CN106487746A - A kind of method and device of BMP message authentication - Google Patents

A kind of method and device of BMP message authentication Download PDF

Info

Publication number
CN106487746A
CN106487746A CN201510531020.6A CN201510531020A CN106487746A CN 106487746 A CN106487746 A CN 106487746A CN 201510531020 A CN201510531020 A CN 201510531020A CN 106487746 A CN106487746 A CN 106487746A
Authority
CN
China
Prior art keywords
message
key
check information
checking algorithm
bmp
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201510531020.6A
Other languages
Chinese (zh)
Inventor
周广腾
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
ZTE Corp
Original Assignee
ZTE Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by ZTE Corp filed Critical ZTE Corp
Priority to CN201510531020.6A priority Critical patent/CN106487746A/en
Priority to PCT/CN2016/076874 priority patent/WO2017031984A1/en
Publication of CN106487746A publication Critical patent/CN106487746A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/36Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols with means for detecting characters not meant for transmission
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

The invention provides a kind of method and device of BMP message authentication, the methods described being applied to transmitting terminal includes:The first checking algorithm, first key and the first message that is to be sent and being packaged with BMP data information being pre-configured with according to transmitting terminal, determines unique first check information;Described first check information is stored in described first message, and send described first message to receiving terminal, described first message receiving is verified according to the second checking algorithm and the second key by described receiving terminal, wherein said second checking algorithm and described first checking algorithm are identical algorithms, and described second key and described first key are same key.The method of the BMP message authentication that the present invention provides carries out safety certification at the two ends of BMP session, can effectively ensure that the communication security of BMP.

Description

A kind of method and device of BMP message authentication
Technical field
The present invention relates to communication technical field, more particularly, to a kind of method and device of BMP message authentication.
Background technology
BGP monitoring protocol (BGP Monitoring Protocol, hereinafter referred to as BMP;Wherein BGP is Border Gateway Protocol, Border Gateway Protocol) relevant regulations define BMP neighbours' link setup with And message interaction process method, but for equipment room message interaction during, how to judge to receive message Whether it is tampered or forges and do not illustrate, make the communication security of BMP there is certain hidden danger.
Content of the invention
Embodiment of the present invention technical problem to be solved be to provide a kind of method of BMP message authentication and Device, can make receiving terminal effectively identify whether the BMP message receiving has been tampered or has forged, Ensure the communication security of BMP.
In order to solve above-mentioned technical problem, the present invention adopts the following technical scheme that:
One side according to the embodiment of the present invention provides a kind of method of BMP message authentication, is applied to Transmitting terminal, including:
The first checking algorithm of being pre-configured with according to transmitting terminal, first key and to be sent and be packaged with First message of BMP data information, determines unique first check information;
Described first check information is stored in described first message, and sends described first message to reception End, is carried out to described first message receiving according to the second checking algorithm and the second key by described receiving terminal Verification, wherein said second checking algorithm and described first checking algorithm are identical algorithms, described second key It is same key with described first key.
Further, described first message is transmitting message.
Further, described the first checking algorithm being pre-configured with according to transmitting terminal, first key and pending The first message that is sending and being packaged with BMP data information, determines unique first check information, specifically For:
According to described first checking algorithm, all fields of described first key and described first message are carried out Logical calculated, obtains described first check information.
A kind of other side according to the embodiment of the present invention, there is provided method of BMP message authentication, should For receiving terminal, including:
Receive and be packaged with BMP data information and the first message comprising the first check information, wherein, described First check information is transmitting terminal according to the first checking algorithm being pre-configured with, first key and described first report Literary composition determination obtains;
The second checking algorithm of being pre-configured with according to receiving terminal, the second key and receive described first message, Determine unique second check information, wherein, described second checking algorithm with described first checking algorithm is Identical algorithms, described second key and described first key are same key;
If described second check information is identical with described first check information, authentication result is described first message It is not tampered with or forges, the first message authentication being packaged with described BMP data information passes through;
If described second check information is different from described first check information, authentication result is described first message It is tampered or forges, and directly abandon described first message.
Further, described first message is transmitting message.
Further, described the second checking algorithm being pre-configured with according to receiving terminal, the second key and receive Described first message, determine unique second check information, specially:
According to described second checking algorithm in described second key and described first message remove described first school Test all fields outside information and carry out logical calculated, obtain described second check information.
A kind of other side according to the embodiment of the present invention, there is provided device of BMP message authentication, should For transmitting terminal, including:
First determining module, for be pre-configured with according to transmitting terminal the first checking algorithm, first key and The first message that is to be sent and being packaged with BMP data information, determines unique first check information;
Storage/sending module, for being stored in described first check information in described first message, concurrently Send described first message to receiving terminal, by described receiving terminal according to the second checking algorithm and the second key to reception To described first message verified, wherein said second checking algorithm and described first checking algorithm are phase Same algorithm, described second key and described first key are same key.
Further, described first message is transmitting message.
Further, described first determining module specifically for according to described first checking algorithm to described first All fields of key and described first message carry out logical calculated, obtain described first check information.
A kind of other side according to the embodiment of the present invention, there is provided device of BMP message authentication, should For receiving terminal, including:
Receiver module, for receiving the first report being packaged with BMP data information and comprising the first check information Literary composition, wherein, described first check information is transmitting terminal according to the first checking algorithm being pre-configured with, first close Key and described first message determine and obtain;
Second determining module, for be pre-configured with according to receiving terminal the second checking algorithm, the second key and connecing Receive described first message, determine unique second check information, wherein, described second checking algorithm with Described first checking algorithm is identical algorithms, and described second key and described first key are same key;
First authentication module, for when described second check information is identical with described first check information, sentencing Fixed described first message is not tampered with or forges, and so that the first message being packaged with described BMP data information is led to Cross certification;
Second authentication module, for when described second check information is different from described first check information, sentencing Fixed described first message is tampered or forges, and directly abandons described first message.
Further, described first message is transmitting message.
Further, described second determining module specifically for according to described second checking algorithm to described second In key and described first message, all fields in addition to described first check information carry out logical calculated, obtain Described second check information.
The invention has the beneficial effects as follows:The method of BMP message authentication provided in an embodiment of the present invention is passed through The two ends of BMP session use safety certification, that is, in transmitting terminal according to the checking algorithm being pre-configured with, key Obtain the first check information with the first message being packaged with BMP data information, in receiving terminal according to identical Checking algorithm, key and be packaged with the first message of BMP data information and obtain the second check information, if One check information is differed with the second check information, then judge that the message being packaged with BMP data information is usurped Change or forge, and then think that the BMP data information (i.e. BMP message) in this message is tampered, directly Connect and abandon the first message being packaged with BMP data information;If the first check information and the second check information phase With then certification is passed through.By above-mentioned authentication method, receiving terminal can be made effectively to identify and to receive Whether BMP message has been tampered or has forged the communication security it is ensured that BMP.
Brief description
Fig. 1 represents the method flow of the BMP message authentication being applied to transmitting terminal provided in an embodiment of the present invention Figure;
Fig. 2 represents the method flow of the BMP message authentication being applied to receiving terminal provided in an embodiment of the present invention Figure;
Fig. 3 represents the device block diagram of the BMP message authentication being applied to transmitting terminal provided in an embodiment of the present invention;
Fig. 4 represents the device block diagram of the BMP message authentication being applied to receiving terminal provided in an embodiment of the present invention.
Fig. 5 represents the method exemplary process diagram of BMP message authentication provided in an embodiment of the present invention.
Specific embodiment
It is more fully described the exemplary embodiment of the present invention below with reference to accompanying drawings.Although showing in accompanying drawing The exemplary embodiment of the present invention it being understood, however, that may be realized in various forms the present invention and should be by Embodiments set forth here is limited.On the contrary, these embodiments are provided to be able to be best understood from this Invention, and complete for the scope of the present invention can be conveyed to those skilled in the art.
A kind of one side according to the embodiment of the present invention, there is provided method of BMP message authentication, application In transmitting terminal, as shown in figure 1, methods described includes:
S101, the first checking algorithm, first key and the to be sent and envelope that are pre-configured with according to transmitting terminal Equipped with the first message of BMP data information, determine unique first check information.
S102, described first check information is stored in described first message, and sends described first message To receiving terminal, by described receiving terminal according to the second checking algorithm and the second key to described first report receiving Literary composition is verified, and wherein said second checking algorithm and described first checking algorithm are identical algorithms, and described the Two keys and described first key are same key.
The method of BMP message authentication provided in an embodiment of the present invention is passed through to use at the two ends of BMP session Safety certification, that is, transmitting terminal according to the first checking algorithm being pre-configured with, first key and to be sent and The first message being packaged with BMP data information (issues BMP message in transmitting procedure by BMP server In can be packaged into other messages, i.e. the first message) obtain the first check information;Receive in receiving terminal After one message, the second check information is obtained according to the second checking algorithm, the second key and the first message, if First check information is differed with the second check information, then judge that the first message is tampered or forges, and then recognize It is tampered for the BMP data information (i.e. BMP message) in the first message, directly abandon the first message; If the first check information is identical with the second check information, judges that this first message is not tampered with or forges, enter And think that the BMP data information being encapsulated in this first message is not tampered with or forges, then this first message Certification is passed through, and that is, BMP message authentication passes through.By above-mentioned authentication method, receiving terminal can be made effective Identify whether the BMP message receiving has been tampered or has forged the communication security it is ensured that BMP.
Wherein, for ensureing the concordance of transmitting terminal and receiving terminal safety certification, to join in transmitting terminal and receiving terminal Put identical checking algorithm and key, that is, described first checking algorithm is identical calculation with described second checking algorithm Method, described first key and described second key are same key.Described first checking algorithm and the second verification Algorithm can using the widely used MD5 of present computer safety field (Message Digest Algorithm, Message-Digest Algorithm 5) algorithm, a unique informative abstract (i.e. first can be produced using MD5 algorithm Check information and the second check information), certainly select other checking algorithms also dependent on being actually needed.
Wherein, in embodiments of the present invention, described first message is preferably transmitting message, and transmitting message can Think the TCP message using TCP (Transmission Control Protocol) agreement, alternatively adopt The corresponding message of other host-host protocols.Therefore, transmitting terminal can according to the first checking algorithm, first key with And transmitting message to be sent and that be packaged with BMP data information, determine the first check information.
Further, described step S101 is specially:
According to described first checking algorithm, all fields of described first key and described first message are carried out Logical calculated, obtains described first check information.
The first message that is to be sent and being packaged with BMP data information can be regarded as a text message, the All information in one message are a character string, using this character string and first key as the first checking algorithm Input, carries out logical calculated, obtains unique first check information.As long as text message changes, Calculated check information will be different from the first check information again, thus judge the first message by Distort or forge.
Implement in embodiment in the present invention, when described first message is transmitting message, then with transmitting message All fields and first key carry out logical calculated and obtain the first verification as the input of the first checking algorithm Information, and be stored in this transmitting message, send to receiving terminal, calculated according to the described second verification by receiving terminal Method and the second key verify to this transmitting message receiving.
In embodiments of the present invention, the first check information can be stored in the afterbody of this first message, to be received End, according to during the second checking algorithm verification, can be calculated according to the original length of this first message, thus keeping away Exempt from for the first check information to also serve as input to carry out logical calculated, lead to the generation of check errors.
A kind of other side according to the embodiment of the present invention, there is provided device of BMP message authentication, should For transmitting terminal, as shown in Fig. 2 described device includes:
First determining module 201, for be pre-configured with according to transmitting terminal the first checking algorithm, first key And the first message to be sent and that be packaged with BMP data information, determine a unique first verification letter Breath.
Storage/sending module 202, for described first check information is stored in described first message, and Send described first message to receiving terminal, docked according to the second checking algorithm and the second key by described receiving terminal Described first message receiving is verified, and wherein said second checking algorithm with described first checking algorithm is Identical algorithms, described second key and described first key are same key.
Further, described first message is transmitting message.
Further, described first determining module 201 specifically for according to described second checking algorithm to described In second key and described first message, all fields in addition to described first check information carry out logical calculated, Obtain described second check information.
It should be noted that this device is the side of the BMP message authentication being applied to transmitting terminal as described above The corresponding device of method, in said method embodiment all implementations all be applied to the embodiment of this device, Also identical technique effect can be reached.
A kind of other side according to the embodiment of the present invention, there is provided method of BMP message authentication, should For receiving terminal, as shown in figure 3, described inclusion:
S301, reception are packaged with BMP data information and the first message comprising the first check information, wherein, Described first check information is transmitting terminal according to the first checking algorithm being pre-configured with, first key and described the One message determination obtains.
S302, the second checking algorithm being pre-configured with according to receiving terminal, the second key and receive described first Message, determines unique second check information, and wherein, described second checking algorithm verifies with described first Algorithm is identical algorithms, and described second key and described first key are same key.
If described second check information of S303 is identical with described first check information, authentication result is described the One message is not tampered with or forges, and the first message authentication being packaged with described BMP data information passes through.
If described second check information of S304 is different from described first check information, authentication result is described the One message is tampered or forges, and directly abandons described first message.
The method of BMP message authentication provided in an embodiment of the present invention is passed through to use at the two ends of BMP session Safety certification, that is, transmitting terminal according to the first checking algorithm being pre-configured with, first key and to be sent and The first message being packaged with BMP data information (issues BMP message in transmitting procedure by BMP server In can be packaged into other messages, i.e. the first message) obtain the first check information;Receive in receiving terminal After one message, the second check information is obtained according to the second checking algorithm, the second key and the first message, if First check information is differed with the second check information, then judge that the first message is tampered or forges, and then recognize It is tampered for the BMP data information (i.e. BMP message) in the first message, directly abandon the first message; If the first check information is identical with the second check information, judge that this first message is not tampered with or forges, and then Think that the BMP data information being encapsulated in this first message is not tampered with or forges, then this first message is recognized Card passes through, and that is, BMP message authentication passes through.By above-mentioned authentication method, receiving terminal can be made effectively to know Do not go out whether the BMP message receiving has been tampered or has forged the communication security it is ensured that BMP.
Wherein, for ensureing the concordance of transmitting terminal and receiving terminal safety certification, to join in transmitting terminal and receiving terminal Put identical checking algorithm and key, that is, described second checking algorithm is identical calculation with described first checking algorithm Method, described second key and described first key are same key.Described first checking algorithm and the second verification Algorithm can using the widely used MD5 of present computer safety field (Message Digest Algorithm, Message-Digest Algorithm 5) algorithm, a unique informative abstract (i.e. first can be produced using MD5 algorithm Check information and the second check information), certainly select other checking algorithms also dependent on being actually needed.
Wherein, in embodiments of the present invention, described first message is preferably transmitting message, and transmitting message can Think the TCP message using TCP (Transmission Control Protocol) agreement, alternatively adopt The corresponding message of other host-host protocols.Therefore, receiving terminal can according to the first checking algorithm, first key with And transmitting message to be sent and that be packaged with BMP data information, determine the first check information.
Further, described step S301 is specially:
According to described second checking algorithm in described second key and described first message remove described first school Test all fields outside information and carry out logical calculated, obtain described second check information.
One can be regarded receiving the first message being packaged with BMP data information and comprising the first check information as Individual text message, all information in the first message are a character string, with this character string (except the first verification letter Breath is outer) and the second key as the input of the second checking algorithm, carry out logical calculated, obtain the second verification and believe Breath.
Implement in embodiment in the present invention, when described first message is transmitting message, then with transmitting message All fields (in addition to the first check information) and the second key patrolled as the input of the second checking algorithm Collect and be calculated the second check information, and judge whether described second check information is identical with the first check information. If described second check information is identical with described first check information, judge this transmitting message be not tampered with or Forge, carry out thinking that the BMP data information being encapsulated in transmitting message is not tampered with or forges, this transmission Message authentication passes through, and that is, BMP message authentication passes through;If described second check information and described first verification Information is different, then judge that this transmitting message is tampered or forges, and then thinks and be encapsulated in transmitting message BMP data information, directly abandons this transmitting message.
In embodiments of the present invention, the first check information can be stored in the afterbody of this transmitting message, so connect Receiving end can be calculated according to the original length of this transmitting message, thus avoiding also serving as the first check information Input carries out logical calculated, leads to the generation of check errors.
A kind of other side according to the embodiment of the present invention, there is provided device of BMP message authentication, should For receiving terminal, as shown in figure 4, methods described includes:
Receiver module 401, is packaged with BMP data information and comprises the of the first check information for receiving One message, wherein, described first check information be transmitting terminal according to the first checking algorithm being pre-configured with, the One key and described first message determine and obtain.
Second determining module 402, for be pre-configured with according to receiving terminal the second checking algorithm, the second key With receive described first message, determine unique second check information, wherein, described second verification calculate Method and described first checking algorithm are identical algorithms, and described second key and described first key are same key.
First authentication module 403, for when described second check information is identical with described first check information, Judge that described first message is not tampered with or forges, make to be packaged with the first message of described BMP data information By certification.
Second authentication module 404, for when described second check information is different from described first check information, Judge that described first message is tampered or forges, and directly abandon described first message.
Further, described first message is transmitting message.
Further, described second determining module 402 specifically for according to described second checking algorithm to described In second key and described first message, all fields in addition to described first check information carry out logical calculated, Obtain described second check information.
It should be noted that this device is the BGP monitoring protocol message being applied to receiving terminal as described above The corresponding device of method of certification, in said method embodiment, all implementations are all applied to the reality of this device Apply in example, also can reach identical technique effect.
For a further understanding of the method for BMP message authentication provided in an embodiment of the present invention, below with a tool It is illustrated as a example body embodiment.
In this specific embodiment, using MD5 algorithm as the first checking algorithm and the second checking algorithm, One message is explanation as a example TCP message.
As shown in figure 5, configuring md5 authentication mechanism at BMP session two ends, whether verification BMP message Usurped or forged.
S501, all configure md5 authentication mechanism at BMP session two ends.
S502, BMP issue TCP the key (corresponding first key) of MD5.
, when sending BMP message, MD5 algorithm the key of MD5 and is packaged with BMP for S503, TCP The TCP message of message carry out logical calculated as input.
S504, result A calculating (corresponding first check information) is left in TCP message.
The message of reception is recalculated once by S505, the TCP of receiving terminal according to step S503, is tied Fruit B (corresponding second check information), and result A compares, to verify TCP message whether be tampered or Forge, if A and B is inconsistent, is considered as BMP message and is tampered or forges, directly abandon, so Can ensure that the stability that TCP connects, and then ensure that the message that BMP session receives is also correct; Without being tampered, just it is uploaded to BMP.
In sum, the message of interaction can be regarded as a text message in embodiments of the present invention, by not Reversible character string becomes scaling method, creates a unique check information.Propagate this text afterwards During, no matter the content of text there occurs that any type of change (includes artificial modification or downloading process Unstable error of transmission causing of middle circuit etc.), as long as finding check information when this text is recalculated Differ it is possible to determining that receiving terminal receives is an incorrect text with the check information of transmitting terminal, Think that BMP message is usurped power, receiving terminal just directly abandons this message, and receiving terminal so can be made effective Identify whether the BMP message receiving has been tampered or has forged the communication security it is ensured that BMP.
Above-described is the preferred embodiment of the present invention it should be pointed out that ordinary people for the art For member, some improvements and modifications can also be made under the premise of without departing from principle of the present invention, these Improvements and modifications are also within the scope of the present invention.

Claims (12)

1. a kind of method of BMP message authentication, is applied to transmitting terminal it is characterised in that including:
The first checking algorithm of being pre-configured with according to transmitting terminal, first key and to be sent and be packaged with First message of BMP data information, determines unique first check information;
Described first check information is stored in described first message, and sends described first message to reception End, is carried out to described first message receiving according to the second checking algorithm and the second key by described receiving terminal Verification, wherein said second checking algorithm and described first checking algorithm are identical algorithms, described second key It is same key with described first key.
2. method according to claim 1 is it is characterised in that described first message is transmitting message.
3. method according to claim 1 and 2 it is characterised in that described according to transmitting terminal in advance First checking algorithm of configuration, first key and to be sent and being packaged with BMP data information first Message, determines unique first check information, specially:
According to described first checking algorithm, all fields of described first key and described first message are carried out Logical calculated, obtains described first check information.
4. a kind of method of BMP message authentication, is applied to receiving terminal it is characterised in that including:
Receive and be packaged with BMP data information and the first message comprising the first check information, wherein, described First check information is transmitting terminal according to the first checking algorithm being pre-configured with, first key and described first report Literary composition determination obtains;
The second checking algorithm of being pre-configured with according to receiving terminal, the second key and receive described first message, Determine unique second check information, wherein, described second checking algorithm with described first checking algorithm is Identical algorithms, described second key and described first key are same key;
If described second check information is identical with described first check information, authentication result is described first message It is not tampered with or forges, the first message authentication being packaged with described BMP data information passes through;
If described second check information is different from described first check information, authentication result is described first message It is tampered or forges, and directly abandon described first message.
5. method according to claim 4 is it is characterised in that described first message is transmitting message.
6. the method according to claim 4 or 5 it is characterised in that described according to receiving terminal in advance Second checking algorithm of configuration, the second key and described first message receiving, determine one unique second Check information, specially:
According to described second checking algorithm in described second key and described first message remove described first school Test all fields outside information and carry out logical calculated, obtain described second check information.
7. a kind of device of BMP message authentication, is applied to transmitting terminal it is characterised in that including:
First determining module, for be pre-configured with according to transmitting terminal the first checking algorithm, first key and The first message that is to be sent and being packaged with BMP data information, determines unique first check information;
Storage/sending module, for being stored in described first check information in described first message, concurrently Send described first message to receiving terminal, by described receiving terminal according to the second checking algorithm and the second key to reception To described first message verified, wherein said second checking algorithm and described first checking algorithm are phase Same algorithm, described second key and described first key are same key.
8. device according to claim 7 is it is characterised in that described first message is transmitting message.
9. the device according to claim 7 or 8 is it is characterised in that described first determining module has Body is used for according to described first checking algorithm, all fields of described first key and described first message being entered Row logical calculated, obtains described first check information.
10. a kind of device of BMP message authentication, is applied to receiving terminal it is characterised in that including:
Receiver module, for receiving the first report being packaged with BMP data information and comprising the first check information Literary composition, wherein, described first check information is transmitting terminal according to the first checking algorithm being pre-configured with, first close Key and described first message determine and obtain;
Second determining module, for be pre-configured with according to receiving terminal the second checking algorithm, the second key and connecing Receive described first message, determine unique second check information, wherein, described second checking algorithm with Described first checking algorithm is identical algorithms, and described second key and described first key are same key;
First authentication module, for when described second check information is identical with described first check information, sentencing Fixed described first message is not tampered with or forges, and so that the first message being packaged with described BMP data information is led to Cross certification;
Second authentication module, for when described second check information is different from described first check information, sentencing Fixed described first message is tampered or forges, and directly abandons described first message.
11. devices according to claim 10 are it is characterised in that described first message is transmission report Literary composition.
12. devices according to claim 10 or 11 are it is characterised in that described second determining module Specifically for according to described second checking algorithm to removing described the in described second key and described first message All fields outside one check information carry out logical calculated, obtain described second check information.
CN201510531020.6A 2015-08-26 2015-08-26 A kind of method and device of BMP message authentication Pending CN106487746A (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN201510531020.6A CN106487746A (en) 2015-08-26 2015-08-26 A kind of method and device of BMP message authentication
PCT/CN2016/076874 WO2017031984A1 (en) 2015-08-26 2016-03-21 Bmp message authentification method and device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201510531020.6A CN106487746A (en) 2015-08-26 2015-08-26 A kind of method and device of BMP message authentication

Publications (1)

Publication Number Publication Date
CN106487746A true CN106487746A (en) 2017-03-08

Family

ID=58099362

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201510531020.6A Pending CN106487746A (en) 2015-08-26 2015-08-26 A kind of method and device of BMP message authentication

Country Status (2)

Country Link
CN (1) CN106487746A (en)
WO (1) WO2017031984A1 (en)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109040025A (en) * 2018-07-09 2018-12-18 新华三技术有限公司 A kind of message processing method and device
CN110661746A (en) * 2018-06-28 2020-01-07 中车株洲电力机车研究所有限公司 Train CAN bus communication security encryption method and decryption method
CN114694316A (en) * 2021-07-02 2022-07-01 北京新能源汽车股份有限公司 Lease control method, device, equipment and automobile
CN115085993A (en) * 2022-06-08 2022-09-20 国汽智控(北京)科技有限公司 Data verification method and device and domain controller

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111565177B (en) * 2020-04-26 2022-07-19 蘑菇车联信息科技有限公司 Vehicle-mounted machine data encryption transmission method and device
CN113572685B (en) 2020-04-29 2023-03-10 华为技术有限公司 Information reporting method, information processing method, device and equipment
CN112039898A (en) * 2020-09-01 2020-12-04 广州小鹏汽车科技有限公司 Encrypted communication method, encrypted communication device and vehicle
CN115314292B (en) * 2022-08-08 2023-03-07 钛信(上海)信息科技有限公司 Message secure transmission method and device

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1477814A (en) * 2002-08-20 2004-02-25 华为技术有限公司 Message safety protection method based on boundary gateway protocol message
US20080267189A1 (en) * 2006-01-10 2008-10-30 Huawei Technologies Co., Ltd. Method and system for verifying update information in bgp
CN101309260A (en) * 2008-06-05 2008-11-19 周红伟 Network authentication method on the basis of cryptoguard
CN101465739A (en) * 2009-01-15 2009-06-24 中兴通讯股份有限公司 Method and equipment for implementing authentication mode smooth transition
CN102857521A (en) * 2012-10-12 2013-01-02 盛科网络(苏州)有限公司 Method and device for setting operation, administration and maintenance (OAM) security authentication
WO2014169735A1 (en) * 2013-04-16 2014-10-23 Hangzhou H3C Technologies Co., Ltd. Routing protocol authentication migration

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7313613B1 (en) * 2002-01-03 2007-12-25 Microsoft Corporation System and method facilitating network diagnostics and self-healing

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1477814A (en) * 2002-08-20 2004-02-25 华为技术有限公司 Message safety protection method based on boundary gateway protocol message
US20080267189A1 (en) * 2006-01-10 2008-10-30 Huawei Technologies Co., Ltd. Method and system for verifying update information in bgp
CN101309260A (en) * 2008-06-05 2008-11-19 周红伟 Network authentication method on the basis of cryptoguard
CN101465739A (en) * 2009-01-15 2009-06-24 中兴通讯股份有限公司 Method and equipment for implementing authentication mode smooth transition
CN102857521A (en) * 2012-10-12 2013-01-02 盛科网络(苏州)有限公司 Method and device for setting operation, administration and maintenance (OAM) security authentication
WO2014169735A1 (en) * 2013-04-16 2014-10-23 Hangzhou H3C Technologies Co., Ltd. Routing protocol authentication migration

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110661746A (en) * 2018-06-28 2020-01-07 中车株洲电力机车研究所有限公司 Train CAN bus communication security encryption method and decryption method
CN110661746B (en) * 2018-06-28 2022-03-18 中车株洲电力机车研究所有限公司 Train CAN bus communication security encryption method and decryption method
CN109040025A (en) * 2018-07-09 2018-12-18 新华三技术有限公司 A kind of message processing method and device
CN109040025B (en) * 2018-07-09 2020-02-04 新华三技术有限公司 Message processing method and device
CN114694316A (en) * 2021-07-02 2022-07-01 北京新能源汽车股份有限公司 Lease control method, device, equipment and automobile
CN115085993A (en) * 2022-06-08 2022-09-20 国汽智控(北京)科技有限公司 Data verification method and device and domain controller

Also Published As

Publication number Publication date
WO2017031984A1 (en) 2017-03-02

Similar Documents

Publication Publication Date Title
CN106487746A (en) A kind of method and device of BMP message authentication
JP7029471B2 (en) Uplink data decompression, compression method and equipment
CN107835040B (en) Data communication method, equipment and storage medium based on Bluetooth
CN111083161A (en) Data transmission processing method and device and Internet of things equipment
CN108512846A (en) Mutual authentication method and device between a kind of terminal and server
CN104038490B (en) A kind of communication security method of calibration and its device
CN105471917A (en) Data transmission method and system
CN111164923A (en) Design for unidirectional data transmission
CN105183687B (en) A kind of timesharing serial port communication method and system
US20130148671A1 (en) Method of transporting data from sending node to destination node
CN107046495A (en) Methods, devices and systems for building VPN
CN103647759A (en) Negotiation method and apparatus of maximum segment size (MSS)
CN105323796B (en) Method for determining maximum segment size
CN108024243A (en) A kind of eSIM is caught in Network Communication method and its system
CN104283716B (en) Data transmission method, equipment and system
CN107645357A (en) Transmit the incomplete restoration methods of file and device
CN109274636B (en) Data safety transmission method and device, system and train thereof
Deshpande et al. Pulsec: Secure element based framework for sensors anomaly detection in industry 4.0
CN105847056B (en) The transmission method and system of two-way converting detection control message
CN102231667B (en) Method and device for registering serial device
CN109167809B (en) Internet of things platform docking data transmission format processing method
CN107040508B (en) Device and method for adapting authorization information of terminal device
CN110149242B (en) Protocol conversion function verification device and method supporting SRIO and Ethernet
CN104486787B (en) A kind of link failure method and device
CN104767590A (en) Reliable data transmission and control method for serial communication

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
WD01 Invention patent application deemed withdrawn after publication
WD01 Invention patent application deemed withdrawn after publication

Application publication date: 20170308