WO2012139427A1 - Procédé, système et dispositif de traitement de message multimédia - Google Patents

Procédé, système et dispositif de traitement de message multimédia Download PDF

Info

Publication number
WO2012139427A1
WO2012139427A1 PCT/CN2012/070249 CN2012070249W WO2012139427A1 WO 2012139427 A1 WO2012139427 A1 WO 2012139427A1 CN 2012070249 W CN2012070249 W CN 2012070249W WO 2012139427 A1 WO2012139427 A1 WO 2012139427A1
Authority
WO
WIPO (PCT)
Prior art keywords
media
ciphertext
key
message
content
Prior art date
Application number
PCT/CN2012/070249
Other languages
English (en)
Chinese (zh)
Inventor
卢艳
丁欣
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2012139427A1 publication Critical patent/WO2012139427A1/fr

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/03Protecting confidentiality, e.g. by encryption

Definitions

  • the present invention relates to the field of communications, and in particular, to a media message processing method (including encryption and decryption method), system and device (media message transmitting device and media message receiving device).
  • a media message processing method including encryption and decryption method
  • system and device media message transmitting device and media message receiving device.
  • multimedia messaging services such as MMS, (mobile) email, and instant messaging services, have become more widely used.
  • Multimedia messages usually contain multiple media content. Sometimes, some media content is very important and sensitive content (such as text or pictures involving personal privacy or secrets). To prevent sensitive content from being learned by unauthorized objects, media messages can be Implement encryption. However, in some cases, media content affects the speed of encryption and decryption, especially encryption and decryption on mobile phone terminals with limited resources, which will affect the user experience.
  • the technical problem to be solved by the present invention is to provide a media message processing method, system and device, which solves the problem that the encryption and decryption speed is slow.
  • the present invention provides a media message processing method, and the method includes:
  • the sender encrypts one or more media contents in the media message, that is, the local media content, by using a key to obtain a media ciphertext;
  • the recipient decrypts the media ciphertext to obtain local media content.
  • the message header of the media message carries the media ciphertext location parameter value
  • the media body of the media message carries the media ciphertext.
  • the sender encrypts the key with the public key of the receiver to obtain a key ciphertext, and carries the key ciphertext in the media message sent by the sender.
  • the receiver decrypts the key ciphertext by using a private key to obtain a key, and then decrypts the media ciphertext by using the key.
  • the message header of the media message carries the key ciphertext.
  • the content header of the media ciphertext carries the key ciphertext.
  • the present invention also provides a method for encrypting a media message, the method comprising:
  • the sender encrypts the media content by using the key to obtain the media ciphertext, and encrypts the key by using the public key of the receiver to obtain the key ciphertext;
  • the sender sends a media message, where the key ciphertext and the media ciphertext are carried.
  • the media content is one or several media content (Content) to be encrypted in the media message or the media message.
  • Content media content
  • the message header of the media message further carries a media ciphertext location parameter value and a key ciphertext.
  • the key ciphertext is at a content header of the media ciphertext.
  • the present invention also provides a media message processing system, the system comprising:
  • the sender's encryption module is configured to: encrypt the media content by using the key to obtain the media ciphertext content, and encrypt the key by using the recipient public key to obtain the key ciphertext;
  • a sending module of the sending party configured to: send a media message, where the key ciphertext and the media ciphertext are carried;
  • a receiving module of the receiver configured to: receive the media message
  • the decryption module of the receiver is configured to: decrypt the key ciphertext by using its private key to obtain the key, and decrypt the media ciphertext by using the key to obtain the media content.
  • the message header of the media message carries the key ciphertext and the media ciphertext location parameter value.
  • the content header of the media ciphertext carries the key ciphertext.
  • the present invention also provides a media message sending device, the device comprising:
  • the encryption module is configured to: encrypt the media content by using a key to obtain a media ciphertext, and encrypt the key by using a public key of the recipient to obtain a key ciphertext;
  • a sending module configured to: send a media message, where the key ciphertext and the media ciphertext are carried.
  • the message header of the media message or the content header of the media ciphertext carries the key ciphertext.
  • the message header of the media message or the content header of the media ciphertext carries an encryption algorithm suite.
  • the present invention also provides a media message receiving apparatus, including:
  • a receiving module configured to: receive a media message; the media message is obtained by encrypting the media content by a key, and the media message includes a key ciphertext obtained by encrypting the key by using a receiving public key;
  • a decryption module configured to: decrypt the key ciphertext by using a private key to obtain the key, and decrypt the media ciphertext by using the key to obtain the media content.
  • the message header of the media message carries the key ciphertext and the media ciphertext location parameter value.
  • the content header of the media ciphertext includes a corresponding key ciphertext.
  • the message header of the media message or the content header of the media ciphertext carries an encryption algorithm suite.
  • FIG. 1 is a flowchart of a method for processing a media message according to an embodiment of the present invention
  • FIG. 2 is a flowchart of a method for encrypting a media message according to an embodiment of the present invention
  • FIG. 3 is a flowchart of a method for decrypting a media message according to an embodiment of the present invention
  • FIG. 4 is a schematic structural diagram of a module of a media message processing system according to an embodiment of the present invention. Preferred embodiment of the invention
  • the media message also contains other insensitive media
  • it is considered to encrypt only the important and sensitive content in the media message, and not encrypt the other content, so in order to improve the encryption and decryption speed, the user is improved.
  • the present invention provides a method of local encryption of media messages.
  • the encryption of local content in media messages can use symmetric encryption and asymmetric encryption.
  • asymmetric encryption since the key does not need to be temporarily agreed by both parties, the public key of the other party can be used to encrypt the local media content.
  • the local media can also be encrypted using the key agreed by both parties.
  • the present invention also provides the following method.
  • the symmetric encryption method encrypts and decrypts faster, but the encryption and decryption use the same key; the asymmetric encryption and decryption uses different keys, the encryption key can be disclosed, and the decryption key can only be hidden by the user and others cannot It is learned that, therefore, public key encryption is relatively more secure than symmetric encryption.
  • the current public key encryption and decryption algorithm is basically an operation between long integers, which involves a large number of modular exponential operations, so the calculation speed is very slow, and the symmetric encryption algorithm basically rotates and confuses the data. Compression and other bit operations, which are fast.
  • the media message processing method of the present invention comprises two parts of encryption and decryption. Obviously, the encrypted part has a correspondence with the decrypted part.
  • the encrypted part has a correspondence with the decrypted part.
  • only the important or sensitive media content that the sender thinks need to be encrypted is encrypted, and at the same time Using symmetric encryption and asymmetric encryption, using the symmetric encryption method to locally encrypt the media message; using the asymmetric encryption method to encrypt the encryption key, while improving the encryption and decryption speed, and reducing the key In the negotiation process, the security of encrypted information is improved.
  • the media message processing method of the present invention includes:
  • Step 101 The sender encrypts the media content by using a key to obtain a media ciphertext, and encrypts the key by using a receiver public key to obtain a key ciphertext;
  • the media content may be one or more media contents included in the media message, and the data format may be original media content or content encoded by the original media content (for example, some encoded data of the media content).
  • the sender encrypts the media content using a symmetric encryption (random) algorithm, and encrypts the key using an asymmetric encryption algorithm and the recipient public key.
  • the key is a random number whose length meets the security requirement.
  • the key length of the AES should be no less than 128 bits, usually 128 bits, 192 bits and 256 bits.
  • the above steps are the processing steps of the sender for the media content, and the sender may have one or more media content to be encrypted, and then process to generate a plurality of media ciphertexts, or the media content includes one or more media that can be processed together. Content (such as multiple pictures), the one or more media content processing generates a media ciphertext.
  • Step 102 The sender sends a media message, where the encryption algorithm suite, the media ciphertext, and the key ciphertext are carried.
  • One or more media ciphertexts can be carried in the media message.
  • the encryption algorithm suite includes the above-mentioned symmetric encryption algorithm and asymmetric encryption algorithm, such as (RSA-AES), where AES is a symmetric encryption algorithm, RSA is an asymmetric encryption algorithm, AES is a symmetric encryption algorithm, and advanced data encryption standard is An upgraded version of DES (Data Encryption Standard), selected by the US NIST publicly, formerly known as Rijndael.
  • RSA-AES asymmetric encryption algorithm
  • AES is a symmetric encryption algorithm
  • advanced data encryption standard is An upgraded version of DES (Data Encryption Standard), selected by the US NIST publicly, formerly known as Rijndael.
  • Step 103 The receiver receives the media message.
  • Step 104 The receiver decrypts the key ciphertext by using its private key to obtain the key, and decrypts the media ciphertext by using the key to obtain the media content.
  • the present invention is disclosed in detail below from the perspective of the sender and the receiver, respectively:
  • the media message encryption method is implemented by the message sender, and the symmetric content is used to encrypt the important content in the media message.
  • the asymmetric encryption method is used to encrypt the encryption key, and the symmetric encryption key is randomly generated.
  • the asymmetric encryption key is The public key of the recipient. As shown in Figure 2, the sender performs the following steps:
  • Step 201 Encrypt the media content M by using the key k to obtain the ciphertext C;
  • the media content M may be the encoded media data obtained by the sender selecting the media content to be encrypted and encoding the media content.
  • Step 202 Encrypt the key k by using a public key of the receiver to obtain a ciphertext k';
  • the sender encrypts k using the recipient's public key kB and a public key cryptographic algorithm (such as RSA), and the key ciphertext is recorded as k'.
  • a public key cryptographic algorithm such as RSA
  • Step 203 Send a media message carrying an encryption algorithm suite (such as RSA-AES), k, C, and other contents of the media message.
  • an encryption algorithm suite such as RSA-AES
  • k a media message carrying an encryption algorithm suite
  • C a media message carrying an encryption algorithm suite
  • the media message decryption method is implemented by the message receiver, and the ciphertext k' is decrypted using the receiver private key to obtain k, and the ciphertext C is decrypted by using k. As shown in FIG. 3, the receiver performs the following steps:
  • Step 301 The receiving party receives the media message, and extracts or separates the media message carrying the encryption algorithm suite (such as RSA-AES), the key ciphertext k', and the media ciphertext C;
  • the encryption algorithm suite such as RSA-AES
  • Step 302 Decrypt k by using the private key of the receiver to obtain k, and the algorithm is the same as the algorithm of the sender encrypting k, such as RSA;
  • Step 303 decrypting C by k to obtain M, and the decryption algorithm is the same as the algorithm of the sender encrypting M, and the ratio is AES;
  • MIME media message package as a specific embodiment, which details the local content of the media message plus The secret method. Specifically, in the foregoing Embodiments 1 to 3, how the media message carries the above encryption algorithm suite, the key ciphertext (k'), the media ciphertext C, and the like, two preferred implementation schemes are given below:
  • Solution 1 The message header of the media message carries the encryption algorithm suite, the key ciphertext and the encrypted media location parameter value, and the location parameter value indicates the location of the encrypted media content (ie, the media ciphertext) in the message.
  • the sender inserts a domain name indicating local encryption (such as Content-Encryption) in the MIME header of the media message to be sent.
  • a domain name indicating local encryption such as Content-Encryption
  • the cipher suite refers to public key cryptography algorithms (such as RSA) and symmetric cryptographic algorithms (such as AES), which are used to encrypt symmetric encryption keys and encrypt important content that needs to be encrypted.
  • public key cryptography algorithms such as RSA
  • AES symmetric cryptographic algorithms
  • the encryption indication information is added to the ciphertext Content header, for example, the content identification number content (Content) is as follows:
  • the header of the content of the encrypted media content includes its corresponding encryption algorithm set. Piece and key ciphertext.
  • the sender inserts information indicating local encryption in the content (Content) of each media ciphertext C (for example, by using an extended field Content-Encryption, or carrying the information as another field, such as a parameter of Content-Type. ).
  • the encryption indication information may be added to the head of the media content of the media ciphertext C.
  • the two schemes have the same effect, but if multiple media content (such as a picture and an audio) are needed, if the scheme one is used, then The picture and audio are encrypted with the same cipher suite. Accordingly, since the encoding method is at the head of the media content, different encoding methods can be used; if the second scheme is used, different encodings can be used.
  • the cipher suite encrypts pictures and audio.
  • the present invention uses MIME media messages as a specific embodiment, the present invention is also applicable to media message partial content encryption in other media formats.
  • the present invention also provides a media message processing system. As shown in FIG. 4, the system includes:
  • the encryption module of the sender is configured to encrypt the media content by using a key to obtain a media ciphertext, and encrypt the key by using a public key of the receiver to obtain a key ciphertext;
  • the sending module of the sender is configured to send a media message, where the key ciphertext is carried, Media ciphertext;
  • an encryption algorithm suite can also be carried.
  • a receiving module of the receiver configured to receive the media message
  • Decrypting module of the receiving party configured to decrypt the key ciphertext by using its private key to obtain the key, and decrypt the media ciphertext by using the key to obtain the media content;
  • the media message of the present invention is different from the existing media message in that: the message header of the media message carries the ciphertext and the location parameter value.
  • the media message of the present invention is different from the existing media message in that: the content of the content of the media content includes a corresponding encryption algorithm suite and a key ciphertext.
  • the present invention also provides a media message transmitting device (ie, a sender), the device comprising:
  • An encryption module configured to encrypt the media content by using a key to obtain a media ciphertext, and encrypt the key by using a public key of the recipient to obtain a key ciphertext;
  • a sending module configured to send the media message, where the encryption algorithm suite, the key ciphertext, and the media ciphertext are carried.
  • the message header of the media message carries the key ciphertext and the encrypted media location parameter value, and optionally, the encryption algorithm suite.
  • the header of the content in which the media content is located includes its corresponding key ciphertext, and optionally, a corresponding encryption algorithm suite.
  • the present invention also provides a media message receiving device (ie, a receiving party), a receiving module, configured to receive a media message, and a decrypting module, configured to decrypt the encrypted media in the media message;
  • a media message receiving device ie, a receiving party
  • a receiving module configured to receive a media message
  • a decrypting module configured to decrypt the encrypted media in the media message
  • a decryption module configured to decrypt the key ciphertext by using the private key to obtain the key, and decrypt the media ciphertext by using the key to obtain the media content.
  • the message header of the media message carries the key ciphertext and the media ciphertext location parameter value, and optionally, the encryption algorithm suite.
  • the header of the content in which the media content is located includes its corresponding key ciphertext, and optionally, a corresponding encryption algorithm suite.
  • the method, system and device of the invention use a symmetric encryption method to localize the media message; use an asymmetric encryption method to encrypt the encryption key, improve the encryption and decryption speed of the media message, and improve the security of the media message. Sexuality makes it impossible for an incorrect recipient to get a partial of a media message.
  • the method, system and apparatus of the present invention employ a symmetric encryption method.
  • the present invention is also applicable to the encryption of entire media messages.
  • the key may not be carried.
  • the cipher suite can also be negotiated by other negotiation mechanisms. The methods and steps will not be described again.
  • the invention can also directly encrypt the media content by using the receiving public key, and the ciphering suite can also adopt other agreed methods. This method is suitable for occasions where the media content is small. The methods and steps are not described again.
  • the cipher suite can also adopt other conventions and conventions, and does not need to be carried in the message.
  • One of ordinary skill in the art will appreciate that all or a portion of the steps described above can be accomplished by a program that instructs the associated hardware, such as a read-only memory, a magnetic disk, or an optical disk.
  • all or part of the steps of the above embodiments may also be implemented using one or more integrated circuits.
  • each module/unit in the above embodiment may be implemented in the form of hardware or in the form of a software function module. The invention is not limited to any specific form of combination of hardware and software.
  • the method, system, and apparatus of the embodiments of the present invention encrypt only media content that is considered to be encrypted by an important or sensitive sender, and simultaneously uses symmetric encryption and asymmetric encryption, and uses a symmetric encryption method to media messages.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Storage Device Security (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

La présente invention concerne un procédé, un système et un dispositif de traitement de message multimédia. Le procédé comprend : un expéditeur utilisant une clé pour chiffrer un ou plusieurs contenu(s) multimédia, c'est-à-dire des contenus multimédia partiels, dans un message multimédia pour obtenir un cryptogramme multimédia; l'expéditeur envoyant un message multimédia portant le cryptogramme multimédia; un récepteur recevant le message multimédia; et le récepteur déchiffrant le cryptogramme multimédia pour obtenir les contenus multimédias partiels. Les procédé, système et dispositif de traitement de message multimédia selon la présente invention augmentent la vitesse de chiffrage et de déchiffrage et améliorent l'expérience de l'utilisateur tout en améliorant la sécurité des messages multimédia.
PCT/CN2012/070249 2011-04-15 2012-01-12 Procédé, système et dispositif de traitement de message multimédia WO2012139427A1 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201110094839.2 2011-04-15
CN201110094839.2A CN102740246B (zh) 2011-04-15 2011-04-15 媒体消息处理方法、系统及装置

Publications (1)

Publication Number Publication Date
WO2012139427A1 true WO2012139427A1 (fr) 2012-10-18

Family

ID=46994859

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2012/070249 WO2012139427A1 (fr) 2011-04-15 2012-01-12 Procédé, système et dispositif de traitement de message multimédia

Country Status (2)

Country Link
CN (1) CN102740246B (fr)
WO (1) WO2012139427A1 (fr)

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103338437B (zh) * 2013-07-11 2016-06-08 成都三零瑞通移动通信有限公司 一种移动即时消息的加密方法及系统
CN104809365A (zh) * 2014-01-27 2015-07-29 宇瞻科技股份有限公司 数字权管理系统、管理方法及其信息传送系统与方法
CN105025036B (zh) * 2015-08-07 2018-08-17 北京环度智慧智能技术研究所有限公司 一种基于互联网的认知能力测试值加密和传输方法
CN107147636A (zh) * 2017-05-03 2017-09-08 北京小米移动软件有限公司 邮件传输方法及装置
CN107276746A (zh) * 2017-07-19 2017-10-20 河南神州数码索贝科技有限公司 一种中文字符加解密方法

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1571509A (zh) * 2003-07-10 2005-01-26 王海涛 一种多媒体信息安全控制的方法
US20080162935A1 (en) * 2006-12-29 2008-07-03 Nokia Corporation Securing communication
CN101297300A (zh) * 2005-09-01 2008-10-29 高通股份有限公司 多媒体内容传递的高效密钥层次

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101626294A (zh) * 2008-07-07 2010-01-13 华为技术有限公司 基于身份的认证方法、保密通信方法、设备和系统

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1571509A (zh) * 2003-07-10 2005-01-26 王海涛 一种多媒体信息安全控制的方法
CN101297300A (zh) * 2005-09-01 2008-10-29 高通股份有限公司 多媒体内容传递的高效密钥层次
US20080162935A1 (en) * 2006-12-29 2008-07-03 Nokia Corporation Securing communication

Also Published As

Publication number Publication date
CN102740246A (zh) 2012-10-17
CN102740246B (zh) 2017-02-15

Similar Documents

Publication Publication Date Title
US10785019B2 (en) Data transmission method and apparatus
US9055047B2 (en) Method and device for negotiating encryption information
WO2018000886A1 (fr) Système, appareil, procédé et terminal de client de traitement de communication de programme d'application, et terminal de serveur
US8983061B2 (en) Method and apparatus for cryptographically processing data
US20150244520A1 (en) One-time-pad data encryption with media server
US20080046731A1 (en) Content protection system
EP3476078B1 (fr) Systèmes et procédés pour authentifier des communications à l'aide d'un seul échange de message et d'une clé symétrique
WO2009155781A1 (fr) Procédé et système de transmission des données cryptées
JPH118620A (ja) 通信チャネルの認証を効率的に実施し、不正な変更の検出を容易にするシステムおよび方法
WO2012129929A1 (fr) Procédé, système et appareil pour la transmission sécurisée de message multimédia
WO2015117437A1 (fr) Procédé et dispositif de cryptage/décryptage de fichier
WO2012139427A1 (fr) Procédé, système et dispositif de traitement de message multimédia
CN112738133A (zh) 一种rsa认证方法
CN106549858A (zh) 一种基于标识密码的即时通信加密方法
Reshma et al. Pairing-free CP-ABE based cryptography combined with steganography for multimedia applications
JP2000347566A (ja) コンテンツ管理装置、コンテンツ利用者端末及びプログラムを記録したコンピュータ読み取り可能な記録媒体
WO2017197968A1 (fr) Procédé et dispositif de transmission de données
US9876774B2 (en) Communication security system and method
WO2012075761A1 (fr) Procédé et système de chiffrement d'un service de messagerie multimédia
JP2006262425A (ja) 公開鍵暗号方式によるネットワーク上での相互認証および公開鍵の相互交換システム
TWI313995B (en) Content protection method
WO2012129945A1 (fr) Procédé et système destinés à l'émission sécurisée de messages multimédias
WO2012129928A1 (fr) Procédé, système et appareil pour la transmission sécurisée de message multimédia
EP2575287A1 (fr) Procédé de publication de contenu sur un réseau de communication
JP2000267565A (ja) 暗号化復号化装置及びプログラムを記録したコンピュータ読み取り可能な記録媒体

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 12771563

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 12771563

Country of ref document: EP

Kind code of ref document: A1