CN106209835B - Peer-to-peer network communication system and method - Google Patents
Peer-to-peer network communication system and method Download PDFInfo
- Publication number
- CN106209835B CN106209835B CN201610538484.4A CN201610538484A CN106209835B CN 106209835 B CN106209835 B CN 106209835B CN 201610538484 A CN201610538484 A CN 201610538484A CN 106209835 B CN106209835 B CN 106209835B
- Authority
- CN
- China
- Prior art keywords
- channel
- customer end
- telecommunication customer
- public
- private key
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/06—Network architectures or network communication protocols for network security for supporting key management in a packet data network
- H04L63/061—Network architectures or network communication protocols for network security for supporting key management in a packet data network for key exchange, e.g. in peer-to-peer networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3247—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer And Data Communications (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The present invention provides a kind of peer-to-peer network communication system and method, the system comprises peer-to-peer networks and several telecommunication customer ends, the telecommunication customer end includes: that initiation unit is built in channel, for generating the first public private key pair, occasional passage identity information is sent by forward node to establish occasional passage, public key is exchanged by occasional passage, generates and sends formal channel identity information and third public private key pair to establish formal channel;Response unit is built in channel, for generating the second public private key pair, is received occasional passage identity information to establish occasional passage, is exchanged public key by occasional passage, receive formal channel identity information and third public private key pair to establish formal channel;Communication unit, for sending third public key to forward node for verifying;It receives message and is decrypted with private key;With the obtained public key encryption message to be sent of exchange, and with third private key signature, sent by formal channel.The present invention is not necessarily to centralized server, while operating without registering and logging.
Description
Technical field
This application involves technical field of network communication, and in particular to a kind of peer-to-peer network communication system and method.
Background technique
The communication mode of current 90% instant message applications (Instant Messaging, abbreviation IM) be all it is centralized,
Its login mode requires user and carries out authentication, such as need to log in by phone number login, username and password etc..
Current authentication mode is relatively simple, requires to be verified by centralized server.It is exemplified below two kinds presently the most
Common login mode.
One, centralised login mode
By taking MSN Messenger as an example, the program on user's microcomputer is referred to as MSN Messenger client, the visitor
Family end is connected to a MSN Messenger server by Internet.That is, the client passes through the server and its
His client interactive information.The client of user conversates with server, these session informations are then handled by server
And notify the client of other users.
Fig. 1 is the communication schematic diagram that MSN Messenger client logs in.As shown in Figure 1, the service implement body packet
It includes:
Dispatching server (Dispatch Server, abbreviation DS server).DS server is the clothes that client initially connects
Business device is responsible for distributing suitable notice server to client.Domain name is messenger.hotmail.com, standards service end
Mouth is 1863.After task is sent in completion, TCP connection is cut off.
It notifies server (Notification Server, abbreviation NS server).The purpose of NS server mainly retains
The online information of user, there are also the information of other users important persons of concern.Including logging in, change state, obtain user
List, initiates chat, receives calling, mail notification, exits modification user information.Notice server equally also provides other
Notice service, such as the new mail prompt and creation or addition session of Hotmail etc..Serve port is specified by dispatching server,
Generally also 1863.
Wiring server (Switchboard Server, abbreviation SS server).SS server is for saving each user's
Instant session information, in other words, the user in each MSN are correspondingly connected with into the session of a shared power board.Therefore, this
In be also considered as chatting between client the transfer server used.
By the above MSN communication process logged in it is found that centralised login mode is needed through centralized server come complete
At, while logging in and username and password is needed to be verified.
Two, open authorization login mode
Open authorization (Open Authorization, abbreviation OAuth) is pacified for the Authorization definition of user resources one
Entirely, open and simple standard, third party are not necessarily to know the account and password of user, so that it may get the authorization message of user.
Fig. 2 is a kind of schematic diagram of open authorization login mode.As shown in Fig. 2, most common in currently available technology open
Authorization login mode is put to include the following steps (by taking QQ is authorized as an example):
User accesses third party website, which provides the login mode logged in using QQ;
After user clicks QQ login, third party website server will connect authorized party's (QQ) server and make requests;
User gives authorized party (QQ) server authorization third party website in the page jumped out and accesses user information
Permission;
Authorized party's (QQ) server provides the user information by authorization to third party website server.
Above-mentioned login mode also needs the authorized party's server and third-party server of centralization, and logs in and need to pass through
The verifying of authorized party's server.
Summary of the invention
In view of drawbacks described above in the prior art or deficiency, one kind is intended to provide without centralized server, is not necessarily to simultaneously
User, which carries out registering and logging operation, can ensure the peer-to-peer network communication system and method for communication security.
In a first aspect, the present invention provides a kind of telecommunication customer end, the telecommunication customer end includes:
Initiation unit is built in channel, for generating the first public private key pair, is communicated by several forward node to second
Client sends occasional passage identity information to establish occasional passage, passes through leading to for the occasional passage and the second telecommunication customer end
Response unit exchange public key is built in road, generates and sends formal channel identity information and the public and private key of third corresponding to formal channel
To establish formal channel;Wherein, first public private key pair includes the first public key and the first private key;
Response unit is built in channel, for generating the second public private key pair, is received the first telecommunication customer end and is passed through several forwardings
The occasional passage identity information that node is sent passes through the occasional passage and first telecommunication customer end to establish occasional passage
Channel build and initiate elements exchange public key, and receive formal channel identity information and the public and private key of third corresponding to formal channel
To establish formal channel;Wherein, second public private key pair includes the second public key and the second private key;
Communication unit, for sending third public key to each forward node, so that each forward node verifying turns
The message of hair;The message sent by the formal channel is received, the first private key initiating unit and holding is built with the channel
Or the channel builds the second private key that response unit is held and decrypts the message;And initiation unit is built with the channel
It exchanges the second obtained public key or the channel is built the first public key that response unit exchanges and added to message to be sent
It is close, and signed with third private key to the message to be sent, the message to be sent is sent by the formal channel.
Second aspect, the present invention provide a kind of peer-to-peer network, including several forward node, and the forward node includes:
Retransmission unit, the information for forwarding telecommunication customer end to send is to establish occasional passage and formal channel, Xiang Suoshu
Telecommunication customer end obtains third public key, and the telecommunication customer end described in the third public key verifications is sent by the formal channel
Message: verifying is legal, is forwarded;
Wherein, the message sent by the formal channel is signed by the telecommunication customer end with third private key
The third public private key pair of name, the third public key and third private key composition corresponds to the formal channel.
The third aspect, the present invention provide a kind of peer-to-peer network communication system, and the system comprises several above-mentioned communication visitors
Family end and above-mentioned peer-to-peer network.
Fourth aspect, the present invention provide a kind of peer-to-peer network means of communication, which comprises
Generate the first public private key pair;
Occasional passage identity information is sent to establish interim lead to the second telecommunication customer end by several forward node
Road;
Response unit is built with the channel of the second telecommunication customer end by the occasional passage and exchanges public key, is generated and sent
Formal channel identity information and corresponding to the third public private key pair in formal channel to establish formal channel;
Third public key is sent to each forward node, so that each forward node verifies forwarded message;
Message to be sent is encrypted with the second public key that exchange obtains, and with third private key to the message to be sent
It signs, the message to be sent is sent by the formal channel;
The message sent by the formal channel is received, decrypts the message with the first private key.
Wherein, first public private key pair includes the first public key and the first private key.
5th aspect, the present invention provide a kind of peer-to-peer network means of communication, which comprises
Generate the second public private key pair;
It is interim logical to establish to receive the occasional passage identity information that the first telecommunication customer end is sent by several forward node
Road;
It is built by the channel of the occasional passage and first telecommunication customer end and initiates elements exchange public key, and received
Formal channel identity information and corresponding to the third public private key pair in formal channel to establish formal channel;
Third public key is sent to each forward node, so that each forward node verifies forwarded message;
Message to be sent is encrypted with the first public key that exchange obtains, and with third private key to the message to be sent
It signs, the message to be sent is sent by the formal channel;
The message sent by the formal channel is received, decrypts the message with the second private key.
Wherein, second public private key pair includes the second public key and the second private key.
6th aspect, the present invention provide a kind of peer-to-peer network means of communication, which comprises
The information for forwarding the first telecommunication customer end to send is to establish occasional passage;
The information for forwarding the first telecommunication customer end and the second telecommunication customer end to send respectively is to establish formal channel;
Third public key is obtained to first telecommunication customer end or second telecommunication customer end;
The first telecommunication customer end described in the third public key verifications or second telecommunication customer end pass through described formal
The message that channel is sent: verifying is legal, is forwarded.
Wherein, the message sent by the formal channel is by first telecommunication customer end or second communication
Client is signed with third private key, and the third public private key pair of the third public key and third private key composition corresponds to institute
State formal channel.
The peer-to-peer network communication system and method that many embodiments of the present invention provide are built by establishing occasional passage with interacting
The information in formula of attentioning channel, at the same in occasional passage exchange both sides' telecommunication customer end public key, and correspond to formal channel
Third public private key pair, while forward node into peer-to-peer network provides third public key, to send in formal channel logical
Cross the public key encryption of exchange, while passing through the information of third private key signature: on the one hand, forward node can be carried out using third public key
Verifying, is just forwarded, to ensure the legitimacy in channel if being verified;On the other hand, the communication client of information is received
End can be decrypted information using the private key of itself, to ensure the safety of information;It finally realizes without centralization
Server, while safety communication can be carried out without user's progress registering and logging operation;
The peer-to-peer network communication system and method that some embodiments of the invention provide further pass through transmission and correspond to temporarily
The two dimensional code of channel identity code establishes occasional passage, improves the safety of communication.
Detailed description of the invention
By reading a detailed description of non-restrictive embodiments in the light of the attached drawings below, the application's is other
Feature, objects and advantages will become more apparent upon:
Fig. 1 is the communication schematic diagram that MSN Messenger client logs in.
Fig. 2 is a kind of schematic diagram of open authorization login mode.
Fig. 3 is the structural schematic diagram of telecommunication customer end in one embodiment of the invention.
Fig. 4 is a kind of flow chart of the peer-to-peer network means of communication in one embodiment of the invention.
Fig. 5 is the flow chart of another peer-to-peer network means of communication in one embodiment of the invention.
Fig. 6 is the flow chart of step S12 in method shown in Fig. 4.
Fig. 7 is the flow chart of step S22 in method shown in Fig. 5.
Fig. 8 is the flow chart of step S13 in method shown in Fig. 4.
Fig. 9 is the flow chart of step S23 in method shown in Fig. 5.
Figure 10 is the schematic diagram that the process in formal channel is generated in one embodiment of the invention.
Figure 11 is the flow chart of step S14 in method shown in Fig. 4.
Figure 12 is the flow chart of step S24 in method shown in Fig. 5.
Figure 13 is the structural schematic diagram of peer-to-peer network in one embodiment of the invention.
Figure 14 is a kind of flow chart of the peer-to-peer network means of communication in one embodiment of the invention.
Figure 15 is the flow chart of step S31 in method shown in Figure 14.
Figure 16 is the flow chart of step S32 in method shown in Figure 14.
Figure 17 is the structural schematic diagram of peer-to-peer network communication system in one embodiment of the invention.
Specific embodiment
The application is described in further detail with reference to the accompanying drawings and examples.It is understood that this place is retouched
The specific embodiment stated is used only for explaining related invention, rather than the restriction to the invention.It also should be noted that in order to
Convenient for description, part relevant to invention is illustrated only in attached drawing.
It should be noted that in the absence of conflict, the features in the embodiments and the embodiments of the present application can phase
Mutually combination.The application is described in detail below with reference to the accompanying drawings and in conjunction with the embodiments.
Fig. 3 is the structural schematic diagram of telecommunication customer end in one embodiment of the invention.
As shown in figure 3, in the present embodiment, telecommunication customer end 10 provided by the invention includes that initiation unit is built in channel
11, response unit 12 and communication unit 13 are built in channel.
In the present embodiment, each telecommunication customer end 10 is mutually communicated by several forward node of peer-to-peer network.
Channel, which is built, initiates unit 11 for generating the first public private key pair, is communicated by several forward node to second
Client 10 sends occasional passage identity information to establish occasional passage, passes through the occasional passage and the second telecommunication customer end 10
Channel build response unit 12 exchange public key, generate and send formal channel identity information and the third corresponding to formal channel
Public private key pair is to establish formal channel.Wherein, first public private key pair includes the first public key and the first private key.
Channel build response unit 12 for generate the second public private key pair, receive the first telecommunication customer end 10 by several turns
The occasional passage identity information of node transmission is sent out to establish occasional passage, passes through the occasional passage and the first telecommunication customer end 10
Channel build and initiate unit 11 and exchange public key, and receive formal channel identity information and third corresponding to formal channel is public and private
Key is to establish formal channel.Wherein, second public private key pair includes the second public key and the second private key.
Communication unit 13 is used to send third public key to each forward node, so that each forward node verifying turns
The message of hair;Receive the message sent by the formal channel, with channel build the first private key that initiation unit 11 is held or
It builds the second private key that response unit 12 is held and decrypts the message in channel;And initiation unit 11 is built with channel and is exchanged
To the second public key or channel build response unit 12 and exchange obtained the first public key message to be sent is encrypted, and with the
Three private keys sign to the message to be sent, send the message to be sent by the formal channel.
Fig. 4 is a kind of flow chart of the peer-to-peer network means of communication in one embodiment of the invention.Peer-to-peer network shown in Fig. 4 is logical
Communication method can be corresponded to build applied to the channel of above-mentioned telecommunication customer end 10 and be initiated in unit 11 and communication unit 13.
As shown in figure 4, in the present embodiment, the peer-to-peer network means of communication provided by the invention include:
S11: the first public private key pair is generated;
S12: occasional passage identity information is sent to the second telecommunication customer end by several forward node and is faced with establishing
Shi Tongdao;
S13: response unit is built with the channel of the second telecommunication customer end by the occasional passage and exchanges public key, is generated simultaneously
Send formal channel identity information and corresponding to the third public private key pair in formal channel to establish formal channel;
S14: sending third public key to each forward node, so that each forward node verifies forwarded message;
S15: message to be sent is encrypted with the second public key that exchange obtains, and with third private key to described to be sent
Message is signed, and sends the message to be sent by the formal channel;
S16: receiving the message sent by the formal channel, decrypts the message with the first private key.
Wherein, first public private key pair includes the first public key and the first private key.
Fig. 5 is the flow chart of another peer-to-peer network means of communication in one embodiment of the invention.Method shown in fig. 5 can be right
It builds in response unit 12 and communication unit 13 in the channel that should be applied to above-mentioned telecommunication customer end 10.
As shown in figure 5, in the present embodiment, the another kind peer-to-peer network means of communication provided by the invention include:
S21: the second public private key pair is generated;
S22: it receives the occasional passage identity information that the first telecommunication customer end is sent by several forward node and is faced with establishing
Shi Tongdao;
S23: being built by the channel of the occasional passage and first telecommunication customer end and initiate elements exchange public key, and
Receive formal channel identity information and corresponding to the third public private key pair in formal channel to establish formal channel;
S24: sending third public key to each forward node, so that each forward node verifies forwarded message;
S25: message to be sent is encrypted with the first public key that exchange obtains, and with third private key to described to be sent
Message is signed, and sends the message to be sent by the formal channel;
S26: receiving the message sent by the formal channel, decrypts the message with the second private key.
Wherein, second public private key pair includes the second public key and the second private key.
Specifically, in the present embodiment, the first telecommunication customer end and the second telecommunication customer end are respectively in respective initialization
Generate the first public private key pair and the second public private key pair.In step S11, the channel of the first telecommunication customer end is built initiation unit 11 and is obtained
The first public private key pair for taking the initialization of the first telecommunication customer end to generate;In step S12, sound is built in the channel of the second telecommunication customer end
Unit 12 is answered to obtain the second public private key pair that the initialization of the second telecommunication customer end generates.
In a preferred embodiment, initiation unit 11 is built in channel and channel is built response unit 12 and can be distinguished voluntarily initially
Metaplasia obtains the public and private key that initialization generates at the first public private key pair and the second public private key pair in step S11 and S12 respectively
It is right.
In another preferred embodiment, initiation unit 11 is built in channel and channel is built response unit 12 and can taken every time
Occasional passage and formal channel previous existence are built into different public private key pairs, i.e., it is public to generate first when executing step S11/S12 every time
Private key is right/the second public private key pair.
In step s 12, the channel of the first telecommunication customer end build initiate unit 11 by several forward node to
It builds response unit 12 and sends occasional passage identity information in the channel of second telecommunication customer end;Accordingly, in step S22, the
It builds response unit 12 and receives the occasional passage identity information to obtain occasional passage identity code in the channel of two telecommunication customer ends
Temp_channel_id, to establish occasional passage.
In step S13 and step S23, the channel of the first telecommunication customer end, which is built, initiates unit 11 and the second communication client
It builds response unit 12 and the public key respectively held is exchanged by occasional passage in the channel at end;It takes in the channel of first telecommunication customer end
Build initiate unit 11 also generate formal channel identity information and corresponding to formal channel third public private key pair and by temporarily leading to
Build response unit 12 in the channel that road is sent to the second telecommunication customer end;Build response unit 12 in the channel of second telecommunication customer end
Formal channel identity code channel_id is obtained according to formal channel identity information, to establish formal channel.
In step S14 and step S24, the channel of the first telecommunication customer end, which is built, initiates unit 11 and the second telecommunication customer end
Channel build response unit 12 and monitor formal channel respectively, and provide third public key for each forward node.
In step S15 and step S25, the channel of the first telecommunication customer end, which is built, initiates unit 11 and the second telecommunication customer end
Channel build response unit 12 respectively with the second public key and the first public key exchanged in step S13 and S23 to be sent
Information is encrypted, and is signed with third private key to information to be sent, then sent by formal channel.
When forward node receives the information sent above by formal channel, forward node with above-mentioned steps S14 or
The third public key obtained in S24 verifies received information: be forwarded if being verified, authentication failed without
Forwarding, to guarantee the legitimacy in channel.
In step S16 and S26, the channel of the first telecommunication customer end, which is built, initiates unit 11 and the second telecommunication customer end
It builds response unit 12 and received information is decrypted with the first private key and the second private key respectively held respectively in channel.
Telecommunication customer end and the peer-to-peer network means of communication provided by the above embodiment are built by establishing occasional passage with interacting
The information in formula of attentioning channel, at the same in occasional passage exchange both sides' telecommunication customer end public key, and correspond to formal channel
Third public private key pair, while forward node into peer-to-peer network provides third public key, to send in formal channel logical
Cross the public key encryption of exchange, while passing through the information of third private key signature: on the one hand, forward node can be carried out using third public key
Verifying, is just forwarded, to ensure the legitimacy in channel if being verified;On the other hand, the communication client of information is received
End can be decrypted information using the private key of itself, to ensure the safety of information;It finally realizes without centralization
Server, while safety communication can be carried out without user's progress registering and logging operation.
Fig. 6 is the flow chart of step S12 in method shown in Fig. 4.
As shown in fig. 6, in a preferred embodiment, step S12 includes:
S121: occasional passage identity code and corresponding two dimensional code are generated;
S122: the two dimensional code is sent to the second telecommunication customer end by several forward node, for described second
Telecommunication customer end obtains the occasional passage identity code by scanning the two dimensional code, to establish occasional passage.
Fig. 7 is the flow chart of step S22 in method shown in Fig. 5.
As shown in fig. 7, with step S12 shown in Fig. 6 correspondingly, in a preferred embodiment, the occasional passage identity
Information is two dimensional code, and step S22 includes:
S221: received two dimensional code is scanned to obtain occasional passage identity code, to establish occasional passage.
Fig. 8 is the flow chart of step S13 in method shown in Fig. 4.
As shown in figure 8, in a preferred embodiment, step S13 includes:
S131: monitoring the occasional passage, and the channel for receiving the second telecommunication customer end builds response unit and passes through several institutes
State the second public key of forward node return;
S132: formal channel identity information and the third public private key pair corresponding to formal channel are generated;
S133: by the occasional passage to the channel of the second telecommunication customer end build response unit send it is described formal logical
Road identity information, third public private key pair and the first public key.
Fig. 9 is the flow chart of step S23 in method shown in Fig. 5.
As shown in figure 9, with step S13 shown in Fig. 8 correspondingly, in a preferred embodiment, step S23 includes:
S231: it is built by the occasional passage to the channel of first telecommunication customer end and initiates the second public affairs of unit transmission
Key;
S232: monitoring the occasional passage, and the channel for receiving first telecommunication customer end, which is built, initiates what unit was sent
Formal channel identity information, third public private key pair and the first public key.
Figure 10 is the schematic diagram that the process in formal channel is generated in one embodiment of the invention.
Specifically, as illustrated in figures 6-10, in step S12 and step S22, initiation is built in the channel of the first telecommunication customer end
Unit 11 sends occasional passage identity code in the form of two dimensional code;In step S131 and step S232, the second communication client
It builds response unit 12 and second public key is returned to by occasional passage in the channel at end;In step S132, the first telecommunication customer end
It builds initiation unit 11 and generates formal channel identity information and the third public private key pair corresponding to formal channel in channel;In step
In S133 and step S232, the channel of the first telecommunication customer end, which is built, initiates unit 11 with received second public key to described formal
Channel identity information, third public private key pair and the first public key are encrypted, then are sent by occasional passage, the second communication visitor
The channel at family end, which builds response unit 12 and receives the second private key held after above-mentioned every encryption information with itself, to be decrypted.
Above-described embodiment, which further passes through to send, establishes occasional passage corresponding to the two dimensional code of occasional passage identity code, and leads to
The formal channel identity information of the second public key encryption, third public private key pair and the first public key for crossing occasional passage transmission, improve logical
The safety of news.
Figure 11 is the flow chart of step S14 in method shown in Fig. 4.Figure 12 is the process of step S24 in method shown in Fig. 5
Figure.
As is illustrated by figs. 11 and 12, in step S14 and step S24, it is single that initiation is built in the channel of the first telecommunication customer end
It builds response unit 12 and performs following steps respectively in the channel of member 11 and the second telecommunication customer end:
Monitor the formal channel;
Receive the third public key request that each forward node is sent;
Third public key is returned to each forward node, so that each forward node verifies forwarded message.
Figure 13 is the structural schematic diagram of peer-to-peer network in one embodiment of the invention.
As shown in figure 13, in the present embodiment, peer-to-peer network 20 provided by the invention includes several forward node 21.
Forward node 21 includes: retransmission unit, and the information for forwarding telecommunication customer end 10 to send is to establish occasional passage
And formal channel, third public key is obtained to telecommunication customer end 10, is passed through with the third public key verifications telecommunication customer end 10 described
The message that formal channel is sent: verifying is legal, is forwarded.
Wherein, the message sent by the formal channel is signed by telecommunication customer end 10 with third private key,
The third public private key pair of the third public key and third private key composition corresponds to the formal channel.
Figure 14 is a kind of flow chart of the peer-to-peer network means of communication in one embodiment of the invention.Peer-to-peer network shown in Figure 14
The means of communication can be corresponded to applied in forward node 21 shown in Figure 13.
As shown in figure 14, in the present embodiment, the peer-to-peer network means of communication provided by the invention include:
S31: the information that the first telecommunication customer end of forwarding is sent is to establish occasional passage;
S32: the information for forwarding the first telecommunication customer end and the second telecommunication customer end to send respectively is to establish formal channel;
S33: Xiang Suoshu first telecommunication customer end or second telecommunication customer end obtain third public key;
S34: the first telecommunication customer end described in the third public key verifications or second telecommunication customer end are described in
The message that formal channel is sent: verifying is legal, is forwarded.
Wherein, the message sent by the formal channel is by first telecommunication customer end or second communication
Client is signed with third private key, and the third public private key pair of the third public key and third private key composition corresponds to institute
State formal channel.
Peer-to-peer network and the peer-to-peer network means of communication provided by the above embodiment are realized without centralized server, simultaneously
Safety communication can be carried out by carrying out registering and logging operation without user.
In a preferred embodiment, the information that the forwarding telecommunication customer end is sent includes: forwarding to establish occasional passage
The two dimensional code that first telecommunication customer end is sent, so that the second telecommunication customer end is corresponding interim by scanning the two dimensional code acquisition
Channel identity code, to establish occasional passage.
Figure 15 is the flow chart of step S31 in method shown in Figure 14.Method shown in figure 15 can be corresponded to applied to above-mentioned excellent
It selects in the peer-to-peer network of embodiment.
As shown in figure 15, in a preferred embodiment, step S31 includes:
S311: the two dimensional code that the first telecommunication customer end of forwarding is sent, so that the second telecommunication customer end passes through scanning described two
It ties up code and obtains corresponding occasional passage identity code, to establish occasional passage.
In a preferred embodiment, the information that the forwarding telecommunication customer end is sent includes: forwarding to establish formal channel
The second public key that second telecommunication customer end returns;Forward formal channel identity information, the third of the transmission of the first telecommunication customer end public
Private key to and the first public key.
Figure 16 is the flow chart of step S32 in method shown in Figure 14.Method shown in Figure 16 can be corresponded to applied to above-mentioned excellent
It selects in the peer-to-peer network of embodiment.
As shown in figure 16, in a preferred embodiment, step S32 includes:
S321: the second public key that the second telecommunication customer end of forwarding returns;
S322: formal channel identity information, third public private key pair and the first public key that the first telecommunication customer end of forwarding is sent.
Figure 17 is the structural schematic diagram of peer-to-peer network communication system in one embodiment of the invention.
As shown in figure 17, in the present embodiment, peer-to-peer network communication system provided by the invention includes any of the above-described implementation
Telecommunication customer end described in peer-to-peer network described in example and several any of the above-described embodiments.
Peer-to-peer network communication system provided by the above embodiment is realized without centralized server, at the same without user into
The operation of row registering and logging can carry out safety communication.
Flow chart and block diagram in attached drawing are illustrated according to the system of various embodiments of the invention, method and computer journey
The architecture, function and operation in the cards of sequence product.In this regard, each box in flowchart or block diagram can generation
A part of one module, program segment or code of table, a part of the module, program segment or code include one or more
Executable instruction for implementing the specified logical function.It should also be noted that in some implementations as replacements, institute in box
The function of mark can also occur in a different order than that indicated in the drawings.For example, two boxes succeedingly indicated are practical
On can be basically executed in parallel, they can also be executed in the opposite order sometimes, this is depending on related function.
It should be noted that the combination of each box in block diagram and or flow chart and the box in block diagram and or flow chart, it can be with
It is realized by executing the dedicated hardware based system of defined functions or operations, or specialized hardware and meter can be passed through
The combination of calculation machine instruction is realized.
Being described in the embodiment of the present application involved unit or module can be realized by way of software, can also be with
It is realized by way of hardware.Described unit or module also can be set in the processor, for example, communication unit can be with
It is the software program being arranged in computer or intelligent movable equipment, is also possible to the hardware chip individually communicated.Wherein,
The title of these units or module does not constitute the restriction to the unit or module itself under certain conditions, for example, channel is taken
It builds initiation unit and channel is built response unit and is also described as " for adding good friend's adding unit of communication good friend ".
As on the other hand, present invention also provides a kind of computer readable storage medium, the computer-readable storage mediums
Matter can be computer readable storage medium included in device described in above-described embodiment;It is also possible to individualism, not
The computer readable storage medium being fitted into equipment.Computer-readable recording medium storage has one or more than one journey
Sequence, described program are used to execute the formula input method for being described in the application by one or more than one processor.
Above description is only the preferred embodiment of the application and the explanation to institute's application technology principle.Those skilled in the art
Member is it should be appreciated that invention scope involved in the application, however it is not limited to technology made of the specific combination of above-mentioned technical characteristic
Scheme, while should also cover in the case where not departing from the inventive concept, it is carried out by above-mentioned technical characteristic or its equivalent feature
Any combination and the other technical solutions formed.Such as features described above has similar function with (but being not limited to) disclosed herein
Can technical characteristic replaced mutually and the technical solution that is formed.
Claims (19)
1. a kind of telecommunication customer end, which is characterized in that each telecommunication customer end by several forward node of peer-to-peer network into
Row mutually communication, the telecommunication customer end include:
Initiation unit is built in channel, for generating the first public private key pair, communicates client to second by several forward node
End sends occasional passage identity information to establish occasional passage, is taken by the channel of the occasional passage and the second telecommunication customer end
Build response unit exchange public key, generate and send formal channel identity information and corresponding to formal channel third public private key pair with
Establish formal channel;Wherein, first public private key pair includes the first public key and the first private key;
Response unit is built in channel, for generating the second public private key pair, is received the first telecommunication customer end and is passed through several forward node
The occasional passage identity information of transmission passes through the logical of the occasional passage and first telecommunication customer end to establish occasional passage
Road build initiate elements exchange public key, and receive formal channel identity information and corresponding to formal channel third public private key pair with
Establish formal channel;Wherein, second public private key pair includes the second public key and the second private key;
Communication unit is forwarded for sending third public key to each forward node for each forward node verifying
Message;The message sent by the formal channel is received, the first private key or institute for initiating that unit is held are built with the channel
It states channel and builds the second private key decryption message that response unit is held;And initiation elements exchange is built with the channel
Obtained the second public key or the channel is built the first public key that response unit exchanges and is encrypted to message to be sent, and
It is signed with third private key to the message to be sent, the message to be sent is sent by the formal channel.
2. telecommunication customer end according to claim 1, which is characterized in that the occasional passage identity information is two dimensional code;
It is described to send occasional passage identity information to the second telecommunication customer end to establish interim lead to by several forward node
Road includes:
Generate occasional passage identity code and corresponding two dimensional code;
The two dimensional code is sent to the second telecommunication customer end by several forward node, for second telecommunication customer end
The occasional passage identity code is obtained by scanning the two dimensional code, to establish occasional passage;
It is described to receive the occasional passage identity information that the first telecommunication customer end is sent by several forward node to establish interim lead to
Road includes:
Received two dimensional code is scanned to obtain occasional passage identity code, to establish occasional passage.
3. telecommunication customer end according to claim 1, which is characterized in that described to be communicated by the occasional passage and second
Response unit exchange public key is built in the channel of client, generates and sends formal channel identity information and corresponding to formal channel
Third public private key pair includes: to establish formal channel
The occasional passage is monitored, the channel for receiving the second telecommunication customer end builds response unit and passes through several forward node
The second public key returned;
Generate formal channel identity information and the third public private key pair corresponding to formal channel;
Response unit, which is built, to the channel of the second telecommunication customer end by the occasional passage sends the formal channel identity letter
Breath, third public private key pair and the first public key;
The channel by the occasional passage and first telecommunication customer end, which is built, initiates elements exchange public key, and receives
Formal channel identity information and corresponding to the third public private key pair in formal channel include: to establish formal channel
It is built by the occasional passage to the channel of first telecommunication customer end and initiates unit the second public key of transmission;
The occasional passage is monitored, the channel for receiving first telecommunication customer end, which is built, initiates the formal channel body that unit is sent
Part information, third public private key pair and the first public key.
4. telecommunication customer end according to claim 1, which is characterized in that described to send third public affairs to each forward node
Key, verifying forwarded message for each forward node includes:
Monitor the formal channel;
Receive the third public key request that each forward node is sent;
Third public key is returned to each forward node, so that each forward node verifies forwarded message.
5. a kind of peer-to-peer network, which is characterized in that including several forward node, the forward node includes:
Retransmission unit, the information for forwarding telecommunication customer end to send is to establish occasional passage and formal channel, to the communication
Client obtains third public key, and the telecommunication customer end described in the third public key verifications is disappeared by what the formal channel was sent
Breath: verifying is legal, is forwarded;
Wherein, the message sent by the formal channel is signed by the telecommunication customer end with third private key, institute
The third public private key pair for stating third public key and third private key composition corresponds to the formal channel, and the occasional passage is used for
The information in formal channel is established in interaction, while exchanging the public key of both sides' telecommunication customer end, and corresponding to the third in formal channel
Public private key pair, while the forward node into peer-to-peer network provides third public key.
6. peer-to-peer network according to claim 5, which is characterized in that the information that the forwarding telecommunication customer end is sent is to build
Vertical occasional passage includes:
The two dimensional code for forwarding the first telecommunication customer end to send, so that the second telecommunication customer end is by scanning the two dimensional code acquisition pair
The occasional passage identity code answered, to establish occasional passage.
7. peer-to-peer network according to claim 5, which is characterized in that the information that the forwarding telecommunication customer end is sent is to build
The formula channel of attentioning includes:
The second public key for forwarding the second telecommunication customer end to return;
Formal channel identity information, third public private key pair and the first public key for forwarding the first telecommunication customer end to send.
8. a kind of peer-to-peer network communication system, which is characterized in that the system comprises described in several claims any one of 1-4
Telecommunication customer end and the described in any item peer-to-peer networks of claim 5-7.
9. a kind of peer-to-peer network means of communication, which is characterized in that the described method includes:
Generate the first public private key pair;
Occasional passage identity information is sent to establish occasional passage to the second telecommunication customer end by several forward node;
Response unit is built with the channel of the second telecommunication customer end by the occasional passage and exchanges public key, is generated and sent formal
Channel identity information and corresponding to the third public private key pair in formal channel to establish formal channel;
Third public key is sent to each forward node, so that each forward node verifies forwarded message;
Message to be sent is encrypted with the second public key that exchange obtains, and the message to be sent is carried out with third private key
Signature sends the message to be sent by the formal channel;
The message sent by the formal channel is received, decrypts the message with the first private key;
Wherein, first public private key pair includes the first public key and the first private key.
10. the peer-to-peer network means of communication according to claim 9, which is characterized in that described to be saved by several forwardings
O'clock sending occasional passage identity information to the second telecommunication customer end to establish occasional passage includes:
Generate occasional passage identity code and corresponding two dimensional code;
The two dimensional code is sent to the second telecommunication customer end by several forward node, for second telecommunication customer end
The occasional passage identity code is obtained by scanning the two dimensional code, to establish occasional passage.
11. the peer-to-peer network means of communication according to claim 9, which is characterized in that it is described by the occasional passage with
Response unit exchange public key is built in the channel of second telecommunication customer end, is generated and sent formal channel identity information and is corresponded to just
The third public private key pair in formula channel includes: to establish formal channel
The occasional passage is monitored, the channel for receiving the second telecommunication customer end builds response unit and passes through several forward node
The second public key returned;
Generate formal channel identity information and the third public private key pair corresponding to formal channel;
Response unit, which is built, to the channel of the second telecommunication customer end by the occasional passage sends the formal channel identity letter
Breath, third public private key pair and the first public key.
12. the peer-to-peer network means of communication according to claim 9, which is characterized in that described to be sent out to each forward node
Third public key is sent, verifying forwarded message for each forward node includes:
Monitor the formal channel;
Receive the third public key request that each forward node is sent;
Third public key is returned to each forward node, so that each forward node verifies forwarded message.
13. a kind of peer-to-peer network means of communication, which is characterized in that the described method includes:
Generate the second public private key pair;
Occasional passage identity information that the first telecommunication customer end is sent by several forward node is received to establish occasional passage;
It is built by the channel of the occasional passage and first telecommunication customer end and initiates elements exchange public key, and received formal
Channel identity information and corresponding to the third public private key pair in formal channel to establish formal channel;
Third public key is sent to each forward node, so that each forward node verifies forwarded message;
Message to be sent is encrypted with the first public key that exchange obtains, and the message to be sent is carried out with third private key
Signature sends the message to be sent by the formal channel;
The message sent by the formal channel is received, decrypts the message with the second private key;
Wherein, second public private key pair includes the second public key and the second private key.
14. the peer-to-peer network means of communication according to claim 13, which is characterized in that the occasional passage identity information is
Two dimensional code, the reception occasional passage identity information include: to establish occasional passage
Received two dimensional code is scanned to obtain occasional passage identity code, to establish occasional passage.
15. the peer-to-peer network means of communication according to claim 13, which is characterized in that it is described by the occasional passage with
Corresponding channel, which is built, initiates elements exchange public key, and receives formal channel identity information and the third public affairs corresponding to formal channel
Private key includes: to establish formal channel
It is built by the occasional passage to the channel of first telecommunication customer end and initiates unit the second public key of transmission;
The occasional passage is monitored, the channel for receiving first telecommunication customer end, which is built, initiates the formal channel body that unit is sent
Part information, third public private key pair and the first public key.
16. the peer-to-peer network means of communication according to claim 13, which is characterized in that described to be sent out to each forward node
Third public key is sent, verifying forwarded message for each forward node includes:
Monitor the formal channel;
Receive the third public key request that each forward node is sent;
Third public key is returned to each forward node, so that each forward node verifies forwarded message.
17. a kind of peer-to-peer network means of communication, which is characterized in that the described method includes:
The information for forwarding the first telecommunication customer end to send establishes occasional passage to the second telecommunication customer end, and the occasional passage is used
The information in formal channel is established in interaction, while exchanging the public key of the first telecommunication customer end and the second telecommunication customer end and right
Should be in the third public private key pair in formal channel, while the forward node into peer-to-peer network provides third public key;
The information for forwarding the first telecommunication customer end and the second telecommunication customer end to send respectively is to establish formal channel;
Third public key is obtained to first telecommunication customer end or second telecommunication customer end;
The first telecommunication customer end described in the third public key verifications or second telecommunication customer end pass through the formal channel
The message of transmission: verifying is legal, is forwarded;
Wherein, the message sent by the formal channel is by first telecommunication customer end or the second communication client
End is signed with third private key, the third public key and the third private key composition third public private key pair correspond to it is described just
Formula channel.
18. the peer-to-peer network means of communication according to claim 17, which is characterized in that the first telecommunication customer end of the forwarding
The information of transmission includes: to establish occasional passage
The two dimensional code for forwarding the first telecommunication customer end to send, so that the second telecommunication customer end is by scanning the two dimensional code acquisition pair
The occasional passage identity code answered, to establish occasional passage.
19. the peer-to-peer network means of communication according to claim 17, which is characterized in that the first communication of forwarding respectively visitor
The information that family end and the second telecommunication customer end are sent includes: to establish formal channel
The second public key for forwarding the second telecommunication customer end to return;
Formal channel identity information, third public private key pair and the first public key for forwarding the first telecommunication customer end to send.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201610538484.4A CN106209835B (en) | 2016-07-08 | 2016-07-08 | Peer-to-peer network communication system and method |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201610538484.4A CN106209835B (en) | 2016-07-08 | 2016-07-08 | Peer-to-peer network communication system and method |
Publications (2)
Publication Number | Publication Date |
---|---|
CN106209835A CN106209835A (en) | 2016-12-07 |
CN106209835B true CN106209835B (en) | 2019-11-22 |
Family
ID=57474179
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201610538484.4A Active CN106209835B (en) | 2016-07-08 | 2016-07-08 | Peer-to-peer network communication system and method |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN106209835B (en) |
Families Citing this family (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN106919384B (en) * | 2017-02-13 | 2020-09-15 | 浙江慧脑信息科技有限公司 | Browser system capable of transmitting user information |
CN108449357B (en) * | 2018-04-08 | 2021-05-28 | 武汉斗鱼网络科技有限公司 | Authorized login method and device, intelligent device and storage medium |
CN111385278B (en) * | 2018-12-29 | 2021-11-30 | 西安华为技术有限公司 | Message forwarding method and device |
CN111148098A (en) * | 2019-12-30 | 2020-05-12 | 江苏全链通信息科技有限公司 | 5G terminal equipment registration method, equipment and storage medium |
CN111148094B (en) * | 2019-12-30 | 2023-11-21 | 全链通有限公司 | Registration method of 5G user terminal, user terminal equipment and medium |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1925393A (en) * | 2006-09-08 | 2007-03-07 | 苏州胜联电子信息有限公司 | Point-to-point network identity authenticating method |
EP1865656A1 (en) * | 2006-06-08 | 2007-12-12 | BRITISH TELECOMMUNICATIONS public limited company | Provision of secure communications connection using third party authentication |
CN103746770A (en) * | 2013-12-20 | 2014-04-23 | 浙江工业大学 | Message authentication code and probability secret key distribution mechanism-based anti-pollution network coding method |
CN105191172A (en) * | 2013-05-16 | 2015-12-23 | 三星电子株式会社 | Communication method and device |
CN105656624A (en) * | 2016-02-29 | 2016-06-08 | 浪潮(北京)电子信息产业有限公司 | Client side, server and data transmission method and system |
-
2016
- 2016-07-08 CN CN201610538484.4A patent/CN106209835B/en active Active
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
EP1865656A1 (en) * | 2006-06-08 | 2007-12-12 | BRITISH TELECOMMUNICATIONS public limited company | Provision of secure communications connection using third party authentication |
CN1925393A (en) * | 2006-09-08 | 2007-03-07 | 苏州胜联电子信息有限公司 | Point-to-point network identity authenticating method |
CN105191172A (en) * | 2013-05-16 | 2015-12-23 | 三星电子株式会社 | Communication method and device |
CN103746770A (en) * | 2013-12-20 | 2014-04-23 | 浙江工业大学 | Message authentication code and probability secret key distribution mechanism-based anti-pollution network coding method |
CN105656624A (en) * | 2016-02-29 | 2016-06-08 | 浪潮(北京)电子信息产业有限公司 | Client side, server and data transmission method and system |
Non-Patent Citations (1)
Title |
---|
《基于P2P网络的可验证门限群签名方案》;杨柳 等;《计算机应用与软件》;20090731;第26卷(第7期);全文 * |
Also Published As
Publication number | Publication date |
---|---|
CN106209835A (en) | 2016-12-07 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN106209835B (en) | Peer-to-peer network communication system and method | |
CN103069772B (en) | The method and apparatus found automatically in communication network | |
CN107094156B (en) | Secure communication method and system based on P2P mode | |
CN109245993A (en) | Instant communication method and device based on block chain | |
CN101405759A (en) | Method and apparatus for user centric private data management | |
CN110190955A (en) | Information processing method and device based on secure socket layer protocol certification | |
CN102984127A (en) | User-centered mobile internet identity managing and identifying method | |
CN110166577A (en) | Distributed Application cluster conversation processing system and method | |
CN105391676A (en) | Instant communication message processing method, device and system | |
CN108927808A (en) | A kind of communication means, authentication method and the device of ROS node | |
CN109792433A (en) | Method and apparatus for equipment application to be tied to network service | |
CN115913790B (en) | Data transmission method based on privacy computing network, electronic equipment and storage medium | |
CN102893579B (en) | For provide method, node and the equipment of bill in communication system | |
CN113518078A (en) | Cross-network data sharing method, information demander, information provider and system | |
Ouda et al. | Security protocols in service-oriented architecture | |
CN100544247C (en) | The negotiating safety capability method | |
CN106712959A (en) | Implementation method and system of communication safety | |
CN106357669B (en) | A kind of Web system login method and log in auxiliary system | |
CN112927026A (en) | Coupon processing method and device, electronic equipment and computer storage medium | |
Wanda et al. | Model of secure P2P mobile instant messaging based on virtual network | |
Kuntze et al. | On the automatic establishment of security relations for devices | |
Bian et al. | Off-the-record instant messaging for group conversation | |
Beato et al. | Virtualfriendship: Hiding interactions on online social networks | |
Oppliger | Providing certified mail services on the internet | |
AlSabah et al. | PriviPK: Certificate-less and secure email communication |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |