CN106921558A - A kind of safety of electronic mail receive-transmit system and method - Google Patents
A kind of safety of electronic mail receive-transmit system and method Download PDFInfo
- Publication number
- CN106921558A CN106921558A CN201511001489.5A CN201511001489A CN106921558A CN 106921558 A CN106921558 A CN 106921558A CN 201511001489 A CN201511001489 A CN 201511001489A CN 106921558 A CN106921558 A CN 106921558A
- Authority
- CN
- China
- Prior art keywords
- digital certificate
- recipient
- module
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L51/00—User-to-user messaging in packet-switching networks, transmitted according to store-and-forward or real-time protocols, e.g. e-mail
- H04L51/42—Mailbox-related aspects, e.g. synchronisation of mailboxes
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Information Transfer Between Computers (AREA)
Abstract
The present invention relates to safety of electronic mail transmit-receive technology field, a kind of safety of electronic mail receive-transmit system and method are disclosed, the system includes:Digital certificate acquisition module, the digital certificate for obtaining the recipient according to the e-mail address of recipient;Sender's client modules, with the digital certificate encrypted E-mail of the recipient, and send the Email after encryption;And recipient's client modules, for receiving the Email, and the Email is decrypted with the key of recipient and shows the Email after decryption.The present invention is by the automatic digital certificate for obtaining recipient; it is achieved thereby that searching corresponding digital certificate automatically carries out the problem of encryption and decryption; the automatic safeguard protection for carrying out e-mail data; strictly accomplish that mail data is encipherment protection in local, network transmission, mail server, can prevent that the behavior of Email is forged or changed with addressee's name well.
Description
Technical field
The present invention relates to safety of electronic mail transmit-receive technology, in particular it relates to a kind of safety of electronic mail is received
Hair system and method.
Background technology
With the development of social informatization, the application of Email turns into essential one of daily life
Point, particularly in fields such as business, government affairs applications, substantial amounts of confidential data can be related to.However, passing
There is many safety problems in the e-mail system of system, such as identity forgery, data leak, behavior is denied.
Also, Traditional E-mail System security protection is weaker, so be highly susceptible to attack, and secret letter
The leakage or forgery of breath will bring huge loss.
The Mail Clients such as current OUTLOOK, FOXMAIL are supported based on S/MIME agreement realities
Existing safety approach.The program is also based on digital certificate and mail is signed and encrypted.But for
Using highly inconvenient, it is necessary to digital certificate and private key are individually issued each user for user, send out postal
Need install and select addressee's corresponding digital certificate by hand during part, for group mail or volume of mail compared with
Big situation, it will be a bad dream.
The content of the invention
It is an object of the invention to provide a kind of safety of electronic mail receive-transmit system and method, for solving receiving
Searching corresponding digital certificate automatically during hair mail carries out the problem of encryption and decryption.
To achieve these goals, the invention provides a kind of safety of electronic mail receive-transmit system, the system
Including:Digital certificate acquisition module, obtains the recipient's for the e-mail address according to recipient
Digital certificate;Sender's client modules, with the digital certificate encrypted E-mail of the recipient, and
Send the Email after encryption;And recipient's client modules, for receiving the Email,
And the Email is decrypted with the key of recipient and shows the Email after decryption.
Correspondingly, present invention also offers a kind of safety of electronic mail receiving/transmission method, the method includes:Root
The digital certificate of the recipient is obtained according to the e-mail address of recipient;With the numeral card of the recipient
Book encrypted E-mail, and send the Email after encryption;And the Email is received, it is used in combination
The key of recipient is decrypted to the Email and shows the Email after decryption..
The digital certificate that automatic acquisition recipient is passed through by above-mentioned technical proposal, the present invention, so as to realize
Automatic lookup corresponding digital certificate carries out the problem of encryption and decryption, and the peace of e-mail data is carried out automatically
Full guard, has strictly accomplished that mail data is that encryption is protected in local, network transmission, mail server
Shield, can prevent that the behavior of Email is forged or changed with addressee's name well.
Other features and advantages of the present invention will be described in detail in subsequent specific embodiment part.
Brief description of the drawings
Accompanying drawing is, for providing a further understanding of the present invention, and to constitute the part of specification, with
Following specific embodiment is used to explain the present invention together, but is not construed as limiting the invention.
In accompanying drawing:
Fig. 1 is the block diagram of the safety of electronic mail receive-transmit system that the present invention is provided;
Fig. 2 is the block diagram of the safety of electronic mail receive-transmit system that the specific embodiment of the invention is provided;And
Fig. 3 is the flow chart of the safety of electronic mail receiving/transmission method that the present invention is provided.
Specific embodiment
Specific embodiment of the invention is described in detail below in conjunction with accompanying drawing.It should be appreciated that
Specific embodiment described herein is merely to illustrate and explain the present invention, and is not limited to this hair
It is bright.
Fig. 1 is the block diagram of the safety of electronic mail receive-transmit system that the present invention is provided, as shown in figure 1, this is
System includes digital certificate acquisition module, sender's client modules and recipient's client modules.Numeral card
Book acquisition module is used to be obtained according to the e-mail address of recipient the digital certificate of the recipient;Send
The square client modules digital certificate encrypted E-mail of recipient, and send the electronics postal after encryption
Part;Recipient's client modules are used to receive Email, and Email is entered with the key of recipient
Row decryption simultaneously shows the Email after decryption.
When user sends Email, digital certificate acquisition module can be automatically according to the electronics postal of recipient
Part address obtains the digital certificate of recipient, the numeral card that sender's client modules can be according to acquired in
Book is encrypted automatically to Email, and is installed manually without user and select the number corresponding to recipient
Word certificate.
It will be appreciated by those skilled in the art that recipient's client modules know recipient's Email in advance
The key of address, thus sender's client modules need not inform recipient's client modules key, also
It is to say, sender's client modules get digital certificate by digital certificate acquisition module, to electronics postal
Sent after part encryption, recipient's client modules are received Email and are decrypted using corresponding secret key.
Fig. 2 is the block diagram of the safety of electronic mail receive-transmit system that the specific embodiment of the invention is provided, and is such as schemed
Shown in 2, in order to realize getting digital certificate automatically by e-mail address, the present invention is provided
Safety of electronic mail receive-transmit system also include personal information module and digital certificate module.Wherein, it is personal
Information module is used to store personal information, and the personal information includes person identifier and e-mail address;Number
Word certificate module is used to store personal digital certificate information, and the personal digital certificate information includes person identifier
And the digital certificate being associated with the person identifier;Wherein, digital certificate acquisition module is used to believe individual
E-mail address in breath is associated with the digital certificate in personal digital certificate information by person identifier
Get up, digital certificate is obtained with by e-mail address.
Person identifier in personal information module and the person identifier in digital certificate module are identical letters
Breath, thus can be by person identifier by the e-mail address in personal information module and digital certificate mould
Digital certificate in block is associated.
Wherein, for an enterprise, often there is flow of personnel in employee, in order to ensure personal letter
Breath module is maximally utilized, it is necessary to often to personal information module sum with the resource of digital certificate module
Word certificate module is updated.In this regard, enterprise administrator can set up employee's information table, in the person of having
When work is left office, the corresponding informance in employee information table is deleted, when new employee is recruited, in employee information table
It is middle to increase corresponding information.
Periodically the information in personal information module and digital certificate module can also be updated, in order to just
In renewal, person identifier can be included in employee information table, then periodically will be individual in employee information table
People identify with personal information module and numeral certificate module in person identifier compare, have employee from
During duty, personal mark will be deleted in employee information table, delete corresponding with the person identifier after comparison
Personal information module in corresponding information and digital certificate module in corresponding information.Recruiting new member
In man-hour, personal mark will be increased in employee information table, increase corresponding with the person identifier after comparison
Personal information module in corresponding information and digital certificate module in corresponding information (automatic application numeral
Certificate).
