CN1352420A - Method for integrating safety E-mail and outlook Express - Google Patents
Method for integrating safety E-mail and outlook Express Download PDFInfo
- Publication number
- CN1352420A CN1352420A CN 01132342 CN01132342A CN1352420A CN 1352420 A CN1352420 A CN 1352420A CN 01132342 CN01132342 CN 01132342 CN 01132342 A CN01132342 A CN 01132342A CN 1352420 A CN1352420 A CN 1352420A
- Authority
- CN
- China
- Prior art keywords
- hook
- message
- program
- outlook express
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Landscapes
- Information Transfer Between Computers (AREA)
Abstract
The present invention discloses one method of integrating safety e-mail and Outlook Express. By means of the Hook technology for application program, the safety e-mail is used to expand the safety of Outlook Express program, and by means of the package technology, the Outlook Express is interface customized and function expanded. The e-mail is encrypted and decrypted automatically, and the safety of functional process in Outlook Express is expanded.
Description
Technical field
The present invention relates to a kind of computer information safe software, the integrated technology of particularly a kind of safety E-mail and Outlook Express.
Background technology
Science and technology development make Email application more and more widely, consider the susceptibility of information that Email transmits, guarantee that the safety of its communication becomes the problem that people highly are concerned about naturally.Most of Emails nearly all are to transmit and store in mode expressly, exist the danger of very big leakage secret of the trade or individual privacy like this.In addition, can really determine mail true source and complete be a safety problem.
The safety Email has mainly been used digital envelope and the digital signature technology based on Public Key Infrastructure PKI system, by being used in combination the method for digital envelope and digital signature, the user can obtain confidentiality, integrality and non repudiation simultaneously when swap data.
Present digital envelope and digital signature have all used rivest, shamir, adelman, rivest, shamir, adelman is to utilize pair of secret keys to finish the work of encryption and decryption, in safety E-mail, the symmetric key that being used for of generating at random in the digital envelope encrypted usefulness will use addressee's PKI to encrypt, the addressee who only has corresponding private key could decipher, thereby reaches the effect of guaranteeing data security.Digital signature is signed to data with addresser's private key, because private key has only the owner just to obtain and use, and the owner is obligated and the security of responsibility assurance private key, again in conjunction with digital certificate, affirmation private key owner's that can be unique identity, thus reach the integrality of guaranteeing data and the effect of non repudiation.
For the safety and the trust that realize Email, the cryptosystem of use must possess the function of data encryption and data signature.And the sharpest edges of Here it is public key architecture.Therefore must adopt security system, the encryption and the signature of mail is provided based on the PKI system.
Existing secure e-mail technology is divided into two aspects: a kind of is the encryption mechanism that adopts Windows to carry, following function is promptly arranged: send the mail of signature, the mail of reception signature, the mail that transmission is encrypted, the mail that receives encryption etc. in Outlook Express mailer, but the encryption mechanism that Windows carries is without the authentication of national correlation department, key, cryptographic algorithm is all externally not open, can't verify the security of himself; A kind of is the encryption mechanism that adopts autonomous property right, and group or the individual high for some security level required also adopt the safety attachment mode.Its process is that the sender is left the content of mail in the file (as txt or word document files) earlier, this document is encrypted or signature, should encrypt again, signature file sends as an annex, when the addressee mails earlier with accommodating parts at local hard drive, again with file decryption or certifying signature.But be to use this mode very loaded down with trivial details, bring inconvenience to the user.
Summary of the invention
The present invention seeks to solve the subject matter of existing secure e-mail technology, the encryption mechanism and the OutlookExpress of autonomous property right are combined closely, the encryption mechanism that replaces the Windows of its use to carry, do not influence simultaneously the user custom of mailer is used the function that can add or replace secure e-mail in ready-made mailer.
Among the present invention, embedding (hook) technology of safety E-mail employing application program has solved the security extension problem to Outlook Express program.Plug-in unit is intercepted and captured the message flow of Outlook Express comprehensively, and can utilize the mail data among open and undocumented a large amount of funcalls control Outlook Express of Windows.
The Hook technology is the part of windows messaging treatment mechanism, and by " hook " is set, application program can be filtered all message, incident system-level, obtains the message that under normal circumstances can't obtain.
Hook Mechanism allows application program to intercept and capture and handles windows messaging or particular event.Interrupt intercepting and capturing processor with DOS and be shaped on similar part.Hook (Hook) is a platform (point) of windows messaging treatment mechanism, and application program can be provided with sub-journey certain message with the supervision specified window in the above, and the window that is monitored can be that other processes are created.After message arrives, before handling function, target window handles it.Each hook has a pointer list associated therewith, is referred to as the hook chained list, and each of this hook of pointed in this chained list handled sub-journey.A hook is handled one type message.When message that hook monitored occurred, Windows called the sub-journey of first hook in the chained list.The hook of some type can only be in system scope the journey of set handling, the hook of all the other types can also be provided with (being provided with SetWindowsHookEx) in specific thread.For the hook (it handles the message of a certain type) of a certain particular type, the sub-journey of thread hook is called earlier, then is the sub-journey of system's hook.The sub-journey of hook is the call back function (callback function) of an application program definition, can not be defined as the member function of certain class, can only be defined as common C function.
Content of the present invention is to use the plug-in part technology of e-mail program to realize interface customizing and the function of Outlook Express are expanded, realization is to the automatic encryption and decryption operation of mail, thereby make mail safe in utilization and digital signature that the user can be transparent fully, expand the function of Outlook Express.
The plug-in part technology principle is exactly to call different modules by unified routine interface, to realize calling of difference in functionality, is mainly used to expand the function of master routine.
Content of the present invention be with the program copy of " hook " loading bin in Outlook Express catalogue and with the name nominating of a certain executable file under this catalogue, and former executable program is renamed, loading bin is packed into and is started Outlook Express after " hook " program.
The present invention obtains system message with SetWindowsHookEx function installation system hook; With the CallWndProc function message of obtaining is handled simultaneously, the message that need handle does not pass to next hook handling procedure (OutlookExpress); If the incident by " hook " supervision of certain type takes place, first " hook " sub-journey of " hook " chained list is accordingly called according to the type of message by system; Arbitrary " hook " sub-journey judges whether to be delivered to the sub-journey of the next one " hook ", and calls CallNextHookEx () function passes; Return the rreturn value of next " hook " sub-journey in " hook " chained list during the success of CallNextHookEx () function.The type of rreturn value depends on the type of " hook ".
The type one of " hook " has 13 kinds among the present invention, and is specific as follows:
(1) WH_CALLWNDPROC, system send a message to " hook " before the specified window;
(2) WH_CALLWNDPROCRET, " hook " that message has been handled in window;
(3) WH_CBT is based on " hook " of computer training;
(4) WH_DEBUG, mistake " hook ";
(5) WH_FOREGROUNDIDLE, foreground idle window " hook ";
(6) WH_GETMESSAGE, " hook " of reception message dilivery;
(7) WH_JOURNALPLAYBACK, the input message that playback was write down by WH_JOURNALRECORD " hook " in the past;
(8) WH_JOURNALRECORD, input Message Record " hook ";
(9) WH_KYBOARD, keyboard message " hook ";
(10) WH_MOUSE, mouse information " hook ";
(11) WH_MSGFILTER, dialog box, message box, menu or scroll bar input message " hook ";
(12) WH_SHELL, shell " hook ";
(13) H_SYSMSGFILTER, system message " hook ".
The kind of message comprises IDC_NDSKEYS, IDC_NDS_HELP, IDC_ENCRYPT_NDS, IDC_SIGN_NDS, IDC_DECRYPT_NDS, IDC_VERIFY_NDS among the present invention, represents key management, the help of net shield secure e-mail, email encryption, mail signature, mail deciphering, mail certifying signature respectively.
Using remarkable result of the present invention is, because in the menu item of safety E-mail plug-in unit and the interface that tool bar is integrated in OutlookExpress, when the user selects to send operation such as mail, this incident is is at first intercepted and captured by plug-in unit, plug-in unit can be finished the safe operations such as encryption, signature of mail before mail sends like this, thus the security that improves mail transfer.
Embodiment
Below in conjunction with the application of specific embodiment elaboration safety E-mail and Outlook Express integrated approach, relate to and install and use overall process.
In the present embodiment, safety E-mail is installed " hook " program in Outlook Express, and used function is:
SetWindowsHookEx(WH_CBT,(HOOKPROC)CBTProc,UIGetInstance(),dwThreadId)
The operating process of present embodiment is as follows:
1). software finds Outlook Express executable file msimn.exe when installing, and it is changed into other names.
2). Outlook Express catalogue, called after msimn.exe are arrived in the program copy of " hook " program loading bin.What start when like this, the user starts Outlook Express is " hook " program loading bin.
3). " hook " program loading bin " hook " program (being a dynamic link libraries dll) of packing into starts original Outlook Express program.
