CN105022652A - Website data encryption system and method - Google Patents
Website data encryption system and method Download PDFInfo
- Publication number
- CN105022652A CN105022652A CN201510482330.3A CN201510482330A CN105022652A CN 105022652 A CN105022652 A CN 105022652A CN 201510482330 A CN201510482330 A CN 201510482330A CN 105022652 A CN105022652 A CN 105022652A
- Authority
- CN
- China
- Prior art keywords
- control
- website
- data
- user
- installation
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Landscapes
- Information Transfer Between Computers (AREA)
Abstract
The present invention relates to a website data encryption system and method. The website data encryption system comprises two parts: a data encryption tool and a calling control; and website secret data can be read only by authorization, data stored on a website is encrypted in advance according to the website data secrecy requirement of a client, and then a read permission of an accessor is controlled by a website embedded control, so that the requirement that the secret data can be read only by authorization is met. According to the present invention, the phenomenon that downloading is illegally carried out by a link or unauthorized website contents are illegally acquired by caching, so that hardware finished products are reduced and safety of website data of the client is protected.
Description
Technical field
The present invention relates to software encryption technique field, particularly relate to one and encrypt in advance depositing data on website, then embed by webpage website data encryption system and the method that control access control person reads authority.
Background technology
Along with the development of internet, the safety of the network information more and more becomes the emphasis of people's concern.In traditional design, product encryption mostly is the mode that combined by software and hardware, and the mode of software combination needs to use IC chip, adds the cost of product and environment for use is subject to hardware constraints.
Referenced patent: software enciphering method and system-201010272438.7
Software encryption system and method-200510100035.3
A kind of software enciphering method-201010506156.9
A kind of block cipher software encrypting method-201010289846.3
Summary of the invention
The present invention be directed to the deficiency of conventional cryptography software, break away from hardware constraint, only need can realize the encryption of website data content by software and browse.According to client web site data confidentiality demand, the data deposited on website are encrypted in advance, then embed the reading authority of control access control person by website, thus reach the requirement could read after private data has to pass through mandate.
Website data secrecy system is by data encryption tool and call control two parts and jointly form.Client double-clicks the SetTool.exe under Encryption Tool, opens Encryption Tool interface, as shown in Figure 1.In " file type " search box, input needs the file type of encrypt file; Click " search " button again, prompting is selected search directory, as Fig. 2; Select the catalogue needing search, program is by the specified type file under automatic search catalog; Click " encryption " button, program is encrypted operation by search file out; Click " exiting " button, program will exit, and website specific data has been encrypted.When wherein " file type " searches for, multiple obj ect file type can be separated by semi-colon.Choose " only the searching for expressly " at Encryption Tool interface, can control only to search out the unencrypted plaintext of specifying.
Call control to be provided by third party, user only needs to link respective downloaded address.By the interface that control provides, user can verify the identity of viewer, and authentication is by just starting the automatic decryption services of bottom, and user can browse encrypted content; If authentication is not passed through, then stop deciphering, thus reach the object that control reader reads given content.Control interface, adopts the html page to judge whether control is installed, if do not install, then control is installed in prompting, if install, then proceeds to the authentication page.
Can be prevented by this invention illegal by link download, or illegally obtain undelegated web site contents by buffer memory, reduce hardware finished product, the safety of protection client web site data.
Accompanying drawing explanation
Fig. 1 is Encryption Tool surface chart;
Fig. 2 is prompting search catalogue figure;
Fig. 3 is interface code design sketch;
Fig. 4 is whether IE installs control tip figure;
Fig. 5 is interface code process flow diagram.
Embodiment
Below in conjunction with accompanying drawing 5 and application example, the present invention will be further described.
A kind of website data encryption system, comprising:
Data encryption tool, for the encryption of website data;
Call control, provided by third party, user only needs to link respective downloaded address.
Described data encryption tool encrypting step is as follows:
Client double-clicks the SetTool.exe under Encryption Tool, opens Encryption Tool interface; In " file type " search box, input needs the file type of encrypt file; Click " search " button again, search directory is selected in prompting; Select the catalogue needing search, program is by the specified type file under automatic search catalog; Click " encryption " button, program is encrypted operation by search file out; Click " exiting " button, program will exit, and website specific data has been encrypted;
When described " file type " searches for, multiple obj ect file type can be separated by semi-colon; Choose " only the searching for expressly " at Encryption Tool interface, can control only to search out the unencrypted plaintext of specifying.
Describedly call control, the interface provided by control, user can verify the identity of viewer, and authentication is by just starting the automatic decryption services of bottom, and user can browse encrypted content; If authentication is not passed through, then stop deciphering, thus reach the object that control reader reads given content.
Described control interface, adopts the html page to judge whether control is installed, if do not install, then control is installed in prompting, if install, then proceeds to the authentication page.
Described control is installed, and the page initiatively can once judge whether user installs control in every five seconds; If do not install, the page can provide and prompting is described, user can Auto-mounting control according to explanation; If fail successful installation according to explanation, the page also can provide the link that < downloads control >, and user also can select manual installation control.
A kind of website data encryption method, website private data could be read after authorizing, according to client web site data confidentiality demand, the data deposited on website are encrypted in advance, embedded the reading authority of control access control person again by website, thus reach the requirement could read after private data has to pass through mandate.
A kind of website data time slot scrambling, comprises the steps:
A, client, by Encryption Tool, will need the file encrypted to be encrypted operation, as depicted in figs. 1 and 2 in website;
B, website caller, according to page prompts step, are downloaded and are called control, specific as follows;
Whether c, website active testing user can install control, within every five seconds, judge once, if do not install, then point out explanation " 1. this product controls by copyrights of data, and must install control could normally check ", " 2. when control is installed in prompting, wish good health and install control.Please guarantee during installation to stop without fail-safe software, please check whether browser forbids that ActiveX control is installed ", linking button is installed in page display simultaneously, and user clicks " installation " and then automatically downloads and installs control.
After control installation, page prompts illustrates 3 " installation please click button ", and user clicks the installation of " completing " control.This process effect as shown in Figure 3;
If d user can not illustrate according to the prompting of the page install control, then provide prompting 4 " if installation suggestion cannot be shown; you also directly can click < download control > chain and fetch installation control ", the link channel that the page will provide user independent, downloads control again.
After e, control successful installation, whether prompting is installed control by IE, after clicking " installation ", just can start authentication, as shown in Figure 4;
After f, authentication are legal, open deciphering automatically by StartDecrypt function, otherwise call StopDecrypt function and stop deciphering automatically;
After g, unlatching are deciphered automatically, whether control is encrypted according to the content automatic decision browsed, and when browsing encrypted content, control will decipher the content browsed automatically, so that webpage normal browsing.
Claims (7)
1. a website data encryption system, is characterized in that comprising:
Data encryption tool, for the encryption of website data;
Call control, provided by third party, user only needs to link respective downloaded address.
2. a kind of website data encryption system according to claim 1, is characterized in that data encryption tool encrypting step is as follows:
Client double-clicks the SetTool.exe under Encryption Tool, opens Encryption Tool interface; In " file type " search box, input needs the file type of encrypt file; Click " search " button again, search directory is selected in prompting; Select the catalogue needing search, program is by the specified type file under automatic search catalog; Click " encryption " button, program is encrypted operation by search file out; Click " exiting " button, program will exit, and website specific data has been encrypted;
When described " file type " searches for, multiple obj ect file type can be separated by semi-colon; Choose " only the searching for expressly " at Encryption Tool interface, can control only to search out the unencrypted plaintext of specifying.
3. a kind of website data encryption system according to claim 1, it is characterized in that calling control, the interface provided by control, user can verify the identity of viewer, authentication is by just starting the automatic decryption services of bottom, and user can browse encrypted content; If authentication is not passed through, then stop deciphering, thus reach the object that control reader reads given content.
4. a kind of website data encryption system according to claim 3, is characterized in that control interface, adopts the html page to judge whether control is installed, if do not install, then control is installed in prompting, if install, then proceeds to the authentication page.
5. a kind of website data encryption system according to claim 4, is characterized in that control is installed, and the page initiatively can once judge whether user installs control in every five seconds; If do not install, the page can provide and prompting is described, user can Auto-mounting control according to explanation; If fail successful installation according to explanation, the page also can provide the link that < downloads control >, and user also can select manual installation control.
6. a website data encryption method, it is characterized in that website private data could be read after authorizing, according to client web site data confidentiality demand, the data deposited on website are encrypted in advance, embedded the reading authority of control access control person again by website, thus reach the requirement could read after private data has to pass through mandate.
7. a kind of website data time slot scrambling according to claim 6, is characterized in that comprising the following steps:
A, client, by Encryption Tool, are encrypted operation by needing the file encrypted in website;
B, website caller, according to page prompts step, are downloaded and are called control;
Whether c, website active testing user can install control, within every five seconds, judge once, if do not install, then point out explanation " 1. this product controls by copyrights of data, and must install control could normally check ", " 2. when control is installed in prompting, wish good health and install control; Please guarantee during installation to stop without fail-safe software, please check whether browser forbids that ActiveX control is installed ", linking button is installed in page display simultaneously, and user clicks " installation " and then automatically downloads and installs control;
After control installation, page prompts illustrates 3 " installation please click button ", and user clicks the installation of " completing " control;
If d user can not illustrate according to the prompting of the page install control, then provide prompting 4 " if installation suggestion cannot be shown; you also directly can click < download control > chain and fetch installation control ", the link channel that the page will provide user independent, downloads control again;
After e, control successful installation, whether prompting is installed control by IE, after clicking " installation ", just can start authentication;
After f, authentication are legal, open deciphering automatically by StartDecrypt function, otherwise call StopDecrypt function and stop deciphering automatically;
After g, unlatching are deciphered automatically, whether control is encrypted according to the content automatic decision browsed, and when browsing encrypted content, control will decipher the content browsed automatically, so that webpage normal browsing.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510482330.3A CN105022652A (en) | 2015-08-03 | 2015-08-03 | Website data encryption system and method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510482330.3A CN105022652A (en) | 2015-08-03 | 2015-08-03 | Website data encryption system and method |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN105022652A true CN105022652A (en) | 2015-11-04 |
Family
ID=54412642
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510482330.3A Pending CN105022652A (en) | 2015-08-03 | 2015-08-03 | Website data encryption system and method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105022652A (en) |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105447365A (en) * | 2015-11-04 | 2016-03-30 | 广东欧珀移动通信有限公司 | Control based privacy protection method and user terminal |
| CN107808002A (en) * | 2017-11-13 | 2018-03-16 | 山东省农村信用社联合社 | A kind of portal website's content Dynamic Distribution and the method for issue |
| CN108829774A (en) * | 2018-05-30 | 2018-11-16 | 东南大学 | A kind of cloud storage ciphertext full-text search method using dual key |
| CN112039662A (en) * | 2020-08-26 | 2020-12-04 | 山谷网安科技股份有限公司 | Symmetric encryption transmission method for sensitive data in Web application webpage of secret-related unit |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1361481A (en) * | 2000-12-28 | 2002-07-31 | 中国科学院计算技术研究所 | Copyright protecting method based on network browser card |
| CN102148775A (en) * | 2010-02-05 | 2011-08-10 | 陈剑峰 | Webpage call service gateway, call service system and method |
| US8386797B1 (en) * | 2002-08-07 | 2013-02-26 | Nvidia Corporation | System and method for transparent disk encryption |
| CN103761486A (en) * | 2013-12-02 | 2014-04-30 | 苗立地 | Electronic file encryption method and device |
| CN104217173A (en) * | 2014-08-27 | 2014-12-17 | 武汉理工大学 | Method of encrypting data and files for browser |
-
2015
- 2015-08-03 CN CN201510482330.3A patent/CN105022652A/en active Pending
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1361481A (en) * | 2000-12-28 | 2002-07-31 | 中国科学院计算技术研究所 | Copyright protecting method based on network browser card |
| US8386797B1 (en) * | 2002-08-07 | 2013-02-26 | Nvidia Corporation | System and method for transparent disk encryption |
| CN102148775A (en) * | 2010-02-05 | 2011-08-10 | 陈剑峰 | Webpage call service gateway, call service system and method |
| CN103761486A (en) * | 2013-12-02 | 2014-04-30 | 苗立地 | Electronic file encryption method and device |
| CN104217173A (en) * | 2014-08-27 | 2014-12-17 | 武汉理工大学 | Method of encrypting data and files for browser |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105447365A (en) * | 2015-11-04 | 2016-03-30 | 广东欧珀移动通信有限公司 | Control based privacy protection method and user terminal |
| CN105447365B (en) * | 2015-11-04 | 2018-05-29 | 广东欧珀移动通信有限公司 | A kind of method for secret protection and user terminal based on control |
| CN107808002A (en) * | 2017-11-13 | 2018-03-16 | 山东省农村信用社联合社 | A kind of portal website's content Dynamic Distribution and the method for issue |
| CN108829774A (en) * | 2018-05-30 | 2018-11-16 | 东南大学 | A kind of cloud storage ciphertext full-text search method using dual key |
| CN112039662A (en) * | 2020-08-26 | 2020-12-04 | 山谷网安科技股份有限公司 | Symmetric encryption transmission method for sensitive data in Web application webpage of secret-related unit |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US9729540B2 (en) | System and method for user authentication | |
| Ye et al. | Security analysis of Internet-of-Things: A case study of august smart lock | |
| CN1956449B (en) | Encipher transmission method and equipment system for preventing copying data resource | |
| CN1909447B (en) | Method for network data communication by using dynamic encryption algorithm | |
| CN105072125B (en) | A kind of http communication system and method | |
| CN106506159A (en) | Encryption method and equipment for key safety | |
| CN109409045B (en) | Safety protection method and device for automatic login account of browser | |
| CN105827574B (en) | A kind of file access system, method and device | |
| CN106304040A (en) | The management method of Mobile solution, device | |
| CN104794388B (en) | application program access protection method and application program access protection device | |
| CN103246850A (en) | Method and device for processing file | |
| CN106878245A (en) | The offer of graphic code information, acquisition methods, device and terminal | |
| CN105022652A (en) | Website data encryption system and method | |
| CN104751538A (en) | Implementation method for opening access controller, and access control system | |
| CN107784207A (en) | Display methods, device, equipment and the storage medium at financial APP interfaces | |
| CN109510702A (en) | A method of it key storage based on computer characteristic code and uses | |
| US9800419B2 (en) | Cryptographic method and system of protecting digital content and recovery of same through unique user identification | |
| CN103929312A (en) | Mobile terminal and method and system for protecting individual information of mobile terminal | |
| US20130031636A1 (en) | Secure game scrambler | |
| CN110572454A (en) | Advertisement delivery system for guaranteeing safety of advertisement delivery process | |
| CN102855419B (en) | The data file copyright guard method of intelligent terminal | |
| US20050246285A1 (en) | Software licensing using mobile agents | |
| CN108701200B (en) | Improved memory system | |
| CN107070842B (en) | Method and system for authenticating surrounding web applications by embedding web applications | |
| JP4409497B2 (en) | How to send confidential information |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20151104 |
|
| RJ01 | Rejection of invention patent application after publication |