CN111460479B - Gallery encryption management system - Google Patents
Gallery encryption management system Download PDFInfo
- Publication number
- CN111460479B CN111460479B CN202010243895.7A CN202010243895A CN111460479B CN 111460479 B CN111460479 B CN 111460479B CN 202010243895 A CN202010243895 A CN 202010243895A CN 111460479 B CN111460479 B CN 111460479B
- Authority
- CN
- China
- Prior art keywords
- mobile terminal
- password
- data
- gallery
- hash
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/606—Protecting data by securing the transmission between two devices or processes
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/45—Structures or tools for the administration of authentication
- G06F21/46—Structures or tools for the administration of authentication by designing passwords or checking the strength of passwords
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/602—Providing cryptographic facilities or services
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
- G06F21/6218—Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
Abstract
The invention discloses a gallery encryption management system, which comprises: the mobile terminal comprises a storage device and a user identity module, wherein the storage device stores a user gallery and IMEI information corresponding to the mobile terminal, the user identity module is electrically connected with the mobile terminal and stores IMSI information corresponding to the user identity module; the server is used for being in communication connection with the mobile terminal; the mobile terminal transmits IMEI information and/or IMSI information to the server, when receiving the IMEI information and/or IMSI information, the server generates Hash data according to the IMEI information and/or IMSI information and a Hash algorithm, the server transmits the Hash data to the mobile terminal, the mobile terminal generates password data corresponding to the Hash data and a preset password according to the Hash data and the preset password, and performs an encryption operation in a symmetric encryption algorithm on a user gallery according to the password data. The gallery encryption management system can encrypt the user gallery in the mobile terminal based on the equipment of the user gallery.
Description
Technical Field
The invention relates to an information encryption method and system.
Background
At present, with the development of electronic product technology, smart devices have increasingly penetrated the aspects of life, and the impact on traditional photographing devices is particularly great. For non-professional photography, the current smart phone can completely meet daily requirements of people, so that more and more people do not carry a camera alone when going out, and only take pictures through the more portable and powerful smart phone. However, this also results in that a great number of personal photos may be stored in the user's mobile phone, and the personal photos are part of privacy, and for the private photos that the user does not want to disclose, if the user leaks, the user may be greatly troubled. At present, there are various methods for encrypting a gallery in a mobile terminal in a manner of mobile phone end Application (APP), but most of these APPs are locally asymmetric encryption. When the device is lost, a lawless person can perform password blasting on another device in a social engineering-dependent manner by means of data derivation. Therefore, in practice, the data encryption protection for the mobile terminal is relatively weak at present.
Disclosure of Invention
In view of the above problems in the prior art, the present invention aims to provide an information encryption method and system, which can be applied to protect sensitive data (such as account and password) from interception and resubmission.
In order to achieve the above object, an embodiment of the present invention provides a gallery encryption management system, including:
the mobile terminal comprises a storage device and a user identity module, wherein the storage device stores a user gallery and IMEI information corresponding to the mobile terminal, the user identity module is electrically connected with the mobile terminal and stores IMSI information corresponding to the user identity module;
the server is used for being in communication connection with the mobile terminal; the mobile terminal transmits the IMEI information and/or the IMSI information to the server, the server generates hash data according to the IMEI information and/or the IMSI information and a hash algorithm when receiving the IMEI information and/or the IMSI information, the server transmits the hash data to the mobile terminal, the mobile terminal generates password data corresponding to the hash data and a preset password according to the hash data and the preset password, and performs encryption operation in a symmetric encryption algorithm on the user gallery according to the password data to encrypt the user gallery; the mobile terminal generates and outputs a preset password request when receiving the hash data, and generates the password data according to the hash data and the preset password when receiving the matching of the user input and the preset password.
Preferably, when the server receives the IMEI information and/or the IMSI information, a hash algorithm is executed according to the IMEI information and/or the IMSI information to generate a hash value composed of a plurality of characters, and then N characters in characters corresponding to the hash value are used as the hash data, where N is an integer greater than 1.
Preferably, when the mobile terminal generates the password data, character splicing is performed on the hash data and the preset password, and a character splicing result is used as the password data.
Another aspect of the present invention provides a gallery encryption management system, including:
the mobile terminal comprises a storage device and a user identity module, wherein the storage device stores an encrypted user gallery and IMEI information corresponding to the mobile terminal, and the user identity module is electrically connected with the mobile terminal and stores IMSI information corresponding to the user identity module;
the server is used for being in communication connection with the mobile terminal; the mobile terminal transmits the IMEI information and/or the IMSI information to the server, the server generates Hash data according to the IMEI information and/or the IMSI information and a Hash algorithm when receiving the IMEI information and/or the IMSI information, the server transmits the Hash data to the mobile terminal, the mobile terminal generates password data corresponding to the Hash data and the decryption password according to the Hash data and the decryption password, and the password data is used for executing decryption operation in a symmetric encryption algorithm on the user gallery to decrypt the user gallery; the user gallery comprises a private key, the mobile terminal generates and outputs a decryption password request when receiving the hash data, and generates the password data according to the hash data and the decryption password when receiving the matching of the user input and the decryption password.
Preferably, when the server receives the IMEI information and/or the IMSI information, the server executes the hash algorithm according to the IMEI information and/or the IMSI information to generate a hash value composed of a plurality of characters, and then takes N characters in characters corresponding to the hash value as the hash data, where N is an integer greater than 1.
Preferably, when the mobile terminal generates the password data, the hash data and the decryption password are subjected to character splicing, and a character splicing result is used as the password data.
Compared with the prior art, the gallery encryption management system can encrypt the user gallery in the mobile terminal based on the equipment, does not cause the privacy of the user to be revealed even if the equipment is lost or the user gallery is illegally stolen, and has higher safety.
It is to be understood that both the foregoing general description and the following detailed description are exemplary and explanatory only and are not restrictive of the disclosure.
This document provides an overview of various implementations or examples of the technology described in this disclosure, and is not a comprehensive disclosure of the full scope or all features of the disclosed technology.
Drawings
Fig. 1 is a block diagram showing the configuration of a gallery encryption management system according to the present invention.
FIG. 2 is an encryption flowchart of the gallery encryption management system of the present invention.
Detailed Description
In order to make the objects, technical solutions and advantages of the embodiments of the present disclosure more clear, the technical solutions of the embodiments of the present disclosure will be described below clearly and completely with reference to the accompanying drawings of the embodiments of the present disclosure. It is to be understood that the described embodiments are only a few embodiments of the present disclosure, and not all embodiments. All other embodiments, which can be derived by a person skilled in the art from the described embodiments of the disclosure without any inventive step, are within the scope of protection of the disclosure.
Unless otherwise defined, technical or scientific terms used herein shall have the ordinary meaning as understood by one of ordinary skill in the art to which this disclosure belongs. The use of the word "comprising" or "comprises", and the like, in this disclosure is intended to mean that the elements or items listed before that word, include the elements or items listed after that word, and their equivalents, without excluding other elements or items. The terms "connected" or "coupled" and the like are not restricted to physical or mechanical connections, but may also include electrical connections, whether direct or indirect. "upper", "lower", "left", "right", and the like are used merely to indicate relative positional relationships, and when the absolute position of the object being described is changed, the relative positional relationships may also be changed accordingly.
To maintain the following description of the embodiments of the present disclosure clear and concise, a detailed description of known functions and known components is omitted from the present disclosure.
As shown in fig. 1, the gallery encryption management system according to an embodiment of the present invention includes a mobile terminal 11 and a server 12 for communicating with the mobile terminal 11.
The mobile terminal 11 includes a storage device 111 and a subscriber identity module 112. In the embodiment, the mobile terminal 11 is, for example, a smart phone, and the storage device 111 stores a user map and unique IMEI information corresponding to the mobile terminal 11 itself. In this embodiment, the user gallery APP includes a private key. It should be noted that, in other embodiments, the mobile terminal 111 may also be a tablet computer. The IMEI information is also called an IMEI code (International Mobile Equipment Identity), and is bound to the Mobile terminal 11 when the Mobile terminal 11 leaves the factory.
The SIM 112 is a Subscriber Identity Module (SIM), and the SIM 112 is, for example, arranged in the mobile terminal 11 in a pluggable manner and electrically connected to the mobile terminal 11, so that the mobile terminal 11 can read data in the SIM 112. The Subscriber Identity module 112 stores a unique IMSI information corresponding to the Subscriber Identity module 112 itself, which is also called an IMSI number (International Mobile Subscriber Identity), and the IMSI information is bound to the Subscriber Identity module 112 when the Subscriber Identity module 112 leaves the factory.
The server 12 is, for example, a hash operation server in the present embodiment, and the server 12 can communicate with the mobile terminal 11 via the internet.
As shown in fig. 2, the method for encrypting the user gallery by the gallery encryption management system of the present invention is described in detail in the following.
First, the mobile terminal 11 transmits the IMEI information and the IMSI information to the server 12.
When receiving the IMEI information and the IMSI information, the server 12 generates a concatenation character including the IMEI information and the IMSI information according to the IMEI information and the IMSI information. More specifically, the server 12 combines the IMEI information and the IMSI information in a tandem manner to generate a concatenated string, for example.
The server 12 executes a hash algorithm on the concatenated character to generate a hash value consisting of a plurality of characters corresponding to the IMEI information and the IMSI information. In this embodiment, the hash algorithm executed by the server 12 is, for example, SHA256 algorithm, but in other embodiments, the hash algorithm may also be, for example, SHA-384, SHA-512, SHA-3, or MD5, MD 4.
The server 12 generates hash data corresponding to the hash value based on the hash value. The server 12 generates the hash data by, for example, using N characters in the hash value as the hash data, where N is an integer greater than 1. More specifically, in the present embodiment, the server 12 takes, for example, the first 32 characters of the hash value as the hash data (i.e., N = 32).
The server 12 transmits the hash data to the mobile terminal 11.
The mobile terminal 11 generates and outputs a predetermined password request when receiving the hash data, and the manner of outputting the predetermined password request by the mobile terminal 11 is, for example, displaying a predetermined password setting screen on a screen.
When receiving a preset password input by a user and corresponding to the preset password request, the mobile terminal 11 generates password data corresponding to the hash data and the preset password according to the hash data and the preset password. More specifically, in the embodiment, the mobile terminal 11 generates the password data, for example, concatenates the hash data and the preset password in a front-to-back manner, and uses the concatenated result as the password data. For example, if the hash data is "ABCDE" and the predetermined password is "12345", the password data is "ABCDE12345".
The mobile terminal 11 uses the cipher data as an encryption key, and performs an encryption operation of a symmetric encryption algorithm on the user gallery with the encryption key to encrypt the user gallery. In the present embodiment, the symmetric encryption algorithm executed by the mobile terminal 11 is, for example, the AES-128 algorithm, however, in other embodiments, the symmetric encryption algorithm executed by the mobile terminal 11 may be, for example, AES-192, AES-256, or other symmetric encryption algorithms such as DES, 3DES, blowfish, IDEA, etc.
The above shows a specific method flow for encrypting by the gallery encryption management system of the present invention, and when decrypting, the actual difference is only that the decryption operation is performed in the original step of performing encryption, and therefore, the detailed description is not repeated in the present invention.
While there has been described what are believed to be the preferred embodiments of the present invention, it will be apparent to those skilled in the art that various changes and modifications can be made therein without departing from the principles of the invention, and it is intended to cover all such changes and modifications as fall within the true scope of the invention.
Claims (6)
1. The gallery encryption management system includes:
the mobile terminal comprises a storage device and a user identity module, wherein the storage device stores a user gallery and IMEI information corresponding to the mobile terminal, the user identity module is electrically connected with the mobile terminal and stores IMSI information corresponding to the user identity module;
the server is used for being in communication connection with the mobile terminal; the mobile terminal transmits the IMEI information and/or the IMSI information to the server, the server generates hash data according to the IMEI information and/or the IMSI information and a hash algorithm when receiving the IMEI information and/or the IMSI information, the server transmits the hash data to the mobile terminal, the mobile terminal generates password data corresponding to the hash data and a preset password according to the hash data and the preset password, and performs an encryption operation in a symmetric encryption algorithm on the user gallery according to the password data to encrypt the user gallery; the mobile terminal generates and outputs a preset password request when receiving the hash data, and generates the password data according to the hash data and the preset password when receiving that the user input is matched with the preset password.
2. The gallery encryption management system according to claim 1, wherein, when the server receives the IMEI information and/or the IMSI information, a hash algorithm is performed according to the IMEI information and/or the IMSI information to generate a hash value composed of a plurality of characters, and then N characters of the characters corresponding to the hash value are used as the hash data, where N is an integer greater than 1.
3. The gallery encryption management system according to claim 1, wherein the mobile terminal performs character concatenation on the hash data and the preset password when generating the password data, and uses a character concatenation result as the password data.
4. The gallery encryption management system includes:
the mobile terminal comprises a storage device and a user identity module, wherein the storage device stores an encrypted user gallery and IMEI information corresponding to the mobile terminal, and the user identity module is electrically connected with the mobile terminal and stores IMSI information corresponding to the user identity module;
the server is used for being in communication connection with the mobile terminal; the mobile terminal transmits the IMEI information and/or the IMSI information to the server, the server generates hash data according to the IMEI information and/or the IMSI information and a hash algorithm when receiving the IMEI information and/or the IMSI information, the server transmits the hash data to the mobile terminal, the mobile terminal generates password data corresponding to the hash data and the decryption password according to the hash data and the decryption password, and performs decryption operation in a symmetric encryption algorithm on the user gallery according to the password data to decrypt the user gallery; the user gallery comprises a private key, the mobile terminal generates and outputs a decryption password request when receiving the hash data, and generates the password data according to the hash data and the decryption password when receiving the matching of the user input and the decryption password.
5. The gallery encryption management system according to claim 4, wherein, when the server receives the IMEI information and/or the IMSI information, the server executes the hash algorithm according to the IMEI information and/or the IMSI information to generate a hash value composed of a plurality of characters, and then uses N characters of the characters corresponding to the hash value as the hash data, where N is an integer greater than 1.
6. The gallery encryption management system according to claim 4, wherein the mobile terminal character-splices the hash data with the decryption password when generating the password data, and takes a character-splice result as the password data.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010243895.7A CN111460479B (en) | 2020-03-31 | 2020-03-31 | Gallery encryption management system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010243895.7A CN111460479B (en) | 2020-03-31 | 2020-03-31 | Gallery encryption management system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN111460479A CN111460479A (en) | 2020-07-28 |
| CN111460479B true CN111460479B (en) | 2023-02-14 |
Family
ID=71680643
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202010243895.7A Active CN111460479B (en) | 2020-03-31 | 2020-03-31 | Gallery encryption management system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN111460479B (en) |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2013051032A1 (en) * | 2011-10-03 | 2013-04-11 | Ezetap Mobile Solutions Private Limited | A dongle device with rechargeable power supply for a secure electronic transaction |
| CN104281794A (en) * | 2014-09-23 | 2015-01-14 | 北京奇艺世纪科技有限公司 | Password storing and verifying method and password storing and verifying device |
| CN106656481A (en) * | 2016-10-28 | 2017-05-10 | 美的智慧家居科技有限公司 | Identity authentication method, apparatus and system |
| WO2017202025A1 (en) * | 2016-05-24 | 2017-11-30 | 中兴通讯股份有限公司 | Terminal file encryption method, terminal file decryption method, and terminal |
| WO2017206250A1 (en) * | 2016-06-01 | 2017-12-07 | 宇龙计算机通信科技(深圳)有限公司 | Method and device for destroying backup of terminal |
| CN109067524A (en) * | 2018-07-31 | 2018-12-21 | 杭州复杂美科技有限公司 | A kind of public private key pair generation method and system |
-
2020
- 2020-03-31 CN CN202010243895.7A patent/CN111460479B/en active Active
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2013051032A1 (en) * | 2011-10-03 | 2013-04-11 | Ezetap Mobile Solutions Private Limited | A dongle device with rechargeable power supply for a secure electronic transaction |
| CN104281794A (en) * | 2014-09-23 | 2015-01-14 | 北京奇艺世纪科技有限公司 | Password storing and verifying method and password storing and verifying device |
| WO2017202025A1 (en) * | 2016-05-24 | 2017-11-30 | 中兴通讯股份有限公司 | Terminal file encryption method, terminal file decryption method, and terminal |
| WO2017206250A1 (en) * | 2016-06-01 | 2017-12-07 | 宇龙计算机通信科技(深圳)有限公司 | Method and device for destroying backup of terminal |
| CN106656481A (en) * | 2016-10-28 | 2017-05-10 | 美的智慧家居科技有限公司 | Identity authentication method, apparatus and system |
| CN109067524A (en) * | 2018-07-31 | 2018-12-21 | 杭州复杂美科技有限公司 | A kind of public private key pair generation method and system |
Non-Patent Citations (2)
| Title |
|---|
| 云环境下个人医疗信息的密文检索方法研究;冒海波等;《计算机应用与软件》;20170915(第09期);全文 * |
| 哈希算法在口令访问控制模块中的应用研究;蒋志强;《计算机时代》;20180815(第08期);全文 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN111460479A (en) | 2020-07-28 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN107453862B (en) | Scheme for generating, storing and using private key | |
| US9118662B2 (en) | Method and system for distributed off-line logon using one-time passwords | |
| CN105760764B (en) | Encryption and decryption method and device for embedded storage device file and terminal | |
| US20170228728A1 (en) | Transaction messaging | |
| CN105007155B (en) | Quick Response Code mask encryption and decryption approaches and system | |
| US9276748B2 (en) | Data-encrypting method and decrypting method for a mobile phone | |
| CN102761870B (en) | Terminal authentication and service authentication method, system and terminal | |
| ES2952534T3 (en) | A method, system and apparatus using forward secure cryptography for verification of access codes | |
| CN108880791A (en) | Cryptographic key protection method, terminal and computer readable storage medium | |
| US20180083935A1 (en) | Method and system for secure sms communications | |
| CN101795450A (en) | Method and device for carrying out security protection on mobile phone data | |
| CN115242514B (en) | Privacy set intersection method and system based on state secret, electronic equipment and storage medium | |
| US20170091483A1 (en) | Method and Device for Protecting Address Book, and Communication System | |
| CN113572743A (en) | Data encryption and decryption method and device, computer equipment and storage medium | |
| CN110771190A (en) | Controlling access to data | |
| CN115982761A (en) | Sensitive information processing method and device, electronic equipment and storage medium | |
| CN105631298A (en) | Encryption/decryption device and method | |
| CN111488570B (en) | Authentication method and authentication system | |
| US20150156173A1 (en) | Communication system utilizing fingerprint information and use thereof | |
| TWM569453U (en) | Digital data processing system | |
| CN111460479B (en) | Gallery encryption management system | |
| CN110808966A (en) | Identity information generation method and device and storage medium | |
| CN105827601A (en) | Data encryption application method and system of mobile device | |
| WO2015124798A2 (en) | Method & system for enabling authenticated operation of a data processing device | |
| CN108701195B (en) | Data security protection method and device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |