CN208705885U - It is a kind of that the terminal installation of wireless channel transmission encryption and decryption is provided - Google Patents

It is a kind of that the terminal installation of wireless channel transmission encryption and decryption is provided Download PDF

Info

Publication number
CN208705885U
CN208705885U CN201821088867.7U CN201821088867U CN208705885U CN 208705885 U CN208705885 U CN 208705885U CN 201821088867 U CN201821088867 U CN 201821088867U CN 208705885 U CN208705885 U CN 208705885U
Authority
CN
China
Prior art keywords
decryption
encryption
intranet
module
communication module
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201821088867.7U
Other languages
Chinese (zh)
Inventor
柳依
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
WUHAN MELIT COMMUNICATION CO Ltd
Original Assignee
WUHAN MELIT COMMUNICATION CO Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by WUHAN MELIT COMMUNICATION CO Ltd filed Critical WUHAN MELIT COMMUNICATION CO Ltd
Priority to CN201821088867.7U priority Critical patent/CN208705885U/en
Application granted granted Critical
Publication of CN208705885U publication Critical patent/CN208705885U/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y02TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
    • Y02DCLIMATE CHANGE MITIGATION TECHNOLOGIES IN INFORMATION AND COMMUNICATION TECHNOLOGIES [ICT], I.E. INFORMATION AND COMMUNICATION TECHNOLOGIES AIMING AT THE REDUCTION OF THEIR OWN ENERGY USE
    • Y02D30/00Reducing energy consumption in communication networks
    • Y02D30/70Reducing energy consumption in communication networks in wireless communication networks

Landscapes

  • Mobile Radio Communication Systems (AREA)

Abstract

The utility model discloses a kind of terminal installations of offer wireless channel transmission encryption and decryption, including Intranet communication module, encryption/decryption module and outbound communication module, the encryption/decryption module is electrically connected with Intranet communication module and outbound communication module respectively, and the Intranet communication module includes interior network processor, Intranet flash chip, Intranet memory chip, USB communication interface, Intranet TF card, key.Its small in size, low in energy consumption, adaptation is flexibly, highly-safe.

Description

It is a kind of that the terminal installation of wireless channel transmission encryption and decryption is provided
Technical field
The utility model belongs to intelligent mobile terminal safety means technical field more particularly to a kind of offer wireless channel passes The terminal installation of defeated encryption and decryption.
Background technique
As mobile terminal develops to the direction of intelligence, Opening, the safety defect of mobile terminal also increasingly appears.With Family is often sent the important privacy information such as Bank Account Number and password, documentary whip and personal photo by short message, multimedia message, but mesh Preceding public mobile communication system not yet provides the End to End Encryption transmission service of user data, it cannot be guaranteed that the transmission of user data Safety.
Summary of the invention
Place in order to overcome the above-mentioned deficiencies of the prior art, the utility model provide a kind of transmission of offers wireless channel plus solve Close terminal installation, small in size, low in energy consumption, adaptation are flexibly, highly-safe.
To achieve the above objectives, the present invention adopts the following technical solutions: a kind of offer wireless channel transmits encryption and decryption Terminal installation, including Intranet communication module, encryption/decryption module and outbound communication module, the encryption/decryption module respectively with Intranet Communication module and the electrical connection of outbound communication module, the Intranet communication module includes interior network processor, Intranet flash chip, Intranet Memory chip, USB communication interface, Intranet TF card, key, interior network processor and Intranet flash chip, Intranet memory chip, USB Communication interface, Intranet TF card and key electrical connection, the outbound communication module includes outer network processor, outer net memory chip, outer Net flash chip and WiFi module, outer network processor are electrically connected with outer net memory chip, outer net flash chip, WiFi module, add Deciphering module includes the FPGA and SDRAM being electrically connected with FPGA (synchronous DRAM), EPCS (serial type memory), close Code secret key storage chip, resource grouting socket, booting authentication interface.
In the above-mentioned technical solutions, the encryption/decryption module is electrically connected with resource grouting socket, booting authentication interface, password One or more of secret key storage chip, noise source chip.
In the above-mentioned technical solutions, the encryption/decryption module and Intranet communication module, outbound communication module pass through EMIF Parallel busses communication, EMIF interface use 16 data, 12 bit address.
In the above-mentioned technical solutions, the encryption/decryption module is connect by RS232 serial communication with resource grouting socket.
In the above-mentioned technical solutions, the encryption/decryption module passes through SPI Serial Peripheral Interface (SPI) and cryptographic key storage chip Connection.
In the above-mentioned technical solutions, the encryption/decryption module is connect by I2C bus with noise source chip.
In the above-mentioned technical solutions, the Intranet communication module is electrically connected with Intranet status indicator lamp, Intranet state instruction Lamp is electrically connected with interior network processor, and outer net status indicator lamp is electrically connected with outer network processor, and the encryption/decryption module is electrically connected with Encryption and decryption status indicator lamp, the Intranet status indicator lamp, outer net status indicator lamp, encryption and decryption status indicator lamp are LED.
The beneficial effects of the utility model are: its small in size, low in energy consumption, adaptation is flexibly, and it is highly-safe, using hardware logic Red-black isolation architecture (i.e. encryption/decryption module is connected between Intranet and outbound communication module), effectively block outer net malicious attack and Intranet illegal external connection, it is ensured that the overall security that mobile terminal uses under overall network environment.
Detailed description of the invention
Fig. 1 is the system block diagram of the utility model.
Fig. 2 is Intranet communication module hardware block diagram.
Fig. 3 is outbound communication module hardware block diagram.
Fig. 4 is encryption/decryption module hardware block diagram.
Fig. 5 is the applied topology figure of the utility model.
Specific embodiment
With reference to the accompanying drawing and specific embodiment the utility model is described in further detail.
A kind of terminal installation of offer wireless channel transmission encryption and decryption as shown in Figures 1 to 4, including interior Network Communication mould Block, encryption/decryption module and outbound communication module, Intranet communication module mainly complete configuration management work, including protocol parameter is matched Set, parameter configuration, tactical management, detection monitoring etc.;The groundwork of encryption/decryption module includes algorithm calling, parameter configuration, calculation Method self-test and random number self-test etc.;The management of outbound communication module includes security postures perception, tactical management etc.;
The encryption/decryption module is electrically connected with Intranet communication module and outbound communication module respectively, the Intranet communication module Including interior network processor, Intranet flash chip, Intranet memory chip, USB communication interface, Intranet TF card, key, Intranet processing Device is electrically connected with Intranet flash chip, Intranet memory chip, USB communication interface, Intranet TF card, and the outbound communication module includes Outer network processor, outer net memory chip, outer net flash chip and WiFi module, outer network processor and outer net memory chip, outer net Flash chip, WiFi module electrical connection, encryption/decryption module includes FPGA and the SDRAM (synchronous dynamic random being electrically connected with FPGA Memory), EPCS (serial type memory), cryptographic key storage chip, resource grouting socket, booting authentication interface.
Interior network processor uses AM335x, the industrial level processor of a high performance Cortex-A8 framework, highest fortune Line frequency is up to 1GHz, using 45nm making technology, is integrated with the microprocessor unit (MPU) based on ARM Cortex-A8, POWERVR SGXTM graphics accelerator (for 3D figure accelerate with support display and game effect), may be programmed real-time unit and Industrial communication subsystem (PRU-ICSS) (separates from ARM kernel, configures flexibly and gather around in transmission and control to realize Have the possibility of higher efficiency), guarantee system possesses high-performance while low power operation;
For being communicated with mobile terminal, the WIFI for mainly receiving mobile terminal connects USB communication interface (Micro USB) Order is connect, user accesses the interactive command etc. of this system, and there are two independent USB modules in each ARM module;
TF card is mainly responsible for the function of realizing system user key, and each user is by the key of a built-in TF card to client Itself realizes authentication, and ARM program reads user certificate and verified from user key.
WIFI module realizes that mobile terminal is attached with wireless WIFI hot spot, mobile whole using four highway widths End sends hot spot connection and visit order by USB interface, orders and is sent to WIFI by FPGA module after encrypting by Intranet Module, WIFI module also receive the return information of hot spot, and eventually return to mobile terminal.
In the above-mentioned technical solutions, the Intranet communication module is electrically connected with key.
In the above-mentioned technical solutions, the encryption/decryption module is electrically connected with resource grouting socket, booting authentication interface, password One or more of secret key storage chip, noise source chip.
In the above-mentioned technical solutions, the encryption/decryption module and Intranet communication module, outbound communication module pass through EMIF Parallel busses communication, EMIF interface use 16 data, 12 bit address.
FPGA is responsible for cryptographic algorithms' implementation and calling, cryptographic key management, equipment control etc., as communication security unit, Password Management unit, security managing unit, for completing communication security, booting certification, safety management, Password Management, resource note Enter, the functions such as state instruction.
Fpga chip: the EP3C40 of altera corp CycloneIII is selected.The chip has 39000 LE units, work Frequency is 100MHz, and operating temperature is -40 DEG C~+85 DEG C, supports that a variety of I/O interfaces, I/O pin are 195, has in piece 1MbitRAM is suitble to construct cryptographic algorithm logic in piece, for realizing equipment control and crypto-operation.
Resource grouting socket: being the interface that system operator configures product and initializes, and physical interface is taken Existing communications protocol and follow-up data processing function are verified by the way that NIOS II is soft in RS232 serial communication, the inside FPGA;
Cryptographic key storage chip: Shanghai Fudan Microelectronics FM25F04A, the SPI interface of 4Mbit memory capacity are selected Flash chip;Password code key resource possesses Area-Specific Archive in FLASH storage, and equipment can not make after preventing FLASH from bad block occur With;
Noise source chip: true random number is provided for algorithm;
SDRAM: memory space and program running space are provided for the soft core NIOS II of FPGA on piece;
EPCS chip: FPGA configures port, has reserved two kinds of configuration interfaces, two kinds of moulds of corresponding A S and PS in hardware design Formula;Debugging stage, equipment work in AS mode, configure FPGA by configuration chip EPCS, are debugged by JTAG mouthfuls, and product When delivery, it is switched to PS mode, FPGA is configured by ARM;
ARM bus interface: encryption/decryption module and internal, external network communication module pass through EMIF parallel busses and communicate, to guarantee Bandwidth meets system requirements.Meanwhile FPGA informs that ARM reads data by interrupt signal when needed.
In the above-mentioned technical solutions, the encryption/decryption module is connect by RS232 serial communication with resource grouting socket, EMIF interface uses 16 data, 12 bit address, and engagement tabs choosing, read-write and associated control signal are completed between ARM and FPGA Data communication.
In the above-mentioned technical solutions, the encryption/decryption module passes through SPI Serial Peripheral Interface (SPI) and cryptographic key storage chip Connection.
In the above-mentioned technical solutions, the encryption/decryption module is connect by I2C bus with noise source chip.
In the above-mentioned technical solutions, the Intranet communication module is electrically connected with Intranet status indicator lamp, Intranet state instruction Lamp is electrically connected with interior network processor, and outer net status indicator lamp is electrically connected with outer network processor, and the encryption/decryption module is electrically connected with Encryption and decryption status indicator lamp, the Intranet status indicator lamp, outer net status indicator lamp, encryption and decryption status indicator lamp are LED. LED is for working condition and alarm status in the utility model.
As shown in figure 5, the application mode of the utility model is described in detail by taking the management of Internet of Things intelligent warehouse as an example:
Warehouse logistics management has been widely used for various industries, and by storing in a warehouse, system for managing intelligent information be can be improved The transparency and inventory turnover ratio of supply chain management effectively reduce loss out of stock, improve the warehouse logistics efficiency in enterprise.
Staff can be done directly storage/outbound/management of making an inventory, base in operation field by operating mobile terminal The links such as sheet/SIM system information management and data statistic analysis, then mobile terminal is passed through into USB interface and the utility model Device connection will access transmission of network to central server by WIFI module after the encryption of real-time warehouse information, it is ensured that goods and materials Information security prevents important material information from revealing.
The preferable specific embodiment of the above, only the utility model, but the protection scope of the utility model is not It is confined to this, anyone skilled in the art within the technical scope disclosed by the utility model, can readily occur in Change or replacement, should be covered within the scope of the utility model.

Claims (7)

1. a kind of provide the terminal installation of wireless channel transmission encryption and decryption, it is characterized in that: including Intranet communication module, encryption and decryption mould Block and outbound communication module, the encryption/decryption module are electrically connected with Intranet communication module and outbound communication module respectively, described interior Network Communication module includes interior network processor, Intranet flash chip, Intranet memory chip, USB communication interface, Intranet TF card, key, Interior network processor is electrically connected with Intranet flash chip, Intranet memory chip, USB communication interface, Intranet TF card and key, described outer Network Communication module includes outer network processor, outer net memory chip, outer net flash chip and WiFi module, outer network processor and outer net Memory chip, outer net flash chip, WiFi module electrical connection, encryption/decryption module include the FPGA and SDRAM being electrically connected with FPGA, EPCS, cryptographic key storage chip, resource grouting socket, booting authentication interface.
2. according to claim 1 provide the terminal installation of wireless channel transmission encryption and decryption, it is characterized in that: the encryption and decryption Module passes through EMIF parallel busses with Intranet communication module, outbound communication module and communicates, EMIF interface use 16 data, 12 Bit address.
3. according to claim 1 provide the terminal installation of wireless channel transmission encryption and decryption, it is characterized in that: the encryption and decryption Module is electrically connected with one of resource grouting socket, booting authentication interface, cryptographic key storage chip, noise source chip or several Kind.
4. according to claim 3 provide the terminal installation of wireless channel transmission encryption and decryption, it is characterized in that: the encryption and decryption Module is connect by RS232 serial communication with resource grouting socket.
5. according to claim 3 provide the terminal installation of wireless channel transmission encryption and decryption, it is characterized in that: the encryption and decryption Module is connect by SPI Serial Peripheral Interface (SPI) with cryptographic key storage chip.
6. according to claim 3 provide the terminal installation of wireless channel transmission encryption and decryption, it is characterized in that: the encryption and decryption Module is connect by I2C bus with noise source chip.
7. according to claim 1 provide the terminal installation of wireless channel transmission encryption and decryption, it is characterized in that: the interior Netcom Letter module is electrically connected with Intranet status indicator lamp, and Intranet status indicator lamp is electrically connected with interior network processor, outer net status indicator lamp It being electrically connected with outer network processor, the encryption/decryption module is electrically connected with encryption and decryption status indicator lamp, the Intranet status indicator lamp, Outer net status indicator lamp, encryption and decryption status indicator lamp are LED.
CN201821088867.7U 2018-07-10 2018-07-10 It is a kind of that the terminal installation of wireless channel transmission encryption and decryption is provided Active CN208705885U (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201821088867.7U CN208705885U (en) 2018-07-10 2018-07-10 It is a kind of that the terminal installation of wireless channel transmission encryption and decryption is provided

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201821088867.7U CN208705885U (en) 2018-07-10 2018-07-10 It is a kind of that the terminal installation of wireless channel transmission encryption and decryption is provided

Publications (1)

Publication Number Publication Date
CN208705885U true CN208705885U (en) 2019-04-05

Family

ID=65937962

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201821088867.7U Active CN208705885U (en) 2018-07-10 2018-07-10 It is a kind of that the terminal installation of wireless channel transmission encryption and decryption is provided

Country Status (1)

Country Link
CN (1) CN208705885U (en)

Similar Documents

Publication Publication Date Title
CN102280929B (en) System for information safety protection of electric power supervisory control and data acquisition (SCADA) system
CN110430014A (en) A kind of fieldbus single channel encryption method in water resources fund control system
CN105915509B (en) A kind of network type voltage monitoring system based on Hybrid Encryption algorithm
CN109992565A (en) A kind of file storage system based on cloud terminal data transmission
CN104021104A (en) Collaborative system based on dual-bus structure and communication method thereof
CN103164789A (en) Debug circuit structure provided with safety verification and achieving method of debug circuit structure provided with safety verification
CN107612679A (en) A kind of safe Ethernet bridge scrambling terminal based on national secret algorithm
CN208939584U (en) A kind of novel intelligent power distribution network terminal safety access system
CN103824014A (en) Isolation certificating and monitoring method of USB (universal serial bus) port within local area network
CN208705885U (en) It is a kind of that the terminal installation of wireless channel transmission encryption and decryption is provided
CN203301499U (en) SAM (Secure Access Module) encryption dog for oilfield data communication
CN104468591A (en) Power dependable safety communication system based on dependable computing module
CN216819851U (en) Safety access device in transformer substation
CN208063238U (en) Data encryption security ViGap
CN204859202U (en) Information security type intelligence house gateway
CN205792704U (en) A kind of network security controller of computer
CN207475576U (en) A kind of safety mobile terminal system based on safety chip
CN113014385B (en) Double-network-port hardware network data encryption system
CN211209721U (en) Narrow-band Internet of things transmission module and transmission system
CN103795686B (en) Internet of things service system and the exchange method for realizing virtual information
CN201957034U (en) Mobile phone security chip used in embedded platform and protection system comprising same
CN101894233B (en) Trusted reconfigurable device and using method thereof
CN101697148A (en) Method and system for raising interface rate of computer memory cards
CN205158335U (en) PIC series singlechip serial ports burns record system
CN214174879U (en) Network security architecture for new safety partition of power plant Internet of things

Legal Events

Date Code Title Description
GR01 Patent grant
GR01 Patent grant