CN116455615A - Data processing method, device, electronic equipment and medium - Google Patents

Data processing method, device, electronic equipment and medium Download PDF

Info

Publication number
CN116455615A
CN116455615A CN202310316159.3A CN202310316159A CN116455615A CN 116455615 A CN116455615 A CN 116455615A CN 202310316159 A CN202310316159 A CN 202310316159A CN 116455615 A CN116455615 A CN 116455615A
Authority
CN
China
Prior art keywords
data
monitoring data
indication signaling
service indication
monitoring
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202310316159.3A
Other languages
Chinese (zh)
Inventor
谭菊
郭忠平
王艳辉
王宝
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Visionvera Information Technology Co Ltd
Original Assignee
Visionvera Information Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Visionvera Information Technology Co Ltd filed Critical Visionvera Information Technology Co Ltd
Priority to CN202310316159.3A priority Critical patent/CN116455615A/en
Publication of CN116455615A publication Critical patent/CN116455615A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/40Network security protocols
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/20Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
    • H04N21/23Processing of content or additional data; Elementary server operations; Server middleware
    • H04N21/234Processing of video elementary streams, e.g. splicing of video streams, manipulating MPEG-4 scene graphs
    • H04N21/2347Processing of video elementary streams, e.g. splicing of video streams, manipulating MPEG-4 scene graphs involving video stream encryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/43Processing of content or additional data, e.g. demultiplexing additional data from a digital video stream; Elementary client operations, e.g. monitoring of home network or synchronising decoder's clock; Client middleware
    • H04N21/44Processing of video elementary streams, e.g. splicing a video clip retrieved from local storage with an incoming video stream, rendering scenes according to MPEG-4 scene graphs
    • H04N21/4405Processing of video elementary streams, e.g. splicing a video clip retrieved from local storage with an incoming video stream, rendering scenes according to MPEG-4 scene graphs involving video stream decryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/60Network structure or processes for video distribution between server and client or between remote clients; Control signalling between clients, server and network components; Transmission of management data between server and client, e.g. sending from server to client commands for recording incoming content stream; Communication details between server and client 
    • H04N21/63Control signaling related to video distribution between client, server and network components; Network processes for video distribution between server and clients or between remote clients, e.g. transmitting basic layer and enhancement layers over different transmission paths, setting up a peer-to-peer communication via Internet between remote STB's; Communication protocols; Addressing
    • H04N21/647Control signaling between network components and server or clients; Network processes for video distribution between server and clients, e.g. controlling the quality of the video stream, by dropping packets, protecting content from unauthorised alteration within the network, monitoring of network load, bridging between two different networks, e.g. between IP and wireless
    • H04N21/64715Protecting content from unauthorized alteration within the network
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N7/00Television systems
    • H04N7/18Closed-circuit television [CCTV] systems, i.e. systems in which the video signal is not broadcast

Abstract

The embodiment of the invention provides a data processing method, a data processing device, electronic equipment and a medium, and relates to the technical field of data processing. The method comprises the following steps: receiving a service indication signaling; identifying whether the monitoring data carried by the service indication signaling is encrypted data or not; under the condition that the monitoring data are identified as encrypted data, decrypting the monitoring data to obtain plaintext data corresponding to the monitoring data; and sending the plaintext data to a data display terminal so that the data display terminal displays the plaintext data. The method transmits the monitoring data in the form of ciphertext, ensures the safety of the monitoring data, reduces the risk of the monitoring data being stolen or tampered, and meanwhile, the terminal does not need to be responsible for the work of encrypting, identifying and decrypting the monitoring data, does not increase the pressure of the terminal, and does not influence the performance of the terminal and the display of the monitoring data.

Description

Data processing method, device, electronic equipment and medium
Technical Field
The present invention relates to the field of data processing technologies, and in particular, to a data processing method, a data processing device, an electronic device, and a medium.
Background
Video monitoring systems are an important component of security systems, and in recent years, with rapid development of computer, network, image processing and transmission technologies, video monitoring technologies have also been developed. The video monitoring is from the earliest analog video monitoring to the subsequent all-digital network video monitoring, so that the innovation of the monitoring application technology and the change of the user on the monitoring requirement are fully reflected. However, in the information age, the information itself is double-edged sword, on one hand, the information serves our production, life, so that we benefit, on the other hand, the leakage of information may pose a huge risk. Therefore, it is important to ensure the security of the media stream while acquiring the monitoring picture, and prevent others from extracting the original data of the monitoring video.
Disclosure of Invention
In view of the foregoing, embodiments of the present invention are directed to a method, apparatus, system, electronic device, and medium for processing data that overcome or at least partially solve the foregoing problems.
In a first aspect, an embodiment of the present invention discloses a data processing method, where the method is applied to a shared platform, and the method includes:
receiving a service indication signaling;
identifying whether the monitoring data carried by the service indication signaling is encrypted data or not;
under the condition that the monitoring data are identified as encrypted data, decrypting the monitoring data to obtain plaintext data corresponding to the monitoring data;
and sending the plaintext data to a data display terminal so that the data display terminal displays the plaintext data.
In some optional embodiments of the present invention, the identifying whether the monitoring data carried by the traffic indication signaling is encrypted data includes: determining whether the service indication signaling comprises an encryption identifier or not; if the service indication signaling comprises the encryption identifier, determining that the monitoring data carried by the service indication signaling is encryption data; and if the service indication signaling does not comprise the encryption identifier, determining that the monitoring data carried by the service indication signaling is not encryption data.
In some optional embodiments of the present invention, the decrypting the monitoring data when the monitoring data is identified as encrypted data includes: determining whether decryption conditions are met or not under the condition that the monitoring data are identified as encrypted data; and under the condition that the decryption condition is met, decrypting the monitoring data.
In some optional embodiments of the present invention, the shared platform is provided with a hardware decryption device;
and determining whether decryption conditions are satisfied if the monitoring data is identified as encrypted data, including: acquiring decryption configuration information, and determining a first path number of monitoring data which can be decrypted by the hardware decryption device according to the decryption configuration information; determining a second path number of monitoring data carried by the service indication signaling, and determining whether the second path number is smaller than or equal to the first path number; and determining that a decryption condition is met when the second path number is smaller than or equal to the first path number.
In some optional embodiments of the invention, the method further comprises: acquiring account information of a current login sharing platform; authentication is carried out on the account information; receiving a first flow regulating request from the data display terminal under the condition that the account information passes the authentication; and sending a second flow regulating request to a server based on the first flow regulating request, wherein the second flow regulating request is used for requesting the server to send monitoring data.
In a second aspect, an embodiment of the present invention discloses a data processing method, where the method is applied to a server, and the method includes:
encrypting the monitoring data to obtain encrypted monitoring data;
and generating a service indication signaling based on the encrypted monitoring data, and sending the service indication signaling to a sharing platform, wherein the service indication signaling carries the encrypted monitoring data.
In some optional embodiments of the invention, the method further comprises: and adding an encryption identifier in the service indication signaling, wherein the encryption identifier is used for indicating that the monitoring data carried by the service indication signaling is encrypted data.
In a third aspect, an embodiment of the present invention discloses a data processing apparatus, where the apparatus is applied to a shared platform, the apparatus includes:
the signaling receiving module is used for receiving the service indication signaling;
the identification module is used for identifying whether the monitoring data carried by the service indication signaling is encrypted data or not;
the decryption module is used for decrypting the monitoring data under the condition that the monitoring data are identified as encrypted data so as to obtain plaintext data corresponding to the monitoring data;
and the sending module is used for sending the plaintext data to a data display terminal so that the data display terminal displays the plaintext data.
In some optional embodiments of the invention, the decryption module is configured to: determining whether the service indication signaling comprises an encryption identifier or not; if the service indication signaling comprises the encryption identifier, determining that the monitoring data carried by the service indication signaling is encryption data; and if the service indication signaling does not comprise the encryption identifier, determining that the monitoring data carried by the service indication signaling is not encryption data.
In some optional embodiments of the invention, the decryption module is configured to: determining whether decryption conditions are met or not under the condition that the monitoring data are identified as encrypted data; and under the condition that the decryption condition is met, decrypting the monitoring data.
In some optional embodiments of the present invention, the shared platform is provided with a hardware decryption device;
the secret module is used for: the method comprises the steps of obtaining decryption configuration information, and determining the first path number of monitoring data which can be decrypted by the hardware decryption device according to the decryption configuration information; determining a second path number of monitoring data carried by the service indication signaling, and determining whether the second path number is smaller than or equal to the first path number; and determining that a decryption condition is met when the second path number is smaller than or equal to the first path number.
In some optional embodiments of the present invention, the apparatus further comprises an authentication module, a request receiving module, and a forwarding module;
the authentication module is used for acquiring account information of the current login of the sharing platform; authentication is carried out on the account information;
the request receiving module is used for receiving a first flow regulating request from the data display terminal under the condition that the account information passes the authentication;
the forwarding module is used for sending a second flow regulating request to a server based on the first flow regulating request, and the second flow regulating request is used for requesting the server to send monitoring data.
In a fourth aspect, an embodiment of the present invention discloses a data processing apparatus, where the apparatus is applied to a server, the apparatus includes:
the encryption module is used for encrypting the monitoring data to obtain encrypted monitoring data;
and the transmission module is used for generating a service indication signaling based on the encrypted monitoring data and sending the service indication signaling to the sharing platform, wherein the service indication signaling carries the encrypted monitoring data.
In some optional embodiments of the present invention, the transmission module is further configured to add an encryption identifier to the service indication signaling, where the encryption identifier is used to indicate that the monitoring data carried by the service indication signaling is encrypted data.
In a fifth aspect, an embodiment of the present invention discloses a data processing system, where the system includes a data display terminal, a sharing platform, and a server;
the server is used for sending a service indication signaling to the sharing platform;
the sharing platform is used for receiving the service indication signaling sent by the server; identifying whether the monitoring data carried by the service indication signaling is encrypted data or not; under the condition that the monitoring data are identified as encrypted data, decrypting the monitoring data to obtain plaintext data corresponding to the monitoring data; transmitting the plaintext data to a data display terminal;
the data display terminal is used for receiving the plaintext data from the sharing platform and displaying the plaintext data.
In a sixth aspect, an embodiment of the present invention discloses an electronic device, including: one or more processors; and one or more machine readable media having instructions stored thereon, which when executed by the one or more processors, cause the electronic device to perform the data processing method disclosed in any of the embodiments of the present invention.
In a seventh aspect, embodiments of the present invention disclose a computer readable storage medium storing a computer program for causing a processor to execute the data processing method disclosed in any of the embodiments of the present invention.
The embodiment of the invention has the following advantages:
the data processing method applied to the sharing platform disclosed by the embodiment of the invention is characterized in that under the condition that the service indication signaling carrying the monitoring data sent by the server is received, whether the monitoring data is encrypted or not is identified, if so, the monitoring data is decrypted to obtain corresponding plaintext data, and then the plaintext data is sent to the data display terminal for display.
Drawings
FIG. 1 is a flow chart showing the steps of a data processing method according to an embodiment of the present invention;
FIG. 2 is a flow chart showing the steps of a data processing method according to another embodiment of the present invention;
FIG. 3 shows a flow chart of the steps of a data processing method according to a further embodiment of the invention;
FIG. 4 depicts a flowchart of data processing performed by a data processing system, according to an embodiment of the invention;
FIG. 5 shows a sub-flowchart of a data processing method of an embodiment of the present invention;
FIG. 6 is a block diagram showing the structure of a data processing apparatus according to an embodiment of the present invention;
fig. 7 shows a block diagram of a data processing apparatus according to another embodiment of the present invention.
Detailed Description
In order that the above-recited objects, features and advantages of the present invention will become more readily apparent, a more particular description of the invention will be rendered by reference to the appended drawings and appended detailed description.
In the existing monitoring scenario, a data display terminal (which can be understood as a receiving end of monitoring data) and a server (which is mainly used for acquiring the monitoring data, such as a monitoring video, which can be understood as a sending end of the monitoring data, from a monitoring device) can be connected through interaction of internet and video networking signaling to perform communication and transmission of the monitoring data. However, the transmitted monitoring data is not encrypted, and the data security cannot be ensured. In order to ensure the safety of monitoring data and prevent others from stealing or falsifying the data, the embodiment of the invention provides a data processing method, which ensures the safety of the data by encrypting the monitoring data, and the method uses a sharing platform to encrypt, identify and decrypt the monitoring data from a server, so that the data display terminal is not required to encrypt, identify and decrypt the monitoring data, the terminal only needs to display the decrypted monitoring data, the pressure of the terminal is not increased, and the performance and the display effect of the terminal are not influenced.
Referring to FIG. 1, a flow chart of a data processing method of an embodiment of the present invention is shown. The method can be applied to a shared platform.
As shown in fig. 1, the data processing method includes:
step S101: and receiving service indication signaling.
The service indication signaling may be from a server for acquiring monitoring data (such as a monitoring video) collected by a monitoring device (such as a camera). The server can directly send the acquired monitoring data to the sharing platform, encrypt the acquired monitoring data, obtain encrypted monitoring data, and transmit the encrypted monitoring data. When the server sends the monitoring data to the sharing platform, the server can generate a service indication signaling based on the monitoring data, wherein the service indication signaling carries unencrypted monitoring data or encrypted monitoring data.
In some alternative implementation scenarios, the sharing platform may initiate streaming to the server after receiving a streaming request from the data presentation terminal, to request the server to send monitoring data thereto. The server receives a flow regulating request from the sharing platform, and responds to the flow regulating request to send a service indication signaling carrying monitoring data to the sharing platform.
Step S102: and identifying whether the monitoring data carried by the service indication signaling is encrypted data or not.
The monitoring data sent by the server to the sharing platform can be unencrypted plaintext data or encrypted ciphertext data. After receiving the service indication information, the sharing platform needs to identify whether the monitoring data carried by the service indication signaling is encrypted data or not, and judge whether the monitoring data is directly sent to the data display terminal or not.
In some optional implementation scenarios, the server may set an encryption identifier in the service indication signaling generated by the server, where the encryption identifier indicates that the monitoring data is encrypted ciphertext data. The sharing platform analyzes the received service indication signaling, judges whether the service indication signaling comprises an encryption identifier, if the service indication signaling comprises the encryption identifier, the monitoring data is encrypted ciphertext data, and if the service indication signaling does not comprise the encryption identifier, the monitoring data is unencrypted plaintext data. As a specific example, an encryption flag bit (or an encryption field) may be used to indicate whether the traffic indication signaling includes an encryption identifier, and when the value of the encryption flag bit is a first preset value, for example, 1, the traffic indication signaling includes the encryption identifier, and when the value of the encryption flag bit is a second preset value, for example, 0, the traffic indication signaling includes no encryption identifier.
Step S103: and under the condition that the monitoring data are identified as encrypted data, decrypting the monitoring data to obtain plaintext data corresponding to the monitoring data.
The sharing platform may agree with the server to encrypt and decrypt the monitoring data, for example, agree on encrypting and decrypting by a hardware encryption and decryption card or encrypt and decrypt by using a certain encryption and decryption algorithm, which is not limited in this invention. If the sharing platform recognizes that the received monitoring data is ciphertext data, decrypting the encrypted monitoring data in a contracted decryption mode to obtain plaintext data corresponding to the monitoring data.
Step S104: and sending the plaintext data to a data display terminal so that the data display terminal displays the plaintext data.
The sharing platform sends the decrypted monitoring data to the data display terminal, and the data display terminal can directly display the monitoring data. The data presentation terminal may be a variety of electronic devices having a display screen and supporting browsing, including but not limited to smartphones, tablet computers, laptop portable computers, desktop computers, and smart wearable devices. The data display terminal can also be a browser, and the received plaintext data is decoded and displayed based on a browser plug-in.
The sharing platform of the embodiment of the invention can be regarded as a data display terminal and a transfer station of a server, and can receive a flow regulating request sent by the data display terminal, initiate flow regulating to the server based on the flow regulating request, then receive a service indication signaling carrying monitoring data and fed back by the server, encrypt, identify and decrypt the monitoring data, send the decrypted monitoring data to the data display terminal for display, and the pressure of the data display terminal is not increased while the safety of the monitoring data is ensured, and the performance and the display effect of the terminal are not influenced.
FIG. 2 shows a flow chart of a data processing method according to another embodiment of the present invention, as shown in FIG. 2, the method includes:
step S201: and receiving service indication signaling.
Step S202: identifying whether the monitoring data carried by the service indication signaling is encrypted data or not;
step S203: determining whether decryption conditions are met or not under the condition that the monitoring data are identified as encrypted data;
step S204: under the condition that decryption conditions are met, decrypting the monitoring data to obtain plaintext data corresponding to the monitoring data;
step S205: and sending the plaintext data to a data display terminal so that the data display terminal displays the plaintext data.
The embodiment shown in fig. 2 is different from the embodiment shown in fig. 1 in that, in the case where the embodiment shown in fig. 2 recognizes that the monitoring data is encrypted data, it is necessary to determine whether the shared platform satisfies the decryption condition, that is, whether the shared platform has sufficient decryption capability. For example, if the encryption and decryption mode agreed by the shared platform and the server is a certain encryption and decryption algorithm, it needs to be determined whether the shared platform obtains the decryption key. If the encryption and decryption mode agreed by the shared platform and the server is hardware encryption and decryption, it is necessary to determine whether the shared platform is provided with a hardware decryption device, such as a hardware encryption and decryption card.
In some optional embodiments, when the encryption and decryption mode agreed by the shared platform and the server is hardware encryption and decryption, it is required to determine whether the shared platform is provided with a hardware decryption device, and further determine whether the decryption capability of the hardware decryption device is sufficient to decrypt the monitoring data in the service indication signaling. The data processing method of the embodiment of the invention further comprises the following steps:
acquiring decryption configuration information, and determining a first path number of monitoring data which can be decrypted by the hardware decryption device according to the decryption configuration information;
determining a second path number of monitoring data carried by the service indication signaling, and determining whether the second path number is smaller than or equal to the first path number;
and determining that a decryption condition is met when the second path number is smaller than or equal to the first path number.
Wherein the decryption configuration information is used to configure relevant parameters of the hardware decryption device, for example, may include, but not limited to: the maximum number of decryptable paths (i.e., the first path number), the security mechanism version, the type of decryption card, the certificate identifier, the server random number, the service identifier, the signed certificate serial number, the decryption key, and the like. And the sharing platform determines the maximum path number of the configured decryptable monitoring data according to the decryption configuration information, then judges whether the path number of the monitoring data sent by the server is smaller than or equal to the maximum path number (namely, judges whether the second path number is smaller than or equal to the first path number), and if the path number of the monitoring data sent by the server is smaller than or equal to the maximum path number, the sharing platform is determined to meet the decryption condition, so that the encrypted monitoring data can be decrypted.
In some alternative embodiments, if the shared platform does not meet the decryption condition, the monitoring data is discarded, and a prompt message may also be output to prompt the user that the decryption condition is not met currently.
In order to further ensure that the monitoring data is not stolen or tampered, authentication and authentication are required to be carried out on the account information of the current login sharing platform so as to determine that the current account information is effective and legal. Thus, as shown in fig. 3, the data processing method according to the embodiment of the present invention further includes:
step S301: acquiring account information of a current login sharing platform;
step S302: authentication is carried out on the account information;
step S303: receiving a first flow regulating request from the data display terminal under the condition that the account information passes the authentication;
step S304: and sending a second flow regulating request to a server based on the first flow regulating request, wherein the second flow regulating request is used for requesting the server to send monitoring data.
The account information currently logged into the sharing platform may include a user name. Based on the user name and a preset authentication policy, authentication and authentication are performed on the account information, and the authentication policy can be flexibly set according to an application scene, so that the invention is not limited.
In some alternative implementations, the account information may be authenticated by a network manager and the account information may be authenticated by a monitoring agent service. If the account information is authenticated by the conference and the network access, the account information is legal and effective and has the flow regulating authority.
After the account information passes the authentication, the account can initiate a flow regulating request through the data display terminal. If the sharing platform receives a stream regulating request sent by the data display terminal, stream regulating is initiated to the server based on the stream regulating request, and then a service indication signaling carrying monitoring data and fed back by the server is received.
Fig. 4 shows a schematic diagram of a data processing system according to an embodiment of the invention, which data processing system comprises a data presentation terminal 401, a sharing platform 402 and a server 403, as shown in fig. 4. Among other things, data presentation terminals may include, but are not limited to, various electronic devices having a display screen and supporting browsing, such as smartphones, tablets, laptop portable computers, desktop computers, and smart wearable devices. The data display terminal can also be a browser, and the received plaintext data is decoded and displayed based on a browser plug-in.
In this embodiment, the encryption and decryption mode agreed by the sharing platform and the server is a hardware encryption and decryption mode, and then a hardware encryption and decryption card (PCIE card) needs to be inserted into the server, so as to start the encryption function. And inserting a PCIE card into a server where the sharing platform is located, starting a decryption function, and configuring decryption configuration information. The configuration decryption configuration information at least comprises the maximum number of paths for configuring the PCIE card to decrypt the monitoring data. In this embodiment, taking a video monitoring scene as an example, the monitoring data is a monitoring video collected by a monitoring camera.
Referring to FIG. 4, the process by which the data processing system implements a data processing method includes:
process (1): the sharing platform acquires account information of the current login, interacts with a network manager to perform network access authentication on the account information, and joins the video network if the authentication passes;
process (2): the sharing platform interacts with the monitoring agency service to perform conference authentication on the account information, and obtain decryption configuration information of the PCIE card for subsequent decryption;
process (3): a data display terminal (such as a browser) sends a stream regulating request to a sharing platform so as to request to acquire monitoring video data;
process (4): the sharing platform sends a stream regulating request to the server to request the server to feed back the monitoring video data;
process (5): the server sends a service indication signaling to the sharing platform, wherein the service indication signaling carries monitoring video data and a flag bit for indicating whether the monitoring video data is encrypted data or not;
process (6): the sharing platform receives the service indication signaling sent by the server, analyzes the service indication signaling, judges a flag bit carried in the service indication signaling, judges whether decryption conditions are met or not if the monitoring video data carried by the service indication signaling is encrypted data according to the flag bit, for example, judges whether the number of paths of the monitoring video data carried by the service indication signaling is within the configured decryption path number, and decrypts the encrypted monitoring data through a hardware encryption and decryption card if the number of paths of the monitoring video data carried by the service indication signaling is within the configured decryption path number;
process (7): and the sharing platform sends the decrypted monitoring video data to the data display terminal.
In the processes (1) - (7), firstly, network access authentication and conference access authentication are performed on account information logged in a sharing platform, so that the current account information is ensured to be effective and legal, and a PCIE card is inserted into a server where the sharing platform is located, so that the sharing platform meets the premise of decryption. On the premise of meeting decryption, the sharing platform responds to receiving a stream-regulating request of the data display terminal, and initiates stream regulation to the server so as to call the monitoring video data. The server responds to the stream regulating request from the sharing platform and sends service indicating information which comprises a flag bit of whether the push stream is an encrypted stream or not. And identifying the flag bit by the sharing platform, and decrypting under the condition that the push stream is determined to be an encrypted stream and decryption conditions are met. And after the decryption is successful, pushing the decrypted monitoring video data to a data display terminal for display.
Wherein, in process (6), the stream received by the sharing platform is a packet of an encrypted ES stream. As shown in fig. 5, the process of decrypting the data packet by the shared platform includes:
step S501: judging whether the data packet is an I frame or not;
step S502: if yes, collecting a plurality of small fragment data packets which can form a complete I frame according to the video networking protocol header of the data packet;
step S503: removing the packet protocol header of the fragmented small data packet, only taking the video data part to assemble an I frame, and transmitting the I frame into a decryption interface for decryption of the I frame;
step S504: unpacking the decrypted I frame into an unassembled format, adding a protocol header, dividing the decrypted I frame into small data packets, and putting the small data packets into a queue to be processed;
step S505: directly placing the non-I frames into a queue to be processed;
step S506: repackaging the data of the queue to be processed into PS stream, and sending the PS stream to a data display terminal for display.
The ES stream (Elementary Stream ) is a stream directly representing the content of the elementary elements formed by encoding the components of the digital television, and includes a continuous code stream of video, audio or data. PS streams (Program streams) refer to code streams in which a plurality of components of a Program are organized according to their relationships and are described by adding the relationships between the components. The I-frame refers to a compressed data frame of a complete image, and a complete image can be resolved.
In this embodiment, signaling interaction can be performed between the sharing platform and the IE plug-in through the internet, and signaling interaction can be performed between the sharing platform and the server, the network management, and the monitoring proxy service through the internet of view.
It should be noted that, for simplicity of description, the method embodiments are shown as a series of acts, but it should be understood by those skilled in the art that the embodiments are not limited by the order of acts, as some steps may occur in other orders or concurrently in accordance with the embodiments. Further, those skilled in the art will appreciate that the embodiments described in the specification are presently preferred embodiments, and that the acts are not necessarily required by the embodiments of the invention.
Based on the description of the method embodiments, the present invention further provides corresponding apparatus embodiments to implement the content described in the method embodiments.
Fig. 6 shows a block diagram of a data processing apparatus according to an embodiment of the present invention. The data processing apparatus 600 is applied to a shared platform, and includes:
a signaling receiving module 601, configured to receive a service indication signaling;
an identifying module 602, configured to identify whether the monitoring data carried by the service indication signaling is encrypted data;
a decryption module 603, configured to decrypt the monitoring data to obtain plaintext data corresponding to the monitoring data when the monitoring data is identified as encrypted data;
and the sending module 604 is configured to send the plaintext data to a data display terminal, so that the data display terminal displays the plaintext data.
According to the data processing device provided by the embodiment of the invention, the service indication signaling carrying the monitoring data and fed back by the server is received, the monitoring data is encrypted, identified and decrypted, and the decrypted monitoring data is sent to the data display terminal for display, so that the safety of the monitoring data is ensured, the pressure of the data display terminal is not increased, and the performance and the display effect of the terminal are not influenced.
In some optional embodiments of the invention, the decryption module is configured to: determining whether the service indication signaling comprises an encryption identifier or not; if the service indication signaling comprises the encryption identifier, determining that the monitoring data carried by the service indication signaling is encryption data; and if the service indication signaling does not comprise the encryption identifier, determining that the monitoring data carried by the service indication signaling is not encryption data.
In some optional embodiments of the invention, the decryption module is configured to: determining whether decryption conditions are met or not under the condition that the monitoring data are identified as encrypted data; and under the condition that the decryption condition is met, decrypting the monitoring data.
In some optional embodiments of the present invention, the shared platform is provided with a hardware decryption device;
the secret module is used for: the method comprises the steps of obtaining decryption configuration information, and determining the first path number of monitoring data which can be decrypted by the hardware decryption device according to the decryption configuration information; determining a second path number of monitoring data carried by the service indication signaling, and determining whether the second path number is smaller than or equal to the first path number; and determining that a decryption condition is met when the second path number is smaller than or equal to the first path number.
In some optional embodiments of the present invention, the apparatus further comprises an authentication module, a request receiving module, and a forwarding module; the authentication module is used for acquiring account information of the current login of the sharing platform; authentication is carried out on the account information; the request receiving module is used for receiving a first flow regulating request from the data display terminal under the condition that the account information passes the authentication; the forwarding module is used for sending a second flow regulating request to a server based on the first flow regulating request, and the second flow regulating request is used for requesting the server to send monitoring data.
Fig. 7 shows a block diagram of a data processing apparatus according to still another embodiment of the present invention, which is applied to a server. The data processing apparatus 700 includes:
the encryption module 701 is configured to encrypt the monitoring data to obtain encrypted monitoring data;
and the transmission module 702 is configured to generate a service indication signaling based on the encrypted monitoring data, and send the service indication signaling to a sharing platform, where the service indication signaling carries the encrypted monitoring data.
In some optional embodiments of the present invention, the transmission module is further configured to add an encryption identifier to the service indication signaling, where the encryption identifier is used to indicate that the monitoring data carried by the service indication signaling is encrypted data.
For the device embodiments, since they are substantially similar to the method embodiments, the description is relatively simple, and reference is made to the description of the method embodiments for relevant points.
In some optional embodiments of the present invention, there is also provided an electronic device, including: one or more processors; and one or more machine readable media having instructions stored thereon, which when executed by the one or more processors, cause the electronic device to perform the data processing method of any of the embodiments of the present invention.
In some alternative embodiments of the present invention, a computer readable storage medium storing a computer program for causing a processor to perform the data processing method according to any one of the embodiments of the present invention is also provided. Alternatively, the computer readable storage medium may be a non-transitory computer readable storage medium, for example, a ROM, a Random Access Memory (RAM), a CD-ROM, a magnetic tape, a floppy disk, an optical data storage device, and the like.
In this specification, each embodiment is described in a progressive manner, and each embodiment is mainly described by differences from other embodiments, and identical and similar parts between the embodiments are all enough to be referred to each other.
It will be apparent to those skilled in the art that embodiments of the present invention may be provided as a method, apparatus, or computer program product. Accordingly, embodiments of the present invention may take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, embodiments of the invention may take the form of a computer program product on one or more computer-usable storage media (including, but not limited to, disk storage, CD-ROM, optical storage, etc.) having computer-usable program code embodied therein.
Embodiments of the present invention are described with reference to flowchart illustrations and/or block diagrams of methods, terminal devices (systems), and computer program products according to embodiments of the invention. It will be understood that each flow and/or block of the flowchart illustrations and/or block diagrams, and combinations of flows and/or blocks in the flowchart illustrations and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing terminal device to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing terminal device, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction means which implement the function specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
While preferred embodiments of the present invention have been described, additional variations and modifications in those embodiments may occur to those skilled in the art once they learn of the basic inventive concepts. It is therefore intended that the following claims be interpreted as including the preferred embodiment and all such alterations and modifications as fall within the scope of the embodiments of the invention.
Finally, it is further noted that relational terms such as first and second, and the like are used solely to distinguish one entity or action from another entity or action without necessarily requiring or implying any actual such relationship or order between such entities or actions. Moreover, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or terminal that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or terminal. Without further limitation, an element defined by the phrase "comprising one … …" does not exclude the presence of other like elements in a process, method, article or terminal device comprising the element.
The foregoing has outlined a detailed description of a data processing method and a data processing apparatus according to the present invention, wherein specific examples are provided herein to illustrate the principles and embodiments of the present invention, and the above examples are provided to assist in understanding the method and core concepts of the present invention; meanwhile, as those skilled in the art will have variations in the specific embodiments and application scope in accordance with the ideas of the present invention, the present description should not be construed as limiting the present invention in view of the above.

Claims (10)

1. A method of data processing, the method being applied to a shared platform, the method comprising:
receiving a service indication signaling;
identifying whether the monitoring data carried by the service indication signaling is encrypted data or not;
under the condition that the monitoring data are identified as encrypted data, decrypting the monitoring data to obtain plaintext data corresponding to the monitoring data;
and sending the plaintext data to a data display terminal so that the data display terminal displays the plaintext data.
2. The method of claim 1, wherein the identifying whether the monitoring data carried by the traffic indication signaling is encrypted data comprises:
determining whether the service indication signaling comprises an encryption identifier or not;
if the service indication signaling comprises the encryption identifier, determining that the monitoring data carried by the service indication signaling is encryption data;
and if the service indication signaling does not comprise the encryption identifier, determining that the monitoring data carried by the service indication signaling is not encryption data.
3. The method according to claim 1 or 2, wherein decrypting the monitoring data in case the monitoring data is identified as encrypted data comprises:
determining whether decryption conditions are met or not under the condition that the monitoring data are identified as encrypted data;
and under the condition that the decryption condition is met, decrypting the monitoring data.
4. A method according to claim 3, wherein the shared platform is provided with hardware decryption means;
and determining whether decryption conditions are satisfied if the monitoring data is identified as encrypted data, including:
acquiring decryption configuration information, and determining a first path number of monitoring data which can be decrypted by the hardware decryption device according to the decryption configuration information;
determining a second path number of monitoring data carried by the service indication signaling, and determining whether the second path number is smaller than or equal to the first path number;
and determining that a decryption condition is met when the second path number is smaller than or equal to the first path number.
5. The method according to claim 1, wherein the method further comprises:
acquiring account information of a current login sharing platform;
authentication is carried out on the account information;
receiving a first flow regulating request from the data display terminal under the condition that the account information passes the authentication;
and sending a second flow regulating request to a server based on the first flow regulating request, wherein the second flow regulating request is used for requesting the server to send monitoring data.
6. A data processing method, wherein the method is applied to a server, the method comprising:
encrypting the monitoring data to obtain encrypted monitoring data;
and generating a service indication signaling based on the encrypted monitoring data, and sending the service indication signaling to a sharing platform, wherein the service indication signaling carries the encrypted monitoring data.
7. The method of claim 6, wherein the method further comprises:
and adding an encryption identifier in the service indication signaling, wherein the encryption identifier is used for indicating that the monitoring data carried by the service indication signaling is encrypted data.
8. A data processing apparatus, the apparatus being for use with a shared platform, the apparatus comprising:
the signaling receiving module is used for receiving the service indication signaling;
the identification module is used for identifying whether the monitoring data carried by the service indication signaling is encrypted data or not;
the decryption module is used for decrypting the monitoring data under the condition that the monitoring data are identified as encrypted data so as to obtain plaintext data corresponding to the monitoring data;
and the sending module is used for sending the plaintext data to a data display terminal so that the data display terminal displays the plaintext data.
9. An electronic device, comprising:
one or more processors; and
one or more machine readable media having instructions stored thereon, which when executed by the one or more processors, cause the electronic device to perform the data processing method of any of claims 1 to 7.
10. A computer-readable storage medium, characterized in that it stores a computer program causing a processor to execute the data processing method according to any one of claims 1 to 7.
CN202310316159.3A 2023-03-28 2023-03-28 Data processing method, device, electronic equipment and medium Pending CN116455615A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202310316159.3A CN116455615A (en) 2023-03-28 2023-03-28 Data processing method, device, electronic equipment and medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202310316159.3A CN116455615A (en) 2023-03-28 2023-03-28 Data processing method, device, electronic equipment and medium

Publications (1)

Publication Number Publication Date
CN116455615A true CN116455615A (en) 2023-07-18

Family

ID=87134899

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202310316159.3A Pending CN116455615A (en) 2023-03-28 2023-03-28 Data processing method, device, electronic equipment and medium

Country Status (1)

Country Link
CN (1) CN116455615A (en)

Similar Documents

Publication Publication Date Title
US10650119B2 (en) Multimedia data processing method, apparatus, system, and storage medium
CN109218825B (en) Video encryption system
CN101534433B (en) Streaming media encryption method
CN104158816A (en) Authentication method and device as well as server
CN112165596A (en) Monitoring video data transmission method and device, terminal equipment and storage medium
KR20150079489A (en) Instant messaging method and system
EP2951946B1 (en) Method and system for protecting data using data passports
CN108848413B (en) System, method and device for preventing video from replay attack and storage medium
WO2023160420A1 (en) Group message encryption method and apparatus, device and storage medium
CN111030827A (en) Information interaction method and device, electronic equipment and storage medium
CN116566661A (en) Method, device, electronic equipment and storage medium for data security transmission
US7916867B2 (en) Content receiving apparatus
CN114257562B (en) Instant messaging method, device, electronic equipment and computer readable storage medium
CN110012260A (en) A kind of video conference content guard method, device, equipment and system
CN114386049A (en) Encryption method, decryption method, device and equipment
CN111382451A (en) Security level identification method and device, electronic equipment and storage medium
CN110557591B (en) Network camera, video encryption transmission system and video encryption method
JP2008118653A (en) Method for managing metadata
EP2713576B1 (en) Method and device for processing streaming media content
US10231004B2 (en) Network recording service
CN116455615A (en) Data processing method, device, electronic equipment and medium
CN115766902A (en) Method, device, equipment and medium for transmitting non-sensitive data through QUIC
CN114039723A (en) Method and device for generating shared key, electronic equipment and storage medium
CN112769783A (en) Data transmission method, cloud server, receiving end and sending end
CN112738560A (en) Video data transmission method, receiving method, server and client

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication