CN104519019B - A kind of information transferring method, apparatus and system - Google Patents

A kind of information transferring method, apparatus and system Download PDF

Info

Publication number
CN104519019B
CN104519019B CN201310455148.XA CN201310455148A CN104519019B CN 104519019 B CN104519019 B CN 104519019B CN 201310455148 A CN201310455148 A CN 201310455148A CN 104519019 B CN104519019 B CN 104519019B
Authority
CN
China
Prior art keywords
data packet
sent
transmission
module
tunnel
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201310455148.XA
Other languages
Chinese (zh)
Other versions
CN104519019A (en
Inventor
管胜
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Tencent Technology Shenzhen Co Ltd
Original Assignee
Tencent Technology Shenzhen Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Tencent Technology Shenzhen Co Ltd filed Critical Tencent Technology Shenzhen Co Ltd
Priority to CN201310455148.XA priority Critical patent/CN104519019B/en
Priority to PCT/CN2014/086897 priority patent/WO2015043421A1/en
Publication of CN104519019A publication Critical patent/CN104519019A/en
Application granted granted Critical
Publication of CN104519019B publication Critical patent/CN104519019B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Telephonic Communication Services (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

The embodiment of the invention discloses a kind of information transferring methods, apparatus and system, wherein the described method includes: obtaining data packet to be sent corresponding to the information for needing to send;It calls preset tunnel transmission module that the data to be transmitted packet is encrypted, and is the transmission data packet of predetermined format by the packet encapsulation after encryption;The transmission data packet is sent to transmission device indicated by the target port being arranged in the tunnel customer end module, it restores to obtain data packet to be sent with the matched tunneling services module of the tunnel transmission module by calling by the transmission device, and sends the reduction and obtain data packet to be sent.Using the present invention, the transmission of information is not only realized, but also ensure that the internet behavior of user is not monitored, protects the privacy of user, the information security also guaranteed.

