CN106161383A - A kind of multimedia data encryption, the method and device of deciphering - Google Patents

Abstract

The invention provides the method and device of a kind of multimedia data encryption, deciphering, encryption method therein specifically includes: uses secondary key to be encrypted multi-medium data, is encrypted close stream accordingly；Use this secondary key of one-level double secret key to be encrypted, transmitted key accordingly；It is the close stream of this encryption and this transmission key due to be transmitted in a network, and this one-level key as decruption key is transmitted the most in a network, it is thus able to guarantee the safety that multi-medium data transmits in a network, and then solves the problem that multi-medium data is stolen or distorts；Further, the present invention uses secondary key to be encrypted multi-medium data and uses one-level double secret key secondary key to be encrypted, by increasing capacitance it is possible to increase encrypt the difficulty that close stream is cracked, therefore, it is possible to improve the safety of multi-medium data transmission further.

Description

A kind of multimedia data encryption, the method and device of deciphering

Technical field

The present embodiments relate to networking technology area, particularly relate to a kind of multimedia data encryption, solution Close method and device.

Background technology

In the modern life, network technology brings serious threat, a lot of security information quilts to the secrecy of the network information Other people utilize network to steal so that country and personal information security take a bath, and therefore, it is right to use The encrypted work of network traffic is the most increasingly valued by the people.

The encryption method generally used in prior art is: secure cryptographic algorithm, it uses DES (data Encryption standard, Data Encryption Standard) etc. cipher mode multi-medium data is encrypted, Video file is regarded as common data file by this secure cryptographic algorithm, does not consider the form of video file, Change original information data by DES algorithm, there is the advantage that safety is higher.

But, the encryption key that above-mentioned secure cryptographic algorithm obtains directly have in the transmitting procedure of network by The possibility of hacker attacks (as implanted wooden horse), causes this secure cryptographic algorithm to be cracked, and then causes many The encryption key of media data is tampered or steals.

Summary of the invention

The embodiment of the invention discloses the method and device of a kind of multimedia data encryption, deciphering, to solve The problem that in existing encryption method, encryption key may be tampered or steal.

In order to solve the problems referred to above, a kind of method that the invention provides multimedia data encryption, described side Method includes:

Use secondary key that multi-medium data is encrypted, encrypted close stream accordingly；

Use secondary key described in one-level double secret key to be encrypted, transmitted key accordingly；

The close stream of described encryption and described transmission key is sent to receiving terminal；

Preferably, at described employing secondary key, multi-medium data is encrypted, is encrypted accordingly Secondary key described in the step of close stream and described employing one-level double secret key is encrypted, and is transmitted accordingly Before the step of key, described method also includes:

Described secondary key is timed renewal；

Multi-medium data is encrypted by described employing secondary key, is encrypted the step of close stream accordingly Suddenly, specially use up-to-date secondary key that multi-medium data is encrypted, encrypted close accordingly Stream；

Secondary key described in described employing one-level double secret key is encrypted, and is transmitted key step accordingly Suddenly, specifically, use up-to-date secondary key described in one-level double secret key to be encrypted, passed accordingly Defeated key；

Preferably, described send the close stream of described encryption and the step of described transmission key to receiving terminal, including:

Sending multi-medium data bag to described receiving terminal, wherein, described multi-medium data bag includes: described Encrypt close stream and described transmission key；

Preferably, described one-level key is the key inputted by serial ports.

On the other hand, present invention also offers the decryption method of a kind of multi-medium data, described method includes:

Receive and encrypt close stream and transmission key；

Use transmission key described in local one-level double secret key to be decrypted, obtain decruption key；

Use described decruption key stream close to described encryption to be decrypted, obtain described multi-medium data；

Preferably, described reception encrypts close stream and the step of transmission key, including:

Receiving multi-medium data bag, wherein, described multi-medium data bag includes: the close stream of described encryption and institute State transmission key；

Preferably, the one-level key of described this locality is the key inputted by serial ports.

Another further aspect, present invention also offers the encryption device of a kind of multi-medium data, and described device includes:

Close stream encryption module, is used for using secondary key to be encrypted multi-medium data, obtains corresponding Encrypt close stream；

Cipher key encryption block, is used for using secondary key described in one-level double secret key to be encrypted, and obtains corresponding Transmission key；And

Sending module, for sending the close stream of described encryption and described transmission key to receiving terminal；

Preferably, described device also includes:

More new module, for using secondary key to add multi-medium data in described close stream encryption module Close, encrypted the operation of close stream accordingly and described cipher key encryption block is used described in one-level double secret key two Level key is encrypted, and before being transmitted the operation of key accordingly, it is fixed to carry out described secondary key Shi Gengxin；

The most described close stream encryption module, specifically for using up-to-date secondary key to carry out multi-medium data Encryption, is encrypted close stream accordingly；

Described cipher key encryption block, specifically for using up-to-date secondary key described in one-level double secret key to carry out Encryption, is transmitted key accordingly.

Another aspect, present invention also offers the deciphering device of a kind of multi-medium data, and described device includes:

Receiver module, is used for receiving the close stream of encryption and transmission key；

Cipher key decryption block, for using transmission key described in local one-level double secret key to be decrypted, To decruption key；And

Close stream deciphering module, is used for using described decruption key stream close to described encryption to be decrypted, obtains Described multi-medium data.

Compared with prior art, the present invention includes advantages below:

The present invention uses secondary key to be encrypted multi-medium data, is encrypted close stream accordingly；Adopt It is encrypted with this secondary key of one-level double secret key, is transmitted key accordingly；Owing to entering in a network Row transmission is the close stream of this encryption and this transmission key, and this one-level key as decruption key does not exist Network is transmitted, therefore, it is possible to guarantee the safety that multi-medium data transmits in a network, and then solves The problem that multi-medium data of having determined is stolen or distorts；Further, the present invention uses secondary key to multimedia Data are encrypted and use one-level double secret key secondary key to be encrypted, by increasing capacitance it is possible to increase encrypt close stream and broken The difficulty solved, therefore, it is possible to improve the safety of multi-medium data transmission further.

Accompanying drawing explanation

Fig. 1 is the steps flow chart of the embodiment of the method one of a kind of multimedia data encryption that the present invention provides Figure；

Fig. 2 is the steps flow chart of the embodiment of the method three of a kind of multi-medium data deciphering that the present invention provides Figure；

Fig. 3 is that a kind of multimedia data encryption of providing of the present invention, the principle of decryption method embodiment four are shown It is intended to；

Fig. 4 is multimedia data encryption, the method for deciphering during a kind of video conference that the present invention provides The flow chart of embodiment five；

Fig. 5 is the structural representation of the device embodiment one of a kind of multimedia data encryption that the present invention provides Figure；

Fig. 6 is that the structure of the device embodiment two of a kind of multi-medium data key updating that the present invention provides is shown It is intended to；And

Fig. 7 is the structural representation of the device embodiment three of a kind of multi-medium data deciphering that the present invention provides Figure.

Detailed description of the invention

Understandable for enabling the above-mentioned purpose of the present invention, feature and advantage to become apparent from, below in conjunction with attached The present invention is further detailed explanation with detailed description of the invention for figure.

Under internet environment, multi-medium data likely can be intercepted and captured by hacker in network transmission process, Thus cause being stolen or distorting of this multi-medium data, such as, in video conference, audio/video flow exists Network may be intercepted and captured by hacker thus be reduced out conference content, particularly with for concerning security matters meeting this The safety of its conference content transmission will be had a strong impact on.

A kind of method that the invention provides multimedia data encryption, uses secondary key to multi-medium data It is encrypted, is encrypted close stream accordingly；The one-level double secret key inputted by RS232 serial ports by outside This secondary key is encrypted, and is transmitted key accordingly；It is this due to be transmitted in a network Encrypt close stream and this transmission key, and this one-level key as decruption key passes the most in a network Defeated, therefore, it is possible to guarantee the safety that multi-medium data transmits in a network, and then solve multimedia number According to the problem being stolen or distort；Further, the present invention uses secondary key to be encrypted multi-medium data It is encrypted with using one-level double secret key secondary key, by increasing capacitance it is possible to increase encrypt the difficulty that close stream is cracked, because of This can improve the safety of multi-medium data transmission further.

With reference to Fig. 1, it is shown that the step of the embodiment of the method one of a kind of multimedia data encryption of the present invention Flow chart, specifically may include steps of:

Multi-medium data is encrypted by step 101, employing secondary key, is encrypted close stream accordingly；

Before multi-medium data transmits in a network, can use secondary key that described multi-medium data is entered Row encryption, is encrypted close stream accordingly, and wherein, the close stream of described encryption refers specifically to through described two grades Multi-medium data after key encryption.

In implementing, described secondary key can by FPGA (field programmable gate array, Filed-Programmable Gate Array) individually randomly generate inside encrypting module.

The mode that described multi-medium data is encrypted by described secondary key specifically may include that 3DES Encryption or AES encryption etc..

Wherein, des encryption algorithm is a kind of block algorithm using key to encrypt, and they can be by 64 (8 Byte) plaintext input block become the ciphertext IOB of 64, the key of use is also 64.3DES Also known as Triple DES, it is the common name of triple DEA block encryption, is the one of des encryption algorithm Kind, it is with DES as basic module, designs block encryption algorithm by combination group technology, use The data key of 3 56 (7 bytes) carries out Tertiary infilling.

AES (Advanced Encryption Standard, AdcancedEncryptionStandard) AES is a kind of district Block encryption standard, use symmetric block ciphers system, AES encryption algorithm based on arrangement and in-place computation, Can use 128,192 and 256 is key, and 128 (16 byte) block encryption data.

It is appreciated that above-mentioned 3DES encryption or AES encryption are intended only as example, it practice, this area Technical staff can use arbitrary AES according to actual needs, and the embodiment of the present invention is to using two grades The concrete cipher mode that double secret key multi-medium data is encrypted is not any limitation as.

Secondary key described in step 102, employing one-level double secret key is encrypted, and is transmitted close accordingly Key；

In implementing, can use outside by RS232 serial ports or the one of the input of RS485 serial ports Secondary key described in level double secret key is encrypted, and is transmitted key accordingly, and wherein, described transmission is close Key refers specifically to the secondary key after one-level key is encrypted.

It is appreciated that above-mentioned RS232 serial ports or RS485 serial ports are intended only as example, it practice, this Skilled person can use the serial ports of any kind according to actual needs, and the embodiment of the present invention is to outside The concrete serial ports that the one-level double secret key secondary key inputted by serial ports is encrypted is not any limitation as.

In actual applications, the cipher mode that secondary key described in described one-level double secret key is encrypted is concrete 3DES encryption can be included or use AES encryption etc..

Step 103, send the close stream of described encryption and described transmission key to receiving terminal.

At described employing secondary key, multi-medium data is encrypted, obtains encrypting close stream and described employing One-level double secret key secondary key is encrypted, and after obtaining transmitting key, sends described encryption to receiving terminal Key and described transmission key.

The present invention have employed twice 3DES or AES encryption, i.e. use secondary key to multi-medium data It is encrypted and uses one-level double secret key secondary key to be encrypted, drastically increase current multimedia number According to the safety transmitted in a network, need about 232 groups according to being currently known the optimal attack to 3DES Known 2113,290 des encryptions and 288 internal memories can crack in plain text, need Expending huge operand, namely add the difficulty that the close stream of encryption is cracked, therefore the present invention uses two Level double secret key multi-medium data is encrypted and uses one-level double secret key secondary key to be encrypted, it is possible to enter One step improves the safety of multi-medium data transmission.

In sum, use secondary key that multi-medium data is encrypted, encrypted close stream accordingly； Use one-level double secret key secondary key to be encrypted, transmitted key accordingly；Send to receiving terminal and add Close stream and transmission key.The present invention by transmit in a network be encrypted after the close stream of encryption that obtains With transmission key, and one-level key can be inputted by RS232 serial ports or RS485 serial ports by outside, Be transmitted the most in a network, then hacker encrypts close stream and the transmission deciphering that obtains of key is close by cracking Key, can not crack this multi-medium data, because being unable to steal or distort correct multi-medium data, Thus the present invention is able to ensure that multi-medium data safe transmission in a network.

Specifically discuss with embodiment below and secondary key be timed update method:

For the renewal of key in prior art, it is based on the ciphering multimedia suspecting certain logic channel In the case of data are given away secrets, any receiving terminal receiving this multi-medium data all can pass through Encryption Update Request (the encrypting more newly requested) key that command request is new；Transmitting terminal receives encryption more After newly requested, more new information can be encrypted to the receiving terminal transmission sending encryption more newly requested (EncryptionUpdate), this encryption more new information comprises H.235 key, be to use ASN.1 to compile Code, for opaque byte information string, have employed new password and AES, and (real by RTP Time host-host protocol, Real-time Transport Protocol) notice receiving terminal newly-installed for key reconsul Password and data type；Sending should be as early as possible after the more newly requested terminal of encryption receives this encryption more new information Use new key on logical channels.In the process, key is new password and algorithm are in the mistake sent Journey may be intercepted and captured by hacker and cause this multi-medium data to be tampered or steal, and if receiving terminal do not have Have and use new key the most on logical channels, may result in original multi-medium data by Distort or steal.

For this kind of situation, the embodiment of the present invention two have employed the method for timing renewal secondary key and prevents Multi-medium data is tampered or steals, and is specifically as follows:

At described employing secondary key, multi-medium data is encrypted, is encrypted the step of close stream accordingly Rapid and described employing one-level double secret key secondary key is encrypted, transmitted accordingly key step it Before, described method can also include:

Described secondary key is timed renewal；

Once updating described secondary key section at set intervals, described one-level double secret key is up-to-date Secondary key is encrypted, and the described secondary key being encrypted described multi-medium data is also described Up-to-date secondary key；

Then step 101 is specifically as follows, and uses up-to-date secondary key to be encrypted multi-medium data, Encrypted close stream accordingly；

Accordingly, step 102 is specifically as follows, and uses up-to-date secondary key described in one-level double secret key to enter Row encryption, is transmitted key accordingly.

The present invention is timed renewal to secondary key, it is ensured that enter using one-level double secret key secondary key During multi-medium data is encrypted by row encryption and employing secondary key, it is ensured that secondary key Safety, has further assured that the safe transmission of multi-medium data.

The decryption method of multi-medium data is specifically discussed below with embodiment:

With reference to Fig. 2, it is shown that the step of the embodiment of the method three of a kind of multi-medium data deciphering of the present invention Flow chart, specifically may include steps of:

Step 201, reception encrypt close stream and transmission key；

The close stream of encryption of receiving terminal receiving end/sending end transmission and transmission key.

Step 202, use and transmit key described in local one-level double secret key and be decrypted, obtain deciphering close Key；

Use and transmit described in the one-level double secret key of RS232 serial ports or RS485 input locally by outside Key is decrypted, and obtains described decruption key, wherein, described decruption key refer to in ciphering process Corresponding described up-to-date secondary key.

Described in the described one-level double secret key passing through RS232 serial ports or the input of RS485 serial ports locally by outside The mode that transmission key is decrypted, can be based on secondary key described in above-mentioned employing described one-level double secret key The cipher mode used when being encrypted is all 3DES or AES encryption etc..

Step 203, use described decruption key stream close to described encryption to be decrypted, obtain described many matchmakers Volume data.

When the described one-level double secret key institute inputted by RS232 serial ports or RS485 serial ports locally by outside State transmission key to be decrypted, after obtaining described decruption key, use described decruption key to add described Close stream is decrypted, and then obtains corresponding multi-medium data.

The mode that described decruption key stream close to described encryption is decrypted, is based on above-mentioned employing described two The cipher mode that multi-medium data described in level double secret key is used when being encrypted is all 3DES or AES Encryption etc..

The principle of multimedia data encryption, decryption method is specifically discussed below with embodiment:

With reference to Fig. 3, it is shown that a kind of multimedia data encryption of the present invention, decryption method embodiment four Principle schematic, specifically may include that

Send to receiving terminal to encrypt close stream and transmit key and specifically include:

Sending multi-medium data bag to described receiving terminal, wherein, described multi-medium data bag includes: described Encrypt close stream and described transmission key.

At the close stream of described encryption and described transmission key during sending to described receiving terminal, it is by institute State and encrypt close stream and the described transmission key form as an overall multi-medium data bag to described reception End send, wherein, described transmission key may be located in the packet header of described multi-medium data bag, described in add Close stream may be located in the inclusion of described multi-medium data bag.

Such as, E K1 (E K2 (1)) be in first multi-medium data bag with k1 to K2 (1) Carry out 3DES or AES encryption, transmitted key accordingly；Wherein, k1 refers to be passed through by outside The one-level key of RS232 serial ports input, K2 (1) refers to be encrypted mould in the T1 moment by each FPGA The up-to-date secondary key individually randomly generated inside block；

E K2 (1) (code stream) be the T1 moment with k2 to first multimedia volume data bag in corresponding Multi-medium data is encrypted, and is encrypted close stream accordingly.

……

E K1 (E K2 (n)) is to carry out K2 (n) with k1 in the n-th multi-medium data bag 3DES or AES encryption, transmitted key accordingly, and K2 (n) refers in the Tn moment by each The internal up-to-date secondary key individually produced at any time of FPGA encrypting module；

EK2 (n) (code stream) be in the Tn moment with the k2 in the n-th multi-medium data bag to accordingly Multi-medium data is encrypted, and is encrypted close stream accordingly.

Transmitting terminal can send multiple multi-medium data bags to receiving terminal, in each multi-medium data bag simultaneously Comprise the close stream of respective encryption and transmission key.

Described receiving terminal receives described transmitting terminal and sends the plurality of multi-medium data bag of coming, described reception Stream close to described encryption and described transmission key is held to be decrypted.

Described multi-medium data bag includes and encrypts close stream and the corresponding transmission of stream close with described encryption Key, first, uses local outside RS232 serial ports or the input of RS485 serial ports to described transmission key One-level key be decrypted, obtain corresponding decruption key, described decruption key correspond to encryption time Used described up-to-date secondary key；Then use described decruption key to same multi-medium data The close stream of encryption in bag is decrypted, and then obtains corresponding multi-medium data.

Such as, Dk1 (Ek1 (k2 (1))) is close to transmission for using k1 in first multi-medium data bag Key Ek1 (k2 (1)) is decrypted, and obtains corresponding decruption key k2 (1)；Herein, k1 refers to The outside one-level key inputted by RS232 serial ports in receiving terminal this locality；

Dk2 (code stream) is for using k2 to be decrypted encrypting close stream in first multi-medium data bag, Obtain corresponding multi-medium data.

……

Dk1 (Ek1 (k2 (n))) is for using k1 to carry out transmission key in the n-th multi-medium data bag Deciphering, obtains corresponding decruption key；

Dk2 (code stream) is to be decrypted encrypting close stream for the n-th multi-medium data bag k2, To corresponding multi-medium data.

In sum, the present invention uses secondary key to be encrypted multi-medium data, uses one-level key Described secondary key is encrypted, have employed twice 3DES or AES encryption；And described one-level is close Key is obtained by RS232 serial ports or the input of RS485 serial ports by outside, carries out the most in a network Transmission such that it is able to ensure multi-medium data safe transmission in a network；Further, the present invention is directed to one Individual multi-medium data bag is transmitted in a network, includes corresponding multi-medium data and transmission key (i.e. decruption key), even if the breaking cryptographic keys obtained by hack, can not obtain this multimedia number According to, further ensure the safe transmission of multi-medium data.

Below by concrete illustrating the multimedia data encryption of the present invention, the reality of decryption method should With:

With reference to Fig. 4, it is shown that multimedia data encryption, deciphering during a kind of video conference of the present invention The flow chart of embodiment of the method five, specifically may include that

Regarding in networking conference system at one, Set Top Box (i.e. terminal) first should be built with depending on networked server Vertical network connects, and then receives the audio, video data of its other Set Top Boxes forwarded from server, and to sound Video data carries out encoding and decoding, also sends local photographic head and mic (mike, Microphone) simultaneously Gather the coding audio/video data of image；The audio, video data sent depending on networked server receiving set up box, And this audio, video data is carried out mixed processing, obtain corresponding network flow, and this regards connection to be sent to access All Set Top Boxes of network server；Set Top Box receives and regards the network flow that networked server sends, and by this net Network stream is processed into corresponding audio frequency and video, and then shows on the display screen of terminal.

In actual applications, audio, video data is encrypted, the idiographic flow of deciphering is:

Step S1, audio, video data is encrypted；

In regarding networking conference system, secondary key can be carried out by the encryption equipment that transmitting terminal Set Top Box above connects The renewal of timing, and the audio, video data gathering the local photographic head sent and mic is used up-to-date Secondary key is encrypted, and obtains corresponding audio, video data source, and this encryption equipment uses outside passing through Up-to-date secondary key described in the one-level double secret key of RS232 serial ports or the input of RS485 serial ports is encrypted, Obtain corresponding transmitting terminal transmission key；Described transmitting terminal Set Top Box is by described audio, video data source and described Transmitting terminal transmission key is integrated and is obtained an audio, video data bag, and is sent to regarding networked server.

Described audio, video data bag is processed by step S2, videoconference server, obtains corresponding Network flow；

Described regarding the networked server described audio, video data bag of reception, the encryption above connect depending on networked server Chance is decrypted process to this audio, video data bag, by depending on passing through outside networked server this locality The described transmitting terminal transmission key that the one-level double secret key of RS232 serial ports or the input of RS485 serial ports receives enters Row deciphering, obtains corresponding decruption key, and described decruption key is for entering described up-to-date secondary key Row deciphering, obtains corresponding audio, video data source；

Depending on networked server, the described audio, video data source obtained after deciphering is carried out mixed processing, obtain phase The network flow answered；

After obtaining described network flow, the encryption equipment above accessed depending on networked server is again to described network Stream is encrypted, and uses up-to-date secondary key to be encrypted described network flow, obtains corresponding Encrypt close stream, use to regard and gone here and there by RS232 serial ports or RS485 by outside outside networked server this locality Up-to-date secondary key described in the one-level double secret key of mouth input is encrypted, and obtains regarding accordingly the Internet services Device transmission key；Depending on networked server, close for described encryption stream is whole regarding networked server transmission key with described The network flow bag being integrated, and described network flow bag is sent to the Set Top Box of described receiving terminal.

Step S3, described network flow bag is decrypted.

The Set Top Box of described receiving terminal receives described network flow bag, and passes through by outside receiving terminal this locality It is described regarding networked server transmission that the one-level double secret key of RS232 serial ports or the input of RS485 serial ports receives Key is decrypted, and obtains corresponding decruption key, and described decruption key is for flowing to described encryption is close Row deciphering, and then obtain the corresponding audio, video data sent with transmitting terminal.

Such as, holding the video conference of 8 terminals in depending on networking, these 8 terminals all access and regard Networked server, connects an encryption equipment before each terminal, the encryption equipment of each terminal can to video bag and Audio packet data field carries out encryption and decryption.

Present invention employs the mode of twice 3DES or AES encryption, it is ensured that multi-medium data is at network In the safety that is transmitted.

The structure of multimedia data encryption device is specifically discussed below with embodiment:

With reference to Fig. 5, it is shown that the structure of the device embodiment one of a kind of multimedia data encryption of the present invention Schematic diagram, specifically may include that

Close stream encryption module 501, is used for using secondary key to be encrypted multi-medium data, obtains phase The close stream of encryption answered；

Cipher key encryption block 502, is used for using secondary key described in one-level double secret key to be encrypted, obtains Transmit key accordingly；

Sending module 503, for sending the close stream of described encryption and described transmission key to receiving terminal.

This embodiment describes multimedia data encryption device, transmit it in a network at multi-medium data Before, described close stream encryption module 501, state secondary key by employing and multi-medium data is encrypted, Encrypted close stream accordingly；Described cipher key encryption block 502, outside by RS232 serial ports by using Or RS485 serial ports input one-level double secret key described in secondary key be encrypted transmitted accordingly close Key；Transmitting terminal using close for described encryption stream and described transmission key as the shape of an overall multi-medium data bag Formula, wherein, described transmission key may be located in the packet header of described multi-medium data bag, and described encryption is close Stream may be located in the inclusion of described multi-medium data bag, and by described sending module 503 to receiving terminal Send described multi-medium data bag.

By using secondary key multi-medium data is encrypted and uses one-level double secret key in the present invention Secondary key is encrypted, it is ensured that multi-medium data safe transmission in a network.

The description of the embodiment of the method six of a kind of multimedia data encryption that the present invention provides, with embodiment In one, the description process for method is identical, can be specifically described by the description of preceding method, This does not repeats, cross-referenced.

The apparatus structure of key updating is specifically discussed below with embodiment:

With reference to Fig. 6, it is shown that the device embodiment two of a kind of multi-medium data key updating of the present invention Structural representation, specifically may include that

More new module 601, for being timed renewal to secondary key；

Close stream encryption module 602, for using up-to-date secondary key that multi-medium data is encrypted, Encrypted close stream accordingly；

Cipher key encryption block 603, for using secondary key up-to-date described in one-level double secret key to be encrypted, Transmitted key accordingly；

Sending module 604, for sending the close stream of described encryption and described transmission key to receiving terminal.

Before described close stream encryption module 602 and described cipher key encryption block 603, described device also wraps Include: described more new module 601, the most described secondary key is once updated, then That use in the most described close stream encryption module 602 and described cipher key encryption block 603 is all up-to-date two Level key.

The present invention, by updating the timing of secondary key, has further assured that multi-medium data is at network In safe transmission.

The description of the embodiment of the method seven of a kind of multimedia data encryption that the present invention provides, with embodiment In two, the description process for method is identical, can be specifically described by the description of preceding method, This does not repeats, cross-referenced.

Specifically discuss with embodiment below multi-medium data deciphering device structure:

With reference to Fig. 7, it is shown that the structure of the device embodiment three of a kind of multi-medium data deciphering of the present invention Schematic diagram, specifically may include that

Receiver module 701, is used for receiving the close stream of encryption and transmission key；

Cipher key decryption block 702, for using transmission key described in local one-level double secret key to be decrypted, Obtain decruption key；

Close stream deciphering module 703, is used for using described decruption key stream close to described encryption to be decrypted, Obtain described multi-medium data.

The close stream of described encryption of the described receiver module 701 receiving end/sending end transmission of receiving terminal and described transmission Key；The outside being used this locality by cipher key decryption block 702 is gone here and there by RS232 serial ports or RS485 Transmit key described in the one-level double secret key of mouth input to be decrypted, obtain corresponding decruption key；And lead to Crossing described close stream deciphering module 703 uses described decruption key stream close to described encryption to be decrypted, and obtains Corresponding multi-medium data.

In actual applications, described cipher key decryption block 702 and described close stream deciphering module 703 are used Manner of decryption, when being based on the described secondary key of above-mentioned employing, described multi-medium data to be encrypted and The cipher mode using secondary key described in described one-level double secret key to be used when being encrypted is all 3DES Or AES encryption etc..

The description of the embodiment of the method eight of a kind of multi-medium data deciphering that the present invention provides, with embodiment In three, the description process for method is identical, can be specifically described by the description of preceding method, This does not repeats, cross-referenced.

In sum, the embodiment of the present invention a kind of method based on multimedia data encryption, use two grades close Multi-medium data is encrypted by key, is encrypted close stream accordingly；Defeated by RS232 serial ports by outside This secondary key of one-level double secret key entered is encrypted, and is transmitted key accordingly；Due in a network Be transmitted is the close stream of this encryption and this transmission key, and as decruption key this one-level key not It is transmitted in a network, therefore, it is possible to guarantee the safety that multi-medium data transmits in a network, and then Solve the problem that multi-medium data is stolen or distorts；Further, the present invention uses secondary key to many matchmakers Volume data is encrypted and uses one-level double secret key secondary key to be encrypted, by increasing capacitance it is possible to increase encrypt close stream quilt The difficulty cracked, therefore, it is possible to improve the safety of multi-medium data transmission further.

For device embodiment, due to itself and embodiment of the method basic simlarity, so the ratio described Relatively simple, relevant part sees the part of embodiment of the method and illustrates.

Each embodiment in this specification all uses the mode gone forward one by one to describe, and each embodiment stresses Be all the difference with other embodiments, between each embodiment, identical similar part sees mutually ?.

Those skilled in the art are it should be appreciated that the embodiment of the embodiment of the present application can be provided as method, dress Put or computer program.Therefore, the embodiment of the present application can use complete hardware embodiment, completely Software implementation or the form of the embodiment in terms of combining software and hardware.And, the embodiment of the present application Can use and can be situated between with storage at one or more computers wherein including computer usable program code The upper computer journey implemented of matter (including but not limited to disk memory, CD-ROM, optical memory etc.) The form of sequence product.

In a typical configuration, described computer equipment includes one or more processor (CPU), input/output interface, network interface and internal memory.Internal memory potentially includes computer-readable medium In volatile memory, the shape such as random access memory (RAM) and/or Nonvolatile memory Formula, such as read only memory (ROM) or flash memory (flash RAM).Internal memory is computer-readable medium Example.Computer-readable medium includes removable media permanent and non-permanent, removable and non- Information storage can be realized by any method or technology.Information can be computer-readable instruction, Data structure, the module of program or other data.The example of the storage medium of computer includes, but Be not limited to phase transition internal memory (PRAM), static RAM (SRAM), dynamic random are deposited Access to memory (DRAM), other kinds of random access memory (RAM), read only memory (ROM), Electrically Erasable Read Only Memory (EEPROM), fast flash memory bank or other in Deposit technology, read-only optical disc read only memory (CD-ROM), digital versatile disc (DVD) or other Optical storage, magnetic cassette tape, tape magnetic rigid disk storage other magnetic storage apparatus or any its His non-transmission medium, can be used for the information that storage can be accessed by a computing device.According to herein Defining, computer-readable medium does not include the computer readable media (transitory media) of non-standing, Data signal and carrier wave such as modulation.

The embodiment of the present application is with reference to the method according to the embodiment of the present application, terminal unit (system) and meter The flow chart of calculation machine program product and/or block diagram describe.It should be understood that can be by computer program instructions Each flow process in flowchart and/or block diagram and/or square frame and flow chart and/or square frame Flow process in figure and/or the combination of square frame.Can provide these computer program instructions to general purpose computer, The processor of special-purpose computer, Embedded Processor or other programmable data processing terminal equipment is to produce One machine so that performed by the processor of computer or other programmable data processing terminal equipment Instruction produce for realizing at one flow process of flow chart or multiple flow process and/or one square frame of block diagram or The device of the function specified in multiple square frames.

These computer program instructions may be alternatively stored in and computer or other programmable datas can be guided to process In the computer-readable memory that terminal unit works in a specific way so that be stored in this computer-readable Instruction in memorizer produces the manufacture including command device, and this command device realizes flow chart one The function specified in flow process or multiple flow process and/or one square frame of block diagram or multiple square frame.

These computer program instructions also can be loaded into computer or other programmable data processing terminals set Standby upper so that on computer or other programmable terminal equipment, to perform sequence of operations step in terms of producing The process that calculation machine realizes, thus the instruction performed on computer or other programmable terminal equipment provides and uses In realizing in one flow process of flow chart or multiple flow process and/or one square frame of block diagram or multiple square frame The step of the function specified.

Although having been described for the preferred embodiment of the embodiment of the present application, but those skilled in the art being once Know basic creative concept, then these embodiments can be made other change and amendment.So, Claims are intended to be construed to include preferred embodiment and fall into the institute of the embodiment of the present application scope There are change and amendment.

Finally, in addition it is also necessary to explanation, in this article, the relation art of such as first and second or the like Language is used merely to separate an entity or operation with another entity or operating space, and not necessarily Require or imply relation or the order that there is any this reality between these entities or operation.And And, term " includes ", " comprising " or its any other variant are intended to comprising of nonexcludability, from And make to include that the process of a series of key element, method, article or terminal unit not only include that those are wanted Element, but also include other key elements being not expressly set out, or also include for this process, side The key element that method, article or terminal unit are intrinsic.In the case of there is no more restriction, by statement The key element that " including one ... " limits, it is not excluded that including the process of described key element, method, thing Product or terminal unit there is also other identical element.

A kind of multimedia data encryption, the method for deciphering and the dress above embodiment of the present invention provided Putting, be described in detail, specific case used herein is to the principle of the present invention and embodiment Being set forth, the explanation of above example is only intended to help to understand method and the core thereof of the present invention Thought；Simultaneously for one of ordinary skill in the art, according to the thought of the present invention, concrete real Executing and all will change in mode and range of application, in sum, this specification content should not be understood For limitation of the present invention.

Claims (10)

1. the encryption method of a multi-medium data, it is characterised in that including:

Use secondary key that multi-medium data is encrypted, encrypted close stream accordingly；

Use secondary key described in one-level double secret key to be encrypted, transmitted key accordingly；

The close stream of described encryption and described transmission key is sent to receiving terminal.

Method the most according to claim 1, it is characterised in that at described employing secondary key pair Multi-medium data is encrypted, and is encrypted step and the described employing one-level double secret key institute of close stream accordingly Stating secondary key to be encrypted, before being transmitted the step of key accordingly, described method also includes:

Described secondary key is timed renewal；

Multi-medium data is encrypted by described employing secondary key, is encrypted the step of close stream accordingly Suddenly, specially use up-to-date secondary key that multi-medium data is encrypted, encrypted close accordingly Stream；

Secondary key described in described employing one-level double secret key is encrypted, and is transmitted key step accordingly Suddenly, specifically, use up-to-date secondary key described in one-level double secret key to be encrypted, passed accordingly Defeated key.

Method the most according to claim 1, it is characterised in that described described to receiving terminal transmission Encrypt close stream and the step of described transmission key, including:

Sending multi-medium data bag to described receiving terminal, wherein, described multi-medium data bag includes: described Encrypt close stream and described transmission key.

Method the most according to claim 1, it is characterised in that described one-level key is by string The key of mouth input.

5. the decryption method of a multi-medium data, it is characterised in that including:

Receive and encrypt close stream and transmission key；

Use transmission key described in local one-level double secret key to be decrypted, obtain decruption key；

Use described decruption key stream close to described encryption to be decrypted, obtain described multi-medium data.

Method the most according to claim 5, it is characterised in that close stream and biography are encrypted in described reception The step of defeated key, including:

Receiving multi-medium data bag, wherein, described multi-medium data bag includes: the close stream of described encryption and institute State transmission key.

Method the most according to claim 5, it is characterised in that the one-level key of described this locality is The key inputted by serial ports.

8. the encryption device of a multi-medium data, it is characterised in that including:

Close stream encryption module, is used for using secondary key to be encrypted multi-medium data, obtains corresponding Encrypt close stream；

Cipher key encryption block, is used for using secondary key described in one-level double secret key to be encrypted, and obtains corresponding Transmission key；And

Sending module, for sending the close stream of described encryption and described transmission key to receiving terminal.

Device the most according to claim 8, it is characterised in that described device also includes:

More new module, for using secondary key to add multi-medium data in described close stream encryption module Close, encrypted the operation of close stream accordingly and described cipher key encryption block is used described in one-level double secret key two Level key is encrypted, and before being transmitted the operation of key accordingly, it is fixed to carry out described secondary key Shi Gengxin；

The most described close stream encryption module, specifically for using up-to-date secondary key to carry out multi-medium data Encryption, is encrypted close stream accordingly；

Described cipher key encryption block, specifically for using up-to-date secondary key described in one-level double secret key to carry out Encryption, is transmitted key accordingly.

10. the deciphering device of a multi-medium data, it is characterised in that including:

Receiver module, is used for receiving the close stream of encryption and transmission key；

Cipher key decryption block, for using transmission key described in local one-level double secret key to be decrypted, To decruption key；And

Close stream deciphering module, is used for using described decruption key stream close to described encryption to be decrypted, obtains Described multi-medium data.