JPH11262069A - Mobile communication dynamic secure grouping communication system - Google Patents

Abstract

PROBLEM TO BE SOLVED: To eliminate the need for a group key to secure confidentiality of a multiple address message in group communication for mobile communication, where the configuration of groups is always changing. SOLUTION: In the case of making group communication from a terminal A to terminals B, C in a group (a) consisting of the terminals A, B, C, a message is divided in the unit of transmission and the message is encrypted by a common encryption key different in each transmission unit. The common encryption key is encrypted by a public encryption key of the terminals A, B. The encrypted message and plural common encryption keys which are encrypted for each of the terminals B, C are transmitted all together to the terminal B, C through multiple address transmission. Each of the reception terminal B, C decodes the common encryption key by the use of a decoding key of a public key and decodes the message by the use of the decoded common encryption key. Since other terminals cannot decode the common encryption key and cannot use common encryption keys with different transmission unit, confidentiality of the message is ensured. In the case of sending from the terminal B (c) and sending from the terminal C (b), the processing above is applied similarly. Since a public key corresponding to each terminal is used and no group key is required, the secrecy confidentiality of group communication is ensured by having merely to store the decoded key of the public key confidentially.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to a mobile communication dynamic secure group communication system, and more particularly to a dynamic secure grouping communication system for securing communication security for a plurality of dynamically changing groups of mobile communication terminals by cryptography.

[0002]

2. Description of the Related Art Conventionally, when group communication is performed using a mobile communication terminal, the secrecy of communication has been secured using a group encryption key. As shown in FIG. 10, when there are four terminals A, B, C, and D that perform encrypted communication, each group configuration has a common key. In the case of FIG. 10, one-to-one
Excluding the communication of the group, ABC, BC
There were four types, D, CDA, and ABCD, and each group configuration had a common key. That is, in the group configuration of ABC, the terminals A, B, and C each have the key K _ABC as a common key, and in the group configuration of BCD, the terminals B, C, and D each have the key K _BCD as a common key. The terminal A manages three group keys K _ABC , K _CDA and K _ABCD . Terminals B, C and D are the same,
It manages three group keys. Further, when there are five terminals, there are 11 group keys, and each terminal must manage eight keys.

[0003]

As described above, when the number of terminals constituting a group increases, the number of group keys increases much more sharply than the number of constituent terminals. Then, it is necessary to manage so that this many keys do not leak to groups other than the groups constituting the group. Since there are a plurality of terminals having the same key, if the secret of the key is leaked from any one terminal, all terminals in the group are affected. Therefore, key management is more important than one-to-one communication. If a common encryption key is used, there is a risk that the key will be stolen during the delivery, so care must be taken in the delivery of the key.

In addition, when a terminal newly joins a group, a terminal leaves a group, or a terminal that has once left the group joins the group again, as in the case where a terminal has left the group again. When it changes from moment to moment, there is a problem of how to manage keys. That is, when a terminal is newly added to the group, the key must be distributed to the terminal. Also, when a terminal is disconnected, all keys related to the terminal must be discarded. When the missing terminal is added to the group again, there is a problem such as whether to use the key used in the past or to newly create and distribute the key. Since this is performed every moment, there is a problem that the key cannot be changed quickly with the conventional fixedly managed key.

SUMMARY OF THE INVENTION It is an object of the present invention to solve the above-mentioned problem and to realize a dynamic secure grouping communication system for securing communication security for a plurality of dynamically changing groups of mobile communication terminals by encryption.

[0006]

In order to solve the above-mentioned problems, according to the present invention, a dynamic secure grouping communication system divides a message to be transmitted to each receiving terminal of a group into transmission units, and The transmission contents are encrypted with the common encryption key, the common encryption key is encrypted with the encryption key of the public encryption method of each receiving terminal, and the encrypted message of one transmission unit and the encryption key of each recipient of the group are encrypted. The configuration is such that a common encryption key is grouped and broadcasted.

[0007] With this configuration, communication security for a plurality of dynamically changing groups of mobile communication terminals is ensured by a common encryption key different for each transmission unit and a public encryption key corresponding to the terminal. be able to.

[0008]

BEST MODE FOR CARRYING OUT THE INVENTION
In the mobile communication dynamic secure grouping communication method including a plurality of communication terminals, each communication terminal is a unit that divides a transmission message into message units of a predetermined length, and a unit that encrypts each message unit with a common encryption key, Means for encrypting the common encryption key with an individual encryption key corresponding to the destination communication terminal, and a plurality of common encryption keys encrypted with the single encryption message unit and the individual encryption key. Means for performing broadcast communication to a group of communication terminals, wherein the mobile communication is a dynamic secure grouping communication method, wherein a common encryption key is encrypted with an individual encryption key corresponding to each communication terminal of the group. This has the effect of identifying the communication terminals of the group and ensuring the secrecy of the communication.

[0009] The invention described in claim 2 of the present invention is claim 1.
In the mobile communication dynamic secure group communication system described above, a public key of a public key system is used as the individual encryption key, and the distribution of the individual encryption key is not required.

The third aspect of the present invention is the first aspect of the present invention.
In the mobile communication dynamic secure group communication system described above, the common encryption key is updated every transmission of one encrypted message unit, and has an effect of making decryption difficult.

The fourth aspect of the present invention is the first aspect of the present invention.
In the mobile communication dynamic secure group communication system described in the above, a radio base station wirelessly connected to the communication terminal, an encrypted message unit sent to the communication terminal, and a common encryption key encrypted with the individual encryption key are temporarily stored. A mobile terminal proxy station, and a control station that is connected to the radio base station and the mobile terminal proxy station and controls the radio base station, the communication terminal, and the mobile terminal proxy station, This has the effect of recovering a temporary reception error by the mobile terminal proxy station.

