RU2579961C1 - System for complex protection of confidential information transmitted via correlation communication channels - Google Patents

Abstract

FIELD: information security.

SUBSTANCE: invention relates to information security. System for complex protection of data transmitted via correlation communication channels comprises: source at transmitting side and controlled transmitter telephone messages, receiver of broadcast programs, controlled correlation meters, controlled source of confidential data, generator of pseudorandom numbers and comparison element; at receiving side-receiver and recipient telephone messages, receiver of broadcast programs, controlled correlation meters, generator of pseudorandom numbers and controlled recipient confidential data; synchronisation unit; (n-1) of additional receivers of broadcast programs on transmitting and receiving sides; the controlled correlometers are made on (n+1) of data inputs, and n-receivers of broadcast programs are tuned in pairs on receiving and transmitting sides of correlation of the communication channel to receive same from n identical broadcast programs.

EFFECT: technical result consists in ensuring integrity of confidential data transmitted over formed with communication channel.

1 cl, 1 dwg

Description

The invention relates to the field of telecommunications and can be used in correlation (virtual) systems for transmitting and receiving binary discrete messages for the comprehensive protection of transmitted confidential information, while the complex of measures for protecting confidential information includes: reconnaissance security of the locations of the source and recipient of confidential data, imitation resistance, protection against intentional interference, cryptographic strength and high speed transmission of confidential data.

A correlation system for transmitting and receiving telegraph messages is known from the prior art, comprising on the transmitting side a broadcast program receiver, a correlometer, a comparison unit, sources of confidential telegraph and open telephone messages and an open telephone transmitter, and on the receiving side, the known correlation system for transmitting and receiving telegraph messages broadcast program receiver, open telephone receiver, correlometer, confidential telegraph shaper messages, the recipient of open telephone messages, as well as the known correlation system for transmitting and receiving telegraph messages contains a synchronization unit, an open telephone line, while broadcast program receivers are configured to receive the same program [patent SU 1830630, IPC H04L 9/00, 1989]. The outputs of the synchronization unit, which can be used as highly stable generators or equipment of the single time service, are connected to the control inputs of the correlometers, the source and recipient of confidential telegraph messages (data). Using a controlled correlometer, the statistical correlation between sound signals, an open telephone subscriber and a broadcast program is measured in each clock cycle of the synchronization unit. The tight correlation link is assigned the symbol “1”, and the weak correlation link is assigned the symbol “0” of the binary code of the correlation (virtual) data transmission channel. The result of this correlation assessment of the telephone and broadcast signals is compared in each clock cycle (correlation) with the transmitted pulses of the binary code of the confidential data using the comparison element. Any possible inconsistencies that arise are automatically eliminated by changing the parameters of the open telephone signal, for which the output of the comparison element is connected to the control input of the transmitter of the open telephone message. At the same time, controlled changes in the open telephone signal do not affect the quality of telephone communications. This is achieved by additively changing the phase shift of the telephone signal or by applying a high frequency correction signal.

The formed correlation channel for transmitting confidential data provides comprehensive protection of the transmitted information, which includes: reconnaissance protection of the locations of both the transmitter and the receiver of these confidential data, high simulation stability and protection from intentional interference, and also reduces the time of data transfer by increasing the number of data at the same time used correlation data transmission channels.

A disadvantage of the known correlation system for transmitting and receiving data is its low cryptographic strength, since the secret of transmitting confidential data over open communication channels is achieved only due to the uncertainty in the choice of correlated open message transmission channels and broadcast programs, the number of which is very limited.

Closest to the claimed invention, the technical solution as a prototype is a well-known system for comprehensive protection of information transmitted via correlation communication channels, which contains on the transmitting side a source and a controlled telephone message transmitter, a broadcast program receiver, a controlled correlometer for two information inputs, a controlled source of confidential data, a pseudo-random number generator and a comparison element, the inputs of which are connected to the corresponding outputs source of confidential data and a controlled correlometer for two information inputs, the output of the comparison element is connected to the control input of the telephone message transmitter, the output of which is connected to one information input of the controlled correlometer, the other information input of which is connected to the output of the broadcast program receiver, the output of the pseudo random number generator is connected to the control inputs of the correlometer to two information inputs and a source of confidential data, at the receiving side it contains a receiver and receiver of broadcast messages, a controlled correlometer for two information inputs, a pseudo-random number generator and a managed recipient of confidential data, the input of which is connected to the output of a controlled correlometer for two information inputs, one information input of which is connected to the output of a broadcast program receiver, the other the information input of which is connected to the output of the telephone message receiver, the output of the pseudo random number generator is connected to the control inputs an orrelometer for two information inputs and a recipient of confidential data, and also contains a synchronization unit and a telephone line installed between the output of a controlled telephone message transmitter and the input of a telephone message receiver, the outputs of the synchronization unit are connected to the control inputs of pseudo random number generators, while broadcast program receivers are tuned for receiving the same program [patent RU 106817, IPC G11B 9/00, H04L 9/00, 2011]. Using pseudo-random number generators, correlation time intervals (clocks) are randomly changed, which ensures guaranteed confidentiality of confidential data transmission using statistical analysis of two correlation communication channels (telephone channel and broadcast program) without using a physical communication line.

The disadvantage of the prototype is that when transmitting messages over the telephone channel and the broadcast program, random sound pauses are possible, in the intervals of which there is a violation of the integrity of the transmission of confidential data. This limited the transmission of confidential data to short messages, during which the likelihood of unwanted sound pauses in correlated messages was small.

An object of the invention is to increase the information security of the transfer of confidential data via a virtual (correlation, intangible) channel formed from open communication lines.

The technical result of the invention is that the information integrity of the transmitted long confidential data is increased over the generated correlation channel.

The essence of the invention lies in the fact that in addition to the well-known and general significant distinguishing features, which are characterized by the fact that the system for comprehensive protection of information transmitted through correlation communication channels contains on the transmitting side a source and a controlled telephone message transmitter, a broadcast program receiver, a controlled correlometer on two information inputs, a controlled source of confidential data, a pseudo-random number generator and a comparison element, the inputs of which are connected to the corresponding to the outputs of the controlled source of confidential data and the controlled correlometer to two information inputs, the output of the comparison element is connected to the control input of the telephone message transmitter, the output of which is connected to one information input of the controlled correlometer, the other information input of which is connected to the output of the broadcast program receiver, the output of the pseudo random number generator connected to the control inputs of the correlometer to two information inputs and a source of confidential data, at the reception the other side contains the receiver and receiver of telephone messages, the receiver of broadcast programs, a controlled correlometer for two information inputs, a pseudo-random number generator and a controlled receiver of confidential data, the input of which is connected to the output of a controlled correlometer for two information inputs, one information input of which is connected to the output of the broadcast receiver programs, another information input of which is connected to the output of the telephone receiver, the output of the pseudo random number generator is connected n with the control inputs of the correlometer for two information inputs and the recipient of confidential data, and also contains a synchronization unit and a telephone line installed between the output of the controlled telephone message transmitter and the input of the telephone message receiver, the outputs of the synchronization unit are connected to the control inputs of the pseudo random number generators, while broadcast program receivers are configured to receive the same program, the proposed system for the comprehensive protection of information transmitted over relational communication channels, contains on the transmitting and receiving sides along (n-1) additional receivers of broadcast programs, controlled correlometers are made on (n + 1) information inputs, n information inputs of which are connected to the outputs of the corresponding n broadcast program receivers, while the depth correlation is determined using a mathematical relationship.

The novelty of the invention lies in the fact that the system for comprehensive protection of information transmitted through correlation communication channels contains, on the transmitting and receiving sides along (n-1) additional receivers of broadcast programs, controlled correlometers are made on (n + 1) information inputs, n the information inputs of which are connected to the outputs of the respective n receivers of broadcast programs, while the depth of the correlation connection is determined using the relation

,

,

- среднее значение произведений телефонного информационного сигнала x₁ и сигналов n вещательных программ x_i;Where $$\overline{{\displaystyle \prod _{i=2}^{i-n+\mathrm{one}}{x}_{\mathrm{one}}{x}_i}}$$

- the average value of the products of the telephone information signal x ₁ and signals n of broadcast programs x _i ;

- произведение средних значений телефонного информационного сигнала х₁ и сигналов n вещательных программ x_i; $${\displaystyle \prod _{i=2}^{i=n+\mathrm{one}}\overline{x_{\mathrm{one}}}\cdot \overline{x_i}}$$

- the product of the average values of the telephone information signal x ₁ and signals n of broadcast programs x _i ;

- произведение среднеквадратичных отклонений телефонного информационного сигнала и сигналов n вещательных программ, что обеспечивает повышение информационной целостности передаваемых длинных конфиденциальных данных. $${\displaystyle \prod _{i=\mathrm{one}}^{i=n+\mathrm{one}}{\sigma }_i}$$

- the product of the standard deviations of the telephone information signal and the signals of n broadcast programs, which improves the information integrity of the transmitted long confidential data.

A functional diagram of the proposed system for the integrated protection of information transmitted via correlation communication channels is shown in the drawing, where it is indicated: 1 and 2 — blocks of n receivers of broadcast programs tuned in pairs for the same corresponding nth program; 3 and 4 - controlled correlometers on n + 1 information inputs on the transmitting and receiving sides of the correlation data transmission channel, respectively; 5 - source of telephone message; 6 - controllable telephone message transmitter; 7 - wire or telephone line; 8 - telephone message receiver; 9 - recipient of a telephone message; 10 — a managed source of sensitive data; 11 is a managed recipient of confidential data; 12 - a comparison element for two inputs; 13 and 14 - pseudo-random generator of binary symbols (numbers) on the transmitting and receiving sides of the correlation data transmission channel, respectively, while the duty cycle of the generated pulses of binary symbols is not equal to 50% (not equal to two); 15 - block synchronization.

In the initial position, the outputs of block 1 n of broadcast program receivers on the transmitting side and the outputs of block 2 n of broadcast program receivers on the receiving side of the correlation data channel are connected to n inputs of the corresponding controlled correlometers 3 and 4. The output of the telephone message source 5 is connected through series-connected a managed telephone message transmitter 6, a wired or radio telephone line 7 and a telephone message receiver 8 to the input of the telephone message recipient 9 and ervomu managed entry a correlation 4. Controlled confidential data source 10 is located on the transmission side data communication channel correlation. The input of the managed recipient of confidential data 11 is connected to the output of the controlled correlometer 4. The inputs of the comparison element 12 are connected to the outputs of the controlled correlometer 3 and the managed source of confidential data 10, and the output of the comparison element 12 is connected to the control input of the telephone message transmitter. The output of the pseudo-random binary symbol generator 13 is connected to the control inputs of the sensitive data source 10 and the correlometer 3. The output of the pseudo-random binary symbol generator 14 is connected to the control inputs of the sensitive data receiver 11 and the correlometer 4. The inputs of the pseudo-random binary symbols 13 and 14 are connected to the corresponding outputs of the synchronization block fifteen.

The proposed system of integrated information protection works as follows.

From the output of the source of telephone message 5, information using a controlled transmitter of telephone message 6 is transmitted via communication line 7 to the input of telephone message receiver 8 and, then, to telephone message 9. Information transmitted via the telephone communication channel is not protected from unauthorized disclosure. The length (coverage area) of the telephone line 5-6-7-8-9 determines the maximum range of the correlation data channel.

As in the prototype, a virtual (correlation) data channel is formed by establishing a statistical correlation between at least two signals, for example, audio signals n of broadcast programs and telephone communication. To do this, on the transmitting and receiving sides of the correlation data channel, n receivers of broadcast programs 1 and 2, respectively, are installed, each of which is configured in pairs to receive the same one of n broadcast programs.

The audio signals of the frequency blocks 1 and 2 of the receivers and broadcast program receivers are fed to the n inputs of the respective controlled correlometers 3 and 4. The first signals of these controlled correlometers 3 and 4 are supplied with the audio signals of the audio frequency of the respectively controlled telephone message transmitter 6 and telephone message receiver 8.

At each clock cycle (time interval) specified by the synchronization unit 15, both in the proposed integrated information protection system and in the prototype, the correlation depth between the signals n of the broadcast programs and the telephone message is measured by means of controlled correlometers 3 and 4.

The correlation depth can be characterized by a correlation coefficient K, which is determined by the formula

- среднее значение произведений телефонного информационного сигнала x₁ и сигналов n вещательных программ x_i;Where $$\overline{{\displaystyle \prod _{i=2}^{i-n+\mathrm{one}}{x}_{\mathrm{one}}{x}_i}}$$

- the average value of the products of the telephone information signal x ₁ and signals n of broadcast programs x _i ;

- произведение средних значений телефонного информационного сигнала x₁ и сигналов n вещательных программ x_i; $${\displaystyle \prod _{i=2}^{i=n+\mathrm{one}}\overline{x_{\mathrm{one}}}\cdot \overline{x_i}}$$

- the product of the average values of the telephone information signal x ₁ and signals n of broadcast programs x _i ;

- произведение среднеквадратичных отклонений телефонного информационного сигнала и сигналов n вещательных программ; $${\displaystyle \prod _{i=\mathrm{one}}^{i=n+\mathrm{one}}{\sigma }_i}$$

- the product of the standard deviations of the telephone information signal and signals of n broadcast programs;

- среднее квадратичное значение n случайных сигналов; $$\sigma =\sqrt{\frac{{\displaystyle \sum _{i=\mathrm{one}}^n{(x_0-x_i)}^2}}{n-\mathrm{one}}}$$

is the mean square value of n random signals;

- среднее значение (математическое ожидание) n случайных чисел,

- average value (mathematical expectation) of n random numbers,

From the expression (1) it follows that if K> 0.5, then the correlation is close and in the correlation data transmission channel a single binary code symbol “1” is accepted. If K≤0.5, then the correlation is weak (K <0.2 almost none), and with such a correlation, the symbol "0" is assigned in the correlation data channel.

A step change in the correlation coefficient K is carried out automatically depending on the discrete value ("1" or "0") of the transmitted confidential data at the output of the source 10 of these data.

To automatically track the required correlation coefficient K, the output signals of the controlled correlometer 3 and the controlled source of sensitive data 10 are compared with each other at the inputs of the comparison element 12.

If there is a mismatch between the input signals of the comparison element 12, its output signal is supplied to the control input of the telephone message transmitter 6 to correct the telephone signal so that the difference signal at the output of the comparison element 12 is zero.

In this case, the generated correction signal corrects only the correlation coefficient. The quality of communication over an open telephone channel cannot be degraded, for which it is necessary to additively adjust the phase shift of the telephone signal, or slightly adjust the amplitude of the telephone radio signal with angular forms of its modulation during automatic tracking of the zero difference signal at the output of the comparison element 12.

Comprehensive protection of information, which includes reconnaissance protection of locations of the source 10 and the recipient 11 of confidential data, simulation stability and protection from intentional interference, as well as reducing the time of data transmission, is achieved due to a large degree of uncertainty in the choice of correlated open telephone channels or n broadcast channels programs and increasing the number of correlation channels used.

As for the cryptographic strength of transmitting confidential information over the correlation data channel, according to Shannon's theory, it is achieved if the amount of distorting information (the length of the code key) is commensurate with the amount of information transmitted. In the proposed system of integrated information protection, as in the prototype, the guaranteed cryptographic stability of confidential information transmission via the correlation data transmission channel is achieved by a large degree of uncertainty of the length of the selected correlation cycle time interval, determined by the same pseudo-random law on both the transmitting and receiving sides of the correlation channel data transmission. When the duty cycle differs from 50% (from two), the pulses of binary symbols "1" and "0" at the output of the pseudo-random generator of numbers 13 and 14 specify intervals (ticks) of correlation of different lengths that differ from each other by almost a random law.

The number of correlation (virtual) data transmission channels may exceed the number of physical communication channels if we measure and control the correlation dependence of simultaneously transmitted signals of more than two channels, including the correlation data transmission channels. This indicates a high throughput of the data transmission system composed of several correlation channels, which reduces the data transmission time.

The industrial feasibility of the invention is justified by the fact that it uses for its direct functional purpose the nodes and blocks known in the analogue and prototype. The applicant organization made a valid model of the claimed device in 2014.

The positive effect of using the claimed invention is that it increases by at least 30 ... 40% the protection of the integrity of confidential information transmitted via the correlation data transmission channel by reducing (n-1) times the likelihood of unwanted sound pauses in correlated telephone messages and a broadcast program with a pseudo-random change in the duration of the correlation clock between these audio signals, where n is the number of broadcast program receivers.

Claims (1)

A system for comprehensive protection of information transmitted via correlation communication channels, containing on the transmitting side a source and a controlled telephone message transmitter, a broadcast program receiver, a controlled correlometer for two information inputs, a controlled confidential data source, a pseudo-random number generator and a comparison element whose inputs are connected to corresponding outputs of a controlled source of confidential data and a controlled correlometer to two information inputs, the output of an element with equalization is connected to the control input of the telephone message transmitter, the output of which is connected to one information input of the controlled correlometer, the other information input of which is connected to the output of the broadcast program receiver, the output of the pseudo random number generator is connected to the control inputs of the correlometer to two information inputs and a source of confidential data, at the reception side contains the receiver and receiver of telephone messages, the receiver of broadcast programs, a controlled correlometer for two information ion inputs, a pseudo-random number generator and a controlled recipient of confidential data, the input of which is connected to the output of the controlled correlometer for two information inputs, one information input of which is connected to the output of the broadcast program receiver, the other information input of which is connected to the output of the telephone message receiver, the output of the pseudo-random number generator connected to the control inputs of the correlometer for two information inputs and the recipient of confidential data, and also contains a synchronization unit and a telephone line established between the output of the controlled telephone message transmitter and the input of the telephone message receiver, the outputs of the synchronization unit are connected to the control inputs of the pseudorandom number generators, the proposed system for comprehensive protection of information transmitted via correlation communication channels contains on the transmitting and receiving sides according to (n-1) additional receivers of broadcast programs, controlled correlometers are made on (n + 1) information inputs, n information inputs of which s are connected to the outputs of the respective broadcast programs of receivers n, the depth correlation is determined using the relation

Where

- the average value of the products of the telephone information signal x ₁ and signals n of broadcast programs x _i ;

- the product of the average values of the telephone information signal x ₁ and signals n of broadcast programs x _i ;

- the product of the standard deviations of the telephone information signal and signals of n broadcast programs;
n - broadcast program receivers configured in pairs on the receiving and transmitting sides of the correlation communication channel for receiving the same of n identical broadcast programs.

Images