Some safe e-mail systems for being based on digital certificate are currently there are, is mainly also based on
Digital certificate carries out encryption and decryption to Mail Contents.Establishing one's own system without exception, with enterprises person
Work information system departs from, and when personnel are newly entered, needs to be Added User simultaneously in safe e-mail system by hand
Application certificate;When personnel leave office, need to carry out user log off in safe e-mail system by hand.Pole
Big changes internal information flow, brings very big inconvenience, has also had a strong impact on safe electronic postal
The popularization of part.And pass through above technical scheme, can be by a management module periodically to employee information table
In person identifier and personal information module and digital certificate module in person identifier compare, the mistake
Journey is completed by machine completely, it is not necessary to artificial to participate in.
It will be appreciated by those skilled in the art that the digital certificate once applied can be not forever to use
, if digital certificate is expired, it is impossible to which Email is encrypted, in this regard, the present invention is provided
Safety of electronic mail receive-transmit system can also include digital certificate management module, the digital certificate management mould
Block is used for timing to be inquired about the time limit of the digital certificate in digital certificate module, to judge whether
Expired digital certificate, for the new digital certificate of expired applying digital certificate and store in digital certificate
In module, that is, the digital certificate before being replaced it with new digital certificate.
For sender's client modules, Email can be signed and added by pre- transmitting element
Close, that is to say, that sender's client modules can include pre- transmitting element, the pre- transmitting element is used for
Signed with the Email before the key pair encryption of sender and with the digital certificate of the recipient
Encrypted E-mail.Wherein, the Email of encryption includes message body and annex.
For recipient's client modules, can be by pre-display unit first to the validity of digital certificate
Verified, just Email is decrypted in the case of being effectively in checking digital certificate.Specific
In, if sender is signed to Email, receiving terminal client modules can also be to hair
The signature of the side of sending is verified.Sender can be signed using method of the prior art in the present invention
Checking and the checking to digital certificate, it will not go into details for specific verification method.That is, recipient client
End module can include pre-display unit and display unit, and pre-display unit is used to verify having for digital certificate
Effect property, and the Email is carried out with the key of recipient in the case of checking digital certificate is effective
Decryption;Display unit is used to show the Email after decryption.
Certainly, above procedure is firstly the need of there is digital certificate, if without digital certificate, should apply for number
Word certificate, it is also possible to whether judge user (recipient) using the digital certificate management module in the present invention
There is digital certificate, if can not automatically apply for digital certificate.
Fig. 3 is the flow chart of the safety of electronic mail receiving/transmission method that the present invention is provided, as shown in figure 3, should
Method includes:E-mail address according to recipient obtains the digital certificate of the recipient;Use recipient
Digital certificate encrypted E-mail, and send encryption after Email;Email is received, is used in combination
The key of recipient is decrypted to Email and shows the Email after decryption.
It should be noted that the detail and benefit of the safety of electronic mail receiving/transmission method that the present invention is provided
Similar with the safety of electronic mail receive-transmit system that the present invention is provided, in this, it will not go into details.
The preferred embodiment of the present invention is described in detail above in association with accompanying drawing, but, the present invention is not limited
Detail in above-mentioned implementation method, in range of the technology design of the invention, can be to the present invention
Technical scheme carry out various simple variants, these simple variants belong to protection scope of the present invention.
The technical scheme provided by the present invention, can automatically by digital certificate and enterprises system
People's information is associated, and in receiving and dispatching mail, automatic correspondence digital certificate of searching carries out encryption and decryption and enters line number
Word is signed.Seamless integration- is carried out with user environment, e-mail data safeguard protection is carried out automatically,
Strictly accomplish that mail data is encipherment protection in local, network transmission, mail server, only
Addressee can check, not only prevent to be forged with addressee's name or changed the behavior of mail, also accomplish
Prevent addressee from denying the behavior of outbox.With ease of use be combined data safety by the present invention, pole
The big popularization for promoting safety E-mail.
It is further to note that each particular technique described in above-mentioned specific embodiment is special
Levy, in the case of reconcilable, can be combined by any suitable means.In order to avoid need not
The repetition wanted, the present invention is no longer separately illustrated to various possible combinations.
