CN108600221A - A kind of data communications method, device, earth station and computer storage media - Google Patents
A kind of data communications method, device, earth station and computer storage media Download PDFInfo
- Publication number
- CN108600221A CN108600221A CN201810374607.4A CN201810374607A CN108600221A CN 108600221 A CN108600221 A CN 108600221A CN 201810374607 A CN201810374607 A CN 201810374607A CN 108600221 A CN108600221 A CN 108600221A
- Authority
- CN
- China
- Prior art keywords
- unmanned plane
- earth station
- symmetric key
- ssl
- data
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 230000006854 communication Effects 0.000 title claims abstract description 142
- 238000004891 communication Methods 0.000 title claims abstract description 136
- 238000000034 method Methods 0.000 title claims abstract description 108
- 238000003860 storage Methods 0.000 title claims abstract description 23
- 230000004044 response Effects 0.000 claims description 33
- 230000005540 biological transmission Effects 0.000 claims description 24
- 238000012795 verification Methods 0.000 claims description 18
- 238000004590 computer program Methods 0.000 claims description 7
- 230000008569 process Effects 0.000 description 16
- 238000013461 design Methods 0.000 description 11
- 238000007689 inspection Methods 0.000 description 6
- 230000009931 harmful effect Effects 0.000 description 4
- 230000007246 mechanism Effects 0.000 description 4
- GOLXNESZZPUPJE-UHFFFAOYSA-N spiromesifen Chemical compound CC1=CC(C)=CC(C)=C1C(C(O1)=O)=C(OC(=O)CC(C)(C)C)C11CCCC1 GOLXNESZZPUPJE-UHFFFAOYSA-N 0.000 description 4
- 230000001052 transient effect Effects 0.000 description 4
- 238000010586 diagram Methods 0.000 description 2
- 235000013399 edible fruits Nutrition 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 230000006870 function Effects 0.000 description 1
- 230000014759 maintenance of location Effects 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/16—Implementing security features at a particular protocol layer
- H04L63/166—Implementing security features at a particular protocol layer at the transport layer
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
- H04L63/0435—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply symmetric encryption, i.e. same key used for encryption and decryption
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/12—Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks
Abstract
The invention discloses a kind of data communications method, device, earth station and computer storage medias, belong to unmanned plane field.Wherein, a kind of data communications method is applied to earth station, including:The earth station carries out SSL authentication handshakes using Secure Socket Layer ssl protocol and unmanned plane;The earth station generates symmetric key, and the symmetric key is sent to the unmanned plane;The earth station uses the symmetric key and the unmanned plane into row data communication.A kind of data communications method, device, earth station and computer storage media provided by the invention can improve the safety that earth station communicates with the data of unmanned plane.
Description
Technical field
The present invention relates to unmanned plane field, more particularly to a kind of foundation is in SSL (Secure Sockets Layer condoms
Connect layer)) data communications method, device, earth station and the computer storage media of encrypted tunnel.
Background technology
Currently, plaintext transmission is usually used in the data with unmanned plane communicate in earth station.It is bright in transmission process
Literary data are exposed to interconnection transfers on network and are easy to be attacked by malicious person scholar, common example such as data tampering,
Forged identity etc., in extreme circumstances unmanned plane may be held as a hostage even it is out of hand, this certainly will greatly influence flight safety
Property even result in unmanned plane crash.
Therefore establishing the communication encryption means of an earth station and unmanned plane seems necessary, to improve earth station and nothing
The safety of man-machine data communication.
Invention content
In view of this, the purpose of the present invention is to provide the storages of a kind of data communications method, device, earth station and computer
Medium, so as to improve the safety that earth station communicates with the data of unmanned plane.
Technical solution is as follows used by the present invention solves above-mentioned technical problem:
According to an aspect of the present invention, a kind of data communications method is provided, earth station is applied to, including:
The earth station carries out SSL authentication handshakes using Secure Socket Layer ssl protocol and unmanned plane;
The earth station generates symmetric key, and the symmetric key is sent to the unmanned plane;
The earth station uses the symmetric key and the unmanned plane into row data communication.
In a possible design, the earth station carries out SSL authentication handshakes with unmanned plane using ssl protocol and includes:
The earth station sends the request message for SSL authentication handshakes to the unmanned plane;Wherein, the request message
Including the random number that the earth station generates;
The response message that unmanned plane described in the ground station reception is sent, SSL authentication handshakes are established with unmanned plane;Wherein,
Include the unmanned plane exclusive identification code Copter_ID in the response message;
The earth station is according to the legitimacy of response message verification communication connection, if verification is not over breaking
The communication connection with the unmanned plane is opened, otherwise establishes SSL traffic link with the unmanned plane.
In a possible design, the earth station generates symmetric key and includes:
The earth station is encrypted according to one symmetric cryptography of the generating random number using the unmanned plane Copter_ID,
Form symmetric key.
In a possible design, the earth station uses the symmetric key and the unmanned plane into row data communication
Including:
The earth station is sent to the data of the unmanned plane using the symmetric key encryption, using the symmetric key
Decrypt the data that the unmanned plane received is sent.
According to another aspect of the present invention, a kind of data communication equipment provided is applied to earth station, including:Second
Authentication module, Symmetric key generation module, symmetric key sending module, data transmission module, wherein:
Second authentication module, for carrying out SSL authentication handshakes using Secure Socket Layer ssl protocol and unmanned plane;
The Symmetric key generation module, for generating symmetric key;
The symmetric key sending module, for the symmetric key to be sent to the unmanned plane;
The data transmission module, for using the symmetric key and the unmanned plane into row data communication.
In a possible design, second authentication module includes:Request unit, receiving unit, link establishment list
Member, wherein:
The request unit, for sending the request message for SSL authentication handshakes to the unmanned plane;Wherein, described
Request message includes the random number that the earth station generates;
The receiving unit, the corresponding message sent for receiving the unmanned plane, establishes SSL certifications with unmanned plane and holds
Hand;Wherein, include the unmanned plane exclusive identification code CopterID in the response message;
The link establishment unit, for the legitimacy according to response message verification communication connection, if verification does not have
Have and pass through, then disconnects the communication connection with the unmanned plane, otherwise establish SSL traffic link with the unmanned plane.
In a possible design, the Symmetric key generation module is specifically used for:
The earth station is encrypted according to one symmetric cryptography of the generating random number using the unmanned plane Copter_ID,
Form symmetric key.
In a possible design, the data transmission module is specifically used for:
The earth station is sent to the data of the unmanned plane using the symmetric key encryption, using the symmetric key
Decrypt the data that the unmanned plane received is sent.
According to another aspect of the present invention, a kind of earth station provided, including:Memory, processor and it is stored in institute
State one or more computer program that can be run in memory and on the processor, one or more of calculating
To realize the step of fourth embodiment of the invention provides the data communications method when machine program is executed by the processor.
According to another aspect of the present invention, a kind of computer readable storage medium provided, it is described computer-readable to deposit
Data communication program is stored on storage media, the data communication program realizes fourth embodiment of the invention when being executed by processor
The step of data communications method is provided.
Compared with prior art, a kind of data communications method provided by the invention, device, earth station and computer storage are situated between
Matter carries out SSL authentication handshakes by using earth station using ssl protocol and unmanned plane, and it is identical right that SSL certifications use after passing through
Claim key and unmanned plane in the SSL encryption channel of foundation into the data transmission method of row data communication, it is logical not increasing earth station
In the case of believing protocol complexity, the safety of earth station and unmanned aerial vehicle data communication is improved, the usage experience of user is promoted, increased
Add earth station's added value of product.
Description of the drawings
Fig. 1 is a kind of flow chart for data communications method that first embodiment of the invention provides;
Fig. 2 is a kind of structural schematic diagram for data communication system that second embodiment of the invention provides;
Fig. 3 is a kind of flow chart for data communications method that third embodiment of the invention provides;
Fig. 4 is a kind of flow chart for data communications method that fourth embodiment of the invention provides.
The embodiments will be further described with reference to the accompanying drawings for the realization, the function and the advantages of the object of the present invention.
Specific implementation mode
In order to keep technical problems, technical solutions and advantages to be solved clearer, clear, tie below
Drawings and examples are closed, the present invention will be described in further detail.It should be appreciated that specific embodiment described herein is only
To explain the present invention, it is not intended to limit the present invention.
In subsequent description, using for indicating that the suffix of such as " module ", " component " or " unit " of element is only
The explanation for being conducive to the present invention, itself does not have a specific meaning.Therefore, " module ", " component " or " unit " can mix
Ground uses.
The present invention provides a kind of data communications method established in SSL encryption channel, the method includes:
In unmanned plane is communicated with the data of earth station, the encrypted tunnel of data bottom is done using SSL, number between the two
It is encrypted using identical default symmetric key based on SSL encryption channel according to communication, wherein unmanned plane is as passive connection pair
Role as playing the part of SSL service end, and earth station is then used as SSL clients, entire communication process to be held using unidirectional SSL certifications
Hand.
Data communications method based on above-mentioned foundation in SSL encryption channel proposes each embodiment of the method for the present invention.
It please refers to Fig.1.Fig. 1 is that a kind of data of the foundation of first embodiment of the invention offer in SSL encryption channel communicate
The flow chart of method.
A kind of data communications method established in SSL encryption channel, is applied to unmanned plane, the method includes:
After S1, the unmanned plane receive the transmission SSL authentication handshake request messages of earth station, sent to the earth station
Response message;
S2, the unmanned plane receive the symmetric key that the earth station sends;
S3, the unmanned plane use the symmetric key and the earth station into row data communication.
Further, the request message includes:
Client Hello message for the request of SSL authentication handshakes;Wherein, include the ground in the request message
Stand the random number R andom generated;
It is described to include to earth station transmission response message:Server Hello message is sent to the earth station,
In, the response message contains the unmanned plane exclusive identification code Copter_ID.
Further, the unmanned plane receives the symmetric key (S2) that the earth station sends, and specifically includes:It is described symmetrical
Key is formed using the Copter_ID is encrypted according to a symmetric cryptography of the generating random number by the earth station.
Further, the unmanned plane, which uses, presets symmetric key and the earth station into row data communication (S3), specifically
Including:It is sent to the data of the unmanned plane using the symmetric key encryption, is received using the symmetric key decryption
The data that unmanned plane is sent.
Further, the method still further comprises:The unmanned plane is carried out using the symmetric key and earth station
While data communication, the inspection of communication integrality is carried out.
Preferably, the method still further comprises:The unmanned plane closes connection window after disconnecting communication every time, waits for
The preset time reactivates connection window.
For unmanned plane in the air it is possible that signal (such as WIFI or 4G) transient loss and cause frequently to hold again
The harmful effect of hand, unmanned plane use avoidance mechanism, close connection window after broken string every time, wait for a period of time (such as 10 seconds)
Reactivate connection window.Forbid all SSL earth stations client connections during this period.
Further, which can allow more earth stations to connect, the communications of the unmanned plane and more earth stations
Method is identical as single data communications method of earth station as the unmanned plane, which is authenticated logical one by one with more earth stations
Letter, specific implementation process refers to above method embodiment, and the technical characteristic in embodiment of the method is more in unmanned plane connection
Corresponding in the embodiment of earth station to be applicable in, which is not described herein again.
Preferably, this method further comprises:When more earth stations connect same unmanned plane, in order to mitigate many-one
Pressure of shaking hands, unmanned plane can skip the authentication of earth station, this is because in SSL unilateral authentication flows, server
It is to allow optionally whether to require client identity certification.
It please refers to Fig.3.Fig. 3 is that a kind of data of the foundation of third embodiment of the invention offer in SSL encryption channel communicate
The flow chart of method.
In an embodiment of the present invention, in unmanned plane is communicated with the data of earth station, adding for data bottom, is done using SSL
Close channel, data communication between the two are encrypted based on SSL encryption channel using identical default symmetric key, wherein
Unmanned plane plays the part of the role at SSL service end as passive connecting object, and earth station is then used as SSL clients, entirely communicates
The unidirectional SSL authentication handshakes of Cheng Caiyong.
A kind of data communications method established in SSL encryption channel is applied to unmanned plane, including:
S110, earth station send Client Hello message to unmanned plane, are asked for SSL authentication handshakes;Wherein, should
Client Hello message contains the random number R andom of earth station's generation;
After S120, unmanned plane receive the Client Hello message of SSL authentication handshakes request of earth station, Server is sent
Hello message establishes SSL authentication handshakes to earth station, with earth station;Wherein, which contains unmanned plane
Exclusive identification code Copter_ID;
S130, earth station using unmanned plane be transmitted through come Server Hello information authentications communication connection legitimacy, such as
Fruit legitimate verification is not over communication connection will be switched off.
S140, earth station's one symmetric cryptography of random output, add the symmetric cryptography using unmanned plane Copter_ID
It is close, symmetric key is formed, the symmetric key is then sent to unmanned plane.
S150, earth station send information to unmanned plane, indicate that earth station carries out data using the symmetric key and unmanned plane
Communication, while notifying unmanned plane, earth station SSL authentication handshake processes terminate.
S160, unmanned plane ground station send message, indicate that unmanned plane carries out data using the symmetric key and earth station
Communication, while notifying earth station, unmanned plane SSL authentication handshake processes terminate.
S170, SSL authentication handshake terminate, and start the data communication of SSL escape ways, earth station and unmanned plane begin to use
Identical symmetric key is carried out at the same time the inspection of communication integrality into row data communication.So far, unmanned plane and earth station all pass through
Two parameters (Random, Copter_ID) generate symmetric key, and the encryption and decryption of the secure data communication for ssl protocol is logical
Letter.
Preferably, this method still further comprises:The unmanned plane closes connection window after disconnecting communication every time, waits for pre-
If time reactivate connection window.
For unmanned plane in the air it is possible that signal (such as WIFI or 4G) transient loss and cause frequently to hold again
The harmful effect of hand, unmanned plane use avoidance mechanism, close connection window after broken string every time, wait for a period of time (such as 10 seconds)
Reactivate connection window.Forbid all SSL earth stations client connections during this period.
Further, which can allow more earth stations to connect, the communications of the unmanned plane and more earth stations
Method is identical as single data communications method of earth station as the unmanned plane, which is authenticated logical one by one with more earth stations
Letter, specific implementation process refers to above method embodiment, and the technical characteristic in embodiment of the method is more in unmanned plane connection
Corresponding in the embodiment of earth station to be applicable in, which is not described herein again.
Preferably, this method further comprises:When more earth stations connect same unmanned plane, in order to mitigate many-one
Pressure of shaking hands, unmanned plane can skip the authentication of earth station, this is because in SSL unilateral authentication flows, server
It is to allow optionally whether to require client identity certification.
It please refers to Fig.2.Fig. 2 is that a kind of data of the foundation of second embodiment of the invention offer in SSL encryption channel communicate
The structural schematic diagram of system.
In an embodiment of the present invention, in unmanned plane is communicated with the data of earth station, adding for data bottom, is done using SSL
Close channel, data communication between the two are encrypted based on SSL encryption channel using identical default symmetric key, wherein
Unmanned plane plays the part of the role at SSL service end as passive connecting object, and earth station is then used as SSL clients, entirely communicates
The unidirectional SSL authentication handshakes of Cheng Caiyong.
A kind of data communication system established in SSL encryption channel, the system include:Unmanned plane 200 and earth station 300;
Wherein:
The unmanned plane 200 uses ssl protocol to carry out SSL authentication handshakes with the earth station 300, and using symmetric key and is somebody's turn to do
Earth station 300 is into row data communication;
Wherein, which carries out SSL authentication handshakes using ssl protocol and the earth station 300, specifically includes:
The Client Hello message for the request of SSL authentication handshakes that 200 satellite receiver 300 of unmanned plane is sent;Its
In, which contains the random number R andom of earth station's generation;
After unmanned plane receives the Client Hello message of SSL authentication handshakes request of earth station, Server is sent
Hello message establishes SSL authentication handshakes to earth station, with earth station;Wherein, which contains unmanned plane
Exclusive identification code Copter_ID.
Wherein, which uses symmetric key and the earth station 300 into row data communication;It specifically includes:
The symmetric key for the coded communication that unmanned plane satellite receiver is sent, wherein the symmetric key is by earth station
One symmetric cryptography of random output, using what is generated after unmanned plane Copter_ID encryptions, between unmanned plane and earth station
Data encryption communicates;
Unmanned plane ground station sends message, indicate unmanned plane using the symmetric key and earth station into row data communication,
Earth station, SSL authentication handshake processes is notified to terminate simultaneously.So far, unmanned plane and earth station establish the data of SSL escape ways
Communication, unmanned plane use identical symmetric key and earth station into row data communication.
The earth station 300 carries out SSL authentication handshakes using ssl protocol and unmanned plane, and uses symmetric key and unmanned plane
It stands into row data communication.Wherein:
The earth station 300 carries out SSL authentication handshakes using ssl protocol and unmanned plane;It specifically includes:
Earth station sends Client Hello message to unmanned plane, is asked for SSL authentication handshakes;Wherein, the Client
Hello message contains the random number R andom of earth station's generation;
Ground station reception unmanned plane sends the Server Hello message returned, and SSL authentication handshakes are established with earth station;Its
In, which contains unmanned plane exclusive identification code Copter_ID;
Earth station using unmanned plane be transmitted through come Server Hello information authentications communication connection legitimacy, if legal
Property verification not over communication connection will be switched off.
The earth station 300 uses symmetric key and unmanned plane station into row data communication;It specifically includes:
Earth station's one symmetric cryptography of random output, is encrypted the symmetric cryptography using unmanned plane Copter_ID, shape
At symmetric key, the symmetric key is then sent to unmanned plane;
Earth station sends information to unmanned plane, indicate earth station using the symmetric key and unmanned plane into row data communication,
Unmanned plane, earth station SSL authentication handshake processes is notified to terminate simultaneously.So far, earth station and unmanned plane establish SSL escape ways
Data communication, earth station is using identical symmetric key and unmanned plane into row data communication.
In addition, the embodiment of the present invention also provides a kind of data communication equipment, it is applied to unmanned plane, described device includes:The
One authentication module, the first receiving module, data communication module, wherein:
First authentication module, after the transmission SSL authentication handshake request messages that earth station is received for the unmanned plane,
Response message is sent to the earth station;
First receiving module receives the symmetric key that the earth station sends for the unmanned plane;
The data communication module carries out data using the symmetric key and the earth station for the unmanned plane and leads to
Letter.
Further, the request message includes:
Client Hello message for the request of SSL authentication handshakes;Wherein, include the ground in the request message
Stand the random number R andom generated;
It is described to include to earth station transmission response message:Server Hello message is sent to the earth station,
In, the response message contains the unmanned plane exclusive identification code Copter_ID.
Further, first receiving module, specifically includes:The symmetric key is described in earth station utilization
Copter_ID is encrypted to be formed according to a symmetric cryptography of the generating random number.
Further, the data communication module, specifically includes:Using the symmetric key encryption be sent to it is described nobody
The data of machine, the data sent using the unmanned plane that the symmetric key decryption receives.
Further, the data communication equipment still further comprises:Inspection module, described in unmanned plane use
While symmetric key carries out data communication with earth station, the inspection of communication integrality is carried out.
Preferably, first authentication module still further comprises:The unmanned plane closes connection after disconnecting communication every time
Window waits for the preset time to reactivate connection window.
It should be noted that above-mentioned data communication equipment embodiment belongs to same design with first method embodiment, have
Body realizes that process refers to first method embodiment, and the technical characteristic in first method embodiment is in data communication equipment embodiment
In it is corresponding be applicable in, which is not described herein again.
In addition, the embodiment of the present invention also provides a kind of unmanned plane, which includes:Memory, processor and storage
It is one or more of in the memory and one or more computer program that can run on the processor
To realize the following step of the data communications method of first embodiment of the invention offer when computer program is executed by the processor
Suddenly:
After S1, the unmanned plane receive the transmission SSL authentication handshake request messages of earth station, sent to the earth station
Response message;
S2, the unmanned plane receive the symmetric key that the earth station sends;
S3, the unmanned plane use the symmetric key and the earth station into row data communication.
Further, the request message includes:
Client Hello message for the request of SSL authentication handshakes;Wherein, include the ground in the request message
Stand the random number R andom generated;
It is described to include to earth station transmission response message:Server Hello message is sent to the earth station,
In, the response message contains the unmanned plane exclusive identification code Copter_ID.
Further, the unmanned plane receives the symmetric key (S2) that the earth station sends, and specifically includes:It is described symmetrical
Key is formed using the Copter_ID is encrypted according to a symmetric cryptography of the generating random number by the earth station.
Further, the unmanned plane, which uses, presets symmetric key and the earth station into row data communication (S3), specifically
Including:It is sent to the data of the unmanned plane using the symmetric key encryption, is received using the symmetric key decryption
The data that unmanned plane is sent.
Further, the method still further comprises:The unmanned plane is carried out using the symmetric key and earth station
While data communication, the inspection of communication integrality is carried out.
Preferably, the method still further comprises:The unmanned plane closes connection window after disconnecting communication every time, waits for
The preset time reactivates connection window.
For unmanned plane in the air it is possible that signal (such as WIFI or 4G) transient loss and cause frequently to hold again
The harmful effect of hand, unmanned plane use avoidance mechanism, close connection window after broken string every time, wait for a period of time (such as 10 seconds)
Reactivate connection window.Forbid all SSL earth stations client connections during this period.
Further, which can allow more earth stations to connect, the communications of the unmanned plane and more earth stations
Method is identical as single data communications method of earth station as the unmanned plane, which is authenticated logical one by one with more earth stations
Letter, specific implementation process refers to above method embodiment, and the technical characteristic in embodiment of the method is more in unmanned plane connection
Corresponding in the embodiment of earth station to be applicable in, which is not described herein again.
Preferably, this method further comprises:When more earth stations connect same unmanned plane, in order to mitigate many-one
Pressure of shaking hands, unmanned plane can skip the authentication of earth station, this is because in SSL unilateral authentication flows, server
It is to allow optionally whether to require client identity certification.
It should be noted that above-mentioned unmanned aerial vehicle example belongs to same design with first method embodiment, implement
Process refers to first method embodiment, and the technical characteristic in first method embodiment is corresponding suitable in unmanned aerial vehicle example
With which is not described herein again.
In addition, the embodiment of the present invention additionally provides a kind of computer readable storage medium, the computer-readable storage medium
One or more transmission program established in the data communications method in SSL encryption channel is stored in matter, the foundation is in SSL
To realize the embodiment of the present invention when one or more transmission program of the data communications method of encrypted tunnel is executed by processor
Following steps of the foundation of offer in the data communications method in SSL encryption channel:
A kind of data communications method established in SSL encryption channel, is applied to unmanned plane, the method includes:
After S1, the unmanned plane receive the transmission SSL authentication handshake request messages of earth station, sent to the earth station
Response message;
S2, the unmanned plane receive the symmetric key that the earth station sends;
S3, the unmanned plane use the symmetric key and the earth station into row data communication.
Further, the request message includes:
Client Hello message for the request of SSL authentication handshakes;Wherein, include the ground in the request message
Stand the random number R andom generated;
It is described to include to earth station transmission response message:Server Hello message is sent to the earth station,
In, the response message contains the unmanned plane exclusive identification code Copter_ID.
Further, the unmanned plane receives the symmetric key (S2) that the earth station sends, and specifically includes:It is described symmetrical
Key is formed using the Copter_ID is encrypted according to a symmetric cryptography of the generating random number by the earth station.
Further, the unmanned plane, which uses, presets symmetric key and the earth station into row data communication (S3), specifically
Including:It is sent to the data of the unmanned plane using the symmetric key encryption, is received using the symmetric key decryption
The data that unmanned plane is sent.
Further, the method still further comprises:The unmanned plane is carried out using the symmetric key and earth station
While data communication, the inspection of communication integrality is carried out.
Preferably, the method still further comprises:The unmanned plane closes connection window after disconnecting communication every time, waits for
The preset time reactivates connection window.
For unmanned plane in the air it is possible that signal (such as WIFI or 4G) transient loss and cause frequently to hold again
The harmful effect of hand, unmanned plane use avoidance mechanism, close connection window after broken string every time, wait for a period of time (such as 10 seconds)
Reactivate connection window.Forbid all SSL earth stations client connections during this period.
Further, which can allow more earth stations to connect, the communications of the unmanned plane and more earth stations
Method is identical as single data communications method of earth station as the unmanned plane, which is authenticated logical one by one with more earth stations
Letter, specific implementation process refers to above method embodiment, and the technical characteristic in embodiment of the method is more in unmanned plane connection
Corresponding in the embodiment of earth station to be applicable in, which is not described herein again.
Preferably, this method further comprises:When more earth stations connect same unmanned plane, in order to mitigate many-one
Pressure of shaking hands, unmanned plane can skip the authentication of earth station, this is because in SSL unilateral authentication flows, server
It is to allow optionally whether to require client identity certification.
It should be noted that the data communication party of foundation on above computer readable storage medium storing program for executing in SSL encryption channel
Method embodiment belongs to same design with first method embodiment, and specific implementation process refers to first method embodiment, and first
Technical characteristic in embodiment of the method is corresponding applicable in the embodiment of above computer readable storage medium storing program for executing, no longer superfluous here
It states.
It please refers to Fig.4.Fig. 4 is that a kind of data of the foundation of fourth embodiment of the invention offer in SSL encryption channel communicate
The flow chart of method.
A kind of data communications method established in SSL encryption channel, is applied to earth station, the method includes:
S50, the earth station carry out SSL authentication handshakes using Secure Socket Layer ssl protocol and unmanned plane;
S60, the earth station generate symmetric key, and the symmetric key are sent to the unmanned plane;
S70, the earth station use the symmetric key and the unmanned plane into row data communication.
Further, the earth station carries out SSL authentication handshakes (S50) using ssl protocol and unmanned plane, specifically includes:
S501, the earth station send the request message for SSL authentication handshakes to the unmanned plane;Wherein, described to ask
It includes the random number that the earth station generates to seek message;
The response message that unmanned plane described in S502, the ground station reception is sent, SSL authentication handshakes are established with unmanned plane;
Wherein, include the unmanned plane exclusive identification code Copter_ID in the response message;
S503, the earth station according to the response message verification communication connection legitimacy, if verification not over,
The communication connection with the unmanned plane is then disconnected, otherwise establishes SSL traffic link with the unmanned plane.
Further, earth station's generation symmetric key includes:The earth station is according to the generating random number one
Symmetric cryptography is encrypted using the unmanned plane Copter_ID, forms symmetric key.
Further, the earth station is included using the symmetric key and unmanned plane progress data communications packets:It is described
Earth station is sent to the data of the unmanned plane using the symmetric key encryption, is received using the symmetric key decryption
The data that unmanned plane is sent.
In addition, the embodiment of the present invention also provides a kind of data communication equipment, it is applied to earth station, including:Second certification mould
Block, Symmetric key generation module, symmetric key sending module, data transmission module, wherein:
Second authentication module, for carrying out SSL authentication handshakes using Secure Socket Layer ssl protocol and unmanned plane;
The Symmetric key generation module, for generating symmetric key;
The symmetric key sending module, for the symmetric key to be sent to the unmanned plane;
The data transmission module, for using the symmetric key and the unmanned plane into row data communication.
Further, second authentication module includes:Request unit, receiving unit, link establishment unit, wherein:
The request unit, for sending the request message for SSL authentication handshakes to the unmanned plane;Wherein, described
Request message includes the random number that the earth station generates;
The receiving unit, the corresponding message sent for receiving the unmanned plane, establishes SSL certifications with unmanned plane and holds
Hand;Wherein, include the unmanned plane exclusive identification code CopterID in the response message;
The link establishment unit, for the legitimacy according to response message verification communication connection, if verification does not have
Have and pass through, then disconnects the communication connection with the unmanned plane, otherwise establish SSL traffic link with the unmanned plane.
Further, the Symmetric key generation module is specifically used for:The earth station is according to the generating random number one
A symmetric cryptography is encrypted using the unmanned plane Copter_ID, forms symmetric key.
Further, the data transmission module is specifically used for:The earth station is sent using the symmetric key encryption
To the data of the unmanned plane, the data sent using the unmanned plane that the symmetric key decryption receives.
In addition, the embodiment of the present invention also provides a kind of earth station, which includes:Memory, processor and storage
It is one or more of in the memory and one or more computer program that can run on the processor
When computer program is executed by the processor with realize fourth embodiment of the invention provide the data communications method with
Lower step:
S50, the earth station carry out SSL authentication handshakes using Secure Socket Layer ssl protocol and unmanned plane;
S60, the earth station generate symmetric key, and the symmetric key are sent to the unmanned plane;
S70, the earth station use the symmetric key and the unmanned plane into row data communication.
Further, the earth station carries out SSL authentication handshakes (S50) using ssl protocol and unmanned plane, specifically includes:
S501, the earth station send the request message for SSL authentication handshakes to the unmanned plane;Wherein, described to ask
It includes the random number that the earth station generates to seek message;
The response message that unmanned plane described in S502, the ground station reception is sent, SSL authentication handshakes are established with unmanned plane;
Wherein, include the unmanned plane exclusive identification code Copter_ID in the response message;
S503, the earth station according to the response message verification communication connection legitimacy, if verification not over,
The communication connection with the unmanned plane is then disconnected, otherwise establishes SSL traffic link with the unmanned plane.
Further, earth station's generation symmetric key includes:The earth station is according to the generating random number one
Symmetric cryptography is encrypted using the unmanned plane Copter_ID, forms symmetric key.
Further, the earth station is included using the symmetric key and unmanned plane progress data communications packets:It is described
Earth station is sent to the data of the unmanned plane using the symmetric key encryption, is received using the symmetric key decryption
The data that unmanned plane is sent.
It should be noted that above-mentioned earth station's embodiment belongs to same design with fourth method embodiment, implement
Process refers to fourth method embodiment, and the technical characteristic in fourth method embodiment is corresponding suitable in earth station's embodiment
With which is not described herein again.
In addition, the embodiment of the present invention also provides a kind of computer readable storage medium, the computer readable storage medium
On be stored with data communication program, when the data communication program is executed by processor realize fourth embodiment of the invention provide institute
The following steps for the data communications method stated:
S50, the earth station carry out SSL authentication handshakes using Secure Socket Layer ssl protocol and unmanned plane;
S60, the earth station generate symmetric key, and the symmetric key are sent to the unmanned plane;
S70, the earth station use the symmetric key and the unmanned plane into row data communication.
Further, the earth station carries out SSL authentication handshakes (S50) using ssl protocol and unmanned plane, specifically includes:
S501, the earth station send the request message for SSL authentication handshakes to the unmanned plane;Wherein, described to ask
It includes the random number that the earth station generates to seek message;
The response message that unmanned plane described in S502, the ground station reception is sent, SSL authentication handshakes are established with unmanned plane;
Wherein, include the unmanned plane exclusive identification code Copter_ID in the response message;
S503, the earth station according to the response message verification communication connection legitimacy, if verification not over,
The communication connection with the unmanned plane is then disconnected, otherwise establishes SSL traffic link with the unmanned plane.
Further, earth station's generation symmetric key includes:The earth station is according to the generating random number one
Symmetric cryptography is encrypted using the unmanned plane Copter_ID, forms symmetric key.
Further, the earth station is included using the symmetric key and unmanned plane progress data communications packets:It is described
Earth station is sent to the data of the unmanned plane using the symmetric key encryption, is received using the symmetric key decryption
The data that unmanned plane is sent.
It should be noted that earth station of the foundation in SSL encryption channel on above computer readable storage medium storing program for executing communicates
Transmission method embodiment belongs to same design with fourth method embodiment, and specific implementation process refers to fourth method embodiment,
And the technical characteristic in fourth method embodiment is corresponding applicable in the embodiment of above computer readable storage medium storing program for executing, here
It repeats no more.
A kind of data communications method, device, unmanned plane, earth station and computer storage media provided by the invention, pass through
SSL authentication handshakes are carried out using ssl protocol and earth station using unmanned plane, SSL certifications use identical default symmetrical after passing through
Key and earth station, into the data transmission method of row data communication, are not increasing UAV Communication in the SSL encryption channel of foundation
In the case of protocol complexity, the safety that unmanned plane is communicated with earth station data is improved, the usage experience of user is promoted, increase
Unmanned plane value-added content of product.
It should be noted that herein, the terms "include", "comprise" or its any other variant are intended to non-row
His property includes, so that process, method, article or device including a series of elements include not only those elements, and
And further include other elements that are not explicitly listed, or further include for this process, method, article or device institute it is intrinsic
Element.In the absence of more restrictions, the element limited by sentence "including a ...", it is not excluded that including this
There is also other identical elements in the process of element, method, article or device.
The embodiments of the present invention are for illustration only, can not represent the quality of embodiment.
Through the above description of the embodiments, those skilled in the art can be understood that above-described embodiment side
Method can add the mode of required general hardware platform to realize by software, naturally it is also possible to by hardware, but in many cases
The former is more preferably embodiment.Based on this understanding, technical scheme of the present invention substantially in other words does the prior art
Going out the part of contribution can be expressed in the form of software products, which is stored in a storage medium
In (such as ROM/RAM, magnetic disc, CD), including some instructions are used so that a station terminal (can be mobile phone, computer, service
Device, air conditioner or network equipment etc.) execute method described in each embodiment of the present invention.
The embodiment of the present invention is described with above attached drawing, but the invention is not limited in above-mentioned specific
Embodiment, the above mentioned embodiment is only schematical, rather than restrictive, those skilled in the art
Under the inspiration of the present invention, without breaking away from the scope protected by the purposes and claims of the present invention, it can also make very much
Form, all of these belong to the protection of the present invention.
Claims (10)
1. a kind of data communications method is applied to earth station, which is characterized in that including:
The earth station carries out SSL authentication handshakes using Secure Socket Layer ssl protocol and unmanned plane;
The earth station generates symmetric key, and the symmetric key is sent to the unmanned plane;
The earth station uses the symmetric key and the unmanned plane into row data communication.
2. data communications method according to claim 1, which is characterized in that the earth station is using ssl protocol and nobody
Machine carries out SSL authentication handshakes:
The earth station sends the request message for SSL authentication handshakes to the unmanned plane;Wherein, the request message includes
The random number that the earth station generates;
The response message that unmanned plane described in the ground station reception is sent, SSL authentication handshakes are established with unmanned plane;Wherein, described
Include the unmanned plane exclusive identification code Copter_ID in response message;
The earth station according to the response message verification communication connection legitimacy, if verification not over, disconnect with
Otherwise the communication connection of the unmanned plane establishes SSL traffic link with the unmanned plane.
3. data communications method according to claim 2, which is characterized in that the earth station generates symmetric key and includes:
The earth station is encrypted according to one symmetric cryptography of the generating random number using the unmanned plane Copter_ID, is formed
Symmetric key.
4. data communications method according to claim 3, which is characterized in that the earth station using the symmetric key and
The unmanned plane carries out data communications packets and includes:
The earth station is sent to the data of the unmanned plane using the symmetric key encryption, using the symmetric key decryption
The data that the unmanned plane received is sent.
5. a kind of data communication equipment is applied to earth station, which is characterized in that including:Second authentication module, Symmetric key generation
Module, symmetric key sending module, data transmission module, wherein:
Second authentication module, for carrying out SSL authentication handshakes using Secure Socket Layer ssl protocol and unmanned plane;
The Symmetric key generation module, for generating symmetric key;
The symmetric key sending module, for the symmetric key to be sent to the unmanned plane;
The data transmission module, for using the symmetric key and the unmanned plane into row data communication.
6. data communication equipment according to claim 5, which is characterized in that second authentication module includes:Request is single
Member, receiving unit, link establishment unit, wherein:
The request unit, for sending the request message for SSL authentication handshakes to the unmanned plane;Wherein, the request
Message includes the random number that the earth station generates;
The receiving unit, the corresponding message sent for receiving the unmanned plane, SSL authentication handshakes are established with unmanned plane;Its
In, include the unmanned plane exclusive identification code CopterID in the response message;
The link establishment unit, for the legitimacy according to response message verification communication connection, if verification is without logical
It crosses, then disconnects the communication connection with the unmanned plane, otherwise establish SSL traffic link with the unmanned plane.
7. data communication equipment according to claim 6, which is characterized in that the Symmetric key generation module is specifically used
In:
The earth station is encrypted according to one symmetric cryptography of the generating random number using the unmanned plane Copter_ID, is formed
Symmetric key.
8. data communication equipment according to claim 7, which is characterized in that the data transmission module is specifically used for:
The earth station is sent to the data of the unmanned plane using the symmetric key encryption, using the symmetric key decryption
The data that the unmanned plane received is sent.
9. a kind of earth station, which is characterized in that including:It memory, processor and is stored in the memory and can be described
One or more computer program run on processor, one or more of computer programs are held by the processor
The step of when row to realize data communications method according to any one of claims 1 to 4.
10. a kind of computer readable storage medium, which is characterized in that it is logical to be stored with data on the computer readable storage medium
Believe that program, the data communication program realize data communication according to any one of claims 1 to 4 when being executed by processor
The step of method.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810374607.4A CN108600221A (en) | 2018-04-24 | 2018-04-24 | A kind of data communications method, device, earth station and computer storage media |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810374607.4A CN108600221A (en) | 2018-04-24 | 2018-04-24 | A kind of data communications method, device, earth station and computer storage media |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN108600221A true CN108600221A (en) | 2018-09-28 |
Family
ID=63614543
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201810374607.4A Pending CN108600221A (en) | 2018-04-24 | 2018-04-24 | A kind of data communications method, device, earth station and computer storage media |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN108600221A (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110855427A (en) * | 2019-11-18 | 2020-02-28 | 国网四川省电力公司电力科学研究院 | Unmanned aerial vehicle identity authentication method and system |
| CN111002846A (en) * | 2019-12-13 | 2020-04-14 | 王晰 | Control method and system of unmanned aerial vehicle |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20120237028A1 (en) * | 2011-03-17 | 2012-09-20 | Massachusetts Institute Of Technology | Mission planning interface for accessing vehicle resources |
| CN104702611A (en) * | 2015-03-15 | 2015-06-10 | 西安电子科技大学 | Equipment and method for protecting session key of secure socket layer |
| CN104936180A (en) * | 2015-06-26 | 2015-09-23 | 陈昊 | Authentication system and method for providing authentication service specific to unmanned aerial vehicle and ground station |
| CN104994112A (en) * | 2015-07-23 | 2015-10-21 | 陈昊 | Method for encrypting communication data chain between unmanned aerial vehicle and ground station |
| US20160292696A1 (en) * | 2015-03-31 | 2016-10-06 | SZ DJI Technology Co., Ltd | Authentication systems and methods for generating flight regulations |
| CN106161363A (en) * | 2015-04-03 | 2016-11-23 | 上海庆科信息技术有限公司 | A kind of method and system of SSL connection establishment |
| CN107104948A (en) * | 2017-03-21 | 2017-08-29 | 深圳洲际通航投资控股有限公司 | unmanned aerial vehicle data transmission method and unmanned aerial vehicle data transmission system |
-
2018
- 2018-04-24 CN CN201810374607.4A patent/CN108600221A/en active Pending
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20120237028A1 (en) * | 2011-03-17 | 2012-09-20 | Massachusetts Institute Of Technology | Mission planning interface for accessing vehicle resources |
| CN104702611A (en) * | 2015-03-15 | 2015-06-10 | 西安电子科技大学 | Equipment and method for protecting session key of secure socket layer |
| US20160292696A1 (en) * | 2015-03-31 | 2016-10-06 | SZ DJI Technology Co., Ltd | Authentication systems and methods for generating flight regulations |
| CN106161363A (en) * | 2015-04-03 | 2016-11-23 | 上海庆科信息技术有限公司 | A kind of method and system of SSL connection establishment |
| CN104936180A (en) * | 2015-06-26 | 2015-09-23 | 陈昊 | Authentication system and method for providing authentication service specific to unmanned aerial vehicle and ground station |
| CN104994112A (en) * | 2015-07-23 | 2015-10-21 | 陈昊 | Method for encrypting communication data chain between unmanned aerial vehicle and ground station |
| CN107104948A (en) * | 2017-03-21 | 2017-08-29 | 深圳洲际通航投资控股有限公司 | unmanned aerial vehicle data transmission method and unmanned aerial vehicle data transmission system |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110855427A (en) * | 2019-11-18 | 2020-02-28 | 国网四川省电力公司电力科学研究院 | Unmanned aerial vehicle identity authentication method and system |
| CN111002846A (en) * | 2019-12-13 | 2020-04-14 | 王晰 | Control method and system of unmanned aerial vehicle |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN108683641A (en) | A kind of data communications method, device, unmanned plane and computer storage media | |
| EP2713546B1 (en) | Method and apparatuses for establishing a data transmission via sip | |
| CN102916869B (en) | Instant messaging method and system | |
| US8605904B2 (en) | Security method in wireless communication system having relay node | |
| CN101340443B (en) | Session key negotiating method, system and server in communication network | |
| CN102594555B (en) | Security protection method for data, entity on network side and communication terminal | |
| CN102572815B (en) | Method, system and device for processing terminal application request | |
| CN106453269A (en) | Internet of Vehicles safety communication method, vehicle-mounted terminal, server and system | |
| CN105610783B (en) | A kind of data transmission method and Internet of things system | |
| EP1976322A1 (en) | An authentication method | |
| CN102036230B (en) | Method for implementing local route service, base station and system | |
| CN103828414A (en) | Security gateway communication | |
| CN103503408A (en) | System and method for providing access credentials | |
| CN101142790A (en) | Secure switching system for networks and method for secure switching | |
| CN103428221A (en) | Safety logging method, system and device of mobile application | |
| CN112104604A (en) | System and method for realizing safety access service based on electric power internet of things management platform | |
| CN107181770A (en) | Method of data synchronization and system | |
| CN108781110A (en) | For the system and method by relay in telecommunication network data | |
| CN112153641A (en) | Secondary authentication enhancement and end-to-end encryption method and system based on edge UPF | |
| CN107534555B (en) | Method and device for certificate verification | |
| CN110958308B (en) | Method for network distribution, Internet of things equipment and access equipment | |
| CN104243146A (en) | Encryption communication method and device and terminal | |
| CN102271330A (en) | Terminal, network server and method for communication between terminal and network server | |
| CN108600221A (en) | A kind of data communications method, device, earth station and computer storage media | |
| CN104735037A (en) | Network authentication method, device and system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20180928 |