4). " hook " program loading bin finds the main window handle of OutlookExpress according to the window class name of Outlook Express main window.Find the Thread Id (unique identifier of thread) of main window correspondence according to the main window handle
5). " hook " program loading bin is provided with " hook " program to Outlook Express main window thread, like this, " hook " program can intercept the entire message of Outlook Express main window thread, because the Windows program is message-driven, " hook " program just can be before Outlook Express response user's operation (knock keyboard, mobile and click the mouse) finishes oneself operating process.Owing to comprise window handle in the windows messaging, pass through window handle, can revise each component (menu, tool bar) in the window, can obtain the subwindow (as editor's subwindow) in the window, obtain and change the attribute (as reading and revise the content of editing subwindow) of subwindow.
6). " hook " program loading bin enters the Message Processing circulation, and " hook " program of wait withdraws from.If the user has closed Outlook Express, " hook " program captures window and withdraws from message, sends the message that " hook " program withdraws to " hook " program loading bin.After the message that " hook " program of receiving " hook " program loading bin withdraws from, program withdraws from; Otherwise program is in background operation state always.The process of " hook " processing messages is as follows:
LRESULT WINAPI CallWndProc(int nCode,WPARAM wParam,LPARAM lParam) { if(nCode<0) return CallNextHookEx(NULL,nCode,wParam,lParam); switch(nCode) { case HC_ACTION1: MyProc(); break; <!-- SIPO <DP n="4"> --> <dp n="d4"/> case HC_ACT1ON2: break; default: break; } return CallNextHookEx(NULL,nCode,wParam,lParam); }
After program withdraws from, discharge hook with the UnhookWindowsHookEx function.
In the present embodiment, the program structure in this method comprises " hook " program loading bin (executable file EXE) and " hook " program (dynamic link libraries DLL), support program (dynamic link libraries DLL).Wherein " hook " program loading bin and " hook " program belong to application layer, at specific Email client (as Outlook Express), can embed this e-mail program (in Outlook Express, having used the Hook technology), on the interface of this program, increase buttons such as " encryption ", " signature ", and can from this e-mail program, obtain and revise the mail that the user edits, realize the function of the automatic encryption and decryption reading mail of mail that the user sends.
Support program belongs to basal layer, and is irrelevant with the type of e-mail program, and basal layer directly is provided by information such as the data that have application layer to provide, the key of main leading subscriber, digital certificate, generates, handles digital envelope and digital signature.
" hook " program among the present invention take the form of a dynamic link libraries (dll).
After using the present invention, the user can revise user interface, increase button, and operations such as process user click button increase the encryption/decryption to mail in the transmission of mail with in reading.
1 revises user interface, increases button.
Window creation and window that " hook " program is caught Outlook Express activate message, do following the processing:
1) " hook " to window and tool bar is set, thereby can controls window and tool bar that Outlook Express creates.
2) searching " sender " subwindow in window, if find, is the window of " posting a letter "; Otherwise, be the window of " collection of letters ".
3) if the window of " posting a letter " increases " encryption ", " signature " and " key management " button in the window tool bar.If the window of " collection of letters " increases " deciphering/certifying signature " and " key management " button in the window tool bar.
2. operation such as process user click button
Zone except the button that " hook " program increases, user's click is all handled by Outlook Express oneself.If the window of " posting a letter ", user's click " encryption " button, it is the state of " pressing " or " upspringing " that " hook " program is preserved " encryption " button in inside.User's click " signature " button also is the same." hook " program registration timer, regularly tool bar is checked that " encryptions " and " signature " button of preserving in inside according to " hook " program is the state of " pressing " or " upspringing ", the state of setting " encryption " and " signature " button.
User's click " key management " button, " hook " program start key management unit program.
3. increase encryption/decryption to mail in the transmission of mail with in reading.
" hook " program is caught " post a letter " message of window of Outlook Express, if send the command messages of mail, then call privacy enhanced mail content program unit, the privacy enhanced mail content, call the original processing capacity of Outlook Express then, mail is sent.
If the window of " collection of letters ", during user's click " deciphering/certifying signature " button, " hook " program start deciphering Mail Contents program element shows the mail of deciphering.
4. privacy enhanced mail content
The subwindow at editor's Mail Contents place is searched in the encipheror unit in current window, utilize the content that version obtains editor's mail of cliping and pasting of Windows, call encrypting module and finish encryption, utilize the version of cliping and pasting of Windows to replace original mail expressly the result who encrypts.Like this, during the mail subsequently sent, the Mail Contents of transmission had been exactly a ciphertext.
5 deciphering Mail Contents
The subwindow at editor's Mail Contents place is searched in the decrypted program unit in current window, utilize the content that version obtains editor's mail of cliping and pasting of Windows, call deciphering module and finish deciphering, utilize the version of cliping and pasting of Windows to replace original mail ciphertext the result who encrypts, the clear content that the user just can see and see in Outlook Express window.
After using " hook " technology, the user sends and accepts the purpose of the raising security that Email just can simply reach,
For the sender:
1) opens Outlook Express, create an envelope new mail, input address of the addressee, theme and Mail Contents;
2) " the net shield digital envelope " button on selection tool hurdle or menu option " instrument/net shield digital envelope ";
3) " transmission mail " button on selection tool hurdle is imported the user name and password in dialog boxes for login, just can send this mail.
For the addressee:
1) opens Outlook Express, receive new mail;
2) " decrypt " button on selection tool hurdle is imported the user name and password in dialog boxes for login, just can decipher the content of this mail.
Claims (8)
1. safety E-mail and the integrated method of Outlook Express, it is characterized in that, described safety E-mail adopts embedding (Hook) technology of application program that Outlook Express program is carried out security extension, realize interface customizing and the function of Outlook Express are expanded with plug-in part technology simultaneously, to mail encrypt automatically, decryption oprerations, expand the function among the Outlook Express, comprise the steps:
A. use SetWindowsHookEx function installation system " hook ", obtain system message;
B. with the CallWndProc function message of obtaining is handled, the message that does not need to handle passes to the next one " hook " handling procedure (Outlook Express);
C. first " hook " sub-journey of " hook " chained list is accordingly called according to the type of message by system;
D. arbitrary " hook " sub-journey judges whether to be delivered to the sub-journey of the next one " hook ", and calls CallNextHookEx () function passes message;
Return the rreturn value of next " hook " sub-journey in " hook " chained list during the success of e.CallNextHookEx () function.
2. the method for claim 1, it is further characterized in that, in Outlook Express catalogue and with the name nominating of a certain executable file under this catalogue, pack into and start Outlook Express after " hook " program by described loading bin with the program copy of " hook " loading bin for described method.
3. the method for claim 1, it is further characterized in that, described " hook " can for:
(1) WH_CALLWNDPROC: system sends a message to " hook " before the specified window;
(2) WH_CALLWNDPROCRET: " hook " that message has been handled in window;
(3) WH_CBT: based on " hook " of computer training;
(4) WH_DEBUG: mistake " hook ";
(5) WH_FOREGROUNDIDLE: foreground idle window " hook ";
(6) WH_GETMESSAGE: " hook " that receives message dilivery;
(7) WH_JOURNALPLAYBACK: the input message that playback was write down by WH_JOURNALRECORD " hook " in the past;
(8) WH_JOURNALRECORD: input Message Record " hook ";
(9) WH_KEYBOARD: keyboard message " hook ";
(10) WH_MOUSE: mouse information " hook ";
(11) WH_MSGFILTER: dialog box, message box, menu or scroll bar input message " hook ";
(12) WH_SHELL: shell " hook ";
(13) WH_SYSMSGFILTER: system message " hook ".
4. the method for claim 1, it is further characterized in that the form of expression of described " hook " program is dynamic link libraries (dll).
5. the method for claim 1, it is further characterized in that among the step b, the kind of described message comprises:
(1) IDC_NDSKEYS: key management;
(2) IDC_NDS_HELP: net shield secure e-mail helps;
(3) IDC_ENCRYPT_NDS: email encryption;
(4) IDC_SIGN_NDS: mail signature;
(5) IDC_DECRYPT_NDS: mail deciphering;
(6) IDC_VERIFY_NDS: mail certifying signature.
6. the method for claim 1, it is further characterized in that, described " hook " sub-journey can be arranged in the system scope or in the specific thread.
7. the method for claim 1, it is further characterized in that the type of the rreturn value of described " hook " sub-journey depends on the type of " hook ".
8. the method for claim 1, it is further characterized in that, the security extension assembly of described Outlook Express is based upon on the Public Key Infrastructure PKI module basis, form by application layer and basal layer, described application layer comprises the support to email client, and described basal layer comprises the management of digital certificate and digital envelope is encrypted and the nucleus module of digital signature function.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CNB011323426A CN1172236C (en) | 2001-11-29 | 2001-11-29 | Method for integrating safety E-mail and outlook express |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CNB011323426A CN1172236C (en) | 2001-11-29 | 2001-11-29 | Method for integrating safety E-mail and outlook express |
Publications (2)
Publication Number | Publication Date |
---|---|
CN1352420A true CN1352420A (en) | 2002-06-05 |
CN1172236C CN1172236C (en) | 2004-10-20 |
Family
ID=4671374
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CNB011323426A Expired - Fee Related CN1172236C (en) | 2001-11-29 | 2001-11-29 | Method for integrating safety E-mail and outlook express |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN1172236C (en) |
Cited By (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1308861C (en) * | 2002-12-19 | 2007-04-04 | 联想(北京)有限公司 | Embedded application system and application method thereof |
CN100416558C (en) * | 2003-01-22 | 2008-09-03 | 韩国乐线株式会社 | Control method of user application program |
CN1703868B (en) * | 2002-10-07 | 2010-12-08 | 电子湾有限公司 | Method and apparatus for authenticating electronic mail |
CN1829203B (en) * | 2005-02-28 | 2010-12-08 | 微软公司 | System and method for regulating an extensibility point's access to a message |
CN102831344A (en) * | 2012-07-27 | 2012-12-19 | 北京奇虎科技有限公司 | Course handling method and device |
CN103281174A (en) * | 2013-05-06 | 2013-09-04 | 福建伊时代信息科技股份有限公司 | Mail encryption method, mail decryption method, mail encryption unit, mail decryption unit and mail security system |
-
2001
- 2001-11-29 CN CNB011323426A patent/CN1172236C/en not_active Expired - Fee Related
Cited By (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1703868B (en) * | 2002-10-07 | 2010-12-08 | 电子湾有限公司 | Method and apparatus for authenticating electronic mail |
CN1308861C (en) * | 2002-12-19 | 2007-04-04 | 联想(北京)有限公司 | Embedded application system and application method thereof |
CN100416558C (en) * | 2003-01-22 | 2008-09-03 | 韩国乐线株式会社 | Control method of user application program |
CN1829203B (en) * | 2005-02-28 | 2010-12-08 | 微软公司 | System and method for regulating an extensibility point's access to a message |
CN102831344A (en) * | 2012-07-27 | 2012-12-19 | 北京奇虎科技有限公司 | Course handling method and device |
CN102831344B (en) * | 2012-07-27 | 2015-04-15 | 北京奇虎科技有限公司 | Course handling method and device |
CN103281174A (en) * | 2013-05-06 | 2013-09-04 | 福建伊时代信息科技股份有限公司 | Mail encryption method, mail decryption method, mail encryption unit, mail decryption unit and mail security system |
Also Published As
Publication number | Publication date |
---|---|
CN1172236C (en) | 2004-10-20 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US10484344B2 (en) | System and method for authenticating users | |
CN1097771C (en) | System and method for executing checking program | |
US7545931B2 (en) | Protection of application secrets | |
US8085936B2 (en) | Method and system for content management in a secure communication system | |
EP1522167B1 (en) | A method and an apparatus for retrieving a value secured in a key management system | |
JP5916852B2 (en) | Dynamic data protection policy associated with the request-reply message queueing environment | |
US6021491A (en) | Digital signatures for data streams and data archives | |
US7930757B2 (en) | Offline access in a document control system | |
CN1122213C (en) | Method and apparatus for signing and sealing objects | |
US20100037050A1 (en) | Method and apparatus for an encrypted message exchange | |
CN1229489A (en) | Self-destructing document and E-mail messaging system | |
EP1680727A2 (en) | Distributed document version control | |
GB2434947A (en) | Decrypting web mail session key/signing document at trusted third party server so that recipient private key is not used at vulnerable computer | |
CN1363906A (en) | Content delivery system and copyright protection system and content receiving terminal | |
CN1172236C (en) | Method for integrating safety E-mail and outlook express | |
WO2008151530A1 (en) | Method and apparatus for processing the data class in instant messaging system | |
Setiawan et al. | Design of secure electronic disposition applications by applying blowfish, SHA-512, and RSA digital signature algorithms to government institution | |
US8826000B2 (en) | Method and apparatus for supporting cryptographic-related activities in a public key infrastructure | |
CN1859088A (en) | Method for providing enciphering service and system using said method | |
CN1889431A (en) | Multifunction intelligent key equipment and safety controlling method thereof | |
US20050267939A1 (en) | Transparent security for electronic mail messages | |
CN112395629A (en) | File encryption method and system based on TCM chip | |
CN1161704C (en) | Method for integrating safety E-mail and Lotus Notes | |
CN109635574A (en) | File encryption-decryption method, system and storage medium in a kind of cloud storage system | |
CN111193659B (en) | File processing method and device based on instant chat tool |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C06 | Publication | ||
PB01 | Publication | ||
C14 | Grant of patent or utility model | ||
GR01 | Patent grant | ||
CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20041020 Termination date: 20141129 |
|
EXPY | Termination of patent right or utility model |