WO2012139427A1 - Procédé, système et dispositif de traitement de message multimédia - Google Patents
Procédé, système et dispositif de traitement de message multimédia Download PDFInfo
- Publication number
- WO2012139427A1 WO2012139427A1 PCT/CN2012/070249 CN2012070249W WO2012139427A1 WO 2012139427 A1 WO2012139427 A1 WO 2012139427A1 CN 2012070249 W CN2012070249 W CN 2012070249W WO 2012139427 A1 WO2012139427 A1 WO 2012139427A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- media
- ciphertext
- key
- message
- content
- Prior art date
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/03—Protecting confidentiality, e.g. by encryption
Definitions
- the present invention relates to the field of communications, and in particular, to a media message processing method (including encryption and decryption method), system and device (media message transmitting device and media message receiving device).
- a media message processing method including encryption and decryption method
- system and device media message transmitting device and media message receiving device.
- multimedia messaging services such as MMS, (mobile) email, and instant messaging services, have become more widely used.
- Multimedia messages usually contain multiple media content. Sometimes, some media content is very important and sensitive content (such as text or pictures involving personal privacy or secrets). To prevent sensitive content from being learned by unauthorized objects, media messages can be Implement encryption. However, in some cases, media content affects the speed of encryption and decryption, especially encryption and decryption on mobile phone terminals with limited resources, which will affect the user experience.
- the technical problem to be solved by the present invention is to provide a media message processing method, system and device, which solves the problem that the encryption and decryption speed is slow.
- the present invention provides a media message processing method, and the method includes:
- the sender encrypts one or more media contents in the media message, that is, the local media content, by using a key to obtain a media ciphertext;
- the recipient decrypts the media ciphertext to obtain local media content.
- the message header of the media message carries the media ciphertext location parameter value
- the media body of the media message carries the media ciphertext.
- the sender encrypts the key with the public key of the receiver to obtain a key ciphertext, and carries the key ciphertext in the media message sent by the sender.
- the receiver decrypts the key ciphertext by using a private key to obtain a key, and then decrypts the media ciphertext by using the key.
- the message header of the media message carries the key ciphertext.
- the content header of the media ciphertext carries the key ciphertext.
- the present invention also provides a method for encrypting a media message, the method comprising:
- the sender encrypts the media content by using the key to obtain the media ciphertext, and encrypts the key by using the public key of the receiver to obtain the key ciphertext;
- the sender sends a media message, where the key ciphertext and the media ciphertext are carried.
- the media content is one or several media content (Content) to be encrypted in the media message or the media message.
- Content media content
- the message header of the media message further carries a media ciphertext location parameter value and a key ciphertext.
- the key ciphertext is at a content header of the media ciphertext.
- the present invention also provides a media message processing system, the system comprising:
- the sender's encryption module is configured to: encrypt the media content by using the key to obtain the media ciphertext content, and encrypt the key by using the recipient public key to obtain the key ciphertext;
- a sending module of the sending party configured to: send a media message, where the key ciphertext and the media ciphertext are carried;
- a receiving module of the receiver configured to: receive the media message
- the decryption module of the receiver is configured to: decrypt the key ciphertext by using its private key to obtain the key, and decrypt the media ciphertext by using the key to obtain the media content.
- the message header of the media message carries the key ciphertext and the media ciphertext location parameter value.
- the content header of the media ciphertext carries the key ciphertext.
- the present invention also provides a media message sending device, the device comprising:
- the encryption module is configured to: encrypt the media content by using a key to obtain a media ciphertext, and encrypt the key by using a public key of the recipient to obtain a key ciphertext;
- a sending module configured to: send a media message, where the key ciphertext and the media ciphertext are carried.
- the message header of the media message or the content header of the media ciphertext carries the key ciphertext.
- the message header of the media message or the content header of the media ciphertext carries an encryption algorithm suite.
- the present invention also provides a media message receiving apparatus, including:
- a receiving module configured to: receive a media message; the media message is obtained by encrypting the media content by a key, and the media message includes a key ciphertext obtained by encrypting the key by using a receiving public key;
- a decryption module configured to: decrypt the key ciphertext by using a private key to obtain the key, and decrypt the media ciphertext by using the key to obtain the media content.
- the message header of the media message carries the key ciphertext and the media ciphertext location parameter value.
- the content header of the media ciphertext includes a corresponding key ciphertext.
- the message header of the media message or the content header of the media ciphertext carries an encryption algorithm suite.
- FIG. 1 is a flowchart of a method for processing a media message according to an embodiment of the present invention
- FIG. 2 is a flowchart of a method for encrypting a media message according to an embodiment of the present invention
- FIG. 3 is a flowchart of a method for decrypting a media message according to an embodiment of the present invention
- FIG. 4 is a schematic structural diagram of a module of a media message processing system according to an embodiment of the present invention. Preferred embodiment of the invention
- the media message also contains other insensitive media
- it is considered to encrypt only the important and sensitive content in the media message, and not encrypt the other content, so in order to improve the encryption and decryption speed, the user is improved.
- the present invention provides a method of local encryption of media messages.
- the encryption of local content in media messages can use symmetric encryption and asymmetric encryption.
- asymmetric encryption since the key does not need to be temporarily agreed by both parties, the public key of the other party can be used to encrypt the local media content.
- the local media can also be encrypted using the key agreed by both parties.
- the present invention also provides the following method.
- the symmetric encryption method encrypts and decrypts faster, but the encryption and decryption use the same key; the asymmetric encryption and decryption uses different keys, the encryption key can be disclosed, and the decryption key can only be hidden by the user and others cannot It is learned that, therefore, public key encryption is relatively more secure than symmetric encryption.
- the current public key encryption and decryption algorithm is basically an operation between long integers, which involves a large number of modular exponential operations, so the calculation speed is very slow, and the symmetric encryption algorithm basically rotates and confuses the data. Compression and other bit operations, which are fast.
- the media message processing method of the present invention comprises two parts of encryption and decryption. Obviously, the encrypted part has a correspondence with the decrypted part.
- the encrypted part has a correspondence with the decrypted part.
- only the important or sensitive media content that the sender thinks need to be encrypted is encrypted, and at the same time Using symmetric encryption and asymmetric encryption, using the symmetric encryption method to locally encrypt the media message; using the asymmetric encryption method to encrypt the encryption key, while improving the encryption and decryption speed, and reducing the key In the negotiation process, the security of encrypted information is improved.
- the media message processing method of the present invention includes:
- Step 101 The sender encrypts the media content by using a key to obtain a media ciphertext, and encrypts the key by using a receiver public key to obtain a key ciphertext;
- the media content may be one or more media contents included in the media message, and the data format may be original media content or content encoded by the original media content (for example, some encoded data of the media content).
- the sender encrypts the media content using a symmetric encryption (random) algorithm, and encrypts the key using an asymmetric encryption algorithm and the recipient public key.
- the key is a random number whose length meets the security requirement.
- the key length of the AES should be no less than 128 bits, usually 128 bits, 192 bits and 256 bits.
- the above steps are the processing steps of the sender for the media content, and the sender may have one or more media content to be encrypted, and then process to generate a plurality of media ciphertexts, or the media content includes one or more media that can be processed together. Content (such as multiple pictures), the one or more media content processing generates a media ciphertext.
- Step 102 The sender sends a media message, where the encryption algorithm suite, the media ciphertext, and the key ciphertext are carried.
- One or more media ciphertexts can be carried in the media message.
- the encryption algorithm suite includes the above-mentioned symmetric encryption algorithm and asymmetric encryption algorithm, such as (RSA-AES), where AES is a symmetric encryption algorithm, RSA is an asymmetric encryption algorithm, AES is a symmetric encryption algorithm, and advanced data encryption standard is An upgraded version of DES (Data Encryption Standard), selected by the US NIST publicly, formerly known as Rijndael.
- RSA-AES asymmetric encryption algorithm
- AES is a symmetric encryption algorithm
- advanced data encryption standard is An upgraded version of DES (Data Encryption Standard), selected by the US NIST publicly, formerly known as Rijndael.
- Step 103 The receiver receives the media message.
- Step 104 The receiver decrypts the key ciphertext by using its private key to obtain the key, and decrypts the media ciphertext by using the key to obtain the media content.
- the present invention is disclosed in detail below from the perspective of the sender and the receiver, respectively:
- the media message encryption method is implemented by the message sender, and the symmetric content is used to encrypt the important content in the media message.
- the asymmetric encryption method is used to encrypt the encryption key, and the symmetric encryption key is randomly generated.
- the asymmetric encryption key is The public key of the recipient. As shown in Figure 2, the sender performs the following steps:
- Step 201 Encrypt the media content M by using the key k to obtain the ciphertext C;
- the media content M may be the encoded media data obtained by the sender selecting the media content to be encrypted and encoding the media content.
- Step 202 Encrypt the key k by using a public key of the receiver to obtain a ciphertext k';
- the sender encrypts k using the recipient's public key kB and a public key cryptographic algorithm (such as RSA), and the key ciphertext is recorded as k'.
- a public key cryptographic algorithm such as RSA
- Step 203 Send a media message carrying an encryption algorithm suite (such as RSA-AES), k, C, and other contents of the media message.
- an encryption algorithm suite such as RSA-AES
- k a media message carrying an encryption algorithm suite
- C a media message carrying an encryption algorithm suite
- the media message decryption method is implemented by the message receiver, and the ciphertext k' is decrypted using the receiver private key to obtain k, and the ciphertext C is decrypted by using k. As shown in FIG. 3, the receiver performs the following steps:
- Step 301 The receiving party receives the media message, and extracts or separates the media message carrying the encryption algorithm suite (such as RSA-AES), the key ciphertext k', and the media ciphertext C;
- the encryption algorithm suite such as RSA-AES
- Step 302 Decrypt k by using the private key of the receiver to obtain k, and the algorithm is the same as the algorithm of the sender encrypting k, such as RSA;
- Step 303 decrypting C by k to obtain M, and the decryption algorithm is the same as the algorithm of the sender encrypting M, and the ratio is AES;
- MIME media message package as a specific embodiment, which details the local content of the media message plus The secret method. Specifically, in the foregoing Embodiments 1 to 3, how the media message carries the above encryption algorithm suite, the key ciphertext (k'), the media ciphertext C, and the like, two preferred implementation schemes are given below:
- Solution 1 The message header of the media message carries the encryption algorithm suite, the key ciphertext and the encrypted media location parameter value, and the location parameter value indicates the location of the encrypted media content (ie, the media ciphertext) in the message.
- the sender inserts a domain name indicating local encryption (such as Content-Encryption) in the MIME header of the media message to be sent.
- a domain name indicating local encryption such as Content-Encryption
- the cipher suite refers to public key cryptography algorithms (such as RSA) and symmetric cryptographic algorithms (such as AES), which are used to encrypt symmetric encryption keys and encrypt important content that needs to be encrypted.
- public key cryptography algorithms such as RSA
- AES symmetric cryptographic algorithms
- the encryption indication information is added to the ciphertext Content header, for example, the content identification number content (Content) is as follows:
- the header of the content of the encrypted media content includes its corresponding encryption algorithm set. Piece and key ciphertext.
- the sender inserts information indicating local encryption in the content (Content) of each media ciphertext C (for example, by using an extended field Content-Encryption, or carrying the information as another field, such as a parameter of Content-Type. ).
- the encryption indication information may be added to the head of the media content of the media ciphertext C.
- the two schemes have the same effect, but if multiple media content (such as a picture and an audio) are needed, if the scheme one is used, then The picture and audio are encrypted with the same cipher suite. Accordingly, since the encoding method is at the head of the media content, different encoding methods can be used; if the second scheme is used, different encodings can be used.
- the cipher suite encrypts pictures and audio.
- the present invention uses MIME media messages as a specific embodiment, the present invention is also applicable to media message partial content encryption in other media formats.
- the present invention also provides a media message processing system. As shown in FIG. 4, the system includes:
- the encryption module of the sender is configured to encrypt the media content by using a key to obtain a media ciphertext, and encrypt the key by using a public key of the receiver to obtain a key ciphertext;
- the sending module of the sender is configured to send a media message, where the key ciphertext is carried, Media ciphertext;
- an encryption algorithm suite can also be carried.
- a receiving module of the receiver configured to receive the media message
- Decrypting module of the receiving party configured to decrypt the key ciphertext by using its private key to obtain the key, and decrypt the media ciphertext by using the key to obtain the media content;
- the media message of the present invention is different from the existing media message in that: the message header of the media message carries the ciphertext and the location parameter value.
- the media message of the present invention is different from the existing media message in that: the content of the content of the media content includes a corresponding encryption algorithm suite and a key ciphertext.
- the present invention also provides a media message transmitting device (ie, a sender), the device comprising:
- An encryption module configured to encrypt the media content by using a key to obtain a media ciphertext, and encrypt the key by using a public key of the recipient to obtain a key ciphertext;
- a sending module configured to send the media message, where the encryption algorithm suite, the key ciphertext, and the media ciphertext are carried.
- the message header of the media message carries the key ciphertext and the encrypted media location parameter value, and optionally, the encryption algorithm suite.
- the header of the content in which the media content is located includes its corresponding key ciphertext, and optionally, a corresponding encryption algorithm suite.
- the present invention also provides a media message receiving device (ie, a receiving party), a receiving module, configured to receive a media message, and a decrypting module, configured to decrypt the encrypted media in the media message;
- a media message receiving device ie, a receiving party
- a receiving module configured to receive a media message
- a decrypting module configured to decrypt the encrypted media in the media message
- a decryption module configured to decrypt the key ciphertext by using the private key to obtain the key, and decrypt the media ciphertext by using the key to obtain the media content.
- the message header of the media message carries the key ciphertext and the media ciphertext location parameter value, and optionally, the encryption algorithm suite.
- the header of the content in which the media content is located includes its corresponding key ciphertext, and optionally, a corresponding encryption algorithm suite.
- the method, system and device of the invention use a symmetric encryption method to localize the media message; use an asymmetric encryption method to encrypt the encryption key, improve the encryption and decryption speed of the media message, and improve the security of the media message. Sexuality makes it impossible for an incorrect recipient to get a partial of a media message.
- the method, system and apparatus of the present invention employ a symmetric encryption method.
- the present invention is also applicable to the encryption of entire media messages.
- the key may not be carried.
- the cipher suite can also be negotiated by other negotiation mechanisms. The methods and steps will not be described again.
- the invention can also directly encrypt the media content by using the receiving public key, and the ciphering suite can also adopt other agreed methods. This method is suitable for occasions where the media content is small. The methods and steps are not described again.
- the cipher suite can also adopt other conventions and conventions, and does not need to be carried in the message.
- One of ordinary skill in the art will appreciate that all or a portion of the steps described above can be accomplished by a program that instructs the associated hardware, such as a read-only memory, a magnetic disk, or an optical disk.
- all or part of the steps of the above embodiments may also be implemented using one or more integrated circuits.
- each module/unit in the above embodiment may be implemented in the form of hardware or in the form of a software function module. The invention is not limited to any specific form of combination of hardware and software.
- the method, system, and apparatus of the embodiments of the present invention encrypt only media content that is considered to be encrypted by an important or sensitive sender, and simultaneously uses symmetric encryption and asymmetric encryption, and uses a symmetric encryption method to media messages.
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Storage Device Security (AREA)
- Information Transfer Between Computers (AREA)
Abstract
La présente invention concerne un procédé, un système et un dispositif de traitement de message multimédia. Le procédé comprend : un expéditeur utilisant une clé pour chiffrer un ou plusieurs contenu(s) multimédia, c'est-à-dire des contenus multimédia partiels, dans un message multimédia pour obtenir un cryptogramme multimédia; l'expéditeur envoyant un message multimédia portant le cryptogramme multimédia; un récepteur recevant le message multimédia; et le récepteur déchiffrant le cryptogramme multimédia pour obtenir les contenus multimédias partiels. Les procédé, système et dispositif de traitement de message multimédia selon la présente invention augmentent la vitesse de chiffrage et de déchiffrage et améliorent l'expérience de l'utilisateur tout en améliorant la sécurité des messages multimédia.
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201110094839.2 | 2011-04-15 | ||
CN201110094839.2A CN102740246B (zh) | 2011-04-15 | 2011-04-15 | 媒体消息处理方法、系统及装置 |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2012139427A1 true WO2012139427A1 (fr) | 2012-10-18 |
Family
ID=46994859
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/CN2012/070249 WO2012139427A1 (fr) | 2011-04-15 | 2012-01-12 | Procédé, système et dispositif de traitement de message multimédia |
Country Status (2)
Country | Link |
---|---|
CN (1) | CN102740246B (fr) |
WO (1) | WO2012139427A1 (fr) |
Families Citing this family (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN103338437B (zh) * | 2013-07-11 | 2016-06-08 | 成都三零瑞通移动通信有限公司 | 一种移动即时消息的加密方法及系统 |
CN104809365A (zh) * | 2014-01-27 | 2015-07-29 | 宇瞻科技股份有限公司 | 数字权管理系统、管理方法及其信息传送系统与方法 |
CN105025036B (zh) * | 2015-08-07 | 2018-08-17 | 北京环度智慧智能技术研究所有限公司 | 一种基于互联网的认知能力测试值加密和传输方法 |
CN107147636A (zh) * | 2017-05-03 | 2017-09-08 | 北京小米移动软件有限公司 | 邮件传输方法及装置 |
CN107276746A (zh) * | 2017-07-19 | 2017-10-20 | 河南神州数码索贝科技有限公司 | 一种中文字符加解密方法 |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1571509A (zh) * | 2003-07-10 | 2005-01-26 | 王海涛 | 一种多媒体信息安全控制的方法 |
US20080162935A1 (en) * | 2006-12-29 | 2008-07-03 | Nokia Corporation | Securing communication |
CN101297300A (zh) * | 2005-09-01 | 2008-10-29 | 高通股份有限公司 | 多媒体内容传递的高效密钥层次 |
Family Cites Families (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101626294A (zh) * | 2008-07-07 | 2010-01-13 | 华为技术有限公司 | 基于身份的认证方法、保密通信方法、设备和系统 |
-
2011
- 2011-04-15 CN CN201110094839.2A patent/CN102740246B/zh not_active Expired - Fee Related
-
2012
- 2012-01-12 WO PCT/CN2012/070249 patent/WO2012139427A1/fr active Application Filing
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1571509A (zh) * | 2003-07-10 | 2005-01-26 | 王海涛 | 一种多媒体信息安全控制的方法 |
CN101297300A (zh) * | 2005-09-01 | 2008-10-29 | 高通股份有限公司 | 多媒体内容传递的高效密钥层次 |
US20080162935A1 (en) * | 2006-12-29 | 2008-07-03 | Nokia Corporation | Securing communication |
Also Published As
Publication number | Publication date |
---|---|
CN102740246A (zh) | 2012-10-17 |
CN102740246B (zh) | 2017-02-15 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US10785019B2 (en) | Data transmission method and apparatus | |
US9055047B2 (en) | Method and device for negotiating encryption information | |
WO2018000886A1 (fr) | Système, appareil, procédé et terminal de client de traitement de communication de programme d'application, et terminal de serveur | |
US8983061B2 (en) | Method and apparatus for cryptographically processing data | |
US20150244520A1 (en) | One-time-pad data encryption with media server | |
US20080046731A1 (en) | Content protection system | |
EP3476078B1 (fr) | Systèmes et procédés pour authentifier des communications à l'aide d'un seul échange de message et d'une clé symétrique | |
WO2009155781A1 (fr) | Procédé et système de transmission des données cryptées | |
JPH118620A (ja) | 通信チャネルの認証を効率的に実施し、不正な変更の検出を容易にするシステムおよび方法 | |
WO2012129929A1 (fr) | Procédé, système et appareil pour la transmission sécurisée de message multimédia | |
WO2015117437A1 (fr) | Procédé et dispositif de cryptage/décryptage de fichier | |
WO2012139427A1 (fr) | Procédé, système et dispositif de traitement de message multimédia | |
CN112738133A (zh) | 一种rsa认证方法 | |
CN106549858A (zh) | 一种基于标识密码的即时通信加密方法 | |
Reshma et al. | Pairing-free CP-ABE based cryptography combined with steganography for multimedia applications | |
JP2000347566A (ja) | コンテンツ管理装置、コンテンツ利用者端末及びプログラムを記録したコンピュータ読み取り可能な記録媒体 | |
WO2017197968A1 (fr) | Procédé et dispositif de transmission de données | |
US9876774B2 (en) | Communication security system and method | |
WO2012075761A1 (fr) | Procédé et système de chiffrement d'un service de messagerie multimédia | |
JP2006262425A (ja) | 公開鍵暗号方式によるネットワーク上での相互認証および公開鍵の相互交換システム | |
TWI313995B (en) | Content protection method | |
WO2012129945A1 (fr) | Procédé et système destinés à l'émission sécurisée de messages multimédias | |
WO2012129928A1 (fr) | Procédé, système et appareil pour la transmission sécurisée de message multimédia | |
EP2575287A1 (fr) | Procédé de publication de contenu sur un réseau de communication | |
JP2000267565A (ja) | 暗号化復号化装置及びプログラムを記録したコンピュータ読み取り可能な記録媒体 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 12771563 Country of ref document: EP Kind code of ref document: A1 |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
122 | Ep: pct application non-entry in european phase |
Ref document number: 12771563 Country of ref document: EP Kind code of ref document: A1 |