Additionally, can also be combined between a variety of implementation methods of the invention, as long as its
Without prejudice to thought of the invention, it should equally be considered as content disclosed in this invention.
Claims (10)
1. a kind of safety of electronic mail receive-transmit system, it is characterised in that the system includes:
Digital certificate acquisition module, the number for obtaining the recipient according to the e-mail address of recipient
Word certificate;
Sender's client modules, are added with the digital certificate encrypted E-mail of the recipient, and transmission
Email after close;And
Recipient's client modules, for receiving the Email, and with the key of recipient to described
Email is decrypted and shows the Email after decryption.
2. system according to claim 1, it is characterised in that the system also includes:
Personal information module, for storing personal information, the personal information includes person identifier and electronics postal
Part address;And
Digital certificate module, for storing personal digital certificate information, the personal digital certificate information includes
Person identifier and the digital certificate being associated with the person identifier;
Wherein, the digital certificate acquisition module be used for by the e-mail address in the personal information with
Digital certificate in the personal digital certificate information is associated by person identifier, with by electronics postal
Part address acquisition digital certificate.
3. system according to claim 2, it is characterised in that the system also includes:
Digital certificate management module, for timing to time limit of the digital certificate in the digital certificate module
Inquired about, it is new for expired applying digital certificate to judge whether expired digital certificate
Digital certificate is simultaneously stored in the digital certificate module.
4. system according to claim 1, it is characterised in that described sender client modules
Including:
Pre- transmitting element, is signed and is used institute for the Email before the key pair encryption with sender
State the digital certificate encrypted E-mail of recipient.
5. system according to claim 1, it is characterised in that recipient's client modules
Including:
Pre-display unit, the validity for verifying the digital certificate, and verifying the digital certificate
The Email is decrypted with the key of recipient in the case of effective;And
Display unit, for showing the Email after decryption.
6. a kind of safety of electronic mail receiving/transmission method, it is characterised in that the method includes:
E-mail address according to recipient obtains the digital certificate of the recipient;
With the digital certificate encrypted E-mail of the recipient, and send the Email after encryption;With
And
The Email is received, and the Email is decrypted and shown with the key of recipient
Email after decryption.
7. method according to claim 6, it is characterised in that the method also includes:
Storage personal information, the personal information includes person identifier and e-mail address;
Storage personal digital certificate information, the personal digital certificate information include person identifier and with the individual
The associated digital certificate of mark;And
By the numeral in the e-mail address in the personal information and the personal digital certificate information
Certificate is associated by person identifier, and digital certificate is obtained with by e-mail address.
8. method according to claim 7, it is characterised in that the method also includes:
Timing was inquired about the time limit of the digital certificate, to judge whether expired numeral card
Book, for the new digital certificate of expired applying digital certificate and stores.
9. method according to claim 6, it is characterised in that the method also includes:
Signed with the Email before the key pair encryption of sender.
10. method according to claim 1, it is characterised in that the method also includes:
Verify the validity of the digital certificate, and with connecing in the case of verifying that the digital certificate is effective
The key of debit is decrypted to the Email.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201511001489.5A CN106921558A (en) | 2015-12-28 | 2015-12-28 | A kind of safety of electronic mail receive-transmit system and method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201511001489.5A CN106921558A (en) | 2015-12-28 | 2015-12-28 | A kind of safety of electronic mail receive-transmit system and method |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN106921558A true CN106921558A (en) | 2017-07-04 |
Family
ID=59456226
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201511001489.5A Pending CN106921558A (en) | 2015-12-28 | 2015-12-28 | A kind of safety of electronic mail receive-transmit system and method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN106921558A (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108834145A (en) * | 2018-06-15 | 2018-11-16 | 广东美的制冷设备有限公司 | Equipment wireless module and its operation method, household appliance |
| CN109729088A (en) * | 2018-12-29 | 2019-05-07 | 广东盈世计算机科技有限公司 | A kind of method of mail treatment |
| CN110324235A (en) * | 2019-05-28 | 2019-10-11 | 北京十安赛恩科技有限公司 | The processing method and processing gateway of Email |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101222332A (en) * | 2006-12-27 | 2008-07-16 | 村田机械株式会社 | E-mail communication apparatus |
| CN101466079A (en) * | 2009-01-12 | 2009-06-24 | 中兴通讯股份有限公司 | Method, system and WAPI terminal for transmitting e-mail |
| CN103107939A (en) * | 2013-02-19 | 2013-05-15 | 郑州信大捷安信息技术股份有限公司 | Achieving method of secure email based on public safety facility management platform |
| CN104683110A (en) * | 2015-03-16 | 2015-06-03 | 武汉理工大学 | Automatic generation and configuration method of bridge digital certificate with private key |
-
2015
- 2015-12-28 CN CN201511001489.5A patent/CN106921558A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101222332A (en) * | 2006-12-27 | 2008-07-16 | 村田机械株式会社 | E-mail communication apparatus |
| CN101466079A (en) * | 2009-01-12 | 2009-06-24 | 中兴通讯股份有限公司 | Method, system and WAPI terminal for transmitting e-mail |
| CN103107939A (en) * | 2013-02-19 | 2013-05-15 | 郑州信大捷安信息技术股份有限公司 | Achieving method of secure email based on public safety facility management platform |
| CN104683110A (en) * | 2015-03-16 | 2015-06-03 | 武汉理工大学 | Automatic generation and configuration method of bridge digital certificate with private key |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108834145A (en) * | 2018-06-15 | 2018-11-16 | 广东美的制冷设备有限公司 | Equipment wireless module and its operation method, household appliance |
| CN108834145B (en) * | 2018-06-15 | 2021-12-17 | 广东美的制冷设备有限公司 | Equipment wireless module, running method thereof and household appliance |
| CN109729088A (en) * | 2018-12-29 | 2019-05-07 | 广东盈世计算机科技有限公司 | A kind of method of mail treatment |
| CN109729088B (en) * | 2018-12-29 | 2022-01-25 | 广东盈世计算机科技有限公司 | Mail processing method |
| CN110324235A (en) * | 2019-05-28 | 2019-10-11 | 北京十安赛恩科技有限公司 | The processing method and processing gateway of Email |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN105284072B (en) | support for decryption of encrypted data | |
| US20180032756A1 (en) | System and method for secure use of messaging systems | |
| CN105554032A (en) | Identity real-name authentication method and authentication system based on express sending | |
| CN105227570B (en) | A kind of safe e-mail system of integrated campaign | |
| US20090080650A1 (en) | Secure email communication system | |
| CN103973714B (en) | Email account generation method and system | |
| CN104994008B (en) | A kind of anti-phishing system and method for Email | |
| CN105450395A (en) | Information encryption and decryption processing method and system | |
| CN103428077B (en) | A kind of method and system being safely receiving and sending mails | |
| CN105656920A (en) | Method and system for encryption and decryption of mailing data based on expressage | |
| CN102055685B (en) | Method for encrypting webmail information | |
| CN103401686B (en) | A kind of user's OTP WEB Authentication System and application process thereof | |
| CN106921558A (en) | A kind of safety of electronic mail receive-transmit system and method | |
| CN110071937A (en) | Login method, system and storage medium based on block chain | |
| CN104468478A (en) | Mail encryption method | |
| CN107040550A (en) | Data ciphering method during instant messaging | |
| CN104320264B (en) | A kind of digital certificate method of effective information | |
| CN106845886A (en) | One kind realizes express delivery system of real name method | |
| CN103595619A (en) | Method, device and system for adding friend | |
| CN109309613A (en) | A kind of method, apparatus and system of mail delivery | |
| CN103780380A (en) | Asymmetric mail security encryption realization method | |
| CN103986724B (en) | Email real name identification method and system | |
| CN103763105A (en) | Encryption method and device for login of Exchange corporate E-mails | |
| CN106656739A (en) | E-mail transmission method, E-mail transmission device and E-mail transmission system | |
| CN103906004B (en) | Mail server, mail transmitting terminal and mail transmission/reception method |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20170704 |
|
| RJ01 | Rejection of invention patent application after publication |