WO2013097326A1 - Electronic mail encryption method, mail server, and system - Google Patents

Electronic mail encryption method, mail server, and system Download PDF

Info

Publication number
WO2013097326A1
WO2013097326A1 PCT/CN2012/071316 CN2012071316W WO2013097326A1 WO 2013097326 A1 WO2013097326 A1 WO 2013097326A1 CN 2012071316 W CN2012071316 W CN 2012071316W WO 2013097326 A1 WO2013097326 A1 WO 2013097326A1
Authority
WO
WIPO (PCT)
Prior art keywords
encrypted
mail
attachment
email
encryption
Prior art date
Application number
PCT/CN2012/071316
Other languages
French (fr)
Chinese (zh)
Inventor
陈颖棠
黄重阳
Original Assignee
盈世信息科技(北京)有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from CN201110450362.7A external-priority patent/CN103188129B/en
Application filed by 盈世信息科技(北京)有限公司 filed Critical 盈世信息科技(北京)有限公司
Publication of WO2013097326A1 publication Critical patent/WO2013097326A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/06Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
    • H04L9/0618Block ciphers, i.e. encrypting groups of characters of a plain text message using fixed encryption transformation
    • H04L9/0631Substitution permutation network [SPN], i.e. cipher composed of a number of stages or rounds each involving linear and nonlinear transformations, e.g. AES algorithms
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload

Definitions

  • the present invention relates to the field of communication security, and in particular, to an email encryption method, server, and system. Background technique
  • the email In addition to the information that is delivered to another user by one user, the email must also contain additional service information.
  • the mail server uses this information to deliver the message, and the client's mail receiving software uses this information to classify the message.
  • the shortcoming of the mail server is that the protection method for the mail security is relatively simple, and the security of all the mails is mainly managed through the login password of the mailbox, and the content of the stored mail is basically only encoded in plain text or simply by Base64, and depends on the user.
  • a password or other single authentication method determines whether the user has permission to view the content of the email. If there is a problem with the authentication or the mail server is modified, the data of all the users' emails will be completely exposed, and the security of the user's email is seriously threatened.
  • the address of the mail server is made public, it is easy to become the target of the hacker, and the chance of the server data being stolen is increased. For example, when the user selects the password remember function of the browser, as long as the user's computer password is stolen, the user's mailbox can be freely logged in, and the security of the email in the user's mailbox cannot be guaranteed.
  • the mail server often adopts the method of passing the authentication, so that all the data of the user in the system can be accessed.
  • many users lack sufficient security awareness, and the password is too simple, and the password of the mailbox is often stolen. In this case, the mail data is also easily stolen. Summary of the invention
  • the technical problem to be solved by the present invention is to provide an email encryption method and a mail service.
  • Servers and systems by extending the standard format of e-mail, each e-mail can have a separate encrypted password, and Rijndael encryption is used to ensure the security of each mail entity data.
  • the present invention provides an email encryption method, including: acquiring email information of a mail sent by a terminal, the mail information including a recipient, a title, a body, and an attachment; determining whether the email information is The encrypted password is included, and when the determination is yes, the email is encrypted according to the email information, and the encrypted email includes a header, a template body, an encrypted text, and an encrypted attachment, where the header further includes The encrypted identifier corresponding to the email.
  • the step of encrypting the email according to the email information includes: generating an encrypted identifier for the email to be encrypted; adding the recipient, a title, and an encrypted identifier to the header; The preset template content is added to the template body; the encrypted text and the encrypted attachment are generated according to the encrypted password, the body and the attachment.
  • the method for generating an encrypted text and an encrypted attachment according to an encrypted password, a text, and an attachment includes: encrypting a text and an attachment by using Rijndael encryption according to the encrypted password; and encrypting the text and the attached by the Rijndael encryption method. Perform Base64 encoding.
  • the method for generating an encrypted text and an encrypted attachment according to an encrypted password, a text, and an attachment further includes: the text and the attachment generate the verification information by using an MD5 algorithm.
  • the present invention further provides a mail server, comprising: an acquiring unit for acquiring mail information of a mail sent by a terminal, the mail information including a recipient, a title, a body and an attachment;
  • the determining unit is connected to the determining unit for determining whether the email information includes an encrypted password; and is connected to the determining unit, and configured to: when the determining unit determines that the email information includes an encrypted password, according to the mail
  • the information is an encryption unit that encrypts the email, and the encrypted email includes a header, a template body, an encrypted text, and an encrypted attachment, and the header further includes an encrypted identifier corresponding to the email.
  • the encryption unit includes: an identifier generation subunit for generating an encryption identifier for the email to be encrypted; and the identifier generation subunit is connected to the recipient, the title, and a header generating subunit added to the header of the header; a template generating subunit for adding preset template content to the template body; and configured to generate an encrypted body according to the encrypted password, the text, and the attachment Encrypted subunit of the encrypted attachment.
  • the encryption subunit includes:
  • first encryption subunit for encrypting the text and the attachment by the Rijndael encryption method
  • second encryption subunit connected to the first encryption subunit for Base64 encoding the text and the attachment encrypted by the first encryption subunit .
  • the encryption subunit further includes: a verification information generation subunit for generating verification information according to the text and the attachment by using the MD5 algorithm.
  • the present invention further provides an e-mail encryption system, comprising: a terminal for transmitting or receiving a mail; a mail server, configured to acquire mail information of a mail sent by the terminal, and determine the mail information Whether or not the encrypted password is included, and when it is judged as YES, the mail is encrypted according to the mail information.
  • the implementation of the present invention has the following beneficial effects:
  • the standard format of the e-mail is extended, so that each e-mail can have a separate encrypted password, so that even if the e-mail password is stolen or the data of the mail server is stolen, an encrypted password is required.
  • Viewing the full content of an email greatly improves the security of your email data.
  • the email can be downloaded and decrypted separately, which is convenient for users to decrypt on different mail servers or clients.
  • the use of Rijndael encryption to encrypt emails effectively ensures the security of each email entity.
  • FIG. 1 is a flow chart of a first embodiment of an email encryption method according to the present invention.
  • FIG. 2 is a flow chart of a second embodiment of an email encryption method according to the present invention.
  • FIG. 3 is a flow chart of a third embodiment of an email encryption method according to the present invention.
  • FIG. 4 is a schematic structural diagram of an email encryption system according to the present invention.
  • FIG. 5 is a schematic structural diagram of a mail server 1 in an email encryption system according to the present invention
  • FIG. 6 is another schematic diagram of a mail server 1 in an email encryption system according to the present invention
  • Another structural schematic diagram of the mail server 1 in the system Another structural schematic diagram of the mail server 1 in the system. detailed description
  • FIG. 1 is a flow chart of a first embodiment of an email encryption method according to the present invention, including:
  • the mail information includes a recipient, a title, a body, and an attachment.
  • the user sends a mail to the mail server through the terminal, wherein the mail information includes the recipient, the title and the body, and the user can add an attachment in the mail, and the number of the attachments can be one or more.
  • emails need to be encrypted. Users only encrypt emails that need to be encrypted and submit encrypted passwords. When users submit encrypted passwords, encrypted passwords are stored in email messages. After the mail server obtains the mail information of the mail sent by the terminal, it is necessary to determine whether the mail information includes an encrypted password.
  • the mail server determines that the email message does not contain an encrypted password, it indicates that the email does not need to be encrypted, and may be directly sent to the terminal; when the email server determines that the email information contains an encrypted password, it indicates that the email needs to be encrypted. Therefore, the mail server should encrypt the mail.
  • the encrypted email includes a header, a template body, an encrypted text, and an encrypted attachment, and the header further includes an encrypted identifier corresponding to the email.
  • the encrypted identifier is used to determine whether the email is an encrypted email.
  • the terminal may determine whether the email is an encrypted email by using an encrypted identifier, and when determining that the email is an encrypted email, Prompt the user to enter the password; when it is judged that it is not an encrypted mail, the mail information can be directly read.
  • the mail server encrypts the mail using Rijndael encryption and Base64 encoding.
  • user A needs to send an encrypted mail to user B, wherein the mail contains an attachment
  • user A uploads the attachment through the terminal and writes the recipient, the title, the body, and the like in the mail, and simultaneously inputs the encrypted password.
  • the mail server obtains the mail information of the terminal and judges that the mail information contains the encrypted password
  • the mail server needs to be encrypted. Therefore, the mail server encrypts the mail by Rijndael encryption and Base64 encoding, and the encrypted mail includes the header, the template body, and the encryption.
  • the text and the encrypted attachment further include an encrypted identifier corresponding to the mail.
  • Mail server will encrypt the mail Sent to user B. After user B obtains the email sent by user A, the email body knows that the email is an encrypted email.
  • the email server determines that the email is an encrypted email according to the encrypted identifier in the template header, and requires user B to input the decryption password, and user B inputs the decryption password. Read the message.
  • the decryption password entered by user B is the same as the encrypted password of user A.
  • user A needs to send unencrypted mail to user B, where the mail contains an attachment.
  • User A uploads the attachment through the terminal and writes the recipient, title, and body in the email.
  • the mail server obtains the mail information of the terminal, it determines that the mail information does not contain the encrypted password, and the mail does not need to be encrypted, so the mail server directly sends the mail to the user B.
  • User B obtains the email sent by User A, it can directly read the email.
  • FIG. 2 is a flow chart of a second embodiment of an email encryption method according to the present invention, including:
  • the mail information includes a recipient, a title, a body, and an attachment.
  • emails need to be encrypted. Users only encrypt emails that need to be encrypted and submit encrypted passwords. When users submit encrypted passwords, encrypted passwords are stored in email messages. After the mail server obtains the mail information of the mail sent by the terminal, it is necessary to determine whether the mail information includes an encrypted password.
  • the mail server determines that the email message does not contain an encrypted password, it indicates that the email does not need to be encrypted, and may be directly sent to the terminal; when the email server determines that the email information contains an encrypted password, it indicates that the email needs to be encrypted. Therefore, the mail server should encrypt the mail.
  • the encrypted email includes a header, a template body, an encrypted text, and an encrypted attachment, and the header further includes an encrypted identifier corresponding to the email.
  • the encrypted identifier is used to determine whether the email is an encrypted email.
  • the terminal may determine whether the email is an encrypted email by using an encrypted identifier, and when determining that the email is an encrypted email, Prompt the user to enter the password; when it is judged that it is not an encrypted mail, the mail information can be directly read.
  • the mail server determines that the email message contains an encrypted password, it indicates that the email needs to be encrypted.
  • the mail server determines that the encrypted information is not included in the mail information, it indicates that the mail does not need to be encrypted.
  • the mail server does not generate an encrypted identifier;
  • the template content includes a text description, so that the recipient can clearly know that the email is an encrypted email after receiving the email from the template body of the email.
  • 5205 Generate an encrypted text and an encrypted attachment according to the encrypted password, the body, and the attachment.
  • the mail server generates an encrypted body based on the encrypted password and the body text, and then generates an encrypted attachment based on the encrypted password and the attachment.
  • the attachment may be one or more, and the mail server traverses the text and the attachment, and sequentially encrypts the text and the attachment to generate a corresponding encrypted text and an encrypted attachment. Since the text and attachments are independently encrypted during the encryption process, the body and attachments can be downloaded and decrypted separately during decryption.
  • user A needs to send encrypted mail to user B, where the mail contains attachment C and attachment D, and user A uploads the attachment through the terminal and writes the recipient, title and body in the mail, and simultaneously inputs the encrypted password.
  • the preset template content is added to the template body, and the text and the attachment C and the attachment D are sequentially encrypted by using Rijndael encryption method and Base64 encoding, and the encrypted text, the encrypted attachment C and the encrypted attachment D are generated.
  • the mail server sends the encrypted mail to User B.
  • User B selects the encrypted text or encrypted attachment that needs to be decrypted according to actual needs, and enters the decryption password to read the encrypted text or encrypted attachment.
  • the decryption password entered by user B is the same as the encrypted password of user A.
  • 3 is a flow chart of a third embodiment of an email encryption method according to the present invention, including:
  • the mail information includes a recipient, a title, a body, and an attachment.
  • emails need to be encrypted. Users only encrypt emails that need to be encrypted and submit encrypted passwords. When users submit encrypted passwords, encrypted passwords are stored in email messages. After the mail server obtains the mail information of the mail sent by the terminal, it is necessary to determine whether the mail information includes an encrypted password. When the mail server determines that the email message does not contain an encrypted password, it indicates that the email does not need to be encrypted, and may be directly sent to the terminal; when the email server determines that the email information contains an encrypted password, it indicates that the email needs to be encrypted. Therefore, the mail server should encrypt the mail.
  • the encrypted email includes a header, a template body, an encrypted text, and an encrypted attachment, and the header further includes an encrypted identifier corresponding to the email.
  • the template content includes a text description, so that the recipient can clearly know that the email is an encrypted email after receiving the email from the template body of the email.
  • the attachment may be one or more, and the mail server traverses the text and the attachment, and encrypts the text and the attachment in sequence.
  • the mail server traverses the text and the attachment, and encrypts the text and the attachment separately to generate a corresponding encrypted text and an encrypted attachment.
  • the body and attachments are independently encrypted during the encryption process, so when decrypting, the body and attachments can be downloaded separately and decrypted separately.
  • user A needs to send encrypted mail to user B, where the mail contains attachment C and attachment D, and user A uploads the attachment through the terminal and writes the recipient, title and body in the mail, and enters the encrypted password.
  • the preset template content is added to the template body, the text is encrypted by Rijndael encryption, and the body encrypted by Rijndael encryption is Base64 encoded to generate an encrypted body, and the attachment C is encrypted by Rijndael encryption and passed through Rijndael.
  • the encrypted C-encrypted accessory C performs Base64 encoding to generate the encrypted attachment C, encrypts the attached D by Rijndael encryption, and performs Base64 encoding on the attached D encrypted by Rijndael encryption to generate the encrypted attachment D.
  • the mail server sends the encrypted mail to User B. After user B obtains the email sent by user A, the email body knows that the email is an encrypted email, and the email server encrypts the email according to the template header.
  • the text and the attachment use the MD5 algorithm to generate verification information to ensure that the correctness of the password can be verified during decryption.
  • FIG. 4 is a schematic structural diagram of an email encryption system according to the present invention, including:
  • Terminal 2 for sending or receiving mail.
  • the mail server 1 is configured to obtain mail information of the mail sent by the terminal 2 and determine whether the mail information includes an encrypted password. When the determination is yes, the mail is encrypted according to the mail information.
  • the mail information includes a recipient, a title, a body and an attachment; the encrypted mail includes a letter header, a template body, an encrypted text, and an encrypted attachment, and the header further includes the email pair
  • the encryption ID should be.
  • the mail server 1 encrypts the text and the attachment sequentially by using the Rijndael encryption method and the Base64 encoding.
  • FIG. 5 is a schematic structural diagram of a mail server 1 in an email encryption system according to the present invention, which includes:
  • the mail information includes a recipient, a title, a body, and an attachment.
  • the determining unit 12 is connected to the obtaining unit 11 for determining whether the mail information includes an encrypted password.
  • emails need to be encrypted. Users only encrypt emails that need to be encrypted and submit encrypted passwords. When users submit encrypted passwords, encrypted passwords are stored in email messages.
  • the determining unit 12 is connected to the encryption unit 13 for encrypting the mail according to the mail information when the determining unit 12 determines that the encrypted information is included in the mail information.
  • the judging unit 12 judges that the e-mail message does not contain the encrypted password, it indicates that the e-mail does not need to be encrypted, and can be directly sent to the terminal; when the judging unit 12 judges that the e-mail contains the encrypted password, it indicates that the e-mail needs to be encrypted. Operation, so the encryption unit 13 should encrypt the mail.
  • the encrypted email includes a header, a template body, an encrypted text, and an encrypted attachment, and the header further includes an encrypted identifier corresponding to the email.
  • the mail server 1 obtains the mail information of the mail sent by the terminal 2 through the obtaining unit 11, and the determining unit 12 determines whether the mail information includes the encrypted password, and the determining unit 12 determines that the mail information includes the encrypted password.
  • the encryption unit 13 encrypts the mail based on the mail information.
  • the encryption unit 13 uses the Rijndael encryption method and the Base64 encoding to sequentially encrypt the text and the attachment and respectively generate the encrypted text and the encrypted attachment.
  • FIG. 6 is a schematic diagram of another structure of the mail server 1 in an email encryption system according to the present invention.
  • the encryption unit 13 includes:
  • the identifier generating sub-unit 131 is connected to the header generating sub-unit 132 for adding the recipient, the title and the encrypted identifier to the header.
  • a template generation sub-unit 133 for adding preset template content to the template body includes a text description, so that the recipient can clearly know that the email is an encrypted email after receiving the email from the template body of the email.
  • An encryption subunit 134 for generating an encrypted text and an encrypted attachment based on the encrypted password, body, and attachment.
  • the attachment may be one or more, and the mail server traverses the text and the attachment, and sequentially encrypts the text and the attachment to generate a corresponding encrypted text and an encrypted attachment. Since the body and attachments are independently encrypted during the encryption process, the body and attachments can be downloaded separately and decrypted separately during decryption.
  • the encryption sub-unit 134 encrypts the text and attachments by Rijndael encryption and base64 encodes the text and attachments encrypted by Rijndael encryption to generate an encrypted text and an encrypted attachment.
  • the mail server 1 acquires the mail information of the mail transmitted by the terminal 2 through the obtaining unit 11, and the judging unit 12 judges whether or not the encrypted mail is included in the mail information.
  • the determining unit 12 determines that the encrypted information is included in the mail information
  • the header and the encryption identifier are added to the header, and the template generation sub-unit 133 adds the preset template content to the template body, and the encryption sub-unit 134 sequentially encrypts the text and the attachment by using the Rijndael encryption method and the Base64 encoding. Generate the corresponding encrypted text and encrypted attachments.
  • the header, template body, encrypted body, and encrypted attachments are combined to form an encrypted message.
  • FIG. ⁇ is another schematic structural diagram of the mail server 1 in an email encryption system according to the present invention.
  • the encryption subunit 134 includes:
  • the first plus for encrypting text and attachments using Rijndael encryption based on encrypted passwords The subunit unit 1341.
  • the first encryption sub-unit 1341 encrypts the text and the attachment by Rijndael encryption
  • the second encryption sub-unit 1342 performs Base64 encoding on the text and the attachment encrypted by the Rijndael encryption method to generate an encrypted text and an encrypted attachment.
  • the attachment may be one or more, and the mail server traverses the text and the attachment, and sequentially encrypts the text and the attachment to generate a corresponding encrypted text and an encrypted attachment.
  • the encryption subunit 134 further includes: a verification information generation subunit 1343 for generating verification information according to the text and the attachment by using the MD5 algorithm to ensure that the correctness of the password can be verified during decryption.
  • a verification information generation subunit 1343 for generating verification information according to the text and the attachment by using the MD5 algorithm to ensure that the correctness of the password can be verified during decryption.
  • the mail server 1 obtains the mail information of the mail sent by the terminal 2 through the obtaining unit 11, and the determining unit 12 determines whether the encrypted information is included in the mail information.
  • the determining unit 12 determines that the encrypted information is included in the mail information
  • the header and the encryption identifier are added to the header, and the template generation sub-unit 133 adds the preset template content to the template body, and the first encryption sub-unit 1341 encrypts the sequential text and the attachment by Rijndael encryption method, and is encrypted by The second encryption sub-unit 1342 performs Base64 encoding on the body and the attachment encrypted by the Rijndael encryption method to respectively generate the encrypted text and the encrypted attachment.
  • the verification information generating subunit 1343 generates the verification information using the MD5 algorithm.
  • the header, template body, encrypted text, and encrypted attachments are combined to form an encrypted message.
  • the present invention extends the standard format of an email to consist of a header, a template body, an encrypted body, and an encrypted attachment, so that each email can have a separate encrypted password, and an encrypted password is required to view the email.
  • the complete content of the encrypted text and encrypted attachments greatly improves the security of the mail data.
  • the user can separately download and separately decrypt the encrypted text and encrypted attachments. To a certain extent, the user can decrypt on different mail servers or clients.
  • the use of Rijndael encryption to encrypt emails effectively ensures the security of each email entity.

Abstract

Disclosed is an email encryption method comprising: acquiring mail information of a mail transmitted by a terminal, where the mail information comprises a recipient, a subject, a body, and an attachment; determining if the mail information comprises an encryption password, and if yes, encrypting the mail on the basis of the mail information, where the encrypted mail comprises a header, a template body, an encrypted body, and an encrypted attachment, and where the header also comprises an encryption identifier corresponding to the mail. Employment of the present invention expands a standard format for email, allows each mail to be provided with an independent encryption password, and greatly increases mail data security. At the same time, because the entire encrypted data is placed within the original text of the email, the email can thus be downloaded independently and decrypted independently. In addition, utilization of the Rijndael encryption method for the encryption of emails effectively guarantees the security of entity data of each mail.

Description

说 明 书  Description
一种电子邮件加密方法、 邮件服务器及系统 技术领域  E-mail encryption method, mail server and system
本发明涉及通信安全领域, 尤其涉及一种电子邮件加密方法、 服务器及 系统。 背景技术  The present invention relates to the field of communication security, and in particular, to an email encryption method, server, and system. Background technique
现今随着网络的发展与普及, 电子邮件已经成为重要的交流工具, 它的 安全性也越来越受到重视。  Nowadays, with the development and popularization of the Internet, e-mail has become an important communication tool, and its security has received more and more attention.
电子邮件除了由一个用户传递给另一个用户的信息之外, 电子邮件中还 必须包含附加的服务信息。 邮件服务器利用这些信息来传递邮件, 而客户端 的邮件接收软件则利用这些信息来对邮件进行分类。  In addition to the information that is delivered to another user by one user, the email must also contain additional service information. The mail server uses this information to deliver the message, and the client's mail receiving software uses this information to classify the message.
目前, 邮件服务器缺点是对邮件安全的保护方式相对单一, 主要通过邮 箱的登录密码来对所有邮件的安全进行统一管理, 而且存储邮件内容基本只 用明文或简单地进行 Base64等编码,并依赖用户密码或其他单一认证方式来 决定用户是否有权限查看邮件内容,若该认证出现问题或邮件服务器被修改, 用户所有邮件的数据将完全暴露, 使得用户电子邮件的安全性受到严重的威 胁。 同时, 邮件服务器的地址一旦公开, 也艮容易成为黑客的目标, 使服务 器数据被窃取的机率增大。 如当用户选择了浏览器的记住密码功能时, 只要 盗用用户的计算机密码, 即可自由登录用户的邮箱, 用户邮箱中的电子邮件 的安全性无法得到保证。  At present, the shortcoming of the mail server is that the protection method for the mail security is relatively simple, and the security of all the mails is mainly managed through the login password of the mailbox, and the content of the stored mail is basically only encoded in plain text or simply by Base64, and depends on the user. A password or other single authentication method determines whether the user has permission to view the content of the email. If there is a problem with the authentication or the mail server is modified, the data of all the users' emails will be completely exposed, and the security of the user's email is seriously threatened. At the same time, once the address of the mail server is made public, it is easy to become the target of the hacker, and the chance of the server data being stolen is increased. For example, when the user selects the password remember function of the browser, as long as the user's computer password is stolen, the user's mailbox can be freely logged in, and the security of the email in the user's mailbox cannot be guaranteed.
按常规思维, 邮件服务器常采用一但认证通过, 便可以访问用户在系统 内的所有数据的方式, 但不少用户缺乏足够的安全保护意识, 设置的密码过 于简单, 常常出现邮箱密码被盗的情况, 导致邮件数据也很容易地被窃取。 发明内容  According to conventional thinking, the mail server often adopts the method of passing the authentication, so that all the data of the user in the system can be accessed. However, many users lack sufficient security awareness, and the password is too simple, and the password of the mailbox is often stolen. In this case, the mail data is also easily stolen. Summary of the invention
本发明所要解决的技术问题在于, 提供一种电子邮件加密方法、 邮件服 务器及系统, 可通过扩展电子邮件的标准格式, 让每一封电子邮件都可以拥 有独立的加密密码, 并利用 Rijndael加密法保证了每一个邮件实体数据的安 全。 The technical problem to be solved by the present invention is to provide an email encryption method and a mail service. Servers and systems, by extending the standard format of e-mail, each e-mail can have a separate encrypted password, and Rijndael encryption is used to ensure the security of each mail entity data.
为了解决上述技术问题, 本发明提供了一种电子邮件加密方法, 包括: 获取终端发送的邮件的邮件信息, 所述邮件信息包括收件人、 标题、 正文及 附件; 判断所述邮件信息中是否包含加密密码, 判断为是时, 根据所述邮件 信息为所述邮件加密,所述经加密后的邮件包括信头、模板正文、加密正文、 加密附件, 所述信头中还包括与所述邮件对应的加密标识。  In order to solve the above technical problem, the present invention provides an email encryption method, including: acquiring email information of a mail sent by a terminal, the mail information including a recipient, a title, a body, and an attachment; determining whether the email information is The encrypted password is included, and when the determination is yes, the email is encrypted according to the email information, and the encrypted email includes a header, a template body, an encrypted text, and an encrypted attachment, where the header further includes The encrypted identifier corresponding to the email.
作为上述方案的改进, 所述根据邮件信息为所述邮件加密的步骤包括: 为所述需加密的邮件生成加密标识; 将所述收件人、 标题及加密标识添加至 所述信头; 将预设的模板内容添加至所述模板正文; 根据所述加密密码、 正 文及附件生成加密正文及加密附件。  As an improvement of the foregoing solution, the step of encrypting the email according to the email information includes: generating an encrypted identifier for the email to be encrypted; adding the recipient, a title, and an encrypted identifier to the header; The preset template content is added to the template body; the encrypted text and the encrypted attachment are generated according to the encrypted password, the body and the attachment.
作为上述方案的改进, 所述根据加密密码、 正文及附件生成加密正文、 加密附件的方法包括: 根据加密密码采用 Rijndael加密法对正文及附件进行 加密; 对经 Rijndael加密法加密后的正文及附件进行 Base64编码。  As an improvement of the foregoing solution, the method for generating an encrypted text and an encrypted attachment according to an encrypted password, a text, and an attachment includes: encrypting a text and an attachment by using Rijndael encryption according to the encrypted password; and encrypting the text and the attached by the Rijndael encryption method. Perform Base64 encoding.
作为上述方案的改进, 所述根据加密密码、 正文及附件生成加密正文、 加密附件的方法还包括: 所述正文及附件采用 MD5算法生成校验信息。  As an improvement of the foregoing solution, the method for generating an encrypted text and an encrypted attachment according to an encrypted password, a text, and an attachment further includes: the text and the attachment generate the verification information by using an MD5 algorithm.
相应地, 本发明还提供了一种邮件服务器, 其特征在于, 包括: 用于获 取终端发送的邮件的邮件信息的获取单元,所述邮件信息包括收件人、标题、 正文及附件; 与所述获取单元相连, 用于判断所述邮件信息中是否包含加密 密码的判断单元; 与所述判断单元相连, 用于当所述判断单元判断出所述邮 件信息中包含加密密码时根据所述邮件信息为所述邮件加密的加密单元, 所 述经加密后的邮件包括信头、 模板正文、 加密正文、 加密附件, 所述信头中 还包括与所述邮件对应的加密标识。  Correspondingly, the present invention further provides a mail server, comprising: an acquiring unit for acquiring mail information of a mail sent by a terminal, the mail information including a recipient, a title, a body and an attachment; The determining unit is connected to the determining unit for determining whether the email information includes an encrypted password; and is connected to the determining unit, and configured to: when the determining unit determines that the email information includes an encrypted password, according to the mail The information is an encryption unit that encrypts the email, and the encrypted email includes a header, a template body, an encrypted text, and an encrypted attachment, and the header further includes an encrypted identifier corresponding to the email.
作为上述方案的改进, 所述加密单元包括: 用于为所述需加密的邮件生 成加密标识的标识生成子单元; 与所述标识生成子单元相连, 用于将所述收 件人、 标题及加密标识添加至所述信头的信头生成子单元; 用于将预设的模 板内容添加至所述模板正文的模板生成子单元; 用于根据所述加密密码、 正 文及附件生成加密正文及加密附件的加密子单元。 作为上述方案的改进, 所述加密子单元包括: 用于根据加密密码采用As an improvement of the foregoing solution, the encryption unit includes: an identifier generation subunit for generating an encryption identifier for the email to be encrypted; and the identifier generation subunit is connected to the recipient, the title, and a header generating subunit added to the header of the header; a template generating subunit for adding preset template content to the template body; and configured to generate an encrypted body according to the encrypted password, the text, and the attachment Encrypted subunit of the encrypted attachment. As an improvement of the foregoing solution, the encryption subunit includes:
Rijndael加密法对正文及附件进行加密的第一加密子单元; 与所述第一加密 子单元相连,用于对经第一加密子单元加密后的正文及附件进行 Base64编码 的第二加密子单元。 a first encryption subunit for encrypting the text and the attachment by the Rijndael encryption method; and a second encryption subunit connected to the first encryption subunit for Base64 encoding the text and the attachment encrypted by the first encryption subunit .
作为上述方案的改进, 所述加密子单元还包括: 用于根据正文及附件采 用 MD5算法生成校验信息的校验信息生成子单元。  As an improvement of the foregoing solution, the encryption subunit further includes: a verification information generation subunit for generating verification information according to the text and the attachment by using the MD5 algorithm.
相应地, 本发明还提供了一种电子邮件加密系统, 其特征在于, 包括: 用于发送或接受邮件的终端; 邮件服务器, 用于获取终端发送的邮件的邮件 信息并判断所述邮件信息中是否包含加密密码, 判断为是时, 根据所述邮件 信息为所述邮件加密。  Correspondingly, the present invention further provides an e-mail encryption system, comprising: a terminal for transmitting or receiving a mail; a mail server, configured to acquire mail information of a mail sent by the terminal, and determine the mail information Whether or not the encrypted password is included, and when it is judged as YES, the mail is encrypted according to the mail information.
实施本发明具有如下有益效果: 扩展了电子邮件的标准格式, 让每一封 邮件都可以拥有独立的加密密码, 这样即使邮箱密码被盗, 或邮件服务器的 数据被窃取, 仍需要使用加密密码才能查看电子邮件的完整内容, 大大提高 了邮件数据的安全性。 同时, 因为整个加密数据放在电子邮件的原文中, 所 以可单独下载和单独解密电子邮件, 在一定程度上方便用户可以在不同的邮 件服务器或客户端上进行解密。 另外, 利用 Rijndael加密法对电子邮件进行 加密, 有效地保证了每一个邮件实体数据的安全。 附图说明  The implementation of the present invention has the following beneficial effects: The standard format of the e-mail is extended, so that each e-mail can have a separate encrypted password, so that even if the e-mail password is stolen or the data of the mail server is stolen, an encrypted password is required. Viewing the full content of an email greatly improves the security of your email data. At the same time, because the entire encrypted data is placed in the original text of the email, the email can be downloaded and decrypted separately, which is convenient for users to decrypt on different mail servers or clients. In addition, the use of Rijndael encryption to encrypt emails effectively ensures the security of each email entity. DRAWINGS
图 1是本发明一种电子邮件加密方法的第一实施例流程图;  1 is a flow chart of a first embodiment of an email encryption method according to the present invention;
图 2是本发明一种电子邮件加密方法的第二实施例流程图;  2 is a flow chart of a second embodiment of an email encryption method according to the present invention;
图 3是本发明一种电子邮件加密方法的第三实施例流程图;  3 is a flow chart of a third embodiment of an email encryption method according to the present invention;
图 4是本发明一种电子邮件加密系统的结构示意图;  4 is a schematic structural diagram of an email encryption system according to the present invention;
图 5是本发明一种电子邮件加密系统中邮件服务器 1的结构示意图; 图 6是本发明一种电子邮件加密系统中邮件服务器 1的另一结构示意图; 图 7是本发明一种电子邮件加密系统中邮件服务器 1的又一结构示意图。 具体实施方式  5 is a schematic structural diagram of a mail server 1 in an email encryption system according to the present invention; FIG. 6 is another schematic diagram of a mail server 1 in an email encryption system according to the present invention; Another structural schematic diagram of the mail server 1 in the system. detailed description
为使本发明的目的、 技术方案和优点更加清楚, 下面将结合附图对本发 明作进一步地详细描述。 In order to make the objects, technical solutions and advantages of the present invention more clear, the present invention will be described below with reference to the accompanying drawings. The details are further described in detail.
图 1是本发明一种电子邮件加密方法的第一实施例流程图, 包括: 1 is a flow chart of a first embodiment of an email encryption method according to the present invention, including:
5100, 获取终端发送的邮件的邮件信息。 5100. Obtain the mail information of the mail sent by the terminal.
所述邮件信息包括收件人、 标题、 正文及附件。 用户通过终端向邮件服 务器发送邮件, 其中邮件信息包括收件人、 标题及正文, 同时, 用户可以在 邮件内添加附件, 附件数量可以一个或多个。  The mail information includes a recipient, a title, a body, and an attachment. The user sends a mail to the mail server through the terminal, wherein the mail information includes the recipient, the title and the body, and the user can add an attachment in the mail, and the number of the attachments can be one or more.
5101 , 判断所述邮件信息中是否包含加密密码。  5101. Determine whether the encrypted information is included in the email information.
需要说明的是, 并不是所有的邮件都需要进行加密处理, 用户只对需要 加密的邮件进行加密并提交加密密码, 当用户提交加密密码后, 加密密码会 存储于邮件信息当中。 邮件服务器获取终端发送的邮件的邮件信息后, 需要 判断所述邮件信息中是否包含加密密码。  It should be noted that not all emails need to be encrypted. Users only encrypt emails that need to be encrypted and submit encrypted passwords. When users submit encrypted passwords, encrypted passwords are stored in email messages. After the mail server obtains the mail information of the mail sent by the terminal, it is necessary to determine whether the mail information includes an encrypted password.
5102, 判断为是时, 根据所述邮件信息为所述邮件加密。  5102. When the determination is yes, the email is encrypted according to the mail information.
当邮件服务器判断出邮件信息中不含有加密密码时, 表示该邮件不需要 进行加密操作, 可直接发送给终端; 当邮件服务器判断出邮件信息中含有加 密密码时,表示该邮件需要进行加密操作,因此邮件服务器应该对邮件加密。  When the mail server determines that the email message does not contain an encrypted password, it indicates that the email does not need to be encrypted, and may be directly sent to the terminal; when the email server determines that the email information contains an encrypted password, it indicates that the email needs to be encrypted. Therefore, the mail server should encrypt the mail.
所述经加密后的邮件包括信头、 模板正文、 加密正文、 加密附件, 所述 信头中还包括与所述邮件对应的加密标识。  The encrypted email includes a header, a template body, an encrypted text, and an encrypted attachment, and the header further includes an encrypted identifier corresponding to the email.
需要说明的是, 所述加密标识用于判断邮件是否为加密邮件, 当终端接 收到邮件服务器发送过来的邮件时, 可通过加密标识判断该邮件是否为加密 邮件, 当判断出为加密邮件时, 提示用户输入密码; 当判断出不为加密邮件 时, 可直接读取邮件信息。  It should be noted that, the encrypted identifier is used to determine whether the email is an encrypted email. When the terminal receives the email sent by the email server, the terminal may determine whether the email is an encrypted email by using an encrypted identifier, and when determining that the email is an encrypted email, Prompt the user to enter the password; when it is judged that it is not an encrypted mail, the mail information can be directly read.
优选地,所述邮件服务器采用 Rijndael加密法及 Base64编码对邮件进行 加密。  Preferably, the mail server encrypts the mail using Rijndael encryption and Base64 encoding.
例如,用户 A需要向用户 B发送加密邮件,其中,该邮件含有一个附件, 用户 A通过终端上传附件并在邮件内写入收件人、 标题及正文等, 同时输入 加密密码。 邮件服务器获取到终端的邮件信息后, 判断出邮件信息中含有加 密密码, 则该邮件需要加密, 因此邮件服务器采用 Rijndael加密法及 Base64 编码对邮件加密, 加密后邮件包括信头、 模板正文、 加密正文、 加密附件, 所述信头中还包括与所述邮件对应的加密标识。 邮件服务器将该加密后邮件 发送给用户 B。 用户 B获取用户 A发送的邮件后, 由模板正文可知该邮件为 加密邮件, 邮件服务器根据模板信头中的加密标识判断该邮件为加密邮件, 要求用户 B输入解密密码, 用户 B输入解密密码, 读取邮件。 其中用户 B所 输入的解密密码与用户 A的加密密码相同。 For example, user A needs to send an encrypted mail to user B, wherein the mail contains an attachment, and user A uploads the attachment through the terminal and writes the recipient, the title, the body, and the like in the mail, and simultaneously inputs the encrypted password. After the mail server obtains the mail information of the terminal and judges that the mail information contains the encrypted password, the mail needs to be encrypted. Therefore, the mail server encrypts the mail by Rijndael encryption and Base64 encoding, and the encrypted mail includes the header, the template body, and the encryption. The text and the encrypted attachment further include an encrypted identifier corresponding to the mail. Mail server will encrypt the mail Sent to user B. After user B obtains the email sent by user A, the email body knows that the email is an encrypted email. The email server determines that the email is an encrypted email according to the encrypted identifier in the template header, and requires user B to input the decryption password, and user B inputs the decryption password. Read the message. The decryption password entered by user B is the same as the encrypted password of user A.
需要说明的是, 由于正文与附件在加密过程中是独立加密的, 因此在解 密时, 也要分别进行解密。  It should be noted that since the text and the attachment are independently encrypted in the encryption process, the decryption is also performed separately when decrypting.
又如, 用户 A需要向用户 B发送不加密邮件, 其中, 该邮件含有一个附 件。 用户 A通过终端上传附件并在邮件内写入收件人、 标题及正文等。 邮件 服务器获取到终端的邮件信息后, 判断出邮件信息中不含有加密密码, 该邮 件不需要加密, 因此邮件服务器将该邮件直接发送给用户 B。 用户 B获取用 户 A发送的邮件后, 可直接读取邮件。  As another example, user A needs to send unencrypted mail to user B, where the mail contains an attachment. User A uploads the attachment through the terminal and writes the recipient, title, and body in the email. After the mail server obtains the mail information of the terminal, it determines that the mail information does not contain the encrypted password, and the mail does not need to be encrypted, so the mail server directly sends the mail to the user B. After User B obtains the email sent by User A, it can directly read the email.
图 2是本发明一种电子邮件加密方法的第二实施例流程图, 包括: 2 is a flow chart of a second embodiment of an email encryption method according to the present invention, including:
5200, 获取终端发送的邮件的邮件信息。 5200, Obtain the mail information of the mail sent by the terminal.
所述邮件信息包括收件人、 标题、 正文及附件。  The mail information includes a recipient, a title, a body, and an attachment.
5201 , 判断所述邮件信息中是否包含加密密码。  5201. Determine whether the encrypted information is included in the mail information.
需要说明的是, 并不是所有的邮件都需要进行加密处理, 用户只对需要 加密的邮件进行加密并提交加密密码, 当用户提交加密密码后, 加密密码会 存储于邮件信息当中。 邮件服务器获取终端发送的邮件的邮件信息后, 需要 判断所述邮件信息中是否包含加密密码。  It should be noted that not all emails need to be encrypted. Users only encrypt emails that need to be encrypted and submit encrypted passwords. When users submit encrypted passwords, encrypted passwords are stored in email messages. After the mail server obtains the mail information of the mail sent by the terminal, it is necessary to determine whether the mail information includes an encrypted password.
当邮件服务器判断出邮件信息中不含有加密密码时, 表示该邮件不需要 进行加密操作, 可直接发送给终端; 当邮件服务器判断出邮件信息中含有加 密密码时,表示该邮件需要进行加密操作,因此邮件服务器应该对邮件加密。  When the mail server determines that the email message does not contain an encrypted password, it indicates that the email does not need to be encrypted, and may be directly sent to the terminal; when the email server determines that the email information contains an encrypted password, it indicates that the email needs to be encrypted. Therefore, the mail server should encrypt the mail.
所述经加密后的邮件包括信头、 模板正文、 加密正文、 加密附件, 所述 信头中还包括与所述邮件对应的加密标识。  The encrypted email includes a header, a template body, an encrypted text, and an encrypted attachment, and the header further includes an encrypted identifier corresponding to the email.
5202, 为所述需加密的邮件生成加密标识。  5202. Generate an encryption identifier for the email to be encrypted.
需要说明的是, 所述加密标识用于判断邮件是否为加密邮件, 当终端接 收到邮件服务器发送过来的邮件时, 可通过加密标识判断该邮件是否为加密 邮件, 当判断出为加密邮件时, 提示用户输入密码; 当判断出不为加密邮件 时, 可直接读取邮件信息。 在加密过程中, 当邮件服务器判断出邮件信息中含有加密密码时, 表示 该邮件需要进行加密操作, 此时, 邮件服务器生成加密标识, 其中, 所述加 密标识可以为 "EncType=undetach" ; 当邮件服务器判断出邮件信息中不含有 加密密码时, 表示该邮件不需要进行加密操作, 此时, 邮件服务器不生成加 密标识; It should be noted that, the encrypted identifier is used to determine whether the email is an encrypted email. When the terminal receives the email sent by the email server, the terminal may determine whether the email is an encrypted email by using an encrypted identifier, and when determining that the email is an encrypted email, Prompt the user to enter the password; when it is judged that it is not an encrypted mail, the mail information can be directly read. In the encryption process, when the mail server determines that the email message contains an encrypted password, it indicates that the email needs to be encrypted. At this time, the mail server generates an encrypted identifier, where the encrypted identifier may be "EncType=undetach"; When the mail server determines that the encrypted information is not included in the mail information, it indicates that the mail does not need to be encrypted. At this time, the mail server does not generate an encrypted identifier;
5203 , 将所述收件人、 标题及加密标识添加至所述信头。  5203. Add the recipient, the title, and the encrypted identifier to the letterhead.
5204, 将预设的模板内容添加至所述模板正文。  5204. Add preset template content to the template body.
需要说明的是, 所述模板内容包括文字说明, 让收件人在收到邮件后, 从邮件的模板正文即可明显地知道该邮件为加密邮件。  It should be noted that the template content includes a text description, so that the recipient can clearly know that the email is an encrypted email after receiving the email from the template body of the email.
5205 , 根据所述加密密码、 正文及附件生成加密正文及加密附件。  5205. Generate an encrypted text and an encrypted attachment according to the encrypted password, the body, and the attachment.
邮件服务器根据所述加密密码及正文生成加密正文, 然后, 根据所述加 密密码及附件生成加密附件。  The mail server generates an encrypted body based on the encrypted password and the body text, and then generates an encrypted attachment based on the encrypted password and the attachment.
需要说明的是, 所述附件可以为一个或多个, 邮件服务器遍历所述正文 及附件, 依次对所述正文及附件加密, 生成相应的加密正文及加密附件。 由 于正文与附件在加密过程中是独立加密的, 因此在解密时, 正文与附件可单 独下载和单独解密。  It should be noted that the attachment may be one or more, and the mail server traverses the text and the attachment, and sequentially encrypts the text and the attachment to generate a corresponding encrypted text and an encrypted attachment. Since the text and attachments are independently encrypted during the encryption process, the body and attachments can be downloaded and decrypted separately during decryption.
例如, 用户 A需要向用户 B发送加密邮件, 其中, 该邮件含有附件 C 及附件 D,用户 A通过终端上传附件并在邮件内写入收件人、标题及正文等, 同时输入加密密码。 邮件服务器获取到终端的邮件信息后, 判断出邮件信息 中含有加密密码, 该邮件需要加密, 因此邮件服务器生成加密标识 "EncType=undetach" 并将收件人、 标题及加密标识添加至信头, 将预设的 模板内容添加至模板正文,采用 Rijndael加密法及 Base64编码对正文及附件 C及附件 D依次进行加密, 生成加密正文、 加密附件 C及加密附件 D。 邮件 服务器将该加密后邮件发送给用户 B。 用户 B获取用户 A发送的邮件后, 由 模板正文可知该邮件为加密邮件, 同时邮件服务器根据模板信头中的加密标 识 "EncType=undetach"判断该邮件为加密邮件,要求用户 B输入解密密码, 用户 B根据实际需要选择需要解密的加密正文或加密附件,并输入解密密码, 读取邮件加密正文或加密附件。其中用户 B所输入的解密密码与用户 A的加 密密码相同。 图 3是本发明一种电子邮件加密方法的第三实施例流程图, 包括:For example, user A needs to send encrypted mail to user B, where the mail contains attachment C and attachment D, and user A uploads the attachment through the terminal and writes the recipient, title and body in the mail, and simultaneously inputs the encrypted password. After the mail server obtains the mail information of the terminal, it determines that the mail information contains an encrypted password, and the mail needs to be encrypted. Therefore, the mail server generates an encrypted identifier "EncType=undetach" and adds the recipient, the title, and the encrypted identifier to the letterhead. The preset template content is added to the template body, and the text and the attachment C and the attachment D are sequentially encrypted by using Rijndael encryption method and Base64 encoding, and the encrypted text, the encrypted attachment C and the encrypted attachment D are generated. The mail server sends the encrypted mail to User B. After user B obtains the email sent by user A, the email body knows that the email is an encrypted email, and the email server determines that the email is an encrypted email according to the encryption identifier "EncType=undetach" in the template header, and requires user B to input the decryption password. User B selects the encrypted text or encrypted attachment that needs to be decrypted according to actual needs, and enters the decryption password to read the encrypted text or encrypted attachment. The decryption password entered by user B is the same as the encrypted password of user A. 3 is a flow chart of a third embodiment of an email encryption method according to the present invention, including:
5300, 获取终端发送的邮件的邮件信息。 5300. Obtain the email information of the email sent by the terminal.
所述邮件信息包括收件人、 标题、 正文及附件。  The mail information includes a recipient, a title, a body, and an attachment.
5301 , 判断所述邮件信息中是否包含加密密码。  5301. Determine whether the encrypted information is included in the email information.
需要说明的是, 并不是所有的邮件都需要进行加密处理, 用户只对需要 加密的邮件进行加密并提交加密密码, 当用户提交加密密码后, 加密密码会 存储于邮件信息当中。 邮件服务器获取终端发送的邮件的邮件信息后, 需要 判断所述邮件信息中是否包含加密密码。 当邮件服务器判断出邮件信息中不 含有加密密码时, 表示该邮件不需要进行加密操作, 可直接发送给终端; 当 邮件服务器判断出邮件信息中含有加密密码时, 表示该邮件需要进行加密操 作, 因此邮件服务器应该对邮件加密。  It should be noted that not all emails need to be encrypted. Users only encrypt emails that need to be encrypted and submit encrypted passwords. When users submit encrypted passwords, encrypted passwords are stored in email messages. After the mail server obtains the mail information of the mail sent by the terminal, it is necessary to determine whether the mail information includes an encrypted password. When the mail server determines that the email message does not contain an encrypted password, it indicates that the email does not need to be encrypted, and may be directly sent to the terminal; when the email server determines that the email information contains an encrypted password, it indicates that the email needs to be encrypted. Therefore, the mail server should encrypt the mail.
所述经加密后的邮件包括信头、 模板正文、 加密正文、 加密附件, 所述 信头中还包括与所述邮件对应的加密标识。  The encrypted email includes a header, a template body, an encrypted text, and an encrypted attachment, and the header further includes an encrypted identifier corresponding to the email.
5302, 为所述需加密的邮件生成加密标识。  5302. Generate an encryption identifier for the email to be encrypted.
在加密过程中, 当邮件服务器判断出邮件信息中含有加密密码时, 表示 该邮件需要进行加密操作, 此时, 邮件服务器生成加密标识, 其中, 所述加 密标识可以为 "EncType=undetach" ; 当邮件服务器判断出邮件信息中不含有 加密密码时, 表示该邮件不需要进行加密操作, 此时, 邮件服务器不生成加 密标识。  In the encryption process, when the mail server determines that the email message contains an encrypted password, it indicates that the email needs to be encrypted. At this time, the mail server generates an encrypted identifier, where the encrypted identifier may be "EncType=undetach"; When the mail server determines that the encrypted information is not included in the mail information, it indicates that the mail does not need to be encrypted. At this time, the mail server does not generate an encrypted identifier.
5303 , 将所述收件人、 标题及加密标识添加至所述信头。  5303. Add the recipient, the title, and the encrypted identifier to the letterhead.
5304, 将预设的模板内容添加至所述模板正文。  5304. Add preset template content to the template body.
需要说明的是, 所述模板内容包括文字说明, 让收件人在收到邮件后, 从邮件的模板正文即可明显地知道该邮件为加密邮件。  It should be noted that the template content includes a text description, so that the recipient can clearly know that the email is an encrypted email after receiving the email from the template body of the email.
5305 , 根据加密密码采用 Rijndael加密法对正文及附件进行加密。  5305. Encrypt the text and attachments according to the encrypted password using Rijndael encryption.
需要说明的是, 所述附件可以为一个或多个, 邮件服务器遍历所述正文 及附件, 依次对所述正文及附件进行加密。  It should be noted that the attachment may be one or more, and the mail server traverses the text and the attachment, and encrypts the text and the attachment in sequence.
5306, 对经 Rijndael加密法加密后的正文及附件进行 Base64编码。 加密过程中, 邮件服务器采用 Rijndael加密法对正文及附件进行加密并 将经 Rijndael加密法加密后的正文及附件进行 Base64编码以生成加密正文及 加密附件。 5306, Performing Base64 encoding on the body and the attachment encrypted by the Rijndael encryption method. During the encryption process, the mail server encrypts the text and attachments by Rijndael encryption and base64 encodes the text and attachments encrypted by Rijndael encryption to generate the encrypted text and Encrypt attachments.
由于所述附件可以为一个或多个, 邮件服务器遍历所述正文及附件, 依 次对所述正文及附件分别加密, 生成相应的加密正文及加密附件。 而正文与 附件在加密过程中是独立加密的, 因此在解密时, 正文与附件可单独下载和 单独解密。  Since the attachment may be one or more, the mail server traverses the text and the attachment, and encrypts the text and the attachment separately to generate a corresponding encrypted text and an encrypted attachment. The body and attachments are independently encrypted during the encryption process, so when decrypting, the body and attachments can be downloaded separately and decrypted separately.
例如, 用户 A需要向用户 B发送加密邮件, 其中, 该邮件含有附件 C 及附件 D,用户 A通过终端上传附件并在邮件内写入收件人、标题及正文等, 同时输入加密密码。 邮件服务器获取到终端的邮件信息后, 判断出邮件信息 中含有加密密码, 该邮件需要加密, 因此邮件服务器生成加密标识 "EncType=undetach" 并将收件人、 标题及加密标识添加至信头, 将预设的 模板内容添加至模板正文, 采用 Rijndael 加密法对正文进行加密并将经 Rijndael加密法加密后的正文进行 Base64编码以生成加密正文,采用 Rijndael 加密法对附件 C进行加密并将经 Rijndael加密法加密后的附件 C进行 Base64 编码以生成加密附件 C , 采用 Rijndael加密法对附件 D 进行加密并将经 Rijndael加密法加密后的附件 D进行 Base64编码以生成加密附件 D。邮件服 务器将该加密后邮件发送给用户 B。 用户 B获取用户 A发送的邮件后, 由模 板正文可知该邮件为加密邮件, 同时邮件服务器根据模板信头中的加密标识 For example, user A needs to send encrypted mail to user B, where the mail contains attachment C and attachment D, and user A uploads the attachment through the terminal and writes the recipient, title and body in the mail, and enters the encrypted password. After the mail server obtains the mail information of the terminal, it determines that the mail information contains an encrypted password, and the mail needs to be encrypted. Therefore, the mail server generates an encrypted identifier "EncType=undetach" and adds the recipient, the title, and the encrypted identifier to the letterhead. The preset template content is added to the template body, the text is encrypted by Rijndael encryption, and the body encrypted by Rijndael encryption is Base64 encoded to generate an encrypted body, and the attachment C is encrypted by Rijndael encryption and passed through Rijndael. The encrypted C-encrypted accessory C performs Base64 encoding to generate the encrypted attachment C, encrypts the attached D by Rijndael encryption, and performs Base64 encoding on the attached D encrypted by Rijndael encryption to generate the encrypted attachment D. The mail server sends the encrypted mail to User B. After user B obtains the email sent by user A, the email body knows that the email is an encrypted email, and the email server encrypts the email according to the template header.
"EncType=undetach" 判断该邮件为加密邮件, 要求用户 B输入解密密码, 用户 B根据实际需要选择需要解密的加密正文、 加密附件 C或加密附件 D, 并输入解密密码, 读取邮件加密正文、 加密附件 C或加密附件 D。 其中用户 B所输入的解密密码与用户 A的加密密码相同。 "EncType=undetach" determines that the email is an encrypted email, and requires user B to input the decryption password. User B selects the encrypted text to be decrypted, encrypts attachment C or encrypts attachment D according to actual needs, and inputs the decryption password to read the encrypted text of the email. Encrypt attachment C or encrypt attachment D. The decryption password entered by user B is the same as the encrypted password of user A.
更佳地, 加密过程中, 所述正文及附件采用 MD5 算法生成校验信息, 以保证在解密时可以检验密码的正确性。  More preferably, in the encryption process, the text and the attachment use the MD5 algorithm to generate verification information to ensure that the correctness of the password can be verified during decryption.
图 4是本发明一种电子邮件加密系统的结构示意图, 包括:  4 is a schematic structural diagram of an email encryption system according to the present invention, including:
用于发送或接受邮件的终端 2。  Terminal 2 for sending or receiving mail.
邮件服务器 1 , 用于获取终端 2发送的邮件的邮件信息并判断所述邮件 信息中是否包含加密密码,判断为是时,根据所述邮件信息为所述邮件加密。  The mail server 1 is configured to obtain mail information of the mail sent by the terminal 2 and determine whether the mail information includes an encrypted password. When the determination is yes, the mail is encrypted according to the mail information.
所述邮件信息包括收件人、 标题、 正文及附件; 所述经加密后的邮件包 括信头、 模板正文、 加密正文、 加密附件, 所述信头中还包括与所述邮件对 应的加密标识。 The mail information includes a recipient, a title, a body and an attachment; the encrypted mail includes a letter header, a template body, an encrypted text, and an encrypted attachment, and the header further includes the email pair The encryption ID should be.
需要说明的是,邮件服务器 1采用 Rijndael加密法及 Base64编码对正文 及附件依次进行加密。  It should be noted that the mail server 1 encrypts the text and the attachment sequentially by using the Rijndael encryption method and the Base64 encoding.
图 5是本发明一种电子邮件加密系统中邮件服务器 1的结构示意图, 包 括:  FIG. 5 is a schematic structural diagram of a mail server 1 in an email encryption system according to the present invention, which includes:
用于获取终端 2发送的邮件的邮件信息的获取单元 11。  An obtaining unit 11 for obtaining mail information of a mail transmitted by the terminal 2.
所述邮件信息包括收件人、 标题、 正文及附件。  The mail information includes a recipient, a title, a body, and an attachment.
与所述获取单元 11相连,用于判断所述邮件信息中是否包含加密密码的 判断单元 12。  The determining unit 12 is connected to the obtaining unit 11 for determining whether the mail information includes an encrypted password.
需要说明的是, 并不是所有的邮件都需要进行加密处理, 用户只对需要 加密的邮件进行加密并提交加密密码, 当用户提交加密密码后, 加密密码会 存储于邮件信息当中。  It should be noted that not all emails need to be encrypted. Users only encrypt emails that need to be encrypted and submit encrypted passwords. When users submit encrypted passwords, encrypted passwords are stored in email messages.
与所述判断单元 12相连, 用于当所述判断单元 12判断出所述邮件信息 中包含加密密码时根据所述邮件信息为所述邮件加密的加密单元 13。  The determining unit 12 is connected to the encryption unit 13 for encrypting the mail according to the mail information when the determining unit 12 determines that the encrypted information is included in the mail information.
当判断单元 12判断出邮件信息中不含有加密密码时,表示该邮件不需要 进行加密操作,可直接发送给终端; 当判断单元 12判断出邮件信息中含有加 密密码时,表示该邮件需要进行加密操作,因此加密单元 13应该对邮件加密。  When the judging unit 12 judges that the e-mail message does not contain the encrypted password, it indicates that the e-mail does not need to be encrypted, and can be directly sent to the terminal; when the judging unit 12 judges that the e-mail contains the encrypted password, it indicates that the e-mail needs to be encrypted. Operation, so the encryption unit 13 should encrypt the mail.
所述经加密后的邮件包括信头、 模板正文、 加密正文、 加密附件, 所述 信头中还包括与所述邮件对应的加密标识。  The encrypted email includes a header, a template body, an encrypted text, and an encrypted attachment, and the header further includes an encrypted identifier corresponding to the email.
邮件服务器 1通过获取单元 11获取终端 2所述发送的邮件的邮件信息, 由判断单元 12判断所述邮件信息中是否包含加密密码, 当所述判断单元 12 判断出所述邮件信息中包含加密密码时,加密单元 13根据所述邮件信息为所 述邮件加密。  The mail server 1 obtains the mail information of the mail sent by the terminal 2 through the obtaining unit 11, and the determining unit 12 determines whether the mail information includes the encrypted password, and the determining unit 12 determines that the mail information includes the encrypted password. At this time, the encryption unit 13 encrypts the mail based on the mail information.
需要说明的是, 所述加密单元 13采用 Rijndael加密法及 Base64编码对 正文及附件依次进行加密并分别生成加密正文及加密附件。  It should be noted that the encryption unit 13 uses the Rijndael encryption method and the Base64 encoding to sequentially encrypt the text and the attachment and respectively generate the encrypted text and the encrypted attachment.
图 6是本发明一种电子邮件加密系统中邮件服务器 1的另一结构示意图, 所述加密单元 13包括:  FIG. 6 is a schematic diagram of another structure of the mail server 1 in an email encryption system according to the present invention. The encryption unit 13 includes:
用于为所述需加密的邮件生成加密标识的标识生成子单元 131。  An identifier generating sub-unit 131 for generating an encrypted identifier for the mail to be encrypted.
在加密过程中, 当判断单元 12判断出邮件信息中含有加密密码时,表示 该邮件需要进行加密操作,此时,标识生成子单元 131生成加密标识,其中, 所述加密标识可以为 "EncType=undetach" ; 当判断单元 12判断出邮件信息 中不含有加密密码时, 表示该邮件不需要进行加密操作, 此时, 标识生成子 单元 131不生成加密标识。 In the encryption process, when the judging unit 12 judges that the e-mail message contains an encrypted password, it indicates The email needs to perform an encryption operation. In this case, the identifier generation sub-unit 131 generates an encrypted identifier, where the encrypted identifier may be "EncType=undetach"; when the determining unit 12 determines that the email information does not contain the encrypted password, the identifier The mail does not need to perform an encryption operation. At this time, the identifier generation sub-unit 131 does not generate an encryption identifier.
与所述标识生成子单元 131相连, 用于将所述收件人、 标题及加密标识 添加至所述信头的信头生成子单元 132。  The identifier generating sub-unit 131 is connected to the header generating sub-unit 132 for adding the recipient, the title and the encrypted identifier to the header.
用于将预设的模板内容添加至所述模板正文的模板生成子单元 133。 所述模板内容包括文字说明, 让收件人在收到邮件后, 从邮件的模板正 文即可明显地知道该邮件为加密邮件。  A template generation sub-unit 133 for adding preset template content to the template body. The template content includes a text description, so that the recipient can clearly know that the email is an encrypted email after receiving the email from the template body of the email.
用于根据所述加密密码、 正文及附件生成加密正文及加密附件的加密子 单元 134。  An encryption subunit 134 for generating an encrypted text and an encrypted attachment based on the encrypted password, body, and attachment.
需要说明的是, 所述附件可以为一个或多个, 邮件服务器遍历所述正文 及附件,依次对所述正文及附件分别加密,生成相应的加密正文及加密附件。 由于正文与附件在加密过程中是独立加密的, 因此在解密时, 正文与附件可 单独下载和单独解密。  It should be noted that the attachment may be one or more, and the mail server traverses the text and the attachment, and sequentially encrypts the text and the attachment to generate a corresponding encrypted text and an encrypted attachment. Since the body and attachments are independently encrypted during the encryption process, the body and attachments can be downloaded separately and decrypted separately during decryption.
加密过程中, 加密子单元 134采用 Rijndael加密法对正文及附件进行加 密并将经 Rijndael加密法加密后的正文及附件进行 Base64编码以生成加密正 文及加密附件。  During the encryption process, the encryption sub-unit 134 encrypts the text and attachments by Rijndael encryption and base64 encodes the text and attachments encrypted by Rijndael encryption to generate an encrypted text and an encrypted attachment.
邮件服务器 1通过获取单元 11获取终端 2所述发送的邮件的邮件信息, 由判断单元 12判断所述邮件信息中是否包含加密密码。 当所述判断单元 12 判断出所述邮件信息中包含加密密码时, 加密单元 13 中的标识生成子单元 131生成加密标识 "EncType=undetach" ,并由信头生成子单元 132将收件人、 标题及加密标识添加至信头中, 由模板生成子单元 133将预设的模板内容添 加至模板正文中, 由加密子单元 134采用 Rijndael加密法及 Base64编码依次 对所述正文及附件分别加密, 生成相应的加密正文及加密附件。 最后, 将信 头、 模板正文、 加密正文及加密附件进行组合, 组成加密邮件。  The mail server 1 acquires the mail information of the mail transmitted by the terminal 2 through the obtaining unit 11, and the judging unit 12 judges whether or not the encrypted mail is included in the mail information. When the determining unit 12 determines that the encrypted information is included in the mail information, the identifier generating sub-unit 131 in the encrypting unit 13 generates an encrypted identifier "EncType=undetach", and the recipient is generated by the header generating sub-unit 132. The header and the encryption identifier are added to the header, and the template generation sub-unit 133 adds the preset template content to the template body, and the encryption sub-unit 134 sequentially encrypts the text and the attachment by using the Rijndael encryption method and the Base64 encoding. Generate the corresponding encrypted text and encrypted attachments. Finally, the header, template body, encrypted body, and encrypted attachments are combined to form an encrypted message.
图 Ί是本发明一种电子邮件加密系统中邮件服务器 1的又一结构示意图 , 所述加密子单元 134包括:  FIG. 又一 is another schematic structural diagram of the mail server 1 in an email encryption system according to the present invention. The encryption subunit 134 includes:
用于根据加密密码采用 Rijndael加密法对正文及附件进行加密的第一加 密子单元 1341。 The first plus for encrypting text and attachments using Rijndael encryption based on encrypted passwords The subunit unit 1341.
与所述第一加密子单元 1341相连, 用于对经第一加密子单元 1341加密 后的正文及附件进行 Base64编码的第二加密子单元 1342。  Connected to the first encryption subunit 1341, a second encryption subunit 1342 for Base64 encoding the text and the attachment encrypted by the first encryption subunit 1341.
加密过程中,第一加密子单元 1341采用 Rijndael加密法对正文及附件进 行加密,并由第二加密子单元 1342将经 Rijndael加密法加密后的正文及附件 进行 Base64编码以生成加密正文及加密附件。  In the encryption process, the first encryption sub-unit 1341 encrypts the text and the attachment by Rijndael encryption, and the second encryption sub-unit 1342 performs Base64 encoding on the text and the attachment encrypted by the Rijndael encryption method to generate an encrypted text and an encrypted attachment. .
需要说明的是, 所述附件可以为一个或多个, 邮件服务器遍历所述正文 及附件,依次对所述正文及附件分别加密,生成相应的加密正文及加密附件。  It should be noted that the attachment may be one or more, and the mail server traverses the text and the attachment, and sequentially encrypts the text and the attachment to generate a corresponding encrypted text and an encrypted attachment.
更佳地所述加密子单元 134还包括: 用于根据正文及附件采用 MD5算 法生成校验信息的校验信息生成子单元 1343 , 以保证在解密时可以检验密码 的正确性。  Preferably, the encryption subunit 134 further includes: a verification information generation subunit 1343 for generating verification information according to the text and the attachment by using the MD5 algorithm to ensure that the correctness of the password can be verified during decryption.
工作时,邮件服务器 1通过获取单元 11获取终端 2所述发送的邮件的邮 件信息, 由判断单元 12判断所述邮件信息中是否包含加密密码。 当所述判断 单元 12判断出所述邮件信息中包含加密密码时, 加密单元 13中的标识生成 子单元 131 生成加密标识 "EncType=undetach" , 并由信头生成子单元 132 将收件人、 标题及加密标识添加至信头中, 由模板生成子单元 133将预设的 模板内容添加至模板正文中,由第一加密子单元 1341采用 Rijndael加密法对 依次正文及附件进行加密,并由第二加密子单元 1342将经 Rijndael加密法加 密后的正文及附件进行 Base64编码以分别生成加密正文及加密附件。 同时, 校验信息生成子单元 1343采用 MD5算法生成校验信息。 最后, 将信头、 模 板正文、 加密正文及加密附件进行组合, 组成加密邮件。  During operation, the mail server 1 obtains the mail information of the mail sent by the terminal 2 through the obtaining unit 11, and the determining unit 12 determines whether the encrypted information is included in the mail information. When the determining unit 12 determines that the encrypted information is included in the mail information, the identifier generating sub-unit 131 in the encrypting unit 13 generates an encrypted identifier "EncType=undetach", and the recipient is generated by the header generating sub-unit 132. The header and the encryption identifier are added to the header, and the template generation sub-unit 133 adds the preset template content to the template body, and the first encryption sub-unit 1341 encrypts the sequential text and the attachment by Rijndael encryption method, and is encrypted by The second encryption sub-unit 1342 performs Base64 encoding on the body and the attachment encrypted by the Rijndael encryption method to respectively generate the encrypted text and the encrypted attachment. At the same time, the verification information generating subunit 1343 generates the verification information using the MD5 algorithm. Finally, the header, template body, encrypted text, and encrypted attachments are combined to form an encrypted message.
由上可知, 本发明将电子邮件的标准格式扩展为由信头、 模板正文、 加 密正文及加密附件组成, 让每一封邮件都可以拥有独立的加密密码, 且需要 使用加密密码才能查看电子邮件中加密正文及加密附件的完整内容, 大大提 高了邮件数据的安全性。 同时, 因为整个加密数据放在加密正文及加密附件 中, 所以用户可单独下载和单独解密加密正文及加密附件, 在一定程度上方 便用户可以在不同的邮件服务器或客户端上进行解密。 另外, 利用 Rijndael 加密法对电子邮件进行加密, 有效地保证了每一个邮件实体数据的安全。  As can be seen from the above, the present invention extends the standard format of an email to consist of a header, a template body, an encrypted body, and an encrypted attachment, so that each email can have a separate encrypted password, and an encrypted password is required to view the email. The complete content of the encrypted text and encrypted attachments greatly improves the security of the mail data. At the same time, because the entire encrypted data is placed in the encrypted text and encrypted attachments, the user can separately download and separately decrypt the encrypted text and encrypted attachments. To a certain extent, the user can decrypt on different mail servers or clients. In addition, the use of Rijndael encryption to encrypt emails effectively ensures the security of each email entity.
以上所述是本发明的优选实施方式, 应当指出, 对于本技术领域的普通 技术人员来说,在不脱离本发明原理的前提下,还可以做出若干改进和润饰, 这些改进和润饰也视为本发明的保护范围。 The above is a preferred embodiment of the present invention, it should be noted that it is common to the art. Many modifications and refinements can be made by the skilled person without departing from the principles of the invention, and such modifications and refinements are also considered to be within the scope of the invention.

Claims

权 利 要 求 书 Claim
1. 一种电子邮件加密方法, 其特征在于, 包括:  An email encryption method, comprising:
获取终端发送的邮件的邮件信息, 所述邮件信息包括收件人、 标题、 正文及附件; Obtaining mail information of a mail sent by the terminal, where the mail information includes a recipient, a title, a body, and an attachment;
判断所述邮件信息中是否包含加密密码, 判断为是时, 根据所述邮件信息为所述邮件加密, 所述经加密后的邮件包括信头、 模板正文、 加密正文、 加密附件, 所述信头中还包括与所述 邮件对应的加密标识。 Determining whether the encrypted information is included in the mail information, and if the determination is yes, encrypting the mail according to the mail information, where the encrypted mail includes a letter header, a template body, an encrypted text, and an encrypted attachment, the letter The header also includes an encrypted identifier corresponding to the mail.
2. 如权利要求 1 所述的电子邮件加密方法, 其特征在于, 所述根据邮件信息为所述邮件加 密的步骤包括:  2. The method of encrypting an email according to claim 1, wherein the step of encrypting the email according to the email information comprises:
为所述需加密的邮件生成加密标识; Generating an encrypted identifier for the mail to be encrypted;
将所述收件人、 标题及加密标识添加至所述信头; Adding the recipient, the title, and the encrypted identifier to the header;
将预设的模板内容添加至所述模板正文; Add preset template content to the template body;
根据所述加密密码、 正文及附件生成加密正文及加密附件。 An encrypted text and an encrypted attachment are generated based on the encrypted password, body, and attachment.
3. 如权利要求 2 所述的电子邮件加密方法, 其特征在于, 所述根据加密密码、 正文及附件 生成加密正文、 加密附件的方法包括:  The method for encrypting an email according to claim 2, wherein the method for generating an encrypted text and encrypting an attachment according to an encrypted password, a text, and an attachment includes:
根据加密密码采用 Rijndael加密法对正文及附件进行加密; Encrypt the text and attachments according to the encrypted password using Rijndael encryption method;
对经 Rijndael加密法加密后的正文及附件进行 Base64编码。 Base64 encoding the body and attachments encrypted by Rijndael encryption.
4. 如权利要求 2 所述的电子邮件加密方法, 其特征在于, 所述根据加密密码、 正文及附件 生成加密正文、 加密附件的方法还包括: 所述正文及附件采用 MD5算法生成校验信息。  The method for encrypting an email according to claim 2, wherein the method for generating an encrypted text and an encrypted attachment according to the encrypted password, the text, and the attachment further comprises: generating the verification information by using the MD5 algorithm in the text and the attachment .
5. —种邮件服务器, 其特征在于, 包括:  5. A mail server, characterized in that it comprises:
用于获取终端发送的邮件的邮件信息的获取单元, 所述邮件信息包括收件人、 标题、 正文及 附件; An obtaining unit for obtaining mail information of a mail sent by the terminal, where the mail information includes a recipient, a title, a body, and an attachment;
与所述获取单元相连, 用于判断所述邮件信息中是否包含加密密码的判断单元; And a determining unit, configured to determine whether the email information includes an encrypted password, connected to the acquiring unit;
与所述判断单元相连, 用于当所述判断单元判断出所述邮件信息中包含加密密码时根据所述 邮件信息为所述邮件加密的加密单元, 所述经加密后的邮件包括信头、 模板正文、 加密正文、 加密附件, 所述信头中还包括与所述邮件对应的加密标识。 And the judging unit is configured to be used as an encryption unit for encrypting the e-mail according to the mail information when the judging unit determines that the e-mail information includes an encrypted password, where the encrypted mail includes a letter header, The template body, the encrypted body, and the encrypted attachment, and the header further includes an encrypted identifier corresponding to the mail.
6. 如权利要求 5所述的邮件服务器, 其特征在于, 所述加密单元包括:  The mail server according to claim 5, wherein the encryption unit comprises:
用于为所述需加密的邮件生成加密标识的标识生成子单元; An identifier generating subunit for generating an encrypted identifier for the mail to be encrypted;
与所述标识生成子单元相连, 用于将所述收件人、 标题及加密标识添加至所述信头的信头生 成子单元; And the identifier generating subunit, configured to add the recipient, the title, and the encrypted identifier to the header generating subunit of the header;
用于将预设的模板内容添加至所述模板正文的模板生成子单元; 用于根据所述加密密码、 正文及附件生成加密正文及加密附件的加密子单元。 a template generation subunit for adding preset template content to the template body; An encryption subunit for generating an encrypted text and an encrypted attachment based on the encrypted password, body, and attachment.
7. 如权利要求 6所述的邮件服务器, 其特征在于, 所述加密子单元包括:  7. The mail server according to claim 6, wherein the encryption subunit comprises:
用于根据加密密码采用 Rijndael加密法对正文及附件进行加密的第一加密子单元; 与所述第一加密子单元相连, 用于对经第一加密子单元加密后的正文及附件进行 Base64 编 码的第二加密子单元。 a first encryption subunit for encrypting a text and an attachment by using Rijndael encryption according to the encrypted password; and being connected to the first encryption subunit for performing Base64 encoding on the text and the attachment encrypted by the first encryption subunit The second cryptographic subunit.
8. 如权利要求 7 所述的邮件服务器, 其特征在于, 所述加密子单元还包括: 用于根据正文 及附件采用 MD5算法生成校验信息的校验信息生成子单元。  The mail server according to claim 7, wherein the encryption subunit further comprises: a verification information generation subunit for generating verification information by using an MD5 algorithm according to the text and the attachment.
9. 一种电子邮件加密系统, 其特征在于, 包括:  9. An email encryption system, comprising:
用于发送或接受邮件的终端; a terminal for sending or receiving mail;
如权利要求 5~8任一项所述的邮件服务器。 A mail server according to any one of claims 5 to 8.
PCT/CN2012/071316 2011-12-29 2012-02-20 Electronic mail encryption method, mail server, and system WO2013097326A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201110450362.7A CN103188129B (en) 2011-12-29 A kind of E-mail encryption method, mail server and system
CN201110450362.7 2011-12-29

Publications (1)

Publication Number Publication Date
WO2013097326A1 true WO2013097326A1 (en) 2013-07-04

Family

ID=48679100

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2012/071316 WO2013097326A1 (en) 2011-12-29 2012-02-20 Electronic mail encryption method, mail server, and system

Country Status (1)

Country Link
WO (1) WO2013097326A1 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US11750574B1 (en) * 2020-11-09 2023-09-05 Whatsapp Llc End-to-end encrypted interactive messaging using message templates

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101083524A (en) * 2007-06-14 2007-12-05 腾讯科技(深圳)有限公司 Method and system for encrypting and deciphering E-mail
CN102055722A (en) * 2009-10-28 2011-05-11 上海中标软件有限公司 Implementation method for ensuring secure storage of electronic mails
CN102263637A (en) * 2010-05-28 2011-11-30 陈勇 Information encryption method and equipment thereof

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101083524A (en) * 2007-06-14 2007-12-05 腾讯科技(深圳)有限公司 Method and system for encrypting and deciphering E-mail
CN102055722A (en) * 2009-10-28 2011-05-11 上海中标软件有限公司 Implementation method for ensuring secure storage of electronic mails
CN102263637A (en) * 2010-05-28 2011-11-30 陈勇 Information encryption method and equipment thereof

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US11750574B1 (en) * 2020-11-09 2023-09-05 Whatsapp Llc End-to-end encrypted interactive messaging using message templates

Also Published As

Publication number Publication date
CN103188129A (en) 2013-07-03

Similar Documents

Publication Publication Date Title
JP5313311B2 (en) Secure message system with remote decryption service
US20170180393A1 (en) Confidential message exchange using benign, context-aware cover message generation
US8281409B2 (en) Systems and methods for securely providing email
JP4148979B2 (en) E-mail system, e-mail relay device, e-mail relay method, and e-mail relay program
JP2010522488A (en) Secure electronic messaging system requiring key retrieval to distribute decryption key
US20090327714A1 (en) System and Method for End-to-End Electronic Mail-Encryption
US20070174636A1 (en) Methods, systems, and apparatus for encrypting e-mail
JP5356947B2 (en) Email encryption system
JP2007133867A5 (en)
GB2568966A (en) An encryption process
JP2005534049A5 (en)
CN106790037B (en) User mode encrypted instant messaging method and system
TW201108699A (en) Authentication method and system
CN102118381A (en) Safe mail system based on USBKEY (Universal Serial Bus Key) and mail encrypting-decrypting method
JP4434680B2 (en) E-mail processing device program
JP4367546B2 (en) Mail relay device
WO2013097326A1 (en) Electronic mail encryption method, mail server, and system
JP2011217268A (en) Mail server, mail communication system, and mail transmitting/receiving method
JP4760839B2 (en) E-mail relay device and e-mail relay method
Dumka et al. Taxonomy of E-Mail Security Protocol
US11736462B1 (en) Hybrid content protection architecture for email
JP2006053610A (en) Web mail encryption system, web mail encryption method and computer program
KR101987579B1 (en) Method and system for sending and receiving of secure mail based on webmail using by otp and diffie-hellman key exchange
JP4586383B2 (en) File encryption method, file decryption method, and control program
CN103188129B (en) A kind of E-mail encryption method, mail server and system

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 12863759

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 12863759

Country of ref document: EP

Kind code of ref document: A1