CN104917595A - Secret key switching method and system in encryption communication process - Google Patents
Secret key switching method and system in encryption communication process Download PDFInfo
- Publication number
- CN104917595A CN104917595A CN201510331691.8A CN201510331691A CN104917595A CN 104917595 A CN104917595 A CN 104917595A CN 201510331691 A CN201510331691 A CN 201510331691A CN 104917595 A CN104917595 A CN 104917595A
- Authority
- CN
- China
- Prior art keywords
- key
- transmitting terminal
- ciphertext
- sends
- timer
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L1/00—Arrangements for detecting or preventing errors in the information received
- H04L1/12—Arrangements for detecting or preventing errors in the information received by using return channel
- H04L1/16—Arrangements for detecting or preventing errors in the information received by using return channel in which the return channel carries supervisory signals, e.g. repetition request signals
- H04L1/18—Automatic repetition systems, e.g. Van Duuren systems
- H04L1/1867—Arrangements specially adapted for the transmitter end
- H04L1/188—Time-out mechanisms
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L1/00—Arrangements for detecting or preventing errors in the information received
- H04L1/12—Arrangements for detecting or preventing errors in the information received by using return channel
- H04L1/16—Arrangements for detecting or preventing errors in the information received by using return channel in which the return channel carries supervisory signals, e.g. repetition request signals
- H04L1/1607—Details of the supervisory signal
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0816—Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
- H04L9/0819—Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
The invention discloses a secret key switching method and system in an encryption communication process. According to the method, secret key switching confirmation is performed by use of a signaling handshaking mechanism; a secret key sending end sends a secret key and then receives an acknowledgement message from a secret key receiving end so as to confirm success of secret key transmission, or else the secret key is retransmitted. The secret key receiving end comprises a ciphertext sending end and a ciphertext receiving end. The secret key receiving end receives the secret key correctly and then sends information about success reception of the secret key to the secret key sending end. Synchronization of the ciphertext of the secret key in the secret key switching process is effectively completed, air interface resource is saved, and the user experience is improved.
Description
Technical field
The present invention relates to communication technical field, particularly relate to key switching method and system in a kind of coded communication process.
Background technology
Along with the development of mobile communication technology, mobile terminal there occurs huge change, constantly stride forward towards intelligentized direction, along with the trend of Intelligent Terminal and wideband, mobile terminal function is from only providing single voice service to become rich and varied, mobile Internet business emerges in an endless stream, become increasingly prosperous, meanwhile, mobile terminal relates to the sensitive information such as business secret and individual privacy more and more, face various security threat, as malice is ordered, automatically information service center is dialed, monitoring telephone, steal local information, mobile terminal is as mobile Internet epoch topmost carrier, be faced with severe security challenge, mobile terminal from malicious software will become the next target of Malware development, at present PC industry is but nothing like to the attention degree of mobile terminal safety, when fast traffic lane is sailed in mobile Internet development into time, the safety of mobile terminal likely becomes the important bottleneck of restriction mobile Internet development, therefore, the safety problem solving mobile terminal is imperative, extremely urgent.
Key is as the important means in secure communication, in mobile Internet transmission, transmit leg and recipient could must process the ciphertext of transmission based on key, key has term of validity problem, if special cipher-text information is important, then the key updating cycle is shorter, likely all may convert different keys with a coded communication process.
Key and the necessary reasonably combined use of ciphertext, wrong cipher key, then cause the mistake of whole coded communication flow process, but as above-mentioned analysis, there is term of validity problem in key transmission in a network, therefore in ciphertext transmitting procedure, there is the switching of key, just may there is the mistake that following two kinds of situations cause ciphertext to be transmitted in this:
1) new key does not receive or receives mistake;
2) the nonsynchronous problem of ciphertext key, i.e. new and old key and ciphertext matching problem;
Especially, along with the development of mobile communication, exchanges data amount is increasing, the transfer of data of mistake causes final re-transmission greatly will promote network blockage rate and offered load rate, reduce Consumer's Experience, therefore, adopt rational method to control encrypting traffic and correctly transmit extremely important.
In current system, great majority adopt the mode repeating to send key to ensure cipher key delivery, about fix on m successive frame after receiving key for n-th time as key switch frame, ensure that key correctly switches, a disadvantage of scheme like this is exactly, waste the interface-free resources of multiple frame, and key switches dumb.
In sum, present inventor, in the process realizing invention technical scheme in the embodiment of the present application, finds that above-mentioned technology at least exists following technical problem:
In the prior art, there is waste interface-free resources in existing communication encryption system, and key switches inflexible technical problem.
Summary of the invention
The invention provides key switching method and system in a kind of coded communication process, solve existing communication encryption system and there is waste interface-free resources, and key switches inflexible technical problem, achieve the key ciphertext stationary problem effectively completing key handoff procedure, save interface-free resources, improve the technique effect of Consumer's Experience.
For solving the problems of the technologies described above, the embodiment of the present application provides key switching method in a kind of coded communication process on the one hand, and described method comprises:
Adopt signaling handshake mechanism to carry out key to switch and confirm: key transmitting terminal receives the acknowledge message that key reception end sends and then thinks that key sends successfully after sending key, otherwise will retransmit at key; Key reception end comprises: ciphertext transmitting terminal and ciphertext receiving terminal, and key reception is rectified really to receive after key and sent key reception success message to key transmitting terminal;
Wherein, key transmitting terminal is provided with key and sends overtime timer, key sends overtime timer and starts after key sends, and key sends overtime timer and lost efficacy after key transmitting terminal receives key confirmation message; If key is not sent to key reception end or key reception end does not correctly receive key, or the acknowledge message of key reception end correctly send reach key transmitting terminal, then after preset time period, key sends overtime timer time-out, and key transmitting terminal sends key again.
Further, at key transmitting terminal, key expires timer is set, key expires timer is set in the effective time of key in encrypted transmission process, and key expires timer is opened after new key comes into operation, and key expires timer can arrange the out-of-service time according to the confidentiality of encrypted content.
Further, when the t1 moment before key expires timer expiry, key transmitting terminal sends a message to ciphertext transmitting terminal, obtain current ciphertext and send state, if ciphertext has correctly sent and ciphertext transmitting terminal receives correct ciphertext acknowledge message, then ciphertext transmitting terminal replys success message, otherwise ciphertext transmitting terminal unified transmission failed message.
Further, can key switching flow be carried out after key transmitting terminal receives success message, send new key; Key transmitting terminal receives failed message then needs the length extending key expires timer to be t2, and key transmitting terminal constantly and ciphertext transmitting terminal interaction message, waits for that this ciphertext sends the switching carrying out key successfully again.
Further, ciphertext transmitting terminal, after receiving the query messages that key transmitting terminal comes, if current ciphertext has correctly sent and received acknowledge message, has then emptied the key storage space of ciphertext transmitting terminal; When new ciphertext need send time, if key is sky, can not send, must etc. new key obtain just sending; If current ciphertext does not also correctly send, then do not empty key storage space, continue normal ciphertext process of transmitting.
On the other hand, present invention also provides key switching system in a kind of coded communication process, system adopts signaling handshake mechanism to carry out key switching confirmation, and described system comprises:
Key transmitting terminal, for the acknowledge message receiving key reception end after sending key and send, described key transmitting terminal then thinks that key sends successfully, otherwise will retransmit at key;
Key reception end comprises: ciphertext transmitting terminal and ciphertext receiving terminal, and key reception is rectified really to receive after key and sent key reception success message to key transmitting terminal;
Wherein, key transmitting terminal is provided with key and sends overtime timer, key sends overtime timer and starts after key sends, and key sends overtime timer and lost efficacy after key transmitting terminal receives key confirmation message; If key is not sent to key reception end or key reception end does not correctly receive key, or the acknowledge message of key reception end correctly send reach key transmitting terminal, then after preset time period, key sends overtime timer time-out, and key transmitting terminal sends key again.
Wherein, key expires timer is also provided with at key transmitting terminal, key expires timer is set in the effective time of key in encrypted transmission process, key expires timer is opened after new key comes into operation, key expires timer can arrange the out-of-service time according to the confidentiality of encrypted content, wherein, key expires timer and key send overtime timer composition timer units.
Wherein, when the t1 moment before key expires timer expiry, key transmitting terminal sends a message to ciphertext transmitting terminal, obtain current ciphertext and send state, if ciphertext has correctly sent and ciphertext transmitting terminal receives correct ciphertext acknowledge message, then ciphertext transmitting terminal replys success message, otherwise ciphertext transmitting terminal unified transmission failed message.
Wherein, can key switching flow be carried out after key transmitting terminal receives success message, send new key; Key transmitting terminal receives failed message then needs the length extending key expires timer to be t2, and key transmitting terminal constantly and ciphertext transmitting terminal interaction message, waits for that this ciphertext sends the switching carrying out key successfully again.
Wherein, ciphertext transmitting terminal, after receiving the query messages that key transmitting terminal comes, if current ciphertext has correctly sent and received acknowledge message, has then emptied the key storage space of ciphertext transmitting terminal; When new ciphertext need send time, if key is sky, can not send, must etc. new key obtain just sending; If current ciphertext does not also correctly send, then do not empty key storage space, continue normal ciphertext process of transmitting.
The one or more technical schemes provided in the embodiment of the present application, at least have following technique effect or advantage:
Owing to have employed, key switching method in coded communication process is designed to: adopt signaling handshake mechanism to carry out key and switch and confirm: key transmitting terminal receives the acknowledge message that key reception end sends and then thinks that key sends successfully after sending key, otherwise will retransmit at key, key reception end comprises: ciphertext transmitting terminal and ciphertext receiving terminal, and key reception is rectified really to receive after key and sent key reception success message to key transmitting terminal, wherein, arrange key at key transmitting terminal and send overtime timer, timer starts after key sends, and timer lost efficacy after key transmitting terminal receives key confirmation message, if key is not sent to key reception end or key reception end does not correctly receive key, or the acknowledge message of key reception end correctly send reach key transmitting terminal, then timer expiry after preset time period, key transmitting terminal sends the technical scheme of key again, namely signaling handshake mechanism is utilized to carry out the switching of key, send wall scroll key switching message, key handover success is then thought after receiving correct response message, be different from the repeat mechanism adopted in traditional scheme, fixing repeatedly transmission is to guarantee that key correctly switches, so, efficiently solve existing communication encryption system and there is waste interface-free resources, and key switches inflexible technical problem, and then achieve the key ciphertext stationary problem effectively completing key handoff procedure, save interface-free resources, improve the technique effect of Consumer's Experience.
Further, signaling handshake of the present invention mechanism is adopted to carry out the switching of key, key switching flow can be completed fast when signaling channel condition is enough good, be different from the fine or not all fixing repeatedly transmission of the repeat mechanism channel condition adopted in traditional scheme and correctly switch so further increase utilization rate of air interface resource and Consumer's Experience to guarantee key.
Accompanying drawing explanation
Fig. 1 is key and ciphertext transmitting terminal Signalling exchange schematic flow sheet I in the embodiment of the present application one;
Fig. 2 is key and ciphertext transmitting terminal Signalling exchange schematic flow sheet II in the embodiment of the present application one;
Fig. 3 is key handover success schematic flow sheet in the embodiment of the present application one;
Fig. 4 is key handover failure procedures schematic diagram in the embodiment of the present application one;
Fig. 5 is the composition schematic diagram of key switching system in coded communication process in the embodiment of the present application one.
Embodiment
The invention provides key switching method and system in a kind of coded communication process, solve existing communication encryption system and there is waste interface-free resources, and key switches inflexible technical problem, achieve the key ciphertext stationary problem effectively completing key handoff procedure, save interface-free resources, improve the technique effect of Consumer's Experience.
Technical scheme during the application implements is for solving the problems of the technologies described above.General thought is as follows:
Have employed and key switching method in coded communication process is designed to: adopt signaling handshake mechanism to carry out key and switch and confirm: key transmitting terminal receives the acknowledge message that key reception end sends and then thinks that key sends successfully after sending key, otherwise will retransmit at key, key reception end comprises: ciphertext transmitting terminal and ciphertext receiving terminal, and key reception is rectified really to receive after key and sent key reception success message to key transmitting terminal, wherein, arrange key at key transmitting terminal and send overtime timer, timer starts after key sends, and timer lost efficacy after key transmitting terminal receives key confirmation message, if key is not sent to key reception end or key reception end does not correctly receive key, or the acknowledge message of key reception end correctly send reach key transmitting terminal, then timer expiry after preset time period, key transmitting terminal sends the technical scheme of key again, namely signaling handshake mechanism is utilized to carry out the switching of key, send wall scroll key switching message, key handover success is then thought after receiving correct response message, be different from the repeat mechanism adopted in traditional scheme, fixing repeatedly transmission is to guarantee that key correctly switches, so, efficiently solve existing communication encryption system and there is waste interface-free resources, and key switches inflexible technical problem, and then achieve the key ciphertext stationary problem effectively completing key handoff procedure, save interface-free resources, improve the technique effect of Consumer's Experience.
In order to better understand technique scheme, below in conjunction with Figure of description and concrete execution mode, technique scheme is described in detail.
Embodiment one:
In embodiment one, provide key switching method in a kind of coded communication process on the one hand, specifically comprise:
Adopt signaling handshake mechanism to carry out key and switch confirmation: after key transmitting terminal sends key, the acknowledge message of wait-receiving mode end then thinks that key sends successfully, otherwise will retransmit at key, and need to send key reception success message to transmitting terminal after key reception end (comprising ciphertext transmitting terminal and ciphertext receiving terminal all to need to receive key) correctly receives key.Utilize interactive information to guarantee the handover success of key.
The method comprises further: arrange key at key transmitting terminal and send overtime timer, just start after key sends, lost efficacy after receiving key confirmation message, if key is not sent to receiving terminal or receiving terminal does not correctly receive key, or the acknowledge message of receiving terminal correctly send reach key transmitting terminal, then timer expiry after a period of time, needs again to send key, is ensured the correct transmission of key by this flow process.
The method comprises further: because key reception end comprises ciphertext transmitting terminal and ciphertext receiving terminal, and therefore above-mentioned key sends overtime timer needs to be designed to two covers, manages respectively.
The method comprises further: arrange key expires timer at transmitting terminal, and this timer is defined in encrypted transmission process, the effective time of key, opens, can arrange the out-of-service time according to the confidentiality of encrypted content after new key comes into operation.
The method comprises further: key transmitting terminal, when the t1 moment before key expires timer expiry, need to send a message to ciphertext transmitting terminal, obtain current ciphertext and send state, if ciphertext correctly send and and receive correct ciphertext acknowledge message, then reply success message, otherwise unified transmission failed message; Further, can key switching flow be carried out after key transmitting terminal receives success message, send new key; Receiving failed message then needs the length extending key expires timer to be t2, constantly and ciphertext transmitting terminal interaction message, wait for that this ciphertext sends the switching carrying out key successfully again, object is the synchronous and correct matching problem after ensureing key and ciphertext switching.
The method comprises ciphertext transmitting terminal further, after receiving the query messages that key transmitting terminal comes, if current ciphertext has correctly sent and has received acknowledge message, then empty the key storage space of ciphertext transmitting terminal, if when new ciphertext need send time key be sky; can not send, must etc. new key obtain just sending, if current ciphertext does not also correctly send, then do not empty key storage space, continue normal ciphertext process of transmitting.
The method comprises ciphertext receiving terminal further, is responsible for the reception of key and ciphertext, utilizes double secret key ciphertext to be decrypted process, and sends response message to ciphertext transmitting terminal.
On the other hand, the embodiment of the present application additionally provides key switching system in a kind of coded communication process, and this system comprises:
Key transmitting terminal, for the generation of Internet Transmission key and transmission and the interacting message with ciphertext end;
Described key transmitting terminal has oneself timer units, send overtime timer for maintenance key death timer and key to run, timer units controls key running status to these timer monitor, processor is impelled to manage further key state, open, time delay and replacement etc., detection key death timer, query messages and reception feedback message is sent to ciphertext transmitting terminal in particular moment, further, under low power consumpting state, timer units also needs change over clock running frequency, the counting of timer is converted to low-frequency clock counting, when System recover normally works, carry out clock compensation,
Ciphertext transmitting terminal, for the generation of Internet Transmission ciphertext and transmission and with key end interacting message, same bag ciphertext sends, and can only adopt a key, and object is the diversity gain repeatedly transmitted can be utilized to improve transmission performance when retransmitting.
Ciphertext receiving terminal, for reception and the key reception of ciphertext, to key ciphertext transmitting terminal feedback reception success or not message.
Wherein, in the embodiment of the present application, please refer to Fig. 1, Fig. 1 is for being key of the present invention and ciphertext transmitting terminal Signalling exchange schematic flow sheet I, the t1 moment before key expires timer expires, and 101 send a message to ciphertext transmitting terminal inquiry ciphertext sends state, ciphertext sends successfully, ciphertext transmitting terminal empties key storage register, temporarily can not send wait for new key, to the key handoff reservation time to making ciphertext; 102 ciphertext transmitting terminals send to key transmitting terminal transmission ciphertext and successfully indicate; 103 key transmitting terminals start to send new key to ciphertext transmitting terminal, start key switching flow, and start key transmission time-out regularly device; Send in the overtime timer time at key and overcharge 104 keys transmission success messages then key transmitting terminal stopping key transmission overtime timer, think that key sends successfully to ciphertext transmitting terminal; If all do not receive key to send success message after key sends overtime timer time-out, then 105 need again to think that ciphertext transmitting terminal sends key.
Wherein, in the embodiment of the present application, please refer to Fig. 2, Fig. 2 is key of the present invention and ciphertext transmitting terminal Signalling exchange schematic flow sheet II, the t1 moment before key expires timer expires, and 201 send a message to ciphertext transmitting terminal inquiry ciphertext sends state, ciphertext sends unsuccessful, needs to retransmit; 202 send unsuccessful message to key transmitting terminal feedback ciphertext, key timer management cell delay key expires timer time t2, after T+T2, again send ciphertext to ciphertext transmitting terminal and send status poll, poll like this knows that feedback ciphertext sends successfully, just initiate key switching flow, like this, same encrypt data bag, adopts same key, increase data merge gain, be conducive to the Detection results of receiving terminal to ciphertext.
Wherein, in the embodiment of the present application, please refer to Fig. 3, Fig. 3 is the key handover success schematic flow sheet in the present invention, as Fig. 3 key handover success is divided into two parts, ciphertext transmitting terminal and receiving terminal all need feedback success message key management end just can think that key sends successfully; First, 301 key ends send ciphertext to ciphertext transmitting terminal and send status inquiry command, and 302 ciphertext transmitting terminals send successfully to key end feedback ciphertext; 303a/303b key transmitting terminal sends key respectively respectively to ciphertext transmitting terminal and ciphertext receiving terminal, then the feedback message of two group key overtime timer supervision ciphertext transmitting terminals and receiving terminal is opened respectively, if received two to send successfully feedback 304a/304b to key before key sends overtime timer time-out, think and carry out communications by new key by key handover success.
Wherein, in the embodiment of the present application, please refer to Fig. 4, Fig. 4 is the key handover failure procedures schematic diagram in the present invention, and 301 ~ 303 with Fig. 3 flow process, and 304 keys that key transmitting terminal receives ciphertext transmitting terminal in key-timeout timer period send and successfully feed back; And key transmitting terminal does not receive the key feedback message of ciphertext receiving terminal in key-timeout timer period, then 305 again will initiate key transmission flow to initiation ciphertext receiving terminal, its key transmission timer again, until receive correct key to send feedback, key could calculate handover success, especially, if repeating transmission can not receive feedback for a long time always, then the connecting link of mobile phone may have problems, and whole transmission link will be rebuild.
Wherein, in the embodiment of the present application, please refer to Fig. 5, Fig. 5 is the composition schematic diagram of the system that key switches in coded communication process in the present invention, key switching system is by 501 ciphertext transmitting terminals, 502 key transmitting terminals, 503 ciphertext receiving terminals coordinate and carry out, wherein key transmitting terminal is also provided with timer units for the supervision in cipher key transmitting process, timer units comprises key expires timer and key sends overtime timer, the flow process that key switches is that 502 key transmitting elements first send state to 501 information query ciphertexts, the switching flow that can carry out key is determined whether according to ciphertext state, when ciphertext sends successfully, when retransmitting, start key handover key transmitting terminal 502 and send key information to 501/503 ciphertext transmitting terminal/receiving terminal, and open key and send overtime timer, the key receiving both sides in timer period successfully receives feedback message and then thinks key handover success, otherwise be key handoff failure, need to carry out monolateral or bilateral repeating transmission according to feedback.
Especially, when the system without concentrated KMC, usual key transmitting terminal and ciphertext transmitting terminal are all 501/502 unification unit on same parts, then, communication information is same parts disparate modules communication information but not idle message, appoint and be so applicable to the present invention, as another embodiment of the present invention.
Technical scheme in above-mentioned the embodiment of the present application, at least has following technique effect or advantage:
Owing to have employed, key switching method in coded communication process is designed to: adopt signaling handshake mechanism to carry out key and switch and confirm: key transmitting terminal receives the acknowledge message that key reception end sends and then thinks that key sends successfully after sending key, otherwise will retransmit at key, key reception end comprises: ciphertext transmitting terminal and ciphertext receiving terminal, and key reception is rectified really to receive after key and sent key reception success message to key transmitting terminal, wherein, arrange key at key transmitting terminal and send overtime timer, timer starts after key sends, and timer lost efficacy after key transmitting terminal receives key confirmation message, if key is not sent to key reception end or key reception end does not correctly receive key, or the acknowledge message of key reception end correctly send reach key transmitting terminal, then timer expiry after preset time period, key transmitting terminal sends the technical scheme of key again, namely signaling handshake mechanism is utilized to carry out the switching of key, send wall scroll key switching message, key handover success is then thought after receiving correct response message, be different from the repeat mechanism adopted in traditional scheme, fixing repeatedly transmission is to guarantee that key correctly switches, so, efficiently solve existing communication encryption system and there is waste interface-free resources, and key switches inflexible technical problem, and then achieve the key ciphertext stationary problem effectively completing key handoff procedure, save interface-free resources, improve the technique effect of Consumer's Experience.
Further, signaling handshake of the present invention mechanism is adopted to carry out the switching of key, key switching flow can be completed fast when signaling channel condition is enough good, be different from the fine or not all fixing repeatedly transmission of the repeat mechanism channel condition adopted in traditional scheme and correctly switch so further increase utilization rate of air interface resource and Consumer's Experience to guarantee key.
Although describe the preferred embodiments of the present invention, those skilled in the art once obtain the basic creative concept of cicada, then can make other change and amendment to these embodiments.So claims are intended to be interpreted as comprising preferred embodiment and falling into all changes and the amendment of the scope of the invention.
Obviously, those skilled in the art can carry out various change and modification to the present invention and not depart from the spirit and scope of the present invention.Like this, if these amendments of the present invention and modification belong within the scope of the claims in the present invention and equivalent technologies thereof, then the present invention is also intended to comprise these change and modification.
Claims (10)
1. a key switching method in coded communication process, is characterized in that, described method comprises:
Adopt signaling handshake mechanism to carry out key to switch and confirm: key transmitting terminal receives the acknowledge message that key reception end sends and then thinks that key sends successfully after sending key, otherwise will retransmit at key; Key reception end comprises: ciphertext transmitting terminal and ciphertext receiving terminal, and key reception is rectified really to receive after key and sent key reception success message to key transmitting terminal;
Wherein, key transmitting terminal is provided with key and sends overtime timer, key sends overtime timer and starts after key sends, and key sends overtime timer and lost efficacy after key transmitting terminal receives key confirmation message; If key is not sent to key reception end or key reception end does not correctly receive key, or the acknowledge message of key reception end correctly send reach key transmitting terminal, then after preset time period, key sends overtime timer time-out, and key transmitting terminal sends key again.
2. method according to claim 1, it is characterized in that, at key transmitting terminal, key expires timer is set, key expires timer is set in the effective time of key in encrypted transmission process, key expires timer is opened after new key comes into operation, and key expires timer can arrange the out-of-service time according to the confidentiality of encrypted content.
3. method according to claim 2, it is characterized in that, when the t1 moment before key expires timer expiry, key transmitting terminal sends a message to ciphertext transmitting terminal, obtain current ciphertext and send state, if ciphertext has correctly sent and ciphertext transmitting terminal receives correct ciphertext acknowledge message, then ciphertext transmitting terminal replys success message, otherwise ciphertext transmitting terminal unified transmission failed message.
4. method according to claim 3, is characterized in that, can carry out key switching flow, send new key after key transmitting terminal receives success message; Key transmitting terminal receives failed message then needs the length extending key expires timer to be t2, and key transmitting terminal constantly and ciphertext transmitting terminal interaction message, waits for that this ciphertext sends the switching carrying out key successfully again.
5. method according to claim 4, is characterized in that, ciphertext transmitting terminal, after receiving the query messages that key transmitting terminal comes, if current ciphertext has correctly sent and received acknowledge message, then empties the key storage space of ciphertext transmitting terminal; When new ciphertext need send time, if key is sky, can not send, must etc. new key obtain just sending; If current ciphertext does not also correctly send, then do not empty key storage space, continue normal ciphertext process of transmitting.
6. a key switching system in coded communication process, is characterized in that, system adopts signaling handshake mechanism to carry out key switching confirmation, and described system comprises:
Key transmitting terminal, for the acknowledge message receiving key reception end after sending key and send, described key transmitting terminal then thinks that key sends successfully, otherwise will retransmit at key;
Key reception end comprises: ciphertext transmitting terminal and ciphertext receiving terminal, and key reception is rectified really to receive after key and sent key reception success message to key transmitting terminal;
Wherein, key transmitting terminal is provided with key and sends overtime timer, key sends overtime timer and starts after key sends, and key sends overtime timer and lost efficacy after key transmitting terminal receives key confirmation message; If key is not sent to key reception end or key reception end does not correctly receive key, or the acknowledge message of key reception end correctly send reach key transmitting terminal, then after preset time period, key sends overtime timer time-out, and key transmitting terminal sends key again.
7. system according to claim 6, it is characterized in that, key expires timer is also provided with at key transmitting terminal, key expires timer is set in the effective time of key in encrypted transmission process, key expires timer is opened after new key comes into operation, key expires timer can arrange the out-of-service time according to the confidentiality of encrypted content, and wherein, key expires timer and key send overtime timer composition timer units.
8. system according to claim 7, it is characterized in that, when the t1 moment before key expires timer expiry, key transmitting terminal sends a message to ciphertext transmitting terminal, obtain current ciphertext and send state, if ciphertext has correctly sent and ciphertext transmitting terminal receives correct ciphertext acknowledge message, then ciphertext transmitting terminal replys success message, otherwise ciphertext transmitting terminal unified transmission failed message.
9. system according to claim 8, is characterized in that, can carry out key switching flow, send new key after key transmitting terminal receives success message; Key transmitting terminal receives failed message then needs the length extending key expires timer to be t2, and key transmitting terminal constantly and ciphertext transmitting terminal interaction message, waits for that this ciphertext sends the switching carrying out key successfully again.
10. system according to claim 9, is characterized in that, ciphertext transmitting terminal, after receiving the query messages that key transmitting terminal comes, if current ciphertext has correctly sent and received acknowledge message, then empties the key storage space of ciphertext transmitting terminal; When new ciphertext need send time, if key is sky, can not send, must etc. new key obtain just sending; If current ciphertext does not also correctly send, then do not empty key storage space, continue normal ciphertext process of transmitting.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510331691.8A CN104917595B (en) | 2015-06-16 | 2015-06-16 | Key switching method and system during a kind of coded communication |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510331691.8A CN104917595B (en) | 2015-06-16 | 2015-06-16 | Key switching method and system during a kind of coded communication |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104917595A true CN104917595A (en) | 2015-09-16 |
| CN104917595B CN104917595B (en) | 2018-04-27 |
Family
ID=54086331
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510331691.8A Active CN104917595B (en) | 2015-06-16 | 2015-06-16 | Key switching method and system during a kind of coded communication |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104917595B (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108923916A (en) * | 2018-06-22 | 2018-11-30 | 武汉彤科电力科技有限公司 | A kind of terminal symmetric key update exchange method |
| CN109428709A (en) * | 2017-08-22 | 2019-03-05 | 中国电信股份有限公司 | Quantum key distribution method, system and optical network system |
| CN114614985A (en) * | 2022-05-12 | 2022-06-10 | 施维智能计量系统服务(长沙)有限公司 | Communication key updating method, key server and readable storage medium |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1889769A (en) * | 2005-06-29 | 2007-01-03 | 华为技术有限公司 | A periodical updating method for transmission encrypted symmetric keys |
| CN101411219A (en) * | 2003-07-17 | 2009-04-15 | 摩托罗拉公司 | Method for providing point-to-point encryption in a communication system |
| CN102984700A (en) * | 2011-09-05 | 2013-03-20 | 中兴通讯股份有限公司 | Security information storage apparatus, and authentication method and system |
| CN103595529A (en) * | 2012-08-13 | 2014-02-19 | 西安西电捷通无线网络通信股份有限公司 | A switching method for a unidirectional secret key and a realization apparatus |
| CN104270752A (en) * | 2014-09-30 | 2015-01-07 | 杭州华三通信技术有限公司 | Key negotiation method and device for wireless network |
-
2015
- 2015-06-16 CN CN201510331691.8A patent/CN104917595B/en active Active
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101411219A (en) * | 2003-07-17 | 2009-04-15 | 摩托罗拉公司 | Method for providing point-to-point encryption in a communication system |
| CN1889769A (en) * | 2005-06-29 | 2007-01-03 | 华为技术有限公司 | A periodical updating method for transmission encrypted symmetric keys |
| CN102984700A (en) * | 2011-09-05 | 2013-03-20 | 中兴通讯股份有限公司 | Security information storage apparatus, and authentication method and system |
| CN103595529A (en) * | 2012-08-13 | 2014-02-19 | 西安西电捷通无线网络通信股份有限公司 | A switching method for a unidirectional secret key and a realization apparatus |
| CN104270752A (en) * | 2014-09-30 | 2015-01-07 | 杭州华三通信技术有限公司 | Key negotiation method and device for wireless network |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109428709A (en) * | 2017-08-22 | 2019-03-05 | 中国电信股份有限公司 | Quantum key distribution method, system and optical network system |
| CN109428709B (en) * | 2017-08-22 | 2022-03-01 | 中国电信股份有限公司 | Quantum key distribution method and system and optical network system |
| CN108923916A (en) * | 2018-06-22 | 2018-11-30 | 武汉彤科电力科技有限公司 | A kind of terminal symmetric key update exchange method |
| CN114614985A (en) * | 2022-05-12 | 2022-06-10 | 施维智能计量系统服务(长沙)有限公司 | Communication key updating method, key server and readable storage medium |
Also Published As
| Publication number | Publication date |
|---|---|
| CN104917595B (en) | 2018-04-27 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN110831240B (en) | Base station and user equipment for early data transmission in random access procedure | |
| CN102428669B (en) | The hybrid ARQ mechanism of cooperative base station up link | |
| CN101366226B (en) | Method and apparatus for data security and automatic repeat request implementation in a wireless communication system | |
| CN110140409A (en) | Communication device, infrastructure equipment and method | |
| CN109863731B (en) | Data transmission method, related equipment and communication system | |
| US10979934B2 (en) | System and method for maintaining synchronization in connectionless transmissions | |
| RU2007144702A (en) | TRANSFER OF MANAGEMENT INFORMATION IN THE MOBILE COMMUNICATION SYSTEM | |
| CN102438240B (en) | Smart grid wireless communication encryption method based on dynamic key | |
| EP3649829B1 (en) | Enabling efficient handling of redundant packet copies in a wireless communication system | |
| CN101572597A (en) | Operation method for synchronous mixed automatic repeat request of wireless communication system | |
| CN112237026B (en) | Optimization method and system for feedback mechanism in data link layer | |
| CN103716129A (en) | Internet of Things-used wireless communication method and Internet of Things-used wireless communication apparatus | |
| CN101753281B (en) | Method and system for reducing redundant message retransmission of radio link control layer | |
| CN106171004A (en) | A kind of RLC packet shunt method and base station | |
| CN104917595A (en) | Secret key switching method and system in encryption communication process | |
| KR20200138747A (en) | Method and apparatus for transmitting uplink control information | |
| CN102246555A (en) | Method, base station and relay node for processing handover | |
| CN111132186B (en) | MAC layer resetting and data transmission method and device | |
| CN101415219A (en) | Method, system and apparatus for processing data | |
| CN101174943A (en) | Synchronization process and system for data safety | |
| CN102611542B (en) | Data retransmission method and data retransmission device | |
| CN103634757A (en) | Short message group sending method and mobile terminal | |
| JP2021170825A (en) | Network node, ue, base station, and communication method thereof | |
| CN112714428A (en) | Bluetooth data information transmission method capable of setting preposed connection protocol | |
| CN100359841C (en) | A method for transmitting status report |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20200628 Address after: Room 1109, No. 136, banhe Road, Huangpu District, Guangzhou City, Guangdong Province Patentee after: Block power (Guangzhou) Technology Co., Ltd Address before: 621000 No. 39 Sanjiang Avenue, Mianyang economic and Technological Development Zone, Sichuan Patentee before: SICHUAN CHANGHONG COMMUNICATION TECHNOLOGY Co.,Ltd. |
|
| TR01 | Transfer of patent right |