CN105656839A - System and method for security protection of mobile terminal based on encryption technology - Google Patents
System and method for security protection of mobile terminal based on encryption technology Download PDFInfo
- Publication number
- CN105656839A CN105656839A CN201410630140.7A CN201410630140A CN105656839A CN 105656839 A CN105656839 A CN 105656839A CN 201410630140 A CN201410630140 A CN 201410630140A CN 105656839 A CN105656839 A CN 105656839A
- Authority
- CN
- China
- Prior art keywords
- module
- mobile terminal
- private key
- management device
- resource management
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Abstract
The invention discloses a system and a method for security protection of a mobile terminal based on an encryption technology. The system is characterized by comprising server side modules: a data storage module, a public and private key pair generation module and a user information storage module; and client modules: a system trusted boot module, a honey pot module, an own resource manager module and a private key storage module. According to the system and the method for security protection of the mobile terminal based on the encryption technology, the security protection performance of the mobile terminal is improved.
Description
Technical field
The present invention relates to a kind of mobile terminal safety safeguard system based on encryption technology and method.
Background technology
Along with further developing of mobile equipment, more user is at use mobile terminal, comprise mobile phone, flat board, notebook computer etc., recent years, the safety problem about mobile equipment was also that everybody discusses maximum problems always, how to ensure that mobile terminal and other mobile terminals or the communication security of common computer and the safety of mobile terminal self have become an important problem.
Therefore, prior art needs to be improved.
Summary of the invention
The present invention is in order to solve the deficiencies in the prior art, it is provided that a kind of mobile terminal safety safeguard system based on encryption technology and method, the security protection performance of lifting mobile terminal.
For solving the problems of the technologies described above, a kind of mobile terminal safety safeguard system based on encryption technology that the embodiment of the present invention provides and method, adopt following technical scheme:
A kind of mobile terminal safety safeguard system based on encryption technology, it is characterised in that, comprising:
Server module: data memory module, public private key pair generation module, subscriber information storing module;
Client modules: system trusted bootstrap module, honey jar module, carry resource supervisor module, private key preserve module.
A kind of mobile terminal safety means of defence based on encryption technology, it is characterised in that, comprise the steps:
S1: first guide safe rdma read to carry out one-level guiding, wherein embeds the SM2 signature that root certificate is used for checking next step charging assembly;
S2: then the SM2 signature of next step charging assembly of system check carries out two grades of starting factor, finally starts kernel program; More than trust chain and ensure that all assemblies in system starting process are destroyed and revise.
S3: use honey jar technology to process the exotic invasive in use procedure, it may also be useful to system core service carries out induction exotic invasive, causes exotic invasive to enter honey jar and runs, remove all data in honey jar thus the normal operation of Deterministic service;
S4: to the protection of mobile terminal data file system, the resource management device using client terminal to carry carries out the management of file, the resource management device carried is different from the resource management device of system itself, avoid by virus infection, the storage space carrying resource management device is only visible to the resource management device carried, and ensures the safety of file;
S5: mobile terminal data encryption and backup, service end generates public, private key pair according to user profile, private key is issued client terminal and is preserved, public key server preserves, user uses the file generated during client terminal to be the encrypted private key of self, and upload to service end to preserve, and during other user interactions, service end provides key to change for this reason.
A kind of mobile terminal safety safeguard system based on encryption technology provided by the invention and method, the security protection performance of lifting mobile terminal.
Accompanying drawing explanation
Fig. 1 is the structural representation of a kind of mobile terminal safety safeguard system based on encryption technology described in the embodiment of the present invention.
Fig. 2 is the step schematic diagram of a kind of mobile terminal safety means of defence based on encryption technology described in the embodiment of the present invention.
Embodiment
The mobile terminal safety safeguard system based on encryption technology and the method that the embodiment of the present invention are supplied to below in conjunction with accompanying drawing are described in detail.
As shown in Figure 1, 2, a kind of mobile terminal safety safeguard system based on encryption technology that the embodiment of the present invention provides, it is characterised in that, comprising:
Server module: data memory module, public private key pair generation module, subscriber information storing module;
Client modules: system trusted bootstrap module, honey jar module, carry resource supervisor module, private key preserve module.
A kind of mobile terminal safety means of defence based on encryption technology, it is characterised in that, comprise the steps:
S1: first guide safe rdma read to carry out one-level guiding, wherein embeds the SM2 signature that root certificate is used for checking next step charging assembly;
S2: then the SM2 signature of next step charging assembly of system check carries out two grades of starting factor, finally starts kernel program; More than trust chain and ensure that all assemblies in system starting process are destroyed and revise.
S3: use honey jar technology to process the exotic invasive in use procedure, it may also be useful to system core service carries out induction exotic invasive, causes exotic invasive to enter honey jar and runs, remove all data in honey jar thus the normal operation of Deterministic service;
S4: to the protection of mobile terminal data file system, the resource management device using client terminal to carry carries out the management of file, the resource management device carried is different from the resource management device of system itself, avoid by virus infection, the storage space carrying resource management device is only visible to the resource management device carried, and ensures the safety of file;
S5: mobile terminal data encryption and backup, service end generates public, private key pair according to user profile, private key is issued client terminal and is preserved, public key server preserves, user uses the file generated during client terminal to be the encrypted private key of self, and upload to service end to preserve, and during other user interactions, service end provides key to change for this reason.
A kind of mobile terminal safety safeguard system based on encryption technology provided by the invention and method, the security protection performance of lifting mobile terminal.
The above; it is only the specific embodiment of the present invention, but protection scope of the present invention is not limited thereto, any it is familiar with those skilled in the art in the technical scope that the present invention discloses; change can be expected easily or replace, all should be encompassed within protection scope of the present invention. Therefore, protection scope of the present invention should described be as the criterion with the protection domain of claim.
Claims (2)
1. the mobile terminal safety safeguard system based on encryption technology, it is characterised in that, comprising:
Server module: data memory module, public private key pair generation module, subscriber information storing module;
Client modules: system trusted bootstrap module, honey jar module, carry resource supervisor module, private key preserve module.
2. the mobile terminal safety means of defence based on encryption technology, it is characterised in that, comprise the steps:
S1: first guide safe rdma read to carry out one-level guiding, wherein embeds the SM2 signature that root certificate is used for checking next step charging assembly;
S2: then the SM2 signature of next step charging assembly of system check carries out two grades of starting factor, finally starts kernel program; More than trust chain and ensure that all assemblies in system starting process are destroyed and revise;
S3: use honey jar technology to process the exotic invasive in use procedure, it may also be useful to system core service carries out induction exotic invasive, causes exotic invasive to enter honey jar and runs, remove all data in honey jar thus the normal operation of Deterministic service;
S4: to the protection of mobile terminal data file system, the resource management device using client terminal to carry carries out the management of file, the resource management device carried is different from the resource management device of system itself, avoid by virus infection, the storage space carrying resource management device is only visible to the resource management device carried, and ensures the safety of file;
S5: mobile terminal data encryption and backup, service end generates public, private key pair according to user profile, private key is issued client terminal and is preserved, public key server preserves, user uses the file generated during client terminal to be the encrypted private key of self, and upload to service end to preserve, and during other user interactions, service end provides key to change for this reason.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410630140.7A CN105656839A (en) | 2014-11-11 | 2014-11-11 | System and method for security protection of mobile terminal based on encryption technology |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410630140.7A CN105656839A (en) | 2014-11-11 | 2014-11-11 | System and method for security protection of mobile terminal based on encryption technology |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN105656839A true CN105656839A (en) | 2016-06-08 |
Family
ID=56483660
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410630140.7A Pending CN105656839A (en) | 2014-11-11 | 2014-11-11 | System and method for security protection of mobile terminal based on encryption technology |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105656839A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106209839A (en) * | 2016-07-08 | 2016-12-07 | 杭州迪普科技有限公司 | The means of defence of invasion message and device |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101137156A (en) * | 2007-10-18 | 2008-03-05 | 中兴通讯股份有限公司 | Information protecting method of mobile terminal |
| CN101969446A (en) * | 2010-11-02 | 2011-02-09 | 北京交通大学 | Mobile commerce identity authentication method |
| CN102685147A (en) * | 2012-05-31 | 2012-09-19 | 东南大学 | Mobile communication honeypot capturing system and implementation method thereof |
| CN102833253A (en) * | 2012-08-29 | 2012-12-19 | 五八同城信息技术有限公司 | Method and server for establishing safe connection between client and server |
-
2014
- 2014-11-11 CN CN201410630140.7A patent/CN105656839A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101137156A (en) * | 2007-10-18 | 2008-03-05 | 中兴通讯股份有限公司 | Information protecting method of mobile terminal |
| CN101969446A (en) * | 2010-11-02 | 2011-02-09 | 北京交通大学 | Mobile commerce identity authentication method |
| CN102685147A (en) * | 2012-05-31 | 2012-09-19 | 东南大学 | Mobile communication honeypot capturing system and implementation method thereof |
| CN102833253A (en) * | 2012-08-29 | 2012-12-19 | 五八同城信息技术有限公司 | Method and server for establishing safe connection between client and server |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106209839A (en) * | 2016-07-08 | 2016-12-07 | 杭州迪普科技有限公司 | The means of defence of invasion message and device |
| CN106209839B (en) * | 2016-07-08 | 2019-08-06 | 杭州迪普科技股份有限公司 | Invade the means of defence and device of message |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US20180176222A1 (en) | User friendly two factor authentication | |
| US9088560B1 (en) | Systems and methods for validating login attempts based on user location | |
| CN104247329B (en) | The safety of the device of cloud service is asked to be remedied | |
| US9009814B1 (en) | Systems and methods for generating secure passwords | |
| US9614847B2 (en) | User authentication | |
| KR101729960B1 (en) | Method and Apparatus for authenticating and managing an application using trusted platform module | |
| CN104333580A (en) | Account management system and method based on cloud service | |
| EP2963958A1 (en) | Network device, terminal device and information security improving method | |
| EP3552131B1 (en) | Password security | |
| CN111245597A (en) | Key management method, system and equipment | |
| CA3083722C (en) | Re-encrypting data on a hash chain | |
| US10200359B1 (en) | Systems and methods for creating credential vaults that use multi-factor authentication to automatically authenticate users to online services | |
| US10313386B1 (en) | Systems and methods for assessing security risks of users of computer networks of organizations | |
| CN109726578B (en) | Dynamic two-dimensional code anti-counterfeiting solution | |
| CN104883341A (en) | Application management device, terminal and application management method | |
| CN105095784A (en) | Terminal data writing and reading methods and devices | |
| CN108549551A (en) | A kind of the startup method, apparatus and equipment of server network interface card | |
| CN112055355A (en) | Internet access password management system based on 5G super SIM card | |
| CN105656839A (en) | System and method for security protection of mobile terminal based on encryption technology | |
| CN104270754A (en) | SIM authentication method and device | |
| CN103514198A (en) | File management method, cloud storage system and cloud terminal server in cloud storage system | |
| CN113078999A (en) | Password security encryption storage mode | |
| CN106909832A (en) | The installation method and device of a kind of application program | |
| CN104010296A (en) | Mobile terminal network protection system and method based on SD card | |
| CN106909401B (en) | Application program control method and device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20160608 |
|
| WD01 | Invention patent application deemed withdrawn after publication |