According to a fifth aspect of the present invention, a means for generating a common encryption key, a means for dividing a transmission message into message units of a predetermined length, and encrypting each message unit with the common encryption key Means for encrypting the common encryption key with an individual encryption key corresponding to a destination communication terminal, and a plurality of communication terminals comprising a set of one encrypted message unit and a plurality of encrypted common encryption keys. A mobile radio terminal comprising: means for performing broadcast communication to a group consisting of; and means for decoding a received encrypted common encryption key and decoding the encrypted message unit, wherein the common encryption key is assigned to the group. By encrypting with the individual encryption key corresponding to each communication terminal, there is an effect that the communication terminal of the group is specified by the transmission terminal and the secret of the group communication is secured.

[0013] The invention according to claim 6 of the present invention is directed to claim 5.
The mobile wireless terminal described above has an encryption folder for storing a received message after encrypting the received message with an encryption key unique to the terminal, and has an effect of securing the secret of the received message stored in the terminal.

Hereinafter, an embodiment of the present invention will be described with reference to FIG.
This will be described in detail with reference to FIGS.

(First Embodiment) In a first embodiment of the present invention, a message is divided into transmission units, encrypted with a different common encryption key for each transmission unit, and the common encryption key is set for each receiving terminal. This is a mobile communication dynamic secure grouping communication system in which a message in a transmission unit encrypted by a public encryption key and a plurality of encrypted common encryption keys are combined and broadcast to a receiving terminal.

FIG. 1 is a diagram showing a concept of a mobile communication dynamic secure grouping communication system according to a first embodiment of the present invention. In FIG. 1, A, B, and C are communication terminals, and A, B, and C form a group. FIG.
FIG. 3 is a diagram illustrating an example of joining and leaving of a communication terminal in the mobile communication dynamic secure grouping communication method according to the first embodiment. In FIG. 2, A, B, C, and D are communication terminals, D is a terminal that has joined a group,
B is the terminal that has left. FIG. 3 is a diagram collectively showing the joining and leaving of the terminal shown in FIG.

Even in a group communication in which a group is formed by a large number of communication terminals and a communication is performed in a short time, a group is formed by one transmission terminal and a plurality of reception terminals. Therefore, the message of the group communication is encrypted with a common encryption key for each transmission unit, the common encryption key is encrypted with the public encryption key of each receiving terminal of the group,
By transmitting the encrypted transmission message to the receiving terminal together with the receiving terminal, it is possible to specify terminals forming a group and perform secret group communication.

As an example, consider the smallest group where there are three terminals. FIG. 1A shows a state in which terminals A, B, and C form a group and exchange messages and signals with each other. By the way, if communication between terminals is divided into short time units, broadcast communication between the transmitting terminal A and the receiving terminals B and C is performed as shown in FIG. Here, the arrow indicates the transmission direction of the message, the origin of the arrow is the transmitting terminal, and the end of the arrow is the receiving terminal. At the next certain time, as shown in FIG. 1C, the broadcast communication is performed between the transmitting terminal B and the receiving terminals A and C. As shown in FIG. 1D, when C is a transmitting terminal, A and B are receiving terminals. In this way,
Group communication among A, B, and C is performed. When any one terminal is transmitting, the others are in a receiving state. In other words, even in the case of group communication, the configuration is one transmission terminal and a plurality of reception terminals.

FIG. 2 (a) shows that terminal A has terminals B and C,
It is a figure showing the case where a message is sent to new terminal D.
FIG. 2B shows a state in which a new terminal D sends a message to terminals A, B, and C belonging to an existing group. FIG. 2C shows a case where the terminal A does not send a message to B in the group configuration of A, B, C, and D. FIG. 2D shows a case where C does not send a message to B. Is the case. At the time of FIG. 2C, the terminal B is considered to have left the group. This may be the case where the B terminal has left itself, or the case where A and C have intentionally left B. When these states are viewed over a long period of time, they are as shown in FIG. There are terminals A, B, C, and D, and B leaves the group, or terminal D joins the group. This group is a dynamic group in which the terminals that make up the group change every moment, and the present invention is directed to broadcast performed in such a dynamic group. In this way, a dynamic group communication is taken into consideration, and a group communication method is considered focusing on the transmitting terminal by viewing the group constituting terminals in terms of one transmitting terminal and a plurality of receiving terminals.

Hereinafter, a method of cipher communication centering on the transmitting terminal will be described with reference to FIGS. 4 and 5. As shown in FIG. 4, when the transmitting terminal A sends a message to the receiving terminals B and C, the terminals A, B, and C are assigned a public key encryption key and a decryption key, respectively. As the public encryption key, a public key represented by the RSA encryption is used.
The encryption key of the public key does not need to be kept secret, and is disclosed where it is needed. The decryption key is the terminal A,
B and C are keys used when decrypting the encrypted message, and are each kept secret. Since the decryption key is not calculated at all from the encryption key, a message encrypted with the encryption key cannot be decrypted without knowing the decryption key. Terminal B is assigned Be as an encryption key and Bd as a decryption key. Terminals C and A are assigned (Ce, C
d) and (Ae, Ad) are assigned. The key or message described in the present invention is a sequence of encoded digital signals of “0” and “1”.

FIG. 5 shows a procedure when the terminal A becomes a transmitting terminal and sends a message to the terminals B and C. The transmitting terminal A receives the encryption keys Be and Ce of the public keys of the receiving terminals B and C.
Is obtained in advance via a communication line or by another method. These keys are public and do not need to be kept secret.

Next, the transmitting terminal A creates a message M to be transmitted. The length of the message M may be equal to or less than the maximum length of the message unit. When a message having a length exceeding the maximum length of a message unit is sent, one message M is divided into predetermined message units. If there is some restriction and the length of the message M is fixed, one message M is obtained by dividing a long message into predetermined message units. If the message is shorter than the message unit, the remainder is padded with a random number or the like to make the message M of a predetermined length.

Next, a common encryption key Ck is generated. This common encryption key is different from the public key, and the encryption key and the decryption key are common. As the common encryption key, a different key is generated and used every time a message is transmitted. This key must be kept secret until transmission and reception are complete. In general, the public encryption key has a long bit length and is complicated to calculate, so that the processing takes time. On the other hand, the common encryption key has a short bit length and does not take much time to process. The above three steps may be performed in any order.

When these preparations are completed, first, the message M is encrypted with the common encryption key Ck to obtain M '. It does not take long to convert the message to M 'with the common encryption key Ck. Next, the common encryption key Ck is used as the encryption key Ae of the receiving terminal,
Encrypt with Ce. Since the common encryption key is short, the encryption with the public encryption key does not require much time. In this way,
The transmitting terminal A attaches the common encryption key Ck ′ encrypted with the encryption key of the public encryption key to the message M ′ encrypted with the common encryption key Ck, and sends the message M ′ to the receiving terminals B and C. FIG. 6 shows the format of this transmission signal. They are not decrypted on the way.

When receiving the signal transmitted by the transmitting terminal A, the receiving terminals B and C first decrypt the encrypted common encryption key Ck 'with the decryption key of the public encryption key. B for terminal B
At d, Ck 'is decoded at Ce for terminal C. Using the decrypted common encryption key Ck, the message M ′ encrypted with the common encryption key is decrypted to obtain M. The decrypted message M is immediately stored in an encrypted file provided in the receiving terminal. The encrypted file is a file provided as software in the memory of the receiving terminal, and is a file encrypted with a common key or a public encryption key unique to the terminal. The common encryption key is different from the key used for transmission and reception, but the public encryption key may be the same as the decryption key. When the message is stored in the encrypted file, the common encryption key used for transmission and reception is discarded. The common encryption key is updated for each message sent at one time, and the old key is discarded.

The transmission terminal A and the reception terminals B and C have been described above, but the same applies to a case where the terminals B and C are transmission terminals and C or A or A and B are reception terminals. As described above, the terminals A, B, and C become transmission terminals and reception terminals with a time lag, and perform communication by mutually transmitting and receiving an encrypted message and an encrypted key. If a device that has joined the group leaves the group,
The transmitting terminal deletes the encryption key of the public key of the missing terminal so that the message is not sent to the missing terminal. Also, if a new device joins the group,
The transmitting terminal adds the encryption key of the newly added terminal's public key and sends a message. As described above, the terminal of the group is determined by whether the transmitting terminal adds the encryption key of the public key of the other party to which the message is sent. Since there is no group key common to the groups constituting the group, the groups can be organized freely and quickly.

Since the missing terminal cannot decrypt the common encryption key, it cannot decrypt the message. Since the common encryption key changes for each transmission unit, it cannot be decrypted with the previous common encryption key. The same is true for a terminal that is not in a group, and it is usually impossible to obtain a common encryption key even if the communication is intercepted, because it is as difficult as breaking RSA encryption. Also, it is not possible to intercept communication of many messages and estimate a common encryption key from statistics or the like because the common encryption key is different for each transmission.

As described above, according to the first embodiment of the present invention, the mobile communication dynamic secure grouping communication system divides a message into transmission units, encrypts each message with a common encryption key for each transmission unit, The key is encrypted with the public encryption key of each receiving terminal, and the encrypted message of the transmission unit and multiple encrypted common encryption keys are paired and broadcast to the receiving terminal. Communication security for a group of a plurality of mobile communication terminals can be secured by encryption.

(Second Embodiment) In a second embodiment of the present invention, a message is divided into transmission units, encrypted with a common encryption key for each transmission unit, and a common encryption key for each receiving terminal. Encrypted with a public encryption key, a set of encrypted transmission messages and a plurality of encrypted common encryption keys are paired and broadcast, and the message is sent to a plurality of receiving terminals in the group via the radio base station and the control station. Is a mobile communication dynamic secure grouping communication method for transmitting a secret message.

FIG. 7 is a configuration diagram of a mobile communication dynamic secure grouping communication system according to a second embodiment of the present invention. In FIG. 7, a control station 1 is a station that manages and controls the mobile terminal proxy station 2 and the radio base station 3. The mobile terminal proxy station 2 is a station that temporarily stores the message of the terminal 4. The radio base station 3 transmits the message of the terminal 4 to the base station 1
Is a station that relays to another wireless base station via the.

FIG. 8 is a diagram showing the flow of signals over time in the mobile communication dynamic secure grouping communication system according to the second embodiment. In FIG.
The vertical axis indicates the flow of time from top to bottom, and each vertical line indicates the proxy station, control station terminal A, terminal B, and terminal C, respectively. The arrow drawn diagonally indicates the flow of the signal, the starting point of the arrow is the transmitting end, and the ending point (tip) of the arrow is the reaching point of the signal. The part indicated by (1) in FIG. 8 is a state during normal operation, and the part indicated by (2) in FIG. 8 retransmits the message temporarily received by the proxy station without receiving a response from the terminal B, This indicates a state where the data has been normally received and completed.

FIG. 9 is a diagram showing a format of a transmission signal transmitted from a transmission terminal in the mobile communication dynamic secure grouping communication system according to the second embodiment. In FIG. 9, Ckb 'and Ckc' are common keys encrypted with a public key, and M 'is a message encrypted with a common key.

Hereinafter, referring to FIG. 7, FIG. 8 and FIG.
A communication method in the mobile communication dynamic secure grouping communication method according to the second embodiment of the present invention will be described. Now, it is assumed that terminals A, B, and C shown in FIG. 7 constitute a group. As shown in FIG. 8, when terminal A sends a message to terminals B and C, terminal A
To request a public key. The request from the terminal A is sent to the terminals B and C by the radio base station 3 via the control station 1 that controls the radio base station 3. Terminal B that received the call,
C sends the public key to terminal A. The terminal A sends the encrypted message and the common key as one packet to the terminals B and C, and disconnects the line. Terminals B and C are terminals A
Decrypts the encrypted common key sent from the server using the respective decryption keys, and decrypts the message using the decrypted common key. When the message can be received, terminal B,
C sends back to the control station 1 the fact that the reception was successful. When the reception is completed, the control station 1 disconnects the line and ends the communication. Here, the mobile terminal proxy station 2 temporarily stores the message of the terminal 4, and when the terminal A sends a message, this message is also transmitted to the mobile terminal proxy station 2 via the control station 1. Is stored. This stored content is deleted when the receiving responses of the receiving terminals are completed. If for some reason, for example, the radio link condition is worse,
If there is no response within a fixed time (predetermined message arrival time limit), the mobile terminal proxy station 2 resends the message to a terminal that has not responded.

Although the case where terminal A transmits data has been described above, the same operation is performed when terminals B and C transmit data, respectively. Thus, each terminal is the transmitting terminal,
Group communication is performed as a receiving terminal.

Although the description has been made on the premise that the encryption key of the public key is made public, another group can be formed by making the encryption key of the public key available only to a limited group. It goes without saying that the group configuration of the present invention is effective within a limited group.

FIG. 9A shows a transmission signal format transmitted from the transmission terminal as a set of a common key encrypted with a public key and a message encrypted with the common key. The transmission signal includes common keys Ckb ′ and Ckc ′ to the receiving terminals B and C encrypted with the public keys, and a message encrypted with the common key Ck. This signal is transmitted from the transmitting terminal A to the wireless base station 3 via radio waves. The signal received by the radio base station 3 is demodulated and sent to the control station 1. The control station 1 converts the signal of FIG. 9A transmitted from the transmitting terminal A into the signal format for the receiving terminals B and C shown in FIG. 9B. A common key Ckb 'and a message M' are sent to the receiving terminal B, and Ckc 'and M' are sent to the receiving terminal C in a signal format. This signal is modulated by the radio base station 3 into radio waves having different frequencies, and becomes radio waves to the terminal B,
Sent to terminal C. Then, the signals are received, demodulated and decoded by the terminals B and C, and the message of the terminal A is transmitted to the terminals B and C.
C accepts. When the number of receiving terminals of the group increases, the encrypted common key of the receiving terminal is added to the positions of Ckb 'and Ckc' in the signal format. Since the encrypted M 'is common, it does not increase.

Here, the case of a system having a channel configuration such as an automobile cellular phone in which the transmitting terminal and each receiving terminal use different channel frequencies has been described. However, a system such as a so-called commercial radio system using the same channel is used. In this case, the common key and the message encrypted by the control station are combined, and it is not necessary to convert to a signal format for each terminal, and the signal transmitted from the transmitting terminal is transmitted to the receiving terminal as it is. This reduces the conversion process. Although a signal can be sent regardless of whether the system is configured with an individual channel for each terminal or without conversion, signal format conversion is performed because the use time of the line becomes longer as unnecessary signals are sent.

As described above, in the second embodiment of the present invention, the mobile communication dynamic secure grouping communication system divides a message into transmission units, encrypts each message with a common encryption key for each transmission unit, The key is encrypted with the public encryption key of each receiving terminal, the encrypted transmission unit message and a plurality of encrypted common encryption keys are paired and broadcast, and the group is transmitted via the radio base station and the control station. Since the message is secretly transmitted to the plurality of receiving terminals, communication security for a dynamically changing group of a plurality of mobile communication terminals in a mobile phone or the like can be secured without using a group key.

[0039]

As described above, according to the present invention, the dynamic secure grouping communication system divides a message to be transmitted to each receiving terminal of a group into transmission units, and divides the transmission content for each transmission unit using a common encryption key. Encrypt the common encryption key with the encryption key of the public encryption method of each receiving terminal, and combine the encrypted message of one transmission unit and the common encryption key encrypted with the encryption key of each receiver in the group. Since the configuration is such that broadcast transmission is performed, the group key is not required, and only the decryption key of the public encryption key is kept secret, so that communication security for a group of a plurality of dynamically changing mobile communication terminals is improved. Is obtained.

[Brief description of the drawings]

FIG. 1 is a diagram showing the concept of a mobile communication dynamic secure grouping communication system according to a first embodiment of the present invention;

FIG. 2 is a diagram showing a state of joining and leaving a terminal according to the first embodiment of the present invention;

FIG. 3 is a diagram showing states of joining and leaving a terminal according to the first embodiment of the present invention;

FIG. 4 is a diagram showing allocation of a public key encryption key and a decryption key when a transmitting terminal A sends a message to receiving terminals B and C in the first embodiment of the present invention;

FIG. 5 is a flowchart showing a procedure of encryption and decryption according to the first embodiment of the present invention;

FIG. 6 is a diagram showing a transmission signal format according to the first embodiment of the present invention;

FIG. 7 is a diagram showing a configuration of a mobile communication dynamic secure grouping communication system according to a second embodiment of the present invention;

FIG. 8 is a flow chart showing a signal flow between respective components according to the second embodiment of the present invention;

FIG. 9 is a diagram showing a transmission signal format and a reception signal format according to the second embodiment of the present invention;

FIG. 10 is a diagram showing a conventional group communication method.

[Explanation of symbols]

 1 control station 2 mobile terminal proxy station 3 radio base station 4 terminal

────────────────────────────────────────────────── ───

[Procedure amendment]

[Submission date] April 13, 1999

[Procedure amendment 1]

[Document name to be amended] Statement

[Correction target item name] Full text

[Correction method] Change

[Correction contents]

[Document Name] Statement

[Title of the Invention] Mobile communication dynamic secure grouping communication system

[Claims]

3. A radio base station connected to the communication terminal by radio, a mobile terminal proxy station for temporarily storing an encrypted message unit sent to the communication terminal and a common encryption key encrypted with the individual encryption key. 2. The mobile communication dynamic according to claim 1, further comprising a control station connected to said radio base station and said mobile terminal proxy station, said control station controlling said radio base station, said communication terminal and said mobile terminal proxy station. Secure group communication method.

4. A means for generating a common encryption key, means for dividing a transmission message into message units of a predetermined length,
Means for encrypting with the common encryption key for each message unit, means for encrypting the common encryption key with an individual encryption key corresponding to the destination communication terminal , and forming a group for each transmission
Means for designating a destination terminal to be encrypted and encrypting the common encryption key with an individual encryption key corresponding to the destination communication terminal, and a set of one encrypted message unit and a plurality of encrypted common encryption keys. Means for performing broadcast communication to a group consisting of a plurality of communication terminals; means for decoding a received encrypted common encryption key to decode the encrypted message unit ;
A common encryption key is sent for each encrypted message
Update means, and a plurality of communication terminals
By specifying the destination terminal and sending and receiving each other,
A mobile wireless terminal characterized by forming a loop.

5. The mobile radio terminal according to claim 4, further comprising an encryption folder for storing the received message after encrypting the received message with an encryption key unique to the terminal.

DETAILED DESCRIPTION OF THE INVENTION

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to a mobile communication dynamic secure group communication system, and more particularly to a dynamic secure grouping communication system for securing communication security for a plurality of dynamically changing groups of mobile communication terminals by cryptography.

[0002]

2. Description of the Related Art Conventionally, when group communication is performed using a mobile communication terminal, the secrecy of communication has been secured using a group encryption key. As shown in FIG. 10, when there are four terminals A, B, C, and D that perform encrypted communication, each group configuration has a common key. In the case of FIG. 10, except for one-to-one communication, the group configuration is ABC, BCD, C
There were four types, DA and ABCD, and each group configuration had a common key. That is, in the group configuration of ABC, the terminals A, B, and C each have the key K _ABC as a common key, and in the group configuration of BCD, the terminals B, C, and D each have the key K _BCD as a common key.
The terminal A manages three group keys K _ABC , K _CDA and K _ABCD . Terminals B, C, and D also manage three group keys. Further, when there are five terminals, there are 11 group keys, and each terminal must manage eight keys.

[0003]

As described above, when the number of terminals constituting a group increases, the number of group keys increases much more sharply than the number of constituent terminals. Then, it is necessary to manage so that this many keys do not leak to groups other than the groups constituting the group. Since there are a plurality of terminals having the same key, if the secret of the key is leaked from any one terminal, all terminals in the group are affected. Therefore, key management is more important than one-to-one communication. If a common encryption key is used, there is a risk that the key will be stolen during the delivery, so care must be taken in the delivery of the key.

In addition, when a terminal newly joins a group, a terminal leaves a group, or a terminal that has once left the group joins the group again, as in the case where a terminal has left the group again. When it changes from moment to moment, there is a problem of how to manage keys. That is, when a terminal is newly added to the group, the key must be distributed to the terminal. Also, when a terminal is disconnected, all keys related to the terminal must be discarded. When the missing terminal is added to the group again, there is a problem such as whether to use the key used in the past or to newly create and distribute the key. Since this is performed every moment, there is a problem that the key cannot be changed quickly with the conventional fixedly managed key.

SUMMARY OF THE INVENTION It is an object of the present invention to solve the above-mentioned problem and to realize a dynamic secure grouping communication system for securing communication security for a plurality of dynamically changing groups of mobile communication terminals by encryption.

[0006]

In order to solve the above-mentioned problems, according to the present invention, a dynamic secure grouping communication system divides a message to be transmitted to each receiving terminal of a group into transmission units, and The transmission contents are encrypted with the common encryption key, the common encryption key is encrypted with the encryption key of the public encryption method of each receiving terminal, and the encrypted message of one transmission unit and the encryption key of each recipient of the group are encrypted. The configuration is such that a common encryption key is grouped and broadcasted.

[0007] With this configuration, communication security for a plurality of dynamically changing groups of mobile communication terminals is ensured by a common encryption key different for each transmission unit and a public encryption key corresponding to the terminal. be able to.

[0008]

BEST MODE FOR CARRYING OUT THE INVENTION
In the mobile communication dynamic secure grouping communication method including a plurality of communication terminals, each communication terminal is a unit that divides a transmission message into message units of a predetermined length, and a unit that encrypts each message unit with a common encryption key, Specify the destination terminals that make up the group for each transmission.
Means for encrypting at the destination communication terminal corresponding individual encryption key for the common encryption key by a constant, and a plurality of common key encrypted with said individual encryption key and one encrypted message units to the set Means for performing broadcast communication to a group consisting of a plurality of communication terminals by using a common encryption key as one encrypted message.
And means for updating each transmission of di- units, a plurality of through
The receiving terminal specifies the destination terminal for each transmission and sends and receives
This is a mobile communication dynamic secure grouping communication method in which communication is performed to form a group , and a common encryption key is encrypted with an individual encryption key corresponding to each communication terminal in the group to identify and communicate with the communication terminals in the group. And has the effect of making decryption difficult.

[0009] The invention described in claim 2 of the present invention is claim 1.
In the mobile communication dynamic secure group communication system described above, a public key of a public key system is used as the individual encryption key, and the distribution of the individual encryption key is not required.

The third aspect of the present invention is the first aspect of the present invention.
In the mobile communication dynamic secure group communication system described in the above, a radio base station wirelessly connected to the communication terminal, an encrypted message unit sent to the communication terminal, and a common encryption key encrypted with the individual encryption key are temporarily stored. A mobile terminal proxy station, and a control station that is connected to the radio base station and the mobile terminal proxy station and controls the radio base station, the communication terminal, and the mobile terminal proxy station, This has the effect of recovering a temporary reception error by the mobile terminal proxy station.

According to a fourth aspect of the present invention, there is provided means for generating a common encryption key, means for dividing a transmission message into message units of a predetermined length, and encrypting the transmission message with the common encryption key for each message unit. And a group for each transmission.
Means for designating a destination terminal constituting a group and encrypting the common encryption key with an individual encryption key corresponding to the destination communication terminal; one encrypted message unit and a plurality of encrypted common encryption keys; and means for broadcasting to a group comprising a plurality of communication terminals in the set and means for decrypting the encrypted message unit decrypts the common key encrypted with the received the common encryption key 1 One encrypted message unit
Updating means for each transmission of a plurality of communication terminals,
Send and receive each other by specifying the destination terminal for each transmission
A mobile wireless terminal that forms a group by encrypting a common encryption key with an individual encryption key corresponding to each communication terminal in the group, thereby identifying the communication terminal of the group at the transmitting terminal and keeping the group communication secret. And the function of making decryption difficult.

The invention according to claim 5 of the present invention is the invention according to claim 4.
The mobile wireless terminal described above has an encryption folder for storing a received message after encrypting the received message with an encryption key unique to the terminal, and has an effect of securing the secret of the received message stored in the terminal.

Hereinafter, an embodiment of the present invention will be described with reference to FIG.
This will be described in detail with reference to FIGS.

(Embodiment 1) In a first embodiment of the present invention, a message is divided into transmission units, encrypted with a different common encryption key for each transmission unit, and the common encryption key is made public for each receiving terminal. This is a mobile communication dynamic secure grouping communication method in which a message in a transmission unit encrypted by an encryption key and a plurality of encrypted common encryption keys are paired and broadcast to a receiving terminal.

FIG. 1 is a diagram showing a concept of a mobile communication dynamic secure grouping communication system according to a first embodiment of the present invention. In FIG. 1, A, B, and C are communication terminals, and A, B, and C form a group. FIG.
FIG. 3 is a diagram illustrating an example of joining and leaving a communication terminal in the mobile communication dynamic secure grouping communication method according to the first embodiment. In FIG. 2, A, B, C, and D are communication terminals, D is a terminal that has joined the group, and B is a terminal that has left. FIG. 3 is a diagram collectively showing the joining and leaving of the terminal shown in FIG.

[0016] Even in a group communication in which a group is formed by a large number of communication terminals and a communication is performed in a short time, a group is formed by one transmission terminal and a plurality of reception terminals. Therefore, the message of the group communication is encrypted with a common encryption key for each transmission unit, the common encryption key is encrypted with the public encryption key of each receiving terminal of the group,
By transmitting the encrypted transmission message to the receiving terminal together with the receiving terminal, it is possible to specify terminals forming a group and perform secret group communication.

As an example, consider the smallest group where there are three terminals. FIG. 1A shows a state in which terminals A, B, and C form a group and exchange messages and signals with each other. By the way, if communication between terminals is divided into short time units, broadcast communication between the transmitting terminal A and the receiving terminals B and C is performed as shown in FIG. Here, the arrow indicates the transmission direction of the message, the origin of the arrow is the transmitting terminal, and the end of the arrow is the receiving terminal. At the next certain time, as shown in FIG. 1C, the broadcast communication is performed between the transmitting terminal B and the receiving terminals A and C. As shown in FIG. 1D, when C is a transmitting terminal, A and B are receiving terminals. In this way,
Group communication among A, B, and C is performed. Any one
When one of the terminals is transmitting, the others are in a receiving state. In other words, even in the case of group communication, the configuration is one transmission terminal and a plurality of reception terminals.

FIG. 2A shows that the terminal A has terminals B and C,
It is a figure showing the case where a message is sent to new terminal D.
FIG. 2B shows a state in which a new terminal D sends a message to terminals A, B, and C belonging to an existing group. FIG. 2C shows a case where the terminal A does not send a message to B in the group configuration of A, B, C, and D. FIG. 2D shows a case where C does not send a message to B. Is the case. At the time of FIG. 2C, the terminal B is considered to have left the group. This may be the case where the B terminal has left itself, or the case where A and C have intentionally left B. When these states are viewed over a long period of time, they are as shown in FIG. There are terminals A, B, C, and D, and B leaves the group, or terminal D joins the group. This group is a dynamic group in which the terminals that make up the group change every moment, and the present invention is directed to the broadcast performed in such a dynamic group. In this way, a dynamic group communication is taken into consideration, and a group communication method is considered focusing on the transmitting terminal by viewing the group constituting terminals in terms of one transmitting terminal and a plurality of receiving terminals.

Hereinafter, a method of cipher communication centering on the transmitting terminal will be described with reference to FIGS. 4 and 5. As shown in FIG. 4, when the transmitting terminal A sends a message to the receiving terminals B and C, the terminals A, B, and C are assigned a public key encryption key and a decryption key, respectively. As the public encryption key, a public key represented by the RSA encryption is used.
The encryption key of the public key does not need to be kept secret, and is disclosed where it is needed. The decryption key is the terminal A,
B and C are keys used when decrypting the encrypted message, and are each kept secret. Since the decryption key is not calculated at all from the encryption key, a message encrypted with the encryption key cannot be decrypted without knowing the decryption key. Terminal B is assigned Be as an encryption key and Bd as a decryption key. Terminals C and A are assigned (Ce, C
d) and (Ae, Ad) are assigned. The key or message described in the present invention is a sequence of encoded digital signals of “0” and “1”.

FIG. 5 shows a procedure for transmitting a message to terminal B and terminal C when terminal A becomes a transmitting terminal. The transmitting terminal A receives the encryption keys Be and Ce of the public keys of the receiving terminals B and C.
Is obtained in advance via a communication line or by another method. These keys are public and do not need to be kept secret.

Next, the transmitting terminal A creates a message M to be transmitted. The length of the message M may be equal to or less than the maximum length of the message unit. When a message having a length exceeding the maximum length of a message unit is sent, one message M is divided into predetermined message units. If there is some restriction and the length of the message M is fixed, one message M is obtained by dividing a long message into predetermined message units. If the message is shorter than the message unit, the remainder is padded with a random number or the like to make the message M of a predetermined length.

Next, a common encryption key Ck is generated. This common encryption key is different from the public key, and the encryption key and the decryption key are common. As the common encryption key, a different key is generated and used every time a message is transmitted. This key must be kept secret until transmission and reception are complete. In general, the public encryption key has a long bit length and is complicated to calculate, so that the processing takes time. On the other hand, the common encryption key has a short bit length and does not take much time to process. The above three steps may be performed in any order.

When these preparations are completed, first, the message M is encrypted with the common encryption key Ck to obtain M '. It does not take long to convert the message to M 'with the common encryption key Ck. Next, the common encryption key Ck is used as the encryption key Ae of the receiving terminal,
Encrypt with Ce. Since the common encryption key is short, the encryption with the public encryption key does not require much time. In this way,
The transmitting terminal A attaches the common encryption key Ck ′ encrypted with the encryption key of the public encryption key to the message M ′ encrypted with the common encryption key Ck, and sends the message M ′ to the receiving terminals B and C. FIG. 6 shows the format of this transmission signal. They are not decrypted on the way.

Upon receiving the signal transmitted by the transmitting terminal A, the receiving terminals B and C first decrypt the encrypted common encryption key Ck 'with the decryption key of the public encryption key. B for terminal B
At d, Ck 'is decoded at Ce for terminal C. Using the decrypted common encryption key Ck, the message M ′ encrypted with the common encryption key is decrypted to obtain M. The decrypted message M is immediately stored in an encrypted file provided in the receiving terminal. The encrypted file is a file provided as software in the memory of the receiving terminal, and is a file encrypted with a common key or a public encryption key unique to the terminal. The common encryption key is different from the key used for transmission and reception, but the public encryption key may be the same as the decryption key. When the message is stored in the encrypted file, the common encryption key used for transmission and reception is discarded. The common encryption key is updated for each message sent at one time, and the old key is discarded.

The transmission terminal A and the reception terminals B and C have been described above. However, the same applies to a case where the terminals B and C are transmission terminals and C or A or A and B are reception terminals. In this way, the terminals A, B, and C become transmission terminals and reception terminals with a time lag, and perform communication by mutually transmitting and receiving an encrypted message and an encrypted key. When a terminal that has joined the group leaves the group, the transmitting terminal deletes the encryption key of the lost terminal's public key so that the message is not sent to the terminal that has left the group. When a new terminal joins the group, the transmitting terminal adds the encryption key of the public key of the newly added terminal and sends a message. As described above, the terminal of the group is determined by whether the transmitting terminal adds the encryption key of the public key of the other party to which the message is sent. Since there is no group key common to the groups constituting the group, the groups can be freely and quickly organized.

Since the missing terminal cannot decrypt the common encryption key, it cannot decrypt the message. Since the common encryption key changes for each transmission unit, it cannot be decrypted with the previous common encryption key. The same is true for a terminal that is not in a group, and it is usually impossible to obtain a common encryption key even if the communication is intercepted, because it is as difficult as breaking RSA encryption. Also, it is not possible to intercept communication of many messages and estimate a common encryption key from statistics or the like because the common encryption key is different for each transmission.

As described above, according to the first embodiment of the present invention, the mobile communication dynamic secure grouping communication system divides a message into transmission units, encrypts each message with a common encryption key for each transmission unit, and encrypts the common encryption key. Since it is configured to encrypt with the public encryption key of each receiving terminal, and to broadcast the message to the receiving terminal by combining the encrypted message of the transmission unit and a plurality of encrypted common encryption keys, a plurality of dynamically changing Of the mobile communication terminal group can be secured by encryption.

(Embodiment 2) In a second embodiment of the present invention, a message is divided into transmission units, encrypted with a common encryption key for each transmission unit, and the common encryption key is publicly encrypted for each receiving terminal. The message is encrypted with the encryption key, the encrypted transmission unit message and a plurality of encrypted common encryption keys are paired and broadcast, and the message is secretly transmitted to the group of receiving terminals via the wireless base station and the control station. This is a mobile communication dynamic secure grouping communication method for transmitting to a mobile communication.

FIG. 7 is a configuration diagram of a mobile communication dynamic secure grouping communication system according to the second embodiment of the present invention. In FIG. 7, a control station 1 is a station that manages and controls the mobile terminal proxy station 2 and the radio base station 3. The mobile terminal proxy station 2 is a station that temporarily stores the message of the terminal 4. The wireless base station 3 is a station that relays a message from the terminal 4 to another wireless base station via the base station 1.

FIG. 8 is a diagram showing a signal flow over time in the mobile communication dynamic secure grouping communication system according to the second embodiment. In FIG. 8, the vertical axis is an axis indicating a time flow from the top to the bottom, and each vertical line indicates a proxy station, a control station terminal A, a terminal B, and a terminal C, respectively. The arrow drawn diagonally indicates the flow of the signal, the starting point of the arrow is the transmitting end, and the ending point (tip) of the arrow is the reaching point of the signal. The part indicated by (1) in FIG. 8 is a state during normal operation, and the part indicated by (2) in FIG. 8 retransmits the message temporarily received by the proxy station without receiving a response from the terminal B, This indicates a state where the data has been normally received and completed.

FIG. 9 is a diagram showing a format of a transmission signal transmitted from a transmission terminal in the mobile communication dynamic secure grouping communication system according to the second embodiment. In FIG. 9, Ckb 'and Ckc' are common keys encrypted with a public key, and M 'is a message encrypted with a common key.

Hereinafter, referring to FIG. 7, FIG. 8 and FIG.
A communication method in the mobile communication dynamic secure grouping communication method according to the second embodiment of the present invention will be described. Now, it is assumed that terminals A, B, and C shown in FIG. 7 constitute a group. As shown in FIG. 8, when terminal A sends a message to terminals B and C, terminal A
To request a public key. The request from the terminal A is sent to the terminals B and C by the radio base station 3 via the control station 1 that controls the radio base station 3. Terminal B that received the call,
C sends the public key to terminal A. The terminal A sends the encrypted message and the common key as one packet to the terminals B and C, and disconnects the line. Terminals B and C are terminals A
Decrypts the encrypted common key sent from the server using the respective decryption keys, and decrypts the message using the decrypted common key. When the message can be received, terminal B,
C sends back to the control station 1 the fact that the reception was successful. When the reception is completed, the control station 1 disconnects the line and ends the communication. Here, the mobile terminal proxy station 2 temporarily stores the message of the terminal 4, and when the terminal A sends a message, this message is also transmitted to the mobile terminal proxy station 2 via the control station 1. Is stored. This stored content is deleted when the receiving responses of the receiving terminals are completed. If for some reason, for example, the radio link condition is worse,
If there is no response within a fixed time (predetermined message arrival time limit), the mobile terminal proxy station 2 resends the message to a terminal that has not responded.

The case where terminal A transmits data has been described above, but the same operation is performed when terminals B and C transmit data. Thus, each terminal is the transmitting terminal,
Group communication is performed as a receiving terminal.

Although the description has been made on the premise that the encryption key of the public key is made public, another group can be formed by making the encryption key of the public key open to only a limited group. It goes without saying that the group configuration of the present invention is effective within a limited group.

FIG. 9A shows a transmission signal format sent from a transmission terminal as a set of a common key encrypted with a public key and a message encrypted with the common key. The transmission signal includes common keys Ckb ′ and Ckc ′ to the receiving terminals B and C encrypted with the public keys, and a message encrypted with the common key Ck. This signal is transmitted from the transmitting terminal A to the wireless base station 3 via radio waves. The signal received by the radio base station 3 is demodulated and sent to the control station 1. The control station 1 converts the signal of FIG. 9A transmitted from the transmitting terminal A into the signal format for the receiving terminals B and C shown in FIG. 9B. A common key Ckb 'and a message M' are sent to the receiving terminal B, and Ckc 'and M' are sent to the receiving terminal C in a signal format. This signal is modulated by the radio base station 3 into radio waves having different frequencies, and becomes radio waves to the terminal B,
Sent to terminal C. Then, the signals are received, demodulated and decoded by the terminals B and C, and the message of the terminal A is transmitted to the terminals B and C.
C accepts. When the number of receiving terminals of the group increases, the encrypted common key of the receiving terminal is added to the positions of Ckb 'and Ckc' in the signal format. Since the encrypted M 'is common, it does not increase.

Here, the case of a system having a channel configuration such as an automobile cellular phone in which the transmitting terminal and each receiving terminal use different channel frequencies has been described, but a system such as a so-called commercial radio system using the same channel is used. In this case, the common key and the message encrypted by the control station are combined, and it is not necessary to convert to a signal format for each terminal, and the signal transmitted from the transmitting terminal is transmitted to the receiving terminal as it is. This reduces the conversion process. Although a signal can be sent regardless of whether the system has an individual channel configuration for each terminal or no conversion, a signal format conversion is performed because an unnecessary signal is sent and the line use time becomes long.

As described above, according to the second embodiment of the present invention, the mobile communication dynamic secure grouping communication system divides a message into transmission units, encrypts each message with a common encryption key for each transmission unit, and encrypts the common encryption key. Encrypted with a public encryption key for each receiving terminal, a set of encrypted transmission unit messages and a plurality of encrypted common encryption keys are transmitted as a set, and broadcasted. Since the message is secretly sent to the receiving terminal,
Communication security for a dynamically changing group of a plurality of mobile communication terminals such as mobile phones can be ensured without using a group key.

[0038]

As described above, according to the present invention, the dynamic secure grouping communication system divides a message to be transmitted to each receiving terminal of a group into transmission units, and divides the transmission content for each transmission unit using a common encryption key. Specify the destination terminals that are encrypted and form a group for each transmission.
The common encryption key is encrypted with the encryption key of the public encryption system of each receiving terminal, and the encrypted one message per transmission unit and the common encryption key encrypted with the encryption key of each receiver of the group are paired. Broadcast and share the common encryption key in one encrypted message
Configuration that updates each time transmission is performed, and multiple communication terminals
Send and receive each other by specifying the destination terminal for each transmission
A group key is no longer needed, and only the private key of the public encryption key is kept secret, ensuring communication security for dynamically changing groups of multiple mobile communication terminals. The effect that it can be obtained is obtained.

[Brief description of the drawings]

FIG. 1 is a diagram showing a concept of a mobile communication dynamic secure grouping communication system according to a first embodiment of the present invention;

FIG. 2 is a diagram showing a state of joining and leaving a terminal according to Embodiment 1 of the present invention;

FIG. 3 is a diagram showing states of joining and leaving a terminal according to the first embodiment of the present invention;

FIG. 4 is a diagram showing allocation of a public key encryption key and a decryption key when a transmitting terminal A sends a message to receiving terminals B and C in the first embodiment of the present invention;

FIG. 5 is a flowchart showing a procedure of encryption and decryption according to the first embodiment of the present invention;

FIG. 6 is a diagram showing a transmission signal format according to the first embodiment of the present invention;

FIG. 7 is a diagram showing a configuration of a mobile communication dynamic secure grouping communication system according to a second embodiment of the present invention;

FIG. 8 is a flowchart showing a signal flow between components in the second embodiment of the present invention;

FIG. 9 is a diagram showing a transmission signal format and a reception signal format according to the second embodiment of the present invention;

FIG. 10 is a diagram showing a conventional group communication method.

[Description of Signs] 1 control station 2 mobile terminal proxy station 3 radio base station 4 terminal

Claims (6)

[Claims] 1. A mobile communication dynamic secure grouping communication system comprising a plurality of communication terminals, wherein each communication terminal divides a transmission message into message units of a predetermined length, and encrypts each message unit with a common encryption key. Means for encrypting the common encryption key with an individual encryption key corresponding to the destination communication terminal, and one encrypted message unit and a plurality of common encryption keys encrypted with the individual encryption key. Means for performing a broadcast communication to a group consisting of a plurality of communication terminals as a set, and a mobile communication dynamic secure grouping communication system. 2. The mobile communication dynamic secure group communication system according to claim 1, wherein a public key of a public key system is used as said individual encryption key. 3. The method according to claim 1, wherein the common encryption key is updated every transmission of one encrypted message unit.
The mobile communication dynamic secure group communication system described in the above. 4. A radio base station wirelessly connected to the communication terminal, a mobile terminal proxy station for temporarily storing an encrypted message unit sent to the communication terminal and a common encryption key encrypted with the individual encryption key. 2. The mobile communication dynamic according to claim 1, further comprising a control station connected to said radio base station and said mobile terminal proxy station, said control station controlling said radio base station, said communication terminal and said mobile terminal proxy station. Secure group communication method. 5. A means for generating a common encryption key, means for dividing a transmission message into message units of a predetermined length,
Means for encrypting each message unit with the common encryption key, means for encrypting the common encryption key with an individual encryption key corresponding to the destination communication terminal, and one encrypted message unit and a plurality of encrypted Means for performing broadcasting to a group consisting of a plurality of communication terminals in combination with a common encryption key, and means for decoding a received encrypted common encryption key to decode the encrypted message unit. A mobile wireless terminal characterized by the above-mentioned. 6. The mobile radio terminal according to claim 5, further comprising an encryption folder for encrypting the received message with an encryption key unique to the terminal and storing the encrypted message.