JPS5944145A - Cipher communication system - Google Patents
Cipher communication systemInfo
- Publication number
- JPS5944145A JPS5944145A JP57154945A JP15494582A JPS5944145A JP S5944145 A JPS5944145 A JP S5944145A JP 57154945 A JP57154945 A JP 57154945A JP 15494582 A JP15494582 A JP 15494582A JP S5944145 A JPS5944145 A JP S5944145A
- Authority
- JP
- Japan
- Prior art keywords
- terminal
- exchange
- public key
- key
- terminals
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04K—SECRET COMMUNICATION; JAMMING OF COMMUNICATION
- H04K1/00—Secret communication
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
Description
【発明の詳細な説明】
(1)ざ・1、明の技術分野
本発明は交換シ艮テムに係シ、端末装置及び交換機に暗
号装置を具備し、通信内容を秘匿する交換方式に関する
。DETAILED DESCRIPTION OF THE INVENTION (1) The present invention relates to an exchange system, and more particularly, to an exchange system in which a terminal device and an exchange are equipped with an encryption device to conceal communication contents.
(2)往来技術と問題点
従来の暗号システムは1対1通信あるいは伝送路上の信
号の暗号化などで、交換(iすまで含めた一体化された
システムはなかった。従って今後利用頻度が増す交換機
システムを介して秘匿情報をデータ通信する際には、送
出データを独自に暗号化する等必要となり、通信処理の
サービス性も悪いものとなる。(2) Conventional technologies and problems Conventional encryption systems involve one-to-one communication or encryption of signals on a transmission path, and there was no integrated system that included exchange (i).Therefore, the frequency of use will increase in the future. When transmitting confidential information via an exchange system, it is necessary to uniquely encrypt the transmitted data, and the serviceability of communication processing is also poor.
(3)発明の目的
本発明の目的は、交換機に暗号に対する機能を付加する
ことによシ、公開鍵を用いたサービス性の良い暗号7(
n信システムを提供することである。(3) Purpose of the Invention The purpose of the present invention is to add a function for cryptography to an exchange, thereby providing cryptography 7 (7) with good serviceability using a public key.
The aim is to provide a communication system.
(4)発明の構成
不発[l11は、公rj′rJ鍵による暗号システムの
公開鍵の配送に対し、交換機で接続相手を認識した段階
で相互の公開鍵を送出することによシ、端末間の通信を
開始する以前に暗号装置に一駆動するようにし、又、公
開鍵を交換機が91理することによシ、端末での鍵の更
新がいつでも行なえるようにし1、通信の秘匿性を高め
たものであり、暗号・復号化装置を具備した端末と、そ
れらを交換機F・′(する交換様からなるシステムにお
いて、各端末の公開鍵を3J[!機内に持ち、端末から
の接続要求があると、端末から指定された接続相手の公
開鍵を接続要求を出した端末に送出するとともに接続相
手に対し、着信を通知し接続要求を出しだ端末の公開鍵
を送出することによシ、暗号化された通信を行なうこと
を特徴とし、さらに、端末のRは、端末の電源投入時に
端末内に具備した乱数発生装置により生成し、交換機に
公開鍵を311!知することにより、鍵の更新を行うこ
とを特徴としている。(4) Configuration of the invention [l11] In contrast to the distribution of the public key of a cryptographic system using the public rj'rJ key, when the exchange recognizes the other party, the mutual public key is transmitted between terminals. The encryption device is activated before starting communication, and the public key is handled by the exchange, so that the key can be updated at any time at the terminal1, ensuring the confidentiality of communication. In a system consisting of a terminal equipped with an encryption/decryption device and an exchanger that uses these devices, the public key of each terminal is kept on board the 3J [! If there is, the terminal sends the public key of the specified connection partner to the terminal that made the connection request, and also notifies the connection partner of the incoming call and sends the public key of the terminal that made the connection request. , is characterized in that it performs encrypted communication, and furthermore, when the power of the terminal is turned on, R of the terminal is generated by a random number generator installed in the terminal, and by informing the exchange of the public key 311! It is characterized by updating.
(5)発明の実加i例 以下本発明を実施例により肝細に説明する。(5) Examples of practical application of the invention The present invention will be explained in detail below with reference to Examples.
第1図は本発明の適用対象となるダJ皐7ステム全体の
概略枯成である。図において、1(A、 B。FIG. 1 is a schematic diagram of the entire DaJ-7 stem to which the present invention is applied. In the figure, 1 (A, B.
C,Dルオ端末、3は又抑振、4は焚換磯間の通信回線
、2は端末と又換V、間の通信回線である。C and D Luo terminals, 3 is a damper, 4 is a communication line between the refueling islands, and 2 is a communication line between the terminals and the converter V.
かかる構成に・ト・いて、本発明の暗号通信を行なうた
めの端末側及び交換機側の、構成を第2図および第3図
に示す。In this configuration, the configurations of the terminal side and the exchange side for performing the encrypted communication of the present invention are shown in FIGS. 2 and 3.
第2図の端末の構成(主として暗号に係るイ1“η成)
において、10は電源、11は11L源投入検出回路、
12は乱数発生回路、13け内部鍵作成回路、14は制
御装置、15は記憶装置、16は鍵作成回路、17は暗
号化印号化装置、18.19は制御装置側と入力4’−
’: fj:j % 出力装置側との切替回路、2o。Configuration of the terminal in Figure 2 (mainly related to encryption)
, 10 is a power supply, 11 is an 11L power-on detection circuit,
12 is a random number generation circuit, 13-digit internal key generation circuit, 14 is a control device, 15 is a storage device, 16 is a key generation circuit, 17 is an encryption/sealing device, 18.19 is a control device side and an input 4'-
': fj:j % Switching circuit with output device side, 2o.
21は交換機とのインタフェース回路、226J、入力
装置ij¥、23は出力装置である。21 is an interface circuit with the exchange, 226J is an input device ij\, and 23 is an output device.
第3図の交換機の構成において、30.31はpIM末
あるいは他父換機とのインタフェース回路、32.33
は交換機内の制御数W1′と通話(通信)路スイッチと
の(υ替え接続を行なう切替回路、34は制御装置、3
5は制御用記憶装置、36は番号記憶装置、37は状態
記憶装置、38i:i回線間の接殺を行なう通話(通信
)路スイッチ、39はスイッチ制御装置である。In the configuration of the exchange shown in Figure 3, 30.31 is an interface circuit with the pIM terminal or other exchange, and 32.33
34 is a control device;
5 is a control storage device, 36 is a number storage device, 37 is a state storage device, 38i is a call (communication) path switch for performing contact/kill between i lines, and 39 is a switch control device.
以上の構成のもと、端末1で電むが投入されると、電源
10の電圧を検出し、た投入検出回路11により乱数に
発生口v、:s 12と制御数P114に通知される。With the above configuration, when power is turned on at the terminal 1, the voltage of the power supply 10 is detected, and the power-on detection circuit 11 notifies the generation port v, :s 12 and the control number P114 as random numbers.
制御装置■4は記憶装置15に記憶されている制御シー
ケンスに基づいて、乱れによる内部a4作成回路13で
作られた公開鍵を受けとる。その後制御装置U:反換機
に対し7、公開鍵送出をインタフェース回路20.31
を経由して交換機の制御数@ 34にJl知する。交換
機fill+では制御装置34tよ、Ilj御記1b装
置35に記憶さjtでいる制御/−ケンスに基づいて、
インタフェース回路30.21を介して公開鍵送出可信
号を端末側4+41装b−14に通知し7.14は公開
鍵をインタフェース回路20゜31を介して34に通知
する。34は止号記憶装置36内の6H;H末番号に対
応した公開6よ記憶領域に公U1コ鍵を記憶する。こ1
Lらの処理を各端末に対して行なう。The control device 4 receives the public key generated by the internal A4 generation circuit 13 based on the control sequence stored in the storage device 15. After that, control device U: interface circuit 20.31 for transmitting the public key to the reversing machine.
Jl is notified to the control number @ 34 of the exchange via . In the switchboard fill+, the control device 34t performs the following operations based on the control/-sense stored in the device 35:
A public key sending permission signal is notified to the terminal side 4+41 device b-14 via the interface circuit 30.21, and 7.14 notifies the public key to 34 via the interface circuit 20.31. 34 stores the public U1 key in the public 6 storage area corresponding to the last number 6H in the permanent code storage device 36. This 1
The processing of L et al. is performed for each terminal.
いマ、端末へが端末Bとjξ;1信しようとすると、端
末Aは交換機に対し端末Bに対応する電話番号を通知す
る。交換機の制御装置34はインタフェース回152o
、31を介してきた電話番号を受け、状態記佑装u?3
7で電話番号に対応する状態を調べ、婢末Bが空いてい
Jl、ばr’jlj末Aに苅1し、立:、゛ル末Bの公
開崎を番号記憶装置36から読み出して送出するととも
にIr1Ai末Bに対し焙信の通知と端末Aの公開鍵の
送出を行ない、状態記憶装置の内實をliき替える。Now, when a terminal attempts to make a call to terminal B, terminal A notifies the exchange of the telephone number corresponding to terminal B. The controller 34 of the exchange is connected to the interface circuit 152o.
, I received the phone number from 31 and received the status information u? 3
In step 7, check the status corresponding to the telephone number, and if the end B is empty, enter the end A, and read the public address of the end B from the number storage device 36 and send it. At the same time, Ir1Ai notifies terminal B of the transfer and sends the public key of terminal A, and changes the contents of the state storage device.
端末Aは端末Bの公開鍵4・受信すると節1末A内の制
御数「4141−J内部針作成回j’ii 13からの
内1t1;鍵と端末Bの公開鍵を鍵作成16に部、シ鍵
作成16に(暗号 fp号の64を作成し17に渡す。When terminal A receives the public key 4 of terminal B, it copies the control number "4141-J internal needle creation cycle j'ii 13 from 13" in section 1 end A to key creation 16 and the public key of terminal B. , to the secret key creation 16 (create the cipher fp code 64 and pass it to 17).
端末Bも同様の処理を行ない17にr−を渡す。端末B
の扱者が九イにに刻し応答すると、?!tニオI3制御
装置14は応答信号を交換機に送出し、交換(湖制滴1
回路34は35に記憶されたシーケンスに従い、卵、1
末A、。Terminal B also performs the same process and passes r- to 17. Terminal B
When the handler responds by cutting it into nine pieces, ? ! The tnio I3 control device 14 sends a response signal to the exchange, and the exchange (lake control 1
According to the sequence stored in 35, circuit 34 selects eggs, 1
End A.
Bに通侶司信号を送出しスイッチ制御39にA。A transmitter signal is sent to B and the switch control 39 is sent to A.
Bを接続する指示を出しスイッチ38によりパス接続さ
れる。+i1.l末A、 Bは通仁;可信号を受ける
と接続のマージンタイムを取ってから暗号化復号化装f
f!f、 17にスタートラかけ、入力装置22からの
45号を暗号化して送出するとともに受けた信号を復号
化1.2出力装置23に渡す。An instruction is issued to connect B, and the switch 38 connects the path. +i1. Ends A and B are communication; when a valid signal is received, the encryption/decryption device takes a margin time for the connection.
f! A star traverse is applied to f, 17, and the 45 code from the input device 22 is encrypted and sent out, and the received signal is passed to the decryption 1.2 output device 23.
以上の処理に於て、端末A、 Rの扱者は、暗号化を
全く意識することなく通常の電話を同じ様に通信を行な
うことができる。In the above process, the operators of terminals A and R can communicate in the same way as normal telephone calls without being aware of encryption at all.
交換機を多重に経由する接続、例えばAと6間の通信に
於ても交換イ幾間の通信で公開8を配送することができ
るだめ同様の処理が可能である。Similar processing is possible even in a connection that passes through multiple exchanges, for example, communication between A and 6, since public 8 can be delivered through communication between several exchanges.
(6)発明の効果
本発明によれば端末間が通信状態に入る前に鍵の配送が
行なえ、寸だ、公開1(の更新が自由に打力えるため、
端末扱者は%(骨化を意識することなく通信を行なえ、
処理の簡素化とサービス性の向上が図られる。(6) Effects of the Invention According to the present invention, the key can be distributed before the terminals enter the communication state, and the public 1 can be updated freely.
Terminal operators can communicate without being aware of ossification,
This will simplify processing and improve serviceability.
第1図は交換機システムの4.′り成因、第2図は本イ
・\明の婦末構成図、第3図は本発明の支換機の構成図
である。
14.34:制御装置−112:乱U発生回路、13:
内部か11作成回路、1G=鍵作成回路、17:暗号化
1)コ骨化装僅、35:制御記憶装置、36二番号n己
’IN、!”: V’f。Figure 1 shows 4. of the exchange system. Fig. 2 is a diagram showing the basic configuration of the I/Ming machine, and Figure 3 is a diagram showing the configuration of the transfer machine of the present invention. 14.34: Control device-112: Disturbance U generation circuit, 13:
Internal 11 creation circuit, 1G = key creation circuit, 17: Encryption 1) Kossification system, 35: Control storage device, 36 2nd number n'IN,! ”: V'f.
Claims (2)
FA接続する交換機からなるシステムにおいて、各端末
の公開鍵を交換機内に持ち、端末からの接続要求がある
と、端末から指定された接iu1手の公開鍵を接続要求
を出した端末に送出するとともに接続相手に対し、着信
を通知しj〆続要求を出した端末の公開鍵を送出するこ
とによシ、暗号化された通信を行うことを特徴とする暗
号通信方式。(1) In a system consisting of terminals equipped with encryption/decryption devices and an exchange that connects them via text FA, the public key of each terminal is stored in the exchange, and when a connection request is received from the terminal, the public key is specified by the terminal. The connection is encrypted by sending the first public key to the terminal that made the connection request, notifying the other party of the incoming call, and sending the public key of the terminal that made the connection request. An encrypted communication method characterized by communication.
備した乱数発生装置によシ生成し、交換機に公開鍵を通
知することに上シ、鍵の更新を行うことを特徴とする特
許請求の範囲第1項記載の暗号通信方式。(2) The outside of the terminal is characterized in that when the power of the terminal is turned on, a public key is generated by a random number generator installed in the terminal, and the key is updated by notifying the exchange of the public key. An encrypted communication method according to claim 1.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| JP57154945A JPS5944145A (en) | 1982-09-06 | 1982-09-06 | Cipher communication system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| JP57154945A JPS5944145A (en) | 1982-09-06 | 1982-09-06 | Cipher communication system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| JPS5944145A true JPS5944145A (en) | 1984-03-12 |
Family
ID=15595355
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| JP57154945A Pending JPS5944145A (en) | 1982-09-06 | 1982-09-06 | Cipher communication system |
Country Status (1)
| Country | Link |
|---|---|
| JP (1) | JPS5944145A (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JPS61279966A (en) * | 1985-06-05 | 1986-12-10 | Hitachi Ltd | System for preventing erroneous connection of terminal equipment |
| JPH02134940A (en) * | 1988-11-16 | 1990-05-23 | Secom Co Ltd | Data encipherment adapter device, data decoding adapter device, and data communication system using them |
-
1982
- 1982-09-06 JP JP57154945A patent/JPS5944145A/en active Pending
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JPS61279966A (en) * | 1985-06-05 | 1986-12-10 | Hitachi Ltd | System for preventing erroneous connection of terminal equipment |
| JPH02134940A (en) * | 1988-11-16 | 1990-05-23 | Secom Co Ltd | Data encipherment adapter device, data decoding adapter device, and data communication system using them |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101558598B (en) | Combinational combiner cryptographic method | |
| CN101569165B (en) | Method and device for secure phone banking | |
| US4322576A (en) | Message format for secure communication over data links | |
| CA2062751C (en) | Key allocation in public communications systems taking account of security gradations | |
| JPH1155322A (en) | Cipher communication system | |
| JPH07298065A (en) | Communication equipment | |
| US5253293A (en) | Adaptive data ciphering/deciphering apparatuses and data communication system using these apparatuses | |
| JP2001103045A (en) | Storage device for backing up cryptographic key | |
| JPH11136234A (en) | User authentication system and user authentication method | |
| JPS5944145A (en) | Cipher communication system | |
| EP1360570A1 (en) | Encryption and decryption system for multiple node network | |
| US11146550B2 (en) | Communication line mutual authentication system in IP network | |
| CA1337997C (en) | Adaptive data ciphering/deciphering apparatuses and data communication system using these apparatuses | |
| WO1991012680A1 (en) | Apparatus and method for data communication | |
| CN109996230B (en) | Method for improving Bluetooth mesh network communication safety through MCU serial port communication confusion encryption | |
| JPH11239184A (en) | Switching hub | |
| JPH05122217A (en) | Ciphering communication method | |
| JPH07303104A (en) | Storage type communication system with ciphering function | |
| JPS62155644A (en) | Communication network | |
| JPH06112936A (en) | Ciphering communication system | |
| JPH02260841A (en) | Communication equipment | |
| JPS63146630A (en) | Open key exchange system between cryptographic equipment | |
| JPH0380752A (en) | Information exchange transmission system | |
| JPH01229539A (en) | Key sharing system | |
| KR100246535B1 (en) | Encrypton/crypt analysis circuit in digital trunk interface unit |