Description

A kind of information transferring method, apparatus and system
Technical field
The present invention relates to a kind of computerized information field of communication technology more particularly to a kind of information transferring method, device and System.
Background technique
Currently, people substantially can according to need to be passed through whenever and wherever possible with the continuous development of computer communication technology Transmit picture, text to internet, GPRS (General Packet Radio Service, general packet radio service technology) The information such as part, message, all types of data.
For sending message by instant messaging application, user is generally edited in the interface that instant communication applications provide Message, after user clicks and sends, generating includes the five-tuples information such as source IP, Target IP, port and the number for having edited message Be sent to routing device by modules such as network interface cards according to packet, then via routing device (wifi hotspot etc.) be sent to destination server, Peer user etc..
During sending information by the prior art, if be provided in the routing devices such as wifi hotspot for analyzing The illegal program of the data packet of user's transmission, then the monitoring to user's internet behavior can be completed according to data packet, then Intercept and capture sensitive information therein.Existing information transferring method cannot protect the internet behavior of user, be easy to bring damage to user It loses.
Summary of the invention
The technical problem to be solved by the embodiment of the invention is that a kind of information transferring method, apparatus and system are provided, it can More efficiently hide the internet behavior of user.
In order to solve the above-mentioned technical problem, the embodiment of the invention provides a kind of information transferring methods, comprising:
Obtain data packet to be sent corresponding to the information for needing to send;
Call preset tunnel transmission module that the data packet to be sent is encrypted, and will be after encryption Packet encapsulation is the transmission data packet of predetermined format;
The transmission data packet is sent to transmission indicated by the target port being arranged in the tunnel transmission module to set It is standby, by the transmission device by call with the matched tunneling services module of the tunnel transmission module restore to obtain it is pending Data packet is sent, and sends the reduction and obtains data packet to be sent.
Further, the embodiment of the invention also provides another information transferring methods, comprising:
Receive the transmission data packet that the matched terminal tunnel transmission module of the tunnel service module preset with local terminal is sent;
The tunnel service module for calling local terminal preset parses the transmission data packet according to scheduled format, and to this Transmission data packet is decrypted, and reduction obtains data packet to be sent;
According to the destination address of data packet to be sent, the data packet to be sent is sent.
Correspondingly, the embodiment of the invention also provides a kind of information carrying means, comprising:
Module is obtained, for obtaining data packet to be sent corresponding to the information for needing to send;
Processing module, for calling preset tunnel transmission module that the data packet to be sent is encrypted, and It is the transmission data packet of predetermined format by the packet encapsulation after encryption;
Sending module, for the transmission data packet to be sent to the target port institute being arranged in the tunnel transmission module The transmission device of instruction, by the transmission device by calling and the matched tunneling services module of the tunnel transmission module Reduction obtains data packet to be sent, and sends the reduction and obtain data packet to be sent.
Correspondingly, the embodiment of the invention also provides another information carrying means, comprising:
Receiving module is sent for receiving the matched terminal tunnel transmission module of the tunnel service module preset with local terminal Transmission data packet;
Processing module, tunnel service module for calling local terminal preset according to scheduled format to the transmission data packet into Row parsing, and the transmission data packet is decrypted, reduction obtains data packet to be sent;
Sending module sends the data packet to be sent for the destination address according to data packet to be sent.
Correspondingly, the embodiment of the invention also provides a kind of information transmission system, including user terminal and server, In,
The user terminal, for obtaining data packet to be sent corresponding to the information for needing to send;Call preset tunnel The data packet to be sent is encrypted in road transmission module, and is predetermined format by the packet encapsulation after encryption Transmission data packet;The transmission data packet is sent to clothes indicated by the target port being arranged in the tunnel transmission module Business device;
The server, for receiving the matched terminal tunnel transmission module of the tunnel service module preset with local terminal When the transmission data packet of transmission, the tunnel service module for calling local terminal preset carries out the transmission data packet according to scheduled format Parsing, and the transmission data packet is decrypted, reduction obtains data packet to be sent;According to the purpose of data packet to be sent Address sends the data packet to be sent.
The embodiment of the present invention is when sending information, by the encryption to information to be sent, and the tunnel by being mutually matched Transmission module and tunnel service module complete the transmission of message, decryption and transmission process, so that the routing devices such as wifi hotspot The internet behavior for the user that is connected with this equipment is not can determine that.The transmission of information is not only realized, but also ensure that user's is upper Net behavior is not monitored, and protects the privacy of user, the information security also guaranteed.
Detailed description of the invention
In order to more clearly explain the embodiment of the invention or the technical proposal in the existing technology, to embodiment or will show below There is attached drawing needed in technical description to be briefly described, it should be apparent that, the accompanying drawings in the following description is only this Some embodiments of invention for those of ordinary skill in the art without creative efforts, can be with It obtains other drawings based on these drawings.
Fig. 1 is a kind of flow diagram of information transferring method of the embodiment of the present invention;
Fig. 2 is the flow diagram of another information transferring method of the embodiment of the present invention;
Fig. 3 is the flow diagram of another information transferring method of the embodiment of the present invention;
Fig. 4 is a kind of flow diagram of specific information transferring method;
Fig. 5 is a kind of structural schematic diagram of information transmission system of the embodiment of the present invention;
Fig. 6 is a kind of structural schematic diagram of information carrying means of the embodiment of the present invention;
Fig. 7 is the structural schematic diagram of another information carrying means of the embodiment of the present invention;
Fig. 8 is one of concrete structure schematic diagram of the processing module in Fig. 7;
Fig. 9 is the structural schematic diagram of another information carrying means of the embodiment of the present invention.
Specific embodiment
Following will be combined with the drawings in the embodiments of the present invention, and technical solution in the embodiment of the present invention carries out clear, complete Site preparation description, it is clear that described embodiments are only a part of the embodiments of the present invention, instead of all the embodiments.It is based on Embodiment in the present invention, it is obtained by those of ordinary skill in the art without making creative efforts every other Embodiment shall fall within the protection scope of the present invention.
Referring to Figure 1, be the embodiment of the present invention a kind of information transferring method flow diagram, the embodiment of the present invention The method can be applicable to smart phone, tablet computer, PC, laptop and intelligent wearable device etc. In terminal, specifically, the described method includes:
S101: data packet to be sent corresponding to the information for needing to send is obtained.
The data packet to be sent can be the data packet that user is obtained by the types of applications editor in terminal, such as logical Cross the data packet generated, the data packet obtained by mail editor etc. after instant messaging application editor's message.Passing through network interface card etc. It before communication module sends these data packets, executes S101 and gets these data packets to be sent, executing following safety After processing, it is then forwarded to the routing devices such as wifi hotspot.
S102: calling preset tunnel transmission module that the data packet to be sent is encrypted, and will be at encryption Packet encapsulation after reason is the transmission data packet of predetermined format.
S103: the transmission data packet is sent to biography indicated by the target port being arranged in the tunnel transmission module Transfer device is restored to obtain by calling by the transmission device with the matched tunneling services module of the tunnel transmission module Data packet to be sent, and send the reduction and obtain data packet to be sent.
In the embodiment of the present invention tunnel transmission module preset in the terminal data packet to be sent can be encrypted with And encapsulation, and by specifying, a target port will be encrypted and the transmission data packet of encapsulation is sent to corresponding equipment.It needs It is noted that the specified target port setting when, can be set it is dedicated can be with the phase of the transmission device of forwarding information Answer port.
Transmission device is generally a server, the monitoring the process arrival self terminal that transmission device is listened in the target port Data packet when, it is calling setting to be parsed and solved with the terminal matched tunneling services module of tunnel transmission module Close processing, reduction obtain information to be sent, then according to the five-tuple in the data packet to be sent, send the information to be sent, Five-tuple therein includes the information such as source IP, Target IP, port, agreement.
The embodiment of the present invention is when sending information, by the encryption to information to be sent, and the tunnel by being mutually matched Transmission module and tunnel service module complete the transmission of message, decryption and transmission process, so that the routing devices such as wifi hotspot The internet behavior for the user that is connected with this equipment is not can determine that.The transmission of information is not only realized, but also ensure that user's is upper Net behavior is not monitored, and protects the privacy of user, the information security also guaranteed.
Fig. 2 is referred to again, is the flow diagram of another information transferring method of the embodiment of the present invention, and the present invention is implemented The method of example can be applicable to such as smart phone, tablet computer, PC, laptop and intelligence and wearable set In the terminals such as standby, specifically, the described method includes:
S201: data packet to be sent corresponding to the information for needing to send is obtained.
The data packet to be sent can be the data packet that user is obtained by the types of applications editor in terminal, such as pass through The data packet generated, the data packet obtained by mail editor etc. after instant messaging application editor's message.
S202: the data packet to be sent that will acquire is redirected to preset tunnel transmission module.
After getting data packet to be sent, the data packet is not directly transmitted, but is passed through in S202 The mode of redirect (redirection), the information to be sent that user is edited are sent to preset tunnel transmission module.
S203: the data packet to be sent is encrypted in control tunnel transmission module;
S204: being the transmission number of predetermined format by the packet encapsulation after being encrypted by the tunnel transmission module According to packet.
It can complete to be encrypted to data packet to be sent by the way that Encryption Algorithm is arranged in tunnel transmission module, And scheduled data format is set and is packaged to encrypted data packet.The Encryption Algorithm and data format and server etc. The Encryption Algorithm and data format being arranged in tunnel service module in transmission device match, to realize transmission data packet Parsing and decryption oprerations.
Wherein specifically, when the S204 is specifically executed, realization may comprise steps of:
According to the destination address of the data packet to be sent, selected from the port being arranged in the tunnel transmission module true Make target port;Packet encapsulation after being encrypted by determining target port and by the tunnel transmission module is The transmission data packet of predetermined format, in order to send the transmission data packet to target port.
The S202 to S204 corresponds to the S102 in above-mentioned Fig. 1 corresponding embodiment.
S205: it receives by the transmission device by calling and the matched tunneling services mould of the tunnel transmission module The encrypted packet for the predetermined format that block is sent.
S206: it calls tunnel transmission module to parse according to predetermined format to the data packet received, and is decrypted Processing, obtains received data packet.
It should be noted that S205 and S206 can be held before or after the arbitrary steps of the embodiment of the present invention Row is sent out by calling with the matched tunneling services module of the tunnel transmission module as long as receiving by the transmission device The encrypted packet of the predetermined format sent, i.e. execution S205 and S206.
The transmission devices such as server side is in the data packet for the terminal for being sent to corresponding IP address for listening to return, according to phase Preset Encryption Algorithm and format is answered to handle the data packet, then by above-mentioned target port by encrypted packet It is sent to the terminal of appropriate address, makes the terminal that tunnel transmission module be called to carry out parsing and decryption oprerations, and be transferred to pair The application program answered is handled.
The embodiment of the present invention is when sending information, by the encryption to information to be sent, and the tunnel by being mutually matched Transmission module and tunnel service module complete the transmission of message, decryption and transmission process, so that the routing devices such as wifi hotspot The internet behavior for the user that is connected with this equipment is not can determine that.The transmission of information is not only realized, but also ensure that user's is upper Net behavior is not monitored, and protects the privacy of user, the information security also guaranteed.The data received are also from corresponding setting It is obtained in the transmission devices such as the server of tunnel server module, also ensures that receiving data is not monitored, the reception number of guarantee According to safety.
Fig. 3 is referred to again, is the flow diagram of another information transferring method of the embodiment of the present invention, and the present invention is implemented The method of example can be applicable in the server for the transmitting-receiving that can carry out various information data, specifically, the described method includes:
S301: the transmission number that the matched terminal tunnel transmission module of the tunnel service module preset with local terminal is sent is received According to packet.
Receive such as above-mentioned smart phone, tablet computer, PC, laptop and intelligent wearable device Etc. terminals handled by tunnel transmission module after the transmission data packet that sends.
Wherein, above-mentioned each Terminal Type is handled by tunnel transmission module and sends the specific implementation of transmission data packet Process can refer to the description of above-mentioned Fig. 1 to Fig. 2 corresponding embodiment.
S302: the tunnel service module for calling local terminal preset parses the transmission data packet according to scheduled format, And the transmission data packet is decrypted, reduction obtains data packet to be sent.
S303: according to the destination address of data packet to be sent, the data packet to be sent is sent.
In the data packet for the monitoring the process arrival self terminal that the target port is listened to, call setting with terminal tunnel The matched tunneling services module of transmission module carries out parsing and decryption processing, and reduction obtains information to be sent, then root According to the five-tuple in the data packet to be sent, send the information to be sent, five-tuple therein include source IP, Target IP, port, The information such as agreement.
S304: when receiving the data packet for being sent to the corresponding terminal of the terminal tunnel transmission module, local terminal is called The data packet that this is received is encrypted in preset tunnel service module, and will be after the encryption according to predetermined format Data packet be packaged.
S305: the data packet after encapsulation is sent to the corresponding terminal of the terminal tunnel transmission module.
Server side adds in the data packet for the terminal for being sent to corresponding IP address for listening to return according to corresponding preset Close algorithm and format handle the data packet, are then sent to encrypted packet accordingly by above-mentioned target port The terminal of address makes the terminal that tunnel transmission module be called to carry out parsing and decryption oprerations, and is transferred to corresponding using journey Sequence is handled.
The embodiment of the present invention is when sending information, by the encryption to information to be sent, and the tunnel by being mutually matched Transmission module and tunnel service module complete the transmission of message, decryption and transmission process, so that the routing devices such as wifi hotspot The internet behavior for the user that is connected with this equipment is not can determine that.The transmission of information is not only realized, but also ensure that user's is upper Net behavior is not monitored, and protects the privacy of user, the information security also guaranteed.The data received are also from corresponding setting It is obtained in the transmission devices such as the server of tunnel server module, also ensures that receiving data is not monitored, the reception number of guarantee According to safety.
Fig. 4 specifically is referred to, is a kind of flow diagram of specific information transferring method, as shown in figure 4, being closed in terminal It is sent to the process of corresponding application server in the relevant information data that browser Browser and mail Email is applied, is being supervised When measuring browser Browser and mail Email application has user data to need to send, respectively by redirecting redirect Processing, is sent to tunnel transmission module, has tunnel transmission module to be encrypted and send after being packaged into the data packet of predetermined format It is sent to the server of corresponding ports by routing devices such as wifi hotspots, has the tunnel service module in server to complete data The reduction of packet and it is sent to corresponding application server.
The embodiment of the present invention is when sending information, by the encryption to information to be sent, and the tunnel by being mutually matched Transmission module and tunnel service module complete the transmission of message, decryption and transmission process, so that the routing devices such as wifi hotspot The internet behavior for the user that is connected with this equipment is not can determine that.The transmission of information is not only realized, but also ensure that user's is upper Net behavior is not monitored, and protects the privacy of user, the information security also guaranteed.
The information transmission system of the embodiment of the present invention and device are described in detail below.
Fig. 5 is referred to, is a kind of structural schematic diagram of information transmission system of the embodiment of the present invention, the embodiment of the present invention The system comprises user terminals 1 and server 2, wherein the user terminal 1 includes smart phone, tablet computer, personal electricity The terminals such as brain, laptop and intelligent wearable device, the server 2 can be then the service for forwarding information Device.
The user terminal 1, for obtaining data packet to be sent corresponding to the information for needing to send;Call preset tunnel The data packet to be sent is encrypted in road transmission module, and is predetermined format by the packet encapsulation after encryption Transmission data packet;The transmission data packet is sent to clothes indicated by the target port being arranged in the tunnel transmission module Business device 2;
The server 2, for receiving the matched terminal tunnel transmission mould of the tunnel service module preset with local terminal When the transmission data packet that block is sent, call the preset tunnel service module of local terminal according to scheduled format to the transmission data packet into Row parsing, and the transmission data packet is decrypted, reduction obtains data packet to be sent;According to the mesh of data packet to be sent Address, send the data packet to be sent.
It can be by one or more such as wifi between the user terminal 1 in the embodiment of the present invention and server 2 The communication that the routing devices such as hot spot 3 carry out.
Fig. 6 specifically is referred to, is a kind of structural schematic diagram of information carrying means of the embodiment of the present invention, the information passes Defeated device may be provided at the user terminal 1 of the above system embodiment, specifically can be set in smart phone, tablet computer, individual Terminals, the described devices such as computer, laptop and intelligent wearable device include:
Module 11 is obtained, for obtaining data packet to be sent corresponding to the information for needing to send;
Processing module 12, for calling preset tunnel transmission module that the data packet to be sent is encrypted, And by the packet encapsulation after encryption be predetermined format transmission data packet;
Sending module 13, for the transmission data packet to be sent to the target port being arranged in the tunnel transmission module Indicated transmission device, by the transmission device by calling and the matched tunneling services mould of the tunnel transmission module Block restores to obtain data packet to be sent, and sends the reduction and obtain data packet to be sent.
The data packet to be sent for obtaining the acquisition of module 11 can pass through the types of applications editor in terminal for user Obtained data packet, such as the data packet generated after message, the number obtained by mail editor are edited by instant messaging application According to packet etc..
The tunnel transmission module that processing module 12 described in the embodiment of the present invention is called can carry out data packet to be sent Encryption and encapsulation, and by specifying, a target port will be encrypted and the transmission data packet of encapsulation is sent to corresponding set It is standby.It should be noted that the specified target port setting when, can be set it is dedicated can be with the transmission device of forwarding information Corresponding port.
Transmission device is generally a server, the monitoring the process arrival self terminal that transmission device is listened in the target port Data packet when, it is calling setting to be parsed and solved with the terminal matched tunneling services module of tunnel transmission module Close processing, reduction obtain information to be sent, then according to the five-tuple in the data packet to be sent, send the information to be sent, Five-tuple therein includes the information such as source IP, Target IP, port, agreement.
The embodiment of the present invention is when sending information, by the encryption to information to be sent, and the tunnel by being mutually matched Transmission module and tunnel service module complete the transmission of message, decryption and transmission process, so that the routing devices such as wifi hotspot The internet behavior for the user that is connected with this equipment is not can determine that.The transmission of information is not only realized, but also ensure that user's is upper Net behavior is not monitored, and protects the privacy of user, the information security also guaranteed.
Further, Fig. 7 is referred to, is the structural schematic diagram of another information carrying means of the embodiment of the present invention, this The described device of inventive embodiments includes acquisition module 1, processing module 2 and sending module 3 in Fig. 6 embodiment, further , in embodiments of the present invention, described device further include:
Receiving module 14, for receiving by the transmission device by calling and the matched tunnel of tunnel transmission module Transmit the encrypted packet for the predetermined format that service module is sent;
The processing module 12 is also used to parse the data packet received according to predetermined format, and is decrypted Processing, obtains received data packet.
The transmission devices such as server side is in the data packet for the terminal for being sent to corresponding IP address for listening to return, according to phase Preset Encryption Algorithm and format is answered to handle the data packet, then by above-mentioned target port by encrypted packet It is sent to the terminal of appropriate address, encrypted packet of the receiving module 14 in the predetermined format for receiving server transmission Afterwards, it calls tunnel transmission module to carry out parsing and decryption oprerations by the processing module 12, and is transferred to corresponding application Program is handled.
Still optionally further, in embodiments of the present invention, as shown in figure 8, the processing module 12 can specifically include:
Unit 121 is redirected, the data packet to be sent for will acquire is redirected to preset tunnel transmission module;
Control unit 122 is encrypted the data packet to be sent for controlling tunnel transmission module;
Encapsulation unit 123, for being predetermined by the packet encapsulation after being encrypted by the tunnel transmission module The transmission data packet of format.
Still optionally further, in embodiments of the present invention, as shown in figure 8, the processing module 12 can also include:
Selecting unit 124 is set from the tunnel transmission module for the destination address according to the data packet to be sent Target port is determined in selection in the port set;
The encapsulation unit 123 is specifically used for carrying out encryption by the target port determined and by the tunnel transmission module Packet encapsulation after reason is the transmission data packet of predetermined format, in order to send the transmission data packet to target port.
The embodiment of the present invention is when sending information, by the encryption to information to be sent, and the tunnel by being mutually matched Transmission module and tunnel service module complete the transmission of message, decryption and transmission process, so that the routing devices such as wifi hotspot The internet behavior for the user that is connected with this equipment is not can determine that.The transmission of information is not only realized, but also ensure that user's is upper Net behavior is not monitored, and protects the privacy of user, the information security also guaranteed.The data received are also from corresponding setting It is obtained in the transmission devices such as the server of tunnel server module, also ensures that receiving data is not monitored, the reception number of guarantee According to safety.
Fig. 9 is referred to again, is the structural schematic diagram of another information carrying means of the embodiment of the present invention, and the present invention is implemented The described device of example may be provided in the server 2 in the above system embodiment, specifically, the apparatus may include:
Receiving module 21, for receiving the matched terminal tunnel transmission module hair of the tunnel service module preset with local terminal The transmission data packet sent;
Processing module 22, the tunnel service module for calling local terminal preset is according to scheduled format to the transmission data packet It is parsed, and the transmission data packet is decrypted, reduction obtains data packet to be sent;
Sending module 23 sends the data packet to be sent for the destination address according to data packet to be sent.
The receiving module 21 receive such as above-mentioned smart phone, tablet computer, PC, laptop and The transmission data packet that the terminals such as intelligent wearable device are sent after being handled by tunnel transmission module.Wherein, above-mentioned each Terminal Type handled by tunnel transmission module and send transmission data packet specific implementation process can refer to above-mentioned Fig. 1 to scheme 2 corresponding method embodiments and Fig. 6 to Fig. 8 corresponding intrument embodiment description.
The processing module 22 is also used to receiving the number for being sent to the corresponding terminal of the terminal tunnel transmission module When according to packet, call the preset tunnel service module of local terminal that the data packet that this is received is encrypted, and according to fixing in advance Data packet after the encryption is packaged by formula;
The sending module 23 is also used to the data packet after encapsulation being sent to the terminal tunnel transmission module corresponding Terminal.
In the data packet for the terminal for being sent to corresponding IP address for listening to return, the processing module 22 is according to corresponding pre- The Encryption Algorithm and format set handle the data packet, then pass through above-mentioned target port by the sending module 23 Encrypted packet is sent to the terminal of appropriate address, makes the terminal that tunnel transmission module be called to be parsed and decrypted behaviour Make, and is transferred to corresponding application program and is handled.
The embodiment of the present invention is when sending information, by the encryption to information to be sent, and the tunnel by being mutually matched Transmission module and tunnel service module complete the transmission of message, decryption and transmission process, so that the routing devices such as wifi hotspot The internet behavior for the user that is connected with this equipment is not can determine that.The transmission of information is not only realized, but also ensure that user's is upper Net behavior is not monitored, and protects the privacy of user, the information security also guaranteed.The data received are also from corresponding setting It is obtained in the transmission devices such as the server of tunnel server module, also ensures that receiving data is not monitored, the reception number of guarantee According to safety.
Those of ordinary skill in the art will appreciate that realizing all or part of the process in above-described embodiment method, being can be with Relevant hardware is instructed to complete by computer program, the program can be stored in a computer-readable storage medium In, the program is when being executed, it may include such as the process of the embodiment of above-mentioned each method.Wherein, the storage medium can be magnetic Dish, CD, read-only memory (Read-Only Memory, ROM) or random access memory (Random Access Memory, RAM) etc..
The above disclosure is only the preferred embodiments of the present invention, cannot limit the right model of the present invention with this certainly It encloses, therefore equivalent changes made in accordance with the claims of the present invention, is still within the scope of the present invention.

Claims (13)

1. a kind of information transferring method characterized by comprising
Data packet to be sent corresponding to the information for needing to send is obtained, the data packet to be sent includes information to be sent and should The corresponding five-tuple of information to be sent;
Call preset tunnel transmission module that the data packet to be sent is encrypted, and by the data after encryption Encapsulation is the transmission data packet of predetermined format;
According to the target port being arranged in the tunnel transmission module, the transmission data packet is sent to institute by routing device Transmission device indicated by target port is stated, by the transmission device in the monitoring the process for listening to the target port to the transmission After data packet, parsing and decryption processing are carried out with the matched tunneling services module of the tunnel transmission module by calling Reduction obtains data packet to be sent, and sends the number to be sent for restoring and obtaining according to the five-tuple in the data packet to be sent According to the information to be sent in packet.
2. the method as described in claim 1, which is characterized in that described to call preset tunnel transmission module to described to be sent Data packet is encrypted, and is the transmission data packet of predetermined format by the packet encapsulation after encryption, comprising:
The data packet to be sent that will acquire is redirected to preset tunnel transmission module;
The data packet to be sent is encrypted in control tunnel transmission module;
It is the transmission data packet of predetermined format by the packet encapsulation after being encrypted by the tunnel transmission module.
3. method according to claim 2, which is characterized in that it is described will be encrypted by the tunnel transmission module after Packet encapsulation be predetermined format transmission data packet, comprising:
According to the destination address of the data packet to be sent, select to determine from the port being arranged in the tunnel transmission module Target port;
Packet encapsulation after being encrypted by determining target port and by the tunnel transmission module is predetermined format Transmission data packet, in order to send the transmission data packet to target port.
4. the method according to claim 1, which is characterized in that further include:
It receives by the transmission device by calling and the matched tunneling services module transmission of the tunnel transmission module The encrypted packet of predetermined format;
The data packet received is parsed according to predetermined format, and is decrypted, received data packet is obtained.
5. a kind of information transferring method characterized by comprising
The transmission data packet that the matched terminal tunnel transmission module of the tunnel service module preset with local terminal is sent is received, it is described Transmission data packet be terminal tunnel transmission module to data packet to be sent carry out encryption and encapsulation process after obtain, it is described to Send the data packet five-tuple corresponding with the information to be sent that includes information to be sent;
By transmitting data packet described in the monitoring the process listened in target port, and called after listening to the transmission data packet The preset tunnel service module of local terminal parses the transmission data packet according to scheduled format, and to the transmission data packet into Row decryption processing, reduction obtain data packet to be sent;
The reduction, which is sent, according to the five-tuple in the data packet to be sent obtains the information to be sent in data packet to be sent.
6. method as claimed in claim 5, which is characterized in that further include:
When receiving the data packet for being sent to the corresponding terminal of the terminal tunnel transmission module, the preset tunnel of calling local terminal The data packet that this is received is encrypted in service module, and according to predetermined format by the data packet after the encryption into Row encapsulation;
Data packet after encapsulation is sent to the corresponding terminal of the terminal tunnel transmission module.
7. a kind of information carrying means characterized by comprising
Module is obtained, for obtaining data packet to be sent corresponding to the information for needing to send, the data packet to be sent includes Information to be sent five-tuple corresponding with the information to be sent;
Processing module for calling preset tunnel transmission module that the data packet to be sent is encrypted, and will add Close treated packet encapsulation is the transmission data packet of predetermined format;
Sending module, for according to the target port being arranged in the tunnel transmission module, the transmission data packet to be passed through road Transmission device indicated by the target port is sent to as equipment, by the transmission device when the target port listen into After journey monitors the transmission data packet, carried out by calling with the matched tunneling services module of the tunnel transmission module Parsing and decryption processing restore to obtain data packet to be sent, and send described go back according to the five-tuple in the data packet to be sent Original obtains the information to be sent in data packet to be sent.
8. device as claimed in claim 7, which is characterized in that the processing module includes:
Unit is redirected, the data packet to be sent for will acquire is redirected to preset tunnel transmission module;
Control unit is encrypted the data packet to be sent for controlling tunnel transmission module;
Encapsulation unit, for being the biography of predetermined format by the packet encapsulation after being encrypted by the tunnel transmission module Transmission of data packet.
9. device as claimed in claim 8, which is characterized in that the processing module further include:
Selecting unit, for the destination address according to the data packet to be sent, the end being arranged from the tunnel transmission module Target port is determined in selection in mouthful;
The encapsulation unit is specifically used for after being encrypted by the target port determined and by the tunnel transmission module Packet encapsulation is the transmission data packet of predetermined format, in order to send the transmission data packet to target port.
10. such as the described in any item devices of claim 7-9, which is characterized in that further include:
Receiving module is taken by calling with the matched tunnel transmission of the tunnel transmission module for receiving by the transmission device The encrypted packet for the predetermined format that module of being engaged in is sent;
The processing module is also used to parse the data packet received according to predetermined format, and is decrypted, and obtains To received data packet.
11. a kind of information carrying means characterized by comprising
Receiving module, the biography sent for receiving the matched terminal tunnel transmission module of the tunnel service module preset with local terminal Transmission of data packet, the transmission data packet are after the tunnel transmission module of terminal carries out encryption and encapsulation process to data packet to be sent It obtains, the data packet to be sent five-tuple corresponding with the information to be sent that includes information to be sent;
Processing module for transmitting data packet described in the monitoring the process by listening in target port, and is listening to the biography The tunnel service module for calling local terminal preset after transmission of data packet parses the transmission data packet according to scheduled format, and right The transmission data packet is decrypted, and reduction obtains data packet to be sent;
Sending module obtains in data packet to be sent for sending the reduction according to the five-tuple in the data packet to be sent Information to be sent.
12. device as claimed in claim 11, which is characterized in that
The processing module is also used to receiving the data packet for being sent to the corresponding terminal of the terminal tunnel transmission module When, the data packet that this is received is encrypted in the tunnel service module for calling local terminal preset, and will according to predetermined format Data packet after the encryption is packaged;
The sending module is also used to the data packet after encapsulation being sent to the corresponding terminal of the terminal tunnel transmission module.
13. a kind of information transmission system, which is characterized in that including user terminal and server, wherein
The user terminal, for obtaining data packet to be sent corresponding to the information for needing to send, the data packet to be sent Including information to be sent five-tuple corresponding with the information to be sent;Call preset tunnel transmission module to the number to be sent It is encrypted according to packet, and is the transmission data packet of predetermined format by the packet encapsulation after encryption;According to the tunnel The transmission data packet is sent to the target port meaning by routing device by the target port being arranged in road transmission module The server shown;
The server, for calling local terminal pre- after the monitoring the process listened in the target port is to the transmission data packet The tunnel service module set parses the transmission data packet according to scheduled format, and the transmission data packet is decrypted Processing, reduction obtain data packet to be sent;According to according in the data packet to be sent five-tuple send it is described reduction obtain to Send the information to be sent in data packet.
CN201310455148.XA 2013-09-29 2013-09-29 A kind of information transferring method, apparatus and system Active CN104519019B (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN201310455148.XA CN104519019B (en) 2013-09-29 2013-09-29 A kind of information transferring method, apparatus and system
PCT/CN2014/086897 WO2015043421A1 (en) 2013-09-29 2014-09-19 Information transmission method, device and system thereof

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201310455148.XA CN104519019B (en) 2013-09-29 2013-09-29 A kind of information transferring method, apparatus and system

Publications (2)

Publication Number Publication Date
CN104519019A CN104519019A (en) 2015-04-15
CN104519019B true CN104519019B (en) 2019-09-13

Family

ID=52742042

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201310455148.XA Active CN104519019B (en) 2013-09-29 2013-09-29 A kind of information transferring method, apparatus and system

Country Status (2)

Country Link
CN (1) CN104519019B (en)
WO (1) WO2015043421A1 (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113259415B (en) 2016-07-30 2023-03-10 华为技术有限公司 Network message processing method and device and network server

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101459517A (en) * 2008-12-18 2009-06-17 上海宝钢钢材贸易有限公司 B2B data exchange system
CN102231707A (en) * 2011-06-27 2011-11-02 中国建设银行股份有限公司 Method and system for reliably transmitting data message in bank outlets
CN102546562A (en) * 2010-12-22 2012-07-04 腾讯科技(深圳)有限公司 Encrypting and decrypting method and system during transmission of data in web

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101459517A (en) * 2008-12-18 2009-06-17 上海宝钢钢材贸易有限公司 B2B data exchange system
CN102546562A (en) * 2010-12-22 2012-07-04 腾讯科技(深圳)有限公司 Encrypting and decrypting method and system during transmission of data in web
CN102231707A (en) * 2011-06-27 2011-11-02 中国建设银行股份有限公司 Method and system for reliably transmitting data message in bank outlets

Also Published As

Publication number Publication date
WO2015043421A1 (en) 2015-04-02
CN104519019A (en) 2015-04-15

Similar Documents

Publication Publication Date Title
Memos et al. An efficient algorithm for media-based surveillance system (EAMSuS) in IoT smart city framework
JP4773398B2 (en) Method for routing incoming and outgoing data in an NFC chipset
CN103117906B (en) A kind of mobile terminal shares flux monitoring method during Wi-Fi hotspot
CN109152094B (en) Wireless network connection method for terminal
CN101309273B (en) Method and device for generating safety alliance
CN112287372B (en) Method and apparatus for protecting clipboard privacy
CN105119928B (en) Data transmission method, device, system and the security server of Android intelligent terminal
CN104580086A (en) Information transmission method, client side, server and system
CN112686358A (en) Data transmission method, NFC electronic tag, terminal device and storage medium
CN104619040A (en) Method and system for quickly connecting WIFI equipment
CN104038505A (en) Method and device for preventing IPSec (internet protocol security) replaying
EP3293933A1 (en) Communication content protection
CN105141637A (en) Transmission encryption method taking flows as granularity
CN110290030A (en) Network state detection method, apparatus, electronic equipment and computer-readable medium
CN109982281A (en) A kind of communication system and method based on LoRaWAN
CN109791590A (en) Security processes
CN104753925A (en) Gateway system and method for encrypting and decoding files
CN104426834B (en) A kind of web-page requests method, client, server and system
CN102387209A (en) System and method for obtaining call information, device and method for sending call information as well as mobile terminal
CN111246407A (en) Data encryption and decryption method and device for short message transmission
CN107294968A (en) The monitoring method and system of a kind of audio, video data
CN104244171A (en) Data transmission system and method on basis of NFC (near field communication) connection
CN106028320A (en) Data security transmission method, terminal and server
CN104519019B (en) A kind of information transferring method, apparatus and system
CN105227569B (en) The data pack transmission method and device of application

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant