CN208705885U - It is a kind of that the terminal installation of wireless channel transmission encryption and decryption is provided - Google Patents
It is a kind of that the terminal installation of wireless channel transmission encryption and decryption is provided Download PDFInfo
- Publication number
- CN208705885U CN208705885U CN201821088867.7U CN201821088867U CN208705885U CN 208705885 U CN208705885 U CN 208705885U CN 201821088867 U CN201821088867 U CN 201821088867U CN 208705885 U CN208705885 U CN 208705885U
- Authority
- CN
- China
- Prior art keywords
- decryption
- encryption
- intranet
- module
- communication module
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Classifications
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y02—TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
- Y02D—CLIMATE CHANGE MITIGATION TECHNOLOGIES IN INFORMATION AND COMMUNICATION TECHNOLOGIES [ICT], I.E. INFORMATION AND COMMUNICATION TECHNOLOGIES AIMING AT THE REDUCTION OF THEIR OWN ENERGY USE
- Y02D30/00—Reducing energy consumption in communication networks
- Y02D30/70—Reducing energy consumption in communication networks in wireless communication networks
Landscapes
- Mobile Radio Communication Systems (AREA)
Abstract
The utility model discloses a kind of terminal installations of offer wireless channel transmission encryption and decryption, including Intranet communication module, encryption/decryption module and outbound communication module, the encryption/decryption module is electrically connected with Intranet communication module and outbound communication module respectively, and the Intranet communication module includes interior network processor, Intranet flash chip, Intranet memory chip, USB communication interface, Intranet TF card, key.Its small in size, low in energy consumption, adaptation is flexibly, highly-safe.
Description
Technical field
The utility model belongs to intelligent mobile terminal safety means technical field more particularly to a kind of offer wireless channel passes
The terminal installation of defeated encryption and decryption.
Background technique
As mobile terminal develops to the direction of intelligence, Opening, the safety defect of mobile terminal also increasingly appears.With
Family is often sent the important privacy information such as Bank Account Number and password, documentary whip and personal photo by short message, multimedia message, but mesh
Preceding public mobile communication system not yet provides the End to End Encryption transmission service of user data, it cannot be guaranteed that the transmission of user data
Safety.
Summary of the invention
Place in order to overcome the above-mentioned deficiencies of the prior art, the utility model provide a kind of transmission of offers wireless channel plus solve
Close terminal installation, small in size, low in energy consumption, adaptation are flexibly, highly-safe.
To achieve the above objectives, the present invention adopts the following technical solutions: a kind of offer wireless channel transmits encryption and decryption
Terminal installation, including Intranet communication module, encryption/decryption module and outbound communication module, the encryption/decryption module respectively with Intranet
Communication module and the electrical connection of outbound communication module, the Intranet communication module includes interior network processor, Intranet flash chip, Intranet
Memory chip, USB communication interface, Intranet TF card, key, interior network processor and Intranet flash chip, Intranet memory chip, USB
Communication interface, Intranet TF card and key electrical connection, the outbound communication module includes outer network processor, outer net memory chip, outer
Net flash chip and WiFi module, outer network processor are electrically connected with outer net memory chip, outer net flash chip, WiFi module, add
Deciphering module includes the FPGA and SDRAM being electrically connected with FPGA (synchronous DRAM), EPCS (serial type memory), close
Code secret key storage chip, resource grouting socket, booting authentication interface.
In the above-mentioned technical solutions, the encryption/decryption module is electrically connected with resource grouting socket, booting authentication interface, password
One or more of secret key storage chip, noise source chip.
In the above-mentioned technical solutions, the encryption/decryption module and Intranet communication module, outbound communication module pass through EMIF
Parallel busses communication, EMIF interface use 16 data, 12 bit address.
In the above-mentioned technical solutions, the encryption/decryption module is connect by RS232 serial communication with resource grouting socket.
In the above-mentioned technical solutions, the encryption/decryption module passes through SPI Serial Peripheral Interface (SPI) and cryptographic key storage chip
Connection.
In the above-mentioned technical solutions, the encryption/decryption module is connect by I2C bus with noise source chip.
In the above-mentioned technical solutions, the Intranet communication module is electrically connected with Intranet status indicator lamp, Intranet state instruction
Lamp is electrically connected with interior network processor, and outer net status indicator lamp is electrically connected with outer network processor, and the encryption/decryption module is electrically connected with
Encryption and decryption status indicator lamp, the Intranet status indicator lamp, outer net status indicator lamp, encryption and decryption status indicator lamp are LED.
The beneficial effects of the utility model are: its small in size, low in energy consumption, adaptation is flexibly, and it is highly-safe, using hardware logic
Red-black isolation architecture (i.e. encryption/decryption module is connected between Intranet and outbound communication module), effectively block outer net malicious attack and
Intranet illegal external connection, it is ensured that the overall security that mobile terminal uses under overall network environment.
Detailed description of the invention
Fig. 1 is the system block diagram of the utility model.
Fig. 2 is Intranet communication module hardware block diagram.
Fig. 3 is outbound communication module hardware block diagram.
Fig. 4 is encryption/decryption module hardware block diagram.
Fig. 5 is the applied topology figure of the utility model.
Specific embodiment
With reference to the accompanying drawing and specific embodiment the utility model is described in further detail.
A kind of terminal installation of offer wireless channel transmission encryption and decryption as shown in Figures 1 to 4, including interior Network Communication mould
Block, encryption/decryption module and outbound communication module, Intranet communication module mainly complete configuration management work, including protocol parameter is matched
Set, parameter configuration, tactical management, detection monitoring etc.;The groundwork of encryption/decryption module includes algorithm calling, parameter configuration, calculation
Method self-test and random number self-test etc.;The management of outbound communication module includes security postures perception, tactical management etc.;
The encryption/decryption module is electrically connected with Intranet communication module and outbound communication module respectively, the Intranet communication module
Including interior network processor, Intranet flash chip, Intranet memory chip, USB communication interface, Intranet TF card, key, Intranet processing
Device is electrically connected with Intranet flash chip, Intranet memory chip, USB communication interface, Intranet TF card, and the outbound communication module includes
Outer network processor, outer net memory chip, outer net flash chip and WiFi module, outer network processor and outer net memory chip, outer net
Flash chip, WiFi module electrical connection, encryption/decryption module includes FPGA and the SDRAM (synchronous dynamic random being electrically connected with FPGA
Memory), EPCS (serial type memory), cryptographic key storage chip, resource grouting socket, booting authentication interface.
Interior network processor uses AM335x, the industrial level processor of a high performance Cortex-A8 framework, highest fortune
Line frequency is up to 1GHz, using 45nm making technology, is integrated with the microprocessor unit (MPU) based on ARM Cortex-A8,
POWERVR SGXTM graphics accelerator (for 3D figure accelerate with support display and game effect), may be programmed real-time unit and
Industrial communication subsystem (PRU-ICSS) (separates from ARM kernel, configures flexibly and gather around in transmission and control to realize
Have the possibility of higher efficiency), guarantee system possesses high-performance while low power operation;
For being communicated with mobile terminal, the WIFI for mainly receiving mobile terminal connects USB communication interface (Micro USB)
Order is connect, user accesses the interactive command etc. of this system, and there are two independent USB modules in each ARM module;
TF card is mainly responsible for the function of realizing system user key, and each user is by the key of a built-in TF card to client
Itself realizes authentication, and ARM program reads user certificate and verified from user key.
WIFI module realizes that mobile terminal is attached with wireless WIFI hot spot, mobile whole using four highway widths
End sends hot spot connection and visit order by USB interface, orders and is sent to WIFI by FPGA module after encrypting by Intranet
Module, WIFI module also receive the return information of hot spot, and eventually return to mobile terminal.
In the above-mentioned technical solutions, the Intranet communication module is electrically connected with key.
In the above-mentioned technical solutions, the encryption/decryption module is electrically connected with resource grouting socket, booting authentication interface, password
One or more of secret key storage chip, noise source chip.
In the above-mentioned technical solutions, the encryption/decryption module and Intranet communication module, outbound communication module pass through EMIF
Parallel busses communication, EMIF interface use 16 data, 12 bit address.
FPGA is responsible for cryptographic algorithms' implementation and calling, cryptographic key management, equipment control etc., as communication security unit,
Password Management unit, security managing unit, for completing communication security, booting certification, safety management, Password Management, resource note
Enter, the functions such as state instruction.
Fpga chip: the EP3C40 of altera corp CycloneIII is selected.The chip has 39000 LE units, work
Frequency is 100MHz, and operating temperature is -40 DEG C~+85 DEG C, supports that a variety of I/O interfaces, I/O pin are 195, has in piece
1MbitRAM is suitble to construct cryptographic algorithm logic in piece, for realizing equipment control and crypto-operation.
Resource grouting socket: being the interface that system operator configures product and initializes, and physical interface is taken
Existing communications protocol and follow-up data processing function are verified by the way that NIOS II is soft in RS232 serial communication, the inside FPGA;
Cryptographic key storage chip: Shanghai Fudan Microelectronics FM25F04A, the SPI interface of 4Mbit memory capacity are selected
Flash chip;Password code key resource possesses Area-Specific Archive in FLASH storage, and equipment can not make after preventing FLASH from bad block occur
With;
Noise source chip: true random number is provided for algorithm;
SDRAM: memory space and program running space are provided for the soft core NIOS II of FPGA on piece;
EPCS chip: FPGA configures port, has reserved two kinds of configuration interfaces, two kinds of moulds of corresponding A S and PS in hardware design
Formula;Debugging stage, equipment work in AS mode, configure FPGA by configuration chip EPCS, are debugged by JTAG mouthfuls, and product
When delivery, it is switched to PS mode, FPGA is configured by ARM;
ARM bus interface: encryption/decryption module and internal, external network communication module pass through EMIF parallel busses and communicate, to guarantee
Bandwidth meets system requirements.Meanwhile FPGA informs that ARM reads data by interrupt signal when needed.
In the above-mentioned technical solutions, the encryption/decryption module is connect by RS232 serial communication with resource grouting socket,
EMIF interface uses 16 data, 12 bit address, and engagement tabs choosing, read-write and associated control signal are completed between ARM and FPGA
Data communication.
In the above-mentioned technical solutions, the encryption/decryption module passes through SPI Serial Peripheral Interface (SPI) and cryptographic key storage chip
Connection.
In the above-mentioned technical solutions, the encryption/decryption module is connect by I2C bus with noise source chip.
In the above-mentioned technical solutions, the Intranet communication module is electrically connected with Intranet status indicator lamp, Intranet state instruction
Lamp is electrically connected with interior network processor, and outer net status indicator lamp is electrically connected with outer network processor, and the encryption/decryption module is electrically connected with
Encryption and decryption status indicator lamp, the Intranet status indicator lamp, outer net status indicator lamp, encryption and decryption status indicator lamp are LED.
LED is for working condition and alarm status in the utility model.
As shown in figure 5, the application mode of the utility model is described in detail by taking the management of Internet of Things intelligent warehouse as an example:
Warehouse logistics management has been widely used for various industries, and by storing in a warehouse, system for managing intelligent information be can be improved
The transparency and inventory turnover ratio of supply chain management effectively reduce loss out of stock, improve the warehouse logistics efficiency in enterprise.
Staff can be done directly storage/outbound/management of making an inventory, base in operation field by operating mobile terminal
The links such as sheet/SIM system information management and data statistic analysis, then mobile terminal is passed through into USB interface and the utility model
Device connection will access transmission of network to central server by WIFI module after the encryption of real-time warehouse information, it is ensured that goods and materials
Information security prevents important material information from revealing.
The preferable specific embodiment of the above, only the utility model, but the protection scope of the utility model is not
It is confined to this, anyone skilled in the art within the technical scope disclosed by the utility model, can readily occur in
Change or replacement, should be covered within the scope of the utility model.
Claims (7)
1. a kind of provide the terminal installation of wireless channel transmission encryption and decryption, it is characterized in that: including Intranet communication module, encryption and decryption mould
Block and outbound communication module, the encryption/decryption module are electrically connected with Intranet communication module and outbound communication module respectively, described interior
Network Communication module includes interior network processor, Intranet flash chip, Intranet memory chip, USB communication interface, Intranet TF card, key,
Interior network processor is electrically connected with Intranet flash chip, Intranet memory chip, USB communication interface, Intranet TF card and key, described outer
Network Communication module includes outer network processor, outer net memory chip, outer net flash chip and WiFi module, outer network processor and outer net
Memory chip, outer net flash chip, WiFi module electrical connection, encryption/decryption module include the FPGA and SDRAM being electrically connected with FPGA,
EPCS, cryptographic key storage chip, resource grouting socket, booting authentication interface.
2. according to claim 1 provide the terminal installation of wireless channel transmission encryption and decryption, it is characterized in that: the encryption and decryption
Module passes through EMIF parallel busses with Intranet communication module, outbound communication module and communicates, EMIF interface use 16 data, 12
Bit address.
3. according to claim 1 provide the terminal installation of wireless channel transmission encryption and decryption, it is characterized in that: the encryption and decryption
Module is electrically connected with one of resource grouting socket, booting authentication interface, cryptographic key storage chip, noise source chip or several
Kind.
4. according to claim 3 provide the terminal installation of wireless channel transmission encryption and decryption, it is characterized in that: the encryption and decryption
Module is connect by RS232 serial communication with resource grouting socket.
5. according to claim 3 provide the terminal installation of wireless channel transmission encryption and decryption, it is characterized in that: the encryption and decryption
Module is connect by SPI Serial Peripheral Interface (SPI) with cryptographic key storage chip.
6. according to claim 3 provide the terminal installation of wireless channel transmission encryption and decryption, it is characterized in that: the encryption and decryption
Module is connect by I2C bus with noise source chip.
7. according to claim 1 provide the terminal installation of wireless channel transmission encryption and decryption, it is characterized in that: the interior Netcom
Letter module is electrically connected with Intranet status indicator lamp, and Intranet status indicator lamp is electrically connected with interior network processor, outer net status indicator lamp
It being electrically connected with outer network processor, the encryption/decryption module is electrically connected with encryption and decryption status indicator lamp, the Intranet status indicator lamp,
Outer net status indicator lamp, encryption and decryption status indicator lamp are LED.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201821088867.7U CN208705885U (en) | 2018-07-10 | 2018-07-10 | It is a kind of that the terminal installation of wireless channel transmission encryption and decryption is provided |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201821088867.7U CN208705885U (en) | 2018-07-10 | 2018-07-10 | It is a kind of that the terminal installation of wireless channel transmission encryption and decryption is provided |
Publications (1)
Publication Number | Publication Date |
---|---|
CN208705885U true CN208705885U (en) | 2019-04-05 |
Family
ID=65937962
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201821088867.7U Active CN208705885U (en) | 2018-07-10 | 2018-07-10 | It is a kind of that the terminal installation of wireless channel transmission encryption and decryption is provided |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN208705885U (en) |
-
2018
- 2018-07-10 CN CN201821088867.7U patent/CN208705885U/en active Active
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN102280929B (en) | System for information safety protection of electric power supervisory control and data acquisition (SCADA) system | |
CN110430014A (en) | A kind of fieldbus single channel encryption method in water resources fund control system | |
CN105915509B (en) | A kind of network type voltage monitoring system based on Hybrid Encryption algorithm | |
CN109992565A (en) | A kind of file storage system based on cloud terminal data transmission | |
CN104021104A (en) | Collaborative system based on dual-bus structure and communication method thereof | |
CN103164789A (en) | Debug circuit structure provided with safety verification and achieving method of debug circuit structure provided with safety verification | |
CN107612679A (en) | A kind of safe Ethernet bridge scrambling terminal based on national secret algorithm | |
CN208939584U (en) | A kind of novel intelligent power distribution network terminal safety access system | |
CN103824014A (en) | Isolation certificating and monitoring method of USB (universal serial bus) port within local area network | |
CN208705885U (en) | It is a kind of that the terminal installation of wireless channel transmission encryption and decryption is provided | |
CN203301499U (en) | SAM (Secure Access Module) encryption dog for oilfield data communication | |
CN104468591A (en) | Power dependable safety communication system based on dependable computing module | |
CN216819851U (en) | Safety access device in transformer substation | |
CN208063238U (en) | Data encryption security ViGap | |
CN204859202U (en) | Information security type intelligence house gateway | |
CN205792704U (en) | A kind of network security controller of computer | |
CN207475576U (en) | A kind of safety mobile terminal system based on safety chip | |
CN113014385B (en) | Double-network-port hardware network data encryption system | |
CN211209721U (en) | Narrow-band Internet of things transmission module and transmission system | |
CN103795686B (en) | Internet of things service system and the exchange method for realizing virtual information | |
CN201957034U (en) | Mobile phone security chip used in embedded platform and protection system comprising same | |
CN101894233B (en) | Trusted reconfigurable device and using method thereof | |
CN101697148A (en) | Method and system for raising interface rate of computer memory cards | |
CN205158335U (en) | PIC series singlechip serial ports burns record system | |
CN214174879U (en) | Network security architecture for new safety partition of power plant Internet of things |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
GR01 | Patent grant | ||
GR01 | Patent grant |