CN110166410A - A kind of method of safety-oriented data transfer, terminal and multi-mode communication terminal - Google Patents

A kind of method of safety-oriented data transfer, terminal and multi-mode communication terminal Download PDF

Info

Publication number
CN110166410A
CN110166410A CN201810150515.8A CN201810150515A CN110166410A CN 110166410 A CN110166410 A CN 110166410A CN 201810150515 A CN201810150515 A CN 201810150515A CN 110166410 A CN110166410 A CN 110166410A
Authority
CN
China
Prior art keywords
terminal
communication
broadband
narrow
link
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201810150515.8A
Other languages
Chinese (zh)
Other versions
CN110166410B (en
Inventor
维克多·格哈德
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Hytera Communications Corp Ltd
Original Assignee
Hytera Communications Corp Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Hytera Communications Corp Ltd filed Critical Hytera Communications Corp Ltd
Priority to CN201810150515.8A priority Critical patent/CN110166410B/en
Publication of CN110166410A publication Critical patent/CN110166410A/en
Application granted granted Critical
Publication of CN110166410B publication Critical patent/CN110166410B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Telephonic Communication Services (AREA)
  • Telephone Function (AREA)

Abstract

This application provides a kind of method of safety-oriented data transfer, terminal and multi-mode communication terminal, first terminal encrypts data information to be transmitted;Establish the broadband communication link with second terminal;Encrypted data information is transmitted to the second terminal by the broadband communication link;Default key message relevant to data information to be transmitted is obtained, wherein the default key message can be used to that the data information of encryption to be decrypted;Narrow-band communications links are established with the second terminal;And the default key message is transmitted to the second terminal by the narrow-band communications links.Improve data transfer security performance is realized through the invention and reduces the purpose of data transmission cost.

Description

A kind of method of safety-oriented data transfer, terminal and multi-mode communication terminal
Technical field
The present invention relates to encryption technology field, more specifically, it relates to a kind of method of safety-oriented data transfer, terminal and Multi-mode communication terminal.
Background technique
Along with the universal and development of Internet technology, big data era is currently had been introduced into.The efficiency of transmission of data It is all got the attention with safety.Data delivering path is usually two kinds at present, and one is counted by wideband link According to transmission, another kind is transmitted by ad Hoc wireless network.
In the application process of available data transmission, although wideband link transmission rate is very fast and cost is relatively low, The transmission security of existing wideband link is lower, since the data transmission of wideband link is usually to pass through rivest, shamir, adelman Or the key of certificate granting carries out data encryption, this cipher mode application range is relatively wide and generality is higher, i.e., Make to be to transmit also to be easy to crack encryption information again after encrypting data.So when user is necessary to ensure that data height When safe transmission, it will usually be carried out data transmission using ad Hoc wireless network, but this transmission mode is transmitted by data Flow carry out charging, the cost that will cause great number in face of big data transmission occurs.As it can be seen that existing data transfer mode is It is unable to satisfy demand of the user to high safety performance and low cost.
Summary of the invention
In view of this, being realized the present invention provides a kind of method of safety-oriented data transfer, terminal and multi-mode communication terminal Improve data transfer security performance and the purpose for reducing data transmission cost.
To achieve the above object, the invention provides the following technical scheme:
A kind of method of safety-oriented data transfer is applied to first terminal, comprising:
Data information to be transmitted is encrypted;
Establish the broadband communication link with second terminal;
Encrypted data information is transmitted to the second terminal by the broadband communication link;
Relevant to data information to be transmitted default key message is obtained, wherein the default key message can be used for pair The data information of encryption is decrypted;
Narrow-band communications links are established with the second terminal;And
The default key message is transmitted to the second terminal by the narrow-band communications links.
Preferably, the method also includes:
The narrowband number of the second terminal is obtained from the second terminal by the broadband communication link, and according to institute It states narrowband number and the second terminal establishes the narrow-band communications links.
Preferably, the default key message includes the code key generated in ciphering process.
Preferably, the method also includes:
It obtains the narrowband number of the first terminal and leads to the narrowband number of the first terminal by the broadband Letter link is sent to the second terminal will pass through the broadband communication link from the second terminal and obtain described second eventually The narrowband number at end.
Preferably, the method also includes:
Together with the narrowband number of the second terminal, the first terminal also obtains described first from the second terminal The session identification of terminal and the second terminal, wherein the session identification is for identifying the application carried out data transmission.
Preferably, the method also includes:
The session identification and the default key message are passed through into the narrow band transmission link transmission to described together Two terminals.
Preferably, the method also includes:
Data information to be transmitted is encrypted using rivest, shamir, adelman, the default key message includes non-right Claim encryption code key.
A kind of method of safety-oriented data transfer is applied to second terminal, comprising:
Establish the broadband communication link with first terminal;
Encrypted data information is received by the broadband communication link;
Establish the narrow-band communications links with the first terminal;
The default key message is received from the first terminal by the narrow-band communications links;And
Encrypted data information is decrypted by the default key message.
Preferably, the method also includes:
The narrowband number of the second terminal is sent, to the first terminal by the broadband communication link so as to described First terminal establishes narrow-band communications links according to the narrowband number and the second terminal.
Preferably, the method also includes:
When receiving the narrowband number of the first terminal, sent out by the broadband communication link to the first terminal Send the narrowband number of the second terminal.
Preferably, together with the narrowband number of the second terminal, the second terminal is also sent to the first terminal The session identification of the second terminal and the first terminal, wherein the session identification is used to identify answering of carrying out data transmission With.
Preferably, the second terminal by the security module of access preset obtain the second terminal narrowband number and With the session identification of the first terminal.
Preferably, by the default key message received by the narrow band transmission link from the first terminal and The session identification is sent to the preset security module and the preset security module will based on the session identification The default key message is forwarded to specific application.
Preferably, the communication terminal includes:
Encryption unit, for encrypting data information to be transmitted;
Broadband connections unit, for establish with the broadband communication link of other communication terminals, and by encrypted data Information is transmitted to other described communication terminals by broadband communication link;
Acquiring unit, for obtaining default key message relevant to data information to be transmitted, wherein the default pass Key information can be used to that the data information of encryption to be decrypted;
Narrow band communication unit, for establishing narrow-band communications links with other described communication terminals, and by the default pass Key information is transmitted to other described communication terminals by the narrow-band communications links.
Preferably, the broadband communication link is also used to obtain other communication terminals from other described communication terminals Narrowband number;
The narrow band communication unit is also used to establish the narrowband according to the narrowband number and other described communication terminals Communication link.
Preferably, the broadband connections unit is also used to the narrowband number of the communication terminal passing through the broadband connections Link is sent to other described communication terminals will pass through the broadband communication link from described in the acquisition of other described communication terminals The narrowband number of other communication terminals.
Preferably, the broadband connections unit is also used to together with the narrowband number of other communication terminals, described logical Letter terminal also obtains the session identification of the communication terminal Yu other communication terminals from other described communication terminals, wherein institute Session identification is stated for identifying the application carried out data transmission.
A kind of communication terminal of safety-oriented data transfer, comprising:
Broadband connections unit, for establish with the broadband communication link of other communication terminals, and pass through the broadband connections Link receives encrypted data information from other described communication terminals;
Narrow band communication unit, for establish with the narrow-band communications links of other communication terminals, and by described narrow Band communication link receives the default key message from other described communication terminals;And
Decryption unit, for encrypted data information to be decrypted by the default key message.
Preferably, the broadband connections unit is also used to send out by the broadband communication link to other described communication terminals The narrowband number of the communication terminal is sent, so that other described communication terminals are built according to the narrowband number with the communication terminal Vertical narrow-band communications links.
A kind of multi-mode communication terminal of safety-oriented data transfer, the multi-mode communication terminal include:
Transceiver is used for sending and receiving data information;
Memory, for storing program;
Processor, when the processor runs described program, realizes that safety described above passes for running described program Any one of method of transmission of data method.
It can be seen via above technical scheme that compared with prior art, the present invention provides a kind of safety-oriented data transfers Method, terminal and multimode terminal communication, after first terminal and second terminal establish communication connection, it is determined that first terminal and the Data information to be transmitted has been divided into two parts by the narrow band transmission link between two terminals, and a part passes through for key message Narrow band transmission link is transmitted, and another part is to pass through broadband transmission link by the remaining data information of encrypted message key It is transmitted, key message therein is the information such as the key that encryption needs or random number, in this way by important information The safety that transmission ensures key is carried out by the higher narrow band link of safety, on the other hand by encrypted data information Ensure that efficiency of transmission by transmission rate higher wideband link transmission, and in this programme and be not used flow cost compared with High special mobile network carries out data transmission, but enable data information with transmitted by special mobile network Data safety having the same or higher safety, it is thereby achieved that improve data transfer security performance and reducing number According to the purpose of transmission cost.
Detailed description of the invention
In order to more clearly explain the embodiment of the invention or the technical proposal in the existing technology, to embodiment or will show below There is attached drawing needed in technical description to be briefly described, it should be apparent that, the accompanying drawings in the following description is only this The embodiment of invention for those of ordinary skill in the art without creative efforts, can also basis The attached drawing of offer obtains other attached drawings.
Fig. 1 is a kind of flow diagram of the method for safety-oriented data transfer provided in an embodiment of the present invention;
Fig. 2 is the flow diagram of the method for another safety-oriented data transfer provided in an embodiment of the present invention;
Fig. 3 is a kind of flow diagram of the method for bimodulus safety-oriented data transfer provided in an embodiment of the present invention;
Fig. 4 is a kind of structural schematic diagram of communication terminal provided in an embodiment of the present invention;
Fig. 5 is the structural schematic diagram of another communication terminal provided in an embodiment of the present invention;
Fig. 6 is a kind of structural schematic diagram of multi-mode communication terminal provided in an embodiment of the present invention.
Specific embodiment
Following will be combined with the drawings in the embodiments of the present invention, and technical solution in the embodiment of the present invention carries out clear, complete Site preparation description, it is clear that described embodiments are only a part of the embodiments of the present invention, instead of all the embodiments.It is based on Embodiment in the present invention, it is obtained by those of ordinary skill in the art without making creative efforts every other Embodiment shall fall within the protection scope of the present invention.
Term " first " and " second " in description and claims of this specification and above-mentioned attached drawing etc. are for area Not different objects, rather than for describing specific sequence.Furthermore term " includes " and " having " and their any deformations, It is intended to cover and non-exclusive includes.Such as it contains the process, method of a series of steps or units, system, product or sets It is standby not to be set in listed step or unit, but may include the step of not listing or unit.
The embodiment of the invention provides a kind of method of safety-oriented data transfer, this method is applied to the logical of safety-oriented data transfer Believe terminal, when this method is applied to wherein some first terminal, that is, source terminal, when the initiating terminal of data transmission, and Purpose terminal at this time is denoted as second terminal, refers to attached drawing 1, and this method may include:
S101, data information to be transmitted is encrypted;
S102, foundation and second terminal broadband communication link;
The broadband communication link between first terminal and second terminal is established, it is to be passed will pass through broadband communication link guarantee Transmission of data transmits between first terminal and second terminal.It should be noted that first terminal and second terminal are only distinguished not With terminal name, specifically can be to being interpreted as source terminal and purpose terminal.
S103, encrypted data information is transmitted to the second terminal by the broadband communication link;
S104, default key message relevant to data information to be transmitted is obtained, wherein the default key message energy For the data information of encryption to be decrypted;
S105, narrow-band communications links are established with the second terminal;
Specifically, obtaining institute from the second terminal by the broadband communication link before establishing narrow-band communications links The narrowband number of second terminal is stated, and the narrow-band communications links are established according to the narrowband number and the second terminal;
It obtains the narrowband number of the first terminal and leads to the narrowband number of the first terminal by the broadband Letter link is sent to the second terminal will pass through the broadband communication link from the second terminal and obtain described second eventually The narrowband number at end.
Why first terminal and second terminal corresponding narrowband number are obtained, this is because communication terminal is corresponding narrow Column with number can have multiple, first to carry out authentication process to first terminal and the corresponding narrowband number of second terminal, judge first Whether terminal and second terminal have can be in the permission of narrowband network progress data interaction.
Together with the narrowband number of the second terminal, the first terminal also obtains described first from the second terminal The session identification of terminal and the second terminal, wherein the session identification is for identifying the application carried out data transmission.
Because by first terminal by the narrowband number transfer of oneself to second terminal, and second terminal also by oneself Narrowband number transfer has given first terminal, while session identification has also been transmitted to first terminal, in this way, first terminal and second is eventually End has known after the narrowband number of oneself and the narrowband number of other side and session identification, so that it may determine narrow band transmission link, It is therein, the session identification and the default key message are passed through into the narrow band transmission link transmission to described second together Terminal.Session identification is the scene of transfer data information or the source of application, i.e., clearly the Data Posting Message is at which It is transmitted in.Because narrow band transmission link can have multiple, and source narrowband number and purpose narrowband only is being determined After number, it can just be determined as a corresponding unique narrow band transmission link.
S106, the default key message is transmitted to the second terminal by the narrow-band communications links;
It confirmed that these are to be transmitted under normal circumstances between first terminal and second terminal after data information to be transmitted Data not only include the relevant information such as key sequence or random that data information itself further comprises encryption mode generation Number etc..If, can be by default when in some cases, in data information to be transmitted including this Partial key information Cipher mode generate this Partial key information, and between first terminal and second terminal by narrow band transmission link pair this Partial key information is transmitted, while by remaining data information, i.e., the data information or to be transmitted in addition to key message Data information, encrypted by key message, encrypted data information is passed by general broadband transmission link It is defeated.
It is appreciated that the realization sequence of the step of this method is not limited to the sequence stated in the present embodiment.For example, by institute It states key message and sequence that the remaining data information is transferred to the second terminal can not be stated sequence, that is, Default key message first can be transmitted to second terminal by narrow-band communications links and then encrypted message key will be preset with this Data information afterwards is transmitted to second terminal by broadband communication link, can also first will with preset encrypted message key after number It is believed that breath is transmitted to second terminal and then this is preset key message by broadband communication link passes through narrow-band communications links transmission To second terminal.
It, in some embodiments of the invention can be with further for the safety for more guaranteeing narrow band transmission link transmission The safety of narrow band transmission link is protected by PMR (private mobile radio communication) standard.It can be according to user's concrete scene Corresponding cipher mode is selected, for example, the relevant encryption technology such as cipher mode of eating dishes without rice or wine, End to End Encryption mode and Encryption Algorithm Means.The safety of the data interaction between terminal and narrow band transmission link is also ensured in this way.
On the basis of the present embodiment, another embodiment of the present invention is further comprised:
Data information to be transmitted is encrypted using rivest, shamir, adelman, the default key message includes non-right Claim encryption code key.
It is understood that default key message is the encryption information for carrying out encryption generation to data to be transmitted, and adopt Encryption Algorithm corresponds to each other, for example, the default key message of generation is denoted as asymmetric close when using rivest, shamir, adelman Key.
Same way, it is also possible to the transformat of the default key message is set, i.e., corresponding narrow band transmission link formats, in advance If key message can further increase the safety of the key message by specific transformat, for example, can according to The customized data format in family can specifically be transmitted to send the channel of short message as transformat, that is, be required in spy Determine data format to be inputted, does not depend on other environment templates.
The method of another safety-oriented data transfer is additionally provided in embodiments of the present invention, and this method is applied to second terminal Namely purpose terminal, referring to fig. 2, this method may comprise steps of:
S201, foundation and first terminal broadband communication link;
S202, encrypted data information is received by the broadband communication link;
The encrypted data information is first terminal of the purpose terminal namely in a upper embodiment to number to be transmitted According to carry out it is encrypted by the broadband communication link transmit come data information.
S203, it establishes and the narrow-band communications links of the first terminal;
S204, the default key message is received from the first terminal by the narrow-band communications links;
S205, encrypted data information is decrypted by the default key message.
In the method for safety-oriented data transfer disclosed by the embodiments of the present invention, communicated in first terminal with second terminal foundation After connection, it is determined that data information to be transmitted has been divided into two by the narrow band transmission link between first terminal and second terminal Part, a part are that key message is transmitted by narrow band transmission link, and another part is by the surplus of encrypted message key Remaining data information is transmitted by broadband transmission link, and key message therein is the key that encryption needs or random number etc. Important information is carried out the safety that transmission ensures key by the higher narrow band link of safety in this way by information, On the other hand encrypted data information is transmitted by the higher wideband link of transmission rate ensure that efficiency of transmission, and In this programme and be not used the higher special mobile network of flow cost carry out data transmission, but enable data information with The data safety having the same or higher safety transmitted by special mobile network, it is thereby achieved that mentioning High data transmission security can and reduce the purpose of data transmission cost.
Below by taking specific application scenarios as an example, the method for safety-oriented data transfer of the invention is illustrated, referring to attached Fig. 3, Fig. 3 are a kind of schematic diagram of the safety-oriented data transfer of bimodulus entity, including source terminal and purpose terminal, the source terminal and mesh Terminal all include application module, security module and transmission module three parts.
The transmitting of universal information, such as narrowband number acquisition request, narrowband are carried out between application module by transmission link The transmitting etc. of the information such as number transfer or exchange;Security module provides narrowband number for source terminal and purpose terminal, as narrow With number memory module;It is connected between transmission module by narrow band link, for transmitting default key message.
The application module of source terminal needs to provide its narrowband ID and gives purpose terminal, and purpose terminal needs to return the narrowband of itself ID and session id are to source terminal.
Purpose terminal should request to obtain itself narrowband ID and session id from security module (interface B in attached drawing 3), and pass through Call back function, API (Application Programming Interface, application programming interface), message etc. are therein The data that it is ID from the label that narrow band link comes that a kind of mode, which is received,.
For source terminal after the narrowband ID and session id for receiving the transmission of purpose terminal, source terminal can be by encrypted transmission Data and default key message are sent jointly to security module (by the interface B of attached drawing 3), and it includes meeting that security module, which establishes one, Talk about the short data message of ID and default key message.Do not have to answer to allow purpose terminal to receive narrowband application and can recognize that belong to The security information of interaction, can be used a dedicated agreement to identify session id between.
The end data message of session id and default key message can be identified with the narrowband of communication terminal and passed to together Therefore the data-interface C of terminal can be transmitted above-mentioned message by the narrow band link of safety.For this partial information Interface can identify session id according to the agreement of setting and then judge the content of message, be then passed to data-interface C.Cause This, dialogue-based ID security module can forward the default key message that receives to purpose terminal.
After source terminal and purpose terminal obtain the default key message, source terminal can be using the default key message pair Band transmission data are encrypted, and purpose terminal can be decrypted the data of encryption using the default key message.
Available from above-described embodiment, compared with traditional information transmission switching method, the embodiment of the present invention is provided Technical solution do not need to store additional key or processing certificate and associated verification work, do not need to pass by IP link yet Defeated application message.The existing security strategy of PMR and function (for example, the distribution of authentication, key and management etc.) can directly be multiplexed and The key message of broadband side is protected, for example, for protecting the important information of subsequent wideband link to transmit, or directly transmit The critical datas such as user password or identifying code.After default key message completes interaction by narrow band link, subsequent IP-based The transmission of wideband link data can be protected by higher and safe encryption policy.
A kind of communication terminal of safety-oriented data transfer is additionally provided in another embodiment of the invention, it is referring to fig. 4, described Communication terminal 10 includes:
Encryption unit 101, for encrypting data information to be transmitted;
Broadband connections unit 102, for establish with the broadband communication link of other communication terminals, and by encrypted number It is believed that breath is transmitted to other described communication terminals by broadband communication link;
Acquiring unit 103, for obtaining default key message relevant to data information to be transmitted, wherein described default Key message can be used to that the data information of encryption to be decrypted;
Narrow band communication unit 104, for establishing narrow-band communications links with other described communication terminals, and will be described default Key message is transmitted to other described communication terminals by the narrow-band communications links.
Optionally, the broadband communication link is also used to obtain other communication terminals from other described communication terminals Narrowband number;
The narrow band communication unit is also used to establish the narrowband according to the narrowband number and other described communication terminals Communication link.
Optionally, the broadband connections unit is also used to the narrowband number of the communication terminal passing through the broadband connections Link is sent to other described communication terminals will pass through the broadband communication link from described in the acquisition of other described communication terminals The narrowband number of other communication terminals.
Optionally, the broadband connections unit is also used to together with the narrowband number of other communication terminals, described logical Letter terminal also obtains the session identification of the communication terminal Yu other communication terminals from other described communication terminals, wherein institute Session identification is stated for identifying the application carried out data transmission.
The communication terminal of another safety-oriented data transfer is additionally provided in an embodiment of the present invention, referring to Fig. 5, the communication Terminal 20 includes:
Broadband connections unit 201, for establish with the broadband communication link of other communication terminals, and it is logical by the broadband Believe that link receives encrypted data information from other described communication terminals;
Narrow band communication unit 202, for establish with the narrow-band communications links of other communication terminals, and by described Narrow-band communications links receive the default key message from other described communication terminals;And
Decryption unit 203, for encrypted data information to be decrypted by the default key message.
Optionally, the broadband connections unit is also used to send out by the broadband communication link to other described communication terminals The narrowband number of the communication terminal is sent, so that other described communication terminals are built according to the narrowband number with the communication terminal Vertical narrow-band communications links.
A kind of multi-mode communication terminal of safety-oriented data transfer is additionally provided in an alternative embodiment of the invention, referring to Fig. 6, institute Stating multi-mode communication terminal includes:
Transceiver 30 is used for sending and receiving data information;
Memory 31, for storing program;
Processor 32, when the processor runs described program, realizes the embodiment of the present invention for running described program The method of any one safety-oriented data transfer of middle offer.
It should be noted that second terminal obtains the second narrowband number of itself by security module, and can will preset Key message is stored into the security module, and can be set data interface module guarantee data transmission link selection and Using.
First terminal referring also in embodiment, first terminal and second terminal are distinguished on only naming, specifically Can be understood as source terminal and purpose terminal, can be by therefore when first terminal carries out data transmission to second terminal One terminal encrypted using the technical solution proposed in the embodiment of the present invention to data, and second terminal is as a purpose at this time Terminal can be decrypted according to corresponding default key message obtains corresponding source data.Equally, if second terminal conduct When source terminal carries out data transmission to first terminal, second terminal at this time can use the scheme proposed in the embodiment of the present invention Data are encrypted, and terminal can solve encrypted data according to default key message first terminal as a purpose It is close to obtain source data.Due to during broadband transmission transmission be it is two-way, the function of first terminal and second terminal With effect can with cross-reference, that is, first terminal and second terminal all have receive data, transmission data, encryption data and The correlation functions such as ciphertext data, in specific application can be according to the description cross-reference in embodiment two and embodiment three.
Therefore, it does not still all need either to store additional key or processing certificate in second terminal in first terminal It generates and verifies, existing security strategy can be used directly to carry out data information protection, without developing additional Encryption Algorithm.
Also, broadband transmission link can be 4G/3G or WIFI in the present invention, and narrow band transmission link can be DMR Or TETRA.
In conclusion first eventually in the technical solution of communication terminal disclosed by the embodiments of the present invention and multi-mode communication terminal After communication connection is established with second terminal in end, it is determined that the narrow band transmission link between first terminal and second terminal, it will be to be passed Defeated data information has been divided into two parts, and a part is that key message is transmitted by narrow band transmission link, and another part is It is transmitted by the remaining data information of encrypted message key by broadband transmission link, key message therein is that encryption needs The information such as the key wanted or random number are in this way transmitted important information by the higher narrow band link of safety It ensures the safety of key, on the other hand protects encrypted data information by the higher wideband link transmission of transmission rate Demonstrate,proved efficiency of transmission, and in this programme and be not used the higher special mobile network of flow cost carry out data transmission, but It is to enable data information and the data safety having the same transmitted by special mobile network or higher Safety, it is thereby achieved that improve data transfer security performance and reducing the purpose of data transmission cost.
Each embodiment in this specification is described in a progressive manner, the highlights of each of the examples are with other The difference of embodiment, the same or similar parts in each embodiment may refer to each other.For device disclosed in embodiment For, since it is corresponded to the methods disclosed in the examples, so being described relatively simple, related place is said referring to method part It is bright.
The foregoing description of the disclosed embodiments enables those skilled in the art to implement or use the present invention. Various modifications to these embodiments will be readily apparent to those skilled in the art, as defined herein General Principle can be realized in other embodiments without departing from the spirit or scope of the present invention.Therefore, of the invention It is not intended to be limited to the embodiments shown herein, and is to fit to and the principles and novel features disclosed herein phase one The widest scope of cause.

Claims (20)

1. a kind of method of safety-oriented data transfer, which is characterized in that be applied to first terminal, comprising:
Data information to be transmitted is encrypted;
Establish the broadband communication link with second terminal;
Encrypted data information is transmitted to the second terminal by the broadband communication link;
Default key message relevant to data information to be transmitted is obtained, wherein the default key message can be used for encryption Data information be decrypted;
Narrow-band communications links are established with the second terminal;And
The default key message is transmitted to the second terminal by the narrow-band communications links.
2. the method according to claim 1, wherein the method also includes:
The narrowband number of the second terminal is obtained from the second terminal by the broadband communication link, and according to described narrow Column with number and the second terminal establish the narrow-band communications links.
3. the method according to claim 1, wherein the default key message includes generating in ciphering process Code key.
4. according to the method described in claim 2, it is characterized in that, the method also includes:
It obtains the narrowband number of the first terminal and the narrowband number of the first terminal is passed through into the broadband connections chain Road is sent to the second terminal will pass through the broadband communication link from the second terminal and obtain the second terminal Narrowband number.
5. according to the method described in claim 2, it is characterized in that, the method also includes:
Together with the narrowband number of the second terminal, the first terminal also obtains the first terminal from the second terminal With the session identification of the second terminal, wherein the session identification is for identifying the application carried out data transmission.
6. according to the method described in claim 5, it is characterized in that, the method also includes:
The session identification and the default key message are passed through into the narrow band transmission link transmission to second end together End.
7. according to the method described in claim 3, it is characterized in that, the method also includes:
Data information to be transmitted is encrypted using rivest, shamir, adelman, the default key message includes asymmetric adds Close code key.
8. a kind of method of safety-oriented data transfer, which is characterized in that be applied to second terminal, comprising:
Establish the broadband communication link with first terminal;
Encrypted data information is received by the broadband communication link;
Establish the narrow-band communications links with the first terminal;
The default key message is received from the first terminal by the narrow-band communications links;And
Encrypted data information is decrypted by the default key message.
9. according to the method described in claim 8, it is characterized in that, the method also includes:
The narrowband number of the second terminal is sent, to the first terminal by the broadband communication link so as to described first Terminal establishes narrow-band communications links according to the narrowband number and the second terminal.
10. according to the method described in claim 9, it is characterized in that, the method also includes:
When receiving the narrowband number of the first terminal, institute is sent to the first terminal by the broadband communication link State the narrowband number of second terminal.
11. according to the method described in claim 9, it is characterized in that, together with the narrowband number of the second terminal, described Two terminals also send the session identification of the second terminal Yu the first terminal to the first terminal, wherein the session mark Know for identifying the application carried out data transmission.
12. according to the method for claim 11, which is characterized in that the security module that the second terminal passes through access preset Obtain the narrowband number of the second terminal and the session identification with the first terminal.
13. according to the method for claim 12, which is characterized in that will be whole from described first by the narrow band transmission link It terminates the default key message that receives and the session identification is sent to the preset security module and described default Security module be based on the session identification the default key message be forwarded to specific application.
14. a kind of communication terminal of safety-oriented data transfer, which is characterized in that the communication terminal includes:
Encryption unit, for encrypting data information to be transmitted;
Broadband connections unit, for establish with the broadband communication link of other communication terminals, and by encrypted data information Other described communication terminals are transmitted to by broadband communication link;
Acquiring unit, for obtaining default key message relevant to data information to be transmitted, wherein the default crucial letter Breath can be used to that the data information of encryption to be decrypted;
Narrow band communication unit for establishing narrow-band communications links with other described communication terminals, and the default key is believed Breath is transmitted to other described communication terminals by the narrow-band communications links.
15. communication terminal according to claim 14, which is characterized in that
The broadband communication link is also used to obtain the narrowband number of other communication terminals from other described communication terminals;
The narrow band communication unit is also used to establish the narrow band communication according to the narrowband number and other described communication terminals Link.
16. communication terminal according to claim 15, which is characterized in that
The broadband connections unit is also used to for the narrowband number of the communication terminal being sent to by the broadband communication link Other described communication terminals obtain other described communications eventually will pass through the broadband communication link from other described communication terminals The narrowband number at end.
17. communication terminal according to claim 15, which is characterized in that
The broadband connections unit is also used to together with the narrowband number of other communication terminals, and the communication terminal is also from institute The session identification that other communication terminals obtain the communication terminal Yu other communication terminals is stated, wherein the session identification is used In the application that mark carries out data transmission.
18. a kind of communication terminal of safety-oriented data transfer characterized by comprising
Broadband connections unit, for establish with the broadband communication link of other communication terminals, and pass through the broadband communication link Encrypted data information is received from other described communication terminals;
Narrow band communication unit, for establish with the narrow-band communications links of other communication terminals, and pass through the narrow bandpass Believe that link receives the default key message from other described communication terminals;And
Decryption unit, for encrypted data information to be decrypted by the default key message.
19. communication terminal according to claim 18, which is characterized in that
The broadband connections unit is also used to send the communication to other described communication terminals by the broadband communication link The narrowband number of terminal, so that other described communication terminals establish narrow band communication according to the narrowband number and the communication terminal Link.
20. a kind of multi-mode communication terminal of safety-oriented data transfer, which is characterized in that the multi-mode communication terminal includes:
Transceiver is used for sending and receiving data information;
Memory, for storing program;
Processor, when the processor runs described program, is realized any in claim 1-13 for running described program Method described in.
CN201810150515.8A 2018-02-13 2018-02-13 Method and terminal for safely transmitting data and multimode communication terminal Active CN110166410B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201810150515.8A CN110166410B (en) 2018-02-13 2018-02-13 Method and terminal for safely transmitting data and multimode communication terminal

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201810150515.8A CN110166410B (en) 2018-02-13 2018-02-13 Method and terminal for safely transmitting data and multimode communication terminal

Publications (2)

Publication Number Publication Date
CN110166410A true CN110166410A (en) 2019-08-23
CN110166410B CN110166410B (en) 2021-11-02

Family

ID=67635375

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201810150515.8A Active CN110166410B (en) 2018-02-13 2018-02-13 Method and terminal for safely transmitting data and multimode communication terminal

Country Status (1)

Country Link
CN (1) CN110166410B (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112584435A (en) * 2020-11-19 2021-03-30 广东沃科融合通讯有限公司 Wide-band and narrow-band integrated communication transmission method and device and electronic equipment
CN112995101A (en) * 2019-12-16 2021-06-18 成都鼎桥通信技术有限公司 Service message transmission method and device
CN116233032A (en) * 2023-03-02 2023-06-06 深圳市中创鑫和科技有限公司 Broadband narrowband fusion networking system and method

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1198868A (en) * 1995-08-16 1998-11-11 Gpt有限公司 Data delivery services
CN1249586A (en) * 1998-09-21 2000-04-05 电话通有限公司 Method and device for establishing safety connection on single data channel
CN102025844A (en) * 2010-12-06 2011-04-20 中兴通讯股份有限公司 Color bell business implementation method and device
CN102098672A (en) * 2011-03-16 2011-06-15 北京邮电大学 Method and system for transmitting key information, transmitting end and receiving end
KR20140087202A (en) * 2012-12-28 2014-07-09 (주)링크일렉트로닉스 Frequency of two kinds of smart phones that work with crime prevention system that utilizes wireless
CN106789919A (en) * 2016-11-25 2017-05-31 上海交通大学 A kind of self adaptation multiband Cooperative Security transmission method and device

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1198868A (en) * 1995-08-16 1998-11-11 Gpt有限公司 Data delivery services
CN1249586A (en) * 1998-09-21 2000-04-05 电话通有限公司 Method and device for establishing safety connection on single data channel
CN102025844A (en) * 2010-12-06 2011-04-20 中兴通讯股份有限公司 Color bell business implementation method and device
CN102098672A (en) * 2011-03-16 2011-06-15 北京邮电大学 Method and system for transmitting key information, transmitting end and receiving end
KR20140087202A (en) * 2012-12-28 2014-07-09 (주)링크일렉트로닉스 Frequency of two kinds of smart phones that work with crime prevention system that utilizes wireless
CN106789919A (en) * 2016-11-25 2017-05-31 上海交通大学 A kind of self adaptation multiband Cooperative Security transmission method and device

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112995101A (en) * 2019-12-16 2021-06-18 成都鼎桥通信技术有限公司 Service message transmission method and device
CN112584435A (en) * 2020-11-19 2021-03-30 广东沃科融合通讯有限公司 Wide-band and narrow-band integrated communication transmission method and device and electronic equipment
CN112584435B (en) * 2020-11-19 2023-12-26 广东沃科融合通讯有限公司 Wide-narrow-band fusion communication transmission method and device and electronic equipment
CN116233032A (en) * 2023-03-02 2023-06-06 深圳市中创鑫和科技有限公司 Broadband narrowband fusion networking system and method
CN116233032B (en) * 2023-03-02 2023-10-20 深圳市中创鑫和科技有限公司 Broadband narrowband fusion networking system and method

Also Published As

Publication number Publication date
CN110166410B (en) 2021-11-02

Similar Documents

Publication Publication Date Title
CN106059869B (en) A kind of internet of things intelligent household equipment safety control method and system
CN101340443B (en) Session key negotiating method, system and server in communication network
CN101114901B (en) Safety authentication system, apparatus and method for non-contact type wireless data transmission
CN101005359B (en) Method and device for realizing safety communication between terminal devices
CN101273572B (en) System, method and computer program product for authenticating a data agreement between network entities
CN108510270B (en) Mobile transfer method with safe quantum
US20210067495A1 (en) System and method for end-to-end secure communication in device-to-device communication networks
CN101772024B (en) User identification method, device and system
CN103458400B (en) A kind of key management method in voice encryption communication system
CN103415008A (en) Encryption communication method and encryption communication system
CN102412967A (en) Data transmission system and method
CN103118363B (en) A kind of method of mutual biography secret information, system, terminal unit and platform device
CN109995514A (en) A kind of safe and efficient quantum key Information Mobile Service method
WO2012024906A1 (en) Mobile communication system and voice call encryption method thereof
CN109995511A (en) A kind of mobile secret communication method based on quantum key distribution network
CN101895882A (en) Data transmission method, system and device in WiMAX system
CN109600725A (en) A kind of message encryption method based on SM9 algorithm
CN112672342B (en) Data transmission method, device, equipment, system and storage medium
CN110166410A (en) A kind of method of safety-oriented data transfer, terminal and multi-mode communication terminal
CN109995512A (en) A kind of mobile security application method based on quantum key distribution network
CN105450392B (en) A kind of method and device for determining key pair, data processing method
CN108156604B (en) Group calling encryption transmission method and device of cluster system, cluster terminal and system
CN102487503B (en) Method for managing multi-stage security dynamic group security keys
CN103297940A (en) Short message encryption communication system and method
CN109756324A (en) Cryptographic key negotiation method, terminal and gateway in a kind of Mesh network

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant