 20141114 Address after: Xinping Street Industrial Park of Suzhou city in Jiangsu province 215125 No. 388 takeoff Innovation Park Building 6 4F, 5F Applicant after: JIANGSU PAYEGIS INFORMATION TECHNOLOGY CO., LTD. Address before: Xinping Street Industrial Park of Suzhou city in Jiangsu province 215125 No. 388 takeoff Innovation Park Building 6 4F, 5F Applicant before: Wang Dejia |
|
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20130911 |